Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-50211 (GCVE-0-2024-50211)
Vulnerability from cvelistv5 – Published: 2024-11-08 06:10 – Updated: 2026-01-05 10:55
VLAI?
EPSS
Title
udf: refactor inode_bmap() to handle error
Summary
In the Linux kernel, the following vulnerability has been resolved:
udf: refactor inode_bmap() to handle error
Refactor inode_bmap() to handle error since udf_next_aext() can return
error now. On situations like ftruncate, udf_extend_file() can now
detect errors and bail out early without resorting to checking for
particular offsets and assuming internal behavior of these functions.
Severity ?
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Linux | Linux |
Affected:
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < 493447dd8336607fce426f7879e581095f6c606e
(git)
Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < b22d9a5698abf04341f8fbc30141e0673863c3a6 (git) Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < c226964ec786f3797ed389a16392ce4357697d24 (git) |
||
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-50211",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-10-01T20:17:19.011673Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-noinfo Not enough information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-10-01T20:27:05.842Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"fs/udf/directory.c",
"fs/udf/inode.c",
"fs/udf/partition.c",
"fs/udf/truncate.c",
"fs/udf/udfdecl.h"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "493447dd8336607fce426f7879e581095f6c606e",
"status": "affected",
"version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"versionType": "git"
},
{
"lessThan": "b22d9a5698abf04341f8fbc30141e0673863c3a6",
"status": "affected",
"version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"versionType": "git"
},
{
"lessThan": "c226964ec786f3797ed389a16392ce4357697d24",
"status": "affected",
"version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"fs/udf/directory.c",
"fs/udf/inode.c",
"fs/udf/partition.c",
"fs/udf/truncate.c",
"fs/udf/udfdecl.h"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "2.6.12"
},
{
"lessThan": "2.6.12",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"version": "6.6.59",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.11.*",
"status": "unaffected",
"version": "6.11.6",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "6.12",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.6.59",
"versionStartIncluding": "2.6.12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.11.6",
"versionStartIncluding": "2.6.12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.12",
"versionStartIncluding": "2.6.12",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions."
}
],
"providerMetadata": {
"dateUpdated": "2026-01-05T10:55:17.432Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/493447dd8336607fce426f7879e581095f6c606e"
},
{
"url": "https://git.kernel.org/stable/c/b22d9a5698abf04341f8fbc30141e0673863c3a6"
},
{
"url": "https://git.kernel.org/stable/c/c226964ec786f3797ed389a16392ce4357697d24"
}
],
"title": "udf: refactor inode_bmap() to handle error",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2024-50211",
"datePublished": "2024-11-08T06:10:08.444Z",
"dateReserved": "2024-10-21T19:36:19.970Z",
"dateUpdated": "2026-01-05T10:55:17.432Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.6.59\", \"matchCriteriaId\": \"1F471FD6-0481-4141-8A03-00D7CE67C49C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.7\", \"versionEndExcluding\": \"6.11.6\", \"matchCriteriaId\": \"E4486B12-007B-4794-9857-F07145637AA1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F361E1D-580F-4A2D-A509-7615F73167A1\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nudf: refactor inode_bmap() to handle error\\n\\nRefactor inode_bmap() to handle error since udf_next_aext() can return\\nerror now. On situations like ftruncate, udf_extend_file() can now\\ndetect errors and bail out early without resorting to checking for\\nparticular offsets and assuming internal behavior of these functions.\"}, {\"lang\": \"es\", \"value\": \"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: udf: refactorizar inode_bmap() para controlar el error Refactorizar inode_bmap() para controlar el error, ya que udf_next_aext() ahora puede devolver un error. En situaciones como ftruncate, udf_extend_file() ahora puede detectar errores y salir antes sin recurrir a la comprobaci\\u00f3n de desplazamientos particulares y asumir el comportamiento interno de estas funciones.\"}]",
"id": "CVE-2024-50211",
"lastModified": "2024-11-18T19:04:51.793",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L\", \"baseScore\": 3.3, \"baseSeverity\": \"LOW\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 1.4}]}",
"published": "2024-11-08T06:15:17.410",
"references": "[{\"url\": \"https://git.kernel.org/stable/c/493447dd8336607fce426f7879e581095f6c606e\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"tags\": [\"Patch\"]}, {\"url\": \"https://git.kernel.org/stable/c/b22d9a5698abf04341f8fbc30141e0673863c3a6\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"tags\": [\"Patch\"]}, {\"url\": \"https://git.kernel.org/stable/c/c226964ec786f3797ed389a16392ce4357697d24\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"tags\": [\"Patch\"]}]",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Analyzed",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-50211\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2024-11-08T06:15:17.410\",\"lastModified\":\"2025-10-01T21:16:06.330\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nudf: refactor inode_bmap() to handle error\\n\\nRefactor inode_bmap() to handle error since udf_next_aext() can return\\nerror now. On situations like ftruncate, udf_extend_file() can now\\ndetect errors and bail out early without resorting to checking for\\nparticular offsets and assuming internal behavior of these functions.\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: udf: refactorizar inode_bmap() para controlar el error Refactorizar inode_bmap() para controlar el error, ya que udf_next_aext() ahora puede devolver un error. En situaciones como ftruncate, udf_extend_file() ahora puede detectar errores y salir antes sin recurrir a la comprobaci\u00f3n de desplazamientos particulares y asumir el comportamiento interno de estas funciones.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L\",\"baseScore\":3.3,\"baseSeverity\":\"LOW\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":1.8,\"impactScore\":1.4},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L\",\"baseScore\":3.3,\"baseSeverity\":\"LOW\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":1.8,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.6.59\",\"matchCriteriaId\":\"1F471FD6-0481-4141-8A03-00D7CE67C49C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7\",\"versionEndExcluding\":\"6.11.6\",\"matchCriteriaId\":\"E4486B12-007B-4794-9857-F07145637AA1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F361E1D-580F-4A2D-A509-7615F73167A1\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/493447dd8336607fce426f7879e581095f6c606e\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/b22d9a5698abf04341f8fbc30141e0673863c3a6\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/c226964ec786f3797ed389a16392ce4357697d24\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 3.3, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-50211\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-10-01T20:17:19.011673Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"description\": \"CWE-noinfo Not enough information\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-10-01T15:22:36.108Z\"}}], \"cna\": {\"title\": \"udf: refactor inode_bmap() to handle error\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2\", \"lessThan\": \"493447dd8336607fce426f7879e581095f6c606e\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2\", \"lessThan\": \"b22d9a5698abf04341f8fbc30141e0673863c3a6\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2\", \"lessThan\": \"c226964ec786f3797ed389a16392ce4357697d24\", \"versionType\": \"git\"}], \"programFiles\": [\"fs/udf/directory.c\", \"fs/udf/inode.c\", \"fs/udf/partition.c\", \"fs/udf/truncate.c\", \"fs/udf/udfdecl.h\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.6.12\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"2.6.12\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"6.6.59\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.6.*\"}, {\"status\": \"unaffected\", \"version\": \"6.11.6\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.11.*\"}, {\"status\": \"unaffected\", \"version\": \"6.12\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"fs/udf/directory.c\", \"fs/udf/inode.c\", \"fs/udf/partition.c\", \"fs/udf/truncate.c\", \"fs/udf/udfdecl.h\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/493447dd8336607fce426f7879e581095f6c606e\"}, {\"url\": \"https://git.kernel.org/stable/c/b22d9a5698abf04341f8fbc30141e0673863c3a6\"}, {\"url\": \"https://git.kernel.org/stable/c/c226964ec786f3797ed389a16392ce4357697d24\"}], \"x_generator\": {\"engine\": \"bippy-1.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nudf: refactor inode_bmap() to handle error\\n\\nRefactor inode_bmap() to handle error since udf_next_aext() can return\\nerror now. On situations like ftruncate, udf_extend_file() can now\\ndetect errors and bail out early without resorting to checking for\\nparticular offsets and assuming internal behavior of these functions.\"}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.6.59\", \"versionStartIncluding\": \"2.6.12\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.11.6\", \"versionStartIncluding\": \"2.6.12\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.12\", \"versionStartIncluding\": \"2.6.12\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2026-01-05T10:55:17.432Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-50211\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-01-05T10:55:17.432Z\", \"dateReserved\": \"2024-10-21T19:36:19.970Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2024-11-08T06:10:08.444Z\", \"assignerShortName\": \"Linux\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
CERTFR-2025-AVI-0212
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Manager Proxy 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | Public Cloud Module 15-SP6 | ||
| SUSE | N/A | Development Tools Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 | ||
| SUSE | N/A | SUSE Manager Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Enterprise Storage 7.1 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security | ||
| SUSE | N/A | Basesystem Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.1 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Manager Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP3 | ||
| SUSE | N/A | openSUSE Leap 15.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 Business Critical Linux | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS | ||
| SUSE | N/A | SUSE Manager Proxy 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Workstation Extension 15 SP6 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Desktop 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 LTSS | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | Legacy Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | openSUSE Leap 15.4 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Manager Proxy 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Public Cloud Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Development Tools Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Enterprise Storage 7.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Basesystem Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 Business Critical Linux",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Desktop 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Legacy Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2021-22543",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22543"
},
{
"name": "CVE-2021-37159",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37159"
},
{
"name": "CVE-2022-2991",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2991"
},
{
"name": "CVE-2023-0394",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0394"
},
{
"name": "CVE-2022-36280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36280"
},
{
"name": "CVE-2023-1382",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1382"
},
{
"name": "CVE-2023-33951",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33951"
},
{
"name": "CVE-2023-33952",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33952"
},
{
"name": "CVE-2023-1192",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1192"
},
{
"name": "CVE-2023-4244",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4244"
},
{
"name": "CVE-2023-6606",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6606"
},
{
"name": "CVE-2024-24860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24860"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-26810",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26810"
},
{
"name": "CVE-2023-52572",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52572"
},
{
"name": "CVE-2021-47202",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47202"
},
{
"name": "CVE-2024-26931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26931"
},
{
"name": "CVE-2024-27388",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27388"
},
{
"name": "CVE-2024-26924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26924"
},
{
"name": "CVE-2024-27054",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27054"
},
{
"name": "CVE-2022-48650",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48650"
},
{
"name": "CVE-2023-52646",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52646"
},
{
"name": "CVE-2024-26929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26929"
},
{
"name": "CVE-2023-52653",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52653"
},
{
"name": "CVE-2022-48636",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48636"
},
{
"name": "CVE-2024-26930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26930"
},
{
"name": "CVE-2023-52853",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52853"
},
{
"name": "CVE-2024-26758",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26758"
},
{
"name": "CVE-2024-26943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26943"
},
{
"name": "CVE-2024-36898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36898"
},
{
"name": "CVE-2024-38599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38599"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-26886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26886"
},
{
"name": "CVE-2024-36915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36915"
},
{
"name": "CVE-2024-26708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26708"
},
{
"name": "CVE-2024-40980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40980"
},
{
"name": "CVE-2024-35949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35949"
},
{
"name": "CVE-2024-41055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41055"
},
{
"name": "CVE-2024-42232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42232"
},
{
"name": "CVE-2024-41047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41047"
},
{
"name": "CVE-2024-44974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44974"
},
{
"name": "CVE-2024-45009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45009"
},
{
"name": "CVE-2024-45010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45010"
},
{
"name": "CVE-2024-45019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45019"
},
{
"name": "CVE-2024-46858",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46858"
},
{
"name": "CVE-2022-48664",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48664"
},
{
"name": "CVE-2022-48953",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48953"
},
{
"name": "CVE-2022-48975",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48975"
},
{
"name": "CVE-2022-49006",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49006"
},
{
"name": "CVE-2024-44934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44934"
},
{
"name": "CVE-2024-49867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49867"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49963"
},
{
"name": "CVE-2024-49975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49975"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-53241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53241"
},
{
"name": "CVE-2024-53240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53240"
},
{
"name": "CVE-2024-47666",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47666"
},
{
"name": "CVE-2024-47701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47701"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2023-52920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52920"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50210"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-50018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50018"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53179"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2022-48742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48742"
},
{
"name": "CVE-2022-49033",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49033"
},
{
"name": "CVE-2022-49035",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49035"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-56571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56571"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-50051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50051"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53690"
},
{
"name": "CVE-2024-54680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54680"
},
{
"name": "CVE-2024-55916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55916"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56557",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56557"
},
{
"name": "CVE-2024-56558",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56558"
},
{
"name": "CVE-2024-56568",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56568"
},
{
"name": "CVE-2024-56588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56588"
},
{
"name": "CVE-2024-56595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56595"
},
{
"name": "CVE-2024-56596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56596"
},
{
"name": "CVE-2024-56597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56597"
},
{
"name": "CVE-2024-56602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56602"
},
{
"name": "CVE-2024-56623",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56623"
},
{
"name": "CVE-2024-56629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56629"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56644",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56644"
},
{
"name": "CVE-2024-56648",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56648"
},
{
"name": "CVE-2024-56661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56661"
},
{
"name": "CVE-2024-56664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56664"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56759"
},
{
"name": "CVE-2024-56765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56765"
},
{
"name": "CVE-2024-56776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56776"
},
{
"name": "CVE-2024-56777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56777"
},
{
"name": "CVE-2024-56778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56778"
},
{
"name": "CVE-2024-57791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57791"
},
{
"name": "CVE-2024-57792",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57792"
},
{
"name": "CVE-2024-57793",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57793"
},
{
"name": "CVE-2024-57798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57798"
},
{
"name": "CVE-2024-57849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57849"
},
{
"name": "CVE-2024-57850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57850"
},
{
"name": "CVE-2024-57876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57876"
},
{
"name": "CVE-2024-57893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57893"
},
{
"name": "CVE-2024-57896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57896"
},
{
"name": "CVE-2024-57897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57897"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-56592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56592"
},
{
"name": "CVE-2024-56600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56600"
},
{
"name": "CVE-2024-56601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56601"
},
{
"name": "CVE-2024-56650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56650"
},
{
"name": "CVE-2024-56658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
},
{
"name": "CVE-2024-57882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57882"
},
{
"name": "CVE-2025-21666",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21666"
},
{
"name": "CVE-2025-21669",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21669"
},
{
"name": "CVE-2025-21670",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21670"
},
{
"name": "CVE-2025-21675",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21675"
},
{
"name": "CVE-2024-57948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57948"
},
{
"name": "CVE-2025-21636",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21636"
},
{
"name": "CVE-2025-21637",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21637"
},
{
"name": "CVE-2025-21638",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21638"
},
{
"name": "CVE-2025-21639",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21639"
},
{
"name": "CVE-2025-21640",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21640"
},
{
"name": "CVE-2025-21647",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21647"
},
{
"name": "CVE-2025-21665",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21665"
},
{
"name": "CVE-2025-21667",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21667"
},
{
"name": "CVE-2025-21668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21668"
},
{
"name": "CVE-2025-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21680"
},
{
"name": "CVE-2025-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21681"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2024-56633",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56633"
},
{
"name": "CVE-2025-21673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21673"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2023-52924",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52924"
},
{
"name": "CVE-2023-52925",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52925"
},
{
"name": "CVE-2024-56579",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56579"
},
{
"name": "CVE-2024-56647",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56647"
},
{
"name": "CVE-2024-57889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57889"
},
{
"name": "CVE-2025-21684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21684"
},
{
"name": "CVE-2025-21687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21687"
},
{
"name": "CVE-2025-21688",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21688"
},
{
"name": "CVE-2025-21689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21689"
},
{
"name": "CVE-2025-21690",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21690"
},
{
"name": "CVE-2025-21692",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21692"
},
{
"name": "CVE-2025-21697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21697"
},
{
"name": "CVE-2025-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21699"
},
{
"name": "CVE-2025-21700",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21700"
},
{
"name": "CVE-2021-47633",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47633"
},
{
"name": "CVE-2021-47634",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47634"
},
{
"name": "CVE-2021-47644",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47644"
},
{
"name": "CVE-2022-49076",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49076"
},
{
"name": "CVE-2022-49080",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49080"
},
{
"name": "CVE-2022-49089",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49089"
},
{
"name": "CVE-2022-49124",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49124"
},
{
"name": "CVE-2022-49134",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49134"
},
{
"name": "CVE-2022-49135",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49135"
},
{
"name": "CVE-2022-49151",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49151"
},
{
"name": "CVE-2022-49178",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49178"
},
{
"name": "CVE-2022-49182",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49182"
},
{
"name": "CVE-2022-49201",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49201"
},
{
"name": "CVE-2022-49247",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49247"
},
{
"name": "CVE-2022-49490",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49490"
},
{
"name": "CVE-2022-49626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49626"
},
{
"name": "CVE-2022-49661",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49661"
},
{
"name": "CVE-2024-57979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57979"
},
{
"name": "CVE-2024-57994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57994"
},
{
"name": "CVE-2025-21705",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21705"
},
{
"name": "CVE-2025-21715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21715"
},
{
"name": "CVE-2025-21716",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21716"
},
{
"name": "CVE-2025-21719",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21719"
},
{
"name": "CVE-2025-21724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21724"
},
{
"name": "CVE-2025-21725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21725"
},
{
"name": "CVE-2025-21728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21728"
},
{
"name": "CVE-2025-21733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21733"
},
{
"name": "CVE-2025-21753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21753"
},
{
"name": "CVE-2025-21754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21754"
},
{
"name": "CVE-2025-21767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21767"
},
{
"name": "CVE-2025-21790",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21790"
},
{
"name": "CVE-2025-21795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21795"
},
{
"name": "CVE-2025-21799",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21799"
},
{
"name": "CVE-2025-21802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21802"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0212",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-03-14T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0833-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250833-1"
},
{
"published_at": "2025-03-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0847-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250847-1"
},
{
"published_at": "2025-03-13",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0855-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250855-1"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0833-2",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250833-2"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0577-2",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250577-2"
},
{
"published_at": "2025-03-13",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0856-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250856-1"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0834-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250834-1"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0835-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250835-1"
},
{
"published_at": "2025-03-13",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0853-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250853-1"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0201-2",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250201-2"
}
]
}
CERTFR-2025-AVI-0047
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.5 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.4 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | Public Cloud Module | Public Cloud Module 15-SP6 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.6 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15 SP3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP3 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP4 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Public Cloud Module 15-SP6",
"product": {
"name": "Public Cloud Module",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP3",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2022-48651",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48651"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-35949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35949"
},
{
"name": "CVE-2021-47291",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47291"
},
{
"name": "CVE-2023-52846",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52846"
},
{
"name": "CVE-2024-36904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36904"
},
{
"name": "CVE-2024-26585",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26585"
},
{
"name": "CVE-2021-47402",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47402"
},
{
"name": "CVE-2021-47598",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47598"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2023-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6531"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-35867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35867"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-35839",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35839"
},
{
"name": "CVE-2024-26852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26852"
},
{
"name": "CVE-2024-39480",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39480"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-56667",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56667"
},
{
"name": "CVE-2024-50228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50228"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-27398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27398"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2023-52340",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52340"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53179"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-53159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53159"
},
{
"name": "CVE-2024-44934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44934"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-35950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35950"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-36915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36915"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-50264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50264"
},
{
"name": "CVE-2024-53207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53207"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2021-46955",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46955"
},
{
"name": "CVE-2022-48956",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48956"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-35905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35905"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2021-47517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47517"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-41042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41042"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2021-47378",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47378"
},
{
"name": "CVE-2021-47383",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47383"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-36908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36908"
},
{
"name": "CVE-2024-43861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43861"
},
{
"name": "CVE-2024-53241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53241"
},
{
"name": "CVE-2024-26923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26923"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2024-44996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44996"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-49854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49854"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2023-52752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52752"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2023-1829",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1829"
},
{
"name": "CVE-2024-35862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35862"
},
{
"name": "CVE-2024-41059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41059"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-35817",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35817"
},
{
"name": "CVE-2024-26828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26828"
},
{
"name": "CVE-2022-48686",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48686"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-35863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35863"
},
{
"name": "CVE-2024-36964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36964"
},
{
"name": "CVE-2024-53240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53240"
},
{
"name": "CVE-2023-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6546"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2023-52502",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52502"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-35861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35861"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40909"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-26930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26930"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-26766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26766"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2022-48662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48662"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-26924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26924"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-26622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26622"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-50018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50018"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0047",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-17T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0098-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250098-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0131-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250131-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0097-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250097-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0146-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250146-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0132-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250132-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0089-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250089-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0136-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250136-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0094-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250094-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0115-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250115-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0111-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250111-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0150-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250150-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0114-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250114-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0124-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250124-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0138-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250138-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0085-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250085-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0123-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250123-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0105-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250105-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0101-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250101-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0106-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250106-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0084-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250084-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0110-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250110-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0090-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250090-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0107-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250107-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0091-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250091-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0117-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250117-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0083-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250083-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0108-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250108-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0103-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250103-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0100-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250100-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0112-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250112-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0137-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250137-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0109-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250109-1"
}
]
}
CERTFR-2025-AVI-0088
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP3 | ||
| SUSE | N/A | openSUSE Leap 15.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | Confidential Computing Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.1 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | openSUSE Leap 15.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Confidential Computing Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2020-12770",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12770"
},
{
"name": "CVE-2021-38160",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38160"
},
{
"name": "CVE-2021-35477",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35477"
},
{
"name": "CVE-2021-34556",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34556"
},
{
"name": "CVE-2021-42327",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42327"
},
{
"name": "CVE-2022-36280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36280"
},
{
"name": "CVE-2023-1382",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1382"
},
{
"name": "CVE-2023-1829",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1829"
},
{
"name": "CVE-2023-33951",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33951"
},
{
"name": "CVE-2023-33952",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33952"
},
{
"name": "CVE-2023-2860",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2860"
},
{
"name": "CVE-2023-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6546"
},
{
"name": "CVE-2023-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6531"
},
{
"name": "CVE-2023-0160",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0160"
},
{
"name": "CVE-2023-47233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47233"
},
{
"name": "CVE-2024-24860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24860"
},
{
"name": "CVE-2023-52340",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52340"
},
{
"name": "CVE-2024-26622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26622"
},
{
"name": "CVE-2023-52502",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52502"
},
{
"name": "CVE-2024-26585",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26585"
},
{
"name": "CVE-2023-52434",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52434"
},
{
"name": "CVE-2023-52591",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52591"
},
{
"name": "CVE-2023-52524",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52524"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-26766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26766"
},
{
"name": "CVE-2024-26764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26764"
},
{
"name": "CVE-2021-46955",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46955"
},
{
"name": "CVE-2021-47202",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47202"
},
{
"name": "CVE-2023-52489",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52489"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-26924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26924"
},
{
"name": "CVE-2024-26976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26976"
},
{
"name": "CVE-2024-26852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26852"
},
{
"name": "CVE-2024-26923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26923"
},
{
"name": "CVE-2022-48703",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48703"
},
{
"name": "CVE-2022-48702",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48702"
},
{
"name": "CVE-2022-48686",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48686"
},
{
"name": "CVE-2022-48701",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48701"
},
{
"name": "CVE-2022-48694",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48694"
},
{
"name": "CVE-2022-48688",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48688"
},
{
"name": "CVE-2022-48634",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48634"
},
{
"name": "CVE-2022-48672",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48672"
},
{
"name": "CVE-2022-48651",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48651"
},
{
"name": "CVE-2022-48693",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48693"
},
{
"name": "CVE-2022-48652",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48652"
},
{
"name": "CVE-2022-48671",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48671"
},
{
"name": "CVE-2022-48662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48662"
},
{
"name": "CVE-2022-48700",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48700"
},
{
"name": "CVE-2022-48687",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48687"
},
{
"name": "CVE-2022-48695",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48695"
},
{
"name": "CVE-2022-48704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48704"
},
{
"name": "CVE-2022-48692",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48692"
},
{
"name": "CVE-2022-48636",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48636"
},
{
"name": "CVE-2022-48675",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48675"
},
{
"name": "CVE-2022-48673",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48673"
},
{
"name": "CVE-2022-48697",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48697"
},
{
"name": "CVE-2022-48699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48699"
},
{
"name": "CVE-2022-48632",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48632"
},
{
"name": "CVE-2024-26930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26930"
},
{
"name": "CVE-2024-26828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26828"
},
{
"name": "CVE-2024-27398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27398"
},
{
"name": "CVE-2024-36883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36883"
},
{
"name": "CVE-2024-36886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36886"
},
{
"name": "CVE-2024-36904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36904"
},
{
"name": "CVE-2020-36788",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36788"
},
{
"name": "CVE-2021-4148",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4148"
},
{
"name": "CVE-2021-47365",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47365"
},
{
"name": "CVE-2021-47378",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47378"
},
{
"name": "CVE-2021-47383",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47383"
},
{
"name": "CVE-2021-47402",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47402"
},
{
"name": "CVE-2021-47489",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47489"
},
{
"name": "CVE-2021-47491",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47491"
},
{
"name": "CVE-2021-47492",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47492"
},
{
"name": "CVE-2023-52654",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52654"
},
{
"name": "CVE-2023-52655",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52655"
},
{
"name": "CVE-2023-52676",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52676"
},
{
"name": "CVE-2024-35811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35811"
},
{
"name": "CVE-2024-35815",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35815"
},
{
"name": "CVE-2024-35817",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35817"
},
{
"name": "CVE-2024-35847",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35847"
},
{
"name": "CVE-2024-35861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35861"
},
{
"name": "CVE-2024-35862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35862"
},
{
"name": "CVE-2024-35863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35863"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-35867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35867"
},
{
"name": "CVE-2024-35895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35895"
},
{
"name": "CVE-2024-35905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35905"
},
{
"name": "CVE-2024-35914",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35914"
},
{
"name": "CVE-2024-35950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35950"
},
{
"name": "CVE-2024-27029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27029"
},
{
"name": "CVE-2024-36964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36964"
},
{
"name": "CVE-2024-36971",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36971"
},
{
"name": "CVE-2024-38589",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38589"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-26886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26886"
},
{
"name": "CVE-2023-52752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52752"
},
{
"name": "CVE-2023-52846",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52846"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-36915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36915"
},
{
"name": "CVE-2024-39480",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39480"
},
{
"name": "CVE-2024-40920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40920"
},
{
"name": "CVE-2024-40921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40921"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2024-35949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35949"
},
{
"name": "CVE-2024-36908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36908"
},
{
"name": "CVE-2024-36979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36979"
},
{
"name": "CVE-2024-41013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41013"
},
{
"name": "CVE-2021-47291",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47291"
},
{
"name": "CVE-2021-47598",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47598"
},
{
"name": "CVE-2024-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40909"
},
{
"name": "CVE-2024-41057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41057"
},
{
"name": "CVE-2024-41059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41059"
},
{
"name": "CVE-2024-36484",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36484"
},
{
"name": "CVE-2024-42232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42232"
},
{
"name": "CVE-2024-35839",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35839"
},
{
"name": "CVE-2021-47517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47517"
},
{
"name": "CVE-2024-41042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41042"
},
{
"name": "CVE-2024-42133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42133"
},
{
"name": "CVE-2024-43861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43861"
},
{
"name": "CVE-2024-46771",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46771"
},
{
"name": "CVE-2024-46800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46800"
},
{
"name": "CVE-2022-48956",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48956"
},
{
"name": "CVE-2024-44934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44934"
},
{
"name": "CVE-2024-47709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47709"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50228"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50264"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53057"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-53241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53241"
},
{
"name": "CVE-2024-53240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53240"
},
{
"name": "CVE-2024-43913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43913"
},
{
"name": "CVE-2024-44996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44996"
},
{
"name": "CVE-2024-46680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46680"
},
{
"name": "CVE-2024-46765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46765"
},
{
"name": "CVE-2024-47666",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47666"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2023-52920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52920"
},
{
"name": "CVE-2023-52922",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52922"
},
{
"name": "CVE-2024-26596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26596"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-49854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49854"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-50018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50018"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53159"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53179"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-53207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53207"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56667",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56667"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2022-48742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48742"
},
{
"name": "CVE-2022-49033",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49033"
},
{
"name": "CVE-2022-49035",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49035"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-56571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56571"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2023-52923",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52923"
},
{
"name": "CVE-2024-36476",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36476"
},
{
"name": "CVE-2024-39282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39282"
},
{
"name": "CVE-2024-45828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45828"
},
{
"name": "CVE-2024-46896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46896"
},
{
"name": "CVE-2024-47141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47141"
},
{
"name": "CVE-2024-47143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47143"
},
{
"name": "CVE-2024-47809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47809"
},
{
"name": "CVE-2024-48873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48873"
},
{
"name": "CVE-2024-48881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48881"
},
{
"name": "CVE-2024-49569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49569"
},
{
"name": "CVE-2024-49951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49951"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50051"
},
{
"name": "CVE-2024-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50106"
},
{
"name": "CVE-2024-52332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52332"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53185"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-53685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53685"
},
{
"name": "CVE-2024-53690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53690"
},
{
"name": "CVE-2024-54680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54680"
},
{
"name": "CVE-2024-55639",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55639"
},
{
"name": "CVE-2024-55881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55881"
},
{
"name": "CVE-2024-55916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55916"
},
{
"name": "CVE-2024-56369",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56369"
},
{
"name": "CVE-2024-56372",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56372"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-56557",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56557"
},
{
"name": "CVE-2024-56558",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56558"
},
{
"name": "CVE-2024-56568",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56568"
},
{
"name": "CVE-2024-56569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56569"
},
{
"name": "CVE-2024-56572",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56572"
},
{
"name": "CVE-2024-56573",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56573"
},
{
"name": "CVE-2024-56574",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56574"
},
{
"name": "CVE-2024-53164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53164"
},
{
"name": "CVE-2024-56577",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56577"
},
{
"name": "CVE-2024-56578",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56578"
},
{
"name": "CVE-2024-56584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56584"
},
{
"name": "CVE-2024-56587",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56587"
},
{
"name": "CVE-2024-56588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56588"
},
{
"name": "CVE-2024-56589",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56589"
},
{
"name": "CVE-2024-56590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56590"
},
{
"name": "CVE-2024-56593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56593"
},
{
"name": "CVE-2024-56594",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56594"
},
{
"name": "CVE-2024-56595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56595"
},
{
"name": "CVE-2024-56596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56596"
},
{
"name": "CVE-2024-56597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56597"
},
{
"name": "CVE-2024-5660",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5660"
},
{
"name": "CVE-2024-56602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56602"
},
{
"name": "CVE-2024-56603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56603"
},
{
"name": "CVE-2024-56606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56606"
},
{
"name": "CVE-2024-56607",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56607"
},
{
"name": "CVE-2024-56609",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56609"
},
{
"name": "CVE-2024-56611",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56611"
},
{
"name": "CVE-2024-56614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56614"
},
{
"name": "CVE-2024-56615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56615"
},
{
"name": "CVE-2024-56616",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56616"
},
{
"name": "CVE-2024-56617",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56617"
},
{
"name": "CVE-2024-56620",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56620"
},
{
"name": "CVE-2024-56622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56622"
},
{
"name": "CVE-2024-56623",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56623"
},
{
"name": "CVE-2024-56625",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56625"
},
{
"name": "CVE-2024-56629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56629"
},
{
"name": "CVE-2024-56630",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56630"
},
{
"name": "CVE-2024-56632",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56632"
},
{
"name": "CVE-2024-56634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56634"
},
{
"name": "CVE-2024-56635",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56635"
},
{
"name": "CVE-2024-56636",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56636"
},
{
"name": "CVE-2024-56637",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56637"
},
{
"name": "CVE-2024-56641",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56641"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56643"
},
{
"name": "CVE-2024-56644",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56644"
},
{
"name": "CVE-2024-56648",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56648"
},
{
"name": "CVE-2024-56649",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56649"
},
{
"name": "CVE-2024-56651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56651"
},
{
"name": "CVE-2024-56654",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56654"
},
{
"name": "CVE-2024-56656",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56656"
},
{
"name": "CVE-2024-56659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56659"
},
{
"name": "CVE-2024-56660",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56660"
},
{
"name": "CVE-2024-56661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56661"
},
{
"name": "CVE-2024-56662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56662"
},
{
"name": "CVE-2024-56663",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56663"
},
{
"name": "CVE-2024-56664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56664"
},
{
"name": "CVE-2024-56670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56670"
},
{
"name": "CVE-2024-56672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56672"
},
{
"name": "CVE-2024-56675",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56675"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56709"
},
{
"name": "CVE-2024-56712",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56712"
},
{
"name": "CVE-2024-56716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56716"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56741"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-56759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56759"
},
{
"name": "CVE-2024-56760",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56760"
},
{
"name": "CVE-2024-56765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56765"
},
{
"name": "CVE-2024-56766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56766"
},
{
"name": "CVE-2024-56767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56767"
},
{
"name": "CVE-2024-56769",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56769"
},
{
"name": "CVE-2024-56774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56774"
},
{
"name": "CVE-2024-56775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56775"
},
{
"name": "CVE-2024-56776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56776"
},
{
"name": "CVE-2024-56777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56777"
},
{
"name": "CVE-2024-56778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56778"
},
{
"name": "CVE-2024-56779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56779"
},
{
"name": "CVE-2024-56780",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56780"
},
{
"name": "CVE-2024-56787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56787"
},
{
"name": "CVE-2024-57791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57791"
},
{
"name": "CVE-2024-57792",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57792"
},
{
"name": "CVE-2024-57793",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57793"
},
{
"name": "CVE-2024-57795",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57795"
},
{
"name": "CVE-2024-57798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57798"
},
{
"name": "CVE-2024-57801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57801"
},
{
"name": "CVE-2024-57804",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57804"
},
{
"name": "CVE-2024-57809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57809"
},
{
"name": "CVE-2024-57838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57838"
},
{
"name": "CVE-2024-57849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57849"
},
{
"name": "CVE-2024-57850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57850"
},
{
"name": "CVE-2024-57857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57857"
},
{
"name": "CVE-2024-57874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57874"
},
{
"name": "CVE-2024-57876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57876"
},
{
"name": "CVE-2024-57887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57887"
},
{
"name": "CVE-2024-57888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57888"
},
{
"name": "CVE-2024-57890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57890"
},
{
"name": "CVE-2024-57892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57892"
},
{
"name": "CVE-2024-57893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57893"
},
{
"name": "CVE-2024-57896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57896"
},
{
"name": "CVE-2024-57897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57897"
},
{
"name": "CVE-2024-57899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57899"
},
{
"name": "CVE-2024-57903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57903"
},
{
"name": "CVE-2024-57904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57904"
},
{
"name": "CVE-2024-57906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57906"
},
{
"name": "CVE-2024-57907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57907"
},
{
"name": "CVE-2024-57908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57908"
},
{
"name": "CVE-2024-57910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57910"
},
{
"name": "CVE-2024-57911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57911"
},
{
"name": "CVE-2024-57912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57912"
},
{
"name": "CVE-2024-57913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57913"
},
{
"name": "CVE-2024-57915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57915"
},
{
"name": "CVE-2024-57916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57916"
},
{
"name": "CVE-2024-57922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57922"
},
{
"name": "CVE-2024-57926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57926"
},
{
"name": "CVE-2024-57929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57929"
},
{
"name": "CVE-2024-57932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57932"
},
{
"name": "CVE-2024-57933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57933"
},
{
"name": "CVE-2024-57935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57935"
},
{
"name": "CVE-2024-57936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57936"
},
{
"name": "CVE-2024-57940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57940"
},
{
"name": "CVE-2025-21632",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21632"
},
{
"name": "CVE-2025-21645",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21645"
},
{
"name": "CVE-2025-21646",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21646"
},
{
"name": "CVE-2025-21649",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21649"
},
{
"name": "CVE-2025-21650",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21650"
},
{
"name": "CVE-2025-21651",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21651"
},
{
"name": "CVE-2025-21656",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21656"
},
{
"name": "CVE-2025-21662",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21662"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0088",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-31T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-01-28",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0268-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250268-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0244-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250244-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0248-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250248-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0260-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250260-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0250-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250250-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0252-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250252-1"
},
{
"published_at": "2025-01-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0238-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250238-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0261-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250261-1"
},
{
"published_at": "2025-01-28",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0269-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250269-1"
},
{
"published_at": "2025-01-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0230-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250230-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0243-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250243-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0246-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250246-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0242-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250242-1"
},
{
"published_at": "2025-01-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0240-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250240-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0255-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250255-1"
},
{
"published_at": "2025-01-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0241-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250241-1"
},
{
"published_at": "2025-01-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0239-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250239-1"
},
{
"published_at": "2025-01-29",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0289-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250289-1"
},
{
"published_at": "2025-01-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0229-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250229-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0264-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250264-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0245-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250245-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0266-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250266-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0265-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250265-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0251-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250251-1"
},
{
"published_at": "2025-01-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0231-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250231-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0262-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250262-1"
},
{
"published_at": "2025-01-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0236-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250236-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0253-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250253-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0249-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250249-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0254-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250254-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0263-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250263-1"
}
]
}
CERTFR-2025-AVI-0185
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 16.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.10",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 14.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 22.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-52458",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52458"
},
{
"name": "CVE-2024-26718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26718"
},
{
"name": "CVE-2024-26685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26685"
},
{
"name": "CVE-2023-52488",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52488"
},
{
"name": "CVE-2023-52522",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52522"
},
{
"name": "CVE-2024-36886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36886"
},
{
"name": "CVE-2021-47469",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47469"
},
{
"name": "CVE-2023-52799",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52799"
},
{
"name": "CVE-2023-52818",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52818"
},
{
"name": "CVE-2023-52880",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52880"
},
{
"name": "CVE-2024-35887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35887"
},
{
"name": "CVE-2024-36952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36952"
},
{
"name": "CVE-2024-35896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35896"
},
{
"name": "CVE-2024-36964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36964"
},
{
"name": "CVE-2024-38567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38567"
},
{
"name": "CVE-2021-47103",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47103"
},
{
"name": "CVE-2024-38544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38544"
},
{
"name": "CVE-2024-40910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40910"
},
{
"name": "CVE-2024-40911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40911"
},
{
"name": "CVE-2024-40943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40943"
},
{
"name": "CVE-2024-40953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40953"
},
{
"name": "CVE-2024-40981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40981"
},
{
"name": "CVE-2021-47606",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47606"
},
{
"name": "CVE-2024-39497",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39497"
},
{
"name": "CVE-2024-41016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41016"
},
{
"name": "CVE-2024-41063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41063"
},
{
"name": "CVE-2024-41064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41064"
},
{
"name": "CVE-2024-41066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41066"
},
{
"name": "CVE-2024-42070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42070"
},
{
"name": "CVE-2024-40965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40965"
},
{
"name": "CVE-2024-42068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42068"
},
{
"name": "CVE-2023-52913",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52913"
},
{
"name": "CVE-2024-41080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41080"
},
{
"name": "CVE-2024-42291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42291"
},
{
"name": "CVE-2024-43854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43854"
},
{
"name": "CVE-2024-43863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43863"
},
{
"name": "CVE-2024-43892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43892"
},
{
"name": "CVE-2024-43893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43893"
},
{
"name": "CVE-2024-43900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43900"
},
{
"name": "CVE-2024-44931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44931"
},
{
"name": "CVE-2024-44938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44938"
},
{
"name": "CVE-2024-46731",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46731"
},
{
"name": "CVE-2024-46849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46849"
},
{
"name": "CVE-2024-46853",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46853"
},
{
"name": "CVE-2024-46854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46854"
},
{
"name": "CVE-2024-42252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42252"
},
{
"name": "CVE-2022-48994",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48994"
},
{
"name": "CVE-2023-52917",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52917"
},
{
"name": "CVE-2024-47670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47670"
},
{
"name": "CVE-2024-47671",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47671"
},
{
"name": "CVE-2024-47672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47672"
},
{
"name": "CVE-2024-47673",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47673"
},
{
"name": "CVE-2024-47674",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47674"
},
{
"name": "CVE-2024-47675",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47675"
},
{
"name": "CVE-2024-47681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47681"
},
{
"name": "CVE-2024-47682",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47682"
},
{
"name": "CVE-2024-47684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47684"
},
{
"name": "CVE-2024-47685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47685"
},
{
"name": "CVE-2024-47686",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47686"
},
{
"name": "CVE-2024-47687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47687"
},
{
"name": "CVE-2024-47688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47688"
},
{
"name": "CVE-2024-47692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47692"
},
{
"name": "CVE-2024-47693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47693"
},
{
"name": "CVE-2024-47695",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47695"
},
{
"name": "CVE-2024-47696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47696"
},
{
"name": "CVE-2024-47697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47697"
},
{
"name": "CVE-2024-47698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47698"
},
{
"name": "CVE-2024-47699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47699"
},
{
"name": "CVE-2024-47702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47702"
},
{
"name": "CVE-2024-47704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47704"
},
{
"name": "CVE-2024-47705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47705"
},
{
"name": "CVE-2024-47706",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47706"
},
{
"name": "CVE-2024-47707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47707"
},
{
"name": "CVE-2024-47709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47709"
},
{
"name": "CVE-2024-47710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47710"
},
{
"name": "CVE-2024-47712",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47712"
},
{
"name": "CVE-2024-47713",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47713"
},
{
"name": "CVE-2024-47714",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47714"
},
{
"name": "CVE-2024-47715",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47715"
},
{
"name": "CVE-2024-47718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47718"
},
{
"name": "CVE-2024-47719",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47719"
},
{
"name": "CVE-2024-47720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47720"
},
{
"name": "CVE-2024-47723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47723"
},
{
"name": "CVE-2024-47727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47727"
},
{
"name": "CVE-2024-47728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47728"
},
{
"name": "CVE-2024-47730",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47730"
},
{
"name": "CVE-2024-47731",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47731"
},
{
"name": "CVE-2024-47732",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47732"
},
{
"name": "CVE-2024-47735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47735"
},
{
"name": "CVE-2024-47737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47737"
},
{
"name": "CVE-2024-47738",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47738"
},
{
"name": "CVE-2024-47739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47739"
},
{
"name": "CVE-2024-47741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47741"
},
{
"name": "CVE-2024-47742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47742"
},
{
"name": "CVE-2024-47743",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47743"
},
{
"name": "CVE-2024-47744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47744"
},
{
"name": "CVE-2024-47745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47745"
},
{
"name": "CVE-2024-47747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47747"
},
{
"name": "CVE-2024-47748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47748"
},
{
"name": "CVE-2024-47749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47749"
},
{
"name": "CVE-2024-47750",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47750"
},
{
"name": "CVE-2024-47751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47751"
},
{
"name": "CVE-2024-47752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47752"
},
{
"name": "CVE-2024-47753",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47753"
},
{
"name": "CVE-2024-47754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47754"
},
{
"name": "CVE-2024-47756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47756"
},
{
"name": "CVE-2024-47757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47757"
},
{
"name": "CVE-2024-49850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49850"
},
{
"name": "CVE-2024-49851",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49851"
},
{
"name": "CVE-2024-49852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49852"
},
{
"name": "CVE-2024-49853",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49853"
},
{
"name": "CVE-2024-49855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49855"
},
{
"name": "CVE-2024-49858",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49858"
},
{
"name": "CVE-2024-49860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49860"
},
{
"name": "CVE-2024-49861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49861"
},
{
"name": "CVE-2024-49862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49862"
},
{
"name": "CVE-2024-49863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49863"
},
{
"name": "CVE-2024-49864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49864"
},
{
"name": "CVE-2024-49866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49866"
},
{
"name": "CVE-2024-49867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49867"
},
{
"name": "CVE-2024-49870",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49870"
},
{
"name": "CVE-2024-49871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49871"
},
{
"name": "CVE-2024-49874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49874"
},
{
"name": "CVE-2024-49875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49875"
},
{
"name": "CVE-2024-49877",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49877"
},
{
"name": "CVE-2024-49878",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49878"
},
{
"name": "CVE-2024-49879",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49879"
},
{
"name": "CVE-2024-49881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49881"
},
{
"name": "CVE-2024-49882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49882"
},
{
"name": "CVE-2024-49883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49883"
},
{
"name": "CVE-2024-49886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49886"
},
{
"name": "CVE-2024-49888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49888"
},
{
"name": "CVE-2024-49890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49890"
},
{
"name": "CVE-2024-49891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49891"
},
{
"name": "CVE-2024-49892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49892"
},
{
"name": "CVE-2024-49894",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49894"
},
{
"name": "CVE-2024-49895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49895"
},
{
"name": "CVE-2024-49896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49896"
},
{
"name": "CVE-2024-49897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49897"
},
{
"name": "CVE-2024-49898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49898"
},
{
"name": "CVE-2024-49900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49900"
},
{
"name": "CVE-2024-49901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49901"
},
{
"name": "CVE-2024-49902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49902"
},
{
"name": "CVE-2024-49903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49903"
},
{
"name": "CVE-2024-49907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49907"
},
{
"name": "CVE-2024-49909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49909"
},
{
"name": "CVE-2024-49911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49911"
},
{
"name": "CVE-2024-49912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49912"
},
{
"name": "CVE-2024-49913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49913"
},
{
"name": "CVE-2024-49917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49917"
},
{
"name": "CVE-2024-49918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49918"
},
{
"name": "CVE-2024-49919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49919"
},
{
"name": "CVE-2024-49922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49922"
},
{
"name": "CVE-2024-49923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49923"
},
{
"name": "CVE-2024-49928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49928"
},
{
"name": "CVE-2024-49929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49929"
},
{
"name": "CVE-2024-49930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49930"
},
{
"name": "CVE-2024-49931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49931"
},
{
"name": "CVE-2024-49933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49933"
},
{
"name": "CVE-2024-49935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49935"
},
{
"name": "CVE-2024-49936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49936"
},
{
"name": "CVE-2024-49937",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49937"
},
{
"name": "CVE-2024-49938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49938"
},
{
"name": "CVE-2024-49939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49939"
},
{
"name": "CVE-2024-49946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49946"
},
{
"name": "CVE-2024-49947",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49947"
},
{
"name": "CVE-2024-49949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49949"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49953"
},
{
"name": "CVE-2024-49954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49954"
},
{
"name": "CVE-2024-49955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49955"
},
{
"name": "CVE-2024-49957",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49957"
},
{
"name": "CVE-2024-49958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49958"
},
{
"name": "CVE-2024-49959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49959"
},
{
"name": "CVE-2024-49960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49960"
},
{
"name": "CVE-2024-49961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49961"
},
{
"name": "CVE-2024-49962",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49962"
},
{
"name": "CVE-2024-49963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49963"
},
{
"name": "CVE-2024-49965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49965"
},
{
"name": "CVE-2024-49966",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49966"
},
{
"name": "CVE-2024-49969",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49969"
},
{
"name": "CVE-2024-49972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49972"
},
{
"name": "CVE-2024-49973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49973"
},
{
"name": "CVE-2024-49974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49974"
},
{
"name": "CVE-2024-49975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49975"
},
{
"name": "CVE-2024-49981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49981"
},
{
"name": "CVE-2024-49982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49982"
},
{
"name": "CVE-2024-49985",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49985"
},
{
"name": "CVE-2024-49986",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49986"
},
{
"name": "CVE-2024-49991",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49991"
},
{
"name": "CVE-2024-49995",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49995"
},
{
"name": "CVE-2024-49996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49996"
},
{
"name": "CVE-2024-50000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50000"
},
{
"name": "CVE-2024-50001",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50001"
},
{
"name": "CVE-2024-50002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50002"
},
{
"name": "CVE-2024-50006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50006"
},
{
"name": "CVE-2024-50007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50007"
},
{
"name": "CVE-2024-50008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50008"
},
{
"name": "CVE-2024-50013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50013"
},
{
"name": "CVE-2024-50014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50014"
},
{
"name": "CVE-2024-50015",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50015"
},
{
"name": "CVE-2024-50017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50017"
},
{
"name": "CVE-2024-50019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50019"
},
{
"name": "CVE-2024-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50020"
},
{
"name": "CVE-2024-50021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50021"
},
{
"name": "CVE-2024-50022",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50022"
},
{
"name": "CVE-2024-50023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50023"
},
{
"name": "CVE-2024-50024",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50024"
},
{
"name": "CVE-2024-50025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50025"
},
{
"name": "CVE-2024-50027",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50027"
},
{
"name": "CVE-2024-50028",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50028"
},
{
"name": "CVE-2024-50031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50031"
},
{
"name": "CVE-2024-50033",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50033"
},
{
"name": "CVE-2024-50035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50035"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2024-50041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50041"
},
{
"name": "CVE-2024-50042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50042"
},
{
"name": "CVE-2024-50044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50044"
},
{
"name": "CVE-2024-50045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50045"
},
{
"name": "CVE-2024-50046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50046"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50048"
},
{
"name": "CVE-2024-50049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50049"
},
{
"name": "CVE-2024-50055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50055"
},
{
"name": "CVE-2024-50058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50058"
},
{
"name": "CVE-2024-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50059"
},
{
"name": "CVE-2024-50060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50060"
},
{
"name": "CVE-2024-50061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50061"
},
{
"name": "CVE-2024-50062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50062"
},
{
"name": "CVE-2024-50063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50063"
},
{
"name": "CVE-2024-50064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50064"
},
{
"name": "CVE-2024-50069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50069"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50074"
},
{
"name": "CVE-2024-50075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50075"
},
{
"name": "CVE-2024-50076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50076"
},
{
"name": "CVE-2024-50077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50077"
},
{
"name": "CVE-2024-50078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50078"
},
{
"name": "CVE-2024-50080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50080"
},
{
"name": "CVE-2024-50081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50081"
},
{
"name": "CVE-2024-50012",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50012"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50072"
},
{
"name": "CVE-2024-50126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50126"
},
{
"name": "CVE-2024-50215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50215"
},
{
"name": "CVE-2024-50218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50218"
},
{
"name": "CVE-2024-50229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50229"
},
{
"name": "CVE-2024-50230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50230"
},
{
"name": "CVE-2024-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50232"
},
{
"name": "CVE-2024-50233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50233"
},
{
"name": "CVE-2024-50234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50234"
},
{
"name": "CVE-2024-50235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50235"
},
{
"name": "CVE-2024-50236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50236"
},
{
"name": "CVE-2024-50237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50237"
},
{
"name": "CVE-2024-50242",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50242"
},
{
"name": "CVE-2024-50243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50243"
},
{
"name": "CVE-2024-50244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50244"
},
{
"name": "CVE-2024-50245",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50245"
},
{
"name": "CVE-2024-50247",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50247"
},
{
"name": "CVE-2024-50249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50249"
},
{
"name": "CVE-2024-50250",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50250"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50255"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50257",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50257"
},
{
"name": "CVE-2024-50259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50259"
},
{
"name": "CVE-2024-50261",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50261"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50265",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50265"
},
{
"name": "CVE-2024-50267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50267"
},
{
"name": "CVE-2024-50268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50268"
},
{
"name": "CVE-2024-50269",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50269"
},
{
"name": "CVE-2024-50271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50271"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50273",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50273"
},
{
"name": "CVE-2024-50276",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50276"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50282"
},
{
"name": "CVE-2024-50283",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50283"
},
{
"name": "CVE-2024-50284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50284"
},
{
"name": "CVE-2024-50286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50286"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50292"
},
{
"name": "CVE-2024-50295",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50295"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2024-50302",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50302"
},
{
"name": "CVE-2024-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53042"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53052"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53058"
},
{
"name": "CVE-2024-53059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53059"
},
{
"name": "CVE-2024-53061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53061"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53066"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53081"
},
{
"name": "CVE-2024-53082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53082"
},
{
"name": "CVE-2024-53088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53088"
},
{
"name": "CVE-2024-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53093"
},
{
"name": "CVE-2024-50226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50226"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-49945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49945"
},
{
"name": "CVE-2024-50208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50208"
},
{
"name": "CVE-2024-50082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50082"
},
{
"name": "CVE-2024-50099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50099"
},
{
"name": "CVE-2024-50110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50110"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-50192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50192"
},
{
"name": "CVE-2024-47679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47679"
},
{
"name": "CVE-2024-47690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47690"
},
{
"name": "CVE-2024-47701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47701"
},
{
"name": "CVE-2024-47734",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47734"
},
{
"name": "CVE-2024-47740",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47740"
},
{
"name": "CVE-2024-49856",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49856"
},
{
"name": "CVE-2024-49868",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49868"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49889"
},
{
"name": "CVE-2024-49905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49905"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-49924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49924"
},
{
"name": "CVE-2024-49927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49927"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49948"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-49977",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49977"
},
{
"name": "CVE-2024-49983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49983"
},
{
"name": "CVE-2024-49997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49997"
},
{
"name": "CVE-2024-50003",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50003"
},
{
"name": "CVE-2024-50038",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50038"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50093"
},
{
"name": "CVE-2024-50095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50095"
},
{
"name": "CVE-2024-50096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50096"
},
{
"name": "CVE-2024-50179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50179"
},
{
"name": "CVE-2024-50180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50180"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2024-50184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50184"
},
{
"name": "CVE-2024-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50186"
},
{
"name": "CVE-2024-50188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50188"
},
{
"name": "CVE-2024-50189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50189"
},
{
"name": "CVE-2024-50191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50191"
},
{
"name": "CVE-2024-47703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47703"
},
{
"name": "CVE-2024-49934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49934"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2024-49976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49976"
},
{
"name": "CVE-2024-49987",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49987"
},
{
"name": "CVE-2024-49989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49989"
},
{
"name": "CVE-2024-50009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50009"
},
{
"name": "CVE-2024-50026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50026"
},
{
"name": "CVE-2024-50084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50084"
},
{
"name": "CVE-2024-50087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50087"
},
{
"name": "CVE-2024-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50088"
},
{
"name": "CVE-2024-50098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50098"
},
{
"name": "CVE-2024-50100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50100"
},
{
"name": "CVE-2024-50101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50101"
},
{
"name": "CVE-2024-50102",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50102"
},
{
"name": "CVE-2024-50103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50103"
},
{
"name": "CVE-2024-50108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50108"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50116"
},
{
"name": "CVE-2024-50117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50117"
},
{
"name": "CVE-2024-50121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50121"
},
{
"name": "CVE-2024-50124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50124"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-50127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50127"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50130"
},
{
"name": "CVE-2024-50131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50131"
},
{
"name": "CVE-2024-50134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50134"
},
{
"name": "CVE-2024-50135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50135"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50138"
},
{
"name": "CVE-2024-50139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50139"
},
{
"name": "CVE-2024-50141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50141"
},
{
"name": "CVE-2024-50145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50145"
},
{
"name": "CVE-2024-50146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50146"
},
{
"name": "CVE-2024-50147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50147"
},
{
"name": "CVE-2024-50148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50148"
},
{
"name": "CVE-2024-50150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50150"
},
{
"name": "CVE-2024-50153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50153"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50155"
},
{
"name": "CVE-2024-50156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50156"
},
{
"name": "CVE-2024-50157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50157"
},
{
"name": "CVE-2024-50158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50158"
},
{
"name": "CVE-2024-50159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50159"
},
{
"name": "CVE-2024-50160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50160"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50167"
},
{
"name": "CVE-2024-50169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50169"
},
{
"name": "CVE-2024-50171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50171"
},
{
"name": "CVE-2024-50172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50172"
},
{
"name": "CVE-2024-50175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50175"
},
{
"name": "CVE-2024-50176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50176"
},
{
"name": "CVE-2024-50177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50177"
},
{
"name": "CVE-2024-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50182"
},
{
"name": "CVE-2024-50183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50183"
},
{
"name": "CVE-2024-50187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50187"
},
{
"name": "CVE-2024-50194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50194"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50196"
},
{
"name": "CVE-2024-50198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50198"
},
{
"name": "CVE-2024-50200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50200"
},
{
"name": "CVE-2024-50201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50201"
},
{
"name": "CVE-2024-50205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50205"
},
{
"name": "CVE-2024-50209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50209"
},
{
"name": "CVE-2024-50216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50216"
},
{
"name": "CVE-2024-50221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50221"
},
{
"name": "CVE-2024-50224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50224"
},
{
"name": "CVE-2024-50225",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50225"
},
{
"name": "CVE-2024-50231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50231"
},
{
"name": "CVE-2024-50240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50240"
},
{
"name": "CVE-2024-50246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50246"
},
{
"name": "CVE-2024-50248",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50248"
},
{
"name": "CVE-2024-50274",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50274"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-50289",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50289"
},
{
"name": "CVE-2024-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50298"
},
{
"name": "CVE-2024-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53045"
},
{
"name": "CVE-2024-53048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53048"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-53068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53068"
},
{
"name": "CVE-2024-53074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53074"
},
{
"name": "CVE-2024-53076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53076"
},
{
"name": "CVE-2024-53079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53079"
},
{
"name": "CVE-2024-53085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53085"
},
{
"name": "CVE-2024-53094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53094"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53100"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53106"
},
{
"name": "CVE-2024-53108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53108"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-49859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49859"
},
{
"name": "CVE-2024-49978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49978"
},
{
"name": "CVE-2024-49992",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49992"
},
{
"name": "CVE-2024-50010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50010"
},
{
"name": "CVE-2024-50083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50083"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50086"
},
{
"name": "CVE-2024-50133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50133"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50162"
},
{
"name": "CVE-2024-50163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50163"
},
{
"name": "CVE-2024-50168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50168"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50193"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53097",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53097"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-49951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49951"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50106"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-53164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53164"
},
{
"name": "CVE-2024-56672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56672"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56741"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-53047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53047"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-53187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53187"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-56658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
},
{
"name": "CVE-2024-56679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56679"
},
{
"name": "CVE-2024-56693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56693"
},
{
"name": "CVE-2024-56707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56707"
},
{
"name": "CVE-2024-56725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56725"
},
{
"name": "CVE-2024-56726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56726"
},
{
"name": "CVE-2024-56727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56727"
},
{
"name": "CVE-2024-56728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56728"
},
{
"name": "CVE-2024-49994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49994"
},
{
"name": "CVE-2024-50164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50164"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2024-56703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56703"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2022-49034",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49034"
},
{
"name": "CVE-2024-46869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46869"
},
{
"name": "CVE-2024-47676",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47676"
},
{
"name": "CVE-2024-47677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47677"
},
{
"name": "CVE-2024-47680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47680"
},
{
"name": "CVE-2024-47689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47689"
},
{
"name": "CVE-2024-47691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47691"
},
{
"name": "CVE-2024-47694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47694"
},
{
"name": "CVE-2024-47700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47700"
},
{
"name": "CVE-2024-47708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47708"
},
{
"name": "CVE-2024-47711",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47711"
},
{
"name": "CVE-2024-47716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47716"
},
{
"name": "CVE-2024-47717",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47717"
},
{
"name": "CVE-2024-47721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47721"
},
{
"name": "CVE-2024-47724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47724"
},
{
"name": "CVE-2024-47726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47726"
},
{
"name": "CVE-2024-47733",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47733"
},
{
"name": "CVE-2024-47736",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47736"
},
{
"name": "CVE-2024-47746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47746"
},
{
"name": "CVE-2024-49857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49857"
},
{
"name": "CVE-2024-49865",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49865"
},
{
"name": "CVE-2024-49869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49869"
},
{
"name": "CVE-2024-49872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49872"
},
{
"name": "CVE-2024-49873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49873"
},
{
"name": "CVE-2024-49876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49876"
},
{
"name": "CVE-2024-49880",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49880"
},
{
"name": "CVE-2024-49885",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49885"
},
{
"name": "CVE-2024-49887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49887"
},
{
"name": "CVE-2024-49926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49926"
},
{
"name": "CVE-2024-49932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49932"
},
{
"name": "CVE-2024-49940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49940"
},
{
"name": "CVE-2024-49941",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49941"
},
{
"name": "CVE-2024-49942",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49942"
},
{
"name": "CVE-2024-49943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49943"
},
{
"name": "CVE-2024-49956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49956"
},
{
"name": "CVE-2024-49964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49964"
},
{
"name": "CVE-2024-49970",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49970"
},
{
"name": "CVE-2024-49971",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49971"
},
{
"name": "CVE-2024-49979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49979"
},
{
"name": "CVE-2024-49980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49980"
},
{
"name": "CVE-2024-49988",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49988"
},
{
"name": "CVE-2024-49999",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49999"
},
{
"name": "CVE-2024-50005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50005"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50030"
},
{
"name": "CVE-2024-50034",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50034"
},
{
"name": "CVE-2024-50037",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50037"
},
{
"name": "CVE-2024-50043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50043"
},
{
"name": "CVE-2024-50056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50056"
},
{
"name": "CVE-2024-50057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50057"
},
{
"name": "CVE-2024-50065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50065"
},
{
"name": "CVE-2024-50066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50066"
},
{
"name": "CVE-2024-50068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50068"
},
{
"name": "CVE-2024-50070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50070"
},
{
"name": "CVE-2024-50071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50071"
},
{
"name": "CVE-2024-50079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50079"
},
{
"name": "CVE-2024-50090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50090"
},
{
"name": "CVE-2024-50091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50091"
},
{
"name": "CVE-2024-50092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50092"
},
{
"name": "CVE-2024-50094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50094"
},
{
"name": "CVE-2024-50104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50104"
},
{
"name": "CVE-2024-50105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50105"
},
{
"name": "CVE-2024-50107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50107"
},
{
"name": "CVE-2024-50109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50109"
},
{
"name": "CVE-2024-50111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50111"
},
{
"name": "CVE-2024-50112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50112"
},
{
"name": "CVE-2024-50113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50113"
},
{
"name": "CVE-2024-50114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50114"
},
{
"name": "CVE-2024-50118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50118"
},
{
"name": "CVE-2024-50119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50119"
},
{
"name": "CVE-2024-50120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50120"
},
{
"name": "CVE-2024-50122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50122"
},
{
"name": "CVE-2024-50123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50123"
},
{
"name": "CVE-2024-50129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50129"
},
{
"name": "CVE-2024-50132",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50132"
},
{
"name": "CVE-2024-50137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50137"
},
{
"name": "CVE-2024-50140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50140"
},
{
"name": "CVE-2024-50144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50144"
},
{
"name": "CVE-2024-50149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50149"
},
{
"name": "CVE-2024-50152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50152"
},
{
"name": "CVE-2024-50161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50161"
},
{
"name": "CVE-2024-50165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50165"
},
{
"name": "CVE-2024-50170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50170"
},
{
"name": "CVE-2024-50173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50173"
},
{
"name": "CVE-2024-50174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50174"
},
{
"name": "CVE-2024-50178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50178"
},
{
"name": "CVE-2024-50190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50190"
},
{
"name": "CVE-2024-50197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50197"
},
{
"name": "CVE-2024-50204",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50204"
},
{
"name": "CVE-2024-50206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50206"
},
{
"name": "CVE-2024-50207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50207"
},
{
"name": "CVE-2024-50212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50212"
},
{
"name": "CVE-2024-50213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50213"
},
{
"name": "CVE-2024-50214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50214"
},
{
"name": "CVE-2024-50217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50217"
},
{
"name": "CVE-2024-50220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50220"
},
{
"name": "CVE-2024-50222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50222"
},
{
"name": "CVE-2024-50223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50223"
},
{
"name": "CVE-2024-50227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50227"
},
{
"name": "CVE-2024-50238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50238"
},
{
"name": "CVE-2024-50239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50239"
},
{
"name": "CVE-2024-50253",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50253"
},
{
"name": "CVE-2024-50254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50254"
},
{
"name": "CVE-2024-50260",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50260"
},
{
"name": "CVE-2024-50263",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50263"
},
{
"name": "CVE-2024-50266",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50266"
},
{
"name": "CVE-2024-50270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50270"
},
{
"name": "CVE-2024-50277",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50277"
},
{
"name": "CVE-2024-50281",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50281"
},
{
"name": "CVE-2024-50285",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50285"
},
{
"name": "CVE-2024-50288",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50288"
},
{
"name": "CVE-2024-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50291"
},
{
"name": "CVE-2024-50293",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50293"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-50297",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50297"
},
{
"name": "CVE-2024-50300",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50300"
},
{
"name": "CVE-2024-50303",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50303"
},
{
"name": "CVE-2024-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53044"
},
{
"name": "CVE-2024-53046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53046"
},
{
"name": "CVE-2024-53049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53049"
},
{
"name": "CVE-2024-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53053"
},
{
"name": "CVE-2024-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53062"
},
{
"name": "CVE-2024-53065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53065"
},
{
"name": "CVE-2024-53067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53067"
},
{
"name": "CVE-2024-53069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53069"
},
{
"name": "CVE-2024-53071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53071"
},
{
"name": "CVE-2024-53075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53075"
},
{
"name": "CVE-2024-53077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53077"
},
{
"name": "CVE-2024-53078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53078"
},
{
"name": "CVE-2024-53080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53080"
},
{
"name": "CVE-2024-53083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53083"
},
{
"name": "CVE-2024-53084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53084"
},
{
"name": "CVE-2024-53086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53086"
},
{
"name": "CVE-2024-53087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53087"
},
{
"name": "CVE-2024-53089",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53089"
},
{
"name": "CVE-2024-53092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53092"
},
{
"name": "CVE-2024-53098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53098"
},
{
"name": "CVE-2024-53107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53107"
},
{
"name": "CVE-2024-53109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53109"
},
{
"name": "CVE-2024-53115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53115"
},
{
"name": "CVE-2024-53116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53116"
},
{
"name": "CVE-2024-53132",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53132"
},
{
"name": "CVE-2024-53137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53137"
},
{
"name": "CVE-2024-53139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53139"
},
{
"name": "CVE-2024-53143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53143"
},
{
"name": "CVE-2024-53145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53145"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53149"
},
{
"name": "CVE-2024-53152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53152"
},
{
"name": "CVE-2024-53153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53153"
},
{
"name": "CVE-2024-53163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53163"
},
{
"name": "CVE-2024-53165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53165"
},
{
"name": "CVE-2024-53167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53167"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53181"
},
{
"name": "CVE-2024-53183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53183"
},
{
"name": "CVE-2024-53184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53184"
},
{
"name": "CVE-2024-53189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53189"
},
{
"name": "CVE-2024-53192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53192"
},
{
"name": "CVE-2024-53193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53193"
},
{
"name": "CVE-2024-53199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53199"
},
{
"name": "CVE-2024-53212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53212"
},
{
"name": "CVE-2024-53218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53218"
},
{
"name": "CVE-2024-53219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53219"
},
{
"name": "CVE-2024-53220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53220"
},
{
"name": "CVE-2024-53221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53221"
},
{
"name": "CVE-2024-53223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53223"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-53228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53228"
},
{
"name": "CVE-2024-56534",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56534"
},
{
"name": "CVE-2024-56535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56535"
},
{
"name": "CVE-2024-56537",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56537"
},
{
"name": "CVE-2024-56540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56540"
},
{
"name": "CVE-2024-56541",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56541"
},
{
"name": "CVE-2024-56544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56544"
},
{
"name": "CVE-2024-56545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56545"
},
{
"name": "CVE-2024-56674",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56674"
},
{
"name": "CVE-2024-56680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56680"
},
{
"name": "CVE-2024-56684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56684"
},
{
"name": "CVE-2024-56685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56685"
},
{
"name": "CVE-2024-56689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56689"
},
{
"name": "CVE-2024-56692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56692"
},
{
"name": "CVE-2024-56696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56696"
},
{
"name": "CVE-2024-56697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56697"
},
{
"name": "CVE-2024-56699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56699"
},
{
"name": "CVE-2024-56702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56702"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2024-56742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56742"
},
{
"name": "CVE-2024-56744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56744"
},
{
"name": "CVE-2024-56749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56749"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2025-0927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0927"
},
{
"name": "CVE-2024-56542",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56542"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0185",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-03-07T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux d\u0027Ubuntu. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, un d\u00e9ni de service et un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7327-1",
"url": "https://ubuntu.com/security/notices/USN-7327-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7325-1",
"url": "https://ubuntu.com/security/notices/USN-7325-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7324-1",
"url": "https://ubuntu.com/security/notices/USN-7324-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7328-1",
"url": "https://ubuntu.com/security/notices/USN-7328-1"
},
{
"published_at": "2025-03-03",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7294-4",
"url": "https://ubuntu.com/security/notices/USN-7294-4"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7323-1",
"url": "https://ubuntu.com/security/notices/USN-7323-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7332-1",
"url": "https://ubuntu.com/security/notices/USN-7332-1"
},
{
"published_at": "2025-03-03",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7303-3",
"url": "https://ubuntu.com/security/notices/USN-7303-3"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7311-1",
"url": "https://ubuntu.com/security/notices/USN-7311-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7322-1",
"url": "https://ubuntu.com/security/notices/USN-7322-1"
},
{
"published_at": "2025-03-06",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7323-2",
"url": "https://ubuntu.com/security/notices/USN-7323-2"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7333-1",
"url": "https://ubuntu.com/security/notices/USN-7333-1"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7303-2",
"url": "https://ubuntu.com/security/notices/USN-7303-2"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7329-1",
"url": "https://ubuntu.com/security/notices/USN-7329-1"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7310-1",
"url": "https://ubuntu.com/security/notices/USN-7310-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7331-1",
"url": "https://ubuntu.com/security/notices/USN-7331-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7326-1",
"url": "https://ubuntu.com/security/notices/USN-7326-1"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7294-3",
"url": "https://ubuntu.com/security/notices/USN-7294-3"
}
]
}
CERTFR-2025-AVI-0349
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et une atteinte à la confidentialité des données
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 24.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 18.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.10",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 22.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-26718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26718"
},
{
"name": "CVE-2021-47119",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47119"
},
{
"name": "CVE-2021-47219",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47219"
},
{
"name": "CVE-2024-23848",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23848"
},
{
"name": "CVE-2024-26915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26915"
},
{
"name": "CVE-2024-26928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26928"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-35887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35887"
},
{
"name": "CVE-2024-35958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35958"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-40953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40953"
},
{
"name": "CVE-2024-38588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38588"
},
{
"name": "CVE-2024-26837",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26837"
},
{
"name": "CVE-2024-41014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41014"
},
{
"name": "CVE-2024-39497",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39497"
},
{
"name": "CVE-2024-41066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41066"
},
{
"name": "CVE-2024-42122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42122"
},
{
"name": "CVE-2024-40965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40965"
},
{
"name": "CVE-2023-52913",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52913"
},
{
"name": "CVE-2024-41080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41080"
},
{
"name": "CVE-2024-42069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42069"
},
{
"name": "CVE-2024-42291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42291"
},
{
"name": "CVE-2024-42315",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42315"
},
{
"name": "CVE-2024-43900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43900"
},
{
"name": "CVE-2024-44938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44938"
},
{
"name": "CVE-2024-46784",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46784"
},
{
"name": "CVE-2024-46826",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46826"
},
{
"name": "CVE-2024-42252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42252"
},
{
"name": "CVE-2024-46809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46809"
},
{
"name": "CVE-2024-46841",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46841"
},
{
"name": "CVE-2024-46871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46871"
},
{
"name": "CVE-2024-47707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47707"
},
{
"name": "CVE-2024-47730",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47730"
},
{
"name": "CVE-2024-49899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49899"
},
{
"name": "CVE-2024-49906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49906"
},
{
"name": "CVE-2024-49914",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49914"
},
{
"name": "CVE-2024-49920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49920"
},
{
"name": "CVE-2024-49936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49936"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49972"
},
{
"name": "CVE-2024-49974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49974"
},
{
"name": "CVE-2024-49996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49996"
},
{
"name": "CVE-2024-50019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50019"
},
{
"name": "CVE-2024-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50020"
},
{
"name": "CVE-2024-50021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50021"
},
{
"name": "CVE-2024-50022",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50022"
},
{
"name": "CVE-2024-50023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50023"
},
{
"name": "CVE-2024-50024",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50024"
},
{
"name": "CVE-2024-50025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50025"
},
{
"name": "CVE-2024-50027",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50027"
},
{
"name": "CVE-2024-50028",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50028"
},
{
"name": "CVE-2024-50031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50031"
},
{
"name": "CVE-2024-50033",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50033"
},
{
"name": "CVE-2024-50035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50035"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2024-50041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50041"
},
{
"name": "CVE-2024-50042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50042"
},
{
"name": "CVE-2024-50044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50044"
},
{
"name": "CVE-2024-50045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50045"
},
{
"name": "CVE-2024-50046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50046"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50048"
},
{
"name": "CVE-2024-50049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50049"
},
{
"name": "CVE-2024-50055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50055"
},
{
"name": "CVE-2024-50058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50058"
},
{
"name": "CVE-2024-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50059"
},
{
"name": "CVE-2024-50060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50060"
},
{
"name": "CVE-2024-50061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50061"
},
{
"name": "CVE-2024-50062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50062"
},
{
"name": "CVE-2024-50063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50063"
},
{
"name": "CVE-2024-50064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50064"
},
{
"name": "CVE-2024-50069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50069"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50074"
},
{
"name": "CVE-2024-50075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50075"
},
{
"name": "CVE-2024-50076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50076"
},
{
"name": "CVE-2024-50077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50077"
},
{
"name": "CVE-2024-50078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50078"
},
{
"name": "CVE-2024-50080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50080"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50072"
},
{
"name": "CVE-2024-50126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50126"
},
{
"name": "CVE-2024-50215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50215"
},
{
"name": "CVE-2024-50218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50218"
},
{
"name": "CVE-2024-50229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50229"
},
{
"name": "CVE-2024-50230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50230"
},
{
"name": "CVE-2024-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50232"
},
{
"name": "CVE-2024-50233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50233"
},
{
"name": "CVE-2024-50234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50234"
},
{
"name": "CVE-2024-50235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50235"
},
{
"name": "CVE-2024-50236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50236"
},
{
"name": "CVE-2024-50237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50237"
},
{
"name": "CVE-2024-50242",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50242"
},
{
"name": "CVE-2024-50243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50243"
},
{
"name": "CVE-2024-50244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50244"
},
{
"name": "CVE-2024-50245",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50245"
},
{
"name": "CVE-2024-50247",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50247"
},
{
"name": "CVE-2024-50249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50249"
},
{
"name": "CVE-2024-50250",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50250"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50255"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50257",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50257"
},
{
"name": "CVE-2024-50259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50259"
},
{
"name": "CVE-2024-50261",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50261"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50265",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50265"
},
{
"name": "CVE-2024-50267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50267"
},
{
"name": "CVE-2024-50268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50268"
},
{
"name": "CVE-2024-50269",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50269"
},
{
"name": "CVE-2024-50271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50271"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50273",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50273"
},
{
"name": "CVE-2024-50276",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50276"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50282"
},
{
"name": "CVE-2024-50283",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50283"
},
{
"name": "CVE-2024-50284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50284"
},
{
"name": "CVE-2024-50286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50286"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50292"
},
{
"name": "CVE-2024-50295",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50295"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2024-50302",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50302"
},
{
"name": "CVE-2024-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53042"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53052"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53058"
},
{
"name": "CVE-2024-53059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53059"
},
{
"name": "CVE-2024-53060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53060"
},
{
"name": "CVE-2024-53061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53061"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53066"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53081"
},
{
"name": "CVE-2024-53082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53082"
},
{
"name": "CVE-2024-53088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53088"
},
{
"name": "CVE-2024-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53093"
},
{
"name": "CVE-2024-50226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50226"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-50208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50208"
},
{
"name": "CVE-2024-50082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50082"
},
{
"name": "CVE-2024-50099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50099"
},
{
"name": "CVE-2024-50110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50110"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-50192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50192"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49893"
},
{
"name": "CVE-2024-49921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49921"
},
{
"name": "CVE-2024-50038",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50038"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50093"
},
{
"name": "CVE-2024-50095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50095"
},
{
"name": "CVE-2024-50096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50096"
},
{
"name": "CVE-2024-50180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50180"
},
{
"name": "CVE-2024-50184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50184"
},
{
"name": "CVE-2024-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50186"
},
{
"name": "CVE-2024-50188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50188"
},
{
"name": "CVE-2024-50189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50189"
},
{
"name": "CVE-2024-50191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50191"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2024-50009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50009"
},
{
"name": "CVE-2024-50026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50026"
},
{
"name": "CVE-2024-50084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50084"
},
{
"name": "CVE-2024-50087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50087"
},
{
"name": "CVE-2024-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50088"
},
{
"name": "CVE-2024-50098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50098"
},
{
"name": "CVE-2024-50101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50101"
},
{
"name": "CVE-2024-50103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50103"
},
{
"name": "CVE-2024-50108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50108"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50116"
},
{
"name": "CVE-2024-50117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50117"
},
{
"name": "CVE-2024-50121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50121"
},
{
"name": "CVE-2024-50124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50124"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-50127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50127"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50130"
},
{
"name": "CVE-2024-50131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50131"
},
{
"name": "CVE-2024-50134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50134"
},
{
"name": "CVE-2024-50135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50135"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50138"
},
{
"name": "CVE-2024-50139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50139"
},
{
"name": "CVE-2024-50141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50141"
},
{
"name": "CVE-2024-50145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50145"
},
{
"name": "CVE-2024-50146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50146"
},
{
"name": "CVE-2024-50147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50147"
},
{
"name": "CVE-2024-50148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50148"
},
{
"name": "CVE-2024-50150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50150"
},
{
"name": "CVE-2024-50153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50153"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50155"
},
{
"name": "CVE-2024-50156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50156"
},
{
"name": "CVE-2024-50158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50158"
},
{
"name": "CVE-2024-50159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50159"
},
{
"name": "CVE-2024-50160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50160"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50167"
},
{
"name": "CVE-2024-50169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50169"
},
{
"name": "CVE-2024-50171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50171"
},
{
"name": "CVE-2024-50172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50172"
},
{
"name": "CVE-2024-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50182"
},
{
"name": "CVE-2024-50183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50183"
},
{
"name": "CVE-2024-50187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50187"
},
{
"name": "CVE-2024-50194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50194"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50196"
},
{
"name": "CVE-2024-50198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50198"
},
{
"name": "CVE-2024-50200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50200"
},
{
"name": "CVE-2024-50201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50201"
},
{
"name": "CVE-2024-50205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50205"
},
{
"name": "CVE-2024-50209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50209"
},
{
"name": "CVE-2024-50210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50210"
},
{
"name": "CVE-2024-50216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50216"
},
{
"name": "CVE-2024-50221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50221"
},
{
"name": "CVE-2024-50224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50224"
},
{
"name": "CVE-2024-50225",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50225"
},
{
"name": "CVE-2024-50231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50231"
},
{
"name": "CVE-2024-50240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50240"
},
{
"name": "CVE-2024-50246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50246"
},
{
"name": "CVE-2024-50248",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50248"
},
{
"name": "CVE-2024-50274",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50274"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-50289",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50289"
},
{
"name": "CVE-2024-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50298"
},
{
"name": "CVE-2024-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53045"
},
{
"name": "CVE-2024-53048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53048"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53068"
},
{
"name": "CVE-2024-53076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53076"
},
{
"name": "CVE-2024-53079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53079"
},
{
"name": "CVE-2024-53085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53085"
},
{
"name": "CVE-2024-53094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53094"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53096"
},
{
"name": "CVE-2024-53100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53100"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53106"
},
{
"name": "CVE-2024-53108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53108"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-50010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50010"
},
{
"name": "CVE-2024-50083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50083"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50086"
},
{
"name": "CVE-2024-50133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50133"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50162"
},
{
"name": "CVE-2024-50163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50163"
},
{
"name": "CVE-2024-50168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50168"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50193"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53097",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53097"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-36476",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36476"
},
{
"name": "CVE-2024-45828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45828"
},
{
"name": "CVE-2024-47141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47141"
},
{
"name": "CVE-2024-47143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47143"
},
{
"name": "CVE-2024-47809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47809"
},
{
"name": "CVE-2024-48873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48873"
},
{
"name": "CVE-2024-48881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48881"
},
{
"name": "CVE-2024-49569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49569"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50051"
},
{
"name": "CVE-2024-52332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52332"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53185"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-53685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53685"
},
{
"name": "CVE-2024-53690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53690"
},
{
"name": "CVE-2024-55881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55881"
},
{
"name": "CVE-2024-55916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55916"
},
{
"name": "CVE-2024-56369",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56369"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-56557",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56557"
},
{
"name": "CVE-2024-56558",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56558"
},
{
"name": "CVE-2024-56568",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56568"
},
{
"name": "CVE-2024-56569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56569"
},
{
"name": "CVE-2024-56572",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56572"
},
{
"name": "CVE-2024-56573",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56573"
},
{
"name": "CVE-2024-56574",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56574"
},
{
"name": "CVE-2024-56577",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56577"
},
{
"name": "CVE-2024-56578",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56578"
},
{
"name": "CVE-2024-56584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56584"
},
{
"name": "CVE-2024-56587",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56587"
},
{
"name": "CVE-2024-56588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56588"
},
{
"name": "CVE-2024-56589",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56589"
},
{
"name": "CVE-2024-56590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56590"
},
{
"name": "CVE-2024-56593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56593"
},
{
"name": "CVE-2024-56594",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56594"
},
{
"name": "CVE-2024-56595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56595"
},
{
"name": "CVE-2024-56596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56596"
},
{
"name": "CVE-2024-56597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56597"
},
{
"name": "CVE-2024-56602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56602"
},
{
"name": "CVE-2024-56603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56603"
},
{
"name": "CVE-2024-56606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56606"
},
{
"name": "CVE-2024-56607",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56607"
},
{
"name": "CVE-2024-56609",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56609"
},
{
"name": "CVE-2024-56611",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56611"
},
{
"name": "CVE-2024-56614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56614"
},
{
"name": "CVE-2024-56615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56615"
},
{
"name": "CVE-2024-56616",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56616"
},
{
"name": "CVE-2024-56620",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56620"
},
{
"name": "CVE-2024-56622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56622"
},
{
"name": "CVE-2024-56623",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56623"
},
{
"name": "CVE-2024-56625",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56625"
},
{
"name": "CVE-2024-56629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56629"
},
{
"name": "CVE-2024-56630",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56630"
},
{
"name": "CVE-2024-56632",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56632"
},
{
"name": "CVE-2024-56634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56634"
},
{
"name": "CVE-2024-56635",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56635"
},
{
"name": "CVE-2024-56636",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56636"
},
{
"name": "CVE-2024-56637",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56637"
},
{
"name": "CVE-2024-56641",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56641"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56643"
},
{
"name": "CVE-2024-56644",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56644"
},
{
"name": "CVE-2024-56648",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56648"
},
{
"name": "CVE-2024-56649",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56649"
},
{
"name": "CVE-2024-56651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56651"
},
{
"name": "CVE-2024-56659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56659"
},
{
"name": "CVE-2024-56662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56662"
},
{
"name": "CVE-2024-56663",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56663"
},
{
"name": "CVE-2024-56670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56670"
},
{
"name": "CVE-2024-56672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56672"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56716"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-56759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56759"
},
{
"name": "CVE-2024-56765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56765"
},
{
"name": "CVE-2024-56767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56767"
},
{
"name": "CVE-2024-56769",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56769"
},
{
"name": "CVE-2024-56774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56774"
},
{
"name": "CVE-2024-56775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56775"
},
{
"name": "CVE-2024-56776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56776"
},
{
"name": "CVE-2024-56777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56777"
},
{
"name": "CVE-2024-56778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56778"
},
{
"name": "CVE-2024-56779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56779"
},
{
"name": "CVE-2024-56780",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56780"
},
{
"name": "CVE-2024-56787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56787"
},
{
"name": "CVE-2024-57791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57791"
},
{
"name": "CVE-2024-57792",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57792"
},
{
"name": "CVE-2024-57798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57798"
},
{
"name": "CVE-2024-57838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57838"
},
{
"name": "CVE-2024-57849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57849"
},
{
"name": "CVE-2024-57850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57850"
},
{
"name": "CVE-2024-57874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57874"
},
{
"name": "CVE-2024-57876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57876"
},
{
"name": "CVE-2024-57890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57890"
},
{
"name": "CVE-2024-57892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57892"
},
{
"name": "CVE-2024-57896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57896"
},
{
"name": "CVE-2024-57897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57897"
},
{
"name": "CVE-2024-57903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57903"
},
{
"name": "CVE-2024-57904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57904"
},
{
"name": "CVE-2024-57906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57906"
},
{
"name": "CVE-2024-57907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57907"
},
{
"name": "CVE-2024-57908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57908"
},
{
"name": "CVE-2024-57910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57910"
},
{
"name": "CVE-2024-57911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57911"
},
{
"name": "CVE-2024-57912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57912"
},
{
"name": "CVE-2024-57913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57913"
},
{
"name": "CVE-2024-57922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57922"
},
{
"name": "CVE-2024-57929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57929"
},
{
"name": "CVE-2024-57940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57940"
},
{
"name": "CVE-2025-21646",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21646"
},
{
"name": "CVE-2024-53047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53047"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-53187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53187"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-56592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56592"
},
{
"name": "CVE-2024-56600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56600"
},
{
"name": "CVE-2024-56601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56601"
},
{
"name": "CVE-2024-56608",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56608"
},
{
"name": "CVE-2024-56610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56610"
},
{
"name": "CVE-2024-56650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56650"
},
{
"name": "CVE-2024-56658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
},
{
"name": "CVE-2024-56679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56679"
},
{
"name": "CVE-2024-56693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56693"
},
{
"name": "CVE-2024-56707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56707"
},
{
"name": "CVE-2024-56715",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56715"
},
{
"name": "CVE-2024-56725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56725"
},
{
"name": "CVE-2024-56726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56726"
},
{
"name": "CVE-2024-56727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56727"
},
{
"name": "CVE-2024-56728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56728"
},
{
"name": "CVE-2024-56763",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56763"
},
{
"name": "CVE-2024-57802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57802"
},
{
"name": "CVE-2024-57882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57882"
},
{
"name": "CVE-2024-57884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57884"
},
{
"name": "CVE-2024-57917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57917"
},
{
"name": "CVE-2024-57931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57931"
},
{
"name": "CVE-2024-57938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57938"
},
{
"name": "CVE-2024-57946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57946"
},
{
"name": "CVE-2025-21653",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21653"
},
{
"name": "CVE-2025-21664",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21664"
},
{
"name": "CVE-2025-21666",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21666"
},
{
"name": "CVE-2025-21669",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21669"
},
{
"name": "CVE-2025-21670",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21670"
},
{
"name": "CVE-2025-21674",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21674"
},
{
"name": "CVE-2025-21675",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21675"
},
{
"name": "CVE-2025-21676",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21676"
},
{
"name": "CVE-2025-21678",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21678"
},
{
"name": "CVE-2025-21682",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21682"
},
{
"name": "CVE-2024-50164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50164"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2024-56703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56703"
},
{
"name": "CVE-2024-57925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57925"
},
{
"name": "CVE-2024-57939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57939"
},
{
"name": "CVE-2024-57948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57948"
},
{
"name": "CVE-2025-21631",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21631"
},
{
"name": "CVE-2025-21636",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21636"
},
{
"name": "CVE-2025-21637",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21637"
},
{
"name": "CVE-2025-21638",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21638"
},
{
"name": "CVE-2025-21639",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21639"
},
{
"name": "CVE-2025-21640",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21640"
},
{
"name": "CVE-2025-21648",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21648"
},
{
"name": "CVE-2025-21665",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21665"
},
{
"name": "CVE-2025-21667",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21667"
},
{
"name": "CVE-2025-21668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21668"
},
{
"name": "CVE-2025-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21680"
},
{
"name": "CVE-2025-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21681"
},
{
"name": "CVE-2025-21683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21683"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2024-56633",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56633"
},
{
"name": "CVE-2025-21673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21673"
},
{
"name": "CVE-2022-49034",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49034"
},
{
"name": "CVE-2024-47711",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47711"
},
{
"name": "CVE-2024-47726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47726"
},
{
"name": "CVE-2024-49865",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49865"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50030"
},
{
"name": "CVE-2024-50056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50056"
},
{
"name": "CVE-2024-50057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50057"
},
{
"name": "CVE-2024-50065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50065"
},
{
"name": "CVE-2024-50066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50066"
},
{
"name": "CVE-2024-50068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50068"
},
{
"name": "CVE-2024-50070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50070"
},
{
"name": "CVE-2024-50090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50090"
},
{
"name": "CVE-2024-50104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50104"
},
{
"name": "CVE-2024-50105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50105"
},
{
"name": "CVE-2024-50107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50107"
},
{
"name": "CVE-2024-50111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50111"
},
{
"name": "CVE-2024-50112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50112"
},
{
"name": "CVE-2024-50118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50118"
},
{
"name": "CVE-2024-50120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50120"
},
{
"name": "CVE-2024-50137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50137"
},
{
"name": "CVE-2024-50140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50140"
},
{
"name": "CVE-2024-50152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50152"
},
{
"name": "CVE-2024-50170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50170"
},
{
"name": "CVE-2024-50197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50197"
},
{
"name": "CVE-2024-50206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50206"
},
{
"name": "CVE-2024-50207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50207"
},
{
"name": "CVE-2024-50220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50220"
},
{
"name": "CVE-2024-50222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50222"
},
{
"name": "CVE-2024-50223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50223"
},
{
"name": "CVE-2024-50238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50238"
},
{
"name": "CVE-2024-50239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50239"
},
{
"name": "CVE-2024-50263",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50263"
},
{
"name": "CVE-2024-50270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50270"
},
{
"name": "CVE-2024-50285",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50285"
},
{
"name": "CVE-2024-50288",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50288"
},
{
"name": "CVE-2024-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50291"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-50297",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50297"
},
{
"name": "CVE-2024-50300",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50300"
},
{
"name": "CVE-2024-50303",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50303"
},
{
"name": "CVE-2024-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53044"
},
{
"name": "CVE-2024-53046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53046"
},
{
"name": "CVE-2024-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53053"
},
{
"name": "CVE-2024-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53062"
},
{
"name": "CVE-2024-53067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53067"
},
{
"name": "CVE-2024-53083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53083"
},
{
"name": "CVE-2024-53084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53084"
},
{
"name": "CVE-2024-53086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53086"
},
{
"name": "CVE-2024-53087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53087"
},
{
"name": "CVE-2024-53089",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53089"
},
{
"name": "CVE-2024-53107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53107"
},
{
"name": "CVE-2024-53109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53109"
},
{
"name": "CVE-2024-53115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53115"
},
{
"name": "CVE-2024-53139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53139"
},
{
"name": "CVE-2024-53145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53145"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53163"
},
{
"name": "CVE-2024-53165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53165"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53181"
},
{
"name": "CVE-2024-53183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53183"
},
{
"name": "CVE-2024-53184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53184"
},
{
"name": "CVE-2024-53218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53218"
},
{
"name": "CVE-2024-53219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53219"
},
{
"name": "CVE-2024-53220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53220"
},
{
"name": "CVE-2024-53221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53221"
},
{
"name": "CVE-2024-53223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53223"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-53228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53228"
},
{
"name": "CVE-2024-56540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56540"
},
{
"name": "CVE-2024-56545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56545"
},
{
"name": "CVE-2024-56685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56685"
},
{
"name": "CVE-2024-56689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56689"
},
{
"name": "CVE-2024-56692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56692"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2024-56742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56742"
},
{
"name": "CVE-2024-56744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56744"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2025-0927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0927"
},
{
"name": "CVE-2024-56579",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56579"
},
{
"name": "CVE-2024-56647",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56647"
},
{
"name": "CVE-2024-57889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57889"
},
{
"name": "CVE-2025-21684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21684"
},
{
"name": "CVE-2025-21687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21687"
},
{
"name": "CVE-2025-21689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21689"
},
{
"name": "CVE-2025-21690",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21690"
},
{
"name": "CVE-2025-21692",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21692"
},
{
"name": "CVE-2025-21697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21697"
},
{
"name": "CVE-2025-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21699"
},
{
"name": "CVE-2025-21700",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21700"
},
{
"name": "CVE-2024-43098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43098"
},
{
"name": "CVE-2024-47408",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47408"
},
{
"name": "CVE-2024-49571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49571"
},
{
"name": "CVE-2024-53680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53680"
},
{
"name": "CVE-2024-56581",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56581"
},
{
"name": "CVE-2024-56586",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56586"
},
{
"name": "CVE-2024-56626",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56626"
},
{
"name": "CVE-2024-56627",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56627"
},
{
"name": "CVE-2024-56640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56640"
},
{
"name": "CVE-2024-56770",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56770"
},
{
"name": "CVE-2024-56781",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56781"
},
{
"name": "CVE-2024-56783",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56783"
},
{
"name": "CVE-2024-56785",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56785"
},
{
"name": "CVE-2024-57807",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57807"
},
{
"name": "CVE-2024-57841",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57841"
},
{
"name": "CVE-2024-57900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57900"
},
{
"name": "CVE-2024-57901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57901"
},
{
"name": "CVE-2024-57902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57902"
},
{
"name": "CVE-2024-57949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57949"
},
{
"name": "CVE-2024-57951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57951"
},
{
"name": "CVE-2025-21694",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21694"
},
{
"name": "CVE-2022-0995",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0995"
},
{
"name": "CVE-2024-41932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41932"
},
{
"name": "CVE-2024-41935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41935"
},
{
"name": "CVE-2024-47794",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47794"
},
{
"name": "CVE-2024-48875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48875"
},
{
"name": "CVE-2024-48876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48876"
},
{
"name": "CVE-2024-56550",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56550"
},
{
"name": "CVE-2024-56561",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56561"
},
{
"name": "CVE-2024-56565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56565"
},
{
"name": "CVE-2024-56580",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56580"
},
{
"name": "CVE-2024-56583",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56583"
},
{
"name": "CVE-2024-56613",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56613"
},
{
"name": "CVE-2024-56621",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56621"
},
{
"name": "CVE-2024-56638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56638"
},
{
"name": "CVE-2024-56771",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56771"
},
{
"name": "CVE-2024-56772",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56772"
},
{
"name": "CVE-2024-56773",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56773"
},
{
"name": "CVE-2024-56782",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56782"
},
{
"name": "CVE-2024-56786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56786"
},
{
"name": "CVE-2024-57843",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57843"
},
{
"name": "CVE-2024-57872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57872"
},
{
"name": "CVE-2024-58087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58087"
},
{
"name": "CVE-2025-21701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21701"
},
{
"name": "CVE-2025-21703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21703"
},
{
"name": "CVE-2025-21693",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21693"
},
{
"name": "CVE-2025-21756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21756"
},
{
"name": "CVE-2025-21831",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21831"
},
{
"name": "CVE-2025-21702",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21702"
},
{
"name": "CVE-2025-21993",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21993"
},
{
"name": "CVE-2024-44955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44955"
},
{
"name": "CVE-2024-50032",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50032"
},
{
"name": "CVE-2024-57950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57950"
},
{
"name": "CVE-2024-57952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57952"
},
{
"name": "CVE-2025-21672",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21672"
},
{
"name": "CVE-2025-21677",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21677"
},
{
"name": "CVE-2025-21685",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21685"
},
{
"name": "CVE-2025-21691",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21691"
},
{
"name": "CVE-2025-21695",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21695"
},
{
"name": "CVE-2025-21696",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21696"
},
{
"name": "CVE-2025-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2312"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0349",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-25T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux d\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7459-1",
"url": "https://ubuntu.com/security/notices/USN-7459-1"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7451-1",
"url": "https://ubuntu.com/security/notices/USN-7451-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7449-2",
"url": "https://ubuntu.com/security/notices/USN-7449-2"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7450-1",
"url": "https://ubuntu.com/security/notices/USN-7450-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7461-1",
"url": "https://ubuntu.com/security/notices/USN-7461-1"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7453-1",
"url": "https://ubuntu.com/security/notices/USN-7453-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7462-1",
"url": "https://ubuntu.com/security/notices/USN-7462-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7463-1",
"url": "https://ubuntu.com/security/notices/USN-7463-1"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7445-1",
"url": "https://ubuntu.com/security/notices/USN-7445-1"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7448-1",
"url": "https://ubuntu.com/security/notices/USN-7448-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7461-2",
"url": "https://ubuntu.com/security/notices/USN-7461-2"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-1",
"url": "https://ubuntu.com/security/notices/USN-7455-1"
},
{
"published_at": "2025-04-22",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7402-5",
"url": "https://ubuntu.com/security/notices/USN-7402-5"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-2",
"url": "https://ubuntu.com/security/notices/USN-7455-2"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7460-1",
"url": "https://ubuntu.com/security/notices/USN-7460-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7462-2",
"url": "https://ubuntu.com/security/notices/USN-7462-2"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7452-1",
"url": "https://ubuntu.com/security/notices/USN-7452-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7458-1",
"url": "https://ubuntu.com/security/notices/USN-7458-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-3",
"url": "https://ubuntu.com/security/notices/USN-7455-3"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7449-1",
"url": "https://ubuntu.com/security/notices/USN-7449-1"
}
]
}
CERTFR-2025-AVI-0152
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et un déni de service.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 16.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 18.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.10",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 22.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-26800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26800"
},
{
"name": "CVE-2024-26921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26921"
},
{
"name": "CVE-2024-38630",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38630"
},
{
"name": "CVE-2024-43882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43882"
},
{
"name": "CVE-2023-52917",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52917"
},
{
"name": "CVE-2024-47671",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47671"
},
{
"name": "CVE-2024-47675",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47675"
},
{
"name": "CVE-2024-47681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47681"
},
{
"name": "CVE-2024-47682",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47682"
},
{
"name": "CVE-2024-47684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47684"
},
{
"name": "CVE-2024-47685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47685"
},
{
"name": "CVE-2024-47686",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47686"
},
{
"name": "CVE-2024-47687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47687"
},
{
"name": "CVE-2024-47688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47688"
},
{
"name": "CVE-2024-47692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47692"
},
{
"name": "CVE-2024-47693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47693"
},
{
"name": "CVE-2024-47695",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47695"
},
{
"name": "CVE-2024-47696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47696"
},
{
"name": "CVE-2024-47697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47697"
},
{
"name": "CVE-2024-47698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47698"
},
{
"name": "CVE-2024-47699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47699"
},
{
"name": "CVE-2024-47702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47702"
},
{
"name": "CVE-2024-47704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47704"
},
{
"name": "CVE-2024-47705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47705"
},
{
"name": "CVE-2024-47706",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47706"
},
{
"name": "CVE-2024-47707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47707"
},
{
"name": "CVE-2024-47709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47709"
},
{
"name": "CVE-2024-47710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47710"
},
{
"name": "CVE-2024-47712",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47712"
},
{
"name": "CVE-2024-47713",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47713"
},
{
"name": "CVE-2024-47714",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47714"
},
{
"name": "CVE-2024-47715",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47715"
},
{
"name": "CVE-2024-47718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47718"
},
{
"name": "CVE-2024-47719",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47719"
},
{
"name": "CVE-2024-47720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47720"
},
{
"name": "CVE-2024-47723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47723"
},
{
"name": "CVE-2024-47727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47727"
},
{
"name": "CVE-2024-47728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47728"
},
{
"name": "CVE-2024-47730",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47730"
},
{
"name": "CVE-2024-47731",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47731"
},
{
"name": "CVE-2024-47732",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47732"
},
{
"name": "CVE-2024-47735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47735"
},
{
"name": "CVE-2024-47737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47737"
},
{
"name": "CVE-2024-47738",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47738"
},
{
"name": "CVE-2024-47739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47739"
},
{
"name": "CVE-2024-47741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47741"
},
{
"name": "CVE-2024-47742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47742"
},
{
"name": "CVE-2024-47743",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47743"
},
{
"name": "CVE-2024-47744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47744"
},
{
"name": "CVE-2024-47745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47745"
},
{
"name": "CVE-2024-47747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47747"
},
{
"name": "CVE-2024-47748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47748"
},
{
"name": "CVE-2024-47749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47749"
},
{
"name": "CVE-2024-47750",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47750"
},
{
"name": "CVE-2024-47751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47751"
},
{
"name": "CVE-2024-47752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47752"
},
{
"name": "CVE-2024-47753",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47753"
},
{
"name": "CVE-2024-47754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47754"
},
{
"name": "CVE-2024-47756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47756"
},
{
"name": "CVE-2024-47757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47757"
},
{
"name": "CVE-2024-49850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49850"
},
{
"name": "CVE-2024-49851",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49851"
},
{
"name": "CVE-2024-49852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49852"
},
{
"name": "CVE-2024-49853",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49853"
},
{
"name": "CVE-2024-49855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49855"
},
{
"name": "CVE-2024-49858",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49858"
},
{
"name": "CVE-2024-49860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49860"
},
{
"name": "CVE-2024-49861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49861"
},
{
"name": "CVE-2024-49862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49862"
},
{
"name": "CVE-2024-49863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49863"
},
{
"name": "CVE-2024-49864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49864"
},
{
"name": "CVE-2024-49866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49866"
},
{
"name": "CVE-2024-49867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49867"
},
{
"name": "CVE-2024-49870",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49870"
},
{
"name": "CVE-2024-49871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49871"
},
{
"name": "CVE-2024-49874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49874"
},
{
"name": "CVE-2024-49875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49875"
},
{
"name": "CVE-2024-49877",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49877"
},
{
"name": "CVE-2024-49878",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49878"
},
{
"name": "CVE-2024-49879",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49879"
},
{
"name": "CVE-2024-49881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49881"
},
{
"name": "CVE-2024-49882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49882"
},
{
"name": "CVE-2024-49883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49883"
},
{
"name": "CVE-2024-49886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49886"
},
{
"name": "CVE-2024-49888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49888"
},
{
"name": "CVE-2024-49890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49890"
},
{
"name": "CVE-2024-49891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49891"
},
{
"name": "CVE-2024-49892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49892"
},
{
"name": "CVE-2024-49894",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49894"
},
{
"name": "CVE-2024-49895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49895"
},
{
"name": "CVE-2024-49896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49896"
},
{
"name": "CVE-2024-49897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49897"
},
{
"name": "CVE-2024-49898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49898"
},
{
"name": "CVE-2024-49899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49899"
},
{
"name": "CVE-2024-49900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49900"
},
{
"name": "CVE-2024-49901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49901"
},
{
"name": "CVE-2024-49902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49902"
},
{
"name": "CVE-2024-49903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49903"
},
{
"name": "CVE-2024-49906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49906"
},
{
"name": "CVE-2024-49907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49907"
},
{
"name": "CVE-2024-49908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49908"
},
{
"name": "CVE-2024-49909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49909"
},
{
"name": "CVE-2024-49911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49911"
},
{
"name": "CVE-2024-49912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49912"
},
{
"name": "CVE-2024-49913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49913"
},
{
"name": "CVE-2024-49914",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49914"
},
{
"name": "CVE-2024-49917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49917"
},
{
"name": "CVE-2024-49918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49918"
},
{
"name": "CVE-2024-49919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49919"
},
{
"name": "CVE-2024-49920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49920"
},
{
"name": "CVE-2024-49922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49922"
},
{
"name": "CVE-2024-49923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49923"
},
{
"name": "CVE-2024-49928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49928"
},
{
"name": "CVE-2024-49929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49929"
},
{
"name": "CVE-2024-49930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49930"
},
{
"name": "CVE-2024-49931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49931"
},
{
"name": "CVE-2024-49933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49933"
},
{
"name": "CVE-2024-49935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49935"
},
{
"name": "CVE-2024-49936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49936"
},
{
"name": "CVE-2024-49937",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49937"
},
{
"name": "CVE-2024-49938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49938"
},
{
"name": "CVE-2024-49939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49939"
},
{
"name": "CVE-2024-49946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49946"
},
{
"name": "CVE-2024-49947",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49947"
},
{
"name": "CVE-2024-49949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49949"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49953"
},
{
"name": "CVE-2024-49954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49954"
},
{
"name": "CVE-2024-49955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49955"
},
{
"name": "CVE-2024-49957",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49957"
},
{
"name": "CVE-2024-49958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49958"
},
{
"name": "CVE-2024-49959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49959"
},
{
"name": "CVE-2024-49960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49960"
},
{
"name": "CVE-2024-49961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49961"
},
{
"name": "CVE-2024-49962",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49962"
},
{
"name": "CVE-2024-49963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49963"
},
{
"name": "CVE-2024-49965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49965"
},
{
"name": "CVE-2024-49966",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49966"
},
{
"name": "CVE-2024-49969",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49969"
},
{
"name": "CVE-2024-49972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49972"
},
{
"name": "CVE-2024-49973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49973"
},
{
"name": "CVE-2024-49974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49974"
},
{
"name": "CVE-2024-49975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49975"
},
{
"name": "CVE-2024-49981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49981"
},
{
"name": "CVE-2024-49982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49982"
},
{
"name": "CVE-2024-49985",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49985"
},
{
"name": "CVE-2024-49986",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49986"
},
{
"name": "CVE-2024-49991",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49991"
},
{
"name": "CVE-2024-49995",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49995"
},
{
"name": "CVE-2024-49996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49996"
},
{
"name": "CVE-2024-50000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50000"
},
{
"name": "CVE-2024-50001",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50001"
},
{
"name": "CVE-2024-50002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50002"
},
{
"name": "CVE-2024-50006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50006"
},
{
"name": "CVE-2024-50007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50007"
},
{
"name": "CVE-2024-50008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50008"
},
{
"name": "CVE-2024-50013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50013"
},
{
"name": "CVE-2024-50014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50014"
},
{
"name": "CVE-2024-50015",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50015"
},
{
"name": "CVE-2024-50017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50017"
},
{
"name": "CVE-2024-50019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50019"
},
{
"name": "CVE-2024-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50020"
},
{
"name": "CVE-2024-50021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50021"
},
{
"name": "CVE-2024-50022",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50022"
},
{
"name": "CVE-2024-50023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50023"
},
{
"name": "CVE-2024-50024",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50024"
},
{
"name": "CVE-2024-50025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50025"
},
{
"name": "CVE-2024-50027",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50027"
},
{
"name": "CVE-2024-50028",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50028"
},
{
"name": "CVE-2024-50031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50031"
},
{
"name": "CVE-2024-50033",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50033"
},
{
"name": "CVE-2024-50035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50035"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2024-50041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50041"
},
{
"name": "CVE-2024-50042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50042"
},
{
"name": "CVE-2024-50044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50044"
},
{
"name": "CVE-2024-50045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50045"
},
{
"name": "CVE-2024-50046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50046"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50048"
},
{
"name": "CVE-2024-50049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50049"
},
{
"name": "CVE-2024-50055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50055"
},
{
"name": "CVE-2024-50058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50058"
},
{
"name": "CVE-2024-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50059"
},
{
"name": "CVE-2024-50060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50060"
},
{
"name": "CVE-2024-50061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50061"
},
{
"name": "CVE-2024-50062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50062"
},
{
"name": "CVE-2024-50063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50063"
},
{
"name": "CVE-2024-50064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50064"
},
{
"name": "CVE-2024-50069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50069"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50074"
},
{
"name": "CVE-2024-50075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50075"
},
{
"name": "CVE-2024-50076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50076"
},
{
"name": "CVE-2024-50077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50077"
},
{
"name": "CVE-2024-50078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50078"
},
{
"name": "CVE-2024-50080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50080"
},
{
"name": "CVE-2024-50081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50081"
},
{
"name": "CVE-2024-50012",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50012"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50072"
},
{
"name": "CVE-2024-50126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50126"
},
{
"name": "CVE-2024-50215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50215"
},
{
"name": "CVE-2024-50218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50218"
},
{
"name": "CVE-2024-50229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50229"
},
{
"name": "CVE-2024-50230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50230"
},
{
"name": "CVE-2024-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50232"
},
{
"name": "CVE-2024-50233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50233"
},
{
"name": "CVE-2024-50234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50234"
},
{
"name": "CVE-2024-50235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50235"
},
{
"name": "CVE-2024-50236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50236"
},
{
"name": "CVE-2024-50237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50237"
},
{
"name": "CVE-2024-50242",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50242"
},
{
"name": "CVE-2024-50243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50243"
},
{
"name": "CVE-2024-50244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50244"
},
{
"name": "CVE-2024-50245",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50245"
},
{
"name": "CVE-2024-50247",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50247"
},
{
"name": "CVE-2024-50249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50249"
},
{
"name": "CVE-2024-50250",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50250"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50255"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50257",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50257"
},
{
"name": "CVE-2024-50259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50259"
},
{
"name": "CVE-2024-50261",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50261"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50264"
},
{
"name": "CVE-2024-50265",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50265"
},
{
"name": "CVE-2024-50267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50267"
},
{
"name": "CVE-2024-50268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50268"
},
{
"name": "CVE-2024-50269",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50269"
},
{
"name": "CVE-2024-50271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50271"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50273",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50273"
},
{
"name": "CVE-2024-50276",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50276"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50282"
},
{
"name": "CVE-2024-50283",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50283"
},
{
"name": "CVE-2024-50284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50284"
},
{
"name": "CVE-2024-50286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50286"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50292"
},
{
"name": "CVE-2024-50295",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50295"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2024-50302",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50302"
},
{
"name": "CVE-2024-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53042"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53052"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53058"
},
{
"name": "CVE-2024-53059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53059"
},
{
"name": "CVE-2024-53061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53061"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53066"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53081"
},
{
"name": "CVE-2024-53082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53082"
},
{
"name": "CVE-2024-53088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53088"
},
{
"name": "CVE-2024-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53093"
},
{
"name": "CVE-2024-50226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50226"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-49945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49945"
},
{
"name": "CVE-2024-50208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50208"
},
{
"name": "CVE-2024-50082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50082"
},
{
"name": "CVE-2024-50099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50099"
},
{
"name": "CVE-2024-50110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50110"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-50192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50192"
},
{
"name": "CVE-2024-47679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47679"
},
{
"name": "CVE-2024-47690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47690"
},
{
"name": "CVE-2024-47701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47701"
},
{
"name": "CVE-2024-47734",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47734"
},
{
"name": "CVE-2024-47740",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47740"
},
{
"name": "CVE-2024-49856",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49856"
},
{
"name": "CVE-2024-49868",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49868"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49889"
},
{
"name": "CVE-2024-49893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49893"
},
{
"name": "CVE-2024-49904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49904"
},
{
"name": "CVE-2024-49905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49905"
},
{
"name": "CVE-2024-49910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49910"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-49916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49916"
},
{
"name": "CVE-2024-49921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49921"
},
{
"name": "CVE-2024-49924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49924"
},
{
"name": "CVE-2024-49927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49927"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49948"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-49977",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49977"
},
{
"name": "CVE-2024-49983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49983"
},
{
"name": "CVE-2024-49997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49997"
},
{
"name": "CVE-2024-50003",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50003"
},
{
"name": "CVE-2024-50038",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50038"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50093"
},
{
"name": "CVE-2024-50095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50095"
},
{
"name": "CVE-2024-50096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50096"
},
{
"name": "CVE-2024-50179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50179"
},
{
"name": "CVE-2024-50180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50180"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2024-50184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50184"
},
{
"name": "CVE-2024-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50186"
},
{
"name": "CVE-2024-50188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50188"
},
{
"name": "CVE-2024-50189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50189"
},
{
"name": "CVE-2024-50191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50191"
},
{
"name": "CVE-2024-47703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47703"
},
{
"name": "CVE-2024-49934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49934"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2024-49976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49976"
},
{
"name": "CVE-2024-49987",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49987"
},
{
"name": "CVE-2024-49989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49989"
},
{
"name": "CVE-2024-50009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50009"
},
{
"name": "CVE-2024-50026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50026"
},
{
"name": "CVE-2024-50084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50084"
},
{
"name": "CVE-2024-50087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50087"
},
{
"name": "CVE-2024-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50088"
},
{
"name": "CVE-2024-50098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50098"
},
{
"name": "CVE-2024-50100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50100"
},
{
"name": "CVE-2024-50101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50101"
},
{
"name": "CVE-2024-50102",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50102"
},
{
"name": "CVE-2024-50103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50103"
},
{
"name": "CVE-2024-50108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50108"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50116"
},
{
"name": "CVE-2024-50117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50117"
},
{
"name": "CVE-2024-50121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50121"
},
{
"name": "CVE-2024-50124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50124"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-50127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50127"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50130"
},
{
"name": "CVE-2024-50131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50131"
},
{
"name": "CVE-2024-50134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50134"
},
{
"name": "CVE-2024-50135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50135"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50138"
},
{
"name": "CVE-2024-50139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50139"
},
{
"name": "CVE-2024-50141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50141"
},
{
"name": "CVE-2024-50145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50145"
},
{
"name": "CVE-2024-50146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50146"
},
{
"name": "CVE-2024-50147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50147"
},
{
"name": "CVE-2024-50148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50148"
},
{
"name": "CVE-2024-50150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50150"
},
{
"name": "CVE-2024-50153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50153"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50155"
},
{
"name": "CVE-2024-50156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50156"
},
{
"name": "CVE-2024-50157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50157"
},
{
"name": "CVE-2024-50158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50158"
},
{
"name": "CVE-2024-50159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50159"
},
{
"name": "CVE-2024-50160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50160"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50167"
},
{
"name": "CVE-2024-50169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50169"
},
{
"name": "CVE-2024-50171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50171"
},
{
"name": "CVE-2024-50172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50172"
},
{
"name": "CVE-2024-50176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50176"
},
{
"name": "CVE-2024-50177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50177"
},
{
"name": "CVE-2024-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50182"
},
{
"name": "CVE-2024-50183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50183"
},
{
"name": "CVE-2024-50187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50187"
},
{
"name": "CVE-2024-50194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50194"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50196"
},
{
"name": "CVE-2024-50198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50198"
},
{
"name": "CVE-2024-50200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50200"
},
{
"name": "CVE-2024-50201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50201"
},
{
"name": "CVE-2024-50205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50205"
},
{
"name": "CVE-2024-50209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50209"
},
{
"name": "CVE-2024-50216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50216"
},
{
"name": "CVE-2024-50221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50221"
},
{
"name": "CVE-2024-50224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50224"
},
{
"name": "CVE-2024-50225",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50225"
},
{
"name": "CVE-2024-50231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50231"
},
{
"name": "CVE-2024-50240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50240"
},
{
"name": "CVE-2024-50246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50246"
},
{
"name": "CVE-2024-50248",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50248"
},
{
"name": "CVE-2024-50274",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50274"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-50289",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50289"
},
{
"name": "CVE-2024-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50298"
},
{
"name": "CVE-2024-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53045"
},
{
"name": "CVE-2024-53048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53048"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-53068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53068"
},
{
"name": "CVE-2024-53074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53074"
},
{
"name": "CVE-2024-53076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53076"
},
{
"name": "CVE-2024-53079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53079"
},
{
"name": "CVE-2024-53085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53085"
},
{
"name": "CVE-2024-53094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53094"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53100"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53106"
},
{
"name": "CVE-2024-53108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53108"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-49859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49859"
},
{
"name": "CVE-2024-49978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49978"
},
{
"name": "CVE-2024-49992",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49992"
},
{
"name": "CVE-2024-50010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50010"
},
{
"name": "CVE-2024-50083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50083"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50086"
},
{
"name": "CVE-2024-50133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50133"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50162"
},
{
"name": "CVE-2024-50163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50163"
},
{
"name": "CVE-2024-50168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50168"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50193"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-50011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50011"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-49951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49951"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50106"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-53238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53238"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56741"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-53047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53047"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-53187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53187"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-56679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56679"
},
{
"name": "CVE-2024-56693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56693"
},
{
"name": "CVE-2024-56707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56707"
},
{
"name": "CVE-2024-56725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56725"
},
{
"name": "CVE-2024-56726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56726"
},
{
"name": "CVE-2024-56727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56727"
},
{
"name": "CVE-2024-56728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56728"
},
{
"name": "CVE-2024-49994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49994"
},
{
"name": "CVE-2024-50164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50164"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2024-56703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56703"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2022-49034",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49034"
},
{
"name": "CVE-2024-46869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46869"
},
{
"name": "CVE-2024-47676",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47676"
},
{
"name": "CVE-2024-47677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47677"
},
{
"name": "CVE-2024-47680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47680"
},
{
"name": "CVE-2024-47689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47689"
},
{
"name": "CVE-2024-47691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47691"
},
{
"name": "CVE-2024-47694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47694"
},
{
"name": "CVE-2024-47700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47700"
},
{
"name": "CVE-2024-47708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47708"
},
{
"name": "CVE-2024-47711",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47711"
},
{
"name": "CVE-2024-47716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47716"
},
{
"name": "CVE-2024-47717",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47717"
},
{
"name": "CVE-2024-47721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47721"
},
{
"name": "CVE-2024-47724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47724"
},
{
"name": "CVE-2024-47726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47726"
},
{
"name": "CVE-2024-47733",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47733"
},
{
"name": "CVE-2024-47736",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47736"
},
{
"name": "CVE-2024-47746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47746"
},
{
"name": "CVE-2024-49857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49857"
},
{
"name": "CVE-2024-49865",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49865"
},
{
"name": "CVE-2024-49869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49869"
},
{
"name": "CVE-2024-49872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49872"
},
{
"name": "CVE-2024-49873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49873"
},
{
"name": "CVE-2024-49876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49876"
},
{
"name": "CVE-2024-49880",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49880"
},
{
"name": "CVE-2024-49885",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49885"
},
{
"name": "CVE-2024-49887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49887"
},
{
"name": "CVE-2024-49926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49926"
},
{
"name": "CVE-2024-49932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49932"
},
{
"name": "CVE-2024-49940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49940"
},
{
"name": "CVE-2024-49941",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49941"
},
{
"name": "CVE-2024-49942",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49942"
},
{
"name": "CVE-2024-49943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49943"
},
{
"name": "CVE-2024-49956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49956"
},
{
"name": "CVE-2024-49964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49964"
},
{
"name": "CVE-2024-49970",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49970"
},
{
"name": "CVE-2024-49971",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49971"
},
{
"name": "CVE-2024-49979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49979"
},
{
"name": "CVE-2024-49980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49980"
},
{
"name": "CVE-2024-49988",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49988"
},
{
"name": "CVE-2024-49999",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49999"
},
{
"name": "CVE-2024-50005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50005"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50030"
},
{
"name": "CVE-2024-50034",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50034"
},
{
"name": "CVE-2024-50037",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50037"
},
{
"name": "CVE-2024-50043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50043"
},
{
"name": "CVE-2024-50056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50056"
},
{
"name": "CVE-2024-50057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50057"
},
{
"name": "CVE-2024-50065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50065"
},
{
"name": "CVE-2024-50066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50066"
},
{
"name": "CVE-2024-50068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50068"
},
{
"name": "CVE-2024-50070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50070"
},
{
"name": "CVE-2024-50071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50071"
},
{
"name": "CVE-2024-50079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50079"
},
{
"name": "CVE-2024-50090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50090"
},
{
"name": "CVE-2024-50091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50091"
},
{
"name": "CVE-2024-50092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50092"
},
{
"name": "CVE-2024-50094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50094"
},
{
"name": "CVE-2024-50104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50104"
},
{
"name": "CVE-2024-50105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50105"
},
{
"name": "CVE-2024-50107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50107"
},
{
"name": "CVE-2024-50109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50109"
},
{
"name": "CVE-2024-50111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50111"
},
{
"name": "CVE-2024-50112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50112"
},
{
"name": "CVE-2024-50113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50113"
},
{
"name": "CVE-2024-50114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50114"
},
{
"name": "CVE-2024-50118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50118"
},
{
"name": "CVE-2024-50119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50119"
},
{
"name": "CVE-2024-50120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50120"
},
{
"name": "CVE-2024-50122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50122"
},
{
"name": "CVE-2024-50123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50123"
},
{
"name": "CVE-2024-50129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50129"
},
{
"name": "CVE-2024-50132",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50132"
},
{
"name": "CVE-2024-50137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50137"
},
{
"name": "CVE-2024-50140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50140"
},
{
"name": "CVE-2024-50144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50144"
},
{
"name": "CVE-2024-50149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50149"
},
{
"name": "CVE-2024-50152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50152"
},
{
"name": "CVE-2024-50161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50161"
},
{
"name": "CVE-2024-50165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50165"
},
{
"name": "CVE-2024-50170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50170"
},
{
"name": "CVE-2024-50173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50173"
},
{
"name": "CVE-2024-50174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50174"
},
{
"name": "CVE-2024-50178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50178"
},
{
"name": "CVE-2024-50190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50190"
},
{
"name": "CVE-2024-50197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50197"
},
{
"name": "CVE-2024-50204",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50204"
},
{
"name": "CVE-2024-50206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50206"
},
{
"name": "CVE-2024-50207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50207"
},
{
"name": "CVE-2024-50212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50212"
},
{
"name": "CVE-2024-50213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50213"
},
{
"name": "CVE-2024-50214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50214"
},
{
"name": "CVE-2024-50217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50217"
},
{
"name": "CVE-2024-50220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50220"
},
{
"name": "CVE-2024-50222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50222"
},
{
"name": "CVE-2024-50223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50223"
},
{
"name": "CVE-2024-50227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50227"
},
{
"name": "CVE-2024-50238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50238"
},
{
"name": "CVE-2024-50239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50239"
},
{
"name": "CVE-2024-50253",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50253"
},
{
"name": "CVE-2024-50254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50254"
},
{
"name": "CVE-2024-50260",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50260"
},
{
"name": "CVE-2024-50263",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50263"
},
{
"name": "CVE-2024-50266",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50266"
},
{
"name": "CVE-2024-50270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50270"
},
{
"name": "CVE-2024-50277",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50277"
},
{
"name": "CVE-2024-50281",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50281"
},
{
"name": "CVE-2024-50285",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50285"
},
{
"name": "CVE-2024-50288",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50288"
},
{
"name": "CVE-2024-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50291"
},
{
"name": "CVE-2024-50293",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50293"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-50297",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50297"
},
{
"name": "CVE-2024-50300",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50300"
},
{
"name": "CVE-2024-50303",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50303"
},
{
"name": "CVE-2024-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53044"
},
{
"name": "CVE-2024-53046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53046"
},
{
"name": "CVE-2024-53049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53049"
},
{
"name": "CVE-2024-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53053"
},
{
"name": "CVE-2024-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53062"
},
{
"name": "CVE-2024-53065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53065"
},
{
"name": "CVE-2024-53067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53067"
},
{
"name": "CVE-2024-53069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53069"
},
{
"name": "CVE-2024-53071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53071"
},
{
"name": "CVE-2024-53075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53075"
},
{
"name": "CVE-2024-53077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53077"
},
{
"name": "CVE-2024-53078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53078"
},
{
"name": "CVE-2024-53080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53080"
},
{
"name": "CVE-2024-53083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53083"
},
{
"name": "CVE-2024-53084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53084"
},
{
"name": "CVE-2024-53086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53086"
},
{
"name": "CVE-2024-53087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53087"
},
{
"name": "CVE-2024-53089",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53089"
},
{
"name": "CVE-2024-53092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53092"
},
{
"name": "CVE-2024-53098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53098"
},
{
"name": "CVE-2024-53107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53107"
},
{
"name": "CVE-2024-53109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53109"
},
{
"name": "CVE-2024-53115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53115"
},
{
"name": "CVE-2024-53116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53116"
},
{
"name": "CVE-2024-53132",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53132"
},
{
"name": "CVE-2024-53137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53137"
},
{
"name": "CVE-2024-53139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53139"
},
{
"name": "CVE-2024-53143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53143"
},
{
"name": "CVE-2024-53145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53145"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53149"
},
{
"name": "CVE-2024-53152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53152"
},
{
"name": "CVE-2024-53153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53153"
},
{
"name": "CVE-2024-53163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53163"
},
{
"name": "CVE-2024-53165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53165"
},
{
"name": "CVE-2024-53167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53167"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53181"
},
{
"name": "CVE-2024-53183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53183"
},
{
"name": "CVE-2024-53184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53184"
},
{
"name": "CVE-2024-53189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53189"
},
{
"name": "CVE-2024-53192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53192"
},
{
"name": "CVE-2024-53193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53193"
},
{
"name": "CVE-2024-53199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53199"
},
{
"name": "CVE-2024-53212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53212"
},
{
"name": "CVE-2024-53218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53218"
},
{
"name": "CVE-2024-53219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53219"
},
{
"name": "CVE-2024-53220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53220"
},
{
"name": "CVE-2024-53221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53221"
},
{
"name": "CVE-2024-53223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53223"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-53228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53228"
},
{
"name": "CVE-2024-56534",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56534"
},
{
"name": "CVE-2024-56535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56535"
},
{
"name": "CVE-2024-56537",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56537"
},
{
"name": "CVE-2024-56540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56540"
},
{
"name": "CVE-2024-56541",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56541"
},
{
"name": "CVE-2024-56544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56544"
},
{
"name": "CVE-2024-56545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56545"
},
{
"name": "CVE-2024-56674",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56674"
},
{
"name": "CVE-2024-56680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56680"
},
{
"name": "CVE-2024-56684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56684"
},
{
"name": "CVE-2024-56685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56685"
},
{
"name": "CVE-2024-56689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56689"
},
{
"name": "CVE-2024-56692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56692"
},
{
"name": "CVE-2024-56696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56696"
},
{
"name": "CVE-2024-56697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56697"
},
{
"name": "CVE-2024-56699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56699"
},
{
"name": "CVE-2024-56702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56702"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2024-56742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56742"
},
{
"name": "CVE-2024-56744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56744"
},
{
"name": "CVE-2024-56749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56749"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2025-0927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0927"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0152",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-02-21T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux d\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": "2025-02-20",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu LSN-0109-1",
"url": "https://ubuntu.com/security/notices/LSN-0109-1"
},
{
"published_at": "2025-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7277-1",
"url": "https://ubuntu.com/security/notices/USN-7277-1"
},
{
"published_at": "2025-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7276-1",
"url": "https://ubuntu.com/security/notices/USN-7276-1"
}
]
}
CERTFR-2025-AVI-0349
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et une atteinte à la confidentialité des données
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 24.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 18.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.10",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 22.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-26718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26718"
},
{
"name": "CVE-2021-47119",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47119"
},
{
"name": "CVE-2021-47219",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47219"
},
{
"name": "CVE-2024-23848",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23848"
},
{
"name": "CVE-2024-26915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26915"
},
{
"name": "CVE-2024-26928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26928"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-35887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35887"
},
{
"name": "CVE-2024-35958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35958"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-40953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40953"
},
{
"name": "CVE-2024-38588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38588"
},
{
"name": "CVE-2024-26837",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26837"
},
{
"name": "CVE-2024-41014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41014"
},
{
"name": "CVE-2024-39497",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39497"
},
{
"name": "CVE-2024-41066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41066"
},
{
"name": "CVE-2024-42122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42122"
},
{
"name": "CVE-2024-40965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40965"
},
{
"name": "CVE-2023-52913",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52913"
},
{
"name": "CVE-2024-41080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41080"
},
{
"name": "CVE-2024-42069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42069"
},
{
"name": "CVE-2024-42291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42291"
},
{
"name": "CVE-2024-42315",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42315"
},
{
"name": "CVE-2024-43900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43900"
},
{
"name": "CVE-2024-44938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44938"
},
{
"name": "CVE-2024-46784",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46784"
},
{
"name": "CVE-2024-46826",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46826"
},
{
"name": "CVE-2024-42252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42252"
},
{
"name": "CVE-2024-46809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46809"
},
{
"name": "CVE-2024-46841",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46841"
},
{
"name": "CVE-2024-46871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46871"
},
{
"name": "CVE-2024-47707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47707"
},
{
"name": "CVE-2024-47730",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47730"
},
{
"name": "CVE-2024-49899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49899"
},
{
"name": "CVE-2024-49906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49906"
},
{
"name": "CVE-2024-49914",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49914"
},
{
"name": "CVE-2024-49920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49920"
},
{
"name": "CVE-2024-49936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49936"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49972"
},
{
"name": "CVE-2024-49974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49974"
},
{
"name": "CVE-2024-49996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49996"
},
{
"name": "CVE-2024-50019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50019"
},
{
"name": "CVE-2024-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50020"
},
{
"name": "CVE-2024-50021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50021"
},
{
"name": "CVE-2024-50022",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50022"
},
{
"name": "CVE-2024-50023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50023"
},
{
"name": "CVE-2024-50024",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50024"
},
{
"name": "CVE-2024-50025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50025"
},
{
"name": "CVE-2024-50027",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50027"
},
{
"name": "CVE-2024-50028",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50028"
},
{
"name": "CVE-2024-50031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50031"
},
{
"name": "CVE-2024-50033",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50033"
},
{
"name": "CVE-2024-50035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50035"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2024-50041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50041"
},
{
"name": "CVE-2024-50042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50042"
},
{
"name": "CVE-2024-50044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50044"
},
{
"name": "CVE-2024-50045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50045"
},
{
"name": "CVE-2024-50046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50046"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50048"
},
{
"name": "CVE-2024-50049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50049"
},
{
"name": "CVE-2024-50055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50055"
},
{
"name": "CVE-2024-50058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50058"
},
{
"name": "CVE-2024-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50059"
},
{
"name": "CVE-2024-50060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50060"
},
{
"name": "CVE-2024-50061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50061"
},
{
"name": "CVE-2024-50062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50062"
},
{
"name": "CVE-2024-50063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50063"
},
{
"name": "CVE-2024-50064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50064"
},
{
"name": "CVE-2024-50069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50069"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50074"
},
{
"name": "CVE-2024-50075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50075"
},
{
"name": "CVE-2024-50076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50076"
},
{
"name": "CVE-2024-50077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50077"
},
{
"name": "CVE-2024-50078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50078"
},
{
"name": "CVE-2024-50080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50080"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50072"
},
{
"name": "CVE-2024-50126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50126"
},
{
"name": "CVE-2024-50215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50215"
},
{
"name": "CVE-2024-50218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50218"
},
{
"name": "CVE-2024-50229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50229"
},
{
"name": "CVE-2024-50230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50230"
},
{
"name": "CVE-2024-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50232"
},
{
"name": "CVE-2024-50233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50233"
},
{
"name": "CVE-2024-50234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50234"
},
{
"name": "CVE-2024-50235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50235"
},
{
"name": "CVE-2024-50236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50236"
},
{
"name": "CVE-2024-50237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50237"
},
{
"name": "CVE-2024-50242",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50242"
},
{
"name": "CVE-2024-50243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50243"
},
{
"name": "CVE-2024-50244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50244"
},
{
"name": "CVE-2024-50245",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50245"
},
{
"name": "CVE-2024-50247",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50247"
},
{
"name": "CVE-2024-50249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50249"
},
{
"name": "CVE-2024-50250",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50250"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50255"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50257",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50257"
},
{
"name": "CVE-2024-50259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50259"
},
{
"name": "CVE-2024-50261",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50261"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50265",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50265"
},
{
"name": "CVE-2024-50267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50267"
},
{
"name": "CVE-2024-50268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50268"
},
{
"name": "CVE-2024-50269",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50269"
},
{
"name": "CVE-2024-50271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50271"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50273",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50273"
},
{
"name": "CVE-2024-50276",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50276"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50282"
},
{
"name": "CVE-2024-50283",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50283"
},
{
"name": "CVE-2024-50284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50284"
},
{
"name": "CVE-2024-50286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50286"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50292"
},
{
"name": "CVE-2024-50295",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50295"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2024-50302",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50302"
},
{
"name": "CVE-2024-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53042"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53052"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53058"
},
{
"name": "CVE-2024-53059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53059"
},
{
"name": "CVE-2024-53060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53060"
},
{
"name": "CVE-2024-53061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53061"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53066"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53081"
},
{
"name": "CVE-2024-53082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53082"
},
{
"name": "CVE-2024-53088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53088"
},
{
"name": "CVE-2024-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53093"
},
{
"name": "CVE-2024-50226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50226"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-50208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50208"
},
{
"name": "CVE-2024-50082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50082"
},
{
"name": "CVE-2024-50099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50099"
},
{
"name": "CVE-2024-50110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50110"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-50192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50192"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49893"
},
{
"name": "CVE-2024-49921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49921"
},
{
"name": "CVE-2024-50038",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50038"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50093"
},
{
"name": "CVE-2024-50095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50095"
},
{
"name": "CVE-2024-50096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50096"
},
{
"name": "CVE-2024-50180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50180"
},
{
"name": "CVE-2024-50184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50184"
},
{
"name": "CVE-2024-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50186"
},
{
"name": "CVE-2024-50188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50188"
},
{
"name": "CVE-2024-50189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50189"
},
{
"name": "CVE-2024-50191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50191"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2024-50009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50009"
},
{
"name": "CVE-2024-50026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50026"
},
{
"name": "CVE-2024-50084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50084"
},
{
"name": "CVE-2024-50087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50087"
},
{
"name": "CVE-2024-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50088"
},
{
"name": "CVE-2024-50098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50098"
},
{
"name": "CVE-2024-50101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50101"
},
{
"name": "CVE-2024-50103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50103"
},
{
"name": "CVE-2024-50108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50108"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50116"
},
{
"name": "CVE-2024-50117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50117"
},
{
"name": "CVE-2024-50121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50121"
},
{
"name": "CVE-2024-50124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50124"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-50127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50127"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50130"
},
{
"name": "CVE-2024-50131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50131"
},
{
"name": "CVE-2024-50134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50134"
},
{
"name": "CVE-2024-50135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50135"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50138"
},
{
"name": "CVE-2024-50139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50139"
},
{
"name": "CVE-2024-50141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50141"
},
{
"name": "CVE-2024-50145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50145"
},
{
"name": "CVE-2024-50146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50146"
},
{
"name": "CVE-2024-50147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50147"
},
{
"name": "CVE-2024-50148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50148"
},
{
"name": "CVE-2024-50150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50150"
},
{
"name": "CVE-2024-50153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50153"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50155"
},
{
"name": "CVE-2024-50156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50156"
},
{
"name": "CVE-2024-50158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50158"
},
{
"name": "CVE-2024-50159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50159"
},
{
"name": "CVE-2024-50160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50160"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50167"
},
{
"name": "CVE-2024-50169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50169"
},
{
"name": "CVE-2024-50171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50171"
},
{
"name": "CVE-2024-50172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50172"
},
{
"name": "CVE-2024-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50182"
},
{
"name": "CVE-2024-50183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50183"
},
{
"name": "CVE-2024-50187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50187"
},
{
"name": "CVE-2024-50194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50194"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50196"
},
{
"name": "CVE-2024-50198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50198"
},
{
"name": "CVE-2024-50200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50200"
},
{
"name": "CVE-2024-50201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50201"
},
{
"name": "CVE-2024-50205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50205"
},
{
"name": "CVE-2024-50209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50209"
},
{
"name": "CVE-2024-50210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50210"
},
{
"name": "CVE-2024-50216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50216"
},
{
"name": "CVE-2024-50221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50221"
},
{
"name": "CVE-2024-50224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50224"
},
{
"name": "CVE-2024-50225",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50225"
},
{
"name": "CVE-2024-50231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50231"
},
{
"name": "CVE-2024-50240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50240"
},
{
"name": "CVE-2024-50246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50246"
},
{
"name": "CVE-2024-50248",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50248"
},
{
"name": "CVE-2024-50274",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50274"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-50289",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50289"
},
{
"name": "CVE-2024-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50298"
},
{
"name": "CVE-2024-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53045"
},
{
"name": "CVE-2024-53048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53048"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53068"
},
{
"name": "CVE-2024-53076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53076"
},
{
"name": "CVE-2024-53079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53079"
},
{
"name": "CVE-2024-53085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53085"
},
{
"name": "CVE-2024-53094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53094"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53096"
},
{
"name": "CVE-2024-53100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53100"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53106"
},
{
"name": "CVE-2024-53108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53108"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-50010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50010"
},
{
"name": "CVE-2024-50083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50083"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50086"
},
{
"name": "CVE-2024-50133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50133"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50162"
},
{
"name": "CVE-2024-50163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50163"
},
{
"name": "CVE-2024-50168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50168"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50193"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53097",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53097"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-36476",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36476"
},
{
"name": "CVE-2024-45828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45828"
},
{
"name": "CVE-2024-47141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47141"
},
{
"name": "CVE-2024-47143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47143"
},
{
"name": "CVE-2024-47809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47809"
},
{
"name": "CVE-2024-48873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48873"
},
{
"name": "CVE-2024-48881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48881"
},
{
"name": "CVE-2024-49569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49569"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50051"
},
{
"name": "CVE-2024-52332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52332"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53185"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-53685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53685"
},
{
"name": "CVE-2024-53690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53690"
},
{
"name": "CVE-2024-55881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55881"
},
{
"name": "CVE-2024-55916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55916"
},
{
"name": "CVE-2024-56369",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56369"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-56557",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56557"
},
{
"name": "CVE-2024-56558",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56558"
},
{
"name": "CVE-2024-56568",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56568"
},
{
"name": "CVE-2024-56569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56569"
},
{
"name": "CVE-2024-56572",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56572"
},
{
"name": "CVE-2024-56573",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56573"
},
{
"name": "CVE-2024-56574",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56574"
},
{
"name": "CVE-2024-56577",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56577"
},
{
"name": "CVE-2024-56578",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56578"
},
{
"name": "CVE-2024-56584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56584"
},
{
"name": "CVE-2024-56587",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56587"
},
{
"name": "CVE-2024-56588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56588"
},
{
"name": "CVE-2024-56589",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56589"
},
{
"name": "CVE-2024-56590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56590"
},
{
"name": "CVE-2024-56593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56593"
},
{
"name": "CVE-2024-56594",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56594"
},
{
"name": "CVE-2024-56595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56595"
},
{
"name": "CVE-2024-56596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56596"
},
{
"name": "CVE-2024-56597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56597"
},
{
"name": "CVE-2024-56602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56602"
},
{
"name": "CVE-2024-56603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56603"
},
{
"name": "CVE-2024-56606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56606"
},
{
"name": "CVE-2024-56607",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56607"
},
{
"name": "CVE-2024-56609",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56609"
},
{
"name": "CVE-2024-56611",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56611"
},
{
"name": "CVE-2024-56614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56614"
},
{
"name": "CVE-2024-56615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56615"
},
{
"name": "CVE-2024-56616",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56616"
},
{
"name": "CVE-2024-56620",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56620"
},
{
"name": "CVE-2024-56622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56622"
},
{
"name": "CVE-2024-56623",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56623"
},
{
"name": "CVE-2024-56625",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56625"
},
{
"name": "CVE-2024-56629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56629"
},
{
"name": "CVE-2024-56630",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56630"
},
{
"name": "CVE-2024-56632",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56632"
},
{
"name": "CVE-2024-56634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56634"
},
{
"name": "CVE-2024-56635",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56635"
},
{
"name": "CVE-2024-56636",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56636"
},
{
"name": "CVE-2024-56637",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56637"
},
{
"name": "CVE-2024-56641",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56641"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56643"
},
{
"name": "CVE-2024-56644",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56644"
},
{
"name": "CVE-2024-56648",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56648"
},
{
"name": "CVE-2024-56649",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56649"
},
{
"name": "CVE-2024-56651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56651"
},
{
"name": "CVE-2024-56659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56659"
},
{
"name": "CVE-2024-56662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56662"
},
{
"name": "CVE-2024-56663",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56663"
},
{
"name": "CVE-2024-56670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56670"
},
{
"name": "CVE-2024-56672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56672"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56716"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-56759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56759"
},
{
"name": "CVE-2024-56765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56765"
},
{
"name": "CVE-2024-56767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56767"
},
{
"name": "CVE-2024-56769",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56769"
},
{
"name": "CVE-2024-56774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56774"
},
{
"name": "CVE-2024-56775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56775"
},
{
"name": "CVE-2024-56776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56776"
},
{
"name": "CVE-2024-56777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56777"
},
{
"name": "CVE-2024-56778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56778"
},
{
"name": "CVE-2024-56779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56779"
},
{
"name": "CVE-2024-56780",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56780"
},
{
"name": "CVE-2024-56787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56787"
},
{
"name": "CVE-2024-57791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57791"
},
{
"name": "CVE-2024-57792",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57792"
},
{
"name": "CVE-2024-57798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57798"
},
{
"name": "CVE-2024-57838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57838"
},
{
"name": "CVE-2024-57849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57849"
},
{
"name": "CVE-2024-57850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57850"
},
{
"name": "CVE-2024-57874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57874"
},
{
"name": "CVE-2024-57876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57876"
},
{
"name": "CVE-2024-57890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57890"
},
{
"name": "CVE-2024-57892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57892"
},
{
"name": "CVE-2024-57896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57896"
},
{
"name": "CVE-2024-57897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57897"
},
{
"name": "CVE-2024-57903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57903"
},
{
"name": "CVE-2024-57904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57904"
},
{
"name": "CVE-2024-57906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57906"
},
{
"name": "CVE-2024-57907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57907"
},
{
"name": "CVE-2024-57908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57908"
},
{
"name": "CVE-2024-57910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57910"
},
{
"name": "CVE-2024-57911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57911"
},
{
"name": "CVE-2024-57912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57912"
},
{
"name": "CVE-2024-57913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57913"
},
{
"name": "CVE-2024-57922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57922"
},
{
"name": "CVE-2024-57929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57929"
},
{
"name": "CVE-2024-57940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57940"
},
{
"name": "CVE-2025-21646",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21646"
},
{
"name": "CVE-2024-53047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53047"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-53187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53187"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-56592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56592"
},
{
"name": "CVE-2024-56600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56600"
},
{
"name": "CVE-2024-56601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56601"
},
{
"name": "CVE-2024-56608",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56608"
},
{
"name": "CVE-2024-56610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56610"
},
{
"name": "CVE-2024-56650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56650"
},
{
"name": "CVE-2024-56658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
},
{
"name": "CVE-2024-56679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56679"
},
{
"name": "CVE-2024-56693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56693"
},
{
"name": "CVE-2024-56707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56707"
},
{
"name": "CVE-2024-56715",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56715"
},
{
"name": "CVE-2024-56725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56725"
},
{
"name": "CVE-2024-56726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56726"
},
{
"name": "CVE-2024-56727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56727"
},
{
"name": "CVE-2024-56728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56728"
},
{
"name": "CVE-2024-56763",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56763"
},
{
"name": "CVE-2024-57802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57802"
},
{
"name": "CVE-2024-57882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57882"
},
{
"name": "CVE-2024-57884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57884"
},
{
"name": "CVE-2024-57917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57917"
},
{
"name": "CVE-2024-57931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57931"
},
{
"name": "CVE-2024-57938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57938"
},
{
"name": "CVE-2024-57946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57946"
},
{
"name": "CVE-2025-21653",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21653"
},
{
"name": "CVE-2025-21664",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21664"
},
{
"name": "CVE-2025-21666",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21666"
},
{
"name": "CVE-2025-21669",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21669"
},
{
"name": "CVE-2025-21670",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21670"
},
{
"name": "CVE-2025-21674",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21674"
},
{
"name": "CVE-2025-21675",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21675"
},
{
"name": "CVE-2025-21676",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21676"
},
{
"name": "CVE-2025-21678",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21678"
},
{
"name": "CVE-2025-21682",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21682"
},
{
"name": "CVE-2024-50164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50164"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2024-56703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56703"
},
{
"name": "CVE-2024-57925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57925"
},
{
"name": "CVE-2024-57939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57939"
},
{
"name": "CVE-2024-57948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57948"
},
{
"name": "CVE-2025-21631",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21631"
},
{
"name": "CVE-2025-21636",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21636"
},
{
"name": "CVE-2025-21637",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21637"
},
{
"name": "CVE-2025-21638",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21638"
},
{
"name": "CVE-2025-21639",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21639"
},
{
"name": "CVE-2025-21640",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21640"
},
{
"name": "CVE-2025-21648",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21648"
},
{
"name": "CVE-2025-21665",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21665"
},
{
"name": "CVE-2025-21667",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21667"
},
{
"name": "CVE-2025-21668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21668"
},
{
"name": "CVE-2025-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21680"
},
{
"name": "CVE-2025-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21681"
},
{
"name": "CVE-2025-21683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21683"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2024-56633",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56633"
},
{
"name": "CVE-2025-21673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21673"
},
{
"name": "CVE-2022-49034",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49034"
},
{
"name": "CVE-2024-47711",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47711"
},
{
"name": "CVE-2024-47726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47726"
},
{
"name": "CVE-2024-49865",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49865"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50030"
},
{
"name": "CVE-2024-50056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50056"
},
{
"name": "CVE-2024-50057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50057"
},
{
"name": "CVE-2024-50065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50065"
},
{
"name": "CVE-2024-50066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50066"
},
{
"name": "CVE-2024-50068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50068"
},
{
"name": "CVE-2024-50070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50070"
},
{
"name": "CVE-2024-50090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50090"
},
{
"name": "CVE-2024-50104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50104"
},
{
"name": "CVE-2024-50105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50105"
},
{
"name": "CVE-2024-50107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50107"
},
{
"name": "CVE-2024-50111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50111"
},
{
"name": "CVE-2024-50112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50112"
},
{
"name": "CVE-2024-50118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50118"
},
{
"name": "CVE-2024-50120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50120"
},
{
"name": "CVE-2024-50137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50137"
},
{
"name": "CVE-2024-50140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50140"
},
{
"name": "CVE-2024-50152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50152"
},
{
"name": "CVE-2024-50170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50170"
},
{
"name": "CVE-2024-50197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50197"
},
{
"name": "CVE-2024-50206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50206"
},
{
"name": "CVE-2024-50207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50207"
},
{
"name": "CVE-2024-50220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50220"
},
{
"name": "CVE-2024-50222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50222"
},
{
"name": "CVE-2024-50223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50223"
},
{
"name": "CVE-2024-50238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50238"
},
{
"name": "CVE-2024-50239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50239"
},
{
"name": "CVE-2024-50263",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50263"
},
{
"name": "CVE-2024-50270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50270"
},
{
"name": "CVE-2024-50285",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50285"
},
{
"name": "CVE-2024-50288",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50288"
},
{
"name": "CVE-2024-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50291"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-50297",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50297"
},
{
"name": "CVE-2024-50300",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50300"
},
{
"name": "CVE-2024-50303",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50303"
},
{
"name": "CVE-2024-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53044"
},
{
"name": "CVE-2024-53046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53046"
},
{
"name": "CVE-2024-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53053"
},
{
"name": "CVE-2024-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53062"
},
{
"name": "CVE-2024-53067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53067"
},
{
"name": "CVE-2024-53083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53083"
},
{
"name": "CVE-2024-53084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53084"
},
{
"name": "CVE-2024-53086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53086"
},
{
"name": "CVE-2024-53087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53087"
},
{
"name": "CVE-2024-53089",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53089"
},
{
"name": "CVE-2024-53107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53107"
},
{
"name": "CVE-2024-53109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53109"
},
{
"name": "CVE-2024-53115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53115"
},
{
"name": "CVE-2024-53139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53139"
},
{
"name": "CVE-2024-53145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53145"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53163"
},
{
"name": "CVE-2024-53165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53165"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53181"
},
{
"name": "CVE-2024-53183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53183"
},
{
"name": "CVE-2024-53184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53184"
},
{
"name": "CVE-2024-53218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53218"
},
{
"name": "CVE-2024-53219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53219"
},
{
"name": "CVE-2024-53220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53220"
},
{
"name": "CVE-2024-53221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53221"
},
{
"name": "CVE-2024-53223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53223"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-53228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53228"
},
{
"name": "CVE-2024-56540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56540"
},
{
"name": "CVE-2024-56545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56545"
},
{
"name": "CVE-2024-56685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56685"
},
{
"name": "CVE-2024-56689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56689"
},
{
"name": "CVE-2024-56692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56692"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2024-56742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56742"
},
{
"name": "CVE-2024-56744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56744"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2025-0927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0927"
},
{
"name": "CVE-2024-56579",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56579"
},
{
"name": "CVE-2024-56647",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56647"
},
{
"name": "CVE-2024-57889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57889"
},
{
"name": "CVE-2025-21684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21684"
},
{
"name": "CVE-2025-21687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21687"
},
{
"name": "CVE-2025-21689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21689"
},
{
"name": "CVE-2025-21690",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21690"
},
{
"name": "CVE-2025-21692",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21692"
},
{
"name": "CVE-2025-21697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21697"
},
{
"name": "CVE-2025-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21699"
},
{
"name": "CVE-2025-21700",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21700"
},
{
"name": "CVE-2024-43098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43098"
},
{
"name": "CVE-2024-47408",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47408"
},
{
"name": "CVE-2024-49571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49571"
},
{
"name": "CVE-2024-53680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53680"
},
{
"name": "CVE-2024-56581",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56581"
},
{
"name": "CVE-2024-56586",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56586"
},
{
"name": "CVE-2024-56626",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56626"
},
{
"name": "CVE-2024-56627",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56627"
},
{
"name": "CVE-2024-56640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56640"
},
{
"name": "CVE-2024-56770",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56770"
},
{
"name": "CVE-2024-56781",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56781"
},
{
"name": "CVE-2024-56783",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56783"
},
{
"name": "CVE-2024-56785",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56785"
},
{
"name": "CVE-2024-57807",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57807"
},
{
"name": "CVE-2024-57841",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57841"
},
{
"name": "CVE-2024-57900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57900"
},
{
"name": "CVE-2024-57901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57901"
},
{
"name": "CVE-2024-57902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57902"
},
{
"name": "CVE-2024-57949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57949"
},
{
"name": "CVE-2024-57951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57951"
},
{
"name": "CVE-2025-21694",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21694"
},
{
"name": "CVE-2022-0995",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0995"
},
{
"name": "CVE-2024-41932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41932"
},
{
"name": "CVE-2024-41935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41935"
},
{
"name": "CVE-2024-47794",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47794"
},
{
"name": "CVE-2024-48875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48875"
},
{
"name": "CVE-2024-48876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48876"
},
{
"name": "CVE-2024-56550",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56550"
},
{
"name": "CVE-2024-56561",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56561"
},
{
"name": "CVE-2024-56565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56565"
},
{
"name": "CVE-2024-56580",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56580"
},
{
"name": "CVE-2024-56583",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56583"
},
{
"name": "CVE-2024-56613",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56613"
},
{
"name": "CVE-2024-56621",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56621"
},
{
"name": "CVE-2024-56638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56638"
},
{
"name": "CVE-2024-56771",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56771"
},
{
"name": "CVE-2024-56772",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56772"
},
{
"name": "CVE-2024-56773",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56773"
},
{
"name": "CVE-2024-56782",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56782"
},
{
"name": "CVE-2024-56786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56786"
},
{
"name": "CVE-2024-57843",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57843"
},
{
"name": "CVE-2024-57872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57872"
},
{
"name": "CVE-2024-58087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58087"
},
{
"name": "CVE-2025-21701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21701"
},
{
"name": "CVE-2025-21703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21703"
},
{
"name": "CVE-2025-21693",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21693"
},
{
"name": "CVE-2025-21756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21756"
},
{
"name": "CVE-2025-21831",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21831"
},
{
"name": "CVE-2025-21702",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21702"
},
{
"name": "CVE-2025-21993",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21993"
},
{
"name": "CVE-2024-44955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44955"
},
{
"name": "CVE-2024-50032",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50032"
},
{
"name": "CVE-2024-57950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57950"
},
{
"name": "CVE-2024-57952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57952"
},
{
"name": "CVE-2025-21672",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21672"
},
{
"name": "CVE-2025-21677",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21677"
},
{
"name": "CVE-2025-21685",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21685"
},
{
"name": "CVE-2025-21691",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21691"
},
{
"name": "CVE-2025-21695",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21695"
},
{
"name": "CVE-2025-21696",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21696"
},
{
"name": "CVE-2025-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2312"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0349",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-25T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux d\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7459-1",
"url": "https://ubuntu.com/security/notices/USN-7459-1"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7451-1",
"url": "https://ubuntu.com/security/notices/USN-7451-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7449-2",
"url": "https://ubuntu.com/security/notices/USN-7449-2"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7450-1",
"url": "https://ubuntu.com/security/notices/USN-7450-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7461-1",
"url": "https://ubuntu.com/security/notices/USN-7461-1"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7453-1",
"url": "https://ubuntu.com/security/notices/USN-7453-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7462-1",
"url": "https://ubuntu.com/security/notices/USN-7462-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7463-1",
"url": "https://ubuntu.com/security/notices/USN-7463-1"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7445-1",
"url": "https://ubuntu.com/security/notices/USN-7445-1"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7448-1",
"url": "https://ubuntu.com/security/notices/USN-7448-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7461-2",
"url": "https://ubuntu.com/security/notices/USN-7461-2"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-1",
"url": "https://ubuntu.com/security/notices/USN-7455-1"
},
{
"published_at": "2025-04-22",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7402-5",
"url": "https://ubuntu.com/security/notices/USN-7402-5"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-2",
"url": "https://ubuntu.com/security/notices/USN-7455-2"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7460-1",
"url": "https://ubuntu.com/security/notices/USN-7460-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7462-2",
"url": "https://ubuntu.com/security/notices/USN-7462-2"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7452-1",
"url": "https://ubuntu.com/security/notices/USN-7452-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7458-1",
"url": "https://ubuntu.com/security/notices/USN-7458-1"
},
{
"published_at": "2025-04-24",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-3",
"url": "https://ubuntu.com/security/notices/USN-7455-3"
},
{
"published_at": "2025-04-23",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7449-1",
"url": "https://ubuntu.com/security/notices/USN-7449-1"
}
]
}
CERTFR-2025-AVI-0366
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 24.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-26928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26928"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-26837",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26837"
},
{
"name": "CVE-2024-41014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41014"
},
{
"name": "CVE-2024-41016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41016"
},
{
"name": "CVE-2024-42122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42122"
},
{
"name": "CVE-2024-42315",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42315"
},
{
"name": "CVE-2024-43900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43900"
},
{
"name": "CVE-2024-44938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44938"
},
{
"name": "CVE-2024-46784",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46784"
},
{
"name": "CVE-2024-46826",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46826"
},
{
"name": "CVE-2024-46809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46809"
},
{
"name": "CVE-2024-46841",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46841"
},
{
"name": "CVE-2024-46871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46871"
},
{
"name": "CVE-2024-47670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47670"
},
{
"name": "CVE-2024-47671",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47671"
},
{
"name": "CVE-2024-47672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47672"
},
{
"name": "CVE-2024-47673",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47673"
},
{
"name": "CVE-2024-47684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47684"
},
{
"name": "CVE-2024-47685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47685"
},
{
"name": "CVE-2024-47692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47692"
},
{
"name": "CVE-2024-47693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47693"
},
{
"name": "CVE-2024-47695",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47695"
},
{
"name": "CVE-2024-47696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47696"
},
{
"name": "CVE-2024-47697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47697"
},
{
"name": "CVE-2024-47698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47698"
},
{
"name": "CVE-2024-47699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47699"
},
{
"name": "CVE-2024-47704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47704"
},
{
"name": "CVE-2024-47705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47705"
},
{
"name": "CVE-2024-47706",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47706"
},
{
"name": "CVE-2024-47707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47707"
},
{
"name": "CVE-2024-47709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47709"
},
{
"name": "CVE-2024-47710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47710"
},
{
"name": "CVE-2024-47712",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47712"
},
{
"name": "CVE-2024-47713",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47713"
},
{
"name": "CVE-2024-47718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47718"
},
{
"name": "CVE-2024-47720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47720"
},
{
"name": "CVE-2024-47723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47723"
},
{
"name": "CVE-2024-47728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47728"
},
{
"name": "CVE-2024-47730",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47730"
},
{
"name": "CVE-2024-47735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47735"
},
{
"name": "CVE-2024-47737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47737"
},
{
"name": "CVE-2024-47738",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47738"
},
{
"name": "CVE-2024-47739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47739"
},
{
"name": "CVE-2024-47742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47742"
},
{
"name": "CVE-2024-47745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47745"
},
{
"name": "CVE-2024-47747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47747"
},
{
"name": "CVE-2024-47748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47748"
},
{
"name": "CVE-2024-47749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47749"
},
{
"name": "CVE-2024-47756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47756"
},
{
"name": "CVE-2024-47757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47757"
},
{
"name": "CVE-2024-49851",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49851"
},
{
"name": "CVE-2024-49852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49852"
},
{
"name": "CVE-2024-49855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49855"
},
{
"name": "CVE-2024-49858",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49858"
},
{
"name": "CVE-2024-49860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49860"
},
{
"name": "CVE-2024-49861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49861"
},
{
"name": "CVE-2024-49863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49863"
},
{
"name": "CVE-2024-49866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49866"
},
{
"name": "CVE-2024-49867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49867"
},
{
"name": "CVE-2024-49870",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49870"
},
{
"name": "CVE-2024-49871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49871"
},
{
"name": "CVE-2024-49875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49875"
},
{
"name": "CVE-2024-49877",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49877"
},
{
"name": "CVE-2024-49878",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49878"
},
{
"name": "CVE-2024-49879",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49879"
},
{
"name": "CVE-2024-49881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49881"
},
{
"name": "CVE-2024-49882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49882"
},
{
"name": "CVE-2024-49883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49883"
},
{
"name": "CVE-2024-49886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49886"
},
{
"name": "CVE-2024-49888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49888"
},
{
"name": "CVE-2024-49890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49890"
},
{
"name": "CVE-2024-49891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49891"
},
{
"name": "CVE-2024-49892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49892"
},
{
"name": "CVE-2024-49894",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49894"
},
{
"name": "CVE-2024-49895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49895"
},
{
"name": "CVE-2024-49896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49896"
},
{
"name": "CVE-2024-49898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49898"
},
{
"name": "CVE-2024-49899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49899"
},
{
"name": "CVE-2024-49900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49900"
},
{
"name": "CVE-2024-49901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49901"
},
{
"name": "CVE-2024-49902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49902"
},
{
"name": "CVE-2024-49903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49903"
},
{
"name": "CVE-2024-49906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49906"
},
{
"name": "CVE-2024-49907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49907"
},
{
"name": "CVE-2024-49909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49909"
},
{
"name": "CVE-2024-49911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49911"
},
{
"name": "CVE-2024-49912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49912"
},
{
"name": "CVE-2024-49913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49913"
},
{
"name": "CVE-2024-49914",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49914"
},
{
"name": "CVE-2024-49917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49917"
},
{
"name": "CVE-2024-49918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49918"
},
{
"name": "CVE-2024-49919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49919"
},
{
"name": "CVE-2024-49920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49920"
},
{
"name": "CVE-2024-49922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49922"
},
{
"name": "CVE-2024-49923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49923"
},
{
"name": "CVE-2024-49928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49928"
},
{
"name": "CVE-2024-49929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49929"
},
{
"name": "CVE-2024-49930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49930"
},
{
"name": "CVE-2024-49931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49931"
},
{
"name": "CVE-2024-49933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49933"
},
{
"name": "CVE-2024-49935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49935"
},
{
"name": "CVE-2024-49936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49936"
},
{
"name": "CVE-2024-49937",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49937"
},
{
"name": "CVE-2024-49938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49938"
},
{
"name": "CVE-2024-49939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49939"
},
{
"name": "CVE-2024-49946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49946"
},
{
"name": "CVE-2024-49949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49949"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49954"
},
{
"name": "CVE-2024-49955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49955"
},
{
"name": "CVE-2024-49957",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49957"
},
{
"name": "CVE-2024-49958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49958"
},
{
"name": "CVE-2024-49959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49959"
},
{
"name": "CVE-2024-49960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49960"
},
{
"name": "CVE-2024-49961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49961"
},
{
"name": "CVE-2024-49962",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49962"
},
{
"name": "CVE-2024-49963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49963"
},
{
"name": "CVE-2024-49965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49965"
},
{
"name": "CVE-2024-49966",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49966"
},
{
"name": "CVE-2024-49969",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49969"
},
{
"name": "CVE-2024-49972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49972"
},
{
"name": "CVE-2024-49973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49973"
},
{
"name": "CVE-2024-49974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49974"
},
{
"name": "CVE-2024-49975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49975"
},
{
"name": "CVE-2024-49981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49981"
},
{
"name": "CVE-2024-49982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49982"
},
{
"name": "CVE-2024-49985",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49985"
},
{
"name": "CVE-2024-49991",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49991"
},
{
"name": "CVE-2024-49996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49996"
},
{
"name": "CVE-2024-50000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50000"
},
{
"name": "CVE-2024-50001",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50001"
},
{
"name": "CVE-2024-50002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50002"
},
{
"name": "CVE-2024-50006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50006"
},
{
"name": "CVE-2024-50007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50007"
},
{
"name": "CVE-2024-50008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50008"
},
{
"name": "CVE-2024-50013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50013"
},
{
"name": "CVE-2024-50014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50014"
},
{
"name": "CVE-2024-50015",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50015"
},
{
"name": "CVE-2024-50017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50017"
},
{
"name": "CVE-2024-50019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50019"
},
{
"name": "CVE-2024-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50020"
},
{
"name": "CVE-2024-50021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50021"
},
{
"name": "CVE-2024-50022",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50022"
},
{
"name": "CVE-2024-50023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50023"
},
{
"name": "CVE-2024-50024",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50024"
},
{
"name": "CVE-2024-50025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50025"
},
{
"name": "CVE-2024-50027",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50027"
},
{
"name": "CVE-2024-50028",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50028"
},
{
"name": "CVE-2024-50031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50031"
},
{
"name": "CVE-2024-50033",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50033"
},
{
"name": "CVE-2024-50035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50035"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2024-50041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50041"
},
{
"name": "CVE-2024-50042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50042"
},
{
"name": "CVE-2024-50044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50044"
},
{
"name": "CVE-2024-50045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50045"
},
{
"name": "CVE-2024-50046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50046"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50048"
},
{
"name": "CVE-2024-50049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50049"
},
{
"name": "CVE-2024-50055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50055"
},
{
"name": "CVE-2024-50058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50058"
},
{
"name": "CVE-2024-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50059"
},
{
"name": "CVE-2024-50060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50060"
},
{
"name": "CVE-2024-50061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50061"
},
{
"name": "CVE-2024-50062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50062"
},
{
"name": "CVE-2024-50063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50063"
},
{
"name": "CVE-2024-50064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50064"
},
{
"name": "CVE-2024-50069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50069"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50074"
},
{
"name": "CVE-2024-50075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50075"
},
{
"name": "CVE-2024-50076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50076"
},
{
"name": "CVE-2024-50077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50077"
},
{
"name": "CVE-2024-50078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50078"
},
{
"name": "CVE-2024-50080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50080"
},
{
"name": "CVE-2024-50012",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50012"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50072"
},
{
"name": "CVE-2024-50126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50126"
},
{
"name": "CVE-2024-50215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50215"
},
{
"name": "CVE-2024-50218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50218"
},
{
"name": "CVE-2024-50229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50229"
},
{
"name": "CVE-2024-50230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50230"
},
{
"name": "CVE-2024-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50232"
},
{
"name": "CVE-2024-50233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50233"
},
{
"name": "CVE-2024-50234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50234"
},
{
"name": "CVE-2024-50235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50235"
},
{
"name": "CVE-2024-50236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50236"
},
{
"name": "CVE-2024-50237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50237"
},
{
"name": "CVE-2024-50242",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50242"
},
{
"name": "CVE-2024-50243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50243"
},
{
"name": "CVE-2024-50244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50244"
},
{
"name": "CVE-2024-50245",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50245"
},
{
"name": "CVE-2024-50247",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50247"
},
{
"name": "CVE-2024-50250",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50250"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50255"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50257",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50257"
},
{
"name": "CVE-2024-50259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50259"
},
{
"name": "CVE-2024-50261",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50261"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50265",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50265"
},
{
"name": "CVE-2024-50267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50267"
},
{
"name": "CVE-2024-50268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50268"
},
{
"name": "CVE-2024-50269",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50269"
},
{
"name": "CVE-2024-50271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50271"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50273",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50273"
},
{
"name": "CVE-2024-50276",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50276"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50282"
},
{
"name": "CVE-2024-50283",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50283"
},
{
"name": "CVE-2024-50284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50284"
},
{
"name": "CVE-2024-50286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50286"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50292"
},
{
"name": "CVE-2024-50295",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50295"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2024-50302",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50302"
},
{
"name": "CVE-2024-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53042"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53052"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53058"
},
{
"name": "CVE-2024-53059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53059"
},
{
"name": "CVE-2024-53061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53061"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53066"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53081"
},
{
"name": "CVE-2024-53082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53082"
},
{
"name": "CVE-2024-53088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53088"
},
{
"name": "CVE-2024-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53093"
},
{
"name": "CVE-2024-50226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50226"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-49945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49945"
},
{
"name": "CVE-2024-50208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50208"
},
{
"name": "CVE-2024-50082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50082"
},
{
"name": "CVE-2024-50099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50099"
},
{
"name": "CVE-2024-50110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50110"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-50192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50192"
},
{
"name": "CVE-2024-47679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47679"
},
{
"name": "CVE-2024-47690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47690"
},
{
"name": "CVE-2024-47701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47701"
},
{
"name": "CVE-2024-47734",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47734"
},
{
"name": "CVE-2024-47740",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47740"
},
{
"name": "CVE-2024-49856",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49856"
},
{
"name": "CVE-2024-49868",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49868"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49889"
},
{
"name": "CVE-2024-49893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49893"
},
{
"name": "CVE-2024-49905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49905"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-49921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49921"
},
{
"name": "CVE-2024-49924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49924"
},
{
"name": "CVE-2024-49927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49927"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49948"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-49977",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49977"
},
{
"name": "CVE-2024-49983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49983"
},
{
"name": "CVE-2024-49997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49997"
},
{
"name": "CVE-2024-50038",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50038"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50093"
},
{
"name": "CVE-2024-50095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50095"
},
{
"name": "CVE-2024-50096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50096"
},
{
"name": "CVE-2024-50179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50179"
},
{
"name": "CVE-2024-50180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50180"
},
{
"name": "CVE-2024-50184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50184"
},
{
"name": "CVE-2024-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50186"
},
{
"name": "CVE-2024-50188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50188"
},
{
"name": "CVE-2024-50189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50189"
},
{
"name": "CVE-2024-50191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50191"
},
{
"name": "CVE-2024-47703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47703"
},
{
"name": "CVE-2024-49934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49934"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2024-49987",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49987"
},
{
"name": "CVE-2024-49989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49989"
},
{
"name": "CVE-2024-50009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50009"
},
{
"name": "CVE-2024-50026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50026"
},
{
"name": "CVE-2024-50084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50084"
},
{
"name": "CVE-2024-50087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50087"
},
{
"name": "CVE-2024-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50088"
},
{
"name": "CVE-2024-50098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50098"
},
{
"name": "CVE-2024-50101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50101"
},
{
"name": "CVE-2024-50103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50103"
},
{
"name": "CVE-2024-50108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50108"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50116"
},
{
"name": "CVE-2024-50117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50117"
},
{
"name": "CVE-2024-50121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50121"
},
{
"name": "CVE-2024-50124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50124"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-50127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50127"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50130"
},
{
"name": "CVE-2024-50131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50131"
},
{
"name": "CVE-2024-50134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50134"
},
{
"name": "CVE-2024-50135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50135"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50138"
},
{
"name": "CVE-2024-50139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50139"
},
{
"name": "CVE-2024-50141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50141"
},
{
"name": "CVE-2024-50145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50145"
},
{
"name": "CVE-2024-50146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50146"
},
{
"name": "CVE-2024-50147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50147"
},
{
"name": "CVE-2024-50148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50148"
},
{
"name": "CVE-2024-50150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50150"
},
{
"name": "CVE-2024-50153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50153"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50155"
},
{
"name": "CVE-2024-50156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50156"
},
{
"name": "CVE-2024-50158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50158"
},
{
"name": "CVE-2024-50159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50159"
},
{
"name": "CVE-2024-50160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50160"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50167"
},
{
"name": "CVE-2024-50169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50169"
},
{
"name": "CVE-2024-50171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50171"
},
{
"name": "CVE-2024-50172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50172"
},
{
"name": "CVE-2024-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50182"
},
{
"name": "CVE-2024-50183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50183"
},
{
"name": "CVE-2024-50187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50187"
},
{
"name": "CVE-2024-50194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50194"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50196"
},
{
"name": "CVE-2024-50198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50198"
},
{
"name": "CVE-2024-50200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50200"
},
{
"name": "CVE-2024-50201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50201"
},
{
"name": "CVE-2024-50205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50205"
},
{
"name": "CVE-2024-50209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50209"
},
{
"name": "CVE-2024-50216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50216"
},
{
"name": "CVE-2024-50221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50221"
},
{
"name": "CVE-2024-50224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50224"
},
{
"name": "CVE-2024-50225",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50225"
},
{
"name": "CVE-2024-50231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50231"
},
{
"name": "CVE-2024-50240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50240"
},
{
"name": "CVE-2024-50246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50246"
},
{
"name": "CVE-2024-50248",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50248"
},
{
"name": "CVE-2024-50274",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50274"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-50289",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50289"
},
{
"name": "CVE-2024-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50298"
},
{
"name": "CVE-2024-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53045"
},
{
"name": "CVE-2024-53048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53048"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53068"
},
{
"name": "CVE-2024-53076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53076"
},
{
"name": "CVE-2024-53079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53079"
},
{
"name": "CVE-2024-53085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53085"
},
{
"name": "CVE-2024-53094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53094"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53096"
},
{
"name": "CVE-2024-53100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53100"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53106"
},
{
"name": "CVE-2024-53108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53108"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-49859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49859"
},
{
"name": "CVE-2024-49978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49978"
},
{
"name": "CVE-2024-49992",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49992"
},
{
"name": "CVE-2024-50010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50010"
},
{
"name": "CVE-2024-50083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50083"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50086"
},
{
"name": "CVE-2024-50133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50133"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50162"
},
{
"name": "CVE-2024-50163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50163"
},
{
"name": "CVE-2024-50168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50168"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50193"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-36476",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36476"
},
{
"name": "CVE-2024-45828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45828"
},
{
"name": "CVE-2024-47141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47141"
},
{
"name": "CVE-2024-47143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47143"
},
{
"name": "CVE-2024-47809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47809"
},
{
"name": "CVE-2024-48873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48873"
},
{
"name": "CVE-2024-48881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48881"
},
{
"name": "CVE-2024-49569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49569"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50051"
},
{
"name": "CVE-2024-52332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52332"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-53685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53685"
},
{
"name": "CVE-2024-53690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53690"
},
{
"name": "CVE-2024-55881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55881"
},
{
"name": "CVE-2024-55916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55916"
},
{
"name": "CVE-2024-56369",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56369"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-56557",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56557"
},
{
"name": "CVE-2024-56558",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56558"
},
{
"name": "CVE-2024-56568",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56568"
},
{
"name": "CVE-2024-56569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56569"
},
{
"name": "CVE-2024-56572",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56572"
},
{
"name": "CVE-2024-56573",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56573"
},
{
"name": "CVE-2024-56574",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56574"
},
{
"name": "CVE-2024-53164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53164"
},
{
"name": "CVE-2024-56577",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56577"
},
{
"name": "CVE-2024-56578",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56578"
},
{
"name": "CVE-2024-56584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56584"
},
{
"name": "CVE-2024-56587",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56587"
},
{
"name": "CVE-2024-56588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56588"
},
{
"name": "CVE-2024-56589",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56589"
},
{
"name": "CVE-2024-56590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56590"
},
{
"name": "CVE-2024-56593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56593"
},
{
"name": "CVE-2024-56594",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56594"
},
{
"name": "CVE-2024-56595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56595"
},
{
"name": "CVE-2024-56596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56596"
},
{
"name": "CVE-2024-56597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56597"
},
{
"name": "CVE-2024-56602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56602"
},
{
"name": "CVE-2024-56603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56603"
},
{
"name": "CVE-2024-56606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56606"
},
{
"name": "CVE-2024-56607",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56607"
},
{
"name": "CVE-2024-56609",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56609"
},
{
"name": "CVE-2024-56611",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56611"
},
{
"name": "CVE-2024-56614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56614"
},
{
"name": "CVE-2024-56615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56615"
},
{
"name": "CVE-2024-56616",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56616"
},
{
"name": "CVE-2024-56620",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56620"
},
{
"name": "CVE-2024-56622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56622"
},
{
"name": "CVE-2024-56623",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56623"
},
{
"name": "CVE-2024-56625",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56625"
},
{
"name": "CVE-2024-56629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56629"
},
{
"name": "CVE-2024-56630",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56630"
},
{
"name": "CVE-2024-56632",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56632"
},
{
"name": "CVE-2024-56634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56634"
},
{
"name": "CVE-2024-56635",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56635"
},
{
"name": "CVE-2024-56636",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56636"
},
{
"name": "CVE-2024-56637",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56637"
},
{
"name": "CVE-2024-56641",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56641"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56643"
},
{
"name": "CVE-2024-56644",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56644"
},
{
"name": "CVE-2024-56648",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56648"
},
{
"name": "CVE-2024-56649",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56649"
},
{
"name": "CVE-2024-56651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56651"
},
{
"name": "CVE-2024-56659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56659"
},
{
"name": "CVE-2024-56662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56662"
},
{
"name": "CVE-2024-56663",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56663"
},
{
"name": "CVE-2024-56670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56670"
},
{
"name": "CVE-2024-56672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56672"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56716"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-56759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56759"
},
{
"name": "CVE-2024-56765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56765"
},
{
"name": "CVE-2024-56767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56767"
},
{
"name": "CVE-2024-56769",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56769"
},
{
"name": "CVE-2024-56774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56774"
},
{
"name": "CVE-2024-56775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56775"
},
{
"name": "CVE-2024-56776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56776"
},
{
"name": "CVE-2024-56777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56777"
},
{
"name": "CVE-2024-56778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56778"
},
{
"name": "CVE-2024-56779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56779"
},
{
"name": "CVE-2024-56780",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56780"
},
{
"name": "CVE-2024-56787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56787"
},
{
"name": "CVE-2024-57791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57791"
},
{
"name": "CVE-2024-57792",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57792"
},
{
"name": "CVE-2024-57798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57798"
},
{
"name": "CVE-2024-57838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57838"
},
{
"name": "CVE-2024-57849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57849"
},
{
"name": "CVE-2024-57850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57850"
},
{
"name": "CVE-2024-57874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57874"
},
{
"name": "CVE-2024-57876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57876"
},
{
"name": "CVE-2024-57890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57890"
},
{
"name": "CVE-2024-57892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57892"
},
{
"name": "CVE-2024-57896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57896"
},
{
"name": "CVE-2024-57897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57897"
},
{
"name": "CVE-2024-57903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57903"
},
{
"name": "CVE-2024-57904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57904"
},
{
"name": "CVE-2024-57906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57906"
},
{
"name": "CVE-2024-57907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57907"
},
{
"name": "CVE-2024-57908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57908"
},
{
"name": "CVE-2024-57910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57910"
},
{
"name": "CVE-2024-57911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57911"
},
{
"name": "CVE-2024-57912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57912"
},
{
"name": "CVE-2024-57913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57913"
},
{
"name": "CVE-2024-57922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57922"
},
{
"name": "CVE-2024-57929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57929"
},
{
"name": "CVE-2024-57940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57940"
},
{
"name": "CVE-2025-21646",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21646"
},
{
"name": "CVE-2024-53047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53047"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-53187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53187"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-56592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56592"
},
{
"name": "CVE-2024-56600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56600"
},
{
"name": "CVE-2024-56601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56601"
},
{
"name": "CVE-2024-56608",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56608"
},
{
"name": "CVE-2024-56610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56610"
},
{
"name": "CVE-2024-56650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56650"
},
{
"name": "CVE-2024-56658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
},
{
"name": "CVE-2024-56679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56679"
},
{
"name": "CVE-2024-56693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56693"
},
{
"name": "CVE-2024-56707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56707"
},
{
"name": "CVE-2024-56715",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56715"
},
{
"name": "CVE-2024-56725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56725"
},
{
"name": "CVE-2024-56726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56726"
},
{
"name": "CVE-2024-56727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56727"
},
{
"name": "CVE-2024-56728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56728"
},
{
"name": "CVE-2024-56763",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56763"
},
{
"name": "CVE-2024-57802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57802"
},
{
"name": "CVE-2024-57882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57882"
},
{
"name": "CVE-2024-57884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57884"
},
{
"name": "CVE-2024-57917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57917"
},
{
"name": "CVE-2024-57931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57931"
},
{
"name": "CVE-2024-57938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57938"
},
{
"name": "CVE-2024-57946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57946"
},
{
"name": "CVE-2025-21653",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21653"
},
{
"name": "CVE-2025-21664",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21664"
},
{
"name": "CVE-2025-21666",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21666"
},
{
"name": "CVE-2025-21669",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21669"
},
{
"name": "CVE-2025-21678",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21678"
},
{
"name": "CVE-2024-49994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49994"
},
{
"name": "CVE-2024-50164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50164"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2024-56703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56703"
},
{
"name": "CVE-2024-57925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57925"
},
{
"name": "CVE-2024-57939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57939"
},
{
"name": "CVE-2024-57948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57948"
},
{
"name": "CVE-2025-21631",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21631"
},
{
"name": "CVE-2025-21636",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21636"
},
{
"name": "CVE-2025-21637",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21637"
},
{
"name": "CVE-2025-21638",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21638"
},
{
"name": "CVE-2025-21639",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21639"
},
{
"name": "CVE-2025-21640",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21640"
},
{
"name": "CVE-2025-21648",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21648"
},
{
"name": "CVE-2025-21665",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21665"
},
{
"name": "CVE-2025-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21680"
},
{
"name": "CVE-2025-21683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21683"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2024-56633",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56633"
},
{
"name": "CVE-2022-49034",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49034"
},
{
"name": "CVE-2024-47689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47689"
},
{
"name": "CVE-2024-47691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47691"
},
{
"name": "CVE-2024-47711",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47711"
},
{
"name": "CVE-2024-47726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47726"
},
{
"name": "CVE-2024-49865",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49865"
},
{
"name": "CVE-2024-49880",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49880"
},
{
"name": "CVE-2024-49926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49926"
},
{
"name": "CVE-2024-49988",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49988"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50030"
},
{
"name": "CVE-2024-50056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50056"
},
{
"name": "CVE-2024-50057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50057"
},
{
"name": "CVE-2024-50065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50065"
},
{
"name": "CVE-2024-50066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50066"
},
{
"name": "CVE-2024-50068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50068"
},
{
"name": "CVE-2024-50070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50070"
},
{
"name": "CVE-2024-50090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50090"
},
{
"name": "CVE-2024-50104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50104"
},
{
"name": "CVE-2024-50105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50105"
},
{
"name": "CVE-2024-50107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50107"
},
{
"name": "CVE-2024-50111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50111"
},
{
"name": "CVE-2024-50112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50112"
},
{
"name": "CVE-2024-50118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50118"
},
{
"name": "CVE-2024-50120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50120"
},
{
"name": "CVE-2024-50137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50137"
},
{
"name": "CVE-2024-50140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50140"
},
{
"name": "CVE-2024-50152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50152"
},
{
"name": "CVE-2024-50170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50170"
},
{
"name": "CVE-2024-50197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50197"
},
{
"name": "CVE-2024-50206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50206"
},
{
"name": "CVE-2024-50207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50207"
},
{
"name": "CVE-2024-50220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50220"
},
{
"name": "CVE-2024-50222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50222"
},
{
"name": "CVE-2024-50223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50223"
},
{
"name": "CVE-2024-50238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50238"
},
{
"name": "CVE-2024-50239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50239"
},
{
"name": "CVE-2024-50263",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50263"
},
{
"name": "CVE-2024-50270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50270"
},
{
"name": "CVE-2024-50285",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50285"
},
{
"name": "CVE-2024-50288",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50288"
},
{
"name": "CVE-2024-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50291"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-50297",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50297"
},
{
"name": "CVE-2024-50300",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50300"
},
{
"name": "CVE-2024-50303",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50303"
},
{
"name": "CVE-2024-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53044"
},
{
"name": "CVE-2024-53046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53046"
},
{
"name": "CVE-2024-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53053"
},
{
"name": "CVE-2024-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53062"
},
{
"name": "CVE-2024-53067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53067"
},
{
"name": "CVE-2024-53083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53083"
},
{
"name": "CVE-2024-53084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53084"
},
{
"name": "CVE-2024-53086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53086"
},
{
"name": "CVE-2024-53087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53087"
},
{
"name": "CVE-2024-53089",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53089"
},
{
"name": "CVE-2024-53107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53107"
},
{
"name": "CVE-2024-53109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53109"
},
{
"name": "CVE-2024-53115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53115"
},
{
"name": "CVE-2024-53139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53139"
},
{
"name": "CVE-2024-53145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53145"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53163"
},
{
"name": "CVE-2024-53165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53165"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53181"
},
{
"name": "CVE-2024-53183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53183"
},
{
"name": "CVE-2024-53184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53184"
},
{
"name": "CVE-2024-53218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53218"
},
{
"name": "CVE-2024-53219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53219"
},
{
"name": "CVE-2024-53220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53220"
},
{
"name": "CVE-2024-53221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53221"
},
{
"name": "CVE-2024-53223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53223"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-53228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53228"
},
{
"name": "CVE-2024-56540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56540"
},
{
"name": "CVE-2024-56545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56545"
},
{
"name": "CVE-2024-56685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56685"
},
{
"name": "CVE-2024-56689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56689"
},
{
"name": "CVE-2024-56692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56692"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2024-56742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56742"
},
{
"name": "CVE-2024-56744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56744"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2025-0927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0927"
},
{
"name": "CVE-2024-56579",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56579"
},
{
"name": "CVE-2024-56647",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56647"
},
{
"name": "CVE-2024-57889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57889"
},
{
"name": "CVE-2025-21687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21687"
},
{
"name": "CVE-2025-21689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21689"
},
{
"name": "CVE-2025-21690",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21690"
},
{
"name": "CVE-2025-21692",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21692"
},
{
"name": "CVE-2025-21697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21697"
},
{
"name": "CVE-2025-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21699"
},
{
"name": "CVE-2025-21700",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21700"
},
{
"name": "CVE-2024-43098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43098"
},
{
"name": "CVE-2024-47408",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47408"
},
{
"name": "CVE-2024-49571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49571"
},
{
"name": "CVE-2024-53680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53680"
},
{
"name": "CVE-2024-56581",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56581"
},
{
"name": "CVE-2024-56586",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56586"
},
{
"name": "CVE-2024-56626",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56626"
},
{
"name": "CVE-2024-56627",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56627"
},
{
"name": "CVE-2024-56640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56640"
},
{
"name": "CVE-2024-56770",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56770"
},
{
"name": "CVE-2024-56781",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56781"
},
{
"name": "CVE-2024-56785",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56785"
},
{
"name": "CVE-2024-57807",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57807"
},
{
"name": "CVE-2024-57841",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57841"
},
{
"name": "CVE-2024-57900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57900"
},
{
"name": "CVE-2024-57901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57901"
},
{
"name": "CVE-2024-57902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57902"
},
{
"name": "CVE-2024-57951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57951"
},
{
"name": "CVE-2025-21694",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21694"
},
{
"name": "CVE-2022-0995",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0995"
},
{
"name": "CVE-2024-41932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41932"
},
{
"name": "CVE-2024-41935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41935"
},
{
"name": "CVE-2024-47794",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47794"
},
{
"name": "CVE-2024-48875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48875"
},
{
"name": "CVE-2024-48876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48876"
},
{
"name": "CVE-2024-56550",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56550"
},
{
"name": "CVE-2024-56565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56565"
},
{
"name": "CVE-2024-56580",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56580"
},
{
"name": "CVE-2024-56583",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56583"
},
{
"name": "CVE-2024-56613",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56613"
},
{
"name": "CVE-2024-56621",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56621"
},
{
"name": "CVE-2024-56638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56638"
},
{
"name": "CVE-2024-56771",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56771"
},
{
"name": "CVE-2024-56772",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56772"
},
{
"name": "CVE-2024-56773",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56773"
},
{
"name": "CVE-2024-56782",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56782"
},
{
"name": "CVE-2024-56786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56786"
},
{
"name": "CVE-2024-57843",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57843"
},
{
"name": "CVE-2024-57872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57872"
},
{
"name": "CVE-2024-58087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58087"
},
{
"name": "CVE-2025-21701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21701"
},
{
"name": "CVE-2025-21703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21703"
},
{
"name": "CVE-2025-21756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21756"
},
{
"name": "CVE-2025-21831",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21831"
},
{
"name": "CVE-2025-21702",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21702"
},
{
"name": "CVE-2025-21993",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21993"
},
{
"name": "CVE-2024-44955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44955"
},
{
"name": "CVE-2025-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2312"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0366",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-05-02T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux d\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": "2025-04-25",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-4",
"url": "https://ubuntu.com/security/notices/USN-7455-4"
},
{
"published_at": "2025-04-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7459-2",
"url": "https://ubuntu.com/security/notices/USN-7459-2"
},
{
"published_at": "2025-04-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7468-1",
"url": "https://ubuntu.com/security/notices/USN-7468-1"
},
{
"published_at": "2025-04-29",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-5",
"url": "https://ubuntu.com/security/notices/USN-7455-5"
}
]
}
CERTFR-2025-AVI-0152
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et un déni de service.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 16.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 18.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.10",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 22.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-26800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26800"
},
{
"name": "CVE-2024-26921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26921"
},
{
"name": "CVE-2024-38630",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38630"
},
{
"name": "CVE-2024-43882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43882"
},
{
"name": "CVE-2023-52917",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52917"
},
{
"name": "CVE-2024-47671",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47671"
},
{
"name": "CVE-2024-47675",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47675"
},
{
"name": "CVE-2024-47681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47681"
},
{
"name": "CVE-2024-47682",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47682"
},
{
"name": "CVE-2024-47684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47684"
},
{
"name": "CVE-2024-47685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47685"
},
{
"name": "CVE-2024-47686",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47686"
},
{
"name": "CVE-2024-47687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47687"
},
{
"name": "CVE-2024-47688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47688"
},
{
"name": "CVE-2024-47692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47692"
},
{
"name": "CVE-2024-47693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47693"
},
{
"name": "CVE-2024-47695",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47695"
},
{
"name": "CVE-2024-47696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47696"
},
{
"name": "CVE-2024-47697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47697"
},
{
"name": "CVE-2024-47698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47698"
},
{
"name": "CVE-2024-47699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47699"
},
{
"name": "CVE-2024-47702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47702"
},
{
"name": "CVE-2024-47704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47704"
},
{
"name": "CVE-2024-47705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47705"
},
{
"name": "CVE-2024-47706",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47706"
},
{
"name": "CVE-2024-47707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47707"
},
{
"name": "CVE-2024-47709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47709"
},
{
"name": "CVE-2024-47710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47710"
},
{
"name": "CVE-2024-47712",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47712"
},
{
"name": "CVE-2024-47713",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47713"
},
{
"name": "CVE-2024-47714",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47714"
},
{
"name": "CVE-2024-47715",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47715"
},
{
"name": "CVE-2024-47718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47718"
},
{
"name": "CVE-2024-47719",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47719"
},
{
"name": "CVE-2024-47720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47720"
},
{
"name": "CVE-2024-47723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47723"
},
{
"name": "CVE-2024-47727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47727"
},
{
"name": "CVE-2024-47728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47728"
},
{
"name": "CVE-2024-47730",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47730"
},
{
"name": "CVE-2024-47731",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47731"
},
{
"name": "CVE-2024-47732",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47732"
},
{
"name": "CVE-2024-47735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47735"
},
{
"name": "CVE-2024-47737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47737"
},
{
"name": "CVE-2024-47738",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47738"
},
{
"name": "CVE-2024-47739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47739"
},
{
"name": "CVE-2024-47741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47741"
},
{
"name": "CVE-2024-47742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47742"
},
{
"name": "CVE-2024-47743",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47743"
},
{
"name": "CVE-2024-47744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47744"
},
{
"name": "CVE-2024-47745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47745"
},
{
"name": "CVE-2024-47747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47747"
},
{
"name": "CVE-2024-47748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47748"
},
{
"name": "CVE-2024-47749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47749"
},
{
"name": "CVE-2024-47750",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47750"
},
{
"name": "CVE-2024-47751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47751"
},
{
"name": "CVE-2024-47752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47752"
},
{
"name": "CVE-2024-47753",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47753"
},
{
"name": "CVE-2024-47754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47754"
},
{
"name": "CVE-2024-47756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47756"
},
{
"name": "CVE-2024-47757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47757"
},
{
"name": "CVE-2024-49850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49850"
},
{
"name": "CVE-2024-49851",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49851"
},
{
"name": "CVE-2024-49852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49852"
},
{
"name": "CVE-2024-49853",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49853"
},
{
"name": "CVE-2024-49855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49855"
},
{
"name": "CVE-2024-49858",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49858"
},
{
"name": "CVE-2024-49860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49860"
},
{
"name": "CVE-2024-49861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49861"
},
{
"name": "CVE-2024-49862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49862"
},
{
"name": "CVE-2024-49863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49863"
},
{
"name": "CVE-2024-49864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49864"
},
{
"name": "CVE-2024-49866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49866"
},
{
"name": "CVE-2024-49867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49867"
},
{
"name": "CVE-2024-49870",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49870"
},
{
"name": "CVE-2024-49871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49871"
},
{
"name": "CVE-2024-49874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49874"
},
{
"name": "CVE-2024-49875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49875"
},
{
"name": "CVE-2024-49877",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49877"
},
{
"name": "CVE-2024-49878",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49878"
},
{
"name": "CVE-2024-49879",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49879"
},
{
"name": "CVE-2024-49881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49881"
},
{
"name": "CVE-2024-49882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49882"
},
{
"name": "CVE-2024-49883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49883"
},
{
"name": "CVE-2024-49886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49886"
},
{
"name": "CVE-2024-49888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49888"
},
{
"name": "CVE-2024-49890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49890"
},
{
"name": "CVE-2024-49891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49891"
},
{
"name": "CVE-2024-49892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49892"
},
{
"name": "CVE-2024-49894",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49894"
},
{
"name": "CVE-2024-49895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49895"
},
{
"name": "CVE-2024-49896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49896"
},
{
"name": "CVE-2024-49897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49897"
},
{
"name": "CVE-2024-49898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49898"
},
{
"name": "CVE-2024-49899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49899"
},
{
"name": "CVE-2024-49900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49900"
},
{
"name": "CVE-2024-49901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49901"
},
{
"name": "CVE-2024-49902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49902"
},
{
"name": "CVE-2024-49903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49903"
},
{
"name": "CVE-2024-49906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49906"
},
{
"name": "CVE-2024-49907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49907"
},
{
"name": "CVE-2024-49908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49908"
},
{
"name": "CVE-2024-49909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49909"
},
{
"name": "CVE-2024-49911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49911"
},
{
"name": "CVE-2024-49912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49912"
},
{
"name": "CVE-2024-49913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49913"
},
{
"name": "CVE-2024-49914",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49914"
},
{
"name": "CVE-2024-49917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49917"
},
{
"name": "CVE-2024-49918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49918"
},
{
"name": "CVE-2024-49919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49919"
},
{
"name": "CVE-2024-49920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49920"
},
{
"name": "CVE-2024-49922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49922"
},
{
"name": "CVE-2024-49923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49923"
},
{
"name": "CVE-2024-49928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49928"
},
{
"name": "CVE-2024-49929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49929"
},
{
"name": "CVE-2024-49930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49930"
},
{
"name": "CVE-2024-49931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49931"
},
{
"name": "CVE-2024-49933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49933"
},
{
"name": "CVE-2024-49935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49935"
},
{
"name": "CVE-2024-49936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49936"
},
{
"name": "CVE-2024-49937",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49937"
},
{
"name": "CVE-2024-49938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49938"
},
{
"name": "CVE-2024-49939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49939"
},
{
"name": "CVE-2024-49946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49946"
},
{
"name": "CVE-2024-49947",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49947"
},
{
"name": "CVE-2024-49949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49949"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49953"
},
{
"name": "CVE-2024-49954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49954"
},
{
"name": "CVE-2024-49955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49955"
},
{
"name": "CVE-2024-49957",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49957"
},
{
"name": "CVE-2024-49958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49958"
},
{
"name": "CVE-2024-49959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49959"
},
{
"name": "CVE-2024-49960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49960"
},
{
"name": "CVE-2024-49961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49961"
},
{
"name": "CVE-2024-49962",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49962"
},
{
"name": "CVE-2024-49963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49963"
},
{
"name": "CVE-2024-49965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49965"
},
{
"name": "CVE-2024-49966",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49966"
},
{
"name": "CVE-2024-49969",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49969"
},
{
"name": "CVE-2024-49972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49972"
},
{
"name": "CVE-2024-49973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49973"
},
{
"name": "CVE-2024-49974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49974"
},
{
"name": "CVE-2024-49975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49975"
},
{
"name": "CVE-2024-49981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49981"
},
{
"name": "CVE-2024-49982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49982"
},
{
"name": "CVE-2024-49985",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49985"
},
{
"name": "CVE-2024-49986",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49986"
},
{
"name": "CVE-2024-49991",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49991"
},
{
"name": "CVE-2024-49995",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49995"
},
{
"name": "CVE-2024-49996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49996"
},
{
"name": "CVE-2024-50000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50000"
},
{
"name": "CVE-2024-50001",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50001"
},
{
"name": "CVE-2024-50002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50002"
},
{
"name": "CVE-2024-50006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50006"
},
{
"name": "CVE-2024-50007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50007"
},
{
"name": "CVE-2024-50008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50008"
},
{
"name": "CVE-2024-50013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50013"
},
{
"name": "CVE-2024-50014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50014"
},
{
"name": "CVE-2024-50015",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50015"
},
{
"name": "CVE-2024-50017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50017"
},
{
"name": "CVE-2024-50019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50019"
},
{
"name": "CVE-2024-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50020"
},
{
"name": "CVE-2024-50021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50021"
},
{
"name": "CVE-2024-50022",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50022"
},
{
"name": "CVE-2024-50023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50023"
},
{
"name": "CVE-2024-50024",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50024"
},
{
"name": "CVE-2024-50025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50025"
},
{
"name": "CVE-2024-50027",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50027"
},
{
"name": "CVE-2024-50028",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50028"
},
{
"name": "CVE-2024-50031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50031"
},
{
"name": "CVE-2024-50033",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50033"
},
{
"name": "CVE-2024-50035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50035"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2024-50041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50041"
},
{
"name": "CVE-2024-50042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50042"
},
{
"name": "CVE-2024-50044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50044"
},
{
"name": "CVE-2024-50045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50045"
},
{
"name": "CVE-2024-50046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50046"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50048"
},
{
"name": "CVE-2024-50049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50049"
},
{
"name": "CVE-2024-50055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50055"
},
{
"name": "CVE-2024-50058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50058"
},
{
"name": "CVE-2024-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50059"
},
{
"name": "CVE-2024-50060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50060"
},
{
"name": "CVE-2024-50061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50061"
},
{
"name": "CVE-2024-50062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50062"
},
{
"name": "CVE-2024-50063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50063"
},
{
"name": "CVE-2024-50064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50064"
},
{
"name": "CVE-2024-50069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50069"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50074"
},
{
"name": "CVE-2024-50075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50075"
},
{
"name": "CVE-2024-50076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50076"
},
{
"name": "CVE-2024-50077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50077"
},
{
"name": "CVE-2024-50078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50078"
},
{
"name": "CVE-2024-50080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50080"
},
{
"name": "CVE-2024-50081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50081"
},
{
"name": "CVE-2024-50012",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50012"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50072"
},
{
"name": "CVE-2024-50126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50126"
},
{
"name": "CVE-2024-50215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50215"
},
{
"name": "CVE-2024-50218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50218"
},
{
"name": "CVE-2024-50229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50229"
},
{
"name": "CVE-2024-50230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50230"
},
{
"name": "CVE-2024-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50232"
},
{
"name": "CVE-2024-50233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50233"
},
{
"name": "CVE-2024-50234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50234"
},
{
"name": "CVE-2024-50235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50235"
},
{
"name": "CVE-2024-50236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50236"
},
{
"name": "CVE-2024-50237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50237"
},
{
"name": "CVE-2024-50242",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50242"
},
{
"name": "CVE-2024-50243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50243"
},
{
"name": "CVE-2024-50244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50244"
},
{
"name": "CVE-2024-50245",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50245"
},
{
"name": "CVE-2024-50247",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50247"
},
{
"name": "CVE-2024-50249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50249"
},
{
"name": "CVE-2024-50250",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50250"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50255"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50257",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50257"
},
{
"name": "CVE-2024-50259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50259"
},
{
"name": "CVE-2024-50261",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50261"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50264"
},
{
"name": "CVE-2024-50265",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50265"
},
{
"name": "CVE-2024-50267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50267"
},
{
"name": "CVE-2024-50268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50268"
},
{
"name": "CVE-2024-50269",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50269"
},
{
"name": "CVE-2024-50271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50271"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50273",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50273"
},
{
"name": "CVE-2024-50276",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50276"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50282"
},
{
"name": "CVE-2024-50283",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50283"
},
{
"name": "CVE-2024-50284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50284"
},
{
"name": "CVE-2024-50286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50286"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50292"
},
{
"name": "CVE-2024-50295",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50295"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2024-50302",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50302"
},
{
"name": "CVE-2024-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53042"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53052"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53058"
},
{
"name": "CVE-2024-53059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53059"
},
{
"name": "CVE-2024-53061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53061"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53066"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53081"
},
{
"name": "CVE-2024-53082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53082"
},
{
"name": "CVE-2024-53088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53088"
},
{
"name": "CVE-2024-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53093"
},
{
"name": "CVE-2024-50226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50226"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-49945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49945"
},
{
"name": "CVE-2024-50208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50208"
},
{
"name": "CVE-2024-50082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50082"
},
{
"name": "CVE-2024-50099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50099"
},
{
"name": "CVE-2024-50110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50110"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-50192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50192"
},
{
"name": "CVE-2024-47679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47679"
},
{
"name": "CVE-2024-47690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47690"
},
{
"name": "CVE-2024-47701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47701"
},
{
"name": "CVE-2024-47734",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47734"
},
{
"name": "CVE-2024-47740",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47740"
},
{
"name": "CVE-2024-49856",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49856"
},
{
"name": "CVE-2024-49868",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49868"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49889"
},
{
"name": "CVE-2024-49893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49893"
},
{
"name": "CVE-2024-49904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49904"
},
{
"name": "CVE-2024-49905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49905"
},
{
"name": "CVE-2024-49910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49910"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-49916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49916"
},
{
"name": "CVE-2024-49921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49921"
},
{
"name": "CVE-2024-49924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49924"
},
{
"name": "CVE-2024-49927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49927"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49948"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-49977",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49977"
},
{
"name": "CVE-2024-49983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49983"
},
{
"name": "CVE-2024-49997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49997"
},
{
"name": "CVE-2024-50003",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50003"
},
{
"name": "CVE-2024-50038",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50038"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50093"
},
{
"name": "CVE-2024-50095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50095"
},
{
"name": "CVE-2024-50096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50096"
},
{
"name": "CVE-2024-50179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50179"
},
{
"name": "CVE-2024-50180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50180"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2024-50184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50184"
},
{
"name": "CVE-2024-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50186"
},
{
"name": "CVE-2024-50188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50188"
},
{
"name": "CVE-2024-50189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50189"
},
{
"name": "CVE-2024-50191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50191"
},
{
"name": "CVE-2024-47703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47703"
},
{
"name": "CVE-2024-49934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49934"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2024-49976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49976"
},
{
"name": "CVE-2024-49987",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49987"
},
{
"name": "CVE-2024-49989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49989"
},
{
"name": "CVE-2024-50009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50009"
},
{
"name": "CVE-2024-50026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50026"
},
{
"name": "CVE-2024-50084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50084"
},
{
"name": "CVE-2024-50087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50087"
},
{
"name": "CVE-2024-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50088"
},
{
"name": "CVE-2024-50098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50098"
},
{
"name": "CVE-2024-50100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50100"
},
{
"name": "CVE-2024-50101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50101"
},
{
"name": "CVE-2024-50102",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50102"
},
{
"name": "CVE-2024-50103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50103"
},
{
"name": "CVE-2024-50108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50108"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50116"
},
{
"name": "CVE-2024-50117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50117"
},
{
"name": "CVE-2024-50121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50121"
},
{
"name": "CVE-2024-50124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50124"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-50127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50127"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50130"
},
{
"name": "CVE-2024-50131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50131"
},
{
"name": "CVE-2024-50134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50134"
},
{
"name": "CVE-2024-50135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50135"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50138"
},
{
"name": "CVE-2024-50139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50139"
},
{
"name": "CVE-2024-50141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50141"
},
{
"name": "CVE-2024-50145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50145"
},
{
"name": "CVE-2024-50146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50146"
},
{
"name": "CVE-2024-50147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50147"
},
{
"name": "CVE-2024-50148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50148"
},
{
"name": "CVE-2024-50150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50150"
},
{
"name": "CVE-2024-50153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50153"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50155"
},
{
"name": "CVE-2024-50156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50156"
},
{
"name": "CVE-2024-50157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50157"
},
{
"name": "CVE-2024-50158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50158"
},
{
"name": "CVE-2024-50159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50159"
},
{
"name": "CVE-2024-50160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50160"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50167"
},
{
"name": "CVE-2024-50169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50169"
},
{
"name": "CVE-2024-50171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50171"
},
{
"name": "CVE-2024-50172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50172"
},
{
"name": "CVE-2024-50176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50176"
},
{
"name": "CVE-2024-50177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50177"
},
{
"name": "CVE-2024-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50182"
},
{
"name": "CVE-2024-50183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50183"
},
{
"name": "CVE-2024-50187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50187"
},
{
"name": "CVE-2024-50194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50194"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50196"
},
{
"name": "CVE-2024-50198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50198"
},
{
"name": "CVE-2024-50200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50200"
},
{
"name": "CVE-2024-50201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50201"
},
{
"name": "CVE-2024-50205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50205"
},
{
"name": "CVE-2024-50209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50209"
},
{
"name": "CVE-2024-50216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50216"
},
{
"name": "CVE-2024-50221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50221"
},
{
"name": "CVE-2024-50224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50224"
},
{
"name": "CVE-2024-50225",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50225"
},
{
"name": "CVE-2024-50231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50231"
},
{
"name": "CVE-2024-50240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50240"
},
{
"name": "CVE-2024-50246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50246"
},
{
"name": "CVE-2024-50248",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50248"
},
{
"name": "CVE-2024-50274",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50274"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-50289",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50289"
},
{
"name": "CVE-2024-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50298"
},
{
"name": "CVE-2024-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53045"
},
{
"name": "CVE-2024-53048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53048"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-53068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53068"
},
{
"name": "CVE-2024-53074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53074"
},
{
"name": "CVE-2024-53076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53076"
},
{
"name": "CVE-2024-53079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53079"
},
{
"name": "CVE-2024-53085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53085"
},
{
"name": "CVE-2024-53094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53094"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53100"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53106"
},
{
"name": "CVE-2024-53108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53108"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-49859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49859"
},
{
"name": "CVE-2024-49978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49978"
},
{
"name": "CVE-2024-49992",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49992"
},
{
"name": "CVE-2024-50010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50010"
},
{
"name": "CVE-2024-50083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50083"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50086"
},
{
"name": "CVE-2024-50133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50133"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50162"
},
{
"name": "CVE-2024-50163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50163"
},
{
"name": "CVE-2024-50168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50168"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50193"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-50011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50011"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-49951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49951"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50106"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-53238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53238"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56741"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-53047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53047"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-53187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53187"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-56679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56679"
},
{
"name": "CVE-2024-56693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56693"
},
{
"name": "CVE-2024-56707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56707"
},
{
"name": "CVE-2024-56725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56725"
},
{
"name": "CVE-2024-56726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56726"
},
{
"name": "CVE-2024-56727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56727"
},
{
"name": "CVE-2024-56728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56728"
},
{
"name": "CVE-2024-49994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49994"
},
{
"name": "CVE-2024-50164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50164"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2024-56703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56703"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2022-49034",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49034"
},
{
"name": "CVE-2024-46869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46869"
},
{
"name": "CVE-2024-47676",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47676"
},
{
"name": "CVE-2024-47677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47677"
},
{
"name": "CVE-2024-47680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47680"
},
{
"name": "CVE-2024-47689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47689"
},
{
"name": "CVE-2024-47691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47691"
},
{
"name": "CVE-2024-47694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47694"
},
{
"name": "CVE-2024-47700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47700"
},
{
"name": "CVE-2024-47708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47708"
},
{
"name": "CVE-2024-47711",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47711"
},
{
"name": "CVE-2024-47716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47716"
},
{
"name": "CVE-2024-47717",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47717"
},
{
"name": "CVE-2024-47721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47721"
},
{
"name": "CVE-2024-47724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47724"
},
{
"name": "CVE-2024-47726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47726"
},
{
"name": "CVE-2024-47733",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47733"
},
{
"name": "CVE-2024-47736",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47736"
},
{
"name": "CVE-2024-47746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47746"
},
{
"name": "CVE-2024-49857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49857"
},
{
"name": "CVE-2024-49865",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49865"
},
{
"name": "CVE-2024-49869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49869"
},
{
"name": "CVE-2024-49872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49872"
},
{
"name": "CVE-2024-49873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49873"
},
{
"name": "CVE-2024-49876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49876"
},
{
"name": "CVE-2024-49880",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49880"
},
{
"name": "CVE-2024-49885",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49885"
},
{
"name": "CVE-2024-49887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49887"
},
{
"name": "CVE-2024-49926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49926"
},
{
"name": "CVE-2024-49932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49932"
},
{
"name": "CVE-2024-49940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49940"
},
{
"name": "CVE-2024-49941",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49941"
},
{
"name": "CVE-2024-49942",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49942"
},
{
"name": "CVE-2024-49943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49943"
},
{
"name": "CVE-2024-49956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49956"
},
{
"name": "CVE-2024-49964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49964"
},
{
"name": "CVE-2024-49970",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49970"
},
{
"name": "CVE-2024-49971",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49971"
},
{
"name": "CVE-2024-49979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49979"
},
{
"name": "CVE-2024-49980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49980"
},
{
"name": "CVE-2024-49988",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49988"
},
{
"name": "CVE-2024-49999",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49999"
},
{
"name": "CVE-2024-50005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50005"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50030"
},
{
"name": "CVE-2024-50034",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50034"
},
{
"name": "CVE-2024-50037",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50037"
},
{
"name": "CVE-2024-50043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50043"
},
{
"name": "CVE-2024-50056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50056"
},
{
"name": "CVE-2024-50057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50057"
},
{
"name": "CVE-2024-50065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50065"
},
{
"name": "CVE-2024-50066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50066"
},
{
"name": "CVE-2024-50068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50068"
},
{
"name": "CVE-2024-50070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50070"
},
{
"name": "CVE-2024-50071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50071"
},
{
"name": "CVE-2024-50079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50079"
},
{
"name": "CVE-2024-50090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50090"
},
{
"name": "CVE-2024-50091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50091"
},
{
"name": "CVE-2024-50092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50092"
},
{
"name": "CVE-2024-50094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50094"
},
{
"name": "CVE-2024-50104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50104"
},
{
"name": "CVE-2024-50105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50105"
},
{
"name": "CVE-2024-50107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50107"
},
{
"name": "CVE-2024-50109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50109"
},
{
"name": "CVE-2024-50111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50111"
},
{
"name": "CVE-2024-50112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50112"
},
{
"name": "CVE-2024-50113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50113"
},
{
"name": "CVE-2024-50114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50114"
},
{
"name": "CVE-2024-50118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50118"
},
{
"name": "CVE-2024-50119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50119"
},
{
"name": "CVE-2024-50120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50120"
},
{
"name": "CVE-2024-50122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50122"
},
{
"name": "CVE-2024-50123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50123"
},
{
"name": "CVE-2024-50129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50129"
},
{
"name": "CVE-2024-50132",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50132"
},
{
"name": "CVE-2024-50137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50137"
},
{
"name": "CVE-2024-50140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50140"
},
{
"name": "CVE-2024-50144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50144"
},
{
"name": "CVE-2024-50149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50149"
},
{
"name": "CVE-2024-50152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50152"
},
{
"name": "CVE-2024-50161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50161"
},
{
"name": "CVE-2024-50165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50165"
},
{
"name": "CVE-2024-50170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50170"
},
{
"name": "CVE-2024-50173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50173"
},
{
"name": "CVE-2024-50174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50174"
},
{
"name": "CVE-2024-50178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50178"
},
{
"name": "CVE-2024-50190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50190"
},
{
"name": "CVE-2024-50197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50197"
},
{
"name": "CVE-2024-50204",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50204"
},
{
"name": "CVE-2024-50206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50206"
},
{
"name": "CVE-2024-50207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50207"
},
{
"name": "CVE-2024-50212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50212"
},
{
"name": "CVE-2024-50213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50213"
},
{
"name": "CVE-2024-50214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50214"
},
{
"name": "CVE-2024-50217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50217"
},
{
"name": "CVE-2024-50220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50220"
},
{
"name": "CVE-2024-50222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50222"
},
{
"name": "CVE-2024-50223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50223"
},
{
"name": "CVE-2024-50227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50227"
},
{
"name": "CVE-2024-50238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50238"
},
{
"name": "CVE-2024-50239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50239"
},
{
"name": "CVE-2024-50253",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50253"
},
{
"name": "CVE-2024-50254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50254"
},
{
"name": "CVE-2024-50260",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50260"
},
{
"name": "CVE-2024-50263",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50263"
},
{
"name": "CVE-2024-50266",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50266"
},
{
"name": "CVE-2024-50270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50270"
},
{
"name": "CVE-2024-50277",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50277"
},
{
"name": "CVE-2024-50281",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50281"
},
{
"name": "CVE-2024-50285",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50285"
},
{
"name": "CVE-2024-50288",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50288"
},
{
"name": "CVE-2024-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50291"
},
{
"name": "CVE-2024-50293",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50293"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-50297",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50297"
},
{
"name": "CVE-2024-50300",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50300"
},
{
"name": "CVE-2024-50303",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50303"
},
{
"name": "CVE-2024-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53044"
},
{
"name": "CVE-2024-53046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53046"
},
{
"name": "CVE-2024-53049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53049"
},
{
"name": "CVE-2024-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53053"
},
{
"name": "CVE-2024-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53062"
},
{
"name": "CVE-2024-53065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53065"
},
{
"name": "CVE-2024-53067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53067"
},
{
"name": "CVE-2024-53069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53069"
},
{
"name": "CVE-2024-53071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53071"
},
{
"name": "CVE-2024-53075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53075"
},
{
"name": "CVE-2024-53077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53077"
},
{
"name": "CVE-2024-53078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53078"
},
{
"name": "CVE-2024-53080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53080"
},
{
"name": "CVE-2024-53083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53083"
},
{
"name": "CVE-2024-53084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53084"
},
{
"name": "CVE-2024-53086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53086"
},
{
"name": "CVE-2024-53087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53087"
},
{
"name": "CVE-2024-53089",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53089"
},
{
"name": "CVE-2024-53092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53092"
},
{
"name": "CVE-2024-53098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53098"
},
{
"name": "CVE-2024-53107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53107"
},
{
"name": "CVE-2024-53109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53109"
},
{
"name": "CVE-2024-53115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53115"
},
{
"name": "CVE-2024-53116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53116"
},
{
"name": "CVE-2024-53132",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53132"
},
{
"name": "CVE-2024-53137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53137"
},
{
"name": "CVE-2024-53139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53139"
},
{
"name": "CVE-2024-53143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53143"
},
{
"name": "CVE-2024-53145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53145"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53149"
},
{
"name": "CVE-2024-53152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53152"
},
{
"name": "CVE-2024-53153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53153"
},
{
"name": "CVE-2024-53163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53163"
},
{
"name": "CVE-2024-53165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53165"
},
{
"name": "CVE-2024-53167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53167"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53181"
},
{
"name": "CVE-2024-53183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53183"
},
{
"name": "CVE-2024-53184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53184"
},
{
"name": "CVE-2024-53189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53189"
},
{
"name": "CVE-2024-53192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53192"
},
{
"name": "CVE-2024-53193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53193"
},
{
"name": "CVE-2024-53199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53199"
},
{
"name": "CVE-2024-53212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53212"
},
{
"name": "CVE-2024-53218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53218"
},
{
"name": "CVE-2024-53219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53219"
},
{
"name": "CVE-2024-53220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53220"
},
{
"name": "CVE-2024-53221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53221"
},
{
"name": "CVE-2024-53223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53223"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-53228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53228"
},
{
"name": "CVE-2024-56534",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56534"
},
{
"name": "CVE-2024-56535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56535"
},
{
"name": "CVE-2024-56537",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56537"
},
{
"name": "CVE-2024-56540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56540"
},
{
"name": "CVE-2024-56541",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56541"
},
{
"name": "CVE-2024-56544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56544"
},
{
"name": "CVE-2024-56545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56545"
},
{
"name": "CVE-2024-56674",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56674"
},
{
"name": "CVE-2024-56680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56680"
},
{
"name": "CVE-2024-56684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56684"
},
{
"name": "CVE-2024-56685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56685"
},
{
"name": "CVE-2024-56689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56689"
},
{
"name": "CVE-2024-56692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56692"
},
{
"name": "CVE-2024-56696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56696"
},
{
"name": "CVE-2024-56697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56697"
},
{
"name": "CVE-2024-56699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56699"
},
{
"name": "CVE-2024-56702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56702"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2024-56742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56742"
},
{
"name": "CVE-2024-56744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56744"
},
{
"name": "CVE-2024-56749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56749"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2025-0927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0927"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0152",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-02-21T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux d\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": "2025-02-20",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu LSN-0109-1",
"url": "https://ubuntu.com/security/notices/LSN-0109-1"
},
{
"published_at": "2025-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7277-1",
"url": "https://ubuntu.com/security/notices/USN-7277-1"
},
{
"published_at": "2025-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7276-1",
"url": "https://ubuntu.com/security/notices/USN-7276-1"
}
]
}
CERTFR-2025-AVI-0047
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.5 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.4 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | Public Cloud Module | Public Cloud Module 15-SP6 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.6 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15 SP3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP3 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP4 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Public Cloud Module 15-SP6",
"product": {
"name": "Public Cloud Module",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP3",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2022-48651",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48651"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-35949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35949"
},
{
"name": "CVE-2021-47291",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47291"
},
{
"name": "CVE-2023-52846",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52846"
},
{
"name": "CVE-2024-36904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36904"
},
{
"name": "CVE-2024-26585",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26585"
},
{
"name": "CVE-2021-47402",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47402"
},
{
"name": "CVE-2021-47598",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47598"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2023-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6531"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-35867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35867"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-35839",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35839"
},
{
"name": "CVE-2024-26852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26852"
},
{
"name": "CVE-2024-39480",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39480"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-56667",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56667"
},
{
"name": "CVE-2024-50228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50228"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-27398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27398"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2023-52340",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52340"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53179"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-53159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53159"
},
{
"name": "CVE-2024-44934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44934"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-35950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35950"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-36915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36915"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-50264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50264"
},
{
"name": "CVE-2024-53207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53207"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2021-46955",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46955"
},
{
"name": "CVE-2022-48956",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48956"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-35905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35905"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2021-47517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47517"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-41042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41042"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2021-47378",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47378"
},
{
"name": "CVE-2021-47383",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47383"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-36908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36908"
},
{
"name": "CVE-2024-43861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43861"
},
{
"name": "CVE-2024-53241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53241"
},
{
"name": "CVE-2024-26923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26923"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2024-44996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44996"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-49854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49854"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2023-52752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52752"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2023-1829",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1829"
},
{
"name": "CVE-2024-35862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35862"
},
{
"name": "CVE-2024-41059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41059"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-35817",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35817"
},
{
"name": "CVE-2024-26828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26828"
},
{
"name": "CVE-2022-48686",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48686"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-35863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35863"
},
{
"name": "CVE-2024-36964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36964"
},
{
"name": "CVE-2024-53240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53240"
},
{
"name": "CVE-2023-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6546"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2023-52502",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52502"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-35861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35861"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40909"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-26930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26930"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-26766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26766"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2022-48662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48662"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-26924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26924"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-26622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26622"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-50018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50018"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0047",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-17T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0098-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250098-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0131-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250131-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0097-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250097-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0146-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250146-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0132-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250132-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0089-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250089-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0136-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250136-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0094-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250094-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0115-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250115-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0111-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250111-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0150-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250150-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0114-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250114-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0124-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250124-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0138-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250138-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0085-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250085-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0123-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250123-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0105-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250105-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0101-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250101-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0106-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250106-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0084-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250084-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0110-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250110-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0090-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250090-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0107-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250107-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0091-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250091-1"
},
{
"published_at": "2025-01-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0117-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250117-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0083-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250083-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0108-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250108-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0103-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250103-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0100-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250100-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0112-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250112-1"
},
{
"published_at": "2025-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0137-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250137-1"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0109-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250109-1"
}
]
}
CERTFR-2025-AVI-0185
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 16.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 24.10",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 14.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 22.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-52458",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52458"
},
{
"name": "CVE-2024-26718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26718"
},
{
"name": "CVE-2024-26685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26685"
},
{
"name": "CVE-2023-52488",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52488"
},
{
"name": "CVE-2023-52522",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52522"
},
{
"name": "CVE-2024-36886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36886"
},
{
"name": "CVE-2021-47469",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47469"
},
{
"name": "CVE-2023-52799",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52799"
},
{
"name": "CVE-2023-52818",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52818"
},
{
"name": "CVE-2023-52880",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52880"
},
{
"name": "CVE-2024-35887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35887"
},
{
"name": "CVE-2024-36952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36952"
},
{
"name": "CVE-2024-35896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35896"
},
{
"name": "CVE-2024-36964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36964"
},
{
"name": "CVE-2024-38567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38567"
},
{
"name": "CVE-2021-47103",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47103"
},
{
"name": "CVE-2024-38544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38544"
},
{
"name": "CVE-2024-40910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40910"
},
{
"name": "CVE-2024-40911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40911"
},
{
"name": "CVE-2024-40943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40943"
},
{
"name": "CVE-2024-40953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40953"
},
{
"name": "CVE-2024-40981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40981"
},
{
"name": "CVE-2021-47606",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47606"
},
{
"name": "CVE-2024-39497",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39497"
},
{
"name": "CVE-2024-41016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41016"
},
{
"name": "CVE-2024-41063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41063"
},
{
"name": "CVE-2024-41064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41064"
},
{
"name": "CVE-2024-41066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41066"
},
{
"name": "CVE-2024-42070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42070"
},
{
"name": "CVE-2024-40965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40965"
},
{
"name": "CVE-2024-42068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42068"
},
{
"name": "CVE-2023-52913",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52913"
},
{
"name": "CVE-2024-41080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41080"
},
{
"name": "CVE-2024-42291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42291"
},
{
"name": "CVE-2024-43854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43854"
},
{
"name": "CVE-2024-43863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43863"
},
{
"name": "CVE-2024-43892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43892"
},
{
"name": "CVE-2024-43893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43893"
},
{
"name": "CVE-2024-43900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43900"
},
{
"name": "CVE-2024-44931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44931"
},
{
"name": "CVE-2024-44938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44938"
},
{
"name": "CVE-2024-46731",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46731"
},
{
"name": "CVE-2024-46849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46849"
},
{
"name": "CVE-2024-46853",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46853"
},
{
"name": "CVE-2024-46854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46854"
},
{
"name": "CVE-2024-42252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42252"
},
{
"name": "CVE-2022-48994",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48994"
},
{
"name": "CVE-2023-52917",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52917"
},
{
"name": "CVE-2024-47670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47670"
},
{
"name": "CVE-2024-47671",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47671"
},
{
"name": "CVE-2024-47672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47672"
},
{
"name": "CVE-2024-47673",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47673"
},
{
"name": "CVE-2024-47674",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47674"
},
{
"name": "CVE-2024-47675",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47675"
},
{
"name": "CVE-2024-47681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47681"
},
{
"name": "CVE-2024-47682",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47682"
},
{
"name": "CVE-2024-47684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47684"
},
{
"name": "CVE-2024-47685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47685"
},
{
"name": "CVE-2024-47686",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47686"
},
{
"name": "CVE-2024-47687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47687"
},
{
"name": "CVE-2024-47688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47688"
},
{
"name": "CVE-2024-47692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47692"
},
{
"name": "CVE-2024-47693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47693"
},
{
"name": "CVE-2024-47695",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47695"
},
{
"name": "CVE-2024-47696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47696"
},
{
"name": "CVE-2024-47697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47697"
},
{
"name": "CVE-2024-47698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47698"
},
{
"name": "CVE-2024-47699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47699"
},
{
"name": "CVE-2024-47702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47702"
},
{
"name": "CVE-2024-47704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47704"
},
{
"name": "CVE-2024-47705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47705"
},
{
"name": "CVE-2024-47706",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47706"
},
{
"name": "CVE-2024-47707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47707"
},
{
"name": "CVE-2024-47709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47709"
},
{
"name": "CVE-2024-47710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47710"
},
{
"name": "CVE-2024-47712",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47712"
},
{
"name": "CVE-2024-47713",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47713"
},
{
"name": "CVE-2024-47714",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47714"
},
{
"name": "CVE-2024-47715",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47715"
},
{
"name": "CVE-2024-47718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47718"
},
{
"name": "CVE-2024-47719",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47719"
},
{
"name": "CVE-2024-47720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47720"
},
{
"name": "CVE-2024-47723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47723"
},
{
"name": "CVE-2024-47727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47727"
},
{
"name": "CVE-2024-47728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47728"
},
{
"name": "CVE-2024-47730",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47730"
},
{
"name": "CVE-2024-47731",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47731"
},
{
"name": "CVE-2024-47732",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47732"
},
{
"name": "CVE-2024-47735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47735"
},
{
"name": "CVE-2024-47737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47737"
},
{
"name": "CVE-2024-47738",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47738"
},
{
"name": "CVE-2024-47739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47739"
},
{
"name": "CVE-2024-47741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47741"
},
{
"name": "CVE-2024-47742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47742"
},
{
"name": "CVE-2024-47743",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47743"
},
{
"name": "CVE-2024-47744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47744"
},
{
"name": "CVE-2024-47745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47745"
},
{
"name": "CVE-2024-47747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47747"
},
{
"name": "CVE-2024-47748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47748"
},
{
"name": "CVE-2024-47749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47749"
},
{
"name": "CVE-2024-47750",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47750"
},
{
"name": "CVE-2024-47751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47751"
},
{
"name": "CVE-2024-47752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47752"
},
{
"name": "CVE-2024-47753",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47753"
},
{
"name": "CVE-2024-47754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47754"
},
{
"name": "CVE-2024-47756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47756"
},
{
"name": "CVE-2024-47757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47757"
},
{
"name": "CVE-2024-49850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49850"
},
{
"name": "CVE-2024-49851",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49851"
},
{
"name": "CVE-2024-49852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49852"
},
{
"name": "CVE-2024-49853",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49853"
},
{
"name": "CVE-2024-49855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49855"
},
{
"name": "CVE-2024-49858",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49858"
},
{
"name": "CVE-2024-49860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49860"
},
{
"name": "CVE-2024-49861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49861"
},
{
"name": "CVE-2024-49862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49862"
},
{
"name": "CVE-2024-49863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49863"
},
{
"name": "CVE-2024-49864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49864"
},
{
"name": "CVE-2024-49866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49866"
},
{
"name": "CVE-2024-49867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49867"
},
{
"name": "CVE-2024-49870",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49870"
},
{
"name": "CVE-2024-49871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49871"
},
{
"name": "CVE-2024-49874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49874"
},
{
"name": "CVE-2024-49875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49875"
},
{
"name": "CVE-2024-49877",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49877"
},
{
"name": "CVE-2024-49878",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49878"
},
{
"name": "CVE-2024-49879",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49879"
},
{
"name": "CVE-2024-49881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49881"
},
{
"name": "CVE-2024-49882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49882"
},
{
"name": "CVE-2024-49883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49883"
},
{
"name": "CVE-2024-49886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49886"
},
{
"name": "CVE-2024-49888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49888"
},
{
"name": "CVE-2024-49890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49890"
},
{
"name": "CVE-2024-49891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49891"
},
{
"name": "CVE-2024-49892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49892"
},
{
"name": "CVE-2024-49894",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49894"
},
{
"name": "CVE-2024-49895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49895"
},
{
"name": "CVE-2024-49896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49896"
},
{
"name": "CVE-2024-49897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49897"
},
{
"name": "CVE-2024-49898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49898"
},
{
"name": "CVE-2024-49900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49900"
},
{
"name": "CVE-2024-49901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49901"
},
{
"name": "CVE-2024-49902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49902"
},
{
"name": "CVE-2024-49903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49903"
},
{
"name": "CVE-2024-49907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49907"
},
{
"name": "CVE-2024-49909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49909"
},
{
"name": "CVE-2024-49911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49911"
},
{
"name": "CVE-2024-49912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49912"
},
{
"name": "CVE-2024-49913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49913"
},
{
"name": "CVE-2024-49917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49917"
},
{
"name": "CVE-2024-49918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49918"
},
{
"name": "CVE-2024-49919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49919"
},
{
"name": "CVE-2024-49922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49922"
},
{
"name": "CVE-2024-49923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49923"
},
{
"name": "CVE-2024-49928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49928"
},
{
"name": "CVE-2024-49929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49929"
},
{
"name": "CVE-2024-49930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49930"
},
{
"name": "CVE-2024-49931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49931"
},
{
"name": "CVE-2024-49933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49933"
},
{
"name": "CVE-2024-49935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49935"
},
{
"name": "CVE-2024-49936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49936"
},
{
"name": "CVE-2024-49937",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49937"
},
{
"name": "CVE-2024-49938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49938"
},
{
"name": "CVE-2024-49939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49939"
},
{
"name": "CVE-2024-49946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49946"
},
{
"name": "CVE-2024-49947",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49947"
},
{
"name": "CVE-2024-49949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49949"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49953"
},
{
"name": "CVE-2024-49954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49954"
},
{
"name": "CVE-2024-49955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49955"
},
{
"name": "CVE-2024-49957",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49957"
},
{
"name": "CVE-2024-49958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49958"
},
{
"name": "CVE-2024-49959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49959"
},
{
"name": "CVE-2024-49960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49960"
},
{
"name": "CVE-2024-49961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49961"
},
{
"name": "CVE-2024-49962",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49962"
},
{
"name": "CVE-2024-49963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49963"
},
{
"name": "CVE-2024-49965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49965"
},
{
"name": "CVE-2024-49966",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49966"
},
{
"name": "CVE-2024-49969",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49969"
},
{
"name": "CVE-2024-49972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49972"
},
{
"name": "CVE-2024-49973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49973"
},
{
"name": "CVE-2024-49974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49974"
},
{
"name": "CVE-2024-49975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49975"
},
{
"name": "CVE-2024-49981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49981"
},
{
"name": "CVE-2024-49982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49982"
},
{
"name": "CVE-2024-49985",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49985"
},
{
"name": "CVE-2024-49986",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49986"
},
{
"name": "CVE-2024-49991",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49991"
},
{
"name": "CVE-2024-49995",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49995"
},
{
"name": "CVE-2024-49996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49996"
},
{
"name": "CVE-2024-50000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50000"
},
{
"name": "CVE-2024-50001",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50001"
},
{
"name": "CVE-2024-50002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50002"
},
{
"name": "CVE-2024-50006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50006"
},
{
"name": "CVE-2024-50007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50007"
},
{
"name": "CVE-2024-50008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50008"
},
{
"name": "CVE-2024-50013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50013"
},
{
"name": "CVE-2024-50014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50014"
},
{
"name": "CVE-2024-50015",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50015"
},
{
"name": "CVE-2024-50017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50017"
},
{
"name": "CVE-2024-50019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50019"
},
{
"name": "CVE-2024-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50020"
},
{
"name": "CVE-2024-50021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50021"
},
{
"name": "CVE-2024-50022",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50022"
},
{
"name": "CVE-2024-50023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50023"
},
{
"name": "CVE-2024-50024",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50024"
},
{
"name": "CVE-2024-50025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50025"
},
{
"name": "CVE-2024-50027",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50027"
},
{
"name": "CVE-2024-50028",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50028"
},
{
"name": "CVE-2024-50031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50031"
},
{
"name": "CVE-2024-50033",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50033"
},
{
"name": "CVE-2024-50035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50035"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2024-50041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50041"
},
{
"name": "CVE-2024-50042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50042"
},
{
"name": "CVE-2024-50044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50044"
},
{
"name": "CVE-2024-50045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50045"
},
{
"name": "CVE-2024-50046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50046"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50048"
},
{
"name": "CVE-2024-50049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50049"
},
{
"name": "CVE-2024-50055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50055"
},
{
"name": "CVE-2024-50058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50058"
},
{
"name": "CVE-2024-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50059"
},
{
"name": "CVE-2024-50060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50060"
},
{
"name": "CVE-2024-50061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50061"
},
{
"name": "CVE-2024-50062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50062"
},
{
"name": "CVE-2024-50063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50063"
},
{
"name": "CVE-2024-50064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50064"
},
{
"name": "CVE-2024-50069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50069"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50074"
},
{
"name": "CVE-2024-50075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50075"
},
{
"name": "CVE-2024-50076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50076"
},
{
"name": "CVE-2024-50077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50077"
},
{
"name": "CVE-2024-50078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50078"
},
{
"name": "CVE-2024-50080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50080"
},
{
"name": "CVE-2024-50081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50081"
},
{
"name": "CVE-2024-50012",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50012"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50072"
},
{
"name": "CVE-2024-50126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50126"
},
{
"name": "CVE-2024-50215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50215"
},
{
"name": "CVE-2024-50218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50218"
},
{
"name": "CVE-2024-50229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50229"
},
{
"name": "CVE-2024-50230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50230"
},
{
"name": "CVE-2024-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50232"
},
{
"name": "CVE-2024-50233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50233"
},
{
"name": "CVE-2024-50234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50234"
},
{
"name": "CVE-2024-50235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50235"
},
{
"name": "CVE-2024-50236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50236"
},
{
"name": "CVE-2024-50237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50237"
},
{
"name": "CVE-2024-50242",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50242"
},
{
"name": "CVE-2024-50243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50243"
},
{
"name": "CVE-2024-50244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50244"
},
{
"name": "CVE-2024-50245",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50245"
},
{
"name": "CVE-2024-50247",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50247"
},
{
"name": "CVE-2024-50249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50249"
},
{
"name": "CVE-2024-50250",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50250"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50255"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50257",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50257"
},
{
"name": "CVE-2024-50259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50259"
},
{
"name": "CVE-2024-50261",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50261"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50265",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50265"
},
{
"name": "CVE-2024-50267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50267"
},
{
"name": "CVE-2024-50268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50268"
},
{
"name": "CVE-2024-50269",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50269"
},
{
"name": "CVE-2024-50271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50271"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50273",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50273"
},
{
"name": "CVE-2024-50276",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50276"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50282"
},
{
"name": "CVE-2024-50283",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50283"
},
{
"name": "CVE-2024-50284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50284"
},
{
"name": "CVE-2024-50286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50286"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50292"
},
{
"name": "CVE-2024-50295",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50295"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2024-50302",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50302"
},
{
"name": "CVE-2024-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53042"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53052"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53058"
},
{
"name": "CVE-2024-53059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53059"
},
{
"name": "CVE-2024-53061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53061"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53066"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53081"
},
{
"name": "CVE-2024-53082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53082"
},
{
"name": "CVE-2024-53088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53088"
},
{
"name": "CVE-2024-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53093"
},
{
"name": "CVE-2024-50226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50226"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-49945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49945"
},
{
"name": "CVE-2024-50208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50208"
},
{
"name": "CVE-2024-50082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50082"
},
{
"name": "CVE-2024-50099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50099"
},
{
"name": "CVE-2024-50110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50110"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-50192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50192"
},
{
"name": "CVE-2024-47679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47679"
},
{
"name": "CVE-2024-47690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47690"
},
{
"name": "CVE-2024-47701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47701"
},
{
"name": "CVE-2024-47734",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47734"
},
{
"name": "CVE-2024-47740",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47740"
},
{
"name": "CVE-2024-49856",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49856"
},
{
"name": "CVE-2024-49868",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49868"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49889"
},
{
"name": "CVE-2024-49905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49905"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-49924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49924"
},
{
"name": "CVE-2024-49927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49927"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49948"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-49977",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49977"
},
{
"name": "CVE-2024-49983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49983"
},
{
"name": "CVE-2024-49997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49997"
},
{
"name": "CVE-2024-50003",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50003"
},
{
"name": "CVE-2024-50038",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50038"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50093"
},
{
"name": "CVE-2024-50095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50095"
},
{
"name": "CVE-2024-50096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50096"
},
{
"name": "CVE-2024-50179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50179"
},
{
"name": "CVE-2024-50180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50180"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2024-50184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50184"
},
{
"name": "CVE-2024-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50186"
},
{
"name": "CVE-2024-50188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50188"
},
{
"name": "CVE-2024-50189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50189"
},
{
"name": "CVE-2024-50191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50191"
},
{
"name": "CVE-2024-47703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47703"
},
{
"name": "CVE-2024-49934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49934"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2024-49976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49976"
},
{
"name": "CVE-2024-49987",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49987"
},
{
"name": "CVE-2024-49989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49989"
},
{
"name": "CVE-2024-50009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50009"
},
{
"name": "CVE-2024-50026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50026"
},
{
"name": "CVE-2024-50084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50084"
},
{
"name": "CVE-2024-50087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50087"
},
{
"name": "CVE-2024-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50088"
},
{
"name": "CVE-2024-50098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50098"
},
{
"name": "CVE-2024-50100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50100"
},
{
"name": "CVE-2024-50101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50101"
},
{
"name": "CVE-2024-50102",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50102"
},
{
"name": "CVE-2024-50103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50103"
},
{
"name": "CVE-2024-50108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50108"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50116"
},
{
"name": "CVE-2024-50117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50117"
},
{
"name": "CVE-2024-50121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50121"
},
{
"name": "CVE-2024-50124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50124"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-50127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50127"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50130"
},
{
"name": "CVE-2024-50131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50131"
},
{
"name": "CVE-2024-50134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50134"
},
{
"name": "CVE-2024-50135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50135"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50138"
},
{
"name": "CVE-2024-50139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50139"
},
{
"name": "CVE-2024-50141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50141"
},
{
"name": "CVE-2024-50145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50145"
},
{
"name": "CVE-2024-50146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50146"
},
{
"name": "CVE-2024-50147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50147"
},
{
"name": "CVE-2024-50148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50148"
},
{
"name": "CVE-2024-50150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50150"
},
{
"name": "CVE-2024-50153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50153"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50155"
},
{
"name": "CVE-2024-50156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50156"
},
{
"name": "CVE-2024-50157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50157"
},
{
"name": "CVE-2024-50158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50158"
},
{
"name": "CVE-2024-50159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50159"
},
{
"name": "CVE-2024-50160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50160"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50167"
},
{
"name": "CVE-2024-50169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50169"
},
{
"name": "CVE-2024-50171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50171"
},
{
"name": "CVE-2024-50172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50172"
},
{
"name": "CVE-2024-50175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50175"
},
{
"name": "CVE-2024-50176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50176"
},
{
"name": "CVE-2024-50177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50177"
},
{
"name": "CVE-2024-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50182"
},
{
"name": "CVE-2024-50183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50183"
},
{
"name": "CVE-2024-50187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50187"
},
{
"name": "CVE-2024-50194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50194"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50196"
},
{
"name": "CVE-2024-50198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50198"
},
{
"name": "CVE-2024-50200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50200"
},
{
"name": "CVE-2024-50201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50201"
},
{
"name": "CVE-2024-50205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50205"
},
{
"name": "CVE-2024-50209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50209"
},
{
"name": "CVE-2024-50216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50216"
},
{
"name": "CVE-2024-50221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50221"
},
{
"name": "CVE-2024-50224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50224"
},
{
"name": "CVE-2024-50225",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50225"
},
{
"name": "CVE-2024-50231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50231"
},
{
"name": "CVE-2024-50240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50240"
},
{
"name": "CVE-2024-50246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50246"
},
{
"name": "CVE-2024-50248",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50248"
},
{
"name": "CVE-2024-50274",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50274"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-50289",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50289"
},
{
"name": "CVE-2024-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50298"
},
{
"name": "CVE-2024-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53045"
},
{
"name": "CVE-2024-53048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53048"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-53068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53068"
},
{
"name": "CVE-2024-53074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53074"
},
{
"name": "CVE-2024-53076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53076"
},
{
"name": "CVE-2024-53079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53079"
},
{
"name": "CVE-2024-53085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53085"
},
{
"name": "CVE-2024-53094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53094"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53100"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53106"
},
{
"name": "CVE-2024-53108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53108"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-49859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49859"
},
{
"name": "CVE-2024-49978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49978"
},
{
"name": "CVE-2024-49992",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49992"
},
{
"name": "CVE-2024-50010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50010"
},
{
"name": "CVE-2024-50083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50083"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50086"
},
{
"name": "CVE-2024-50133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50133"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50162"
},
{
"name": "CVE-2024-50163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50163"
},
{
"name": "CVE-2024-50168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50168"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50193"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53097",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53097"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-49951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49951"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50106"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-53164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53164"
},
{
"name": "CVE-2024-56672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56672"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56741"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-53047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53047"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-53187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53187"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-56658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
},
{
"name": "CVE-2024-56679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56679"
},
{
"name": "CVE-2024-56693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56693"
},
{
"name": "CVE-2024-56707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56707"
},
{
"name": "CVE-2024-56725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56725"
},
{
"name": "CVE-2024-56726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56726"
},
{
"name": "CVE-2024-56727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56727"
},
{
"name": "CVE-2024-56728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56728"
},
{
"name": "CVE-2024-49994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49994"
},
{
"name": "CVE-2024-50164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50164"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2024-56703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56703"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2022-49034",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49034"
},
{
"name": "CVE-2024-46869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46869"
},
{
"name": "CVE-2024-47676",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47676"
},
{
"name": "CVE-2024-47677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47677"
},
{
"name": "CVE-2024-47680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47680"
},
{
"name": "CVE-2024-47689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47689"
},
{
"name": "CVE-2024-47691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47691"
},
{
"name": "CVE-2024-47694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47694"
},
{
"name": "CVE-2024-47700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47700"
},
{
"name": "CVE-2024-47708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47708"
},
{
"name": "CVE-2024-47711",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47711"
},
{
"name": "CVE-2024-47716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47716"
},
{
"name": "CVE-2024-47717",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47717"
},
{
"name": "CVE-2024-47721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47721"
},
{
"name": "CVE-2024-47724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47724"
},
{
"name": "CVE-2024-47726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47726"
},
{
"name": "CVE-2024-47733",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47733"
},
{
"name": "CVE-2024-47736",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47736"
},
{
"name": "CVE-2024-47746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47746"
},
{
"name": "CVE-2024-49857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49857"
},
{
"name": "CVE-2024-49865",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49865"
},
{
"name": "CVE-2024-49869",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49869"
},
{
"name": "CVE-2024-49872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49872"
},
{
"name": "CVE-2024-49873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49873"
},
{
"name": "CVE-2024-49876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49876"
},
{
"name": "CVE-2024-49880",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49880"
},
{
"name": "CVE-2024-49885",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49885"
},
{
"name": "CVE-2024-49887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49887"
},
{
"name": "CVE-2024-49926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49926"
},
{
"name": "CVE-2024-49932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49932"
},
{
"name": "CVE-2024-49940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49940"
},
{
"name": "CVE-2024-49941",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49941"
},
{
"name": "CVE-2024-49942",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49942"
},
{
"name": "CVE-2024-49943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49943"
},
{
"name": "CVE-2024-49956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49956"
},
{
"name": "CVE-2024-49964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49964"
},
{
"name": "CVE-2024-49970",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49970"
},
{
"name": "CVE-2024-49971",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49971"
},
{
"name": "CVE-2024-49979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49979"
},
{
"name": "CVE-2024-49980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49980"
},
{
"name": "CVE-2024-49988",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49988"
},
{
"name": "CVE-2024-49999",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49999"
},
{
"name": "CVE-2024-50005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50005"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50030"
},
{
"name": "CVE-2024-50034",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50034"
},
{
"name": "CVE-2024-50037",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50037"
},
{
"name": "CVE-2024-50043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50043"
},
{
"name": "CVE-2024-50056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50056"
},
{
"name": "CVE-2024-50057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50057"
},
{
"name": "CVE-2024-50065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50065"
},
{
"name": "CVE-2024-50066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50066"
},
{
"name": "CVE-2024-50068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50068"
},
{
"name": "CVE-2024-50070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50070"
},
{
"name": "CVE-2024-50071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50071"
},
{
"name": "CVE-2024-50079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50079"
},
{
"name": "CVE-2024-50090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50090"
},
{
"name": "CVE-2024-50091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50091"
},
{
"name": "CVE-2024-50092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50092"
},
{
"name": "CVE-2024-50094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50094"
},
{
"name": "CVE-2024-50104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50104"
},
{
"name": "CVE-2024-50105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50105"
},
{
"name": "CVE-2024-50107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50107"
},
{
"name": "CVE-2024-50109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50109"
},
{
"name": "CVE-2024-50111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50111"
},
{
"name": "CVE-2024-50112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50112"
},
{
"name": "CVE-2024-50113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50113"
},
{
"name": "CVE-2024-50114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50114"
},
{
"name": "CVE-2024-50118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50118"
},
{
"name": "CVE-2024-50119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50119"
},
{
"name": "CVE-2024-50120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50120"
},
{
"name": "CVE-2024-50122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50122"
},
{
"name": "CVE-2024-50123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50123"
},
{
"name": "CVE-2024-50129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50129"
},
{
"name": "CVE-2024-50132",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50132"
},
{
"name": "CVE-2024-50137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50137"
},
{
"name": "CVE-2024-50140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50140"
},
{
"name": "CVE-2024-50144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50144"
},
{
"name": "CVE-2024-50149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50149"
},
{
"name": "CVE-2024-50152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50152"
},
{
"name": "CVE-2024-50161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50161"
},
{
"name": "CVE-2024-50165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50165"
},
{
"name": "CVE-2024-50170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50170"
},
{
"name": "CVE-2024-50173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50173"
},
{
"name": "CVE-2024-50174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50174"
},
{
"name": "CVE-2024-50178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50178"
},
{
"name": "CVE-2024-50190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50190"
},
{
"name": "CVE-2024-50197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50197"
},
{
"name": "CVE-2024-50204",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50204"
},
{
"name": "CVE-2024-50206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50206"
},
{
"name": "CVE-2024-50207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50207"
},
{
"name": "CVE-2024-50212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50212"
},
{
"name": "CVE-2024-50213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50213"
},
{
"name": "CVE-2024-50214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50214"
},
{
"name": "CVE-2024-50217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50217"
},
{
"name": "CVE-2024-50220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50220"
},
{
"name": "CVE-2024-50222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50222"
},
{
"name": "CVE-2024-50223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50223"
},
{
"name": "CVE-2024-50227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50227"
},
{
"name": "CVE-2024-50238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50238"
},
{
"name": "CVE-2024-50239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50239"
},
{
"name": "CVE-2024-50253",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50253"
},
{
"name": "CVE-2024-50254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50254"
},
{
"name": "CVE-2024-50260",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50260"
},
{
"name": "CVE-2024-50263",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50263"
},
{
"name": "CVE-2024-50266",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50266"
},
{
"name": "CVE-2024-50270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50270"
},
{
"name": "CVE-2024-50277",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50277"
},
{
"name": "CVE-2024-50281",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50281"
},
{
"name": "CVE-2024-50285",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50285"
},
{
"name": "CVE-2024-50288",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50288"
},
{
"name": "CVE-2024-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50291"
},
{
"name": "CVE-2024-50293",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50293"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-50297",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50297"
},
{
"name": "CVE-2024-50300",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50300"
},
{
"name": "CVE-2024-50303",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50303"
},
{
"name": "CVE-2024-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53044"
},
{
"name": "CVE-2024-53046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53046"
},
{
"name": "CVE-2024-53049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53049"
},
{
"name": "CVE-2024-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53053"
},
{
"name": "CVE-2024-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53062"
},
{
"name": "CVE-2024-53065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53065"
},
{
"name": "CVE-2024-53067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53067"
},
{
"name": "CVE-2024-53069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53069"
},
{
"name": "CVE-2024-53071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53071"
},
{
"name": "CVE-2024-53075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53075"
},
{
"name": "CVE-2024-53077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53077"
},
{
"name": "CVE-2024-53078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53078"
},
{
"name": "CVE-2024-53080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53080"
},
{
"name": "CVE-2024-53083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53083"
},
{
"name": "CVE-2024-53084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53084"
},
{
"name": "CVE-2024-53086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53086"
},
{
"name": "CVE-2024-53087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53087"
},
{
"name": "CVE-2024-53089",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53089"
},
{
"name": "CVE-2024-53092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53092"
},
{
"name": "CVE-2024-53098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53098"
},
{
"name": "CVE-2024-53107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53107"
},
{
"name": "CVE-2024-53109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53109"
},
{
"name": "CVE-2024-53115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53115"
},
{
"name": "CVE-2024-53116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53116"
},
{
"name": "CVE-2024-53132",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53132"
},
{
"name": "CVE-2024-53137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53137"
},
{
"name": "CVE-2024-53139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53139"
},
{
"name": "CVE-2024-53143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53143"
},
{
"name": "CVE-2024-53145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53145"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53149"
},
{
"name": "CVE-2024-53152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53152"
},
{
"name": "CVE-2024-53153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53153"
},
{
"name": "CVE-2024-53163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53163"
},
{
"name": "CVE-2024-53165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53165"
},
{
"name": "CVE-2024-53167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53167"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53181"
},
{
"name": "CVE-2024-53183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53183"
},
{
"name": "CVE-2024-53184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53184"
},
{
"name": "CVE-2024-53189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53189"
},
{
"name": "CVE-2024-53192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53192"
},
{
"name": "CVE-2024-53193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53193"
},
{
"name": "CVE-2024-53199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53199"
},
{
"name": "CVE-2024-53212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53212"
},
{
"name": "CVE-2024-53218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53218"
},
{
"name": "CVE-2024-53219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53219"
},
{
"name": "CVE-2024-53220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53220"
},
{
"name": "CVE-2024-53221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53221"
},
{
"name": "CVE-2024-53223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53223"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-53228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53228"
},
{
"name": "CVE-2024-56534",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56534"
},
{
"name": "CVE-2024-56535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56535"
},
{
"name": "CVE-2024-56537",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56537"
},
{
"name": "CVE-2024-56540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56540"
},
{
"name": "CVE-2024-56541",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56541"
},
{
"name": "CVE-2024-56544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56544"
},
{
"name": "CVE-2024-56545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56545"
},
{
"name": "CVE-2024-56674",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56674"
},
{
"name": "CVE-2024-56680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56680"
},
{
"name": "CVE-2024-56684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56684"
},
{
"name": "CVE-2024-56685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56685"
},
{
"name": "CVE-2024-56689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56689"
},
{
"name": "CVE-2024-56692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56692"
},
{
"name": "CVE-2024-56696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56696"
},
{
"name": "CVE-2024-56697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56697"
},
{
"name": "CVE-2024-56699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56699"
},
{
"name": "CVE-2024-56702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56702"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2024-56742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56742"
},
{
"name": "CVE-2024-56744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56744"
},
{
"name": "CVE-2024-56749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56749"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2025-0927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0927"
},
{
"name": "CVE-2024-56542",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56542"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0185",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-03-07T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux d\u0027Ubuntu. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, un d\u00e9ni de service et un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7327-1",
"url": "https://ubuntu.com/security/notices/USN-7327-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7325-1",
"url": "https://ubuntu.com/security/notices/USN-7325-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7324-1",
"url": "https://ubuntu.com/security/notices/USN-7324-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7328-1",
"url": "https://ubuntu.com/security/notices/USN-7328-1"
},
{
"published_at": "2025-03-03",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7294-4",
"url": "https://ubuntu.com/security/notices/USN-7294-4"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7323-1",
"url": "https://ubuntu.com/security/notices/USN-7323-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7332-1",
"url": "https://ubuntu.com/security/notices/USN-7332-1"
},
{
"published_at": "2025-03-03",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7303-3",
"url": "https://ubuntu.com/security/notices/USN-7303-3"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7311-1",
"url": "https://ubuntu.com/security/notices/USN-7311-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7322-1",
"url": "https://ubuntu.com/security/notices/USN-7322-1"
},
{
"published_at": "2025-03-06",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7323-2",
"url": "https://ubuntu.com/security/notices/USN-7323-2"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7333-1",
"url": "https://ubuntu.com/security/notices/USN-7333-1"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7303-2",
"url": "https://ubuntu.com/security/notices/USN-7303-2"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7329-1",
"url": "https://ubuntu.com/security/notices/USN-7329-1"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7310-1",
"url": "https://ubuntu.com/security/notices/USN-7310-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7331-1",
"url": "https://ubuntu.com/security/notices/USN-7331-1"
},
{
"published_at": "2025-03-05",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7326-1",
"url": "https://ubuntu.com/security/notices/USN-7326-1"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7294-3",
"url": "https://ubuntu.com/security/notices/USN-7294-3"
}
]
}
CERTFR-2025-AVI-0088
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP3 | ||
| SUSE | N/A | openSUSE Leap 15.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | Confidential Computing Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.1 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | openSUSE Leap 15.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Confidential Computing Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2020-12770",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12770"
},
{
"name": "CVE-2021-38160",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38160"
},
{
"name": "CVE-2021-35477",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35477"
},
{
"name": "CVE-2021-34556",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34556"
},
{
"name": "CVE-2021-42327",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42327"
},
{
"name": "CVE-2022-36280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36280"
},
{
"name": "CVE-2023-1382",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1382"
},
{
"name": "CVE-2023-1829",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1829"
},
{
"name": "CVE-2023-33951",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33951"
},
{
"name": "CVE-2023-33952",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33952"
},
{
"name": "CVE-2023-2860",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2860"
},
{
"name": "CVE-2023-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6546"
},
{
"name": "CVE-2023-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6531"
},
{
"name": "CVE-2023-0160",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0160"
},
{
"name": "CVE-2023-47233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47233"
},
{
"name": "CVE-2024-24860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24860"
},
{
"name": "CVE-2023-52340",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52340"
},
{
"name": "CVE-2024-26622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26622"
},
{
"name": "CVE-2023-52502",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52502"
},
{
"name": "CVE-2024-26585",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26585"
},
{
"name": "CVE-2023-52434",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52434"
},
{
"name": "CVE-2023-52591",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52591"
},
{
"name": "CVE-2023-52524",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52524"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-26766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26766"
},
{
"name": "CVE-2024-26764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26764"
},
{
"name": "CVE-2021-46955",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46955"
},
{
"name": "CVE-2021-47202",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47202"
},
{
"name": "CVE-2023-52489",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52489"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-26924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26924"
},
{
"name": "CVE-2024-26976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26976"
},
{
"name": "CVE-2024-26852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26852"
},
{
"name": "CVE-2024-26923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26923"
},
{
"name": "CVE-2022-48703",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48703"
},
{
"name": "CVE-2022-48702",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48702"
},
{
"name": "CVE-2022-48686",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48686"
},
{
"name": "CVE-2022-48701",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48701"
},
{
"name": "CVE-2022-48694",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48694"
},
{
"name": "CVE-2022-48688",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48688"
},
{
"name": "CVE-2022-48634",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48634"
},
{
"name": "CVE-2022-48672",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48672"
},
{
"name": "CVE-2022-48651",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48651"
},
{
"name": "CVE-2022-48693",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48693"
},
{
"name": "CVE-2022-48652",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48652"
},
{
"name": "CVE-2022-48671",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48671"
},
{
"name": "CVE-2022-48662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48662"
},
{
"name": "CVE-2022-48700",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48700"
},
{
"name": "CVE-2022-48687",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48687"
},
{
"name": "CVE-2022-48695",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48695"
},
{
"name": "CVE-2022-48704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48704"
},
{
"name": "CVE-2022-48692",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48692"
},
{
"name": "CVE-2022-48636",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48636"
},
{
"name": "CVE-2022-48675",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48675"
},
{
"name": "CVE-2022-48673",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48673"
},
{
"name": "CVE-2022-48697",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48697"
},
{
"name": "CVE-2022-48699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48699"
},
{
"name": "CVE-2022-48632",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48632"
},
{
"name": "CVE-2024-26930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26930"
},
{
"name": "CVE-2024-26828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26828"
},
{
"name": "CVE-2024-27398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27398"
},
{
"name": "CVE-2024-36883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36883"
},
{
"name": "CVE-2024-36886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36886"
},
{
"name": "CVE-2024-36904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36904"
},
{
"name": "CVE-2020-36788",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36788"
},
{
"name": "CVE-2021-4148",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4148"
},
{
"name": "CVE-2021-47365",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47365"
},
{
"name": "CVE-2021-47378",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47378"
},
{
"name": "CVE-2021-47383",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47383"
},
{
"name": "CVE-2021-47402",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47402"
},
{
"name": "CVE-2021-47489",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47489"
},
{
"name": "CVE-2021-47491",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47491"
},
{
"name": "CVE-2021-47492",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47492"
},
{
"name": "CVE-2023-52654",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52654"
},
{
"name": "CVE-2023-52655",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52655"
},
{
"name": "CVE-2023-52676",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52676"
},
{
"name": "CVE-2024-35811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35811"
},
{
"name": "CVE-2024-35815",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35815"
},
{
"name": "CVE-2024-35817",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35817"
},
{
"name": "CVE-2024-35847",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35847"
},
{
"name": "CVE-2024-35861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35861"
},
{
"name": "CVE-2024-35862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35862"
},
{
"name": "CVE-2024-35863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35863"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-35867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35867"
},
{
"name": "CVE-2024-35895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35895"
},
{
"name": "CVE-2024-35905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35905"
},
{
"name": "CVE-2024-35914",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35914"
},
{
"name": "CVE-2024-35950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35950"
},
{
"name": "CVE-2024-27029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27029"
},
{
"name": "CVE-2024-36964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36964"
},
{
"name": "CVE-2024-36971",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36971"
},
{
"name": "CVE-2024-38589",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38589"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-26886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26886"
},
{
"name": "CVE-2023-52752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52752"
},
{
"name": "CVE-2023-52846",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52846"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-36915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36915"
},
{
"name": "CVE-2024-39480",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39480"
},
{
"name": "CVE-2024-40920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40920"
},
{
"name": "CVE-2024-40921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40921"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2024-35949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35949"
},
{
"name": "CVE-2024-36908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36908"
},
{
"name": "CVE-2024-36979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36979"
},
{
"name": "CVE-2024-41013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41013"
},
{
"name": "CVE-2021-47291",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47291"
},
{
"name": "CVE-2021-47598",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47598"
},
{
"name": "CVE-2024-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40909"
},
{
"name": "CVE-2024-41057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41057"
},
{
"name": "CVE-2024-41059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41059"
},
{
"name": "CVE-2024-36484",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36484"
},
{
"name": "CVE-2024-42232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42232"
},
{
"name": "CVE-2024-35839",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35839"
},
{
"name": "CVE-2021-47517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47517"
},
{
"name": "CVE-2024-41042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41042"
},
{
"name": "CVE-2024-42133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42133"
},
{
"name": "CVE-2024-43861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43861"
},
{
"name": "CVE-2024-46771",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46771"
},
{
"name": "CVE-2024-46800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46800"
},
{
"name": "CVE-2022-48956",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48956"
},
{
"name": "CVE-2024-44934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44934"
},
{
"name": "CVE-2024-47709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47709"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50228"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50264"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53057"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-53241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53241"
},
{
"name": "CVE-2024-53240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53240"
},
{
"name": "CVE-2024-43913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43913"
},
{
"name": "CVE-2024-44996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44996"
},
{
"name": "CVE-2024-46680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46680"
},
{
"name": "CVE-2024-46765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46765"
},
{
"name": "CVE-2024-47666",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47666"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2023-52920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52920"
},
{
"name": "CVE-2023-52922",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52922"
},
{
"name": "CVE-2024-26596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26596"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-49854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49854"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-50018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50018"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53159"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53179"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-53207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53207"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56667",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56667"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2022-48742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48742"
},
{
"name": "CVE-2022-49033",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49033"
},
{
"name": "CVE-2022-49035",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49035"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-56571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56571"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2023-52923",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52923"
},
{
"name": "CVE-2024-36476",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36476"
},
{
"name": "CVE-2024-39282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39282"
},
{
"name": "CVE-2024-45828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45828"
},
{
"name": "CVE-2024-46896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46896"
},
{
"name": "CVE-2024-47141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47141"
},
{
"name": "CVE-2024-47143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47143"
},
{
"name": "CVE-2024-47809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47809"
},
{
"name": "CVE-2024-48873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48873"
},
{
"name": "CVE-2024-48881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48881"
},
{
"name": "CVE-2024-49569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49569"
},
{
"name": "CVE-2024-49951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49951"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50051"
},
{
"name": "CVE-2024-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50106"
},
{
"name": "CVE-2024-52332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52332"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53185"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-53685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53685"
},
{
"name": "CVE-2024-53690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53690"
},
{
"name": "CVE-2024-54680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54680"
},
{
"name": "CVE-2024-55639",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55639"
},
{
"name": "CVE-2024-55881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55881"
},
{
"name": "CVE-2024-55916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55916"
},
{
"name": "CVE-2024-56369",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56369"
},
{
"name": "CVE-2024-56372",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56372"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-56557",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56557"
},
{
"name": "CVE-2024-56558",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56558"
},
{
"name": "CVE-2024-56568",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56568"
},
{
"name": "CVE-2024-56569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56569"
},
{
"name": "CVE-2024-56572",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56572"
},
{
"name": "CVE-2024-56573",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56573"
},
{
"name": "CVE-2024-56574",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56574"
},
{
"name": "CVE-2024-53164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53164"
},
{
"name": "CVE-2024-56577",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56577"
},
{
"name": "CVE-2024-56578",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56578"
},
{
"name": "CVE-2024-56584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56584"
},
{
"name": "CVE-2024-56587",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56587"
},
{
"name": "CVE-2024-56588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56588"
},
{
"name": "CVE-2024-56589",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56589"
},
{
"name": "CVE-2024-56590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56590"
},
{
"name": "CVE-2024-56593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56593"
},
{
"name": "CVE-2024-56594",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56594"
},
{
"name": "CVE-2024-56595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56595"
},
{
"name": "CVE-2024-56596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56596"
},
{
"name": "CVE-2024-56597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56597"
},
{
"name": "CVE-2024-5660",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5660"
},
{
"name": "CVE-2024-56602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56602"
},
{
"name": "CVE-2024-56603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56603"
},
{
"name": "CVE-2024-56606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56606"
},
{
"name": "CVE-2024-56607",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56607"
},
{
"name": "CVE-2024-56609",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56609"
},
{
"name": "CVE-2024-56611",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56611"
},
{
"name": "CVE-2024-56614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56614"
},
{
"name": "CVE-2024-56615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56615"
},
{
"name": "CVE-2024-56616",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56616"
},
{
"name": "CVE-2024-56617",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56617"
},
{
"name": "CVE-2024-56620",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56620"
},
{
"name": "CVE-2024-56622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56622"
},
{
"name": "CVE-2024-56623",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56623"
},
{
"name": "CVE-2024-56625",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56625"
},
{
"name": "CVE-2024-56629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56629"
},
{
"name": "CVE-2024-56630",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56630"
},
{
"name": "CVE-2024-56632",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56632"
},
{
"name": "CVE-2024-56634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56634"
},
{
"name": "CVE-2024-56635",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56635"
},
{
"name": "CVE-2024-56636",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56636"
},
{
"name": "CVE-2024-56637",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56637"
},
{
"name": "CVE-2024-56641",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56641"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56643"
},
{
"name": "CVE-2024-56644",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56644"
},
{
"name": "CVE-2024-56648",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56648"
},
{
"name": "CVE-2024-56649",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56649"
},
{
"name": "CVE-2024-56651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56651"
},
{
"name": "CVE-2024-56654",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56654"
},
{
"name": "CVE-2024-56656",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56656"
},
{
"name": "CVE-2024-56659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56659"
},
{
"name": "CVE-2024-56660",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56660"
},
{
"name": "CVE-2024-56661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56661"
},
{
"name": "CVE-2024-56662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56662"
},
{
"name": "CVE-2024-56663",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56663"
},
{
"name": "CVE-2024-56664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56664"
},
{
"name": "CVE-2024-56670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56670"
},
{
"name": "CVE-2024-56672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56672"
},
{
"name": "CVE-2024-56675",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56675"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56709"
},
{
"name": "CVE-2024-56712",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56712"
},
{
"name": "CVE-2024-56716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56716"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56741"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-56759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56759"
},
{
"name": "CVE-2024-56760",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56760"
},
{
"name": "CVE-2024-56765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56765"
},
{
"name": "CVE-2024-56766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56766"
},
{
"name": "CVE-2024-56767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56767"
},
{
"name": "CVE-2024-56769",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56769"
},
{
"name": "CVE-2024-56774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56774"
},
{
"name": "CVE-2024-56775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56775"
},
{
"name": "CVE-2024-56776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56776"
},
{
"name": "CVE-2024-56777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56777"
},
{
"name": "CVE-2024-56778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56778"
},
{
"name": "CVE-2024-56779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56779"
},
{
"name": "CVE-2024-56780",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56780"
},
{
"name": "CVE-2024-56787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56787"
},
{
"name": "CVE-2024-57791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57791"
},
{
"name": "CVE-2024-57792",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57792"
},
{
"name": "CVE-2024-57793",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57793"
},
{
"name": "CVE-2024-57795",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57795"
},
{
"name": "CVE-2024-57798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57798"
},
{
"name": "CVE-2024-57801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57801"
},
{
"name": "CVE-2024-57804",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57804"
},
{
"name": "CVE-2024-57809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57809"
},
{
"name": "CVE-2024-57838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57838"
},
{
"name": "CVE-2024-57849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57849"
},
{
"name": "CVE-2024-57850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57850"
},
{
"name": "CVE-2024-57857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57857"
},
{
"name": "CVE-2024-57874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57874"
},
{
"name": "CVE-2024-57876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57876"
},
{
"name": "CVE-2024-57887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57887"
},
{
"name": "CVE-2024-57888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57888"
},
{
"name": "CVE-2024-57890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57890"
},
{
"name": "CVE-2024-57892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57892"
},
{
"name": "CVE-2024-57893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57893"
},
{
"name": "CVE-2024-57896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57896"
},
{
"name": "CVE-2024-57897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57897"
},
{
"name": "CVE-2024-57899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57899"
},
{
"name": "CVE-2024-57903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57903"
},
{
"name": "CVE-2024-57904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57904"
},
{
"name": "CVE-2024-57906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57906"
},
{
"name": "CVE-2024-57907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57907"
},
{
"name": "CVE-2024-57908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57908"
},
{
"name": "CVE-2024-57910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57910"
},
{
"name": "CVE-2024-57911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57911"
},
{
"name": "CVE-2024-57912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57912"
},
{
"name": "CVE-2024-57913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57913"
},
{
"name": "CVE-2024-57915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57915"
},
{
"name": "CVE-2024-57916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57916"
},
{
"name": "CVE-2024-57922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57922"
},
{
"name": "CVE-2024-57926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57926"
},
{
"name": "CVE-2024-57929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57929"
},
{
"name": "CVE-2024-57932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57932"
},
{
"name": "CVE-2024-57933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57933"
},
{
"name": "CVE-2024-57935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57935"
},
{
"name": "CVE-2024-57936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57936"
},
{
"name": "CVE-2024-57940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57940"
},
{
"name": "CVE-2025-21632",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21632"
},
{
"name": "CVE-2025-21645",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21645"
},
{
"name": "CVE-2025-21646",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21646"
},
{
"name": "CVE-2025-21649",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21649"
},
{
"name": "CVE-2025-21650",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21650"
},
{
"name": "CVE-2025-21651",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21651"
},
{
"name": "CVE-2025-21656",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21656"
},
{
"name": "CVE-2025-21662",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21662"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0088",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-31T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-01-28",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0268-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250268-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0244-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250244-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0248-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250248-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0260-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250260-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0250-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250250-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0252-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250252-1"
},
{
"published_at": "2025-01-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0238-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250238-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0261-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250261-1"
},
{
"published_at": "2025-01-28",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0269-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250269-1"
},
{
"published_at": "2025-01-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0230-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250230-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0243-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250243-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0246-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250246-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0242-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250242-1"
},
{
"published_at": "2025-01-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0240-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250240-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0255-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250255-1"
},
{
"published_at": "2025-01-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0241-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250241-1"
},
{
"published_at": "2025-01-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0239-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250239-1"
},
{
"published_at": "2025-01-29",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0289-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250289-1"
},
{
"published_at": "2025-01-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0229-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250229-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0264-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250264-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0245-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250245-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0266-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250266-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0265-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250265-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0251-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250251-1"
},
{
"published_at": "2025-01-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0231-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250231-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0262-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250262-1"
},
{
"published_at": "2025-01-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0236-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250236-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0253-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250253-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0249-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250249-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0254-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250254-1"
},
{
"published_at": "2025-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0263-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250263-1"
}
]
}
CERTFR-2025-AVI-0212
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Manager Proxy 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | Public Cloud Module 15-SP6 | ||
| SUSE | N/A | Development Tools Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 | ||
| SUSE | N/A | SUSE Manager Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Enterprise Storage 7.1 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security | ||
| SUSE | N/A | Basesystem Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.1 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Manager Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP3 | ||
| SUSE | N/A | openSUSE Leap 15.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 Business Critical Linux | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS | ||
| SUSE | N/A | SUSE Manager Proxy 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Workstation Extension 15 SP6 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Desktop 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 LTSS | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | Legacy Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | openSUSE Leap 15.4 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Manager Proxy 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Public Cloud Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Development Tools Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Enterprise Storage 7.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Basesystem Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 Business Critical Linux",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Desktop 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Legacy Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2021-22543",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22543"
},
{
"name": "CVE-2021-37159",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37159"
},
{
"name": "CVE-2022-2991",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2991"
},
{
"name": "CVE-2023-0394",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0394"
},
{
"name": "CVE-2022-36280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36280"
},
{
"name": "CVE-2023-1382",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1382"
},
{
"name": "CVE-2023-33951",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33951"
},
{
"name": "CVE-2023-33952",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33952"
},
{
"name": "CVE-2023-1192",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1192"
},
{
"name": "CVE-2023-4244",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4244"
},
{
"name": "CVE-2023-6606",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6606"
},
{
"name": "CVE-2024-24860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24860"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-26810",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26810"
},
{
"name": "CVE-2023-52572",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52572"
},
{
"name": "CVE-2021-47202",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47202"
},
{
"name": "CVE-2024-26931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26931"
},
{
"name": "CVE-2024-27388",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27388"
},
{
"name": "CVE-2024-26924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26924"
},
{
"name": "CVE-2024-27054",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27054"
},
{
"name": "CVE-2022-48650",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48650"
},
{
"name": "CVE-2023-52646",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52646"
},
{
"name": "CVE-2024-26929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26929"
},
{
"name": "CVE-2023-52653",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52653"
},
{
"name": "CVE-2022-48636",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48636"
},
{
"name": "CVE-2024-26930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26930"
},
{
"name": "CVE-2023-52853",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52853"
},
{
"name": "CVE-2024-26758",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26758"
},
{
"name": "CVE-2024-26943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26943"
},
{
"name": "CVE-2024-36898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36898"
},
{
"name": "CVE-2024-38599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38599"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-26886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26886"
},
{
"name": "CVE-2024-36915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36915"
},
{
"name": "CVE-2024-26708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26708"
},
{
"name": "CVE-2024-40980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40980"
},
{
"name": "CVE-2024-35949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35949"
},
{
"name": "CVE-2024-41055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41055"
},
{
"name": "CVE-2024-42232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42232"
},
{
"name": "CVE-2024-41047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41047"
},
{
"name": "CVE-2024-44974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44974"
},
{
"name": "CVE-2024-45009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45009"
},
{
"name": "CVE-2024-45010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45010"
},
{
"name": "CVE-2024-45019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45019"
},
{
"name": "CVE-2024-46858",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46858"
},
{
"name": "CVE-2022-48664",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48664"
},
{
"name": "CVE-2022-48953",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48953"
},
{
"name": "CVE-2022-48975",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48975"
},
{
"name": "CVE-2022-49006",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49006"
},
{
"name": "CVE-2024-44934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44934"
},
{
"name": "CVE-2024-49867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49867"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49963"
},
{
"name": "CVE-2024-49975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49975"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-53241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53241"
},
{
"name": "CVE-2024-53240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53240"
},
{
"name": "CVE-2024-47666",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47666"
},
{
"name": "CVE-2024-47701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47701"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2023-52920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52920"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50210"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-50018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50018"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53179"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2022-48742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48742"
},
{
"name": "CVE-2022-49033",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49033"
},
{
"name": "CVE-2022-49035",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49035"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-56571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56571"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-50051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50051"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53690"
},
{
"name": "CVE-2024-54680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54680"
},
{
"name": "CVE-2024-55916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55916"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56557",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56557"
},
{
"name": "CVE-2024-56558",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56558"
},
{
"name": "CVE-2024-56568",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56568"
},
{
"name": "CVE-2024-56588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56588"
},
{
"name": "CVE-2024-56595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56595"
},
{
"name": "CVE-2024-56596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56596"
},
{
"name": "CVE-2024-56597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56597"
},
{
"name": "CVE-2024-56602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56602"
},
{
"name": "CVE-2024-56623",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56623"
},
{
"name": "CVE-2024-56629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56629"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56644",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56644"
},
{
"name": "CVE-2024-56648",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56648"
},
{
"name": "CVE-2024-56661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56661"
},
{
"name": "CVE-2024-56664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56664"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56759"
},
{
"name": "CVE-2024-56765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56765"
},
{
"name": "CVE-2024-56776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56776"
},
{
"name": "CVE-2024-56777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56777"
},
{
"name": "CVE-2024-56778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56778"
},
{
"name": "CVE-2024-57791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57791"
},
{
"name": "CVE-2024-57792",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57792"
},
{
"name": "CVE-2024-57793",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57793"
},
{
"name": "CVE-2024-57798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57798"
},
{
"name": "CVE-2024-57849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57849"
},
{
"name": "CVE-2024-57850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57850"
},
{
"name": "CVE-2024-57876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57876"
},
{
"name": "CVE-2024-57893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57893"
},
{
"name": "CVE-2024-57896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57896"
},
{
"name": "CVE-2024-57897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57897"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-56592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56592"
},
{
"name": "CVE-2024-56600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56600"
},
{
"name": "CVE-2024-56601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56601"
},
{
"name": "CVE-2024-56650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56650"
},
{
"name": "CVE-2024-56658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
},
{
"name": "CVE-2024-57882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57882"
},
{
"name": "CVE-2025-21666",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21666"
},
{
"name": "CVE-2025-21669",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21669"
},
{
"name": "CVE-2025-21670",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21670"
},
{
"name": "CVE-2025-21675",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21675"
},
{
"name": "CVE-2024-57948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57948"
},
{
"name": "CVE-2025-21636",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21636"
},
{
"name": "CVE-2025-21637",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21637"
},
{
"name": "CVE-2025-21638",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21638"
},
{
"name": "CVE-2025-21639",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21639"
},
{
"name": "CVE-2025-21640",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21640"
},
{
"name": "CVE-2025-21647",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21647"
},
{
"name": "CVE-2025-21665",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21665"
},
{
"name": "CVE-2025-21667",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21667"
},
{
"name": "CVE-2025-21668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21668"
},
{
"name": "CVE-2025-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21680"
},
{
"name": "CVE-2025-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21681"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2024-56633",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56633"
},
{
"name": "CVE-2025-21673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21673"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2023-52924",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52924"
},
{
"name": "CVE-2023-52925",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52925"
},
{
"name": "CVE-2024-56579",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56579"
},
{
"name": "CVE-2024-56647",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56647"
},
{
"name": "CVE-2024-57889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57889"
},
{
"name": "CVE-2025-21684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21684"
},
{
"name": "CVE-2025-21687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21687"
},
{
"name": "CVE-2025-21688",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21688"
},
{
"name": "CVE-2025-21689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21689"
},
{
"name": "CVE-2025-21690",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21690"
},
{
"name": "CVE-2025-21692",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21692"
},
{
"name": "CVE-2025-21697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21697"
},
{
"name": "CVE-2025-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21699"
},
{
"name": "CVE-2025-21700",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21700"
},
{
"name": "CVE-2021-47633",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47633"
},
{
"name": "CVE-2021-47634",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47634"
},
{
"name": "CVE-2021-47644",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47644"
},
{
"name": "CVE-2022-49076",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49076"
},
{
"name": "CVE-2022-49080",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49080"
},
{
"name": "CVE-2022-49089",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49089"
},
{
"name": "CVE-2022-49124",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49124"
},
{
"name": "CVE-2022-49134",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49134"
},
{
"name": "CVE-2022-49135",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49135"
},
{
"name": "CVE-2022-49151",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49151"
},
{
"name": "CVE-2022-49178",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49178"
},
{
"name": "CVE-2022-49182",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49182"
},
{
"name": "CVE-2022-49201",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49201"
},
{
"name": "CVE-2022-49247",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49247"
},
{
"name": "CVE-2022-49490",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49490"
},
{
"name": "CVE-2022-49626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49626"
},
{
"name": "CVE-2022-49661",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49661"
},
{
"name": "CVE-2024-57979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57979"
},
{
"name": "CVE-2024-57994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57994"
},
{
"name": "CVE-2025-21705",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21705"
},
{
"name": "CVE-2025-21715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21715"
},
{
"name": "CVE-2025-21716",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21716"
},
{
"name": "CVE-2025-21719",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21719"
},
{
"name": "CVE-2025-21724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21724"
},
{
"name": "CVE-2025-21725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21725"
},
{
"name": "CVE-2025-21728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21728"
},
{
"name": "CVE-2025-21733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21733"
},
{
"name": "CVE-2025-21753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21753"
},
{
"name": "CVE-2025-21754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21754"
},
{
"name": "CVE-2025-21767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21767"
},
{
"name": "CVE-2025-21790",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21790"
},
{
"name": "CVE-2025-21795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21795"
},
{
"name": "CVE-2025-21799",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21799"
},
{
"name": "CVE-2025-21802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21802"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0212",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-03-14T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0833-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250833-1"
},
{
"published_at": "2025-03-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0847-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250847-1"
},
{
"published_at": "2025-03-13",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0855-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250855-1"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0833-2",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250833-2"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0577-2",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250577-2"
},
{
"published_at": "2025-03-13",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0856-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250856-1"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0834-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250834-1"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0835-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250835-1"
},
{
"published_at": "2025-03-13",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0853-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250853-1"
},
{
"published_at": "2025-03-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0201-2",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250201-2"
}
]
}
CERTFR-2025-AVI-0366
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 24.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-26928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26928"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-26837",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26837"
},
{
"name": "CVE-2024-41014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41014"
},
{
"name": "CVE-2024-41016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41016"
},
{
"name": "CVE-2024-42122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42122"
},
{
"name": "CVE-2024-42315",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42315"
},
{
"name": "CVE-2024-43900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43900"
},
{
"name": "CVE-2024-44938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44938"
},
{
"name": "CVE-2024-46784",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46784"
},
{
"name": "CVE-2024-46826",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46826"
},
{
"name": "CVE-2024-46809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46809"
},
{
"name": "CVE-2024-46841",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46841"
},
{
"name": "CVE-2024-46871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46871"
},
{
"name": "CVE-2024-47670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47670"
},
{
"name": "CVE-2024-47671",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47671"
},
{
"name": "CVE-2024-47672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47672"
},
{
"name": "CVE-2024-47673",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47673"
},
{
"name": "CVE-2024-47684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47684"
},
{
"name": "CVE-2024-47685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47685"
},
{
"name": "CVE-2024-47692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47692"
},
{
"name": "CVE-2024-47693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47693"
},
{
"name": "CVE-2024-47695",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47695"
},
{
"name": "CVE-2024-47696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47696"
},
{
"name": "CVE-2024-47697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47697"
},
{
"name": "CVE-2024-47698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47698"
},
{
"name": "CVE-2024-47699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47699"
},
{
"name": "CVE-2024-47704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47704"
},
{
"name": "CVE-2024-47705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47705"
},
{
"name": "CVE-2024-47706",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47706"
},
{
"name": "CVE-2024-47707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47707"
},
{
"name": "CVE-2024-47709",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47709"
},
{
"name": "CVE-2024-47710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47710"
},
{
"name": "CVE-2024-47712",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47712"
},
{
"name": "CVE-2024-47713",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47713"
},
{
"name": "CVE-2024-47718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47718"
},
{
"name": "CVE-2024-47720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47720"
},
{
"name": "CVE-2024-47723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47723"
},
{
"name": "CVE-2024-47728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47728"
},
{
"name": "CVE-2024-47730",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47730"
},
{
"name": "CVE-2024-47735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47735"
},
{
"name": "CVE-2024-47737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47737"
},
{
"name": "CVE-2024-47738",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47738"
},
{
"name": "CVE-2024-47739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47739"
},
{
"name": "CVE-2024-47742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47742"
},
{
"name": "CVE-2024-47745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47745"
},
{
"name": "CVE-2024-47747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47747"
},
{
"name": "CVE-2024-47748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47748"
},
{
"name": "CVE-2024-47749",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47749"
},
{
"name": "CVE-2024-47756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47756"
},
{
"name": "CVE-2024-47757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47757"
},
{
"name": "CVE-2024-49851",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49851"
},
{
"name": "CVE-2024-49852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49852"
},
{
"name": "CVE-2024-49855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49855"
},
{
"name": "CVE-2024-49858",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49858"
},
{
"name": "CVE-2024-49860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49860"
},
{
"name": "CVE-2024-49861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49861"
},
{
"name": "CVE-2024-49863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49863"
},
{
"name": "CVE-2024-49866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49866"
},
{
"name": "CVE-2024-49867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49867"
},
{
"name": "CVE-2024-49870",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49870"
},
{
"name": "CVE-2024-49871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49871"
},
{
"name": "CVE-2024-49875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49875"
},
{
"name": "CVE-2024-49877",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49877"
},
{
"name": "CVE-2024-49878",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49878"
},
{
"name": "CVE-2024-49879",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49879"
},
{
"name": "CVE-2024-49881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49881"
},
{
"name": "CVE-2024-49882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49882"
},
{
"name": "CVE-2024-49883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49883"
},
{
"name": "CVE-2024-49886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49886"
},
{
"name": "CVE-2024-49888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49888"
},
{
"name": "CVE-2024-49890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49890"
},
{
"name": "CVE-2024-49891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49891"
},
{
"name": "CVE-2024-49892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49892"
},
{
"name": "CVE-2024-49894",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49894"
},
{
"name": "CVE-2024-49895",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49895"
},
{
"name": "CVE-2024-49896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49896"
},
{
"name": "CVE-2024-49898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49898"
},
{
"name": "CVE-2024-49899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49899"
},
{
"name": "CVE-2024-49900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49900"
},
{
"name": "CVE-2024-49901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49901"
},
{
"name": "CVE-2024-49902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49902"
},
{
"name": "CVE-2024-49903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49903"
},
{
"name": "CVE-2024-49906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49906"
},
{
"name": "CVE-2024-49907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49907"
},
{
"name": "CVE-2024-49909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49909"
},
{
"name": "CVE-2024-49911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49911"
},
{
"name": "CVE-2024-49912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49912"
},
{
"name": "CVE-2024-49913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49913"
},
{
"name": "CVE-2024-49914",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49914"
},
{
"name": "CVE-2024-49917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49917"
},
{
"name": "CVE-2024-49918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49918"
},
{
"name": "CVE-2024-49919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49919"
},
{
"name": "CVE-2024-49920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49920"
},
{
"name": "CVE-2024-49922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49922"
},
{
"name": "CVE-2024-49923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49923"
},
{
"name": "CVE-2024-49928",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49928"
},
{
"name": "CVE-2024-49929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49929"
},
{
"name": "CVE-2024-49930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49930"
},
{
"name": "CVE-2024-49931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49931"
},
{
"name": "CVE-2024-49933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49933"
},
{
"name": "CVE-2024-49935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49935"
},
{
"name": "CVE-2024-49936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49936"
},
{
"name": "CVE-2024-49937",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49937"
},
{
"name": "CVE-2024-49938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49938"
},
{
"name": "CVE-2024-49939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49939"
},
{
"name": "CVE-2024-49946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49946"
},
{
"name": "CVE-2024-49949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49949"
},
{
"name": "CVE-2024-49950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49950"
},
{
"name": "CVE-2024-49954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49954"
},
{
"name": "CVE-2024-49955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49955"
},
{
"name": "CVE-2024-49957",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49957"
},
{
"name": "CVE-2024-49958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49958"
},
{
"name": "CVE-2024-49959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49959"
},
{
"name": "CVE-2024-49960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49960"
},
{
"name": "CVE-2024-49961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49961"
},
{
"name": "CVE-2024-49962",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49962"
},
{
"name": "CVE-2024-49963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49963"
},
{
"name": "CVE-2024-49965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49965"
},
{
"name": "CVE-2024-49966",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49966"
},
{
"name": "CVE-2024-49969",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49969"
},
{
"name": "CVE-2024-49972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49972"
},
{
"name": "CVE-2024-49973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49973"
},
{
"name": "CVE-2024-49974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49974"
},
{
"name": "CVE-2024-49975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49975"
},
{
"name": "CVE-2024-49981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49981"
},
{
"name": "CVE-2024-49982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49982"
},
{
"name": "CVE-2024-49985",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49985"
},
{
"name": "CVE-2024-49991",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49991"
},
{
"name": "CVE-2024-49996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49996"
},
{
"name": "CVE-2024-50000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50000"
},
{
"name": "CVE-2024-50001",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50001"
},
{
"name": "CVE-2024-50002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50002"
},
{
"name": "CVE-2024-50006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50006"
},
{
"name": "CVE-2024-50007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50007"
},
{
"name": "CVE-2024-50008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50008"
},
{
"name": "CVE-2024-50013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50013"
},
{
"name": "CVE-2024-50014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50014"
},
{
"name": "CVE-2024-50015",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50015"
},
{
"name": "CVE-2024-50017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50017"
},
{
"name": "CVE-2024-50019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50019"
},
{
"name": "CVE-2024-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50020"
},
{
"name": "CVE-2024-50021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50021"
},
{
"name": "CVE-2024-50022",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50022"
},
{
"name": "CVE-2024-50023",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50023"
},
{
"name": "CVE-2024-50024",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50024"
},
{
"name": "CVE-2024-50025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50025"
},
{
"name": "CVE-2024-50027",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50027"
},
{
"name": "CVE-2024-50028",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50028"
},
{
"name": "CVE-2024-50031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50031"
},
{
"name": "CVE-2024-50033",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50033"
},
{
"name": "CVE-2024-50035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50035"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2024-50041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50041"
},
{
"name": "CVE-2024-50042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50042"
},
{
"name": "CVE-2024-50044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50044"
},
{
"name": "CVE-2024-50045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50045"
},
{
"name": "CVE-2024-50046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50046"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50048"
},
{
"name": "CVE-2024-50049",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50049"
},
{
"name": "CVE-2024-50055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50055"
},
{
"name": "CVE-2024-50058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50058"
},
{
"name": "CVE-2024-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50059"
},
{
"name": "CVE-2024-50060",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50060"
},
{
"name": "CVE-2024-50061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50061"
},
{
"name": "CVE-2024-50062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50062"
},
{
"name": "CVE-2024-50063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50063"
},
{
"name": "CVE-2024-50064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50064"
},
{
"name": "CVE-2024-50069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50069"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-50074",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50074"
},
{
"name": "CVE-2024-50075",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50075"
},
{
"name": "CVE-2024-50076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50076"
},
{
"name": "CVE-2024-50077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50077"
},
{
"name": "CVE-2024-50078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50078"
},
{
"name": "CVE-2024-50080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50080"
},
{
"name": "CVE-2024-50012",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50012"
},
{
"name": "CVE-2024-50036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50036"
},
{
"name": "CVE-2024-50067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50067"
},
{
"name": "CVE-2024-50072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50072"
},
{
"name": "CVE-2024-50126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50126"
},
{
"name": "CVE-2024-50215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50215"
},
{
"name": "CVE-2024-50218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50218"
},
{
"name": "CVE-2024-50229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50229"
},
{
"name": "CVE-2024-50230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50230"
},
{
"name": "CVE-2024-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50232"
},
{
"name": "CVE-2024-50233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50233"
},
{
"name": "CVE-2024-50234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50234"
},
{
"name": "CVE-2024-50235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50235"
},
{
"name": "CVE-2024-50236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50236"
},
{
"name": "CVE-2024-50237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50237"
},
{
"name": "CVE-2024-50242",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50242"
},
{
"name": "CVE-2024-50243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50243"
},
{
"name": "CVE-2024-50244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50244"
},
{
"name": "CVE-2024-50245",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50245"
},
{
"name": "CVE-2024-50247",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50247"
},
{
"name": "CVE-2024-50250",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50250"
},
{
"name": "CVE-2024-50251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50251"
},
{
"name": "CVE-2024-50252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50252"
},
{
"name": "CVE-2024-50255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50255"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2024-50257",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50257"
},
{
"name": "CVE-2024-50259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50259"
},
{
"name": "CVE-2024-50261",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50261"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-50265",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50265"
},
{
"name": "CVE-2024-50267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50267"
},
{
"name": "CVE-2024-50268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50268"
},
{
"name": "CVE-2024-50269",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50269"
},
{
"name": "CVE-2024-50271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50271"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50273",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50273"
},
{
"name": "CVE-2024-50276",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50276"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-50282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50282"
},
{
"name": "CVE-2024-50283",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50283"
},
{
"name": "CVE-2024-50284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50284"
},
{
"name": "CVE-2024-50286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50286"
},
{
"name": "CVE-2024-50287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50287"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50292"
},
{
"name": "CVE-2024-50295",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50295"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-50299",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50299"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2024-50302",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50302"
},
{
"name": "CVE-2024-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53042"
},
{
"name": "CVE-2024-53043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53043"
},
{
"name": "CVE-2024-53052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53052"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-53058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53058"
},
{
"name": "CVE-2024-53059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53059"
},
{
"name": "CVE-2024-53061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53061"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53066"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53081"
},
{
"name": "CVE-2024-53082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53082"
},
{
"name": "CVE-2024-53088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53088"
},
{
"name": "CVE-2024-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53093"
},
{
"name": "CVE-2024-50226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50226"
},
{
"name": "CVE-2024-49925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49925"
},
{
"name": "CVE-2024-49945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49945"
},
{
"name": "CVE-2024-50208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50208"
},
{
"name": "CVE-2024-50082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50082"
},
{
"name": "CVE-2024-50099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50099"
},
{
"name": "CVE-2024-50110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50110"
},
{
"name": "CVE-2024-50142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50142"
},
{
"name": "CVE-2024-50192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50192"
},
{
"name": "CVE-2024-47679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47679"
},
{
"name": "CVE-2024-47690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47690"
},
{
"name": "CVE-2024-47701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47701"
},
{
"name": "CVE-2024-47734",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47734"
},
{
"name": "CVE-2024-47740",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47740"
},
{
"name": "CVE-2024-49856",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49856"
},
{
"name": "CVE-2024-49868",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49868"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-49889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49889"
},
{
"name": "CVE-2024-49893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49893"
},
{
"name": "CVE-2024-49905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49905"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-49921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49921"
},
{
"name": "CVE-2024-49924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49924"
},
{
"name": "CVE-2024-49927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49927"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-49948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49948"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2024-49977",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49977"
},
{
"name": "CVE-2024-49983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49983"
},
{
"name": "CVE-2024-49997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49997"
},
{
"name": "CVE-2024-50038",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50038"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-50093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50093"
},
{
"name": "CVE-2024-50095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50095"
},
{
"name": "CVE-2024-50096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50096"
},
{
"name": "CVE-2024-50179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50179"
},
{
"name": "CVE-2024-50180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50180"
},
{
"name": "CVE-2024-50184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50184"
},
{
"name": "CVE-2024-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50186"
},
{
"name": "CVE-2024-50188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50188"
},
{
"name": "CVE-2024-50189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50189"
},
{
"name": "CVE-2024-50191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50191"
},
{
"name": "CVE-2024-47703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47703"
},
{
"name": "CVE-2024-49934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49934"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2024-49987",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49987"
},
{
"name": "CVE-2024-49989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49989"
},
{
"name": "CVE-2024-50009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50009"
},
{
"name": "CVE-2024-50026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50026"
},
{
"name": "CVE-2024-50084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50084"
},
{
"name": "CVE-2024-50087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50087"
},
{
"name": "CVE-2024-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50088"
},
{
"name": "CVE-2024-50098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50098"
},
{
"name": "CVE-2024-50101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50101"
},
{
"name": "CVE-2024-50103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50103"
},
{
"name": "CVE-2024-50108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50108"
},
{
"name": "CVE-2024-50115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50115"
},
{
"name": "CVE-2024-50116",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50116"
},
{
"name": "CVE-2024-50117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50117"
},
{
"name": "CVE-2024-50121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50121"
},
{
"name": "CVE-2024-50124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50124"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-50127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50127"
},
{
"name": "CVE-2024-50128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50128"
},
{
"name": "CVE-2024-50130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50130"
},
{
"name": "CVE-2024-50131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50131"
},
{
"name": "CVE-2024-50134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50134"
},
{
"name": "CVE-2024-50135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50135"
},
{
"name": "CVE-2024-50136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50136"
},
{
"name": "CVE-2024-50138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50138"
},
{
"name": "CVE-2024-50139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50139"
},
{
"name": "CVE-2024-50141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50141"
},
{
"name": "CVE-2024-50145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50145"
},
{
"name": "CVE-2024-50146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50146"
},
{
"name": "CVE-2024-50147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50147"
},
{
"name": "CVE-2024-50148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50148"
},
{
"name": "CVE-2024-50150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50150"
},
{
"name": "CVE-2024-50153",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50153"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-50155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50155"
},
{
"name": "CVE-2024-50156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50156"
},
{
"name": "CVE-2024-50158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50158"
},
{
"name": "CVE-2024-50159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50159"
},
{
"name": "CVE-2024-50160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50160"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-50167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50167"
},
{
"name": "CVE-2024-50169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50169"
},
{
"name": "CVE-2024-50171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50171"
},
{
"name": "CVE-2024-50172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50172"
},
{
"name": "CVE-2024-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50182"
},
{
"name": "CVE-2024-50183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50183"
},
{
"name": "CVE-2024-50187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50187"
},
{
"name": "CVE-2024-50194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50194"
},
{
"name": "CVE-2024-50195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50195"
},
{
"name": "CVE-2024-50196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50196"
},
{
"name": "CVE-2024-50198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50198"
},
{
"name": "CVE-2024-50200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50200"
},
{
"name": "CVE-2024-50201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50201"
},
{
"name": "CVE-2024-50205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50205"
},
{
"name": "CVE-2024-50209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50209"
},
{
"name": "CVE-2024-50216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50216"
},
{
"name": "CVE-2024-50221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50221"
},
{
"name": "CVE-2024-50224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50224"
},
{
"name": "CVE-2024-50225",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50225"
},
{
"name": "CVE-2024-50231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50231"
},
{
"name": "CVE-2024-50240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50240"
},
{
"name": "CVE-2024-50246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50246"
},
{
"name": "CVE-2024-50248",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50248"
},
{
"name": "CVE-2024-50274",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50274"
},
{
"name": "CVE-2024-50275",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50275"
},
{
"name": "CVE-2024-50289",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50289"
},
{
"name": "CVE-2024-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50298"
},
{
"name": "CVE-2024-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53045"
},
{
"name": "CVE-2024-53048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53048"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53068"
},
{
"name": "CVE-2024-53076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53076"
},
{
"name": "CVE-2024-53079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53079"
},
{
"name": "CVE-2024-53085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53085"
},
{
"name": "CVE-2024-53094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53094"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-53096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53096"
},
{
"name": "CVE-2024-53100",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53100"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53104"
},
{
"name": "CVE-2024-53106",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53106"
},
{
"name": "CVE-2024-53108",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53108"
},
{
"name": "CVE-2024-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53110"
},
{
"name": "CVE-2024-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53112"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53121",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53121"
},
{
"name": "CVE-2024-53138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53138"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-49859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49859"
},
{
"name": "CVE-2024-49978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49978"
},
{
"name": "CVE-2024-49992",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49992"
},
{
"name": "CVE-2024-50010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50010"
},
{
"name": "CVE-2024-50083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50083"
},
{
"name": "CVE-2024-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50085"
},
{
"name": "CVE-2024-50086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50086"
},
{
"name": "CVE-2024-50133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50133"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-50151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50151"
},
{
"name": "CVE-2024-50162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50162"
},
{
"name": "CVE-2024-50163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50163"
},
{
"name": "CVE-2024-50168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50168"
},
{
"name": "CVE-2024-50185",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50185"
},
{
"name": "CVE-2024-50193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50193"
},
{
"name": "CVE-2024-50199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50199"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-53123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53123"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53135"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-36476",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36476"
},
{
"name": "CVE-2024-45828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45828"
},
{
"name": "CVE-2024-47141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47141"
},
{
"name": "CVE-2024-47143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47143"
},
{
"name": "CVE-2024-47809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47809"
},
{
"name": "CVE-2024-48873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48873"
},
{
"name": "CVE-2024-48881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48881"
},
{
"name": "CVE-2024-49569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49569"
},
{
"name": "CVE-2024-49998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
},
{
"name": "CVE-2024-50051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50051"
},
{
"name": "CVE-2024-52332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52332"
},
{
"name": "CVE-2024-53091",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53091"
},
{
"name": "CVE-2024-53168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53168"
},
{
"name": "CVE-2024-53170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53170"
},
{
"name": "CVE-2024-53172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53172"
},
{
"name": "CVE-2024-53175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53175"
},
{
"name": "CVE-2024-53194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53194"
},
{
"name": "CVE-2024-53195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53195"
},
{
"name": "CVE-2024-53196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53196"
},
{
"name": "CVE-2024-53197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53197"
},
{
"name": "CVE-2024-53198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53198"
},
{
"name": "CVE-2024-53227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53227"
},
{
"name": "CVE-2024-53230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53230"
},
{
"name": "CVE-2024-53231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53231"
},
{
"name": "CVE-2024-53232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53232"
},
{
"name": "CVE-2024-53233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53233"
},
{
"name": "CVE-2024-53236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53236"
},
{
"name": "CVE-2024-53685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53685"
},
{
"name": "CVE-2024-53690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53690"
},
{
"name": "CVE-2024-55881",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55881"
},
{
"name": "CVE-2024-55916",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55916"
},
{
"name": "CVE-2024-56369",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56369"
},
{
"name": "CVE-2024-56531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56531"
},
{
"name": "CVE-2024-56532",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56532"
},
{
"name": "CVE-2024-56533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56533"
},
{
"name": "CVE-2024-56538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56538"
},
{
"name": "CVE-2024-56543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56543"
},
{
"name": "CVE-2024-56546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56546"
},
{
"name": "CVE-2024-56557",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56557"
},
{
"name": "CVE-2024-56558",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56558"
},
{
"name": "CVE-2024-56568",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56568"
},
{
"name": "CVE-2024-56569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56569"
},
{
"name": "CVE-2024-56572",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56572"
},
{
"name": "CVE-2024-56573",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56573"
},
{
"name": "CVE-2024-56574",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56574"
},
{
"name": "CVE-2024-53164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53164"
},
{
"name": "CVE-2024-56577",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56577"
},
{
"name": "CVE-2024-56578",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56578"
},
{
"name": "CVE-2024-56584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56584"
},
{
"name": "CVE-2024-56587",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56587"
},
{
"name": "CVE-2024-56588",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56588"
},
{
"name": "CVE-2024-56589",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56589"
},
{
"name": "CVE-2024-56590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56590"
},
{
"name": "CVE-2024-56593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56593"
},
{
"name": "CVE-2024-56594",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56594"
},
{
"name": "CVE-2024-56595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56595"
},
{
"name": "CVE-2024-56596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56596"
},
{
"name": "CVE-2024-56597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56597"
},
{
"name": "CVE-2024-56602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56602"
},
{
"name": "CVE-2024-56603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56603"
},
{
"name": "CVE-2024-56606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56606"
},
{
"name": "CVE-2024-56607",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56607"
},
{
"name": "CVE-2024-56609",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56609"
},
{
"name": "CVE-2024-56611",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56611"
},
{
"name": "CVE-2024-56614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56614"
},
{
"name": "CVE-2024-56615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56615"
},
{
"name": "CVE-2024-56616",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56616"
},
{
"name": "CVE-2024-56620",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56620"
},
{
"name": "CVE-2024-56622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56622"
},
{
"name": "CVE-2024-56623",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56623"
},
{
"name": "CVE-2024-56625",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56625"
},
{
"name": "CVE-2024-56629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56629"
},
{
"name": "CVE-2024-56630",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56630"
},
{
"name": "CVE-2024-56632",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56632"
},
{
"name": "CVE-2024-56634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56634"
},
{
"name": "CVE-2024-56635",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56635"
},
{
"name": "CVE-2024-56636",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56636"
},
{
"name": "CVE-2024-56637",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56637"
},
{
"name": "CVE-2024-56641",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56641"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56643"
},
{
"name": "CVE-2024-56644",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56644"
},
{
"name": "CVE-2024-56648",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56648"
},
{
"name": "CVE-2024-56649",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56649"
},
{
"name": "CVE-2024-56651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56651"
},
{
"name": "CVE-2024-56659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56659"
},
{
"name": "CVE-2024-56662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56662"
},
{
"name": "CVE-2024-56663",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56663"
},
{
"name": "CVE-2024-56670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56670"
},
{
"name": "CVE-2024-56672",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56672"
},
{
"name": "CVE-2024-56677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56677"
},
{
"name": "CVE-2024-56678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56678"
},
{
"name": "CVE-2024-56681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56681"
},
{
"name": "CVE-2024-56683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56683"
},
{
"name": "CVE-2024-56687",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56687"
},
{
"name": "CVE-2024-56688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56688"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2024-56691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56691"
},
{
"name": "CVE-2024-56694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56694"
},
{
"name": "CVE-2024-56698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56698"
},
{
"name": "CVE-2024-56700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56700"
},
{
"name": "CVE-2024-56701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56701"
},
{
"name": "CVE-2024-56705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56705"
},
{
"name": "CVE-2024-56708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56708"
},
{
"name": "CVE-2024-56716",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56716"
},
{
"name": "CVE-2024-56722",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56722"
},
{
"name": "CVE-2024-56723",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56723"
},
{
"name": "CVE-2024-56724",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56724"
},
{
"name": "CVE-2024-56729",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56729"
},
{
"name": "CVE-2024-56739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56739"
},
{
"name": "CVE-2024-56745",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56745"
},
{
"name": "CVE-2024-56746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56746"
},
{
"name": "CVE-2024-56747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56747"
},
{
"name": "CVE-2024-56748",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56748"
},
{
"name": "CVE-2024-56759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56759"
},
{
"name": "CVE-2024-56765",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56765"
},
{
"name": "CVE-2024-56767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56767"
},
{
"name": "CVE-2024-56769",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56769"
},
{
"name": "CVE-2024-56774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56774"
},
{
"name": "CVE-2024-56775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56775"
},
{
"name": "CVE-2024-56776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56776"
},
{
"name": "CVE-2024-56777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56777"
},
{
"name": "CVE-2024-56778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56778"
},
{
"name": "CVE-2024-56779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56779"
},
{
"name": "CVE-2024-56780",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56780"
},
{
"name": "CVE-2024-56787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56787"
},
{
"name": "CVE-2024-57791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57791"
},
{
"name": "CVE-2024-57792",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57792"
},
{
"name": "CVE-2024-57798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57798"
},
{
"name": "CVE-2024-57838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57838"
},
{
"name": "CVE-2024-57849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57849"
},
{
"name": "CVE-2024-57850",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57850"
},
{
"name": "CVE-2024-57874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57874"
},
{
"name": "CVE-2024-57876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57876"
},
{
"name": "CVE-2024-57890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57890"
},
{
"name": "CVE-2024-57892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57892"
},
{
"name": "CVE-2024-57896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57896"
},
{
"name": "CVE-2024-57897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57897"
},
{
"name": "CVE-2024-57903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57903"
},
{
"name": "CVE-2024-57904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57904"
},
{
"name": "CVE-2024-57906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57906"
},
{
"name": "CVE-2024-57907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57907"
},
{
"name": "CVE-2024-57908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57908"
},
{
"name": "CVE-2024-57910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57910"
},
{
"name": "CVE-2024-57911",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57911"
},
{
"name": "CVE-2024-57912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57912"
},
{
"name": "CVE-2024-57913",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57913"
},
{
"name": "CVE-2024-57922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57922"
},
{
"name": "CVE-2024-57929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57929"
},
{
"name": "CVE-2024-57940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57940"
},
{
"name": "CVE-2025-21646",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21646"
},
{
"name": "CVE-2024-53047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53047"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-50304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50304"
},
{
"name": "CVE-2024-53187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53187"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-56592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56592"
},
{
"name": "CVE-2024-56600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56600"
},
{
"name": "CVE-2024-56601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56601"
},
{
"name": "CVE-2024-56608",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56608"
},
{
"name": "CVE-2024-56610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56610"
},
{
"name": "CVE-2024-56650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56650"
},
{
"name": "CVE-2024-56658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
},
{
"name": "CVE-2024-56679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56679"
},
{
"name": "CVE-2024-56693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56693"
},
{
"name": "CVE-2024-56707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56707"
},
{
"name": "CVE-2024-56715",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56715"
},
{
"name": "CVE-2024-56725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56725"
},
{
"name": "CVE-2024-56726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56726"
},
{
"name": "CVE-2024-56727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56727"
},
{
"name": "CVE-2024-56728",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56728"
},
{
"name": "CVE-2024-56763",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56763"
},
{
"name": "CVE-2024-57802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57802"
},
{
"name": "CVE-2024-57882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57882"
},
{
"name": "CVE-2024-57884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57884"
},
{
"name": "CVE-2024-57917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57917"
},
{
"name": "CVE-2024-57931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57931"
},
{
"name": "CVE-2024-57938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57938"
},
{
"name": "CVE-2024-57946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57946"
},
{
"name": "CVE-2025-21653",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21653"
},
{
"name": "CVE-2025-21664",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21664"
},
{
"name": "CVE-2025-21666",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21666"
},
{
"name": "CVE-2025-21669",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21669"
},
{
"name": "CVE-2025-21678",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21678"
},
{
"name": "CVE-2024-49994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49994"
},
{
"name": "CVE-2024-50164",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50164"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2024-56703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56703"
},
{
"name": "CVE-2024-57925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57925"
},
{
"name": "CVE-2024-57939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57939"
},
{
"name": "CVE-2024-57948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57948"
},
{
"name": "CVE-2025-21631",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21631"
},
{
"name": "CVE-2025-21636",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21636"
},
{
"name": "CVE-2025-21637",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21637"
},
{
"name": "CVE-2025-21638",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21638"
},
{
"name": "CVE-2025-21639",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21639"
},
{
"name": "CVE-2025-21640",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21640"
},
{
"name": "CVE-2025-21648",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21648"
},
{
"name": "CVE-2025-21665",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21665"
},
{
"name": "CVE-2025-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21680"
},
{
"name": "CVE-2025-21683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21683"
},
{
"name": "CVE-2024-53177",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53177"
},
{
"name": "CVE-2024-56633",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56633"
},
{
"name": "CVE-2022-49034",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49034"
},
{
"name": "CVE-2024-47689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47689"
},
{
"name": "CVE-2024-47691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47691"
},
{
"name": "CVE-2024-47711",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47711"
},
{
"name": "CVE-2024-47726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47726"
},
{
"name": "CVE-2024-49865",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49865"
},
{
"name": "CVE-2024-49880",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49880"
},
{
"name": "CVE-2024-49926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49926"
},
{
"name": "CVE-2024-49988",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49988"
},
{
"name": "CVE-2024-50029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50029"
},
{
"name": "CVE-2024-50030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50030"
},
{
"name": "CVE-2024-50056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50056"
},
{
"name": "CVE-2024-50057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50057"
},
{
"name": "CVE-2024-50065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50065"
},
{
"name": "CVE-2024-50066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50066"
},
{
"name": "CVE-2024-50068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50068"
},
{
"name": "CVE-2024-50070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50070"
},
{
"name": "CVE-2024-50090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50090"
},
{
"name": "CVE-2024-50104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50104"
},
{
"name": "CVE-2024-50105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50105"
},
{
"name": "CVE-2024-50107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50107"
},
{
"name": "CVE-2024-50111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50111"
},
{
"name": "CVE-2024-50112",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50112"
},
{
"name": "CVE-2024-50118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50118"
},
{
"name": "CVE-2024-50120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50120"
},
{
"name": "CVE-2024-50137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50137"
},
{
"name": "CVE-2024-50140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50140"
},
{
"name": "CVE-2024-50152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50152"
},
{
"name": "CVE-2024-50170",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50170"
},
{
"name": "CVE-2024-50197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50197"
},
{
"name": "CVE-2024-50206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50206"
},
{
"name": "CVE-2024-50207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50207"
},
{
"name": "CVE-2024-50220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50220"
},
{
"name": "CVE-2024-50222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50222"
},
{
"name": "CVE-2024-50223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50223"
},
{
"name": "CVE-2024-50238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50238"
},
{
"name": "CVE-2024-50239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50239"
},
{
"name": "CVE-2024-50263",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50263"
},
{
"name": "CVE-2024-50270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50270"
},
{
"name": "CVE-2024-50285",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50285"
},
{
"name": "CVE-2024-50288",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50288"
},
{
"name": "CVE-2024-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50291"
},
{
"name": "CVE-2024-50294",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50294"
},
{
"name": "CVE-2024-50297",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50297"
},
{
"name": "CVE-2024-50300",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50300"
},
{
"name": "CVE-2024-50303",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50303"
},
{
"name": "CVE-2024-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53044"
},
{
"name": "CVE-2024-53046",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53046"
},
{
"name": "CVE-2024-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53053"
},
{
"name": "CVE-2024-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53062"
},
{
"name": "CVE-2024-53067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53067"
},
{
"name": "CVE-2024-53083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53083"
},
{
"name": "CVE-2024-53084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53084"
},
{
"name": "CVE-2024-53086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53086"
},
{
"name": "CVE-2024-53087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53087"
},
{
"name": "CVE-2024-53089",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53089"
},
{
"name": "CVE-2024-53107",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53107"
},
{
"name": "CVE-2024-53109",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53109"
},
{
"name": "CVE-2024-53115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53115"
},
{
"name": "CVE-2024-53139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53139"
},
{
"name": "CVE-2024-53145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53145"
},
{
"name": "CVE-2024-53147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53147"
},
{
"name": "CVE-2024-53163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53163"
},
{
"name": "CVE-2024-53165",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53165"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-53181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53181"
},
{
"name": "CVE-2024-53183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53183"
},
{
"name": "CVE-2024-53184",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53184"
},
{
"name": "CVE-2024-53218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53218"
},
{
"name": "CVE-2024-53219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53219"
},
{
"name": "CVE-2024-53220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53220"
},
{
"name": "CVE-2024-53221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53221"
},
{
"name": "CVE-2024-53223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53223"
},
{
"name": "CVE-2024-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53226"
},
{
"name": "CVE-2024-53228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53228"
},
{
"name": "CVE-2024-56540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56540"
},
{
"name": "CVE-2024-56545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56545"
},
{
"name": "CVE-2024-56685",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56685"
},
{
"name": "CVE-2024-56689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56689"
},
{
"name": "CVE-2024-56692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56692"
},
{
"name": "CVE-2024-56720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56720"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2024-56742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56742"
},
{
"name": "CVE-2024-56744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56744"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2025-0927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0927"
},
{
"name": "CVE-2024-56579",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56579"
},
{
"name": "CVE-2024-56647",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56647"
},
{
"name": "CVE-2024-57889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57889"
},
{
"name": "CVE-2025-21687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21687"
},
{
"name": "CVE-2025-21689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21689"
},
{
"name": "CVE-2025-21690",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21690"
},
{
"name": "CVE-2025-21692",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21692"
},
{
"name": "CVE-2025-21697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21697"
},
{
"name": "CVE-2025-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21699"
},
{
"name": "CVE-2025-21700",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21700"
},
{
"name": "CVE-2024-43098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43098"
},
{
"name": "CVE-2024-47408",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47408"
},
{
"name": "CVE-2024-49571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49571"
},
{
"name": "CVE-2024-53680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53680"
},
{
"name": "CVE-2024-56581",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56581"
},
{
"name": "CVE-2024-56586",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56586"
},
{
"name": "CVE-2024-56626",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56626"
},
{
"name": "CVE-2024-56627",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56627"
},
{
"name": "CVE-2024-56640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56640"
},
{
"name": "CVE-2024-56770",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56770"
},
{
"name": "CVE-2024-56781",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56781"
},
{
"name": "CVE-2024-56785",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56785"
},
{
"name": "CVE-2024-57807",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57807"
},
{
"name": "CVE-2024-57841",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57841"
},
{
"name": "CVE-2024-57900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57900"
},
{
"name": "CVE-2024-57901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57901"
},
{
"name": "CVE-2024-57902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57902"
},
{
"name": "CVE-2024-57951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57951"
},
{
"name": "CVE-2025-21694",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21694"
},
{
"name": "CVE-2022-0995",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0995"
},
{
"name": "CVE-2024-41932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41932"
},
{
"name": "CVE-2024-41935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41935"
},
{
"name": "CVE-2024-47794",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47794"
},
{
"name": "CVE-2024-48875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48875"
},
{
"name": "CVE-2024-48876",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48876"
},
{
"name": "CVE-2024-56550",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56550"
},
{
"name": "CVE-2024-56565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56565"
},
{
"name": "CVE-2024-56580",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56580"
},
{
"name": "CVE-2024-56583",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56583"
},
{
"name": "CVE-2024-56613",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56613"
},
{
"name": "CVE-2024-56621",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56621"
},
{
"name": "CVE-2024-56638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56638"
},
{
"name": "CVE-2024-56771",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56771"
},
{
"name": "CVE-2024-56772",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56772"
},
{
"name": "CVE-2024-56773",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56773"
},
{
"name": "CVE-2024-56782",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56782"
},
{
"name": "CVE-2024-56786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56786"
},
{
"name": "CVE-2024-57843",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57843"
},
{
"name": "CVE-2024-57872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57872"
},
{
"name": "CVE-2024-58087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58087"
},
{
"name": "CVE-2025-21701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21701"
},
{
"name": "CVE-2025-21703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21703"
},
{
"name": "CVE-2025-21756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21756"
},
{
"name": "CVE-2025-21831",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21831"
},
{
"name": "CVE-2025-21702",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21702"
},
{
"name": "CVE-2025-21993",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21993"
},
{
"name": "CVE-2024-44955",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44955"
},
{
"name": "CVE-2025-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2312"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0366",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-05-02T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux d\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": "2025-04-25",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-4",
"url": "https://ubuntu.com/security/notices/USN-7455-4"
},
{
"published_at": "2025-04-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7459-2",
"url": "https://ubuntu.com/security/notices/USN-7459-2"
},
{
"published_at": "2025-04-28",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7468-1",
"url": "https://ubuntu.com/security/notices/USN-7468-1"
},
{
"published_at": "2025-04-29",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-7455-5",
"url": "https://ubuntu.com/security/notices/USN-7455-5"
}
]
}
CERTFR-2025-AVI-0071
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise Server 11 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP3 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Manager Proxy 4.3 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Desktop 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 Business Critical Linux | ||
| SUSE | N/A | SUSE Linux Enterprise Workstation Extension 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | Legacy Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | Basesystem Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP6 | ||
| SUSE | N/A | openSUSE Leap 15.4 | ||
| SUSE | N/A | SUSE Enterprise Storage 7.1 | ||
| SUSE | N/A | SUSE Real Time Module 15-SP6 | ||
| SUSE | N/A | SUSE Manager Proxy 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP5 | ||
| SUSE | N/A | Development Tools Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.1 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 | ||
| SUSE | N/A | SUSE Manager Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 | ||
| SUSE | N/A | SUSE Manager Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 | ||
| SUSE | N/A | openSUSE Leap 15.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Server 11 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Desktop 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 Business Critical Linux",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Legacy Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Basesystem Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Enterprise Storage 7.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Real Time Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Development Tools Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2023-1382",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1382"
},
{
"name": "CVE-2024-26886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26886"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2022-48651",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48651"
},
{
"name": "CVE-2017-2636",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-2636"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-42133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42133"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2017-1000253",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000253"
},
{
"name": "CVE-2024-35949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35949"
},
{
"name": "CVE-2023-52846",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52846"
},
{
"name": "CVE-2024-36904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36904"
},
{
"name": "CVE-2021-47202",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47202"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-26585",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26585"
},
{
"name": "CVE-2021-47598",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47598"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-35867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35867"
},
{
"name": "CVE-2023-33951",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33951"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-35839",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35839"
},
{
"name": "CVE-2024-26852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26852"
},
{
"name": "CVE-2024-39480",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39480"
},
{
"name": "CVE-2023-52920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52920"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-56667",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56667"
},
{
"name": "CVE-2024-50228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50228"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2017-14051",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14051"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2024-56571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56571"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-27398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27398"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2023-52340",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52340"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53179"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-53159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53159"
},
{
"name": "CVE-2022-36280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36280"
},
{
"name": "CVE-2024-44934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44934"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-35950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35950"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2023-52524",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52524"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-36915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36915"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-42232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42232"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-50264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50264"
},
{
"name": "CVE-2024-53207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53207"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-47666",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47666"
},
{
"name": "CVE-2023-33952",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33952"
},
{
"name": "CVE-2022-48956",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48956"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-24860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24860"
},
{
"name": "CVE-2024-35905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35905"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2022-49033",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49033"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-41087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41087"
},
{
"name": "CVE-2022-20368",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20368"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2021-47517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47517"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-41042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41042"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-36908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36908"
},
{
"name": "CVE-2024-43861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43861"
},
{
"name": "CVE-2024-53241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53241"
},
{
"name": "CVE-2024-26923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26923"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2024-44996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44996"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-49854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49854"
},
{
"name": "CVE-2022-48839",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48839"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2023-52752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52752"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-35862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35862"
},
{
"name": "CVE-2022-49035",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49035"
},
{
"name": "CVE-2024-41059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41059"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-35817",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35817"
},
{
"name": "CVE-2024-26828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26828"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-35863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35863"
},
{
"name": "CVE-2024-36964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36964"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-53240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53240"
},
{
"name": "CVE-2023-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6546"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2023-52502",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52502"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-35861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35861"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40909"
},
{
"name": "CVE-2022-48742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48742"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-26930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26930"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-26766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26766"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2022-48662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48662"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-26924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26924"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-26622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26622"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-50018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50018"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0071",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-24T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0153-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250153-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0172-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250172-1"
},
{
"published_at": "2025-01-21",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0202-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250202-1"
},
{
"published_at": "2025-01-18",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0184-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250184-1"
},
{
"published_at": "2025-01-18",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0188-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250188-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0152-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250152-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0158-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250158-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0181-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250181-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0177-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250177-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0180-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250180-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0154-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250154-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0185-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250185-1"
},
{
"published_at": "2025-01-21",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0203-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250203-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0173-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250173-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0168-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250168-1"
},
{
"published_at": "2025-01-18",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0187-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250187-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0179-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250179-1"
},
{
"published_at": "2025-01-21",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0201-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250201-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0164-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250164-1"
}
]
}
CERTFR-2025-AVI-0071
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise Server 11 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP3 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Manager Proxy 4.3 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Desktop 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 Business Critical Linux | ||
| SUSE | N/A | SUSE Linux Enterprise Workstation Extension 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | Legacy Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | Basesystem Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP6 | ||
| SUSE | N/A | openSUSE Leap 15.4 | ||
| SUSE | N/A | SUSE Enterprise Storage 7.1 | ||
| SUSE | N/A | SUSE Real Time Module 15-SP6 | ||
| SUSE | N/A | SUSE Manager Proxy 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP5 | ||
| SUSE | N/A | Development Tools Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.1 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 | ||
| SUSE | N/A | SUSE Manager Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 | ||
| SUSE | N/A | SUSE Manager Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 | ||
| SUSE | N/A | openSUSE Leap 15.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Server 11 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Desktop 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 Business Critical Linux",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Legacy Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Basesystem Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Enterprise Storage 7.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Real Time Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Development Tools Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-56645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56645"
},
{
"name": "CVE-2023-1382",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1382"
},
{
"name": "CVE-2024-26886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26886"
},
{
"name": "CVE-2024-56536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56536"
},
{
"name": "CVE-2022-48651",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48651"
},
{
"name": "CVE-2017-2636",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-2636"
},
{
"name": "CVE-2024-50262",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50262"
},
{
"name": "CVE-2024-42133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42133"
},
{
"name": "CVE-2024-56549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56549"
},
{
"name": "CVE-2024-53222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53222"
},
{
"name": "CVE-2024-53213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53213"
},
{
"name": "CVE-2017-1000253",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000253"
},
{
"name": "CVE-2024-35949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35949"
},
{
"name": "CVE-2023-52846",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52846"
},
{
"name": "CVE-2024-36904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36904"
},
{
"name": "CVE-2021-47202",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47202"
},
{
"name": "CVE-2024-53095",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53095"
},
{
"name": "CVE-2024-26585",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26585"
},
{
"name": "CVE-2021-47598",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47598"
},
{
"name": "CVE-2024-56756",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56756"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-56604",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56604"
},
{
"name": "CVE-2024-49884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49884"
},
{
"name": "CVE-2024-53055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53055"
},
{
"name": "CVE-2024-56548",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56548"
},
{
"name": "CVE-2024-50202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50202"
},
{
"name": "CVE-2024-53188",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53188"
},
{
"name": "CVE-2024-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53126"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-53120",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53120"
},
{
"name": "CVE-2024-53206",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53206"
},
{
"name": "CVE-2024-35867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35867"
},
{
"name": "CVE-2023-33951",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33951"
},
{
"name": "CVE-2024-53117",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53117"
},
{
"name": "CVE-2024-53191",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53191"
},
{
"name": "CVE-2024-35839",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35839"
},
{
"name": "CVE-2024-26852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26852"
},
{
"name": "CVE-2024-39480",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39480"
},
{
"name": "CVE-2023-52920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52920"
},
{
"name": "CVE-2024-53136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53136"
},
{
"name": "CVE-2024-56667",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56667"
},
{
"name": "CVE-2024-50228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50228"
},
{
"name": "CVE-2024-53150",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53150"
},
{
"name": "CVE-2024-49952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49952"
},
{
"name": "CVE-2017-14051",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14051"
},
{
"name": "CVE-2024-53142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53142"
},
{
"name": "CVE-2024-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50181"
},
{
"name": "CVE-2024-56571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56571"
},
{
"name": "CVE-2024-53169",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53169"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-27398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27398"
},
{
"name": "CVE-2024-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53111"
},
{
"name": "CVE-2024-53171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53171"
},
{
"name": "CVE-2024-53157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53157"
},
{
"name": "CVE-2023-52340",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52340"
},
{
"name": "CVE-2024-53234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53234"
},
{
"name": "CVE-2024-53200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53200"
},
{
"name": "CVE-2024-53103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53103"
},
{
"name": "CVE-2024-53179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53179"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2024-53159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53159"
},
{
"name": "CVE-2022-36280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36280"
},
{
"name": "CVE-2024-44934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44934"
},
{
"name": "CVE-2024-53099",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53099"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-53210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53210"
},
{
"name": "CVE-2024-53113",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53113"
},
{
"name": "CVE-2024-56599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56599"
},
{
"name": "CVE-2024-53119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53119"
},
{
"name": "CVE-2024-53239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53239"
},
{
"name": "CVE-2024-56752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56752"
},
{
"name": "CVE-2024-35950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35950"
},
{
"name": "CVE-2024-50296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50296"
},
{
"name": "CVE-2024-53122",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53122"
},
{
"name": "CVE-2024-50211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50211"
},
{
"name": "CVE-2023-52524",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52524"
},
{
"name": "CVE-2024-53131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53131"
},
{
"name": "CVE-2024-53229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53229"
},
{
"name": "CVE-2024-36915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36915"
},
{
"name": "CVE-2024-53173",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53173"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-42232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42232"
},
{
"name": "CVE-2024-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53056"
},
{
"name": "CVE-2024-50264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50264"
},
{
"name": "CVE-2024-53207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53207"
},
{
"name": "CVE-2024-56562",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56562"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-53161",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53161"
},
{
"name": "CVE-2024-50016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50016"
},
{
"name": "CVE-2024-56631",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56631"
},
{
"name": "CVE-2024-47666",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47666"
},
{
"name": "CVE-2023-33952",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33952"
},
{
"name": "CVE-2022-48956",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48956"
},
{
"name": "CVE-2024-56755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56755"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2024-53217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53217"
},
{
"name": "CVE-2024-53134",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53134"
},
{
"name": "CVE-2024-49915",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49915"
},
{
"name": "CVE-2024-53154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53154"
},
{
"name": "CVE-2024-53130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53130"
},
{
"name": "CVE-2024-53201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53201"
},
{
"name": "CVE-2024-53105",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53105"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2024-56704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56704"
},
{
"name": "CVE-2024-24860",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24860"
},
{
"name": "CVE-2024-35905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35905"
},
{
"name": "CVE-2024-56567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56567"
},
{
"name": "CVE-2024-56582",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56582"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2022-49033",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49033"
},
{
"name": "CVE-2024-53208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53208"
},
{
"name": "CVE-2024-49944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49944"
},
{
"name": "CVE-2024-53141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53141"
},
{
"name": "CVE-2024-41087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41087"
},
{
"name": "CVE-2022-20368",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20368"
},
{
"name": "CVE-2024-56551",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56551"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2021-47517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47517"
},
{
"name": "CVE-2024-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53215"
},
{
"name": "CVE-2024-53162",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53162"
},
{
"name": "CVE-2024-41042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41042"
},
{
"name": "CVE-2024-35864",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35864"
},
{
"name": "CVE-2024-53158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53158"
},
{
"name": "CVE-2024-50278",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50278"
},
{
"name": "CVE-2024-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53072"
},
{
"name": "CVE-2024-53174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53174"
},
{
"name": "CVE-2024-36908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36908"
},
{
"name": "CVE-2024-43861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43861"
},
{
"name": "CVE-2024-53241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53241"
},
{
"name": "CVE-2024-26923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26923"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2024-44996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44996"
},
{
"name": "CVE-2024-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53148"
},
{
"name": "CVE-2024-49854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49854"
},
{
"name": "CVE-2022-48839",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48839"
},
{
"name": "CVE-2024-53224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53224"
},
{
"name": "CVE-2024-50256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50256"
},
{
"name": "CVE-2023-52752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52752"
},
{
"name": "CVE-2024-50039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50039"
},
{
"name": "CVE-2024-53133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53133"
},
{
"name": "CVE-2024-56754",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56754"
},
{
"name": "CVE-2024-53214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53214"
},
{
"name": "CVE-2024-56619",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56619"
},
{
"name": "CVE-2024-50166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50166"
},
{
"name": "CVE-2024-35862",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35862"
},
{
"name": "CVE-2022-49035",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49035"
},
{
"name": "CVE-2024-41059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41059"
},
{
"name": "CVE-2024-53151",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53151"
},
{
"name": "CVE-2024-53146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53146"
},
{
"name": "CVE-2024-56539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56539"
},
{
"name": "CVE-2024-56570",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56570"
},
{
"name": "CVE-2024-53180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53180"
},
{
"name": "CVE-2024-53216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53216"
},
{
"name": "CVE-2024-35817",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35817"
},
{
"name": "CVE-2024-26828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26828"
},
{
"name": "CVE-2024-53155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53155"
},
{
"name": "CVE-2024-53090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53090"
},
{
"name": "CVE-2024-35863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35863"
},
{
"name": "CVE-2024-36964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36964"
},
{
"name": "CVE-2024-56575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56575"
},
{
"name": "CVE-2024-53240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53240"
},
{
"name": "CVE-2023-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6546"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53101"
},
{
"name": "CVE-2024-53156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53156"
},
{
"name": "CVE-2023-52502",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52502"
},
{
"name": "CVE-2024-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53050"
},
{
"name": "CVE-2024-56598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56598"
},
{
"name": "CVE-2024-35861",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35861"
},
{
"name": "CVE-2024-53129",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53129"
},
{
"name": "CVE-2024-53127",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53127"
},
{
"name": "CVE-2024-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40909"
},
{
"name": "CVE-2022-48742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48742"
},
{
"name": "CVE-2024-56605",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56605"
},
{
"name": "CVE-2024-26930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26930"
},
{
"name": "CVE-2024-56566",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56566"
},
{
"name": "CVE-2024-53118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53118"
},
{
"name": "CVE-2024-53190",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53190"
},
{
"name": "CVE-2024-50279",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50279"
},
{
"name": "CVE-2024-26766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26766"
},
{
"name": "CVE-2024-53209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53209"
},
{
"name": "CVE-2022-48662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48662"
},
{
"name": "CVE-2024-50203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50203"
},
{
"name": "CVE-2024-53125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53125"
},
{
"name": "CVE-2024-53160",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53160"
},
{
"name": "CVE-2024-26924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26924"
},
{
"name": "CVE-2024-36899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36899"
},
{
"name": "CVE-2024-53202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53202"
},
{
"name": "CVE-2024-53114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53114"
},
{
"name": "CVE-2024-53237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53237"
},
{
"name": "CVE-2024-26622",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26622"
},
{
"name": "CVE-2024-56576",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56576"
},
{
"name": "CVE-2024-50018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50018"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0071",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-24T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0153-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250153-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0172-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250172-1"
},
{
"published_at": "2025-01-21",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0202-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250202-1"
},
{
"published_at": "2025-01-18",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0184-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250184-1"
},
{
"published_at": "2025-01-18",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0188-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250188-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0152-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250152-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0158-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250158-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0181-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250181-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0177-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250177-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0180-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250180-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0154-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250154-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0185-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250185-1"
},
{
"published_at": "2025-01-21",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0203-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250203-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0173-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250173-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0168-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250168-1"
},
{
"published_at": "2025-01-18",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0187-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250187-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0179-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250179-1"
},
{
"published_at": "2025-01-21",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0201-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250201-1"
},
{
"published_at": "2025-01-17",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0164-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250164-1"
}
]
}
SUSE-SU-2025:0153-1
Vulnerability from csaf_suse - Published: 2025-01-17 09:14 - Updated: 2025-01-17 09:14Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).
- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).
- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-44996: vsock: fix recursive ->recvmsg calls (bsc#1230205).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53099: bpf: Check validity of link->type in bpf_link_show_fdinfo() (bsc#1233772).
- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).
- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).
- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)
- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).
- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).
- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).
- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).
- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
The following non-security bugs were fixed:
- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
- ACPI: resource: Fix memory resource type union access (git-fixes).
- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).
- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).
- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).
- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).
- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).
- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).
- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).
- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).
- ALSA: line6: Fix racy access to midibuf (stable-fixes).
- ALSA: seq: Check UMP support for midi_version change (git-fixes).
- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).
- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).
- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).
- ALSA: seq: ump: Use guard() for locking (stable-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).
- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).
- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).
- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).
- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).
- ASoC: SOF: Remove libraries from topology lookups (git-fixes).
- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).
- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).
- ASoC: amd: yc: Fix the wrong return value (git-fixes).
- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).
- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).
- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).
- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).
- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).
- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).
- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).
- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).
- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).
- ASoC: nau8822: Lower debug print priority (stable-fixes).
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).
- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).
- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).
- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).
- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).
- Bluetooth: iso: Fix recursive locking warning (git-fixes).
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Async COPY result needs to return a write verifier (git-fixes).
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: Remove a never-true comparison (git-fixes).
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (git-fixes).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).
- PCI/AER: Disable AER service on suspend (stable-fixes).
- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (stable-fixes).
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).
- PCI: Add T_PERST_CLK_US macro (git-fixes).
- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).
- PCI: Fix use-after-free of slot->bus on hot remove (stable-fixes).
- PCI: Use preserve_config in place of pci_flags (stable-fixes).
- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).
- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).
- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).
- PCI: j721e: Add per platform maximum lane settings (stable-fixes).
- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).
- PCI: j721e: Add suspend and resume support (git-fixes).
- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).
- PCI: qcom: Add support for IPQ9574 (stable-fixes).
- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).
- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).
- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)
- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)
- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)
- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)
- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)
- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)
- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)
- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)
- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)
- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (git-fixes)
- RDMA/uverbs: Prevent integer overflow issue (git-fixes)
- Revert 'block/mq-deadline: use correct way to throttling write requests' (bsc#1234146).
- Revert 'btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)'
- Revert 'igb: Disable threaded IRQ for igb_msix_other' (git-fixes).
- Revert 'unicode: Do not special case ignorable code points' (stable-fixes).
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).
- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).
- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).
- USB: serial: option: add TCL IK512 MBIM & ECM (stable-fixes).
- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).
- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).
- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).
- accel/habanalabs: fix debugfs files permissions (stable-fixes).
- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).
- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).
- afs: Automatically generate trace tag enums (git-fixes).
- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).
- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).
- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).
- arch: Remove cmpxchg_double (bsc#1220773).
- arch: consolidate arch_irq_work_raise prototypes (git-fixes).
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: Force position-independent veneers (git-fixes).
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).
- batman-adv: Do not send uninitialized TT changes (git-fixes).
- batman-adv: Remove uninitialized data in full table TT response (git-fixes).
- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).
- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).
- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).
- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).
- blk-throttle: fix lockdep warning of 'cgroup_mutex or RCU read lock required!' (bsc#1234140).
- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).
- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).
- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).
- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).
- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).
- block/mq-deadline: Fix the tag reservation code (bsc#1234148).
- block: Call .limit_depth() after .hctx has been set (bsc#1234148).
- block: Fix where bio IO priority gets set (bsc#1234145).
- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).
- block: update the stable_writes flag in bdev_add (bsc#1234141).
- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).
- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).
- bpf: verifier: prevent userspace memory access (git-fixes).
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)
- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).
- can: j1939: fix error in J1939 documentation (stable-fixes).
- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).
- clocksource/drivers:sp804: Make user selectable (git-fixes).
- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).
- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).
- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).
- crypto: x86/sha256 - Add parentheses around macros' single arguments (stable-fixes).
- cyrpto/b128ops: Remove struct u128 (bsc#1220773).
- devlink: Fix length of eswitch inline-mode (git-fixes).
- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).
- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).
- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).
- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).
- dmaengine: tegra: Return correct DMA status when paused (git-fixes).
- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).
- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).
- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).
- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).
- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).
- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).
- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).
- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).
- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).
- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).
- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).
- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).
- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).
- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).
- drm/amdgpu/pm: Remove gpu_od if it's an empty directory (stable-fixes).
- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).
- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).
- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).
- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).
- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).
- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).
- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).
- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
- drm/amdgpu: do not access invalid sched (git-fixes).
- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
- drm/amdgpu: fix usage slab after free (stable-fixes).
- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).
- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).
- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
- drm/amdkfd: Use device based logging for errors (stable-fixes).
- drm/amdkfd: Use the correct wptr size (stable-fixes).
- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).
- drm/bridge: it6505: Enable module autoloading (stable-fixes).
- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).
- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).
- drm/display: Fix building with GCC 15 (stable-fixes).
- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).
- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).
- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).
- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).
- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).
- drm/i915/dg1: Fix power gate sequence (git-fixes).
- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).
- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).
- drm/mcde: Enable module autoloading (stable-fixes).
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).
- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).
- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).
- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).
- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).
- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).
- drm/radeon: change rdev->ddev to rdev_to_drm(rdev) (stable-fixes).
- drm/sched: memset() 'job' in drm_sched_job_init() (stable-fixes).
- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).
- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).
- drm: adv7511: Drop dsi single lane support (git-fixes).
- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).
- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- erofs: avoid debugging output for (de)compressed data (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- ext4: add a new helper to check if es must be kept (bsc#1234170).
- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).
- ext4: add missed brelse in update_backups (bsc#1234171).
- ext4: allow for the last group to be marked as trimmed (bsc#1234278).
- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).
- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).
- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).
- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).
- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).
- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).
- ext4: check the extent status again before inserting delalloc block (bsc#1234186).
- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).
- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).
- ext4: correct best extent lstart adjustment logic (bsc#1234179).
- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).
- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).
- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).
- ext4: correct the start block of counting reserved clusters (bsc#1234169).
- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).
- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).
- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).
- ext4: factor out a common helper to query extent map (bsc#1234186).
- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).
- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).
- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).
- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).
- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).
- ext4: fix potential unnitialized variable (bsc#1234183).
- ext4: fix race between writepages and remount (bsc#1234168).
- ext4: fix rec_len verify error (bsc#1234167).
- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).
- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).
- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).
- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).
- ext4: make ext4_es_insert_extent() return void (bsc#1234170).
- ext4: make ext4_es_remove_extent() return void (bsc#1234170).
- ext4: make ext4_zeroout_es() return void (bsc#1234170).
- ext4: make sure allocate pending entry not fail (bsc#1234170).
- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).
- ext4: move 'ix' sanity check to corrent position (bsc#1234174).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).
- ext4: nested locking for xattr inode (bsc#1234189).
- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).
- ext4: refactor ext4_da_map_blocks() (bsc#1234178).
- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).
- ext4: remove the redundant folio_wait_stable() (bsc#1234184).
- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).
- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).
- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).
- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).
- filemap: Fix bounds checking in filemap_read() (bsc#1234209).
- filemap: add a per-mapping stable writes flag (bsc#1234141).
- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).
- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).
- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).
- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).
- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).
- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).
- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).
- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (stable-fixes).
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- hvc/xen: fix console unplug (git-fixes).
- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).
- hvc/xen: fix event channel handling for secondary consoles (git-fixes).
- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).
- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).
- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).
- hwmon: (tmp513) Do not use 'proxy' headers (stable-fixes).
- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).
- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).
- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).
- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).
- i2c: microchip-core: actually use repeated sends (git-fixes).
- i2c: microchip-core: fix 'ghost' detections (git-fixes).
- i2c: pnx: Fix timeout in wait functions (git-fixes).
- i2c: riic: Always round-up when calculating bus period (git-fixes).
- i40e: Fix handling changed priv flags (git-fixes).
- i915/guc: Accumulate active runtime on gt reset (git-fixes).
- i915/guc: Ensure busyness counter increases motonically (git-fixes).
- i915/guc: Reset engine utilization buffer before registration (git-fixes).
- ice: Unbind the workqueue (bsc#1234989)
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).
- ice: fix PHY Clock Recovery availability check (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).
- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).
- instrumentation: Wire up cmpxchg128() (bsc#1220773).
- io_uring/rw: avoid punting to io-wq directly (git-fixes).
- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).
- io_uring: Fix registered ring file refcount leak (git-fixes).
- io_uring: always lock __io_cqring_overflow_flush (git-fixes).
- io_uring: check if iowq is killed before queuing (git-fixes).
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).
- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).
- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).
- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).
- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).
- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)
- kasan: make report_lock a raw spinlock (git-fixes).
- kdb: Fix buffer overflow during tab-complete (bsc#1234652).
- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).
- kdb: Merge identical case statements in kdb_read() (bsc#1234657).
- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).
- kdb: Use format-strings rather than '\0' injection in kdb_read() (bsc#1234654).
- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).
- kdb: address -Wformat-security warnings (bsc#1234659).
- kgdb: Flush console before entering kgdb on panic (bsc#1234651).
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (stable-fixes).
- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).
- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).
- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).
- mac80211: fix user-power when emulating chanctx (stable-fixes).
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).
- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).
- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).
- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).
- mm/readahead: do not allow order-1 folio (bsc#1234205).
- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).
- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).
- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).
- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).
- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).
- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).
- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).
- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).
- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).
- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).
- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).
- net/qed: allow old cards not supporting 'num_images' to work (git-fixes).
- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).
- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).
- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).
- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).
- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).
- nvme: apple: fix device reference counting (git-fixes).
- nvme: fix metadata handling in nvme-passthrough (git-fixes).
- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).
- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).
- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).
- of: address: Report error on resource bounds overflow (stable-fixes).
- parisc: Raise minimal GCC version (bsc#1220773).
- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).
- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).
- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).
- percpu: Wire up cmpxchg128 (bsc#1220773).
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).
- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).
- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).
- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).
- phy: usb: Toggle the PHY power during init (git-fixes).
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).
- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).
- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).
- pinmux: Use sequential access to access desc->pinmux data (stable-fixes).
- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).
- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).
- platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing incorrect fan speed (stable-fixes).
- power: supply: gpio-charger: Fix set charge current limits (git-fixes).
- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).
- quota: explicitly forbid quota files from being encrypted (bsc#1234196).
- quota: flush quota_release_work upon quota writeback (bsc#1234195).
- quota: simplify drop_dquot_ref() (bsc#1234197).
- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).
- regmap: Use correct format specifier for logging range errors (stable-fixes).
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).
- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).
- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).
- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).
- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).
- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).
- s390/facility: Disable compile time optimization for decompressor code (git-fixes).
- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).
- s390/pageattr: Implement missing kernel_page_present() (git-fixes).
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- sched/numa: fix memory leak due to the overwritten vma->numab_state (git fixes (sched/numa)).
- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).
- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).
- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).
- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).
- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).
- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).
- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).
- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).
- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).
- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).
- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).
- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).
- scsi: qla2xxx: Remove the unused 'del_list_entry' field in struct fc_port (bsc#1235406).
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).
- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).
- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).
- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).
- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).
- serial: 8250_fintek: Add support for F81216E (stable-fixes).
- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).
- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).
- serial: amba-pl011: Use port lock wrappers (stable-fixes).
- serial: amba-pl011: fix build regression (git-fixes).
- serial: do not use uninitialized value in uart_poll_init() (git-fixes).
- serial: imx: only set receiver level if it is zero (git-fixes).
- serial: imx: set receiver level before starting uart (git-fixes).
- serial: qcom-geni: Do not cancel/abort if we can't get the port lock (git-fixes).
- serial: qcom-geni: disable interrupts during console writes (git-fixes).
- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).
- serial: qcom-geni: fix console corruption (git-fixes).
- serial: qcom-geni: fix dma rx cancellation (git-fixes).
- serial: qcom-geni: fix false console tx restart (git-fixes).
- serial: qcom-geni: fix fifo polling timeout (git-fixes).
- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).
- serial: qcom-geni: fix polled console corruption (git-fixes).
- serial: qcom-geni: fix polled console initialisation (git-fixes).
- serial: qcom-geni: fix receiver enable (git-fixes).
- serial: qcom-geni: fix shutdown race (git-fixes).
- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).
- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).
- serial: qcom-geni: revert broken hibernation support (git-fixes).
- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).
- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).
- slub: Replace cmpxchg_double() (bsc#1220773).
- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]
- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).
- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).
- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).
- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).
- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).
- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).
- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).
- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).
- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).
- swiotlb: Reinstate page-alignment for mappings >= PAGE_SIZE (git-fixes).
- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).
- tools: hv: change permissions of NetworkManager configuration file (git-fixes).
- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).
- types: Introduce [us]128 (bsc#1220773).
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).
- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).
- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).
- udf: refactor inode_bmap() to handle error (bsc#1234242).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).
- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).
- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).
- usb: dwc2: Fix HCD port connection race (git-fixes).
- usb: dwc2: Fix HCD resume (git-fixes).
- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (git-fixes).
- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).
- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).
- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).
- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).
- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).
- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).
- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).
- usb: typec: use cleanup facility for 'altmodes_node' (stable-fixes).
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).
- vdpa: solidrun: Fix UB bug with devres (git-fixes).
- vfs: fix readahead(2) on block devices (bsc#1234201).
- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).
- wifi: ath5k: add PCI ID for SX76X (git-fixes).
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).
- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).
- wifi: cw1200: Fix potential NULL dereference (git-fixes).
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).
- wifi: mac80211: clean up 'ret' in sta_link_apply_parameters() (stable-fixes).
- wifi: mac80211: fix station NSS capability initialization order (git-fixes).
- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).
- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).
- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).
- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).
- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).
- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).
- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).
- xfs: do not allocate COW extents when unsharing a hole (git-fixes).
- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).
- xfs: remove unknown compat feature check in superblock write validation (git-fixes).
- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).
- xfs: sb_spino_align is not verified (git-fixes).
- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).
- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).
- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).
Patchnames
SUSE-2025-153,SUSE-SLE-Module-Live-Patching-15-SP6-2025-153,SUSE-SLE-Module-RT-15-SP6-2025-153,openSUSE-SLE-15.6-2025-153
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).\n- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).\n- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-44996: vsock: fix recursive -\u003erecvmsg calls (bsc#1230205).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53099: bpf: Check validity of link-\u003etype in bpf_link_show_fdinfo() (bsc#1233772).\n- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).\n- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).\n- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)\n- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).\n- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).\n- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).\n- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).\n- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).\n- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).\n- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n\nThe following non-security bugs were fixed:\n\n- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n- ACPI: resource: Fix memory resource type union access (git-fixes).\n- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).\n- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).\n- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).\n- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).\n- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).\n- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).\n- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).\n- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).\n- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).\n- ALSA: line6: Fix racy access to midibuf (stable-fixes).\n- ALSA: seq: Check UMP support for midi_version change (git-fixes).\n- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).\n- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).\n- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).\n- ALSA: seq: ump: Use guard() for locking (stable-fixes).\n- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).\n- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).\n- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).\n- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).\n- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).\n- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).\n- ASoC: SOF: Remove libraries from topology lookups (git-fixes).\n- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).\n- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).\n- ASoC: amd: yc: Fix the wrong return value (git-fixes).\n- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).\n- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).\n- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).\n- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).\n- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).\n- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).\n- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).\n- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).\n- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).\n- ASoC: nau8822: Lower debug print priority (stable-fixes).\n- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).\n- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).\n- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).\n- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).\n- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).\n- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).\n- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).\n- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).\n- Bluetooth: iso: Fix recursive locking warning (git-fixes).\n- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Async COPY result needs to return a write verifier (git-fixes).\n- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: Remove a never-true comparison (git-fixes).\n- NFSD: initialize copy-\u003ecp_clp early in nfsd4_copy for use by trace point (git-fixes).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).\n- PCI/AER: Disable AER service on suspend (stable-fixes).\n- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).\n- PCI: Add \u0027reset_subordinate\u0027 to reset hierarchy below bridge (stable-fixes).\n- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).\n- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).\n- PCI: Add T_PERST_CLK_US macro (git-fixes).\n- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).\n- PCI: Fix use-after-free of slot-\u003ebus on hot remove (stable-fixes).\n- PCI: Use preserve_config in place of pci_flags (stable-fixes).\n- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).\n- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).\n- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).\n- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).\n- PCI: j721e: Add per platform maximum lane settings (stable-fixes).\n- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).\n- PCI: j721e: Add suspend and resume support (git-fixes).\n- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).\n- PCI: qcom: Add support for IPQ9574 (stable-fixes).\n- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).\n- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).\n- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)\n- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)\n- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)\n- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)\n- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)\n- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)\n- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)\n- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)\n- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)\n- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)\n- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)\n- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)\n- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)\n- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)\n- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)\n- RDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible (git-fixes)\n- RDMA/uverbs: Prevent integer overflow issue (git-fixes)\n- Revert \u0027block/mq-deadline: use correct way to throttling write requests\u0027 (bsc#1234146).\n- Revert \u0027btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\u0027\n- Revert \u0027igb: Disable threaded IRQ for igb_msix_other\u0027 (git-fixes).\n- Revert \u0027unicode: Do not special case ignorable code points\u0027 (stable-fixes).\n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).\n- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).\n- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).\n- USB: serial: option: add TCL IK512 MBIM \u0026 ECM (stable-fixes).\n- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).\n- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).\n- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).\n- accel/habanalabs: fix debugfs files permissions (stable-fixes).\n- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).\n- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).\n- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).\n- afs: Automatically generate trace tag enums (git-fixes).\n- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).\n- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).\n- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).\n- arch: Remove cmpxchg_double (bsc#1220773).\n- arch: consolidate arch_irq_work_raise prototypes (git-fixes).\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: Force position-independent veneers (git-fixes).\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).\n- batman-adv: Do not send uninitialized TT changes (git-fixes).\n- batman-adv: Remove uninitialized data in full table TT response (git-fixes).\n- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).\n- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).\n- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).\n- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).\n- blk-throttle: fix lockdep warning of \u0027cgroup_mutex or RCU read lock required!\u0027 (bsc#1234140).\n- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).\n- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).\n- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).\n- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).\n- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).\n- block/mq-deadline: Fix the tag reservation code (bsc#1234148).\n- block: Call .limit_depth() after .hctx has been set (bsc#1234148).\n- block: Fix where bio IO priority gets set (bsc#1234145).\n- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).\n- block: update the stable_writes flag in bdev_add (bsc#1234141).\n- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).\n- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).\n- bpf: verifier: prevent userspace memory access (git-fixes).\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\n- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).\n- can: j1939: fix error in J1939 documentation (stable-fixes).\n- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).\n- clocksource/drivers:sp804: Make user selectable (git-fixes).\n- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).\n- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).\n- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).\n- crypto: x86/sha256 - Add parentheses around macros\u0027 single arguments (stable-fixes).\n- cyrpto/b128ops: Remove struct u128 (bsc#1220773).\n- devlink: Fix length of eswitch inline-mode (git-fixes).\n- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).\n- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).\n- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).\n- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).\n- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).\n- dmaengine: tegra: Return correct DMA status when paused (git-fixes).\n- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).\n- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).\n- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).\n- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).\n- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).\n- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).\n- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).\n- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).\n- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).\n- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).\n- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).\n- drm/amdgpu/pm: Remove gpu_od if it\u0027s an empty directory (stable-fixes).\n- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).\n- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).\n- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).\n- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).\n- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).\n- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: do not access invalid sched (git-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: fix usage slab after free (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).\n- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).\n- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/amdkfd: Use device based logging for errors (stable-fixes).\n- drm/amdkfd: Use the correct wptr size (stable-fixes).\n- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).\n- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).\n- drm/bridge: it6505: Enable module autoloading (stable-fixes).\n- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).\n- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).\n- drm/display: Fix building with GCC 15 (stable-fixes).\n- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).\n- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).\n- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).\n- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).\n- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).\n- drm/i915/dg1: Fix power gate sequence (git-fixes).\n- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).\n- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).\n- drm/mcde: Enable module autoloading (stable-fixes).\n- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).\n- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).\n- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).\n- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).\n- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).\n- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).\n- drm/radeon: change rdev-\u003eddev to rdev_to_drm(rdev) (stable-fixes).\n- drm/sched: memset() \u0027job\u0027 in drm_sched_job_init() (stable-fixes).\n- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).\n- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).\n- drm: adv7511: Drop dsi single lane support (git-fixes).\n- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).\n- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- erofs: avoid debugging output for (de)compressed data (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- ext4: add a new helper to check if es must be kept (bsc#1234170).\n- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).\n- ext4: add missed brelse in update_backups (bsc#1234171).\n- ext4: allow for the last group to be marked as trimmed (bsc#1234278).\n- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).\n- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).\n- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).\n- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).\n- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).\n- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).\n- ext4: check the extent status again before inserting delalloc block (bsc#1234186).\n- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).\n- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).\n- ext4: correct best extent lstart adjustment logic (bsc#1234179).\n- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).\n- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).\n- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).\n- ext4: correct the start block of counting reserved clusters (bsc#1234169).\n- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).\n- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).\n- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).\n- ext4: factor out a common helper to query extent map (bsc#1234186).\n- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).\n- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).\n- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).\n- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).\n- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).\n- ext4: fix potential unnitialized variable (bsc#1234183).\n- ext4: fix race between writepages and remount (bsc#1234168).\n- ext4: fix rec_len verify error (bsc#1234167).\n- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).\n- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).\n- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).\n- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).\n- ext4: make ext4_es_insert_extent() return void (bsc#1234170).\n- ext4: make ext4_es_remove_extent() return void (bsc#1234170).\n- ext4: make ext4_zeroout_es() return void (bsc#1234170).\n- ext4: make sure allocate pending entry not fail (bsc#1234170).\n- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).\n- ext4: move \u0027ix\u0027 sanity check to corrent position (bsc#1234174).\n- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).\n- ext4: nested locking for xattr inode (bsc#1234189).\n- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).\n- ext4: refactor ext4_da_map_blocks() (bsc#1234178).\n- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).\n- ext4: remove the redundant folio_wait_stable() (bsc#1234184).\n- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).\n- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).\n- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).\n- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).\n- filemap: Fix bounds checking in filemap_read() (bsc#1234209).\n- filemap: add a per-mapping stable writes flag (bsc#1234141).\n- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).\n- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).\n- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).\n- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).\n- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).\n- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).\n- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).\n- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).\n- gpio: grgpio: use a helper variable to store the address of ofdev-\u003edev (stable-fixes).\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- hvc/xen: fix console unplug (git-fixes).\n- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).\n- hvc/xen: fix event channel handling for secondary consoles (git-fixes).\n- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).\n- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).\n- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).\n- hwmon: (tmp513) Do not use \u0027proxy\u0027 headers (stable-fixes).\n- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).\n- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).\n- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).\n- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).\n- i2c: microchip-core: actually use repeated sends (git-fixes).\n- i2c: microchip-core: fix \u0027ghost\u0027 detections (git-fixes).\n- i2c: pnx: Fix timeout in wait functions (git-fixes).\n- i2c: riic: Always round-up when calculating bus period (git-fixes).\n- i40e: Fix handling changed priv flags (git-fixes).\n- i915/guc: Accumulate active runtime on gt reset (git-fixes).\n- i915/guc: Ensure busyness counter increases motonically (git-fixes).\n- i915/guc: Reset engine utilization buffer before registration (git-fixes).\n- ice: Unbind the workqueue (bsc#1234989)\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).\n- ice: fix PHY Clock Recovery availability check (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).\n- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).\n- instrumentation: Wire up cmpxchg128() (bsc#1220773).\n- io_uring/rw: avoid punting to io-wq directly (git-fixes).\n- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).\n- io_uring: Fix registered ring file refcount leak (git-fixes).\n- io_uring: always lock __io_cqring_overflow_flush (git-fixes).\n- io_uring: check if iowq is killed before queuing (git-fixes).\n- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).\n- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).\n- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).\n- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).\n- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).\n- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)\n- kasan: make report_lock a raw spinlock (git-fixes).\n- kdb: Fix buffer overflow during tab-complete (bsc#1234652).\n- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).\n- kdb: Merge identical case statements in kdb_read() (bsc#1234657).\n- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).\n- kdb: Use format-strings rather than \u0027\\0\u0027 injection in kdb_read() (bsc#1234654).\n- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).\n- kdb: address -Wformat-security warnings (bsc#1234659).\n- kgdb: Flush console before entering kgdb on panic (bsc#1234651).\n- leds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex (stable-fixes).\n- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).\n- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).\n- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).\n- mac80211: fix user-power when emulating chanctx (stable-fixes).\n- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).\n- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).\n- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).\n- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).\n- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).\n- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).\n- mm/readahead: do not allow order-1 folio (bsc#1234205).\n- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).\n- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).\n- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).\n- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).\n- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).\n- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).\n- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).\n- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).\n- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).\n- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).\n- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).\n- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).\n- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).\n- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).\n- net/qed: allow old cards not supporting \u0027num_images\u0027 to work (git-fixes).\n- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).\n- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).\n- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).\n- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).\n- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).\n- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).\n- nvme: apple: fix device reference counting (git-fixes).\n- nvme: fix metadata handling in nvme-passthrough (git-fixes).\n- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).\n- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).\n- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).\n- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).\n- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).\n- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).\n- of: address: Report error on resource bounds overflow (stable-fixes).\n- parisc: Raise minimal GCC version (bsc#1220773).\n- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).\n- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).\n- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).\n- percpu: Wire up cmpxchg128 (bsc#1220773).\n- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).\n- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).\n- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).\n- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).\n- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).\n- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).\n- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).\n- phy: usb: Toggle the PHY power during init (git-fixes).\n- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).\n- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).\n- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).\n- pinmux: Use sequential access to access desc-\u003epinmux data (stable-fixes).\n- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).\n- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).\n- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).\n- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).\n- platform/x86: thinkpad_acpi: Fix for ThinkPad\u0027s with ECFW showing incorrect fan speed (stable-fixes).\n- power: supply: gpio-charger: Fix set charge current limits (git-fixes).\n- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).\n- quota: explicitly forbid quota files from being encrypted (bsc#1234196).\n- quota: flush quota_release_work upon quota writeback (bsc#1234195).\n- quota: simplify drop_dquot_ref() (bsc#1234197).\n- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).\n- regmap: Use correct format specifier for logging range errors (stable-fixes).\n- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).\n- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).\n- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).\n- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).\n- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).\n- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).\n- s390/facility: Disable compile time optimization for decompressor code (git-fixes).\n- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).\n- s390/pageattr: Implement missing kernel_page_present() (git-fixes).\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- sched/numa: fix memory leak due to the overwritten vma-\u003enumab_state (git fixes (sched/numa)).\n- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).\n- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).\n- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).\n- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).\n- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).\n- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).\n- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).\n- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).\n- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).\n- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).\n- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).\n- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).\n- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).\n- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).\n- scsi: qla2xxx: Remove the unused \u0027del_list_entry\u0027 field in struct fc_port (bsc#1235406).\n- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).\n- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).\n- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).\n- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).\n- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).\n- serial: 8250_fintek: Add support for F81216E (stable-fixes).\n- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).\n- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).\n- serial: amba-pl011: Use port lock wrappers (stable-fixes).\n- serial: amba-pl011: fix build regression (git-fixes).\n- serial: do not use uninitialized value in uart_poll_init() (git-fixes).\n- serial: imx: only set receiver level if it is zero (git-fixes).\n- serial: imx: set receiver level before starting uart (git-fixes).\n- serial: qcom-geni: Do not cancel/abort if we can\u0027t get the port lock (git-fixes).\n- serial: qcom-geni: disable interrupts during console writes (git-fixes).\n- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).\n- serial: qcom-geni: fix console corruption (git-fixes).\n- serial: qcom-geni: fix dma rx cancellation (git-fixes).\n- serial: qcom-geni: fix false console tx restart (git-fixes).\n- serial: qcom-geni: fix fifo polling timeout (git-fixes).\n- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).\n- serial: qcom-geni: fix polled console corruption (git-fixes).\n- serial: qcom-geni: fix polled console initialisation (git-fixes).\n- serial: qcom-geni: fix receiver enable (git-fixes).\n- serial: qcom-geni: fix shutdown race (git-fixes).\n- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).\n- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).\n- serial: qcom-geni: revert broken hibernation support (git-fixes).\n- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).\n- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).\n- slub: Replace cmpxchg_double() (bsc#1220773).\n- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]\n- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).\n- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).\n- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).\n- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).\n- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).\n- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).\n- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).\n- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).\n- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).\n- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).\n- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).\n- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).\n- swiotlb: Reinstate page-alignment for mappings \u003e= PAGE_SIZE (git-fixes).\n- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).\n- tools: hv: change permissions of NetworkManager configuration file (git-fixes).\n- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).\n- types: Introduce [us]128 (bsc#1220773).\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).\n- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).\n- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).\n- udf: refactor inode_bmap() to handle error (bsc#1234242).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).\n- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).\n- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).\n- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).\n- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).\n- usb: dwc2: Fix HCD port connection race (git-fixes).\n- usb: dwc2: Fix HCD resume (git-fixes).\n- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).\n- usb: dwc2: hcd: Fix GetPortStatus \u0026 SetPortFeature (git-fixes).\n- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).\n- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).\n- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).\n- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).\n- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).\n- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).\n- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).\n- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).\n- usb: typec: use cleanup facility for \u0027altmodes_node\u0027 (stable-fixes).\n- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).\n- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).\n- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).\n- vdpa: solidrun: Fix UB bug with devres (git-fixes).\n- vfs: fix readahead(2) on block devices (bsc#1234201).\n- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).\n- wifi: ath5k: add PCI ID for SX76X (git-fixes).\n- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).\n- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).\n- wifi: cw1200: Fix potential NULL dereference (git-fixes).\n- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).\n- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).\n- wifi: mac80211: clean up \u0027ret\u0027 in sta_link_apply_parameters() (stable-fixes).\n- wifi: mac80211: fix station NSS capability initialization order (git-fixes).\n- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).\n- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).\n- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).\n- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).\n- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).\n- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).\n- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).\n- xfs: do not allocate COW extents when unsharing a hole (git-fixes).\n- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).\n- xfs: remove unknown compat feature check in superblock write validation (git-fixes).\n- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).\n- xfs: sb_spino_align is not verified (git-fixes).\n- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).\n- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).\n- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-153,SUSE-SLE-Module-Live-Patching-15-SP6-2025-153,SUSE-SLE-Module-RT-15-SP6-2025-153,openSUSE-SLE-15.6-2025-153",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0153-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0153-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250153-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0153-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020150.html"
},
{
"category": "self",
"summary": "SUSE Bug 1214954",
"url": "https://bugzilla.suse.com/1214954"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1220773",
"url": "https://bugzilla.suse.com/1220773"
},
{
"category": "self",
"summary": "SUSE Bug 1224095",
"url": "https://bugzilla.suse.com/1224095"
},
{
"category": "self",
"summary": "SUSE Bug 1224726",
"url": "https://bugzilla.suse.com/1224726"
},
{
"category": "self",
"summary": "SUSE Bug 1225743",
"url": "https://bugzilla.suse.com/1225743"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1227445",
"url": "https://bugzilla.suse.com/1227445"
},
{
"category": "self",
"summary": "SUSE Bug 1228526",
"url": "https://bugzilla.suse.com/1228526"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1230205",
"url": "https://bugzilla.suse.com/1230205"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1231909",
"url": "https://bugzilla.suse.com/1231909"
},
{
"category": "self",
"summary": "SUSE Bug 1231963",
"url": "https://bugzilla.suse.com/1231963"
},
{
"category": "self",
"summary": "SUSE Bug 1232193",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232418",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232420",
"url": "https://bugzilla.suse.com/1232420"
},
{
"category": "self",
"summary": "SUSE Bug 1232421",
"url": "https://bugzilla.suse.com/1232421"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233204",
"url": "https://bugzilla.suse.com/1233204"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233259",
"url": "https://bugzilla.suse.com/1233259"
},
{
"category": "self",
"summary": "SUSE Bug 1233260",
"url": "https://bugzilla.suse.com/1233260"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233328",
"url": "https://bugzilla.suse.com/1233328"
},
{
"category": "self",
"summary": "SUSE Bug 1233461",
"url": "https://bugzilla.suse.com/1233461"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233546",
"url": "https://bugzilla.suse.com/1233546"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233772",
"url": "https://bugzilla.suse.com/1233772"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234024",
"url": "https://bugzilla.suse.com/1234024"
},
{
"category": "self",
"summary": "SUSE Bug 1234069",
"url": "https://bugzilla.suse.com/1234069"
},
{
"category": "self",
"summary": "SUSE Bug 1234071",
"url": "https://bugzilla.suse.com/1234071"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234079",
"url": "https://bugzilla.suse.com/1234079"
},
{
"category": "self",
"summary": "SUSE Bug 1234086",
"url": "https://bugzilla.suse.com/1234086"
},
{
"category": "self",
"summary": "SUSE Bug 1234139",
"url": "https://bugzilla.suse.com/1234139"
},
{
"category": "self",
"summary": "SUSE Bug 1234140",
"url": "https://bugzilla.suse.com/1234140"
},
{
"category": "self",
"summary": "SUSE Bug 1234141",
"url": "https://bugzilla.suse.com/1234141"
},
{
"category": "self",
"summary": "SUSE Bug 1234142",
"url": "https://bugzilla.suse.com/1234142"
},
{
"category": "self",
"summary": "SUSE Bug 1234143",
"url": "https://bugzilla.suse.com/1234143"
},
{
"category": "self",
"summary": "SUSE Bug 1234144",
"url": "https://bugzilla.suse.com/1234144"
},
{
"category": "self",
"summary": "SUSE Bug 1234145",
"url": "https://bugzilla.suse.com/1234145"
},
{
"category": "self",
"summary": "SUSE Bug 1234146",
"url": "https://bugzilla.suse.com/1234146"
},
{
"category": "self",
"summary": "SUSE Bug 1234147",
"url": "https://bugzilla.suse.com/1234147"
},
{
"category": "self",
"summary": "SUSE Bug 1234148",
"url": "https://bugzilla.suse.com/1234148"
},
{
"category": "self",
"summary": "SUSE Bug 1234149",
"url": "https://bugzilla.suse.com/1234149"
},
{
"category": "self",
"summary": "SUSE Bug 1234150",
"url": "https://bugzilla.suse.com/1234150"
},
{
"category": "self",
"summary": "SUSE Bug 1234153",
"url": "https://bugzilla.suse.com/1234153"
},
{
"category": "self",
"summary": "SUSE Bug 1234155",
"url": "https://bugzilla.suse.com/1234155"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234158",
"url": "https://bugzilla.suse.com/1234158"
},
{
"category": "self",
"summary": "SUSE Bug 1234159",
"url": "https://bugzilla.suse.com/1234159"
},
{
"category": "self",
"summary": "SUSE Bug 1234160",
"url": "https://bugzilla.suse.com/1234160"
},
{
"category": "self",
"summary": "SUSE Bug 1234161",
"url": "https://bugzilla.suse.com/1234161"
},
{
"category": "self",
"summary": "SUSE Bug 1234162",
"url": "https://bugzilla.suse.com/1234162"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234164",
"url": "https://bugzilla.suse.com/1234164"
},
{
"category": "self",
"summary": "SUSE Bug 1234165",
"url": "https://bugzilla.suse.com/1234165"
},
{
"category": "self",
"summary": "SUSE Bug 1234166",
"url": "https://bugzilla.suse.com/1234166"
},
{
"category": "self",
"summary": "SUSE Bug 1234167",
"url": "https://bugzilla.suse.com/1234167"
},
{
"category": "self",
"summary": "SUSE Bug 1234168",
"url": "https://bugzilla.suse.com/1234168"
},
{
"category": "self",
"summary": "SUSE Bug 1234169",
"url": "https://bugzilla.suse.com/1234169"
},
{
"category": "self",
"summary": "SUSE Bug 1234170",
"url": "https://bugzilla.suse.com/1234170"
},
{
"category": "self",
"summary": "SUSE Bug 1234171",
"url": "https://bugzilla.suse.com/1234171"
},
{
"category": "self",
"summary": "SUSE Bug 1234172",
"url": "https://bugzilla.suse.com/1234172"
},
{
"category": "self",
"summary": "SUSE Bug 1234173",
"url": "https://bugzilla.suse.com/1234173"
},
{
"category": "self",
"summary": "SUSE Bug 1234174",
"url": "https://bugzilla.suse.com/1234174"
},
{
"category": "self",
"summary": "SUSE Bug 1234175",
"url": "https://bugzilla.suse.com/1234175"
},
{
"category": "self",
"summary": "SUSE Bug 1234176",
"url": "https://bugzilla.suse.com/1234176"
},
{
"category": "self",
"summary": "SUSE Bug 1234177",
"url": "https://bugzilla.suse.com/1234177"
},
{
"category": "self",
"summary": "SUSE Bug 1234178",
"url": "https://bugzilla.suse.com/1234178"
},
{
"category": "self",
"summary": "SUSE Bug 1234179",
"url": "https://bugzilla.suse.com/1234179"
},
{
"category": "self",
"summary": "SUSE Bug 1234180",
"url": "https://bugzilla.suse.com/1234180"
},
{
"category": "self",
"summary": "SUSE Bug 1234181",
"url": "https://bugzilla.suse.com/1234181"
},
{
"category": "self",
"summary": "SUSE Bug 1234182",
"url": "https://bugzilla.suse.com/1234182"
},
{
"category": "self",
"summary": "SUSE Bug 1234183",
"url": "https://bugzilla.suse.com/1234183"
},
{
"category": "self",
"summary": "SUSE Bug 1234184",
"url": "https://bugzilla.suse.com/1234184"
},
{
"category": "self",
"summary": "SUSE Bug 1234185",
"url": "https://bugzilla.suse.com/1234185"
},
{
"category": "self",
"summary": "SUSE Bug 1234186",
"url": "https://bugzilla.suse.com/1234186"
},
{
"category": "self",
"summary": "SUSE Bug 1234187",
"url": "https://bugzilla.suse.com/1234187"
},
{
"category": "self",
"summary": "SUSE Bug 1234188",
"url": "https://bugzilla.suse.com/1234188"
},
{
"category": "self",
"summary": "SUSE Bug 1234189",
"url": "https://bugzilla.suse.com/1234189"
},
{
"category": "self",
"summary": "SUSE Bug 1234190",
"url": "https://bugzilla.suse.com/1234190"
},
{
"category": "self",
"summary": "SUSE Bug 1234191",
"url": "https://bugzilla.suse.com/1234191"
},
{
"category": "self",
"summary": "SUSE Bug 1234192",
"url": "https://bugzilla.suse.com/1234192"
},
{
"category": "self",
"summary": "SUSE Bug 1234193",
"url": "https://bugzilla.suse.com/1234193"
},
{
"category": "self",
"summary": "SUSE Bug 1234194",
"url": "https://bugzilla.suse.com/1234194"
},
{
"category": "self",
"summary": "SUSE Bug 1234195",
"url": "https://bugzilla.suse.com/1234195"
},
{
"category": "self",
"summary": "SUSE Bug 1234196",
"url": "https://bugzilla.suse.com/1234196"
},
{
"category": "self",
"summary": "SUSE Bug 1234197",
"url": "https://bugzilla.suse.com/1234197"
},
{
"category": "self",
"summary": "SUSE Bug 1234198",
"url": "https://bugzilla.suse.com/1234198"
},
{
"category": "self",
"summary": "SUSE Bug 1234199",
"url": "https://bugzilla.suse.com/1234199"
},
{
"category": "self",
"summary": "SUSE Bug 1234200",
"url": "https://bugzilla.suse.com/1234200"
},
{
"category": "self",
"summary": "SUSE Bug 1234201",
"url": "https://bugzilla.suse.com/1234201"
},
{
"category": "self",
"summary": "SUSE Bug 1234203",
"url": "https://bugzilla.suse.com/1234203"
},
{
"category": "self",
"summary": "SUSE Bug 1234204",
"url": "https://bugzilla.suse.com/1234204"
},
{
"category": "self",
"summary": "SUSE Bug 1234205",
"url": "https://bugzilla.suse.com/1234205"
},
{
"category": "self",
"summary": "SUSE Bug 1234207",
"url": "https://bugzilla.suse.com/1234207"
},
{
"category": "self",
"summary": "SUSE Bug 1234208",
"url": "https://bugzilla.suse.com/1234208"
},
{
"category": "self",
"summary": "SUSE Bug 1234209",
"url": "https://bugzilla.suse.com/1234209"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234221",
"url": "https://bugzilla.suse.com/1234221"
},
{
"category": "self",
"summary": "SUSE Bug 1234237",
"url": "https://bugzilla.suse.com/1234237"
},
{
"category": "self",
"summary": "SUSE Bug 1234238",
"url": "https://bugzilla.suse.com/1234238"
},
{
"category": "self",
"summary": "SUSE Bug 1234239",
"url": "https://bugzilla.suse.com/1234239"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234242",
"url": "https://bugzilla.suse.com/1234242"
},
{
"category": "self",
"summary": "SUSE Bug 1234243",
"url": "https://bugzilla.suse.com/1234243"
},
{
"category": "self",
"summary": "SUSE Bug 1234278",
"url": "https://bugzilla.suse.com/1234278"
},
{
"category": "self",
"summary": "SUSE Bug 1234279",
"url": "https://bugzilla.suse.com/1234279"
},
{
"category": "self",
"summary": "SUSE Bug 1234280",
"url": "https://bugzilla.suse.com/1234280"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234381",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "self",
"summary": "SUSE Bug 1234454",
"url": "https://bugzilla.suse.com/1234454"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234651",
"url": "https://bugzilla.suse.com/1234651"
},
{
"category": "self",
"summary": "SUSE Bug 1234652",
"url": "https://bugzilla.suse.com/1234652"
},
{
"category": "self",
"summary": "SUSE Bug 1234654",
"url": "https://bugzilla.suse.com/1234654"
},
{
"category": "self",
"summary": "SUSE Bug 1234655",
"url": "https://bugzilla.suse.com/1234655"
},
{
"category": "self",
"summary": "SUSE Bug 1234657",
"url": "https://bugzilla.suse.com/1234657"
},
{
"category": "self",
"summary": "SUSE Bug 1234658",
"url": "https://bugzilla.suse.com/1234658"
},
{
"category": "self",
"summary": "SUSE Bug 1234659",
"url": "https://bugzilla.suse.com/1234659"
},
{
"category": "self",
"summary": "SUSE Bug 1234668",
"url": "https://bugzilla.suse.com/1234668"
},
{
"category": "self",
"summary": "SUSE Bug 1234690",
"url": "https://bugzilla.suse.com/1234690"
},
{
"category": "self",
"summary": "SUSE Bug 1234725",
"url": "https://bugzilla.suse.com/1234725"
},
{
"category": "self",
"summary": "SUSE Bug 1234726",
"url": "https://bugzilla.suse.com/1234726"
},
{
"category": "self",
"summary": "SUSE Bug 1234810",
"url": "https://bugzilla.suse.com/1234810"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234826",
"url": "https://bugzilla.suse.com/1234826"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234829",
"url": "https://bugzilla.suse.com/1234829"
},
{
"category": "self",
"summary": "SUSE Bug 1234832",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234848",
"url": "https://bugzilla.suse.com/1234848"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234855",
"url": "https://bugzilla.suse.com/1234855"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234884",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "self",
"summary": "SUSE Bug 1234889",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234899",
"url": "https://bugzilla.suse.com/1234899"
},
{
"category": "self",
"summary": "SUSE Bug 1234900",
"url": "https://bugzilla.suse.com/1234900"
},
{
"category": "self",
"summary": "SUSE Bug 1234905",
"url": "https://bugzilla.suse.com/1234905"
},
{
"category": "self",
"summary": "SUSE Bug 1234907",
"url": "https://bugzilla.suse.com/1234907"
},
{
"category": "self",
"summary": "SUSE Bug 1234909",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "self",
"summary": "SUSE Bug 1234911",
"url": "https://bugzilla.suse.com/1234911"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234916",
"url": "https://bugzilla.suse.com/1234916"
},
{
"category": "self",
"summary": "SUSE Bug 1234918",
"url": "https://bugzilla.suse.com/1234918"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234922",
"url": "https://bugzilla.suse.com/1234922"
},
{
"category": "self",
"summary": "SUSE Bug 1234929",
"url": "https://bugzilla.suse.com/1234929"
},
{
"category": "self",
"summary": "SUSE Bug 1234930",
"url": "https://bugzilla.suse.com/1234930"
},
{
"category": "self",
"summary": "SUSE Bug 1234937",
"url": "https://bugzilla.suse.com/1234937"
},
{
"category": "self",
"summary": "SUSE Bug 1234948",
"url": "https://bugzilla.suse.com/1234948"
},
{
"category": "self",
"summary": "SUSE Bug 1234950",
"url": "https://bugzilla.suse.com/1234950"
},
{
"category": "self",
"summary": "SUSE Bug 1234952",
"url": "https://bugzilla.suse.com/1234952"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234962",
"url": "https://bugzilla.suse.com/1234962"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234968",
"url": "https://bugzilla.suse.com/1234968"
},
{
"category": "self",
"summary": "SUSE Bug 1234969",
"url": "https://bugzilla.suse.com/1234969"
},
{
"category": "self",
"summary": "SUSE Bug 1234970",
"url": "https://bugzilla.suse.com/1234970"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1234974",
"url": "https://bugzilla.suse.com/1234974"
},
{
"category": "self",
"summary": "SUSE Bug 1234989",
"url": "https://bugzilla.suse.com/1234989"
},
{
"category": "self",
"summary": "SUSE Bug 1234999",
"url": "https://bugzilla.suse.com/1234999"
},
{
"category": "self",
"summary": "SUSE Bug 1235002",
"url": "https://bugzilla.suse.com/1235002"
},
{
"category": "self",
"summary": "SUSE Bug 1235003",
"url": "https://bugzilla.suse.com/1235003"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235007",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "self",
"summary": "SUSE Bug 1235009",
"url": "https://bugzilla.suse.com/1235009"
},
{
"category": "self",
"summary": "SUSE Bug 1235016",
"url": "https://bugzilla.suse.com/1235016"
},
{
"category": "self",
"summary": "SUSE Bug 1235019",
"url": "https://bugzilla.suse.com/1235019"
},
{
"category": "self",
"summary": "SUSE Bug 1235033",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "self",
"summary": "SUSE Bug 1235045",
"url": "https://bugzilla.suse.com/1235045"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235075",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "self",
"summary": "SUSE Bug 1235108",
"url": "https://bugzilla.suse.com/1235108"
},
{
"category": "self",
"summary": "SUSE Bug 1235128",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "self",
"summary": "SUSE Bug 1235134",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "self",
"summary": "SUSE Bug 1235138",
"url": "https://bugzilla.suse.com/1235138"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235406",
"url": "https://bugzilla.suse.com/1235406"
},
{
"category": "self",
"summary": "SUSE Bug 1235409",
"url": "https://bugzilla.suse.com/1235409"
},
{
"category": "self",
"summary": "SUSE Bug 1235416",
"url": "https://bugzilla.suse.com/1235416"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE Bug 1235550",
"url": "https://bugzilla.suse.com/1235550"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27397 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27397/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35839 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39480 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39480/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50272 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53050 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53169 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56536 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56562 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56566 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56576 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56582 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56645 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-01-17T09:14:12Z",
"generator": {
"date": "2025-01-17T09:14:12Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0153-1",
"initial_release_date": "2025-01-17T09:14:12Z",
"revision_history": [
{
"date": "2025-01-17T09:14:12Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"product": {
"name": "kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"product_id": "kernel-devel-rt-6.4.0-150600.10.23.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"product": {
"name": "kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"product_id": "kernel-source-rt-6.4.0-150600.10.23.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product_id": "cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product_id": "dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product_id": "gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"product_id": "kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt-devel-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt-extra-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt-livepatch-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt-optional-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt_debug-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"product_id": "kernel-syms-rt-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product_id": "kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product_id": "ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product": {
"name": "reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"product_id": "reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Real Time Module 15 SP6",
"product": {
"name": "SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-rt:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-6.4.0-150600.10.23.1.noarch as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch"
},
"product_reference": "kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-150600.10.23.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.4.0-150600.10.23.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-6.4.0-150600.10.23.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-6.4.0-150600.10.23.1.noarch as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch"
},
"product_reference": "kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-rt-6.4.0-150600.10.23.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-6.4.0-150600.10.23.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch"
},
"product_reference": "kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-extra-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-optional-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-6.4.0-150600.10.23.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch"
},
"product_reference": "kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-rt-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
},
"product_reference": "reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-27397",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27397"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: use timestamp to check for set element timeout\n\nAdd a timestamp field at the beginning of the transaction, store it\nin the nftables per-netns area.\n\nUpdate set backend .insert, .deactivate and sync gc path to use the\ntimestamp, this avoids that an element expires while control plane\ntransaction is still unfinished.\n\n.lookup and .update, which are used from packet path, still use the\ncurrent time to check if the element has expired. And .get path and dump\nalso since this runs lockless under rcu read size lock. Then, there is\nasync gc which also needs to check the current time since it runs\nasynchronously from a workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27397",
"url": "https://www.suse.com/security/cve/CVE-2024-27397"
},
{
"category": "external",
"summary": "SUSE Bug 1224095 for CVE-2024-27397",
"url": "https://bugzilla.suse.com/1224095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-27397"
},
{
"cve": "CVE-2024-35839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bridge: replace physindev with physinif in nf_bridge_info\n\nAn skb can be added to a neigh-\u003earp_queue while waiting for an arp\nreply. Where original skb\u0027s skb-\u003edev can be different to neigh\u0027s\nneigh-\u003edev. For instance in case of bridging dnated skb from one veth to\nanother, the skb would be added to a neigh-\u003earp_queue of the bridge.\n\nAs skb-\u003edev can be reset back to nf_bridge-\u003ephysindev and used, and as\nthere is no explicit mechanism that prevents this physindev from been\nfreed under us (for instance neigh_flush_dev doesn\u0027t cleanup skbs from\ndifferent device\u0027s neigh queue) we can crash on e.g. this stack:\n\narp_process\n neigh_update\n skb = __skb_dequeue(\u0026neigh-\u003earp_queue)\n neigh_resolve_output(..., skb)\n ...\n br_nf_dev_xmit\n br_nf_pre_routing_finish_bridge_slow\n skb-\u003edev = nf_bridge-\u003ephysindev\n br_handle_frame_finish\n\nLet\u0027s use plain ifindex instead of net_device link. To peek into the\noriginal net_device we will use dev_get_by_index_rcu(). Thus either we\nget device and are safe to use it or we don\u0027t get it and drop skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35839",
"url": "https://www.suse.com/security/cve/CVE-2024-35839"
},
{
"category": "external",
"summary": "SUSE Bug 1224726 for CVE-2024-35839",
"url": "https://bugzilla.suse.com/1224726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-35839"
},
{
"cve": "CVE-2024-36908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-iocost: do not WARN if iocg was already offlined\n\nIn iocg_pay_debt(), warn is triggered if \u0027active_list\u0027 is empty, which\nis intended to confirm iocg is active when it has debt. However, warn\ncan be triggered during a blkcg or disk removal, if iocg_waitq_timer_fn()\nis run at that time:\n\n WARNING: CPU: 0 PID: 2344971 at block/blk-iocost.c:1402 iocg_pay_debt+0x14c/0x190\n Call trace:\n iocg_pay_debt+0x14c/0x190\n iocg_kick_waitq+0x438/0x4c0\n iocg_waitq_timer_fn+0xd8/0x130\n __run_hrtimer+0x144/0x45c\n __hrtimer_run_queues+0x16c/0x244\n hrtimer_interrupt+0x2cc/0x7b0\n\nThe warn in this situation is meaningless. Since this iocg is being\nremoved, the state of the \u0027active_list\u0027 is irrelevant, and \u0027waitq_timer\u0027\nis canceled after removing \u0027active_list\u0027 in ioc_pd_free(), which ensures\niocg is freed after iocg_waitq_timer_fn() returns.\n\nTherefore, add the check if iocg was already offlined to avoid warn\nwhen removing a blkcg or disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36908",
"url": "https://www.suse.com/security/cve/CVE-2024-36908"
},
{
"category": "external",
"summary": "SUSE Bug 1225743 for CVE-2024-36908",
"url": "https://bugzilla.suse.com/1225743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-36908"
},
{
"cve": "CVE-2024-39480",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39480"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkdb: Fix buffer overflow during tab-complete\n\nCurrently, when the user attempts symbol completion with the Tab key, kdb\nwill use strncpy() to insert the completed symbol into the command buffer.\nUnfortunately it passes the size of the source buffer rather than the\ndestination to strncpy() with predictably horrible results. Most obviously\nif the command buffer is already full but cp, the cursor position, is in\nthe middle of the buffer, then we will write past the end of the supplied\nbuffer.\n\nFix this by replacing the dubious strncpy() calls with memmove()/memcpy()\ncalls plus explicit boundary checks to make sure we have enough space\nbefore we start moving characters around.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39480",
"url": "https://www.suse.com/security/cve/CVE-2024-39480"
},
{
"category": "external",
"summary": "SUSE Bug 1227445 for CVE-2024-39480",
"url": "https://bugzilla.suse.com/1227445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-39480"
},
{
"cve": "CVE-2024-41042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prefer nft_chain_validate\n\nnft_chain_validate already performs loop detection because a cycle will\nresult in a call stack overflow (ctx-\u003elevel \u003e= NFT_JUMP_STACK_SIZE).\n\nIt also follows maps via -\u003evalidate callback in nft_lookup, so there\nappears no reason to iterate the maps again.\n\nnf_tables_check_loops() and all its helper functions can be removed.\nThis improves ruleset load time significantly, from 23s down to 12s.\n\nThis also fixes a crash bug. Old loop detection code can result in\nunbounded recursion:\n\nBUG: TASK stack guard page was hit at ....\nOops: stack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 4 PID: 1539 Comm: nft Not tainted 6.10.0-rc5+ #1\n[..]\n\nwith a suitable ruleset during validation of register stores.\n\nI can\u0027t see any actual reason to attempt to check for this from\nnft_validate_register_store(), at this point the transaction is still in\nprogress, so we don\u0027t have a full picture of the rule graph.\n\nFor nf-next it might make sense to either remove it or make this depend\non table-\u003evalidate_state in case we could catch an error earlier\n(for improved error reporting to userspace).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41042",
"url": "https://www.suse.com/security/cve/CVE-2024-41042"
},
{
"category": "external",
"summary": "SUSE Bug 1228526 for CVE-2024-41042",
"url": "https://bugzilla.suse.com/1228526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-41042"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-44996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix recursive -\u003erecvmsg calls\n\nAfter a vsock socket has been added to a BPF sockmap, its prot-\u003erecvmsg\nhas been replaced with vsock_bpf_recvmsg(). Thus the following\nrecursiion could happen:\n\nvsock_bpf_recvmsg()\n -\u003e __vsock_recvmsg()\n -\u003e vsock_connectible_recvmsg()\n -\u003e prot-\u003erecvmsg()\n -\u003e vsock_bpf_recvmsg() again\n\nWe need to fix it by calling the original -\u003erecvmsg() without any BPF\nsockmap logic in __vsock_recvmsg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44996",
"url": "https://www.suse.com/security/cve/CVE-2024-44996"
},
{
"category": "external",
"summary": "SUSE Bug 1230205 for CVE-2024-44996",
"url": "https://bugzilla.suse.com/1230205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44996"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix uaf for accessing waker_bfqq after splitting\n\nAfter commit 42c306ed7233 (\"block, bfq: don\u0027t break merge chain in\nbfq_split_bfqq()\"), if the current procress is the last holder of bfqq,\nthe bfqq can be freed after bfq_split_bfqq(). Hence recored the bfqq and\nthen access bfqq-\u003ewaker_bfqq may trigger UAF. What\u0027s more, the waker_bfqq\nmay in the merge chain of bfqq, hence just recored waker_bfqq is still\nnot safe.\n\nFix the problem by adding a helper bfq_waker_bfqq() to check if\nbfqq-\u003ewaker_bfqq is in the merge chain, and current procress is the only\nholder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix address emission with tag-based KASAN enabled\n\nWhen BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_image\nstruct on the stack is passed during the size calculation pass and\nan address on the heap is passed during code generation. This may\ncause a heap buffer overflow if the heap address is tagged because\nemit_a64_mov_i64() will emit longer code than it did during the size\ncalculation pass. The same problem could occur without tag-based\nKASAN if one of the 16-bit words of the stack address happened to\nbe all-ones during the size calculation pass. Fix the problem by\nassuming the worst case (4 instructions) when calculating the size\nof the bpf_tramp_image address emission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50203",
"url": "https://www.suse.com/security/cve/CVE-2024-50203"
},
{
"category": "external",
"summary": "SUSE Bug 1233328 for CVE-2024-50203",
"url": "https://bugzilla.suse.com/1233328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50203"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilemap: Fix bounds checking in filemap_read()\n\nIf the caller supplies an iocb-\u003eki_pos value that is close to the\nfilesystem upper limit, and an iterator with a count that causes us to\noverflow that limit, then filemap_read() enters an infinite loop.\n\nThis behaviour was discovered when testing xfstests generic/525 with the\n\"localio\" optimisation for loopback NFS mounts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50272",
"url": "https://www.suse.com/security/cve/CVE-2024-50272"
},
{
"category": "external",
"summary": "SUSE Bug 1233461 for CVE-2024-50272",
"url": "https://bugzilla.suse.com/1233461"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50272"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-53050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53050"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in hdcp2_get_capability\n\nAdd encoder check in intel_hdcp2_get_capability to avoid\nnull pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53050",
"url": "https://www.suse.com/security/cve/CVE-2024-53050"
},
{
"category": "external",
"summary": "SUSE Bug 1233546 for CVE-2024-53050",
"url": "https://bugzilla.suse.com/1233546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53050"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()\n\nIf a newly-added link type doesn\u0027t invoke BPF_LINK_TYPE(), accessing\nbpf_link_type_strs[link-\u003etype] may result in an out-of-bounds access.\n\nTo spot such missed invocations early in the future, checking the\nvalidity of link-\u003etype in bpf_link_show_fdinfo() and emitting a warning\nwhen such invocations are missed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53099",
"url": "https://www.suse.com/security/cve/CVE-2024-53099"
},
{
"category": "external",
"summary": "SUSE Bug 1233772 for CVE-2024-53099",
"url": "https://bugzilla.suse.com/1233772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53099"
},
{
"cve": "CVE-2024-53103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer\n\nWhen hvs is released, there is a possibility that vsk-\u003etrans may not\nbe initialized to NULL, which could lead to a dangling pointer.\nThis issue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53103",
"url": "https://www.suse.com/security/cve/CVE-2024-53103"
},
{
"category": "external",
"summary": "SUSE Bug 1234024 for CVE-2024-53103",
"url": "https://bugzilla.suse.com/1234024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53103"
},
{
"cve": "CVE-2024-53105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: page_alloc: move mlocked flag clearance into free_pages_prepare()\n\nSyzbot reported a bad page state problem caused by a page being freed\nusing free_page() still having a mlocked flag at free_pages_prepare()\nstage:\n\n BUG: Bad page state in process syz.5.504 pfn:61f45\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61f45\n flags: 0xfff00000080204(referenced|workingset|mlocked|node=0|zone=1|lastcpupid=0x7ff)\n raw: 00fff00000080204 0000000000000000 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\n page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set\n page_owner tracks the page as allocated\n page last allocated via order 0, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 8443, tgid 8442 (syz.5.504), ts 201884660643, free_ts 201499827394\n set_page_owner include/linux/page_owner.h:32 [inline]\n post_alloc_hook+0x1f3/0x230 mm/page_alloc.c:1537\n prep_new_page mm/page_alloc.c:1545 [inline]\n get_page_from_freelist+0x303f/0x3190 mm/page_alloc.c:3457\n __alloc_pages_noprof+0x292/0x710 mm/page_alloc.c:4733\n alloc_pages_mpol_noprof+0x3e8/0x680 mm/mempolicy.c:2265\n kvm_coalesced_mmio_init+0x1f/0xf0 virt/kvm/coalesced_mmio.c:99\n kvm_create_vm virt/kvm/kvm_main.c:1235 [inline]\n kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5488 [inline]\n kvm_dev_ioctl+0x12dc/0x2240 virt/kvm/kvm_main.c:5530\n __do_compat_sys_ioctl fs/ioctl.c:1007 [inline]\n __se_compat_sys_ioctl+0x510/0xc90 fs/ioctl.c:950\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0xb4/0x110 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x34/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n page last free pid 8399 tgid 8399 stack trace:\n reset_page_owner include/linux/page_owner.h:25 [inline]\n free_pages_prepare mm/page_alloc.c:1108 [inline]\n free_unref_folios+0xf12/0x18d0 mm/page_alloc.c:2686\n folios_put_refs+0x76c/0x860 mm/swap.c:1007\n free_pages_and_swap_cache+0x5c8/0x690 mm/swap_state.c:335\n __tlb_batch_free_encoded_pages mm/mmu_gather.c:136 [inline]\n tlb_batch_pages_flush mm/mmu_gather.c:149 [inline]\n tlb_flush_mmu_free mm/mmu_gather.c:366 [inline]\n tlb_flush_mmu+0x3a3/0x680 mm/mmu_gather.c:373\n tlb_finish_mmu+0xd4/0x200 mm/mmu_gather.c:465\n exit_mmap+0x496/0xc40 mm/mmap.c:1926\n __mmput+0x115/0x390 kernel/fork.c:1348\n exit_mm+0x220/0x310 kernel/exit.c:571\n do_exit+0x9b2/0x28e0 kernel/exit.c:926\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [inline]\n __se_sys_exit_group kernel/exit.c:1097 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1097\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n Modules linked in:\n CPU: 0 UID: 0 PID: 8442 Comm: syz.5.504 Not tainted 6.12.0-rc6-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n bad_page+0x176/0x1d0 mm/page_alloc.c:501\n free_page_is_bad mm/page_alloc.c:918 [inline]\n free_pages_prepare mm/page_alloc.c:1100 [inline]\n free_unref_page+0xed0/0xf20 mm/page_alloc.c:2638\n kvm_destroy_vm virt/kvm/kvm_main.c:1327 [inline]\n kvm_put_kvm+0xc75/0x1350 virt/kvm/kvm_main.c:1386\n kvm_vcpu_release+0x54/0x60 virt/kvm/kvm_main.c:4143\n __fput+0x23f/0x880 fs/file_table.c:431\n task_work_run+0x24f/0x310 kernel/task_work.c:239\n exit_task_work include/linux/task_work.h:43 [inline]\n do_exit+0xa2f/0x28e0 kernel/exit.c:939\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53105",
"url": "https://www.suse.com/security/cve/CVE-2024-53105"
},
{
"category": "external",
"summary": "SUSE Bug 1234069 for CVE-2024-53105",
"url": "https://bugzilla.suse.com/1234069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53105"
},
{
"cve": "CVE-2024-53111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix address wraparound in move_page_tables()\n\nOn 32-bit platforms, it is possible for the expression `len + old_addr \u003c\nold_end` to be false-positive if `len + old_addr` wraps around. \n`old_addr` is the cursor in the old range up to which page table entries\nhave been moved; so if the operation succeeded, `old_addr` is the *end* of\nthe old region, and adding `len` to it can wrap.\n\nThe overflow causes mremap() to mistakenly believe that PTEs have been\ncopied; the consequence is that mremap() bails out, but doesn\u0027t move the\nPTEs back before the new VMA is unmapped, causing anonymous pages in the\nregion to be lost. So basically if userspace tries to mremap() a\nprivate-anon region and hits this bug, mremap() will return an error and\nthe private-anon region\u0027s contents appear to have been zeroed.\n\nThe idea of this check is that `old_end - len` is the original start\naddress, and writing the check that way also makes it easier to read; so\nfix the check by rearranging the comparison accordingly.\n\n(An alternate fix would be to refactor this function by introducing an\n\"orig_old_start\" variable or such.)\n\n\nTested in a VM with a 32-bit X86 kernel; without the patch:\n\n```\nuser@horn:~/big_mremap$ cat test.c\n#define _GNU_SOURCE\n#include \u003cstdlib.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003cerr.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define ADDR1 ((void*)0x60000000)\n#define ADDR2 ((void*)0x10000000)\n#define SIZE 0x50000000uL\n\nint main(void) {\n unsigned char *p1 = mmap(ADDR1, SIZE, PROT_READ|PROT_WRITE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p1 == MAP_FAILED)\n err(1, \"mmap 1\");\n unsigned char *p2 = mmap(ADDR2, SIZE, PROT_NONE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p2 == MAP_FAILED)\n err(1, \"mmap 2\");\n *p1 = 0x41;\n printf(\"first char is 0x%02hhx\\n\", *p1);\n unsigned char *p3 = mremap(p1, SIZE, SIZE,\n MREMAP_MAYMOVE|MREMAP_FIXED, p2);\n if (p3 == MAP_FAILED) {\n printf(\"mremap() failed; first char is 0x%02hhx\\n\", *p1);\n } else {\n printf(\"mremap() succeeded; first char is 0x%02hhx\\n\", *p3);\n }\n}\nuser@horn:~/big_mremap$ gcc -static -o test test.c\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() failed; first char is 0x00\n```\n\nWith the patch:\n\n```\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() succeeded; first char is 0x41\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53111",
"url": "https://www.suse.com/security/cve/CVE-2024-53111"
},
{
"category": "external",
"summary": "SUSE Bug 1234086 for CVE-2024-53111",
"url": "https://bugzilla.suse.com/1234086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53111"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Improve MSG_ZEROCOPY error handling\n\nAdd a missing kfree_skb() to prevent memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53117",
"url": "https://www.suse.com/security/cve/CVE-2024-53117"
},
{
"category": "external",
"summary": "SUSE Bug 1234079 for CVE-2024-53117",
"url": "https://bugzilla.suse.com/1234079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53117"
},
{
"cve": "CVE-2024-53118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Fix sk_error_queue memory leak\n\nKernel queues MSG_ZEROCOPY completion notifications on the error queue.\nWhere they remain, until explicitly recv()ed. To prevent memory leaks,\nclean up the queue when the socket is destroyed.\n\nunreferenced object 0xffff8881028beb00 (size 224):\n comm \"vsock_test\", pid 1218, jiffies 4294694897\n hex dump (first 32 bytes):\n 90 b0 21 17 81 88 ff ff 90 b0 21 17 81 88 ff ff ..!.......!.....\n 00 00 00 00 00 00 00 00 00 b0 21 17 81 88 ff ff ..........!.....\n backtrace (crc 6c7031ca):\n [\u003cffffffff81418ef7\u003e] kmem_cache_alloc_node_noprof+0x2f7/0x370\n [\u003cffffffff81d35882\u003e] __alloc_skb+0x132/0x180\n [\u003cffffffff81d2d32b\u003e] sock_omalloc+0x4b/0x80\n [\u003cffffffff81d3a8ae\u003e] msg_zerocopy_realloc+0x9e/0x240\n [\u003cffffffff81fe5cb2\u003e] virtio_transport_send_pkt_info+0x412/0x4c0\n [\u003cffffffff81fe6183\u003e] virtio_transport_stream_enqueue+0x43/0x50\n [\u003cffffffff81fe0813\u003e] vsock_connectible_sendmsg+0x373/0x450\n [\u003cffffffff81d233d5\u003e] ____sys_sendmsg+0x365/0x3a0\n [\u003cffffffff81d246f4\u003e] ___sys_sendmsg+0x84/0xd0\n [\u003cffffffff81d26f47\u003e] __sys_sendmsg+0x47/0x80\n [\u003cffffffff820d3df3\u003e] do_syscall_64+0x93/0x180\n [\u003cffffffff8220012b\u003e] entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53118",
"url": "https://www.suse.com/security/cve/CVE-2024-53118"
},
{
"category": "external",
"summary": "SUSE Bug 1234071 for CVE-2024-53118",
"url": "https://bugzilla.suse.com/1234071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53118"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: solidrun: Fix UB bug with devres\n\nIn psnet_open_pf_bar() and snet_open_vf_bar() a string later passed to\npcim_iomap_regions() is placed on the stack. Neither\npcim_iomap_regions() nor the functions it calls copy that string.\n\nShould the string later ever be used, this, consequently, causes\nundefined behavior since the stack frame will by then have disappeared.\n\nFix the bug by allocating the strings on the heap through\ndevm_kasprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53126",
"url": "https://www.suse.com/security/cve/CVE-2024-53126"
},
{
"category": "external",
"summary": "SUSE Bug 1234158 for CVE-2024-53126",
"url": "https://bugzilla.suse.com/1234158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53126"
},
{
"cve": "CVE-2024-53127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\"\n\nThe commit 8396c793ffdf (\"mmc: dw_mmc: Fix IDMAC operation with pages\nbigger than 4K\") increased the max_req_size, even for 4K pages, causing\nvarious issues:\n- Panic booting the kernel/rootfs from an SD card on Rockchip RK3566\n- Panic booting the kernel/rootfs from an SD card on StarFive JH7100\n- \"swiotlb buffer is full\" and data corruption on StarFive JH7110\n\nAt this stage no fix have been found, so it\u0027s probably better to just\nrevert the change.\n\nThis reverts commit 8396c793ffdf28bb8aee7cfe0891080f8cab7890.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53127",
"url": "https://www.suse.com/security/cve/CVE-2024-53127"
},
{
"category": "external",
"summary": "SUSE Bug 1234153 for CVE-2024-53127",
"url": "https://bugzilla.suse.com/1234153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53127"
},
{
"cve": "CVE-2024-53129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/rockchip: vop: Fix a dereferenced before check warning\n\nThe \u0027state\u0027 can\u0027t be NULL, we should check crtc_state.\n\nFix warning:\ndrivers/gpu/drm/rockchip/rockchip_drm_vop.c:1096\nvop_plane_atomic_async_check() warn: variable dereferenced before check\n\u0027state\u0027 (see line 1077)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53129",
"url": "https://www.suse.com/security/cve/CVE-2024-53129"
},
{
"category": "external",
"summary": "SUSE Bug 1234155 for CVE-2024-53129",
"url": "https://bugzilla.suse.com/1234155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53129"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle dml allocation failure to avoid crash\n\n[Why]\nIn the case where a dml allocation fails for any reason, the\ncurrent state\u0027s dml contexts would no longer be valid. Then\nsubsequent calls dc_state_copy_internal would shallow copy\ninvalid memory and if the new state was released, a double\nfree would occur.\n\n[How]\nReset dml pointers in new_state to NULL and avoid invalid\npointer\n\n(cherry picked from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53133",
"url": "https://www.suse.com/security/cve/CVE-2024-53133"
},
{
"category": "external",
"summary": "SUSE Bug 1234221 for CVE-2024-53133",
"url": "https://bugzilla.suse.com/1234221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53133"
},
{
"cve": "CVE-2024-53134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx93-blk-ctrl: correct remove path\n\nThe check condition should be \u0027i \u003c bc-\u003eonecell_data.num_domains\u0027, not\n\u0027bc-\u003eonecell_data.num_domains\u0027 which will make the look never finish\nand cause kernel panic.\n\nAlso disable runtime to address\n\"imx93-blk-ctrl 4ac10000.system-controller: Unbalanced pm_runtime_enable!\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53134",
"url": "https://www.suse.com/security/cve/CVE-2024-53134"
},
{
"category": "external",
"summary": "SUSE Bug 1234159 for CVE-2024-53134",
"url": "https://bugzilla.suse.com/1234159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53134"
},
{
"cve": "CVE-2024-53136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: revert \"mm: shmem: fix data-race in shmem_getattr()\"\n\nRevert d949d1d14fa2 (\"mm: shmem: fix data-race in shmem_getattr()\") as\nsuggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over\nNFS.\n\nAs Hugh commented, \"added just to silence a syzbot sanitizer splat: added\nwhere there has never been any practical problem\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53136",
"url": "https://www.suse.com/security/cve/CVE-2024-53136"
},
{
"category": "external",
"summary": "SUSE Bug 1234161 for CVE-2024-53136",
"url": "https://bugzilla.suse.com/1234161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53136"
},
{
"cve": "CVE-2024-53141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: add missing range check in bitmap_ip_uadt\n\nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,\nthe values of ip and ip_to are slightly swapped. Therefore, the range check\nfor ip should be done later, but this part is missing and it seems that the\nvulnerability occurs.\n\nSo we should add missing range checks and remove unnecessary range checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53141",
"url": "https://www.suse.com/security/cve/CVE-2024-53141"
},
{
"category": "external",
"summary": "SUSE Bug 1234381 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "external",
"summary": "SUSE Bug 1245778 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1245778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53141"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE\n\nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4\n(\"Bluetooth: Always request for user confirmation for Just Works\")\nalways request user confirmation with confirm_hint set since the\nlikes of bluetoothd have dedicated policy around JUST_WORKS method\n(e.g. main.conf:JustWorksRepairing).\n\nCVE: CVE-2024-8805",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53144",
"url": "https://www.suse.com/security/cve/CVE-2024-53144"
},
{
"category": "external",
"summary": "SUSE Bug 1234690 for CVE-2024-53144",
"url": "https://bugzilla.suse.com/1234690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53144"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: Flush partial mappings in error case\n\nIf some remap_pfn_range() calls succeeded before one failed, we still have\nbuffer pages mapped into the userspace page tables when we drop the buffer\nreference with comedi_buf_map_put(bm). The userspace mappings are only\ncleaned up later in the mmap error path.\n\nFix it by explicitly flushing all mappings in our VMA on the error path.\n\nSee commit 79a61cc3fc04 (\"mm: avoid leaving partial pfn mappings around in\nerror case\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53148",
"url": "https://www.suse.com/security/cve/CVE-2024-53148"
},
{
"category": "external",
"summary": "SUSE Bug 1234832 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "external",
"summary": "SUSE Bug 1234833 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53148"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: Address an integer overflow\n\nDan Carpenter reports:\n\u003e Commit 78147ca8b4a9 (\"svcrdma: Add a \"parsed chunk list\" data\n\u003e structure\") from Jun 22, 2020 (linux-next), leads to the following\n\u003e Smatch static checker warning:\n\u003e\n\u003e\tnet/sunrpc/xprtrdma/svc_rdma_recvfrom.c:498 xdr_check_write_chunk()\n\u003e\twarn: potential user controlled sizeof overflow \u0027segcount * 4 * 4\u0027\n\u003e\n\u003e net/sunrpc/xprtrdma/svc_rdma_recvfrom.c\n\u003e 488 static bool xdr_check_write_chunk(struct svc_rdma_recv_ctxt *rctxt)\n\u003e 489 {\n\u003e 490 u32 segcount;\n\u003e 491 __be32 *p;\n\u003e 492\n\u003e 493 if (xdr_stream_decode_u32(\u0026rctxt-\u003erc_stream, \u0026segcount))\n\u003e ^^^^^^^^\n\u003e\n\u003e 494 return false;\n\u003e 495\n\u003e 496 /* A bogus segcount causes this buffer overflow check to fail. */\n\u003e 497 p = xdr_inline_decode(\u0026rctxt-\u003erc_stream,\n\u003e --\u003e 498 segcount * rpcrdma_segment_maxsz * sizeof(*p));\n\u003e\n\u003e\n\u003e segcount is an untrusted u32. On 32bit systems anything \u003e= SIZE_MAX / 16 will\n\u003e have an integer overflow and some those values will be accepted by\n\u003e xdr_inline_decode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53151",
"url": "https://www.suse.com/security/cve/CVE-2024-53151"
},
{
"category": "external",
"summary": "SUSE Bug 1234829 for CVE-2024-53151",
"url": "https://bugzilla.suse.com/1234829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53151"
},
{
"cve": "CVE-2024-53154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clk-apple-nco: Add NULL check in applnco_probe\n\nAdd NULL check in applnco_probe, to handle kernel NULL pointer\ndereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53154",
"url": "https://www.suse.com/security/cve/CVE-2024-53154"
},
{
"category": "external",
"summary": "SUSE Bug 1234826 for CVE-2024-53154",
"url": "https://bugzilla.suse.com/1234826"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53154"
},
{
"cve": "CVE-2024-53155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix uninitialized value in ocfs2_file_read_iter()\n\nSyzbot has reported the following KMSAN splat:\n\nBUG: KMSAN: uninit-value in ocfs2_file_read_iter+0x9a4/0xf80\n ocfs2_file_read_iter+0x9a4/0xf80\n __io_read+0x8d4/0x20f0\n io_read+0x3e/0xf0\n io_issue_sqe+0x42b/0x22c0\n io_wq_submit_work+0xaf9/0xdc0\n io_worker_handle_work+0xd13/0x2110\n io_wq_worker+0x447/0x1410\n ret_from_fork+0x6f/0x90\n ret_from_fork_asm+0x1a/0x30\n\nUninit was created at:\n __alloc_pages_noprof+0x9a7/0xe00\n alloc_pages_mpol_noprof+0x299/0x990\n alloc_pages_noprof+0x1bf/0x1e0\n allocate_slab+0x33a/0x1250\n ___slab_alloc+0x12ef/0x35e0\n kmem_cache_alloc_bulk_noprof+0x486/0x1330\n __io_alloc_req_refill+0x84/0x560\n io_submit_sqes+0x172f/0x2f30\n __se_sys_io_uring_enter+0x406/0x41c0\n __x64_sys_io_uring_enter+0x11f/0x1a0\n x64_sys_call+0x2b54/0x3ba0\n do_syscall_64+0xcd/0x1e0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nSince an instance of \u0027struct kiocb\u0027 may be passed from the block layer\nwith \u0027private\u0027 field uninitialized, introduce \u0027ocfs2_iocb_init_rw_locked()\u0027\nand use it from where \u0027ocfs2_dio_end_io()\u0027 might take care, i.e. in\n\u0027ocfs2_file_read_iter()\u0027 and \u0027ocfs2_file_write_iter()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53155",
"url": "https://www.suse.com/security/cve/CVE-2024-53155"
},
{
"category": "external",
"summary": "SUSE Bug 1234855 for CVE-2024-53155",
"url": "https://bugzilla.suse.com/1234855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53155"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53159"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53159",
"url": "https://www.suse.com/security/cve/CVE-2024-53159"
},
{
"category": "external",
"summary": "SUSE Bug 1234848 for CVE-2024-53159",
"url": "https://bugzilla.suse.com/1234848"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53159"
},
{
"cve": "CVE-2024-53160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu\n\nKCSAN reports a data race when access the krcp-\u003emonitor_work.timer.expires\nvariable in the schedule_delayed_monitor_work() function:\n\n\u003csnip\u003e\nBUG: KCSAN: data-race in __mod_timer / kvfree_call_rcu\n\nread to 0xffff888237d1cce8 of 8 bytes by task 10149 on cpu 1:\n schedule_delayed_monitor_work kernel/rcu/tree.c:3520 [inline]\n kvfree_call_rcu+0x3b8/0x510 kernel/rcu/tree.c:3839\n trie_update_elem+0x47c/0x620 kernel/bpf/lpm_trie.c:441\n bpf_map_update_value+0x324/0x350 kernel/bpf/syscall.c:203\n generic_map_update_batch+0x401/0x520 kernel/bpf/syscall.c:1849\n bpf_map_do_batch+0x28c/0x3f0 kernel/bpf/syscall.c:5143\n __sys_bpf+0x2e5/0x7a0\n __do_sys_bpf kernel/bpf/syscall.c:5741 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5739 [inline]\n __x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5739\n x64_sys_call+0x2625/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nwrite to 0xffff888237d1cce8 of 8 bytes by task 56 on cpu 0:\n __mod_timer+0x578/0x7f0 kernel/time/timer.c:1173\n add_timer_global+0x51/0x70 kernel/time/timer.c:1330\n __queue_delayed_work+0x127/0x1a0 kernel/workqueue.c:2523\n queue_delayed_work_on+0xdf/0x190 kernel/workqueue.c:2552\n queue_delayed_work include/linux/workqueue.h:677 [inline]\n schedule_delayed_monitor_work kernel/rcu/tree.c:3525 [inline]\n kfree_rcu_monitor+0x5e8/0x660 kernel/rcu/tree.c:3643\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0x483/0x9a0 kernel/workqueue.c:3310\n worker_thread+0x51d/0x6f0 kernel/workqueue.c:3391\n kthread+0x1d1/0x210 kernel/kthread.c:389\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 UID: 0 PID: 56 Comm: kworker/u8:4 Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events_unbound kfree_rcu_monitor\n\u003csnip\u003e\n\nkfree_rcu_monitor() rearms the work if a \"krcp\" has to be still\noffloaded and this is done without holding krcp-\u003elock, whereas\nthe kvfree_call_rcu() holds it.\n\nFix it by acquiring the \"krcp-\u003elock\" for kfree_rcu_monitor() so\nboth functions do not race anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53160",
"url": "https://www.suse.com/security/cve/CVE-2024-53160"
},
{
"category": "external",
"summary": "SUSE Bug 1234810 for CVE-2024-53160",
"url": "https://bugzilla.suse.com/1234810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53160"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix bfqq uaf in bfq_limit_depth()\n\nSet new allocated bfqq to bic or remove freed bfqq from bic are both\nprotected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq\nfrom bic without the lock, this can lead to UAF if the io_context is\nshared by multiple tasks.\n\nFor example, test bfq with io_uring can trigger following UAF in v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfqq_group+0x15/0x50\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x80\n print_address_description.constprop.0+0x66/0x300\n print_report+0x3e/0x70\n kasan_report+0xb4/0xf0\n bfqq_group+0x15/0x50\n bfqq_request_over_limit+0x130/0x9a0\n bfq_limit_depth+0x1b5/0x480\n __blk_mq_alloc_requests+0x2b5/0xa00\n blk_mq_get_new_requests+0x11d/0x1d0\n blk_mq_submit_bio+0x286/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __block_write_full_folio+0x3d0/0x640\n writepage_cb+0x3b/0xc0\n write_cache_pages+0x254/0x6c0\n write_cache_pages+0x254/0x6c0\n do_writepages+0x192/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nAllocated by task 808602:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_slab_alloc+0x83/0x90\n kmem_cache_alloc_node+0x1b1/0x6d0\n bfq_get_queue+0x138/0xfa0\n bfq_get_bfqq_handle_split+0xe3/0x2c0\n bfq_init_rq+0x196/0xbb0\n bfq_insert_request.isra.0+0xb5/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_insert_request+0x15d/0x440\n blk_mq_submit_bio+0x8a4/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __blkdev_direct_IO_async+0x2dd/0x330\n blkdev_write_iter+0x39a/0x450\n io_write+0x22a/0x840\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFreed by task 808589:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n __kasan_slab_free+0x126/0x1b0\n kmem_cache_free+0x10c/0x750\n bfq_put_queue+0x2dd/0x770\n __bfq_insert_request.isra.0+0x155/0x7a0\n bfq_insert_request.isra.0+0x122/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_dispatch_plug_list+0x528/0x7e0\n blk_mq_flush_plug_list.part.0+0xe5/0x590\n __blk_flush_plug+0x3b/0x90\n blk_finish_plug+0x40/0x60\n do_writepages+0x19d/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFix the problem by protecting bic_to_bfqq() with bfqd-\u003elock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53166",
"url": "https://www.suse.com/security/cve/CVE-2024-53166"
},
{
"category": "external",
"summary": "SUSE Bug 1234884 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "external",
"summary": "SUSE Bug 1234885 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-53169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fabrics: fix kernel crash while shutting down controller\n\nThe nvme keep-alive operation, which executes at a periodic interval,\ncould potentially sneak in while shutting down a fabric controller.\nThis may lead to a race between the fabric controller admin queue\ndestroy code path (invoked while shutting down controller) and hw/hctx\nqueue dispatcher called from the nvme keep-alive async request queuing\noperation. This race could lead to the kernel crash shown below:\n\nCall Trace:\n autoremove_wake_function+0x0/0xbc (unreliable)\n __blk_mq_sched_dispatch_requests+0x114/0x24c\n blk_mq_sched_dispatch_requests+0x44/0x84\n blk_mq_run_hw_queue+0x140/0x220\n nvme_keep_alive_work+0xc8/0x19c [nvme_core]\n process_one_work+0x200/0x4e0\n worker_thread+0x340/0x504\n kthread+0x138/0x140\n start_kernel_thread+0x14/0x18\n\nWhile shutting down fabric controller, if nvme keep-alive request sneaks\nin then it would be flushed off. The nvme_keep_alive_end_io function is\nthen invoked to handle the end of the keep-alive operation which\ndecrements the admin-\u003eq_usage_counter and assuming this is the last/only\nrequest in the admin queue then the admin-\u003eq_usage_counter becomes zero.\nIf that happens then blk-mq destroy queue operation (blk_mq_destroy_\nqueue()) which could be potentially running simultaneously on another\ncpu (as this is the controller shutdown code path) would forward\nprogress and deletes the admin queue. So, now from this point onward\nwe are not supposed to access the admin queue resources. However the\nissue here\u0027s that the nvme keep-alive thread running hw/hctx queue\ndispatch operation hasn\u0027t yet finished its work and so it could still\npotentially access the admin queue resource while the admin queue had\nbeen already deleted and that causes the above crash.\n\nThe above kernel crash is regression caused due to changes implemented\nin commit a54a93d0e359 (\"nvme: move stopping keep-alive into\nnvme_uninit_ctrl()\"). Ideally we should stop keep-alive before destroyin\ng the admin queue and freeing the admin tagset so that it wouldn\u0027t sneak\nin during the shutdown operation. However we removed the keep alive stop\noperation from the beginning of the controller shutdown code path in commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\")\nand added it under nvme_uninit_ctrl() which executes very late in the\nshutdown code path after the admin queue is destroyed and its tagset is\nremoved. So this change created the possibility of keep-alive sneaking in\nand interfering with the shutdown operation and causing observed kernel\ncrash.\n\nTo fix the observed crash, we decided to move nvme_stop_keep_alive() from\nnvme_uninit_ctrl() to nvme_remove_admin_tag_set(). This change would ensure\nthat we don\u0027t forward progress and delete the admin queue until the keep-\nalive operation is finished (if it\u0027s in-flight) or cancelled and that would\nhelp contain the race condition explained above and hence avoid the crash.\n\nMoving nvme_stop_keep_alive() to nvme_remove_admin_tag_set() instead of\nadding nvme_stop_keep_alive() to the beginning of the controller shutdown\ncode path in nvme_stop_ctrl(), as was the case earlier before commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\"),\nwould help save one callsite of nvme_stop_keep_alive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53169",
"url": "https://www.suse.com/security/cve/CVE-2024-53169"
},
{
"category": "external",
"summary": "SUSE Bug 1234900 for CVE-2024-53169",
"url": "https://bugzilla.suse.com/1234900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53169"
},
{
"cve": "CVE-2024-53171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit\n\nAfter an insertion in TNC, the tree might split and cause a node to\nchange its `znode-\u003eparent`. A further deletion of other nodes in the\ntree (which also could free the nodes), the aforementioned node\u0027s\n`znode-\u003ecparent` could still point to a freed node. This\n`znode-\u003ecparent` may not be updated when getting nodes to commit in\n`ubifs_tnc_start_commit()`. This could then trigger a use-after-free\nwhen accessing the `znode-\u003ecparent` in `write_index()` in\n`ubifs_tnc_end_commit()`.\n\nThis can be triggered by running\n\n rm -f /etc/test-file.bin\n dd if=/dev/urandom of=/etc/test-file.bin bs=1M count=60 conv=fsync\n\nin a loop, and with `CONFIG_UBIFS_FS_AUTHENTICATION`. KASAN then\nreports:\n\n BUG: KASAN: use-after-free in ubifs_tnc_end_commit+0xa5c/0x1950\n Write of size 32 at addr ffffff800a3af86c by task ubifs_bgt0_20/153\n\n Call trace:\n dump_backtrace+0x0/0x340\n show_stack+0x18/0x24\n dump_stack_lvl+0x9c/0xbc\n print_address_description.constprop.0+0x74/0x2b0\n kasan_report+0x1d8/0x1f0\n kasan_check_range+0xf8/0x1a0\n memcpy+0x84/0xf4\n ubifs_tnc_end_commit+0xa5c/0x1950\n do_commit+0x4e0/0x1340\n ubifs_bg_thread+0x234/0x2e0\n kthread+0x36c/0x410\n ret_from_fork+0x10/0x20\n\n Allocated by task 401:\n kasan_save_stack+0x38/0x70\n __kasan_kmalloc+0x8c/0xd0\n __kmalloc+0x34c/0x5bc\n tnc_insert+0x140/0x16a4\n ubifs_tnc_add+0x370/0x52c\n ubifs_jnl_write_data+0x5d8/0x870\n do_writepage+0x36c/0x510\n ubifs_writepage+0x190/0x4dc\n __writepage+0x58/0x154\n write_cache_pages+0x394/0x830\n do_writepages+0x1f0/0x5b0\n filemap_fdatawrite_wbc+0x170/0x25c\n file_write_and_wait_range+0x140/0x190\n ubifs_fsync+0xe8/0x290\n vfs_fsync_range+0xc0/0x1e4\n do_fsync+0x40/0x90\n __arm64_sys_fsync+0x34/0x50\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\n Freed by task 403:\n kasan_save_stack+0x38/0x70\n kasan_set_track+0x28/0x40\n kasan_set_free_info+0x28/0x4c\n __kasan_slab_free+0xd4/0x13c\n kfree+0xc4/0x3a0\n tnc_delete+0x3f4/0xe40\n ubifs_tnc_remove_range+0x368/0x73c\n ubifs_tnc_remove_ino+0x29c/0x2e0\n ubifs_jnl_delete_inode+0x150/0x260\n ubifs_evict_inode+0x1d4/0x2e4\n evict+0x1c8/0x450\n iput+0x2a0/0x3c4\n do_unlinkat+0x2cc/0x490\n __arm64_sys_unlinkat+0x90/0x100\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\nThe offending `memcpy()` in `ubifs_copy_hash()` has a use-after-free\nwhen a node becomes root in TNC but still has a `cparent` to an already\nfreed node. More specifically, consider the following TNC:\n\n zroot\n /\n /\n zp1\n /\n /\n zn\n\nInserting a new node `zn_new` with a key smaller then `zn` will trigger\na split in `tnc_insert()` if `zp1` is full:\n\n zroot\n / \\\n / \\\n zp1 zp2\n / \\\n / \\\n zn_new zn\n\n`zn-\u003eparent` has now been moved to `zp2`, *but* `zn-\u003ecparent` still\npoints to `zp1`.\n\nNow, consider a removal of all the nodes _except_ `zn`. Just when\n`tnc_delete()` is about to delete `zroot` and `zp2`:\n\n zroot\n \\\n \\\n zp2\n \\\n \\\n zn\n\n`zroot` and `zp2` get freed and the tree collapses:\n\n zn\n\n`zn` now becomes the new `zroot`.\n\n`get_znodes_to_commit()` will now only find `zn`, the new `zroot`, and\n`write_index()` will check its `znode-\u003ecparent` that wrongly points to\nthe already freed `zp1`. `ubifs_copy_hash()` thus gets wrongly called\nwith `znode-\u003ecparent-\u003ezbranch[znode-\u003eiip].hash` that triggers the\nuse-after-free!\n\nFix this by explicitly setting `znode-\u003ecparent` to `NULL` in\n`get_znodes_to_commit()` for the root node. The search for the dirty\nnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53171",
"url": "https://www.suse.com/security/cve/CVE-2024-53171"
},
{
"category": "external",
"summary": "SUSE Bug 1234889 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "external",
"summary": "SUSE Bug 1236234 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1236234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53171"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: make sure cache entry active before cache_show\n\nThe function `c_show` was called with protection from RCU. This only\nensures that `cp` will not be freed. Therefore, the reference count for\n`cp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `cache_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `cp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 7 PID: 822 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 7 UID: 0 PID: 822 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n\nCall Trace:\n \u003cTASK\u003e\n c_show+0x2fc/0x380 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53174",
"url": "https://www.suse.com/security/cve/CVE-2024-53174"
},
{
"category": "external",
"summary": "SUSE Bug 1234899 for CVE-2024-53174",
"url": "https://bugzilla.suse.com/1234899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53174"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Add sanity NULL check for the default mmap fault handler\n\nA driver might allow the mmap access before initializing its\nruntime-\u003edma_area properly. Add a proper NULL check before passing to\nvirt_to_page() for avoiding a panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53180",
"url": "https://www.suse.com/security/cve/CVE-2024-53180"
},
{
"category": "external",
"summary": "SUSE Bug 1234929 for CVE-2024-53180",
"url": "https://bugzilla.suse.com/1234929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53180"
},
{
"cve": "CVE-2024-53188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix crash when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe function ath12k_dp_cc_cleanup is called to release resources.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nat RIP: 0010:ath12k_dp_cc_cleanup.part.0+0xb6/0x500 [ath12k]\nCall Trace:\nath12k_dp_cc_cleanup\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set to NULL the released structure in\nath12k_dp_cc_cleanup at the end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53188",
"url": "https://www.suse.com/security/cve/CVE-2024-53188"
},
{
"category": "external",
"summary": "SUSE Bug 1234948 for CVE-2024-53188",
"url": "https://bugzilla.suse.com/1234948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53188"
},
{
"cve": "CVE-2024-53190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures\n\nSyzkaller reported a hung task with uevent_show() on stack trace. That\nspecific issue was addressed by another commit [0], but even with that\nfix applied (for example, running v6.12-rc5) we face another type of hung\ntask that comes from the same reproducer [1]. By investigating that, we\ncould narrow it to the following path:\n\n(a) Syzkaller emulates a Realtek USB WiFi adapter using raw-gadget and\ndummy_hcd infrastructure.\n\n(b) During the probe of rtl8192cu, the driver ends-up performing an efuse\nread procedure (which is related to EEPROM load IIUC), and here lies the\nissue: the function read_efuse() calls read_efuse_byte() many times, as\nloop iterations depending on the efuse size (in our example, 512 in total).\n\nThis procedure for reading efuse bytes relies in a loop that performs an\nI/O read up to *10k* times in case of failures. We measured the time of\nthe loop inside read_efuse_byte() alone, and in this reproducer (which\ninvolves the dummy_hcd emulation layer), it takes 15 seconds each. As a\nconsequence, we have the driver stuck in its probe routine for big time,\nexposing a stack trace like below if we attempt to reboot the system, for\nexample:\n\ntask:kworker/0:3 state:D stack:0 pid:662 tgid:662 ppid:2 flags:0x00004000\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n __schedule+0xe22/0xeb6\n schedule_timeout+0xe7/0x132\n __wait_for_common+0xb5/0x12e\n usb_start_wait_urb+0xc5/0x1ef\n ? usb_alloc_urb+0x95/0xa4\n usb_control_msg+0xff/0x184\n _usbctrl_vendorreq_sync+0xa0/0x161\n _usb_read_sync+0xb3/0xc5\n read_efuse_byte+0x13c/0x146\n read_efuse+0x351/0x5f0\n efuse_read_all_map+0x42/0x52\n rtl_efuse_shadow_map_update+0x60/0xef\n rtl_get_hwinfo+0x5d/0x1c2\n rtl92cu_read_eeprom_info+0x10a/0x8d5\n ? rtl92c_read_chip_version+0x14f/0x17e\n rtl_usb_probe+0x323/0x851\n usb_probe_interface+0x278/0x34b\n really_probe+0x202/0x4a4\n __driver_probe_device+0x166/0x1b2\n driver_probe_device+0x2f/0xd8\n [...]\n\nWe propose hereby to drastically reduce the attempts of doing the I/O\nreads in case of failures, restricted to USB devices (given that\nthey\u0027re inherently slower than PCIe ones). By retrying up to 10 times\n(instead of 10000), we got reponsiveness in the reproducer, while seems\nreasonable to believe that there\u0027s no sane USB device implementation in\nthe field requiring this amount of retries at every I/O read in order\nto properly work. Based on that assumption, it\u0027d be good to have it\nbackported to stable but maybe not since driver implementation (the 10k\nnumber comes from day 0), perhaps up to 6.x series makes sense.\n\n[0] Commit 15fffc6a5624 (\"driver core: Fix uevent_show() vs driver detach race\")\n\n[1] A note about that: this syzkaller report presents multiple reproducers\nthat differs by the type of emulated USB device. For this specific case,\ncheck the entry from 2024/08/08 06:23 in the list of crashes; the C repro\nis available at https://syzkaller.appspot.com/text?tag=ReproC\u0026x=1521fc83980000.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53190",
"url": "https://www.suse.com/security/cve/CVE-2024-53190"
},
{
"category": "external",
"summary": "SUSE Bug 1234950 for CVE-2024-53190",
"url": "https://bugzilla.suse.com/1234950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "low"
}
],
"title": "CVE-2024-53190"
},
{
"cve": "CVE-2024-53191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix warning when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe buffers dp-\u003etx_ring[i].tx_status are released.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nWARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80\nCall Trace:\nfree_large_kmalloc\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set the buffers to NULL after releasing in\norder to avoid the double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53191",
"url": "https://www.suse.com/security/cve/CVE-2024-53191"
},
{
"category": "external",
"summary": "SUSE Bug 1234952 for CVE-2024-53191",
"url": "https://bugzilla.suse.com/1234952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53191"
},
{
"cve": "CVE-2024-53200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in hwss_setup_dpp\n\nThis commit addresses a null pointer dereference issue in\nhwss_setup_dpp(). The issue could occur when pipe_ctx-\u003eplane_state is\nnull. The fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53200",
"url": "https://www.suse.com/security/cve/CVE-2024-53200"
},
{
"category": "external",
"summary": "SUSE Bug 1234968 for CVE-2024-53200",
"url": "https://bugzilla.suse.com/1234968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53200"
},
{
"cve": "CVE-2024-53201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in\ndcn20_program_pipe(). Previously, commit 8e4ed3cf1642 (\"drm/amd/display:\nAdd null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\")\npartially fixed the null pointer dereference issue. However, in\ndcn20_update_dchubp_dpp(), the variable pipe_ctx is passed in, and\nplane_state is accessed again through pipe_ctx. Multiple if statements\ndirectly call attributes of plane_state, leading to potential null\npointer dereference issues. This patch adds necessary null checks to\nensure stability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53201",
"url": "https://www.suse.com/security/cve/CVE-2024-53201"
},
{
"category": "external",
"summary": "SUSE Bug 1234969 for CVE-2024-53201",
"url": "https://bugzilla.suse.com/1234969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53201"
},
{
"cve": "CVE-2024-53202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Fix possible resource leak in fw_log_firmware_info()\n\nThe alg instance should be released under the exception path, otherwise\nthere may be resource leak here.\n\nTo mitigate this, free the alg instance with crypto_free_shash when kmalloc\nfails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53202",
"url": "https://www.suse.com/security/cve/CVE-2024-53202"
},
{
"category": "external",
"summary": "SUSE Bug 1234970 for CVE-2024-53202",
"url": "https://bugzilla.suse.com/1234970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53202"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible deadlocks\n\nThis fixes possible deadlocks like the following caused by\nhci_cmd_sync_dequeue causing the destroy function to run:\n\n INFO: task kworker/u19:0:143 blocked for more than 120 seconds.\n Tainted: G W O 6.8.0-2024-03-19-intel-next-iLS-24ww14 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u19:0 state:D stack:0 pid:143 tgid:143 ppid:2 flags:0x00004000\n Workqueue: hci0 hci_cmd_sync_work [bluetooth]\n Call Trace:\n \u003cTASK\u003e\n __schedule+0x374/0xaf0\n schedule+0x3c/0xf0\n schedule_preempt_disabled+0x1c/0x30\n __mutex_lock.constprop.0+0x3ef/0x7a0\n __mutex_lock_slowpath+0x13/0x20\n mutex_lock+0x3c/0x50\n mgmt_set_connectable_complete+0xa4/0x150 [bluetooth]\n ? kfree+0x211/0x2a0\n hci_cmd_sync_dequeue+0xae/0x130 [bluetooth]\n ? __pfx_cmd_complete_rsp+0x10/0x10 [bluetooth]\n cmd_complete_rsp+0x26/0x80 [bluetooth]\n mgmt_pending_foreach+0x4d/0x70 [bluetooth]\n __mgmt_power_off+0x8d/0x180 [bluetooth]\n ? _raw_spin_unlock_irq+0x23/0x40\n hci_dev_close_sync+0x445/0x5b0 [bluetooth]\n hci_set_powered_sync+0x149/0x250 [bluetooth]\n set_powered_sync+0x24/0x60 [bluetooth]\n hci_cmd_sync_work+0x90/0x150 [bluetooth]\n process_one_work+0x13e/0x300\n worker_thread+0x2f7/0x420\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x107/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x3d/0x60\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53207",
"url": "https://www.suse.com/security/cve/CVE-2024-53207"
},
{
"category": "external",
"summary": "SUSE Bug 1234907 for CVE-2024-53207",
"url": "https://bugzilla.suse.com/1234907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53207"
},
{
"cve": "CVE-2024-53208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync\n\nThis fixes the following crash:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\nRead of size 8 at addr ffff888029b4dd18 by task kworker/u9:0/54\n\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-01155-gf723224742fc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\nq kasan_report+0x143/0x180 mm/kasan/report.c:601\n set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\n hci_cmd_sync_work+0x22b/0x400 net/bluetooth/hci_sync.c:328\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd10 kernel/workqueue.c:3389\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\nAllocated by task 5247:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __kmalloc_cache_noprof+0x19c/0x2c0 mm/slub.c:4193\n kmalloc_noprof include/linux/slab.h:681 [inline]\n kzalloc_noprof include/linux/slab.h:807 [inline]\n mgmt_pending_new+0x65/0x250 net/bluetooth/mgmt_util.c:269\n mgmt_pending_add+0x36/0x120 net/bluetooth/mgmt_util.c:296\n set_powered+0x3cd/0x5e0 net/bluetooth/mgmt.c:1394\n hci_mgmt_cmd+0xc47/0x11d0 net/bluetooth/hci_sock.c:1712\n hci_sock_sendmsg+0x7b8/0x11c0 net/bluetooth/hci_sock.c:1832\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xa72/0xc90 fs/read_write.c:590\n ksys_write+0x1a0/0x2c0 fs/read_write.c:643\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5246:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x149/0x360 mm/slub.c:4598\n settings_rsp+0x2bc/0x390 net/bluetooth/mgmt.c:1443\n mgmt_pending_foreach+0xd1/0x130 net/bluetooth/mgmt_util.c:259\n __mgmt_power_off+0x112/0x420 net/bluetooth/mgmt.c:9455\n hci_dev_close_sync+0x665/0x11a0 net/bluetooth/hci_sync.c:5191\n hci_dev_do_close net/bluetooth/hci_core.c:483 [inline]\n hci_dev_close+0x112/0x210 net/bluetooth/hci_core.c:508\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83gv\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53208",
"url": "https://www.suse.com/security/cve/CVE-2024-53208"
},
{
"category": "external",
"summary": "SUSE Bug 1234909 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "external",
"summary": "SUSE Bug 1236244 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1236244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53208"
},
{
"cve": "CVE-2024-53209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix receive ring space parameters when XDP is active\n\nThe MTU setting at the time an XDP multi-buffer is attached\ndetermines whether the aggregation ring will be used and the\nrx_skb_func handler. This is done in bnxt_set_rx_skb_mode().\n\nIf the MTU is later changed, the aggregation ring setting may need\nto be changed and it may become out-of-sync with the settings\ninitially done in bnxt_set_rx_skb_mode(). This may result in\nrandom memory corruption and crashes as the HW may DMA data larger\nthan the allocated buffer size, such as:\n\nBUG: kernel NULL pointer dereference, address: 00000000000003c0\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 17 PID: 0 Comm: swapper/17 Kdump: loaded Tainted: G S OE 6.1.0-226bf9805506 #1\nHardware name: Wiwynn Delta Lake PVT BZA.02601.0150/Delta Lake-Class1, BIOS F0E_3A12 08/26/2021\nRIP: 0010:bnxt_rx_pkt+0xe97/0x1ae0 [bnxt_en]\nCode: 8b 95 70 ff ff ff 4c 8b 9d 48 ff ff ff 66 41 89 87 b4 00 00 00 e9 0b f7 ff ff 0f b7 43 0a 49 8b 95 a8 04 00 00 25 ff 0f 00 00 \u003c0f\u003e b7 14 42 48 c1 e2 06 49 03 95 a0 04 00 00 0f b6 42 33f\nRSP: 0018:ffffa19f40cc0d18 EFLAGS: 00010202\nRAX: 00000000000001e0 RBX: ffff8e2c805c6100 RCX: 00000000000007ff\nRDX: 0000000000000000 RSI: ffff8e2c271ab990 RDI: ffff8e2c84f12380\nRBP: ffffa19f40cc0e48 R08: 000000000001000d R09: 974ea2fcddfa4cbf\nR10: 0000000000000000 R11: ffffa19f40cc0ff8 R12: ffff8e2c94b58980\nR13: ffff8e2c952d6600 R14: 0000000000000016 R15: ffff8e2c271ab990\nFS: 0000000000000000(0000) GS:ffff8e3b3f840000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000000003c0 CR3: 0000000e8580a004 CR4: 00000000007706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n __bnxt_poll_work+0x1c2/0x3e0 [bnxt_en]\n\nTo address the issue, we now call bnxt_set_rx_skb_mode() within\nbnxt_change_mtu() to properly set the AGG rings configuration and\nupdate rx_skb_func based on the new MTU value.\nAdditionally, BNXT_FLAG_NO_AGG_RINGS is cleared at the beginning of\nbnxt_set_rx_skb_mode() to make sure it gets set or cleared based on\nthe current MTU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53209",
"url": "https://www.suse.com/security/cve/CVE-2024-53209"
},
{
"category": "external",
"summary": "SUSE Bug 1235002 for CVE-2024-53209",
"url": "https://bugzilla.suse.com/1235002"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53209"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()\n\nThere\u0027s issue as follows:\nRPC: Registered rdma transport module.\nRPC: Registered rdma backchannel transport module.\nRPC: Unregistered rdma transport module.\nRPC: Unregistered rdma backchannel transport module.\nBUG: unable to handle page fault for address: fffffbfff80c609a\nPGD 123fee067 P4D 123fee067 PUD 123fea067 PMD 10c624067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nRIP: 0010:percpu_counter_destroy_many+0xf7/0x2a0\nCall Trace:\n \u003cTASK\u003e\n __die+0x1f/0x70\n page_fault_oops+0x2cd/0x860\n spurious_kernel_fault+0x36/0x450\n do_kern_addr_fault+0xca/0x100\n exc_page_fault+0x128/0x150\n asm_exc_page_fault+0x26/0x30\n percpu_counter_destroy_many+0xf7/0x2a0\n mmdrop+0x209/0x350\n finish_task_switch.isra.0+0x481/0x840\n schedule_tail+0xe/0xd0\n ret_from_fork+0x23/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nIf register_sysctl() return NULL, then svc_rdma_proc_cleanup() will not\ndestroy the percpu counters which init in svc_rdma_proc_init().\nIf CONFIG_HOTPLUG_CPU is enabled, residual nodes may be in the\n\u0027percpu_counters\u0027 list. The above issue may occur once the module is\nremoved. If the CONFIG_HOTPLUG_CPU configuration is not enabled, memory\nleakage occurs.\nTo solve above issue just destroy all percpu counters when\nregister_sysctl() return NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53215",
"url": "https://www.suse.com/security/cve/CVE-2024-53215"
},
{
"category": "external",
"summary": "SUSE Bug 1234962 for CVE-2024-53215",
"url": "https://bugzilla.suse.com/1234962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53215"
},
{
"cve": "CVE-2024-53216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: release svc_expkey/svc_export with rcu_work\n\nThe last reference for `cache_head` can be reduced to zero in `c_show`\nand `e_show`(using `rcu_read_lock` and `rcu_read_unlock`). Consequently,\n`svc_export_put` and `expkey_put` will be invoked, leading to two\nissues:\n\n1. The `svc_export_put` will directly free ex_uuid. However,\n `e_show`/`c_show` will access `ex_uuid` after `cache_put`, which can\n trigger a use-after-free issue, shown below.\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in svc_export_show+0x362/0x430 [nfsd]\n Read of size 1 at addr ff11000010fdc120 by task cat/870\n\n CPU: 1 UID: 0 PID: 870 Comm: cat Not tainted 6.12.0-rc3+ #1\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n 1.16.1-2.fc37 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x53/0x70\n print_address_description.constprop.0+0x2c/0x3a0\n print_report+0xb9/0x280\n kasan_report+0xae/0xe0\n svc_export_show+0x362/0x430 [nfsd]\n c_show+0x161/0x390 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Allocated by task 830:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __kmalloc_node_track_caller_noprof+0x1bc/0x400\n kmemdup_noprof+0x22/0x50\n svc_export_parse+0x8a9/0xb80 [nfsd]\n cache_do_downcall+0x71/0xa0 [sunrpc]\n cache_write_procfs+0x8e/0xd0 [sunrpc]\n proc_reg_write+0xe1/0x140\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 868:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x37/0x50\n kfree+0xf3/0x3e0\n svc_export_put+0x87/0xb0 [nfsd]\n cache_purge+0x17f/0x1f0 [sunrpc]\n nfsd_destroy_serv+0x226/0x2d0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n2. We cannot sleep while using `rcu_read_lock`/`rcu_read_unlock`.\n However, `svc_export_put`/`expkey_put` will call path_put, which\n subsequently triggers a sleeping operation due to the following\n `dput`.\n\n =============================\n WARNING: suspicious RCU usage\n 5.10.0-dirty #141 Not tainted\n -----------------------------\n ...\n Call Trace:\n dump_stack+0x9a/0xd0\n ___might_sleep+0x231/0x240\n dput+0x39/0x600\n path_put+0x1b/0x30\n svc_export_put+0x17/0x80\n e_show+0x1c9/0x200\n seq_read_iter+0x63f/0x7c0\n seq_read+0x226/0x2d0\n vfs_read+0x113/0x2c0\n ksys_read+0xc9/0x170\n do_syscall_64+0x33/0x40\n entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nFix these issues by using `rcu_work` to help release\n`svc_expkey`/`svc_export`. This approach allows for an asynchronous\ncontext to invoke `path_put` and also facilitates the freeing of\n`uuid/exp/key` after an RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53216",
"url": "https://www.suse.com/security/cve/CVE-2024-53216"
},
{
"category": "external",
"summary": "SUSE Bug 1235003 for CVE-2024-53216",
"url": "https://bugzilla.suse.com/1235003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53216"
},
{
"cve": "CVE-2024-53217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent NULL dereference in nfsd4_process_cb_update()\n\n@ses is initialized to NULL. If __nfsd4_find_backchannel() finds no\navailable backchannel session, setup_callback_client() will try to\ndereference @ses and segfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53217",
"url": "https://www.suse.com/security/cve/CVE-2024-53217"
},
{
"category": "external",
"summary": "SUSE Bug 1234999 for CVE-2024-53217",
"url": "https://bugzilla.suse.com/1234999"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53217"
},
{
"cve": "CVE-2024-53222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram-\u003ecomp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram-\u003einit_lock in other places and no such problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53222",
"url": "https://www.suse.com/security/cve/CVE-2024-53222"
},
{
"category": "external",
"summary": "SUSE Bug 1234974 for CVE-2024-53222",
"url": "https://bugzilla.suse.com/1234974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53222"
},
{
"cve": "CVE-2024-53224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Move events notifier registration to be after device registration\n\nMove pkey change work initialization and cleanup from device resources\nstage to notifier stage, since this is the stage which handles this work\nevents.\n\nFix a race between the device deregistration and pkey change work by moving\nMLX5_IB_STAGE_DEVICE_NOTIFIER to be after MLX5_IB_STAGE_IB_REG in order to\nensure that the notifier is deregistered before the device during cleanup.\nWhich ensures there are no works that are being executed after the\ndevice has already unregistered which can cause the panic below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 1 PID: 630071 Comm: kworker/1:2 Kdump: loaded Tainted: G W OE --------- --- 5.14.0-162.6.1.el9_1.x86_64 #1\nHardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 02/27/2023\nWorkqueue: events pkey_change_handler [mlx5_ib]\nRIP: 0010:setup_qp+0x38/0x1f0 [mlx5_ib]\nCode: ee 41 54 45 31 e4 55 89 f5 53 48 89 fb 48 83 ec 20 8b 77 08 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 48 8b 07 48 8d 4c 24 16 \u003c4c\u003e 8b 38 49 8b 87 80 0b 00 00 4c 89 ff 48 8b 80 08 05 00 00 8b 40\nRSP: 0018:ffffbcc54068be20 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff954054494128 RCX: ffffbcc54068be36\nRDX: ffff954004934000 RSI: 0000000000000001 RDI: ffff954054494128\nRBP: 0000000000000023 R08: ffff954001be2c20 R09: 0000000000000001\nR10: ffff954001be2c20 R11: ffff9540260133c0 R12: 0000000000000000\nR13: 0000000000000023 R14: 0000000000000000 R15: ffff9540ffcb0905\nFS: 0000000000000000(0000) GS:ffff9540ffc80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000010625c001 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\nmlx5_ib_gsi_pkey_change+0x20/0x40 [mlx5_ib]\nprocess_one_work+0x1e8/0x3c0\nworker_thread+0x50/0x3b0\n? rescuer_thread+0x380/0x380\nkthread+0x149/0x170\n? set_kthread_struct+0x50/0x50\nret_from_fork+0x22/0x30\nModules linked in: rdma_ucm(OE) rdma_cm(OE) iw_cm(OE) ib_ipoib(OE) ib_cm(OE) ib_umad(OE) mlx5_ib(OE) mlx5_fwctl(OE) fwctl(OE) ib_uverbs(OE) mlx5_core(OE) mlxdevm(OE) ib_core(OE) mlx_compat(OE) psample mlxfw(OE) tls knem(OE) netconsole nfsv3 nfs_acl nfs lockd grace fscache netfs qrtr rfkill sunrpc intel_rapl_msr intel_rapl_common rapl hv_balloon hv_utils i2c_piix4 pcspkr joydev fuse ext4 mbcache jbd2 sr_mod sd_mod cdrom t10_pi sg ata_generic pci_hyperv pci_hyperv_intf hyperv_drm drm_shmem_helper drm_kms_helper hv_storvsc syscopyarea hv_netvsc sysfillrect sysimgblt hid_hyperv fb_sys_fops scsi_transport_fc hyperv_keyboard drm ata_piix crct10dif_pclmul crc32_pclmul crc32c_intel libata ghash_clmulni_intel hv_vmbus serio_raw [last unloaded: ib_core]\nCR2: 0000000000000000\n---[ end trace f6f8be4eae12f7bc ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53224",
"url": "https://www.suse.com/security/cve/CVE-2024-53224"
},
{
"category": "external",
"summary": "SUSE Bug 1235009 for CVE-2024-53224",
"url": "https://bugzilla.suse.com/1235009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53224"
},
{
"cve": "CVE-2024-53229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix the qp flush warnings in req\n\nWhen the qp is in error state, the status of WQEs in the queue should be\nset to error. Or else the following will appear.\n\n[ 920.617269] WARNING: CPU: 1 PID: 21 at drivers/infiniband/sw/rxe/rxe_comp.c:756 rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.617744] Modules linked in: rnbd_client(O) rtrs_client(O) rtrs_core(O) rdma_ucm rdma_cm iw_cm ib_cm crc32_generic rdma_rxe ip6_udp_tunnel udp_tunnel ib_uverbs ib_core loop brd null_blk ipv6\n[ 920.618516] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G O 6.1.113-storage+ #65\n[ 920.618986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n[ 920.619396] RIP: 0010:rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.619658] Code: 0f b6 84 24 3a 02 00 00 41 89 84 24 44 04 00 00 e9 2a f7 ff ff 39 ca bb 03 00 00 00 b8 0e 00 00 00 48 0f 45 d8 e9 15 f7 ff ff \u003c0f\u003e 0b e9 cb f8 ff ff 41 bf f5 ff ff ff e9 08 f8 ff ff 49 8d bc 24\n[ 920.620482] RSP: 0018:ffff97b7c00bbc38 EFLAGS: 00010246\n[ 920.620817] RAX: 0000000000000000 RBX: 000000000000000c RCX: 0000000000000008\n[ 920.621183] RDX: ffff960dc396ebc0 RSI: 0000000000005400 RDI: ffff960dc4e2fbac\n[ 920.621548] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffffac406450\n[ 920.621884] R10: ffffffffac4060c0 R11: 0000000000000001 R12: ffff960dc4e2f800\n[ 920.622254] R13: ffff960dc4e2f928 R14: ffff97b7c029c580 R15: 0000000000000000\n[ 920.622609] FS: 0000000000000000(0000) GS:ffff960ef7d00000(0000) knlGS:0000000000000000\n[ 920.622979] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 920.623245] CR2: 00007fa056965e90 CR3: 00000001107f1000 CR4: 00000000000006e0\n[ 920.623680] Call Trace:\n[ 920.623815] \u003cTASK\u003e\n[ 920.623933] ? __warn+0x79/0xc0\n[ 920.624116] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.624356] ? report_bug+0xfb/0x150\n[ 920.624594] ? handle_bug+0x3c/0x60\n[ 920.624796] ? exc_invalid_op+0x14/0x70\n[ 920.624976] ? asm_exc_invalid_op+0x16/0x20\n[ 920.625203] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.625474] ? rxe_completer+0x329/0xcc0 [rdma_rxe]\n[ 920.625749] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.626037] rxe_requester+0x625/0xde0 [rdma_rxe]\n[ 920.626310] ? rxe_cq_post+0xe2/0x180 [rdma_rxe]\n[ 920.626583] ? do_complete+0x18d/0x220 [rdma_rxe]\n[ 920.626812] ? rxe_completer+0x1a3/0xcc0 [rdma_rxe]\n[ 920.627050] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.627285] tasklet_action_common.constprop.0+0xa4/0x120\n[ 920.627522] handle_softirqs+0xc2/0x250\n[ 920.627728] ? sort_range+0x20/0x20\n[ 920.627942] run_ksoftirqd+0x1f/0x30\n[ 920.628158] smpboot_thread_fn+0xc7/0x1b0\n[ 920.628334] kthread+0xd6/0x100\n[ 920.628504] ? kthread_complete_and_exit+0x20/0x20\n[ 920.628709] ret_from_fork+0x1f/0x30\n[ 920.628892] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53229",
"url": "https://www.suse.com/security/cve/CVE-2024-53229"
},
{
"category": "external",
"summary": "SUSE Bug 1234905 for CVE-2024-53229",
"url": "https://bugzilla.suse.com/1234905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53229"
},
{
"cve": "CVE-2024-53234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle NONHEAD !delta[1] lclusters gracefully\n\nsyzbot reported a WARNING in iomap_iter_done:\n iomap_fiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80\n ioctl_fiemap fs/ioctl.c:220 [inline]\n\nGenerally, NONHEAD lclusters won\u0027t have delta[1]==0, except for crafted\nimages and filesystems created by pre-1.0 mkfs versions.\n\nPreviously, it would immediately bail out if delta[1]==0, which led to\ninadequate decompressed lengths (thus FIEMAP is impacted). Treat it as\ndelta[1]=1 to work around these legacy mkfs versions.\n\n`lclusterbits \u003e 14` is illegal for compact indexes, error out too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53234",
"url": "https://www.suse.com/security/cve/CVE-2024-53234"
},
{
"category": "external",
"summary": "SUSE Bug 1235045 for CVE-2024-53234",
"url": "https://bugzilla.suse.com/1235045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53234"
},
{
"cve": "CVE-2024-53237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: fix use-after-free in device_for_each_child()\n\nSyzbot has reported the following KASAN splat:\n\nBUG: KASAN: slab-use-after-free in device_for_each_child+0x18f/0x1a0\nRead of size 8 at addr ffff88801f605308 by task kbnepd bnep0/4980\n\nCPU: 0 UID: 0 PID: 4980 Comm: kbnepd bnep0 Not tainted 6.12.0-rc4-00161-gae90f6a6170d #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x100/0x190\n ? device_for_each_child+0x18f/0x1a0\n print_report+0x13a/0x4cb\n ? __virt_addr_valid+0x5e/0x590\n ? __phys_addr+0xc6/0x150\n ? device_for_each_child+0x18f/0x1a0\n kasan_report+0xda/0x110\n ? device_for_each_child+0x18f/0x1a0\n ? __pfx_dev_memalloc_noio+0x10/0x10\n device_for_each_child+0x18f/0x1a0\n ? __pfx_device_for_each_child+0x10/0x10\n pm_runtime_set_memalloc_noio+0xf2/0x180\n netdev_unregister_kobject+0x1ed/0x270\n unregister_netdevice_many_notify+0x123c/0x1d80\n ? __mutex_trylock_common+0xde/0x250\n ? __pfx_unregister_netdevice_many_notify+0x10/0x10\n ? trace_contention_end+0xe6/0x140\n ? __mutex_lock+0x4e7/0x8f0\n ? __pfx_lock_acquire.part.0+0x10/0x10\n ? rcu_is_watching+0x12/0xc0\n ? unregister_netdev+0x12/0x30\n unregister_netdevice_queue+0x30d/0x3f0\n ? __pfx_unregister_netdevice_queue+0x10/0x10\n ? __pfx_down_write+0x10/0x10\n unregister_netdev+0x1c/0x30\n bnep_session+0x1fb3/0x2ab0\n ? __pfx_bnep_session+0x10/0x10\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_woken_wake_function+0x10/0x10\n ? __kthread_parkme+0x132/0x200\n ? __pfx_bnep_session+0x10/0x10\n ? kthread+0x13a/0x370\n ? __pfx_bnep_session+0x10/0x10\n kthread+0x2b7/0x370\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x48/0x80\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 4974:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n __kmalloc_noprof+0x1d1/0x440\n hci_alloc_dev_priv+0x1d/0x2820\n __vhci_create_device+0xef/0x7d0\n vhci_write+0x2c7/0x480\n vfs_write+0x6a0/0xfc0\n ksys_write+0x12f/0x260\n do_syscall_64+0xc7/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 4979:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x4f/0x70\n kfree+0x141/0x490\n hci_release_dev+0x4d9/0x600\n bt_host_release+0x6a/0xb0\n device_release+0xa4/0x240\n kobject_put+0x1ec/0x5a0\n put_device+0x1f/0x30\n vhci_release+0x81/0xf0\n __fput+0x3f6/0xb30\n task_work_run+0x151/0x250\n do_exit+0xa79/0x2c30\n do_group_exit+0xd5/0x2a0\n get_signal+0x1fcd/0x2210\n arch_do_signal_or_restart+0x93/0x780\n syscall_exit_to_user_mode+0x140/0x290\n do_syscall_64+0xd4/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nIn \u0027hci_conn_del_sysfs()\u0027, \u0027device_unregister()\u0027 may be called when\nan underlying (kobject) reference counter is greater than 1. This\nmeans that reparenting (happened when the device is actually freed)\nis delayed and, during that delay, parent controller device (hciX)\nmay be deleted. Since the latter may create a dangling pointer to\nfreed parent, avoid that scenario by reparenting to NULL explicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53237",
"url": "https://www.suse.com/security/cve/CVE-2024-53237"
},
{
"category": "external",
"summary": "SUSE Bug 1235007 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "external",
"summary": "SUSE Bug 1235008 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235008"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-53237"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-56536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56536"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cw1200: Fix potential NULL dereference\n\nA recent refactoring was identified by static analysis to\ncause a potential NULL dereference, fix this!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56536",
"url": "https://www.suse.com/security/cve/CVE-2024-56536"
},
{
"category": "external",
"summary": "SUSE Bug 1234911 for CVE-2024-56536",
"url": "https://bugzilla.suse.com/1234911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56536"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix usage slab after free\n\n[ +0.000021] BUG: KASAN: slab-use-after-free in drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000027] Read of size 8 at addr ffff8881b8605f88 by task amd_pci_unplug/2147\n\n[ +0.000023] CPU: 6 PID: 2147 Comm: amd_pci_unplug Not tainted 6.10.0+ #1\n[ +0.000016] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[ +0.000016] Call Trace:\n[ +0.000008] \u003cTASK\u003e\n[ +0.000009] dump_stack_lvl+0x76/0xa0\n[ +0.000017] print_report+0xce/0x5f0\n[ +0.000017] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] ? srso_return_thunk+0x5/0x5f\n[ +0.000015] ? kasan_complete_mode_report_info+0x72/0x200\n[ +0.000016] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] kasan_report+0xbe/0x110\n[ +0.000015] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000023] __asan_report_load8_noabort+0x14/0x30\n[ +0.000014] drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000016] ? __pfx_drm_sched_entity_flush+0x10/0x10 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? enable_work+0x124/0x220\n[ +0.000015] ? __pfx_enable_work+0x10/0x10\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? free_large_kmalloc+0x85/0xf0\n[ +0.000016] drm_sched_entity_destroy+0x18/0x30 [gpu_sched]\n[ +0.000020] amdgpu_vce_sw_fini+0x55/0x170 [amdgpu]\n[ +0.000735] ? __kasan_check_read+0x11/0x20\n[ +0.000016] vce_v4_0_sw_fini+0x80/0x110 [amdgpu]\n[ +0.000726] amdgpu_device_fini_sw+0x331/0xfc0 [amdgpu]\n[ +0.000679] ? mutex_unlock+0x80/0xe0\n[ +0.000017] ? __pfx_amdgpu_device_fini_sw+0x10/0x10 [amdgpu]\n[ +0.000662] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? mutex_unlock+0x80/0xe0\n[ +0.000016] amdgpu_driver_release_kms+0x16/0x80 [amdgpu]\n[ +0.000663] drm_minor_release+0xc9/0x140 [drm]\n[ +0.000081] drm_release+0x1fd/0x390 [drm]\n[ +0.000082] __fput+0x36c/0xad0\n[ +0.000018] __fput_sync+0x3c/0x50\n[ +0.000014] __x64_sys_close+0x7d/0xe0\n[ +0.000014] x64_sys_call+0x1bc6/0x2680\n[ +0.000014] do_syscall_64+0x70/0x130\n[ +0.000014] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit_to_user_mode+0x60/0x190\n[ +0.000015] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit+0x43/0x50\n[ +0.000012] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? exc_page_fault+0x7c/0x110\n[ +0.000015] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ +0.000014] RIP: 0033:0x7ffff7b14f67\n[ +0.000013] Code: ff e8 0d 16 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 03 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 41 c3 48 83 ec 18 89 7c 24 0c e8 73 ba f7 ff\n[ +0.000026] RSP: 002b:00007fffffffe378 EFLAGS: 00000246 ORIG_RAX: 0000000000000003\n[ +0.000019] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffff7b14f67\n[ +0.000014] RDX: 0000000000000000 RSI: 00007ffff7f6f47a RDI: 0000000000000003\n[ +0.000014] RBP: 00007fffffffe3a0 R08: 0000555555569890 R09: 0000000000000000\n[ +0.000014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffffe5c8\n[ +0.000013] R13: 00005555555552a9 R14: 0000555555557d48 R15: 00007ffff7ffd040\n[ +0.000020] \u003c/TASK\u003e\n\n[ +0.000016] Allocated by task 383 on cpu 7 at 26.880319s:\n[ +0.000014] kasan_save_stack+0x28/0x60\n[ +0.000008] kasan_save_track+0x18/0x70\n[ +0.000007] kasan_save_alloc_info+0x38/0x60\n[ +0.000007] __kasan_kmalloc+0xc1/0xd0\n[ +0.000007] kmalloc_trace_noprof+0x180/0x380\n[ +0.000007] drm_sched_init+0x411/0xec0 [gpu_sched]\n[ +0.000012] amdgpu_device_init+0x695f/0xa610 [amdgpu]\n[ +0.000658] amdgpu_driver_load_kms+0x1a/0x120 [amdgpu]\n[ +0.000662] amdgpu_pci_p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56551",
"url": "https://www.suse.com/security/cve/CVE-2024-56551"
},
{
"category": "external",
"summary": "SUSE Bug 1235075 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "external",
"summary": "SUSE Bug 1235102 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56551"
},
{
"cve": "CVE-2024-56562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56562"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()\n\nif (dev-\u003eboardinfo \u0026\u0026 dev-\u003eboardinfo-\u003einit_dyn_addr)\n ^^^ here check \"init_dyn_addr\"\n\ti3c_bus_set_addr_slot_status(\u0026master-\u003ebus, dev-\u003einfo.dyn_addr, ...)\n\t\t\t\t\t\t ^^^^\n\t\t\t\t\t\t\tfree \"dyn_addr\"\nFix copy/paste error \"dyn_addr\" by replacing it with \"init_dyn_addr\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56562",
"url": "https://www.suse.com/security/cve/CVE-2024-56562"
},
{
"category": "external",
"summary": "SUSE Bug 1234930 for CVE-2024-56562",
"url": "https://bugzilla.suse.com/1234930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56562"
},
{
"cve": "CVE-2024-56566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: Avoid list corruption when removing a slab from the full list\n\nBoot with slub_debug=UFPZ.\n\nIf allocated object failed in alloc_consistency_checks, all objects of\nthe slab will be marked as used, and then the slab will be removed from\nthe partial list.\n\nWhen an object belonging to the slab got freed later, the remove_full()\nfunction is called. Because the slab is neither on the partial list nor\non the full list, it eventually lead to a list corruption (actually a\nlist poison being detected).\n\nSo we need to mark and isolate the slab page with metadata corruption,\ndo not put it back in circulation.\n\nBecause the debug caches avoid all the fastpaths, reusing the frozen bit\nto mark slab page with metadata corruption seems to be fine.\n\n[ 4277.385669] list_del corruption, ffffea00044b3e50-\u003enext is LIST_POISON1 (dead000000000100)\n[ 4277.387023] ------------[ cut here ]------------\n[ 4277.387880] kernel BUG at lib/list_debug.c:56!\n[ 4277.388680] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 4277.389562] CPU: 5 PID: 90 Comm: kworker/5:1 Kdump: loaded Tainted: G OE 6.6.1-1 #1\n[ 4277.392113] Workqueue: xfs-inodegc/vda1 xfs_inodegc_worker [xfs]\n[ 4277.393551] RIP: 0010:__list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.394518] Code: 48 91 82 e8 37 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 28 49 91 82 e8 26 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 58 49 91\n[ 4277.397292] RSP: 0018:ffffc90000333b38 EFLAGS: 00010082\n[ 4277.398202] RAX: 000000000000004e RBX: ffffea00044b3e50 RCX: 0000000000000000\n[ 4277.399340] RDX: 0000000000000002 RSI: ffffffff828f8715 RDI: 00000000ffffffff\n[ 4277.400545] RBP: ffffea00044b3e40 R08: 0000000000000000 R09: ffffc900003339f0\n[ 4277.401710] R10: 0000000000000003 R11: ffffffff82d44088 R12: ffff888112cf9910\n[ 4277.402887] R13: 0000000000000001 R14: 0000000000000001 R15: ffff8881000424c0\n[ 4277.404049] FS: 0000000000000000(0000) GS:ffff88842fd40000(0000) knlGS:0000000000000000\n[ 4277.405357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4277.406389] CR2: 00007f2ad0b24000 CR3: 0000000102a3a006 CR4: 00000000007706e0\n[ 4277.407589] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4277.408780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4277.410000] PKRU: 55555554\n[ 4277.410645] Call Trace:\n[ 4277.411234] \u003cTASK\u003e\n[ 4277.411777] ? die+0x32/0x80\n[ 4277.412439] ? do_trap+0xd6/0x100\n[ 4277.413150] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.414158] ? do_error_trap+0x6a/0x90\n[ 4277.414948] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.415915] ? exc_invalid_op+0x4c/0x60\n[ 4277.416710] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.417675] ? asm_exc_invalid_op+0x16/0x20\n[ 4277.418482] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.419466] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.420410] free_to_partial_list+0x515/0x5e0\n[ 4277.421242] ? xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.422298] xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.423316] ? xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.424383] xfs_bmap_del_extent_delay+0x4fe/0x7d0 [xfs]\n[ 4277.425490] __xfs_bunmapi+0x50d/0x840 [xfs]\n[ 4277.426445] xfs_itruncate_extents_flags+0x13a/0x490 [xfs]\n[ 4277.427553] xfs_inactive_truncate+0xa3/0x120 [xfs]\n[ 4277.428567] xfs_inactive+0x22d/0x290 [xfs]\n[ 4277.429500] xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.430479] process_one_work+0x171/0x340\n[ 4277.431227] worker_thread+0x277/0x390\n[ 4277.431962] ? __pfx_worker_thread+0x10/0x10\n[ 4277.432752] kthread+0xf0/0x120\n[ 4277.433382] ? __pfx_kthread+0x10/0x10\n[ 4277.434134] ret_from_fork+0x2d/0x50\n[ 4277.434837] ? __pfx_kthread+0x10/0x10\n[ 4277.435566] ret_from_fork_asm+0x1b/0x30\n[ 4277.436280] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56566",
"url": "https://www.suse.com/security/cve/CVE-2024-56566"
},
{
"category": "external",
"summary": "SUSE Bug 1235033 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "external",
"summary": "SUSE Bug 1235034 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56566"
},
{
"cve": "CVE-2024-56567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nad7780: fix division by zero in ad7780_write_raw()\n\nIn the ad7780_write_raw() , val2 can be zero, which might lead to a\ndivision by zero error in DIV_ROUND_CLOSEST(). The ad7780_write_raw()\nis based on iio_info\u0027s write_raw. While val is explicitly declared that\ncan be zero (in read mode), val2 is not specified to be non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56567",
"url": "https://www.suse.com/security/cve/CVE-2024-56567"
},
{
"category": "external",
"summary": "SUSE Bug 1234916 for CVE-2024-56567",
"url": "https://bugzilla.suse.com/1234916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56567"
},
{
"cve": "CVE-2024-56576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56576"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: tc358743: Fix crash in the probe error path when using polling\n\nIf an error occurs in the probe() function, we should remove the polling\ntimer that was alarmed earlier, otherwise the timer is called with\narguments that are already freed, which results in a crash.\n\n------------[ cut here ]------------\nWARNING: CPU: 3 PID: 0 at kernel/time/timer.c:1830 __run_timers+0x244/0x268\nModules linked in:\nCPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted 6.11.0 #226\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\npstate: 804000c9 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : __run_timers+0x244/0x268\nlr : __run_timers+0x1d4/0x268\nsp : ffffff80eff2baf0\nx29: ffffff80eff2bb50 x28: 7fffffffffffffff x27: ffffff80eff2bb00\nx26: ffffffc080f669c0 x25: ffffff80efef6bf0 x24: ffffff80eff2bb00\nx23: 0000000000000000 x22: dead000000000122 x21: 0000000000000000\nx20: ffffff80efef6b80 x19: ffffff80041c8bf8 x18: ffffffffffffffff\nx17: ffffffc06f146000 x16: ffffff80eff27dc0 x15: 000000000000003e\nx14: 0000000000000000 x13: 00000000000054da x12: 0000000000000000\nx11: 00000000000639c0 x10: 000000000000000c x9 : 0000000000000009\nx8 : ffffff80eff2cb40 x7 : ffffff80eff2cb40 x6 : ffffff8002bee480\nx5 : ffffffc080cb2220 x4 : ffffffc080cb2150 x3 : 00000000000f4240\nx2 : 0000000000000102 x1 : ffffff80eff2bb00 x0 : ffffff80041c8bf0\nCall trace:\n __run_timers+0x244/0x268\n timer_expire_remote+0x50/0x68\n tmigr_handle_remote+0x388/0x39c\n run_timer_softirq+0x38/0x44\n handle_softirqs+0x138/0x298\n __do_softirq+0x14/0x20\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0x9c/0xcc\n el1_interrupt+0x48/0xc0\n el1h_64_irq_handler+0x18/0x24\n el1h_64_irq+0x7c/0x80\n default_idle_call+0x34/0x68\n do_idle+0x23c/0x294\n cpu_startup_entry+0x38/0x3c\n secondary_start_kernel+0x128/0x160\n __secondary_switched+0xb8/0xbc\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56576",
"url": "https://www.suse.com/security/cve/CVE-2024-56576"
},
{
"category": "external",
"summary": "SUSE Bug 1235019 for CVE-2024-56576",
"url": "https://bugzilla.suse.com/1235019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56576"
},
{
"cve": "CVE-2024-56582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56582"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free in btrfs_encoded_read_endio()\n\nShinichiro reported the following use-after free that sometimes is\nhappening in our CI system when running fstests\u0027 btrfs/284 on a TCMU\nrunner device:\n\n BUG: KASAN: slab-use-after-free in lock_release+0x708/0x780\n Read of size 8 at addr ffff888106a83f18 by task kworker/u80:6/219\n\n CPU: 8 UID: 0 PID: 219 Comm: kworker/u80:6 Not tainted 6.12.0-rc6-kts+ #15\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6e/0xa0\n ? lock_release+0x708/0x780\n print_report+0x174/0x505\n ? lock_release+0x708/0x780\n ? __virt_addr_valid+0x224/0x410\n ? lock_release+0x708/0x780\n kasan_report+0xda/0x1b0\n ? lock_release+0x708/0x780\n ? __wake_up+0x44/0x60\n lock_release+0x708/0x780\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? lock_is_held_type+0x9a/0x110\n _raw_spin_unlock_irqrestore+0x1f/0x60\n __wake_up+0x44/0x60\n btrfs_encoded_read_endio+0x14b/0x190 [btrfs]\n btrfs_check_read_bio+0x8d9/0x1360 [btrfs]\n ? lock_release+0x1b0/0x780\n ? trace_lock_acquire+0x12f/0x1a0\n ? __pfx_btrfs_check_read_bio+0x10/0x10 [btrfs]\n ? process_one_work+0x7e3/0x1460\n ? lock_acquire+0x31/0xc0\n ? process_one_work+0x7e3/0x1460\n process_one_work+0x85c/0x1460\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x16c/0x240\n worker_thread+0x5e6/0xfc0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2c3/0x3a0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_encoded_read_regular_fill_pages+0x16c/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x4f/0x70\n kfree+0x143/0x490\n btrfs_encoded_read_regular_fill_pages+0x531/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n The buggy address belongs to the object at ffff888106a83f00\n which belongs to the cache kmalloc-rnd-07-96 of size 96\n The buggy address is located 24 bytes inside of\n freed 96-byte region [ffff888106a83f00, ffff888106a83f60)\n\n The buggy address belongs to the physical page:\n page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888106a83800 pfn:0x106a83\n flags: 0x17ffffc0000000(node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f5(slab)\n raw: 0017ffffc0000000 ffff888100053680 ffffea0004917200 0000000000000004\n raw: ffff888106a83800 0000000080200019 00000001f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888106a83e00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a83e80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n \u003effff888106a83f00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ^\n ffff888106a83f80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a84000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ==================================================================\n\nFurther analyzing the trace and \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56582",
"url": "https://www.suse.com/security/cve/CVE-2024-56582"
},
{
"category": "external",
"summary": "SUSE Bug 1235128 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "external",
"summary": "SUSE Bug 1235129 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-56582"
},
{
"cve": "CVE-2024-56599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56599"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: avoid NULL pointer error during sdio remove\n\nWhen running \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will free sdio\nworkqueue by destroy_workqueue(). But if CONFIG_INIT_ON_FREE_DEFAULT_ON\nis set to yes, kernel panic will happen:\nCall trace:\n destroy_workqueue+0x1c/0x258\n ath10k_sdio_remove+0x84/0x94\n sdio_bus_remove+0x50/0x16c\n device_release_driver_internal+0x188/0x25c\n device_driver_detach+0x20/0x2c\n\nThis is because during \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will call\nath10k_core_destroy() before destroy_workqueue(). wiphy_dev_release()\nwill finally be called in ath10k_core_destroy(). This function will free\nstruct cfg80211_registered_device *rdev and all its members, including\nwiphy, dev and the pointer of sdio workqueue. Then the pointer of sdio\nworkqueue will be set to NULL due to CONFIG_INIT_ON_FREE_DEFAULT_ON.\n\nAfter device release, destroy_workqueue() will use NULL pointer then the\nkernel panic happen.\n\nCall trace:\nath10k_sdio_remove\n -\u003eath10k_core_unregister\n \u2026\u2026\n -\u003eath10k_core_stop\n -\u003eath10k_hif_stop\n -\u003eath10k_sdio_irq_disable\n -\u003eath10k_hif_power_down\n -\u003edel_timer_sync(\u0026ar_sdio-\u003esleep_timer)\n -\u003eath10k_core_destroy\n -\u003eath10k_mac_destroy\n -\u003eieee80211_free_hw\n -\u003ewiphy_free\n \u2026\u2026\n -\u003ewiphy_dev_release\n -\u003edestroy_workqueue\n\nNeed to call destroy_workqueue() before ath10k_core_destroy(), free\nthe work queue buffer first and then free pointer of work queue by\nath10k_core_destroy(). This order matches the error path order in\nath10k_sdio_probe().\n\nNo work will be queued on sdio workqueue between it is destroyed and\nath10k_core_destroy() is called. Based on the call_stack above, the\nreason is:\nOnly ath10k_sdio_sleep_timer_handler(), ath10k_sdio_hif_tx_sg() and\nath10k_sdio_irq_disable() will queue work on sdio workqueue.\nSleep timer will be deleted before ath10k_core_destroy() in\nath10k_hif_power_down().\nath10k_sdio_irq_disable() only be called in ath10k_hif_stop().\nath10k_core_unregister() will call ath10k_hif_power_down() to stop hif\nbus, so ath10k_sdio_hif_tx_sg() won\u0027t be called anymore.\n\nTested-on: QCA6174 hw3.2 SDIO WLAN.RMH.4.4.1-00189",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56599",
"url": "https://www.suse.com/security/cve/CVE-2024-56599"
},
{
"category": "external",
"summary": "SUSE Bug 1235138 for CVE-2024-56599",
"url": "https://bugzilla.suse.com/1235138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56599"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: j1939: j1939_session_new(): fix skb reference counting\n\nSince j1939_session_skb_queue() does an extra skb_get() for each new\nskb, do the same for the initial one in j1939_session_new() to avoid\nrefcount underflow.\n\n[mkl: clean up commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56645",
"url": "https://www.suse.com/security/cve/CVE-2024-56645"
},
{
"category": "external",
"summary": "SUSE Bug 1235134 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "external",
"summary": "SUSE Bug 1235135 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-56645"
},
{
"cve": "CVE-2024-56667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Fix NULL pointer dereference in capture_engine\n\nWhen the intel_context structure contains NULL,\nit raises a NULL pointer dereference error in drm_info().\n\n(cherry picked from commit 754302a5bc1bd8fd3b7d85c168b0a1af6d4bba4d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56667",
"url": "https://www.suse.com/security/cve/CVE-2024-56667"
},
{
"category": "external",
"summary": "SUSE Bug 1235016 for CVE-2024-56667",
"url": "https://bugzilla.suse.com/1235016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56667"
},
{
"cve": "CVE-2024-56752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()\n\nWhen the call to gf100_grctx_generate() fails, unlock gr-\u003efecs.mutex\nbefore returning the error.\n\nFixes smatch warning:\n\ndrivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480 gf100_gr_chan_new() warn: inconsistent returns \u0027\u0026gr-\u003efecs.mutex\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56752",
"url": "https://www.suse.com/security/cve/CVE-2024-56752"
},
{
"category": "external",
"summary": "SUSE Bug 1234937 for CVE-2024-56752",
"url": "https://bugzilla.suse.com/1234937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56752"
},
{
"cve": "CVE-2024-56754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: caam - Fix the pointer passed to caam_qi_shutdown()\n\nThe type of the last parameter given to devm_add_action_or_reset() is\n\"struct caam_drv_private *\", but in caam_qi_shutdown(), it is casted to\n\"struct device *\".\n\nPass the correct parameter to devm_add_action_or_reset() so that the\nresources are released as expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56754",
"url": "https://www.suse.com/security/cve/CVE-2024-56754"
},
{
"category": "external",
"summary": "SUSE Bug 1234918 for CVE-2024-56754",
"url": "https://bugzilla.suse.com/1234918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56754"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-56756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix freeing of the HMB descriptor table\n\nThe HMB descriptor table is sized to the maximum number of descriptors\nthat could be used for a given device, but __nvme_alloc_host_mem could\nbreak out of the loop earlier on memory allocation failure and end up\nusing less descriptors than planned for, which leads to an incorrect\nsize passed to dma_free_coherent.\n\nIn practice this was not showing up because the number of descriptors\ntends to be low and the dma coherent allocator always allocates and\nfrees at least a page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56756",
"url": "https://www.suse.com/security/cve/CVE-2024-56756"
},
{
"category": "external",
"summary": "SUSE Bug 1234922 for CVE-2024-56756",
"url": "https://bugzilla.suse.com/1234922"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-56756"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_23-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:14:12Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
}
]
}
SUSE-SU-2025:20249-1
Vulnerability from csaf_suse - Published: 2025-03-28 07:51 - Updated: 2025-03-28 07:51Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).
- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).
- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-44996: vsock: fix recursive ->recvmsg calls (bsc#1230205).
- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).
- CVE-2024-49948: net: add more sanity checks to qdisc_pkt_len_init() (bsc#1232161).
- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).
- CVE-2024-49978: gso: fix udp gso fraglist segmentation after pull from frag_list (bsc#1232101).
- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).
- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).
- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).
- CVE-2024-53099: bpf: Check validity of link->type in bpf_link_show_fdinfo() (bsc#1233772).
- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).
- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).
- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)
- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).
- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).
- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).
- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).
- CVE-2024-53187: io_uring: check for overflows in io_pin_pages (bsc#1234947).
- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).
- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).
- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).
- CVE-2024-53203: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() (bsc#1235001).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).
- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).
- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).
- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).
- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).
- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).
- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).
- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).
- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).
- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).
- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).
- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).
- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).
- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).
- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).
- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).
- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).
- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).
- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).
- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).
- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56608: drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create' (bsc#1235487).
- CVE-2024-56610: kcsan: Turn report_filterlist_lock into a raw_spinlock (bsc#1235390).
- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).
- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).
- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).
- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).
- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).
- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).
- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).
- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).
- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).
- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).
- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).
- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).
- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).
- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).
- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).
- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).
- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).
- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).
- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).
- CVE-2024-56665: bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog (bsc#1235489).
- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).
- CVE-2024-56679: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (bsc#1235498).
- CVE-2024-56693: brd: defer automatic disk creation until module initialization succeeds (bsc#1235418).
- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).
- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).
- CVE-2024-56707: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c (bsc#1235545).
- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).
- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).
- CVE-2024-56715: ionic: Fix netdev notifier unregister on failure (bsc#1235612).
- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).
- CVE-2024-56725: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c (bsc#1235578).
- CVE-2024-56726: octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (bsc#1235582).
- CVE-2024-56727: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c (bsc#1235583).
- CVE-2024-56728: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (bsc#1235656).
- CVE-2024-56729: smb: Initialize cfid->tcon before performing network ops (bsc#1235503).
- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).
- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).
- CVE-2024-56763: tracing: Prevent bad count for tracing_cpumask_write (bsc#1235638).
- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).
- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).
- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).
- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).
- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).
- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).
- CVE-2024-57802: netrom: check buffer length before accessing it (bsc#1235941).
- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).
- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).
- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).
- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).
- CVE-2024-57884: mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (bsc#1235948).
- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).
- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).
- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).
- CVE-2024-57917: topology: Keep the cpumask unchanged when printing cpumap (bsc#1236127).
- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).
- CVE-2024-57931: selinux: ignore unknown extended permissions (bsc#1236192).
- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).
- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).
- CVE-2024-57938: net/sctp: Prevent autoclose integer overflow in sctp_association_init() (bsc#1236182).
- CVE-2024-57946: virtio-blk: do not keep queue frozen during system suspend (bsc#1236247).
- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before "getting" registers (bsc#1236106).
- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).
- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).
- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).
- CVE-2025-21652: ipvlan: Fix use-after-free in ipvlan_get_iflink() (bsc#1236160).
- CVE-2025-21653: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute (bsc#1236161).
- CVE-2025-21655: io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period (bsc#1236163).
- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).
- CVE-2025-21663: net: stmmac: dwmac-tegra: Read iommu stream id from device tree (bsc#1236260).
- CVE-2025-21664: dm thin: make get_first_thin use rcu-safe list first function (bsc#1236262).
- CVE-2025-21674: net/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel (bsc#1236688).
- CVE-2025-21676: net: fec: handle page_pool_dev_alloc_pages error (bsc#1236696).
- CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref (bsc#1236703).
Features added:
* - Disable ceph (jsc#PED-7242)
* - RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
* - ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
* - supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)
The following non-security bugs were fixed:
- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).
- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).
- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
- ACPI: fan: cleanup resources in the error path of .probe() (git-fixes).
- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).
- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).
- ACPI: resource: Fix memory resource type union access (git-fixes).
- ACPI: resource: acpi_dev_irq_override(): Check DMI match last (stable-fixes).
- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).
- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).
- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).
- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).
- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).
- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).
- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).
- ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31 laptop (git-fixes).
- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).
- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).
- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).
- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).
- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14s-fq1xxx (stable-fixes).
- ALSA: hda/realtek: Enable headset mic on Positivo C6400 (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).
- ALSA: hda/realtek: Workaround for resume on Dell Venue 11 Pro 7130 (bsc#1235686).
- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).
- ALSA: hda: Fix headset detection failure due to unstable sort (git-fixes).
- ALSA: line6: Fix racy access to midibuf (stable-fixes).
- ALSA: seq: Check UMP support for midi_version change (git-fixes).
- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).
- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).
- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).
- ALSA: seq: ump: Use guard() for locking (stable-fixes).
- ALSA: ump: Use guard() for locking (stable-fixes).
- ALSA: usb-audio: Add delay quirk for USB Audio Device (stable-fixes).
- ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro (stable-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).
- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).
- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).
- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).
- ASoC: Intel: avs: Fix theoretical infinite loop (git-fixes).
- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).
- ASoC: SOF: Remove libraries from topology lookups (git-fixes).
- ASoC: acp: Support microphone from Lenovo Go S (stable-fixes).
- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).
- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).
- ASoC: amd: yc: Fix the wrong return value (git-fixes).
- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).
- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).
- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).
- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).
- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).
- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).
- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).
- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).
- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).
- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).
- ASoC: nau8822: Lower debug print priority (stable-fixes).
- ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback (git-fixes).
- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).
- ASoC: samsung: Add missing depends on I2C (git-fixes).
- ASoC: samsung: Add missing selects for MFD_WM8994 (stable-fixes).
- ASoC: sun4i-spdif: Add clock multiplier settings (git-fixes).
- ASoC: wm8994: Add depends on MFD core (stable-fixes).
- Add already cherry-picked ids to AMDGPU patch
- Align git commit ID abbreviation guidelines and checks (git-fixes).
- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).
- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).
- Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection (git-fixes).
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).
- Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc (git-fixes).
- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).
- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).
- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).
- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).
- Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming (git-fixes).
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).
- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).
- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).
- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).
- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).
- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).
- Bluetooth: iso: Fix recursive locking warning (git-fixes).
- Delete XHCI patch for regression (bsc#1235550)
- Disable ceph (jsc#PED-7242)
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- Drop downstream TPM fix patch (bsc#1233260 bsc#1233259 bsc#1232421)
- Drop uvcvideo fix due to regression (bsc#1235894)
- EDAC/{i10nm,skx,skx_common}: Support UV systems (bsc#1234693).
- HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections (git-fixes).
- HID: fix generic desktop D-Pad controls (git-fixes).
- HID: hid-sensor-hub: do not use stale platform-data on remove (git-fixes).
- HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check (git-fixes).
- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).
- HID: multitouch: fix support for Goodix PID 0x01e9 (git-fixes).
- Input: atkbd - map F23 key to support default copilot shortcut (stable-fixes).
- Input: bbnsm_pwrkey - add remove hook (git-fixes).
- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).
- Input: davinci-keyscan - remove leftover header (git-fixes).
- Input: xpad - add QH Electronics VID/PID (stable-fixes).
- Input: xpad - add support for Nacon Evol-X Xbox One Controller (stable-fixes).
- Input: xpad - add support for Nacon Pro Compact (stable-fixes).
- Input: xpad - add support for wooting two he (arm) (stable-fixes).
- Input: xpad - add unofficial Xbox 360 wireless receiver clone (stable-fixes).
- Input: xpad - improve name of 8BitDo controller 2dc8:3106 (stable-fixes).
- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).
- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).
- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).
- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).
- Move kABI workaround patch to correct folder
- Move upstreamed DRM patch into sorted section
- Move upstreamed NFS patch into sorted section
- Move upstreamed TPM patch into sorted section
- Move upstreamed lpfc patches into sorted section
- Move upstreamed ppc patch into sorted section
- Move upstreamed sound patch into sorted section
- Move upstreamed sound patches into sorted section
- NFC: nci: Add bounds checking in nci_hci_create_pipe() (git-fixes).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Async COPY result needs to return a write verifier (git-fixes).
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: Remove a never-true comparison (git-fixes).
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (git-fixes).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- NFSv4.2: fix COPY_NOTIFY xdr buf size calculation (git-fixes).
- NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE (git-fixes).
- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).
- PCI/AER: Disable AER service on suspend (stable-fixes).
- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (stable-fixes).
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).
- PCI: Add T_PERST_CLK_US macro (git-fixes).
- PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 (git-fixes).
- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).
- PCI: Fix use-after-free of slot->bus on hot remove (stable-fixes).
- PCI: Use preserve_config in place of pci_flags (stable-fixes).
- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).
- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).
- PCI: dwc: Always stop link in the dw_pcie_suspend_noirq (git-fixes).
- PCI: dwc: ep: Prevent changing BAR size/flags in pci_epc_set_bar() (git-fixes).
- PCI: dwc: ep: Write BAR_MASK before iATU registers in pci_epc_set_bar() (git-fixes).
- PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy() (git-fixes).
- PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf() (git-fixes).
- PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test (git-fixes).
- PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error (git-fixes).
- PCI: imx6: Deassert apps_reset in imx_pcie_deassert_core_reset() (git-fixes).
- PCI: imx6: Skip controller_id generation logic for i.MX7D (git-fixes).
- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).
- PCI: j721e: Add per platform maximum lane settings (stable-fixes).
- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).
- PCI: j721e: Add suspend and resume support (git-fixes).
- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).
- PCI: microchip: Set inbound address translation for coherent or non-coherent mode (git-fixes).
- PCI: qcom: Add support for IPQ9574 (stable-fixes).
- PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region() (git-fixes).
- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).
- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).
- PM: hibernate: Add error handling for syscore_suspend() (git-fixes).
- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)
- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)
- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)
- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)
- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)
- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)
- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)
- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)
- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)
- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)
- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)
- RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error (git-fixes)
- RDMA/bnxt_re: Fix to export port num to ib_query_qp (git-fixes)
- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)
- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)
- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)
- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)
- RDMA/mlx4: Avoid false error about access to uninitialized gids array (git-fixes)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)
- RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error (git-fixes)
- RDMA/mlx5: Fix implicit ODP use after free (git-fixes)
- RDMA/mlx5: Fix indirect mkey ODP page count (git-fixes)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (git-fixes)
- RDMA/rxe: Fix mismatched max_msg_sz (git-fixes)
- RDMA/rxe: Fix the warning "__rxe_cleanup+0x12c/0x170 [rdma_rxe]" (git-fixes)
- RDMA/srp: Fix error handling in srp_add_port (git-fixes)
- RDMA/uverbs: Prevent integer overflow issue (git-fixes)
- README.BRANCH: Remove copy of branch name
- Refresh patches.suse/ALSA-hda-realtek-Add-support-for-Samsung-Galaxy-Book.patch.
- Refresh patches.suse/cpufreq-intel_pstate-Temporarily-boost-P-state-when-.patch.
- Revert "HID: multitouch: Add support for lenovo Y9000P Touchpad" (stable-fixes).
- Revert "block/mq-deadline: use correct way to throttling write requests" (bsc#1234146).
- Revert "btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)"
- Revert "drm/i915/dpt: Make DPT object unshrinkable" (stable-fixes).
- Revert "igb: Disable threaded IRQ for igb_msix_other" (git-fixes).
- Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (git-fixes).
- Revert "unicode: Do not special case ignorable code points" (stable-fixes).
- Revert "usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null" (stable-fixes).
- Revert 'arm64: Kconfig: Make SME depend on BROKEN for now' This reverts commit 2ccfee6be929dd4ea49ef59a7ae686473aae40b6 CONFIG_ARM64_SME is enabled by default so some customers may rely on SME. We need further analysis to evaluate to what extent we are impacted and in case we'll disable SME support later.
- Revert 0dd78566990 ("Disable ceph (jsc#PED-7242)") Apparently, jsc#PED-7242 is only deprecate ceph for 15-SP6 and disable for 15-SP7. Revert the disabling.
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).
- USB: core: Disable LPM only for non-suspended ports (git-fixes).
- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).
- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).
- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).
- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).
- USB: serial: option: add Neoway N723-EA support (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).
- USB: serial: option: add TCL IK512 MBIM & ECM (stable-fixes).
- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).
- USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() (git-fixes).
- USB: usblp: return error when setting unsupported protocol (git-fixes).
- VFS: use system_unbound_wq for delayed_mntput (bsc#1234683).
- VMCI: fix reference to ioctl-number.rst (git-fixes).
- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).
- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).
- accel/habanalabs: fix debugfs files permissions (stable-fixes).
- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).
- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).
- afs: Automatically generate trace tag enums (git-fixes).
- afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY (git-fixes).
- afs: Fix cleanup of immediately failed async calls (git-fixes).
- afs: Fix directory format encoding struct (git-fixes).
- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).
- afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call (git-fixes).
- afs: Fix the maximum cell name length (git-fixes).
- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).
- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).
- arch: Remove cmpxchg_double (bsc#1220773).
- arch: consolidate arch_irq_work_raise prototypes (git-fixes).
- arm64/sme: Move storage of reg_smidr to __cpuinfo_store_cpu() (git-fixes)
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: Filter out SVE hwcaps when FEAT_SVE isn't implemented (git-fixes)
- arm64: Force position-independent veneers (git-fixes).
- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes bsc#1236245) Update arm64 default configuration file
- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes).
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- arm64: dts: rockchip: Add sdmmc/sdio/emmc reset controls for RK3328 (git-fixes)
- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).
- arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma (git-fixes)
- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).
- arm64: tegra: Disable Tegra234 sce-fabric node (git-fixes)
- arm64: tegra: Fix Tegra234 PCIe interrupt-map (git-fixes)
- arm64: tegra: Fix typo in Tegra234 dce-fabric compatible (git-fixes)
- ata: libata-core: Set ATA_QCFLAG_RTF_FILLED in fill_result_tf() (stable-fixes).
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).
- batman-adv: Do not send uninitialized TT changes (git-fixes).
- batman-adv: Remove uninitialized data in full table TT response (git-fixes).
- blacklist.conf: printk/sysctl: breaks kernel without pre-requisite patches (bsc#1229025)
- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).
- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).
- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).
- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).
- blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock required!" (bsc#1234140).
- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).
- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).
- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).
- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).
- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).
- block/mq-deadline: Fix the tag reservation code (bsc#1234148).
- block: Call .limit_depth() after .hctx has been set (bsc#1234148).
- block: Fix where bio IO priority gets set (bsc#1234145).
- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).
- block: update the stable_writes flag in bdev_add (bsc#1234141).
- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)
- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).
- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).
- bpf: verifier: prevent userspace memory access (git-fixes).
- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).
- bus: mhi: host: Free mhi_buf vector inside mhi_alloc_bhie_table() (git-fixes).
- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).
- can: j1939: fix error in J1939 documentation (stable-fixes).
- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).
- checkpatch: always parse orig_commit in fixes tag (git-fixes).
- checkpatch: check for missing Fixes tags (stable-fixes).
- cleanup: Add conditional guard support (stable-fixes).
- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).
- cleanup: Remove address space of returned pointer (git-fixes).
- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).
- clocksource/drivers:sp804: Make user selectable (git-fixes).
- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).
- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).
- cpufreq: ACPI: Fix max-frequency computation (git-fixes).
- cpufreq: Do not unregister cpufreq cooling on CPU hotplug (git-fixes).
- cpufreq: amd-pstate: remove global header file (git-fixes).
- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).
- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).
- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).
- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).
- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).
- cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock (git-fixes).
- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).
- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).
- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).
- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).
- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).
- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).
- cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing (git-fixes).
- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).
- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).
- cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back (git-fixes).
- cpuidle: Avoid potential overflow in integer multiplication (git-fixes).
- cpupower: fix TSC MHz calculation (git-fixes).
- crypto: caam - use JobR's space to access page 0 regs (git-fixes).
- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).
- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).
- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).
- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).
- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).
- crypto: iaa - Fix IAA disabling that occurs when sync_mode is set to 'async' (git-fixes).
- crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto() (git-fixes).
- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).
- crypto: qce - fix goto jump in error path (git-fixes).
- crypto: qce - fix priority to be less than ARMv8 CE (git-fixes).
- crypto: qce - unregister previously registered algos in error path (git-fixes).
- crypto: x86/sha256 - Add parentheses around macros' single arguments (stable-fixes).
- cyrpto/b128ops: Remove struct u128 (bsc#1220773).
- devcoredump: cleanup some comments (git-fixes).
- devlink: Fix length of eswitch inline-mode (git-fixes).
- dlm: fix possible lkb_resource null dereference (git-fixes).
- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).
- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).
- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).
- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).
- dmaengine: tegra: Return correct DMA status when paused (git-fixes).
- dmaengine: ti: edma: fix OF node reference leaks in edma_driver (git-fixes).
- docs: media: update location of the media patches (stable-fixes).
- docs: power: Fix footnote reference for Toshiba Satellite P10-554 (git-fixes).
- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).
- driver core: class: Fix wild pointer dereferences in API class_dev_iter_next() (git-fixes).
- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).
- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).
- drivers/card_reader/rtsx_usb: Restore interrupt based detection (git-fixes).
- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).
- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).
- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).
- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).
- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).
- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).
- drm/amd/display: Fix DSC-re-computing (stable-fixes).
- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).
- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).
- drm/amd/display: Use HW lock mgr for PSR1 (stable-fixes).
- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).
- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).
- drm/amd/pm: Fix an error handling path in vega10_enable_se_edc_force_stall_config() (git-fixes).
- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).
- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).
- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).
- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).
- drm/amdgpu/pm: Remove gpu_od if it's an empty directory (stable-fixes).
- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).
- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).
- drm/amdgpu/vcn: reset fw_shared under SRIOV (git-fixes).
- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).
- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).
- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).
- drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table (git-fixes).
- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).
- drm/amdgpu: always sync the GFX pipe on ctx switch (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).
- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).
- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
- drm/amdgpu: do not access invalid sched (git-fixes).
- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
- drm/amdgpu: fix usage slab after free (stable-fixes).
- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).
- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).
- drm/amdgpu: simplify return statement in amdgpu_ras_eeprom_init (git-fixes).
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).
- drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini() (git-fixes).
- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).
- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
- drm/amdkfd: Use device based logging for errors (stable-fixes).
- drm/amdkfd: Use the correct wptr size (stable-fixes).
- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).
- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).
- drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE (git-fixes).
- drm/bridge: it6505: Enable module autoloading (stable-fixes).
- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).
- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).
- drm/display: Fix building with GCC 15 (stable-fixes).
- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).
- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).
- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).
- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).
- drm/etnaviv: Fix page property being used for non writecombine buffers (git-fixes).
- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).
- drm/i915/dg1: Fix power gate sequence (git-fixes).
- drm/i915/fb: Relax clear color alignment to 64 bytes (stable-fixes).
- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).
- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).
- drm/mcde: Enable module autoloading (stable-fixes).
- drm/mediatek: Add return value check when reading DPCD (git-fixes).
- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).
- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).
- drm/mediatek: Fix mode valid issue for dp (git-fixes).
- drm/mediatek: Set private->all_drm_private[i]->drm to NULL if mtk_drm_bind returns err (git-fixes).
- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).
- drm/mediatek: stop selecting foreign drivers (git-fixes).
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).
- drm/msm/dp: set safe_to_exit_level before printing it (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8150 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8250 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8350 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8550 (git-fixes).
- drm/msm: Check return value of of_dma_configure() (git-fixes).
- drm/msm: do not clean up priv->kms prematurely (git-fixes).
- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).
- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).
- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).
- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).
- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).
- drm/radeon: change rdev->ddev to rdev_to_drm(rdev) (stable-fixes).
- drm/rcar-du: dsi: Fix PHY lock bit check (git-fixes).
- drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event() (git-fixes).
- drm/rockchip: vop2: Check linear format for Cluster windows on rk3566/8 (git-fixes).
- drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters offset (git-fixes).
- drm/rockchip: vop2: Fix the mixer alpha setup for layer 0 (git-fixes).
- drm/sched: memset() 'job' in drm_sched_job_init() (stable-fixes).
- drm/tidss: Clear the interrupt status for interrupts being disabled (git-fixes).
- drm/tidss: Fix issue in irq handling causing irq-flood issue (git-fixes).
- drm/v3d: Assign job pointer to NULL before signaling the fence (git-fixes).
- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).
- drm/v3d: Stop active perfmon if it is being destroyed (git-fixes).
- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).
- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).
- drm/vmwgfx: Add new keep_resv BO param (git-fixes).
- drm: adv7511: Drop dsi single lane support (git-fixes).
- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).
- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- erofs: avoid debugging output for (de)compressed data (git-fixes).
- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).
- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).
- exfat: fix the infinite loop in exfat_readdir() (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- ext4: add a new helper to check if es must be kept (bsc#1234170).
- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).
- ext4: add missed brelse in update_backups (bsc#1234171).
- ext4: allow for the last group to be marked as trimmed (bsc#1234278).
- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).
- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).
- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).
- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).
- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).
- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).
- ext4: check the extent status again before inserting delalloc block (bsc#1234186).
- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).
- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).
- ext4: correct best extent lstart adjustment logic (bsc#1234179).
- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).
- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).
- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).
- ext4: correct the start block of counting reserved clusters (bsc#1234169).
- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).
- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).
- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).
- ext4: factor out a common helper to query extent map (bsc#1234186).
- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).
- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).
- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).
- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).
- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).
- ext4: fix potential unnitialized variable (bsc#1234183).
- ext4: fix race between writepages and remount (bsc#1234168).
- ext4: fix rec_len verify error (bsc#1234167).
- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).
- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).
- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).
- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).
- ext4: make ext4_es_insert_extent() return void (bsc#1234170).
- ext4: make ext4_es_remove_extent() return void (bsc#1234170).
- ext4: make ext4_zeroout_es() return void (bsc#1234170).
- ext4: make sure allocate pending entry not fail (bsc#1234170).
- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).
- ext4: move 'ix' sanity check to corrent position (bsc#1234174).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).
- ext4: nested locking for xattr inode (bsc#1234189).
- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).
- ext4: refactor ext4_da_map_blocks() (bsc#1234178).
- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).
- ext4: remove the redundant folio_wait_stable() (bsc#1234184).
- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).
- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).
- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).
- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).
- fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device() (git-fixes).
- filemap: Fix bounds checking in filemap_read() (bsc#1234209).
- filemap: add a per-mapping stable writes flag (bsc#1234141).
- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).
- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).
- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).
- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).
- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).
- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).
- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).
- genirq: Make handle_enforce_irqctx() unconditionally available (git-fixes).
- genksyms: fix memory leak when the same symbol is added from source (git-fixes).
- genksyms: fix memory leak when the same symbol is read from *.symref file (git-fixes).
- gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (git-fixes).
- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (stable-fixes).
- gpio: mxc: remove dead code after switch to DT-only (git-fixes).
- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- hvc/xen: fix console unplug (git-fixes).
- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).
- hvc/xen: fix event channel handling for secondary consoles (git-fixes).
- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).
- hwmon: (drivetemp) Set scsi command timeout to 10s (stable-fixes).
- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).
- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).
- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).
- hwmon: (tmp513) Do not use "proxy" headers (stable-fixes).
- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).
- hwmon: (tmp513) Fix division of negative numbers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).
- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).
- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).
- hyperv: Do not overlap the hvcall IO areas in get_vtl() (git-fixes).
- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).
- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).
- i2c: i801: Add support for Intel Panther Lake (stable-fixes).
- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).
- i2c: microchip-core: actually use repeated sends (git-fixes).
- i2c: microchip-core: fix "ghost" detections (git-fixes).
- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).
- i2c: pnx: Fix timeout in wait functions (git-fixes).
- i2c: rcar: fix NACK handling when being a target (git-fixes).
- i2c: riic: Always round-up when calculating bus period (git-fixes).
- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).
- i40e: Fix handling changed priv flags (git-fixes).
- i915/guc: Accumulate active runtime on gt reset (git-fixes).
- i915/guc: Ensure busyness counter increases motonically (git-fixes).
- i915/guc: Reset engine utilization buffer before registration (git-fixes).
- ibmvnic: Free any outstanding tx skbs during scrq reset (bsc#1226980).
- ice: Unbind the workqueue (bsc#1234989)
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).
- ice: fix PHY Clock Recovery availability check (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).
- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).
- iio: adc: ad7124: Disable all channels at probe time (git-fixes).
- iio: adc: ad_sigma_delta: Handle CS assertion as intended in ad_sd_read_reg_raw() (git-fixes).
- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).
- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).
- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).
- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).
- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).
- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).
- iio: iio-mux: kzalloc instead of devm_kzalloc to ensure page alignment (git-fixes).
- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).
- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).
- iio: light: as73211: fix channel handling in only-color triggered buffer (git-fixes).
- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).
- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).
- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).
- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).
- instrumentation: Wire up cmpxchg128() (bsc#1220773).
- intel_th: core: fix kernel-doc warnings (git-fixes).
- io_uring/rw: avoid punting to io-wq directly (git-fixes).
- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).
- io_uring: Fix registered ring file refcount leak (git-fixes).
- io_uring: always lock __io_cqring_overflow_flush (git-fixes).
- io_uring: check if iowq is killed before queuing (git-fixes).
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).
- ipmi: ipmb: Add check devm_kasprintf() returned value (git-fixes).
- ipmi: ssif_bmc: Fix new request loss when bmc ready for a response (git-fixes).
- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).
- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).
- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).
- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).
- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).
- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kABI workaround for struct auto_pin_cfg_item change (git-fixes).
- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).
- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)
- kasan: make report_lock a raw spinlock (git-fixes).
- kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST (git-fixes).
- kdb: Fix buffer overflow during tab-complete (bsc#1234652).
- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).
- kdb: Merge identical case statements in kdb_read() (bsc#1234657).
- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).
- kdb: Use format-strings rather than '\0' injection in kdb_read() (bsc#1234654).
- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).
- kdb: address -Wformat-security warnings (bsc#1234659).
- kgdb: Flush console before entering kgdb on panic (bsc#1234651).
- kheaders: Ignore silly-rename files (stable-fixes).
- ktest.pl: Avoid false positives with grub2 skip regex (stable-fixes).
- ktest.pl: Check kernelrelease return in get_version (git-fixes).
- ktest.pl: Fix typo "accesing" (git-fixes).
- ktest.pl: Fix typo in comment (git-fixes).
- ktest.pl: Remove unused declarations in run_bisect_test function (git-fixes).
- ktest: force $buildonly = 1 for 'make_warnings_file' test type (stable-fixes).
- landlock: Handle weird files (git-fixes).
- latencytop: use correct kernel-doc format for func params (git-fixes).
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (stable-fixes).
- leds: lp8860: Write full EEPROM, not only half of it (git-fixes).
- leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata() (git-fixes).
- lib/inflate.c: remove dead code (git-fixes).
- lib/stackdepot: print disabled message only if truly disabled (git-fixes).
- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).
- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).
- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).
- mac80211: fix user-power when emulating chanctx (stable-fixes).
- mac802154: check local interfaces before deleting sdata list (stable-fixes).
- mailbox: pcc: Add support for platform notification handling (stable-fixes).
- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).
- mailbox: tegra-hsp: Clear mailbox before using message (git-fixes).
- maple_tree: simplify split calculation (git-fixes).
- media: camif-core: Add check for clk_enable() (git-fixes).
- media: ccs: Clean up parsed CCS static data on parse failure (git-fixes).
- media: ccs: Fix CCS static data parsing for large block sizes (git-fixes).
- media: ccs: Fix cleanup order in ccs_probe() (git-fixes).
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).
- media: dvb-usb-v2: af9035: fix ISO C90 compilation error on af9035_i2c_master_xfer (git-fixes).
- media: i2c: imx412: Add missing newline to prints (git-fixes).
- media: i2c: ov9282: Correct the exposure offset (git-fixes).
- media: imx-jpeg: Fix potential error pointer dereference in detach_pm() (git-fixes).
- media: imx296: Add standby delay during probe (git-fixes).
- media: lmedm04: Handle errors for lme2510_int_read (git-fixes).
- media: marvell: Add check for clk_enable() (git-fixes).
- media: mc: fix endpoint iteration (git-fixes).
- media: mipi-csis: Add check for clk_enable() (git-fixes).
- media: nxp: imx8-isi: fix v4l2-compliance test errors (git-fixes).
- media: ov5640: fix get_light_freq on auto (git-fixes).
- media: rc: iguanair: handle timeouts (git-fixes).
- media: rkisp1: Fix unused value issue (git-fixes).
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).
- media: uvcvideo: Fix crash during unbind if gpio unit is in use (git-fixes).
- media: uvcvideo: Fix double free in error path (git-fixes).
- media: uvcvideo: Fix event flags in uvc_ctrl_send_events (git-fixes).
- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).
- media: uvcvideo: Only save async fh if success (git-fixes).
- media: uvcvideo: Propagate buf->error to userspace (git-fixes).
- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).
- media: uvcvideo: Remove dangling pointers (git-fixes).
- media: uvcvideo: Remove redundant NULL assignment (git-fixes).
- media: uvcvideo: Support partial control reads (git-fixes).
- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).
- memory-failure: use a folio in me_huge_page() (git-fixes).
- memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code() (git-fixes).
- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).
- misc: fastrpc: Deregister device nodes properly in error scenarios (git-fixes).
- misc: fastrpc: Fix copy buffer page size (git-fixes).
- misc: fastrpc: Fix registered buffer page address (git-fixes).
- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).
- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).
- misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors (git-fixes).
- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).
- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).
- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).
- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).
- mm/memory-failure: check the mapcount of the precise page (git-fixes).
- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).
- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).
- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).
- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).
- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).
- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).
- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).
- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).
- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).
- mm/migrate: putback split folios when numa hint migration fails (git-fixes).
- mm/migrate: split source folio if it is on deferred split list (git-fixes).
- mm/page_owner: remove free_ts from page_owner output (git-fixes).
- mm/readahead: do not allow order-1 folio (bsc#1234205).
- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).
- mm/rodata_test: use READ_ONCE() to read const variable (git-fixes).
- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).
- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).
- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).
- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).
- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).
- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).
- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).
- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).
- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).
- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).
- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).
- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).
- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).
- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).
- mtd: onenand: Fix uninitialized retlen in do_otp_read() (git-fixes).
- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).
- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).
- mtd: spinand: Remove write_enable_op() in markbad() (git-fixes).
- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).
- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).
- net/qed: allow old cards not supporting "num_images" to work (git-fixes).
- net/rose: prevent integer overflows in rose_setsockopt() (git-fixes).
- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset (git-fixes).
- net: rose: fix timer races against user threads (git-fixes).
- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).
- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).
- net: usb: rtl8150: enable basic endpoint checking (git-fixes).
- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).
- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).
- netfilter: nf_tables: validate family when identifying table via handle (bsc#1233778 ZDI-24-1454).
- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).
- nilfs2: fix possible int overflows in nilfs_fiemap() (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).
- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).
- nvme-tcp: Fix I/O queue cpu spreading for multiple controllers (git-fixes).
- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).
- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).
- nvme: Add error check for xa_store in nvme_get_effects_log (git-fixes).
- nvme: Add error path for xa_store in nvme_init_effects (git-fixes).
- nvme: apple: fix device reference counting (git-fixes).
- nvme: fix bogus kzalloc() return check in nvme_init_effects_log() (git-fixes).
- nvme: fix metadata handling in nvme-passthrough (git-fixes).
- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).
- nvmet: propagate npwg topology (git-fixes).
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).
- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).
- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).
- of: address: Report error on resource bounds overflow (stable-fixes).
- padata: add pd get/put refcnt helper (git-fixes).
- padata: avoid UAF for reorder_work (git-fixes).
- padata: fix UAF in padata_reorder (git-fixes).
- parisc: Raise minimal GCC version (bsc#1220773).
- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).
- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).
- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).
- percpu: Wire up cmpxchg128 (bsc#1220773).
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).
- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).
- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).
- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).
- phy: usb: Toggle the PHY power during init (git-fixes).
- pinctrl: amd: Take suspend type into consideration which pins are non-wake (git-fixes).
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).
- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).
- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).
- pinctrl: samsung: fix fwnode refcount cleanup if platform_get_irq_optional() fails (git-fixes).
- pinmux: Use sequential access to access desc->pinmux data (stable-fixes).
- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).
- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).
- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).
- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).
- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).
- platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing incorrect fan speed (stable-fixes).
- pm:cpupower: Add missing powercap_set_enabled() stub function (git-fixes).
- power: ip5xxx_power: Fix return value on ADC read errors (git-fixes).
- power: supply: gpio-charger: Fix set charge current limits (git-fixes).
- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).
- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).
- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).
- powerpc/pseries/eeh: Fix get PE state translation (bsc#1215199).
- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).
- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).
- pps: add an error check in parport_attach (git-fixes).
- pps: remove usage of the deprecated ida_simple_xx() API (stable-fixes).
- printk: Add is_printk_legacy_deferred() (bsc#1236733).
- printk: Defer legacy printing when holding printk_cpu_sync (bsc#1236733).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- pwm: stm32-lp: Add check for clk_enable() (git-fixes).
- pwm: stm32: Add check for clk_enable() (git-fixes).
- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).
- quota: explicitly forbid quota files from being encrypted (bsc#1234196).
- quota: flush quota_release_work upon quota writeback (bsc#1234195).
- quota: simplify drop_dquot_ref() (bsc#1234197).
- rcu-tasks: Pull sampling of ->percpu_dequeue_lim out of loop (git-fixes)
- rcu/tree: Defer setting of jiffies during stall reset (git-fixes)
- rcu: Dump memory object info if callback function is invalid (git-fixes)
- rcu: Eliminate rcu_gp_slow_unregister() false positive (git-fixes)
- rcuscale: Move rcu_scale_writer() (git-fixes)
- rdma/cxgb4: Prevent potential integer overflow on 32bit (git-fixes)
- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).
- regmap: Use correct format specifier for logging range errors (stable-fixes).
- regulator: core: Add missing newline character (git-fixes).
- regulator: of: Implement the unwind path of of_regulator_match() (git-fixes).
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).
- remoteproc: core: Fix ida_free call while not allocated (git-fixes).
- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).
- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read (git-fixes).
- rtc: zynqmp: Fix optional clock name property (git-fixes).
- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).
- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).
- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).
- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).
- s390/facility: Disable compile time optimization for decompressor code (git-fixes).
- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).
- s390/pageattr: Implement missing kernel_page_present() (git-fixes).
- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)
- samples/landlock: Fix possible NULL dereference in parse_path() (git-fixes).
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat (bsc#1235865).
- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat -kabi (bsc#1235865).
- sched/numa: fix memory leak due to the overwritten vma->numab_state (git fixes (sched/numa)).
- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).
- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).
- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).
- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).
- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).
- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).
- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).
- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).
- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).
- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).
- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).
- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).
- scsi: qla2xxx: Remove the unused 'del_list_entry' field in struct fc_port (bsc#1235406).
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).
- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (git-fixes).
- seccomp: Stub for !CONFIG_SECCOMP (stable-fixes).
- selftest: media_tests: fix trivial UAF typo (git-fixes).
- selftests/alsa: Fix circular dependency involving global-timer (stable-fixes).
- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).
- selftests/landlock: Fix error message (git-fixes).
- selftests/mm/cow: modify the incorrect checking parameters (git-fixes).
- selftests/powerpc: Fix argument order to timer_sub() (git-fixes).
- selftests: harness: fix printing of mismatch values in __EXPECT() (git-fixes).
- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).
- selftests: tc-testing: reduce rshift value (stable-fixes).
- selftests: timers: clocksource-switch: Adapt progress to kselftest framework (git-fixes).
- selinux: Fix SCTP error inconsistency in selinux_socket_bind() (git-fixes).
- serial: 8250: Adjust the timeout for FIFO mode (git-fixes).
- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).
- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).
- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).
- serial: 8250_fintek: Add support for F81216E (stable-fixes).
- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).
- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).
- serial: amba-pl011: Use port lock wrappers (stable-fixes).
- serial: amba-pl011: fix build regression (git-fixes).
- serial: do not use uninitialized value in uart_poll_init() (git-fixes).
- serial: imx: only set receiver level if it is zero (git-fixes).
- serial: imx: set receiver level before starting uart (git-fixes).
- serial: qcom-geni: Do not cancel/abort if we can't get the port lock (git-fixes).
- serial: qcom-geni: disable interrupts during console writes (git-fixes).
- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).
- serial: qcom-geni: fix console corruption (git-fixes).
- serial: qcom-geni: fix dma rx cancellation (git-fixes).
- serial: qcom-geni: fix false console tx restart (git-fixes).
- serial: qcom-geni: fix fifo polling timeout (git-fixes).
- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).
- serial: qcom-geni: fix polled console corruption (git-fixes).
- serial: qcom-geni: fix polled console initialisation (git-fixes).
- serial: qcom-geni: fix receiver enable (git-fixes).
- serial: qcom-geni: fix shutdown race (git-fixes).
- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).
- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).
- serial: qcom-geni: revert broken hibernation support (git-fixes).
- serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use (git-fixes).
- serial: sh-sci: Drop __initdata macro for port_cfg (git-fixes).
- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).
- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).
- series.conf: temporarily disable upstream patch patches.suse/ocfs2-fix-UBSAN-warning-in-ocfs2_verify_volume.patch (bsc#1236138)
- slub: Replace cmpxchg_double() (bsc#1220773).
- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]
- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).
- soc: atmel: fix device_node release in atmel_soc_device_init() (git-fixes).
- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).
- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).
- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).
- soc: mediatek: mtk-devapc: Fix leaking IO map on error paths (git-fixes).
- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).
- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).
- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).
- soc: qcom: smem_state: fix missing of_node_put in error path (git-fixes).
- soc: qcom: socinfo: Avoid out of bounds read of serial number (git-fixes).
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).
- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).
- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).
- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).
- spi: zynq-qspi: Add check for clk_enable() (git-fixes).
- srcu: Fix srcu_struct node grpmask overflow on 64-bit systems (git-fixes)
- srcu: Only accelerate on enqueue time (git-fixes)
- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).
- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).
- staging: iio: ad9832: Correct phase range check (git-fixes).
- staging: iio: ad9834: Correct phase range check (git-fixes).
- staging: media: imx: fix OF node leak in imx_media_add_of_subdevs() (git-fixes).
- staging: media: max96712: fix kernel oops when removing module (git-fixes).
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).
- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).
- supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).
- swiotlb: Reinstate page-alignment for mappings >= PAGE_SIZE (git-fixes).
- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).
- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).
- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).
- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).
- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).
- tools: Sync if_xdp.h uapi tooling header (git-fixes).
- tools: hv: change permissions of NetworkManager configuration file (git-fixes).
- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).
- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).
- types: Introduce [us]128 (bsc#1220773).
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- ubifs: skip dumping tnc tree when zroot is null (git-fixes).
- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).
- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).
- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).
- udf: refactor inode_bmap() to handle error (bsc#1234242).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).
- uio: Fix return value of poll (git-fixes).
- uio: uio_dmem_genirq: check the return value of devm_kasprintf() (git-fixes).
- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).
- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).
- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).
- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).
- usb: dwc2: Fix HCD port connection race (git-fixes).
- usb: dwc2: Fix HCD resume (git-fixes).
- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (git-fixes).
- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).
- usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk() (git-fixes).
- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).
- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).
- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).
- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).
- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).
- usb: fix reference leak in usb_new_device() (git-fixes).
- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).
- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).
- usb: gadget: f_tcm: Decrement command ref count on cleanup (git-fixes).
- usb: gadget: f_tcm: Do not free command immediately (git-fixes).
- usb: gadget: f_tcm: Do not prepare BOT write request twice (git-fixes).
- usb: gadget: f_tcm: Fix Get/SetInterface return value (git-fixes).
- usb: gadget: f_tcm: Translate error to sense (git-fixes).
- usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint (git-fixes).
- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).
- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).
- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).
- usb: host: xhci-plat: Assign shared_hcd->rsrc_start (git-fixes).
- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).
- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).
- usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control() (bsc#1235001)
- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).
- usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE (git-fixes).
- usb: typec: use cleanup facility for 'altmodes_node' (stable-fixes).
- usbnet: ipheth: break up NCM header size computation (git-fixes).
- usbnet: ipheth: check that DPE points past NCM header (git-fixes).
- usbnet: ipheth: fix DPE OoB read (git-fixes).
- usbnet: ipheth: fix possible overflow in DPE length check (git-fixes).
- usbnet: ipheth: refactor NCM datagram loop (git-fixes).
- usbnet: ipheth: use static NDP16 location in URB (git-fixes).
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).
- vdpa: solidrun: Fix UB bug with devres (git-fixes).
- vfs: fix readahead(2) on block devices (bsc#1234201).
- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).
- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).
- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).
- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).
- wifi: ath11k: Fix unexpected return buffer manager error for WCN6750/WCN6855 (git-fixes).
- wifi: ath11k: cleanup struct ath11k_mon_data (git-fixes).
- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).
- wifi: ath12k: fix tx power, max reg power update to firmware (git-fixes).
- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).
- wifi: ath5k: add PCI ID for SX76X (git-fixes).
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).
- wifi: brcmfmac: add missing header include for brcmf_dbg (git-fixes).
- wifi: cfg80211: adjust allocation of colocated AP data (git-fixes).
- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).
- wifi: cw1200: Fix potential NULL dereference (git-fixes).
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).
- wifi: iwlwifi: fw: read STEP table from correct UEFI var (git-fixes).
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).
- wifi: mac80211: Add non-atomic station iterator (stable-fixes).
- wifi: mac80211: Fix common size calculation for ML element (git-fixes).
- wifi: mac80211: clean up 'ret' in sta_link_apply_parameters() (stable-fixes).
- wifi: mac80211: do not flush non-uploaded STAs (git-fixes).
- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).
- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).
- wifi: mac80211: fix station NSS capability initialization order (git-fixes).
- wifi: mac80211: fix tid removal during mesh forwarding (git-fixes).
- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).
- wifi: mac80211: prohibit deactivating all links (git-fixes).
- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).
- wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO (git-fixes).
- wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC (git-fixes).
- wifi: mt76: mt7915: add module param to select 5 GHz or 6 GHz on MT7916 (git-fixes).
- wifi: mt76: mt7915: firmware restart on devices with a second pcie link (git-fixes).
- wifi: mt76: mt7915: fix overflows seen when writing limit attributes (git-fixes).
- wifi: mt76: mt7915: fix register mapping (git-fixes).
- wifi: mt76: mt7921: fix using incorrect group cipher after disconnection (git-fixes).
- wifi: mt76: mt7925: fix off by one in mt7925_load_clc() (git-fixes).
- wifi: mt76: mt7996: add max mpdu len capability (git-fixes).
- wifi: mt76: mt7996: fix HE Phy capability (git-fixes).
- wifi: mt76: mt7996: fix definition of tx descriptor (git-fixes).
- wifi: mt76: mt7996: fix incorrect indexing of MIB FW event (git-fixes).
- wifi: mt76: mt7996: fix ldpc setting (git-fixes).
- wifi: mt76: mt7996: fix overflows seen when writing limit attributes (git-fixes).
- wifi: mt76: mt7996: fix register mapping (git-fixes).
- wifi: mt76: mt7996: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU (git-fixes).
- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).
- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).
- wifi: rtlwifi: destroy workqueue at rtl_deinit_core (git-fixes).
- wifi: rtlwifi: do not complete firmware loading needlessly (git-fixes).
- wifi: rtlwifi: fix init_sw_vars leak when probe fails (git-fixes).
- wifi: rtlwifi: fix memory leaks and invalid access at probe error path (git-fixes).
- wifi: rtlwifi: pci: wait for firmware loading before releasing memory (git-fixes).
- wifi: rtlwifi: remove unused check_buddy_priv (git-fixes).
- wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step (git-fixes).
- wifi: rtlwifi: rtl8821ae: Fix media status report (git-fixes).
- wifi: rtlwifi: rtl8821ae: phy: restore removed code to fix infinite loop (git-fixes).
- wifi: rtlwifi: usb: fix workqueue leak when probe fails (git-fixes).
- wifi: rtlwifi: wait for firmware loading before releasing memory (git-fixes).
- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).
- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).
- wifi: rtw89: mcc: consider time limits not divisible by 1024 (git-fixes).
- wifi: wcn36xx: fix channel survey memory allocation size (git-fixes).
- wifi: wlcore: fix unbalanced pm_runtime calls (git-fixes).
- workqueue: Add rcu lock check at the end of work item execution (bsc#1236732).
- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).
- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).
- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).
- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).
- xfs: Add error handling for xfs_reflink_cancel_cow_range (git-fixes).
- xfs: Propagate errors from xfs_reflink_cancel_cow_range in xfs_dax_write_iomap_end (git-fixes).
- xfs: do not allocate COW extents when unsharing a hole (git-fixes).
- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).
- xfs: remove unknown compat feature check in superblock write validation (git-fixes).
- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).
- xfs: sb_spino_align is not verified (git-fixes).
- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).
- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).
- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).
Patchnames
SUSE-SLE-Micro-6.1-kernel-4
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).\n- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).\n- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-44996: vsock: fix recursive -\u003erecvmsg calls (bsc#1230205).\n- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).\n- CVE-2024-49948: net: add more sanity checks to qdisc_pkt_len_init() (bsc#1232161).\n- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).\n- CVE-2024-49978: gso: fix udp gso fraglist segmentation after pull from frag_list (bsc#1232101).\n- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).\n- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).\n- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).\n- CVE-2024-53099: bpf: Check validity of link-\u003etype in bpf_link_show_fdinfo() (bsc#1233772).\n- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).\n- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).\n- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)\n- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).\n- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).\n- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).\n- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).\n- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).\n- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).\n- CVE-2024-53187: io_uring: check for overflows in io_pin_pages (bsc#1234947).\n- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).\n- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).\n- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).\n- CVE-2024-53203: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() (bsc#1235001).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).\n- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).\n- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).\n- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).\n- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).\n- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).\n- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).\n- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).\n- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).\n- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).\n- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).\n- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).\n- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).\n- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).\n- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).\n- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).\n- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).\n- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).\n- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).\n- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).\n- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56608: drm/amd/display: Fix out-of-bounds access in \u0027dcn21_link_encoder_create\u0027 (bsc#1235487).\n- CVE-2024-56610: kcsan: Turn report_filterlist_lock into a raw_spinlock (bsc#1235390).\n- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).\n- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).\n- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).\n- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).\n- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).\n- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).\n- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).\n- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).\n- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).\n- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).\n- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).\n- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).\n- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).\n- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).\n- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).\n- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).\n- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).\n- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).\n- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).\n- CVE-2024-56665: bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog (bsc#1235489).\n- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).\n- CVE-2024-56679: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (bsc#1235498).\n- CVE-2024-56693: brd: defer automatic disk creation until module initialization succeeds (bsc#1235418).\n- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).\n- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).\n- CVE-2024-56707: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c (bsc#1235545).\n- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).\n- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).\n- CVE-2024-56715: ionic: Fix netdev notifier unregister on failure (bsc#1235612).\n- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).\n- CVE-2024-56725: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c (bsc#1235578).\n- CVE-2024-56726: octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (bsc#1235582).\n- CVE-2024-56727: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c (bsc#1235583).\n- CVE-2024-56728: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (bsc#1235656).\n- CVE-2024-56729: smb: Initialize cfid-\u003etcon before performing network ops (bsc#1235503).\n- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).\n- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).\n- CVE-2024-56763: tracing: Prevent bad count for tracing_cpumask_write (bsc#1235638).\n- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).\n- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).\n- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).\n- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).\n- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).\n- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).\n- CVE-2024-57802: netrom: check buffer length before accessing it (bsc#1235941).\n- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).\n- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).\n- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).\n- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).\n- CVE-2024-57884: mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (bsc#1235948).\n- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).\n- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).\n- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).\n- CVE-2024-57917: topology: Keep the cpumask unchanged when printing cpumap (bsc#1236127).\n- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).\n- CVE-2024-57931: selinux: ignore unknown extended permissions (bsc#1236192).\n- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).\n- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).\n- CVE-2024-57938: net/sctp: Prevent autoclose integer overflow in sctp_association_init() (bsc#1236182).\n- CVE-2024-57946: virtio-blk: do not keep queue frozen during system suspend (bsc#1236247).\n- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before \"getting\" registers (bsc#1236106).\n- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).\n- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).\n- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).\n- CVE-2025-21652: ipvlan: Fix use-after-free in ipvlan_get_iflink() (bsc#1236160).\n- CVE-2025-21653: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute (bsc#1236161).\n- CVE-2025-21655: io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period (bsc#1236163).\n- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).\n- CVE-2025-21663: net: stmmac: dwmac-tegra: Read iommu stream id from device tree (bsc#1236260).\n- CVE-2025-21664: dm thin: make get_first_thin use rcu-safe list first function (bsc#1236262).\n- CVE-2025-21674: net/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel (bsc#1236688).\n- CVE-2025-21676: net: fec: handle page_pool_dev_alloc_pages error (bsc#1236696).\n- CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref (bsc#1236703).\n\nFeatures added:\n\n * - Disable ceph (jsc#PED-7242)\n * - RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n * - ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n * - supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)\n\n\nThe following non-security bugs were fixed:\n\n- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).\n- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).\n- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n- ACPI: fan: cleanup resources in the error path of .probe() (git-fixes).\n- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).\n- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).\n- ACPI: resource: Fix memory resource type union access (git-fixes).\n- ACPI: resource: acpi_dev_irq_override(): Check DMI match last (stable-fixes).\n- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).\n- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).\n- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).\n- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).\n- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).\n- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).\n- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).\n- ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31 laptop (git-fixes).\n- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).\n- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).\n- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).\n- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).\n- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14s-fq1xxx (stable-fixes).\n- ALSA: hda/realtek: Enable headset mic on Positivo C6400 (stable-fixes).\n- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).\n- ALSA: hda/realtek: Workaround for resume on Dell Venue 11 Pro 7130 (bsc#1235686).\n- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).\n- ALSA: hda: Fix headset detection failure due to unstable sort (git-fixes).\n- ALSA: line6: Fix racy access to midibuf (stable-fixes).\n- ALSA: seq: Check UMP support for midi_version change (git-fixes).\n- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).\n- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).\n- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).\n- ALSA: seq: ump: Use guard() for locking (stable-fixes).\n- ALSA: ump: Use guard() for locking (stable-fixes).\n- ALSA: usb-audio: Add delay quirk for USB Audio Device (stable-fixes).\n- ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro (stable-fixes).\n- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).\n- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).\n- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).\n- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).\n- ASoC: Intel: avs: Fix theoretical infinite loop (git-fixes).\n- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).\n- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).\n- ASoC: SOF: Remove libraries from topology lookups (git-fixes).\n- ASoC: acp: Support microphone from Lenovo Go S (stable-fixes).\n- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).\n- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).\n- ASoC: amd: yc: Fix the wrong return value (git-fixes).\n- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).\n- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).\n- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).\n- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).\n- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).\n- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).\n- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).\n- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).\n- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).\n- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).\n- ASoC: nau8822: Lower debug print priority (stable-fixes).\n- ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback (git-fixes).\n- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).\n- ASoC: samsung: Add missing depends on I2C (git-fixes).\n- ASoC: samsung: Add missing selects for MFD_WM8994 (stable-fixes).\n- ASoC: sun4i-spdif: Add clock multiplier settings (git-fixes).\n- ASoC: wm8994: Add depends on MFD core (stable-fixes).\n- Add already cherry-picked ids to AMDGPU patch\n- Align git commit ID abbreviation guidelines and checks (git-fixes).\n- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).\n- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).\n- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).\n- Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection (git-fixes).\n- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).\n- Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc (git-fixes).\n- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).\n- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).\n- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).\n- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).\n- Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming (git-fixes).\n- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).\n- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).\n- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).\n- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).\n- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).\n- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).\n- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).\n- Bluetooth: iso: Fix recursive locking warning (git-fixes).\n- Delete XHCI patch for regression (bsc#1235550)\n- Disable ceph (jsc#PED-7242)\n- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- Drop downstream TPM fix patch (bsc#1233260 bsc#1233259 bsc#1232421)\n- Drop uvcvideo fix due to regression (bsc#1235894)\n- EDAC/{i10nm,skx,skx_common}: Support UV systems (bsc#1234693).\n- HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections (git-fixes).\n- HID: fix generic desktop D-Pad controls (git-fixes).\n- HID: hid-sensor-hub: do not use stale platform-data on remove (git-fixes).\n- HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check (git-fixes).\n- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).\n- HID: multitouch: fix support for Goodix PID 0x01e9 (git-fixes).\n- Input: atkbd - map F23 key to support default copilot shortcut (stable-fixes).\n- Input: bbnsm_pwrkey - add remove hook (git-fixes).\n- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).\n- Input: davinci-keyscan - remove leftover header (git-fixes).\n- Input: xpad - add QH Electronics VID/PID (stable-fixes).\n- Input: xpad - add support for Nacon Evol-X Xbox One Controller (stable-fixes).\n- Input: xpad - add support for Nacon Pro Compact (stable-fixes).\n- Input: xpad - add support for wooting two he (arm) (stable-fixes).\n- Input: xpad - add unofficial Xbox 360 wireless receiver clone (stable-fixes).\n- Input: xpad - improve name of 8BitDo controller 2dc8:3106 (stable-fixes).\n- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).\n- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).\n- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).\n- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).\n- Move kABI workaround patch to correct folder\n- Move upstreamed DRM patch into sorted section\n- Move upstreamed NFS patch into sorted section\n- Move upstreamed TPM patch into sorted section\n- Move upstreamed lpfc patches into sorted section\n- Move upstreamed ppc patch into sorted section\n- Move upstreamed sound patch into sorted section\n- Move upstreamed sound patches into sorted section\n- NFC: nci: Add bounds checking in nci_hci_create_pipe() (git-fixes).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Async COPY result needs to return a write verifier (git-fixes).\n- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: Remove a never-true comparison (git-fixes).\n- NFSD: initialize copy-\u003ecp_clp early in nfsd4_copy for use by trace point (git-fixes).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- NFSv4.2: fix COPY_NOTIFY xdr buf size calculation (git-fixes).\n- NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE (git-fixes).\n- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).\n- PCI/AER: Disable AER service on suspend (stable-fixes).\n- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).\n- PCI: Add \u0027reset_subordinate\u0027 to reset hierarchy below bridge (stable-fixes).\n- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).\n- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).\n- PCI: Add T_PERST_CLK_US macro (git-fixes).\n- PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 (git-fixes).\n- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).\n- PCI: Fix use-after-free of slot-\u003ebus on hot remove (stable-fixes).\n- PCI: Use preserve_config in place of pci_flags (stable-fixes).\n- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).\n- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).\n- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).\n- PCI: dwc: Always stop link in the dw_pcie_suspend_noirq (git-fixes).\n- PCI: dwc: ep: Prevent changing BAR size/flags in pci_epc_set_bar() (git-fixes).\n- PCI: dwc: ep: Write BAR_MASK before iATU registers in pci_epc_set_bar() (git-fixes).\n- PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy() (git-fixes).\n- PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf() (git-fixes).\n- PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test (git-fixes).\n- PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error (git-fixes).\n- PCI: imx6: Deassert apps_reset in imx_pcie_deassert_core_reset() (git-fixes).\n- PCI: imx6: Skip controller_id generation logic for i.MX7D (git-fixes).\n- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).\n- PCI: j721e: Add per platform maximum lane settings (stable-fixes).\n- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).\n- PCI: j721e: Add suspend and resume support (git-fixes).\n- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).\n- PCI: microchip: Set inbound address translation for coherent or non-coherent mode (git-fixes).\n- PCI: qcom: Add support for IPQ9574 (stable-fixes).\n- PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region() (git-fixes).\n- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).\n- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).\n- PM: hibernate: Add error handling for syscore_suspend() (git-fixes).\n- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)\n- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)\n- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)\n- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)\n- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)\n- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)\n- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)\n- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)\n- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)\n- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)\n- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)\n- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)\n- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)\n- RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error (git-fixes)\n- RDMA/bnxt_re: Fix to export port num to ib_query_qp (git-fixes)\n- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)\n- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)\n- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)\n- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)\n- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)\n- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)\n- RDMA/mlx4: Avoid false error about access to uninitialized gids array (git-fixes)\n- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)\n- RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error (git-fixes)\n- RDMA/mlx5: Fix implicit ODP use after free (git-fixes)\n- RDMA/mlx5: Fix indirect mkey ODP page count (git-fixes)\n- RDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible (git-fixes)\n- RDMA/rxe: Fix mismatched max_msg_sz (git-fixes)\n- RDMA/rxe: Fix the warning \"__rxe_cleanup+0x12c/0x170 [rdma_rxe]\" (git-fixes)\n- RDMA/srp: Fix error handling in srp_add_port (git-fixes)\n- RDMA/uverbs: Prevent integer overflow issue (git-fixes)\n- README.BRANCH: Remove copy of branch name\n- Refresh patches.suse/ALSA-hda-realtek-Add-support-for-Samsung-Galaxy-Book.patch.\n- Refresh patches.suse/cpufreq-intel_pstate-Temporarily-boost-P-state-when-.patch.\n- Revert \"HID: multitouch: Add support for lenovo Y9000P Touchpad\" (stable-fixes).\n- Revert \"block/mq-deadline: use correct way to throttling write requests\" (bsc#1234146).\n- Revert \"btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\"\n- Revert \"drm/i915/dpt: Make DPT object unshrinkable\" (stable-fixes).\n- Revert \"igb: Disable threaded IRQ for igb_msix_other\" (git-fixes).\n- Revert \"mtd: spi-nor: core: replace dummy buswidth from addr to data\" (git-fixes).\n- Revert \"unicode: Do not special case ignorable code points\" (stable-fixes).\n- Revert \"usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null\" (stable-fixes).\n- Revert \u0027arm64: Kconfig: Make SME depend on BROKEN for now\u0027 This reverts commit 2ccfee6be929dd4ea49ef59a7ae686473aae40b6 CONFIG_ARM64_SME is enabled by default so some customers may rely on SME. We need further analysis to evaluate to what extent we are impacted and in case we\u0027ll disable SME support later.\n- Revert 0dd78566990 (\"Disable ceph (jsc#PED-7242)\") Apparently, jsc#PED-7242 is only deprecate ceph for 15-SP6 and disable for 15-SP7. Revert the disabling.\n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).\n- USB: core: Disable LPM only for non-suspended ports (git-fixes).\n- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).\n- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).\n- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).\n- USB: serial: option: add Neoway N723-EA support (stable-fixes).\n- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).\n- USB: serial: option: add TCL IK512 MBIM \u0026 ECM (stable-fixes).\n- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).\n- USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() (git-fixes).\n- USB: usblp: return error when setting unsupported protocol (git-fixes).\n- VFS: use system_unbound_wq for delayed_mntput (bsc#1234683).\n- VMCI: fix reference to ioctl-number.rst (git-fixes).\n- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).\n- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).\n- accel/habanalabs: fix debugfs files permissions (stable-fixes).\n- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).\n- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).\n- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).\n- afs: Automatically generate trace tag enums (git-fixes).\n- afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY (git-fixes).\n- afs: Fix cleanup of immediately failed async calls (git-fixes).\n- afs: Fix directory format encoding struct (git-fixes).\n- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).\n- afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call (git-fixes).\n- afs: Fix the maximum cell name length (git-fixes).\n- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).\n- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).\n- arch: Remove cmpxchg_double (bsc#1220773).\n- arch: consolidate arch_irq_work_raise prototypes (git-fixes).\n- arm64/sme: Move storage of reg_smidr to __cpuinfo_store_cpu() (git-fixes)\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: Filter out SVE hwcaps when FEAT_SVE isn\u0027t implemented (git-fixes)\n- arm64: Force position-independent veneers (git-fixes).\n- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes bsc#1236245) Update arm64 default configuration file\n- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes).\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- arm64: dts: rockchip: Add sdmmc/sdio/emmc reset controls for RK3328 (git-fixes)\n- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).\n- arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma (git-fixes)\n- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).\n- arm64: tegra: Disable Tegra234 sce-fabric node (git-fixes)\n- arm64: tegra: Fix Tegra234 PCIe interrupt-map (git-fixes)\n- arm64: tegra: Fix typo in Tegra234 dce-fabric compatible (git-fixes)\n- ata: libata-core: Set ATA_QCFLAG_RTF_FILLED in fill_result_tf() (stable-fixes).\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).\n- batman-adv: Do not send uninitialized TT changes (git-fixes).\n- batman-adv: Remove uninitialized data in full table TT response (git-fixes).\n- blacklist.conf: printk/sysctl: breaks kernel without pre-requisite patches (bsc#1229025)\n- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).\n- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).\n- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).\n- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).\n- blk-throttle: fix lockdep warning of \"cgroup_mutex or RCU read lock required!\" (bsc#1234140).\n- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).\n- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).\n- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).\n- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).\n- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).\n- block/mq-deadline: Fix the tag reservation code (bsc#1234148).\n- block: Call .limit_depth() after .hctx has been set (bsc#1234148).\n- block: Fix where bio IO priority gets set (bsc#1234145).\n- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).\n- block: update the stable_writes flag in bdev_add (bsc#1234141).\n- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)\n- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).\n- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).\n- bpf: verifier: prevent userspace memory access (git-fixes).\n- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).\n- bus: mhi: host: Free mhi_buf vector inside mhi_alloc_bhie_table() (git-fixes).\n- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).\n- can: j1939: fix error in J1939 documentation (stable-fixes).\n- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).\n- checkpatch: always parse orig_commit in fixes tag (git-fixes).\n- checkpatch: check for missing Fixes tags (stable-fixes).\n- cleanup: Add conditional guard support (stable-fixes).\n- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).\n- cleanup: Remove address space of returned pointer (git-fixes).\n- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).\n- clocksource/drivers:sp804: Make user selectable (git-fixes).\n- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).\n- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).\n- cpufreq: ACPI: Fix max-frequency computation (git-fixes).\n- cpufreq: Do not unregister cpufreq cooling on CPU hotplug (git-fixes).\n- cpufreq: amd-pstate: remove global header file (git-fixes).\n- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).\n- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).\n- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).\n- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).\n- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).\n- cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock (git-fixes).\n- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).\n- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).\n- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).\n- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).\n- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).\n- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).\n- cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing (git-fixes).\n- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).\n- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).\n- cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back (git-fixes).\n- cpuidle: Avoid potential overflow in integer multiplication (git-fixes).\n- cpupower: fix TSC MHz calculation (git-fixes).\n- crypto: caam - use JobR\u0027s space to access page 0 regs (git-fixes).\n- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).\n- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).\n- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).\n- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).\n- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).\n- crypto: iaa - Fix IAA disabling that occurs when sync_mode is set to \u0027async\u0027 (git-fixes).\n- crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto() (git-fixes).\n- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).\n- crypto: qce - fix goto jump in error path (git-fixes).\n- crypto: qce - fix priority to be less than ARMv8 CE (git-fixes).\n- crypto: qce - unregister previously registered algos in error path (git-fixes).\n- crypto: x86/sha256 - Add parentheses around macros\u0027 single arguments (stable-fixes).\n- cyrpto/b128ops: Remove struct u128 (bsc#1220773).\n- devcoredump: cleanup some comments (git-fixes).\n- devlink: Fix length of eswitch inline-mode (git-fixes).\n- dlm: fix possible lkb_resource null dereference (git-fixes).\n- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).\n- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).\n- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).\n- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).\n- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).\n- dmaengine: tegra: Return correct DMA status when paused (git-fixes).\n- dmaengine: ti: edma: fix OF node reference leaks in edma_driver (git-fixes).\n- docs: media: update location of the media patches (stable-fixes).\n- docs: power: Fix footnote reference for Toshiba Satellite P10-554 (git-fixes).\n- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).\n- driver core: class: Fix wild pointer dereferences in API class_dev_iter_next() (git-fixes).\n- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).\n- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).\n- drivers/card_reader/rtsx_usb: Restore interrupt based detection (git-fixes).\n- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).\n- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).\n- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).\n- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).\n- drm/amd/display: Fix DSC-re-computing (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).\n- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).\n- drm/amd/display: Use HW lock mgr for PSR1 (stable-fixes).\n- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).\n- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).\n- drm/amd/pm: Fix an error handling path in vega10_enable_se_edc_force_stall_config() (git-fixes).\n- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).\n- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).\n- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).\n- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).\n- drm/amdgpu/pm: Remove gpu_od if it\u0027s an empty directory (stable-fixes).\n- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).\n- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).\n- drm/amdgpu/vcn: reset fw_shared under SRIOV (git-fixes).\n- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).\n- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).\n- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).\n- drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table (git-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).\n- drm/amdgpu: always sync the GFX pipe on ctx switch (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).\n- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: do not access invalid sched (git-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: fix usage slab after free (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).\n- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).\n- drm/amdgpu: simplify return statement in amdgpu_ras_eeprom_init (git-fixes).\n- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).\n- drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini() (git-fixes).\n- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/amdkfd: Use device based logging for errors (stable-fixes).\n- drm/amdkfd: Use the correct wptr size (stable-fixes).\n- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).\n- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).\n- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).\n- drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE (git-fixes).\n- drm/bridge: it6505: Enable module autoloading (stable-fixes).\n- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).\n- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).\n- drm/display: Fix building with GCC 15 (stable-fixes).\n- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).\n- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).\n- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).\n- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).\n- drm/etnaviv: Fix page property being used for non writecombine buffers (git-fixes).\n- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).\n- drm/i915/dg1: Fix power gate sequence (git-fixes).\n- drm/i915/fb: Relax clear color alignment to 64 bytes (stable-fixes).\n- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).\n- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).\n- drm/mcde: Enable module autoloading (stable-fixes).\n- drm/mediatek: Add return value check when reading DPCD (git-fixes).\n- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).\n- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).\n- drm/mediatek: Fix mode valid issue for dp (git-fixes).\n- drm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err (git-fixes).\n- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).\n- drm/mediatek: stop selecting foreign drivers (git-fixes).\n- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).\n- drm/msm/dp: set safe_to_exit_level before printing it (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8150 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8250 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8350 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8550 (git-fixes).\n- drm/msm: Check return value of of_dma_configure() (git-fixes).\n- drm/msm: do not clean up priv-\u003ekms prematurely (git-fixes).\n- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).\n- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).\n- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).\n- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).\n- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).\n- drm/radeon: change rdev-\u003eddev to rdev_to_drm(rdev) (stable-fixes).\n- drm/rcar-du: dsi: Fix PHY lock bit check (git-fixes).\n- drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event() (git-fixes).\n- drm/rockchip: vop2: Check linear format for Cluster windows on rk3566/8 (git-fixes).\n- drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters offset (git-fixes).\n- drm/rockchip: vop2: Fix the mixer alpha setup for layer 0 (git-fixes).\n- drm/sched: memset() \u0027job\u0027 in drm_sched_job_init() (stable-fixes).\n- drm/tidss: Clear the interrupt status for interrupts being disabled (git-fixes).\n- drm/tidss: Fix issue in irq handling causing irq-flood issue (git-fixes).\n- drm/v3d: Assign job pointer to NULL before signaling the fence (git-fixes).\n- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).\n- drm/v3d: Stop active perfmon if it is being destroyed (git-fixes).\n- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).\n- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).\n- drm/vmwgfx: Add new keep_resv BO param (git-fixes).\n- drm: adv7511: Drop dsi single lane support (git-fixes).\n- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).\n- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- erofs: avoid debugging output for (de)compressed data (git-fixes).\n- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).\n- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).\n- exfat: fix the infinite loop in exfat_readdir() (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- ext4: add a new helper to check if es must be kept (bsc#1234170).\n- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).\n- ext4: add missed brelse in update_backups (bsc#1234171).\n- ext4: allow for the last group to be marked as trimmed (bsc#1234278).\n- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).\n- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).\n- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).\n- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).\n- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).\n- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).\n- ext4: check the extent status again before inserting delalloc block (bsc#1234186).\n- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).\n- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).\n- ext4: correct best extent lstart adjustment logic (bsc#1234179).\n- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).\n- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).\n- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).\n- ext4: correct the start block of counting reserved clusters (bsc#1234169).\n- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).\n- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).\n- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).\n- ext4: factor out a common helper to query extent map (bsc#1234186).\n- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).\n- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).\n- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).\n- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).\n- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).\n- ext4: fix potential unnitialized variable (bsc#1234183).\n- ext4: fix race between writepages and remount (bsc#1234168).\n- ext4: fix rec_len verify error (bsc#1234167).\n- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).\n- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).\n- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).\n- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).\n- ext4: make ext4_es_insert_extent() return void (bsc#1234170).\n- ext4: make ext4_es_remove_extent() return void (bsc#1234170).\n- ext4: make ext4_zeroout_es() return void (bsc#1234170).\n- ext4: make sure allocate pending entry not fail (bsc#1234170).\n- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).\n- ext4: move \u0027ix\u0027 sanity check to corrent position (bsc#1234174).\n- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).\n- ext4: nested locking for xattr inode (bsc#1234189).\n- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).\n- ext4: refactor ext4_da_map_blocks() (bsc#1234178).\n- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).\n- ext4: remove the redundant folio_wait_stable() (bsc#1234184).\n- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).\n- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).\n- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).\n- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).\n- fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device() (git-fixes).\n- filemap: Fix bounds checking in filemap_read() (bsc#1234209).\n- filemap: add a per-mapping stable writes flag (bsc#1234141).\n- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).\n- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).\n- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).\n- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).\n- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).\n- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).\n- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).\n- genirq: Make handle_enforce_irqctx() unconditionally available (git-fixes).\n- genksyms: fix memory leak when the same symbol is added from source (git-fixes).\n- genksyms: fix memory leak when the same symbol is read from *.symref file (git-fixes).\n- gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (git-fixes).\n- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).\n- gpio: grgpio: use a helper variable to store the address of ofdev-\u003edev (stable-fixes).\n- gpio: mxc: remove dead code after switch to DT-only (git-fixes).\n- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- hvc/xen: fix console unplug (git-fixes).\n- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).\n- hvc/xen: fix event channel handling for secondary consoles (git-fixes).\n- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).\n- hwmon: (drivetemp) Set scsi command timeout to 10s (stable-fixes).\n- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).\n- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).\n- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).\n- hwmon: (tmp513) Do not use \"proxy\" headers (stable-fixes).\n- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).\n- hwmon: (tmp513) Fix division of negative numbers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).\n- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).\n- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).\n- hyperv: Do not overlap the hvcall IO areas in get_vtl() (git-fixes).\n- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).\n- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).\n- i2c: i801: Add support for Intel Panther Lake (stable-fixes).\n- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).\n- i2c: microchip-core: actually use repeated sends (git-fixes).\n- i2c: microchip-core: fix \"ghost\" detections (git-fixes).\n- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).\n- i2c: pnx: Fix timeout in wait functions (git-fixes).\n- i2c: rcar: fix NACK handling when being a target (git-fixes).\n- i2c: riic: Always round-up when calculating bus period (git-fixes).\n- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).\n- i40e: Fix handling changed priv flags (git-fixes).\n- i915/guc: Accumulate active runtime on gt reset (git-fixes).\n- i915/guc: Ensure busyness counter increases motonically (git-fixes).\n- i915/guc: Reset engine utilization buffer before registration (git-fixes).\n- ibmvnic: Free any outstanding tx skbs during scrq reset (bsc#1226980).\n- ice: Unbind the workqueue (bsc#1234989)\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).\n- ice: fix PHY Clock Recovery availability check (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).\n- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).\n- iio: adc: ad7124: Disable all channels at probe time (git-fixes).\n- iio: adc: ad_sigma_delta: Handle CS assertion as intended in ad_sd_read_reg_raw() (git-fixes).\n- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).\n- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).\n- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).\n- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).\n- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).\n- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).\n- iio: iio-mux: kzalloc instead of devm_kzalloc to ensure page alignment (git-fixes).\n- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).\n- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).\n- iio: light: as73211: fix channel handling in only-color triggered buffer (git-fixes).\n- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).\n- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).\n- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).\n- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).\n- instrumentation: Wire up cmpxchg128() (bsc#1220773).\n- intel_th: core: fix kernel-doc warnings (git-fixes).\n- io_uring/rw: avoid punting to io-wq directly (git-fixes).\n- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).\n- io_uring: Fix registered ring file refcount leak (git-fixes).\n- io_uring: always lock __io_cqring_overflow_flush (git-fixes).\n- io_uring: check if iowq is killed before queuing (git-fixes).\n- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).\n- ipmi: ipmb: Add check devm_kasprintf() returned value (git-fixes).\n- ipmi: ssif_bmc: Fix new request loss when bmc ready for a response (git-fixes).\n- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).\n- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).\n- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).\n- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).\n- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).\n- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kABI workaround for struct auto_pin_cfg_item change (git-fixes).\n- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).\n- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)\n- kasan: make report_lock a raw spinlock (git-fixes).\n- kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST (git-fixes).\n- kdb: Fix buffer overflow during tab-complete (bsc#1234652).\n- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).\n- kdb: Merge identical case statements in kdb_read() (bsc#1234657).\n- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).\n- kdb: Use format-strings rather than \u0027\\0\u0027 injection in kdb_read() (bsc#1234654).\n- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).\n- kdb: address -Wformat-security warnings (bsc#1234659).\n- kgdb: Flush console before entering kgdb on panic (bsc#1234651).\n- kheaders: Ignore silly-rename files (stable-fixes).\n- ktest.pl: Avoid false positives with grub2 skip regex (stable-fixes).\n- ktest.pl: Check kernelrelease return in get_version (git-fixes).\n- ktest.pl: Fix typo \"accesing\" (git-fixes).\n- ktest.pl: Fix typo in comment (git-fixes).\n- ktest.pl: Remove unused declarations in run_bisect_test function (git-fixes).\n- ktest: force $buildonly = 1 for \u0027make_warnings_file\u0027 test type (stable-fixes).\n- landlock: Handle weird files (git-fixes).\n- latencytop: use correct kernel-doc format for func params (git-fixes).\n- leds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex (stable-fixes).\n- leds: lp8860: Write full EEPROM, not only half of it (git-fixes).\n- leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata() (git-fixes).\n- lib/inflate.c: remove dead code (git-fixes).\n- lib/stackdepot: print disabled message only if truly disabled (git-fixes).\n- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).\n- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).\n- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).\n- mac80211: fix user-power when emulating chanctx (stable-fixes).\n- mac802154: check local interfaces before deleting sdata list (stable-fixes).\n- mailbox: pcc: Add support for platform notification handling (stable-fixes).\n- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).\n- mailbox: tegra-hsp: Clear mailbox before using message (git-fixes).\n- maple_tree: simplify split calculation (git-fixes).\n- media: camif-core: Add check for clk_enable() (git-fixes).\n- media: ccs: Clean up parsed CCS static data on parse failure (git-fixes).\n- media: ccs: Fix CCS static data parsing for large block sizes (git-fixes).\n- media: ccs: Fix cleanup order in ccs_probe() (git-fixes).\n- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).\n- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).\n- media: dvb-usb-v2: af9035: fix ISO C90 compilation error on af9035_i2c_master_xfer (git-fixes).\n- media: i2c: imx412: Add missing newline to prints (git-fixes).\n- media: i2c: ov9282: Correct the exposure offset (git-fixes).\n- media: imx-jpeg: Fix potential error pointer dereference in detach_pm() (git-fixes).\n- media: imx296: Add standby delay during probe (git-fixes).\n- media: lmedm04: Handle errors for lme2510_int_read (git-fixes).\n- media: marvell: Add check for clk_enable() (git-fixes).\n- media: mc: fix endpoint iteration (git-fixes).\n- media: mipi-csis: Add check for clk_enable() (git-fixes).\n- media: nxp: imx8-isi: fix v4l2-compliance test errors (git-fixes).\n- media: ov5640: fix get_light_freq on auto (git-fixes).\n- media: rc: iguanair: handle timeouts (git-fixes).\n- media: rkisp1: Fix unused value issue (git-fixes).\n- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).\n- media: uvcvideo: Fix crash during unbind if gpio unit is in use (git-fixes).\n- media: uvcvideo: Fix double free in error path (git-fixes).\n- media: uvcvideo: Fix event flags in uvc_ctrl_send_events (git-fixes).\n- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).\n- media: uvcvideo: Only save async fh if success (git-fixes).\n- media: uvcvideo: Propagate buf-\u003eerror to userspace (git-fixes).\n- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).\n- media: uvcvideo: Remove dangling pointers (git-fixes).\n- media: uvcvideo: Remove redundant NULL assignment (git-fixes).\n- media: uvcvideo: Support partial control reads (git-fixes).\n- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).\n- memory-failure: use a folio in me_huge_page() (git-fixes).\n- memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code() (git-fixes).\n- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).\n- misc: fastrpc: Deregister device nodes properly in error scenarios (git-fixes).\n- misc: fastrpc: Fix copy buffer page size (git-fixes).\n- misc: fastrpc: Fix registered buffer page address (git-fixes).\n- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).\n- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).\n- misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors (git-fixes).\n- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).\n- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).\n- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).\n- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).\n- mm/memory-failure: check the mapcount of the precise page (git-fixes).\n- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).\n- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).\n- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).\n- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).\n- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).\n- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).\n- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).\n- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).\n- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).\n- mm/migrate: putback split folios when numa hint migration fails (git-fixes).\n- mm/migrate: split source folio if it is on deferred split list (git-fixes).\n- mm/page_owner: remove free_ts from page_owner output (git-fixes).\n- mm/readahead: do not allow order-1 folio (bsc#1234205).\n- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).\n- mm/rodata_test: use READ_ONCE() to read const variable (git-fixes).\n- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).\n- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).\n- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).\n- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).\n- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).\n- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).\n- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).\n- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).\n- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).\n- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).\n- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).\n- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).\n- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).\n- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).\n- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).\n- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).\n- mtd: onenand: Fix uninitialized retlen in do_otp_read() (git-fixes).\n- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).\n- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).\n- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).\n- mtd: spinand: Remove write_enable_op() in markbad() (git-fixes).\n- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).\n- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).\n- net/qed: allow old cards not supporting \"num_images\" to work (git-fixes).\n- net/rose: prevent integer overflows in rose_setsockopt() (git-fixes).\n- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset (git-fixes).\n- net: rose: fix timer races against user threads (git-fixes).\n- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).\n- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).\n- net: usb: rtl8150: enable basic endpoint checking (git-fixes).\n- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).\n- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).\n- netfilter: nf_tables: validate family when identifying table via handle (bsc#1233778 ZDI-24-1454).\n- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).\n- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).\n- nilfs2: fix possible int overflows in nilfs_fiemap() (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).\n- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).\n- nvme-tcp: Fix I/O queue cpu spreading for multiple controllers (git-fixes).\n- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).\n- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).\n- nvme: Add error check for xa_store in nvme_get_effects_log (git-fixes).\n- nvme: Add error path for xa_store in nvme_init_effects (git-fixes).\n- nvme: apple: fix device reference counting (git-fixes).\n- nvme: fix bogus kzalloc() return check in nvme_init_effects_log() (git-fixes).\n- nvme: fix metadata handling in nvme-passthrough (git-fixes).\n- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).\n- nvmet: propagate npwg topology (git-fixes).\n- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).\n- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).\n- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).\n- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).\n- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).\n- of: address: Report error on resource bounds overflow (stable-fixes).\n- padata: add pd get/put refcnt helper (git-fixes).\n- padata: avoid UAF for reorder_work (git-fixes).\n- padata: fix UAF in padata_reorder (git-fixes).\n- parisc: Raise minimal GCC version (bsc#1220773).\n- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).\n- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).\n- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).\n- percpu: Wire up cmpxchg128 (bsc#1220773).\n- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).\n- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).\n- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).\n- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).\n- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).\n- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).\n- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).\n- phy: usb: Toggle the PHY power during init (git-fixes).\n- pinctrl: amd: Take suspend type into consideration which pins are non-wake (git-fixes).\n- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).\n- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).\n- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).\n- pinctrl: samsung: fix fwnode refcount cleanup if platform_get_irq_optional() fails (git-fixes).\n- pinmux: Use sequential access to access desc-\u003epinmux data (stable-fixes).\n- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).\n- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).\n- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).\n- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).\n- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).\n- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).\n- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).\n- platform/x86: thinkpad_acpi: Fix for ThinkPad\u0027s with ECFW showing incorrect fan speed (stable-fixes).\n- pm:cpupower: Add missing powercap_set_enabled() stub function (git-fixes).\n- power: ip5xxx_power: Fix return value on ADC read errors (git-fixes).\n- power: supply: gpio-charger: Fix set charge current limits (git-fixes).\n- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).\n- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).\n- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).\n- powerpc/pseries/eeh: Fix get PE state translation (bsc#1215199).\n- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).\n- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).\n- pps: add an error check in parport_attach (git-fixes).\n- pps: remove usage of the deprecated ida_simple_xx() API (stable-fixes).\n- printk: Add is_printk_legacy_deferred() (bsc#1236733).\n- printk: Defer legacy printing when holding printk_cpu_sync (bsc#1236733).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- pwm: stm32-lp: Add check for clk_enable() (git-fixes).\n- pwm: stm32: Add check for clk_enable() (git-fixes).\n- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).\n- quota: explicitly forbid quota files from being encrypted (bsc#1234196).\n- quota: flush quota_release_work upon quota writeback (bsc#1234195).\n- quota: simplify drop_dquot_ref() (bsc#1234197).\n- rcu-tasks: Pull sampling of -\u003epercpu_dequeue_lim out of loop (git-fixes)\n- rcu/tree: Defer setting of jiffies during stall reset (git-fixes)\n- rcu: Dump memory object info if callback function is invalid (git-fixes)\n- rcu: Eliminate rcu_gp_slow_unregister() false positive (git-fixes)\n- rcuscale: Move rcu_scale_writer() (git-fixes)\n- rdma/cxgb4: Prevent potential integer overflow on 32bit (git-fixes)\n- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).\n- regmap: Use correct format specifier for logging range errors (stable-fixes).\n- regulator: core: Add missing newline character (git-fixes).\n- regulator: of: Implement the unwind path of of_regulator_match() (git-fixes).\n- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).\n- remoteproc: core: Fix ida_free call while not allocated (git-fixes).\n- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).\n- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read (git-fixes).\n- rtc: zynqmp: Fix optional clock name property (git-fixes).\n- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).\n- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).\n- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).\n- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).\n- s390/facility: Disable compile time optimization for decompressor code (git-fixes).\n- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).\n- s390/pageattr: Implement missing kernel_page_present() (git-fixes).\n- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)\n- samples/landlock: Fix possible NULL dereference in parse_path() (git-fixes).\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat (bsc#1235865).\n- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat -kabi (bsc#1235865).\n- sched/numa: fix memory leak due to the overwritten vma-\u003enumab_state (git fixes (sched/numa)).\n- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).\n- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).\n- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).\n- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).\n- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).\n- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).\n- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).\n- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).\n- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).\n- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).\n- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).\n- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).\n- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).\n- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).\n- scsi: qla2xxx: Remove the unused \u0027del_list_entry\u0027 field in struct fc_port (bsc#1235406).\n- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).\n- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (git-fixes).\n- seccomp: Stub for !CONFIG_SECCOMP (stable-fixes).\n- selftest: media_tests: fix trivial UAF typo (git-fixes).\n- selftests/alsa: Fix circular dependency involving global-timer (stable-fixes).\n- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).\n- selftests/landlock: Fix error message (git-fixes).\n- selftests/mm/cow: modify the incorrect checking parameters (git-fixes).\n- selftests/powerpc: Fix argument order to timer_sub() (git-fixes).\n- selftests: harness: fix printing of mismatch values in __EXPECT() (git-fixes).\n- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).\n- selftests: tc-testing: reduce rshift value (stable-fixes).\n- selftests: timers: clocksource-switch: Adapt progress to kselftest framework (git-fixes).\n- selinux: Fix SCTP error inconsistency in selinux_socket_bind() (git-fixes).\n- serial: 8250: Adjust the timeout for FIFO mode (git-fixes).\n- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).\n- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).\n- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).\n- serial: 8250_fintek: Add support for F81216E (stable-fixes).\n- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).\n- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).\n- serial: amba-pl011: Use port lock wrappers (stable-fixes).\n- serial: amba-pl011: fix build regression (git-fixes).\n- serial: do not use uninitialized value in uart_poll_init() (git-fixes).\n- serial: imx: only set receiver level if it is zero (git-fixes).\n- serial: imx: set receiver level before starting uart (git-fixes).\n- serial: qcom-geni: Do not cancel/abort if we can\u0027t get the port lock (git-fixes).\n- serial: qcom-geni: disable interrupts during console writes (git-fixes).\n- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).\n- serial: qcom-geni: fix console corruption (git-fixes).\n- serial: qcom-geni: fix dma rx cancellation (git-fixes).\n- serial: qcom-geni: fix false console tx restart (git-fixes).\n- serial: qcom-geni: fix fifo polling timeout (git-fixes).\n- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).\n- serial: qcom-geni: fix polled console corruption (git-fixes).\n- serial: qcom-geni: fix polled console initialisation (git-fixes).\n- serial: qcom-geni: fix receiver enable (git-fixes).\n- serial: qcom-geni: fix shutdown race (git-fixes).\n- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).\n- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).\n- serial: qcom-geni: revert broken hibernation support (git-fixes).\n- serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use (git-fixes).\n- serial: sh-sci: Drop __initdata macro for port_cfg (git-fixes).\n- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).\n- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).\n- series.conf: temporarily disable upstream patch patches.suse/ocfs2-fix-UBSAN-warning-in-ocfs2_verify_volume.patch (bsc#1236138)\n- slub: Replace cmpxchg_double() (bsc#1220773).\n- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]\n- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).\n- soc: atmel: fix device_node release in atmel_soc_device_init() (git-fixes).\n- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).\n- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).\n- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).\n- soc: mediatek: mtk-devapc: Fix leaking IO map on error paths (git-fixes).\n- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).\n- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).\n- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).\n- soc: qcom: smem_state: fix missing of_node_put in error path (git-fixes).\n- soc: qcom: socinfo: Avoid out of bounds read of serial number (git-fixes).\n- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).\n- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).\n- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).\n- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).\n- spi: zynq-qspi: Add check for clk_enable() (git-fixes).\n- srcu: Fix srcu_struct node grpmask overflow on 64-bit systems (git-fixes)\n- srcu: Only accelerate on enqueue time (git-fixes)\n- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).\n- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).\n- staging: iio: ad9832: Correct phase range check (git-fixes).\n- staging: iio: ad9834: Correct phase range check (git-fixes).\n- staging: media: imx: fix OF node leak in imx_media_add_of_subdevs() (git-fixes).\n- staging: media: max96712: fix kernel oops when removing module (git-fixes).\n- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).\n- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).\n- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).\n- supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).\n- swiotlb: Reinstate page-alignment for mappings \u003e= PAGE_SIZE (git-fixes).\n- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).\n- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).\n- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).\n- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).\n- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).\n- tools: Sync if_xdp.h uapi tooling header (git-fixes).\n- tools: hv: change permissions of NetworkManager configuration file (git-fixes).\n- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).\n- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).\n- types: Introduce [us]128 (bsc#1220773).\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- ubifs: skip dumping tnc tree when zroot is null (git-fixes).\n- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).\n- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).\n- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).\n- udf: refactor inode_bmap() to handle error (bsc#1234242).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).\n- uio: Fix return value of poll (git-fixes).\n- uio: uio_dmem_genirq: check the return value of devm_kasprintf() (git-fixes).\n- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).\n- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).\n- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).\n- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).\n- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).\n- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).\n- usb: dwc2: Fix HCD port connection race (git-fixes).\n- usb: dwc2: Fix HCD resume (git-fixes).\n- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).\n- usb: dwc2: hcd: Fix GetPortStatus \u0026 SetPortFeature (git-fixes).\n- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).\n- usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk() (git-fixes).\n- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).\n- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).\n- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).\n- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).\n- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).\n- usb: fix reference leak in usb_new_device() (git-fixes).\n- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).\n- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).\n- usb: gadget: f_tcm: Decrement command ref count on cleanup (git-fixes).\n- usb: gadget: f_tcm: Do not free command immediately (git-fixes).\n- usb: gadget: f_tcm: Do not prepare BOT write request twice (git-fixes).\n- usb: gadget: f_tcm: Fix Get/SetInterface return value (git-fixes).\n- usb: gadget: f_tcm: Translate error to sense (git-fixes).\n- usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint (git-fixes).\n- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).\n- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).\n- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).\n- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).\n- usb: host: xhci-plat: Assign shared_hcd-\u003ersrc_start (git-fixes).\n- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).\n- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).\n- usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control() (bsc#1235001)\n- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).\n- usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE (git-fixes).\n- usb: typec: use cleanup facility for \u0027altmodes_node\u0027 (stable-fixes).\n- usbnet: ipheth: break up NCM header size computation (git-fixes).\n- usbnet: ipheth: check that DPE points past NCM header (git-fixes).\n- usbnet: ipheth: fix DPE OoB read (git-fixes).\n- usbnet: ipheth: fix possible overflow in DPE length check (git-fixes).\n- usbnet: ipheth: refactor NCM datagram loop (git-fixes).\n- usbnet: ipheth: use static NDP16 location in URB (git-fixes).\n- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).\n- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).\n- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).\n- vdpa: solidrun: Fix UB bug with devres (git-fixes).\n- vfs: fix readahead(2) on block devices (bsc#1234201).\n- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).\n- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).\n- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).\n- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).\n- wifi: ath11k: Fix unexpected return buffer manager error for WCN6750/WCN6855 (git-fixes).\n- wifi: ath11k: cleanup struct ath11k_mon_data (git-fixes).\n- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).\n- wifi: ath12k: fix tx power, max reg power update to firmware (git-fixes).\n- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).\n- wifi: ath5k: add PCI ID for SX76X (git-fixes).\n- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).\n- wifi: brcmfmac: add missing header include for brcmf_dbg (git-fixes).\n- wifi: cfg80211: adjust allocation of colocated AP data (git-fixes).\n- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).\n- wifi: cw1200: Fix potential NULL dereference (git-fixes).\n- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).\n- wifi: iwlwifi: fw: read STEP table from correct UEFI var (git-fixes).\n- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).\n- wifi: mac80211: Add non-atomic station iterator (stable-fixes).\n- wifi: mac80211: Fix common size calculation for ML element (git-fixes).\n- wifi: mac80211: clean up \u0027ret\u0027 in sta_link_apply_parameters() (stable-fixes).\n- wifi: mac80211: do not flush non-uploaded STAs (git-fixes).\n- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).\n- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).\n- wifi: mac80211: fix station NSS capability initialization order (git-fixes).\n- wifi: mac80211: fix tid removal during mesh forwarding (git-fixes).\n- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).\n- wifi: mac80211: prohibit deactivating all links (git-fixes).\n- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).\n- wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO (git-fixes).\n- wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC (git-fixes).\n- wifi: mt76: mt7915: add module param to select 5 GHz or 6 GHz on MT7916 (git-fixes).\n- wifi: mt76: mt7915: firmware restart on devices with a second pcie link (git-fixes).\n- wifi: mt76: mt7915: fix overflows seen when writing limit attributes (git-fixes).\n- wifi: mt76: mt7915: fix register mapping (git-fixes).\n- wifi: mt76: mt7921: fix using incorrect group cipher after disconnection (git-fixes).\n- wifi: mt76: mt7925: fix off by one in mt7925_load_clc() (git-fixes).\n- wifi: mt76: mt7996: add max mpdu len capability (git-fixes).\n- wifi: mt76: mt7996: fix HE Phy capability (git-fixes).\n- wifi: mt76: mt7996: fix definition of tx descriptor (git-fixes).\n- wifi: mt76: mt7996: fix incorrect indexing of MIB FW event (git-fixes).\n- wifi: mt76: mt7996: fix ldpc setting (git-fixes).\n- wifi: mt76: mt7996: fix overflows seen when writing limit attributes (git-fixes).\n- wifi: mt76: mt7996: fix register mapping (git-fixes).\n- wifi: mt76: mt7996: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU (git-fixes).\n- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).\n- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).\n- wifi: rtlwifi: destroy workqueue at rtl_deinit_core (git-fixes).\n- wifi: rtlwifi: do not complete firmware loading needlessly (git-fixes).\n- wifi: rtlwifi: fix init_sw_vars leak when probe fails (git-fixes).\n- wifi: rtlwifi: fix memory leaks and invalid access at probe error path (git-fixes).\n- wifi: rtlwifi: pci: wait for firmware loading before releasing memory (git-fixes).\n- wifi: rtlwifi: remove unused check_buddy_priv (git-fixes).\n- wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step (git-fixes).\n- wifi: rtlwifi: rtl8821ae: Fix media status report (git-fixes).\n- wifi: rtlwifi: rtl8821ae: phy: restore removed code to fix infinite loop (git-fixes).\n- wifi: rtlwifi: usb: fix workqueue leak when probe fails (git-fixes).\n- wifi: rtlwifi: wait for firmware loading before releasing memory (git-fixes).\n- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).\n- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).\n- wifi: rtw89: mcc: consider time limits not divisible by 1024 (git-fixes).\n- wifi: wcn36xx: fix channel survey memory allocation size (git-fixes).\n- wifi: wlcore: fix unbalanced pm_runtime calls (git-fixes).\n- workqueue: Add rcu lock check at the end of work item execution (bsc#1236732).\n- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).\n- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).\n- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).\n- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).\n- xfs: Add error handling for xfs_reflink_cancel_cow_range (git-fixes).\n- xfs: Propagate errors from xfs_reflink_cancel_cow_range in xfs_dax_write_iomap_end (git-fixes).\n- xfs: do not allocate COW extents when unsharing a hole (git-fixes).\n- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).\n- xfs: remove unknown compat feature check in superblock write validation (git-fixes).\n- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).\n- xfs: sb_spino_align is not verified (git-fixes).\n- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).\n- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).\n- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-kernel-4",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20249-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20249-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520249-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20249-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021072.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1065729",
"url": "https://bugzilla.suse.com/1065729"
},
{
"category": "self",
"summary": "SUSE Bug 1181674",
"url": "https://bugzilla.suse.com/1181674"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1207948",
"url": "https://bugzilla.suse.com/1207948"
},
{
"category": "self",
"summary": "SUSE Bug 1214954",
"url": "https://bugzilla.suse.com/1214954"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216702",
"url": "https://bugzilla.suse.com/1216702"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1218470",
"url": "https://bugzilla.suse.com/1218470"
},
{
"category": "self",
"summary": "SUSE Bug 1219170",
"url": "https://bugzilla.suse.com/1219170"
},
{
"category": "self",
"summary": "SUSE Bug 1219596",
"url": "https://bugzilla.suse.com/1219596"
},
{
"category": "self",
"summary": "SUSE Bug 1220021",
"url": "https://bugzilla.suse.com/1220021"
},
{
"category": "self",
"summary": "SUSE Bug 1220328",
"url": "https://bugzilla.suse.com/1220328"
},
{
"category": "self",
"summary": "SUSE Bug 1220430",
"url": "https://bugzilla.suse.com/1220430"
},
{
"category": "self",
"summary": "SUSE Bug 1220711",
"url": "https://bugzilla.suse.com/1220711"
},
{
"category": "self",
"summary": "SUSE Bug 1220773",
"url": "https://bugzilla.suse.com/1220773"
},
{
"category": "self",
"summary": "SUSE Bug 1221044",
"url": "https://bugzilla.suse.com/1221044"
},
{
"category": "self",
"summary": "SUSE Bug 1221303",
"url": "https://bugzilla.suse.com/1221303"
},
{
"category": "self",
"summary": "SUSE Bug 1221858",
"url": "https://bugzilla.suse.com/1221858"
},
{
"category": "self",
"summary": "SUSE Bug 1222426",
"url": "https://bugzilla.suse.com/1222426"
},
{
"category": "self",
"summary": "SUSE Bug 1222608",
"url": "https://bugzilla.suse.com/1222608"
},
{
"category": "self",
"summary": "SUSE Bug 1222721",
"url": "https://bugzilla.suse.com/1222721"
},
{
"category": "self",
"summary": "SUSE Bug 1222775",
"url": "https://bugzilla.suse.com/1222775"
},
{
"category": "self",
"summary": "SUSE Bug 1222780",
"url": "https://bugzilla.suse.com/1222780"
},
{
"category": "self",
"summary": "SUSE Bug 1223020",
"url": "https://bugzilla.suse.com/1223020"
},
{
"category": "self",
"summary": "SUSE Bug 1223023",
"url": "https://bugzilla.suse.com/1223023"
},
{
"category": "self",
"summary": "SUSE Bug 1223024",
"url": "https://bugzilla.suse.com/1223024"
},
{
"category": "self",
"summary": "SUSE Bug 1223038",
"url": "https://bugzilla.suse.com/1223038"
},
{
"category": "self",
"summary": "SUSE Bug 1223039",
"url": "https://bugzilla.suse.com/1223039"
},
{
"category": "self",
"summary": "SUSE Bug 1223041",
"url": "https://bugzilla.suse.com/1223041"
},
{
"category": "self",
"summary": "SUSE Bug 1223046",
"url": "https://bugzilla.suse.com/1223046"
},
{
"category": "self",
"summary": "SUSE Bug 1223051",
"url": "https://bugzilla.suse.com/1223051"
},
{
"category": "self",
"summary": "SUSE Bug 1223052",
"url": "https://bugzilla.suse.com/1223052"
},
{
"category": "self",
"summary": "SUSE Bug 1223058",
"url": "https://bugzilla.suse.com/1223058"
},
{
"category": "self",
"summary": "SUSE Bug 1223061",
"url": "https://bugzilla.suse.com/1223061"
},
{
"category": "self",
"summary": "SUSE Bug 1223076",
"url": "https://bugzilla.suse.com/1223076"
},
{
"category": "self",
"summary": "SUSE Bug 1223113",
"url": "https://bugzilla.suse.com/1223113"
},
{
"category": "self",
"summary": "SUSE Bug 1223187",
"url": "https://bugzilla.suse.com/1223187"
},
{
"category": "self",
"summary": "SUSE Bug 1223285",
"url": "https://bugzilla.suse.com/1223285"
},
{
"category": "self",
"summary": "SUSE Bug 1223315",
"url": "https://bugzilla.suse.com/1223315"
},
{
"category": "self",
"summary": "SUSE Bug 1223591",
"url": "https://bugzilla.suse.com/1223591"
},
{
"category": "self",
"summary": "SUSE Bug 1223592",
"url": "https://bugzilla.suse.com/1223592"
},
{
"category": "self",
"summary": "SUSE Bug 1223633",
"url": "https://bugzilla.suse.com/1223633"
},
{
"category": "self",
"summary": "SUSE Bug 1223637",
"url": "https://bugzilla.suse.com/1223637"
},
{
"category": "self",
"summary": "SUSE Bug 1223641",
"url": "https://bugzilla.suse.com/1223641"
},
{
"category": "self",
"summary": "SUSE Bug 1223649",
"url": "https://bugzilla.suse.com/1223649"
},
{
"category": "self",
"summary": "SUSE Bug 1223650",
"url": "https://bugzilla.suse.com/1223650"
},
{
"category": "self",
"summary": "SUSE Bug 1223651",
"url": "https://bugzilla.suse.com/1223651"
},
{
"category": "self",
"summary": "SUSE Bug 1223652",
"url": "https://bugzilla.suse.com/1223652"
},
{
"category": "self",
"summary": "SUSE Bug 1223654",
"url": "https://bugzilla.suse.com/1223654"
},
{
"category": "self",
"summary": "SUSE Bug 1223660",
"url": "https://bugzilla.suse.com/1223660"
},
{
"category": "self",
"summary": "SUSE Bug 1223661",
"url": "https://bugzilla.suse.com/1223661"
},
{
"category": "self",
"summary": "SUSE Bug 1223665",
"url": "https://bugzilla.suse.com/1223665"
},
{
"category": "self",
"summary": "SUSE Bug 1223666",
"url": "https://bugzilla.suse.com/1223666"
},
{
"category": "self",
"summary": "SUSE Bug 1223671",
"url": "https://bugzilla.suse.com/1223671"
},
{
"category": "self",
"summary": "SUSE Bug 1223675",
"url": "https://bugzilla.suse.com/1223675"
},
{
"category": "self",
"summary": "SUSE Bug 1223677",
"url": "https://bugzilla.suse.com/1223677"
},
{
"category": "self",
"summary": "SUSE Bug 1223678",
"url": "https://bugzilla.suse.com/1223678"
},
{
"category": "self",
"summary": "SUSE Bug 1223696",
"url": "https://bugzilla.suse.com/1223696"
},
{
"category": "self",
"summary": "SUSE Bug 1223698",
"url": "https://bugzilla.suse.com/1223698"
},
{
"category": "self",
"summary": "SUSE Bug 1223705",
"url": "https://bugzilla.suse.com/1223705"
},
{
"category": "self",
"summary": "SUSE Bug 1223712",
"url": "https://bugzilla.suse.com/1223712"
},
{
"category": "self",
"summary": "SUSE Bug 1223718",
"url": "https://bugzilla.suse.com/1223718"
},
{
"category": "self",
"summary": "SUSE Bug 1223728",
"url": "https://bugzilla.suse.com/1223728"
},
{
"category": "self",
"summary": "SUSE Bug 1223739",
"url": "https://bugzilla.suse.com/1223739"
},
{
"category": "self",
"summary": "SUSE Bug 1223741",
"url": "https://bugzilla.suse.com/1223741"
},
{
"category": "self",
"summary": "SUSE Bug 1223744",
"url": "https://bugzilla.suse.com/1223744"
},
{
"category": "self",
"summary": "SUSE Bug 1223747",
"url": "https://bugzilla.suse.com/1223747"
},
{
"category": "self",
"summary": "SUSE Bug 1223748",
"url": "https://bugzilla.suse.com/1223748"
},
{
"category": "self",
"summary": "SUSE Bug 1223750",
"url": "https://bugzilla.suse.com/1223750"
},
{
"category": "self",
"summary": "SUSE Bug 1223752",
"url": "https://bugzilla.suse.com/1223752"
},
{
"category": "self",
"summary": "SUSE Bug 1223754",
"url": "https://bugzilla.suse.com/1223754"
},
{
"category": "self",
"summary": "SUSE Bug 1223757",
"url": "https://bugzilla.suse.com/1223757"
},
{
"category": "self",
"summary": "SUSE Bug 1223759",
"url": "https://bugzilla.suse.com/1223759"
},
{
"category": "self",
"summary": "SUSE Bug 1223761",
"url": "https://bugzilla.suse.com/1223761"
},
{
"category": "self",
"summary": "SUSE Bug 1223762",
"url": "https://bugzilla.suse.com/1223762"
},
{
"category": "self",
"summary": "SUSE Bug 1223782",
"url": "https://bugzilla.suse.com/1223782"
},
{
"category": "self",
"summary": "SUSE Bug 1223787",
"url": "https://bugzilla.suse.com/1223787"
},
{
"category": "self",
"summary": "SUSE Bug 1223788",
"url": "https://bugzilla.suse.com/1223788"
},
{
"category": "self",
"summary": "SUSE Bug 1223789",
"url": "https://bugzilla.suse.com/1223789"
},
{
"category": "self",
"summary": "SUSE Bug 1223790",
"url": "https://bugzilla.suse.com/1223790"
},
{
"category": "self",
"summary": "SUSE Bug 1223802",
"url": "https://bugzilla.suse.com/1223802"
},
{
"category": "self",
"summary": "SUSE Bug 1223805",
"url": "https://bugzilla.suse.com/1223805"
},
{
"category": "self",
"summary": "SUSE Bug 1223827",
"url": "https://bugzilla.suse.com/1223827"
},
{
"category": "self",
"summary": "SUSE Bug 1223831",
"url": "https://bugzilla.suse.com/1223831"
},
{
"category": "self",
"summary": "SUSE Bug 1223834",
"url": "https://bugzilla.suse.com/1223834"
},
{
"category": "self",
"summary": "SUSE Bug 1223869",
"url": "https://bugzilla.suse.com/1223869"
},
{
"category": "self",
"summary": "SUSE Bug 1223874",
"url": "https://bugzilla.suse.com/1223874"
},
{
"category": "self",
"summary": "SUSE Bug 1224095",
"url": "https://bugzilla.suse.com/1224095"
},
{
"category": "self",
"summary": "SUSE Bug 1224174",
"url": "https://bugzilla.suse.com/1224174"
},
{
"category": "self",
"summary": "SUSE Bug 1224177",
"url": "https://bugzilla.suse.com/1224177"
},
{
"category": "self",
"summary": "SUSE Bug 1224180",
"url": "https://bugzilla.suse.com/1224180"
},
{
"category": "self",
"summary": "SUSE Bug 1224423",
"url": "https://bugzilla.suse.com/1224423"
},
{
"category": "self",
"summary": "SUSE Bug 1224432",
"url": "https://bugzilla.suse.com/1224432"
},
{
"category": "self",
"summary": "SUSE Bug 1224433",
"url": "https://bugzilla.suse.com/1224433"
},
{
"category": "self",
"summary": "SUSE Bug 1224437",
"url": "https://bugzilla.suse.com/1224437"
},
{
"category": "self",
"summary": "SUSE Bug 1224438",
"url": "https://bugzilla.suse.com/1224438"
},
{
"category": "self",
"summary": "SUSE Bug 1224443",
"url": "https://bugzilla.suse.com/1224443"
},
{
"category": "self",
"summary": "SUSE Bug 1224445",
"url": "https://bugzilla.suse.com/1224445"
},
{
"category": "self",
"summary": "SUSE Bug 1224449",
"url": "https://bugzilla.suse.com/1224449"
},
{
"category": "self",
"summary": "SUSE Bug 1224479",
"url": "https://bugzilla.suse.com/1224479"
},
{
"category": "self",
"summary": "SUSE Bug 1224480",
"url": "https://bugzilla.suse.com/1224480"
},
{
"category": "self",
"summary": "SUSE Bug 1224482",
"url": "https://bugzilla.suse.com/1224482"
},
{
"category": "self",
"summary": "SUSE Bug 1224486",
"url": "https://bugzilla.suse.com/1224486"
},
{
"category": "self",
"summary": "SUSE Bug 1224487",
"url": "https://bugzilla.suse.com/1224487"
},
{
"category": "self",
"summary": "SUSE Bug 1224491",
"url": "https://bugzilla.suse.com/1224491"
},
{
"category": "self",
"summary": "SUSE Bug 1224492",
"url": "https://bugzilla.suse.com/1224492"
},
{
"category": "self",
"summary": "SUSE Bug 1224494",
"url": "https://bugzilla.suse.com/1224494"
},
{
"category": "self",
"summary": "SUSE Bug 1224495",
"url": "https://bugzilla.suse.com/1224495"
},
{
"category": "self",
"summary": "SUSE Bug 1224500",
"url": "https://bugzilla.suse.com/1224500"
},
{
"category": "self",
"summary": "SUSE Bug 1224501",
"url": "https://bugzilla.suse.com/1224501"
},
{
"category": "self",
"summary": "SUSE Bug 1224504",
"url": "https://bugzilla.suse.com/1224504"
},
{
"category": "self",
"summary": "SUSE Bug 1224505",
"url": "https://bugzilla.suse.com/1224505"
},
{
"category": "self",
"summary": "SUSE Bug 1224506",
"url": "https://bugzilla.suse.com/1224506"
},
{
"category": "self",
"summary": "SUSE Bug 1224507",
"url": "https://bugzilla.suse.com/1224507"
},
{
"category": "self",
"summary": "SUSE Bug 1224508",
"url": "https://bugzilla.suse.com/1224508"
},
{
"category": "self",
"summary": "SUSE Bug 1224509",
"url": "https://bugzilla.suse.com/1224509"
},
{
"category": "self",
"summary": "SUSE Bug 1224513",
"url": "https://bugzilla.suse.com/1224513"
},
{
"category": "self",
"summary": "SUSE Bug 1224517",
"url": "https://bugzilla.suse.com/1224517"
},
{
"category": "self",
"summary": "SUSE Bug 1224519",
"url": "https://bugzilla.suse.com/1224519"
},
{
"category": "self",
"summary": "SUSE Bug 1224521",
"url": "https://bugzilla.suse.com/1224521"
},
{
"category": "self",
"summary": "SUSE Bug 1224524",
"url": "https://bugzilla.suse.com/1224524"
},
{
"category": "self",
"summary": "SUSE Bug 1224526",
"url": "https://bugzilla.suse.com/1224526"
},
{
"category": "self",
"summary": "SUSE Bug 1224537",
"url": "https://bugzilla.suse.com/1224537"
},
{
"category": "self",
"summary": "SUSE Bug 1224542",
"url": "https://bugzilla.suse.com/1224542"
},
{
"category": "self",
"summary": "SUSE Bug 1224546",
"url": "https://bugzilla.suse.com/1224546"
},
{
"category": "self",
"summary": "SUSE Bug 1224552",
"url": "https://bugzilla.suse.com/1224552"
},
{
"category": "self",
"summary": "SUSE Bug 1224555",
"url": "https://bugzilla.suse.com/1224555"
},
{
"category": "self",
"summary": "SUSE Bug 1224557",
"url": "https://bugzilla.suse.com/1224557"
},
{
"category": "self",
"summary": "SUSE Bug 1224558",
"url": "https://bugzilla.suse.com/1224558"
},
{
"category": "self",
"summary": "SUSE Bug 1224559",
"url": "https://bugzilla.suse.com/1224559"
},
{
"category": "self",
"summary": "SUSE Bug 1224562",
"url": "https://bugzilla.suse.com/1224562"
},
{
"category": "self",
"summary": "SUSE Bug 1224566",
"url": "https://bugzilla.suse.com/1224566"
},
{
"category": "self",
"summary": "SUSE Bug 1224567",
"url": "https://bugzilla.suse.com/1224567"
},
{
"category": "self",
"summary": "SUSE Bug 1224568",
"url": "https://bugzilla.suse.com/1224568"
},
{
"category": "self",
"summary": "SUSE Bug 1224569",
"url": "https://bugzilla.suse.com/1224569"
},
{
"category": "self",
"summary": "SUSE Bug 1224571",
"url": "https://bugzilla.suse.com/1224571"
},
{
"category": "self",
"summary": "SUSE Bug 1224573",
"url": "https://bugzilla.suse.com/1224573"
},
{
"category": "self",
"summary": "SUSE Bug 1224576",
"url": "https://bugzilla.suse.com/1224576"
},
{
"category": "self",
"summary": "SUSE Bug 1224577",
"url": "https://bugzilla.suse.com/1224577"
},
{
"category": "self",
"summary": "SUSE Bug 1224578",
"url": "https://bugzilla.suse.com/1224578"
},
{
"category": "self",
"summary": "SUSE Bug 1224579",
"url": "https://bugzilla.suse.com/1224579"
},
{
"category": "self",
"summary": "SUSE Bug 1224582",
"url": "https://bugzilla.suse.com/1224582"
},
{
"category": "self",
"summary": "SUSE Bug 1224585",
"url": "https://bugzilla.suse.com/1224585"
},
{
"category": "self",
"summary": "SUSE Bug 1224586",
"url": "https://bugzilla.suse.com/1224586"
},
{
"category": "self",
"summary": "SUSE Bug 1224587",
"url": "https://bugzilla.suse.com/1224587"
},
{
"category": "self",
"summary": "SUSE Bug 1224588",
"url": "https://bugzilla.suse.com/1224588"
},
{
"category": "self",
"summary": "SUSE Bug 1224592",
"url": "https://bugzilla.suse.com/1224592"
},
{
"category": "self",
"summary": "SUSE Bug 1224596",
"url": "https://bugzilla.suse.com/1224596"
},
{
"category": "self",
"summary": "SUSE Bug 1224598",
"url": "https://bugzilla.suse.com/1224598"
},
{
"category": "self",
"summary": "SUSE Bug 1224600",
"url": "https://bugzilla.suse.com/1224600"
},
{
"category": "self",
"summary": "SUSE Bug 1224601",
"url": "https://bugzilla.suse.com/1224601"
},
{
"category": "self",
"summary": "SUSE Bug 1224603",
"url": "https://bugzilla.suse.com/1224603"
},
{
"category": "self",
"summary": "SUSE Bug 1224605",
"url": "https://bugzilla.suse.com/1224605"
},
{
"category": "self",
"summary": "SUSE Bug 1224607",
"url": "https://bugzilla.suse.com/1224607"
},
{
"category": "self",
"summary": "SUSE Bug 1224609",
"url": "https://bugzilla.suse.com/1224609"
},
{
"category": "self",
"summary": "SUSE Bug 1224611",
"url": "https://bugzilla.suse.com/1224611"
},
{
"category": "self",
"summary": "SUSE Bug 1224613",
"url": "https://bugzilla.suse.com/1224613"
},
{
"category": "self",
"summary": "SUSE Bug 1224615",
"url": "https://bugzilla.suse.com/1224615"
},
{
"category": "self",
"summary": "SUSE Bug 1224617",
"url": "https://bugzilla.suse.com/1224617"
},
{
"category": "self",
"summary": "SUSE Bug 1224618",
"url": "https://bugzilla.suse.com/1224618"
},
{
"category": "self",
"summary": "SUSE Bug 1224620",
"url": "https://bugzilla.suse.com/1224620"
},
{
"category": "self",
"summary": "SUSE Bug 1224622",
"url": "https://bugzilla.suse.com/1224622"
},
{
"category": "self",
"summary": "SUSE Bug 1224623",
"url": "https://bugzilla.suse.com/1224623"
},
{
"category": "self",
"summary": "SUSE Bug 1224624",
"url": "https://bugzilla.suse.com/1224624"
},
{
"category": "self",
"summary": "SUSE Bug 1224626",
"url": "https://bugzilla.suse.com/1224626"
},
{
"category": "self",
"summary": "SUSE Bug 1224627",
"url": "https://bugzilla.suse.com/1224627"
},
{
"category": "self",
"summary": "SUSE Bug 1224629",
"url": "https://bugzilla.suse.com/1224629"
},
{
"category": "self",
"summary": "SUSE Bug 1224630",
"url": "https://bugzilla.suse.com/1224630"
},
{
"category": "self",
"summary": "SUSE Bug 1224632",
"url": "https://bugzilla.suse.com/1224632"
},
{
"category": "self",
"summary": "SUSE Bug 1224633",
"url": "https://bugzilla.suse.com/1224633"
},
{
"category": "self",
"summary": "SUSE Bug 1224634",
"url": "https://bugzilla.suse.com/1224634"
},
{
"category": "self",
"summary": "SUSE Bug 1224637",
"url": "https://bugzilla.suse.com/1224637"
},
{
"category": "self",
"summary": "SUSE Bug 1224639",
"url": "https://bugzilla.suse.com/1224639"
},
{
"category": "self",
"summary": "SUSE Bug 1224640",
"url": "https://bugzilla.suse.com/1224640"
},
{
"category": "self",
"summary": "SUSE Bug 1224643",
"url": "https://bugzilla.suse.com/1224643"
},
{
"category": "self",
"summary": "SUSE Bug 1224644",
"url": "https://bugzilla.suse.com/1224644"
},
{
"category": "self",
"summary": "SUSE Bug 1224646",
"url": "https://bugzilla.suse.com/1224646"
},
{
"category": "self",
"summary": "SUSE Bug 1224647",
"url": "https://bugzilla.suse.com/1224647"
},
{
"category": "self",
"summary": "SUSE Bug 1224650",
"url": "https://bugzilla.suse.com/1224650"
},
{
"category": "self",
"summary": "SUSE Bug 1224651",
"url": "https://bugzilla.suse.com/1224651"
},
{
"category": "self",
"summary": "SUSE Bug 1224653",
"url": "https://bugzilla.suse.com/1224653"
},
{
"category": "self",
"summary": "SUSE Bug 1224654",
"url": "https://bugzilla.suse.com/1224654"
},
{
"category": "self",
"summary": "SUSE Bug 1224657",
"url": "https://bugzilla.suse.com/1224657"
},
{
"category": "self",
"summary": "SUSE Bug 1224660",
"url": "https://bugzilla.suse.com/1224660"
},
{
"category": "self",
"summary": "SUSE Bug 1224663",
"url": "https://bugzilla.suse.com/1224663"
},
{
"category": "self",
"summary": "SUSE Bug 1224665",
"url": "https://bugzilla.suse.com/1224665"
},
{
"category": "self",
"summary": "SUSE Bug 1224666",
"url": "https://bugzilla.suse.com/1224666"
},
{
"category": "self",
"summary": "SUSE Bug 1224671",
"url": "https://bugzilla.suse.com/1224671"
},
{
"category": "self",
"summary": "SUSE Bug 1224675",
"url": "https://bugzilla.suse.com/1224675"
},
{
"category": "self",
"summary": "SUSE Bug 1224676",
"url": "https://bugzilla.suse.com/1224676"
},
{
"category": "self",
"summary": "SUSE Bug 1224677",
"url": "https://bugzilla.suse.com/1224677"
},
{
"category": "self",
"summary": "SUSE Bug 1224680",
"url": "https://bugzilla.suse.com/1224680"
},
{
"category": "self",
"summary": "SUSE Bug 1224681",
"url": "https://bugzilla.suse.com/1224681"
},
{
"category": "self",
"summary": "SUSE Bug 1224682",
"url": "https://bugzilla.suse.com/1224682"
},
{
"category": "self",
"summary": "SUSE Bug 1224683",
"url": "https://bugzilla.suse.com/1224683"
},
{
"category": "self",
"summary": "SUSE Bug 1224685",
"url": "https://bugzilla.suse.com/1224685"
},
{
"category": "self",
"summary": "SUSE Bug 1224686",
"url": "https://bugzilla.suse.com/1224686"
},
{
"category": "self",
"summary": "SUSE Bug 1224687",
"url": "https://bugzilla.suse.com/1224687"
},
{
"category": "self",
"summary": "SUSE Bug 1224688",
"url": "https://bugzilla.suse.com/1224688"
},
{
"category": "self",
"summary": "SUSE Bug 1224692",
"url": "https://bugzilla.suse.com/1224692"
},
{
"category": "self",
"summary": "SUSE Bug 1224696",
"url": "https://bugzilla.suse.com/1224696"
},
{
"category": "self",
"summary": "SUSE Bug 1224697",
"url": "https://bugzilla.suse.com/1224697"
},
{
"category": "self",
"summary": "SUSE Bug 1224699",
"url": "https://bugzilla.suse.com/1224699"
},
{
"category": "self",
"summary": "SUSE Bug 1224701",
"url": "https://bugzilla.suse.com/1224701"
},
{
"category": "self",
"summary": "SUSE Bug 1224703",
"url": "https://bugzilla.suse.com/1224703"
},
{
"category": "self",
"summary": "SUSE Bug 1224704",
"url": "https://bugzilla.suse.com/1224704"
},
{
"category": "self",
"summary": "SUSE Bug 1224705",
"url": "https://bugzilla.suse.com/1224705"
},
{
"category": "self",
"summary": "SUSE Bug 1224706",
"url": "https://bugzilla.suse.com/1224706"
},
{
"category": "self",
"summary": "SUSE Bug 1224707",
"url": "https://bugzilla.suse.com/1224707"
},
{
"category": "self",
"summary": "SUSE Bug 1224709",
"url": "https://bugzilla.suse.com/1224709"
},
{
"category": "self",
"summary": "SUSE Bug 1224710",
"url": "https://bugzilla.suse.com/1224710"
},
{
"category": "self",
"summary": "SUSE Bug 1224712",
"url": "https://bugzilla.suse.com/1224712"
},
{
"category": "self",
"summary": "SUSE Bug 1224714",
"url": "https://bugzilla.suse.com/1224714"
},
{
"category": "self",
"summary": "SUSE Bug 1224716",
"url": "https://bugzilla.suse.com/1224716"
},
{
"category": "self",
"summary": "SUSE Bug 1224717",
"url": "https://bugzilla.suse.com/1224717"
},
{
"category": "self",
"summary": "SUSE Bug 1224719",
"url": "https://bugzilla.suse.com/1224719"
},
{
"category": "self",
"summary": "SUSE Bug 1224722",
"url": "https://bugzilla.suse.com/1224722"
},
{
"category": "self",
"summary": "SUSE Bug 1224723",
"url": "https://bugzilla.suse.com/1224723"
},
{
"category": "self",
"summary": "SUSE Bug 1224726",
"url": "https://bugzilla.suse.com/1224726"
},
{
"category": "self",
"summary": "SUSE Bug 1224728",
"url": "https://bugzilla.suse.com/1224728"
},
{
"category": "self",
"summary": "SUSE Bug 1224729",
"url": "https://bugzilla.suse.com/1224729"
},
{
"category": "self",
"summary": "SUSE Bug 1224730",
"url": "https://bugzilla.suse.com/1224730"
},
{
"category": "self",
"summary": "SUSE Bug 1224731",
"url": "https://bugzilla.suse.com/1224731"
},
{
"category": "self",
"summary": "SUSE Bug 1224732",
"url": "https://bugzilla.suse.com/1224732"
},
{
"category": "self",
"summary": "SUSE Bug 1224733",
"url": "https://bugzilla.suse.com/1224733"
},
{
"category": "self",
"summary": "SUSE Bug 1224736",
"url": "https://bugzilla.suse.com/1224736"
},
{
"category": "self",
"summary": "SUSE Bug 1224738",
"url": "https://bugzilla.suse.com/1224738"
},
{
"category": "self",
"summary": "SUSE Bug 1224739",
"url": "https://bugzilla.suse.com/1224739"
},
{
"category": "self",
"summary": "SUSE Bug 1224740",
"url": "https://bugzilla.suse.com/1224740"
},
{
"category": "self",
"summary": "SUSE Bug 1224741",
"url": "https://bugzilla.suse.com/1224741"
},
{
"category": "self",
"summary": "SUSE Bug 1224747",
"url": "https://bugzilla.suse.com/1224747"
},
{
"category": "self",
"summary": "SUSE Bug 1224749",
"url": "https://bugzilla.suse.com/1224749"
},
{
"category": "self",
"summary": "SUSE Bug 1224803",
"url": "https://bugzilla.suse.com/1224803"
},
{
"category": "self",
"summary": "SUSE Bug 1224804",
"url": "https://bugzilla.suse.com/1224804"
},
{
"category": "self",
"summary": "SUSE Bug 1225502",
"url": "https://bugzilla.suse.com/1225502"
},
{
"category": "self",
"summary": "SUSE Bug 1225579",
"url": "https://bugzilla.suse.com/1225579"
},
{
"category": "self",
"summary": "SUSE Bug 1225593",
"url": "https://bugzilla.suse.com/1225593"
},
{
"category": "self",
"summary": "SUSE Bug 1225692",
"url": "https://bugzilla.suse.com/1225692"
},
{
"category": "self",
"summary": "SUSE Bug 1225694",
"url": "https://bugzilla.suse.com/1225694"
},
{
"category": "self",
"summary": "SUSE Bug 1225695",
"url": "https://bugzilla.suse.com/1225695"
},
{
"category": "self",
"summary": "SUSE Bug 1225698",
"url": "https://bugzilla.suse.com/1225698"
},
{
"category": "self",
"summary": "SUSE Bug 1225699",
"url": "https://bugzilla.suse.com/1225699"
},
{
"category": "self",
"summary": "SUSE Bug 1225704",
"url": "https://bugzilla.suse.com/1225704"
},
{
"category": "self",
"summary": "SUSE Bug 1225705",
"url": "https://bugzilla.suse.com/1225705"
},
{
"category": "self",
"summary": "SUSE Bug 1225708",
"url": "https://bugzilla.suse.com/1225708"
},
{
"category": "self",
"summary": "SUSE Bug 1225710",
"url": "https://bugzilla.suse.com/1225710"
},
{
"category": "self",
"summary": "SUSE Bug 1225715",
"url": "https://bugzilla.suse.com/1225715"
},
{
"category": "self",
"summary": "SUSE Bug 1225720",
"url": "https://bugzilla.suse.com/1225720"
},
{
"category": "self",
"summary": "SUSE Bug 1225722",
"url": "https://bugzilla.suse.com/1225722"
},
{
"category": "self",
"summary": "SUSE Bug 1225728",
"url": "https://bugzilla.suse.com/1225728"
},
{
"category": "self",
"summary": "SUSE Bug 1225734",
"url": "https://bugzilla.suse.com/1225734"
},
{
"category": "self",
"summary": "SUSE Bug 1225735",
"url": "https://bugzilla.suse.com/1225735"
},
{
"category": "self",
"summary": "SUSE Bug 1225736",
"url": "https://bugzilla.suse.com/1225736"
},
{
"category": "self",
"summary": "SUSE Bug 1225743",
"url": "https://bugzilla.suse.com/1225743"
},
{
"category": "self",
"summary": "SUSE Bug 1225747",
"url": "https://bugzilla.suse.com/1225747"
},
{
"category": "self",
"summary": "SUSE Bug 1225748",
"url": "https://bugzilla.suse.com/1225748"
},
{
"category": "self",
"summary": "SUSE Bug 1225749",
"url": "https://bugzilla.suse.com/1225749"
},
{
"category": "self",
"summary": "SUSE Bug 1225750",
"url": "https://bugzilla.suse.com/1225750"
},
{
"category": "self",
"summary": "SUSE Bug 1225769",
"url": "https://bugzilla.suse.com/1225769"
},
{
"category": "self",
"summary": "SUSE Bug 1225775",
"url": "https://bugzilla.suse.com/1225775"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1225897",
"url": "https://bugzilla.suse.com/1225897"
},
{
"category": "self",
"summary": "SUSE Bug 1226980",
"url": "https://bugzilla.suse.com/1226980"
},
{
"category": "self",
"summary": "SUSE Bug 1227445",
"url": "https://bugzilla.suse.com/1227445"
},
{
"category": "self",
"summary": "SUSE Bug 1228526",
"url": "https://bugzilla.suse.com/1228526"
},
{
"category": "self",
"summary": "SUSE Bug 1228592",
"url": "https://bugzilla.suse.com/1228592"
},
{
"category": "self",
"summary": "SUSE Bug 1229025",
"url": "https://bugzilla.suse.com/1229025"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1229833",
"url": "https://bugzilla.suse.com/1229833"
},
{
"category": "self",
"summary": "SUSE Bug 1230205",
"url": "https://bugzilla.suse.com/1230205"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231016",
"url": "https://bugzilla.suse.com/1231016"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1231909",
"url": "https://bugzilla.suse.com/1231909"
},
{
"category": "self",
"summary": "SUSE Bug 1231963",
"url": "https://bugzilla.suse.com/1231963"
},
{
"category": "self",
"summary": "SUSE Bug 1232087",
"url": "https://bugzilla.suse.com/1232087"
},
{
"category": "self",
"summary": "SUSE Bug 1232101",
"url": "https://bugzilla.suse.com/1232101"
},
{
"category": "self",
"summary": "SUSE Bug 1232158",
"url": "https://bugzilla.suse.com/1232158"
},
{
"category": "self",
"summary": "SUSE Bug 1232161",
"url": "https://bugzilla.suse.com/1232161"
},
{
"category": "self",
"summary": "SUSE Bug 1232193",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232418",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232420",
"url": "https://bugzilla.suse.com/1232420"
},
{
"category": "self",
"summary": "SUSE Bug 1232421",
"url": "https://bugzilla.suse.com/1232421"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232882",
"url": "https://bugzilla.suse.com/1232882"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233055",
"url": "https://bugzilla.suse.com/1233055"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233112",
"url": "https://bugzilla.suse.com/1233112"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233204",
"url": "https://bugzilla.suse.com/1233204"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233259",
"url": "https://bugzilla.suse.com/1233259"
},
{
"category": "self",
"summary": "SUSE Bug 1233260",
"url": "https://bugzilla.suse.com/1233260"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233328",
"url": "https://bugzilla.suse.com/1233328"
},
{
"category": "self",
"summary": "SUSE Bug 1233461",
"url": "https://bugzilla.suse.com/1233461"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233488",
"url": "https://bugzilla.suse.com/1233488"
},
{
"category": "self",
"summary": "SUSE Bug 1233546",
"url": "https://bugzilla.suse.com/1233546"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233638",
"url": "https://bugzilla.suse.com/1233638"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233772",
"url": "https://bugzilla.suse.com/1233772"
},
{
"category": "self",
"summary": "SUSE Bug 1233778",
"url": "https://bugzilla.suse.com/1233778"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234024",
"url": "https://bugzilla.suse.com/1234024"
},
{
"category": "self",
"summary": "SUSE Bug 1234069",
"url": "https://bugzilla.suse.com/1234069"
},
{
"category": "self",
"summary": "SUSE Bug 1234071",
"url": "https://bugzilla.suse.com/1234071"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234079",
"url": "https://bugzilla.suse.com/1234079"
},
{
"category": "self",
"summary": "SUSE Bug 1234086",
"url": "https://bugzilla.suse.com/1234086"
},
{
"category": "self",
"summary": "SUSE Bug 1234139",
"url": "https://bugzilla.suse.com/1234139"
},
{
"category": "self",
"summary": "SUSE Bug 1234140",
"url": "https://bugzilla.suse.com/1234140"
},
{
"category": "self",
"summary": "SUSE Bug 1234141",
"url": "https://bugzilla.suse.com/1234141"
},
{
"category": "self",
"summary": "SUSE Bug 1234142",
"url": "https://bugzilla.suse.com/1234142"
},
{
"category": "self",
"summary": "SUSE Bug 1234143",
"url": "https://bugzilla.suse.com/1234143"
},
{
"category": "self",
"summary": "SUSE Bug 1234144",
"url": "https://bugzilla.suse.com/1234144"
},
{
"category": "self",
"summary": "SUSE Bug 1234145",
"url": "https://bugzilla.suse.com/1234145"
},
{
"category": "self",
"summary": "SUSE Bug 1234146",
"url": "https://bugzilla.suse.com/1234146"
},
{
"category": "self",
"summary": "SUSE Bug 1234147",
"url": "https://bugzilla.suse.com/1234147"
},
{
"category": "self",
"summary": "SUSE Bug 1234148",
"url": "https://bugzilla.suse.com/1234148"
},
{
"category": "self",
"summary": "SUSE Bug 1234149",
"url": "https://bugzilla.suse.com/1234149"
},
{
"category": "self",
"summary": "SUSE Bug 1234150",
"url": "https://bugzilla.suse.com/1234150"
},
{
"category": "self",
"summary": "SUSE Bug 1234153",
"url": "https://bugzilla.suse.com/1234153"
},
{
"category": "self",
"summary": "SUSE Bug 1234155",
"url": "https://bugzilla.suse.com/1234155"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234158",
"url": "https://bugzilla.suse.com/1234158"
},
{
"category": "self",
"summary": "SUSE Bug 1234159",
"url": "https://bugzilla.suse.com/1234159"
},
{
"category": "self",
"summary": "SUSE Bug 1234160",
"url": "https://bugzilla.suse.com/1234160"
},
{
"category": "self",
"summary": "SUSE Bug 1234161",
"url": "https://bugzilla.suse.com/1234161"
},
{
"category": "self",
"summary": "SUSE Bug 1234162",
"url": "https://bugzilla.suse.com/1234162"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234164",
"url": "https://bugzilla.suse.com/1234164"
},
{
"category": "self",
"summary": "SUSE Bug 1234165",
"url": "https://bugzilla.suse.com/1234165"
},
{
"category": "self",
"summary": "SUSE Bug 1234166",
"url": "https://bugzilla.suse.com/1234166"
},
{
"category": "self",
"summary": "SUSE Bug 1234167",
"url": "https://bugzilla.suse.com/1234167"
},
{
"category": "self",
"summary": "SUSE Bug 1234168",
"url": "https://bugzilla.suse.com/1234168"
},
{
"category": "self",
"summary": "SUSE Bug 1234169",
"url": "https://bugzilla.suse.com/1234169"
},
{
"category": "self",
"summary": "SUSE Bug 1234170",
"url": "https://bugzilla.suse.com/1234170"
},
{
"category": "self",
"summary": "SUSE Bug 1234171",
"url": "https://bugzilla.suse.com/1234171"
},
{
"category": "self",
"summary": "SUSE Bug 1234172",
"url": "https://bugzilla.suse.com/1234172"
},
{
"category": "self",
"summary": "SUSE Bug 1234173",
"url": "https://bugzilla.suse.com/1234173"
},
{
"category": "self",
"summary": "SUSE Bug 1234174",
"url": "https://bugzilla.suse.com/1234174"
},
{
"category": "self",
"summary": "SUSE Bug 1234175",
"url": "https://bugzilla.suse.com/1234175"
},
{
"category": "self",
"summary": "SUSE Bug 1234176",
"url": "https://bugzilla.suse.com/1234176"
},
{
"category": "self",
"summary": "SUSE Bug 1234177",
"url": "https://bugzilla.suse.com/1234177"
},
{
"category": "self",
"summary": "SUSE Bug 1234178",
"url": "https://bugzilla.suse.com/1234178"
},
{
"category": "self",
"summary": "SUSE Bug 1234179",
"url": "https://bugzilla.suse.com/1234179"
},
{
"category": "self",
"summary": "SUSE Bug 1234180",
"url": "https://bugzilla.suse.com/1234180"
},
{
"category": "self",
"summary": "SUSE Bug 1234181",
"url": "https://bugzilla.suse.com/1234181"
},
{
"category": "self",
"summary": "SUSE Bug 1234182",
"url": "https://bugzilla.suse.com/1234182"
},
{
"category": "self",
"summary": "SUSE Bug 1234183",
"url": "https://bugzilla.suse.com/1234183"
},
{
"category": "self",
"summary": "SUSE Bug 1234184",
"url": "https://bugzilla.suse.com/1234184"
},
{
"category": "self",
"summary": "SUSE Bug 1234185",
"url": "https://bugzilla.suse.com/1234185"
},
{
"category": "self",
"summary": "SUSE Bug 1234186",
"url": "https://bugzilla.suse.com/1234186"
},
{
"category": "self",
"summary": "SUSE Bug 1234187",
"url": "https://bugzilla.suse.com/1234187"
},
{
"category": "self",
"summary": "SUSE Bug 1234188",
"url": "https://bugzilla.suse.com/1234188"
},
{
"category": "self",
"summary": "SUSE Bug 1234189",
"url": "https://bugzilla.suse.com/1234189"
},
{
"category": "self",
"summary": "SUSE Bug 1234190",
"url": "https://bugzilla.suse.com/1234190"
},
{
"category": "self",
"summary": "SUSE Bug 1234191",
"url": "https://bugzilla.suse.com/1234191"
},
{
"category": "self",
"summary": "SUSE Bug 1234192",
"url": "https://bugzilla.suse.com/1234192"
},
{
"category": "self",
"summary": "SUSE Bug 1234193",
"url": "https://bugzilla.suse.com/1234193"
},
{
"category": "self",
"summary": "SUSE Bug 1234194",
"url": "https://bugzilla.suse.com/1234194"
},
{
"category": "self",
"summary": "SUSE Bug 1234195",
"url": "https://bugzilla.suse.com/1234195"
},
{
"category": "self",
"summary": "SUSE Bug 1234196",
"url": "https://bugzilla.suse.com/1234196"
},
{
"category": "self",
"summary": "SUSE Bug 1234197",
"url": "https://bugzilla.suse.com/1234197"
},
{
"category": "self",
"summary": "SUSE Bug 1234198",
"url": "https://bugzilla.suse.com/1234198"
},
{
"category": "self",
"summary": "SUSE Bug 1234199",
"url": "https://bugzilla.suse.com/1234199"
},
{
"category": "self",
"summary": "SUSE Bug 1234200",
"url": "https://bugzilla.suse.com/1234200"
},
{
"category": "self",
"summary": "SUSE Bug 1234201",
"url": "https://bugzilla.suse.com/1234201"
},
{
"category": "self",
"summary": "SUSE Bug 1234203",
"url": "https://bugzilla.suse.com/1234203"
},
{
"category": "self",
"summary": "SUSE Bug 1234204",
"url": "https://bugzilla.suse.com/1234204"
},
{
"category": "self",
"summary": "SUSE Bug 1234205",
"url": "https://bugzilla.suse.com/1234205"
},
{
"category": "self",
"summary": "SUSE Bug 1234207",
"url": "https://bugzilla.suse.com/1234207"
},
{
"category": "self",
"summary": "SUSE Bug 1234208",
"url": "https://bugzilla.suse.com/1234208"
},
{
"category": "self",
"summary": "SUSE Bug 1234209",
"url": "https://bugzilla.suse.com/1234209"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234221",
"url": "https://bugzilla.suse.com/1234221"
},
{
"category": "self",
"summary": "SUSE Bug 1234237",
"url": "https://bugzilla.suse.com/1234237"
},
{
"category": "self",
"summary": "SUSE Bug 1234238",
"url": "https://bugzilla.suse.com/1234238"
},
{
"category": "self",
"summary": "SUSE Bug 1234239",
"url": "https://bugzilla.suse.com/1234239"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234242",
"url": "https://bugzilla.suse.com/1234242"
},
{
"category": "self",
"summary": "SUSE Bug 1234243",
"url": "https://bugzilla.suse.com/1234243"
},
{
"category": "self",
"summary": "SUSE Bug 1234278",
"url": "https://bugzilla.suse.com/1234278"
},
{
"category": "self",
"summary": "SUSE Bug 1234279",
"url": "https://bugzilla.suse.com/1234279"
},
{
"category": "self",
"summary": "SUSE Bug 1234280",
"url": "https://bugzilla.suse.com/1234280"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234381",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "self",
"summary": "SUSE Bug 1234454",
"url": "https://bugzilla.suse.com/1234454"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234619",
"url": "https://bugzilla.suse.com/1234619"
},
{
"category": "self",
"summary": "SUSE Bug 1234635",
"url": "https://bugzilla.suse.com/1234635"
},
{
"category": "self",
"summary": "SUSE Bug 1234651",
"url": "https://bugzilla.suse.com/1234651"
},
{
"category": "self",
"summary": "SUSE Bug 1234652",
"url": "https://bugzilla.suse.com/1234652"
},
{
"category": "self",
"summary": "SUSE Bug 1234654",
"url": "https://bugzilla.suse.com/1234654"
},
{
"category": "self",
"summary": "SUSE Bug 1234655",
"url": "https://bugzilla.suse.com/1234655"
},
{
"category": "self",
"summary": "SUSE Bug 1234657",
"url": "https://bugzilla.suse.com/1234657"
},
{
"category": "self",
"summary": "SUSE Bug 1234658",
"url": "https://bugzilla.suse.com/1234658"
},
{
"category": "self",
"summary": "SUSE Bug 1234659",
"url": "https://bugzilla.suse.com/1234659"
},
{
"category": "self",
"summary": "SUSE Bug 1234668",
"url": "https://bugzilla.suse.com/1234668"
},
{
"category": "self",
"summary": "SUSE Bug 1234683",
"url": "https://bugzilla.suse.com/1234683"
},
{
"category": "self",
"summary": "SUSE Bug 1234690",
"url": "https://bugzilla.suse.com/1234690"
},
{
"category": "self",
"summary": "SUSE Bug 1234693",
"url": "https://bugzilla.suse.com/1234693"
},
{
"category": "self",
"summary": "SUSE Bug 1234725",
"url": "https://bugzilla.suse.com/1234725"
},
{
"category": "self",
"summary": "SUSE Bug 1234726",
"url": "https://bugzilla.suse.com/1234726"
},
{
"category": "self",
"summary": "SUSE Bug 1234810",
"url": "https://bugzilla.suse.com/1234810"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234825",
"url": "https://bugzilla.suse.com/1234825"
},
{
"category": "self",
"summary": "SUSE Bug 1234826",
"url": "https://bugzilla.suse.com/1234826"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234829",
"url": "https://bugzilla.suse.com/1234829"
},
{
"category": "self",
"summary": "SUSE Bug 1234832",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234848",
"url": "https://bugzilla.suse.com/1234848"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234855",
"url": "https://bugzilla.suse.com/1234855"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234863",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "self",
"summary": "SUSE Bug 1234884",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "self",
"summary": "SUSE Bug 1234887",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "self",
"summary": "SUSE Bug 1234888",
"url": "https://bugzilla.suse.com/1234888"
},
{
"category": "self",
"summary": "SUSE Bug 1234889",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234893",
"url": "https://bugzilla.suse.com/1234893"
},
{
"category": "self",
"summary": "SUSE Bug 1234898",
"url": "https://bugzilla.suse.com/1234898"
},
{
"category": "self",
"summary": "SUSE Bug 1234899",
"url": "https://bugzilla.suse.com/1234899"
},
{
"category": "self",
"summary": "SUSE Bug 1234900",
"url": "https://bugzilla.suse.com/1234900"
},
{
"category": "self",
"summary": "SUSE Bug 1234901",
"url": "https://bugzilla.suse.com/1234901"
},
{
"category": "self",
"summary": "SUSE Bug 1234905",
"url": "https://bugzilla.suse.com/1234905"
},
{
"category": "self",
"summary": "SUSE Bug 1234906",
"url": "https://bugzilla.suse.com/1234906"
},
{
"category": "self",
"summary": "SUSE Bug 1234907",
"url": "https://bugzilla.suse.com/1234907"
},
{
"category": "self",
"summary": "SUSE Bug 1234909",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "self",
"summary": "SUSE Bug 1234911",
"url": "https://bugzilla.suse.com/1234911"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234916",
"url": "https://bugzilla.suse.com/1234916"
},
{
"category": "self",
"summary": "SUSE Bug 1234918",
"url": "https://bugzilla.suse.com/1234918"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234922",
"url": "https://bugzilla.suse.com/1234922"
},
{
"category": "self",
"summary": "SUSE Bug 1234923",
"url": "https://bugzilla.suse.com/1234923"
},
{
"category": "self",
"summary": "SUSE Bug 1234929",
"url": "https://bugzilla.suse.com/1234929"
},
{
"category": "self",
"summary": "SUSE Bug 1234930",
"url": "https://bugzilla.suse.com/1234930"
},
{
"category": "self",
"summary": "SUSE Bug 1234931",
"url": "https://bugzilla.suse.com/1234931"
},
{
"category": "self",
"summary": "SUSE Bug 1234934",
"url": "https://bugzilla.suse.com/1234934"
},
{
"category": "self",
"summary": "SUSE Bug 1234937",
"url": "https://bugzilla.suse.com/1234937"
},
{
"category": "self",
"summary": "SUSE Bug 1234947",
"url": "https://bugzilla.suse.com/1234947"
},
{
"category": "self",
"summary": "SUSE Bug 1234948",
"url": "https://bugzilla.suse.com/1234948"
},
{
"category": "self",
"summary": "SUSE Bug 1234950",
"url": "https://bugzilla.suse.com/1234950"
},
{
"category": "self",
"summary": "SUSE Bug 1234952",
"url": "https://bugzilla.suse.com/1234952"
},
{
"category": "self",
"summary": "SUSE Bug 1234957",
"url": "https://bugzilla.suse.com/1234957"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234962",
"url": "https://bugzilla.suse.com/1234962"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234968",
"url": "https://bugzilla.suse.com/1234968"
},
{
"category": "self",
"summary": "SUSE Bug 1234969",
"url": "https://bugzilla.suse.com/1234969"
},
{
"category": "self",
"summary": "SUSE Bug 1234970",
"url": "https://bugzilla.suse.com/1234970"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1234974",
"url": "https://bugzilla.suse.com/1234974"
},
{
"category": "self",
"summary": "SUSE Bug 1234989",
"url": "https://bugzilla.suse.com/1234989"
},
{
"category": "self",
"summary": "SUSE Bug 1234999",
"url": "https://bugzilla.suse.com/1234999"
},
{
"category": "self",
"summary": "SUSE Bug 1235000",
"url": "https://bugzilla.suse.com/1235000"
},
{
"category": "self",
"summary": "SUSE Bug 1235001",
"url": "https://bugzilla.suse.com/1235001"
},
{
"category": "self",
"summary": "SUSE Bug 1235002",
"url": "https://bugzilla.suse.com/1235002"
},
{
"category": "self",
"summary": "SUSE Bug 1235003",
"url": "https://bugzilla.suse.com/1235003"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235007",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "self",
"summary": "SUSE Bug 1235009",
"url": "https://bugzilla.suse.com/1235009"
},
{
"category": "self",
"summary": "SUSE Bug 1235011",
"url": "https://bugzilla.suse.com/1235011"
},
{
"category": "self",
"summary": "SUSE Bug 1235016",
"url": "https://bugzilla.suse.com/1235016"
},
{
"category": "self",
"summary": "SUSE Bug 1235019",
"url": "https://bugzilla.suse.com/1235019"
},
{
"category": "self",
"summary": "SUSE Bug 1235031",
"url": "https://bugzilla.suse.com/1235031"
},
{
"category": "self",
"summary": "SUSE Bug 1235032",
"url": "https://bugzilla.suse.com/1235032"
},
{
"category": "self",
"summary": "SUSE Bug 1235033",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "self",
"summary": "SUSE Bug 1235035",
"url": "https://bugzilla.suse.com/1235035"
},
{
"category": "self",
"summary": "SUSE Bug 1235037",
"url": "https://bugzilla.suse.com/1235037"
},
{
"category": "self",
"summary": "SUSE Bug 1235038",
"url": "https://bugzilla.suse.com/1235038"
},
{
"category": "self",
"summary": "SUSE Bug 1235039",
"url": "https://bugzilla.suse.com/1235039"
},
{
"category": "self",
"summary": "SUSE Bug 1235040",
"url": "https://bugzilla.suse.com/1235040"
},
{
"category": "self",
"summary": "SUSE Bug 1235042",
"url": "https://bugzilla.suse.com/1235042"
},
{
"category": "self",
"summary": "SUSE Bug 1235043",
"url": "https://bugzilla.suse.com/1235043"
},
{
"category": "self",
"summary": "SUSE Bug 1235045",
"url": "https://bugzilla.suse.com/1235045"
},
{
"category": "self",
"summary": "SUSE Bug 1235046",
"url": "https://bugzilla.suse.com/1235046"
},
{
"category": "self",
"summary": "SUSE Bug 1235050",
"url": "https://bugzilla.suse.com/1235050"
},
{
"category": "self",
"summary": "SUSE Bug 1235051",
"url": "https://bugzilla.suse.com/1235051"
},
{
"category": "self",
"summary": "SUSE Bug 1235053",
"url": "https://bugzilla.suse.com/1235053"
},
{
"category": "self",
"summary": "SUSE Bug 1235054",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235057",
"url": "https://bugzilla.suse.com/1235057"
},
{
"category": "self",
"summary": "SUSE Bug 1235059",
"url": "https://bugzilla.suse.com/1235059"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235065",
"url": "https://bugzilla.suse.com/1235065"
},
{
"category": "self",
"summary": "SUSE Bug 1235070",
"url": "https://bugzilla.suse.com/1235070"
},
{
"category": "self",
"summary": "SUSE Bug 1235073",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "self",
"summary": "SUSE Bug 1235075",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "self",
"summary": "SUSE Bug 1235100",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "self",
"summary": "SUSE Bug 1235108",
"url": "https://bugzilla.suse.com/1235108"
},
{
"category": "self",
"summary": "SUSE Bug 1235112",
"url": "https://bugzilla.suse.com/1235112"
},
{
"category": "self",
"summary": "SUSE Bug 1235115",
"url": "https://bugzilla.suse.com/1235115"
},
{
"category": "self",
"summary": "SUSE Bug 1235117",
"url": "https://bugzilla.suse.com/1235117"
},
{
"category": "self",
"summary": "SUSE Bug 1235122",
"url": "https://bugzilla.suse.com/1235122"
},
{
"category": "self",
"summary": "SUSE Bug 1235123",
"url": "https://bugzilla.suse.com/1235123"
},
{
"category": "self",
"summary": "SUSE Bug 1235125",
"url": "https://bugzilla.suse.com/1235125"
},
{
"category": "self",
"summary": "SUSE Bug 1235128",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "self",
"summary": "SUSE Bug 1235132",
"url": "https://bugzilla.suse.com/1235132"
},
{
"category": "self",
"summary": "SUSE Bug 1235133",
"url": "https://bugzilla.suse.com/1235133"
},
{
"category": "self",
"summary": "SUSE Bug 1235134",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "self",
"summary": "SUSE Bug 1235138",
"url": "https://bugzilla.suse.com/1235138"
},
{
"category": "self",
"summary": "SUSE Bug 1235155",
"url": "https://bugzilla.suse.com/1235155"
},
{
"category": "self",
"summary": "SUSE Bug 1235160",
"url": "https://bugzilla.suse.com/1235160"
},
{
"category": "self",
"summary": "SUSE Bug 1235217",
"url": "https://bugzilla.suse.com/1235217"
},
{
"category": "self",
"summary": "SUSE Bug 1235219",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "self",
"summary": "SUSE Bug 1235220",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "self",
"summary": "SUSE Bug 1235222",
"url": "https://bugzilla.suse.com/1235222"
},
{
"category": "self",
"summary": "SUSE Bug 1235223",
"url": "https://bugzilla.suse.com/1235223"
},
{
"category": "self",
"summary": "SUSE Bug 1235224",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "self",
"summary": "SUSE Bug 1235227",
"url": "https://bugzilla.suse.com/1235227"
},
{
"category": "self",
"summary": "SUSE Bug 1235230",
"url": "https://bugzilla.suse.com/1235230"
},
{
"category": "self",
"summary": "SUSE Bug 1235241",
"url": "https://bugzilla.suse.com/1235241"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235249",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "self",
"summary": "SUSE Bug 1235251",
"url": "https://bugzilla.suse.com/1235251"
},
{
"category": "self",
"summary": "SUSE Bug 1235252",
"url": "https://bugzilla.suse.com/1235252"
},
{
"category": "self",
"summary": "SUSE Bug 1235389",
"url": "https://bugzilla.suse.com/1235389"
},
{
"category": "self",
"summary": "SUSE Bug 1235390",
"url": "https://bugzilla.suse.com/1235390"
},
{
"category": "self",
"summary": "SUSE Bug 1235391",
"url": "https://bugzilla.suse.com/1235391"
},
{
"category": "self",
"summary": "SUSE Bug 1235406",
"url": "https://bugzilla.suse.com/1235406"
},
{
"category": "self",
"summary": "SUSE Bug 1235409",
"url": "https://bugzilla.suse.com/1235409"
},
{
"category": "self",
"summary": "SUSE Bug 1235410",
"url": "https://bugzilla.suse.com/1235410"
},
{
"category": "self",
"summary": "SUSE Bug 1235412",
"url": "https://bugzilla.suse.com/1235412"
},
{
"category": "self",
"summary": "SUSE Bug 1235413",
"url": "https://bugzilla.suse.com/1235413"
},
{
"category": "self",
"summary": "SUSE Bug 1235415",
"url": "https://bugzilla.suse.com/1235415"
},
{
"category": "self",
"summary": "SUSE Bug 1235416",
"url": "https://bugzilla.suse.com/1235416"
},
{
"category": "self",
"summary": "SUSE Bug 1235417",
"url": "https://bugzilla.suse.com/1235417"
},
{
"category": "self",
"summary": "SUSE Bug 1235418",
"url": "https://bugzilla.suse.com/1235418"
},
{
"category": "self",
"summary": "SUSE Bug 1235423",
"url": "https://bugzilla.suse.com/1235423"
},
{
"category": "self",
"summary": "SUSE Bug 1235424",
"url": "https://bugzilla.suse.com/1235424"
},
{
"category": "self",
"summary": "SUSE Bug 1235425",
"url": "https://bugzilla.suse.com/1235425"
},
{
"category": "self",
"summary": "SUSE Bug 1235426",
"url": "https://bugzilla.suse.com/1235426"
},
{
"category": "self",
"summary": "SUSE Bug 1235427",
"url": "https://bugzilla.suse.com/1235427"
},
{
"category": "self",
"summary": "SUSE Bug 1235428",
"url": "https://bugzilla.suse.com/1235428"
},
{
"category": "self",
"summary": "SUSE Bug 1235429",
"url": "https://bugzilla.suse.com/1235429"
},
{
"category": "self",
"summary": "SUSE Bug 1235430",
"url": "https://bugzilla.suse.com/1235430"
},
{
"category": "self",
"summary": "SUSE Bug 1235433",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "self",
"summary": "SUSE Bug 1235437",
"url": "https://bugzilla.suse.com/1235437"
},
{
"category": "self",
"summary": "SUSE Bug 1235439",
"url": "https://bugzilla.suse.com/1235439"
},
{
"category": "self",
"summary": "SUSE Bug 1235444",
"url": "https://bugzilla.suse.com/1235444"
},
{
"category": "self",
"summary": "SUSE Bug 1235445",
"url": "https://bugzilla.suse.com/1235445"
},
{
"category": "self",
"summary": "SUSE Bug 1235449",
"url": "https://bugzilla.suse.com/1235449"
},
{
"category": "self",
"summary": "SUSE Bug 1235451",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "self",
"summary": "SUSE Bug 1235454",
"url": "https://bugzilla.suse.com/1235454"
},
{
"category": "self",
"summary": "SUSE Bug 1235458",
"url": "https://bugzilla.suse.com/1235458"
},
{
"category": "self",
"summary": "SUSE Bug 1235459",
"url": "https://bugzilla.suse.com/1235459"
},
{
"category": "self",
"summary": "SUSE Bug 1235464",
"url": "https://bugzilla.suse.com/1235464"
},
{
"category": "self",
"summary": "SUSE Bug 1235466",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "self",
"summary": "SUSE Bug 1235473",
"url": "https://bugzilla.suse.com/1235473"
},
{
"category": "self",
"summary": "SUSE Bug 1235479",
"url": "https://bugzilla.suse.com/1235479"
},
{
"category": "self",
"summary": "SUSE Bug 1235480",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "self",
"summary": "SUSE Bug 1235483",
"url": "https://bugzilla.suse.com/1235483"
},
{
"category": "self",
"summary": "SUSE Bug 1235486",
"url": "https://bugzilla.suse.com/1235486"
},
{
"category": "self",
"summary": "SUSE Bug 1235487",
"url": "https://bugzilla.suse.com/1235487"
},
{
"category": "self",
"summary": "SUSE Bug 1235488",
"url": "https://bugzilla.suse.com/1235488"
},
{
"category": "self",
"summary": "SUSE Bug 1235489",
"url": "https://bugzilla.suse.com/1235489"
},
{
"category": "self",
"summary": "SUSE Bug 1235491",
"url": "https://bugzilla.suse.com/1235491"
},
{
"category": "self",
"summary": "SUSE Bug 1235494",
"url": "https://bugzilla.suse.com/1235494"
},
{
"category": "self",
"summary": "SUSE Bug 1235495",
"url": "https://bugzilla.suse.com/1235495"
},
{
"category": "self",
"summary": "SUSE Bug 1235496",
"url": "https://bugzilla.suse.com/1235496"
},
{
"category": "self",
"summary": "SUSE Bug 1235497",
"url": "https://bugzilla.suse.com/1235497"
},
{
"category": "self",
"summary": "SUSE Bug 1235498",
"url": "https://bugzilla.suse.com/1235498"
},
{
"category": "self",
"summary": "SUSE Bug 1235500",
"url": "https://bugzilla.suse.com/1235500"
},
{
"category": "self",
"summary": "SUSE Bug 1235502",
"url": "https://bugzilla.suse.com/1235502"
},
{
"category": "self",
"summary": "SUSE Bug 1235503",
"url": "https://bugzilla.suse.com/1235503"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE Bug 1235519",
"url": "https://bugzilla.suse.com/1235519"
},
{
"category": "self",
"summary": "SUSE Bug 1235520",
"url": "https://bugzilla.suse.com/1235520"
},
{
"category": "self",
"summary": "SUSE Bug 1235521",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "self",
"summary": "SUSE Bug 1235523",
"url": "https://bugzilla.suse.com/1235523"
},
{
"category": "self",
"summary": "SUSE Bug 1235526",
"url": "https://bugzilla.suse.com/1235526"
},
{
"category": "self",
"summary": "SUSE Bug 1235528",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "self",
"summary": "SUSE Bug 1235532",
"url": "https://bugzilla.suse.com/1235532"
},
{
"category": "self",
"summary": "SUSE Bug 1235533",
"url": "https://bugzilla.suse.com/1235533"
},
{
"category": "self",
"summary": "SUSE Bug 1235534",
"url": "https://bugzilla.suse.com/1235534"
},
{
"category": "self",
"summary": "SUSE Bug 1235537",
"url": "https://bugzilla.suse.com/1235537"
},
{
"category": "self",
"summary": "SUSE Bug 1235538",
"url": "https://bugzilla.suse.com/1235538"
},
{
"category": "self",
"summary": "SUSE Bug 1235545",
"url": "https://bugzilla.suse.com/1235545"
},
{
"category": "self",
"summary": "SUSE Bug 1235550",
"url": "https://bugzilla.suse.com/1235550"
},
{
"category": "self",
"summary": "SUSE Bug 1235552",
"url": "https://bugzilla.suse.com/1235552"
},
{
"category": "self",
"summary": "SUSE Bug 1235555",
"url": "https://bugzilla.suse.com/1235555"
},
{
"category": "self",
"summary": "SUSE Bug 1235557",
"url": "https://bugzilla.suse.com/1235557"
},
{
"category": "self",
"summary": "SUSE Bug 1235563",
"url": "https://bugzilla.suse.com/1235563"
},
{
"category": "self",
"summary": "SUSE Bug 1235564",
"url": "https://bugzilla.suse.com/1235564"
},
{
"category": "self",
"summary": "SUSE Bug 1235565",
"url": "https://bugzilla.suse.com/1235565"
},
{
"category": "self",
"summary": "SUSE Bug 1235568",
"url": "https://bugzilla.suse.com/1235568"
},
{
"category": "self",
"summary": "SUSE Bug 1235570",
"url": "https://bugzilla.suse.com/1235570"
},
{
"category": "self",
"summary": "SUSE Bug 1235571",
"url": "https://bugzilla.suse.com/1235571"
},
{
"category": "self",
"summary": "SUSE Bug 1235577",
"url": "https://bugzilla.suse.com/1235577"
},
{
"category": "self",
"summary": "SUSE Bug 1235578",
"url": "https://bugzilla.suse.com/1235578"
},
{
"category": "self",
"summary": "SUSE Bug 1235582",
"url": "https://bugzilla.suse.com/1235582"
},
{
"category": "self",
"summary": "SUSE Bug 1235583",
"url": "https://bugzilla.suse.com/1235583"
},
{
"category": "self",
"summary": "SUSE Bug 1235584",
"url": "https://bugzilla.suse.com/1235584"
},
{
"category": "self",
"summary": "SUSE Bug 1235587",
"url": "https://bugzilla.suse.com/1235587"
},
{
"category": "self",
"summary": "SUSE Bug 1235611",
"url": "https://bugzilla.suse.com/1235611"
},
{
"category": "self",
"summary": "SUSE Bug 1235612",
"url": "https://bugzilla.suse.com/1235612"
},
{
"category": "self",
"summary": "SUSE Bug 1235616",
"url": "https://bugzilla.suse.com/1235616"
},
{
"category": "self",
"summary": "SUSE Bug 1235622",
"url": "https://bugzilla.suse.com/1235622"
},
{
"category": "self",
"summary": "SUSE Bug 1235627",
"url": "https://bugzilla.suse.com/1235627"
},
{
"category": "self",
"summary": "SUSE Bug 1235632",
"url": "https://bugzilla.suse.com/1235632"
},
{
"category": "self",
"summary": "SUSE Bug 1235635",
"url": "https://bugzilla.suse.com/1235635"
},
{
"category": "self",
"summary": "SUSE Bug 1235638",
"url": "https://bugzilla.suse.com/1235638"
},
{
"category": "self",
"summary": "SUSE Bug 1235641",
"url": "https://bugzilla.suse.com/1235641"
},
{
"category": "self",
"summary": "SUSE Bug 1235643",
"url": "https://bugzilla.suse.com/1235643"
},
{
"category": "self",
"summary": "SUSE Bug 1235645",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "self",
"summary": "SUSE Bug 1235646",
"url": "https://bugzilla.suse.com/1235646"
},
{
"category": "self",
"summary": "SUSE Bug 1235647",
"url": "https://bugzilla.suse.com/1235647"
},
{
"category": "self",
"summary": "SUSE Bug 1235650",
"url": "https://bugzilla.suse.com/1235650"
},
{
"category": "self",
"summary": "SUSE Bug 1235653",
"url": "https://bugzilla.suse.com/1235653"
},
{
"category": "self",
"summary": "SUSE Bug 1235656",
"url": "https://bugzilla.suse.com/1235656"
},
{
"category": "self",
"summary": "SUSE Bug 1235657",
"url": "https://bugzilla.suse.com/1235657"
},
{
"category": "self",
"summary": "SUSE Bug 1235663",
"url": "https://bugzilla.suse.com/1235663"
},
{
"category": "self",
"summary": "SUSE Bug 1235686",
"url": "https://bugzilla.suse.com/1235686"
},
{
"category": "self",
"summary": "SUSE Bug 1235700",
"url": "https://bugzilla.suse.com/1235700"
},
{
"category": "self",
"summary": "SUSE Bug 1235705",
"url": "https://bugzilla.suse.com/1235705"
},
{
"category": "self",
"summary": "SUSE Bug 1235707",
"url": "https://bugzilla.suse.com/1235707"
},
{
"category": "self",
"summary": "SUSE Bug 1235708",
"url": "https://bugzilla.suse.com/1235708"
},
{
"category": "self",
"summary": "SUSE Bug 1235710",
"url": "https://bugzilla.suse.com/1235710"
},
{
"category": "self",
"summary": "SUSE Bug 1235714",
"url": "https://bugzilla.suse.com/1235714"
},
{
"category": "self",
"summary": "SUSE Bug 1235716",
"url": "https://bugzilla.suse.com/1235716"
},
{
"category": "self",
"summary": "SUSE Bug 1235720",
"url": "https://bugzilla.suse.com/1235720"
},
{
"category": "self",
"summary": "SUSE Bug 1235723",
"url": "https://bugzilla.suse.com/1235723"
},
{
"category": "self",
"summary": "SUSE Bug 1235727",
"url": "https://bugzilla.suse.com/1235727"
},
{
"category": "self",
"summary": "SUSE Bug 1235730",
"url": "https://bugzilla.suse.com/1235730"
},
{
"category": "self",
"summary": "SUSE Bug 1235737",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "self",
"summary": "SUSE Bug 1235739",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "self",
"summary": "SUSE Bug 1235745",
"url": "https://bugzilla.suse.com/1235745"
},
{
"category": "self",
"summary": "SUSE Bug 1235747",
"url": "https://bugzilla.suse.com/1235747"
},
{
"category": "self",
"summary": "SUSE Bug 1235750",
"url": "https://bugzilla.suse.com/1235750"
},
{
"category": "self",
"summary": "SUSE Bug 1235753",
"url": "https://bugzilla.suse.com/1235753"
},
{
"category": "self",
"summary": "SUSE Bug 1235759",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "self",
"summary": "SUSE Bug 1235764",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "self",
"summary": "SUSE Bug 1235768",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "self",
"summary": "SUSE Bug 1235776",
"url": "https://bugzilla.suse.com/1235776"
},
{
"category": "self",
"summary": "SUSE Bug 1235777",
"url": "https://bugzilla.suse.com/1235777"
},
{
"category": "self",
"summary": "SUSE Bug 1235778",
"url": "https://bugzilla.suse.com/1235778"
},
{
"category": "self",
"summary": "SUSE Bug 1235779",
"url": "https://bugzilla.suse.com/1235779"
},
{
"category": "self",
"summary": "SUSE Bug 1235793",
"url": "https://bugzilla.suse.com/1235793"
},
{
"category": "self",
"summary": "SUSE Bug 1235798",
"url": "https://bugzilla.suse.com/1235798"
},
{
"category": "self",
"summary": "SUSE Bug 1235806",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "self",
"summary": "SUSE Bug 1235808",
"url": "https://bugzilla.suse.com/1235808"
},
{
"category": "self",
"summary": "SUSE Bug 1235812",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "self",
"summary": "SUSE Bug 1235814",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "self",
"summary": "SUSE Bug 1235818",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "self",
"summary": "SUSE Bug 1235842",
"url": "https://bugzilla.suse.com/1235842"
},
{
"category": "self",
"summary": "SUSE Bug 1235865",
"url": "https://bugzilla.suse.com/1235865"
},
{
"category": "self",
"summary": "SUSE Bug 1235894",
"url": "https://bugzilla.suse.com/1235894"
},
{
"category": "self",
"summary": "SUSE Bug 1235902",
"url": "https://bugzilla.suse.com/1235902"
},
{
"category": "self",
"summary": "SUSE Bug 1235903",
"url": "https://bugzilla.suse.com/1235903"
},
{
"category": "self",
"summary": "SUSE Bug 1235906",
"url": "https://bugzilla.suse.com/1235906"
},
{
"category": "self",
"summary": "SUSE Bug 1235918",
"url": "https://bugzilla.suse.com/1235918"
},
{
"category": "self",
"summary": "SUSE Bug 1235919",
"url": "https://bugzilla.suse.com/1235919"
},
{
"category": "self",
"summary": "SUSE Bug 1235920",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "self",
"summary": "SUSE Bug 1235924",
"url": "https://bugzilla.suse.com/1235924"
},
{
"category": "self",
"summary": "SUSE Bug 1235940",
"url": "https://bugzilla.suse.com/1235940"
},
{
"category": "self",
"summary": "SUSE Bug 1235941",
"url": "https://bugzilla.suse.com/1235941"
},
{
"category": "self",
"summary": "SUSE Bug 1235946",
"url": "https://bugzilla.suse.com/1235946"
},
{
"category": "self",
"summary": "SUSE Bug 1235948",
"url": "https://bugzilla.suse.com/1235948"
},
{
"category": "self",
"summary": "SUSE Bug 1235952",
"url": "https://bugzilla.suse.com/1235952"
},
{
"category": "self",
"summary": "SUSE Bug 1235964",
"url": "https://bugzilla.suse.com/1235964"
},
{
"category": "self",
"summary": "SUSE Bug 1235965",
"url": "https://bugzilla.suse.com/1235965"
},
{
"category": "self",
"summary": "SUSE Bug 1235967",
"url": "https://bugzilla.suse.com/1235967"
},
{
"category": "self",
"summary": "SUSE Bug 1235969",
"url": "https://bugzilla.suse.com/1235969"
},
{
"category": "self",
"summary": "SUSE Bug 1235976",
"url": "https://bugzilla.suse.com/1235976"
},
{
"category": "self",
"summary": "SUSE Bug 1235977",
"url": "https://bugzilla.suse.com/1235977"
},
{
"category": "self",
"summary": "SUSE Bug 1236078",
"url": "https://bugzilla.suse.com/1236078"
},
{
"category": "self",
"summary": "SUSE Bug 1236080",
"url": "https://bugzilla.suse.com/1236080"
},
{
"category": "self",
"summary": "SUSE Bug 1236082",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "self",
"summary": "SUSE Bug 1236088",
"url": "https://bugzilla.suse.com/1236088"
},
{
"category": "self",
"summary": "SUSE Bug 1236090",
"url": "https://bugzilla.suse.com/1236090"
},
{
"category": "self",
"summary": "SUSE Bug 1236091",
"url": "https://bugzilla.suse.com/1236091"
},
{
"category": "self",
"summary": "SUSE Bug 1236096",
"url": "https://bugzilla.suse.com/1236096"
},
{
"category": "self",
"summary": "SUSE Bug 1236097",
"url": "https://bugzilla.suse.com/1236097"
},
{
"category": "self",
"summary": "SUSE Bug 1236098",
"url": "https://bugzilla.suse.com/1236098"
},
{
"category": "self",
"summary": "SUSE Bug 1236101",
"url": "https://bugzilla.suse.com/1236101"
},
{
"category": "self",
"summary": "SUSE Bug 1236102",
"url": "https://bugzilla.suse.com/1236102"
},
{
"category": "self",
"summary": "SUSE Bug 1236104",
"url": "https://bugzilla.suse.com/1236104"
},
{
"category": "self",
"summary": "SUSE Bug 1236106",
"url": "https://bugzilla.suse.com/1236106"
},
{
"category": "self",
"summary": "SUSE Bug 1236120",
"url": "https://bugzilla.suse.com/1236120"
},
{
"category": "self",
"summary": "SUSE Bug 1236125",
"url": "https://bugzilla.suse.com/1236125"
},
{
"category": "self",
"summary": "SUSE Bug 1236127",
"url": "https://bugzilla.suse.com/1236127"
},
{
"category": "self",
"summary": "SUSE Bug 1236131",
"url": "https://bugzilla.suse.com/1236131"
},
{
"category": "self",
"summary": "SUSE Bug 1236138",
"url": "https://bugzilla.suse.com/1236138"
},
{
"category": "self",
"summary": "SUSE Bug 1236143",
"url": "https://bugzilla.suse.com/1236143"
},
{
"category": "self",
"summary": "SUSE Bug 1236144",
"url": "https://bugzilla.suse.com/1236144"
},
{
"category": "self",
"summary": "SUSE Bug 1236145",
"url": "https://bugzilla.suse.com/1236145"
},
{
"category": "self",
"summary": "SUSE Bug 1236160",
"url": "https://bugzilla.suse.com/1236160"
},
{
"category": "self",
"summary": "SUSE Bug 1236161",
"url": "https://bugzilla.suse.com/1236161"
},
{
"category": "self",
"summary": "SUSE Bug 1236163",
"url": "https://bugzilla.suse.com/1236163"
},
{
"category": "self",
"summary": "SUSE Bug 1236168",
"url": "https://bugzilla.suse.com/1236168"
},
{
"category": "self",
"summary": "SUSE Bug 1236178",
"url": "https://bugzilla.suse.com/1236178"
},
{
"category": "self",
"summary": "SUSE Bug 1236180",
"url": "https://bugzilla.suse.com/1236180"
},
{
"category": "self",
"summary": "SUSE Bug 1236181",
"url": "https://bugzilla.suse.com/1236181"
},
{
"category": "self",
"summary": "SUSE Bug 1236182",
"url": "https://bugzilla.suse.com/1236182"
},
{
"category": "self",
"summary": "SUSE Bug 1236190",
"url": "https://bugzilla.suse.com/1236190"
},
{
"category": "self",
"summary": "SUSE Bug 1236192",
"url": "https://bugzilla.suse.com/1236192"
},
{
"category": "self",
"summary": "SUSE Bug 1236198",
"url": "https://bugzilla.suse.com/1236198"
},
{
"category": "self",
"summary": "SUSE Bug 1236227",
"url": "https://bugzilla.suse.com/1236227"
},
{
"category": "self",
"summary": "SUSE Bug 1236245",
"url": "https://bugzilla.suse.com/1236245"
},
{
"category": "self",
"summary": "SUSE Bug 1236247",
"url": "https://bugzilla.suse.com/1236247"
},
{
"category": "self",
"summary": "SUSE Bug 1236248",
"url": "https://bugzilla.suse.com/1236248"
},
{
"category": "self",
"summary": "SUSE Bug 1236260",
"url": "https://bugzilla.suse.com/1236260"
},
{
"category": "self",
"summary": "SUSE Bug 1236262",
"url": "https://bugzilla.suse.com/1236262"
},
{
"category": "self",
"summary": "SUSE Bug 1236628",
"url": "https://bugzilla.suse.com/1236628"
},
{
"category": "self",
"summary": "SUSE Bug 1236688",
"url": "https://bugzilla.suse.com/1236688"
},
{
"category": "self",
"summary": "SUSE Bug 1236696",
"url": "https://bugzilla.suse.com/1236696"
},
{
"category": "self",
"summary": "SUSE Bug 1236703",
"url": "https://bugzilla.suse.com/1236703"
},
{
"category": "self",
"summary": "SUSE Bug 1236732",
"url": "https://bugzilla.suse.com/1236732"
},
{
"category": "self",
"summary": "SUSE Bug 1236733",
"url": "https://bugzilla.suse.com/1236733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-47233 page",
"url": "https://www.suse.com/security/cve/CVE-2023-47233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52463 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52463/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52472 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52472/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52591 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52591/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52653 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52653/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52657 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52657/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52658 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52660 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52661 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52662 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52663 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52664 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52667 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52669 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52669/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52670 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52671 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52671/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52673 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52675 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52676 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52678 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52679 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52681 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52683 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52685 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52686 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52687 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52690 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52691 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52693 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52694 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52695 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52696 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52696/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52697 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52697/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52882 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52882/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52923 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-22099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-22099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26611 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26611/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26742 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26761 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26764 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26846 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26853 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26855 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26856 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26858 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26858/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26861 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26866 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26868 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26900 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26943 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26943/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26949 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26949/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26957 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26963 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26963/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26964 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26994 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26994/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26995 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27027 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27046 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27046/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27057 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27057/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27062 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27062/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27067 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27080 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27388 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27388/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27389 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27389/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27397 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27397/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27398 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27398/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27399 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27399/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27400 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27400/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27405 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27405/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27410 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27410/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27411 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27411/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27412 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27412/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27413 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27413/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27416 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27416/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27432 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27432/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27434 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27434/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27435 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27435/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27436 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27436/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35784 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35788 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35789 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35790 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35795 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35796 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35796/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35799 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35800 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35801 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35806 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35808 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35810 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35811 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35812 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35813 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35815 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35817 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35819 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35821 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35822 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35823 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35824 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35824/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35825 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35829 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35830 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35833 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35834 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35836 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35837 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35837/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35838 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35839 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35841 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35842 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35845 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35847 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35849 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35851 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35875 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35878 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35878/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35879 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35883 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35885 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35885/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35889 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35889/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35891 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35901 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35909 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35909/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35927 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35928 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35930 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35930/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35933 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35936 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35945 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35945/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35955 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35958 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35959 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35963 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35963/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35966 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35966/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35972 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35972/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35974 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35974/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35975 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35975/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35978 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35992 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35995 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36009 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36009/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36014 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36025 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36032 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36476 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36476/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36880 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36885 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36885/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36891 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36894 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36894/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36895 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36895/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36921 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36928 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36930 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36930/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36931 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36941 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36942 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36949 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36949/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36955 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36959 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39282 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39480 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39480/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48873 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49978 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50051 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50106 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50199 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50199/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50272 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50299 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52332 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53050 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53091 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53164 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53168 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53169 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53170 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53172 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53175 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53175/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53185 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53187 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53194 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53195 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53196 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53197 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53227 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53230 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53231 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53233 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53236 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-54680 page",
"url": "https://www.suse.com/security/cve/CVE-2024-54680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55639 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55639/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56369 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56372 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56531 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56531/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56532 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56532/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56533 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56533/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56536 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56543 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56546 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56546/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56557 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56557/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56558 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56562 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56566 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56568 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56571 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56572 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56573 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56573/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56574 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56574/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56575 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56576 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56577 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56578 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56578/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56582 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56584 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56584/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56587 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56587/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56588 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56589 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56590 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56593 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56593/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56594 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56595 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56597 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-5660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-5660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56600 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56600/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56601 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56601/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56602 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56603 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56606 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56607 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56608 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56608/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56609 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56609/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56610 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56611 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56611/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56614 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56615 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56616 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56617 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56617/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56620 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56622 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56622/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56623 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56625 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56625/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56629 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56629/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56630 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56630/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56631 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56631/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56634 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56634/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56635 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56635/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56636 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56636/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56637 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56637/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56641 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56642 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56642/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56643 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56643/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56644 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56645 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56648 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56648/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56649 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56650 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56650/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56651 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56654 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56654/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56656 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56662 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56663 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56664 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56665 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56665/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56670 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56681 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56683 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56688 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56698 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56700 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56700/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56701 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56704 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56705 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56708 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56712 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56748 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56763 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56763/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56765 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56766 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56769 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56769/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56775 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56777 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56779 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57792 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57793 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57795 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57801 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57802 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57838 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57849 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57874 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57876 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57892 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57899 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57910 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57910/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57917 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57926 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57926/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57929 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57931 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57933 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57936 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21632 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21645 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21646 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21646/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21649 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21650 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21650/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21651 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21652 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21653 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21653/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21655 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21655/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21656 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21662 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21663 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21664 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21674 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21676 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21682 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21682/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-03-28T07:51:47Z",
"generator": {
"date": "2025-03-28T07:51:47Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20249-1",
"initial_release_date": "2025-03-28T07:51:47Z",
"revision_history": [
{
"date": "2025-03-28T07:51:47Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-6.4.0-25.1.aarch64",
"product": {
"name": "kernel-rt-6.4.0-25.1.aarch64",
"product_id": "kernel-rt-6.4.0-25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.4.0-25.1.aarch64",
"product": {
"name": "kernel-rt-devel-6.4.0-25.1.aarch64",
"product_id": "kernel-rt-devel-6.4.0-25.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-6.4.0-25.1.noarch",
"product": {
"name": "kernel-devel-rt-6.4.0-25.1.noarch",
"product_id": "kernel-devel-rt-6.4.0-25.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-6.4.0-25.1.noarch",
"product": {
"name": "kernel-source-rt-6.4.0-25.1.noarch",
"product_id": "kernel-source-rt-6.4.0-25.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"product_id": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-rt-6.4.0-25.1.x86_64",
"product_id": "kernel-rt-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-rt-devel-6.4.0-25.1.x86_64",
"product_id": "kernel-rt-devel-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-6.4.0-25.1.x86_64",
"product_id": "kernel-rt-livepatch-6.4.0-25.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch"
},
"product_reference": "kernel-devel-rt-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-25.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64"
},
"product_reference": "kernel-rt-6.4.0-25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-rt-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.4.0-25.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64"
},
"product_reference": "kernel-rt-devel-6.4.0-25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-rt-devel-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
},
"product_reference": "kernel-source-rt-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-47233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-47233"
}
],
"notes": [
{
"category": "general",
"text": "The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, this \"could be exploited in a real world scenario.\" This is related to brcmf_cfg80211_escan_timeout_worker in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-47233",
"url": "https://www.suse.com/security/cve/CVE-2023-47233"
},
{
"category": "external",
"summary": "SUSE Bug 1216702 for CVE-2023-47233",
"url": "https://bugzilla.suse.com/1216702"
},
{
"category": "external",
"summary": "SUSE Bug 1224592 for CVE-2023-47233",
"url": "https://bugzilla.suse.com/1224592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-47233"
},
{
"cve": "CVE-2023-52463",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52463"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: force RO when remounting if SetVariable is not supported\n\nIf SetVariable at runtime is not supported by the firmware we never assign\na callback for that function. At the same time mount the efivarfs as\nRO so no one can call that. However, we never check the permission flags\nwhen someone remounts the filesystem as RW. As a result this leads to a\ncrash looking like this:\n\n$ mount -o remount,rw /sys/firmware/efi/efivars\n$ efi-updatevar -f PK.auth PK\n\n[ 303.279166] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n[ 303.280482] Mem abort info:\n[ 303.280854] ESR = 0x0000000086000004\n[ 303.281338] EC = 0x21: IABT (current EL), IL = 32 bits\n[ 303.282016] SET = 0, FnV = 0\n[ 303.282414] EA = 0, S1PTW = 0\n[ 303.282821] FSC = 0x04: level 0 translation fault\n[ 303.283771] user pgtable: 4k pages, 48-bit VAs, pgdp=000000004258c000\n[ 303.284913] [0000000000000000] pgd=0000000000000000, p4d=0000000000000000\n[ 303.286076] Internal error: Oops: 0000000086000004 [#1] PREEMPT SMP\n[ 303.286936] Modules linked in: qrtr tpm_tis tpm_tis_core crct10dif_ce arm_smccc_trng rng_core drm fuse ip_tables x_tables ipv6\n[ 303.288586] CPU: 1 PID: 755 Comm: efi-updatevar Not tainted 6.3.0-rc1-00108-gc7d0c4695c68 #1\n[ 303.289748] Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.04-00627-g88336918701d 04/01/2023\n[ 303.291150] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 303.292123] pc : 0x0\n[ 303.292443] lr : efivar_set_variable_locked+0x74/0xec\n[ 303.293156] sp : ffff800008673c10\n[ 303.293619] x29: ffff800008673c10 x28: ffff0000037e8000 x27: 0000000000000000\n[ 303.294592] x26: 0000000000000800 x25: ffff000002467400 x24: 0000000000000027\n[ 303.295572] x23: ffffd49ea9832000 x22: ffff0000020c9800 x21: ffff000002467000\n[ 303.296566] x20: 0000000000000001 x19: 00000000000007fc x18: 0000000000000000\n[ 303.297531] x17: 0000000000000000 x16: 0000000000000000 x15: 0000aaaac807ab54\n[ 303.298495] x14: ed37489f673633c0 x13: 71c45c606de13f80 x12: 47464259e219acf4\n[ 303.299453] x11: ffff000002af7b01 x10: 0000000000000003 x9 : 0000000000000002\n[ 303.300431] x8 : 0000000000000010 x7 : ffffd49ea8973230 x6 : 0000000000a85201\n[ 303.301412] x5 : 0000000000000000 x4 : ffff0000020c9800 x3 : 00000000000007fc\n[ 303.302370] x2 : 0000000000000027 x1 : ffff000002467400 x0 : ffff000002467000\n[ 303.303341] Call trace:\n[ 303.303679] 0x0\n[ 303.303938] efivar_entry_set_get_size+0x98/0x16c\n[ 303.304585] efivarfs_file_write+0xd0/0x1a4\n[ 303.305148] vfs_write+0xc4/0x2e4\n[ 303.305601] ksys_write+0x70/0x104\n[ 303.306073] __arm64_sys_write+0x1c/0x28\n[ 303.306622] invoke_syscall+0x48/0x114\n[ 303.307156] el0_svc_common.constprop.0+0x44/0xec\n[ 303.307803] do_el0_svc+0x38/0x98\n[ 303.308268] el0_svc+0x2c/0x84\n[ 303.308702] el0t_64_sync_handler+0xf4/0x120\n[ 303.309293] el0t_64_sync+0x190/0x194\n[ 303.309794] Code: ???????? ???????? ???????? ???????? (????????)\n[ 303.310612] ---[ end trace 0000000000000000 ]---\n\nFix this by adding a .reconfigure() function to the fs operations which\nwe can use to check the requested flags and deny anything that\u0027s not RO\nif the firmware doesn\u0027t implement SetVariable at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52463",
"url": "https://www.suse.com/security/cve/CVE-2023-52463"
},
{
"category": "external",
"summary": "SUSE Bug 1220328 for CVE-2023-52463",
"url": "https://bugzilla.suse.com/1220328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52463"
},
{
"cve": "CVE-2023-52472",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52472"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: rsa - add a check for allocation failure\n\nStatic checkers insist that the mpi_alloc() allocation can fail so add\na check to prevent a NULL dereference. Small allocations like this\ncan\u0027t actually fail in current kernels, but adding a check is very\nsimple and makes the static checkers happy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52472",
"url": "https://www.suse.com/security/cve/CVE-2023-52472"
},
{
"category": "external",
"summary": "SUSE Bug 1220427 for CVE-2023-52472",
"url": "https://bugzilla.suse.com/1220427"
},
{
"category": "external",
"summary": "SUSE Bug 1220430 for CVE-2023-52472",
"url": "https://bugzilla.suse.com/1220430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2023-52472"
},
{
"cve": "CVE-2023-52591",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52591"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nreiserfs: Avoid touching renamed directory if parent does not change\n\nThe VFS will not be locking moved directory if its parent does not\nchange. Change reiserfs rename code to avoid touching renamed directory\nif its parent does not change as without locking that can corrupt the\nfilesystem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52591",
"url": "https://www.suse.com/security/cve/CVE-2023-52591"
},
{
"category": "external",
"summary": "SUSE Bug 1221044 for CVE-2023-52591",
"url": "https://bugzilla.suse.com/1221044"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-52591",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-52591",
"url": "https://bugzilla.suse.com/1221598"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2023-52591"
},
{
"cve": "CVE-2023-52653",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52653"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: fix a memleak in gss_import_v2_context\n\nThe ctx-\u003emech_used.data allocated by kmemdup is not freed in neither\ngss_import_v2_context nor it only caller gss_krb5_import_sec_context,\nwhich frees ctx on error.\n\nThus, this patch reform the last call of gss_import_v2_context to the\ngss_krb5_import_ctx_v2, preventing the memleak while keepping the return\nformation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52653",
"url": "https://www.suse.com/security/cve/CVE-2023-52653"
},
{
"category": "external",
"summary": "SUSE Bug 1223712 for CVE-2023-52653",
"url": "https://bugzilla.suse.com/1223712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52653"
},
{
"cve": "CVE-2023-52657",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52657"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"drm/amd/pm: resolve reboot exception for si oland\"\n\nThis reverts commit e490d60a2f76bff636c68ce4fe34c1b6c34bbd86.\n\nThis causes hangs on SI when DC is enabled and errors on driver\nreboot and power off cycles.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52657",
"url": "https://www.suse.com/security/cve/CVE-2023-52657"
},
{
"category": "external",
"summary": "SUSE Bug 1224722 for CVE-2023-52657",
"url": "https://bugzilla.suse.com/1224722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52657"
},
{
"cve": "CVE-2023-52658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52658"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"net/mlx5: Block entering switchdev mode with ns inconsistency\"\n\nThis reverts commit 662404b24a4c4d839839ed25e3097571f5938b9b.\nThe revert is required due to the suspicion it is not good for anything\nand cause crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52658",
"url": "https://www.suse.com/security/cve/CVE-2023-52658"
},
{
"category": "external",
"summary": "SUSE Bug 1224719 for CVE-2023-52658",
"url": "https://bugzilla.suse.com/1224719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52658"
},
{
"cve": "CVE-2023-52660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52660"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: rkisp1: Fix IRQ handling due to shared interrupts\n\nThe driver requests the interrupts as IRQF_SHARED, so the interrupt\nhandlers can be called at any time. If such a call happens while the ISP\nis powered down, the SoC will hang as the driver tries to access the\nISP registers.\n\nThis can be reproduced even without the platform sharing the IRQ line:\nEnable CONFIG_DEBUG_SHIRQ and unload the driver, and the board will\nhang.\n\nFix this by adding a new field, \u0027irqs_enabled\u0027, which is used to bail\nout from the interrupt handler when the ISP is not operational.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52660",
"url": "https://www.suse.com/security/cve/CVE-2023-52660"
},
{
"category": "external",
"summary": "SUSE Bug 1224443 for CVE-2023-52660",
"url": "https://bugzilla.suse.com/1224443"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52660"
},
{
"cve": "CVE-2023-52661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52661"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: rgb: Fix missing clk_put() in the error handling paths of tegra_dc_rgb_probe()\n\nIf clk_get_sys(..., \"pll_d2_out0\") fails, the clk_get_sys() call must be\nundone.\n\nAdd the missing clk_put and a new \u0027put_pll_d_out0\u0027 label in the error\nhandling path, and use it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52661",
"url": "https://www.suse.com/security/cve/CVE-2023-52661"
},
{
"category": "external",
"summary": "SUSE Bug 1224445 for CVE-2023-52661",
"url": "https://bugzilla.suse.com/1224445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2023-52661"
},
{
"cve": "CVE-2023-52662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node\n\nWhen ida_alloc_max fails, resources allocated before should be freed,\nincluding *res allocated by kmalloc and ttm_resource_init.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52662",
"url": "https://www.suse.com/security/cve/CVE-2023-52662"
},
{
"category": "external",
"summary": "SUSE Bug 1224449 for CVE-2023-52662",
"url": "https://bugzilla.suse.com/1224449"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52662"
},
{
"cve": "CVE-2023-52663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: SOF: amd: Fix memory leak in amd_sof_acp_probe()\n\nDriver uses kasprintf() to initialize fw_{code,data}_bin members of\nstruct acp_dev_data, but kfree() is never called to deallocate the\nmemory, which results in a memory leak.\n\nFix the issue by switching to devm_kasprintf(). Additionally, ensure the\nallocation was successful by checking the pointer validity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52663",
"url": "https://www.suse.com/security/cve/CVE-2023-52663"
},
{
"category": "external",
"summary": "SUSE Bug 1224630 for CVE-2023-52663",
"url": "https://bugzilla.suse.com/1224630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52663"
},
{
"cve": "CVE-2023-52664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: atlantic: eliminate double free in error handling logic\n\nDriver has a logic leak in ring data allocation/free,\nwhere aq_ring_free could be called multiple times on same ring,\nif system is under stress and got memory allocation error.\n\nRing pointer was used as an indicator of failure, but this is\nnot correct since only ring data is allocated/deallocated.\nRing itself is an array member.\n\nChanging ring allocation functions to return error code directly.\nThis simplifies error handling and eliminates aq_ring_free\non higher layer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52664",
"url": "https://www.suse.com/security/cve/CVE-2023-52664"
},
{
"category": "external",
"summary": "SUSE Bug 1224747 for CVE-2023-52664",
"url": "https://bugzilla.suse.com/1224747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52664"
},
{
"cve": "CVE-2023-52667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: fix a potential double-free in fs_any_create_groups\n\nWhen kcalloc() for ft-\u003eg succeeds but kvzalloc() for in fails,\nfs_any_create_groups() will free ft-\u003eg. However, its caller\nfs_any_create_table() will free ft-\u003eg again through calling\nmlx5e_destroy_flow_table(), which will lead to a double-free.\nFix this by setting ft-\u003eg to NULL in fs_any_create_groups().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52667",
"url": "https://www.suse.com/security/cve/CVE-2023-52667"
},
{
"category": "external",
"summary": "SUSE Bug 1224603 for CVE-2023-52667",
"url": "https://bugzilla.suse.com/1224603"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52667"
},
{
"cve": "CVE-2023-52669",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52669"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: s390/aes - Fix buffer overread in CTR mode\n\nWhen processing the last block, the s390 ctr code will always read\na whole block, even if there isn\u0027t a whole block of data left. Fix\nthis by using the actual length left and copy it into a buffer first\nfor processing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52669",
"url": "https://www.suse.com/security/cve/CVE-2023-52669"
},
{
"category": "external",
"summary": "SUSE Bug 1224637 for CVE-2023-52669",
"url": "https://bugzilla.suse.com/1224637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52669"
},
{
"cve": "CVE-2023-52670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52670"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrpmsg: virtio: Free driver_override when rpmsg_remove()\n\nFree driver_override when rpmsg_remove(), otherwise\nthe following memory leak will occur:\n\nunreferenced object 0xffff0000d55d7080 (size 128):\n comm \"kworker/u8:2\", pid 56, jiffies 4294893188 (age 214.272s)\n hex dump (first 32 bytes):\n 72 70 6d 73 67 5f 6e 73 00 00 00 00 00 00 00 00 rpmsg_ns........\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace:\n [\u003c000000009c94c9c1\u003e] __kmem_cache_alloc_node+0x1f8/0x320\n [\u003c000000002300d89b\u003e] __kmalloc_node_track_caller+0x44/0x70\n [\u003c00000000228a60c3\u003e] kstrndup+0x4c/0x90\n [\u003c0000000077158695\u003e] driver_set_override+0xd0/0x164\n [\u003c000000003e9c4ea5\u003e] rpmsg_register_device_override+0x98/0x170\n [\u003c000000001c0c89a8\u003e] rpmsg_ns_register_device+0x24/0x30\n [\u003c000000008bbf8fa2\u003e] rpmsg_probe+0x2e0/0x3ec\n [\u003c00000000e65a68df\u003e] virtio_dev_probe+0x1c0/0x280\n [\u003c00000000443331cc\u003e] really_probe+0xbc/0x2dc\n [\u003c00000000391064b1\u003e] __driver_probe_device+0x78/0xe0\n [\u003c00000000a41c9a5b\u003e] driver_probe_device+0xd8/0x160\n [\u003c000000009c3bd5df\u003e] __device_attach_driver+0xb8/0x140\n [\u003c0000000043cd7614\u003e] bus_for_each_drv+0x7c/0xd4\n [\u003c000000003b929a36\u003e] __device_attach+0x9c/0x19c\n [\u003c00000000a94e0ba8\u003e] device_initial_probe+0x14/0x20\n [\u003c000000003c999637\u003e] bus_probe_device+0xa0/0xac",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52670",
"url": "https://www.suse.com/security/cve/CVE-2023-52670"
},
{
"category": "external",
"summary": "SUSE Bug 1224696 for CVE-2023-52670",
"url": "https://bugzilla.suse.com/1224696"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52670"
},
{
"cve": "CVE-2023-52671",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52671"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix hang/underflow when transitioning to ODM4:1\n\n[Why]\nUnder some circumstances, disabling an OPTC and attempting to reclaim\nits OPP(s) for a different OPTC could cause a hang/underflow due to OPPs\nnot being properly disconnected from the disabled OPTC.\n\n[How]\nEnsure that all OPPs are unassigned from an OPTC when it gets disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52671",
"url": "https://www.suse.com/security/cve/CVE-2023-52671"
},
{
"category": "external",
"summary": "SUSE Bug 1224729 for CVE-2023-52671",
"url": "https://bugzilla.suse.com/1224729"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52671"
},
{
"cve": "CVE-2023-52673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52673"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix a debugfs null pointer error\n\n[WHY \u0026 HOW]\nCheck whether get_subvp_en() callback exists before calling it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52673",
"url": "https://www.suse.com/security/cve/CVE-2023-52673"
},
{
"category": "external",
"summary": "SUSE Bug 1224741 for CVE-2023-52673",
"url": "https://bugzilla.suse.com/1224741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52673"
},
{
"cve": "CVE-2023-52675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/imc-pmu: Add a null pointer check in update_events_in_group()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52675",
"url": "https://www.suse.com/security/cve/CVE-2023-52675"
},
{
"category": "external",
"summary": "SUSE Bug 1224504 for CVE-2023-52675",
"url": "https://bugzilla.suse.com/1224504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52675"
},
{
"cve": "CVE-2023-52676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Guard stack limits against 32bit overflow\n\nThis patch promotes the arithmetic around checking stack bounds to be\ndone in the 64-bit domain, instead of the current 32bit. The arithmetic\nimplies adding together a 64-bit register with a int offset. The\nregister was checked to be below 1\u003c\u003c29 when it was variable, but not\nwhen it was fixed. The offset either comes from an instruction (in which\ncase it is 16 bit), from another register (in which case the caller\nchecked it to be below 1\u003c\u003c29 [1]), or from the size of an argument to a\nkfunc (in which case it can be a u32 [2]). Between the register being\ninconsistently checked to be below 1\u003c\u003c29, and the offset being up to an\nu32, it appears that we were open to overflowing the `int`s which were\ncurrently used for arithmetic.\n\n[1] https://github.com/torvalds/linux/blob/815fb87b753055df2d9e50f6cd80eb10235fe3e9/kernel/bpf/verifier.c#L7494-L7498\n[2] https://github.com/torvalds/linux/blob/815fb87b753055df2d9e50f6cd80eb10235fe3e9/kernel/bpf/verifier.c#L11904",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52676",
"url": "https://www.suse.com/security/cve/CVE-2023-52676"
},
{
"category": "external",
"summary": "SUSE Bug 1224730 for CVE-2023-52676",
"url": "https://bugzilla.suse.com/1224730"
},
{
"category": "external",
"summary": "SUSE Bug 1226336 for CVE-2023-52676",
"url": "https://bugzilla.suse.com/1226336"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2023-52676"
},
{
"cve": "CVE-2023-52678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Confirm list is non-empty before utilizing list_first_entry in kfd_topology.c\n\nBefore using list_first_entry, make sure to check that list is not\nempty, if list is empty return -ENODATA.\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../amdkfd/kfd_topology.c:1347 kfd_create_indirect_link_prop() warn: can \u0027gpu_link\u0027 even be NULL?\ndrivers/gpu/drm/amd/amdgpu/../amdkfd/kfd_topology.c:1428 kfd_add_peer_prop() warn: can \u0027iolink1\u0027 even be NULL?\ndrivers/gpu/drm/amd/amdgpu/../amdkfd/kfd_topology.c:1433 kfd_add_peer_prop() warn: can \u0027iolink2\u0027 even be NULL?",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52678",
"url": "https://www.suse.com/security/cve/CVE-2023-52678"
},
{
"category": "external",
"summary": "SUSE Bug 1224617 for CVE-2023-52678",
"url": "https://bugzilla.suse.com/1224617"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52678"
},
{
"cve": "CVE-2023-52679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: Fix double free in of_parse_phandle_with_args_map\n\nIn of_parse_phandle_with_args_map() the inner loop that\niterates through the map entries calls of_node_put(new)\nto free the reference acquired by the previous iteration\nof the inner loop. This assumes that the value of \"new\" is\nNULL on the first iteration of the inner loop.\n\nMake sure that this is true in all iterations of the outer\nloop by setting \"new\" to NULL after its value is assigned to \"cur\".\n\nExtend the unittest to detect the double free and add an additional\ntest case that actually triggers this path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52679",
"url": "https://www.suse.com/security/cve/CVE-2023-52679"
},
{
"category": "external",
"summary": "SUSE Bug 1224508 for CVE-2023-52679",
"url": "https://bugzilla.suse.com/1224508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52679"
},
{
"cve": "CVE-2023-52681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: Free s_fs_info on unmount\n\nNow that we allocate a s_fs_info struct on fs context creation, we\nshould ensure that we free it again when the superblock goes away.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52681",
"url": "https://www.suse.com/security/cve/CVE-2023-52681"
},
{
"category": "external",
"summary": "SUSE Bug 1224505 for CVE-2023-52681",
"url": "https://bugzilla.suse.com/1224505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52681"
},
{
"cve": "CVE-2023-52683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52683"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: LPIT: Avoid u32 multiplication overflow\n\nIn lpit_update_residency() there is a possibility of overflow\nin multiplication, if tsc_khz is large enough (\u003e UINT_MAX/1000).\n\nChange multiplication to mul_u32_u32().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52683",
"url": "https://www.suse.com/security/cve/CVE-2023-52683"
},
{
"category": "external",
"summary": "SUSE Bug 1224627 for CVE-2023-52683",
"url": "https://bugzilla.suse.com/1224627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52683"
},
{
"cve": "CVE-2023-52685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52685"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52685",
"url": "https://www.suse.com/security/cve/CVE-2023-52685"
},
{
"category": "external",
"summary": "SUSE Bug 1224728 for CVE-2023-52685",
"url": "https://bugzilla.suse.com/1224728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52685"
},
{
"cve": "CVE-2023-52686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv: Add a null pointer check in opal_event_init()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52686",
"url": "https://www.suse.com/security/cve/CVE-2023-52686"
},
{
"category": "external",
"summary": "SUSE Bug 1224682 for CVE-2023-52686",
"url": "https://bugzilla.suse.com/1224682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52686"
},
{
"cve": "CVE-2023-52687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: safexcel - Add error handling for dma_map_sg() calls\n\nMacro dma_map_sg() may return 0 on error. This patch enables\nchecks in case of the macro failure and ensures unmapping of\npreviously mapped buffers with dma_unmap_sg().\n\nFound by Linux Verification Center (linuxtesting.org) with static\nanalysis tool SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52687",
"url": "https://www.suse.com/security/cve/CVE-2023-52687"
},
{
"category": "external",
"summary": "SUSE Bug 1224501 for CVE-2023-52687",
"url": "https://bugzilla.suse.com/1224501"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52687"
},
{
"cve": "CVE-2023-52690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv: Add a null pointer check to scom_debug_init_one()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.\nAdd a null pointer check, and release \u0027ent\u0027 to avoid memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52690",
"url": "https://www.suse.com/security/cve/CVE-2023-52690"
},
{
"category": "external",
"summary": "SUSE Bug 1224611 for CVE-2023-52690",
"url": "https://bugzilla.suse.com/1224611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52690"
},
{
"cve": "CVE-2023-52691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fix a double-free in si_dpm_init\n\nWhen the allocation of\nadev-\u003epm.dpm.dyn_state.vddc_dependency_on_dispclk.entries fails,\namdgpu_free_extended_power_table is called to free some fields of adev.\nHowever, when the control flow returns to si_dpm_sw_init, it goes to\nlabel dpm_failed and calls si_dpm_fini, which calls\namdgpu_free_extended_power_table again and free those fields again. Thus\na double-free is triggered.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52691",
"url": "https://www.suse.com/security/cve/CVE-2023-52691"
},
{
"category": "external",
"summary": "SUSE Bug 1224607 for CVE-2023-52691",
"url": "https://bugzilla.suse.com/1224607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52691"
},
{
"cve": "CVE-2023-52693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: video: check for error while searching for backlight device parent\n\nIf acpi_get_parent() called in acpi_video_dev_register_backlight()\nfails, for example, because acpi_ut_acquire_mutex() fails inside\nacpi_get_parent), this can lead to incorrect (uninitialized)\nacpi_parent handle being passed to acpi_get_pci_dev() for detecting\nthe parent pci device.\n\nCheck acpi_get_parent() result and set parent device only in case of success.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52693",
"url": "https://www.suse.com/security/cve/CVE-2023-52693"
},
{
"category": "external",
"summary": "SUSE Bug 1224686 for CVE-2023-52693",
"url": "https://bugzilla.suse.com/1224686"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52693"
},
{
"cve": "CVE-2023-52694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: tpd12s015: Drop buggy __exit annotation for remove function\n\nWith tpd12s015_remove() marked with __exit this function is discarded\nwhen the driver is compiled as a built-in. The result is that when the\ndriver unbinds there is no cleanup done which results in resource\nleakage or worse.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52694",
"url": "https://www.suse.com/security/cve/CVE-2023-52694"
},
{
"category": "external",
"summary": "SUSE Bug 1224598 for CVE-2023-52694",
"url": "https://bugzilla.suse.com/1224598"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52694"
},
{
"cve": "CVE-2023-52695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check writeback connectors in create_validate_stream_for_sink\n\n[WHY \u0026 HOW]\nThis is to check connector type to avoid\nunhandled null pointer for writeback connectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52695",
"url": "https://www.suse.com/security/cve/CVE-2023-52695"
},
{
"category": "external",
"summary": "SUSE Bug 1224506 for CVE-2023-52695",
"url": "https://bugzilla.suse.com/1224506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52695"
},
{
"cve": "CVE-2023-52696",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52696"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv: Add a null pointer check in opal_powercap_init()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52696",
"url": "https://www.suse.com/security/cve/CVE-2023-52696"
},
{
"category": "external",
"summary": "SUSE Bug 1224601 for CVE-2023-52696",
"url": "https://bugzilla.suse.com/1224601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52696"
},
{
"cve": "CVE-2023-52697",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52697"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: sof_sdw_rt_sdca_jack_common: ctx-\u003eheadset_codec_dev = NULL\n\nsof_sdw_rt_sdca_jack_exit() are used by different codecs, and some of\nthem use the same dai name.\nFor example, rt712 and rt713 both use \"rt712-sdca-aif1\" and\nsof_sdw_rt_sdca_jack_exit().\nAs a result, sof_sdw_rt_sdca_jack_exit() will be called twice by\nmc_dailink_exit_loop(). Set ctx-\u003eheadset_codec_dev = NULL; after\nput_device(ctx-\u003eheadset_codec_dev); to avoid ctx-\u003eheadset_codec_dev\nbeing put twice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52697",
"url": "https://www.suse.com/security/cve/CVE-2023-52697"
},
{
"category": "external",
"summary": "SUSE Bug 1224596 for CVE-2023-52697",
"url": "https://bugzilla.suse.com/1224596"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52697"
},
{
"cve": "CVE-2023-52882",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52882"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change\n\nWhile PLL CPUX clock rate change when CPU is running from it works in\nvast majority of cases, now and then it causes instability. This leads\nto system crashes and other undefined behaviour. After a lot of testing\n(30+ hours) while also doing a lot of frequency switches, we can\u0027t\nobserve any instability issues anymore when doing reparenting to stable\nclock like 24 MHz oscillator.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52882",
"url": "https://www.suse.com/security/cve/CVE-2023-52882"
},
{
"category": "external",
"summary": "SUSE Bug 1225692 for CVE-2023-52882",
"url": "https://bugzilla.suse.com/1225692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52882"
},
{
"cve": "CVE-2023-52923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: adapt set backend to use GC transaction API\n\nUse the GC transaction API to replace the old and buggy gc API and the\nbusy mark approach.\n\nNo set elements are removed from async garbage collection anymore,\ninstead the _DEAD bit is set on so the set element is not visible from\nlookup path anymore. Async GC enqueues transaction work that might be\naborted and retried later.\n\nrbtree and pipapo set backends does not set on the _DEAD bit from the\nsync GC path since this runs in control plane path where mutex is held.\nIn this case, set elements are deactivated, removed and then released\nvia RCU callback, sync GC never fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52923",
"url": "https://www.suse.com/security/cve/CVE-2023-52923"
},
{
"category": "external",
"summary": "SUSE Bug 1236104 for CVE-2023-52923",
"url": "https://bugzilla.suse.com/1236104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52923"
},
{
"cve": "CVE-2024-22099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-22099"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C.\n\nThis issue affects Linux kernel: v2.6.12-rc2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-22099",
"url": "https://www.suse.com/security/cve/CVE-2024-22099"
},
{
"category": "external",
"summary": "SUSE Bug 1219170 for CVE-2024-22099",
"url": "https://bugzilla.suse.com/1219170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-22099"
},
{
"cve": "CVE-2024-26611",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26611"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: fix usage of multi-buffer BPF helpers for ZC XDP\n\nCurrently when packet is shrunk via bpf_xdp_adjust_tail() and memory\ntype is set to MEM_TYPE_XSK_BUFF_POOL, null ptr dereference happens:\n\n[1136314.192256] BUG: kernel NULL pointer dereference, address:\n0000000000000034\n[1136314.203943] #PF: supervisor read access in kernel mode\n[1136314.213768] #PF: error_code(0x0000) - not-present page\n[1136314.223550] PGD 0 P4D 0\n[1136314.230684] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[1136314.239621] CPU: 8 PID: 54203 Comm: xdpsock Not tainted 6.6.0+ #257\n[1136314.250469] Hardware name: Intel Corporation S2600WFT/S2600WFT,\nBIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[1136314.265615] RIP: 0010:__xdp_return+0x6c/0x210\n[1136314.274653] Code: ad 00 48 8b 47 08 49 89 f8 a8 01 0f 85 9b 01 00 00 0f 1f 44 00 00 f0 41 ff 48 34 75 32 4c 89 c7 e9 79 cd 80 ff 83 fe 03 75 17 \u003cf6\u003e 41 34 01 0f 85 02 01 00 00 48 89 cf e9 22 cc 1e 00 e9 3d d2 86\n[1136314.302907] RSP: 0018:ffffc900089f8db0 EFLAGS: 00010246\n[1136314.312967] RAX: ffffc9003168aed0 RBX: ffff8881c3300000 RCX:\n0000000000000000\n[1136314.324953] RDX: 0000000000000000 RSI: 0000000000000003 RDI:\nffffc9003168c000\n[1136314.336929] RBP: 0000000000000ae0 R08: 0000000000000002 R09:\n0000000000010000\n[1136314.348844] R10: ffffc9000e495000 R11: 0000000000000040 R12:\n0000000000000001\n[1136314.360706] R13: 0000000000000524 R14: ffffc9003168aec0 R15:\n0000000000000001\n[1136314.373298] FS: 00007f8df8bbcb80(0000) GS:ffff8897e0e00000(0000)\nknlGS:0000000000000000\n[1136314.386105] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[1136314.396532] CR2: 0000000000000034 CR3: 00000001aa912002 CR4:\n00000000007706f0\n[1136314.408377] DR0: 0000000000000000 DR1: 0000000000000000 DR2:\n0000000000000000\n[1136314.420173] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:\n0000000000000400\n[1136314.431890] PKRU: 55555554\n[1136314.439143] Call Trace:\n[1136314.446058] \u003cIRQ\u003e\n[1136314.452465] ? __die+0x20/0x70\n[1136314.459881] ? page_fault_oops+0x15b/0x440\n[1136314.468305] ? exc_page_fault+0x6a/0x150\n[1136314.476491] ? asm_exc_page_fault+0x22/0x30\n[1136314.484927] ? __xdp_return+0x6c/0x210\n[1136314.492863] bpf_xdp_adjust_tail+0x155/0x1d0\n[1136314.501269] bpf_prog_ccc47ae29d3b6570_xdp_sock_prog+0x15/0x60\n[1136314.511263] ice_clean_rx_irq_zc+0x206/0xc60 [ice]\n[1136314.520222] ? ice_xmit_zc+0x6e/0x150 [ice]\n[1136314.528506] ice_napi_poll+0x467/0x670 [ice]\n[1136314.536858] ? ttwu_do_activate.constprop.0+0x8f/0x1a0\n[1136314.546010] __napi_poll+0x29/0x1b0\n[1136314.553462] net_rx_action+0x133/0x270\n[1136314.561619] __do_softirq+0xbe/0x28e\n[1136314.569303] do_softirq+0x3f/0x60\n\nThis comes from __xdp_return() call with xdp_buff argument passed as\nNULL which is supposed to be consumed by xsk_buff_free() call.\n\nTo address this properly, in ZC case, a node that represents the frag\nbeing removed has to be pulled out of xskb_list. Introduce\nappropriate xsk helpers to do such node operation and use them\naccordingly within bpf_xdp_adjust_tail().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26611",
"url": "https://www.suse.com/security/cve/CVE-2024-26611"
},
{
"category": "external",
"summary": "SUSE Bug 1221303 for CVE-2024-26611",
"url": "https://bugzilla.suse.com/1221303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26611"
},
{
"cve": "CVE-2024-26742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: smartpqi: Fix disable_managed_interrupts\n\nCorrect blk-mq registration issue with module parameter\ndisable_managed_interrupts enabled.\n\nWhen we turn off the default PCI_IRQ_AFFINITY flag, the driver needs to\nregister with blk-mq using blk_mq_map_queues(). The driver is currently\ncalling blk_mq_pci_map_queues() which results in a stack trace and possibly\nundefined behavior.\n\nStack Trace:\n[ 7.860089] scsi host2: smartpqi\n[ 7.871934] WARNING: CPU: 0 PID: 238 at block/blk-mq-pci.c:52 blk_mq_pci_map_queues+0xca/0xd0\n[ 7.889231] Modules linked in: sd_mod t10_pi sg uas smartpqi(+) crc32c_intel scsi_transport_sas usb_storage dm_mirror dm_region_hash dm_log dm_mod ipmi_devintf ipmi_msghandler fuse\n[ 7.924755] CPU: 0 PID: 238 Comm: kworker/0:3 Not tainted 4.18.0-372.88.1.el8_6_smartpqi_test.x86_64 #1\n[ 7.944336] Hardware name: HPE ProLiant DL380 Gen10/ProLiant DL380 Gen10, BIOS U30 03/08/2022\n[ 7.963026] Workqueue: events work_for_cpu_fn\n[ 7.978275] RIP: 0010:blk_mq_pci_map_queues+0xca/0xd0\n[ 7.978278] Code: 48 89 de 89 c7 e8 f6 0f 4f 00 3b 05 c4 b7 8e 01 72 e1 5b 31 c0 5d 41 5c 41 5d 41 5e 41 5f e9 7d df 73 00 31 c0 e9 76 df 73 00 \u003c0f\u003e 0b eb bc 90 90 0f 1f 44 00 00 41 57 49 89 ff 41 56 41 55 41 54\n[ 7.978280] RSP: 0018:ffffa95fc3707d50 EFLAGS: 00010216\n[ 7.978283] RAX: 00000000ffffffff RBX: 0000000000000000 RCX: 0000000000000010\n[ 7.978284] RDX: 0000000000000004 RSI: 0000000000000000 RDI: ffff9190c32d4310\n[ 7.978286] RBP: 0000000000000000 R08: ffffa95fc3707d38 R09: ffff91929b81ac00\n[ 7.978287] R10: 0000000000000001 R11: ffffa95fc3707ac0 R12: 0000000000000000\n[ 7.978288] R13: ffff9190c32d4000 R14: 00000000ffffffff R15: ffff9190c4c950a8\n[ 7.978290] FS: 0000000000000000(0000) GS:ffff9193efc00000(0000) knlGS:0000000000000000\n[ 7.978292] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 8.172814] CR2: 000055d11166c000 CR3: 00000002dae10002 CR4: 00000000007706f0\n[ 8.172816] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 8.172817] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 8.172818] PKRU: 55555554\n[ 8.172819] Call Trace:\n[ 8.172823] blk_mq_alloc_tag_set+0x12e/0x310\n[ 8.264339] scsi_add_host_with_dma.cold.9+0x30/0x245\n[ 8.279302] pqi_ctrl_init+0xacf/0xc8e [smartpqi]\n[ 8.294085] ? pqi_pci_probe+0x480/0x4c8 [smartpqi]\n[ 8.309015] pqi_pci_probe+0x480/0x4c8 [smartpqi]\n[ 8.323286] local_pci_probe+0x42/0x80\n[ 8.337855] work_for_cpu_fn+0x16/0x20\n[ 8.351193] process_one_work+0x1a7/0x360\n[ 8.364462] ? create_worker+0x1a0/0x1a0\n[ 8.379252] worker_thread+0x1ce/0x390\n[ 8.392623] ? create_worker+0x1a0/0x1a0\n[ 8.406295] kthread+0x10a/0x120\n[ 8.418428] ? set_kthread_struct+0x50/0x50\n[ 8.431532] ret_from_fork+0x1f/0x40\n[ 8.444137] ---[ end trace 1bf0173d39354506 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26742",
"url": "https://www.suse.com/security/cve/CVE-2024-26742"
},
{
"category": "external",
"summary": "SUSE Bug 1222608 for CVE-2024-26742",
"url": "https://bugzilla.suse.com/1222608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26742"
},
{
"cve": "CVE-2024-26761",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26761"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS window\n\nThe Linux CXL subsystem is built on the assumption that HPA == SPA.\nThat is, the host physical address (HPA) the HDM decoder registers are\nprogrammed with are system physical addresses (SPA).\n\nDuring HDM decoder setup, the DVSEC CXL range registers (cxl-3.1,\n8.1.3.8) are checked if the memory is enabled and the CXL range is in\na HPA window that is described in a CFMWS structure of the CXL host\nbridge (cxl-3.1, 9.18.1.3).\n\nNow, if the HPA is not an SPA, the CXL range does not match a CFMWS\nwindow and the CXL memory range will be disabled then. The HDM decoder\nstops working which causes system memory being disabled and further a\nsystem hang during HDM decoder initialization, typically when a CXL\nenabled kernel boots.\n\nPrevent a system hang and do not disable the HDM decoder if the\ndecoder\u0027s CXL range is not found in a CFMWS window.\n\nNote the change only fixes a hardware hang, but does not implement\nHPA/SPA translation. Support for this can be added in a follow on\npatch series.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26761",
"url": "https://www.suse.com/security/cve/CVE-2024-26761"
},
{
"category": "external",
"summary": "SUSE Bug 1230375 for CVE-2024-26761",
"url": "https://bugzilla.suse.com/1230375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26761"
},
{
"cve": "CVE-2024-26764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio\n\nIf kiocb_set_cancel_fn() is called for I/O submitted via io_uring, the\nfollowing kernel warning appears:\n\nWARNING: CPU: 3 PID: 368 at fs/aio.c:598 kiocb_set_cancel_fn+0x9c/0xa8\nCall trace:\n kiocb_set_cancel_fn+0x9c/0xa8\n ffs_epfile_read_iter+0x144/0x1d0\n io_read+0x19c/0x498\n io_issue_sqe+0x118/0x27c\n io_submit_sqes+0x25c/0x5fc\n __arm64_sys_io_uring_enter+0x104/0xab0\n invoke_syscall+0x58/0x11c\n el0_svc_common+0xb4/0xf4\n do_el0_svc+0x2c/0xb0\n el0_svc+0x2c/0xa4\n el0t_64_sync_handler+0x68/0xb4\n el0t_64_sync+0x1a4/0x1a8\n\nFix this by setting the IOCB_AIO_RW flag for read and write I/O that is\nsubmitted by libaio.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26764",
"url": "https://www.suse.com/security/cve/CVE-2024-26764"
},
{
"category": "external",
"summary": "SUSE Bug 1222721 for CVE-2024-26764",
"url": "https://bugzilla.suse.com/1222721"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26764"
},
{
"cve": "CVE-2024-26786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Fix iopt_access_list_id overwrite bug\n\nSyzkaller reported the following WARN_ON:\n WARNING: CPU: 1 PID: 4738 at drivers/iommu/iommufd/io_pagetable.c:1360\n\n Call Trace:\n iommufd_access_change_ioas+0x2fe/0x4e0\n iommufd_access_destroy_object+0x50/0xb0\n iommufd_object_remove+0x2a3/0x490\n iommufd_object_destroy_user\n iommufd_access_destroy+0x71/0xb0\n iommufd_test_staccess_release+0x89/0xd0\n __fput+0x272/0xb50\n __fput_sync+0x4b/0x60\n __do_sys_close\n __se_sys_close\n __x64_sys_close+0x8b/0x110\n do_syscall_x64\n\nThe mismatch between the access pointer in the list and the passed-in\npointer is resulting from an overwrite of access-\u003eiopt_access_list_id, in\niopt_add_access(). Called from iommufd_access_change_ioas() when\nxa_alloc() succeeds but iopt_calculate_iova_alignment() fails.\n\nAdd a new_id in iopt_add_access() and only update iopt_access_list_id when\nreturning successfully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26786",
"url": "https://www.suse.com/security/cve/CVE-2024-26786"
},
{
"category": "external",
"summary": "SUSE Bug 1222780 for CVE-2024-26786",
"url": "https://bugzilla.suse.com/1222780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26786"
},
{
"cve": "CVE-2024-26794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26794"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26794",
"url": "https://www.suse.com/security/cve/CVE-2024-26794"
},
{
"category": "external",
"summary": "SUSE Bug 1222426 for CVE-2024-26794",
"url": "https://bugzilla.suse.com/1222426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26794"
},
{
"cve": "CVE-2024-26846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26846"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fc: do not wait in vain when unloading module\n\nThe module exit path has race between deleting all controllers and\nfreeing \u0027left over IDs\u0027. To prevent double free a synchronization\nbetween nvme_delete_ctrl and ida_destroy has been added by the initial\ncommit.\n\nThere is some logic around trying to prevent from hanging forever in\nwait_for_completion, though it does not handling all cases. E.g.\nblktests is able to reproduce the situation where the module unload\nhangs forever.\n\nIf we completely rely on the cleanup code executed from the\nnvme_delete_ctrl path, all IDs will be freed eventually. This makes\ncalling ida_destroy unnecessary. We only have to ensure that all\nnvme_delete_ctrl code has been executed before we leave\nnvme_fc_exit_module. This is done by flushing the nvme_delete_wq\nworkqueue.\n\nWhile at it, remove the unused nvme_fc_wq workqueue too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26846",
"url": "https://www.suse.com/security/cve/CVE-2024-26846"
},
{
"category": "external",
"summary": "SUSE Bug 1223023 for CVE-2024-26846",
"url": "https://bugzilla.suse.com/1223023"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26846"
},
{
"cve": "CVE-2024-26853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26853"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigc: avoid returning frame twice in XDP_REDIRECT\n\nWhen a frame can not be transmitted in XDP_REDIRECT\n(e.g. due to a full queue), it is necessary to free\nit by calling xdp_return_frame_rx_napi.\n\nHowever, this is the responsibility of the caller of\nthe ndo_xdp_xmit (see for example bq_xmit_all in\nkernel/bpf/devmap.c) and thus calling it inside\nigc_xdp_xmit (which is the ndo_xdp_xmit of the igc\ndriver) as well will lead to memory corruption.\n\nIn fact, bq_xmit_all expects that it can return all\nframes after the last successfully transmitted one.\nTherefore, break for the first not transmitted frame,\nbut do not call xdp_return_frame_rx_napi in igc_xdp_xmit.\nThis is equally implemented in other Intel drivers\nsuch as the igb.\n\nThere are two alternatives to this that were rejected:\n1. Return num_frames as all the frames would have been\n transmitted and release them inside igc_xdp_xmit.\n While it might work technically, it is not what\n the return value is meant to represent (i.e. the\n number of SUCCESSFULLY transmitted packets).\n2. Rework kernel/bpf/devmap.c and all drivers to\n support non-consecutively dropped packets.\n Besides being complex, it likely has a negative\n performance impact without a significant gain\n since it is anyway unlikely that the next frame\n can be transmitted if the previous one was dropped.\n\nThe memory corruption can be reproduced with\nthe following script which leads to a kernel panic\nafter a few seconds. It basically generates more\ntraffic than a i225 NIC can transmit and pushes it\nvia XDP_REDIRECT from a virtual interface to the\nphysical interface where frames get dropped.\n\n #!/bin/bash\n INTERFACE=enp4s0\n INTERFACE_IDX=`cat /sys/class/net/$INTERFACE/ifindex`\n\n sudo ip link add dev veth1 type veth peer name veth2\n sudo ip link set up $INTERFACE\n sudo ip link set up veth1\n sudo ip link set up veth2\n\n cat \u003c\u003c EOF \u003e redirect.bpf.c\n\n SEC(\"prog\")\n int redirect(struct xdp_md *ctx)\n {\n return bpf_redirect($INTERFACE_IDX, 0);\n }\n\n char _license[] SEC(\"license\") = \"GPL\";\n EOF\n clang -O2 -g -Wall -target bpf -c redirect.bpf.c -o redirect.bpf.o\n sudo ip link set veth2 xdp obj redirect.bpf.o\n\n cat \u003c\u003c EOF \u003e pass.bpf.c\n\n SEC(\"prog\")\n int pass(struct xdp_md *ctx)\n {\n return XDP_PASS;\n }\n\n char _license[] SEC(\"license\") = \"GPL\";\n EOF\n clang -O2 -g -Wall -target bpf -c pass.bpf.c -o pass.bpf.o\n sudo ip link set $INTERFACE xdp obj pass.bpf.o\n\n cat \u003c\u003c EOF \u003e trafgen.cfg\n\n {\n /* Ethernet Header */\n 0xe8, 0x6a, 0x64, 0x41, 0xbf, 0x46,\n 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,\n const16(ETH_P_IP),\n\n /* IPv4 Header */\n 0b01000101, 0, # IPv4 version, IHL, TOS\n const16(1028), # IPv4 total length (UDP length + 20 bytes (IP header))\n const16(2), # IPv4 ident\n 0b01000000, 0, # IPv4 flags, fragmentation off\n 64, # IPv4 TTL\n 17, # Protocol UDP\n csumip(14, 33), # IPv4 checksum\n\n /* UDP Header */\n 10, 0, 1, 1, # IP Src - adapt as needed\n 10, 0, 1, 2, # IP Dest - adapt as needed\n const16(6666), # UDP Src Port\n const16(6666), # UDP Dest Port\n const16(1008), # UDP length (UDP header 8 bytes + payload length)\n csumudp(14, 34), # UDP checksum\n\n /* Payload */\n fill(\u0027W\u0027, 1000),\n }\n EOF\n\n sudo trafgen -i trafgen.cfg -b3000MB -o veth1 --cpp",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26853",
"url": "https://www.suse.com/security/cve/CVE-2024-26853"
},
{
"category": "external",
"summary": "SUSE Bug 1223061 for CVE-2024-26853",
"url": "https://bugzilla.suse.com/1223061"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26853"
},
{
"cve": "CVE-2024-26854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix uninitialized dplls mutex usage\n\nThe pf-\u003edplls.lock mutex is initialized too late, after its first use.\nMove it to the top of ice_dpll_init.\nNote that the \"err_exit\" error path destroys the mutex. And the mutex is\nthe last thing destroyed in ice_dpll_deinit.\nThis fixes the following warning with CONFIG_DEBUG_MUTEXES:\n\n ice 0000:10:00.0: The DDP package was successfully loaded: ICE OS Default Package version 1.3.36.0\n ice 0000:10:00.0: 252.048 Gb/s available PCIe bandwidth (16.0 GT/s PCIe x16 link)\n ice 0000:10:00.0: PTP init successful\n ------------[ cut here ]------------\n DEBUG_LOCKS_WARN_ON(lock-\u003emagic != lock)\n WARNING: CPU: 0 PID: 410 at kernel/locking/mutex.c:587 __mutex_lock+0x773/0xd40\n Modules linked in: crct10dif_pclmul crc32_pclmul crc32c_intel polyval_clmulni polyval_generic ice(+) nvme nvme_c\u003e\n CPU: 0 PID: 410 Comm: kworker/0:4 Not tainted 6.8.0-rc5+ #3\n Hardware name: HPE ProLiant DL110 Gen10 Plus/ProLiant DL110 Gen10 Plus, BIOS U56 10/19/2023\n Workqueue: events work_for_cpu_fn\n RIP: 0010:__mutex_lock+0x773/0xd40\n Code: c0 0f 84 1d f9 ff ff 44 8b 35 0d 9c 69 01 45 85 f6 0f 85 0d f9 ff ff 48 c7 c6 12 a2 a9 85 48 c7 c7 12 f1 a\u003e\n RSP: 0018:ff7eb1a3417a7ae0 EFLAGS: 00010286\n RAX: 0000000000000000 RBX: 0000000000000002 RCX: 0000000000000000\n RDX: 0000000000000002 RSI: ffffffff85ac2bff RDI: 00000000ffffffff\n RBP: ff7eb1a3417a7b80 R08: 0000000000000000 R09: 00000000ffffbfff\n R10: ff7eb1a3417a7978 R11: ff32b80f7fd2e568 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: ff32b7f02c50e0d8\n FS: 0000000000000000(0000) GS:ff32b80efe800000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 000055b5852cc000 CR3: 000000003c43a004 CR4: 0000000000771ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x84/0x170\n ? __mutex_lock+0x773/0xd40\n ? report_bug+0x1c7/0x1d0\n ? prb_read_valid+0x1b/0x30\n ? handle_bug+0x42/0x70\n ? exc_invalid_op+0x18/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? __mutex_lock+0x773/0xd40\n ? rcu_is_watching+0x11/0x50\n ? __kmalloc_node_track_caller+0x346/0x490\n ? ice_dpll_lock_status_get+0x28/0x50 [ice]\n ? __pfx_ice_dpll_lock_status_get+0x10/0x10 [ice]\n ? ice_dpll_lock_status_get+0x28/0x50 [ice]\n ice_dpll_lock_status_get+0x28/0x50 [ice]\n dpll_device_get_one+0x14f/0x2e0\n dpll_device_event_send+0x7d/0x150\n dpll_device_register+0x124/0x180\n ice_dpll_init_dpll+0x7b/0xd0 [ice]\n ice_dpll_init+0x224/0xa40 [ice]\n ? _dev_info+0x70/0x90\n ice_load+0x468/0x690 [ice]\n ice_probe+0x75b/0xa10 [ice]\n ? _raw_spin_unlock_irqrestore+0x4f/0x80\n ? process_one_work+0x1a3/0x500\n local_pci_probe+0x47/0xa0\n work_for_cpu_fn+0x17/0x30\n process_one_work+0x20d/0x500\n worker_thread+0x1df/0x3e0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x103/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n irq event stamp: 125197\n hardirqs last enabled at (125197): [\u003cffffffff8416409d\u003e] finish_task_switch.isra.0+0x12d/0x3d0\n hardirqs last disabled at (125196): [\u003cffffffff85134044\u003e] __schedule+0xea4/0x19f0\n softirqs last enabled at (105334): [\u003cffffffff84e1e65a\u003e] napi_get_frags_check+0x1a/0x60\n softirqs last disabled at (105332): [\u003cffffffff84e1e65a\u003e] napi_get_frags_check+0x1a/0x60\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26854",
"url": "https://www.suse.com/security/cve/CVE-2024-26854"
},
{
"category": "external",
"summary": "SUSE Bug 1223039 for CVE-2024-26854",
"url": "https://bugzilla.suse.com/1223039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26854"
},
{
"cve": "CVE-2024-26855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()\n\nThe function ice_bridge_setlink() may encounter a NULL pointer dereference\nif nlmsg_find_attr() returns NULL and br_spec is dereferenced subsequently\nin nla_for_each_nested(). To address this issue, add a check to ensure that\nbr_spec is not NULL before proceeding with the nested attribute iteration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26855",
"url": "https://www.suse.com/security/cve/CVE-2024-26855"
},
{
"category": "external",
"summary": "SUSE Bug 1223051 for CVE-2024-26855",
"url": "https://bugzilla.suse.com/1223051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26855"
},
{
"cve": "CVE-2024-26856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26856"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sparx5: Fix use after free inside sparx5_del_mact_entry\n\nBased on the static analyzis of the code it looks like when an entry\nfrom the MAC table was removed, the entry was still used after being\nfreed. More precise the vid of the mac_entry was used after calling\ndevm_kfree on the mac_entry.\nThe fix consists in first using the vid of the mac_entry to delete the\nentry from the HW and after that to free it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26856",
"url": "https://www.suse.com/security/cve/CVE-2024-26856"
},
{
"category": "external",
"summary": "SUSE Bug 1223052 for CVE-2024-26856",
"url": "https://bugzilla.suse.com/1223052"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26856"
},
{
"cve": "CVE-2024-26857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: make sure to pull inner header in geneve_rx()\n\nsyzbot triggered a bug in geneve_rx() [1]\n\nIssue is similar to the one I fixed in commit 8d975c15c0cd\n(\"ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()\")\n\nWe have to save skb-\u003enetwork_header in a temporary variable\nin order to be able to recompute the network_header pointer\nafter a pskb_inet_may_pull() call.\n\npskb_inet_may_pull() makes sure the needed headers are in skb-\u003ehead.\n\n[1]\nBUG: KMSAN: uninit-value in IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n BUG: KMSAN: uninit-value in geneve_rx drivers/net/geneve.c:279 [inline]\n BUG: KMSAN: uninit-value in geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391\n IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n geneve_rx drivers/net/geneve.c:279 [inline]\n geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391\n udp_queue_rcv_one_skb+0x1d39/0x1f20 net/ipv4/udp.c:2108\n udp_queue_rcv_skb+0x6ae/0x6e0 net/ipv4/udp.c:2186\n udp_unicast_rcv_skb+0x184/0x4b0 net/ipv4/udp.c:2346\n __udp4_lib_rcv+0x1c6b/0x3010 net/ipv4/udp.c:2422\n udp_rcv+0x7d/0xa0 net/ipv4/udp.c:2604\n ip_protocol_deliver_rcu+0x264/0x1300 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x2b8/0x440 net/ipv4/ip_input.c:233\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip_local_deliver+0x21f/0x490 net/ipv4/ip_input.c:254\n dst_input include/net/dst.h:461 [inline]\n ip_rcv_finish net/ipv4/ip_input.c:449 [inline]\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip_rcv+0x46f/0x760 net/ipv4/ip_input.c:569\n __netif_receive_skb_one_core net/core/dev.c:5534 [inline]\n __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5648\n process_backlog+0x480/0x8b0 net/core/dev.c:5976\n __napi_poll+0xe3/0x980 net/core/dev.c:6576\n napi_poll net/core/dev.c:6645 [inline]\n net_rx_action+0x8b8/0x1870 net/core/dev.c:6778\n __do_softirq+0x1b7/0x7c5 kernel/softirq.c:553\n do_softirq+0x9a/0xf0 kernel/softirq.c:454\n __local_bh_enable_ip+0x9b/0xa0 kernel/softirq.c:381\n local_bh_enable include/linux/bottom_half.h:33 [inline]\n rcu_read_unlock_bh include/linux/rcupdate.h:820 [inline]\n __dev_queue_xmit+0x2768/0x51c0 net/core/dev.c:4378\n dev_queue_xmit include/linux/netdevice.h:3171 [inline]\n packet_xmit+0x9c/0x6b0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3081 [inline]\n packet_sendmsg+0x8aef/0x9f10 net/packet/af_packet.c:3113\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x735/0xa10 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3819 [inline]\n slab_alloc_node mm/slub.c:3860 [inline]\n kmem_cache_alloc_node+0x5cb/0xbc0 mm/slub.c:3903\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x352/0x790 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1296 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6394\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2783\n packet_alloc_skb net/packet/af_packet.c:2930 [inline]\n packet_snd net/packet/af_packet.c:3024 [inline]\n packet_sendmsg+0x70c2/0x9f10 net/packet/af_packet.c:3113\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x735/0xa10 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26857",
"url": "https://www.suse.com/security/cve/CVE-2024-26857"
},
{
"category": "external",
"summary": "SUSE Bug 1223058 for CVE-2024-26857",
"url": "https://bugzilla.suse.com/1223058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26857"
},
{
"cve": "CVE-2024-26858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26858"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map\n\nJust simply reordering the functions mlx5e_ptp_metadata_map_put and\nmlx5e_ptpsq_track_metadata in the mlx5e_txwqe_complete context is not good\nenough since both the compiler and CPU are free to reorder these two\nfunctions. If reordering does occur, the issue that was supposedly fixed by\n7e3f3ba97e6c (\"net/mlx5e: Track xmit submission to PTP WQ after populating\nmetadata map\") will be seen. This will lead to NULL pointer dereferences in\nmlx5e_ptpsq_mark_ts_cqes_undelivered in the NAPI polling context due to the\ntracking list being populated before the metadata map.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26858",
"url": "https://www.suse.com/security/cve/CVE-2024-26858"
},
{
"category": "external",
"summary": "SUSE Bug 1223020 for CVE-2024-26858",
"url": "https://bugzilla.suse.com/1223020"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26858"
},
{
"cve": "CVE-2024-26861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: receive: annotate data-race around receiving_counter.counter\n\nSyzkaller with KCSAN identified a data-race issue when accessing\nkeypair-\u003ereceiving_counter.counter. Use READ_ONCE() and WRITE_ONCE()\nannotations to mark the data race as intentional.\n\n BUG: KCSAN: data-race in wg_packet_decrypt_worker / wg_packet_rx_poll\n\n write to 0xffff888107765888 of 8 bytes by interrupt on cpu 0:\n counter_validate drivers/net/wireguard/receive.c:321 [inline]\n wg_packet_rx_poll+0x3ac/0xf00 drivers/net/wireguard/receive.c:461\n __napi_poll+0x60/0x3b0 net/core/dev.c:6536\n napi_poll net/core/dev.c:6605 [inline]\n net_rx_action+0x32b/0x750 net/core/dev.c:6738\n __do_softirq+0xc4/0x279 kernel/softirq.c:553\n do_softirq+0x5e/0x90 kernel/softirq.c:454\n __local_bh_enable_ip+0x64/0x70 kernel/softirq.c:381\n __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline]\n _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210\n spin_unlock_bh include/linux/spinlock.h:396 [inline]\n ptr_ring_consume_bh include/linux/ptr_ring.h:367 [inline]\n wg_packet_decrypt_worker+0x6c5/0x700 drivers/net/wireguard/receive.c:499\n process_one_work kernel/workqueue.c:2633 [inline]\n ...\n\n read to 0xffff888107765888 of 8 bytes by task 3196 on cpu 1:\n decrypt_packet drivers/net/wireguard/receive.c:252 [inline]\n wg_packet_decrypt_worker+0x220/0x700 drivers/net/wireguard/receive.c:501\n process_one_work kernel/workqueue.c:2633 [inline]\n process_scheduled_works+0x5b8/0xa30 kernel/workqueue.c:2706\n worker_thread+0x525/0x730 kernel/workqueue.c:2787\n ...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26861",
"url": "https://www.suse.com/security/cve/CVE-2024-26861"
},
{
"category": "external",
"summary": "SUSE Bug 1223076 for CVE-2024-26861",
"url": "https://bugzilla.suse.com/1223076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26861"
},
{
"cve": "CVE-2024-26866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26866"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: lpspi: Avoid potential use-after-free in probe()\n\nfsl_lpspi_probe() is allocating/disposing memory manually with\nspi_alloc_host()/spi_alloc_target(), but uses\ndevm_spi_register_controller(). In case of error after the latter call the\nmemory will be explicitly freed in the probe function by\nspi_controller_put() call, but used afterwards by \"devm\" management outside\nprobe() (spi_unregister_controller() \u003c- devm_spi_unregister() below).\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000070\n...\nCall trace:\n kernfs_find_ns\n kernfs_find_and_get_ns\n sysfs_remove_group\n sysfs_remove_groups\n device_remove_attrs\n device_del\n spi_unregister_controller\n devm_spi_unregister\n release_nodes\n devres_release_all\n really_probe\n driver_probe_device\n __device_attach_driver\n bus_for_each_drv\n __device_attach\n device_initial_probe\n bus_probe_device\n deferred_probe_work_func\n process_one_work\n worker_thread\n kthread\n ret_from_fork",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26866",
"url": "https://www.suse.com/security/cve/CVE-2024-26866"
},
{
"category": "external",
"summary": "SUSE Bug 1223024 for CVE-2024-26866",
"url": "https://bugzilla.suse.com/1223024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26866"
},
{
"cve": "CVE-2024-26868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26868"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs: fix panic when nfs4_ff_layout_prepare_ds() fails\n\nWe\u0027ve been seeing the following panic in production\n\nBUG: kernel NULL pointer dereference, address: 0000000000000065\nPGD 2f485f067 P4D 2f485f067 PUD 2cc5d8067 PMD 0\nRIP: 0010:ff_layout_cancel_io+0x3a/0x90 [nfs_layout_flexfiles]\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x78/0xc0\n ? page_fault_oops+0x286/0x380\n ? __rpc_execute+0x2c3/0x470 [sunrpc]\n ? rpc_new_task+0x42/0x1c0 [sunrpc]\n ? exc_page_fault+0x5d/0x110\n ? asm_exc_page_fault+0x22/0x30\n ? ff_layout_free_layoutreturn+0x110/0x110 [nfs_layout_flexfiles]\n ? ff_layout_cancel_io+0x3a/0x90 [nfs_layout_flexfiles]\n ? ff_layout_cancel_io+0x6f/0x90 [nfs_layout_flexfiles]\n pnfs_mark_matching_lsegs_return+0x1b0/0x360 [nfsv4]\n pnfs_error_mark_layout_for_return+0x9e/0x110 [nfsv4]\n ? ff_layout_send_layouterror+0x50/0x160 [nfs_layout_flexfiles]\n nfs4_ff_layout_prepare_ds+0x11f/0x290 [nfs_layout_flexfiles]\n ff_layout_pg_init_write+0xf0/0x1f0 [nfs_layout_flexfiles]\n __nfs_pageio_add_request+0x154/0x6c0 [nfs]\n nfs_pageio_add_request+0x26b/0x380 [nfs]\n nfs_do_writepage+0x111/0x1e0 [nfs]\n nfs_writepages_callback+0xf/0x30 [nfs]\n write_cache_pages+0x17f/0x380\n ? nfs_pageio_init_write+0x50/0x50 [nfs]\n ? nfs_writepages+0x6d/0x210 [nfs]\n ? nfs_writepages+0x6d/0x210 [nfs]\n nfs_writepages+0x125/0x210 [nfs]\n do_writepages+0x67/0x220\n ? generic_perform_write+0x14b/0x210\n filemap_fdatawrite_wbc+0x5b/0x80\n file_write_and_wait_range+0x6d/0xc0\n nfs_file_fsync+0x81/0x170 [nfs]\n ? nfs_file_mmap+0x60/0x60 [nfs]\n __x64_sys_fsync+0x53/0x90\n do_syscall_64+0x3d/0x90\n entry_SYSCALL_64_after_hwframe+0x46/0xb0\n\nInspecting the core with drgn I was able to pull this\n\n \u003e\u003e\u003e prog.crashed_thread().stack_trace()[0]\n #0 at 0xffffffffa079657a (ff_layout_cancel_io+0x3a/0x84) in ff_layout_cancel_io at fs/nfs/flexfilelayout/flexfilelayout.c:2021:27\n \u003e\u003e\u003e prog.crashed_thread().stack_trace()[0][\u0027idx\u0027]\n (u32)1\n \u003e\u003e\u003e prog.crashed_thread().stack_trace()[0][\u0027flseg\u0027].mirror_array[1].mirror_ds\n (struct nfs4_ff_layout_ds *)0xffffffffffffffed\n\nThis is clear from the stack trace, we call nfs4_ff_layout_prepare_ds()\nwhich could error out initializing the mirror_ds, and then we go to\nclean it all up and our check is only for if (!mirror-\u003emirror_ds). This\nis inconsistent with the rest of the users of mirror_ds, which have\n\n if (IS_ERR_OR_NULL(mirror_ds))\n\nto keep from tripping over this exact scenario. Fix this up in\nff_layout_cancel_io() to make sure we don\u0027t panic when we get an error.\nI also spot checked all the other instances of checking mirror_ds and we\nappear to be doing the correct checks everywhere, only unconditionally\ndereferencing mirror_ds when we know it would be valid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26868",
"url": "https://www.suse.com/security/cve/CVE-2024-26868"
},
{
"category": "external",
"summary": "SUSE Bug 1223038 for CVE-2024-26868",
"url": "https://bugzilla.suse.com/1223038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26868"
},
{
"cve": "CVE-2024-26870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102\n\nA call to listxattr() with a buffer size = 0 returns the actual\nsize of the buffer needed for a subsequent call. When size \u003e 0,\nnfs4_listxattr() does not return an error because either\ngeneric_listxattr() or nfs4_listxattr_nfs4_label() consumes\nexactly all the bytes then size is 0 when calling\nnfs4_listxattr_nfs4_user() which then triggers the following\nkernel BUG:\n\n [ 99.403778] kernel BUG at mm/usercopy.c:102!\n [ 99.404063] Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n [ 99.408463] CPU: 0 PID: 3310 Comm: python3 Not tainted 6.6.0-61.fc40.aarch64 #1\n [ 99.415827] Call trace:\n [ 99.415985] usercopy_abort+0x70/0xa0\n [ 99.416227] __check_heap_object+0x134/0x158\n [ 99.416505] check_heap_object+0x150/0x188\n [ 99.416696] __check_object_size.part.0+0x78/0x168\n [ 99.416886] __check_object_size+0x28/0x40\n [ 99.417078] listxattr+0x8c/0x120\n [ 99.417252] path_listxattr+0x78/0xe0\n [ 99.417476] __arm64_sys_listxattr+0x28/0x40\n [ 99.417723] invoke_syscall+0x78/0x100\n [ 99.417929] el0_svc_common.constprop.0+0x48/0xf0\n [ 99.418186] do_el0_svc+0x24/0x38\n [ 99.418376] el0_svc+0x3c/0x110\n [ 99.418554] el0t_64_sync_handler+0x120/0x130\n [ 99.418788] el0t_64_sync+0x194/0x198\n [ 99.418994] Code: aa0003e3 d000a3e0 91310000 97f49bdb (d4210000)\n\nIssue is reproduced when generic_listxattr() returns \u0027system.nfs4_acl\u0027,\nthus calling lisxattr() with size = 16 will trigger the bug.\n\nAdd check on nfs4_listxattr() to return ERANGE error when it is\ncalled with size \u003e 0 and the return value is greater than size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26870",
"url": "https://www.suse.com/security/cve/CVE-2024-26870"
},
{
"category": "external",
"summary": "SUSE Bug 1223113 for CVE-2024-26870",
"url": "https://bugzilla.suse.com/1223113"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26870"
},
{
"cve": "CVE-2024-26881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when 1588 is received on HIP08 devices\n\nThe HIP08 devices does not register the ptp devices, so the\nhdev-\u003eptp is NULL, but the hardware can receive 1588 messages,\nand set the HNS3_RXD_TS_VLD_B bit, so, if match this case, the\naccess of hdev-\u003eptp-\u003eflags will cause a kernel crash:\n\n[ 5888.946472] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n[ 5888.946475] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n...\n[ 5889.266118] pc : hclge_ptp_get_rx_hwts+0x40/0x170 [hclge]\n[ 5889.272612] lr : hclge_ptp_get_rx_hwts+0x34/0x170 [hclge]\n[ 5889.279101] sp : ffff800012c3bc50\n[ 5889.283516] x29: ffff800012c3bc50 x28: ffff2040002be040\n[ 5889.289927] x27: ffff800009116484 x26: 0000000080007500\n[ 5889.296333] x25: 0000000000000000 x24: ffff204001c6f000\n[ 5889.302738] x23: ffff204144f53c00 x22: 0000000000000000\n[ 5889.309134] x21: 0000000000000000 x20: ffff204004220080\n[ 5889.315520] x19: ffff204144f53c00 x18: 0000000000000000\n[ 5889.321897] x17: 0000000000000000 x16: 0000000000000000\n[ 5889.328263] x15: 0000004000140ec8 x14: 0000000000000000\n[ 5889.334617] x13: 0000000000000000 x12: 00000000010011df\n[ 5889.340965] x11: bbfeff4d22000000 x10: 0000000000000000\n[ 5889.347303] x9 : ffff800009402124 x8 : 0200f78811dfbb4d\n[ 5889.353637] x7 : 2200000000191b01 x6 : ffff208002a7d480\n[ 5889.359959] x5 : 0000000000000000 x4 : 0000000000000000\n[ 5889.366271] x3 : 0000000000000000 x2 : 0000000000000000\n[ 5889.372567] x1 : 0000000000000000 x0 : ffff20400095c080\n[ 5889.378857] Call trace:\n[ 5889.382285] hclge_ptp_get_rx_hwts+0x40/0x170 [hclge]\n[ 5889.388304] hns3_handle_bdinfo+0x324/0x410 [hns3]\n[ 5889.394055] hns3_handle_rx_bd+0x60/0x150 [hns3]\n[ 5889.399624] hns3_clean_rx_ring+0x84/0x170 [hns3]\n[ 5889.405270] hns3_nic_common_poll+0xa8/0x220 [hns3]\n[ 5889.411084] napi_poll+0xcc/0x264\n[ 5889.415329] net_rx_action+0xd4/0x21c\n[ 5889.419911] __do_softirq+0x130/0x358\n[ 5889.424484] irq_exit+0x134/0x154\n[ 5889.428700] __handle_domain_irq+0x88/0xf0\n[ 5889.433684] gic_handle_irq+0x78/0x2c0\n[ 5889.438319] el1_irq+0xb8/0x140\n[ 5889.442354] arch_cpu_idle+0x18/0x40\n[ 5889.446816] default_idle_call+0x5c/0x1c0\n[ 5889.451714] cpuidle_idle_call+0x174/0x1b0\n[ 5889.456692] do_idle+0xc8/0x160\n[ 5889.460717] cpu_startup_entry+0x30/0xfc\n[ 5889.465523] secondary_start_kernel+0x158/0x1ec\n[ 5889.470936] Code: 97ffab78 f9411c14 91408294 f9457284 (f9400c80)\n[ 5889.477950] SMP: stopping secondary CPUs\n[ 5890.514626] SMP: failed to stop secondary CPUs 0-69,71-95\n[ 5890.522951] Starting crashdump kernel...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26881",
"url": "https://www.suse.com/security/cve/CVE-2024-26881"
},
{
"category": "external",
"summary": "SUSE Bug 1223041 for CVE-2024-26881",
"url": "https://bugzilla.suse.com/1223041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26881"
},
{
"cve": "CVE-2024-26900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26900"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix kmemleak of rdev-\u003eserial\n\nIf kobject_add() is fail in bind_rdev_to_array(), \u0027rdev-\u003eserial\u0027 will be\nalloc not be freed, and kmemleak occurs.\n\nunreferenced object 0xffff88815a350000 (size 49152):\n comm \"mdadm\", pid 789, jiffies 4294716910\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace (crc f773277a):\n [\u003c0000000058b0a453\u003e] kmemleak_alloc+0x61/0xe0\n [\u003c00000000366adf14\u003e] __kmalloc_large_node+0x15e/0x270\n [\u003c000000002e82961b\u003e] __kmalloc_node.cold+0x11/0x7f\n [\u003c00000000f206d60a\u003e] kvmalloc_node+0x74/0x150\n [\u003c0000000034bf3363\u003e] rdev_init_serial+0x67/0x170\n [\u003c0000000010e08fe9\u003e] mddev_create_serial_pool+0x62/0x220\n [\u003c00000000c3837bf0\u003e] bind_rdev_to_array+0x2af/0x630\n [\u003c0000000073c28560\u003e] md_add_new_disk+0x400/0x9f0\n [\u003c00000000770e30ff\u003e] md_ioctl+0x15bf/0x1c10\n [\u003c000000006cfab718\u003e] blkdev_ioctl+0x191/0x3f0\n [\u003c0000000085086a11\u003e] vfs_ioctl+0x22/0x60\n [\u003c0000000018b656fe\u003e] __x64_sys_ioctl+0xba/0xe0\n [\u003c00000000e54e675e\u003e] do_syscall_64+0x71/0x150\n [\u003c000000008b0ad622\u003e] entry_SYSCALL_64_after_hwframe+0x6c/0x74",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26900",
"url": "https://www.suse.com/security/cve/CVE-2024-26900"
},
{
"category": "external",
"summary": "SUSE Bug 1223046 for CVE-2024-26900",
"url": "https://bugzilla.suse.com/1223046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26900"
},
{
"cve": "CVE-2024-26903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security\n\nDuring our fuzz testing of the connection and disconnection process at the\nRFCOMM layer, we discovered this bug. By comparing the packets from a\nnormal connection and disconnection process with the testcase that\ntriggered a KASAN report. We analyzed the cause of this bug as follows:\n\n1. In the packets captured during a normal connection, the host sends a\n`Read Encryption Key Size` type of `HCI_CMD` packet\n(Command Opcode: 0x1408) to the controller to inquire the length of\nencryption key.After receiving this packet, the controller immediately\nreplies with a Command Completepacket (Event Code: 0x0e) to return the\nEncryption Key Size.\n\n2. In our fuzz test case, the timing of the controller\u0027s response to this\npacket was delayed to an unexpected point: after the RFCOMM and L2CAP\nlayers had disconnected but before the HCI layer had disconnected.\n\n3. After receiving the Encryption Key Size Response at the time described\nin point 2, the host still called the rfcomm_check_security function.\nHowever, by this time `struct l2cap_conn *conn = l2cap_pi(sk)-\u003echan-\u003econn;`\nhad already been released, and when the function executed\n`return hci_conn_security(conn-\u003ehcon, d-\u003esec_level, auth_type, d-\u003eout);`,\nspecifically when accessing `conn-\u003ehcon`, a null-ptr-deref error occurred.\n\nTo fix this bug, check if `sk-\u003esk_state` is BT_CLOSED before calling\nrfcomm_recv_frame in rfcomm_process_rx.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26903",
"url": "https://www.suse.com/security/cve/CVE-2024-26903"
},
{
"category": "external",
"summary": "SUSE Bug 1223187 for CVE-2024-26903",
"url": "https://bugzilla.suse.com/1223187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26903"
},
{
"cve": "CVE-2024-26922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: validate the parameters of bo mapping operations more clearly\n\nVerify the parameters of\namdgpu_vm_bo_(map/replace_map/clearing_mappings) in one common place.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26922",
"url": "https://www.suse.com/security/cve/CVE-2024-26922"
},
{
"category": "external",
"summary": "SUSE Bug 1223315 for CVE-2024-26922",
"url": "https://bugzilla.suse.com/1223315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26922"
},
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-26932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tcpm: fix double-free issue in tcpm_port_unregister_pd()\n\nWhen unregister pd capabilitie in tcpm, KASAN will capture below double\n-free issue. The root cause is the same capabilitiy will be kfreed twice,\nthe first time is kfreed by pd_capabilities_release() and the second time\nis explicitly kfreed by tcpm_port_unregister_pd().\n\n[ 3.988059] BUG: KASAN: double-free in tcpm_port_unregister_pd+0x1a4/0x3dc\n[ 3.995001] Free of addr ffff0008164d3000 by task kworker/u16:0/10\n[ 4.001206]\n[ 4.002712] CPU: 2 PID: 10 Comm: kworker/u16:0 Not tainted 6.8.0-rc5-next-20240220-05616-g52728c567a55 #53\n[ 4.012402] Hardware name: Freescale i.MX8QXP MEK (DT)\n[ 4.017569] Workqueue: events_unbound deferred_probe_work_func\n[ 4.023456] Call trace:\n[ 4.025920] dump_backtrace+0x94/0xec\n[ 4.029629] show_stack+0x18/0x24\n[ 4.032974] dump_stack_lvl+0x78/0x90\n[ 4.036675] print_report+0xfc/0x5c0\n[ 4.040289] kasan_report_invalid_free+0xa0/0xc0\n[ 4.044937] __kasan_slab_free+0x124/0x154\n[ 4.049072] kfree+0xb4/0x1e8\n[ 4.052069] tcpm_port_unregister_pd+0x1a4/0x3dc\n[ 4.056725] tcpm_register_port+0x1dd0/0x2558\n[ 4.061121] tcpci_register_port+0x420/0x71c\n[ 4.065430] tcpci_probe+0x118/0x2e0\n\nTo fix the issue, this will remove kree() from tcpm_port_unregister_pd().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26932",
"url": "https://www.suse.com/security/cve/CVE-2024-26932"
},
{
"category": "external",
"summary": "SUSE Bug 1223649 for CVE-2024-26932",
"url": "https://bugzilla.suse.com/1223649"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26932"
},
{
"cve": "CVE-2024-26934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: core: Fix deadlock in usb_deauthorize_interface()\n\nAmong the attribute file callback routines in\ndrivers/usb/core/sysfs.c, the interface_authorized_store() function is\nthe only one which acquires a device lock on an ancestor device: It\ncalls usb_deauthorize_interface(), which locks the interface\u0027s parent\nUSB device.\n\nThe will lead to deadlock if another process already owns that lock\nand tries to remove the interface, whether through a configuration\nchange or because the device has been disconnected. As part of the\nremoval procedure, device_del() waits for all ongoing sysfs attribute\ncallbacks to complete. But usb_deauthorize_interface() can\u0027t complete\nuntil the device lock has been released, and the lock won\u0027t be\nreleased until the removal has finished.\n\nThe mechanism provided by sysfs to prevent this kind of deadlock is\nto use the sysfs_break_active_protection() function, which tells sysfs\nnot to wait for the attribute callback.\n\nReported-and-tested by: Yue Sun \u003csamsun1006219@gmail.com\u003e\nReported by: xingwei lee \u003cxrivendell7@gmail.com\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26934",
"url": "https://www.suse.com/security/cve/CVE-2024-26934"
},
{
"category": "external",
"summary": "SUSE Bug 1223671 for CVE-2024-26934",
"url": "https://bugzilla.suse.com/1223671"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26934"
},
{
"cve": "CVE-2024-26935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: core: Fix unremoved procfs host directory regression\n\nCommit fc663711b944 (\"scsi: core: Remove the /proc/scsi/${proc_name}\ndirectory earlier\") fixed a bug related to modules loading/unloading, by\nadding a call to scsi_proc_hostdir_rm() on scsi_remove_host(). But that led\nto a potential duplicate call to the hostdir_rm() routine, since it\u0027s also\ncalled from scsi_host_dev_release(). That triggered a regression report,\nwhich was then fixed by commit be03df3d4bfe (\"scsi: core: Fix a procfs host\ndirectory removal regression\"). The fix just dropped the hostdir_rm() call\nfrom dev_release().\n\nBut it happens that this proc directory is created on scsi_host_alloc(),\nand that function \"pairs\" with scsi_host_dev_release(), while\nscsi_remove_host() pairs with scsi_add_host(). In other words, it seems the\nreason for removing the proc directory on dev_release() was meant to cover\ncases in which a SCSI host structure was allocated, but the call to\nscsi_add_host() didn\u0027t happen. And that pattern happens to exist in some\nerror paths, for example.\n\nSyzkaller causes that by using USB raw gadget device, error\u0027ing on\nusb-storage driver, at usb_stor_probe2(). By checking that path, we can see\nthat the BadDevice label leads to a scsi_host_put() after a SCSI host\nallocation, but there\u0027s no call to scsi_add_host() in such path. That leads\nto messages like this in dmesg (and a leak of the SCSI host proc\nstructure):\n\nusb-storage 4-1:87.51: USB Mass Storage device detected\nproc_dir_entry \u0027scsi/usb-storage\u0027 already registered\nWARNING: CPU: 1 PID: 3519 at fs/proc/generic.c:377 proc_register+0x347/0x4e0 fs/proc/generic.c:376\n\nThe proper fix seems to still call scsi_proc_hostdir_rm() on dev_release(),\nbut guard that with the state check for SHOST_CREATED; there is even a\ncomment in scsi_host_dev_release() detailing that: such conditional is\nmeant for cases where the SCSI host was allocated but there was no calls to\n{add,remove}_host(), like the usb-storage case.\n\nThis is what we propose here and with that, the error path of usb-storage\ndoes not trigger the warning anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26935",
"url": "https://www.suse.com/security/cve/CVE-2024-26935"
},
{
"category": "external",
"summary": "SUSE Bug 1223675 for CVE-2024-26935",
"url": "https://bugzilla.suse.com/1223675"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26935"
},
{
"cve": "CVE-2024-26937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26937"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gt: Reset queue_priority_hint on parking\n\nOriginally, with strict in order execution, we could complete execution\nonly when the queue was empty. Preempt-to-busy allows replacement of an\nactive request that may complete before the preemption is processed by\nHW. If that happens, the request is retired from the queue, but the\nqueue_priority_hint remains set, preventing direct submission until\nafter the next CS interrupt is processed.\n\nThis preempt-to-busy race can be triggered by the heartbeat, which will\nalso act as the power-management barrier and upon completion allow us to\nidle the HW. We may process the completion of the heartbeat, and begin\nparking the engine before the CS event that restores the\nqueue_priority_hint, causing us to fail the assertion that it is MIN.\n\n\u003c3\u003e[ 166.210729] __engine_park:283 GEM_BUG_ON(engine-\u003esched_engine-\u003equeue_priority_hint != (-((int)(~0U \u003e\u003e 1)) - 1))\n\u003c0\u003e[ 166.210781] Dumping ftrace buffer:\n\u003c0\u003e[ 166.210795] ---------------------------------\n...\n\u003c0\u003e[ 167.302811] drm_fdin-1097 2..s1. 165741070us : trace_ports: 0000:00:02.0 rcs0: promote { ccid:20 1217:2 prio 0 }\n\u003c0\u003e[ 167.302861] drm_fdin-1097 2d.s2. 165741072us : execlists_submission_tasklet: 0000:00:02.0 rcs0: preempting last=1217:2, prio=0, hint=2147483646\n\u003c0\u003e[ 167.302928] drm_fdin-1097 2d.s2. 165741072us : __i915_request_unsubmit: 0000:00:02.0 rcs0: fence 1217:2, current 0\n\u003c0\u003e[ 167.302992] drm_fdin-1097 2d.s2. 165741073us : __i915_request_submit: 0000:00:02.0 rcs0: fence 3:4660, current 4659\n\u003c0\u003e[ 167.303044] drm_fdin-1097 2d.s1. 165741076us : execlists_submission_tasklet: 0000:00:02.0 rcs0: context:3 schedule-in, ccid:40\n\u003c0\u003e[ 167.303095] drm_fdin-1097 2d.s1. 165741077us : trace_ports: 0000:00:02.0 rcs0: submit { ccid:40 3:4660* prio 2147483646 }\n\u003c0\u003e[ 167.303159] kworker/-89 11..... 165741139us : i915_request_retire.part.0: 0000:00:02.0 rcs0: fence c90:2, current 2\n\u003c0\u003e[ 167.303208] kworker/-89 11..... 165741148us : __intel_context_do_unpin: 0000:00:02.0 rcs0: context:c90 unpin\n\u003c0\u003e[ 167.303272] kworker/-89 11..... 165741159us : i915_request_retire.part.0: 0000:00:02.0 rcs0: fence 1217:2, current 2\n\u003c0\u003e[ 167.303321] kworker/-89 11..... 165741166us : __intel_context_do_unpin: 0000:00:02.0 rcs0: context:1217 unpin\n\u003c0\u003e[ 167.303384] kworker/-89 11..... 165741170us : i915_request_retire.part.0: 0000:00:02.0 rcs0: fence 3:4660, current 4660\n\u003c0\u003e[ 167.303434] kworker/-89 11d..1. 165741172us : __intel_context_retire: 0000:00:02.0 rcs0: context:1216 retire runtime: { total:56028ns, avg:56028ns }\n\u003c0\u003e[ 167.303484] kworker/-89 11..... 165741198us : __engine_park: 0000:00:02.0 rcs0: parked\n\u003c0\u003e[ 167.303534] \u003cidle\u003e-0 5d.H3. 165741207us : execlists_irq_handler: 0000:00:02.0 rcs0: semaphore yield: 00000040\n\u003c0\u003e[ 167.303583] kworker/-89 11..... 165741397us : __intel_context_retire: 0000:00:02.0 rcs0: context:1217 retire runtime: { total:325575ns, avg:0ns }\n\u003c0\u003e[ 167.303756] kworker/-89 11..... 165741777us : __intel_context_retire: 0000:00:02.0 rcs0: context:c90 retire runtime: { total:0ns, avg:0ns }\n\u003c0\u003e[ 167.303806] kworker/-89 11..... 165742017us : __engine_park: __engine_park:283 GEM_BUG_ON(engine-\u003esched_engine-\u003equeue_priority_hint != (-((int)(~0U \u003e\u003e 1)) - 1))\n\u003c0\u003e[ 167.303811] ---------------------------------\n\u003c4\u003e[ 167.304722] ------------[ cut here ]------------\n\u003c2\u003e[ 167.304725] kernel BUG at drivers/gpu/drm/i915/gt/intel_engine_pm.c:283!\n\u003c4\u003e[ 167.304731] invalid opcode: 0000 [#1] PREEMPT SMP NOPTI\n\u003c4\u003e[ 167.304734] CPU: 11 PID: 89 Comm: kworker/11:1 Tainted: G W 6.8.0-rc2-CI_DRM_14193-gc655e0fd2804+ #1\n\u003c4\u003e[ 167.304736] Hardware name: Intel Corporation Rocket Lake Client Platform/RocketLake S UDIMM 6L RVP, BIOS RKLSFWI1.R00.3173.A03.2204210138 04/21/2022\n\u003c4\u003e[ 167.304738] Workqueue: i915-unordered retire_work_handler [i915]\n\u003c4\u003e[ 16\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26937",
"url": "https://www.suse.com/security/cve/CVE-2024-26937"
},
{
"category": "external",
"summary": "SUSE Bug 1223677 for CVE-2024-26937",
"url": "https://bugzilla.suse.com/1223677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26937"
},
{
"cve": "CVE-2024-26938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/bios: Tolerate devdata==NULL in intel_bios_encoder_supports_dp_dual_mode()\n\nIf we have no VBT, or the VBT didn\u0027t declare the encoder\nin question, we won\u0027t have the \u0027devdata\u0027 for the encoder.\nInstead of oopsing just bail early.\n\nWe won\u0027t be able to tell whether the port is DP++ or not,\nbut so be it.\n\n(cherry picked from commit 26410896206342c8a80d2b027923e9ee7d33b733)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26938",
"url": "https://www.suse.com/security/cve/CVE-2024-26938"
},
{
"category": "external",
"summary": "SUSE Bug 1223678 for CVE-2024-26938",
"url": "https://bugzilla.suse.com/1223678"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26938"
},
{
"cve": "CVE-2024-26940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed\n\nThe driver creates /sys/kernel/debug/dri/0/mob_ttm even when the\ncorresponding ttm_resource_manager is not allocated.\nThis leads to a crash when trying to read from this file.\n\nAdd a check to create mob_ttm, system_mob_ttm, and gmr_ttm debug file\nonly when the corresponding ttm_resource_manager is allocated.\n\ncrash\u003e bt\nPID: 3133409 TASK: ffff8fe4834a5000 CPU: 3 COMMAND: \"grep\"\n #0 [ffffb954506b3b20] machine_kexec at ffffffffb2a6bec3\n #1 [ffffb954506b3b78] __crash_kexec at ffffffffb2bb598a\n #2 [ffffb954506b3c38] crash_kexec at ffffffffb2bb68c1\n #3 [ffffb954506b3c50] oops_end at ffffffffb2a2a9b1\n #4 [ffffb954506b3c70] no_context at ffffffffb2a7e913\n #5 [ffffb954506b3cc8] __bad_area_nosemaphore at ffffffffb2a7ec8c\n #6 [ffffb954506b3d10] do_page_fault at ffffffffb2a7f887\n #7 [ffffb954506b3d40] page_fault at ffffffffb360116e\n [exception RIP: ttm_resource_manager_debug+0x11]\n RIP: ffffffffc04afd11 RSP: ffffb954506b3df0 RFLAGS: 00010246\n RAX: ffff8fe41a6d1200 RBX: 0000000000000000 RCX: 0000000000000940\n RDX: 0000000000000000 RSI: ffffffffc04b4338 RDI: 0000000000000000\n RBP: ffffb954506b3e08 R8: ffff8fee3ffad000 R9: 0000000000000000\n R10: ffff8fe41a76a000 R11: 0000000000000001 R12: 00000000ffffffff\n R13: 0000000000000001 R14: ffff8fe5bb6f3900 R15: ffff8fe41a6d1200\n ORIG_RAX: ffffffffffffffff CS: 0010 SS: 0018\n #8 [ffffb954506b3e00] ttm_resource_manager_show at ffffffffc04afde7 [ttm]\n #9 [ffffb954506b3e30] seq_read at ffffffffb2d8f9f3\n RIP: 00007f4c4eda8985 RSP: 00007ffdbba9e9f8 RFLAGS: 00000246\n RAX: ffffffffffffffda RBX: 000000000037e000 RCX: 00007f4c4eda8985\n RDX: 000000000037e000 RSI: 00007f4c41573000 RDI: 0000000000000003\n RBP: 000000000037e000 R8: 0000000000000000 R9: 000000000037fe30\n R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4c41573000\n R13: 0000000000000003 R14: 00007f4c41572010 R15: 0000000000000003\n ORIG_RAX: 0000000000000000 CS: 0033 SS: 002b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26940",
"url": "https://www.suse.com/security/cve/CVE-2024-26940"
},
{
"category": "external",
"summary": "SUSE Bug 1223718 for CVE-2024-26940",
"url": "https://bugzilla.suse.com/1223718"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26940"
},
{
"cve": "CVE-2024-26943",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26943"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/dmem: handle kcalloc() allocation failure\n\nThe kcalloc() in nouveau_dmem_evict_chunk() will return null if\nthe physical memory has run out. As a result, if we dereference\nsrc_pfns, dst_pfns or dma_addrs, the null pointer dereference bugs\nwill happen.\n\nMoreover, the GPU is going away. If the kcalloc() fails, we could not\nevict all pages mapping a chunk. So this patch adds a __GFP_NOFAIL\nflag in kcalloc().\n\nFinally, as there is no need to have physically contiguous memory,\nthis patch switches kcalloc() to kvcalloc() in order to avoid\nfailing allocations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26943",
"url": "https://www.suse.com/security/cve/CVE-2024-26943"
},
{
"category": "external",
"summary": "SUSE Bug 1230527 for CVE-2024-26943",
"url": "https://bugzilla.suse.com/1230527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26943"
},
{
"cve": "CVE-2024-26949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26949"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu/pm: Fix NULL pointer dereference when get power limit\n\nBecause powerplay_table initialization is skipped under\nsriov case, We check and set default lower and upper OD\nvalue if powerplay_table is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26949",
"url": "https://www.suse.com/security/cve/CVE-2024-26949"
},
{
"category": "external",
"summary": "SUSE Bug 1223665 for CVE-2024-26949",
"url": "https://bugzilla.suse.com/1223665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26949"
},
{
"cve": "CVE-2024-26950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: netlink: access device through ctx instead of peer\n\nThe previous commit fixed a bug that led to a NULL peer-\u003edevice being\ndereferenced. It\u0027s actually easier and faster performance-wise to\ninstead get the device from ctx-\u003ewg. This semantically makes more sense\ntoo, since ctx-\u003ewg-\u003epeer_allowedips.seq is compared with\nctx-\u003eallowedips_seq, basing them both in ctx. This also acts as a\ndefence in depth provision against freed peers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26950",
"url": "https://www.suse.com/security/cve/CVE-2024-26950"
},
{
"category": "external",
"summary": "SUSE Bug 1223661 for CVE-2024-26950",
"url": "https://bugzilla.suse.com/1223661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26950"
},
{
"cve": "CVE-2024-26951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: netlink: check for dangling peer via is_dead instead of empty list\n\nIf all peers are removed via wg_peer_remove_all(), rather than setting\npeer_list to empty, the peer is added to a temporary list with a head on\nthe stack of wg_peer_remove_all(). If a netlink dump is resumed and the\ncursored peer is one that has been removed via wg_peer_remove_all(), it\nwill iterate from that peer and then attempt to dump freed peers.\n\nFix this by instead checking peer-\u003eis_dead, which was explictly created\nfor this purpose. Also move up the device_update_lock lockdep assertion,\nsince reading is_dead relies on that.\n\nIt can be reproduced by a small script like:\n\n echo \"Setting config...\"\n ip link add dev wg0 type wireguard\n wg setconf wg0 /big-config\n (\n while true; do\n echo \"Showing config...\"\n wg showconf wg0 \u003e /dev/null\n done\n ) \u0026\n sleep 4\n wg setconf wg0 \u003c(printf \"[Peer]\\nPublicKey=$(wg genkey)\\n\")\n\nResulting in:\n\n BUG: KASAN: slab-use-after-free in __lock_acquire+0x182a/0x1b20\n Read of size 8 at addr ffff88811956ec70 by task wg/59\n CPU: 2 PID: 59 Comm: wg Not tainted 6.8.0-rc2-debug+ #5\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n print_address_description.constprop.0+0x2c/0x380\n print_report+0xab/0x250\n kasan_report+0xba/0xf0\n __lock_acquire+0x182a/0x1b20\n lock_acquire+0x191/0x4b0\n down_read+0x80/0x440\n get_peer+0x140/0xcb0\n wg_get_device_dump+0x471/0x1130",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26951",
"url": "https://www.suse.com/security/cve/CVE-2024-26951"
},
{
"category": "external",
"summary": "SUSE Bug 1223660 for CVE-2024-26951",
"url": "https://bugzilla.suse.com/1223660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26951"
},
{
"cve": "CVE-2024-26957",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26957"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/zcrypt: fix reference counting on zcrypt card objects\n\nTests with hot-plugging crytpo cards on KVM guests with debug\nkernel build revealed an use after free for the load field of\nthe struct zcrypt_card. The reason was an incorrect reference\nhandling of the zcrypt card object which could lead to a free\nof the zcrypt card object while it was still in use.\n\nThis is an example of the slab message:\n\n kernel: 0x00000000885a7512-0x00000000885a7513 @offset=1298. First byte 0x68 instead of 0x6b\n kernel: Allocated in zcrypt_card_alloc+0x36/0x70 [zcrypt] age=18046 cpu=3 pid=43\n kernel: kmalloc_trace+0x3f2/0x470\n kernel: zcrypt_card_alloc+0x36/0x70 [zcrypt]\n kernel: zcrypt_cex4_card_probe+0x26/0x380 [zcrypt_cex4]\n kernel: ap_device_probe+0x15c/0x290\n kernel: really_probe+0xd2/0x468\n kernel: driver_probe_device+0x40/0xf0\n kernel: __device_attach_driver+0xc0/0x140\n kernel: bus_for_each_drv+0x8c/0xd0\n kernel: __device_attach+0x114/0x198\n kernel: bus_probe_device+0xb4/0xc8\n kernel: device_add+0x4d2/0x6e0\n kernel: ap_scan_adapter+0x3d0/0x7c0\n kernel: ap_scan_bus+0x5a/0x3b0\n kernel: ap_scan_bus_wq_callback+0x40/0x60\n kernel: process_one_work+0x26e/0x620\n kernel: worker_thread+0x21c/0x440\n kernel: Freed in zcrypt_card_put+0x54/0x80 [zcrypt] age=9024 cpu=3 pid=43\n kernel: kfree+0x37e/0x418\n kernel: zcrypt_card_put+0x54/0x80 [zcrypt]\n kernel: ap_device_remove+0x4c/0xe0\n kernel: device_release_driver_internal+0x1c4/0x270\n kernel: bus_remove_device+0x100/0x188\n kernel: device_del+0x164/0x3c0\n kernel: device_unregister+0x30/0x90\n kernel: ap_scan_adapter+0xc8/0x7c0\n kernel: ap_scan_bus+0x5a/0x3b0\n kernel: ap_scan_bus_wq_callback+0x40/0x60\n kernel: process_one_work+0x26e/0x620\n kernel: worker_thread+0x21c/0x440\n kernel: kthread+0x150/0x168\n kernel: __ret_from_fork+0x3c/0x58\n kernel: ret_from_fork+0xa/0x30\n kernel: Slab 0x00000372022169c0 objects=20 used=18 fp=0x00000000885a7c88 flags=0x3ffff00000000a00(workingset|slab|node=0|zone=1|lastcpupid=0x1ffff)\n kernel: Object 0x00000000885a74b8 @offset=1208 fp=0x00000000885a7c88\n kernel: Redzone 00000000885a74b0: bb bb bb bb bb bb bb bb ........\n kernel: Object 00000000885a74b8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a74c8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a74d8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a74e8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a74f8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a7508: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 68 4b 6b 6b 6b a5 kkkkkkkkkkhKkkk.\n kernel: Redzone 00000000885a7518: bb bb bb bb bb bb bb bb ........\n kernel: Padding 00000000885a756c: 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a ZZZZZZZZZZZZ\n kernel: CPU: 0 PID: 387 Comm: systemd-udevd Not tainted 6.8.0-HF #2\n kernel: Hardware name: IBM 3931 A01 704 (KVM/Linux)\n kernel: Call Trace:\n kernel: [\u003c00000000ca5ab5b8\u003e] dump_stack_lvl+0x90/0x120\n kernel: [\u003c00000000c99d78bc\u003e] check_bytes_and_report+0x114/0x140\n kernel: [\u003c00000000c99d53cc\u003e] check_object+0x334/0x3f8\n kernel: [\u003c00000000c99d820c\u003e] alloc_debug_processing+0xc4/0x1f8\n kernel: [\u003c00000000c99d852e\u003e] get_partial_node.part.0+0x1ee/0x3e0\n kernel: [\u003c00000000c99d94ec\u003e] ___slab_alloc+0xaf4/0x13c8\n kernel: [\u003c00000000c99d9e38\u003e] __slab_alloc.constprop.0+0x78/0xb8\n kernel: [\u003c00000000c99dc8dc\u003e] __kmalloc+0x434/0x590\n kernel: [\u003c00000000c9b4c0ce\u003e] ext4_htree_store_dirent+0x4e/0x1c0\n kernel: [\u003c00000000c9b908a2\u003e] htree_dirblock_to_tree+0x17a/0x3f0\n kernel: \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26957",
"url": "https://www.suse.com/security/cve/CVE-2024-26957"
},
{
"category": "external",
"summary": "SUSE Bug 1223666 for CVE-2024-26957",
"url": "https://bugzilla.suse.com/1223666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26957"
},
{
"cve": "CVE-2024-26961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmac802154: fix llsec key resources release in mac802154_llsec_key_del\n\nmac802154_llsec_key_del() can free resources of a key directly without\nfollowing the RCU rules for waiting before the end of a grace period. This\nmay lead to use-after-free in case llsec_lookup_key() is traversing the\nlist of keys in parallel with a key deletion:\n\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 4 PID: 16000 at lib/refcount.c:25 refcount_warn_saturate+0x162/0x2a0\nModules linked in:\nCPU: 4 PID: 16000 Comm: wpan-ping Not tainted 6.7.0 #19\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x162/0x2a0\nCall Trace:\n \u003cTASK\u003e\n llsec_lookup_key.isra.0+0x890/0x9e0\n mac802154_llsec_encrypt+0x30c/0x9c0\n ieee802154_subif_start_xmit+0x24/0x1e0\n dev_hard_start_xmit+0x13e/0x690\n sch_direct_xmit+0x2ae/0xbc0\n __dev_queue_xmit+0x11dd/0x3c20\n dgram_sendmsg+0x90b/0xd60\n __sys_sendto+0x466/0x4c0\n __x64_sys_sendto+0xe0/0x1c0\n do_syscall_64+0x45/0xf0\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nAlso, ieee802154_llsec_key_entry structures are not freed by\nmac802154_llsec_key_del():\n\nunreferenced object 0xffff8880613b6980 (size 64):\n comm \"iwpan\", pid 2176, jiffies 4294761134 (age 60.475s)\n hex dump (first 32 bytes):\n 78 0d 8f 18 80 88 ff ff 22 01 00 00 00 00 ad de x.......\".......\n 00 00 00 00 00 00 00 00 03 00 cd ab 00 00 00 00 ................\n backtrace:\n [\u003cffffffff81dcfa62\u003e] __kmem_cache_alloc_node+0x1e2/0x2d0\n [\u003cffffffff81c43865\u003e] kmalloc_trace+0x25/0xc0\n [\u003cffffffff88968b09\u003e] mac802154_llsec_key_add+0xac9/0xcf0\n [\u003cffffffff8896e41a\u003e] ieee802154_add_llsec_key+0x5a/0x80\n [\u003cffffffff8892adc6\u003e] nl802154_add_llsec_key+0x426/0x5b0\n [\u003cffffffff86ff293e\u003e] genl_family_rcv_msg_doit+0x1fe/0x2f0\n [\u003cffffffff86ff46d1\u003e] genl_rcv_msg+0x531/0x7d0\n [\u003cffffffff86fee7a9\u003e] netlink_rcv_skb+0x169/0x440\n [\u003cffffffff86ff1d88\u003e] genl_rcv+0x28/0x40\n [\u003cffffffff86fec15c\u003e] netlink_unicast+0x53c/0x820\n [\u003cffffffff86fecd8b\u003e] netlink_sendmsg+0x93b/0xe60\n [\u003cffffffff86b91b35\u003e] ____sys_sendmsg+0xac5/0xca0\n [\u003cffffffff86b9c3dd\u003e] ___sys_sendmsg+0x11d/0x1c0\n [\u003cffffffff86b9c65a\u003e] __sys_sendmsg+0xfa/0x1d0\n [\u003cffffffff88eadbf5\u003e] do_syscall_64+0x45/0xf0\n [\u003cffffffff890000ea\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nHandle the proper resource release in the RCU callback function\nmac802154_llsec_key_del_rcu().\n\nNote that if llsec_lookup_key() finds a key, it gets a refcount via\nllsec_key_get() and locally copies key id from key_entry (which is a\nlist element). So it\u0027s safe to call llsec_key_put() and free the list\nentry after the RCU grace period elapses.\n\nFound by Linux Verification Center (linuxtesting.org).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26961",
"url": "https://www.suse.com/security/cve/CVE-2024-26961"
},
{
"category": "external",
"summary": "SUSE Bug 1223652 for CVE-2024-26961",
"url": "https://bugzilla.suse.com/1223652"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26961"
},
{
"cve": "CVE-2024-26962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm-raid456, md/raid456: fix a deadlock for dm-raid456 while io concurrent with reshape\n\nFor raid456, if reshape is still in progress, then IO across reshape\nposition will wait for reshape to make progress. However, for dm-raid,\nin following cases reshape will never make progress hence IO will hang:\n\n1) the array is read-only;\n2) MD_RECOVERY_WAIT is set;\n3) MD_RECOVERY_FROZEN is set;\n\nAfter commit c467e97f079f (\"md/raid6: use valid sector values to determine\nif an I/O should wait on the reshape\") fix the problem that IO across\nreshape position doesn\u0027t wait for reshape, the dm-raid test\nshell/lvconvert-raid-reshape.sh start to hang:\n\n[root@fedora ~]# cat /proc/979/stack\n[\u003c0\u003e] wait_woken+0x7d/0x90\n[\u003c0\u003e] raid5_make_request+0x929/0x1d70 [raid456]\n[\u003c0\u003e] md_handle_request+0xc2/0x3b0 [md_mod]\n[\u003c0\u003e] raid_map+0x2c/0x50 [dm_raid]\n[\u003c0\u003e] __map_bio+0x251/0x380 [dm_mod]\n[\u003c0\u003e] dm_submit_bio+0x1f0/0x760 [dm_mod]\n[\u003c0\u003e] __submit_bio+0xc2/0x1c0\n[\u003c0\u003e] submit_bio_noacct_nocheck+0x17f/0x450\n[\u003c0\u003e] submit_bio_noacct+0x2bc/0x780\n[\u003c0\u003e] submit_bio+0x70/0xc0\n[\u003c0\u003e] mpage_readahead+0x169/0x1f0\n[\u003c0\u003e] blkdev_readahead+0x18/0x30\n[\u003c0\u003e] read_pages+0x7c/0x3b0\n[\u003c0\u003e] page_cache_ra_unbounded+0x1ab/0x280\n[\u003c0\u003e] force_page_cache_ra+0x9e/0x130\n[\u003c0\u003e] page_cache_sync_ra+0x3b/0x110\n[\u003c0\u003e] filemap_get_pages+0x143/0xa30\n[\u003c0\u003e] filemap_read+0xdc/0x4b0\n[\u003c0\u003e] blkdev_read_iter+0x75/0x200\n[\u003c0\u003e] vfs_read+0x272/0x460\n[\u003c0\u003e] ksys_read+0x7a/0x170\n[\u003c0\u003e] __x64_sys_read+0x1c/0x30\n[\u003c0\u003e] do_syscall_64+0xc6/0x230\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x6c/0x74\n\nThis is because reshape can\u0027t make progress.\n\nFor md/raid, the problem doesn\u0027t exist because register new sync_thread\ndoesn\u0027t rely on the IO to be done any more:\n\n1) If array is read-only, it can switch to read-write by ioctl/sysfs;\n2) md/raid never set MD_RECOVERY_WAIT;\n3) If MD_RECOVERY_FROZEN is set, mddev_suspend() doesn\u0027t hold\n \u0027reconfig_mutex\u0027, hence it can be cleared and reshape can continue by\n sysfs api \u0027sync_action\u0027.\n\nHowever, I\u0027m not sure yet how to avoid the problem in dm-raid yet. This\npatch on the one hand make sure raid_message() can\u0027t change\nsync_thread() through raid_message() after presuspend(), on the other\nhand detect the above 3 cases before wait for IO do be done in\ndm_suspend(), and let dm-raid requeue those IO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26962",
"url": "https://www.suse.com/security/cve/CVE-2024-26962"
},
{
"category": "external",
"summary": "SUSE Bug 1223654 for CVE-2024-26962",
"url": "https://bugzilla.suse.com/1223654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26962"
},
{
"cve": "CVE-2024-26963",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26963"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3-am62: fix module unload/reload behavior\n\nAs runtime PM is enabled, the module can be runtime\nsuspended when .remove() is called.\n\nDo a pm_runtime_get_sync() to make sure module is active\nbefore doing any register operations.\n\nDoing a pm_runtime_put_sync() should disable the refclk\nso no need to disable it again.\n\nFixes the below warning at module removel.\n\n[ 39.705310] ------------[ cut here ]------------\n[ 39.710004] clk:162:3 already disabled\n[ 39.713941] WARNING: CPU: 0 PID: 921 at drivers/clk/clk.c:1090 clk_core_disable+0xb0/0xb8\n\nWe called of_platform_populate() in .probe() so call the\ncleanup function of_platform_depopulate() in .remove().\nGet rid of the now unnnecessary dwc3_ti_remove_core().\nWithout this, module re-load doesn\u0027t work properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26963",
"url": "https://www.suse.com/security/cve/CVE-2024-26963"
},
{
"category": "external",
"summary": "SUSE Bug 1223651 for CVE-2024-26963",
"url": "https://bugzilla.suse.com/1223651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26963"
},
{
"cve": "CVE-2024-26964",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26964"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: xhci: Add error handling in xhci_map_urb_for_dma\n\nCurrently xhci_map_urb_for_dma() creates a temporary buffer and copies\nthe SG list to the new linear buffer. But if the kzalloc_node() fails,\nthen the following sg_pcopy_to_buffer() can lead to crash since it\ntries to memcpy to NULL pointer.\n\nSo return -ENOMEM if kzalloc returns null pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26964",
"url": "https://www.suse.com/security/cve/CVE-2024-26964"
},
{
"category": "external",
"summary": "SUSE Bug 1223650 for CVE-2024-26964",
"url": "https://bugzilla.suse.com/1223650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26964"
},
{
"cve": "CVE-2024-26973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfat: fix uninitialized field in nostale filehandles\n\nWhen fat_encode_fh_nostale() encodes file handle without a parent it\nstores only first 10 bytes of the file handle. However the length of the\nfile handle must be a multiple of 4 so the file handle is actually 12\nbytes long and the last two bytes remain uninitialized. This is not\ngreat at we potentially leak uninitialized information with the handle\nto userspace. Properly initialize the full handle length.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26973",
"url": "https://www.suse.com/security/cve/CVE-2024-26973"
},
{
"category": "external",
"summary": "SUSE Bug 1223641 for CVE-2024-26973",
"url": "https://bugzilla.suse.com/1223641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26973"
},
{
"cve": "CVE-2024-26983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbootconfig: use memblock_free_late to free xbc memory to buddy\n\nOn the time to free xbc memory in xbc_exit(), memblock may has handed\nover memory to buddy allocator. So it doesn\u0027t make sense to free memory\nback to memblock. memblock_free() called by xbc_exit() even causes UAF bugs\non architectures with CONFIG_ARCH_KEEP_MEMBLOCK disabled like x86.\nFollowing KASAN logs shows this case.\n\nThis patch fixes the xbc memory free problem by calling memblock_free()\nin early xbc init error rewind path and calling memblock_free_late() in\nxbc exit path to free memory to buddy allocator.\n\n[ 9.410890] ==================================================================\n[ 9.418962] BUG: KASAN: use-after-free in memblock_isolate_range+0x12d/0x260\n[ 9.426850] Read of size 8 at addr ffff88845dd30000 by task swapper/0/1\n\n[ 9.435901] CPU: 9 PID: 1 Comm: swapper/0 Tainted: G U 6.9.0-rc3-00208-g586b5dfb51b9 #5\n[ 9.446403] Hardware name: Intel Corporation RPLP LP5 (CPU:RaptorLake)/RPLP LP5 (ID:13), BIOS IRPPN02.01.01.00.00.19.015.D-00000000 Dec 28 2023\n[ 9.460789] Call Trace:\n[ 9.463518] \u003cTASK\u003e\n[ 9.465859] dump_stack_lvl+0x53/0x70\n[ 9.469949] print_report+0xce/0x610\n[ 9.473944] ? __virt_addr_valid+0xf5/0x1b0\n[ 9.478619] ? memblock_isolate_range+0x12d/0x260\n[ 9.483877] kasan_report+0xc6/0x100\n[ 9.487870] ? memblock_isolate_range+0x12d/0x260\n[ 9.493125] memblock_isolate_range+0x12d/0x260\n[ 9.498187] memblock_phys_free+0xb4/0x160\n[ 9.502762] ? __pfx_memblock_phys_free+0x10/0x10\n[ 9.508021] ? mutex_unlock+0x7e/0xd0\n[ 9.512111] ? __pfx_mutex_unlock+0x10/0x10\n[ 9.516786] ? kernel_init_freeable+0x2d4/0x430\n[ 9.521850] ? __pfx_kernel_init+0x10/0x10\n[ 9.526426] xbc_exit+0x17/0x70\n[ 9.529935] kernel_init+0x38/0x1e0\n[ 9.533829] ? _raw_spin_unlock_irq+0xd/0x30\n[ 9.538601] ret_from_fork+0x2c/0x50\n[ 9.542596] ? __pfx_kernel_init+0x10/0x10\n[ 9.547170] ret_from_fork_asm+0x1a/0x30\n[ 9.551552] \u003c/TASK\u003e\n\n[ 9.555649] The buggy address belongs to the physical page:\n[ 9.561875] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x45dd30\n[ 9.570821] flags: 0x200000000000000(node=0|zone=2)\n[ 9.576271] page_type: 0xffffffff()\n[ 9.580167] raw: 0200000000000000 ffffea0011774c48 ffffea0012ba1848 0000000000000000\n[ 9.588823] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000\n[ 9.597476] page dumped because: kasan: bad access detected\n\n[ 9.605362] Memory state around the buggy address:\n[ 9.610714] ffff88845dd2ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 9.618786] ffff88845dd2ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 9.626857] \u003effff88845dd30000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 9.634930] ^\n[ 9.638534] ffff88845dd30080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 9.646605] ffff88845dd30100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 9.654675] ==================================================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26983",
"url": "https://www.suse.com/security/cve/CVE-2024-26983"
},
{
"category": "external",
"summary": "SUSE Bug 1223637 for CVE-2024-26983",
"url": "https://bugzilla.suse.com/1223637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26983"
},
{
"cve": "CVE-2024-26984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau: fix instmem race condition around ptr stores\n\nRunning a lot of VK CTS in parallel against nouveau, once every\nfew hours you might see something like this crash.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\nPGD 8000000114e6e067 P4D 8000000114e6e067 PUD 109046067 PMD 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 7 PID: 53891 Comm: deqp-vk Not tainted 6.8.0-rc6+ #27\nHardware name: Gigabyte Technology Co., Ltd. Z390 I AORUS PRO WIFI/Z390 I AORUS PRO WIFI-CF, BIOS F8 11/05/2021\nRIP: 0010:gp100_vmm_pgt_mem+0xe3/0x180 [nouveau]\nCode: c7 48 01 c8 49 89 45 58 85 d2 0f 84 95 00 00 00 41 0f b7 46 12 49 8b 7e 08 89 da 42 8d 2c f8 48 8b 47 08 41 83 c7 01 48 89 ee \u003c48\u003e 8b 40 08 ff d0 0f 1f 00 49 8b 7e 08 48 89 d9 48 8d 75 04 48 c1\nRSP: 0000:ffffac20c5857838 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: 00000000004d8001 RCX: 0000000000000001\nRDX: 00000000004d8001 RSI: 00000000000006d8 RDI: ffffa07afe332180\nRBP: 00000000000006d8 R08: ffffac20c5857ad0 R09: 0000000000ffff10\nR10: 0000000000000001 R11: ffffa07af27e2de0 R12: 000000000000001c\nR13: ffffac20c5857ad0 R14: ffffa07a96fe9040 R15: 000000000000001c\nFS: 00007fe395eed7c0(0000) GS:ffffa07e2c980000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000008 CR3: 000000011febe001 CR4: 00000000003706f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\n...\n\n ? gp100_vmm_pgt_mem+0xe3/0x180 [nouveau]\n ? gp100_vmm_pgt_mem+0x37/0x180 [nouveau]\n nvkm_vmm_iter+0x351/0xa20 [nouveau]\n ? __pfx_nvkm_vmm_ref_ptes+0x10/0x10 [nouveau]\n ? __pfx_gp100_vmm_pgt_mem+0x10/0x10 [nouveau]\n ? __pfx_gp100_vmm_pgt_mem+0x10/0x10 [nouveau]\n ? __lock_acquire+0x3ed/0x2170\n ? __pfx_gp100_vmm_pgt_mem+0x10/0x10 [nouveau]\n nvkm_vmm_ptes_get_map+0xc2/0x100 [nouveau]\n ? __pfx_nvkm_vmm_ref_ptes+0x10/0x10 [nouveau]\n ? __pfx_gp100_vmm_pgt_mem+0x10/0x10 [nouveau]\n nvkm_vmm_map_locked+0x224/0x3a0 [nouveau]\n\nAdding any sort of useful debug usually makes it go away, so I hand\nwrote the function in a line, and debugged the asm.\n\nEvery so often pt-\u003ememory-\u003eptrs is NULL. This ptrs ptr is set in\nthe nv50_instobj_acquire called from nvkm_kmap.\n\nIf Thread A and Thread B both get to nv50_instobj_acquire around\nthe same time, and Thread A hits the refcount_set line, and in\nlockstep thread B succeeds at refcount_inc_not_zero, there is a\nchance the ptrs value won\u0027t have been stored since refcount_set\nis unordered. Force a memory barrier here, I picked smp_mb, since\nwe want it on all CPUs and it\u0027s write followed by a read.\n\nv2: use paired smp_rmb/smp_wmb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26984",
"url": "https://www.suse.com/security/cve/CVE-2024-26984"
},
{
"category": "external",
"summary": "SUSE Bug 1223633 for CVE-2024-26984",
"url": "https://bugzilla.suse.com/1223633"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26984"
},
{
"cve": "CVE-2024-26986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Fix memory leak in create_process failure\n\nFix memory leak due to a leaked mmget reference on an error handling\ncode path that is triggered when attempting to create KFD processes\nwhile a GPU reset is in progress.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26986",
"url": "https://www.suse.com/security/cve/CVE-2024-26986"
},
{
"category": "external",
"summary": "SUSE Bug 1223728 for CVE-2024-26986",
"url": "https://bugzilla.suse.com/1223728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26986"
},
{
"cve": "CVE-2024-26988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninit/main.c: Fix potential static_command_line memory overflow\n\nWe allocate memory of size \u0027xlen + strlen(boot_command_line) + 1\u0027 for\nstatic_command_line, but the strings copied into static_command_line are\nextra_command_line and command_line, rather than extra_command_line and\nboot_command_line.\n\nWhen strlen(command_line) \u003e strlen(boot_command_line), static_command_line\nwill overflow.\n\nThis patch just recovers strlen(command_line) which was miss-consolidated\nwith strlen(boot_command_line) in the commit f5c7310ac73e (\"init/main: add\nchecks for the return value of memblock_alloc*()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26988",
"url": "https://www.suse.com/security/cve/CVE-2024-26988"
},
{
"category": "external",
"summary": "SUSE Bug 1223747 for CVE-2024-26988",
"url": "https://bugzilla.suse.com/1223747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26988"
},
{
"cve": "CVE-2024-26989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: hibernate: Fix level3 translation fault in swsusp_save()\n\nOn arm64 machines, swsusp_save() faults if it attempts to access\nMEMBLOCK_NOMAP memory ranges. This can be reproduced in QEMU using UEFI\nwhen booting with rodata=off debug_pagealloc=off and CONFIG_KFENCE=n:\n\n Unable to handle kernel paging request at virtual address ffffff8000000000\n Mem abort info:\n ESR = 0x0000000096000007\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x07: level 3 translation fault\n Data abort info:\n ISV = 0, ISS = 0x00000007, ISS2 = 0x00000000\n CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n swapper pgtable: 4k pages, 39-bit VAs, pgdp=00000000eeb0b000\n [ffffff8000000000] pgd=180000217fff9803, p4d=180000217fff9803, pud=180000217fff9803, pmd=180000217fff8803, pte=0000000000000000\n Internal error: Oops: 0000000096000007 [#1] SMP\n Internal error: Oops: 0000000096000007 [#1] SMP\n Modules linked in: xt_multiport ipt_REJECT nf_reject_ipv4 xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c iptable_filter bpfilter rfkill at803x snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg dwmac_generic stmmac_platform snd_hda_codec stmmac joydev pcs_xpcs snd_hda_core phylink ppdev lp parport ramoops reed_solomon ip_tables x_tables nls_iso8859_1 vfat multipath linear amdgpu amdxcp drm_exec gpu_sched drm_buddy hid_generic usbhid hid radeon video drm_suballoc_helper drm_ttm_helper ttm i2c_algo_bit drm_display_helper cec drm_kms_helper drm\n CPU: 0 PID: 3663 Comm: systemd-sleep Not tainted 6.6.2+ #76\n Source Version: 4e22ed63a0a48e7a7cff9b98b7806d8d4add7dc0\n Hardware name: Greatwall GW-XXXXXX-XXX/GW-XXXXXX-XXX, BIOS KunLun BIOS V4.0 01/19/2021\n pstate: 600003c5 (nZCv DAIF -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : swsusp_save+0x280/0x538\n lr : swsusp_save+0x280/0x538\n sp : ffffffa034a3fa40\n x29: ffffffa034a3fa40 x28: ffffff8000001000 x27: 0000000000000000\n x26: ffffff8001400000 x25: ffffffc08113e248 x24: 0000000000000000\n x23: 0000000000080000 x22: ffffffc08113e280 x21: 00000000000c69f2\n x20: ffffff8000000000 x19: ffffffc081ae2500 x18: 0000000000000000\n x17: 6666662074736420 x16: 3030303030303030 x15: 3038666666666666\n x14: 0000000000000b69 x13: ffffff9f89088530 x12: 00000000ffffffea\n x11: 00000000ffff7fff x10: 00000000ffff7fff x9 : ffffffc08193f0d0\n x8 : 00000000000bffe8 x7 : c0000000ffff7fff x6 : 0000000000000001\n x5 : ffffffa0fff09dc8 x4 : 0000000000000000 x3 : 0000000000000027\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : 000000000000004e\n Call trace:\n swsusp_save+0x280/0x538\n swsusp_arch_suspend+0x148/0x190\n hibernation_snapshot+0x240/0x39c\n hibernate+0xc4/0x378\n state_store+0xf0/0x10c\n kobj_attr_store+0x14/0x24\n\nThe reason is swsusp_save() -\u003e copy_data_pages() -\u003e page_is_saveable()\n-\u003e kernel_page_present() assuming that a page is always present when\ncan_set_direct_map() is false (all of rodata_full,\ndebug_pagealloc_enabled() and arm64_kfence_can_set_direct_map() false),\nirrespective of the MEMBLOCK_NOMAP ranges. Such MEMBLOCK_NOMAP regions\nshould not be saved during hibernation.\n\nThis problem was introduced by changes to the pfn_valid() logic in\ncommit a7d9f306ba70 (\"arm64: drop pfn_valid_within() and simplify\npfn_valid()\").\n\nSimilar to other architectures, drop the !can_set_direct_map() check in\nkernel_page_present() so that page_is_savable() skips such pages.\n\n[catalin.marinas@arm.com: rework commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26989",
"url": "https://www.suse.com/security/cve/CVE-2024-26989"
},
{
"category": "external",
"summary": "SUSE Bug 1223748 for CVE-2024-26989",
"url": "https://bugzilla.suse.com/1223748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26989"
},
{
"cve": "CVE-2024-26994",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26994"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspeakup: Avoid crash on very long word\n\nIn case a console is set up really large and contains a really long word\n(\u003e 256 characters), we have to stop before the length of the word buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26994",
"url": "https://www.suse.com/security/cve/CVE-2024-26994"
},
{
"category": "external",
"summary": "SUSE Bug 1223750 for CVE-2024-26994",
"url": "https://bugzilla.suse.com/1223750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26994"
},
{
"cve": "CVE-2024-26995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tcpm: Correct the PDO counting in pd_set\n\nOff-by-one errors happen because nr_snk_pdo and nr_src_pdo are\nincorrectly added one. The index of the loop is equal to the number of\nPDOs to be updated when leaving the loop and it doesn\u0027t need to be added\none.\n\nWhen doing the power negotiation, TCPM relies on the \"nr_snk_pdo\" as\nthe size of the local sink PDO array to match the Source capabilities\nof the partner port. If the off-by-one overflow occurs, a wrong RDO\nmight be sent and unexpected power transfer might happen such as over\nvoltage or over current (than expected).\n\n\"nr_src_pdo\" is used to set the Rp level when the port is in Source\nrole. It is also the array size of the local Source capabilities when\nfilling up the buffer which will be sent as the Source PDOs (such as\nin Power Negotiation). If the off-by-one overflow occurs, a wrong Rp\nlevel might be set and wrong Source PDOs will be sent to the partner\nport. This could potentially cause over current or port resets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26995",
"url": "https://www.suse.com/security/cve/CVE-2024-26995"
},
{
"category": "external",
"summary": "SUSE Bug 1223696 for CVE-2024-26995",
"url": "https://bugzilla.suse.com/1223696"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26995"
},
{
"cve": "CVE-2024-26996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error\n\nWhen ncm function is working and then stop usb0 interface for link down,\neth_stop() is called. At this piont, accidentally if usb transport error\nshould happen in usb_ep_enable(), \u0027in_ep\u0027 and/or \u0027out_ep\u0027 may not be enabled.\n\nAfter that, ncm_disable() is called to disable for ncm unbind\nbut gether_disconnect() is never called since \u0027in_ep\u0027 is not enabled.\n\nAs the result, ncm object is released in ncm unbind\nbut \u0027dev-\u003eport_usb\u0027 associated to \u0027ncm-\u003eport\u0027 is not NULL.\n\nAnd when ncm bind again to recover netdev, ncm object is reallocated\nbut usb0 interface is already associated to previous released ncm object.\n\nTherefore, once usb0 interface is up and eth_start_xmit() is called,\nreleased ncm object is dereferrenced and it might cause use-after-free memory.\n\n[function unlink via configfs]\n usb0: eth_stop dev-\u003eport_usb=ffffff9b179c3200\n --\u003e error happens in usb_ep_enable().\n NCM: ncm_disable: ncm=ffffff9b179c3200\n --\u003e no gether_disconnect() since ncm-\u003eport.in_ep-\u003eenabled is false.\n NCM: ncm_unbind: ncm unbind ncm=ffffff9b179c3200\n NCM: ncm_free: ncm free ncm=ffffff9b179c3200 \u003c-- released ncm\n\n[function link via configfs]\n NCM: ncm_alloc: ncm alloc ncm=ffffff9ac4f8a000\n NCM: ncm_bind: ncm bind ncm=ffffff9ac4f8a000\n NCM: ncm_set_alt: ncm=ffffff9ac4f8a000 alt=0\n usb0: eth_open dev-\u003eport_usb=ffffff9b179c3200 \u003c-- previous released ncm\n usb0: eth_start dev-\u003eport_usb=ffffff9b179c3200 \u003c--\n eth_start_xmit()\n --\u003e dev-\u003ewrap()\n Unable to handle kernel paging request at virtual address dead00000000014f\n\nThis patch addresses the issue by checking if \u0027ncm-\u003enetdev\u0027 is not NULL at\nncm_disable() to call gether_disconnect() to deassociate \u0027dev-\u003eport_usb\u0027.\nIt\u0027s more reasonable to check \u0027ncm-\u003enetdev\u0027 to call gether_connect/disconnect\nrather than check \u0027ncm-\u003eport.in_ep-\u003eenabled\u0027 since it might not be enabled\nbut the gether connection might be established.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26996",
"url": "https://www.suse.com/security/cve/CVE-2024-26996"
},
{
"category": "external",
"summary": "SUSE Bug 1223752 for CVE-2024-26996",
"url": "https://bugzilla.suse.com/1223752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26996"
},
{
"cve": "CVE-2024-26997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc2: host: Fix dereference issue in DDMA completion flow.\n\nFixed variable dereference issue in DDMA completion flow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26997",
"url": "https://www.suse.com/security/cve/CVE-2024-26997"
},
{
"category": "external",
"summary": "SUSE Bug 1223741 for CVE-2024-26997",
"url": "https://bugzilla.suse.com/1223741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26997"
},
{
"cve": "CVE-2024-26999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial/pmac_zilog: Remove flawed mitigation for rx irq flood\n\nThe mitigation was intended to stop the irq completely. That may be\nbetter than a hard lock-up but it turns out that you get a crash anyway\nif you\u0027re using pmac_zilog as a serial console:\n\nttyPZ0: pmz: rx irq flood !\nBUG: spinlock recursion on CPU#0, swapper/0\n\nThat\u0027s because the pr_err() call in pmz_receive_chars() results in\npmz_console_write() attempting to lock a spinlock already locked in\npmz_interrupt(). With CONFIG_DEBUG_SPINLOCK=y, this produces a fatal\nBUG splat. The spinlock in question is the one in struct uart_port.\n\nEven when it\u0027s not fatal, the serial port rx function ceases to work.\nAlso, the iteration limit doesn\u0027t play nicely with QEMU, as can be\nseen in the bug report linked below.\n\nA web search for other reports of the error message \"pmz: rx irq flood\"\ndidn\u0027t produce anything. So I don\u0027t think this code is needed any more.\nRemove it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26999",
"url": "https://www.suse.com/security/cve/CVE-2024-26999"
},
{
"category": "external",
"summary": "SUSE Bug 1223754 for CVE-2024-26999",
"url": "https://bugzilla.suse.com/1223754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26999"
},
{
"cve": "CVE-2024-27000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: mxs-auart: add spinlock around changing cts state\n\nThe uart_handle_cts_change() function in serial_core expects the caller\nto hold uport-\u003elock. For example, I have seen the below kernel splat,\nwhen the Bluetooth driver is loaded on an i.MX28 board.\n\n [ 85.119255] ------------[ cut here ]------------\n [ 85.124413] WARNING: CPU: 0 PID: 27 at /drivers/tty/serial/serial_core.c:3453 uart_handle_cts_change+0xb4/0xec\n [ 85.134694] Modules linked in: hci_uart bluetooth ecdh_generic ecc wlcore_sdio configfs\n [ 85.143314] CPU: 0 PID: 27 Comm: kworker/u3:0 Not tainted 6.6.3-00021-gd62a2f068f92 #1\n [ 85.151396] Hardware name: Freescale MXS (Device Tree)\n [ 85.156679] Workqueue: hci0 hci_power_on [bluetooth]\n (...)\n [ 85.191765] uart_handle_cts_change from mxs_auart_irq_handle+0x380/0x3f4\n [ 85.198787] mxs_auart_irq_handle from __handle_irq_event_percpu+0x88/0x210\n (...)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27000",
"url": "https://www.suse.com/security/cve/CVE-2024-27000"
},
{
"category": "external",
"summary": "SUSE Bug 1223757 for CVE-2024-27000",
"url": "https://bugzilla.suse.com/1223757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27000"
},
{
"cve": "CVE-2024-27001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: vmk80xx: fix incomplete endpoint checking\n\nWhile vmk80xx does have endpoint checking implemented, some things\ncan fall through the cracks. Depending on the hardware model,\nURBs can have either bulk or interrupt type, and current version\nof vmk80xx_find_usb_endpoints() function does not take that fully\ninto account. While this warning does not seem to be too harmful,\nat the very least it will crash systems with \u0027panic_on_warn\u0027 set on\nthem.\n\nFix the issue found by Syzkaller [1] by somewhat simplifying the\nendpoint checking process with usb_find_common_endpoints() and\nensuring that only expected endpoint types are present.\n\nThis patch has not been tested on real hardware.\n\n[1] Syzkaller report:\nusb 1-1: BOGUS urb xfer, pipe 1 != type 3\nWARNING: CPU: 0 PID: 781 at drivers/usb/core/urb.c:504 usb_submit_urb+0xc4e/0x18c0 drivers/usb/core/urb.c:503\n...\nCall Trace:\n \u003cTASK\u003e\n usb_start_wait_urb+0x113/0x520 drivers/usb/core/message.c:59\n vmk80xx_reset_device drivers/comedi/drivers/vmk80xx.c:227 [inline]\n vmk80xx_auto_attach+0xa1c/0x1a40 drivers/comedi/drivers/vmk80xx.c:818\n comedi_auto_config+0x238/0x380 drivers/comedi/drivers.c:1067\n usb_probe_interface+0x5cd/0xb00 drivers/usb/core/driver.c:399\n...\n\nSimilar issue also found by Syzkaller:",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27001",
"url": "https://www.suse.com/security/cve/CVE-2024-27001"
},
{
"category": "external",
"summary": "SUSE Bug 1223698 for CVE-2024-27001",
"url": "https://bugzilla.suse.com/1223698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27001"
},
{
"cve": "CVE-2024-27002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: mediatek: Do a runtime PM get on controllers during probe\n\nmt8183-mfgcfg has a mutual dependency with genpd during the probing\nstage, which leads to a deadlock in the following call stack:\n\nCPU0: genpd_lock --\u003e clk_prepare_lock\ngenpd_power_off_work_fn()\n genpd_lock()\n generic_pm_domain::power_off()\n clk_unprepare()\n clk_prepare_lock()\n\nCPU1: clk_prepare_lock --\u003e genpd_lock\nclk_register()\n __clk_core_init()\n clk_prepare_lock()\n clk_pm_runtime_get()\n genpd_lock()\n\nDo a runtime PM get at the probe function to make sure clk_register()\nwon\u0027t acquire the genpd lock. Instead of only modifying mt8183-mfgcfg,\ndo this on all mediatek clock controller probings because we don\u0027t\nbelieve this would cause any regression.\n\nVerified on MT8183 and MT8192 Chromebooks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27002",
"url": "https://www.suse.com/security/cve/CVE-2024-27002"
},
{
"category": "external",
"summary": "SUSE Bug 1223759 for CVE-2024-27002",
"url": "https://bugzilla.suse.com/1223759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27002"
},
{
"cve": "CVE-2024-27003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: Get runtime PM before walking tree for clk_summary\n\nSimilar to the previous commit, we should make sure that all devices are\nruntime resumed before printing the clk_summary through debugfs. Failure\nto do so would result in a deadlock if the thread is resuming a device\nto print clk state and that device is also runtime resuming in another\nthread, e.g the screen is turning on and the display driver is starting\nup. We remove the calls to clk_pm_runtime_{get,put}() in this path\nbecause they\u0027re superfluous now that we know the devices are runtime\nresumed. This also squashes a bug where the return value of\nclk_pm_runtime_get() wasn\u0027t checked, leading to an RPM count underflow\non error paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27003",
"url": "https://www.suse.com/security/cve/CVE-2024-27003"
},
{
"category": "external",
"summary": "SUSE Bug 1223761 for CVE-2024-27003",
"url": "https://bugzilla.suse.com/1223761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27003"
},
{
"cve": "CVE-2024-27004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27004"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: Get runtime PM before walking tree during disable_unused\n\nDoug reported [1] the following hung task:\n\n INFO: task swapper/0:1 blocked for more than 122 seconds.\n Not tainted 5.15.149-21875-gf795ebc40eb8 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:swapper/0 state:D stack: 0 pid: 1 ppid: 0 flags:0x00000008\n Call trace:\n __switch_to+0xf4/0x1f4\n __schedule+0x418/0xb80\n schedule+0x5c/0x10c\n rpm_resume+0xe0/0x52c\n rpm_resume+0x178/0x52c\n __pm_runtime_resume+0x58/0x98\n clk_pm_runtime_get+0x30/0xb0\n clk_disable_unused_subtree+0x58/0x208\n clk_disable_unused_subtree+0x38/0x208\n clk_disable_unused_subtree+0x38/0x208\n clk_disable_unused_subtree+0x38/0x208\n clk_disable_unused_subtree+0x38/0x208\n clk_disable_unused+0x4c/0xe4\n do_one_initcall+0xcc/0x2d8\n do_initcall_level+0xa4/0x148\n do_initcalls+0x5c/0x9c\n do_basic_setup+0x24/0x30\n kernel_init_freeable+0xec/0x164\n kernel_init+0x28/0x120\n ret_from_fork+0x10/0x20\n INFO: task kworker/u16:0:9 blocked for more than 122 seconds.\n Not tainted 5.15.149-21875-gf795ebc40eb8 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u16:0 state:D stack: 0 pid: 9 ppid: 2 flags:0x00000008\n Workqueue: events_unbound deferred_probe_work_func\n Call trace:\n __switch_to+0xf4/0x1f4\n __schedule+0x418/0xb80\n schedule+0x5c/0x10c\n schedule_preempt_disabled+0x2c/0x48\n __mutex_lock+0x238/0x488\n __mutex_lock_slowpath+0x1c/0x28\n mutex_lock+0x50/0x74\n clk_prepare_lock+0x7c/0x9c\n clk_core_prepare_lock+0x20/0x44\n clk_prepare+0x24/0x30\n clk_bulk_prepare+0x40/0xb0\n mdss_runtime_resume+0x54/0x1c8\n pm_generic_runtime_resume+0x30/0x44\n __genpd_runtime_resume+0x68/0x7c\n genpd_runtime_resume+0x108/0x1f4\n __rpm_callback+0x84/0x144\n rpm_callback+0x30/0x88\n rpm_resume+0x1f4/0x52c\n rpm_resume+0x178/0x52c\n __pm_runtime_resume+0x58/0x98\n __device_attach+0xe0/0x170\n device_initial_probe+0x1c/0x28\n bus_probe_device+0x3c/0x9c\n device_add+0x644/0x814\n mipi_dsi_device_register_full+0xe4/0x170\n devm_mipi_dsi_device_register_full+0x28/0x70\n ti_sn_bridge_probe+0x1dc/0x2c0\n auxiliary_bus_probe+0x4c/0x94\n really_probe+0xcc/0x2c8\n __driver_probe_device+0xa8/0x130\n driver_probe_device+0x48/0x110\n __device_attach_driver+0xa4/0xcc\n bus_for_each_drv+0x8c/0xd8\n __device_attach+0xf8/0x170\n device_initial_probe+0x1c/0x28\n bus_probe_device+0x3c/0x9c\n deferred_probe_work_func+0x9c/0xd8\n process_one_work+0x148/0x518\n worker_thread+0x138/0x350\n kthread+0x138/0x1e0\n ret_from_fork+0x10/0x20\n\nThe first thread is walking the clk tree and calling\nclk_pm_runtime_get() to power on devices required to read the clk\nhardware via struct clk_ops::is_enabled(). This thread holds the clk\nprepare_lock, and is trying to runtime PM resume a device, when it finds\nthat the device is in the process of resuming so the thread schedule()s\naway waiting for the device to finish resuming before continuing. The\nsecond thread is runtime PM resuming the same device, but the runtime\nresume callback is calling clk_prepare(), trying to grab the\nprepare_lock waiting on the first thread.\n\nThis is a classic ABBA deadlock. To properly fix the deadlock, we must\nnever runtime PM resume or suspend a device with the clk prepare_lock\nheld. Actually doing that is near impossible today because the global\nprepare_lock would have to be dropped in the middle of the tree, the\ndevice runtime PM resumed/suspended, and then the prepare_lock grabbed\nagain to ensure consistency of the clk tree topology. If anything\nchanges with the clk tree in the meantime, we\u0027ve lost and will need to\nstart the operation all over again.\n\nLuckily, most of the time we\u0027re simply incrementing or decrementing the\nruntime PM count on an active device, so we don\u0027t have the chance to\nschedule away with the prepare_lock held. Let\u0027s fix this immediate\nproblem that can be\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27004",
"url": "https://www.suse.com/security/cve/CVE-2024-27004"
},
{
"category": "external",
"summary": "SUSE Bug 1223762 for CVE-2024-27004",
"url": "https://bugzilla.suse.com/1223762"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27004"
},
{
"cve": "CVE-2024-27008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: nv04: Fix out of bounds access\n\nWhen Output Resource (dcb-\u003eor) value is assigned in\nfabricate_dcb_output(), there may be out of bounds access to\ndac_users array in case dcb-\u003eor is zero because ffs(dcb-\u003eor) is\nused as index there.\nThe \u0027or\u0027 argument of fabricate_dcb_output() must be interpreted as a\nnumber of bit to set, not value.\n\nUtilize macros from \u0027enum nouveau_or\u0027 in calls instead of hardcoding.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27008",
"url": "https://www.suse.com/security/cve/CVE-2024-27008"
},
{
"category": "external",
"summary": "SUSE Bug 1223802 for CVE-2024-27008",
"url": "https://bugzilla.suse.com/1223802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27008"
},
{
"cve": "CVE-2024-27027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27027"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndpll: fix dpll_xa_ref_*_del() for multiple registrations\n\nCurrently, if there are multiple registrations of the same pin on the\nsame dpll device, following warnings are observed:\nWARNING: CPU: 5 PID: 2212 at drivers/dpll/dpll_core.c:143 dpll_xa_ref_pin_del.isra.0+0x21e/0x230\nWARNING: CPU: 5 PID: 2212 at drivers/dpll/dpll_core.c:223 __dpll_pin_unregister+0x2b3/0x2c0\n\nThe problem is, that in both dpll_xa_ref_dpll_del() and\ndpll_xa_ref_pin_del() registration is only removed from list in case the\nreference count drops to zero. That is wrong, the registration has to\nbe removed always.\n\nTo fix this, remove the registration from the list and free\nit unconditionally, instead of doing it only when the ref reference\ncounter reaches zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27027",
"url": "https://www.suse.com/security/cve/CVE-2024-27027"
},
{
"category": "external",
"summary": "SUSE Bug 1223787 for CVE-2024-27027",
"url": "https://bugzilla.suse.com/1223787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27027"
},
{
"cve": "CVE-2024-27028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: spi-mt65xx: Fix NULL pointer access in interrupt handler\n\nThe TX buffer in spi_transfer can be a NULL pointer, so the interrupt\nhandler may end up writing to the invalid memory and cause crashes.\n\nAdd a check to trans-\u003etx_buf before using it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27028",
"url": "https://www.suse.com/security/cve/CVE-2024-27028"
},
{
"category": "external",
"summary": "SUSE Bug 1223788 for CVE-2024-27028",
"url": "https://bugzilla.suse.com/1223788"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27028"
},
{
"cve": "CVE-2024-27029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix mmhub client id out-of-bounds access\n\nProperly handle cid 0x140.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27029",
"url": "https://www.suse.com/security/cve/CVE-2024-27029"
},
{
"category": "external",
"summary": "SUSE Bug 1223789 for CVE-2024-27029",
"url": "https://bugzilla.suse.com/1223789"
},
{
"category": "external",
"summary": "SUSE Bug 1226184 for CVE-2024-27029",
"url": "https://bugzilla.suse.com/1226184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-27029"
},
{
"cve": "CVE-2024-27030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: Use separate handlers for interrupts\n\nFor PF to AF interrupt vector and VF to AF vector same\ninterrupt handler is registered which is causing race condition.\nWhen two interrupts are raised to two CPUs at same time\nthen two cores serve same event corrupting the data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27030",
"url": "https://www.suse.com/security/cve/CVE-2024-27030"
},
{
"category": "external",
"summary": "SUSE Bug 1223790 for CVE-2024-27030",
"url": "https://bugzilla.suse.com/1223790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27030"
},
{
"cve": "CVE-2024-27031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Fix nfs_netfs_issue_read() xarray locking for writeback interrupt\n\nThe loop inside nfs_netfs_issue_read() currently does not disable\ninterrupts while iterating through pages in the xarray to submit\nfor NFS read. This is not safe though since after taking xa_lock,\nanother page in the mapping could be processed for writeback inside\nan interrupt, and deadlock can occur. The fix is simple and clean\nif we use xa_for_each_range(), which handles the iteration with RCU\nwhile reducing code complexity.\n\nThe problem is easily reproduced with the following test:\n mount -o vers=3,fsc 127.0.0.1:/export /mnt/nfs\n dd if=/dev/zero of=/mnt/nfs/file1.bin bs=4096 count=1\n echo 3 \u003e /proc/sys/vm/drop_caches\n dd if=/mnt/nfs/file1.bin of=/dev/null\n umount /mnt/nfs\n\nOn the console with a lockdep-enabled kernel a message similar to\nthe following will be seen:\n\n ================================\n WARNING: inconsistent lock state\n 6.7.0-lockdbg+ #10 Not tainted\n --------------------------------\n inconsistent {IN-SOFTIRQ-W} -\u003e {SOFTIRQ-ON-W} usage.\n test5/1708 [HC0[0]:SC0[0]:HE1:SE1] takes:\n ffff888127baa598 (\u0026xa-\u003exa_lock#4){+.?.}-{3:3}, at:\nnfs_netfs_issue_read+0x1b2/0x4b0 [nfs]\n {IN-SOFTIRQ-W} state was registered at:\n lock_acquire+0x144/0x380\n _raw_spin_lock_irqsave+0x4e/0xa0\n __folio_end_writeback+0x17e/0x5c0\n folio_end_writeback+0x93/0x1b0\n iomap_finish_ioend+0xeb/0x6a0\n blk_update_request+0x204/0x7f0\n blk_mq_end_request+0x30/0x1c0\n blk_complete_reqs+0x7e/0xa0\n __do_softirq+0x113/0x544\n __irq_exit_rcu+0xfe/0x120\n irq_exit_rcu+0xe/0x20\n sysvec_call_function_single+0x6f/0x90\n asm_sysvec_call_function_single+0x1a/0x20\n pv_native_safe_halt+0xf/0x20\n default_idle+0x9/0x20\n default_idle_call+0x67/0xa0\n do_idle+0x2b5/0x300\n cpu_startup_entry+0x34/0x40\n start_secondary+0x19d/0x1c0\n secondary_startup_64_no_verify+0x18f/0x19b\n irq event stamp: 176891\n hardirqs last enabled at (176891): [\u003cffffffffa67a0be4\u003e]\n_raw_spin_unlock_irqrestore+0x44/0x60\n hardirqs last disabled at (176890): [\u003cffffffffa67a0899\u003e]\n_raw_spin_lock_irqsave+0x79/0xa0\n softirqs last enabled at (176646): [\u003cffffffffa515d91e\u003e]\n__irq_exit_rcu+0xfe/0x120\n softirqs last disabled at (176633): [\u003cffffffffa515d91e\u003e]\n__irq_exit_rcu+0xfe/0x120\n\n other info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026xa-\u003exa_lock#4);\n \u003cInterrupt\u003e\n lock(\u0026xa-\u003exa_lock#4);\n\n *** DEADLOCK ***\n\n 2 locks held by test5/1708:\n #0: ffff888127baa498 (\u0026sb-\u003es_type-\u003ei_mutex_key#22){++++}-{4:4}, at:\n nfs_start_io_read+0x28/0x90 [nfs]\n #1: ffff888127baa650 (mapping.invalidate_lock#3){.+.+}-{4:4}, at:\n page_cache_ra_unbounded+0xa4/0x280\n\n stack backtrace:\n CPU: 6 PID: 1708 Comm: test5 Kdump: loaded Not tainted 6.7.0-lockdbg+\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-1.fc39\n04/01/2014\n Call Trace:\n dump_stack_lvl+0x5b/0x90\n mark_lock+0xb3f/0xd20\n __lock_acquire+0x77b/0x3360\n _raw_spin_lock+0x34/0x80\n nfs_netfs_issue_read+0x1b2/0x4b0 [nfs]\n netfs_begin_read+0x77f/0x980 [netfs]\n nfs_netfs_readahead+0x45/0x60 [nfs]\n nfs_readahead+0x323/0x5a0 [nfs]\n read_pages+0xf3/0x5c0\n page_cache_ra_unbounded+0x1c8/0x280\n filemap_get_pages+0x38c/0xae0\n filemap_read+0x206/0x5e0\n nfs_file_read+0xb7/0x140 [nfs]\n vfs_read+0x2a9/0x460\n ksys_read+0xb7/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27031",
"url": "https://www.suse.com/security/cve/CVE-2024-27031"
},
{
"category": "external",
"summary": "SUSE Bug 1223805 for CVE-2024-27031",
"url": "https://bugzilla.suse.com/1223805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27031"
},
{
"cve": "CVE-2024-27046",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27046"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfp: flower: handle acti_netdevs allocation failure\n\nThe kmalloc_array() in nfp_fl_lag_do_work() will return null, if\nthe physical memory has run out. As a result, if we dereference\nthe acti_netdevs, the null pointer dereference bugs will happen.\n\nThis patch adds a check to judge whether allocation failure occurs.\nIf it happens, the delayed work will be rescheduled and try again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27046",
"url": "https://www.suse.com/security/cve/CVE-2024-27046"
},
{
"category": "external",
"summary": "SUSE Bug 1223827 for CVE-2024-27046",
"url": "https://bugzilla.suse.com/1223827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27046"
},
{
"cve": "CVE-2024-27057",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27057"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: SOF: ipc4-pcm: Workaround for crashed firmware on system suspend\n\nWhen the system is suspended while audio is active, the\nsof_ipc4_pcm_hw_free() is invoked to reset the pipelines since during\nsuspend the DSP is turned off, streams will be re-started after resume.\n\nIf the firmware crashes during while audio is running (or when we reset\nthe stream before suspend) then the sof_ipc4_set_multi_pipeline_state()\nwill fail with IPC error and the state change is interrupted.\nThis will cause misalignment between the kernel and firmware state on next\nDSP boot resulting errors returned by firmware for IPC messages, eventually\nfailing the audio resume.\nOn stream close the errors are ignored so the kernel state will be\ncorrected on the next DSP boot, so the second boot after the DSP panic.\n\nIf sof_ipc4_trigger_pipelines() is called from sof_ipc4_pcm_hw_free() then\nstate parameter is SOF_IPC4_PIPE_RESET and only in this case.\n\nTreat a forced pipeline reset similarly to how we treat a pcm_free by\nignoring error on state sending to allow the kernel\u0027s state to be\nconsistent with the state the firmware will have after the next boot.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27057",
"url": "https://www.suse.com/security/cve/CVE-2024-27057"
},
{
"category": "external",
"summary": "SUSE Bug 1223831 for CVE-2024-27057",
"url": "https://bugzilla.suse.com/1223831"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27057"
},
{
"cve": "CVE-2024-27062",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27062"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau: lock the client object tree.\n\nIt appears the client object tree has no locking unless I\u0027ve missed\nsomething else. Fix races around adding/removing client objects,\nmostly vram bar mappings.\n\n 4562.099306] general protection fault, probably for non-canonical address 0x6677ed422bceb80c: 0000 [#1] PREEMPT SMP PTI\n[ 4562.099314] CPU: 2 PID: 23171 Comm: deqp-vk Not tainted 6.8.0-rc6+ #27\n[ 4562.099324] Hardware name: Gigabyte Technology Co., Ltd. Z390 I AORUS PRO WIFI/Z390 I AORUS PRO WIFI-CF, BIOS F8 11/05/2021\n[ 4562.099330] RIP: 0010:nvkm_object_search+0x1d/0x70 [nouveau]\n[ 4562.099503] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 0f 1f 44 00 00 48 89 f8 48 85 f6 74 39 48 8b 87 a0 00 00 00 48 85 c0 74 12 \u003c48\u003e 8b 48 f8 48 39 ce 73 15 48 8b 40 10 48 85 c0 75 ee 48 c7 c0 fe\n[ 4562.099506] RSP: 0000:ffffa94cc420bbf8 EFLAGS: 00010206\n[ 4562.099512] RAX: 6677ed422bceb814 RBX: ffff98108791f400 RCX: ffff9810f26b8f58\n[ 4562.099517] RDX: 0000000000000000 RSI: ffff9810f26b9158 RDI: ffff98108791f400\n[ 4562.099519] RBP: ffff9810f26b9158 R08: 0000000000000000 R09: 0000000000000000\n[ 4562.099521] R10: ffffa94cc420bc48 R11: 0000000000000001 R12: ffff9810f02a7cc0\n[ 4562.099526] R13: 0000000000000000 R14: 00000000000000ff R15: 0000000000000007\n[ 4562.099528] FS: 00007f629c5017c0(0000) GS:ffff98142c700000(0000) knlGS:0000000000000000\n[ 4562.099534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4562.099536] CR2: 00007f629a882000 CR3: 000000017019e004 CR4: 00000000003706f0\n[ 4562.099541] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4562.099542] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4562.099544] Call Trace:\n[ 4562.099555] \u003cTASK\u003e\n[ 4562.099573] ? die_addr+0x36/0x90\n[ 4562.099583] ? exc_general_protection+0x246/0x4a0\n[ 4562.099593] ? asm_exc_general_protection+0x26/0x30\n[ 4562.099600] ? nvkm_object_search+0x1d/0x70 [nouveau]\n[ 4562.099730] nvkm_ioctl+0xa1/0x250 [nouveau]\n[ 4562.099861] nvif_object_map_handle+0xc8/0x180 [nouveau]\n[ 4562.099986] nouveau_ttm_io_mem_reserve+0x122/0x270 [nouveau]\n[ 4562.100156] ? dma_resv_test_signaled+0x26/0xb0\n[ 4562.100163] ttm_bo_vm_fault_reserved+0x97/0x3c0 [ttm]\n[ 4562.100182] ? __mutex_unlock_slowpath+0x2a/0x270\n[ 4562.100189] nouveau_ttm_fault+0x69/0xb0 [nouveau]\n[ 4562.100356] __do_fault+0x32/0x150\n[ 4562.100362] do_fault+0x7c/0x560\n[ 4562.100369] __handle_mm_fault+0x800/0xc10\n[ 4562.100382] handle_mm_fault+0x17c/0x3e0\n[ 4562.100388] do_user_addr_fault+0x208/0x860\n[ 4562.100395] exc_page_fault+0x7f/0x200\n[ 4562.100402] asm_exc_page_fault+0x26/0x30\n[ 4562.100412] RIP: 0033:0x9b9870\n[ 4562.100419] Code: 85 a8 f7 ff ff 8b 8d 80 f7 ff ff 89 08 e9 18 f2 ff ff 0f 1f 84 00 00 00 00 00 44 89 32 e9 90 fa ff ff 0f 1f 84 00 00 00 00 00 \u003c44\u003e 89 32 e9 f8 f1 ff ff 0f 1f 84 00 00 00 00 00 66 44 89 32 e9 e7\n[ 4562.100422] RSP: 002b:00007fff9ba2dc70 EFLAGS: 00010246\n[ 4562.100426] RAX: 0000000000000004 RBX: 000000000dd65e10 RCX: 000000fff0000000\n[ 4562.100428] RDX: 00007f629a882000 RSI: 00007f629a882000 RDI: 0000000000000066\n[ 4562.100432] RBP: 00007fff9ba2e570 R08: 0000000000000000 R09: 0000000123ddf000\n[ 4562.100434] R10: 0000000000000001 R11: 0000000000000246 R12: 000000007fffffff\n[ 4562.100436] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n[ 4562.100446] \u003c/TASK\u003e\n[ 4562.100448] Modules linked in: nf_conntrack_netbios_ns nf_conntrack_broadcast nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables libcrc32c nfnetlink cmac bnep sunrpc iwlmvm intel_rapl_msr intel_rapl_common snd_sof_pci_intel_cnl x86_pkg_temp_thermal intel_powerclamp snd_sof_intel_hda_common mac80211 coretemp snd_soc_acpi_intel_match kvm_intel snd_soc_acpi snd_soc_hdac_hda snd_sof_pci snd_sof_xtensa_dsp snd_sof_intel_hda_mlink \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27062",
"url": "https://www.suse.com/security/cve/CVE-2024-27062"
},
{
"category": "external",
"summary": "SUSE Bug 1223834 for CVE-2024-27062",
"url": "https://bugzilla.suse.com/1223834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27062"
},
{
"cve": "CVE-2024-27067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27067"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/evtchn: avoid WARN() when unbinding an event channel\n\nWhen unbinding a user event channel, the related handler might be\ncalled a last time in case the kernel was built with\nCONFIG_DEBUG_SHIRQ. This might cause a WARN() in the handler.\n\nAvoid that by adding an \"unbinding\" flag to struct user_event which\nwill short circuit the handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27067",
"url": "https://www.suse.com/security/cve/CVE-2024-27067"
},
{
"category": "external",
"summary": "SUSE Bug 1223739 for CVE-2024-27067",
"url": "https://bugzilla.suse.com/1223739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27067"
},
{
"cve": "CVE-2024-27080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race when detecting delalloc ranges during fiemap\n\nFor fiemap we recently stopped locking the target extent range for the\nwhole duration of the fiemap call, in order to avoid a deadlock in a\nscenario where the fiemap buffer happens to be a memory mapped range of\nthe same file. This use case is very unlikely to be useful in practice but\nit may be triggered by fuzz testing (syzbot, etc).\n\nThis however introduced a race that makes us miss delalloc ranges for\nfile regions that are currently holes, so the caller of fiemap will not\nbe aware that there\u0027s data for some file regions. This can be quite\nserious for some use cases - for example in coreutils versions before 9.0,\nthe cp program used fiemap to detect holes and data in the source file,\ncopying only regions with data (extents or delalloc) from the source file\nto the destination file in order to preserve holes (see the documentation\nfor its --sparse command line option). This means that if cp was used\nwith a source file that had delalloc in a hole, the destination file could\nend up without that data, which is effectively a data loss issue, if it\nhappened to hit the race described below.\n\nThe race happens like this:\n\n1) Fiemap is called, without the FIEMAP_FLAG_SYNC flag, for a file that\n has delalloc in the file range [64M, 65M[, which is currently a hole;\n\n2) Fiemap locks the inode in shared mode, then starts iterating the\n inode\u0027s subvolume tree searching for file extent items, without having\n the whole fiemap target range locked in the inode\u0027s io tree - the\n change introduced recently by commit b0ad381fa769 (\"btrfs: fix\n deadlock with fiemap and extent locking\"). It only locks ranges in\n the io tree when it finds a hole or prealloc extent since that\n commit;\n\n3) Note that fiemap clones each leaf before using it, and this is to\n avoid deadlocks when locking a file range in the inode\u0027s io tree and\n the fiemap buffer is memory mapped to some file, because writing\n to the page with btrfs_page_mkwrite() will wait on any ordered extent\n for the page\u0027s range and the ordered extent needs to lock the range\n and may need to modify the same leaf, therefore leading to a deadlock\n on the leaf;\n\n4) While iterating the file extent items in the cloned leaf before\n finding the hole in the range [64M, 65M[, the delalloc in that range\n is flushed and its ordered extent completes - meaning the corresponding\n file extent item is in the inode\u0027s subvolume tree, but not present in\n the cloned leaf that fiemap is iterating over;\n\n5) When fiemap finds the hole in the [64M, 65M[ range by seeing the gap in\n the cloned leaf (or a file extent item with disk_bytenr == 0 in case\n the NO_HOLES feature is not enabled), it will lock that file range in\n the inode\u0027s io tree and then search for delalloc by checking for the\n EXTENT_DELALLOC bit in the io tree for that range and ordered extents\n (with btrfs_find_delalloc_in_range()). But it finds nothing since the\n delalloc in that range was already flushed and the ordered extent\n completed and is gone - as a result fiemap will not report that there\u0027s\n delalloc or an extent for the range [64M, 65M[, so user space will be\n mislead into thinking that there\u0027s a hole in that range.\n\nThis could actually be sporadically triggered with test case generic/094\nfrom fstests, which reports a missing extent/delalloc range like this:\n\n generic/094 2s ... - output mismatch (see /home/fdmanana/git/hub/xfstests/results//generic/094.out.bad)\n --- tests/generic/094.out\t2020-06-10 19:29:03.830519425 +0100\n +++ /home/fdmanana/git/hub/xfstests/results//generic/094.out.bad\t2024-02-28 11:00:00.381071525 +0000\n @@ -1,3 +1,9 @@\n QA output created by 094\n fiemap run with sync\n fiemap run without sync\n +ERROR: couldn\u0027t find extent at 7\n +map is \u0027HHDDHPPDPHPH\u0027\n +logical: [ 5.. 6] phys:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27080",
"url": "https://www.suse.com/security/cve/CVE-2024-27080"
},
{
"category": "external",
"summary": "SUSE Bug 1223782 for CVE-2024-27080",
"url": "https://bugzilla.suse.com/1223782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27080"
},
{
"cve": "CVE-2024-27388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27388"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: fix some memleaks in gssx_dec_option_array\n\nThe creds and oa-\u003edata need to be freed in the error-handling paths after\ntheir allocation. So this patch add these deallocations in the\ncorresponding paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27388",
"url": "https://www.suse.com/security/cve/CVE-2024-27388"
},
{
"category": "external",
"summary": "SUSE Bug 1223744 for CVE-2024-27388",
"url": "https://bugzilla.suse.com/1223744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27388"
},
{
"cve": "CVE-2024-27389",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27389"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore: inode: Only d_invalidate() is needed\n\nUnloading a modular pstore backend with records in pstorefs would\ntrigger the dput() double-drop warning:\n\n WARNING: CPU: 0 PID: 2569 at fs/dcache.c:762 dput.part.0+0x3f3/0x410\n\nUsing the combo of d_drop()/dput() (as mentioned in\nDocumentation/filesystems/vfs.rst) isn\u0027t the right approach here, and\nleads to the reference counting problem seen above. Use d_invalidate()\nand update the code to not bother checking for error codes that can\nnever happen.\n\n---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27389",
"url": "https://www.suse.com/security/cve/CVE-2024-27389"
},
{
"category": "external",
"summary": "SUSE Bug 1223705 for CVE-2024-27389",
"url": "https://bugzilla.suse.com/1223705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27389"
},
{
"cve": "CVE-2024-27397",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27397"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: use timestamp to check for set element timeout\n\nAdd a timestamp field at the beginning of the transaction, store it\nin the nftables per-netns area.\n\nUpdate set backend .insert, .deactivate and sync gc path to use the\ntimestamp, this avoids that an element expires while control plane\ntransaction is still unfinished.\n\n.lookup and .update, which are used from packet path, still use the\ncurrent time to check if the element has expired. And .get path and dump\nalso since this runs lockless under rcu read size lock. Then, there is\nasync gc which also needs to check the current time since it runs\nasynchronously from a workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27397",
"url": "https://www.suse.com/security/cve/CVE-2024-27397"
},
{
"category": "external",
"summary": "SUSE Bug 1224095 for CVE-2024-27397",
"url": "https://bugzilla.suse.com/1224095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27397"
},
{
"cve": "CVE-2024-27398",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27398"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Fix use-after-free bugs caused by sco_sock_timeout\n\nWhen the sco connection is established and then, the sco socket\nis releasing, timeout_work will be scheduled to judge whether\nthe sco disconnection is timeout. The sock will be deallocated\nlater, but it is dereferenced again in sco_sock_timeout. As a\nresult, the use-after-free bugs will happen. The root cause is\nshown below:\n\n Cleanup Thread | Worker Thread\nsco_sock_release |\n sco_sock_close |\n __sco_sock_close |\n sco_sock_set_timer |\n schedule_delayed_work |\n sco_sock_kill | (wait a time)\n sock_put(sk) //FREE | sco_sock_timeout\n | sock_hold(sk) //USE\n\nThe KASAN report triggered by POC is shown below:\n\n[ 95.890016] ==================================================================\n[ 95.890496] BUG: KASAN: slab-use-after-free in sco_sock_timeout+0x5e/0x1c0\n[ 95.890755] Write of size 4 at addr ffff88800c388080 by task kworker/0:0/7\n...\n[ 95.890755] Workqueue: events sco_sock_timeout\n[ 95.890755] Call Trace:\n[ 95.890755] \u003cTASK\u003e\n[ 95.890755] dump_stack_lvl+0x45/0x110\n[ 95.890755] print_address_description+0x78/0x390\n[ 95.890755] print_report+0x11b/0x250\n[ 95.890755] ? __virt_addr_valid+0xbe/0xf0\n[ 95.890755] ? sco_sock_timeout+0x5e/0x1c0\n[ 95.890755] kasan_report+0x139/0x170\n[ 95.890755] ? update_load_avg+0xe5/0x9f0\n[ 95.890755] ? sco_sock_timeout+0x5e/0x1c0\n[ 95.890755] kasan_check_range+0x2c3/0x2e0\n[ 95.890755] sco_sock_timeout+0x5e/0x1c0\n[ 95.890755] process_one_work+0x561/0xc50\n[ 95.890755] worker_thread+0xab2/0x13c0\n[ 95.890755] ? pr_cont_work+0x490/0x490\n[ 95.890755] kthread+0x279/0x300\n[ 95.890755] ? pr_cont_work+0x490/0x490\n[ 95.890755] ? kthread_blkcg+0xa0/0xa0\n[ 95.890755] ret_from_fork+0x34/0x60\n[ 95.890755] ? kthread_blkcg+0xa0/0xa0\n[ 95.890755] ret_from_fork_asm+0x11/0x20\n[ 95.890755] \u003c/TASK\u003e\n[ 95.890755]\n[ 95.890755] Allocated by task 506:\n[ 95.890755] kasan_save_track+0x3f/0x70\n[ 95.890755] __kasan_kmalloc+0x86/0x90\n[ 95.890755] __kmalloc+0x17f/0x360\n[ 95.890755] sk_prot_alloc+0xe1/0x1a0\n[ 95.890755] sk_alloc+0x31/0x4e0\n[ 95.890755] bt_sock_alloc+0x2b/0x2a0\n[ 95.890755] sco_sock_create+0xad/0x320\n[ 95.890755] bt_sock_create+0x145/0x320\n[ 95.890755] __sock_create+0x2e1/0x650\n[ 95.890755] __sys_socket+0xd0/0x280\n[ 95.890755] __x64_sys_socket+0x75/0x80\n[ 95.890755] do_syscall_64+0xc4/0x1b0\n[ 95.890755] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n[ 95.890755]\n[ 95.890755] Freed by task 506:\n[ 95.890755] kasan_save_track+0x3f/0x70\n[ 95.890755] kasan_save_free_info+0x40/0x50\n[ 95.890755] poison_slab_object+0x118/0x180\n[ 95.890755] __kasan_slab_free+0x12/0x30\n[ 95.890755] kfree+0xb2/0x240\n[ 95.890755] __sk_destruct+0x317/0x410\n[ 95.890755] sco_sock_release+0x232/0x280\n[ 95.890755] sock_close+0xb2/0x210\n[ 95.890755] __fput+0x37f/0x770\n[ 95.890755] task_work_run+0x1ae/0x210\n[ 95.890755] get_signal+0xe17/0xf70\n[ 95.890755] arch_do_signal_or_restart+0x3f/0x520\n[ 95.890755] syscall_exit_to_user_mode+0x55/0x120\n[ 95.890755] do_syscall_64+0xd1/0x1b0\n[ 95.890755] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n[ 95.890755]\n[ 95.890755] The buggy address belongs to the object at ffff88800c388000\n[ 95.890755] which belongs to the cache kmalloc-1k of size 1024\n[ 95.890755] The buggy address is located 128 bytes inside of\n[ 95.890755] freed 1024-byte region [ffff88800c388000, ffff88800c388400)\n[ 95.890755]\n[ 95.890755] The buggy address belongs to the physical page:\n[ 95.890755] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88800c38a800 pfn:0xc388\n[ 95.890755] head: order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n[ 95.890755] ano\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27398",
"url": "https://www.suse.com/security/cve/CVE-2024-27398"
},
{
"category": "external",
"summary": "SUSE Bug 1224174 for CVE-2024-27398",
"url": "https://bugzilla.suse.com/1224174"
},
{
"category": "external",
"summary": "SUSE Bug 1225013 for CVE-2024-27398",
"url": "https://bugzilla.suse.com/1225013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-27398"
},
{
"cve": "CVE-2024-27399",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27399"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout\n\nThere is a race condition between l2cap_chan_timeout() and\nl2cap_chan_del(). When we use l2cap_chan_del() to delete the\nchannel, the chan-\u003econn will be set to null. But the conn could\nbe dereferenced again in the mutex_lock() of l2cap_chan_timeout().\nAs a result the null pointer dereference bug will happen. The\nKASAN report triggered by POC is shown below:\n\n[ 472.074580] ==================================================================\n[ 472.075284] BUG: KASAN: null-ptr-deref in mutex_lock+0x68/0xc0\n[ 472.075308] Write of size 8 at addr 0000000000000158 by task kworker/0:0/7\n[ 472.075308]\n[ 472.075308] CPU: 0 PID: 7 Comm: kworker/0:0 Not tainted 6.9.0-rc5-00356-g78c0094a146b #36\n[ 472.075308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu4\n[ 472.075308] Workqueue: events l2cap_chan_timeout\n[ 472.075308] Call Trace:\n[ 472.075308] \u003cTASK\u003e\n[ 472.075308] dump_stack_lvl+0x137/0x1a0\n[ 472.075308] print_report+0x101/0x250\n[ 472.075308] ? __virt_addr_valid+0x77/0x160\n[ 472.075308] ? mutex_lock+0x68/0xc0\n[ 472.075308] kasan_report+0x139/0x170\n[ 472.075308] ? mutex_lock+0x68/0xc0\n[ 472.075308] kasan_check_range+0x2c3/0x2e0\n[ 472.075308] mutex_lock+0x68/0xc0\n[ 472.075308] l2cap_chan_timeout+0x181/0x300\n[ 472.075308] process_one_work+0x5d2/0xe00\n[ 472.075308] worker_thread+0xe1d/0x1660\n[ 472.075308] ? pr_cont_work+0x5e0/0x5e0\n[ 472.075308] kthread+0x2b7/0x350\n[ 472.075308] ? pr_cont_work+0x5e0/0x5e0\n[ 472.075308] ? kthread_blkcg+0xd0/0xd0\n[ 472.075308] ret_from_fork+0x4d/0x80\n[ 472.075308] ? kthread_blkcg+0xd0/0xd0\n[ 472.075308] ret_from_fork_asm+0x11/0x20\n[ 472.075308] \u003c/TASK\u003e\n[ 472.075308] ==================================================================\n[ 472.094860] Disabling lock debugging due to kernel taint\n[ 472.096136] BUG: kernel NULL pointer dereference, address: 0000000000000158\n[ 472.096136] #PF: supervisor write access in kernel mode\n[ 472.096136] #PF: error_code(0x0002) - not-present page\n[ 472.096136] PGD 0 P4D 0\n[ 472.096136] Oops: 0002 [#1] PREEMPT SMP KASAN NOPTI\n[ 472.096136] CPU: 0 PID: 7 Comm: kworker/0:0 Tainted: G B 6.9.0-rc5-00356-g78c0094a146b #36\n[ 472.096136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu4\n[ 472.096136] Workqueue: events l2cap_chan_timeout\n[ 472.096136] RIP: 0010:mutex_lock+0x88/0xc0\n[ 472.096136] Code: be 08 00 00 00 e8 f8 23 1f fd 4c 89 f7 be 08 00 00 00 e8 eb 23 1f fd 42 80 3c 23 00 74 08 48 88\n[ 472.096136] RSP: 0018:ffff88800744fc78 EFLAGS: 00000246\n[ 472.096136] RAX: 0000000000000000 RBX: 1ffff11000e89f8f RCX: ffffffff8457c865\n[ 472.096136] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff88800744fc78\n[ 472.096136] RBP: 0000000000000158 R08: ffff88800744fc7f R09: 1ffff11000e89f8f\n[ 472.096136] R10: dffffc0000000000 R11: ffffed1000e89f90 R12: dffffc0000000000\n[ 472.096136] R13: 0000000000000158 R14: ffff88800744fc78 R15: ffff888007405a00\n[ 472.096136] FS: 0000000000000000(0000) GS:ffff88806d200000(0000) knlGS:0000000000000000\n[ 472.096136] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 472.096136] CR2: 0000000000000158 CR3: 000000000da32000 CR4: 00000000000006f0\n[ 472.096136] Call Trace:\n[ 472.096136] \u003cTASK\u003e\n[ 472.096136] ? __die_body+0x8d/0xe0\n[ 472.096136] ? page_fault_oops+0x6b8/0x9a0\n[ 472.096136] ? kernelmode_fixup_or_oops+0x20c/0x2a0\n[ 472.096136] ? do_user_addr_fault+0x1027/0x1340\n[ 472.096136] ? _printk+0x7a/0xa0\n[ 472.096136] ? mutex_lock+0x68/0xc0\n[ 472.096136] ? add_taint+0x42/0xd0\n[ 472.096136] ? exc_page_fault+0x6a/0x1b0\n[ 472.096136] ? asm_exc_page_fault+0x26/0x30\n[ 472.096136] ? mutex_lock+0x75/0xc0\n[ 472.096136] ? mutex_lock+0x88/0xc0\n[ 472.096136] ? mutex_lock+0x75/0xc0\n[ 472.096136] l2cap_chan_timeo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27399",
"url": "https://www.suse.com/security/cve/CVE-2024-27399"
},
{
"category": "external",
"summary": "SUSE Bug 1224177 for CVE-2024-27399",
"url": "https://bugzilla.suse.com/1224177"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27399"
},
{
"cve": "CVE-2024-27400",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27400"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2\n\nThis reverts drm/amdgpu: fix ftrace event amdgpu_bo_move always move\non same heap. The basic problem here is that after the move the old\nlocation is simply not available any more.\n\nSome fixes were suggested, but essentially we should call the move\nnotification before actually moving things because only this way we have\nthe correct order for DMA-buf and VM move notifications as well.\n\nAlso rework the statistic handling so that we don\u0027t update the eviction\ncounter before the move.\n\nv2: add missing NULL check",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27400",
"url": "https://www.suse.com/security/cve/CVE-2024-27400"
},
{
"category": "external",
"summary": "SUSE Bug 1224180 for CVE-2024-27400",
"url": "https://bugzilla.suse.com/1224180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27400"
},
{
"cve": "CVE-2024-27405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27405"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs\n\nIt is observed sometimes when tethering is used over NCM with Windows 11\nas host, at some instances, the gadget_giveback has one byte appended at\nthe end of a proper NTB. When the NTB is parsed, unwrap call looks for\nany leftover bytes in SKB provided by u_ether and if there are any pending\nbytes, it treats them as a separate NTB and parses it. But in case the\nsecond NTB (as per unwrap call) is faulty/corrupt, all the datagrams that\nwere parsed properly in the first NTB and saved in rx_list are dropped.\n\nAdding a few custom traces showed the following:\n[002] d..1 7828.532866: dwc3_gadget_giveback: ep1out:\nreq 000000003868811a length 1025/16384 zsI ==\u003e 0\n[002] d..1 7828.532867: ncm_unwrap_ntb: K: ncm_unwrap_ntb toprocess: 1025\n[002] d..1 7828.532867: ncm_unwrap_ntb: K: ncm_unwrap_ntb nth: 1751999342\n[002] d..1 7828.532868: ncm_unwrap_ntb: K: ncm_unwrap_ntb seq: 0xce67\n[002] d..1 7828.532868: ncm_unwrap_ntb: K: ncm_unwrap_ntb blk_len: 0x400\n[002] d..1 7828.532868: ncm_unwrap_ntb: K: ncm_unwrap_ntb ndp_len: 0x10\n[002] d..1 7828.532869: ncm_unwrap_ntb: K: Parsed NTB with 1 frames\n\nIn this case, the giveback is of 1025 bytes and block length is 1024.\nThe rest 1 byte (which is 0x00) won\u0027t be parsed resulting in drop of\nall datagrams in rx_list.\n\nSame is case with packets of size 2048:\n[002] d..1 7828.557948: dwc3_gadget_giveback: ep1out:\nreq 0000000011dfd96e length 2049/16384 zsI ==\u003e 0\n[002] d..1 7828.557949: ncm_unwrap_ntb: K: ncm_unwrap_ntb nth: 1751999342\n[002] d..1 7828.557950: ncm_unwrap_ntb: K: ncm_unwrap_ntb blk_len: 0x800\n\nLecroy shows one byte coming in extra confirming that the byte is coming\nin from PC:\n\n Transfer 2959 - Bytes Transferred(1025) Timestamp((18.524 843 590)\n - Transaction 8391 - Data(1025 bytes) Timestamp(18.524 843 590)\n --- Packet 4063861\n Data(1024 bytes)\n Duration(2.117us) Idle(14.700ns) Timestamp(18.524 843 590)\n --- Packet 4063863\n Data(1 byte)\n Duration(66.160ns) Time(282.000ns) Timestamp(18.524 845 722)\n\nAccording to Windows driver, no ZLP is needed if wBlockLength is non-zero,\nbecause the non-zero wBlockLength has already told the function side the\nsize of transfer to be expected. However, there are in-market NCM devices\nthat rely on ZLP as long as the wBlockLength is multiple of wMaxPacketSize.\nTo deal with such devices, it pads an extra 0 at end so the transfer is no\nlonger multiple of wMaxPacketSize.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27405",
"url": "https://www.suse.com/security/cve/CVE-2024-27405"
},
{
"category": "external",
"summary": "SUSE Bug 1224423 for CVE-2024-27405",
"url": "https://bugzilla.suse.com/1224423"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27405"
},
{
"cve": "CVE-2024-27410",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27410"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: reject iftype change with mesh ID change\n\nIt\u0027s currently possible to change the mesh ID when the\ninterface isn\u0027t yet in mesh mode, at the same time as\nchanging it into mesh mode. This leads to an overwrite\nof data in the wdev-\u003eu union for the interface type it\ncurrently has, causing cfg80211_change_iface() to do\nwrong things when switching.\n\nWe could probably allow setting an interface to mesh\nwhile setting the mesh ID at the same time by doing a\ndifferent order of operations here, but realistically\nthere\u0027s no userspace that\u0027s going to do this, so just\ndisallow changes in iftype when setting mesh ID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27410",
"url": "https://www.suse.com/security/cve/CVE-2024-27410"
},
{
"category": "external",
"summary": "SUSE Bug 1224432 for CVE-2024-27410",
"url": "https://bugzilla.suse.com/1224432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27410"
},
{
"cve": "CVE-2024-27411",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27411"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau: keep DMA buffers required for suspend/resume\n\nNouveau deallocates a few buffers post GPU init which are required for GPU suspend/resume to function correctly.\nThis is likely not as big an issue on systems where the NVGPU is the only GPU, but on multi-GPU set ups it leads to a regression where the kernel module errors and results in a system-wide rendering freeze.\n\nThis commit addresses that regression by moving the two buffers required for suspend and resume to be deallocated at driver unload instead of post init.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27411",
"url": "https://www.suse.com/security/cve/CVE-2024-27411"
},
{
"category": "external",
"summary": "SUSE Bug 1224433 for CVE-2024-27411",
"url": "https://bugzilla.suse.com/1224433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27411"
},
{
"cve": "CVE-2024-27412",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27412"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: bq27xxx-i2c: Do not free non existing IRQ\n\nThe bq27xxx i2c-client may not have an IRQ, in which case\nclient-\u003eirq will be 0. bq27xxx_battery_i2c_probe() already has\nan if (client-\u003eirq) check wrapping the request_threaded_irq().\n\nBut bq27xxx_battery_i2c_remove() unconditionally calls\nfree_irq(client-\u003eirq) leading to:\n\n[ 190.310742] ------------[ cut here ]------------\n[ 190.310843] Trying to free already-free IRQ 0\n[ 190.310861] WARNING: CPU: 2 PID: 1304 at kernel/irq/manage.c:1893 free_irq+0x1b8/0x310\n\nFollowed by a backtrace when unbinding the driver. Add\nan if (client-\u003eirq) to bq27xxx_battery_i2c_remove() mirroring\nprobe() to fix this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27412",
"url": "https://www.suse.com/security/cve/CVE-2024-27412"
},
{
"category": "external",
"summary": "SUSE Bug 1224437 for CVE-2024-27412",
"url": "https://bugzilla.suse.com/1224437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27412"
},
{
"cve": "CVE-2024-27413",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27413"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi/capsule-loader: fix incorrect allocation size\n\ngcc-14 notices that the allocation with sizeof(void) on 32-bit architectures\nis not enough for a 64-bit phys_addr_t:\n\ndrivers/firmware/efi/capsule-loader.c: In function \u0027efi_capsule_open\u0027:\ndrivers/firmware/efi/capsule-loader.c:295:24: error: allocation of insufficient size \u00274\u0027 for type \u0027phys_addr_t\u0027 {aka \u0027long long unsigned int\u0027} with size \u00278\u0027 [-Werror=alloc-size]\n 295 | cap_info-\u003ephys = kzalloc(sizeof(void *), GFP_KERNEL);\n | ^\n\nUse the correct type instead here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27413",
"url": "https://www.suse.com/security/cve/CVE-2024-27413"
},
{
"category": "external",
"summary": "SUSE Bug 1224438 for CVE-2024-27413",
"url": "https://bugzilla.suse.com/1224438"
},
{
"category": "external",
"summary": "SUSE Bug 1225315 for CVE-2024-27413",
"url": "https://bugzilla.suse.com/1225315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-27413"
},
{
"cve": "CVE-2024-27416",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27416"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST\n\nIf we received HCI_EV_IO_CAPA_REQUEST while\nHCI_OP_READ_REMOTE_EXT_FEATURES is yet to be responded assume the remote\ndoes support SSP since otherwise this event shouldn\u0027t be generated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27416",
"url": "https://www.suse.com/security/cve/CVE-2024-27416"
},
{
"category": "external",
"summary": "SUSE Bug 1224723 for CVE-2024-27416",
"url": "https://bugzilla.suse.com/1224723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27416"
},
{
"cve": "CVE-2024-27432",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27432"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_eth_soc: fix PPE hanging issue\n\nA patch to resolve an issue was found in MediaTek\u0027s GPL-licensed SDK:\nIn the mtk_ppe_stop() function, the PPE scan mode is not disabled before\ndisabling the PPE. This can potentially lead to a hang during the process\nof disabling the PPE.\n\nWithout this patch, the PPE may experience a hang during the reboot test.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27432",
"url": "https://www.suse.com/security/cve/CVE-2024-27432"
},
{
"category": "external",
"summary": "SUSE Bug 1224716 for CVE-2024-27432",
"url": "https://bugzilla.suse.com/1224716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27432"
},
{
"cve": "CVE-2024-27434",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27434"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: don\u0027t set the MFP flag for the GTK\n\nThe firmware doesn\u0027t need the MFP flag for the GTK, it can even make the\nfirmware crash. in case the AP is configured with: group cipher TKIP and\nMFPC. We would send the GTK with cipher = TKIP and MFP which is of course\nnot possible.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27434",
"url": "https://www.suse.com/security/cve/CVE-2024-27434"
},
{
"category": "external",
"summary": "SUSE Bug 1224710 for CVE-2024-27434",
"url": "https://bugzilla.suse.com/1224710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27434"
},
{
"cve": "CVE-2024-27435",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27435"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: fix reconnection fail due to reserved tag allocation\n\nWe found a issue on production environment while using NVMe over RDMA,\nadmin_q reconnect failed forever while remote target and network is ok.\nAfter dig into it, we found it may caused by a ABBA deadlock due to tag\nallocation. In my case, the tag was hold by a keep alive request\nwaiting inside admin_q, as we quiesced admin_q while reset ctrl, so the\nrequest maked as idle and will not process before reset success. As\nfabric_q shares tagset with admin_q, while reconnect remote target, we\nneed a tag for connect command, but the only one reserved tag was held\nby keep alive command which waiting inside admin_q. As a result, we\nfailed to reconnect admin_q forever. In order to fix this issue, I\nthink we should keep two reserved tags for admin queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27435",
"url": "https://www.suse.com/security/cve/CVE-2024-27435"
},
{
"category": "external",
"summary": "SUSE Bug 1224717 for CVE-2024-27435",
"url": "https://bugzilla.suse.com/1224717"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27435"
},
{
"cve": "CVE-2024-27436",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27436"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Stop parsing channels bits when all channels are found.\n\nIf a usb audio device sets more bits than the amount of channels\nit could write outside of the map array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27436",
"url": "https://www.suse.com/security/cve/CVE-2024-27436"
},
{
"category": "external",
"summary": "SUSE Bug 1224803 for CVE-2024-27436",
"url": "https://bugzilla.suse.com/1224803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27436"
},
{
"cve": "CVE-2024-35784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix deadlock with fiemap and extent locking\n\nWhile working on the patchset to remove extent locking I got a lockdep\nsplat with fiemap and pagefaulting with my new extent lock replacement\nlock.\n\nThis deadlock exists with our normal code, we just don\u0027t have lockdep\nannotations with the extent locking so we\u0027ve never noticed it.\n\nSince we\u0027re copying the fiemap extent to user space on every iteration\nwe have the chance of pagefaulting. Because we hold the extent lock for\nthe entire range we could mkwrite into a range in the file that we have\nmmap\u0027ed. This would deadlock with the following stack trace\n\n[\u003c0\u003e] lock_extent+0x28d/0x2f0\n[\u003c0\u003e] btrfs_page_mkwrite+0x273/0x8a0\n[\u003c0\u003e] do_page_mkwrite+0x50/0xb0\n[\u003c0\u003e] do_fault+0xc1/0x7b0\n[\u003c0\u003e] __handle_mm_fault+0x2fa/0x460\n[\u003c0\u003e] handle_mm_fault+0xa4/0x330\n[\u003c0\u003e] do_user_addr_fault+0x1f4/0x800\n[\u003c0\u003e] exc_page_fault+0x7c/0x1e0\n[\u003c0\u003e] asm_exc_page_fault+0x26/0x30\n[\u003c0\u003e] rep_movs_alternative+0x33/0x70\n[\u003c0\u003e] _copy_to_user+0x49/0x70\n[\u003c0\u003e] fiemap_fill_next_extent+0xc8/0x120\n[\u003c0\u003e] emit_fiemap_extent+0x4d/0xa0\n[\u003c0\u003e] extent_fiemap+0x7f8/0xad0\n[\u003c0\u003e] btrfs_fiemap+0x49/0x80\n[\u003c0\u003e] __x64_sys_ioctl+0x3e1/0xb50\n[\u003c0\u003e] do_syscall_64+0x94/0x1a0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nI wrote an fstest to reproduce this deadlock without my replacement lock\nand verified that the deadlock exists with our existing locking.\n\nTo fix this simply don\u0027t take the extent lock for the entire duration of\nthe fiemap. This is safe in general because we keep track of where we\nare when we\u0027re searching the tree, so if an ordered extent updates in\nthe middle of our fiemap call we\u0027ll still emit the correct extents\nbecause we know what offset we were on before.\n\nThe only place we maintain the lock is searching delalloc. Since the\ndelalloc stuff can change during writeback we want to lock the extent\nrange so we have a consistent view of delalloc at the time we\u0027re\nchecking to see if we need to set the delalloc flag.\n\nWith this patch applied we no longer deadlock with my testcase.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35784",
"url": "https://www.suse.com/security/cve/CVE-2024-35784"
},
{
"category": "external",
"summary": "SUSE Bug 1224804 for CVE-2024-35784",
"url": "https://bugzilla.suse.com/1224804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35784"
},
{
"cve": "CVE-2024-35786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau: fix stale locked mutex in nouveau_gem_ioctl_pushbuf\n\nIf VM_BIND is enabled on the client the legacy submission ioctl can\u0027t be\nused, however if a client tries to do so regardless it will return an\nerror. In this case the clients mutex remained unlocked leading to a\ndeadlock inside nouveau_drm_postclose or any other nouveau ioctl call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35786",
"url": "https://www.suse.com/security/cve/CVE-2024-35786"
},
{
"category": "external",
"summary": "SUSE Bug 1224714 for CVE-2024-35786",
"url": "https://bugzilla.suse.com/1224714"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35786"
},
{
"cve": "CVE-2024-35788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35788"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35788",
"url": "https://www.suse.com/security/cve/CVE-2024-35788"
},
{
"category": "external",
"summary": "SUSE Bug 1224709 for CVE-2024-35788",
"url": "https://bugzilla.suse.com/1224709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35788"
},
{
"cve": "CVE-2024-35789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35789"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes\n\nWhen moving a station out of a VLAN and deleting the VLAN afterwards, the\nfast_rx entry still holds a pointer to the VLAN\u0027s netdev, which can cause\nuse-after-free bugs. Fix this by immediately calling ieee80211_check_fast_rx\nafter the VLAN change.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35789",
"url": "https://www.suse.com/security/cve/CVE-2024-35789"
},
{
"category": "external",
"summary": "SUSE Bug 1224749 for CVE-2024-35789",
"url": "https://bugzilla.suse.com/1224749"
},
{
"category": "external",
"summary": "SUSE Bug 1227320 for CVE-2024-35789",
"url": "https://bugzilla.suse.com/1227320"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-35789"
},
{
"cve": "CVE-2024-35790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35790"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: altmodes/displayport: create sysfs nodes as driver\u0027s default device attribute group\n\nThe DisplayPort driver\u0027s sysfs nodes may be present to the userspace before\ntypec_altmode_set_drvdata() completes in dp_altmode_probe. This means that\na sysfs read can trigger a NULL pointer error by deferencing dp-\u003ehpd in\nhpd_show or dp-\u003elock in pin_assignment_show, as dev_get_drvdata() returns\nNULL in those cases.\n\nRemove manual sysfs node creation in favor of adding attribute group as\ndefault for devices bound to the driver. The ATTRIBUTE_GROUPS() macro is\nnot used here otherwise the path to the sysfs nodes is no longer compliant\nwith the ABI.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35790",
"url": "https://www.suse.com/security/cve/CVE-2024-35790"
},
{
"category": "external",
"summary": "SUSE Bug 1224712 for CVE-2024-35790",
"url": "https://bugzilla.suse.com/1224712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35790"
},
{
"cve": "CVE-2024-35794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm-raid: really frozen sync_thread during suspend\n\n1) commit f52f5c71f3d4 (\"md: fix stopping sync thread\") remove\n MD_RECOVERY_FROZEN from __md_stop_writes() and doesn\u0027t realize that\n dm-raid relies on __md_stop_writes() to frozen sync_thread\n indirectly. Fix this problem by adding MD_RECOVERY_FROZEN in\n md_stop_writes(), and since stop_sync_thread() is only used for\n dm-raid in this case, also move stop_sync_thread() to\n md_stop_writes().\n2) The flag MD_RECOVERY_FROZEN doesn\u0027t mean that sync thread is frozen,\n it only prevent new sync_thread to start, and it can\u0027t stop the\n running sync thread; In order to frozen sync_thread, after seting the\n flag, stop_sync_thread() should be used.\n3) The flag MD_RECOVERY_FROZEN doesn\u0027t mean that writes are stopped, use\n it as condition for md_stop_writes() in raid_postsuspend() doesn\u0027t\n look correct. Consider that reentrant stop_sync_thread() do nothing,\n always call md_stop_writes() in raid_postsuspend().\n4) raid_message can set/clear the flag MD_RECOVERY_FROZEN at anytime,\n and if MD_RECOVERY_FROZEN is cleared while the array is suspended,\n new sync_thread can start unexpected. Fix this by disallow\n raid_message() to change sync_thread status during suspend.\n\nNote that after commit f52f5c71f3d4 (\"md: fix stopping sync thread\"), the\ntest shell/lvconvert-raid-reshape.sh start to hang in stop_sync_thread(),\nand with previous fixes, the test won\u0027t hang there anymore, however, the\ntest will still fail and complain that ext4 is corrupted. And with this\npatch, the test won\u0027t hang due to stop_sync_thread() or fail due to ext4\nis corrupted anymore. However, there is still a deadlock related to\ndm-raid456 that will be fixed in following patches.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35794",
"url": "https://www.suse.com/security/cve/CVE-2024-35794"
},
{
"category": "external",
"summary": "SUSE Bug 1224706 for CVE-2024-35794",
"url": "https://bugzilla.suse.com/1224706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35794"
},
{
"cve": "CVE-2024-35795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix deadlock while reading mqd from debugfs\n\nAn errant disk backup on my desktop got into debugfs and triggered the\nfollowing deadlock scenario in the amdgpu debugfs files. The machine\nalso hard-resets immediately after those lines are printed (although I\nwasn\u0027t able to reproduce that part when reading by hand):\n\n[ 1318.016074][ T1082] ======================================================\n[ 1318.016607][ T1082] WARNING: possible circular locking dependency detected\n[ 1318.017107][ T1082] 6.8.0-rc7-00015-ge0c8221b72c0 #17 Not tainted\n[ 1318.017598][ T1082] ------------------------------------------------------\n[ 1318.018096][ T1082] tar/1082 is trying to acquire lock:\n[ 1318.018585][ T1082] ffff98c44175d6a0 (\u0026mm-\u003emmap_lock){++++}-{3:3}, at: __might_fault+0x40/0x80\n[ 1318.019084][ T1082]\n[ 1318.019084][ T1082] but task is already holding lock:\n[ 1318.020052][ T1082] ffff98c4c13f55f8 (reservation_ww_class_mutex){+.+.}-{3:3}, at: amdgpu_debugfs_mqd_read+0x6a/0x250 [amdgpu]\n[ 1318.020607][ T1082]\n[ 1318.020607][ T1082] which lock already depends on the new lock.\n[ 1318.020607][ T1082]\n[ 1318.022081][ T1082]\n[ 1318.022081][ T1082] the existing dependency chain (in reverse order) is:\n[ 1318.023083][ T1082]\n[ 1318.023083][ T1082] -\u003e #2 (reservation_ww_class_mutex){+.+.}-{3:3}:\n[ 1318.024114][ T1082] __ww_mutex_lock.constprop.0+0xe0/0x12f0\n[ 1318.024639][ T1082] ww_mutex_lock+0x32/0x90\n[ 1318.025161][ T1082] dma_resv_lockdep+0x18a/0x330\n[ 1318.025683][ T1082] do_one_initcall+0x6a/0x350\n[ 1318.026210][ T1082] kernel_init_freeable+0x1a3/0x310\n[ 1318.026728][ T1082] kernel_init+0x15/0x1a0\n[ 1318.027242][ T1082] ret_from_fork+0x2c/0x40\n[ 1318.027759][ T1082] ret_from_fork_asm+0x11/0x20\n[ 1318.028281][ T1082]\n[ 1318.028281][ T1082] -\u003e #1 (reservation_ww_class_acquire){+.+.}-{0:0}:\n[ 1318.029297][ T1082] dma_resv_lockdep+0x16c/0x330\n[ 1318.029790][ T1082] do_one_initcall+0x6a/0x350\n[ 1318.030263][ T1082] kernel_init_freeable+0x1a3/0x310\n[ 1318.030722][ T1082] kernel_init+0x15/0x1a0\n[ 1318.031168][ T1082] ret_from_fork+0x2c/0x40\n[ 1318.031598][ T1082] ret_from_fork_asm+0x11/0x20\n[ 1318.032011][ T1082]\n[ 1318.032011][ T1082] -\u003e #0 (\u0026mm-\u003emmap_lock){++++}-{3:3}:\n[ 1318.032778][ T1082] __lock_acquire+0x14bf/0x2680\n[ 1318.033141][ T1082] lock_acquire+0xcd/0x2c0\n[ 1318.033487][ T1082] __might_fault+0x58/0x80\n[ 1318.033814][ T1082] amdgpu_debugfs_mqd_read+0x103/0x250 [amdgpu]\n[ 1318.034181][ T1082] full_proxy_read+0x55/0x80\n[ 1318.034487][ T1082] vfs_read+0xa7/0x360\n[ 1318.034788][ T1082] ksys_read+0x70/0xf0\n[ 1318.035085][ T1082] do_syscall_64+0x94/0x180\n[ 1318.035375][ T1082] entry_SYSCALL_64_after_hwframe+0x46/0x4e\n[ 1318.035664][ T1082]\n[ 1318.035664][ T1082] other info that might help us debug this:\n[ 1318.035664][ T1082]\n[ 1318.036487][ T1082] Chain exists of:\n[ 1318.036487][ T1082] \u0026mm-\u003emmap_lock --\u003e reservation_ww_class_acquire --\u003e reservation_ww_class_mutex\n[ 1318.036487][ T1082]\n[ 1318.037310][ T1082] Possible unsafe locking scenario:\n[ 1318.037310][ T1082]\n[ 1318.037838][ T1082] CPU0 CPU1\n[ 1318.038101][ T1082] ---- ----\n[ 1318.038350][ T1082] lock(reservation_ww_class_mutex);\n[ 1318.038590][ T1082] lock(reservation_ww_class_acquire);\n[ 1318.038839][ T1082] lock(reservation_ww_class_mutex);\n[ 1318.039083][ T1082] rlock(\u0026mm-\u003emmap_lock);\n[ 1318.039328][ T1082]\n[ 1318.039328][ T1082] *** DEADLOCK ***\n[ 1318.039328][ T1082]\n[ 1318.040029][ T1082] 1 lock held by tar/1082:\n[ 1318.040259][ T1082] #0: ffff98c4c13f55f8 (reservation_ww_class_mutex){+.+.}-{3:3}, at: amdgpu_debugfs_mqd_read+0x6a/0x250 [amdgpu]\n[ 1318.040560][ T1082]\n[ 1318.040560][ T1082] stack backtrace:\n[\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35795",
"url": "https://www.suse.com/security/cve/CVE-2024-35795"
},
{
"category": "external",
"summary": "SUSE Bug 1224634 for CVE-2024-35795",
"url": "https://bugzilla.suse.com/1224634"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35795"
},
{
"cve": "CVE-2024-35796",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35796"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ll_temac: platform_get_resource replaced by wrong function\n\nThe function platform_get_resource was replaced with\ndevm_platform_ioremap_resource_byname and is called using 0 as name.\n\nThis eventually ends up in platform_get_resource_byname in the call\nstack, where it causes a null pointer in strcmp.\n\n\tif (type == resource_type(r) \u0026\u0026 !strcmp(r-\u003ename, name))\n\nIt should have been replaced with devm_platform_ioremap_resource.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35796",
"url": "https://www.suse.com/security/cve/CVE-2024-35796"
},
{
"category": "external",
"summary": "SUSE Bug 1224615 for CVE-2024-35796",
"url": "https://bugzilla.suse.com/1224615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35796"
},
{
"cve": "CVE-2024-35799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Prevent crash when disable stream\n\n[Why]\nDisabling stream encoder invokes a function that no longer exists.\n\n[How]\nCheck if the function declaration is NULL in disable stream encoder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35799",
"url": "https://www.suse.com/security/cve/CVE-2024-35799"
},
{
"category": "external",
"summary": "SUSE Bug 1224740 for CVE-2024-35799",
"url": "https://bugzilla.suse.com/1224740"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35799"
},
{
"cve": "CVE-2024-35800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: fix panic in kdump kernel\n\nCheck if get_next_variable() is actually valid pointer before\ncalling it. In kdump kernel this method is set to NULL that causes\npanic during the kexec-ed kernel boot.\n\nTested with QEMU and OVMF firmware.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35800",
"url": "https://www.suse.com/security/cve/CVE-2024-35800"
},
{
"category": "external",
"summary": "SUSE Bug 1224507 for CVE-2024-35800",
"url": "https://bugzilla.suse.com/1224507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35800"
},
{
"cve": "CVE-2024-35801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Keep xfd_state in sync with MSR_IA32_XFD\n\nCommit 672365477ae8 (\"x86/fpu: Update XFD state where required\") and\ncommit 8bf26758ca96 (\"x86/fpu: Add XFD state to fpstate\") introduced a\nper CPU variable xfd_state to keep the MSR_IA32_XFD value cached, in\norder to avoid unnecessary writes to the MSR.\n\nOn CPU hotplug MSR_IA32_XFD is reset to the init_fpstate.xfd, which\nwipes out any stale state. But the per CPU cached xfd value is not\nreset, which brings them out of sync.\n\nAs a consequence a subsequent xfd_update_state() might fail to update\nthe MSR which in turn can result in XRSTOR raising a #NM in kernel\nspace, which crashes the kernel.\n\nTo fix this, introduce xfd_set_state() to write xfd_state together\nwith MSR_IA32_XFD, and use it in all places that set MSR_IA32_XFD.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35801",
"url": "https://www.suse.com/security/cve/CVE-2024-35801"
},
{
"category": "external",
"summary": "SUSE Bug 1224732 for CVE-2024-35801",
"url": "https://bugzilla.suse.com/1224732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35801"
},
{
"cve": "CVE-2024-35806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35806"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: fsl: qbman: Always disable interrupts when taking cgr_lock\n\nsmp_call_function_single disables IRQs when executing the callback. To\nprevent deadlocks, we must disable IRQs when taking cgr_lock elsewhere.\nThis is already done by qman_update_cgr and qman_delete_cgr; fix the\nother lockers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35806",
"url": "https://www.suse.com/security/cve/CVE-2024-35806"
},
{
"category": "external",
"summary": "SUSE Bug 1224699 for CVE-2024-35806",
"url": "https://bugzilla.suse.com/1224699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35806"
},
{
"cve": "CVE-2024-35808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/dm-raid: don\u0027t call md_reap_sync_thread() directly\n\nCurrently md_reap_sync_thread() is called from raid_message() directly\nwithout holding \u0027reconfig_mutex\u0027, this is definitely unsafe because\nmd_reap_sync_thread() can change many fields that is protected by\n\u0027reconfig_mutex\u0027.\n\nHowever, hold \u0027reconfig_mutex\u0027 here is still problematic because this\nwill cause deadlock, for example, commit 130443d60b1b (\"md: refactor\nidle/frozen_sync_thread() to fix deadlock\").\n\nFix this problem by using stop_sync_thread() to unregister sync_thread,\nlike md/raid did.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35808",
"url": "https://www.suse.com/security/cve/CVE-2024-35808"
},
{
"category": "external",
"summary": "SUSE Bug 1224623 for CVE-2024-35808",
"url": "https://bugzilla.suse.com/1224623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35808"
},
{
"cve": "CVE-2024-35809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/PM: Drain runtime-idle callbacks before driver removal\n\nA race condition between the .runtime_idle() callback and the .remove()\ncallback in the rtsx_pcr PCI driver leads to a kernel crash due to an\nunhandled page fault [1].\n\nThe problem is that rtsx_pci_runtime_idle() is not expected to be running\nafter pm_runtime_get_sync() has been called, but the latter doesn\u0027t really\nguarantee that. It only guarantees that the suspend and resume callbacks\nwill not be running when it returns.\n\nHowever, if a .runtime_idle() callback is already running when\npm_runtime_get_sync() is called, the latter will notice that the runtime PM\nstatus of the device is RPM_ACTIVE and it will return right away without\nwaiting for the former to complete. In fact, it cannot wait for\n.runtime_idle() to complete because it may be called from that callback (it\narguably does not make much sense to do that, but it is not strictly\nprohibited).\n\nThus in general, whoever is providing a .runtime_idle() callback needs\nto protect it from running in parallel with whatever code runs after\npm_runtime_get_sync(). [Note that .runtime_idle() will not start after\npm_runtime_get_sync() has returned, but it may continue running then if it\nhas started earlier.]\n\nOne way to address that race condition is to call pm_runtime_barrier()\nafter pm_runtime_get_sync() (not before it, because a nonzero value of the\nruntime PM usage counter is necessary to prevent runtime PM callbacks from\nbeing invoked) to wait for the .runtime_idle() callback to complete should\nit be running at that point. A suitable place for doing that is in\npci_device_remove() which calls pm_runtime_get_sync() before removing the\ndriver, so it may as well call pm_runtime_barrier() subsequently, which\nwill prevent the race in question from occurring, not just in the rtsx_pcr\ndriver, but in any PCI drivers providing .runtime_idle() callbacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35809",
"url": "https://www.suse.com/security/cve/CVE-2024-35809"
},
{
"category": "external",
"summary": "SUSE Bug 1224738 for CVE-2024-35809",
"url": "https://bugzilla.suse.com/1224738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35809"
},
{
"cve": "CVE-2024-35810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35810"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix the lifetime of the bo cursor memory\n\nThe cleanup can be dispatched while the atomic update is still active,\nwhich means that the memory acquired in the atomic update needs to\nnot be invalidated by the cleanup. The buffer objects in vmw_plane_state\ninstead of using the builtin map_and_cache were trying to handle\nthe lifetime of the mapped memory themselves, leading to crashes.\n\nUse the map_and_cache instead of trying to manage the lifetime of the\nbuffer objects held by the vmw_plane_state.\n\nFixes kernel oops\u0027es in IGT\u0027s kms_cursor_legacy forked-bo.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35810",
"url": "https://www.suse.com/security/cve/CVE-2024-35810"
},
{
"category": "external",
"summary": "SUSE Bug 1224626 for CVE-2024-35810",
"url": "https://bugzilla.suse.com/1224626"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35810"
},
{
"cve": "CVE-2024-35811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35811"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach\n\nThis is the candidate patch of CVE-2023-47233 :\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-47233\n\nIn brcm80211 driver,it starts with the following invoking chain\nto start init a timeout worker:\n\n-\u003ebrcmf_usb_probe\n -\u003ebrcmf_usb_probe_cb\n -\u003ebrcmf_attach\n -\u003ebrcmf_bus_started\n -\u003ebrcmf_cfg80211_attach\n -\u003ewl_init_priv\n -\u003ebrcmf_init_escan\n -\u003eINIT_WORK(\u0026cfg-\u003eescan_timeout_work,\n\t\t brcmf_cfg80211_escan_timeout_worker);\n\nIf we disconnect the USB by hotplug, it will call\nbrcmf_usb_disconnect to make cleanup. The invoking chain is :\n\nbrcmf_usb_disconnect\n -\u003ebrcmf_usb_disconnect_cb\n -\u003ebrcmf_detach\n -\u003ebrcmf_cfg80211_detach\n -\u003ekfree(cfg);\n\nWhile the timeout woker may still be running. This will cause\na use-after-free bug on cfg in brcmf_cfg80211_escan_timeout_worker.\n\nFix it by deleting the timer and canceling the worker in\nbrcmf_cfg80211_detach.\n\n[arend.vanspriel@broadcom.com: keep timer delete as is and cancel work just before free]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35811",
"url": "https://www.suse.com/security/cve/CVE-2024-35811"
},
{
"category": "external",
"summary": "SUSE Bug 1224592 for CVE-2024-35811",
"url": "https://bugzilla.suse.com/1224592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35811"
},
{
"cve": "CVE-2024-35812",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35812"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35812",
"url": "https://www.suse.com/security/cve/CVE-2024-35812"
},
{
"category": "external",
"summary": "SUSE Bug 1224624 for CVE-2024-35812",
"url": "https://bugzilla.suse.com/1224624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35812"
},
{
"cve": "CVE-2024-35813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: core: Avoid negative index with array access\n\nCommit 4d0c8d0aef63 (\"mmc: core: Use mrq.sbc in close-ended ffu\") assigns\nprev_idata = idatas[i - 1], but doesn\u0027t check that the iterator i is\ngreater than zero. Let\u0027s fix this by adding a check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35813",
"url": "https://www.suse.com/security/cve/CVE-2024-35813"
},
{
"category": "external",
"summary": "SUSE Bug 1224618 for CVE-2024-35813",
"url": "https://bugzilla.suse.com/1224618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35813"
},
{
"cve": "CVE-2024-35815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion\n\nThe first kiocb_set_cancel_fn() argument may point at a struct kiocb\nthat is not embedded inside struct aio_kiocb. With the current code,\ndepending on the compiler, the req-\u003eki_ctx read happens either before\nthe IOCB_AIO_RW test or after that test. Move the req-\u003eki_ctx read such\nthat it is guaranteed that the IOCB_AIO_RW test happens first.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35815",
"url": "https://www.suse.com/security/cve/CVE-2024-35815"
},
{
"category": "external",
"summary": "SUSE Bug 1224685 for CVE-2024-35815",
"url": "https://bugzilla.suse.com/1224685"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35815"
},
{
"cve": "CVE-2024-35817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag\n\nOtherwise after the GTT bo is released, the GTT and gart space is freed\nbut amdgpu_ttm_backend_unbind will not clear the gart page table entry\nand leave valid mapping entry pointing to the stale system page. Then\nif GPU access the gart address mistakely, it will read undefined value\ninstead page fault, harder to debug and reproduce the real issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35817",
"url": "https://www.suse.com/security/cve/CVE-2024-35817"
},
{
"category": "external",
"summary": "SUSE Bug 1224736 for CVE-2024-35817",
"url": "https://bugzilla.suse.com/1224736"
},
{
"category": "external",
"summary": "SUSE Bug 1225313 for CVE-2024-35817",
"url": "https://bugzilla.suse.com/1225313"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-35817"
},
{
"cve": "CVE-2024-35819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: fsl: qbman: Use raw spinlock for cgr_lock\n\nsmp_call_function always runs its callback in hard IRQ context, even on\nPREEMPT_RT, where spinlocks can sleep. So we need to use a raw spinlock\nfor cgr_lock to ensure we aren\u0027t waiting on a sleeping task.\n\nAlthough this bug has existed for a while, it was not apparent until\ncommit ef2a8d5478b9 (\"net: dpaa: Adjust queue depth on rate change\")\nwhich invokes smp_call_function_single via qman_update_cgr_safe every\ntime a link goes up or down.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35819",
"url": "https://www.suse.com/security/cve/CVE-2024-35819"
},
{
"category": "external",
"summary": "SUSE Bug 1224683 for CVE-2024-35819",
"url": "https://bugzilla.suse.com/1224683"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35819"
},
{
"cve": "CVE-2024-35821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: Set page uptodate in the correct place\n\nPage cache reads are lockless, so setting the freshly allocated page\nuptodate before we\u0027ve overwritten it with the data it\u0027s supposed to have\nin it will allow a simultaneous reader to see old data. Move the call\nto SetPageUptodate into ubifs_write_end(), which is after we copied the\nnew data into the page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35821",
"url": "https://www.suse.com/security/cve/CVE-2024-35821"
},
{
"category": "external",
"summary": "SUSE Bug 1224629 for CVE-2024-35821",
"url": "https://bugzilla.suse.com/1224629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35821"
},
{
"cve": "CVE-2024-35822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: udc: remove warning when queue disabled ep\n\nIt is possible trigger below warning message from mass storage function,\n\nWARNING: CPU: 6 PID: 3839 at drivers/usb/gadget/udc/core.c:294 usb_ep_queue+0x7c/0x104\npc : usb_ep_queue+0x7c/0x104\nlr : fsg_main_thread+0x494/0x1b3c\n\nRoot cause is mass storage function try to queue request from main thread,\nbut other thread may already disable ep when function disable.\n\nAs there is no function failure in the driver, in order to avoid effort\nto fix warning, change WARN_ON_ONCE() in usb_ep_queue() to pr_debug().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35822",
"url": "https://www.suse.com/security/cve/CVE-2024-35822"
},
{
"category": "external",
"summary": "SUSE Bug 1224739 for CVE-2024-35822",
"url": "https://bugzilla.suse.com/1224739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35822"
},
{
"cve": "CVE-2024-35823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35823"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvt: fix unicode buffer corruption when deleting characters\n\nThis is the same issue that was fixed for the VGA text buffer in commit\n39cdb68c64d8 (\"vt: fix memory overlapping when deleting chars in the\nbuffer\"). The cure is also the same i.e. replace memcpy() with memmove()\ndue to the overlaping buffers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35823",
"url": "https://www.suse.com/security/cve/CVE-2024-35823"
},
{
"category": "external",
"summary": "SUSE Bug 1224692 for CVE-2024-35823",
"url": "https://bugzilla.suse.com/1224692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35823"
},
{
"cve": "CVE-2024-35824",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35824"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on suspend/resume\n\nWhen not configured for wakeup lis3lv02d_i2c_suspend() will call\nlis3lv02d_poweroff() even if the device has already been turned off\nby the runtime-suspend handler and if configured for wakeup and\nthe device is runtime-suspended at this point then it is not turned\nback on to serve as a wakeup source.\n\nBefore commit b1b9f7a49440 (\"misc: lis3lv02d_i2c: Add missing setting\nof the reg_ctrl callback\"), lis3lv02d_poweroff() failed to disable\nthe regulators which as a side effect made calling poweroff() twice ok.\n\nNow that poweroff() correctly disables the regulators, doing this twice\ntriggers a WARN() in the regulator core:\n\nunbalanced disables for regulator-dummy\nWARNING: CPU: 1 PID: 92 at drivers/regulator/core.c:2999 _regulator_disable\n...\n\nFix lis3lv02d_i2c_suspend() to not call poweroff() a second time if\nalready runtime-suspended and add a poweron() call when necessary to\nmake wakeup work.\n\nlis3lv02d_i2c_resume() has similar issues, with an added weirness that\nit always powers on the device if it is runtime suspended, after which\nthe first runtime-resume will call poweron() again, causing the enabled\ncount for the regulator to increase by 1 every suspend/resume. These\nunbalanced regulator_enable() calls cause the regulator to never\nbe turned off and trigger the following WARN() on driver unbind:\n\nWARNING: CPU: 1 PID: 1724 at drivers/regulator/core.c:2396 _regulator_put\n\nFix this by making lis3lv02d_i2c_resume() mirror the new suspend().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35824",
"url": "https://www.suse.com/security/cve/CVE-2024-35824"
},
{
"category": "external",
"summary": "SUSE Bug 1224609 for CVE-2024-35824",
"url": "https://bugzilla.suse.com/1224609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35824"
},
{
"cve": "CVE-2024-35825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35825"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: ncm: Fix handling of zero block length packets\n\nWhile connecting to a Linux host with CDC_NCM_NTB_DEF_SIZE_TX\nset to 65536, it has been observed that we receive short packets,\nwhich come at interval of 5-10 seconds sometimes and have block\nlength zero but still contain 1-2 valid datagrams present.\n\nAccording to the NCM spec:\n\n\"If wBlockLength = 0x0000, the block is terminated by a\nshort packet. In this case, the USB transfer must still\nbe shorter than dwNtbInMaxSize or dwNtbOutMaxSize. If\nexactly dwNtbInMaxSize or dwNtbOutMaxSize bytes are sent,\nand the size is a multiple of wMaxPacketSize for the\ngiven pipe, then no ZLP shall be sent.\n\nwBlockLength= 0x0000 must be used with extreme care, because\nof the possibility that the host and device may get out of\nsync, and because of test issues.\n\nwBlockLength = 0x0000 allows the sender to reduce latency by\nstarting to send a very large NTB, and then shortening it when\nthe sender discovers that there\u0027s not sufficient data to justify\nsending a large NTB\"\n\nHowever, there is a potential issue with the current implementation,\nas it checks for the occurrence of multiple NTBs in a single\ngiveback by verifying if the leftover bytes to be processed is zero\nor not. If the block length reads zero, we would process the same\nNTB infintely because the leftover bytes is never zero and it leads\nto a crash. Fix this by bailing out if block length reads zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35825",
"url": "https://www.suse.com/security/cve/CVE-2024-35825"
},
{
"category": "external",
"summary": "SUSE Bug 1224681 for CVE-2024-35825",
"url": "https://bugzilla.suse.com/1224681"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35825"
},
{
"cve": "CVE-2024-35828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer()\n\nIn the for statement of lbs_allocate_cmd_buffer(), if the allocation of\ncmdarray[i].cmdbuf fails, both cmdarray and cmdarray[i].cmdbuf needs to\nbe freed. Otherwise, there will be memleaks in lbs_allocate_cmd_buffer().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35828",
"url": "https://www.suse.com/security/cve/CVE-2024-35828"
},
{
"category": "external",
"summary": "SUSE Bug 1224622 for CVE-2024-35828",
"url": "https://bugzilla.suse.com/1224622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35828"
},
{
"cve": "CVE-2024-35829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/lima: fix a memleak in lima_heap_alloc\n\nWhen lima_vm_map_bo fails, the resources need to be deallocated, or\nthere will be memleaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35829",
"url": "https://www.suse.com/security/cve/CVE-2024-35829"
},
{
"category": "external",
"summary": "SUSE Bug 1224707 for CVE-2024-35829",
"url": "https://bugzilla.suse.com/1224707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35829"
},
{
"cve": "CVE-2024-35830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35830"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: tc358743: register v4l2 async device only after successful setup\n\nEnsure the device has been setup correctly before registering the v4l2\nasync device, thus allowing userspace to access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35830",
"url": "https://www.suse.com/security/cve/CVE-2024-35830"
},
{
"category": "external",
"summary": "SUSE Bug 1224680 for CVE-2024-35830",
"url": "https://bugzilla.suse.com/1224680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35830"
},
{
"cve": "CVE-2024-35833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35833"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: fsl-qdma: Fix a memory leak related to the queue command DMA\n\nThis dma_alloc_coherent() is undone neither in the remove function, nor in\nthe error handling path of fsl_qdma_probe().\n\nSwitch to the managed version to fix both issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35833",
"url": "https://www.suse.com/security/cve/CVE-2024-35833"
},
{
"category": "external",
"summary": "SUSE Bug 1224632 for CVE-2024-35833",
"url": "https://bugzilla.suse.com/1224632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35833"
},
{
"cve": "CVE-2024-35834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35834"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: recycle buffer in case Rx queue was full\n\nAdd missing xsk_buff_free() call when __xsk_rcv_zc() failed to produce\ndescriptor to XSK Rx queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35834",
"url": "https://www.suse.com/security/cve/CVE-2024-35834"
},
{
"category": "external",
"summary": "SUSE Bug 1224620 for CVE-2024-35834",
"url": "https://bugzilla.suse.com/1224620"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35834"
},
{
"cve": "CVE-2024-35835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: fix a double-free in arfs_create_groups\n\nWhen `in` allocated by kvzalloc fails, arfs_create_groups will free\nft-\u003eg and return an error. However, arfs_create_table, the only caller of\narfs_create_groups, will hold this error and call to\nmlx5e_destroy_flow_table, in which the ft-\u003eg will be freed again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35835",
"url": "https://www.suse.com/security/cve/CVE-2024-35835"
},
{
"category": "external",
"summary": "SUSE Bug 1224605 for CVE-2024-35835",
"url": "https://bugzilla.suse.com/1224605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35835"
},
{
"cve": "CVE-2024-35836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35836"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndpll: fix pin dump crash for rebound module\n\nWhen a kernel module is unbound but the pin resources were not entirely\nfreed (other kernel module instance of the same PCI device have had kept\nthe reference to that pin), and kernel module is again bound, the pin\nproperties would not be updated (the properties are only assigned when\nmemory for the pin is allocated), prop pointer still points to the\nkernel module memory of the kernel module which was deallocated on the\nunbind.\n\nIf the pin dump is invoked in this state, the result is a kernel crash.\nPrevent the crash by storing persistent pin properties in dpll subsystem,\ncopy the content from the kernel module when pin is allocated, instead of\nusing memory of the kernel module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35836",
"url": "https://www.suse.com/security/cve/CVE-2024-35836"
},
{
"category": "external",
"summary": "SUSE Bug 1224633 for CVE-2024-35836",
"url": "https://bugzilla.suse.com/1224633"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35836"
},
{
"cve": "CVE-2024-35837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35837"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mvpp2: clear BM pool before initialization\n\nRegister value persist after booting the kernel using\nkexec which results in kernel panic. Thus clear the\nBM pool registers before initialisation to fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35837",
"url": "https://www.suse.com/security/cve/CVE-2024-35837"
},
{
"category": "external",
"summary": "SUSE Bug 1224500 for CVE-2024-35837",
"url": "https://bugzilla.suse.com/1224500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35837"
},
{
"cve": "CVE-2024-35838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35838"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: fix potential sta-link leak\n\nWhen a station is allocated, links are added but not\nset to valid yet (e.g. during connection to an AP MLD),\nwe might remove the station without ever marking links\nvalid, and leak them. Fix that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35838",
"url": "https://www.suse.com/security/cve/CVE-2024-35838"
},
{
"category": "external",
"summary": "SUSE Bug 1224613 for CVE-2024-35838",
"url": "https://bugzilla.suse.com/1224613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35838"
},
{
"cve": "CVE-2024-35839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bridge: replace physindev with physinif in nf_bridge_info\n\nAn skb can be added to a neigh-\u003earp_queue while waiting for an arp\nreply. Where original skb\u0027s skb-\u003edev can be different to neigh\u0027s\nneigh-\u003edev. For instance in case of bridging dnated skb from one veth to\nanother, the skb would be added to a neigh-\u003earp_queue of the bridge.\n\nAs skb-\u003edev can be reset back to nf_bridge-\u003ephysindev and used, and as\nthere is no explicit mechanism that prevents this physindev from been\nfreed under us (for instance neigh_flush_dev doesn\u0027t cleanup skbs from\ndifferent device\u0027s neigh queue) we can crash on e.g. this stack:\n\narp_process\n neigh_update\n skb = __skb_dequeue(\u0026neigh-\u003earp_queue)\n neigh_resolve_output(..., skb)\n ...\n br_nf_dev_xmit\n br_nf_pre_routing_finish_bridge_slow\n skb-\u003edev = nf_bridge-\u003ephysindev\n br_handle_frame_finish\n\nLet\u0027s use plain ifindex instead of net_device link. To peek into the\noriginal net_device we will use dev_get_by_index_rcu(). Thus either we\nget device and are safe to use it or we don\u0027t get it and drop skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35839",
"url": "https://www.suse.com/security/cve/CVE-2024-35839"
},
{
"category": "external",
"summary": "SUSE Bug 1224726 for CVE-2024-35839",
"url": "https://bugzilla.suse.com/1224726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35839"
},
{
"cve": "CVE-2024-35841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tls, fix WARNIING in __sk_msg_free\n\nA splice with MSG_SPLICE_PAGES will cause tls code to use the\ntls_sw_sendmsg_splice path in the TLS sendmsg code to move the user\nprovided pages from the msg into the msg_pl. This will loop over the\nmsg until msg_pl is full, checked by sk_msg_full(msg_pl). The user\ncan also set the MORE flag to hint stack to delay sending until receiving\nmore pages and ideally a full buffer.\n\nIf the user adds more pages to the msg than can fit in the msg_pl\nscatterlist (MAX_MSG_FRAGS) we should ignore the MORE flag and send\nthe buffer anyways.\n\nWhat actually happens though is we abort the msg to msg_pl scatterlist\nsetup and then because we forget to set \u0027full record\u0027 indicating we\ncan no longer consume data without a send we fallthrough to the \u0027continue\u0027\npath which will check if msg_data_left(msg) has more bytes to send and\nthen attempts to fit them in the already full msg_pl. Then next\niteration of sender doing send will encounter a full msg_pl and throw\nthe warning in the syzbot report.\n\nTo fix simply check if we have a full_record in splice code path and\nif not send the msg regardless of MORE flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35841",
"url": "https://www.suse.com/security/cve/CVE-2024-35841"
},
{
"category": "external",
"summary": "SUSE Bug 1224687 for CVE-2024-35841",
"url": "https://bugzilla.suse.com/1224687"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35841"
},
{
"cve": "CVE-2024-35842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35842"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: mediatek: sof-common: Add NULL check for normal_link string\n\nIt\u0027s not granted that all entries of struct sof_conn_stream declare\na `normal_link` (a non-SOF, direct link) string, and this is the case\nfor SoCs that support only SOF paths (hence do not support both direct\nand SOF usecases).\n\nFor example, in the case of MT8188 there is no normal_link string in\nany of the sof_conn_stream entries and there will be more drivers\ndoing that in the future.\n\nTo avoid possible NULL pointer KPs, add a NULL check for `normal_link`.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35842",
"url": "https://www.suse.com/security/cve/CVE-2024-35842"
},
{
"category": "external",
"summary": "SUSE Bug 1224688 for CVE-2024-35842",
"url": "https://bugzilla.suse.com/1224688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35842"
},
{
"cve": "CVE-2024-35845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: dbg-tlv: ensure NUL termination\n\nThe iwl_fw_ini_debug_info_tlv is used as a string, so we must\nensure the string is terminated correctly before using it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35845",
"url": "https://www.suse.com/security/cve/CVE-2024-35845"
},
{
"category": "external",
"summary": "SUSE Bug 1224731 for CVE-2024-35845",
"url": "https://bugzilla.suse.com/1224731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35845"
},
{
"cve": "CVE-2024-35847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35847"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/gic-v3-its: Prevent double free on error\n\nThe error handling path in its_vpe_irq_domain_alloc() causes a double free\nwhen its_vpe_init() fails after successfully allocating at least one\ninterrupt. This happens because its_vpe_irq_domain_free() frees the\ninterrupts along with the area bitmap and the vprop_page and\nits_vpe_irq_domain_alloc() subsequently frees the area bitmap and the\nvprop_page again.\n\nFix this by unconditionally invoking its_vpe_irq_domain_free() which\nhandles all cases correctly and by removing the bitmap/vprop_page freeing\nfrom its_vpe_irq_domain_alloc().\n\n[ tglx: Massaged change log ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35847",
"url": "https://www.suse.com/security/cve/CVE-2024-35847"
},
{
"category": "external",
"summary": "SUSE Bug 1224697 for CVE-2024-35847",
"url": "https://bugzilla.suse.com/1224697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35847"
},
{
"cve": "CVE-2024-35849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35849"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix information leak in btrfs_ioctl_logical_to_ino()\n\nSyzbot reported the following information leak for in\nbtrfs_ioctl_logical_to_ino():\n\n BUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline]\n BUG: KMSAN: kernel-infoleak in _copy_to_user+0xbc/0x110 lib/usercopy.c:40\n instrument_copy_to_user include/linux/instrumented.h:114 [inline]\n _copy_to_user+0xbc/0x110 lib/usercopy.c:40\n copy_to_user include/linux/uaccess.h:191 [inline]\n btrfs_ioctl_logical_to_ino+0x440/0x750 fs/btrfs/ioctl.c:3499\n btrfs_ioctl+0x714/0x1260\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0x261/0x450 fs/ioctl.c:890\n __x64_sys_ioctl+0x96/0xe0 fs/ioctl.c:890\n x64_sys_call+0x1883/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:17\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n Uninit was created at:\n __kmalloc_large_node+0x231/0x370 mm/slub.c:3921\n __do_kmalloc_node mm/slub.c:3954 [inline]\n __kmalloc_node+0xb07/0x1060 mm/slub.c:3973\n kmalloc_node include/linux/slab.h:648 [inline]\n kvmalloc_node+0xc0/0x2d0 mm/util.c:634\n kvmalloc include/linux/slab.h:766 [inline]\n init_data_container+0x49/0x1e0 fs/btrfs/backref.c:2779\n btrfs_ioctl_logical_to_ino+0x17c/0x750 fs/btrfs/ioctl.c:3480\n btrfs_ioctl+0x714/0x1260\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0x261/0x450 fs/ioctl.c:890\n __x64_sys_ioctl+0x96/0xe0 fs/ioctl.c:890\n x64_sys_call+0x1883/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:17\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n Bytes 40-65535 of 65536 are uninitialized\n Memory access of size 65536 starts at ffff888045a40000\n\nThis happens, because we\u0027re copying a \u0027struct btrfs_data_container\u0027 back\nto user-space. This btrfs_data_container is allocated in\n\u0027init_data_container()\u0027 via kvmalloc(), which does not zero-fill the\nmemory.\n\nFix this by using kvzalloc() which zeroes out the memory on allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35849",
"url": "https://www.suse.com/security/cve/CVE-2024-35849"
},
{
"category": "external",
"summary": "SUSE Bug 1224733 for CVE-2024-35849",
"url": "https://bugzilla.suse.com/1224733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35849"
},
{
"cve": "CVE-2024-35850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix NULL-deref on non-serdev setup\n\nQualcomm ROME controllers can be registered from the Bluetooth line\ndiscipline and in this case the HCI UART serdev pointer is NULL.\n\nAdd the missing sanity check to prevent a NULL-pointer dereference when\nsetup() is called for a non-serdev controller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35850",
"url": "https://www.suse.com/security/cve/CVE-2024-35850"
},
{
"category": "external",
"summary": "SUSE Bug 1224600 for CVE-2024-35850",
"url": "https://bugzilla.suse.com/1224600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35850"
},
{
"cve": "CVE-2024-35851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix NULL-deref on non-serdev suspend\n\nQualcomm ROME controllers can be registered from the Bluetooth line\ndiscipline and in this case the HCI UART serdev pointer is NULL.\n\nAdd the missing sanity check to prevent a NULL-pointer dereference when\nwakeup() is called for a non-serdev controller during suspend.\n\nJust return true for now to restore the original behaviour and address\nthe crash with pre-6.2 kernels, which do not have commit e9b3e5b8c657\n(\"Bluetooth: hci_qca: only assign wakeup with serial port support\") that\ncauses the crash to happen already at setup() time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35851",
"url": "https://www.suse.com/security/cve/CVE-2024-35851"
},
{
"category": "external",
"summary": "SUSE Bug 1224509 for CVE-2024-35851",
"url": "https://bugzilla.suse.com/1224509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35851"
},
{
"cve": "CVE-2024-35875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35875"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/coco: Require seeding RNG with RDRAND on CoCo systems\n\nThere are few uses of CoCo that don\u0027t rely on working cryptography and\nhence a working RNG. Unfortunately, the CoCo threat model means that the\nVM host cannot be trusted and may actively work against guests to\nextract secrets or manipulate computation. Since a malicious host can\nmodify or observe nearly all inputs to guests, the only remaining source\nof entropy for CoCo guests is RDRAND.\n\nIf RDRAND is broken -- due to CPU hardware fault -- the RNG as a whole\nis meant to gracefully continue on gathering entropy from other sources,\nbut since there aren\u0027t other sources on CoCo, this is catastrophic.\nThis is mostly a concern at boot time when initially seeding the RNG, as\nafter that the consequences of a broken RDRAND are much more\ntheoretical.\n\nSo, try at boot to seed the RNG using 256 bits of RDRAND output. If this\nfails, panic(). This will also trigger if the system is booted without\nRDRAND, as RDRAND is essential for a safe CoCo boot.\n\nAdd this deliberately to be \"just a CoCo x86 driver feature\" and not\npart of the RNG itself. Many device drivers and platforms have some\ndesire to contribute something to the RNG, and add_device_randomness()\nis specifically meant for this purpose.\n\nAny driver can call it with seed data of any quality, or even garbage\nquality, and it can only possibly make the quality of the RNG better or\nhave no effect, but can never make it worse.\n\nRather than trying to build something into the core of the RNG, consider\nthe particular CoCo issue just a CoCo issue, and therefore separate it\nall out into driver (well, arch/platform) code.\n\n [ bp: Massage commit message. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35875",
"url": "https://www.suse.com/security/cve/CVE-2024-35875"
},
{
"category": "external",
"summary": "SUSE Bug 1224665 for CVE-2024-35875",
"url": "https://bugzilla.suse.com/1224665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35875"
},
{
"cve": "CVE-2024-35878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35878"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: module: prevent NULL pointer dereference in vsnprintf()\n\nIn of_modalias(), we can get passed the str and len parameters which would\ncause a kernel oops in vsnprintf() since it only allows passing a NULL ptr\nwhen the length is also 0. Also, we need to filter out the negative values\nof the len parameter as these will result in a really huge buffer since\nsnprintf() takes size_t parameter while ours is ssize_t...\n\nFound by Linux Verification Center (linuxtesting.org) with the Svace static\nanalysis tool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35878",
"url": "https://www.suse.com/security/cve/CVE-2024-35878"
},
{
"category": "external",
"summary": "SUSE Bug 1224671 for CVE-2024-35878",
"url": "https://bugzilla.suse.com/1224671"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35878"
},
{
"cve": "CVE-2024-35879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35879"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: dynamic: Synchronize of_changeset_destroy() with the devlink removals\n\nIn the following sequence:\n 1) of_platform_depopulate()\n 2) of_overlay_remove()\n\nDuring the step 1, devices are destroyed and devlinks are removed.\nDuring the step 2, OF nodes are destroyed but\n__of_changeset_entry_destroy() can raise warnings related to missing\nof_node_put():\n ERROR: memory leak, expected refcount 1 instead of 2 ...\n\nIndeed, during the devlink removals performed at step 1, the removal\nitself releasing the device (and the attached of_node) is done by a job\nqueued in a workqueue and so, it is done asynchronously with respect to\nfunction calls.\nWhen the warning is present, of_node_put() will be called but wrongly\ntoo late from the workqueue job.\n\nIn order to be sure that any ongoing devlink removals are done before\nthe of_node destruction, synchronize the of_changeset_destroy() with the\ndevlink removals.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35879",
"url": "https://www.suse.com/security/cve/CVE-2024-35879"
},
{
"category": "external",
"summary": "SUSE Bug 1224524 for CVE-2024-35879",
"url": "https://bugzilla.suse.com/1224524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35879"
},
{
"cve": "CVE-2024-35883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35883"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: mchp-pci1xxx: Fix a possible null pointer dereference in pci1xxx_spi_probe\n\nIn function pci1xxxx_spi_probe, there is a potential null pointer that\nmay be caused by a failed memory allocation by the function devm_kzalloc.\nHence, a null pointer check needs to be added to prevent null pointer\ndereferencing later in the code.\n\nTo fix this issue, spi_bus-\u003espi_int[iter] should be checked. The memory\nallocated by devm_kzalloc will be automatically released, so just directly\nreturn -ENOMEM without worrying about memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35883",
"url": "https://www.suse.com/security/cve/CVE-2024-35883"
},
{
"category": "external",
"summary": "SUSE Bug 1224521 for CVE-2024-35883",
"url": "https://bugzilla.suse.com/1224521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35883"
},
{
"cve": "CVE-2024-35885",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35885"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxbf_gige: stop interface during shutdown\n\nThe mlxbf_gige driver intermittantly encounters a NULL pointer\nexception while the system is shutting down via \"reboot\" command.\nThe mlxbf_driver will experience an exception right after executing\nits shutdown() method. One example of this exception is:\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000070\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\nuser pgtable: 4k pages, 48-bit VAs, pgdp=000000011d373000\n[0000000000000070] pgd=0000000000000000, p4d=0000000000000000\nInternal error: Oops: 96000004 [#1] SMP\nCPU: 0 PID: 13 Comm: ksoftirqd/0 Tainted: G S OE 5.15.0-bf.6.gef6992a #1\nHardware name: https://www.mellanox.com BlueField SoC/BlueField SoC, BIOS 4.0.2.12669 Apr 21 2023\npstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : mlxbf_gige_handle_tx_complete+0xc8/0x170 [mlxbf_gige]\nlr : mlxbf_gige_poll+0x54/0x160 [mlxbf_gige]\nsp : ffff8000080d3c10\nx29: ffff8000080d3c10 x28: ffffcce72cbb7000 x27: ffff8000080d3d58\nx26: ffff0000814e7340 x25: ffff331cd1a05000 x24: ffffcce72c4ea008\nx23: ffff0000814e4b40 x22: ffff0000814e4d10 x21: ffff0000814e4128\nx20: 0000000000000000 x19: ffff0000814e4a80 x18: ffffffffffffffff\nx17: 000000000000001c x16: ffffcce72b4553f4 x15: ffff80008805b8a7\nx14: 0000000000000000 x13: 0000000000000030 x12: 0101010101010101\nx11: 7f7f7f7f7f7f7f7f x10: c2ac898b17576267 x9 : ffffcce720fa5404\nx8 : ffff000080812138 x7 : 0000000000002e9a x6 : 0000000000000080\nx5 : ffff00008de3b000 x4 : 0000000000000000 x3 : 0000000000000001\nx2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000\nCall trace:\n mlxbf_gige_handle_tx_complete+0xc8/0x170 [mlxbf_gige]\n mlxbf_gige_poll+0x54/0x160 [mlxbf_gige]\n __napi_poll+0x40/0x1c8\n net_rx_action+0x314/0x3a0\n __do_softirq+0x128/0x334\n run_ksoftirqd+0x54/0x6c\n smpboot_thread_fn+0x14c/0x190\n kthread+0x10c/0x110\n ret_from_fork+0x10/0x20\nCode: 8b070000 f9000ea0 f95056c0 f86178a1 (b9407002)\n---[ end trace 7cc3941aa0d8e6a4 ]---\nKernel panic - not syncing: Oops: Fatal exception in interrupt\nKernel Offset: 0x4ce722520000 from 0xffff800008000000\nPHYS_OFFSET: 0x80000000\nCPU features: 0x000005c1,a3330e5a\nMemory Limit: none\n---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---\n\nDuring system shutdown, the mlxbf_gige driver\u0027s shutdown() is always executed.\nHowever, the driver\u0027s stop() method will only execute if networking interface\nconfiguration logic within the Linux distribution has been setup to do so.\n\nIf shutdown() executes but stop() does not execute, NAPI remains enabled\nand this can lead to an exception if NAPI is scheduled while the hardware\ninterface has only been partially deinitialized.\n\nThe networking interface managed by the mlxbf_gige driver must be properly\nstopped during system shutdown so that IFF_UP is cleared, the hardware\ninterface is put into a clean state, and NAPI is fully deinitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35885",
"url": "https://www.suse.com/security/cve/CVE-2024-35885"
},
{
"category": "external",
"summary": "SUSE Bug 1224519 for CVE-2024-35885",
"url": "https://bugzilla.suse.com/1224519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35885"
},
{
"cve": "CVE-2024-35887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nax25: fix use-after-free bugs caused by ax25_ds_del_timer\n\nWhen the ax25 device is detaching, the ax25_dev_device_down()\ncalls ax25_ds_del_timer() to cleanup the slave_timer. When\nthe timer handler is running, the ax25_ds_del_timer() that\ncalls del_timer() in it will return directly. As a result,\nthe use-after-free bugs could happen, one of the scenarios\nis shown below:\n\n (Thread 1) | (Thread 2)\n | ax25_ds_timeout()\nax25_dev_device_down() |\n ax25_ds_del_timer() |\n del_timer() |\n ax25_dev_put() //FREE |\n | ax25_dev-\u003e //USE\n\nIn order to mitigate bugs, when the device is detaching, use\ntimer_shutdown_sync() to stop the timer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35887",
"url": "https://www.suse.com/security/cve/CVE-2024-35887"
},
{
"category": "external",
"summary": "SUSE Bug 1224663 for CVE-2024-35887",
"url": "https://bugzilla.suse.com/1224663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35887"
},
{
"cve": "CVE-2024-35889",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35889"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix kernel panic on unknown packet types\n\nIn the very rare case where a packet type is unknown to the driver,\nidpf_rx_process_skb_fields would return early without calling\neth_type_trans to set the skb protocol / the network layer handler.\nThis is especially problematic if tcpdump is running when such a\npacket is received, i.e. it would cause a kernel panic.\n\nInstead, call eth_type_trans for every single packet, even when\nthe packet type is unknown.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35889",
"url": "https://www.suse.com/security/cve/CVE-2024-35889"
},
{
"category": "external",
"summary": "SUSE Bug 1224517 for CVE-2024-35889",
"url": "https://bugzilla.suse.com/1224517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35889"
},
{
"cve": "CVE-2024-35891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35891"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: micrel: Fix potential null pointer dereference\n\nIn lan8814_get_sig_rx() and lan8814_get_sig_tx() ptp_parse_header() may\nreturn NULL as ptp_header due to abnormal packet type or corrupted packet.\nFix this bug by adding ptp_header check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35891",
"url": "https://www.suse.com/security/cve/CVE-2024-35891"
},
{
"category": "external",
"summary": "SUSE Bug 1224513 for CVE-2024-35891",
"url": "https://bugzilla.suse.com/1224513"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35891"
},
{
"cve": "CVE-2024-35901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35901"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix Rx DMA datasize and skb_over_panic\n\nmana_get_rxbuf_cfg() aligns the RX buffer\u0027s DMA datasize to be\nmultiple of 64. So a packet slightly bigger than mtu+14, say 1536,\ncan be received and cause skb_over_panic.\n\nSample dmesg:\n[ 5325.237162] skbuff: skb_over_panic: text:ffffffffc043277a len:1536 put:1536 head:ff1100018b517000 data:ff1100018b517100 tail:0x700 end:0x6ea dev:\u003cNULL\u003e\n[ 5325.243689] ------------[ cut here ]------------\n[ 5325.245748] kernel BUG at net/core/skbuff.c:192!\n[ 5325.247838] invalid opcode: 0000 [#1] PREEMPT SMP NOPTI\n[ 5325.258374] RIP: 0010:skb_panic+0x4f/0x60\n[ 5325.302941] Call Trace:\n[ 5325.304389] \u003cIRQ\u003e\n[ 5325.315794] ? skb_panic+0x4f/0x60\n[ 5325.317457] ? asm_exc_invalid_op+0x1f/0x30\n[ 5325.319490] ? skb_panic+0x4f/0x60\n[ 5325.321161] skb_put+0x4e/0x50\n[ 5325.322670] mana_poll+0x6fa/0xb50 [mana]\n[ 5325.324578] __napi_poll+0x33/0x1e0\n[ 5325.326328] net_rx_action+0x12e/0x280\n\nAs discussed internally, this alignment is not necessary. To fix\nthis bug, remove it from the code. So oversized packets will be\nmarked as CQE_RX_TRUNCATED by NIC, and dropped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35901",
"url": "https://www.suse.com/security/cve/CVE-2024-35901"
},
{
"category": "external",
"summary": "SUSE Bug 1224495 for CVE-2024-35901",
"url": "https://bugzilla.suse.com/1224495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35901"
},
{
"cve": "CVE-2024-35904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: avoid dereference of garbage after mount failure\n\nIn case kern_mount() fails and returns an error pointer return in the\nerror branch instead of continuing and dereferencing the error pointer.\n\nWhile on it drop the never read static variable selinuxfs_mount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35904",
"url": "https://www.suse.com/security/cve/CVE-2024-35904"
},
{
"category": "external",
"summary": "SUSE Bug 1224494 for CVE-2024-35904",
"url": "https://bugzilla.suse.com/1224494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35904"
},
{
"cve": "CVE-2024-35907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxbf_gige: call request_irq() after NAPI initialized\n\nThe mlxbf_gige driver encounters a NULL pointer exception in\nmlxbf_gige_open() when kdump is enabled. The sequence to reproduce\nthe exception is as follows:\na) enable kdump\nb) trigger kdump via \"echo c \u003e /proc/sysrq-trigger\"\nc) kdump kernel executes\nd) kdump kernel loads mlxbf_gige module\ne) the mlxbf_gige module runs its open() as the\n the \"oob_net0\" interface is brought up\nf) mlxbf_gige module will experience an exception\n during its open(), something like:\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n Mem abort info:\n ESR = 0x0000000086000004\n EC = 0x21: IABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\n user pgtable: 4k pages, 48-bit VAs, pgdp=00000000e29a4000\n [0000000000000000] pgd=0000000000000000, p4d=0000000000000000\n Internal error: Oops: 0000000086000004 [#1] SMP\n CPU: 0 PID: 812 Comm: NetworkManager Tainted: G OE 5.15.0-1035-bluefield #37-Ubuntu\n Hardware name: https://www.mellanox.com BlueField-3 SmartNIC Main Card/BlueField-3 SmartNIC Main Card, BIOS 4.6.0.13024 Jan 19 2024\n pstate: 80400009 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : 0x0\n lr : __napi_poll+0x40/0x230\n sp : ffff800008003e00\n x29: ffff800008003e00 x28: 0000000000000000 x27: 00000000ffffffff\n x26: ffff000066027238 x25: ffff00007cedec00 x24: ffff800008003ec8\n x23: 000000000000012c x22: ffff800008003eb7 x21: 0000000000000000\n x20: 0000000000000001 x19: ffff000066027238 x18: 0000000000000000\n x17: ffff578fcb450000 x16: ffffa870b083c7c0 x15: 0000aaab010441d0\n x14: 0000000000000001 x13: 00726f7272655f65 x12: 6769675f6662786c\n x11: 0000000000000000 x10: 0000000000000000 x9 : ffffa870b0842398\n x8 : 0000000000000004 x7 : fe5a48b9069706ea x6 : 17fdb11fc84ae0d2\n x5 : d94a82549d594f35 x4 : 0000000000000000 x3 : 0000000000400100\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff000066027238\n Call trace:\n 0x0\n net_rx_action+0x178/0x360\n __do_softirq+0x15c/0x428\n __irq_exit_rcu+0xac/0xec\n irq_exit+0x18/0x2c\n handle_domain_irq+0x6c/0xa0\n gic_handle_irq+0xec/0x1b0\n call_on_irq_stack+0x20/0x2c\n do_interrupt_handler+0x5c/0x70\n el1_interrupt+0x30/0x50\n el1h_64_irq_handler+0x18/0x2c\n el1h_64_irq+0x7c/0x80\n __setup_irq+0x4c0/0x950\n request_threaded_irq+0xf4/0x1bc\n mlxbf_gige_request_irqs+0x68/0x110 [mlxbf_gige]\n mlxbf_gige_open+0x5c/0x170 [mlxbf_gige]\n __dev_open+0x100/0x220\n __dev_change_flags+0x16c/0x1f0\n dev_change_flags+0x2c/0x70\n do_setlink+0x220/0xa40\n __rtnl_newlink+0x56c/0x8a0\n rtnl_newlink+0x58/0x84\n rtnetlink_rcv_msg+0x138/0x3c4\n netlink_rcv_skb+0x64/0x130\n rtnetlink_rcv+0x20/0x30\n netlink_unicast+0x2ec/0x360\n netlink_sendmsg+0x278/0x490\n __sock_sendmsg+0x5c/0x6c\n ____sys_sendmsg+0x290/0x2d4\n ___sys_sendmsg+0x84/0xd0\n __sys_sendmsg+0x70/0xd0\n __arm64_sys_sendmsg+0x2c/0x40\n invoke_syscall+0x78/0x100\n el0_svc_common.constprop.0+0x54/0x184\n do_el0_svc+0x30/0xac\n el0_svc+0x48/0x160\n el0t_64_sync_handler+0xa4/0x12c\n el0t_64_sync+0x1a4/0x1a8\n Code: bad PC value\n ---[ end trace 7d1c3f3bf9d81885 ]---\n Kernel panic - not syncing: Oops: Fatal exception in interrupt\n Kernel Offset: 0x2870a7a00000 from 0xffff800008000000\n PHYS_OFFSET: 0x80000000\n CPU features: 0x0,000005c1,a3332a5a\n Memory Limit: none\n ---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---\n\nThe exception happens because there is a pending RX interrupt before the\ncall to request_irq(RX IRQ) executes. Then, the RX IRQ handler fires\nimmediately after this request_irq() completes. The\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35907",
"url": "https://www.suse.com/security/cve/CVE-2024-35907"
},
{
"category": "external",
"summary": "SUSE Bug 1224492 for CVE-2024-35907",
"url": "https://bugzilla.suse.com/1224492"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35907"
},
{
"cve": "CVE-2024-35909",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35909"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: t7xx: Split 64bit accesses to fix alignment issues\n\nSome of the registers are aligned on a 32bit boundary, causing\nalignment faults on 64bit platforms.\n\n Unable to handle kernel paging request at virtual address ffffffc084a1d004\n Mem abort info:\n ESR = 0x0000000096000061\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x21: alignment fault\n Data abort info:\n ISV = 0, ISS = 0x00000061, ISS2 = 0x00000000\n CM = 0, WnR = 1, TnD = 0, TagAccess = 0\n GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n swapper pgtable: 4k pages, 39-bit VAs, pgdp=0000000046ad6000\n [ffffffc084a1d004] pgd=100000013ffff003, p4d=100000013ffff003, pud=100000013ffff003, pmd=0068000020a00711\n Internal error: Oops: 0000000096000061 [#1] SMP\n Modules linked in: mtk_t7xx(+) qcserial pppoe ppp_async option nft_fib_inet nf_flow_table_inet mt7921u(O) mt7921s(O) mt7921e(O) mt7921_common(O) iwlmvm(O) iwldvm(O) usb_wwan rndis_host qmi_wwan pppox ppp_generic nft_reject_ipv6 nft_reject_ipv4 nft_reject_inet nft_reject nft_redir nft_quota nft_numgen nft_nat nft_masq nft_log nft_limit nft_hash nft_flow_offload nft_fib_ipv6 nft_fib_ipv4 nft_fib nft_ct nft_chain_nat nf_tables nf_nat nf_flow_table nf_conntrack mt7996e(O) mt792x_usb(O) mt792x_lib(O) mt7915e(O) mt76_usb(O) mt76_sdio(O) mt76_connac_lib(O) mt76(O) mac80211(O) iwlwifi(O) huawei_cdc_ncm cfg80211(O) cdc_ncm cdc_ether wwan usbserial usbnet slhc sfp rtc_pcf8563 nfnetlink nf_reject_ipv6 nf_reject_ipv4 nf_log_syslog nf_defrag_ipv6 nf_defrag_ipv4 mt6577_auxadc mdio_i2c libcrc32c compat(O) cdc_wdm cdc_acm at24 crypto_safexcel pwm_fan i2c_gpio i2c_smbus industrialio i2c_algo_bit i2c_mux_reg i2c_mux_pca954x i2c_mux_pca9541 i2c_mux_gpio i2c_mux dummy oid_registry tun sha512_arm64 sha1_ce sha1_generic seqiv\n md5 geniv des_generic libdes cbc authencesn authenc leds_gpio xhci_plat_hcd xhci_pci xhci_mtk_hcd xhci_hcd nvme nvme_core gpio_button_hotplug(O) dm_mirror dm_region_hash dm_log dm_crypt dm_mod dax usbcore usb_common ptp aquantia pps_core mii tpm encrypted_keys trusted\n CPU: 3 PID: 5266 Comm: kworker/u9:1 Tainted: G O 6.6.22 #0\n Hardware name: Bananapi BPI-R4 (DT)\n Workqueue: md_hk_wq t7xx_fsm_uninit [mtk_t7xx]\n pstate: 804000c5 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : t7xx_cldma_hw_set_start_addr+0x1c/0x3c [mtk_t7xx]\n lr : t7xx_cldma_start+0xac/0x13c [mtk_t7xx]\n sp : ffffffc085d63d30\n x29: ffffffc085d63d30 x28: 0000000000000000 x27: 0000000000000000\n x26: 0000000000000000 x25: ffffff80c804f2c0 x24: ffffff80ca196c05\n x23: 0000000000000000 x22: ffffff80c814b9b8 x21: ffffff80c814b128\n x20: 0000000000000001 x19: ffffff80c814b080 x18: 0000000000000014\n x17: 0000000055c9806b x16: 000000007c5296d0 x15: 000000000f6bca68\n x14: 00000000dbdbdce4 x13: 000000001aeaf72a x12: 0000000000000001\n x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000\n x8 : ffffff80ca1ef6b4 x7 : ffffff80c814b818 x6 : 0000000000000018\n x5 : 0000000000000870 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 000000010a947000 x1 : ffffffc084a1d004 x0 : ffffffc084a1d004\n Call trace:\n t7xx_cldma_hw_set_start_addr+0x1c/0x3c [mtk_t7xx]\n t7xx_fsm_uninit+0x578/0x5ec [mtk_t7xx]\n process_one_work+0x154/0x2a0\n worker_thread+0x2ac/0x488\n kthread+0xe0/0xec\n ret_from_fork+0x10/0x20\n Code: f9400800 91001000 8b214001 d50332bf (f9000022)\n ---[ end trace 0000000000000000 ]---\n\nThe inclusion of io-64-nonatomic-lo-hi.h indicates that all 64bit\naccesses can be replaced by pairs of nonatomic 32bit access. Fix\nalignment by forcing all accesses to be 32bit on 64bit platforms.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35909",
"url": "https://www.suse.com/security/cve/CVE-2024-35909"
},
{
"category": "external",
"summary": "SUSE Bug 1224491 for CVE-2024-35909",
"url": "https://bugzilla.suse.com/1224491"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35909"
},
{
"cve": "CVE-2024-35911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix memory corruption bug with suspend and rebuild\n\nThe ice driver would previously panic after suspend. This is caused\nfrom the driver *only* calling the ice_vsi_free_q_vectors() function by\nitself, when it is suspending. Since commit b3e7b3a6ee92 (\"ice: prevent\nNULL pointer deref during reload\") the driver has zeroed out\nnum_q_vectors, and only restored it in ice_vsi_cfg_def().\n\nThis further causes the ice_rebuild() function to allocate a zero length\nbuffer, after which num_q_vectors is updated, and then the new value of\nnum_q_vectors is used to index into the zero length buffer, which\ncorrupts memory.\n\nThe fix entails making sure all the code referencing num_q_vectors only\ndoes so after it has been reset via ice_vsi_cfg_def().\n\nI didn\u0027t perform a full bisect, but I was able to test against 6.1.77\nkernel and that ice driver works fine for suspend/resume with no panic,\nso sometime since then, this problem was introduced.\n\nAlso clean up an un-needed init of a local variable in the function\nbeing modified.\n\nPANIC from 6.8.0-rc1:\n\n[1026674.915596] PM: suspend exit\n[1026675.664697] ice 0000:17:00.1: PTP reset successful\n[1026675.664707] ice 0000:17:00.1: 2755 msecs passed between update to cached PHC time\n[1026675.667660] ice 0000:b1:00.0: PTP reset successful\n[1026675.675944] ice 0000:b1:00.0: 2832 msecs passed between update to cached PHC time\n[1026677.137733] ixgbe 0000:31:00.0 ens787: NIC Link is Up 1 Gbps, Flow Control: None\n[1026677.190201] BUG: kernel NULL pointer dereference, address: 0000000000000010\n[1026677.192753] ice 0000:17:00.0: PTP reset successful\n[1026677.192764] ice 0000:17:00.0: 4548 msecs passed between update to cached PHC time\n[1026677.197928] #PF: supervisor read access in kernel mode\n[1026677.197933] #PF: error_code(0x0000) - not-present page\n[1026677.197937] PGD 1557a7067 P4D 0\n[1026677.212133] ice 0000:b1:00.1: PTP reset successful\n[1026677.212143] ice 0000:b1:00.1: 4344 msecs passed between update to cached PHC time\n[1026677.212575]\n[1026677.243142] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[1026677.247918] CPU: 23 PID: 42790 Comm: kworker/23:0 Kdump: loaded Tainted: G W 6.8.0-rc1+ #1\n[1026677.257989] Hardware name: Intel Corporation M50CYP2SBSTD/M50CYP2SBSTD, BIOS SE5C620.86B.01.01.0005.2202160810 02/16/2022\n[1026677.269367] Workqueue: ice ice_service_task [ice]\n[1026677.274592] RIP: 0010:ice_vsi_rebuild_set_coalesce+0x130/0x1e0 [ice]\n[1026677.281421] Code: 0f 84 3a ff ff ff 41 0f b7 74 ec 02 66 89 b0 22 02 00 00 81 e6 ff 1f 00 00 e8 ec fd ff ff e9 35 ff ff ff 48 8b 43 30 49 63 ed \u003c41\u003e 0f b7 34 24 41 83 c5 01 48 8b 3c e8 66 89 b7 aa 02 00 00 81 e6\n[1026677.300877] RSP: 0018:ff3be62a6399bcc0 EFLAGS: 00010202\n[1026677.306556] RAX: ff28691e28980828 RBX: ff28691e41099828 RCX: 0000000000188000\n[1026677.314148] RDX: 0000000000000000 RSI: 0000000000000010 RDI: ff28691e41099828\n[1026677.321730] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\n[1026677.329311] R10: 0000000000000007 R11: ffffffffffffffc0 R12: 0000000000000010\n[1026677.336896] R13: 0000000000000000 R14: 0000000000000000 R15: ff28691e0eaa81a0\n[1026677.344472] FS: 0000000000000000(0000) GS:ff28693cbffc0000(0000) knlGS:0000000000000000\n[1026677.353000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[1026677.359195] CR2: 0000000000000010 CR3: 0000000128df4001 CR4: 0000000000771ef0\n[1026677.366779] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[1026677.374369] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[1026677.381952] PKRU: 55555554\n[1026677.385116] Call Trace:\n[1026677.388023] \u003cTASK\u003e\n[1026677.390589] ? __die+0x20/0x70\n[1026677.394105] ? page_fault_oops+0x82/0x160\n[1026677.398576] ? do_user_addr_fault+0x65/0x6a0\n[1026677.403307] ? exc_page_fault+0x6a/0x150\n[1026677.407694] ? asm_exc_page_fault+0x22/0x30\n[1026677.412349] ? ice_vsi_rebuild_set_coalesce+0x130/0x1e0 [ice]\n[1026677.4186\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35911",
"url": "https://www.suse.com/security/cve/CVE-2024-35911"
},
{
"category": "external",
"summary": "SUSE Bug 1224486 for CVE-2024-35911",
"url": "https://bugzilla.suse.com/1224486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35911"
},
{
"cve": "CVE-2024-35912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: rfi: fix potential response leaks\n\nIf the rx payload length check fails, or if kmemdup() fails,\nwe still need to free the command response. Fix that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35912",
"url": "https://www.suse.com/security/cve/CVE-2024-35912"
},
{
"category": "external",
"summary": "SUSE Bug 1224487 for CVE-2024-35912",
"url": "https://bugzilla.suse.com/1224487"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35912"
},
{
"cve": "CVE-2024-35914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: Fix error cleanup path in nfsd_rename()\n\nCommit a8b0026847b8 (\"rename(): avoid a deadlock in the case of parents\nhaving no common ancestor\") added an error bail out path. However this\npath does not drop the remount protection that has been acquired. Fix\nthe cleanup path to properly drop the remount protection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35914",
"url": "https://www.suse.com/security/cve/CVE-2024-35914"
},
{
"category": "external",
"summary": "SUSE Bug 1224482 for CVE-2024-35914",
"url": "https://bugzilla.suse.com/1224482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35914"
},
{
"cve": "CVE-2024-35915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet\n\nsyzbot reported the following uninit-value access issue [1][2]:\n\nnci_rx_work() parses and processes received packet. When the payload\nlength is zero, each message type handler reads uninitialized payload\nand KMSAN detects this issue. The receipt of a packet with a zero-size\npayload is considered unexpected, and therefore, such packets should be\nsilently discarded.\n\nThis patch resolved this issue by checking payload size before calling\neach message type handler codes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35915",
"url": "https://www.suse.com/security/cve/CVE-2024-35915"
},
{
"category": "external",
"summary": "SUSE Bug 1224479 for CVE-2024-35915",
"url": "https://bugzilla.suse.com/1224479"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35915"
},
{
"cve": "CVE-2024-35916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-buf: Fix NULL pointer dereference in sanitycheck()\n\nIf due to a memory allocation failure mock_chain() returns NULL, it is\npassed to dma_fence_enable_sw_signaling() resulting in NULL pointer\ndereference there.\n\nCall dma_fence_enable_sw_signaling() only if mock_chain() succeeds.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35916",
"url": "https://www.suse.com/security/cve/CVE-2024-35916"
},
{
"category": "external",
"summary": "SUSE Bug 1224480 for CVE-2024-35916",
"url": "https://bugzilla.suse.com/1224480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35916"
},
{
"cve": "CVE-2024-35922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbmon: prevent division by zero in fb_videomode_from_videomode()\n\nThe expression htotal * vtotal can have a zero value on\noverflow. It is necessary to prevent division by zero like in\nfb_var_to_videomode().\n\nFound by Linux Verification Center (linuxtesting.org) with Svace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35922",
"url": "https://www.suse.com/security/cve/CVE-2024-35922"
},
{
"category": "external",
"summary": "SUSE Bug 1224660 for CVE-2024-35922",
"url": "https://bugzilla.suse.com/1224660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35922"
},
{
"cve": "CVE-2024-35924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Limit read size on v1.2\n\nBetween UCSI 1.2 and UCSI 2.0, the size of the MESSAGE_IN region was\nincreased from 16 to 256. In order to avoid overflowing reads for older\nsystems, add a mechanism to use the read UCSI version to truncate read\nsizes on UCSI v1.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35924",
"url": "https://www.suse.com/security/cve/CVE-2024-35924"
},
{
"category": "external",
"summary": "SUSE Bug 1224657 for CVE-2024-35924",
"url": "https://bugzilla.suse.com/1224657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35924"
},
{
"cve": "CVE-2024-35927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35927"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: Check output polling initialized before disabling\n\nIn drm_kms_helper_poll_disable() check if output polling\nsupport is initialized before disabling polling. If not flag\nthis as a warning.\nAdditionally in drm_mode_config_helper_suspend() and\ndrm_mode_config_helper_resume() calls, that re the callers of these\nfunctions, avoid invoking them if polling is not initialized.\nFor drivers like hyperv-drm, that do not initialize connector\npolling, if suspend is called without this check, it leads to\nsuspend failure with following stack\n[ 770.719392] Freezing remaining freezable tasks ... (elapsed 0.001 seconds) done.\n[ 770.720592] printk: Suspending console(s) (use no_console_suspend to debug)\n[ 770.948823] ------------[ cut here ]------------\n[ 770.948824] WARNING: CPU: 1 PID: 17197 at kernel/workqueue.c:3162 __flush_work.isra.0+0x212/0x230\n[ 770.948831] Modules linked in: rfkill nft_counter xt_conntrack xt_owner udf nft_compat crc_itu_t nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables nfnetlink vfat fat mlx5_ib ib_uverbs ib_core mlx5_core intel_rapl_msr intel_rapl_common kvm_amd ccp mlxfw kvm psample hyperv_drm tls drm_shmem_helper drm_kms_helper irqbypass pcspkr syscopyarea sysfillrect sysimgblt hv_balloon hv_utils joydev drm fuse xfs libcrc32c pci_hyperv pci_hyperv_intf sr_mod sd_mod cdrom t10_pi sg hv_storvsc scsi_transport_fc hv_netvsc serio_raw hyperv_keyboard hid_hyperv crct10dif_pclmul crc32_pclmul crc32c_intel hv_vmbus ghash_clmulni_intel dm_mirror dm_region_hash dm_log dm_mod\n[ 770.948863] CPU: 1 PID: 17197 Comm: systemd-sleep Not tainted 5.14.0-362.2.1.el9_3.x86_64 #1\n[ 770.948865] Hardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS Hyper-V UEFI Release v4.1 05/09/2022\n[ 770.948866] RIP: 0010:__flush_work.isra.0+0x212/0x230\n[ 770.948869] Code: 8b 4d 00 4c 8b 45 08 89 ca 48 c1 e9 04 83 e2 08 83 e1 0f 83 ca 02 89 c8 48 0f ba 6d 00 03 e9 25 ff ff ff 0f 0b e9 4e ff ff ff \u003c0f\u003e 0b 45 31 ed e9 44 ff ff ff e8 8f 89 b2 00 66 66 2e 0f 1f 84 00\n[ 770.948870] RSP: 0018:ffffaf4ac213fb10 EFLAGS: 00010246\n[ 770.948871] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8c992857\n[ 770.948872] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff9aad82b00330\n[ 770.948873] RBP: ffff9aad82b00330 R08: 0000000000000000 R09: ffff9aad87ee3d10\n[ 770.948874] R10: 0000000000000200 R11: 0000000000000000 R12: ffff9aad82b00330\n[ 770.948874] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001\n[ 770.948875] FS: 00007ff1b2f6bb40(0000) GS:ffff9aaf37d00000(0000) knlGS:0000000000000000\n[ 770.948878] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 770.948878] CR2: 0000555f345cb666 CR3: 00000001462dc005 CR4: 0000000000370ee0\n[ 770.948879] Call Trace:\n[ 770.948880] \u003cTASK\u003e\n[ 770.948881] ? show_trace_log_lvl+0x1c4/0x2df\n[ 770.948884] ? show_trace_log_lvl+0x1c4/0x2df\n[ 770.948886] ? __cancel_work_timer+0x103/0x190\n[ 770.948887] ? __flush_work.isra.0+0x212/0x230\n[ 770.948889] ? __warn+0x81/0x110\n[ 770.948891] ? __flush_work.isra.0+0x212/0x230\n[ 770.948892] ? report_bug+0x10a/0x140\n[ 770.948895] ? handle_bug+0x3c/0x70\n[ 770.948898] ? exc_invalid_op+0x14/0x70\n[ 770.948899] ? asm_exc_invalid_op+0x16/0x20\n[ 770.948903] ? __flush_work.isra.0+0x212/0x230\n[ 770.948905] __cancel_work_timer+0x103/0x190\n[ 770.948907] ? _raw_spin_unlock_irqrestore+0xa/0x30\n[ 770.948910] drm_kms_helper_poll_disable+0x1e/0x40 [drm_kms_helper]\n[ 770.948923] drm_mode_config_helper_suspend+0x1c/0x80 [drm_kms_helper]\n[ 770.948933] ? __pfx_vmbus_suspend+0x10/0x10 [hv_vmbus]\n[ 770.948942] hyperv_vmbus_suspend+0x17/0x40 [hyperv_drm]\n[ 770.948944] ? __pfx_vmbus_suspend+0x10/0x10 [hv_vmbus]\n[ 770.948951] dpm_run_callback+0x4c/0x140\n[ 770.948954] __device_suspend_noir\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35927",
"url": "https://www.suse.com/security/cve/CVE-2024-35927"
},
{
"category": "external",
"summary": "SUSE Bug 1224654 for CVE-2024-35927",
"url": "https://bugzilla.suse.com/1224654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35927"
},
{
"cve": "CVE-2024-35928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35928"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35928",
"url": "https://www.suse.com/security/cve/CVE-2024-35928"
},
{
"category": "external",
"summary": "SUSE Bug 1224653 for CVE-2024-35928",
"url": "https://bugzilla.suse.com/1224653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35928"
},
{
"cve": "CVE-2024-35930",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35930"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc()\n\nThe call to lpfc_sli4_resume_rpi() in lpfc_rcv_padisc() may return an\nunsuccessful status. In such cases, the elsiocb is not issued, the\ncompletion is not called, and thus the elsiocb resource is leaked.\n\nCheck return value after calling lpfc_sli4_resume_rpi() and conditionally\nrelease the elsiocb resource.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35930",
"url": "https://www.suse.com/security/cve/CVE-2024-35930"
},
{
"category": "external",
"summary": "SUSE Bug 1224651 for CVE-2024-35930",
"url": "https://bugzilla.suse.com/1224651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35930"
},
{
"cve": "CVE-2024-35932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: don\u0027t check if plane-\u003estate-\u003efb == state-\u003efb\n\nCurrently, when using non-blocking commits, we can see the following\nkernel warning:\n\n[ 110.908514] ------------[ cut here ]------------\n[ 110.908529] refcount_t: underflow; use-after-free.\n[ 110.908620] WARNING: CPU: 0 PID: 1866 at lib/refcount.c:87 refcount_dec_not_one+0xb8/0xc0\n[ 110.908664] Modules linked in: rfcomm snd_seq_dummy snd_hrtimer snd_seq snd_seq_device cmac algif_hash aes_arm64 aes_generic algif_skcipher af_alg bnep hid_logitech_hidpp vc4 brcmfmac hci_uart btbcm brcmutil bluetooth snd_soc_hdmi_codec cfg80211 cec drm_display_helper drm_dma_helper drm_kms_helper snd_soc_core snd_compress snd_pcm_dmaengine fb_sys_fops sysimgblt syscopyarea sysfillrect raspberrypi_hwmon ecdh_generic ecc rfkill libaes i2c_bcm2835 binfmt_misc joydev snd_bcm2835(C) bcm2835_codec(C) bcm2835_isp(C) v4l2_mem2mem videobuf2_dma_contig snd_pcm bcm2835_v4l2(C) raspberrypi_gpiomem bcm2835_mmal_vchiq(C) videobuf2_v4l2 snd_timer videobuf2_vmalloc videobuf2_memops videobuf2_common snd videodev vc_sm_cma(C) mc hid_logitech_dj uio_pdrv_genirq uio i2c_dev drm fuse dm_mod drm_panel_orientation_quirks backlight ip_tables x_tables ipv6\n[ 110.909086] CPU: 0 PID: 1866 Comm: kodi.bin Tainted: G C 6.1.66-v8+ #32\n[ 110.909104] Hardware name: Raspberry Pi 3 Model B Rev 1.2 (DT)\n[ 110.909114] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 110.909132] pc : refcount_dec_not_one+0xb8/0xc0\n[ 110.909152] lr : refcount_dec_not_one+0xb4/0xc0\n[ 110.909170] sp : ffffffc00913b9c0\n[ 110.909177] x29: ffffffc00913b9c0 x28: 000000556969bbb0 x27: 000000556990df60\n[ 110.909205] x26: 0000000000000002 x25: 0000000000000004 x24: ffffff8004448480\n[ 110.909230] x23: ffffff800570b500 x22: ffffff802e03a7bc x21: ffffffecfca68c78\n[ 110.909257] x20: ffffff8002b42000 x19: ffffff802e03a600 x18: 0000000000000000\n[ 110.909283] x17: 0000000000000011 x16: ffffffffffffffff x15: 0000000000000004\n[ 110.909308] x14: 0000000000000fff x13: ffffffed577e47e0 x12: 0000000000000003\n[ 110.909333] x11: 0000000000000000 x10: 0000000000000027 x9 : c912d0d083728c00\n[ 110.909359] x8 : c912d0d083728c00 x7 : 65646e75203a745f x6 : 746e756f63666572\n[ 110.909384] x5 : ffffffed579f62ee x4 : ffffffed579eb01e x3 : 0000000000000000\n[ 110.909409] x2 : 0000000000000000 x1 : ffffffc00913b750 x0 : 0000000000000001\n[ 110.909434] Call trace:\n[ 110.909441] refcount_dec_not_one+0xb8/0xc0\n[ 110.909461] vc4_bo_dec_usecnt+0x4c/0x1b0 [vc4]\n[ 110.909903] vc4_cleanup_fb+0x44/0x50 [vc4]\n[ 110.910315] drm_atomic_helper_cleanup_planes+0x88/0xa4 [drm_kms_helper]\n[ 110.910669] vc4_atomic_commit_tail+0x390/0x9dc [vc4]\n[ 110.911079] commit_tail+0xb0/0x164 [drm_kms_helper]\n[ 110.911397] drm_atomic_helper_commit+0x1d0/0x1f0 [drm_kms_helper]\n[ 110.911716] drm_atomic_commit+0xb0/0xdc [drm]\n[ 110.912569] drm_mode_atomic_ioctl+0x348/0x4b8 [drm]\n[ 110.913330] drm_ioctl_kernel+0xec/0x15c [drm]\n[ 110.914091] drm_ioctl+0x24c/0x3b0 [drm]\n[ 110.914850] __arm64_sys_ioctl+0x9c/0xd4\n[ 110.914873] invoke_syscall+0x4c/0x114\n[ 110.914897] el0_svc_common+0xd0/0x118\n[ 110.914917] do_el0_svc+0x38/0xd0\n[ 110.914936] el0_svc+0x30/0x8c\n[ 110.914958] el0t_64_sync_handler+0x84/0xf0\n[ 110.914979] el0t_64_sync+0x18c/0x190\n[ 110.914996] ---[ end trace 0000000000000000 ]---\n\nThis happens because, although `prepare_fb` and `cleanup_fb` are\nperfectly balanced, we cannot guarantee consistency in the check\nplane-\u003estate-\u003efb == state-\u003efb. This means that sometimes we can increase\nthe refcount in `prepare_fb` and don\u0027t decrease it in `cleanup_fb`. The\nopposite can also be true.\n\nIn fact, the struct drm_plane .state shouldn\u0027t be accessed directly\nbut instead, the `drm_atomic_get_new_plane_state()` helper function should\nbe used. So, we could stick to this check, but using\n`drm_atomic_get_new_plane_state()`. But actually, this check is not re\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35932",
"url": "https://www.suse.com/security/cve/CVE-2024-35932"
},
{
"category": "external",
"summary": "SUSE Bug 1224650 for CVE-2024-35932",
"url": "https://bugzilla.suse.com/1224650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35932"
},
{
"cve": "CVE-2024-35933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35933"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btintel: Fix null ptr deref in btintel_read_version\n\nIf hci_cmd_sync_complete() is triggered and skb is NULL, then\nhdev-\u003ereq_skb is NULL, which will cause this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35933",
"url": "https://www.suse.com/security/cve/CVE-2024-35933"
},
{
"category": "external",
"summary": "SUSE Bug 1224640 for CVE-2024-35933",
"url": "https://bugzilla.suse.com/1224640"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35933"
},
{
"cve": "CVE-2024-35936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35936"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks()\n\nThe unhandled case in btrfs_relocate_sys_chunks() loop is a corruption,\nas it could be caused only by two impossible conditions:\n\n- at first the search key is set up to look for a chunk tree item, with\n offset -1, this is an inexact search and the key-\u003eoffset will contain\n the correct offset upon a successful search, a valid chunk tree item\n cannot have an offset -1\n\n- after first successful search, the found_key corresponds to a chunk\n item, the offset is decremented by 1 before the next loop, it\u0027s\n impossible to find a chunk item there due to alignment and size\n constraints",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35936",
"url": "https://www.suse.com/security/cve/CVE-2024-35936"
},
{
"category": "external",
"summary": "SUSE Bug 1224644 for CVE-2024-35936",
"url": "https://bugzilla.suse.com/1224644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35936"
},
{
"cve": "CVE-2024-35937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35937"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: check A-MSDU format more carefully\n\nIf it looks like there\u0027s another subframe in the A-MSDU\nbut the header isn\u0027t fully there, we can end up reading\ndata out of bounds, only to discard later. Make this a\nbit more careful and check if the subframe header can\neven be present.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35937",
"url": "https://www.suse.com/security/cve/CVE-2024-35937"
},
{
"category": "external",
"summary": "SUSE Bug 1224526 for CVE-2024-35937",
"url": "https://bugzilla.suse.com/1224526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35937"
},
{
"cve": "CVE-2024-35938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: decrease MHI channel buffer length to 8KB\n\nCurrently buf_len field of ath11k_mhi_config_qca6390 is assigned\nwith 0, making MHI use a default size, 64KB, to allocate channel\nbuffers. This is likely to fail in some scenarios where system\nmemory is highly fragmented and memory compaction or reclaim is\nnot allowed.\n\nThere is a fail report which is caused by it:\nkworker/u32:45: page allocation failure: order:4, mode:0x40c00(GFP_NOIO|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0\nCPU: 0 PID: 19318 Comm: kworker/u32:45 Not tainted 6.8.0-rc3-1.gae4495f-default #1 openSUSE Tumbleweed (unreleased) 493b6d5b382c603654d7a81fc3c144d59a1dfceb\nWorkqueue: events_unbound async_run_entry_fn\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x60\n warn_alloc+0x13a/0x1b0\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? __alloc_pages_direct_compact+0xab/0x210\n __alloc_pages_slowpath.constprop.0+0xd3e/0xda0\n __alloc_pages+0x32d/0x350\n ? mhi_prepare_channel+0x127/0x2d0 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n __kmalloc_large_node+0x72/0x110\n __kmalloc+0x37c/0x480\n ? mhi_map_single_no_bb+0x77/0xf0 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n ? mhi_prepare_channel+0x127/0x2d0 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n mhi_prepare_channel+0x127/0x2d0 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n __mhi_prepare_for_transfer+0x44/0x80 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n ? __pfx_____mhi_prepare_for_transfer+0x10/0x10 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n device_for_each_child+0x5c/0xa0\n ? __pfx_pci_pm_resume+0x10/0x10\n ath11k_core_resume+0x65/0x100 [ath11k a5094e22d7223135c40d93c8f5321cf09fd85e4e]\n ? srso_alias_return_thunk+0x5/0xfbef5\n ath11k_pci_pm_resume+0x32/0x60 [ath11k_pci 830b7bfc3ea80ebef32e563cafe2cb55e9cc73ec]\n ? srso_alias_return_thunk+0x5/0xfbef5\n dpm_run_callback+0x8c/0x1e0\n device_resume+0x104/0x340\n ? __pfx_dpm_watchdog_handler+0x10/0x10\n async_resume+0x1d/0x30\n async_run_entry_fn+0x32/0x120\n process_one_work+0x168/0x330\n worker_thread+0x2f5/0x410\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xe8/0x120\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x34/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nActually those buffers are used only by QMI target -\u003e host communication.\nAnd for WCN6855 and QCA6390, the largest packet size for that is less\nthan 6KB. So change buf_len field to 8KB, which results in order 1\nallocation if page size is 4KB. In this way, we can at least save some\nmemory, and as well as decrease the possibility of allocation failure\nin those scenarios.\n\nTested-on: WCN6855 hw2.0 PCI WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35938",
"url": "https://www.suse.com/security/cve/CVE-2024-35938"
},
{
"category": "external",
"summary": "SUSE Bug 1224643 for CVE-2024-35938",
"url": "https://bugzilla.suse.com/1224643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35938"
},
{
"cve": "CVE-2024-35940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore/zone: Add a null pointer check to the psz_kmsg_read\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure. Ensure the allocation was successful\nby checking the pointer validity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35940",
"url": "https://www.suse.com/security/cve/CVE-2024-35940"
},
{
"category": "external",
"summary": "SUSE Bug 1224537 for CVE-2024-35940",
"url": "https://bugzilla.suse.com/1224537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35940"
},
{
"cve": "CVE-2024-35945",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35945"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: phy_device: Prevent nullptr exceptions on ISR\n\nIf phydev-\u003eirq is set unconditionally, check\nfor valid interrupt handler or fall back to polling mode to prevent\nnullptr exceptions in interrupt service routine.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35945",
"url": "https://www.suse.com/security/cve/CVE-2024-35945"
},
{
"category": "external",
"summary": "SUSE Bug 1224639 for CVE-2024-35945",
"url": "https://bugzilla.suse.com/1224639"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35945"
},
{
"cve": "CVE-2024-35946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: fix null pointer access when abort scan\n\nDuring cancel scan we might use vif that weren\u0027t scanning.\nFix this by using the actual scanning vif.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35946",
"url": "https://www.suse.com/security/cve/CVE-2024-35946"
},
{
"category": "external",
"summary": "SUSE Bug 1224646 for CVE-2024-35946",
"url": "https://bugzilla.suse.com/1224646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35946"
},
{
"cve": "CVE-2024-35947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndyndbg: fix old BUG_ON in \u003econtrol parser\n\nFix a BUG_ON from 2009. Even if it looks \"unreachable\" (I didn\u0027t\nreally look), lets make sure by removing it, doing pr_err and return\n-EINVAL instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35947",
"url": "https://www.suse.com/security/cve/CVE-2024-35947"
},
{
"category": "external",
"summary": "SUSE Bug 1224647 for CVE-2024-35947",
"url": "https://bugzilla.suse.com/1224647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35947"
},
{
"cve": "CVE-2024-35950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/client: Fully protect modes[] with dev-\u003emode_config.mutex\n\nThe modes[] array contains pointers to modes on the connectors\u0027\nmode lists, which are protected by dev-\u003emode_config.mutex.\nThus we need to extend modes[] the same protection or by the\ntime we use it the elements may already be pointing to\nfreed/reused memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35950",
"url": "https://www.suse.com/security/cve/CVE-2024-35950"
},
{
"category": "external",
"summary": "SUSE Bug 1224703 for CVE-2024-35950",
"url": "https://bugzilla.suse.com/1224703"
},
{
"category": "external",
"summary": "SUSE Bug 1225310 for CVE-2024-35950",
"url": "https://bugzilla.suse.com/1225310"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-35950"
},
{
"cve": "CVE-2024-35951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panfrost: Fix the error path in panfrost_mmu_map_fault_addr()\n\nSubject: [PATCH] drm/panfrost: Fix the error path in\n panfrost_mmu_map_fault_addr()\n\nIf some the pages or sgt allocation failed, we shouldn\u0027t release the\npages ref we got earlier, otherwise we will end up with unbalanced\nget/put_pages() calls. We should instead leave everything in place\nand let the BO release function deal with extra cleanup when the object\nis destroyed, or let the fault handler try again next time it\u0027s called.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35951",
"url": "https://www.suse.com/security/cve/CVE-2024-35951"
},
{
"category": "external",
"summary": "SUSE Bug 1224701 for CVE-2024-35951",
"url": "https://bugzilla.suse.com/1224701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35951"
},
{
"cve": "CVE-2024-35952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35952"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ast: Fix soft lockup\n\nThere is a while-loop in ast_dp_set_on_off() that could lead to\ninfinite-loop. This is because the register, VGACRI-Dx, checked in\nthis API is a scratch register actually controlled by a MCU, named\nDPMCU, in BMC.\n\nThese scratch registers are protected by scu-lock. If suc-lock is not\noff, DPMCU can not update these registers and then host will have soft\nlockup due to never updated status.\n\nDPMCU is used to control DP and relative registers to handshake with\nhost\u0027s VGA driver. Even the most time-consuming task, DP\u0027s link\ntraining, is less than 100ms. 200ms should be enough.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35952",
"url": "https://www.suse.com/security/cve/CVE-2024-35952"
},
{
"category": "external",
"summary": "SUSE Bug 1224705 for CVE-2024-35952",
"url": "https://bugzilla.suse.com/1224705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35952"
},
{
"cve": "CVE-2024-35953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/ivpu: Fix deadlock in context_xa\n\nivpu_device-\u003econtext_xa is locked both in kernel thread and IRQ context.\nIt requires XA_FLAGS_LOCK_IRQ flag to be passed during initialization\notherwise the lock could be acquired from a thread and interrupted by\nan IRQ that locks it for the second time causing the deadlock.\n\nThis deadlock was reported by lockdep and observed in internal tests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35953",
"url": "https://www.suse.com/security/cve/CVE-2024-35953"
},
{
"category": "external",
"summary": "SUSE Bug 1224704 for CVE-2024-35953",
"url": "https://bugzilla.suse.com/1224704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35953"
},
{
"cve": "CVE-2024-35954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Avoid sg device teardown race\n\nsg_remove_sfp_usercontext() must not use sg_device_destroy() after calling\nscsi_device_put().\n\nsg_device_destroy() is accessing the parent scsi_device request_queue which\nwill already be set to NULL when the preceding call to scsi_device_put()\nremoved the last reference to the parent scsi_device.\n\nThe resulting NULL pointer exception will then crash the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35954",
"url": "https://www.suse.com/security/cve/CVE-2024-35954"
},
{
"category": "external",
"summary": "SUSE Bug 1224675 for CVE-2024-35954",
"url": "https://bugzilla.suse.com/1224675"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35954"
},
{
"cve": "CVE-2024-35955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkprobes: Fix possible use-after-free issue on kprobe registration\n\nWhen unloading a module, its state is changing MODULE_STATE_LIVE -\u003e\n MODULE_STATE_GOING -\u003e MODULE_STATE_UNFORMED. Each change will take\na time. `is_module_text_address()` and `__module_text_address()`\nworks with MODULE_STATE_LIVE and MODULE_STATE_GOING.\nIf we use `is_module_text_address()` and `__module_text_address()`\nseparately, there is a chance that the first one is succeeded but the\nnext one is failed because module-\u003estate becomes MODULE_STATE_UNFORMED\nbetween those operations.\n\nIn `check_kprobe_address_safe()`, if the second `__module_text_address()`\nis failed, that is ignored because it expected a kernel_text address.\nBut it may have failed simply because module-\u003estate has been changed\nto MODULE_STATE_UNFORMED. In this case, arm_kprobe() will try to modify\nnon-exist module text address (use-after-free).\n\nTo fix this problem, we should not use separated `is_module_text_address()`\nand `__module_text_address()`, but use only `__module_text_address()`\nonce and do `try_module_get(module)` which is only available with\nMODULE_STATE_LIVE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35955",
"url": "https://www.suse.com/security/cve/CVE-2024-35955"
},
{
"category": "external",
"summary": "SUSE Bug 1224676 for CVE-2024-35955",
"url": "https://bugzilla.suse.com/1224676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35955"
},
{
"cve": "CVE-2024-35958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35958"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ena: Fix incorrect descriptor free behavior\n\nENA has two types of TX queues:\n- queues which only process TX packets arriving from the network stack\n- queues which only process TX packets forwarded to it by XDP_REDIRECT\n or XDP_TX instructions\n\nThe ena_free_tx_bufs() cycles through all descriptors in a TX queue\nand unmaps + frees every descriptor that hasn\u0027t been acknowledged yet\nby the device (uncompleted TX transactions).\nThe function assumes that the processed TX queue is necessarily from\nthe first category listed above and ends up using napi_consume_skb()\nfor descriptors belonging to an XDP specific queue.\n\nThis patch solves a bug in which, in case of a VF reset, the\ndescriptors aren\u0027t freed correctly, leading to crashes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35958",
"url": "https://www.suse.com/security/cve/CVE-2024-35958"
},
{
"category": "external",
"summary": "SUSE Bug 1224677 for CVE-2024-35958",
"url": "https://bugzilla.suse.com/1224677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35958"
},
{
"cve": "CVE-2024-35959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35959"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix mlx5e_priv_init() cleanup flow\n\nWhen mlx5e_priv_init() fails, the cleanup flow calls mlx5e_selq_cleanup which\ncalls mlx5e_selq_apply() that assures that the `priv-\u003estate_lock` is held using\nlockdep_is_held().\n\nAcquire the state_lock in mlx5e_selq_cleanup().\n\nKernel log:\n=============================\nWARNING: suspicious RCU usage\n6.8.0-rc3_net_next_841a9b5 #1 Not tainted\n-----------------------------\ndrivers/net/ethernet/mellanox/mlx5/core/en/selq.c:124 suspicious rcu_dereference_protected() usage!\n\nother info that might help us debug this:\n\nrcu_scheduler_active = 2, debug_locks = 1\n2 locks held by systemd-modules/293:\n #0: ffffffffa05067b0 (devices_rwsem){++++}-{3:3}, at: ib_register_client+0x109/0x1b0 [ib_core]\n #1: ffff8881096c65c0 (\u0026device-\u003eclient_data_rwsem){++++}-{3:3}, at: add_client_context+0x104/0x1c0 [ib_core]\n\nstack backtrace:\nCPU: 4 PID: 293 Comm: systemd-modules Not tainted 6.8.0-rc3_net_next_841a9b5 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x8a/0xa0\n lockdep_rcu_suspicious+0x154/0x1a0\n mlx5e_selq_apply+0x94/0xa0 [mlx5_core]\n mlx5e_selq_cleanup+0x3a/0x60 [mlx5_core]\n mlx5e_priv_init+0x2be/0x2f0 [mlx5_core]\n mlx5_rdma_setup_rn+0x7c/0x1a0 [mlx5_core]\n rdma_init_netdev+0x4e/0x80 [ib_core]\n ? mlx5_rdma_netdev_free+0x70/0x70 [mlx5_core]\n ipoib_intf_init+0x64/0x550 [ib_ipoib]\n ipoib_intf_alloc+0x4e/0xc0 [ib_ipoib]\n ipoib_add_one+0xb0/0x360 [ib_ipoib]\n add_client_context+0x112/0x1c0 [ib_core]\n ib_register_client+0x166/0x1b0 [ib_core]\n ? 0xffffffffa0573000\n ipoib_init_module+0xeb/0x1a0 [ib_ipoib]\n do_one_initcall+0x61/0x250\n do_init_module+0x8a/0x270\n init_module_from_file+0x8b/0xd0\n idempotent_init_module+0x17d/0x230\n __x64_sys_finit_module+0x61/0xb0\n do_syscall_64+0x71/0x140\n entry_SYSCALL_64_after_hwframe+0x46/0x4e\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35959",
"url": "https://www.suse.com/security/cve/CVE-2024-35959"
},
{
"category": "external",
"summary": "SUSE Bug 1224666 for CVE-2024-35959",
"url": "https://bugzilla.suse.com/1224666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35959"
},
{
"cve": "CVE-2024-35960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Properly link new fs rules into the tree\n\nPreviously, add_rule_fg would only add newly created rules from the\nhandle into the tree when they had a refcount of 1. On the other hand,\ncreate_flow_handle tries hard to find and reference already existing\nidentical rules instead of creating new ones.\n\nThese two behaviors can result in a situation where create_flow_handle\n1) creates a new rule and references it, then\n2) in a subsequent step during the same handle creation references it\n again,\nresulting in a rule with a refcount of 2 that is not linked into the\ntree, will have a NULL parent and root and will result in a crash when\nthe flow group is deleted because del_sw_hw_rule, invoked on rule\ndeletion, assumes node-\u003eparent is != NULL.\n\nThis happened in the wild, due to another bug related to incorrect\nhandling of duplicate pkt_reformat ids, which lead to the code in\ncreate_flow_handle incorrectly referencing a just-added rule in the same\nflow handle, resulting in the problem described above. Full details are\nat [1].\n\nThis patch changes add_rule_fg to add new rules without parents into\nthe tree, properly initializing them and avoiding the crash. This makes\nit more consistent with how rules are added to an FTE in\ncreate_flow_handle.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35960",
"url": "https://www.suse.com/security/cve/CVE-2024-35960"
},
{
"category": "external",
"summary": "SUSE Bug 1224588 for CVE-2024-35960",
"url": "https://bugzilla.suse.com/1224588"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35960"
},
{
"cve": "CVE-2024-35961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Register devlink first under devlink lock\n\nIn case device is having a non fatal FW error during probe, the\ndriver will report the error to user via devlink. This will trigger\na WARN_ON, since mlx5 is calling devlink_register() last.\nIn order to avoid the WARN_ON[1], change mlx5 to invoke devl_register()\nfirst under devlink lock.\n\n[1]\nWARNING: CPU: 5 PID: 227 at net/devlink/health.c:483 devlink_recover_notify.constprop.0+0xb8/0xc0\nCPU: 5 PID: 227 Comm: kworker/u16:3 Not tainted 6.4.0-rc5_for_upstream_min_debug_2023_06_12_12_38 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nWorkqueue: mlx5_health0000:08:00.0 mlx5_fw_reporter_err_work [mlx5_core]\nRIP: 0010:devlink_recover_notify.constprop.0+0xb8/0xc0\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x79/0x120\n ? devlink_recover_notify.constprop.0+0xb8/0xc0\n ? report_bug+0x17c/0x190\n ? handle_bug+0x3c/0x60\n ? exc_invalid_op+0x14/0x70\n ? asm_exc_invalid_op+0x16/0x20\n ? devlink_recover_notify.constprop.0+0xb8/0xc0\n devlink_health_report+0x4a/0x1c0\n mlx5_fw_reporter_err_work+0xa4/0xd0 [mlx5_core]\n process_one_work+0x1bb/0x3c0\n ? process_one_work+0x3c0/0x3c0\n worker_thread+0x4d/0x3c0\n ? process_one_work+0x3c0/0x3c0\n kthread+0xc6/0xf0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x1f/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35961",
"url": "https://www.suse.com/security/cve/CVE-2024-35961"
},
{
"category": "external",
"summary": "SUSE Bug 1224585 for CVE-2024-35961",
"url": "https://bugzilla.suse.com/1224585"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35961"
},
{
"cve": "CVE-2024-35963",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35963"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sock: Fix not validating setsockopt user input\n\nCheck user input length before copying data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35963",
"url": "https://www.suse.com/security/cve/CVE-2024-35963"
},
{
"category": "external",
"summary": "SUSE Bug 1224582 for CVE-2024-35963",
"url": "https://bugzilla.suse.com/1224582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35963"
},
{
"cve": "CVE-2024-35965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix not validating setsockopt user input\n\nCheck user input length before copying data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35965",
"url": "https://www.suse.com/security/cve/CVE-2024-35965"
},
{
"category": "external",
"summary": "SUSE Bug 1224579 for CVE-2024-35965",
"url": "https://bugzilla.suse.com/1224579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35965"
},
{
"cve": "CVE-2024-35966",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35966"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: Fix not validating setsockopt user input\n\nsyzbot reported rfcomm_sock_setsockopt_old() is copying data without\nchecking user input length.\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset\ninclude/linux/sockptr.h:49 [inline]\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr\ninclude/linux/sockptr.h:55 [inline]\nBUG: KASAN: slab-out-of-bounds in rfcomm_sock_setsockopt_old\nnet/bluetooth/rfcomm/sock.c:632 [inline]\nBUG: KASAN: slab-out-of-bounds in rfcomm_sock_setsockopt+0x893/0xa70\nnet/bluetooth/rfcomm/sock.c:673\nRead of size 4 at addr ffff8880209a8bc3 by task syz-executor632/5064",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35966",
"url": "https://www.suse.com/security/cve/CVE-2024-35966"
},
{
"category": "external",
"summary": "SUSE Bug 1224576 for CVE-2024-35966",
"url": "https://bugzilla.suse.com/1224576"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35966"
},
{
"cve": "CVE-2024-35967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35967"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix not validating setsockopt user input\n\nsyzbot reported sco_sock_setsockopt() is copying data without\nchecking user input length.\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset\ninclude/linux/sockptr.h:49 [inline]\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr\ninclude/linux/sockptr.h:55 [inline]\nBUG: KASAN: slab-out-of-bounds in sco_sock_setsockopt+0xc0b/0xf90\nnet/bluetooth/sco.c:893\nRead of size 4 at addr ffff88805f7b15a3 by task syz-executor.5/12578",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35967",
"url": "https://www.suse.com/security/cve/CVE-2024-35967"
},
{
"category": "external",
"summary": "SUSE Bug 1224587 for CVE-2024-35967",
"url": "https://bugzilla.suse.com/1224587"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35967"
},
{
"cve": "CVE-2024-35971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ks8851: Handle softirqs at the end of IRQ thread to fix hang\n\nThe ks8851_irq() thread may call ks8851_rx_pkts() in case there are\nany packets in the MAC FIFO, which calls netif_rx(). This netif_rx()\nimplementation is guarded by local_bh_disable() and local_bh_enable().\nThe local_bh_enable() may call do_softirq() to run softirqs in case\nany are pending. One of the softirqs is net_rx_action, which ultimately\nreaches the driver .start_xmit callback. If that happens, the system\nhangs. The entire call chain is below:\n\nks8851_start_xmit_par from netdev_start_xmit\nnetdev_start_xmit from dev_hard_start_xmit\ndev_hard_start_xmit from sch_direct_xmit\nsch_direct_xmit from __dev_queue_xmit\n__dev_queue_xmit from __neigh_update\n__neigh_update from neigh_update\nneigh_update from arp_process.constprop.0\narp_process.constprop.0 from __netif_receive_skb_one_core\n__netif_receive_skb_one_core from process_backlog\nprocess_backlog from __napi_poll.constprop.0\n__napi_poll.constprop.0 from net_rx_action\nnet_rx_action from __do_softirq\n__do_softirq from call_with_stack\ncall_with_stack from do_softirq\ndo_softirq from __local_bh_enable_ip\n__local_bh_enable_ip from netif_rx\nnetif_rx from ks8851_irq\nks8851_irq from irq_thread_fn\nirq_thread_fn from irq_thread\nirq_thread from kthread\nkthread from ret_from_fork\n\nThe hang happens because ks8851_irq() first locks a spinlock in\nks8851_par.c ks8851_lock_par() spin_lock_irqsave(\u0026ksp-\u003elock, ...)\nand with that spinlock locked, calls netif_rx(). Once the execution\nreaches ks8851_start_xmit_par(), it calls ks8851_lock_par() again\nwhich attempts to claim the already locked spinlock again, and the\nhang happens.\n\nMove the do_softirq() call outside of the spinlock protected section\nof ks8851_irq() by disabling BHs around the entire spinlock protected\nsection of ks8851_irq() handler. Place local_bh_enable() outside of\nthe spinlock protected section, so that it can trigger do_softirq()\nwithout the ks8851_par.c ks8851_lock_par() spinlock being held, and\nsafely call ks8851_start_xmit_par() without attempting to lock the\nalready locked spinlock.\n\nSince ks8851_irq() is protected by local_bh_disable()/local_bh_enable()\nnow, replace netif_rx() with __netif_rx() which is not duplicating the\nlocal_bh_disable()/local_bh_enable() calls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35971",
"url": "https://www.suse.com/security/cve/CVE-2024-35971"
},
{
"category": "external",
"summary": "SUSE Bug 1224578 for CVE-2024-35971",
"url": "https://bugzilla.suse.com/1224578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35971"
},
{
"cve": "CVE-2024-35972",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35972"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix possible memory leak in bnxt_rdma_aux_device_init()\n\nIf ulp = kzalloc() fails, the allocated edev will leak because it is\nnot properly assigned and the cleanup path will not be able to free it.\nFix it by assigning it properly immediately after allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35972",
"url": "https://www.suse.com/security/cve/CVE-2024-35972"
},
{
"category": "external",
"summary": "SUSE Bug 1224577 for CVE-2024-35972",
"url": "https://bugzilla.suse.com/1224577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35972"
},
{
"cve": "CVE-2024-35973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: fix header validation in geneve[6]_xmit_skb\n\nsyzbot is able to trigger an uninit-value in geneve_xmit() [1]\n\nProblem : While most ip tunnel helpers (like ip_tunnel_get_dsfield())\nuses skb_protocol(skb, true), pskb_inet_may_pull() is only using\nskb-\u003eprotocol.\n\nIf anything else than ETH_P_IPV6 or ETH_P_IP is found in skb-\u003eprotocol,\npskb_inet_may_pull() does nothing at all.\n\nIf a vlan tag was provided by the caller (af_packet in the syzbot case),\nthe network header might not point to the correct location, and skb\nlinear part could be smaller than expected.\n\nAdd skb_vlan_inet_prepare() to perform a complete mac validation.\n\nUse this in geneve for the moment, I suspect we need to adopt this\nmore broadly.\n\nv4 - Jakub reported v3 broke l2_tos_ttl_inherit.sh selftest\n - Only call __vlan_get_protocol() for vlan types.\n\nv2,v3 - Addressed Sabrina comments on v1 and v2\n\n[1]\n\nBUG: KMSAN: uninit-value in geneve_xmit_skb drivers/net/geneve.c:910 [inline]\n BUG: KMSAN: uninit-value in geneve_xmit+0x302d/0x5420 drivers/net/geneve.c:1030\n geneve_xmit_skb drivers/net/geneve.c:910 [inline]\n geneve_xmit+0x302d/0x5420 drivers/net/geneve.c:1030\n __netdev_start_xmit include/linux/netdevice.h:4903 [inline]\n netdev_start_xmit include/linux/netdevice.h:4917 [inline]\n xmit_one net/core/dev.c:3531 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3547\n __dev_queue_xmit+0x348d/0x52c0 net/core/dev.c:4335\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3081 [inline]\n packet_sendmsg+0x8bb0/0x9ef0 net/packet/af_packet.c:3113\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2199\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3804 [inline]\n slab_alloc_node mm/slub.c:3845 [inline]\n kmem_cache_alloc_node+0x613/0xc50 mm/slub.c:3888\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:577\n __alloc_skb+0x35b/0x7a0 net/core/skbuff.c:668\n alloc_skb include/linux/skbuff.h:1318 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6504\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2795\n packet_alloc_skb net/packet/af_packet.c:2930 [inline]\n packet_snd net/packet/af_packet.c:3024 [inline]\n packet_sendmsg+0x722d/0x9ef0 net/packet/af_packet.c:3113\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2199\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nCPU: 0 PID: 5033 Comm: syz-executor346 Not tainted 6.9.0-rc1-syzkaller-00005-g928a87efa423 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35973",
"url": "https://www.suse.com/security/cve/CVE-2024-35973"
},
{
"category": "external",
"summary": "SUSE Bug 1224586 for CVE-2024-35973",
"url": "https://bugzilla.suse.com/1224586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35973"
},
{
"cve": "CVE-2024-35974",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35974"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix q-\u003eblkg_list corruption during disk rebind\n\nMultiple gendisk instances can allocated/added for single request queue\nin case of disk rebind. blkg may still stay in q-\u003eblkg_list when calling\nblkcg_init_disk() for rebind, then q-\u003eblkg_list becomes corrupted.\n\nFix the list corruption issue by:\n\n- add blkg_init_queue() to initialize q-\u003eblkg_list \u0026 q-\u003eblkcg_mutex only\n- move calling blkg_init_queue() into blk_alloc_queue()\n\nThe list corruption should be started since commit f1c006f1c685 (\"blk-cgroup:\nsynchronize pd_free_fn() from blkg_free_workfn() and blkcg_deactivate_policy()\")\nwhich delays removing blkg from q-\u003eblkg_list into blkg_free_workfn().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35974",
"url": "https://www.suse.com/security/cve/CVE-2024-35974"
},
{
"category": "external",
"summary": "SUSE Bug 1224573 for CVE-2024-35974",
"url": "https://bugzilla.suse.com/1224573"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35974"
},
{
"cve": "CVE-2024-35975",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35975"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: Fix transmit scheduler resource leak\n\nInorder to support shaping and scheduling, Upon class creation\nNetdev driver allocates trasmit schedulers.\n\nThe previous patch which added support for Round robin scheduling has\na bug due to which driver is not freeing transmit schedulers post\nclass deletion.\n\nThis patch fixes the same.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35975",
"url": "https://www.suse.com/security/cve/CVE-2024-35975"
},
{
"category": "external",
"summary": "SUSE Bug 1224569 for CVE-2024-35975",
"url": "https://bugzilla.suse.com/1224569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35975"
},
{
"cve": "CVE-2024-35977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_uart: properly fix race condition\n\nThe cros_ec_uart_probe() function calls devm_serdev_device_open() before\nit calls serdev_device_set_client_ops(). This can trigger a NULL pointer\ndereference:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n ...\n Call Trace:\n \u003cTASK\u003e\n ...\n ? ttyport_receive_buf\n\nA simplified version of crashing code is as follows:\n\n static inline size_t serdev_controller_receive_buf(struct serdev_controller *ctrl,\n const u8 *data,\n size_t count)\n {\n struct serdev_device *serdev = ctrl-\u003eserdev;\n\n if (!serdev || !serdev-\u003eops-\u003ereceive_buf) // CRASH!\n return 0;\n\n return serdev-\u003eops-\u003ereceive_buf(serdev, data, count);\n }\n\nIt assumes that if SERPORT_ACTIVE is set and serdev exists, serdev-\u003eops\nwill also exist. This conflicts with the existing cros_ec_uart_probe()\nlogic, as it first calls devm_serdev_device_open() (which sets\nSERPORT_ACTIVE), and only later sets serdev-\u003eops via\nserdev_device_set_client_ops().\n\nCommit 01f95d42b8f4 (\"platform/chrome: cros_ec_uart: fix race\ncondition\") attempted to fix a similar race condition, but while doing\nso, made the window of error for this race condition to happen much\nwider.\n\nAttempt to fix the race condition again, making sure we fully setup\nbefore calling devm_serdev_device_open().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35977",
"url": "https://www.suse.com/security/cve/CVE-2024-35977"
},
{
"category": "external",
"summary": "SUSE Bug 1224568 for CVE-2024-35977",
"url": "https://bugzilla.suse.com/1224568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35977"
},
{
"cve": "CVE-2024-35978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Fix memory leak in hci_req_sync_complete()\n\nIn \u0027hci_req_sync_complete()\u0027, always free the previous sync\nrequest state before assigning reference to a new one.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35978",
"url": "https://www.suse.com/security/cve/CVE-2024-35978"
},
{
"category": "external",
"summary": "SUSE Bug 1224571 for CVE-2024-35978",
"url": "https://bugzilla.suse.com/1224571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35978"
},
{
"cve": "CVE-2024-35982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbatman-adv: Avoid infinite loop trying to resize local TT\n\nIf the MTU of one of an attached interface becomes too small to transmit\nthe local translation table then it must be resized to fit inside all\nfragments (when enabled) or a single packet.\n\nBut if the MTU becomes too low to transmit even the header + the VLAN\nspecific part then the resizing of the local TT will never succeed. This\ncan for example happen when the usable space is 110 bytes and 11 VLANs are\non top of batman-adv. In this case, at least 116 byte would be needed.\nThere will just be an endless spam of\n\n batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (110)\n\nin the log but the function will never finish. Problem here is that the\ntimeout will be halved all the time and will then stagnate at 0 and\ntherefore never be able to reduce the table even more.\n\nThere are other scenarios possible with a similar result. The number of\nBATADV_TT_CLIENT_NOPURGE entries in the local TT can for example be too\nhigh to fit inside a packet. Such a scenario can therefore happen also with\nonly a single VLAN + 7 non-purgable addresses - requiring at least 120\nbytes.\n\nWhile this should be handled proactively when:\n\n* interface with too low MTU is added\n* VLAN is added\n* non-purgeable local mac is added\n* MTU of an attached interface is reduced\n* fragmentation setting gets disabled (which most likely requires dropping\n attached interfaces)\n\nnot all of these scenarios can be prevented because batman-adv is only\nconsuming events without the the possibility to prevent these actions\n(non-purgable MAC address added, MTU of an attached interface is reduced).\nIt is therefore necessary to also make sure that the code is able to handle\nalso the situations when there were already incompatible system\nconfiguration are present.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35982",
"url": "https://www.suse.com/security/cve/CVE-2024-35982"
},
{
"category": "external",
"summary": "SUSE Bug 1224566 for CVE-2024-35982",
"url": "https://bugzilla.suse.com/1224566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35982"
},
{
"cve": "CVE-2024-35984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: smbus: fix NULL function pointer dereference\n\nBaruch reported an OOPS when using the designware controller as target\nonly. Target-only modes break the assumption of one transfer function\nalways being available. Fix this by always checking the pointer in\n__i2c_transfer.\n\n[wsa: dropped the simplification in core-smbus to avoid theoretical regressions]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35984",
"url": "https://www.suse.com/security/cve/CVE-2024-35984"
},
{
"category": "external",
"summary": "SUSE Bug 1224567 for CVE-2024-35984",
"url": "https://bugzilla.suse.com/1224567"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35984"
},
{
"cve": "CVE-2024-35986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: ti: tusb1210: Resolve charger-det crash if charger psy is unregistered\n\nThe power_supply frame-work is not really designed for there to be\nlong living in kernel references to power_supply devices.\n\nSpecifically unregistering a power_supply while some other code has\na reference to it triggers a WARN in power_supply_unregister():\n\n\tWARN_ON(atomic_dec_return(\u0026psy-\u003euse_cnt));\n\nFolllowed by the power_supply still getting removed and the\nbacking data freed anyway, leaving the tusb1210 charger-detect code\nwith a dangling reference, resulting in a crash the next time\ntusb1210_get_online() is called.\n\nFix this by only holding the reference in tusb1210_get_online()\nfreeing it at the end of the function. Note this still leaves\na theoretical race window, but it avoids the issue when manually\nrmmod-ing the charger chip driver during development.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35986",
"url": "https://www.suse.com/security/cve/CVE-2024-35986"
},
{
"category": "external",
"summary": "SUSE Bug 1224562 for CVE-2024-35986",
"url": "https://bugzilla.suse.com/1224562"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35986"
},
{
"cve": "CVE-2024-35989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: Fix oops during rmmod on single-CPU platforms\n\nDuring the removal of the idxd driver, registered offline callback is\ninvoked as part of the clean up process. However, on systems with only\none CPU online, no valid target is available to migrate the\nperf context, resulting in a kernel oops:\n\n BUG: unable to handle page fault for address: 000000000002a2b8\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0002) - not-present page\n PGD 1470e1067 P4D 0\n Oops: 0002 [#1] PREEMPT SMP NOPTI\n CPU: 0 PID: 20 Comm: cpuhp/0 Not tainted 6.8.0-rc6-dsa+ #57\n Hardware name: Intel Corporation AvenueCity/AvenueCity, BIOS BHSDCRB1.86B.2492.D03.2307181620 07/18/2023\n RIP: 0010:mutex_lock+0x2e/0x50\n ...\n Call Trace:\n \u003cTASK\u003e\n __die+0x24/0x70\n page_fault_oops+0x82/0x160\n do_user_addr_fault+0x65/0x6b0\n __pfx___rdmsr_safe_on_cpu+0x10/0x10\n exc_page_fault+0x7d/0x170\n asm_exc_page_fault+0x26/0x30\n mutex_lock+0x2e/0x50\n mutex_lock+0x1e/0x50\n perf_pmu_migrate_context+0x87/0x1f0\n perf_event_cpu_offline+0x76/0x90 [idxd]\n cpuhp_invoke_callback+0xa2/0x4f0\n __pfx_perf_event_cpu_offline+0x10/0x10 [idxd]\n cpuhp_thread_fun+0x98/0x150\n smpboot_thread_fn+0x27/0x260\n smpboot_thread_fn+0x1af/0x260\n __pfx_smpboot_thread_fn+0x10/0x10\n kthread+0x103/0x140\n __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x50\n __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003cTASK\u003e\n\nFix the issue by preventing the migration of the perf context to an\ninvalid target.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35989",
"url": "https://www.suse.com/security/cve/CVE-2024-35989"
},
{
"category": "external",
"summary": "SUSE Bug 1224558 for CVE-2024-35989",
"url": "https://bugzilla.suse.com/1224558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35989"
},
{
"cve": "CVE-2024-35990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma: xilinx_dpdma: Fix locking\n\nThere are several places where either chan-\u003elock or chan-\u003evchan.lock was\nnot held. Add appropriate locking. This fixes lockdep warnings like\n\n[ 31.077578] ------------[ cut here ]------------\n[ 31.077831] WARNING: CPU: 2 PID: 40 at drivers/dma/xilinx/xilinx_dpdma.c:834 xilinx_dpdma_chan_queue_transfer+0x274/0x5e0\n[ 31.077953] Modules linked in:\n[ 31.078019] CPU: 2 PID: 40 Comm: kworker/u12:1 Not tainted 6.6.20+ #98\n[ 31.078102] Hardware name: xlnx,zynqmp (DT)\n[ 31.078169] Workqueue: events_unbound deferred_probe_work_func\n[ 31.078272] pstate: 600000c5 (nZCv daIF -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 31.078377] pc : xilinx_dpdma_chan_queue_transfer+0x274/0x5e0\n[ 31.078473] lr : xilinx_dpdma_chan_queue_transfer+0x270/0x5e0\n[ 31.078550] sp : ffffffc083bb2e10\n[ 31.078590] x29: ffffffc083bb2e10 x28: 0000000000000000 x27: ffffff880165a168\n[ 31.078754] x26: ffffff880164e920 x25: ffffff880164eab8 x24: ffffff880164d480\n[ 31.078920] x23: ffffff880165a148 x22: ffffff880164e988 x21: 0000000000000000\n[ 31.079132] x20: ffffffc082aa3000 x19: ffffff880164e880 x18: 0000000000000000\n[ 31.079295] x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n[ 31.079453] x14: 0000000000000000 x13: ffffff8802263dc0 x12: 0000000000000001\n[ 31.079613] x11: 0001ffc083bb2e34 x10: 0001ff880164e98f x9 : 0001ffc082aa3def\n[ 31.079824] x8 : 0001ffc082aa3dec x7 : 0000000000000000 x6 : 0000000000000516\n[ 31.079982] x5 : ffffffc7f8d43000 x4 : ffffff88003c9c40 x3 : ffffffffffffffff\n[ 31.080147] x2 : ffffffc7f8d43000 x1 : 00000000000000c0 x0 : 0000000000000000\n[ 31.080307] Call trace:\n[ 31.080340] xilinx_dpdma_chan_queue_transfer+0x274/0x5e0\n[ 31.080518] xilinx_dpdma_issue_pending+0x11c/0x120\n[ 31.080595] zynqmp_disp_layer_update+0x180/0x3ac\n[ 31.080712] zynqmp_dpsub_plane_atomic_update+0x11c/0x21c\n[ 31.080825] drm_atomic_helper_commit_planes+0x20c/0x684\n[ 31.080951] drm_atomic_helper_commit_tail+0x5c/0xb0\n[ 31.081139] commit_tail+0x234/0x294\n[ 31.081246] drm_atomic_helper_commit+0x1f8/0x210\n[ 31.081363] drm_atomic_commit+0x100/0x140\n[ 31.081477] drm_client_modeset_commit_atomic+0x318/0x384\n[ 31.081634] drm_client_modeset_commit_locked+0x8c/0x24c\n[ 31.081725] drm_client_modeset_commit+0x34/0x5c\n[ 31.081812] __drm_fb_helper_restore_fbdev_mode_unlocked+0x104/0x168\n[ 31.081899] drm_fb_helper_set_par+0x50/0x70\n[ 31.081971] fbcon_init+0x538/0xc48\n[ 31.082047] visual_init+0x16c/0x23c\n[ 31.082207] do_bind_con_driver.isra.0+0x2d0/0x634\n[ 31.082320] do_take_over_console+0x24c/0x33c\n[ 31.082429] do_fbcon_takeover+0xbc/0x1b0\n[ 31.082503] fbcon_fb_registered+0x2d0/0x34c\n[ 31.082663] register_framebuffer+0x27c/0x38c\n[ 31.082767] __drm_fb_helper_initial_config_and_unlock+0x5c0/0x91c\n[ 31.082939] drm_fb_helper_initial_config+0x50/0x74\n[ 31.083012] drm_fbdev_dma_client_hotplug+0xb8/0x108\n[ 31.083115] drm_client_register+0xa0/0xf4\n[ 31.083195] drm_fbdev_dma_setup+0xb0/0x1cc\n[ 31.083293] zynqmp_dpsub_drm_init+0x45c/0x4e0\n[ 31.083431] zynqmp_dpsub_probe+0x444/0x5e0\n[ 31.083616] platform_probe+0x8c/0x13c\n[ 31.083713] really_probe+0x258/0x59c\n[ 31.083793] __driver_probe_device+0xc4/0x224\n[ 31.083878] driver_probe_device+0x70/0x1c0\n[ 31.083961] __device_attach_driver+0x108/0x1e0\n[ 31.084052] bus_for_each_drv+0x9c/0x100\n[ 31.084125] __device_attach+0x100/0x298\n[ 31.084207] device_initial_probe+0x14/0x20\n[ 31.084292] bus_probe_device+0xd8/0xdc\n[ 31.084368] deferred_probe_work_func+0x11c/0x180\n[ 31.084451] process_one_work+0x3ac/0x988\n[ 31.084643] worker_thread+0x398/0x694\n[ 31.084752] kthread+0x1bc/0x1c0\n[ 31.084848] ret_from_fork+0x10/0x20\n[ 31.084932] irq event stamp: 64549\n[ 31.084970] hardirqs last enabled at (64548): [\u003cffffffc081adf35c\u003e] _raw_spin_unlock_irqrestore+0x80/0x90\n[ 31.085157]\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35990",
"url": "https://www.suse.com/security/cve/CVE-2024-35990"
},
{
"category": "external",
"summary": "SUSE Bug 1224559 for CVE-2024-35990",
"url": "https://bugzilla.suse.com/1224559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35990"
},
{
"cve": "CVE-2024-35992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: marvell: a3700-comphy: Fix out of bounds read\n\nThere is an out of bounds read access of \u0027gbe_phy_init_fix[fix_idx].addr\u0027\nevery iteration after \u0027fix_idx\u0027 reaches \u0027ARRAY_SIZE(gbe_phy_init_fix)\u0027.\n\nMake sure \u0027gbe_phy_init[addr]\u0027 is used when all elements of\n\u0027gbe_phy_init_fix\u0027 array are handled.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35992",
"url": "https://www.suse.com/security/cve/CVE-2024-35992"
},
{
"category": "external",
"summary": "SUSE Bug 1224555 for CVE-2024-35992",
"url": "https://bugzilla.suse.com/1224555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35992"
},
{
"cve": "CVE-2024-35995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: CPPC: Use access_width over bit_width for system memory accesses\n\nTo align with ACPI 6.3+, since bit_width can be any 8-bit value, it\ncannot be depended on to be always on a clean 8b boundary. This was\nuncovered on the Cobalt 100 platform.\n\nSError Interrupt on CPU26, code 0xbe000011 -- SError\n CPU: 26 PID: 1510 Comm: systemd-udevd Not tainted 5.15.2.1-13 #1\n Hardware name: MICROSOFT CORPORATION, BIOS MICROSOFT CORPORATION\n pstate: 62400009 (nZCv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--)\n pc : cppc_get_perf_caps+0xec/0x410\n lr : cppc_get_perf_caps+0xe8/0x410\n sp : ffff8000155ab730\n x29: ffff8000155ab730 x28: ffff0080139d0038 x27: ffff0080139d0078\n x26: 0000000000000000 x25: ffff0080139d0058 x24: 00000000ffffffff\n x23: ffff0080139d0298 x22: ffff0080139d0278 x21: 0000000000000000\n x20: ffff00802b251910 x19: ffff0080139d0000 x18: ffffffffffffffff\n x17: 0000000000000000 x16: ffffdc7e111bad04 x15: ffff00802b251008\n x14: ffffffffffffffff x13: ffff013f1fd63300 x12: 0000000000000006\n x11: ffffdc7e128f4420 x10: 0000000000000000 x9 : ffffdc7e111badec\n x8 : ffff00802b251980 x7 : 0000000000000000 x6 : ffff0080139d0028\n x5 : 0000000000000000 x4 : ffff0080139d0018 x3 : 00000000ffffffff\n x2 : 0000000000000008 x1 : ffff8000155ab7a0 x0 : 0000000000000000\n Kernel panic - not syncing: Asynchronous SError Interrupt\n CPU: 26 PID: 1510 Comm: systemd-udevd Not tainted\n5.15.2.1-13 #1\n Hardware name: MICROSOFT CORPORATION, BIOS MICROSOFT CORPORATION\n Call trace:\n dump_backtrace+0x0/0x1e0\n show_stack+0x24/0x30\n dump_stack_lvl+0x8c/0xb8\n dump_stack+0x18/0x34\n panic+0x16c/0x384\n add_taint+0x0/0xc0\n arm64_serror_panic+0x7c/0x90\n arm64_is_fatal_ras_serror+0x34/0xa4\n do_serror+0x50/0x6c\n el1h_64_error_handler+0x40/0x74\n el1h_64_error+0x7c/0x80\n cppc_get_perf_caps+0xec/0x410\n cppc_cpufreq_cpu_init+0x74/0x400 [cppc_cpufreq]\n cpufreq_online+0x2dc/0xa30\n cpufreq_add_dev+0xc0/0xd4\n subsys_interface_register+0x134/0x14c\n cpufreq_register_driver+0x1b0/0x354\n cppc_cpufreq_init+0x1a8/0x1000 [cppc_cpufreq]\n do_one_initcall+0x50/0x250\n do_init_module+0x60/0x27c\n load_module+0x2300/0x2570\n __do_sys_finit_module+0xa8/0x114\n __arm64_sys_finit_module+0x2c/0x3c\n invoke_syscall+0x78/0x100\n el0_svc_common.constprop.0+0x180/0x1a0\n do_el0_svc+0x84/0xa0\n el0_svc+0x2c/0xc0\n el0t_64_sync_handler+0xa4/0x12c\n el0t_64_sync+0x1a4/0x1a8\n\nInstead, use access_width to determine the size and use the offset and\nwidth to shift and mask the bits to read/write out. Make sure to add a\ncheck for system memory since pcc redefines the access_width to\nsubspace id.\n\nIf access_width is not set, then fall back to using bit_width.\n\n[ rjw: Subject and changelog edits, comment adjustments ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35995",
"url": "https://www.suse.com/security/cve/CVE-2024-35995"
},
{
"category": "external",
"summary": "SUSE Bug 1224557 for CVE-2024-35995",
"url": "https://bugzilla.suse.com/1224557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35995"
},
{
"cve": "CVE-2024-35997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up\n\nThe flag I2C_HID_READ_PENDING is used to serialize I2C operations.\nHowever, this is not necessary, because I2C core already has its own\nlocking for that.\n\nMore importantly, this flag can cause a lock-up: if the flag is set in\ni2c_hid_xfer() and an interrupt happens, the interrupt handler\n(i2c_hid_irq) will check this flag and return immediately without doing\nanything, then the interrupt handler will be invoked again in an\ninfinite loop.\n\nSince interrupt handler is an RT task, it takes over the CPU and the\nflag-clearing task never gets scheduled, thus we have a lock-up.\n\nDelete this unnecessary flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35997",
"url": "https://www.suse.com/security/cve/CVE-2024-35997"
},
{
"category": "external",
"summary": "SUSE Bug 1224552 for CVE-2024-35997",
"url": "https://bugzilla.suse.com/1224552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35997"
},
{
"cve": "CVE-2024-36002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndpll: fix dpll_pin_on_pin_register() for multiple parent pins\n\nIn scenario where pin is registered with multiple parent pins via\ndpll_pin_on_pin_register(..), all belonging to the same dpll device.\nA second call to dpll_pin_on_pin_unregister(..) would cause a call trace,\nas it tries to use already released registration resources (due to fix\nintroduced in b446631f355e). In this scenario pin was registered twice,\nso resources are not yet expected to be release until each registered\npin/pin pair is unregistered.\n\nCurrently, the following crash/call trace is produced when ice driver is\nremoved on the system with installed E810T NIC which includes dpll device:\n\nWARNING: CPU: 51 PID: 9155 at drivers/dpll/dpll_core.c:809 dpll_pin_ops+0x20/0x30\nRIP: 0010:dpll_pin_ops+0x20/0x30\nCall Trace:\n ? __warn+0x7f/0x130\n ? dpll_pin_ops+0x20/0x30\n dpll_msg_add_pin_freq+0x37/0x1d0\n dpll_cmd_pin_get_one+0x1c0/0x400\n ? __nlmsg_put+0x63/0x80\n dpll_pin_event_send+0x93/0x140\n dpll_pin_on_pin_unregister+0x3f/0x100\n ice_dpll_deinit_pins+0xa1/0x230 [ice]\n ice_remove+0xf1/0x210 [ice]\n\nFix by adding a parent pointer as a cookie when creating a registration,\nalso when searching for it. For the regular pins pass NULL, this allows to\ncreate separated registration for each parent the pin is registered with.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36002",
"url": "https://www.suse.com/security/cve/CVE-2024-36002"
},
{
"category": "external",
"summary": "SUSE Bug 1224546 for CVE-2024-36002",
"url": "https://bugzilla.suse.com/1224546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36002"
},
{
"cve": "CVE-2024-36009",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36009"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nax25: Fix netdev refcount issue\n\nThe dev_tracker is added to ax25_cb in ax25_bind(). When the\nax25 device is detaching, the dev_tracker of ax25_cb should be\ndeallocated in ax25_kill_by_device() instead of the dev_tracker\nof ax25_dev. The log reported by ref_tracker is shown below:\n\n[ 80.884935] ref_tracker: reference already released.\n[ 80.885150] ref_tracker: allocated in:\n[ 80.885349] ax25_dev_device_up+0x105/0x540\n[ 80.885730] ax25_device_event+0xa4/0x420\n[ 80.885730] notifier_call_chain+0xc9/0x1e0\n[ 80.885730] __dev_notify_flags+0x138/0x280\n[ 80.885730] dev_change_flags+0xd7/0x180\n[ 80.885730] dev_ifsioc+0x6a9/0xa30\n[ 80.885730] dev_ioctl+0x4d8/0xd90\n[ 80.885730] sock_do_ioctl+0x1c2/0x2d0\n[ 80.885730] sock_ioctl+0x38b/0x4f0\n[ 80.885730] __se_sys_ioctl+0xad/0xf0\n[ 80.885730] do_syscall_64+0xc4/0x1b0\n[ 80.885730] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n[ 80.885730] ref_tracker: freed in:\n[ 80.885730] ax25_device_event+0x272/0x420\n[ 80.885730] notifier_call_chain+0xc9/0x1e0\n[ 80.885730] dev_close_many+0x272/0x370\n[ 80.885730] unregister_netdevice_many_notify+0x3b5/0x1180\n[ 80.885730] unregister_netdev+0xcf/0x120\n[ 80.885730] sixpack_close+0x11f/0x1b0\n[ 80.885730] tty_ldisc_kill+0xcb/0x190\n[ 80.885730] tty_ldisc_hangup+0x338/0x3d0\n[ 80.885730] __tty_hangup+0x504/0x740\n[ 80.885730] tty_release+0x46e/0xd80\n[ 80.885730] __fput+0x37f/0x770\n[ 80.885730] __x64_sys_close+0x7b/0xb0\n[ 80.885730] do_syscall_64+0xc4/0x1b0\n[ 80.885730] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n[ 80.893739] ------------[ cut here ]------------\n[ 80.894030] WARNING: CPU: 2 PID: 140 at lib/ref_tracker.c:255 ref_tracker_free+0x47b/0x6b0\n[ 80.894297] Modules linked in:\n[ 80.894929] CPU: 2 PID: 140 Comm: ax25_conn_rel_6 Not tainted 6.9.0-rc4-g8cd26fd90c1a #11\n[ 80.895190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qem4\n[ 80.895514] RIP: 0010:ref_tracker_free+0x47b/0x6b0\n[ 80.895808] Code: 83 c5 18 4c 89 eb 48 c1 eb 03 8a 04 13 84 c0 0f 85 df 01 00 00 41 83 7d 00 00 75 4b 4c 89 ff 9\n[ 80.896171] RSP: 0018:ffff888009edf8c0 EFLAGS: 00000286\n[ 80.896339] RAX: 1ffff1100141ac00 RBX: 1ffff1100149463b RCX: dffffc0000000000\n[ 80.896502] RDX: 0000000000000001 RSI: 0000000000000246 RDI: ffff88800a0d6518\n[ 80.896925] RBP: ffff888009edf9b0 R08: ffff88806d3288d3 R09: 1ffff1100da6511a\n[ 80.897212] R10: dffffc0000000000 R11: ffffed100da6511b R12: ffff88800a4a31d4\n[ 80.897859] R13: ffff88800a4a31d8 R14: dffffc0000000000 R15: ffff88800a0d6518\n[ 80.898279] FS: 00007fd88b7fe700(0000) GS:ffff88806d300000(0000) knlGS:0000000000000000\n[ 80.899436] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 80.900181] CR2: 00007fd88c001d48 CR3: 000000000993e000 CR4: 00000000000006f0\n...\n[ 80.935774] ref_tracker: sp%d@000000000bb9df3d has 1/1 users at\n[ 80.935774] ax25_bind+0x424/0x4e0\n[ 80.935774] __sys_bind+0x1d9/0x270\n[ 80.935774] __x64_sys_bind+0x75/0x80\n[ 80.935774] do_syscall_64+0xc4/0x1b0\n[ 80.935774] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n\nChange ax25_dev-\u003edev_tracker to the dev_tracker of ax25_cb\nin order to mitigate the bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36009",
"url": "https://www.suse.com/security/cve/CVE-2024-36009"
},
{
"category": "external",
"summary": "SUSE Bug 1224542 for CVE-2024-36009",
"url": "https://bugzilla.suse.com/1224542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36009"
},
{
"cve": "CVE-2024-36011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: HCI: Fix potential null-ptr-deref\n\nFix potential null-ptr-deref in hci_le_big_sync_established_evt().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36011",
"url": "https://www.suse.com/security/cve/CVE-2024-36011"
},
{
"category": "external",
"summary": "SUSE Bug 1225579 for CVE-2024-36011",
"url": "https://bugzilla.suse.com/1225579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36011"
},
{
"cve": "CVE-2024-36012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: msft: fix slab-use-after-free in msft_do_close()\n\nTying the msft-\u003edata lifetime to hdev by freeing it in\nhci_release_dev() to fix the following case:\n\n[use]\nmsft_do_close()\n msft = hdev-\u003emsft_data;\n if (!msft) ...(1) \u003c- passed.\n return;\n mutex_lock(\u0026msft-\u003efilter_lock); ...(4) \u003c- used after freed.\n\n[free]\nmsft_unregister()\n msft = hdev-\u003emsft_data;\n hdev-\u003emsft_data = NULL; ...(2)\n kfree(msft); ...(3) \u003c- msft is freed.\n\n==================================================================\nBUG: KASAN: slab-use-after-free in __mutex_lock_common\nkernel/locking/mutex.c:587 [inline]\nBUG: KASAN: slab-use-after-free in __mutex_lock+0x8f/0xc30\nkernel/locking/mutex.c:752\nRead of size 8 at addr ffff888106cbbca8 by task kworker/u5:2/309",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36012",
"url": "https://www.suse.com/security/cve/CVE-2024-36012"
},
{
"category": "external",
"summary": "SUSE Bug 1225502 for CVE-2024-36012",
"url": "https://bugzilla.suse.com/1225502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36012"
},
{
"cve": "CVE-2024-36014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36014"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/arm/malidp: fix a possible null pointer dereference\n\nIn malidp_mw_connector_reset, new memory is allocated with kzalloc, but\nno check is performed. In order to prevent null pointer dereferencing,\nensure that mw_state is checked before calling\n__drm_atomic_helper_connector_reset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36014",
"url": "https://www.suse.com/security/cve/CVE-2024-36014"
},
{
"category": "external",
"summary": "SUSE Bug 1225593 for CVE-2024-36014",
"url": "https://bugzilla.suse.com/1225593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36014"
},
{
"cve": "CVE-2024-36018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36018"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/uvmm: fix addr/range calcs for remap operations\n\ndEQP-VK.sparse_resources.image_rebind.2d_array.r64i.128_128_8\nwas causing a remap operation like the below.\n\nop_remap: prev: 0000003fffed0000 00000000000f0000 00000000a5abd18a 0000000000000000\nop_remap: next:\nop_remap: unmap: 0000003fffed0000 0000000000100000 0\nop_map: map: 0000003ffffc0000 0000000000010000 000000005b1ba33c 00000000000e0000\n\nThis was resulting in an unmap operation from 0x3fffed0000+0xf0000, 0x100000\nwhich was corrupting the pagetables and oopsing the kernel.\n\nFixes the prev + unmap range calcs to use start/end and map back to addr/range.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36018",
"url": "https://www.suse.com/security/cve/CVE-2024-36018"
},
{
"category": "external",
"summary": "SUSE Bug 1225694 for CVE-2024-36018",
"url": "https://bugzilla.suse.com/1225694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36018"
},
{
"cve": "CVE-2024-36019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap: maple: Fix cache corruption in regcache_maple_drop()\n\nWhen keeping the upper end of a cache block entry, the entry[] array\nmust be indexed by the offset from the base register of the block,\ni.e. max - mas.index.\n\nThe code was indexing entry[] by only the register address, leading\nto an out-of-bounds access that copied some part of the kernel\nmemory over the cache contents.\n\nThis bug was not detected by the regmap KUnit test because it only\ntests with a block of registers starting at 0, so mas.index == 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36019",
"url": "https://www.suse.com/security/cve/CVE-2024-36019"
},
{
"category": "external",
"summary": "SUSE Bug 1225695 for CVE-2024-36019",
"url": "https://bugzilla.suse.com/1225695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36019"
},
{
"cve": "CVE-2024-36020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: fix vf may be used uninitialized in this function warning\n\nTo fix the regression introduced by commit 52424f974bc5, which causes\nservers hang in very hard to reproduce conditions with resets races.\nUsing two sources for the information is the root cause.\nIn this function before the fix bumping v didn\u0027t mean bumping vf\npointer. But the code used this variables interchangeably, so stale vf\ncould point to different/not intended vf.\n\nRemove redundant \"v\" variable and iterate via single VF pointer across\nwhole function instead to guarantee VF pointer validity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36020",
"url": "https://www.suse.com/security/cve/CVE-2024-36020"
},
{
"category": "external",
"summary": "SUSE Bug 1225698 for CVE-2024-36020",
"url": "https://bugzilla.suse.com/1225698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36020"
},
{
"cve": "CVE-2024-36021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when devlink reload during pf initialization\n\nThe devlink reload process will access the hardware resources,\nbut the register operation is done before the hardware is initialized.\nSo, processing the devlink reload during initialization may lead to kernel\ncrash. This patch fixes this by taking devl_lock during initialization.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36021",
"url": "https://www.suse.com/security/cve/CVE-2024-36021"
},
{
"category": "external",
"summary": "SUSE Bug 1225699 for CVE-2024-36021",
"url": "https://bugzilla.suse.com/1225699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36021"
},
{
"cve": "CVE-2024-36025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix off by one in qla_edif_app_getstats()\n\nThe app_reply-\u003eelem[] array is allocated earlier in this function and it\nhas app_req.num_ports elements. Thus this \u003e comparison needs to be \u003e= to\nprevent memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36025",
"url": "https://www.suse.com/security/cve/CVE-2024-36025"
},
{
"category": "external",
"summary": "SUSE Bug 1225704 for CVE-2024-36025",
"url": "https://bugzilla.suse.com/1225704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36025"
},
{
"cve": "CVE-2024-36026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11\n\nWhile doing multiple S4 stress tests, GC/RLC/PMFW get into\nan invalid state resulting into hard hangs.\n\nAdding a GFX reset as workaround just before sending the\nMP1_UNLOAD message avoids this failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36026",
"url": "https://www.suse.com/security/cve/CVE-2024-36026"
},
{
"category": "external",
"summary": "SUSE Bug 1225705 for CVE-2024-36026",
"url": "https://bugzilla.suse.com/1225705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36026"
},
{
"cve": "CVE-2024-36029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: sdhci-msm: pervent access to suspended controller\n\nGeneric sdhci code registers LED device and uses host-\u003eruntime_suspended\nflag to protect access to it. The sdhci-msm driver doesn\u0027t set this flag,\nwhich causes a crash when LED is accessed while controller is runtime\nsuspended. Fix this by setting the flag correctly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36029",
"url": "https://www.suse.com/security/cve/CVE-2024-36029"
},
{
"category": "external",
"summary": "SUSE Bug 1225708 for CVE-2024-36029",
"url": "https://bugzilla.suse.com/1225708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36029"
},
{
"cve": "CVE-2024-36032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36032"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix info leak when fetching fw build id\n\nAdd the missing sanity checks and move the 255-byte build-id buffer off\nthe stack to avoid leaking stack data through debugfs in case the\nbuild-info reply is malformed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36032",
"url": "https://www.suse.com/security/cve/CVE-2024-36032"
},
{
"category": "external",
"summary": "SUSE Bug 1225720 for CVE-2024-36032",
"url": "https://bugzilla.suse.com/1225720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-36032"
},
{
"cve": "CVE-2024-36476",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36476"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible\n\nMove the declaration of the \u0027ib_sge list\u0027 variable outside the\n\u0027always_invalidate\u0027 block to ensure it remains accessible for use\nthroughout the function.\n\nPreviously, \u0027ib_sge list\u0027 was declared within the \u0027always_invalidate\u0027\nblock, limiting its accessibility, then caused a\n\u0027BUG: kernel NULL pointer dereference\u0027[1].\n ? __die_body.cold+0x19/0x27\n ? page_fault_oops+0x15a/0x2d0\n ? search_module_extables+0x19/0x60\n ? search_bpf_extables+0x5f/0x80\n ? exc_page_fault+0x7e/0x180\n ? asm_exc_page_fault+0x26/0x30\n ? memcpy_orig+0xd5/0x140\n rxe_mr_copy+0x1c3/0x200 [rdma_rxe]\n ? rxe_pool_get_index+0x4b/0x80 [rdma_rxe]\n copy_data+0xa5/0x230 [rdma_rxe]\n rxe_requester+0xd9b/0xf70 [rdma_rxe]\n ? finish_task_switch.isra.0+0x99/0x2e0\n rxe_sender+0x13/0x40 [rdma_rxe]\n do_task+0x68/0x1e0 [rdma_rxe]\n process_one_work+0x177/0x330\n worker_thread+0x252/0x390\n ? __pfx_worker_thread+0x10/0x10\n\nThis change ensures the variable is available for subsequent operations\nthat require it.\n\n[1] https://lore.kernel.org/linux-rdma/6a1f3e8f-deb0-49f9-bc69-a9b03ecfcda7@fujitsu.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36476",
"url": "https://www.suse.com/security/cve/CVE-2024-36476"
},
{
"category": "external",
"summary": "SUSE Bug 1235902 for CVE-2024-36476",
"url": "https://bugzilla.suse.com/1235902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36476"
},
{
"cve": "CVE-2024-36880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: add missing firmware sanity checks\n\nAdd the missing sanity checks when parsing the firmware files before\ndownloading them to avoid accessing and corrupting memory beyond the\nvmalloced buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36880",
"url": "https://www.suse.com/security/cve/CVE-2024-36880"
},
{
"category": "external",
"summary": "SUSE Bug 1225722 for CVE-2024-36880",
"url": "https://bugzilla.suse.com/1225722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36880"
},
{
"cve": "CVE-2024-36885",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36885"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36885",
"url": "https://www.suse.com/security/cve/CVE-2024-36885"
},
{
"category": "external",
"summary": "SUSE Bug 1225728 for CVE-2024-36885",
"url": "https://bugzilla.suse.com/1225728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36885"
},
{
"cve": "CVE-2024-36891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36891"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmaple_tree: fix mas_empty_area_rev() null pointer dereference\n\nCurrently the code calls mas_start() followed by mas_data_end() if the\nmaple state is MA_START, but mas_start() may return with the maple state\nnode == NULL. This will lead to a null pointer dereference when checking\ninformation in the NULL node, which is done in mas_data_end().\n\nAvoid setting the offset if there is no node by waiting until after the\nmaple state is checked for an empty or single entry state.\n\nA user could trigger the events to cause a kernel oops by unmapping all\nvmas to produce an empty maple tree, then mapping a vma that would cause\nthe scenario described above.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36891",
"url": "https://www.suse.com/security/cve/CVE-2024-36891"
},
{
"category": "external",
"summary": "SUSE Bug 1225710 for CVE-2024-36891",
"url": "https://bugzilla.suse.com/1225710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36891"
},
{
"cve": "CVE-2024-36893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tcpm: Check for port partner validity before consuming it\n\ntypec_register_partner() does not guarantee partner registration\nto always succeed. In the event of failure, port-\u003epartner is set\nto the error value or NULL. Given that port-\u003epartner validity is\nnot checked, this results in the following crash:\n\nUnable to handle kernel NULL pointer dereference at virtual address xx\n pc : run_state_machine+0x1bc8/0x1c08\n lr : run_state_machine+0x1b90/0x1c08\n..\n Call trace:\n run_state_machine+0x1bc8/0x1c08\n tcpm_state_machine_work+0x94/0xe4\n kthread_worker_fn+0x118/0x328\n kthread+0x1d0/0x23c\n ret_from_fork+0x10/0x20\n\nTo prevent the crash, check for port-\u003epartner validity before\nderefencing it in all the call sites.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36893",
"url": "https://www.suse.com/security/cve/CVE-2024-36893"
},
{
"category": "external",
"summary": "SUSE Bug 1225748 for CVE-2024-36893",
"url": "https://bugzilla.suse.com/1225748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36893"
},
{
"cve": "CVE-2024-36894",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36894"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete\n\nFFS based applications can utilize the aio_cancel() callback to dequeue\npending USB requests submitted to the UDC. There is a scenario where the\nFFS application issues an AIO cancel call, while the UDC is handling a\nsoft disconnect. For a DWC3 based implementation, the callstack looks\nlike the following:\n\n DWC3 Gadget FFS Application\ndwc3_gadget_soft_disconnect() ...\n --\u003e dwc3_stop_active_transfers()\n --\u003e dwc3_gadget_giveback(-ESHUTDOWN)\n --\u003e ffs_epfile_async_io_complete() ffs_aio_cancel()\n --\u003e usb_ep_free_request() --\u003e usb_ep_dequeue()\n\nThere is currently no locking implemented between the AIO completion\nhandler and AIO cancel, so the issue occurs if the completion routine is\nrunning in parallel to an AIO cancel call coming from the FFS application.\nAs the completion call frees the USB request (io_data-\u003ereq) the FFS\napplication is also referencing it for the usb_ep_dequeue() call. This can\nlead to accessing a stale/hanging pointer.\n\ncommit b566d38857fc (\"usb: gadget: f_fs: use io_data-\u003estatus consistently\")\nrelocated the usb_ep_free_request() into ffs_epfile_async_io_complete().\nHowever, in order to properly implement locking to mitigate this issue, the\nspinlock can\u0027t be added to ffs_epfile_async_io_complete(), as\nusb_ep_dequeue() (if successfully dequeuing a USB request) will call the\nfunction driver\u0027s completion handler in the same context. Hence, leading\ninto a deadlock.\n\nFix this issue by moving the usb_ep_free_request() back to\nffs_user_copy_worker(), and ensuring that it explicitly sets io_data-\u003ereq\nto NULL after freeing it within the ffs-\u003eeps_lock. This resolves the race\ncondition above, as the ffs_aio_cancel() routine will not continue\nattempting to dequeue a request that has already been freed, or the\nffs_user_copy_work() not freeing the USB request until the AIO cancel is\ndone referencing it.\n\nThis fix depends on\n commit b566d38857fc (\"usb: gadget: f_fs: use io_data-\u003estatus\n consistently\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36894",
"url": "https://www.suse.com/security/cve/CVE-2024-36894"
},
{
"category": "external",
"summary": "SUSE Bug 1225749 for CVE-2024-36894",
"url": "https://bugzilla.suse.com/1225749"
},
{
"category": "external",
"summary": "SUSE Bug 1226139 for CVE-2024-36894",
"url": "https://bugzilla.suse.com/1226139"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-36894"
},
{
"cve": "CVE-2024-36895",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36895"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: uvc: use correct buffer size when parsing configfs lists\n\nThis commit fixes uvc gadget support on 32-bit platforms.\n\nCommit 0df28607c5cb (\"usb: gadget: uvc: Generalise helper functions for\nreuse\") introduced a helper function __uvcg_iter_item_entries() to aid\nwith parsing lists of items on configfs attributes stores. This function\nis a generalization of another very similar function, which used a\nstack-allocated temporary buffer of fixed size for each item in the list\nand used the sizeof() operator to check for potential buffer overruns.\nThe new function was changed to allocate the now variably sized temp\nbuffer on heap, but wasn\u0027t properly updated to also check for max buffer\nsize using the computed size instead of sizeof() operator.\n\nAs a result, the maximum item size was 7 (plus null terminator) on\n64-bit platforms, and 3 on 32-bit ones. While 7 is accidentally just\nbarely enough, 3 is definitely too small for some of UVC configfs\nattributes. For example, dwFrameInteval, specified in 100ns units,\nusually has 6-digit item values, e.g. 166666 for 60fps.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36895",
"url": "https://www.suse.com/security/cve/CVE-2024-36895"
},
{
"category": "external",
"summary": "SUSE Bug 1225750 for CVE-2024-36895",
"url": "https://bugzilla.suse.com/1225750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-36895"
},
{
"cve": "CVE-2024-36896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: core: Fix access violation during port device removal\n\nTesting with KASAN and syzkaller revealed a bug in port.c:disable_store():\nusb_hub_to_struct_hub() can return NULL if the hub that the port belongs to\nis concurrently removed, but the function does not check for this\npossibility before dereferencing the returned value.\n\nIt turns out that the first dereference is unnecessary, since hub-\u003eintfdev\nis the parent of the port device, so it can be changed easily. Adding a\ncheck for hub == NULL prevents further problems.\n\nThe same bug exists in the disable_show() routine, and it can be fixed the\nsame way.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36896",
"url": "https://www.suse.com/security/cve/CVE-2024-36896"
},
{
"category": "external",
"summary": "SUSE Bug 1225734 for CVE-2024-36896",
"url": "https://bugzilla.suse.com/1225734"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36896"
},
{
"cve": "CVE-2024-36897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Atom Integrated System Info v2_2 for DCN35\n\nNew request from KMD/VBIOS in order to support new UMA carveout\nmodel. This fixes a null dereference from accessing\nCtx-\u003edc_bios-\u003eintegrated_info while it was NULL.\n\nDAL parses through the BIOS and extracts the necessary\nintegrated_info but was missing a case for the new BIOS\nversion 2.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36897",
"url": "https://www.suse.com/security/cve/CVE-2024-36897"
},
{
"category": "external",
"summary": "SUSE Bug 1225735 for CVE-2024-36897",
"url": "https://bugzilla.suse.com/1225735"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36897"
},
{
"cve": "CVE-2024-36898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36898"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: cdev: fix uninitialised kfifo\n\nIf a line is requested with debounce, and that results in debouncing\nin software, and the line is subsequently reconfigured to enable edge\ndetection then the allocation of the kfifo to contain edge events is\noverlooked. This results in events being written to and read from an\nuninitialised kfifo. Read events are returned to userspace.\n\nInitialise the kfifo in the case where the software debounce is\nalready active.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36898",
"url": "https://www.suse.com/security/cve/CVE-2024-36898"
},
{
"category": "external",
"summary": "SUSE Bug 1225736 for CVE-2024-36898",
"url": "https://bugzilla.suse.com/1225736"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36898"
},
{
"cve": "CVE-2024-36906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nARM: 9381/1: kasan: clear stale stack poison\n\nWe found below OOB crash:\n\n[ 33.452494] ==================================================================\n[ 33.453513] BUG: KASAN: stack-out-of-bounds in refresh_cpu_vm_stats.constprop.0+0xcc/0x2ec\n[ 33.454660] Write of size 164 at addr c1d03d30 by task swapper/0/0\n[ 33.455515]\n[ 33.455767] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G O 6.1.25-mainline #1\n[ 33.456880] Hardware name: Generic DT based system\n[ 33.457555] unwind_backtrace from show_stack+0x18/0x1c\n[ 33.458326] show_stack from dump_stack_lvl+0x40/0x4c\n[ 33.459072] dump_stack_lvl from print_report+0x158/0x4a4\n[ 33.459863] print_report from kasan_report+0x9c/0x148\n[ 33.460616] kasan_report from kasan_check_range+0x94/0x1a0\n[ 33.461424] kasan_check_range from memset+0x20/0x3c\n[ 33.462157] memset from refresh_cpu_vm_stats.constprop.0+0xcc/0x2ec\n[ 33.463064] refresh_cpu_vm_stats.constprop.0 from tick_nohz_idle_stop_tick+0x180/0x53c\n[ 33.464181] tick_nohz_idle_stop_tick from do_idle+0x264/0x354\n[ 33.465029] do_idle from cpu_startup_entry+0x20/0x24\n[ 33.465769] cpu_startup_entry from rest_init+0xf0/0xf4\n[ 33.466528] rest_init from arch_post_acpi_subsys_init+0x0/0x18\n[ 33.467397]\n[ 33.467644] The buggy address belongs to stack of task swapper/0/0\n[ 33.468493] and is located at offset 112 in frame:\n[ 33.469172] refresh_cpu_vm_stats.constprop.0+0x0/0x2ec\n[ 33.469917]\n[ 33.470165] This frame has 2 objects:\n[ 33.470696] [32, 76) \u0027global_zone_diff\u0027\n[ 33.470729] [112, 276) \u0027global_node_diff\u0027\n[ 33.471294]\n[ 33.472095] The buggy address belongs to the physical page:\n[ 33.472862] page:3cd72da8 refcount:1 mapcount:0 mapping:00000000 index:0x0 pfn:0x41d03\n[ 33.473944] flags: 0x1000(reserved|zone=0)\n[ 33.474565] raw: 00001000 ed741470 ed741470 00000000 00000000 00000000 ffffffff 00000001\n[ 33.475656] raw: 00000000\n[ 33.476050] page dumped because: kasan: bad access detected\n[ 33.476816]\n[ 33.477061] Memory state around the buggy address:\n[ 33.477732] c1d03c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 33.478630] c1d03c80: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 00\n[ 33.479526] \u003ec1d03d00: 00 04 f2 f2 f2 f2 00 00 00 00 00 00 f1 f1 f1 f1\n[ 33.480415] ^\n[ 33.481195] c1d03d80: 00 00 00 00 00 00 00 00 00 00 04 f3 f3 f3 f3 f3\n[ 33.482088] c1d03e00: f3 f3 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00\n[ 33.482978] ==================================================================\n\nWe find the root cause of this OOB is that arm does not clear stale stack\npoison in the case of cpuidle.\n\nThis patch refer to arch/arm64/kernel/sleep.S to resolve this issue.\n\nFrom cited commit [1] that explain the problem\n\nFunctions which the compiler has instrumented for KASAN place poison on\nthe stack shadow upon entry and remove this poison prior to returning.\n\nIn the case of cpuidle, CPUs exit the kernel a number of levels deep in\nC code. Any instrumented functions on this critical path will leave\nportions of the stack shadow poisoned.\n\nIf CPUs lose context and return to the kernel via a cold path, we\nrestore a prior context saved in __cpu_suspend_enter are forgotten, and\nwe never remove the poison they placed in the stack shadow area by\nfunctions calls between this and the actual exit of the kernel.\n\nThus, (depending on stackframe layout) subsequent calls to instrumented\nfunctions may hit this stale poison, resulting in (spurious) KASAN\nsplats to the console.\n\nTo avoid this, clear any stale poison from the idle thread for a CPU\nprior to bringing a CPU online.\n\nFrom cited commit [2]\n\nExtend to check for CONFIG_KASAN_STACK\n\n[1] commit 0d97e6d8024c (\"arm64: kasan: clear stale stack poison\")\n[2] commit d56a9ef84bd0 (\"kasan, arm64: unpoison stack only with CONFIG_KASAN_STACK\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36906",
"url": "https://www.suse.com/security/cve/CVE-2024-36906"
},
{
"category": "external",
"summary": "SUSE Bug 1225715 for CVE-2024-36906",
"url": "https://bugzilla.suse.com/1225715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36906"
},
{
"cve": "CVE-2024-36908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-iocost: do not WARN if iocg was already offlined\n\nIn iocg_pay_debt(), warn is triggered if \u0027active_list\u0027 is empty, which\nis intended to confirm iocg is active when it has debt. However, warn\ncan be triggered during a blkcg or disk removal, if iocg_waitq_timer_fn()\nis run at that time:\n\n WARNING: CPU: 0 PID: 2344971 at block/blk-iocost.c:1402 iocg_pay_debt+0x14c/0x190\n Call trace:\n iocg_pay_debt+0x14c/0x190\n iocg_kick_waitq+0x438/0x4c0\n iocg_waitq_timer_fn+0xd8/0x130\n __run_hrtimer+0x144/0x45c\n __hrtimer_run_queues+0x16c/0x244\n hrtimer_interrupt+0x2cc/0x7b0\n\nThe warn in this situation is meaningless. Since this iocg is being\nremoved, the state of the \u0027active_list\u0027 is irrelevant, and \u0027waitq_timer\u0027\nis canceled after removing \u0027active_list\u0027 in ioc_pd_free(), which ensures\niocg is freed after iocg_waitq_timer_fn() returns.\n\nTherefore, add the check if iocg was already offlined to avoid warn\nwhen removing a blkcg or disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36908",
"url": "https://www.suse.com/security/cve/CVE-2024-36908"
},
{
"category": "external",
"summary": "SUSE Bug 1225743 for CVE-2024-36908",
"url": "https://bugzilla.suse.com/1225743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36908"
},
{
"cve": "CVE-2024-36921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36921"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: guard against invalid STA ID on removal\n\nGuard against invalid station IDs in iwl_mvm_mld_rm_sta_id as that would\nresult in out-of-bounds array accesses. This prevents issues should the\ndriver get into a bad state during error handling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36921",
"url": "https://www.suse.com/security/cve/CVE-2024-36921"
},
{
"category": "external",
"summary": "SUSE Bug 1225769 for CVE-2024-36921",
"url": "https://bugzilla.suse.com/1225769"
},
{
"category": "external",
"summary": "SUSE Bug 1225850 for CVE-2024-36921",
"url": "https://bugzilla.suse.com/1225850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-36921"
},
{
"cve": "CVE-2024-36922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: read txq-\u003eread_ptr under lock\n\nIf we read txq-\u003eread_ptr without lock, we can read the same\nvalue twice, then obtain the lock, and reclaim from there\nto two different places, but crucially reclaim the same\nentry twice, resulting in the WARN_ONCE() a little later.\nFix that by reading txq-\u003eread_ptr under lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36922",
"url": "https://www.suse.com/security/cve/CVE-2024-36922"
},
{
"category": "external",
"summary": "SUSE Bug 1225805 for CVE-2024-36922",
"url": "https://bugzilla.suse.com/1225805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36922"
},
{
"cve": "CVE-2024-36928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36928"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/qeth: Fix kernel panic after setting hsuid\n\nSymptom:\nWhen the hsuid attribute is set for the first time on an IQD Layer3\ndevice while the corresponding network interface is already UP,\nthe kernel will try to execute a napi function pointer that is NULL.\n\nExample:\n---------------------------------------------------------------------------\n[ 2057.572696] illegal operation: 0001 ilc:1 [#1] SMP\n[ 2057.572702] Modules linked in: af_iucv qeth_l3 zfcp scsi_transport_fc sunrpc nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6\nnft_reject nft_ct nf_tables_set nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables libcrc32c nfnetlink ghash_s390 prng xts aes_s390 des_s390 de\ns_generic sha3_512_s390 sha3_256_s390 sha512_s390 vfio_ccw vfio_mdev mdev vfio_iommu_type1 eadm_sch vfio ext4 mbcache jbd2 qeth_l2 bridge stp llc dasd_eckd_mod qeth dasd_mod\n qdio ccwgroup pkey zcrypt\n[ 2057.572739] CPU: 6 PID: 60182 Comm: stress_client Kdump: loaded Not tainted 4.18.0-541.el8.s390x #1\n[ 2057.572742] Hardware name: IBM 3931 A01 704 (LPAR)\n[ 2057.572744] Krnl PSW : 0704f00180000000 0000000000000002 (0x2)\n[ 2057.572748] R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:3 PM:0 RI:0 EA:3\n[ 2057.572751] Krnl GPRS: 0000000000000004 0000000000000000 00000000a3b008d8 0000000000000000\n[ 2057.572754] 00000000a3b008d8 cb923a29c779abc5 0000000000000000 00000000814cfd80\n[ 2057.572756] 000000000000012c 0000000000000000 00000000a3b008d8 00000000a3b008d8\n[ 2057.572758] 00000000bab6d500 00000000814cfd80 0000000091317e46 00000000814cfc68\n[ 2057.572762] Krnl Code:#0000000000000000: 0000 illegal\n \u003e0000000000000002: 0000 illegal\n 0000000000000004: 0000 illegal\n 0000000000000006: 0000 illegal\n 0000000000000008: 0000 illegal\n 000000000000000a: 0000 illegal\n 000000000000000c: 0000 illegal\n 000000000000000e: 0000 illegal\n[ 2057.572800] Call Trace:\n[ 2057.572801] ([\u003c00000000ec639700\u003e] 0xec639700)\n[ 2057.572803] [\u003c00000000913183e2\u003e] net_rx_action+0x2ba/0x398\n[ 2057.572809] [\u003c0000000091515f76\u003e] __do_softirq+0x11e/0x3a0\n[ 2057.572813] [\u003c0000000090ce160c\u003e] do_softirq_own_stack+0x3c/0x58\n[ 2057.572817] ([\u003c0000000090d2cbd6\u003e] do_softirq.part.1+0x56/0x60)\n[ 2057.572822] [\u003c0000000090d2cc60\u003e] __local_bh_enable_ip+0x80/0x98\n[ 2057.572825] [\u003c0000000091314706\u003e] __dev_queue_xmit+0x2be/0xd70\n[ 2057.572827] [\u003c000003ff803dd6d6\u003e] afiucv_hs_send+0x24e/0x300 [af_iucv]\n[ 2057.572830] [\u003c000003ff803dd88a\u003e] iucv_send_ctrl+0x102/0x138 [af_iucv]\n[ 2057.572833] [\u003c000003ff803de72a\u003e] iucv_sock_connect+0x37a/0x468 [af_iucv]\n[ 2057.572835] [\u003c00000000912e7e90\u003e] __sys_connect+0xa0/0xd8\n[ 2057.572839] [\u003c00000000912e9580\u003e] sys_socketcall+0x228/0x348\n[ 2057.572841] [\u003c0000000091514e1a\u003e] system_call+0x2a6/0x2c8\n[ 2057.572843] Last Breaking-Event-Address:\n[ 2057.572844] [\u003c0000000091317e44\u003e] __napi_poll+0x4c/0x1d8\n[ 2057.572846]\n[ 2057.572847] Kernel panic - not syncing: Fatal exception in interrupt\n-------------------------------------------------------------------------------------------\n\nAnalysis:\nThere is one napi structure per out_q: card-\u003eqdio.out_qs[i].napi\nThe napi.poll functions are set during qeth_open().\n\nSince\ncommit 1cfef80d4c2b (\"s390/qeth: Don\u0027t call dev_close/dev_open (DOWN/UP)\")\nqeth_set_offline()/qeth_set_online() no longer call dev_close()/\ndev_open(). So if qeth_free_qdio_queues() cleared\ncard-\u003eqdio.out_qs[i].napi.poll while the network interface was UP and the\ncard was offline, they are not set again.\n\nReproduction:\nchzdev -e $devno layer2=0\nip link set dev $network_interface up\necho 0 \u003e /sys/bus/ccw\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36928",
"url": "https://www.suse.com/security/cve/CVE-2024-36928"
},
{
"category": "external",
"summary": "SUSE Bug 1225775 for CVE-2024-36928",
"url": "https://bugzilla.suse.com/1225775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36928"
},
{
"cve": "CVE-2024-36930",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36930"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fix null pointer dereference within spi_sync\n\nIf spi_sync() is called with the non-empty queue and the same spi_message\nis then reused, the complete callback for the message remains set while\nthe context is cleared, leading to a null pointer dereference when the\ncallback is invoked from spi_finalize_current_message().\n\nWith function inlining disabled, the call stack might look like this:\n\n _raw_spin_lock_irqsave from complete_with_flags+0x18/0x58\n complete_with_flags from spi_complete+0x8/0xc\n spi_complete from spi_finalize_current_message+0xec/0x184\n spi_finalize_current_message from spi_transfer_one_message+0x2a8/0x474\n spi_transfer_one_message from __spi_pump_transfer_message+0x104/0x230\n __spi_pump_transfer_message from __spi_transfer_message_noqueue+0x30/0xc4\n __spi_transfer_message_noqueue from __spi_sync+0x204/0x248\n __spi_sync from spi_sync+0x24/0x3c\n spi_sync from mcp251xfd_regmap_crc_read+0x124/0x28c [mcp251xfd]\n mcp251xfd_regmap_crc_read [mcp251xfd] from _regmap_raw_read+0xf8/0x154\n _regmap_raw_read from _regmap_bus_read+0x44/0x70\n _regmap_bus_read from _regmap_read+0x60/0xd8\n _regmap_read from regmap_read+0x3c/0x5c\n regmap_read from mcp251xfd_alloc_can_err_skb+0x1c/0x54 [mcp251xfd]\n mcp251xfd_alloc_can_err_skb [mcp251xfd] from mcp251xfd_irq+0x194/0xe70 [mcp251xfd]\n mcp251xfd_irq [mcp251xfd] from irq_thread_fn+0x1c/0x78\n irq_thread_fn from irq_thread+0x118/0x1f4\n irq_thread from kthread+0xd8/0xf4\n kthread from ret_from_fork+0x14/0x28\n\nFix this by also setting message-\u003ecomplete to NULL when the transfer is\ncomplete.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36930",
"url": "https://www.suse.com/security/cve/CVE-2024-36930"
},
{
"category": "external",
"summary": "SUSE Bug 1225830 for CVE-2024-36930",
"url": "https://bugzilla.suse.com/1225830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36930"
},
{
"cve": "CVE-2024-36931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36931"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/cio: Ensure the copied buf is NUL terminated\n\nCurrently, we allocate a lbuf-sized kernel buffer and copy lbuf from\nuserspace to that buffer. Later, we use scanf on this buffer but we don\u0027t\nensure that the string is terminated inside the buffer, this can lead to\nOOB read when using scanf. Fix this issue by using memdup_user_nul instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36931",
"url": "https://www.suse.com/security/cve/CVE-2024-36931"
},
{
"category": "external",
"summary": "SUSE Bug 1225747 for CVE-2024-36931",
"url": "https://bugzilla.suse.com/1225747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36931"
},
{
"cve": "CVE-2024-36940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: core: delete incorrect free in pinctrl_enable()\n\nThe \"pctldev\" struct is allocated in devm_pinctrl_register_and_init().\nIt\u0027s a devm_ managed pointer that is freed by devm_pinctrl_dev_release(),\nso freeing it in pinctrl_enable() will lead to a double free.\n\nThe devm_pinctrl_dev_release() function frees the pindescs and destroys\nthe mutex as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36940",
"url": "https://www.suse.com/security/cve/CVE-2024-36940"
},
{
"category": "external",
"summary": "SUSE Bug 1225840 for CVE-2024-36940",
"url": "https://bugzilla.suse.com/1225840"
},
{
"category": "external",
"summary": "SUSE Bug 1225841 for CVE-2024-36940",
"url": "https://bugzilla.suse.com/1225841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-36940"
},
{
"cve": "CVE-2024-36941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36941"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: don\u0027t free NULL coalescing rule\n\nIf the parsing fails, we can dereference a NULL pointer here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36941",
"url": "https://www.suse.com/security/cve/CVE-2024-36941"
},
{
"category": "external",
"summary": "SUSE Bug 1225835 for CVE-2024-36941",
"url": "https://bugzilla.suse.com/1225835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36941"
},
{
"cve": "CVE-2024-36942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36942"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36942",
"url": "https://www.suse.com/security/cve/CVE-2024-36942"
},
{
"category": "external",
"summary": "SUSE Bug 1225843 for CVE-2024-36942",
"url": "https://bugzilla.suse.com/1225843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36942"
},
{
"cve": "CVE-2024-36944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nReapply \"drm/qxl: simplify qxl_fence_wait\"\n\nThis reverts commit 07ed11afb68d94eadd4ffc082b97c2331307c5ea.\n\nStephen Rostedt reports:\n \"I went to run my tests on my VMs and the tests hung on boot up.\n Unfortunately, the most I ever got out was:\n\n [ 93.607888] Testing event system initcall: OK\n [ 93.667730] Running tests on all trace events:\n [ 93.669757] Testing all events: OK\n [ 95.631064] ------------[ cut here ]------------\n Timed out after 60 seconds\"\n\nand further debugging points to a possible circular locking dependency\nbetween the console_owner locking and the worker pool locking.\n\nReverting the commit allows Steve\u0027s VM to boot to completion again.\n\n[ This may obviously result in the \"[TTM] Buffer eviction failed\"\n messages again, which was the reason for that original revert. But at\n this point this seems preferable to a non-booting system... ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36944",
"url": "https://www.suse.com/security/cve/CVE-2024-36944"
},
{
"category": "external",
"summary": "SUSE Bug 1225847 for CVE-2024-36944",
"url": "https://bugzilla.suse.com/1225847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36944"
},
{
"cve": "CVE-2024-36949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36949"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: sync all devices to wait all processes being evicted\n\nIf there are more than one device doing reset in parallel, the first\ndevice will call kfd_suspend_all_processes() to evict all processes\non all devices, this call takes time to finish. other device will\nstart reset and recover without waiting. if the process has not been\nevicted before doing recover, it will be restored, then caused page\nfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36949",
"url": "https://www.suse.com/security/cve/CVE-2024-36949"
},
{
"category": "external",
"summary": "SUSE Bug 1225894 for CVE-2024-36949",
"url": "https://bugzilla.suse.com/1225894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36949"
},
{
"cve": "CVE-2024-36950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirewire: ohci: mask bus reset interrupts between ISR and bottom half\n\nIn the FireWire OHCI interrupt handler, if a bus reset interrupt has\noccurred, mask bus reset interrupts until bus_reset_work has serviced and\ncleared the interrupt.\n\nNormally, we always leave bus reset interrupts masked. We infer the bus\nreset from the self-ID interrupt that happens shortly thereafter. A\nscenario where we unmask bus reset interrupts was introduced in 2008 in\na007bb857e0b26f5d8b73c2ff90782d9c0972620: If\nOHCI_PARAM_DEBUG_BUSRESETS (8) is set in the debug parameter bitmask, we\nwill unmask bus reset interrupts so we can log them.\n\nirq_handler logs the bus reset interrupt. However, we can\u0027t clear the bus\nreset event flag in irq_handler, because we won\u0027t service the event until\nlater. irq_handler exits with the event flag still set. If the\ncorresponding interrupt is still unmasked, the first bus reset will\nusually freeze the system due to irq_handler being called again each\ntime it exits. This freeze can be reproduced by loading firewire_ohci\nwith \"modprobe firewire_ohci debug=-1\" (to enable all debugging output).\nApparently there are also some cases where bus_reset_work will get called\nsoon enough to clear the event, and operation will continue normally.\n\nThis freeze was first reported a few months after a007bb85 was committed,\nbut until now it was never fixed. The debug level could safely be set\nto -1 through sysfs after the module was loaded, but this would be\nineffectual in logging bus reset interrupts since they were only\nunmasked during initialization.\n\nirq_handler will now leave the event flag set but mask bus reset\ninterrupts, so irq_handler won\u0027t be called again and there will be no\nfreeze. If OHCI_PARAM_DEBUG_BUSRESETS is enabled, bus_reset_work will\nunmask the interrupt after servicing the event, so future interrupts\nwill be caught as desired.\n\nAs a side effect to this change, OHCI_PARAM_DEBUG_BUSRESETS can now be\nenabled through sysfs in addition to during initial module loading.\nHowever, when enabled through sysfs, logging of bus reset interrupts will\nbe effective only starting with the second bus reset, after\nbus_reset_work has executed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36950",
"url": "https://www.suse.com/security/cve/CVE-2024-36950"
},
{
"category": "external",
"summary": "SUSE Bug 1225895 for CVE-2024-36950",
"url": "https://bugzilla.suse.com/1225895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36950"
},
{
"cve": "CVE-2024-36951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: range check cp bad op exception interrupts\n\nDue to a CP interrupt bug, bad packet garbage exception codes are raised.\nDo a range check so that the debugger and runtime do not receive garbage\ncodes.\nUpdate the user api to guard exception code type checking as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36951",
"url": "https://www.suse.com/security/cve/CVE-2024-36951"
},
{
"category": "external",
"summary": "SUSE Bug 1225896 for CVE-2024-36951",
"url": "https://bugzilla.suse.com/1225896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36951"
},
{
"cve": "CVE-2024-36955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()\n\nThe documentation for device_get_named_child_node() mentions this\nimportant point:\n\n\"\nThe caller is responsible for calling fwnode_handle_put() on the\nreturned fwnode pointer.\n\"\n\nAdd fwnode_handle_put() to avoid a leaked reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36955",
"url": "https://www.suse.com/security/cve/CVE-2024-36955"
},
{
"category": "external",
"summary": "SUSE Bug 1225810 for CVE-2024-36955",
"url": "https://bugzilla.suse.com/1225810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-36955"
},
{
"cve": "CVE-2024-36959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36959"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()\n\nIf we fail to allocate propname buffer, we need to drop the reference\ncount we just took. Because the pinctrl_dt_free_maps() includes the\ndroping operation, here we call it directly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36959",
"url": "https://www.suse.com/security/cve/CVE-2024-36959"
},
{
"category": "external",
"summary": "SUSE Bug 1225839 for CVE-2024-36959",
"url": "https://bugzilla.suse.com/1225839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36959"
},
{
"cve": "CVE-2024-39282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: t7xx: Fix FSM command timeout issue\n\nWhen driver processes the internal state change command, it use an\nasynchronous thread to process the command operation. If the main\nthread detects that the task has timed out, the asynchronous thread\nwill panic when executing the completion notification because the\nmain thread completion object has been released.\n\nBUG: unable to handle page fault for address: fffffffffffffff8\nPGD 1f283a067 P4D 1f283a067 PUD 1f283c067 PMD 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nRIP: 0010:complete_all+0x3e/0xa0\n[...]\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x68/0xb0\n ? page_fault_oops+0x379/0x3e0\n ? exc_page_fault+0x69/0xa0\n ? asm_exc_page_fault+0x22/0x30\n ? complete_all+0x3e/0xa0\n fsm_main_thread+0xa3/0x9c0 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_autoremove_wake_function+0x10/0x10\n kthread+0xd8/0x110\n ? __pfx_fsm_main_thread+0x10/0x10 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x38/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n[...]\nCR2: fffffffffffffff8\n---[ end trace 0000000000000000 ]---\n\nUse the reference counter to ensure safe release as Sergey suggests:\nhttps://lore.kernel.org/all/da90f64c-260a-4329-87bf-1f9ff20a5951@gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39282",
"url": "https://www.suse.com/security/cve/CVE-2024-39282"
},
{
"category": "external",
"summary": "SUSE Bug 1235903 for CVE-2024-39282",
"url": "https://bugzilla.suse.com/1235903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-39282"
},
{
"cve": "CVE-2024-39480",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39480"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkdb: Fix buffer overflow during tab-complete\n\nCurrently, when the user attempts symbol completion with the Tab key, kdb\nwill use strncpy() to insert the completed symbol into the command buffer.\nUnfortunately it passes the size of the source buffer rather than the\ndestination to strncpy() with predictably horrible results. Most obviously\nif the command buffer is already full but cp, the cursor position, is in\nthe middle of the buffer, then we will write past the end of the supplied\nbuffer.\n\nFix this by replacing the dubious strncpy() calls with memmove()/memcpy()\ncalls plus explicit boundary checks to make sure we have enough space\nbefore we start moving characters around.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39480",
"url": "https://www.suse.com/security/cve/CVE-2024-39480"
},
{
"category": "external",
"summary": "SUSE Bug 1227445 for CVE-2024-39480",
"url": "https://bugzilla.suse.com/1227445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-39480"
},
{
"cve": "CVE-2024-41042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prefer nft_chain_validate\n\nnft_chain_validate already performs loop detection because a cycle will\nresult in a call stack overflow (ctx-\u003elevel \u003e= NFT_JUMP_STACK_SIZE).\n\nIt also follows maps via -\u003evalidate callback in nft_lookup, so there\nappears no reason to iterate the maps again.\n\nnf_tables_check_loops() and all its helper functions can be removed.\nThis improves ruleset load time significantly, from 23s down to 12s.\n\nThis also fixes a crash bug. Old loop detection code can result in\nunbounded recursion:\n\nBUG: TASK stack guard page was hit at ....\nOops: stack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 4 PID: 1539 Comm: nft Not tainted 6.10.0-rc5+ #1\n[..]\n\nwith a suitable ruleset during validation of register stores.\n\nI can\u0027t see any actual reason to attempt to check for this from\nnft_validate_register_store(), at this point the transaction is still in\nprogress, so we don\u0027t have a full picture of the rule graph.\n\nFor nf-next it might make sense to either remove it or make this depend\non table-\u003evalidate_state in case we could catch an error earlier\n(for improved error reporting to userspace).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41042",
"url": "https://www.suse.com/security/cve/CVE-2024-41042"
},
{
"category": "external",
"summary": "SUSE Bug 1228526 for CVE-2024-41042",
"url": "https://bugzilla.suse.com/1228526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-41042"
},
{
"cve": "CVE-2024-43913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: apple: fix device reference counting\n\nDrivers must call nvme_uninit_ctrl after a successful nvme_init_ctrl.\nSplit the allocation side out to make the error handling boundary easier\nto navigate. The apple driver had been doing this wrong, leaking the\ncontroller device memory on a tagset failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43913",
"url": "https://www.suse.com/security/cve/CVE-2024-43913"
},
{
"category": "external",
"summary": "SUSE Bug 1229833 for CVE-2024-43913",
"url": "https://bugzilla.suse.com/1229833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-43913"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-44996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix recursive -\u003erecvmsg calls\n\nAfter a vsock socket has been added to a BPF sockmap, its prot-\u003erecvmsg\nhas been replaced with vsock_bpf_recvmsg(). Thus the following\nrecursiion could happen:\n\nvsock_bpf_recvmsg()\n -\u003e __vsock_recvmsg()\n -\u003e vsock_connectible_recvmsg()\n -\u003e prot-\u003erecvmsg()\n -\u003e vsock_bpf_recvmsg() again\n\nWe need to fix it by calling the original -\u003erecvmsg() without any BPF\nsockmap logic in __vsock_recvmsg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44996",
"url": "https://www.suse.com/security/cve/CVE-2024-44996"
},
{
"category": "external",
"summary": "SUSE Bug 1230205 for CVE-2024-44996",
"url": "https://bugzilla.suse.com/1230205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-44996"
},
{
"cve": "CVE-2024-45828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Mask ring interrupts before ring stop request\n\nBus cleanup path in DMA mode may trigger a RING_OP_STAT interrupt when\nthe ring is being stopped. Depending on timing between ring stop request\ncompletion, interrupt handler removal and code execution this may lead\nto a NULL pointer dereference in hci_dma_irq_handler() if it gets to run\nafter the io_data pointer is set to NULL in hci_dma_cleanup().\n\nPrevent this my masking the ring interrupts before ring stop request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45828",
"url": "https://www.suse.com/security/cve/CVE-2024-45828"
},
{
"category": "external",
"summary": "SUSE Bug 1235705 for CVE-2024-45828",
"url": "https://bugzilla.suse.com/1235705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-45828"
},
{
"cve": "CVE-2024-46896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: don\u0027t access invalid sched\n\nSince 2320c9e6a768 (\"drm/sched: memset() \u0027job\u0027 in drm_sched_job_init()\")\naccessing job-\u003ebase.sched can produce unexpected results as the initialisation\nof (*job)-\u003ebase.sched done in amdgpu_job_alloc is overwritten by the\nmemset.\n\nThis commit fixes an issue when a CS would fail validation and would\nbe rejected after job-\u003enum_ibs is incremented. In this case,\namdgpu_ib_free(ring-\u003eadev, ...) will be called, which would crash the\nmachine because the ring value is bogus.\n\nTo fix this, pass a NULL pointer to amdgpu_ib_free(): we can do this\nbecause the device is actually not used in this function.\n\nThe next commit will remove the ring argument completely.\n\n(cherry picked from commit 2ae520cb12831d264ceb97c61f72c59d33c0dbd7)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46896",
"url": "https://www.suse.com/security/cve/CVE-2024-46896"
},
{
"category": "external",
"summary": "SUSE Bug 1235707 for CVE-2024-46896",
"url": "https://bugzilla.suse.com/1235707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-46896"
},
{
"cve": "CVE-2024-47141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinmux: Use sequential access to access desc-\u003epinmux data\n\nWhen two client of the same gpio call pinctrl_select_state() for the\nsame functionality, we are seeing NULL pointer issue while accessing\ndesc-\u003emux_owner.\n\nLet\u0027s say two processes A, B executing in pin_request() for the same pin\nand process A updates the desc-\u003emux_usecount but not yet updated the\ndesc-\u003emux_owner while process B see the desc-\u003emux_usecount which got\nupdated by A path and further executes strcmp and while accessing\ndesc-\u003emux_owner it crashes with NULL pointer.\n\nSerialize the access to mux related setting with a mutex lock.\n\n\tcpu0 (process A)\t\t\tcpu1(process B)\n\npinctrl_select_state() {\t\t pinctrl_select_state() {\n pin_request() {\t\t\t\tpin_request() {\n ...\n\t\t\t\t\t\t ....\n } else {\n desc-\u003emux_usecount++;\n \t\t\t\t\t\tdesc-\u003emux_usecount \u0026\u0026 strcmp(desc-\u003emux_owner, owner)) {\n\n if (desc-\u003emux_usecount \u003e 1)\n return 0;\n desc-\u003emux_owner = owner;\n\n }\t\t\t\t\t\t}",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47141",
"url": "https://www.suse.com/security/cve/CVE-2024-47141"
},
{
"category": "external",
"summary": "SUSE Bug 1235708 for CVE-2024-47141",
"url": "https://bugzilla.suse.com/1235708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-47141"
},
{
"cve": "CVE-2024-47143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-debug: fix a possible deadlock on radix_lock\n\nradix_lock() shouldn\u0027t be held while holding dma_hash_entry[idx].lock\notherwise, there\u0027s a possible deadlock scenario when\ndma debug API is called holding rq_lock():\n\nCPU0 CPU1 CPU2\ndma_free_attrs()\ncheck_unmap() add_dma_entry() __schedule() //out\n (A) rq_lock()\nget_hash_bucket()\n(A) dma_entry_hash\n check_sync()\n (A) radix_lock() (W) dma_entry_hash\ndma_entry_free()\n(W) radix_lock()\n // CPU2\u0027s one\n (W) rq_lock()\n\nCPU1 situation can happen when it extending radix tree and\nit tries to wake up kswapd via wake_all_kswapd().\n\nCPU2 situation can happen while perf_event_task_sched_out()\n(i.e. dma sync operation is called while deleting perf_event using\n etm and etr tmc which are Arm Coresight hwtracing driver backends).\n\nTo remove this possible situation, call dma_entry_free() after\nput_hash_bucket() in check_unmap().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47143",
"url": "https://www.suse.com/security/cve/CVE-2024-47143"
},
{
"category": "external",
"summary": "SUSE Bug 1235710 for CVE-2024-47143",
"url": "https://bugzilla.suse.com/1235710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-47143"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-47809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndlm: fix possible lkb_resource null dereference\n\nThis patch fixes a possible null pointer dereference when this function is\ncalled from request_lock() as lkb-\u003elkb_resource is not assigned yet,\nonly after validate_lock_args() by calling attach_lkb(). Another issue\nis that a resource name could be a non printable bytearray and we cannot\nassume to be ASCII coded.\n\nThe log functionality is probably never being hit when DLM is used in\nnormal way and no debug logging is enabled. The null pointer dereference\ncan only occur on a new created lkb that does not have the resource\nassigned yet, it probably never hits the null pointer dereference but we\nshould be sure that other changes might not change this behaviour and we\nactually can hit the mentioned null pointer dereference.\n\nIn this patch we just drop the printout of the resource name, the lkb id\nis enough to make a possible connection to a resource name if this\nexists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47809",
"url": "https://www.suse.com/security/cve/CVE-2024-47809"
},
{
"category": "external",
"summary": "SUSE Bug 1235714 for CVE-2024-47809",
"url": "https://bugzilla.suse.com/1235714"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-47809"
},
{
"cve": "CVE-2024-48873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48873"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: check return value of ieee80211_probereq_get() for RNR\n\nThe return value of ieee80211_probereq_get() might be NULL, so check it\nbefore using to avoid NULL pointer access.\n\nAddresses-Coverity-ID: 1529805 (\"Dereference null return value\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48873",
"url": "https://www.suse.com/security/cve/CVE-2024-48873"
},
{
"category": "external",
"summary": "SUSE Bug 1235716 for CVE-2024-48873",
"url": "https://bugzilla.suse.com/1235716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-48873"
},
{
"cve": "CVE-2024-48881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbcache: revert replacing IS_ERR_OR_NULL with IS_ERR again\n\nCommit 028ddcac477b (\"bcache: Remove unnecessary NULL point check in\nnode allocations\") leads a NULL pointer deference in cache_set_flush().\n\n1721 if (!IS_ERR_OR_NULL(c-\u003eroot))\n1722 list_add(\u0026c-\u003eroot-\u003elist, \u0026c-\u003ebtree_cache);\n\n\u003eFrom the above code in cache_set_flush(), if previous registration code\nfails before allocating c-\u003eroot, it is possible c-\u003eroot is NULL as what\nit is initialized. __bch_btree_node_alloc() never returns NULL but\nc-\u003eroot is possible to be NULL at above line 1721.\n\nThis patch replaces IS_ERR() by IS_ERR_OR_NULL() to fix this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48881",
"url": "https://www.suse.com/security/cve/CVE-2024-48881"
},
{
"category": "external",
"summary": "SUSE Bug 1235727 for CVE-2024-48881",
"url": "https://bugzilla.suse.com/1235727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-48881"
},
{
"cve": "CVE-2024-49569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-rdma: unquiesce admin_q before destroy it\n\nKernel will hang on destroy admin_q while we create ctrl failed, such\nas following calltrace:\n\nPID: 23644 TASK: ff2d52b40f439fc0 CPU: 2 COMMAND: \"nvme\"\n #0 [ff61d23de260fb78] __schedule at ffffffff8323bc15\n #1 [ff61d23de260fc08] schedule at ffffffff8323c014\n #2 [ff61d23de260fc28] blk_mq_freeze_queue_wait at ffffffff82a3dba1\n #3 [ff61d23de260fc78] blk_freeze_queue at ffffffff82a4113a\n #4 [ff61d23de260fc90] blk_cleanup_queue at ffffffff82a33006\n #5 [ff61d23de260fcb0] nvme_rdma_destroy_admin_queue at ffffffffc12686ce\n #6 [ff61d23de260fcc8] nvme_rdma_setup_ctrl at ffffffffc1268ced\n #7 [ff61d23de260fd28] nvme_rdma_create_ctrl at ffffffffc126919b\n #8 [ff61d23de260fd68] nvmf_dev_write at ffffffffc024f362\n #9 [ff61d23de260fe38] vfs_write at ffffffff827d5f25\n RIP: 00007fda7891d574 RSP: 00007ffe2ef06958 RFLAGS: 00000202\n RAX: ffffffffffffffda RBX: 000055e8122a4d90 RCX: 00007fda7891d574\n RDX: 000000000000012b RSI: 000055e8122a4d90 RDI: 0000000000000004\n RBP: 00007ffe2ef079c0 R8: 000000000000012b R9: 000055e8122a4d90\n R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000004\n R13: 000055e8122923c0 R14: 000000000000012b R15: 00007fda78a54500\n ORIG_RAX: 0000000000000001 CS: 0033 SS: 002b\n\nThis due to we have quiesced admi_q before cancel requests, but forgot\nto unquiesce before destroy it, as a result we fail to drain the\npending requests, and hang on blk_mq_freeze_queue_wait() forever. Here\ntry to reuse nvme_rdma_teardown_admin_queue() to fix this issue and\nsimplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49569",
"url": "https://www.suse.com/security/cve/CVE-2024-49569"
},
{
"category": "external",
"summary": "SUSE Bug 1235730 for CVE-2024-49569",
"url": "https://bugzilla.suse.com/1235730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49569"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix uaf for accessing waker_bfqq after splitting\n\nAfter commit 42c306ed7233 (\"block, bfq: don\u0027t break merge chain in\nbfq_split_bfqq()\"), if the current procress is the last holder of bfqq,\nthe bfqq can be freed after bfq_split_bfqq(). Hence recored the bfqq and\nthen access bfqq-\u003ewaker_bfqq may trigger UAF. What\u0027s more, the waker_bfqq\nmay in the merge chain of bfqq, hence just recored waker_bfqq is still\nnot safe.\n\nFix the problem by adding a helper bfq_waker_bfqq() to check if\nbfqq-\u003ewaker_bfqq is in the merge chain, and current procress is the only\nholder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-49948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: add more sanity checks to qdisc_pkt_len_init()\n\nOne path takes care of SKB_GSO_DODGY, assuming\nskb-\u003elen is bigger than hdr_len.\n\nvirtio_net_hdr_to_skb() does not fully dissect TCP headers,\nit only make sure it is at least 20 bytes.\n\nIt is possible for an user to provide a malicious \u0027GSO\u0027 packet,\ntotal length of 80 bytes.\n\n- 20 bytes of IPv4 header\n- 60 bytes TCP header\n- a small gso_size like 8\n\nvirtio_net_hdr_to_skb() would declare this packet as a normal\nGSO packet, because it would see 40 bytes of payload,\nbigger than gso_size.\n\nWe need to make detect this case to not underflow\nqdisc_skb_cb(skb)-\u003epkt_len.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49948",
"url": "https://www.suse.com/security/cve/CVE-2024-49948"
},
{
"category": "external",
"summary": "SUSE Bug 1232161 for CVE-2024-49948",
"url": "https://bugzilla.suse.com/1232161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49948"
},
{
"cve": "CVE-2024-49951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible crash on mgmt_index_removed\n\nIf mgmt_index_removed is called while there are commands queued on\ncmd_sync it could lead to crashes like the bellow trace:\n\n0x0000053D: __list_del_entry_valid_or_report+0x98/0xdc\n0x0000053D: mgmt_pending_remove+0x18/0x58 [bluetooth]\n0x0000053E: mgmt_remove_adv_monitor_complete+0x80/0x108 [bluetooth]\n0x0000053E: hci_cmd_sync_work+0xbc/0x164 [bluetooth]\n\nSo while handling mgmt_index_removed this attempts to dequeue\ncommands passed as user_data to cmd_sync.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49951",
"url": "https://www.suse.com/security/cve/CVE-2024-49951"
},
{
"category": "external",
"summary": "SUSE Bug 1232158 for CVE-2024-49951",
"url": "https://bugzilla.suse.com/1232158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49951"
},
{
"cve": "CVE-2024-49978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngso: fix udp gso fraglist segmentation after pull from frag_list\n\nDetect gso fraglist skbs with corrupted geometry (see below) and\npass these to skb_segment instead of skb_segment_list, as the first\ncan segment them correctly.\n\nValid SKB_GSO_FRAGLIST skbs\n- consist of two or more segments\n- the head_skb holds the protocol headers plus first gso_size\n- one or more frag_list skbs hold exactly one segment\n- all but the last must be gso_size\n\nOptional datapath hooks such as NAT and BPF (bpf_skb_pull_data) can\nmodify these skbs, breaking these invariants.\n\nIn extreme cases they pull all data into skb linear. For UDP, this\ncauses a NULL ptr deref in __udpv4_gso_segment_list_csum at\nudp_hdr(seg-\u003enext)-\u003edest.\n\nDetect invalid geometry due to pull, by checking head_skb size.\nDon\u0027t just drop, as this may blackhole a destination. Convert to be\nable to pass to regular skb_segment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49978",
"url": "https://www.suse.com/security/cve/CVE-2024-49978"
},
{
"category": "external",
"summary": "SUSE Bug 1232101 for CVE-2024-49978",
"url": "https://bugzilla.suse.com/1232101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49978"
},
{
"cve": "CVE-2024-49998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: improve shutdown sequence\n\nAlexander Sverdlin presents 2 problems during shutdown with the\nlan9303 driver. One is specific to lan9303 and the other just happens\nto reproduce there.\n\nThe first problem is that lan9303 is unique among DSA drivers in that it\ncalls dev_get_drvdata() at \"arbitrary runtime\" (not probe, not shutdown,\nnot remove):\n\nphy_state_machine()\n-\u003e ...\n -\u003e dsa_user_phy_read()\n -\u003e ds-\u003eops-\u003ephy_read()\n -\u003e lan9303_phy_read()\n -\u003e chip-\u003eops-\u003ephy_read()\n -\u003e lan9303_mdio_phy_read()\n -\u003e dev_get_drvdata()\n\nBut we never stop the phy_state_machine(), so it may continue to run\nafter dsa_switch_shutdown(). Our common pattern in all DSA drivers is\nto set drvdata to NULL to suppress the remove() method that may come\nafterwards. But in this case it will result in an NPD.\n\nThe second problem is that the way in which we set\ndp-\u003econduit-\u003edsa_ptr = NULL; is concurrent with receive packet\nprocessing. dsa_switch_rcv() checks once whether dev-\u003edsa_ptr is NULL,\nbut afterwards, rather than continuing to use that non-NULL value,\ndev-\u003edsa_ptr is dereferenced again and again without NULL checks:\ndsa_conduit_find_user() and many other places. In between dereferences,\nthere is no locking to ensure that what was valid once continues to be\nvalid.\n\nBoth problems have the common aspect that closing the conduit interface\nsolves them.\n\nIn the first case, dev_close(conduit) triggers the NETDEV_GOING_DOWN\nevent in dsa_user_netdevice_event() which closes user ports as well.\ndsa_port_disable_rt() calls phylink_stop(), which synchronously stops\nthe phylink state machine, and ds-\u003eops-\u003ephy_read() will thus no longer\ncall into the driver after this point.\n\nIn the second case, dev_close(conduit) should do this, as per\nDocumentation/networking/driver.rst:\n\n| Quiescence\n| ----------\n|\n| After the ndo_stop routine has been called, the hardware must\n| not receive or transmit any data. All in flight packets must\n| be aborted. If necessary, poll or wait for completion of\n| any reset commands.\n\nSo it should be sufficient to ensure that later, when we zeroize\nconduit-\u003edsa_ptr, there will be no concurrent dsa_switch_rcv() call\non this conduit.\n\nThe addition of the netif_device_detach() function is to ensure that\nioctls, rtnetlinks and ethtool requests on the user ports no longer\npropagate down to the driver - we\u0027re no longer prepared to handle them.\n\nThe race condition actually did not exist when commit 0650bf52b31f\n(\"net: dsa: be compatible with masters which unregister on shutdown\")\nfirst introduced dsa_switch_shutdown(). It was created later, when we\nstopped unregistering the user interfaces from a bad spot, and we just\nreplaced that sequence with a racy zeroization of conduit-\u003edsa_ptr\n(one which doesn\u0027t ensure that the interfaces aren\u0027t up).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49998",
"url": "https://www.suse.com/security/cve/CVE-2024-49998"
},
{
"category": "external",
"summary": "SUSE Bug 1232087 for CVE-2024-49998",
"url": "https://bugzilla.suse.com/1232087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49998"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: mpc52xx: Add cancel_work_sync before module remove\n\nIf we remove the module which will call mpc52xx_spi_remove\nit will free \u0027ms\u0027 through spi_unregister_controller.\nwhile the work ms-\u003ework will be used. The sequence of operations\nthat may lead to a UAF bug.\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in mpc52xx_spi_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50051",
"url": "https://www.suse.com/security/cve/CVE-2024-50051"
},
{
"category": "external",
"summary": "SUSE Bug 1235739 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "external",
"summary": "SUSE Bug 1239156 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1239156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-50051"
},
{
"cve": "CVE-2024-50106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix race between laundromat and free_stateid\n\nThere is a race between laundromat handling of revoked delegations\nand a client sending free_stateid operation. Laundromat thread\nfinds that delegation has expired and needs to be revoked so it\nmarks the delegation stid revoked and it puts it on a reaper list\nbut then it unlock the state lock and the actual delegation revocation\nhappens without the lock. Once the stid is marked revoked a racing\nfree_stateid processing thread does the following (1) it calls\nlist_del_init() which removes it from the reaper list and (2) frees\nthe delegation stid structure. The laundromat thread ends up not\ncalling the revoke_delegation() function for this particular delegation\nbut that means it will no release the lock lease that exists on\nthe file.\n\nNow, a new open for this file comes in and ends up finding that\nlease list isn\u0027t empty and calls nfsd_breaker_owns_lease() which ends\nup trying to derefence a freed delegation stateid. Leading to the\nfollowint use-after-free KASAN warning:\n\nkernel: ==================================================================\nkernel: BUG: KASAN: slab-use-after-free in nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: Read of size 8 at addr ffff0000e73cd0c8 by task nfsd/6205\nkernel:\nkernel: CPU: 2 UID: 0 PID: 6205 Comm: nfsd Kdump: loaded Not tainted 6.11.0-rc7+ #9\nkernel: Hardware name: Apple Inc. Apple Virtualization Generic Platform, BIOS 2069.0.0.0.0 08/03/2024\nkernel: Call trace:\nkernel: dump_backtrace+0x98/0x120\nkernel: show_stack+0x1c/0x30\nkernel: dump_stack_lvl+0x80/0xe8\nkernel: print_address_description.constprop.0+0x84/0x390\nkernel: print_report+0xa4/0x268\nkernel: kasan_report+0xb4/0xf8\nkernel: __asan_report_load8_noabort+0x1c/0x28\nkernel: nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: nfsd_file_do_acquire+0xb3c/0x11d0 [nfsd]\nkernel: nfsd_file_acquire_opened+0x84/0x110 [nfsd]\nkernel: nfs4_get_vfs_file+0x634/0x958 [nfsd]\nkernel: nfsd4_process_open2+0xa40/0x1a40 [nfsd]\nkernel: nfsd4_open+0xa08/0xe80 [nfsd]\nkernel: nfsd4_proc_compound+0xb8c/0x2130 [nfsd]\nkernel: nfsd_dispatch+0x22c/0x718 [nfsd]\nkernel: svc_process_common+0x8e8/0x1960 [sunrpc]\nkernel: svc_process+0x3d4/0x7e0 [sunrpc]\nkernel: svc_handle_xprt+0x828/0xe10 [sunrpc]\nkernel: svc_recv+0x2cc/0x6a8 [sunrpc]\nkernel: nfsd+0x270/0x400 [nfsd]\nkernel: kthread+0x288/0x310\nkernel: ret_from_fork+0x10/0x20\n\nThis patch proposes a fixed that\u0027s based on adding 2 new additional\nstid\u0027s sc_status values that help coordinate between the laundromat\nand other operations (nfsd4_free_stateid() and nfsd4_delegreturn()).\n\nFirst to make sure, that once the stid is marked revoked, it is not\nremoved by the nfsd4_free_stateid(), the laundromat take a reference\non the stateid. Then, coordinating whether the stid has been put\non the cl_revoked list or we are processing FREE_STATEID and need to\nmake sure to remove it from the list, each check that state and act\naccordingly. If laundromat has added to the cl_revoke list before\nthe arrival of FREE_STATEID, then nfsd4_free_stateid() knows to remove\nit from the list. If nfsd4_free_stateid() finds that operations arrived\nbefore laundromat has placed it on cl_revoke list, it marks the state\nfreed and then laundromat will no longer add it to the list.\n\nAlso, for nfsd4_delegreturn() when looking for the specified stid,\nwe need to access stid that are marked removed or freeable, it means\nthe laundromat has started processing it but hasn\u0027t finished and this\ndelegreturn needs to return nfserr_deleg_revoked and not\nnfserr_bad_stateid. The latter will not trigger a FREE_STATEID and the\nlack of it will leave this stid on the cl_revoked list indefinitely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50106",
"url": "https://www.suse.com/security/cve/CVE-2024-50106"
},
{
"category": "external",
"summary": "SUSE Bug 1232882 for CVE-2024-50106",
"url": "https://bugzilla.suse.com/1232882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50106"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix OOBs when building SMB2_IOCTL request\n\nWhen using encryption, either enforced by the server or when using\n\u0027seal\u0027 mount option, the client will squash all compound request buffers\ndown for encryption into a single iov in smb2_set_next_command().\n\nSMB2_ioctl_init() allocates a small buffer (448 bytes) to hold the\nSMB2_IOCTL request in the first iov, and if the user passes an input\nbuffer that is greater than 328 bytes, smb2_set_next_command() will\nend up writing off the end of @rqst-\u003eiov[0].iov_base as shown below:\n\n mount.cifs //srv/share /mnt -o ...,seal\n ln -s $(perl -e \"print(\u0027a\u0027)for 1..1024\") /mnt/link\n\n BUG: KASAN: slab-out-of-bounds in\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n Write of size 4116 at addr ffff8881148fcab8 by task ln/859\n\n CPU: 1 UID: 0 PID: 859 Comm: ln Not tainted 6.12.0-rc3 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n 1.16.3-2.fc40 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n print_report+0x156/0x4d9\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n ? __virt_addr_valid+0x145/0x310\n ? __phys_addr+0x46/0x90\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_report+0xda/0x110\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_check_range+0x10f/0x1f0\n __asan_memcpy+0x3c/0x60\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n smb2_compound_op+0x238c/0x3840 [cifs]\n ? kasan_save_track+0x14/0x30\n ? kasan_save_free_info+0x3b/0x70\n ? vfs_symlink+0x1a1/0x2c0\n ? do_symlinkat+0x108/0x1c0\n ? __pfx_smb2_compound_op+0x10/0x10 [cifs]\n ? kmem_cache_free+0x118/0x3e0\n ? cifs_get_writable_path+0xeb/0x1a0 [cifs]\n smb2_get_reparse_inode+0x423/0x540 [cifs]\n ? __pfx_smb2_get_reparse_inode+0x10/0x10 [cifs]\n ? rcu_is_watching+0x20/0x50\n ? __kmalloc_noprof+0x37c/0x480\n ? smb2_create_reparse_symlink+0x257/0x490 [cifs]\n ? smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n ? __pfx_smb2_create_reparse_symlink+0x10/0x10 [cifs]\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? __build_path_from_dentry_optional_prefix+0x19d/0x2e0 [cifs]\n cifs_symlink+0x24f/0x960 [cifs]\n ? __pfx_make_vfsuid+0x10/0x10\n ? __pfx_cifs_symlink+0x10/0x10 [cifs]\n ? make_vfsgid+0x6b/0xc0\n ? generic_permission+0x96/0x2d0\n vfs_symlink+0x1a1/0x2c0\n do_symlinkat+0x108/0x1c0\n ? __pfx_do_symlinkat+0x10/0x10\n ? strncpy_from_user+0xaa/0x160\n __x64_sys_symlinkat+0xb9/0xf0\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7f08d75c13bb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50151",
"url": "https://www.suse.com/security/cve/CVE-2024-50151"
},
{
"category": "external",
"summary": "SUSE Bug 1233055 for CVE-2024-50151",
"url": "https://bugzilla.suse.com/1233055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50151"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50199",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50199"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swapfile: skip HugeTLB pages for unuse_vma\n\nI got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The\nproblem can be reproduced by the following steps:\n\n 1. Allocate an anonymous 1GB HugeTLB and some other anonymous memory.\n 2. Swapout the above anonymous memory.\n 3. run swapoff and we will get a bad pud error in kernel message:\n\n mm/pgtable-generic.c:42: bad pud 00000000743d215d(84000001400000e7)\n\nWe can tell that pud_clear_bad is called by pud_none_or_clear_bad in\nunuse_pud_range() by ftrace. And therefore the HugeTLB pages will never\nbe freed because we lost it from page table. We can skip HugeTLB pages\nfor unuse_vma to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50199",
"url": "https://www.suse.com/security/cve/CVE-2024-50199"
},
{
"category": "external",
"summary": "SUSE Bug 1233112 for CVE-2024-50199",
"url": "https://bugzilla.suse.com/1233112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50199"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix address emission with tag-based KASAN enabled\n\nWhen BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_image\nstruct on the stack is passed during the size calculation pass and\nan address on the heap is passed during code generation. This may\ncause a heap buffer overflow if the heap address is tagged because\nemit_a64_mov_i64() will emit longer code than it did during the size\ncalculation pass. The same problem could occur without tag-based\nKASAN if one of the 16-bit words of the stack address happened to\nbe all-ones during the size calculation pass. Fix the problem by\nassuming the worst case (4 instructions) when calculating the size\nof the bpf_tramp_image address emission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50203",
"url": "https://www.suse.com/security/cve/CVE-2024-50203"
},
{
"category": "external",
"summary": "SUSE Bug 1233328 for CVE-2024-50203",
"url": "https://bugzilla.suse.com/1233328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50203"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilemap: Fix bounds checking in filemap_read()\n\nIf the caller supplies an iocb-\u003eki_pos value that is close to the\nfilesystem upper limit, and an iterator with a count that causes us to\noverflow that limit, then filemap_read() enters an infinite loop.\n\nThis behaviour was discovered when testing xfstests generic/525 with the\n\"localio\" optimisation for loopback NFS mounts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50272",
"url": "https://www.suse.com/security/cve/CVE-2024-50272"
},
{
"category": "external",
"summary": "SUSE Bug 1233461 for CVE-2024-50272",
"url": "https://bugzilla.suse.com/1233461"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50272"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-50299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50299"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: properly validate chunk size in sctp_sf_ootb()\n\nA size validation fix similar to that in Commit 50619dbf8db7 (\"sctp: add\nsize validation when walking chunks\") is also required in sctp_sf_ootb()\nto address a crash reported by syzbot:\n\n BUG: KMSAN: uninit-value in sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_do_sm+0x181/0x93d0 net/sctp/sm_sideeffect.c:1166\n sctp_endpoint_bh_rcv+0xc38/0xf90 net/sctp/endpointola.c:407\n sctp_inq_push+0x2ef/0x380 net/sctp/inqueue.c:88\n sctp_rcv+0x3831/0x3b20 net/sctp/input.c:243\n sctp4_rcv+0x42/0x50 net/sctp/protocol.c:1159\n ip_protocol_deliver_rcu+0xb51/0x13d0 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x336/0x500 net/ipv4/ip_input.c:233",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50299",
"url": "https://www.suse.com/security/cve/CVE-2024-50299"
},
{
"category": "external",
"summary": "SUSE Bug 1233488 for CVE-2024-50299",
"url": "https://bugzilla.suse.com/1233488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50299"
},
{
"cve": "CVE-2024-52332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Fix potential invalid memory access in igb_init_module()\n\nThe pci_register_driver() can fail and when this happened, the dca_notifier\nneeds to be unregistered, otherwise the dca_notifier can be called when\nigb fails to install, resulting to invalid memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52332",
"url": "https://www.suse.com/security/cve/CVE-2024-52332"
},
{
"category": "external",
"summary": "SUSE Bug 1235700 for CVE-2024-52332",
"url": "https://bugzilla.suse.com/1235700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-52332"
},
{
"cve": "CVE-2024-53050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53050"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in hdcp2_get_capability\n\nAdd encoder check in intel_hdcp2_get_capability to avoid\nnull pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53050",
"url": "https://www.suse.com/security/cve/CVE-2024-53050"
},
{
"category": "external",
"summary": "SUSE Bug 1233546 for CVE-2024-53050",
"url": "https://bugzilla.suse.com/1233546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53050"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx\n\nAs the introduction of the support for vsock and unix sockets in sockmap,\ntls_sw_has_ctx_tx/rx cannot presume the socket passed in must be IS_ICSK.\nvsock and af_unix sockets have vsock_sock and unix_sock instead of\ninet_connection_sock. For these sockets, tls_get_ctx may return an invalid\npointer and cause page fault in function tls_sw_ctx_rx.\n\nBUG: unable to handle page fault for address: 0000000000040030\nWorkqueue: vsock-loopback vsock_loopback_work\nRIP: 0010:sk_psock_strp_data_ready+0x23/0x60\nCall Trace:\n ? __die+0x81/0xc3\n ? no_context+0x194/0x350\n ? do_page_fault+0x30/0x110\n ? async_page_fault+0x3e/0x50\n ? sk_psock_strp_data_ready+0x23/0x60\n virtio_transport_recv_pkt+0x750/0x800\n ? update_load_avg+0x7e/0x620\n vsock_loopback_work+0xd0/0x100\n process_one_work+0x1a7/0x360\n worker_thread+0x30/0x390\n ? create_worker+0x1a0/0x1a0\n kthread+0x112/0x130\n ? __kthread_cancel_work+0x40/0x40\n ret_from_fork+0x1f/0x40\n\nv2:\n - Add IS_ICSK check\nv3:\n - Update the commits in Fixes",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53091",
"url": "https://www.suse.com/security/cve/CVE-2024-53091"
},
{
"category": "external",
"summary": "SUSE Bug 1233638 for CVE-2024-53091",
"url": "https://bugzilla.suse.com/1233638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53091"
},
{
"cve": "CVE-2024-53095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Fix use-after-free of network namespace.\n\nRecently, we got a customer report that CIFS triggers oops while\nreconnecting to a server. [0]\n\nThe workload runs on Kubernetes, and some pods mount CIFS servers\nin non-root network namespaces. The problem rarely happened, but\nit was always while the pod was dying.\n\nThe root cause is wrong reference counting for network namespace.\n\nCIFS uses kernel sockets, which do not hold refcnt of the netns that\nthe socket belongs to. That means CIFS must ensure the socket is\nalways freed before its netns; otherwise, use-after-free happens.\n\nThe repro steps are roughly:\n\n 1. mount CIFS in a non-root netns\n 2. drop packets from the netns\n 3. destroy the netns\n 4. unmount CIFS\n\nWe can reproduce the issue quickly with the script [1] below and see\nthe splat [2] if CONFIG_NET_NS_REFCNT_TRACKER is enabled.\n\nWhen the socket is TCP, it is hard to guarantee the netns lifetime\nwithout holding refcnt due to async timers.\n\nLet\u0027s hold netns refcnt for each socket as done for SMC in commit\n9744d2bf1976 (\"smc: Fix use-after-free in tcp_write_timer_handler().\").\n\nNote that we need to move put_net() from cifs_put_tcp_session() to\nclean_demultiplex_info(); otherwise, __sock_create() still could touch a\nfreed netns while cifsd tries to reconnect from cifs_demultiplex_thread().\n\nAlso, maybe_get_net() cannot be put just before __sock_create() because\nthe code is not under RCU and there is a small chance that the same\naddress happened to be reallocated to another netns.\n\n[0]:\nCIFS: VFS: \\\\XXXXXXXXXXX has not responded in 15 seconds. Reconnecting...\nCIFS: Serverclose failed 4 times, giving up\nUnable to handle kernel paging request at virtual address 14de99e461f84a07\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\n[14de99e461f84a07] address between user and kernel address ranges\nInternal error: Oops: 0000000096000004 [#1] SMP\nModules linked in: cls_bpf sch_ingress nls_utf8 cifs cifs_arc4 cifs_md4 dns_resolver tcp_diag inet_diag veth xt_state xt_connmark nf_conntrack_netlink xt_nat xt_statistic xt_MASQUERADE xt_mark xt_addrtype ipt_REJECT nf_reject_ipv4 nft_chain_nat nf_nat xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment nft_compat nf_tables nfnetlink overlay nls_ascii nls_cp437 sunrpc vfat fat aes_ce_blk aes_ce_cipher ghash_ce sm4_ce_cipher sm4 sm3_ce sm3 sha3_ce sha512_ce sha512_arm64 sha1_ce ena button sch_fq_codel loop fuse configfs dmi_sysfs sha2_ce sha256_arm64 dm_mirror dm_region_hash dm_log dm_mod dax efivarfs\nCPU: 5 PID: 2690970 Comm: cifsd Not tainted 6.1.103-109.184.amzn2023.aarch64 #1\nHardware name: Amazon EC2 r7g.4xlarge/, BIOS 1.0 11/1/2018\npstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : fib_rules_lookup+0x44/0x238\nlr : __fib_lookup+0x64/0xbc\nsp : ffff8000265db790\nx29: ffff8000265db790 x28: 0000000000000000 x27: 000000000000bd01\nx26: 0000000000000000 x25: ffff000b4baf8000 x24: ffff00047b5e4580\nx23: ffff8000265db7e0 x22: 0000000000000000 x21: ffff00047b5e4500\nx20: ffff0010e3f694f8 x19: 14de99e461f849f7 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 3f92800abd010002\nx11: 0000000000000001 x10: ffff0010e3f69420 x9 : ffff800008a6f294\nx8 : 0000000000000000 x7 : 0000000000000006 x6 : 0000000000000000\nx5 : 0000000000000001 x4 : ffff001924354280 x3 : ffff8000265db7e0\nx2 : 0000000000000000 x1 : ffff0010e3f694f8 x0 : ffff00047b5e4500\nCall trace:\n fib_rules_lookup+0x44/0x238\n __fib_lookup+0x64/0xbc\n ip_route_output_key_hash_rcu+0x2c4/0x398\n ip_route_output_key_hash+0x60/0x8c\n tcp_v4_connect+0x290/0x488\n __inet_stream_connect+0x108/0x3d0\n inet_stream_connect+0x50/0x78\n kernel_connect+0x6c/0xac\n generic_ip_conne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53095",
"url": "https://www.suse.com/security/cve/CVE-2024-53095"
},
{
"category": "external",
"summary": "SUSE Bug 1233642 for CVE-2024-53095",
"url": "https://bugzilla.suse.com/1233642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53095"
},
{
"cve": "CVE-2024-53099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()\n\nIf a newly-added link type doesn\u0027t invoke BPF_LINK_TYPE(), accessing\nbpf_link_type_strs[link-\u003etype] may result in an out-of-bounds access.\n\nTo spot such missed invocations early in the future, checking the\nvalidity of link-\u003etype in bpf_link_show_fdinfo() and emitting a warning\nwhen such invocations are missed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53099",
"url": "https://www.suse.com/security/cve/CVE-2024-53099"
},
{
"category": "external",
"summary": "SUSE Bug 1233772 for CVE-2024-53099",
"url": "https://bugzilla.suse.com/1233772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53099"
},
{
"cve": "CVE-2024-53103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer\n\nWhen hvs is released, there is a possibility that vsk-\u003etrans may not\nbe initialized to NULL, which could lead to a dangling pointer.\nThis issue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53103",
"url": "https://www.suse.com/security/cve/CVE-2024-53103"
},
{
"category": "external",
"summary": "SUSE Bug 1234024 for CVE-2024-53103",
"url": "https://bugzilla.suse.com/1234024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53103"
},
{
"cve": "CVE-2024-53105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: page_alloc: move mlocked flag clearance into free_pages_prepare()\n\nSyzbot reported a bad page state problem caused by a page being freed\nusing free_page() still having a mlocked flag at free_pages_prepare()\nstage:\n\n BUG: Bad page state in process syz.5.504 pfn:61f45\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61f45\n flags: 0xfff00000080204(referenced|workingset|mlocked|node=0|zone=1|lastcpupid=0x7ff)\n raw: 00fff00000080204 0000000000000000 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\n page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set\n page_owner tracks the page as allocated\n page last allocated via order 0, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 8443, tgid 8442 (syz.5.504), ts 201884660643, free_ts 201499827394\n set_page_owner include/linux/page_owner.h:32 [inline]\n post_alloc_hook+0x1f3/0x230 mm/page_alloc.c:1537\n prep_new_page mm/page_alloc.c:1545 [inline]\n get_page_from_freelist+0x303f/0x3190 mm/page_alloc.c:3457\n __alloc_pages_noprof+0x292/0x710 mm/page_alloc.c:4733\n alloc_pages_mpol_noprof+0x3e8/0x680 mm/mempolicy.c:2265\n kvm_coalesced_mmio_init+0x1f/0xf0 virt/kvm/coalesced_mmio.c:99\n kvm_create_vm virt/kvm/kvm_main.c:1235 [inline]\n kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5488 [inline]\n kvm_dev_ioctl+0x12dc/0x2240 virt/kvm/kvm_main.c:5530\n __do_compat_sys_ioctl fs/ioctl.c:1007 [inline]\n __se_compat_sys_ioctl+0x510/0xc90 fs/ioctl.c:950\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0xb4/0x110 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x34/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n page last free pid 8399 tgid 8399 stack trace:\n reset_page_owner include/linux/page_owner.h:25 [inline]\n free_pages_prepare mm/page_alloc.c:1108 [inline]\n free_unref_folios+0xf12/0x18d0 mm/page_alloc.c:2686\n folios_put_refs+0x76c/0x860 mm/swap.c:1007\n free_pages_and_swap_cache+0x5c8/0x690 mm/swap_state.c:335\n __tlb_batch_free_encoded_pages mm/mmu_gather.c:136 [inline]\n tlb_batch_pages_flush mm/mmu_gather.c:149 [inline]\n tlb_flush_mmu_free mm/mmu_gather.c:366 [inline]\n tlb_flush_mmu+0x3a3/0x680 mm/mmu_gather.c:373\n tlb_finish_mmu+0xd4/0x200 mm/mmu_gather.c:465\n exit_mmap+0x496/0xc40 mm/mmap.c:1926\n __mmput+0x115/0x390 kernel/fork.c:1348\n exit_mm+0x220/0x310 kernel/exit.c:571\n do_exit+0x9b2/0x28e0 kernel/exit.c:926\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [inline]\n __se_sys_exit_group kernel/exit.c:1097 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1097\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n Modules linked in:\n CPU: 0 UID: 0 PID: 8442 Comm: syz.5.504 Not tainted 6.12.0-rc6-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n bad_page+0x176/0x1d0 mm/page_alloc.c:501\n free_page_is_bad mm/page_alloc.c:918 [inline]\n free_pages_prepare mm/page_alloc.c:1100 [inline]\n free_unref_page+0xed0/0xf20 mm/page_alloc.c:2638\n kvm_destroy_vm virt/kvm/kvm_main.c:1327 [inline]\n kvm_put_kvm+0xc75/0x1350 virt/kvm/kvm_main.c:1386\n kvm_vcpu_release+0x54/0x60 virt/kvm/kvm_main.c:4143\n __fput+0x23f/0x880 fs/file_table.c:431\n task_work_run+0x24f/0x310 kernel/task_work.c:239\n exit_task_work include/linux/task_work.h:43 [inline]\n do_exit+0xa2f/0x28e0 kernel/exit.c:939\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53105",
"url": "https://www.suse.com/security/cve/CVE-2024-53105"
},
{
"category": "external",
"summary": "SUSE Bug 1234069 for CVE-2024-53105",
"url": "https://bugzilla.suse.com/1234069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53105"
},
{
"cve": "CVE-2024-53111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix address wraparound in move_page_tables()\n\nOn 32-bit platforms, it is possible for the expression `len + old_addr \u003c\nold_end` to be false-positive if `len + old_addr` wraps around. \n`old_addr` is the cursor in the old range up to which page table entries\nhave been moved; so if the operation succeeded, `old_addr` is the *end* of\nthe old region, and adding `len` to it can wrap.\n\nThe overflow causes mremap() to mistakenly believe that PTEs have been\ncopied; the consequence is that mremap() bails out, but doesn\u0027t move the\nPTEs back before the new VMA is unmapped, causing anonymous pages in the\nregion to be lost. So basically if userspace tries to mremap() a\nprivate-anon region and hits this bug, mremap() will return an error and\nthe private-anon region\u0027s contents appear to have been zeroed.\n\nThe idea of this check is that `old_end - len` is the original start\naddress, and writing the check that way also makes it easier to read; so\nfix the check by rearranging the comparison accordingly.\n\n(An alternate fix would be to refactor this function by introducing an\n\"orig_old_start\" variable or such.)\n\n\nTested in a VM with a 32-bit X86 kernel; without the patch:\n\n```\nuser@horn:~/big_mremap$ cat test.c\n#define _GNU_SOURCE\n#include \u003cstdlib.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003cerr.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define ADDR1 ((void*)0x60000000)\n#define ADDR2 ((void*)0x10000000)\n#define SIZE 0x50000000uL\n\nint main(void) {\n unsigned char *p1 = mmap(ADDR1, SIZE, PROT_READ|PROT_WRITE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p1 == MAP_FAILED)\n err(1, \"mmap 1\");\n unsigned char *p2 = mmap(ADDR2, SIZE, PROT_NONE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p2 == MAP_FAILED)\n err(1, \"mmap 2\");\n *p1 = 0x41;\n printf(\"first char is 0x%02hhx\\n\", *p1);\n unsigned char *p3 = mremap(p1, SIZE, SIZE,\n MREMAP_MAYMOVE|MREMAP_FIXED, p2);\n if (p3 == MAP_FAILED) {\n printf(\"mremap() failed; first char is 0x%02hhx\\n\", *p1);\n } else {\n printf(\"mremap() succeeded; first char is 0x%02hhx\\n\", *p3);\n }\n}\nuser@horn:~/big_mremap$ gcc -static -o test test.c\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() failed; first char is 0x00\n```\n\nWith the patch:\n\n```\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() succeeded; first char is 0x41\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53111",
"url": "https://www.suse.com/security/cve/CVE-2024-53111"
},
{
"category": "external",
"summary": "SUSE Bug 1234086 for CVE-2024-53111",
"url": "https://bugzilla.suse.com/1234086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53111"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Improve MSG_ZEROCOPY error handling\n\nAdd a missing kfree_skb() to prevent memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53117",
"url": "https://www.suse.com/security/cve/CVE-2024-53117"
},
{
"category": "external",
"summary": "SUSE Bug 1234079 for CVE-2024-53117",
"url": "https://bugzilla.suse.com/1234079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53117"
},
{
"cve": "CVE-2024-53118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Fix sk_error_queue memory leak\n\nKernel queues MSG_ZEROCOPY completion notifications on the error queue.\nWhere they remain, until explicitly recv()ed. To prevent memory leaks,\nclean up the queue when the socket is destroyed.\n\nunreferenced object 0xffff8881028beb00 (size 224):\n comm \"vsock_test\", pid 1218, jiffies 4294694897\n hex dump (first 32 bytes):\n 90 b0 21 17 81 88 ff ff 90 b0 21 17 81 88 ff ff ..!.......!.....\n 00 00 00 00 00 00 00 00 00 b0 21 17 81 88 ff ff ..........!.....\n backtrace (crc 6c7031ca):\n [\u003cffffffff81418ef7\u003e] kmem_cache_alloc_node_noprof+0x2f7/0x370\n [\u003cffffffff81d35882\u003e] __alloc_skb+0x132/0x180\n [\u003cffffffff81d2d32b\u003e] sock_omalloc+0x4b/0x80\n [\u003cffffffff81d3a8ae\u003e] msg_zerocopy_realloc+0x9e/0x240\n [\u003cffffffff81fe5cb2\u003e] virtio_transport_send_pkt_info+0x412/0x4c0\n [\u003cffffffff81fe6183\u003e] virtio_transport_stream_enqueue+0x43/0x50\n [\u003cffffffff81fe0813\u003e] vsock_connectible_sendmsg+0x373/0x450\n [\u003cffffffff81d233d5\u003e] ____sys_sendmsg+0x365/0x3a0\n [\u003cffffffff81d246f4\u003e] ___sys_sendmsg+0x84/0xd0\n [\u003cffffffff81d26f47\u003e] __sys_sendmsg+0x47/0x80\n [\u003cffffffff820d3df3\u003e] do_syscall_64+0x93/0x180\n [\u003cffffffff8220012b\u003e] entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53118",
"url": "https://www.suse.com/security/cve/CVE-2024-53118"
},
{
"category": "external",
"summary": "SUSE Bug 1234071 for CVE-2024-53118",
"url": "https://bugzilla.suse.com/1234071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53118"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: solidrun: Fix UB bug with devres\n\nIn psnet_open_pf_bar() and snet_open_vf_bar() a string later passed to\npcim_iomap_regions() is placed on the stack. Neither\npcim_iomap_regions() nor the functions it calls copy that string.\n\nShould the string later ever be used, this, consequently, causes\nundefined behavior since the stack frame will by then have disappeared.\n\nFix the bug by allocating the strings on the heap through\ndevm_kasprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53126",
"url": "https://www.suse.com/security/cve/CVE-2024-53126"
},
{
"category": "external",
"summary": "SUSE Bug 1234158 for CVE-2024-53126",
"url": "https://bugzilla.suse.com/1234158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53126"
},
{
"cve": "CVE-2024-53127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\"\n\nThe commit 8396c793ffdf (\"mmc: dw_mmc: Fix IDMAC operation with pages\nbigger than 4K\") increased the max_req_size, even for 4K pages, causing\nvarious issues:\n- Panic booting the kernel/rootfs from an SD card on Rockchip RK3566\n- Panic booting the kernel/rootfs from an SD card on StarFive JH7100\n- \"swiotlb buffer is full\" and data corruption on StarFive JH7110\n\nAt this stage no fix have been found, so it\u0027s probably better to just\nrevert the change.\n\nThis reverts commit 8396c793ffdf28bb8aee7cfe0891080f8cab7890.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53127",
"url": "https://www.suse.com/security/cve/CVE-2024-53127"
},
{
"category": "external",
"summary": "SUSE Bug 1234153 for CVE-2024-53127",
"url": "https://bugzilla.suse.com/1234153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53127"
},
{
"cve": "CVE-2024-53129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/rockchip: vop: Fix a dereferenced before check warning\n\nThe \u0027state\u0027 can\u0027t be NULL, we should check crtc_state.\n\nFix warning:\ndrivers/gpu/drm/rockchip/rockchip_drm_vop.c:1096\nvop_plane_atomic_async_check() warn: variable dereferenced before check\n\u0027state\u0027 (see line 1077)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53129",
"url": "https://www.suse.com/security/cve/CVE-2024-53129"
},
{
"category": "external",
"summary": "SUSE Bug 1234155 for CVE-2024-53129",
"url": "https://bugzilla.suse.com/1234155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53129"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle dml allocation failure to avoid crash\n\n[Why]\nIn the case where a dml allocation fails for any reason, the\ncurrent state\u0027s dml contexts would no longer be valid. Then\nsubsequent calls dc_state_copy_internal would shallow copy\ninvalid memory and if the new state was released, a double\nfree would occur.\n\n[How]\nReset dml pointers in new_state to NULL and avoid invalid\npointer\n\n(cherry picked from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53133",
"url": "https://www.suse.com/security/cve/CVE-2024-53133"
},
{
"category": "external",
"summary": "SUSE Bug 1234221 for CVE-2024-53133",
"url": "https://bugzilla.suse.com/1234221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53133"
},
{
"cve": "CVE-2024-53134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx93-blk-ctrl: correct remove path\n\nThe check condition should be \u0027i \u003c bc-\u003eonecell_data.num_domains\u0027, not\n\u0027bc-\u003eonecell_data.num_domains\u0027 which will make the look never finish\nand cause kernel panic.\n\nAlso disable runtime to address\n\"imx93-blk-ctrl 4ac10000.system-controller: Unbalanced pm_runtime_enable!\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53134",
"url": "https://www.suse.com/security/cve/CVE-2024-53134"
},
{
"category": "external",
"summary": "SUSE Bug 1234159 for CVE-2024-53134",
"url": "https://bugzilla.suse.com/1234159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53134"
},
{
"cve": "CVE-2024-53136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: revert \"mm: shmem: fix data-race in shmem_getattr()\"\n\nRevert d949d1d14fa2 (\"mm: shmem: fix data-race in shmem_getattr()\") as\nsuggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over\nNFS.\n\nAs Hugh commented, \"added just to silence a syzbot sanitizer splat: added\nwhere there has never been any practical problem\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53136",
"url": "https://www.suse.com/security/cve/CVE-2024-53136"
},
{
"category": "external",
"summary": "SUSE Bug 1234161 for CVE-2024-53136",
"url": "https://bugzilla.suse.com/1234161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53136"
},
{
"cve": "CVE-2024-53141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: add missing range check in bitmap_ip_uadt\n\nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,\nthe values of ip and ip_to are slightly swapped. Therefore, the range check\nfor ip should be done later, but this part is missing and it seems that the\nvulnerability occurs.\n\nSo we should add missing range checks and remove unnecessary range checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53141",
"url": "https://www.suse.com/security/cve/CVE-2024-53141"
},
{
"category": "external",
"summary": "SUSE Bug 1234381 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "external",
"summary": "SUSE Bug 1245778 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1245778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53141"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE\n\nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4\n(\"Bluetooth: Always request for user confirmation for Just Works\")\nalways request user confirmation with confirm_hint set since the\nlikes of bluetoothd have dedicated policy around JUST_WORKS method\n(e.g. main.conf:JustWorksRepairing).\n\nCVE: CVE-2024-8805",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53144",
"url": "https://www.suse.com/security/cve/CVE-2024-53144"
},
{
"category": "external",
"summary": "SUSE Bug 1234690 for CVE-2024-53144",
"url": "https://bugzilla.suse.com/1234690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53144"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: Flush partial mappings in error case\n\nIf some remap_pfn_range() calls succeeded before one failed, we still have\nbuffer pages mapped into the userspace page tables when we drop the buffer\nreference with comedi_buf_map_put(bm). The userspace mappings are only\ncleaned up later in the mmap error path.\n\nFix it by explicitly flushing all mappings in our VMA on the error path.\n\nSee commit 79a61cc3fc04 (\"mm: avoid leaving partial pfn mappings around in\nerror case\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53148",
"url": "https://www.suse.com/security/cve/CVE-2024-53148"
},
{
"category": "external",
"summary": "SUSE Bug 1234832 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "external",
"summary": "SUSE Bug 1234833 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53148"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: Address an integer overflow\n\nDan Carpenter reports:\n\u003e Commit 78147ca8b4a9 (\"svcrdma: Add a \"parsed chunk list\" data\n\u003e structure\") from Jun 22, 2020 (linux-next), leads to the following\n\u003e Smatch static checker warning:\n\u003e\n\u003e\tnet/sunrpc/xprtrdma/svc_rdma_recvfrom.c:498 xdr_check_write_chunk()\n\u003e\twarn: potential user controlled sizeof overflow \u0027segcount * 4 * 4\u0027\n\u003e\n\u003e net/sunrpc/xprtrdma/svc_rdma_recvfrom.c\n\u003e 488 static bool xdr_check_write_chunk(struct svc_rdma_recv_ctxt *rctxt)\n\u003e 489 {\n\u003e 490 u32 segcount;\n\u003e 491 __be32 *p;\n\u003e 492\n\u003e 493 if (xdr_stream_decode_u32(\u0026rctxt-\u003erc_stream, \u0026segcount))\n\u003e ^^^^^^^^\n\u003e\n\u003e 494 return false;\n\u003e 495\n\u003e 496 /* A bogus segcount causes this buffer overflow check to fail. */\n\u003e 497 p = xdr_inline_decode(\u0026rctxt-\u003erc_stream,\n\u003e --\u003e 498 segcount * rpcrdma_segment_maxsz * sizeof(*p));\n\u003e\n\u003e\n\u003e segcount is an untrusted u32. On 32bit systems anything \u003e= SIZE_MAX / 16 will\n\u003e have an integer overflow and some those values will be accepted by\n\u003e xdr_inline_decode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53151",
"url": "https://www.suse.com/security/cve/CVE-2024-53151"
},
{
"category": "external",
"summary": "SUSE Bug 1234829 for CVE-2024-53151",
"url": "https://bugzilla.suse.com/1234829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53151"
},
{
"cve": "CVE-2024-53154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clk-apple-nco: Add NULL check in applnco_probe\n\nAdd NULL check in applnco_probe, to handle kernel NULL pointer\ndereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53154",
"url": "https://www.suse.com/security/cve/CVE-2024-53154"
},
{
"category": "external",
"summary": "SUSE Bug 1234826 for CVE-2024-53154",
"url": "https://bugzilla.suse.com/1234826"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53154"
},
{
"cve": "CVE-2024-53155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix uninitialized value in ocfs2_file_read_iter()\n\nSyzbot has reported the following KMSAN splat:\n\nBUG: KMSAN: uninit-value in ocfs2_file_read_iter+0x9a4/0xf80\n ocfs2_file_read_iter+0x9a4/0xf80\n __io_read+0x8d4/0x20f0\n io_read+0x3e/0xf0\n io_issue_sqe+0x42b/0x22c0\n io_wq_submit_work+0xaf9/0xdc0\n io_worker_handle_work+0xd13/0x2110\n io_wq_worker+0x447/0x1410\n ret_from_fork+0x6f/0x90\n ret_from_fork_asm+0x1a/0x30\n\nUninit was created at:\n __alloc_pages_noprof+0x9a7/0xe00\n alloc_pages_mpol_noprof+0x299/0x990\n alloc_pages_noprof+0x1bf/0x1e0\n allocate_slab+0x33a/0x1250\n ___slab_alloc+0x12ef/0x35e0\n kmem_cache_alloc_bulk_noprof+0x486/0x1330\n __io_alloc_req_refill+0x84/0x560\n io_submit_sqes+0x172f/0x2f30\n __se_sys_io_uring_enter+0x406/0x41c0\n __x64_sys_io_uring_enter+0x11f/0x1a0\n x64_sys_call+0x2b54/0x3ba0\n do_syscall_64+0xcd/0x1e0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nSince an instance of \u0027struct kiocb\u0027 may be passed from the block layer\nwith \u0027private\u0027 field uninitialized, introduce \u0027ocfs2_iocb_init_rw_locked()\u0027\nand use it from where \u0027ocfs2_dio_end_io()\u0027 might take care, i.e. in\n\u0027ocfs2_file_read_iter()\u0027 and \u0027ocfs2_file_write_iter()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53155",
"url": "https://www.suse.com/security/cve/CVE-2024-53155"
},
{
"category": "external",
"summary": "SUSE Bug 1234855 for CVE-2024-53155",
"url": "https://bugzilla.suse.com/1234855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53155"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53159"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53159",
"url": "https://www.suse.com/security/cve/CVE-2024-53159"
},
{
"category": "external",
"summary": "SUSE Bug 1234848 for CVE-2024-53159",
"url": "https://bugzilla.suse.com/1234848"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53159"
},
{
"cve": "CVE-2024-53160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu\n\nKCSAN reports a data race when access the krcp-\u003emonitor_work.timer.expires\nvariable in the schedule_delayed_monitor_work() function:\n\n\u003csnip\u003e\nBUG: KCSAN: data-race in __mod_timer / kvfree_call_rcu\n\nread to 0xffff888237d1cce8 of 8 bytes by task 10149 on cpu 1:\n schedule_delayed_monitor_work kernel/rcu/tree.c:3520 [inline]\n kvfree_call_rcu+0x3b8/0x510 kernel/rcu/tree.c:3839\n trie_update_elem+0x47c/0x620 kernel/bpf/lpm_trie.c:441\n bpf_map_update_value+0x324/0x350 kernel/bpf/syscall.c:203\n generic_map_update_batch+0x401/0x520 kernel/bpf/syscall.c:1849\n bpf_map_do_batch+0x28c/0x3f0 kernel/bpf/syscall.c:5143\n __sys_bpf+0x2e5/0x7a0\n __do_sys_bpf kernel/bpf/syscall.c:5741 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5739 [inline]\n __x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5739\n x64_sys_call+0x2625/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nwrite to 0xffff888237d1cce8 of 8 bytes by task 56 on cpu 0:\n __mod_timer+0x578/0x7f0 kernel/time/timer.c:1173\n add_timer_global+0x51/0x70 kernel/time/timer.c:1330\n __queue_delayed_work+0x127/0x1a0 kernel/workqueue.c:2523\n queue_delayed_work_on+0xdf/0x190 kernel/workqueue.c:2552\n queue_delayed_work include/linux/workqueue.h:677 [inline]\n schedule_delayed_monitor_work kernel/rcu/tree.c:3525 [inline]\n kfree_rcu_monitor+0x5e8/0x660 kernel/rcu/tree.c:3643\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0x483/0x9a0 kernel/workqueue.c:3310\n worker_thread+0x51d/0x6f0 kernel/workqueue.c:3391\n kthread+0x1d1/0x210 kernel/kthread.c:389\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 UID: 0 PID: 56 Comm: kworker/u8:4 Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events_unbound kfree_rcu_monitor\n\u003csnip\u003e\n\nkfree_rcu_monitor() rearms the work if a \"krcp\" has to be still\noffloaded and this is done without holding krcp-\u003elock, whereas\nthe kvfree_call_rcu() holds it.\n\nFix it by acquiring the \"krcp-\u003elock\" for kfree_rcu_monitor() so\nboth functions do not race anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53160",
"url": "https://www.suse.com/security/cve/CVE-2024-53160"
},
{
"category": "external",
"summary": "SUSE Bug 1234810 for CVE-2024-53160",
"url": "https://bugzilla.suse.com/1234810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53160"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix ordering of qlen adjustment\n\nChanges to sch-\u003eq.qlen around qdisc_tree_reduce_backlog() need to happen\n_before_ a call to said function because otherwise it may fail to notify\nparent qdiscs when the child is about to become empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53164",
"url": "https://www.suse.com/security/cve/CVE-2024-53164"
},
{
"category": "external",
"summary": "SUSE Bug 1234863 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "external",
"summary": "SUSE Bug 1246019 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1246019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53164"
},
{
"cve": "CVE-2024-53166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix bfqq uaf in bfq_limit_depth()\n\nSet new allocated bfqq to bic or remove freed bfqq from bic are both\nprotected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq\nfrom bic without the lock, this can lead to UAF if the io_context is\nshared by multiple tasks.\n\nFor example, test bfq with io_uring can trigger following UAF in v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfqq_group+0x15/0x50\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x80\n print_address_description.constprop.0+0x66/0x300\n print_report+0x3e/0x70\n kasan_report+0xb4/0xf0\n bfqq_group+0x15/0x50\n bfqq_request_over_limit+0x130/0x9a0\n bfq_limit_depth+0x1b5/0x480\n __blk_mq_alloc_requests+0x2b5/0xa00\n blk_mq_get_new_requests+0x11d/0x1d0\n blk_mq_submit_bio+0x286/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __block_write_full_folio+0x3d0/0x640\n writepage_cb+0x3b/0xc0\n write_cache_pages+0x254/0x6c0\n write_cache_pages+0x254/0x6c0\n do_writepages+0x192/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nAllocated by task 808602:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_slab_alloc+0x83/0x90\n kmem_cache_alloc_node+0x1b1/0x6d0\n bfq_get_queue+0x138/0xfa0\n bfq_get_bfqq_handle_split+0xe3/0x2c0\n bfq_init_rq+0x196/0xbb0\n bfq_insert_request.isra.0+0xb5/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_insert_request+0x15d/0x440\n blk_mq_submit_bio+0x8a4/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __blkdev_direct_IO_async+0x2dd/0x330\n blkdev_write_iter+0x39a/0x450\n io_write+0x22a/0x840\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFreed by task 808589:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n __kasan_slab_free+0x126/0x1b0\n kmem_cache_free+0x10c/0x750\n bfq_put_queue+0x2dd/0x770\n __bfq_insert_request.isra.0+0x155/0x7a0\n bfq_insert_request.isra.0+0x122/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_dispatch_plug_list+0x528/0x7e0\n blk_mq_flush_plug_list.part.0+0xe5/0x590\n __blk_flush_plug+0x3b/0x90\n blk_finish_plug+0x40/0x60\n do_writepages+0x19d/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFix the problem by protecting bic_to_bfqq() with bfqd-\u003elock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53166",
"url": "https://www.suse.com/security/cve/CVE-2024-53166"
},
{
"category": "external",
"summary": "SUSE Bug 1234884 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "external",
"summary": "SUSE Bug 1234885 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-53168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: fix one UAF issue caused by sunrpc kernel tcp socket\n\nBUG: KASAN: slab-use-after-free in tcp_write_timer_handler+0x156/0x3e0\nRead of size 1 at addr ffff888111f322cd by task swapper/0/0\n\nCPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc4-dirty #7\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x68/0xa0\n print_address_description.constprop.0+0x2c/0x3d0\n print_report+0xb4/0x270\n kasan_report+0xbd/0xf0\n tcp_write_timer_handler+0x156/0x3e0\n tcp_write_timer+0x66/0x170\n call_timer_fn+0xfb/0x1d0\n __run_timers+0x3f8/0x480\n run_timer_softirq+0x9b/0x100\n handle_softirqs+0x153/0x390\n __irq_exit_rcu+0x103/0x120\n irq_exit_rcu+0xe/0x20\n sysvec_apic_timer_interrupt+0x76/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\nCode: 4c 01 c7 4c 29 c2 e9 72 ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90\n 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 f8 25 00 fb f4 \u003cfa\u003e c3 cc cc cc\n cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90\nRSP: 0018:ffffffffa2007e28 EFLAGS: 00000242\nRAX: 00000000000f3b31 RBX: 1ffffffff4400fc7 RCX: ffffffffa09c3196\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9f00590f\nRBP: 0000000000000000 R08: 0000000000000001 R09: ffffed102360835d\nR10: ffff88811b041aeb R11: 0000000000000001 R12: 0000000000000000\nR13: ffffffffa202d7c0 R14: 0000000000000000 R15: 00000000000147d0\n default_idle_call+0x6b/0xa0\n cpuidle_idle_call+0x1af/0x1f0\n do_idle+0xbc/0x130\n cpu_startup_entry+0x33/0x40\n rest_init+0x11f/0x210\n start_kernel+0x39a/0x420\n x86_64_start_reservations+0x18/0x30\n x86_64_start_kernel+0x97/0xa0\n common_startup_64+0x13e/0x141\n \u003c/TASK\u003e\n\nAllocated by task 595:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_slab_alloc+0x87/0x90\n kmem_cache_alloc_noprof+0x12b/0x3f0\n copy_net_ns+0x94/0x380\n create_new_namespaces+0x24c/0x500\n unshare_nsproxy_namespaces+0x75/0xf0\n ksys_unshare+0x24e/0x4f0\n __x64_sys_unshare+0x1f/0x30\n do_syscall_64+0x70/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 100:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x54/0x70\n kmem_cache_free+0x156/0x5d0\n cleanup_net+0x5d3/0x670\n process_one_work+0x776/0xa90\n worker_thread+0x2e2/0x560\n kthread+0x1a8/0x1f0\n ret_from_fork+0x34/0x60\n ret_from_fork_asm+0x1a/0x30\n\nReproduction script:\n\nmkdir -p /mnt/nfsshare\nmkdir -p /mnt/nfs/netns_1\nmkfs.ext4 /dev/sdb\nmount /dev/sdb /mnt/nfsshare\nsystemctl restart nfs-server\nchmod 777 /mnt/nfsshare\nexportfs -i -o rw,no_root_squash *:/mnt/nfsshare\n\nip netns add netns_1\nip link add name veth_1_peer type veth peer veth_1\nifconfig veth_1_peer 11.11.0.254 up\nip link set veth_1 netns netns_1\nip netns exec netns_1 ifconfig veth_1 11.11.0.1\n\nip netns exec netns_1 /root/iptables -A OUTPUT -d 11.11.0.254 -p tcp \\\n\t--tcp-flags FIN FIN -j DROP\n\n(note: In my environment, a DESTROY_CLIENTID operation is always sent\n immediately, breaking the nfs tcp connection.)\nip netns exec netns_1 timeout -s 9 300 mount -t nfs -o proto=tcp,vers=4.1 \\\n\t11.11.0.254:/mnt/nfsshare /mnt/nfs/netns_1\n\nip netns del netns_1\n\nThe reason here is that the tcp socket in netns_1 (nfs side) has been\nshutdown and closed (done in xs_destroy), but the FIN message (with ack)\nis discarded, and the nfsd side keeps sending retransmission messages.\nAs a result, when the tcp sock in netns_1 processes the received message,\nit sends the message (FIN message) in the sending queue, and the tcp timer\nis re-established. When the network namespace is deleted, the net structure\naccessed by tcp\u0027s timer handler function causes problems.\n\nTo fix this problem, let\u0027s hold netns refcnt for the tcp kernel socket as\ndone in other modules. This is an ugly hack which can easily be backported\nto earlier kernels. A proper fix which cleans up the interfaces will\nfollow, but may not be so easy to backport.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53168",
"url": "https://www.suse.com/security/cve/CVE-2024-53168"
},
{
"category": "external",
"summary": "SUSE Bug 1234887 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "external",
"summary": "SUSE Bug 1243650 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1243650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53168"
},
{
"cve": "CVE-2024-53169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fabrics: fix kernel crash while shutting down controller\n\nThe nvme keep-alive operation, which executes at a periodic interval,\ncould potentially sneak in while shutting down a fabric controller.\nThis may lead to a race between the fabric controller admin queue\ndestroy code path (invoked while shutting down controller) and hw/hctx\nqueue dispatcher called from the nvme keep-alive async request queuing\noperation. This race could lead to the kernel crash shown below:\n\nCall Trace:\n autoremove_wake_function+0x0/0xbc (unreliable)\n __blk_mq_sched_dispatch_requests+0x114/0x24c\n blk_mq_sched_dispatch_requests+0x44/0x84\n blk_mq_run_hw_queue+0x140/0x220\n nvme_keep_alive_work+0xc8/0x19c [nvme_core]\n process_one_work+0x200/0x4e0\n worker_thread+0x340/0x504\n kthread+0x138/0x140\n start_kernel_thread+0x14/0x18\n\nWhile shutting down fabric controller, if nvme keep-alive request sneaks\nin then it would be flushed off. The nvme_keep_alive_end_io function is\nthen invoked to handle the end of the keep-alive operation which\ndecrements the admin-\u003eq_usage_counter and assuming this is the last/only\nrequest in the admin queue then the admin-\u003eq_usage_counter becomes zero.\nIf that happens then blk-mq destroy queue operation (blk_mq_destroy_\nqueue()) which could be potentially running simultaneously on another\ncpu (as this is the controller shutdown code path) would forward\nprogress and deletes the admin queue. So, now from this point onward\nwe are not supposed to access the admin queue resources. However the\nissue here\u0027s that the nvme keep-alive thread running hw/hctx queue\ndispatch operation hasn\u0027t yet finished its work and so it could still\npotentially access the admin queue resource while the admin queue had\nbeen already deleted and that causes the above crash.\n\nThe above kernel crash is regression caused due to changes implemented\nin commit a54a93d0e359 (\"nvme: move stopping keep-alive into\nnvme_uninit_ctrl()\"). Ideally we should stop keep-alive before destroyin\ng the admin queue and freeing the admin tagset so that it wouldn\u0027t sneak\nin during the shutdown operation. However we removed the keep alive stop\noperation from the beginning of the controller shutdown code path in commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\")\nand added it under nvme_uninit_ctrl() which executes very late in the\nshutdown code path after the admin queue is destroyed and its tagset is\nremoved. So this change created the possibility of keep-alive sneaking in\nand interfering with the shutdown operation and causing observed kernel\ncrash.\n\nTo fix the observed crash, we decided to move nvme_stop_keep_alive() from\nnvme_uninit_ctrl() to nvme_remove_admin_tag_set(). This change would ensure\nthat we don\u0027t forward progress and delete the admin queue until the keep-\nalive operation is finished (if it\u0027s in-flight) or cancelled and that would\nhelp contain the race condition explained above and hence avoid the crash.\n\nMoving nvme_stop_keep_alive() to nvme_remove_admin_tag_set() instead of\nadding nvme_stop_keep_alive() to the beginning of the controller shutdown\ncode path in nvme_stop_ctrl(), as was the case earlier before commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\"),\nwould help save one callsite of nvme_stop_keep_alive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53169",
"url": "https://www.suse.com/security/cve/CVE-2024-53169"
},
{
"category": "external",
"summary": "SUSE Bug 1234900 for CVE-2024-53169",
"url": "https://bugzilla.suse.com/1234900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53169"
},
{
"cve": "CVE-2024-53170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix uaf for flush rq while iterating tags\n\nblk_mq_clear_flush_rq_mapping() is not called during scsi probe, by\nchecking blk_queue_init_done(). However, QUEUE_FLAG_INIT_DONE is cleared\nin del_gendisk by commit aec89dc5d421 (\"block: keep q_usage_counter in\natomic mode after del_gendisk\"), hence for disk like scsi, following\nblk_mq_destroy_queue() will not clear flush rq from tags-\u003erqs[] as well,\ncause following uaf that is found by our syzkaller for v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in blk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nRead of size 4 at addr ffff88811c969c20 by task kworker/1:2H/224909\n\nCPU: 1 PID: 224909 Comm: kworker/1:2H Not tainted 6.6.0-ga836a5060850 #32\nWorkqueue: kblockd blk_mq_timeout_work\nCall Trace:\n\n__dump_stack lib/dump_stack.c:88 [inline]\ndump_stack_lvl+0x91/0xf0 lib/dump_stack.c:106\nprint_address_description.constprop.0+0x66/0x300 mm/kasan/report.c:364\nprint_report+0x3e/0x70 mm/kasan/report.c:475\nkasan_report+0xb8/0xf0 mm/kasan/report.c:588\nblk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nbt_iter block/blk-mq-tag.c:288 [inline]\n__sbitmap_for_each_set include/linux/sbitmap.h:295 [inline]\nsbitmap_for_each_set include/linux/sbitmap.h:316 [inline]\nbt_for_each+0x455/0x790 block/blk-mq-tag.c:325\nblk_mq_queue_tag_busy_iter+0x320/0x740 block/blk-mq-tag.c:534\nblk_mq_timeout_work+0x1a3/0x7b0 block/blk-mq.c:1673\nprocess_one_work+0x7c4/0x1450 kernel/workqueue.c:2631\nprocess_scheduled_works kernel/workqueue.c:2704 [inline]\nworker_thread+0x804/0xe40 kernel/workqueue.c:2785\nkthread+0x346/0x450 kernel/kthread.c:388\nret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\nret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:293\n\nAllocated by task 942:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\n____kasan_kmalloc mm/kasan/common.c:374 [inline]\n__kasan_kmalloc mm/kasan/common.c:383 [inline]\n__kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:380\nkasan_kmalloc include/linux/kasan.h:198 [inline]\n__do_kmalloc_node mm/slab_common.c:1007 [inline]\n__kmalloc_node+0x69/0x170 mm/slab_common.c:1014\nkmalloc_node include/linux/slab.h:620 [inline]\nkzalloc_node include/linux/slab.h:732 [inline]\nblk_alloc_flush_queue+0x144/0x2f0 block/blk-flush.c:499\nblk_mq_alloc_hctx+0x601/0x940 block/blk-mq.c:3788\nblk_mq_alloc_and_init_hctx+0x27f/0x330 block/blk-mq.c:4261\nblk_mq_realloc_hw_ctxs+0x488/0x5e0 block/blk-mq.c:4294\nblk_mq_init_allocated_queue+0x188/0x860 block/blk-mq.c:4350\nblk_mq_init_queue_data block/blk-mq.c:4166 [inline]\nblk_mq_init_queue+0x8d/0x100 block/blk-mq.c:4176\nscsi_alloc_sdev+0x843/0xd50 drivers/scsi/scsi_scan.c:335\nscsi_probe_and_add_lun+0x77c/0xde0 drivers/scsi/scsi_scan.c:1189\n__scsi_scan_target+0x1fc/0x5a0 drivers/scsi/scsi_scan.c:1727\nscsi_scan_channel drivers/scsi/scsi_scan.c:1815 [inline]\nscsi_scan_channel+0x14b/0x1e0 drivers/scsi/scsi_scan.c:1791\nscsi_scan_host_selected+0x2fe/0x400 drivers/scsi/scsi_scan.c:1844\nscsi_scan+0x3a0/0x3f0 drivers/scsi/scsi_sysfs.c:151\nstore_scan+0x2a/0x60 drivers/scsi/scsi_sysfs.c:191\ndev_attr_store+0x5c/0x90 drivers/base/core.c:2388\nsysfs_kf_write+0x11c/0x170 fs/sysfs/file.c:136\nkernfs_fop_write_iter+0x3fc/0x610 fs/kernfs/file.c:338\ncall_write_iter include/linux/fs.h:2083 [inline]\nnew_sync_write+0x1b4/0x2d0 fs/read_write.c:493\nvfs_write+0x76c/0xb00 fs/read_write.c:586\nksys_write+0x127/0x250 fs/read_write.c:639\ndo_syscall_x64 arch/x86/entry/common.c:51 [inline]\ndo_syscall_64+0x70/0x120 arch/x86/entry/common.c:81\nentry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nFreed by task 244687:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\nkasan_save_free_info+0x2b/0x50 mm/kasan/generic.c:522\n____kasan_slab_free mm/kasan/common.c:236 [inline]\n__kasan_slab_free+0x12a/0x1b0 mm/kasan/common.c:244\nkasan_slab_free include/linux/kasan.h:164 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53170",
"url": "https://www.suse.com/security/cve/CVE-2024-53170"
},
{
"category": "external",
"summary": "SUSE Bug 1234888 for CVE-2024-53170",
"url": "https://bugzilla.suse.com/1234888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53170"
},
{
"cve": "CVE-2024-53171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit\n\nAfter an insertion in TNC, the tree might split and cause a node to\nchange its `znode-\u003eparent`. A further deletion of other nodes in the\ntree (which also could free the nodes), the aforementioned node\u0027s\n`znode-\u003ecparent` could still point to a freed node. This\n`znode-\u003ecparent` may not be updated when getting nodes to commit in\n`ubifs_tnc_start_commit()`. This could then trigger a use-after-free\nwhen accessing the `znode-\u003ecparent` in `write_index()` in\n`ubifs_tnc_end_commit()`.\n\nThis can be triggered by running\n\n rm -f /etc/test-file.bin\n dd if=/dev/urandom of=/etc/test-file.bin bs=1M count=60 conv=fsync\n\nin a loop, and with `CONFIG_UBIFS_FS_AUTHENTICATION`. KASAN then\nreports:\n\n BUG: KASAN: use-after-free in ubifs_tnc_end_commit+0xa5c/0x1950\n Write of size 32 at addr ffffff800a3af86c by task ubifs_bgt0_20/153\n\n Call trace:\n dump_backtrace+0x0/0x340\n show_stack+0x18/0x24\n dump_stack_lvl+0x9c/0xbc\n print_address_description.constprop.0+0x74/0x2b0\n kasan_report+0x1d8/0x1f0\n kasan_check_range+0xf8/0x1a0\n memcpy+0x84/0xf4\n ubifs_tnc_end_commit+0xa5c/0x1950\n do_commit+0x4e0/0x1340\n ubifs_bg_thread+0x234/0x2e0\n kthread+0x36c/0x410\n ret_from_fork+0x10/0x20\n\n Allocated by task 401:\n kasan_save_stack+0x38/0x70\n __kasan_kmalloc+0x8c/0xd0\n __kmalloc+0x34c/0x5bc\n tnc_insert+0x140/0x16a4\n ubifs_tnc_add+0x370/0x52c\n ubifs_jnl_write_data+0x5d8/0x870\n do_writepage+0x36c/0x510\n ubifs_writepage+0x190/0x4dc\n __writepage+0x58/0x154\n write_cache_pages+0x394/0x830\n do_writepages+0x1f0/0x5b0\n filemap_fdatawrite_wbc+0x170/0x25c\n file_write_and_wait_range+0x140/0x190\n ubifs_fsync+0xe8/0x290\n vfs_fsync_range+0xc0/0x1e4\n do_fsync+0x40/0x90\n __arm64_sys_fsync+0x34/0x50\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\n Freed by task 403:\n kasan_save_stack+0x38/0x70\n kasan_set_track+0x28/0x40\n kasan_set_free_info+0x28/0x4c\n __kasan_slab_free+0xd4/0x13c\n kfree+0xc4/0x3a0\n tnc_delete+0x3f4/0xe40\n ubifs_tnc_remove_range+0x368/0x73c\n ubifs_tnc_remove_ino+0x29c/0x2e0\n ubifs_jnl_delete_inode+0x150/0x260\n ubifs_evict_inode+0x1d4/0x2e4\n evict+0x1c8/0x450\n iput+0x2a0/0x3c4\n do_unlinkat+0x2cc/0x490\n __arm64_sys_unlinkat+0x90/0x100\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\nThe offending `memcpy()` in `ubifs_copy_hash()` has a use-after-free\nwhen a node becomes root in TNC but still has a `cparent` to an already\nfreed node. More specifically, consider the following TNC:\n\n zroot\n /\n /\n zp1\n /\n /\n zn\n\nInserting a new node `zn_new` with a key smaller then `zn` will trigger\na split in `tnc_insert()` if `zp1` is full:\n\n zroot\n / \\\n / \\\n zp1 zp2\n / \\\n / \\\n zn_new zn\n\n`zn-\u003eparent` has now been moved to `zp2`, *but* `zn-\u003ecparent` still\npoints to `zp1`.\n\nNow, consider a removal of all the nodes _except_ `zn`. Just when\n`tnc_delete()` is about to delete `zroot` and `zp2`:\n\n zroot\n \\\n \\\n zp2\n \\\n \\\n zn\n\n`zroot` and `zp2` get freed and the tree collapses:\n\n zn\n\n`zn` now becomes the new `zroot`.\n\n`get_znodes_to_commit()` will now only find `zn`, the new `zroot`, and\n`write_index()` will check its `znode-\u003ecparent` that wrongly points to\nthe already freed `zp1`. `ubifs_copy_hash()` thus gets wrongly called\nwith `znode-\u003ecparent-\u003ezbranch[znode-\u003eiip].hash` that triggers the\nuse-after-free!\n\nFix this by explicitly setting `znode-\u003ecparent` to `NULL` in\n`get_znodes_to_commit()` for the root node. The search for the dirty\nnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53171",
"url": "https://www.suse.com/security/cve/CVE-2024-53171"
},
{
"category": "external",
"summary": "SUSE Bug 1234889 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "external",
"summary": "SUSE Bug 1236234 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1236234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53171"
},
{
"cve": "CVE-2024-53172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubi: fastmap: Fix duplicate slab cache names while attaching\n\nSince commit 4c39529663b9 (\"slab: Warn on duplicate cache names when\nDEBUG_VM=y\"), the duplicate slab cache names can be detected and a\nkernel WARNING is thrown out.\nIn UBI fast attaching process, alloc_ai() could be invoked twice\nwith the same slab cache name \u0027ubi_aeb_slab_cache\u0027, which will trigger\nfollowing warning messages:\n kmem_cache of name \u0027ubi_aeb_slab_cache\u0027 already exists\n WARNING: CPU: 0 PID: 7519 at mm/slab_common.c:107\n __kmem_cache_create_args+0x100/0x5f0\n Modules linked in: ubi(+) nandsim [last unloaded: nandsim]\n CPU: 0 UID: 0 PID: 7519 Comm: modprobe Tainted: G 6.12.0-rc2\n RIP: 0010:__kmem_cache_create_args+0x100/0x5f0\n Call Trace:\n __kmem_cache_create_args+0x100/0x5f0\n alloc_ai+0x295/0x3f0 [ubi]\n ubi_attach+0x3c3/0xcc0 [ubi]\n ubi_attach_mtd_dev+0x17cf/0x3fa0 [ubi]\n ubi_init+0x3fb/0x800 [ubi]\n do_init_module+0x265/0x7d0\n __x64_sys_finit_module+0x7a/0xc0\n\nThe problem could be easily reproduced by loading UBI device by fastmap\nwith CONFIG_DEBUG_VM=y.\nFix it by using different slab names for alloc_ai() callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53172",
"url": "https://www.suse.com/security/cve/CVE-2024-53172"
},
{
"category": "external",
"summary": "SUSE Bug 1234898 for CVE-2024-53172",
"url": "https://bugzilla.suse.com/1234898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53172"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: make sure cache entry active before cache_show\n\nThe function `c_show` was called with protection from RCU. This only\nensures that `cp` will not be freed. Therefore, the reference count for\n`cp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `cache_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `cp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 7 PID: 822 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 7 UID: 0 PID: 822 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n\nCall Trace:\n \u003cTASK\u003e\n c_show+0x2fc/0x380 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53174",
"url": "https://www.suse.com/security/cve/CVE-2024-53174"
},
{
"category": "external",
"summary": "SUSE Bug 1234899 for CVE-2024-53174",
"url": "https://bugzilla.suse.com/1234899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53174"
},
{
"cve": "CVE-2024-53175",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53175"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipc: fix memleak if msg_init_ns failed in create_ipc_ns\n\nPercpu memory allocation may failed during create_ipc_ns however this\nfail is not handled properly since ipc sysctls and mq sysctls is not\nreleased properly. Fix this by release these two resource when failure.\n\nHere is the kmemleak stack when percpu failed:\n\nunreferenced object 0xffff88819de2a600 (size 512):\n comm \"shmem_2nstest\", pid 120711, jiffies 4300542254\n hex dump (first 32 bytes):\n 60 aa 9d 84 ff ff ff ff fc 18 48 b2 84 88 ff ff `.........H.....\n 04 00 00 00 a4 01 00 00 20 e4 56 81 ff ff ff ff ........ .V.....\n backtrace (crc be7cba35):\n [\u003cffffffff81b43f83\u003e] __kmalloc_node_track_caller_noprof+0x333/0x420\n [\u003cffffffff81a52e56\u003e] kmemdup_noprof+0x26/0x50\n [\u003cffffffff821b2f37\u003e] setup_mq_sysctls+0x57/0x1d0\n [\u003cffffffff821b29cc\u003e] copy_ipcs+0x29c/0x3b0\n [\u003cffffffff815d6a10\u003e] create_new_namespaces+0x1d0/0x920\n [\u003cffffffff815d7449\u003e] copy_namespaces+0x2e9/0x3e0\n [\u003cffffffff815458f3\u003e] copy_process+0x29f3/0x7ff0\n [\u003cffffffff8154b080\u003e] kernel_clone+0xc0/0x650\n [\u003cffffffff8154b6b1\u003e] __do_sys_clone+0xa1/0xe0\n [\u003cffffffff843df8ff\u003e] do_syscall_64+0xbf/0x1c0\n [\u003cffffffff846000b0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53175",
"url": "https://www.suse.com/security/cve/CVE-2024-53175"
},
{
"category": "external",
"summary": "SUSE Bug 1234893 for CVE-2024-53175",
"url": "https://bugzilla.suse.com/1234893"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53175"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Add sanity NULL check for the default mmap fault handler\n\nA driver might allow the mmap access before initializing its\nruntime-\u003edma_area properly. Add a proper NULL check before passing to\nvirt_to_page() for avoiding a panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53180",
"url": "https://www.suse.com/security/cve/CVE-2024-53180"
},
{
"category": "external",
"summary": "SUSE Bug 1234929 for CVE-2024-53180",
"url": "https://bugzilla.suse.com/1234929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53180"
},
{
"cve": "CVE-2024-53185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix NULL ptr deref in crypto_aead_setkey()\n\nNeither SMB3.0 or SMB3.02 supports encryption negotiate context, so\nwhen SMB2_GLOBAL_CAP_ENCRYPTION flag is set in the negotiate response,\nthe client uses AES-128-CCM as the default cipher. See MS-SMB2\n3.3.5.4.\n\nCommit b0abcd65ec54 (\"smb: client: fix UAF in async decryption\") added\na @server-\u003ecipher_type check to conditionally call\nsmb3_crypto_aead_allocate(), but that check would always be false as\n@server-\u003ecipher_type is unset for SMB3.02.\n\nFix the following KASAN splat by setting @server-\u003ecipher_type for\nSMB3.02 as well.\n\nmount.cifs //srv/share /mnt -o vers=3.02,seal,...\n\nBUG: KASAN: null-ptr-deref in crypto_aead_setkey+0x2c/0x130\nRead of size 8 at addr 0000000000000020 by task mount.cifs/1095\nCPU: 1 UID: 0 PID: 1095 Comm: mount.cifs Not tainted 6.12.0 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-3.fc41\n04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? crypto_aead_setkey+0x2c/0x130\n kasan_report+0xda/0x110\n ? crypto_aead_setkey+0x2c/0x130\n crypto_aead_setkey+0x2c/0x130\n crypt_message+0x258/0xec0 [cifs]\n ? __asan_memset+0x23/0x50\n ? __pfx_crypt_message+0x10/0x10 [cifs]\n ? mark_lock+0xb0/0x6a0\n ? hlock_class+0x32/0xb0\n ? mark_lock+0xb0/0x6a0\n smb3_init_transform_rq+0x352/0x3f0 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n smb_send_rqst+0x144/0x230 [cifs]\n ? __pfx_smb_send_rqst+0x10/0x10 [cifs]\n ? hlock_class+0x32/0xb0\n ? smb2_setup_request+0x225/0x3a0 [cifs]\n ? __pfx_cifs_compound_last_callback+0x10/0x10 [cifs]\n compound_send_recv+0x59b/0x1140 [cifs]\n ? __pfx_compound_send_recv+0x10/0x10 [cifs]\n ? __create_object+0x5e/0x90\n ? hlock_class+0x32/0xb0\n ? do_raw_spin_unlock+0x9a/0xf0\n cifs_send_recv+0x23/0x30 [cifs]\n SMB2_tcon+0x3ec/0xb30 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? __pfx_lock_release+0x10/0x10\n ? do_raw_spin_trylock+0xc6/0x120\n ? lock_acquire+0x3f/0x90\n ? _get_xid+0x16/0xd0 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n ? __pfx_cifs_get_smb_ses+0x10/0x10 [cifs]\n ? cifs_get_tcp_session+0xaa0/0xca0 [cifs]\n cifs_mount_get_session+0x8a/0x210 [cifs]\n dfs_mount_share+0x1b0/0x11d0 [cifs]\n ? __pfx___lock_acquire+0x10/0x10\n ? __pfx_dfs_mount_share+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? lock_release+0x203/0x5d0\n cifs_mount+0xb3/0x3d0 [cifs]\n ? do_raw_spin_trylock+0xc6/0x120\n ? __pfx_cifs_mount+0x10/0x10 [cifs]\n ? lock_acquire+0x3f/0x90\n ? find_nls+0x16/0xa0\n ? smb3_update_mnt_flags+0x372/0x3b0 [cifs]\n cifs_smb3_do_mount+0x1e2/0xc80 [cifs]\n ? __pfx_vfs_parse_fs_string+0x10/0x10\n ? __pfx_cifs_smb3_do_mount+0x10/0x10 [cifs]\n smb3_get_tree+0x1bf/0x330 [cifs]\n vfs_get_tree+0x4a/0x160\n path_mount+0x3c1/0xfb0\n ? kasan_quarantine_put+0xc7/0x1d0\n ? __pfx_path_mount+0x10/0x10\n ? kmem_cache_free+0x118/0x3e0\n ? user_path_at+0x74/0xa0\n __x64_sys_mount+0x1a6/0x1e0\n ? __pfx___x64_sys_mount+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53185",
"url": "https://www.suse.com/security/cve/CVE-2024-53185"
},
{
"category": "external",
"summary": "SUSE Bug 1234901 for CVE-2024-53185",
"url": "https://bugzilla.suse.com/1234901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53185"
},
{
"cve": "CVE-2024-53187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check for overflows in io_pin_pages\n\nWARNING: CPU: 0 PID: 5834 at io_uring/memmap.c:144 io_pin_pages+0x149/0x180 io_uring/memmap.c:144\nCPU: 0 UID: 0 PID: 5834 Comm: syz-executor825 Not tainted 6.12.0-next-20241118-syzkaller #0\nCall Trace:\n \u003cTASK\u003e\n __io_uaddr_map+0xfb/0x2d0 io_uring/memmap.c:183\n io_rings_map io_uring/io_uring.c:2611 [inline]\n io_allocate_scq_urings+0x1c0/0x650 io_uring/io_uring.c:3470\n io_uring_create+0x5b5/0xc00 io_uring/io_uring.c:3692\n io_uring_setup io_uring/io_uring.c:3781 [inline]\n ...\n \u003c/TASK\u003e\n\nio_pin_pages()\u0027s uaddr parameter came directly from the user and can be\ngarbage. Don\u0027t just add size to it as it can overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53187",
"url": "https://www.suse.com/security/cve/CVE-2024-53187"
},
{
"category": "external",
"summary": "SUSE Bug 1234947 for CVE-2024-53187",
"url": "https://bugzilla.suse.com/1234947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53187"
},
{
"cve": "CVE-2024-53188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix crash when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe function ath12k_dp_cc_cleanup is called to release resources.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nat RIP: 0010:ath12k_dp_cc_cleanup.part.0+0xb6/0x500 [ath12k]\nCall Trace:\nath12k_dp_cc_cleanup\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set to NULL the released structure in\nath12k_dp_cc_cleanup at the end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53188",
"url": "https://www.suse.com/security/cve/CVE-2024-53188"
},
{
"category": "external",
"summary": "SUSE Bug 1234948 for CVE-2024-53188",
"url": "https://bugzilla.suse.com/1234948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53188"
},
{
"cve": "CVE-2024-53190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures\n\nSyzkaller reported a hung task with uevent_show() on stack trace. That\nspecific issue was addressed by another commit [0], but even with that\nfix applied (for example, running v6.12-rc5) we face another type of hung\ntask that comes from the same reproducer [1]. By investigating that, we\ncould narrow it to the following path:\n\n(a) Syzkaller emulates a Realtek USB WiFi adapter using raw-gadget and\ndummy_hcd infrastructure.\n\n(b) During the probe of rtl8192cu, the driver ends-up performing an efuse\nread procedure (which is related to EEPROM load IIUC), and here lies the\nissue: the function read_efuse() calls read_efuse_byte() many times, as\nloop iterations depending on the efuse size (in our example, 512 in total).\n\nThis procedure for reading efuse bytes relies in a loop that performs an\nI/O read up to *10k* times in case of failures. We measured the time of\nthe loop inside read_efuse_byte() alone, and in this reproducer (which\ninvolves the dummy_hcd emulation layer), it takes 15 seconds each. As a\nconsequence, we have the driver stuck in its probe routine for big time,\nexposing a stack trace like below if we attempt to reboot the system, for\nexample:\n\ntask:kworker/0:3 state:D stack:0 pid:662 tgid:662 ppid:2 flags:0x00004000\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n __schedule+0xe22/0xeb6\n schedule_timeout+0xe7/0x132\n __wait_for_common+0xb5/0x12e\n usb_start_wait_urb+0xc5/0x1ef\n ? usb_alloc_urb+0x95/0xa4\n usb_control_msg+0xff/0x184\n _usbctrl_vendorreq_sync+0xa0/0x161\n _usb_read_sync+0xb3/0xc5\n read_efuse_byte+0x13c/0x146\n read_efuse+0x351/0x5f0\n efuse_read_all_map+0x42/0x52\n rtl_efuse_shadow_map_update+0x60/0xef\n rtl_get_hwinfo+0x5d/0x1c2\n rtl92cu_read_eeprom_info+0x10a/0x8d5\n ? rtl92c_read_chip_version+0x14f/0x17e\n rtl_usb_probe+0x323/0x851\n usb_probe_interface+0x278/0x34b\n really_probe+0x202/0x4a4\n __driver_probe_device+0x166/0x1b2\n driver_probe_device+0x2f/0xd8\n [...]\n\nWe propose hereby to drastically reduce the attempts of doing the I/O\nreads in case of failures, restricted to USB devices (given that\nthey\u0027re inherently slower than PCIe ones). By retrying up to 10 times\n(instead of 10000), we got reponsiveness in the reproducer, while seems\nreasonable to believe that there\u0027s no sane USB device implementation in\nthe field requiring this amount of retries at every I/O read in order\nto properly work. Based on that assumption, it\u0027d be good to have it\nbackported to stable but maybe not since driver implementation (the 10k\nnumber comes from day 0), perhaps up to 6.x series makes sense.\n\n[0] Commit 15fffc6a5624 (\"driver core: Fix uevent_show() vs driver detach race\")\n\n[1] A note about that: this syzkaller report presents multiple reproducers\nthat differs by the type of emulated USB device. For this specific case,\ncheck the entry from 2024/08/08 06:23 in the list of crashes; the C repro\nis available at https://syzkaller.appspot.com/text?tag=ReproC\u0026x=1521fc83980000.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53190",
"url": "https://www.suse.com/security/cve/CVE-2024-53190"
},
{
"category": "external",
"summary": "SUSE Bug 1234950 for CVE-2024-53190",
"url": "https://bugzilla.suse.com/1234950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-53190"
},
{
"cve": "CVE-2024-53191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix warning when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe buffers dp-\u003etx_ring[i].tx_status are released.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nWARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80\nCall Trace:\nfree_large_kmalloc\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set the buffers to NULL after releasing in\norder to avoid the double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53191",
"url": "https://www.suse.com/security/cve/CVE-2024-53191"
},
{
"category": "external",
"summary": "SUSE Bug 1234952 for CVE-2024-53191",
"url": "https://bugzilla.suse.com/1234952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53191"
},
{
"cve": "CVE-2024-53194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix use-after-free of slot-\u003ebus on hot remove\n\nDennis reports a boot crash on recent Lenovo laptops with a USB4 dock.\n\nSince commit 0fc70886569c (\"thunderbolt: Reset USB4 v2 host router\") and\ncommit 59a54c5f3dbd (\"thunderbolt: Reset topology created by the boot\nfirmware\"), USB4 v2 and v1 Host Routers are reset on probe of the\nthunderbolt driver.\n\nThe reset clears the Presence Detect State and Data Link Layer Link Active\nbits at the USB4 Host Router\u0027s Root Port and thus causes hot removal of the\ndock.\n\nThe crash occurs when pciehp is unbound from one of the dock\u0027s Downstream\nPorts: pciehp creates a pci_slot on bind and destroys it on unbind. The\npci_slot contains a pointer to the pci_bus below the Downstream Port, but\na reference on that pci_bus is never acquired. The pci_bus is destroyed\nbefore the pci_slot, so a use-after-free ensues when pci_slot_release()\naccesses slot-\u003ebus.\n\nIn principle this should not happen because pci_stop_bus_device() unbinds\npciehp (and therefore destroys the pci_slot) before the pci_bus is\ndestroyed by pci_remove_bus_device().\n\nHowever the stacktrace provided by Dennis shows that pciehp is unbound from\npci_remove_bus_device() instead of pci_stop_bus_device(). To understand\nthe significance of this, one needs to know that the PCI core uses a two\nstep process to remove a portion of the hierarchy: It first unbinds all\ndrivers in the sub-hierarchy in pci_stop_bus_device() and then actually\nremoves the devices in pci_remove_bus_device(). There is no precaution to\nprevent driver binding in-between pci_stop_bus_device() and\npci_remove_bus_device().\n\nIn Dennis\u0027 case, it seems removal of the hierarchy by pciehp races with\ndriver binding by pci_bus_add_devices(). pciehp is bound to the\nDownstream Port after pci_stop_bus_device() has run, so it is unbound by\npci_remove_bus_device() instead of pci_stop_bus_device(). Because the\npci_bus has already been destroyed at that point, accesses to it result in\na use-after-free.\n\nOne might conclude that driver binding needs to be prevented after\npci_stop_bus_device() has run. However it seems risky that pci_slot points\nto pci_bus without holding a reference. Solely relying on correct ordering\nof driver unbind versus pci_bus destruction is certainly not defensive\nprogramming.\n\nIf pci_slot has a need to access data in pci_bus, it ought to acquire a\nreference. Amend pci_create_slot() accordingly. Dennis reports that the\ncrash is not reproducible with this change.\n\nAbridged stacktrace:\n\n pcieport 0000:00:07.0: PME: Signaling with IRQ 156\n pcieport 0000:00:07.0: pciehp: Slot #12 AttnBtn- PwrCtrl- MRL- AttnInd- PwrInd- HotPlug+ Surprise+ Interlock- NoCompl+ IbPresDis- LLActRep+\n pci_bus 0000:20: dev 00, created physical slot 12\n pcieport 0000:00:07.0: pciehp: Slot(12): Card not present\n ...\n pcieport 0000:21:02.0: pciehp: pcie_disable_notification: SLOTCTRL d8 write cmd 0\n Oops: general protection fault, probably for non-canonical address 0x6b6b6b6b6b6b6b6b: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 13 UID: 0 PID: 134 Comm: irq/156-pciehp Not tainted 6.11.0-devel+ #1\n RIP: 0010:dev_driver_string+0x12/0x40\n pci_destroy_slot\n pciehp_remove\n pcie_port_remove_service\n device_release_driver_internal\n bus_remove_device\n device_del\n device_unregister\n remove_iter\n device_for_each_child\n pcie_portdrv_remove\n pci_device_remove\n device_release_driver_internal\n bus_remove_device\n device_del\n pci_remove_bus_device (recursive invocation)\n pci_remove_bus_device\n pciehp_unconfigure_device\n pciehp_disable_slot\n pciehp_handle_presence_or_link_change\n pciehp_ist",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53194",
"url": "https://www.suse.com/security/cve/CVE-2024-53194"
},
{
"category": "external",
"summary": "SUSE Bug 1235459 for CVE-2024-53194",
"url": "https://bugzilla.suse.com/1235459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53194"
},
{
"cve": "CVE-2024-53195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Get rid of userspace_irqchip_in_use\n\nImproper use of userspace_irqchip_in_use led to syzbot hitting the\nfollowing WARN_ON() in kvm_timer_update_irq():\n\nWARNING: CPU: 0 PID: 3281 at arch/arm64/kvm/arch_timer.c:459\nkvm_timer_update_irq+0x21c/0x394\nCall trace:\n kvm_timer_update_irq+0x21c/0x394 arch/arm64/kvm/arch_timer.c:459\n kvm_timer_vcpu_reset+0x158/0x684 arch/arm64/kvm/arch_timer.c:968\n kvm_reset_vcpu+0x3b4/0x560 arch/arm64/kvm/reset.c:264\n kvm_vcpu_set_target arch/arm64/kvm/arm.c:1553 [inline]\n kvm_arch_vcpu_ioctl_vcpu_init arch/arm64/kvm/arm.c:1573 [inline]\n kvm_arch_vcpu_ioctl+0x112c/0x1b3c arch/arm64/kvm/arm.c:1695\n kvm_vcpu_ioctl+0x4ec/0xf74 virt/kvm/kvm_main.c:4658\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x108/0x184 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x78/0x1b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0xe8/0x1b0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x40/0x50 arch/arm64/kernel/syscall.c:151\n el0_svc+0x54/0x14c arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe following sequence led to the scenario:\n - Userspace creates a VM and a vCPU.\n - The vCPU is initialized with KVM_ARM_VCPU_PMU_V3 during\n KVM_ARM_VCPU_INIT.\n - Without any other setup, such as vGIC or vPMU, userspace issues\n KVM_RUN on the vCPU. Since the vPMU is requested, but not setup,\n kvm_arm_pmu_v3_enable() fails in kvm_arch_vcpu_run_pid_change().\n As a result, KVM_RUN returns after enabling the timer, but before\n incrementing \u0027userspace_irqchip_in_use\u0027:\n kvm_arch_vcpu_run_pid_change()\n ret = kvm_arm_pmu_v3_enable()\n if (!vcpu-\u003earch.pmu.created)\n return -EINVAL;\n if (ret)\n return ret;\n [...]\n if (!irqchip_in_kernel(kvm))\n static_branch_inc(\u0026userspace_irqchip_in_use);\n - Userspace ignores the error and issues KVM_ARM_VCPU_INIT again.\n Since the timer is already enabled, control moves through the\n following flow, ultimately hitting the WARN_ON():\n kvm_timer_vcpu_reset()\n if (timer-\u003eenabled)\n kvm_timer_update_irq()\n if (!userspace_irqchip())\n ret = kvm_vgic_inject_irq()\n ret = vgic_lazy_init()\n if (unlikely(!vgic_initialized(kvm)))\n if (kvm-\u003earch.vgic.vgic_model !=\n KVM_DEV_TYPE_ARM_VGIC_V2)\n return -EBUSY;\n WARN_ON(ret);\n\nTheoretically, since userspace_irqchip_in_use\u0027s functionality can be\nsimply replaced by \u0027!irqchip_in_kernel()\u0027, get rid of the static key\nto avoid the mismanagement, which also helps with the syzbot issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53195",
"url": "https://www.suse.com/security/cve/CVE-2024-53195"
},
{
"category": "external",
"summary": "SUSE Bug 1234957 for CVE-2024-53195",
"url": "https://bugzilla.suse.com/1234957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53195"
},
{
"cve": "CVE-2024-53196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Don\u0027t retire aborted MMIO instruction\n\nReturning an abort to the guest for an unsupported MMIO access is a\ndocumented feature of the KVM UAPI. Nevertheless, it\u0027s clear that this\nplumbing has seen limited testing, since userspace can trivially cause a\nWARN in the MMIO return:\n\n WARNING: CPU: 0 PID: 30558 at arch/arm64/include/asm/kvm_emulate.h:536 kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n Call trace:\n kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n kvm_arch_vcpu_ioctl_run+0x98/0x15b4 arch/arm64/kvm/arm.c:1133\n kvm_vcpu_ioctl+0x75c/0xa78 virt/kvm/kvm_main.c:4487\n __do_sys_ioctl fs/ioctl.c:51 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x1e0/0x23c arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n el0_svc+0x38/0x68 arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x90/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe splat is complaining that KVM is advancing PC while an exception is\npending, i.e. that KVM is retiring the MMIO instruction despite a\npending synchronous external abort. Womp womp.\n\nFix the glaring UAPI bug by skipping over all the MMIO emulation in\ncase there is a pending synchronous exception. Note that while userspace\nis capable of pending an asynchronous exception (SError, IRQ, or FIQ),\nit is still safe to retire the MMIO instruction in this case as (1) they\nare by definition asynchronous, and (2) KVM relies on hardware support\nfor pending/delivering these exceptions instead of the software state\nmachine for advancing PC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53196",
"url": "https://www.suse.com/security/cve/CVE-2024-53196"
},
{
"category": "external",
"summary": "SUSE Bug 1234906 for CVE-2024-53196",
"url": "https://bugzilla.suse.com/1234906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53196"
},
{
"cve": "CVE-2024-53197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53197"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices\n\nA bogus device can provide a bNumConfigurations value that exceeds the\ninitial value used in usb_get_configuration for allocating dev-\u003econfig.\n\nThis can lead to out-of-bounds accesses later, e.g. in\nusb_destroy_configuration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53197",
"url": "https://www.suse.com/security/cve/CVE-2024-53197"
},
{
"category": "external",
"summary": "SUSE Bug 1235464 for CVE-2024-53197",
"url": "https://bugzilla.suse.com/1235464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53197"
},
{
"cve": "CVE-2024-53198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen: Fix the issue of resource not being properly released in xenbus_dev_probe()\n\nThis patch fixes an issue in the function xenbus_dev_probe(). In the\nxenbus_dev_probe() function, within the if (err) branch at line 313, the\nprogram incorrectly returns err directly without releasing the resources\nallocated by err = drv-\u003eprobe(dev, id). As the return value is non-zero,\nthe upper layers assume the processing logic has failed. However, the probe\noperation was performed earlier without a corresponding remove operation.\nSince the probe actually allocates resources, failing to perform the remove\noperation could lead to problems.\n\nTo fix this issue, we followed the resource release logic of the\nxenbus_dev_remove() function by adding a new block fail_remove before the\nfail_put block. After entering the branch if (err) at line 313, the\nfunction will use a goto statement to jump to the fail_remove block,\nensuring that the previously acquired resources are correctly released,\nthus preventing the reference count leak.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand detecting potential issues where resources are not properly managed.\nIn this case, the tool flagged the missing release operation as a\npotential problem, which led to the development of this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53198",
"url": "https://www.suse.com/security/cve/CVE-2024-53198"
},
{
"category": "external",
"summary": "SUSE Bug 1234923 for CVE-2024-53198",
"url": "https://bugzilla.suse.com/1234923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53198"
},
{
"cve": "CVE-2024-53200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in hwss_setup_dpp\n\nThis commit addresses a null pointer dereference issue in\nhwss_setup_dpp(). The issue could occur when pipe_ctx-\u003eplane_state is\nnull. The fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53200",
"url": "https://www.suse.com/security/cve/CVE-2024-53200"
},
{
"category": "external",
"summary": "SUSE Bug 1234968 for CVE-2024-53200",
"url": "https://bugzilla.suse.com/1234968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53200"
},
{
"cve": "CVE-2024-53201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in\ndcn20_program_pipe(). Previously, commit 8e4ed3cf1642 (\"drm/amd/display:\nAdd null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\")\npartially fixed the null pointer dereference issue. However, in\ndcn20_update_dchubp_dpp(), the variable pipe_ctx is passed in, and\nplane_state is accessed again through pipe_ctx. Multiple if statements\ndirectly call attributes of plane_state, leading to potential null\npointer dereference issues. This patch adds necessary null checks to\nensure stability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53201",
"url": "https://www.suse.com/security/cve/CVE-2024-53201"
},
{
"category": "external",
"summary": "SUSE Bug 1234969 for CVE-2024-53201",
"url": "https://bugzilla.suse.com/1234969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53201"
},
{
"cve": "CVE-2024-53202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Fix possible resource leak in fw_log_firmware_info()\n\nThe alg instance should be released under the exception path, otherwise\nthere may be resource leak here.\n\nTo mitigate this, free the alg instance with crypto_free_shash when kmalloc\nfails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53202",
"url": "https://www.suse.com/security/cve/CVE-2024-53202"
},
{
"category": "external",
"summary": "SUSE Bug 1234970 for CVE-2024-53202",
"url": "https://bugzilla.suse.com/1234970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53202"
},
{
"cve": "CVE-2024-53203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: fix potential array underflow in ucsi_ccg_sync_control()\n\nThe \"command\" variable can be controlled by the user via debugfs. The\nworry is that if con_index is zero then \"\u0026uc-\u003eucsi-\u003econnector[con_index\n- 1]\" would be an array underflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53203",
"url": "https://www.suse.com/security/cve/CVE-2024-53203"
},
{
"category": "external",
"summary": "SUSE Bug 1235001 for CVE-2024-53203",
"url": "https://bugzilla.suse.com/1235001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53203"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible deadlocks\n\nThis fixes possible deadlocks like the following caused by\nhci_cmd_sync_dequeue causing the destroy function to run:\n\n INFO: task kworker/u19:0:143 blocked for more than 120 seconds.\n Tainted: G W O 6.8.0-2024-03-19-intel-next-iLS-24ww14 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u19:0 state:D stack:0 pid:143 tgid:143 ppid:2 flags:0x00004000\n Workqueue: hci0 hci_cmd_sync_work [bluetooth]\n Call Trace:\n \u003cTASK\u003e\n __schedule+0x374/0xaf0\n schedule+0x3c/0xf0\n schedule_preempt_disabled+0x1c/0x30\n __mutex_lock.constprop.0+0x3ef/0x7a0\n __mutex_lock_slowpath+0x13/0x20\n mutex_lock+0x3c/0x50\n mgmt_set_connectable_complete+0xa4/0x150 [bluetooth]\n ? kfree+0x211/0x2a0\n hci_cmd_sync_dequeue+0xae/0x130 [bluetooth]\n ? __pfx_cmd_complete_rsp+0x10/0x10 [bluetooth]\n cmd_complete_rsp+0x26/0x80 [bluetooth]\n mgmt_pending_foreach+0x4d/0x70 [bluetooth]\n __mgmt_power_off+0x8d/0x180 [bluetooth]\n ? _raw_spin_unlock_irq+0x23/0x40\n hci_dev_close_sync+0x445/0x5b0 [bluetooth]\n hci_set_powered_sync+0x149/0x250 [bluetooth]\n set_powered_sync+0x24/0x60 [bluetooth]\n hci_cmd_sync_work+0x90/0x150 [bluetooth]\n process_one_work+0x13e/0x300\n worker_thread+0x2f7/0x420\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x107/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x3d/0x60\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53207",
"url": "https://www.suse.com/security/cve/CVE-2024-53207"
},
{
"category": "external",
"summary": "SUSE Bug 1234907 for CVE-2024-53207",
"url": "https://bugzilla.suse.com/1234907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53207"
},
{
"cve": "CVE-2024-53208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync\n\nThis fixes the following crash:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\nRead of size 8 at addr ffff888029b4dd18 by task kworker/u9:0/54\n\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-01155-gf723224742fc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\nq kasan_report+0x143/0x180 mm/kasan/report.c:601\n set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\n hci_cmd_sync_work+0x22b/0x400 net/bluetooth/hci_sync.c:328\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd10 kernel/workqueue.c:3389\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\nAllocated by task 5247:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __kmalloc_cache_noprof+0x19c/0x2c0 mm/slub.c:4193\n kmalloc_noprof include/linux/slab.h:681 [inline]\n kzalloc_noprof include/linux/slab.h:807 [inline]\n mgmt_pending_new+0x65/0x250 net/bluetooth/mgmt_util.c:269\n mgmt_pending_add+0x36/0x120 net/bluetooth/mgmt_util.c:296\n set_powered+0x3cd/0x5e0 net/bluetooth/mgmt.c:1394\n hci_mgmt_cmd+0xc47/0x11d0 net/bluetooth/hci_sock.c:1712\n hci_sock_sendmsg+0x7b8/0x11c0 net/bluetooth/hci_sock.c:1832\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xa72/0xc90 fs/read_write.c:590\n ksys_write+0x1a0/0x2c0 fs/read_write.c:643\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5246:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x149/0x360 mm/slub.c:4598\n settings_rsp+0x2bc/0x390 net/bluetooth/mgmt.c:1443\n mgmt_pending_foreach+0xd1/0x130 net/bluetooth/mgmt_util.c:259\n __mgmt_power_off+0x112/0x420 net/bluetooth/mgmt.c:9455\n hci_dev_close_sync+0x665/0x11a0 net/bluetooth/hci_sync.c:5191\n hci_dev_do_close net/bluetooth/hci_core.c:483 [inline]\n hci_dev_close+0x112/0x210 net/bluetooth/hci_core.c:508\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83gv\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53208",
"url": "https://www.suse.com/security/cve/CVE-2024-53208"
},
{
"category": "external",
"summary": "SUSE Bug 1234909 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "external",
"summary": "SUSE Bug 1236244 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1236244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53208"
},
{
"cve": "CVE-2024-53209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix receive ring space parameters when XDP is active\n\nThe MTU setting at the time an XDP multi-buffer is attached\ndetermines whether the aggregation ring will be used and the\nrx_skb_func handler. This is done in bnxt_set_rx_skb_mode().\n\nIf the MTU is later changed, the aggregation ring setting may need\nto be changed and it may become out-of-sync with the settings\ninitially done in bnxt_set_rx_skb_mode(). This may result in\nrandom memory corruption and crashes as the HW may DMA data larger\nthan the allocated buffer size, such as:\n\nBUG: kernel NULL pointer dereference, address: 00000000000003c0\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 17 PID: 0 Comm: swapper/17 Kdump: loaded Tainted: G S OE 6.1.0-226bf9805506 #1\nHardware name: Wiwynn Delta Lake PVT BZA.02601.0150/Delta Lake-Class1, BIOS F0E_3A12 08/26/2021\nRIP: 0010:bnxt_rx_pkt+0xe97/0x1ae0 [bnxt_en]\nCode: 8b 95 70 ff ff ff 4c 8b 9d 48 ff ff ff 66 41 89 87 b4 00 00 00 e9 0b f7 ff ff 0f b7 43 0a 49 8b 95 a8 04 00 00 25 ff 0f 00 00 \u003c0f\u003e b7 14 42 48 c1 e2 06 49 03 95 a0 04 00 00 0f b6 42 33f\nRSP: 0018:ffffa19f40cc0d18 EFLAGS: 00010202\nRAX: 00000000000001e0 RBX: ffff8e2c805c6100 RCX: 00000000000007ff\nRDX: 0000000000000000 RSI: ffff8e2c271ab990 RDI: ffff8e2c84f12380\nRBP: ffffa19f40cc0e48 R08: 000000000001000d R09: 974ea2fcddfa4cbf\nR10: 0000000000000000 R11: ffffa19f40cc0ff8 R12: ffff8e2c94b58980\nR13: ffff8e2c952d6600 R14: 0000000000000016 R15: ffff8e2c271ab990\nFS: 0000000000000000(0000) GS:ffff8e3b3f840000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000000003c0 CR3: 0000000e8580a004 CR4: 00000000007706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n __bnxt_poll_work+0x1c2/0x3e0 [bnxt_en]\n\nTo address the issue, we now call bnxt_set_rx_skb_mode() within\nbnxt_change_mtu() to properly set the AGG rings configuration and\nupdate rx_skb_func based on the new MTU value.\nAdditionally, BNXT_FLAG_NO_AGG_RINGS is cleared at the beginning of\nbnxt_set_rx_skb_mode() to make sure it gets set or cleared based on\nthe current MTU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53209",
"url": "https://www.suse.com/security/cve/CVE-2024-53209"
},
{
"category": "external",
"summary": "SUSE Bug 1235002 for CVE-2024-53209",
"url": "https://bugzilla.suse.com/1235002"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53209"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()\n\nThere\u0027s issue as follows:\nRPC: Registered rdma transport module.\nRPC: Registered rdma backchannel transport module.\nRPC: Unregistered rdma transport module.\nRPC: Unregistered rdma backchannel transport module.\nBUG: unable to handle page fault for address: fffffbfff80c609a\nPGD 123fee067 P4D 123fee067 PUD 123fea067 PMD 10c624067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nRIP: 0010:percpu_counter_destroy_many+0xf7/0x2a0\nCall Trace:\n \u003cTASK\u003e\n __die+0x1f/0x70\n page_fault_oops+0x2cd/0x860\n spurious_kernel_fault+0x36/0x450\n do_kern_addr_fault+0xca/0x100\n exc_page_fault+0x128/0x150\n asm_exc_page_fault+0x26/0x30\n percpu_counter_destroy_many+0xf7/0x2a0\n mmdrop+0x209/0x350\n finish_task_switch.isra.0+0x481/0x840\n schedule_tail+0xe/0xd0\n ret_from_fork+0x23/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nIf register_sysctl() return NULL, then svc_rdma_proc_cleanup() will not\ndestroy the percpu counters which init in svc_rdma_proc_init().\nIf CONFIG_HOTPLUG_CPU is enabled, residual nodes may be in the\n\u0027percpu_counters\u0027 list. The above issue may occur once the module is\nremoved. If the CONFIG_HOTPLUG_CPU configuration is not enabled, memory\nleakage occurs.\nTo solve above issue just destroy all percpu counters when\nregister_sysctl() return NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53215",
"url": "https://www.suse.com/security/cve/CVE-2024-53215"
},
{
"category": "external",
"summary": "SUSE Bug 1234962 for CVE-2024-53215",
"url": "https://bugzilla.suse.com/1234962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53215"
},
{
"cve": "CVE-2024-53216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: release svc_expkey/svc_export with rcu_work\n\nThe last reference for `cache_head` can be reduced to zero in `c_show`\nand `e_show`(using `rcu_read_lock` and `rcu_read_unlock`). Consequently,\n`svc_export_put` and `expkey_put` will be invoked, leading to two\nissues:\n\n1. The `svc_export_put` will directly free ex_uuid. However,\n `e_show`/`c_show` will access `ex_uuid` after `cache_put`, which can\n trigger a use-after-free issue, shown below.\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in svc_export_show+0x362/0x430 [nfsd]\n Read of size 1 at addr ff11000010fdc120 by task cat/870\n\n CPU: 1 UID: 0 PID: 870 Comm: cat Not tainted 6.12.0-rc3+ #1\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n 1.16.1-2.fc37 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x53/0x70\n print_address_description.constprop.0+0x2c/0x3a0\n print_report+0xb9/0x280\n kasan_report+0xae/0xe0\n svc_export_show+0x362/0x430 [nfsd]\n c_show+0x161/0x390 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Allocated by task 830:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __kmalloc_node_track_caller_noprof+0x1bc/0x400\n kmemdup_noprof+0x22/0x50\n svc_export_parse+0x8a9/0xb80 [nfsd]\n cache_do_downcall+0x71/0xa0 [sunrpc]\n cache_write_procfs+0x8e/0xd0 [sunrpc]\n proc_reg_write+0xe1/0x140\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 868:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x37/0x50\n kfree+0xf3/0x3e0\n svc_export_put+0x87/0xb0 [nfsd]\n cache_purge+0x17f/0x1f0 [sunrpc]\n nfsd_destroy_serv+0x226/0x2d0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n2. We cannot sleep while using `rcu_read_lock`/`rcu_read_unlock`.\n However, `svc_export_put`/`expkey_put` will call path_put, which\n subsequently triggers a sleeping operation due to the following\n `dput`.\n\n =============================\n WARNING: suspicious RCU usage\n 5.10.0-dirty #141 Not tainted\n -----------------------------\n ...\n Call Trace:\n dump_stack+0x9a/0xd0\n ___might_sleep+0x231/0x240\n dput+0x39/0x600\n path_put+0x1b/0x30\n svc_export_put+0x17/0x80\n e_show+0x1c9/0x200\n seq_read_iter+0x63f/0x7c0\n seq_read+0x226/0x2d0\n vfs_read+0x113/0x2c0\n ksys_read+0xc9/0x170\n do_syscall_64+0x33/0x40\n entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nFix these issues by using `rcu_work` to help release\n`svc_expkey`/`svc_export`. This approach allows for an asynchronous\ncontext to invoke `path_put` and also facilitates the freeing of\n`uuid/exp/key` after an RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53216",
"url": "https://www.suse.com/security/cve/CVE-2024-53216"
},
{
"category": "external",
"summary": "SUSE Bug 1235003 for CVE-2024-53216",
"url": "https://bugzilla.suse.com/1235003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53216"
},
{
"cve": "CVE-2024-53217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent NULL dereference in nfsd4_process_cb_update()\n\n@ses is initialized to NULL. If __nfsd4_find_backchannel() finds no\navailable backchannel session, setup_callback_client() will try to\ndereference @ses and segfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53217",
"url": "https://www.suse.com/security/cve/CVE-2024-53217"
},
{
"category": "external",
"summary": "SUSE Bug 1234999 for CVE-2024-53217",
"url": "https://bugzilla.suse.com/1234999"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53217"
},
{
"cve": "CVE-2024-53222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram-\u003ecomp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram-\u003einit_lock in other places and no such problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53222",
"url": "https://www.suse.com/security/cve/CVE-2024-53222"
},
{
"category": "external",
"summary": "SUSE Bug 1234974 for CVE-2024-53222",
"url": "https://bugzilla.suse.com/1234974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53222"
},
{
"cve": "CVE-2024-53224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Move events notifier registration to be after device registration\n\nMove pkey change work initialization and cleanup from device resources\nstage to notifier stage, since this is the stage which handles this work\nevents.\n\nFix a race between the device deregistration and pkey change work by moving\nMLX5_IB_STAGE_DEVICE_NOTIFIER to be after MLX5_IB_STAGE_IB_REG in order to\nensure that the notifier is deregistered before the device during cleanup.\nWhich ensures there are no works that are being executed after the\ndevice has already unregistered which can cause the panic below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 1 PID: 630071 Comm: kworker/1:2 Kdump: loaded Tainted: G W OE --------- --- 5.14.0-162.6.1.el9_1.x86_64 #1\nHardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 02/27/2023\nWorkqueue: events pkey_change_handler [mlx5_ib]\nRIP: 0010:setup_qp+0x38/0x1f0 [mlx5_ib]\nCode: ee 41 54 45 31 e4 55 89 f5 53 48 89 fb 48 83 ec 20 8b 77 08 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 48 8b 07 48 8d 4c 24 16 \u003c4c\u003e 8b 38 49 8b 87 80 0b 00 00 4c 89 ff 48 8b 80 08 05 00 00 8b 40\nRSP: 0018:ffffbcc54068be20 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff954054494128 RCX: ffffbcc54068be36\nRDX: ffff954004934000 RSI: 0000000000000001 RDI: ffff954054494128\nRBP: 0000000000000023 R08: ffff954001be2c20 R09: 0000000000000001\nR10: ffff954001be2c20 R11: ffff9540260133c0 R12: 0000000000000000\nR13: 0000000000000023 R14: 0000000000000000 R15: ffff9540ffcb0905\nFS: 0000000000000000(0000) GS:ffff9540ffc80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000010625c001 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\nmlx5_ib_gsi_pkey_change+0x20/0x40 [mlx5_ib]\nprocess_one_work+0x1e8/0x3c0\nworker_thread+0x50/0x3b0\n? rescuer_thread+0x380/0x380\nkthread+0x149/0x170\n? set_kthread_struct+0x50/0x50\nret_from_fork+0x22/0x30\nModules linked in: rdma_ucm(OE) rdma_cm(OE) iw_cm(OE) ib_ipoib(OE) ib_cm(OE) ib_umad(OE) mlx5_ib(OE) mlx5_fwctl(OE) fwctl(OE) ib_uverbs(OE) mlx5_core(OE) mlxdevm(OE) ib_core(OE) mlx_compat(OE) psample mlxfw(OE) tls knem(OE) netconsole nfsv3 nfs_acl nfs lockd grace fscache netfs qrtr rfkill sunrpc intel_rapl_msr intel_rapl_common rapl hv_balloon hv_utils i2c_piix4 pcspkr joydev fuse ext4 mbcache jbd2 sr_mod sd_mod cdrom t10_pi sg ata_generic pci_hyperv pci_hyperv_intf hyperv_drm drm_shmem_helper drm_kms_helper hv_storvsc syscopyarea hv_netvsc sysfillrect sysimgblt hid_hyperv fb_sys_fops scsi_transport_fc hyperv_keyboard drm ata_piix crct10dif_pclmul crc32_pclmul crc32c_intel libata ghash_clmulni_intel hv_vmbus serio_raw [last unloaded: ib_core]\nCR2: 0000000000000000\n---[ end trace f6f8be4eae12f7bc ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53224",
"url": "https://www.suse.com/security/cve/CVE-2024-53224"
},
{
"category": "external",
"summary": "SUSE Bug 1235009 for CVE-2024-53224",
"url": "https://bugzilla.suse.com/1235009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53224"
},
{
"cve": "CVE-2024-53227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bfa: Fix use-after-free in bfad_im_module_exit()\n\nBUG: KASAN: slab-use-after-free in __lock_acquire+0x2aca/0x3a20\nRead of size 8 at addr ffff8881082d80c8 by task modprobe/25303\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x95/0xe0\n print_report+0xcb/0x620\n kasan_report+0xbd/0xf0\n __lock_acquire+0x2aca/0x3a20\n lock_acquire+0x19b/0x520\n _raw_spin_lock+0x2b/0x40\n attribute_container_unregister+0x30/0x160\n fc_release_transport+0x19/0x90 [scsi_transport_fc]\n bfad_im_module_exit+0x23/0x60 [bfa]\n bfad_init+0xdb/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\nAllocated by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n fc_attach_transport+0x4f/0x4740 [scsi_transport_fc]\n bfad_im_module_init+0x17/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x38/0x50\n kfree+0x212/0x480\n bfad_im_module_init+0x7e/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nAbove issue happens as follows:\n\nbfad_init\n error = bfad_im_module_init()\n fc_release_transport(bfad_im_scsi_transport_template);\n if (error)\n goto ext;\n\next:\n bfad_im_module_exit();\n fc_release_transport(bfad_im_scsi_transport_template);\n --\u003e Trigger double release\n\nDon\u0027t call bfad_im_module_exit() if bfad_im_module_init() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53227",
"url": "https://www.suse.com/security/cve/CVE-2024-53227"
},
{
"category": "external",
"summary": "SUSE Bug 1235011 for CVE-2024-53227",
"url": "https://bugzilla.suse.com/1235011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53227"
},
{
"cve": "CVE-2024-53229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix the qp flush warnings in req\n\nWhen the qp is in error state, the status of WQEs in the queue should be\nset to error. Or else the following will appear.\n\n[ 920.617269] WARNING: CPU: 1 PID: 21 at drivers/infiniband/sw/rxe/rxe_comp.c:756 rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.617744] Modules linked in: rnbd_client(O) rtrs_client(O) rtrs_core(O) rdma_ucm rdma_cm iw_cm ib_cm crc32_generic rdma_rxe ip6_udp_tunnel udp_tunnel ib_uverbs ib_core loop brd null_blk ipv6\n[ 920.618516] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G O 6.1.113-storage+ #65\n[ 920.618986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n[ 920.619396] RIP: 0010:rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.619658] Code: 0f b6 84 24 3a 02 00 00 41 89 84 24 44 04 00 00 e9 2a f7 ff ff 39 ca bb 03 00 00 00 b8 0e 00 00 00 48 0f 45 d8 e9 15 f7 ff ff \u003c0f\u003e 0b e9 cb f8 ff ff 41 bf f5 ff ff ff e9 08 f8 ff ff 49 8d bc 24\n[ 920.620482] RSP: 0018:ffff97b7c00bbc38 EFLAGS: 00010246\n[ 920.620817] RAX: 0000000000000000 RBX: 000000000000000c RCX: 0000000000000008\n[ 920.621183] RDX: ffff960dc396ebc0 RSI: 0000000000005400 RDI: ffff960dc4e2fbac\n[ 920.621548] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffffac406450\n[ 920.621884] R10: ffffffffac4060c0 R11: 0000000000000001 R12: ffff960dc4e2f800\n[ 920.622254] R13: ffff960dc4e2f928 R14: ffff97b7c029c580 R15: 0000000000000000\n[ 920.622609] FS: 0000000000000000(0000) GS:ffff960ef7d00000(0000) knlGS:0000000000000000\n[ 920.622979] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 920.623245] CR2: 00007fa056965e90 CR3: 00000001107f1000 CR4: 00000000000006e0\n[ 920.623680] Call Trace:\n[ 920.623815] \u003cTASK\u003e\n[ 920.623933] ? __warn+0x79/0xc0\n[ 920.624116] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.624356] ? report_bug+0xfb/0x150\n[ 920.624594] ? handle_bug+0x3c/0x60\n[ 920.624796] ? exc_invalid_op+0x14/0x70\n[ 920.624976] ? asm_exc_invalid_op+0x16/0x20\n[ 920.625203] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.625474] ? rxe_completer+0x329/0xcc0 [rdma_rxe]\n[ 920.625749] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.626037] rxe_requester+0x625/0xde0 [rdma_rxe]\n[ 920.626310] ? rxe_cq_post+0xe2/0x180 [rdma_rxe]\n[ 920.626583] ? do_complete+0x18d/0x220 [rdma_rxe]\n[ 920.626812] ? rxe_completer+0x1a3/0xcc0 [rdma_rxe]\n[ 920.627050] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.627285] tasklet_action_common.constprop.0+0xa4/0x120\n[ 920.627522] handle_softirqs+0xc2/0x250\n[ 920.627728] ? sort_range+0x20/0x20\n[ 920.627942] run_ksoftirqd+0x1f/0x30\n[ 920.628158] smpboot_thread_fn+0xc7/0x1b0\n[ 920.628334] kthread+0xd6/0x100\n[ 920.628504] ? kthread_complete_and_exit+0x20/0x20\n[ 920.628709] ret_from_fork+0x1f/0x30\n[ 920.628892] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53229",
"url": "https://www.suse.com/security/cve/CVE-2024-53229"
},
{
"category": "external",
"summary": "SUSE Bug 1234905 for CVE-2024-53229",
"url": "https://bugzilla.suse.com/1234905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53229"
},
{
"cve": "CVE-2024-53230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference,\nso check NULL for cppc_get_cpu_cost().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53230",
"url": "https://www.suse.com/security/cve/CVE-2024-53230"
},
{
"category": "external",
"summary": "SUSE Bug 1235976 for CVE-2024-53230",
"url": "https://bugzilla.suse.com/1235976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53230"
},
{
"cve": "CVE-2024-53231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53231",
"url": "https://www.suse.com/security/cve/CVE-2024-53231"
},
{
"category": "external",
"summary": "SUSE Bug 1235977 for CVE-2024-53231",
"url": "https://bugzilla.suse.com/1235977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53231"
},
{
"cve": "CVE-2024-53232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/s390: Implement blocking domain\n\nThis fixes a crash when surprise hot-unplugging a PCI device. This crash\nhappens because during hot-unplug __iommu_group_set_domain_nofail()\nattaching the default domain fails when the platform no longer\nrecognizes the device as it has already been removed and we end up with\na NULL domain pointer and UAF. This is exactly the case referred to in\nthe second comment in __iommu_device_set_domain() and just as stated\nthere if we can instead attach the blocking domain the UAF is prevented\nas this can handle the already removed device. Implement the blocking\ndomain to use this handling. With this change, the crash is fixed but\nwe still hit a warning attempting to change DMA ownership on a blocked\ndevice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53232",
"url": "https://www.suse.com/security/cve/CVE-2024-53232"
},
{
"category": "external",
"summary": "SUSE Bug 1235050 for CVE-2024-53232",
"url": "https://bugzilla.suse.com/1235050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53232"
},
{
"cve": "CVE-2024-53233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nunicode: Fix utf8_load() error path\n\nutf8_load() requests the symbol \"utf8_data_table\" and then checks if the\nrequested UTF-8 version is supported. If it\u0027s unsupported, it tries to\nput the data table using symbol_put(). If an unsupported version is\nrequested, symbol_put() fails like this:\n\n kernel BUG at kernel/module/main.c:786!\n RIP: 0010:__symbol_put+0x93/0xb0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x19/0x27\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x65/0x80\n ? __symbol_put+0x93/0xb0\n ? exc_invalid_op+0x51/0x70\n ? __symbol_put+0x93/0xb0\n ? asm_exc_invalid_op+0x1a/0x20\n ? __pfx_cmp_name+0x10/0x10\n ? __symbol_put+0x93/0xb0\n ? __symbol_put+0x62/0xb0\n utf8_load+0xf8/0x150\n\nThat happens because symbol_put() expects the unique string that\nidentify the symbol, instead of a pointer to the loaded symbol. Fix that\nby using such string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53233",
"url": "https://www.suse.com/security/cve/CVE-2024-53233"
},
{
"category": "external",
"summary": "SUSE Bug 1235046 for CVE-2024-53233",
"url": "https://bugzilla.suse.com/1235046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53233"
},
{
"cve": "CVE-2024-53234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle NONHEAD !delta[1] lclusters gracefully\n\nsyzbot reported a WARNING in iomap_iter_done:\n iomap_fiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80\n ioctl_fiemap fs/ioctl.c:220 [inline]\n\nGenerally, NONHEAD lclusters won\u0027t have delta[1]==0, except for crafted\nimages and filesystems created by pre-1.0 mkfs versions.\n\nPreviously, it would immediately bail out if delta[1]==0, which led to\ninadequate decompressed lengths (thus FIEMAP is impacted). Treat it as\ndelta[1]=1 to work around these legacy mkfs versions.\n\n`lclusterbits \u003e 14` is illegal for compact indexes, error out too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53234",
"url": "https://www.suse.com/security/cve/CVE-2024-53234"
},
{
"category": "external",
"summary": "SUSE Bug 1235045 for CVE-2024-53234",
"url": "https://bugzilla.suse.com/1235045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53234"
},
{
"cve": "CVE-2024-53236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: Free skb when TX metadata options are invalid\n\nWhen a new skb is allocated for transmitting an xsk descriptor, i.e., for\nevery non-multibuf descriptor or the first frag of a multibuf descriptor,\nbut the descriptor is later found to have invalid options set for the TX\nmetadata, the new skb is never freed. This can leak skbs until the send\nbuffer is full which makes sending more packets impossible.\n\nFix this by freeing the skb in the error path if we are currently dealing\nwith the first frag, i.e., an skb allocated in this iteration of\nxsk_build_skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53236",
"url": "https://www.suse.com/security/cve/CVE-2024-53236"
},
{
"category": "external",
"summary": "SUSE Bug 1235000 for CVE-2024-53236",
"url": "https://bugzilla.suse.com/1235000"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53236"
},
{
"cve": "CVE-2024-53237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: fix use-after-free in device_for_each_child()\n\nSyzbot has reported the following KASAN splat:\n\nBUG: KASAN: slab-use-after-free in device_for_each_child+0x18f/0x1a0\nRead of size 8 at addr ffff88801f605308 by task kbnepd bnep0/4980\n\nCPU: 0 UID: 0 PID: 4980 Comm: kbnepd bnep0 Not tainted 6.12.0-rc4-00161-gae90f6a6170d #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x100/0x190\n ? device_for_each_child+0x18f/0x1a0\n print_report+0x13a/0x4cb\n ? __virt_addr_valid+0x5e/0x590\n ? __phys_addr+0xc6/0x150\n ? device_for_each_child+0x18f/0x1a0\n kasan_report+0xda/0x110\n ? device_for_each_child+0x18f/0x1a0\n ? __pfx_dev_memalloc_noio+0x10/0x10\n device_for_each_child+0x18f/0x1a0\n ? __pfx_device_for_each_child+0x10/0x10\n pm_runtime_set_memalloc_noio+0xf2/0x180\n netdev_unregister_kobject+0x1ed/0x270\n unregister_netdevice_many_notify+0x123c/0x1d80\n ? __mutex_trylock_common+0xde/0x250\n ? __pfx_unregister_netdevice_many_notify+0x10/0x10\n ? trace_contention_end+0xe6/0x140\n ? __mutex_lock+0x4e7/0x8f0\n ? __pfx_lock_acquire.part.0+0x10/0x10\n ? rcu_is_watching+0x12/0xc0\n ? unregister_netdev+0x12/0x30\n unregister_netdevice_queue+0x30d/0x3f0\n ? __pfx_unregister_netdevice_queue+0x10/0x10\n ? __pfx_down_write+0x10/0x10\n unregister_netdev+0x1c/0x30\n bnep_session+0x1fb3/0x2ab0\n ? __pfx_bnep_session+0x10/0x10\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_woken_wake_function+0x10/0x10\n ? __kthread_parkme+0x132/0x200\n ? __pfx_bnep_session+0x10/0x10\n ? kthread+0x13a/0x370\n ? __pfx_bnep_session+0x10/0x10\n kthread+0x2b7/0x370\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x48/0x80\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 4974:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n __kmalloc_noprof+0x1d1/0x440\n hci_alloc_dev_priv+0x1d/0x2820\n __vhci_create_device+0xef/0x7d0\n vhci_write+0x2c7/0x480\n vfs_write+0x6a0/0xfc0\n ksys_write+0x12f/0x260\n do_syscall_64+0xc7/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 4979:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x4f/0x70\n kfree+0x141/0x490\n hci_release_dev+0x4d9/0x600\n bt_host_release+0x6a/0xb0\n device_release+0xa4/0x240\n kobject_put+0x1ec/0x5a0\n put_device+0x1f/0x30\n vhci_release+0x81/0xf0\n __fput+0x3f6/0xb30\n task_work_run+0x151/0x250\n do_exit+0xa79/0x2c30\n do_group_exit+0xd5/0x2a0\n get_signal+0x1fcd/0x2210\n arch_do_signal_or_restart+0x93/0x780\n syscall_exit_to_user_mode+0x140/0x290\n do_syscall_64+0xd4/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nIn \u0027hci_conn_del_sysfs()\u0027, \u0027device_unregister()\u0027 may be called when\nan underlying (kobject) reference counter is greater than 1. This\nmeans that reparenting (happened when the device is actually freed)\nis delayed and, during that delay, parent controller device (hciX)\nmay be deleted. Since the latter may create a dangling pointer to\nfreed parent, avoid that scenario by reparenting to NULL explicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53237",
"url": "https://www.suse.com/security/cve/CVE-2024-53237"
},
{
"category": "external",
"summary": "SUSE Bug 1235007 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "external",
"summary": "SUSE Bug 1235008 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235008"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53237"
},
{
"cve": "CVE-2024-53239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: 6fire: Release resources at card release\n\nThe current 6fire code tries to release the resources right after the\ncall of usb6fire_chip_abort(). But at this moment, the card object\nmight be still in use (as we\u0027re calling snd_card_free_when_closed()).\n\nFor avoid potential UAFs, move the release of resources to the card\u0027s\nprivate_free instead of the manual call of usb6fire_chip_destroy() at\nthe USB disconnect callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53239",
"url": "https://www.suse.com/security/cve/CVE-2024-53239"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235054 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "external",
"summary": "SUSE Bug 1235055 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53239"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-53685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: give up on paths longer than PATH_MAX\n\nIf the full path to be built by ceph_mdsc_build_path() happens to be\nlonger than PATH_MAX, then this function will enter an endless (retry)\nloop, effectively blocking the whole task. Most of the machine\nbecomes unusable, making this a very simple and effective DoS\nvulnerability.\n\nI cannot imagine why this retry was ever implemented, but it seems\nrather useless and harmful to me. Let\u0027s remove it and fail with\nENAMETOOLONG instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53685",
"url": "https://www.suse.com/security/cve/CVE-2024-53685"
},
{
"category": "external",
"summary": "SUSE Bug 1235720 for CVE-2024-53685",
"url": "https://bugzilla.suse.com/1235720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53685"
},
{
"cve": "CVE-2024-53690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: prevent use of deleted inode\n\nsyzbot reported a WARNING in nilfs_rmdir. [1]\n\nBecause the inode bitmap is corrupted, an inode with an inode number that\nshould exist as a \".nilfs\" file was reassigned by nilfs_mkdir for \"file0\",\ncausing an inode duplication during execution. And this causes an\nunderflow of i_nlink in rmdir operations.\n\nThe inode is used twice by the same task to unmount and remove directories\n\".nilfs\" and \"file0\", it trigger warning in nilfs_rmdir.\n\nAvoid to this issue, check i_nlink in nilfs_iget(), if it is 0, it means\nthat this inode has been deleted, and iput is executed to reclaim it.\n\n[1]\nWARNING: CPU: 1 PID: 5824 at fs/inode.c:407 drop_nlink+0xc4/0x110 fs/inode.c:407\n...\nCall Trace:\n \u003cTASK\u003e\n nilfs_rmdir+0x1b0/0x250 fs/nilfs2/namei.c:342\n vfs_rmdir+0x3a3/0x510 fs/namei.c:4394\n do_rmdir+0x3b5/0x580 fs/namei.c:4453\n __do_sys_rmdir fs/namei.c:4472 [inline]\n __se_sys_rmdir fs/namei.c:4470 [inline]\n __x64_sys_rmdir+0x47/0x50 fs/namei.c:4470\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53690",
"url": "https://www.suse.com/security/cve/CVE-2024-53690"
},
{
"category": "external",
"summary": "SUSE Bug 1235842 for CVE-2024-53690",
"url": "https://bugzilla.suse.com/1235842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53690"
},
{
"cve": "CVE-2024-54680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-54680"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-54680",
"url": "https://www.suse.com/security/cve/CVE-2024-54680"
},
{
"category": "external",
"summary": "SUSE Bug 1235723 for CVE-2024-54680",
"url": "https://bugzilla.suse.com/1235723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-54680"
},
{
"cve": "CVE-2024-55639",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55639"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: renesas: rswitch: avoid use-after-put for a device tree node\n\nThe device tree node saved in the rswitch_device structure is used at\nseveral driver locations. So passing this node to of_node_put() after\nthe first use is wrong.\n\nMove of_node_put() for this node to exit paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55639",
"url": "https://www.suse.com/security/cve/CVE-2024-55639"
},
{
"category": "external",
"summary": "SUSE Bug 1235737 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "external",
"summary": "SUSE Bug 1235738 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-55639"
},
{
"cve": "CVE-2024-55881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: x86: Play nice with protected guests in complete_hypercall_exit()\n\nUse is_64_bit_hypercall() instead of is_64_bit_mode() to detect a 64-bit\nhypercall when completing said hypercall. For guests with protected state,\ne.g. SEV-ES and SEV-SNP, KVM must assume the hypercall was made in 64-bit\nmode as the vCPU state needed to detect 64-bit mode is unavailable.\n\nHacking the sev_smoke_test selftest to generate a KVM_HC_MAP_GPA_RANGE\nhypercall via VMGEXIT trips the WARN:\n\n ------------[ cut here ]------------\n WARNING: CPU: 273 PID: 326626 at arch/x86/kvm/x86.h:180 complete_hypercall_exit+0x44/0xe0 [kvm]\n Modules linked in: kvm_amd kvm ... [last unloaded: kvm]\n CPU: 273 UID: 0 PID: 326626 Comm: sev_smoke_test Not tainted 6.12.0-smp--392e932fa0f3-feat #470\n Hardware name: Google Astoria/astoria, BIOS 0.20240617.0-0 06/17/2024\n RIP: 0010:complete_hypercall_exit+0x44/0xe0 [kvm]\n Call Trace:\n \u003cTASK\u003e\n kvm_arch_vcpu_ioctl_run+0x2400/0x2720 [kvm]\n kvm_vcpu_ioctl+0x54f/0x630 [kvm]\n __se_sys_ioctl+0x6b/0xc0\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55881",
"url": "https://www.suse.com/security/cve/CVE-2024-55881"
},
{
"category": "external",
"summary": "SUSE Bug 1235745 for CVE-2024-55881",
"url": "https://bugzilla.suse.com/1235745"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-55881"
},
{
"cve": "CVE-2024-55916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nDrivers: hv: util: Avoid accessing a ringbuffer not initialized yet\n\nIf the KVP (or VSS) daemon starts before the VMBus channel\u0027s ringbuffer is\nfully initialized, we can hit the panic below:\n\nhv_utils: Registering HyperV Utility Driver\nhv_vmbus: registering driver hv_utils\n...\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nCPU: 44 UID: 0 PID: 2552 Comm: hv_kvp_daemon Tainted: G E 6.11.0-rc3+ #1\nRIP: 0010:hv_pkt_iter_first+0x12/0xd0\nCall Trace:\n...\n vmbus_recvpacket\n hv_kvp_onchannelcallback\n vmbus_on_event\n tasklet_action_common\n tasklet_action\n handle_softirqs\n irq_exit_rcu\n sysvec_hyperv_stimer0\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_hyperv_stimer0\n...\n kvp_register_done\n hvt_op_read\n vfs_read\n ksys_read\n __x64_sys_read\n\nThis can happen because the KVP/VSS channel callback can be invoked\neven before the channel is fully opened:\n1) as soon as hv_kvp_init() -\u003e hvutil_transport_init() creates\n/dev/vmbus/hv_kvp, the kvp daemon can open the device file immediately and\nregister itself to the driver by writing a message KVP_OP_REGISTER1 to the\nfile (which is handled by kvp_on_msg() -\u003ekvp_handle_handshake()) and\nreading the file for the driver\u0027s response, which is handled by\nhvt_op_read(), which calls hvt-\u003eon_read(), i.e. kvp_register_done().\n\n2) the problem with kvp_register_done() is that it can cause the\nchannel callback to be called even before the channel is fully opened,\nand when the channel callback is starting to run, util_probe()-\u003e\nvmbus_open() may have not initialized the ringbuffer yet, so the\ncallback can hit the panic of NULL pointer dereference.\n\nTo reproduce the panic consistently, we can add a \"ssleep(10)\" for KVP in\n__vmbus_open(), just before the first hv_ringbuffer_init(), and then we\nunload and reload the driver hv_utils, and run the daemon manually within\nthe 10 seconds.\n\nFix the panic by reordering the steps in util_probe() so the char dev\nentry used by the KVP or VSS daemon is not created until after\nvmbus_open() has completed. This reordering prevents the race condition\nfrom happening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55916",
"url": "https://www.suse.com/security/cve/CVE-2024-55916"
},
{
"category": "external",
"summary": "SUSE Bug 1235747 for CVE-2024-55916",
"url": "https://bugzilla.suse.com/1235747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-55916"
},
{
"cve": "CVE-2024-56369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56369"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/modes: Avoid divide by zero harder in drm_mode_vrefresh()\n\ndrm_mode_vrefresh() is trying to avoid divide by zero\nby checking whether htotal or vtotal are zero. But we may\nstill end up with a div-by-zero of vtotal*htotal*...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56369",
"url": "https://www.suse.com/security/cve/CVE-2024-56369"
},
{
"category": "external",
"summary": "SUSE Bug 1235750 for CVE-2024-56369",
"url": "https://bugzilla.suse.com/1235750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56369"
},
{
"cve": "CVE-2024-56372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tun: fix tun_napi_alloc_frags()\n\nsyzbot reported the following crash [1]\n\nIssue came with the blamed commit. Instead of going through\nall the iov components, we keep using the first one\nand end up with a malformed skb.\n\n[1]\n\nkernel BUG at net/core/skbuff.c:2849 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 6230 Comm: syz-executor132 Not tainted 6.13.0-rc1-syzkaller-00407-g96b6fcc0ee41 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024\n RIP: 0010:__pskb_pull_tail+0x1568/0x1570 net/core/skbuff.c:2848\nCode: 38 c1 0f 8c 32 f1 ff ff 4c 89 f7 e8 92 96 74 f8 e9 25 f1 ff ff e8 e8 ae 09 f8 48 8b 5c 24 08 e9 eb fb ff ff e8 d9 ae 09 f8 90 \u003c0f\u003e 0b 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90\nRSP: 0018:ffffc90004cbef30 EFLAGS: 00010293\nRAX: ffffffff8995c347 RBX: 00000000fffffff2 RCX: ffff88802cf45a00\nRDX: 0000000000000000 RSI: 00000000fffffff2 RDI: 0000000000000000\nRBP: ffff88807df0c06a R08: ffffffff8995b084 R09: 1ffff1100fbe185c\nR10: dffffc0000000000 R11: ffffed100fbe185d R12: ffff888076e85d50\nR13: ffff888076e85c80 R14: ffff888076e85cf4 R15: ffff888076e85c80\nFS: 00007f0dca6ea6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f0dca6ead58 CR3: 00000000119da000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_cow_data+0x2da/0xcb0 net/core/skbuff.c:5284\n tipc_aead_decrypt net/tipc/crypto.c:894 [inline]\n tipc_crypto_rcv+0x402/0x24e0 net/tipc/crypto.c:1844\n tipc_rcv+0x57e/0x12a0 net/tipc/node.c:2109\n tipc_l2_rcv_msg+0x2bd/0x450 net/tipc/bearer.c:668\n __netif_receive_skb_list_ptype net/core/dev.c:5720 [inline]\n __netif_receive_skb_list_core+0x8b7/0x980 net/core/dev.c:5762\n __netif_receive_skb_list net/core/dev.c:5814 [inline]\n netif_receive_skb_list_internal+0xa51/0xe30 net/core/dev.c:5905\n gro_normal_list include/net/gro.h:515 [inline]\n napi_complete_done+0x2b5/0x870 net/core/dev.c:6256\n napi_complete include/linux/netdevice.h:567 [inline]\n tun_get_user+0x2ea0/0x4890 drivers/net/tun.c:1982\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2057\n do_iter_readv_writev+0x600/0x880\n vfs_writev+0x376/0xba0 fs/read_write.c:1050\n do_writev+0x1b6/0x360 fs/read_write.c:1096\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56372",
"url": "https://www.suse.com/security/cve/CVE-2024-56372"
},
{
"category": "external",
"summary": "SUSE Bug 1235753 for CVE-2024-56372",
"url": "https://bugzilla.suse.com/1235753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56372"
},
{
"cve": "CVE-2024-56531",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56531"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: caiaq: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThis patch also splits the code to the disconnect and the free phases;\nthe former is called immediately at the USB disconnect callback while\nthe latter is called from the card destructor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56531",
"url": "https://www.suse.com/security/cve/CVE-2024-56531"
},
{
"category": "external",
"summary": "SUSE Bug 1235057 for CVE-2024-56531",
"url": "https://bugzilla.suse.com/1235057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56531"
},
{
"cve": "CVE-2024-56532",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56532"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: us122l: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThe loop of us122l-\u003emmap_count check is dropped as well. The check is\nuseless for the asynchronous operation with *_when_closed().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56532",
"url": "https://www.suse.com/security/cve/CVE-2024-56532"
},
{
"category": "external",
"summary": "SUSE Bug 1235059 for CVE-2024-56532",
"url": "https://bugzilla.suse.com/1235059"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56532"
},
{
"cve": "CVE-2024-56533",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56533"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usx2y: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56533",
"url": "https://www.suse.com/security/cve/CVE-2024-56533"
},
{
"category": "external",
"summary": "SUSE Bug 1235053 for CVE-2024-56533",
"url": "https://bugzilla.suse.com/1235053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56533"
},
{
"cve": "CVE-2024-56536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56536"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cw1200: Fix potential NULL dereference\n\nA recent refactoring was identified by static analysis to\ncause a potential NULL dereference, fix this!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56536",
"url": "https://www.suse.com/security/cve/CVE-2024-56536"
},
{
"category": "external",
"summary": "SUSE Bug 1234911 for CVE-2024-56536",
"url": "https://bugzilla.suse.com/1234911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56536"
},
{
"cve": "CVE-2024-56538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: zynqmp_kms: Unplug DRM device before removal\n\nPrevent userspace accesses to the DRM device from causing\nuse-after-frees by unplugging the device before we remove it. This\ncauses any further userspace accesses to result in an error without\nfurther calls into this driver\u0027s internals.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56538",
"url": "https://www.suse.com/security/cve/CVE-2024-56538"
},
{
"category": "external",
"summary": "SUSE Bug 1235051 for CVE-2024-56538",
"url": "https://bugzilla.suse.com/1235051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56538"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: Skip Rx TID cleanup for self peer\n\nDuring peer create, dp setup for the peer is done where Rx TID is\nupdated for all the TIDs. Peer object for self peer will not go through\ndp setup.\n\nWhen core halts, dp cleanup is done for all the peers. While cleanup,\nrx_tid::ab is accessed which causes below stack trace for self peer.\n\nWARNING: CPU: 6 PID: 12297 at drivers/net/wireless/ath/ath12k/dp_rx.c:851\nCall Trace:\n__warn+0x7b/0x1a0\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nreport_bug+0x10b/0x200\nhandle_bug+0x3f/0x70\nexc_invalid_op+0x13/0x60\nasm_exc_invalid_op+0x16/0x20\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nath12k_dp_rx_frags_cleanup+0xca/0xe0 [ath12k]\nath12k_dp_rx_peer_tid_cleanup+0x39/0xa0 [ath12k]\nath12k_mac_peer_cleanup_all+0x61/0x100 [ath12k]\nath12k_core_halt+0x3b/0x100 [ath12k]\nath12k_core_reset+0x494/0x4c0 [ath12k]\n\nsta object in peer will be updated when remote peer is created. Hence\nuse peer::sta to detect the self peer and skip the cleanup.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.1.0.c5-00481-QCAHMTSWPL_V1.0_V2.0_SILICONZ-3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56543",
"url": "https://www.suse.com/security/cve/CVE-2024-56543"
},
{
"category": "external",
"summary": "SUSE Bug 1235065 for CVE-2024-56543",
"url": "https://bugzilla.suse.com/1235065"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56543"
},
{
"cve": "CVE-2024-56546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56546"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()\n\nIf we fail to allocate memory for cb_data by kmalloc, the memory\nallocation for eve_data is never freed, add the missing kfree()\nin the error handling path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56546",
"url": "https://www.suse.com/security/cve/CVE-2024-56546"
},
{
"category": "external",
"summary": "SUSE Bug 1235070 for CVE-2024-56546",
"url": "https://bugzilla.suse.com/1235070"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56546"
},
{
"cve": "CVE-2024-56548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: don\u0027t query the device logical block size multiple times\n\nDevices block sizes may change. One of these cases is a loop device by\nusing ioctl LOOP_SET_BLOCK_SIZE.\n\nWhile this may cause other issues like IO being rejected, in the case of\nhfsplus, it will allocate a block by using that size and potentially write\nout-of-bounds when hfsplus_read_wrapper calls hfsplus_submit_bio and the\nlatter function reads a different io_size.\n\nUsing a new min_io_size initally set to sb_min_blocksize works for the\npurposes of the original fix, since it will be set to the max between\nHFSPLUS_SECTOR_SIZE and the first seen logical block size. We still use the\nmax between HFSPLUS_SECTOR_SIZE and min_io_size in case the latter is not\ninitialized.\n\nTested by mounting an hfsplus filesystem with loop block sizes 512, 1024\nand 4096.\n\nThe produced KASAN report before the fix looks like this:\n\n[ 419.944641] ==================================================================\n[ 419.945655] BUG: KASAN: slab-use-after-free in hfsplus_read_wrapper+0x659/0xa0a\n[ 419.946703] Read of size 2 at addr ffff88800721fc00 by task repro/10678\n[ 419.947612]\n[ 419.947846] CPU: 0 UID: 0 PID: 10678 Comm: repro Not tainted 6.12.0-rc5-00008-gdf56e0f2f3ca #84\n[ 419.949007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 419.950035] Call Trace:\n[ 419.950384] \u003cTASK\u003e\n[ 419.950676] dump_stack_lvl+0x57/0x78\n[ 419.951212] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.951830] print_report+0x14c/0x49e\n[ 419.952361] ? __virt_addr_valid+0x267/0x278\n[ 419.952979] ? kmem_cache_debug_flags+0xc/0x1d\n[ 419.953561] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.954231] kasan_report+0x89/0xb0\n[ 419.954748] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955367] hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955948] ? __pfx_hfsplus_read_wrapper+0x10/0x10\n[ 419.956618] ? do_raw_spin_unlock+0x59/0x1a9\n[ 419.957214] ? _raw_spin_unlock+0x1a/0x2e\n[ 419.957772] hfsplus_fill_super+0x348/0x1590\n[ 419.958355] ? hlock_class+0x4c/0x109\n[ 419.958867] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.959499] ? __pfx_string+0x10/0x10\n[ 419.960006] ? lock_acquire+0x3e2/0x454\n[ 419.960532] ? bdev_name.constprop.0+0xce/0x243\n[ 419.961129] ? __pfx_bdev_name.constprop.0+0x10/0x10\n[ 419.961799] ? pointer+0x3f0/0x62f\n[ 419.962277] ? __pfx_pointer+0x10/0x10\n[ 419.962761] ? vsnprintf+0x6c4/0xfba\n[ 419.963178] ? __pfx_vsnprintf+0x10/0x10\n[ 419.963621] ? setup_bdev_super+0x376/0x3b3\n[ 419.964029] ? snprintf+0x9d/0xd2\n[ 419.964344] ? __pfx_snprintf+0x10/0x10\n[ 419.964675] ? lock_acquired+0x45c/0x5e9\n[ 419.965016] ? set_blocksize+0x139/0x1c1\n[ 419.965381] ? sb_set_blocksize+0x6d/0xae\n[ 419.965742] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.966179] mount_bdev+0x12f/0x1bf\n[ 419.966512] ? __pfx_mount_bdev+0x10/0x10\n[ 419.966886] ? vfs_parse_fs_string+0xce/0x111\n[ 419.967293] ? __pfx_vfs_parse_fs_string+0x10/0x10\n[ 419.967702] ? __pfx_hfsplus_mount+0x10/0x10\n[ 419.968073] legacy_get_tree+0x104/0x178\n[ 419.968414] vfs_get_tree+0x86/0x296\n[ 419.968751] path_mount+0xba3/0xd0b\n[ 419.969157] ? __pfx_path_mount+0x10/0x10\n[ 419.969594] ? kmem_cache_free+0x1e2/0x260\n[ 419.970311] do_mount+0x99/0xe0\n[ 419.970630] ? __pfx_do_mount+0x10/0x10\n[ 419.971008] __do_sys_mount+0x199/0x1c9\n[ 419.971397] do_syscall_64+0xd0/0x135\n[ 419.971761] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 419.972233] RIP: 0033:0x7c3cb812972e\n[ 419.972564] Code: 48 8b 0d f5 46 0d 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 a5 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d c2 46 0d 00 f7 d8 64 89 01 48\n[ 419.974371] RSP: 002b:00007ffe30632548 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5\n[ 419.975048] RAX: ffffffffffffffda RBX: 00007ffe306328d8 RCX: 00007c3cb812972e\n[ 419.975701] RDX: 0000000020000000 RSI: 0000000020000c80 RDI:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56548",
"url": "https://www.suse.com/security/cve/CVE-2024-56548"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235073 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "external",
"summary": "SUSE Bug 1235074 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56548"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix usage slab after free\n\n[ +0.000021] BUG: KASAN: slab-use-after-free in drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000027] Read of size 8 at addr ffff8881b8605f88 by task amd_pci_unplug/2147\n\n[ +0.000023] CPU: 6 PID: 2147 Comm: amd_pci_unplug Not tainted 6.10.0+ #1\n[ +0.000016] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[ +0.000016] Call Trace:\n[ +0.000008] \u003cTASK\u003e\n[ +0.000009] dump_stack_lvl+0x76/0xa0\n[ +0.000017] print_report+0xce/0x5f0\n[ +0.000017] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] ? srso_return_thunk+0x5/0x5f\n[ +0.000015] ? kasan_complete_mode_report_info+0x72/0x200\n[ +0.000016] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] kasan_report+0xbe/0x110\n[ +0.000015] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000023] __asan_report_load8_noabort+0x14/0x30\n[ +0.000014] drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000016] ? __pfx_drm_sched_entity_flush+0x10/0x10 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? enable_work+0x124/0x220\n[ +0.000015] ? __pfx_enable_work+0x10/0x10\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? free_large_kmalloc+0x85/0xf0\n[ +0.000016] drm_sched_entity_destroy+0x18/0x30 [gpu_sched]\n[ +0.000020] amdgpu_vce_sw_fini+0x55/0x170 [amdgpu]\n[ +0.000735] ? __kasan_check_read+0x11/0x20\n[ +0.000016] vce_v4_0_sw_fini+0x80/0x110 [amdgpu]\n[ +0.000726] amdgpu_device_fini_sw+0x331/0xfc0 [amdgpu]\n[ +0.000679] ? mutex_unlock+0x80/0xe0\n[ +0.000017] ? __pfx_amdgpu_device_fini_sw+0x10/0x10 [amdgpu]\n[ +0.000662] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? mutex_unlock+0x80/0xe0\n[ +0.000016] amdgpu_driver_release_kms+0x16/0x80 [amdgpu]\n[ +0.000663] drm_minor_release+0xc9/0x140 [drm]\n[ +0.000081] drm_release+0x1fd/0x390 [drm]\n[ +0.000082] __fput+0x36c/0xad0\n[ +0.000018] __fput_sync+0x3c/0x50\n[ +0.000014] __x64_sys_close+0x7d/0xe0\n[ +0.000014] x64_sys_call+0x1bc6/0x2680\n[ +0.000014] do_syscall_64+0x70/0x130\n[ +0.000014] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit_to_user_mode+0x60/0x190\n[ +0.000015] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit+0x43/0x50\n[ +0.000012] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? exc_page_fault+0x7c/0x110\n[ +0.000015] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ +0.000014] RIP: 0033:0x7ffff7b14f67\n[ +0.000013] Code: ff e8 0d 16 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 03 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 41 c3 48 83 ec 18 89 7c 24 0c e8 73 ba f7 ff\n[ +0.000026] RSP: 002b:00007fffffffe378 EFLAGS: 00000246 ORIG_RAX: 0000000000000003\n[ +0.000019] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffff7b14f67\n[ +0.000014] RDX: 0000000000000000 RSI: 00007ffff7f6f47a RDI: 0000000000000003\n[ +0.000014] RBP: 00007fffffffe3a0 R08: 0000555555569890 R09: 0000000000000000\n[ +0.000014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffffe5c8\n[ +0.000013] R13: 00005555555552a9 R14: 0000555555557d48 R15: 00007ffff7ffd040\n[ +0.000020] \u003c/TASK\u003e\n\n[ +0.000016] Allocated by task 383 on cpu 7 at 26.880319s:\n[ +0.000014] kasan_save_stack+0x28/0x60\n[ +0.000008] kasan_save_track+0x18/0x70\n[ +0.000007] kasan_save_alloc_info+0x38/0x60\n[ +0.000007] __kasan_kmalloc+0xc1/0xd0\n[ +0.000007] kmalloc_trace_noprof+0x180/0x380\n[ +0.000007] drm_sched_init+0x411/0xec0 [gpu_sched]\n[ +0.000012] amdgpu_device_init+0x695f/0xa610 [amdgpu]\n[ +0.000658] amdgpu_driver_load_kms+0x1a/0x120 [amdgpu]\n[ +0.000662] amdgpu_pci_p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56551",
"url": "https://www.suse.com/security/cve/CVE-2024-56551"
},
{
"category": "external",
"summary": "SUSE Bug 1235075 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "external",
"summary": "SUSE Bug 1235102 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56551"
},
{
"cve": "CVE-2024-56557",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56557"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer\n\nThe AD7923 was updated to support devices with 8 channels, but the size\nof tx_buf and ring_xfer was not increased accordingly, leading to a\npotential buffer overflow in ad7923_update_scan_mode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56557",
"url": "https://www.suse.com/security/cve/CVE-2024-56557"
},
{
"category": "external",
"summary": "SUSE Bug 1235122 for CVE-2024-56557",
"url": "https://bugzilla.suse.com/1235122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56557"
},
{
"cve": "CVE-2024-56558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56558"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: make sure exp active before svc_export_show\n\nThe function `e_show` was called with protection from RCU. This only\nensures that `exp` will not be freed. Therefore, the reference count for\n`exp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `exp_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `exp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 3 PID: 819 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 3 UID: 0 PID: 819 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n...\nCall Trace:\n \u003cTASK\u003e\n e_show+0x20b/0x230 [nfsd]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56558",
"url": "https://www.suse.com/security/cve/CVE-2024-56558"
},
{
"category": "external",
"summary": "SUSE Bug 1235100 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "external",
"summary": "SUSE Bug 1243648 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1243648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56558"
},
{
"cve": "CVE-2024-56562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56562"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()\n\nif (dev-\u003eboardinfo \u0026\u0026 dev-\u003eboardinfo-\u003einit_dyn_addr)\n ^^^ here check \"init_dyn_addr\"\n\ti3c_bus_set_addr_slot_status(\u0026master-\u003ebus, dev-\u003einfo.dyn_addr, ...)\n\t\t\t\t\t\t ^^^^\n\t\t\t\t\t\t\tfree \"dyn_addr\"\nFix copy/paste error \"dyn_addr\" by replacing it with \"init_dyn_addr\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56562",
"url": "https://www.suse.com/security/cve/CVE-2024-56562"
},
{
"category": "external",
"summary": "SUSE Bug 1234930 for CVE-2024-56562",
"url": "https://bugzilla.suse.com/1234930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56562"
},
{
"cve": "CVE-2024-56566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: Avoid list corruption when removing a slab from the full list\n\nBoot with slub_debug=UFPZ.\n\nIf allocated object failed in alloc_consistency_checks, all objects of\nthe slab will be marked as used, and then the slab will be removed from\nthe partial list.\n\nWhen an object belonging to the slab got freed later, the remove_full()\nfunction is called. Because the slab is neither on the partial list nor\non the full list, it eventually lead to a list corruption (actually a\nlist poison being detected).\n\nSo we need to mark and isolate the slab page with metadata corruption,\ndo not put it back in circulation.\n\nBecause the debug caches avoid all the fastpaths, reusing the frozen bit\nto mark slab page with metadata corruption seems to be fine.\n\n[ 4277.385669] list_del corruption, ffffea00044b3e50-\u003enext is LIST_POISON1 (dead000000000100)\n[ 4277.387023] ------------[ cut here ]------------\n[ 4277.387880] kernel BUG at lib/list_debug.c:56!\n[ 4277.388680] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 4277.389562] CPU: 5 PID: 90 Comm: kworker/5:1 Kdump: loaded Tainted: G OE 6.6.1-1 #1\n[ 4277.392113] Workqueue: xfs-inodegc/vda1 xfs_inodegc_worker [xfs]\n[ 4277.393551] RIP: 0010:__list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.394518] Code: 48 91 82 e8 37 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 28 49 91 82 e8 26 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 58 49 91\n[ 4277.397292] RSP: 0018:ffffc90000333b38 EFLAGS: 00010082\n[ 4277.398202] RAX: 000000000000004e RBX: ffffea00044b3e50 RCX: 0000000000000000\n[ 4277.399340] RDX: 0000000000000002 RSI: ffffffff828f8715 RDI: 00000000ffffffff\n[ 4277.400545] RBP: ffffea00044b3e40 R08: 0000000000000000 R09: ffffc900003339f0\n[ 4277.401710] R10: 0000000000000003 R11: ffffffff82d44088 R12: ffff888112cf9910\n[ 4277.402887] R13: 0000000000000001 R14: 0000000000000001 R15: ffff8881000424c0\n[ 4277.404049] FS: 0000000000000000(0000) GS:ffff88842fd40000(0000) knlGS:0000000000000000\n[ 4277.405357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4277.406389] CR2: 00007f2ad0b24000 CR3: 0000000102a3a006 CR4: 00000000007706e0\n[ 4277.407589] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4277.408780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4277.410000] PKRU: 55555554\n[ 4277.410645] Call Trace:\n[ 4277.411234] \u003cTASK\u003e\n[ 4277.411777] ? die+0x32/0x80\n[ 4277.412439] ? do_trap+0xd6/0x100\n[ 4277.413150] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.414158] ? do_error_trap+0x6a/0x90\n[ 4277.414948] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.415915] ? exc_invalid_op+0x4c/0x60\n[ 4277.416710] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.417675] ? asm_exc_invalid_op+0x16/0x20\n[ 4277.418482] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.419466] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.420410] free_to_partial_list+0x515/0x5e0\n[ 4277.421242] ? xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.422298] xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.423316] ? xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.424383] xfs_bmap_del_extent_delay+0x4fe/0x7d0 [xfs]\n[ 4277.425490] __xfs_bunmapi+0x50d/0x840 [xfs]\n[ 4277.426445] xfs_itruncate_extents_flags+0x13a/0x490 [xfs]\n[ 4277.427553] xfs_inactive_truncate+0xa3/0x120 [xfs]\n[ 4277.428567] xfs_inactive+0x22d/0x290 [xfs]\n[ 4277.429500] xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.430479] process_one_work+0x171/0x340\n[ 4277.431227] worker_thread+0x277/0x390\n[ 4277.431962] ? __pfx_worker_thread+0x10/0x10\n[ 4277.432752] kthread+0xf0/0x120\n[ 4277.433382] ? __pfx_kthread+0x10/0x10\n[ 4277.434134] ret_from_fork+0x2d/0x50\n[ 4277.434837] ? __pfx_kthread+0x10/0x10\n[ 4277.435566] ret_from_fork_asm+0x1b/0x30\n[ 4277.436280] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56566",
"url": "https://www.suse.com/security/cve/CVE-2024-56566"
},
{
"category": "external",
"summary": "SUSE Bug 1235033 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "external",
"summary": "SUSE Bug 1235034 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56566"
},
{
"cve": "CVE-2024-56567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nad7780: fix division by zero in ad7780_write_raw()\n\nIn the ad7780_write_raw() , val2 can be zero, which might lead to a\ndivision by zero error in DIV_ROUND_CLOSEST(). The ad7780_write_raw()\nis based on iio_info\u0027s write_raw. While val is explicitly declared that\ncan be zero (in read mode), val2 is not specified to be non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56567",
"url": "https://www.suse.com/security/cve/CVE-2024-56567"
},
{
"category": "external",
"summary": "SUSE Bug 1234916 for CVE-2024-56567",
"url": "https://bugzilla.suse.com/1234916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56567"
},
{
"cve": "CVE-2024-56568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56568"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/arm-smmu: Defer probe of clients after smmu device bound\n\nNull pointer dereference occurs due to a race between smmu\ndriver probe and client driver probe, when of_dma_configure()\nfor client is called after the iommu_device_register() for smmu driver\nprobe has executed but before the driver_bound() for smmu driver\nhas been called.\n\nFollowing is how the race occurs:\n\nT1:Smmu device probe\t\tT2: Client device probe\n\nreally_probe()\narm_smmu_device_probe()\niommu_device_register()\n\t\t\t\t\treally_probe()\n\t\t\t\t\tplatform_dma_configure()\n\t\t\t\t\tof_dma_configure()\n\t\t\t\t\tof_dma_configure_id()\n\t\t\t\t\tof_iommu_configure()\n\t\t\t\t\tiommu_probe_device()\n\t\t\t\t\tiommu_init_device()\n\t\t\t\t\tarm_smmu_probe_device()\n\t\t\t\t\tarm_smmu_get_by_fwnode()\n\t\t\t\t\t\tdriver_find_device_by_fwnode()\n\t\t\t\t\t\tdriver_find_device()\n\t\t\t\t\t\tnext_device()\n\t\t\t\t\t\tklist_next()\n\t\t\t\t\t\t /* null ptr\n\t\t\t\t\t\t assigned to smmu */\n\t\t\t\t\t/* null ptr dereference\n\t\t\t\t\t while smmu-\u003estreamid_mask */\ndriver_bound()\n\tklist_add_tail()\n\nWhen this null smmu pointer is dereferenced later in\narm_smmu_probe_device, the device crashes.\n\nFix this by deferring the probe of the client device\nuntil the smmu device has bound to the arm smmu driver.\n\n[will: Add comment]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56568",
"url": "https://www.suse.com/security/cve/CVE-2024-56568"
},
{
"category": "external",
"summary": "SUSE Bug 1235032 for CVE-2024-56568",
"url": "https://bugzilla.suse.com/1235032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56568"
},
{
"cve": "CVE-2024-56569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix regression with module command in stack_trace_filter\n\nWhen executing the following command:\n\n # echo \"write*:mod:ext3\" \u003e /sys/kernel/tracing/stack_trace_filter\n\nThe current mod command causes a null pointer dereference. While commit\n0f17976568b3f (\"ftrace: Fix regression with module command in stack_trace_filter\")\nhas addressed part of the issue, it left a corner case unhandled, which still\nresults in a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56569",
"url": "https://www.suse.com/security/cve/CVE-2024-56569"
},
{
"category": "external",
"summary": "SUSE Bug 1235031 for CVE-2024-56569",
"url": "https://bugzilla.suse.com/1235031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56569"
},
{
"cve": "CVE-2024-56570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Filter invalid inodes with missing lookup function\n\nAdd a check to the ovl_dentry_weird() function to prevent the\nprocessing of directory inodes that lack the lookup function.\nThis is important because such inodes can cause errors in overlayfs\nwhen passed to the lowerstack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56570",
"url": "https://www.suse.com/security/cve/CVE-2024-56570"
},
{
"category": "external",
"summary": "SUSE Bug 1235035 for CVE-2024-56570",
"url": "https://bugzilla.suse.com/1235035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56570"
},
{
"cve": "CVE-2024-56571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56571"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56571",
"url": "https://www.suse.com/security/cve/CVE-2024-56571"
},
{
"category": "external",
"summary": "SUSE Bug 1235037 for CVE-2024-56571",
"url": "https://bugzilla.suse.com/1235037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56571"
},
{
"cve": "CVE-2024-56572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56572"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal()\n\nThe buffer in the loop should be released under the exception path,\notherwise there may be a memory leak here.\n\nTo mitigate this, free the buffer when allegro_alloc_buffer fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56572",
"url": "https://www.suse.com/security/cve/CVE-2024-56572"
},
{
"category": "external",
"summary": "SUSE Bug 1235043 for CVE-2024-56572",
"url": "https://bugzilla.suse.com/1235043"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56572"
},
{
"cve": "CVE-2024-56573",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56573"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi/libstub: Free correct pointer on failure\n\ncmdline_ptr is an out parameter, which is not allocated by the function\nitself, and likely points into the caller\u0027s stack.\n\ncmdline refers to the pool allocation that should be freed when cleaning\nup after a failure, so pass this instead to free_pool().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56573",
"url": "https://www.suse.com/security/cve/CVE-2024-56573"
},
{
"category": "external",
"summary": "SUSE Bug 1235042 for CVE-2024-56573",
"url": "https://bugzilla.suse.com/1235042"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56573"
},
{
"cve": "CVE-2024-56574",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56574"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: ts2020: fix null-ptr-deref in ts2020_probe()\n\nKASAN reported a null-ptr-deref issue when executing the following\ncommand:\n\n # echo ts2020 0x20 \u003e /sys/bus/i2c/devices/i2c-0/new_device\n KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\n CPU: 53 UID: 0 PID: 970 Comm: systemd-udevd Not tainted 6.12.0-rc2+ #24\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)\n RIP: 0010:ts2020_probe+0xad/0xe10 [ts2020]\n RSP: 0018:ffffc9000abbf598 EFLAGS: 00010202\n RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffffc0714809\n RDX: 0000000000000002 RSI: ffff88811550be00 RDI: 0000000000000010\n RBP: ffff888109868800 R08: 0000000000000001 R09: fffff52001577eb6\n R10: 0000000000000000 R11: ffffc9000abbff50 R12: ffffffffc0714790\n R13: 1ffff92001577eb8 R14: ffffffffc07190d0 R15: 0000000000000001\n FS: 00007f95f13b98c0(0000) GS:ffff888149280000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000555d2634b000 CR3: 0000000152236000 CR4: 00000000000006f0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ts2020_probe+0xad/0xe10 [ts2020]\n i2c_device_probe+0x421/0xb40\n really_probe+0x266/0x850\n ...\n\nThe cause of the problem is that when using sysfs to dynamically register\nan i2c device, there is no platform data, but the probe process of ts2020\nneeds to use platform data, resulting in a null pointer being accessed.\n\nSolve this problem by adding checks to platform data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56574",
"url": "https://www.suse.com/security/cve/CVE-2024-56574"
},
{
"category": "external",
"summary": "SUSE Bug 1235040 for CVE-2024-56574",
"url": "https://bugzilla.suse.com/1235040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56574"
},
{
"cve": "CVE-2024-56575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56575"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Ensure power suppliers be suspended before detach them\n\nThe power suppliers are always requested to suspend asynchronously,\ndev_pm_domain_detach() requires the caller to ensure proper\nsynchronization of this function with power management callbacks.\notherwise the detach may led to kernel panic, like below:\n\n[ 1457.107934] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000040\n[ 1457.116777] Mem abort info:\n[ 1457.119589] ESR = 0x0000000096000004\n[ 1457.123358] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 1457.128692] SET = 0, FnV = 0\n[ 1457.131764] EA = 0, S1PTW = 0\n[ 1457.134920] FSC = 0x04: level 0 translation fault\n[ 1457.139812] Data abort info:\n[ 1457.142707] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 1457.148196] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 1457.153256] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 1457.158563] user pgtable: 4k pages, 48-bit VAs, pgdp=00000001138b6000\n[ 1457.165000] [0000000000000040] pgd=0000000000000000, p4d=0000000000000000\n[ 1457.171792] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 1457.178045] Modules linked in: v4l2_jpeg wave6_vpu_ctrl(-) [last unloaded: mxc_jpeg_encdec]\n[ 1457.186383] CPU: 0 PID: 51938 Comm: kworker/0:3 Not tainted 6.6.36-gd23d64eea511 #66\n[ 1457.194112] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 1457.199236] Workqueue: pm pm_runtime_work\n[ 1457.203247] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1457.210188] pc : genpd_runtime_suspend+0x20/0x290\n[ 1457.214886] lr : __rpm_callback+0x48/0x1d8\n[ 1457.218968] sp : ffff80008250bc50\n[ 1457.222270] x29: ffff80008250bc50 x28: 0000000000000000 x27: 0000000000000000\n[ 1457.229394] x26: 0000000000000000 x25: 0000000000000008 x24: 00000000000f4240\n[ 1457.236518] x23: 0000000000000000 x22: ffff00008590f0e4 x21: 0000000000000008\n[ 1457.243642] x20: ffff80008099c434 x19: ffff00008590f000 x18: ffffffffffffffff\n[ 1457.250766] x17: 5300326563697665 x16: 645f676e696c6f6f x15: 63343a6d726f6674\n[ 1457.257890] x14: 0000000000000004 x13: 00000000000003a4 x12: 0000000000000002\n[ 1457.265014] x11: 0000000000000000 x10: 0000000000000a60 x9 : ffff80008250bbb0\n[ 1457.272138] x8 : ffff000092937200 x7 : ffff0003fdf6af80 x6 : 0000000000000000\n[ 1457.279262] x5 : 00000000410fd050 x4 : 0000000000200000 x3 : 0000000000000000\n[ 1457.286386] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff00008590f000\n[ 1457.293510] Call trace:\n[ 1457.295946] genpd_runtime_suspend+0x20/0x290\n[ 1457.300296] __rpm_callback+0x48/0x1d8\n[ 1457.304038] rpm_callback+0x6c/0x78\n[ 1457.307515] rpm_suspend+0x10c/0x570\n[ 1457.311077] pm_runtime_work+0xc4/0xc8\n[ 1457.314813] process_one_work+0x138/0x248\n[ 1457.318816] worker_thread+0x320/0x438\n[ 1457.322552] kthread+0x110/0x114\n[ 1457.325767] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56575",
"url": "https://www.suse.com/security/cve/CVE-2024-56575"
},
{
"category": "external",
"summary": "SUSE Bug 1235039 for CVE-2024-56575",
"url": "https://bugzilla.suse.com/1235039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56575"
},
{
"cve": "CVE-2024-56576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56576"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: tc358743: Fix crash in the probe error path when using polling\n\nIf an error occurs in the probe() function, we should remove the polling\ntimer that was alarmed earlier, otherwise the timer is called with\narguments that are already freed, which results in a crash.\n\n------------[ cut here ]------------\nWARNING: CPU: 3 PID: 0 at kernel/time/timer.c:1830 __run_timers+0x244/0x268\nModules linked in:\nCPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted 6.11.0 #226\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\npstate: 804000c9 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : __run_timers+0x244/0x268\nlr : __run_timers+0x1d4/0x268\nsp : ffffff80eff2baf0\nx29: ffffff80eff2bb50 x28: 7fffffffffffffff x27: ffffff80eff2bb00\nx26: ffffffc080f669c0 x25: ffffff80efef6bf0 x24: ffffff80eff2bb00\nx23: 0000000000000000 x22: dead000000000122 x21: 0000000000000000\nx20: ffffff80efef6b80 x19: ffffff80041c8bf8 x18: ffffffffffffffff\nx17: ffffffc06f146000 x16: ffffff80eff27dc0 x15: 000000000000003e\nx14: 0000000000000000 x13: 00000000000054da x12: 0000000000000000\nx11: 00000000000639c0 x10: 000000000000000c x9 : 0000000000000009\nx8 : ffffff80eff2cb40 x7 : ffffff80eff2cb40 x6 : ffffff8002bee480\nx5 : ffffffc080cb2220 x4 : ffffffc080cb2150 x3 : 00000000000f4240\nx2 : 0000000000000102 x1 : ffffff80eff2bb00 x0 : ffffff80041c8bf0\nCall trace:\n __run_timers+0x244/0x268\n timer_expire_remote+0x50/0x68\n tmigr_handle_remote+0x388/0x39c\n run_timer_softirq+0x38/0x44\n handle_softirqs+0x138/0x298\n __do_softirq+0x14/0x20\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0x9c/0xcc\n el1_interrupt+0x48/0xc0\n el1h_64_irq_handler+0x18/0x24\n el1h_64_irq+0x7c/0x80\n default_idle_call+0x34/0x68\n do_idle+0x23c/0x294\n cpu_startup_entry+0x38/0x3c\n secondary_start_kernel+0x128/0x160\n __secondary_switched+0xb8/0xbc\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56576",
"url": "https://www.suse.com/security/cve/CVE-2024-56576"
},
{
"category": "external",
"summary": "SUSE Bug 1235019 for CVE-2024-56576",
"url": "https://bugzilla.suse.com/1235019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56576"
},
{
"cve": "CVE-2024-56577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56577"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-jpeg: Fix null-ptr-deref during unload module\n\nThe workqueue should be destroyed in mtk_jpeg_core.c since commit\n09aea13ecf6f (\"media: mtk-jpeg: refactor some variables\"), otherwise\nthe below calltrace can be easily triggered.\n\n[ 677.862514] Unable to handle kernel paging request at virtual address dfff800000000023\n[ 677.863633] KASAN: null-ptr-deref in range [0x0000000000000118-0x000000000000011f]\n...\n[ 677.879654] CPU: 6 PID: 1071 Comm: modprobe Tainted: G O 6.8.12-mtk+gfa1a78e5d24b+ #17\n...\n[ 677.882838] pc : destroy_workqueue+0x3c/0x770\n[ 677.883413] lr : mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.884314] sp : ffff80008ad974f0\n[ 677.884744] x29: ffff80008ad974f0 x28: ffff0000d7115580 x27: ffff0000dd691070\n[ 677.885669] x26: ffff0000dd691408 x25: ffff8000844af3e0 x24: ffff80008ad97690\n[ 677.886592] x23: ffff0000e051d400 x22: ffff0000dd691010 x21: dfff800000000000\n[ 677.887515] x20: 0000000000000000 x19: 0000000000000000 x18: ffff800085397ac0\n[ 677.888438] x17: 0000000000000000 x16: ffff8000801b87c8 x15: 1ffff000115b2e10\n[ 677.889361] x14: 00000000f1f1f1f1 x13: 0000000000000000 x12: ffff7000115b2e4d\n[ 677.890285] x11: 1ffff000115b2e4c x10: ffff7000115b2e4c x9 : ffff80000aa43e90\n[ 677.891208] x8 : 00008fffeea4d1b4 x7 : ffff80008ad97267 x6 : 0000000000000001\n[ 677.892131] x5 : ffff80008ad97260 x4 : ffff7000115b2e4d x3 : 0000000000000000\n[ 677.893054] x2 : 0000000000000023 x1 : dfff800000000000 x0 : 0000000000000118\n[ 677.893977] Call trace:\n[ 677.894297] destroy_workqueue+0x3c/0x770\n[ 677.894826] mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.895677] devm_action_release+0x50/0x90\n[ 677.896211] release_nodes+0xe8/0x170\n[ 677.896688] devres_release_all+0xf8/0x178\n[ 677.897219] device_unbind_cleanup+0x24/0x170\n[ 677.897785] device_release_driver_internal+0x35c/0x480\n[ 677.898461] device_release_driver+0x20/0x38\n...\n[ 677.912665] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56577",
"url": "https://www.suse.com/security/cve/CVE-2024-56577"
},
{
"category": "external",
"summary": "SUSE Bug 1235112 for CVE-2024-56577",
"url": "https://bugzilla.suse.com/1235112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56577"
},
{
"cve": "CVE-2024-56578",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56578"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Set video drvdata before register video device\n\nThe video drvdata should be set before the video device is registered,\notherwise video_drvdata() may return NULL in the open() file ops, and led\nto oops.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56578",
"url": "https://www.suse.com/security/cve/CVE-2024-56578"
},
{
"category": "external",
"summary": "SUSE Bug 1235115 for CVE-2024-56578",
"url": "https://bugzilla.suse.com/1235115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56578"
},
{
"cve": "CVE-2024-56582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56582"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free in btrfs_encoded_read_endio()\n\nShinichiro reported the following use-after free that sometimes is\nhappening in our CI system when running fstests\u0027 btrfs/284 on a TCMU\nrunner device:\n\n BUG: KASAN: slab-use-after-free in lock_release+0x708/0x780\n Read of size 8 at addr ffff888106a83f18 by task kworker/u80:6/219\n\n CPU: 8 UID: 0 PID: 219 Comm: kworker/u80:6 Not tainted 6.12.0-rc6-kts+ #15\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6e/0xa0\n ? lock_release+0x708/0x780\n print_report+0x174/0x505\n ? lock_release+0x708/0x780\n ? __virt_addr_valid+0x224/0x410\n ? lock_release+0x708/0x780\n kasan_report+0xda/0x1b0\n ? lock_release+0x708/0x780\n ? __wake_up+0x44/0x60\n lock_release+0x708/0x780\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? lock_is_held_type+0x9a/0x110\n _raw_spin_unlock_irqrestore+0x1f/0x60\n __wake_up+0x44/0x60\n btrfs_encoded_read_endio+0x14b/0x190 [btrfs]\n btrfs_check_read_bio+0x8d9/0x1360 [btrfs]\n ? lock_release+0x1b0/0x780\n ? trace_lock_acquire+0x12f/0x1a0\n ? __pfx_btrfs_check_read_bio+0x10/0x10 [btrfs]\n ? process_one_work+0x7e3/0x1460\n ? lock_acquire+0x31/0xc0\n ? process_one_work+0x7e3/0x1460\n process_one_work+0x85c/0x1460\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x16c/0x240\n worker_thread+0x5e6/0xfc0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2c3/0x3a0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_encoded_read_regular_fill_pages+0x16c/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x4f/0x70\n kfree+0x143/0x490\n btrfs_encoded_read_regular_fill_pages+0x531/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n The buggy address belongs to the object at ffff888106a83f00\n which belongs to the cache kmalloc-rnd-07-96 of size 96\n The buggy address is located 24 bytes inside of\n freed 96-byte region [ffff888106a83f00, ffff888106a83f60)\n\n The buggy address belongs to the physical page:\n page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888106a83800 pfn:0x106a83\n flags: 0x17ffffc0000000(node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f5(slab)\n raw: 0017ffffc0000000 ffff888100053680 ffffea0004917200 0000000000000004\n raw: ffff888106a83800 0000000080200019 00000001f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888106a83e00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a83e80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n \u003effff888106a83f00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ^\n ffff888106a83f80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a84000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ==================================================================\n\nFurther analyzing the trace and \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56582",
"url": "https://www.suse.com/security/cve/CVE-2024-56582"
},
{
"category": "external",
"summary": "SUSE Bug 1235128 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "external",
"summary": "SUSE Bug 1235129 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56582"
},
{
"cve": "CVE-2024-56584",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56584"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/tctx: work around xa_store() allocation error issue\n\nsyzbot triggered the following WARN_ON:\n\nWARNING: CPU: 0 PID: 16 at io_uring/tctx.c:51 __io_uring_free+0xfa/0x140 io_uring/tctx.c:51\n\nwhich is the\n\nWARN_ON_ONCE(!xa_empty(\u0026tctx-\u003exa));\n\nsanity check in __io_uring_free() when a io_uring_task is going through\nits final put. The syzbot test case includes injecting memory allocation\nfailures, and it very much looks like xa_store() can fail one of its\nmemory allocations and end up with -\u003ehead being non-NULL even though no\nentries exist in the xarray.\n\nUntil this issue gets sorted out, work around it by attempting to\niterate entries in our xarray, and WARN_ON_ONCE() if one is found.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56584",
"url": "https://www.suse.com/security/cve/CVE-2024-56584"
},
{
"category": "external",
"summary": "SUSE Bug 1235117 for CVE-2024-56584",
"url": "https://bugzilla.suse.com/1235117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56584"
},
{
"cve": "CVE-2024-56587",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56587"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nleds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex\n\nThere is NULL pointer issue observed if from Process A where hid device\nbeing added which results in adding a led_cdev addition and later a\nanother call to access of led_cdev attribute from Process B can result\nin NULL pointer issue.\n\nUse mutex led_cdev-\u003eled_access to protect access to led-\u003ecdev and its\nattribute inside brightness_show() and max_brightness_show() and also\nupdate the comment for mutex that it should be used to protect the led\nclass device fields.\n\n\tProcess A \t\t\t\tProcess B\n\n kthread+0x114\n worker_thread+0x244\n process_scheduled_works+0x248\n uhid_device_add_worker+0x24\n hid_add_device+0x120\n device_add+0x268\n bus_probe_device+0x94\n device_initial_probe+0x14\n __device_attach+0xfc\n bus_for_each_drv+0x10c\n __device_attach_driver+0x14c\n driver_probe_device+0x3c\n __driver_probe_device+0xa0\n really_probe+0x190\n hid_device_probe+0x130\n ps_probe+0x990\n ps_led_register+0x94\n devm_led_classdev_register_ext+0x58\n led_classdev_register_ext+0x1f8\n device_create_with_groups+0x48\n device_create_groups_vargs+0xc8\n device_add+0x244\n kobject_uevent+0x14\n kobject_uevent_env[jt]+0x224\n mutex_unlock[jt]+0xc4\n __mutex_unlock_slowpath+0xd4\n wake_up_q+0x70\n try_to_wake_up[jt]+0x48c\n preempt_schedule_common+0x28\n __schedule+0x628\n __switch_to+0x174\n\t\t\t\t\t\tel0t_64_sync+0x1a8/0x1ac\n\t\t\t\t\t\tel0t_64_sync_handler+0x68/0xbc\n\t\t\t\t\t\tel0_svc+0x38/0x68\n\t\t\t\t\t\tdo_el0_svc+0x1c/0x28\n\t\t\t\t\t\tel0_svc_common+0x80/0xe0\n\t\t\t\t\t\tinvoke_syscall+0x58/0x114\n\t\t\t\t\t\t__arm64_sys_read+0x1c/0x2c\n\t\t\t\t\t\tksys_read+0x78/0xe8\n\t\t\t\t\t\tvfs_read+0x1e0/0x2c8\n\t\t\t\t\t\tkernfs_fop_read_iter+0x68/0x1b4\n\t\t\t\t\t\tseq_read_iter+0x158/0x4ec\n\t\t\t\t\t\tkernfs_seq_show+0x44/0x54\n\t\t\t\t\t\tsysfs_kf_seq_show+0xb4/0x130\n\t\t\t\t\t\tdev_attr_show+0x38/0x74\n\t\t\t\t\t\tbrightness_show+0x20/0x4c\n\t\t\t\t\t\tdualshock4_led_get_brightness+0xc/0x74\n\n[ 3313.874295][ T4013] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000060\n[ 3313.874301][ T4013] Mem abort info:\n[ 3313.874303][ T4013] ESR = 0x0000000096000006\n[ 3313.874305][ T4013] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 3313.874307][ T4013] SET = 0, FnV = 0\n[ 3313.874309][ T4013] EA = 0, S1PTW = 0\n[ 3313.874311][ T4013] FSC = 0x06: level 2 translation fault\n[ 3313.874313][ T4013] Data abort info:\n[ 3313.874314][ T4013] ISV = 0, ISS = 0x00000006, ISS2 = 0x00000000\n[ 3313.874316][ T4013] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 3313.874318][ T4013] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 3313.874320][ T4013] user pgtable: 4k pages, 39-bit VAs, pgdp=00000008f2b0a000\n..\n\n[ 3313.874332][ T4013] Dumping ftrace buffer:\n[ 3313.874334][ T4013] (ftrace buffer empty)\n..\n..\n[ dd3313.874639][ T4013] CPU: 6 PID: 4013 Comm: InputReader\n[ 3313.874648][ T4013] pc : dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874653][ T4013] lr : led_update_brightness+0x38/0x60\n[ 3313.874656][ T4013] sp : ffffffc0b910bbd0\n..\n..\n[ 3313.874685][ T4013] Call trace:\n[ 3313.874687][ T4013] dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874690][ T4013] brightness_show+0x20/0x4c\n[ 3313.874692][ T4013] dev_attr_show+0x38/0x74\n[ 3313.874696][ T4013] sysfs_kf_seq_show+0xb4/0x130\n[ 3313.874700][ T4013] kernfs_seq_show+0x44/0x54\n[ 3313.874703][ T4013] seq_read_iter+0x158/0x4ec\n[ 3313.874705][ T4013] kernfs_fop_read_iter+0x68/0x1b4\n[ 3313.874708][ T4013] vfs_read+0x1e0/0x2c8\n[ 3313.874711][ T4013] ksys_read+0x78/0xe8\n[ 3313.874714][ T4013] __arm64_sys_read+0x1c/0x2c\n[ 3313.874718][ T4013] invoke_syscall+0x58/0x114\n[ 3313.874721][ T4013] el0_svc_common+0x80/0xe0\n[ 3313.874724][ T4013] do_el0_svc+0x1c/0x28\n[ 3313.874727][ T4013] el0_svc+0x38/0x68\n[ 3313.874730][ T4013] el0t_64_sync_handler+0x68/0xbc\n[ 3313.874732][ T4013] el0t_64_sync+0x1a8/0x1ac",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56587",
"url": "https://www.suse.com/security/cve/CVE-2024-56587"
},
{
"category": "external",
"summary": "SUSE Bug 1235125 for CVE-2024-56587",
"url": "https://bugzilla.suse.com/1235125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56587"
},
{
"cve": "CVE-2024-56588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56588"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Create all dump files during debugfs initialization\n\nFor the current debugfs of hisi_sas, after user triggers dump, the\ndriver allocate memory space to save the register information and create\ndebugfs files to display the saved information. In this process, the\ndebugfs files created after each dump.\n\nTherefore, when the dump is triggered while the driver is unbind, the\nfollowing hang occurs:\n\n[67840.853907] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000a0\n[67840.862947] Mem abort info:\n[67840.865855] ESR = 0x0000000096000004\n[67840.869713] EC = 0x25: DABT (current EL), IL = 32 bits\n[67840.875125] SET = 0, FnV = 0\n[67840.878291] EA = 0, S1PTW = 0\n[67840.881545] FSC = 0x04: level 0 translation fault\n[67840.886528] Data abort info:\n[67840.889524] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[67840.895117] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[67840.900284] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[67840.905709] user pgtable: 4k pages, 48-bit VAs, pgdp=0000002803a1f000\n[67840.912263] [00000000000000a0] pgd=0000000000000000, p4d=0000000000000000\n[67840.919177] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[67840.996435] pstate: 80400009 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[67841.003628] pc : down_write+0x30/0x98\n[67841.007546] lr : start_creating.part.0+0x60/0x198\n[67841.012495] sp : ffff8000b979ba20\n[67841.016046] x29: ffff8000b979ba20 x28: 0000000000000010 x27: 0000000000024b40\n[67841.023412] x26: 0000000000000012 x25: ffff20202b355ae8 x24: ffff20202b35a8c8\n[67841.030779] x23: ffffa36877928208 x22: ffffa368b4972240 x21: ffff8000b979bb18\n[67841.038147] x20: ffff00281dc1e3c0 x19: fffffffffffffffe x18: 0000000000000020\n[67841.045515] x17: 0000000000000000 x16: ffffa368b128a530 x15: ffffffffffffffff\n[67841.052888] x14: ffff8000b979bc18 x13: ffffffffffffffff x12: ffff8000b979bb18\n[67841.060263] x11: 0000000000000000 x10: 0000000000000000 x9 : ffffa368b1289b18\n[67841.067640] x8 : 0000000000000012 x7 : 0000000000000000 x6 : 00000000000003a9\n[67841.075014] x5 : 0000000000000000 x4 : ffff002818c5cb00 x3 : 0000000000000001\n[67841.082388] x2 : 0000000000000000 x1 : ffff002818c5cb00 x0 : 00000000000000a0\n[67841.089759] Call trace:\n[67841.092456] down_write+0x30/0x98\n[67841.096017] start_creating.part.0+0x60/0x198\n[67841.100613] debugfs_create_dir+0x48/0x1f8\n[67841.104950] debugfs_create_files_v3_hw+0x88/0x348 [hisi_sas_v3_hw]\n[67841.111447] debugfs_snapshot_regs_v3_hw+0x708/0x798 [hisi_sas_v3_hw]\n[67841.118111] debugfs_trigger_dump_v3_hw_write+0x9c/0x120 [hisi_sas_v3_hw]\n[67841.125115] full_proxy_write+0x68/0xc8\n[67841.129175] vfs_write+0xd8/0x3f0\n[67841.132708] ksys_write+0x70/0x108\n[67841.136317] __arm64_sys_write+0x24/0x38\n[67841.140440] invoke_syscall+0x50/0x128\n[67841.144385] el0_svc_common.constprop.0+0xc8/0xf0\n[67841.149273] do_el0_svc+0x24/0x38\n[67841.152773] el0_svc+0x38/0xd8\n[67841.156009] el0t_64_sync_handler+0xc0/0xc8\n[67841.160361] el0t_64_sync+0x1a4/0x1a8\n[67841.164189] Code: b9000882 d2800002 d2800023 f9800011 (c85ffc05)\n[67841.170443] ---[ end trace 0000000000000000 ]---\n\nTo fix this issue, create all directories and files during debugfs\ninitialization. In this way, the driver only needs to allocate memory\nspace to save information each time the user triggers dumping.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56588",
"url": "https://www.suse.com/security/cve/CVE-2024-56588"
},
{
"category": "external",
"summary": "SUSE Bug 1235123 for CVE-2024-56588",
"url": "https://bugzilla.suse.com/1235123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56588"
},
{
"cve": "CVE-2024-56589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Add cond_resched() for no forced preemption model\n\nFor no forced preemption model kernel, in the scenario where the\nexpander is connected to 12 high performance SAS SSDs, the following\ncall trace may occur:\n\n[ 214.409199][ C240] watchdog: BUG: soft lockup - CPU#240 stuck for 22s! [irq/149-hisi_sa:3211]\n[ 214.568533][ C240] pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--)\n[ 214.575224][ C240] pc : fput_many+0x8c/0xdc\n[ 214.579480][ C240] lr : fput+0x1c/0xf0\n[ 214.583302][ C240] sp : ffff80002de2b900\n[ 214.587298][ C240] x29: ffff80002de2b900 x28: ffff1082aa412000\n[ 214.593291][ C240] x27: ffff3062a0348c08 x26: ffff80003a9f6000\n[ 214.599284][ C240] x25: ffff1062bbac5c40 x24: 0000000000001000\n[ 214.605277][ C240] x23: 000000000000000a x22: 0000000000000001\n[ 214.611270][ C240] x21: 0000000000001000 x20: 0000000000000000\n[ 214.617262][ C240] x19: ffff3062a41ae580 x18: 0000000000010000\n[ 214.623255][ C240] x17: 0000000000000001 x16: ffffdb3a6efe5fc0\n[ 214.629248][ C240] x15: ffffffffffffffff x14: 0000000003ffffff\n[ 214.635241][ C240] x13: 000000000000ffff x12: 000000000000029c\n[ 214.641234][ C240] x11: 0000000000000006 x10: ffff80003a9f7fd0\n[ 214.647226][ C240] x9 : ffffdb3a6f0482fc x8 : 0000000000000001\n[ 214.653219][ C240] x7 : 0000000000000002 x6 : 0000000000000080\n[ 214.659212][ C240] x5 : ffff55480ee9b000 x4 : fffffde7f94c6554\n[ 214.665205][ C240] x3 : 0000000000000002 x2 : 0000000000000020\n[ 214.671198][ C240] x1 : 0000000000000021 x0 : ffff3062a41ae5b8\n[ 214.677191][ C240] Call trace:\n[ 214.680320][ C240] fput_many+0x8c/0xdc\n[ 214.684230][ C240] fput+0x1c/0xf0\n[ 214.687707][ C240] aio_complete_rw+0xd8/0x1fc\n[ 214.692225][ C240] blkdev_bio_end_io+0x98/0x140\n[ 214.696917][ C240] bio_endio+0x160/0x1bc\n[ 214.701001][ C240] blk_update_request+0x1c8/0x3bc\n[ 214.705867][ C240] scsi_end_request+0x3c/0x1f0\n[ 214.710471][ C240] scsi_io_completion+0x7c/0x1a0\n[ 214.715249][ C240] scsi_finish_command+0x104/0x140\n[ 214.720200][ C240] scsi_softirq_done+0x90/0x180\n[ 214.724892][ C240] blk_mq_complete_request+0x5c/0x70\n[ 214.730016][ C240] scsi_mq_done+0x48/0xac\n[ 214.734194][ C240] sas_scsi_task_done+0xbc/0x16c [libsas]\n[ 214.739758][ C240] slot_complete_v3_hw+0x260/0x760 [hisi_sas_v3_hw]\n[ 214.746185][ C240] cq_thread_v3_hw+0xbc/0x190 [hisi_sas_v3_hw]\n[ 214.752179][ C240] irq_thread_fn+0x34/0xa4\n[ 214.756435][ C240] irq_thread+0xc4/0x130\n[ 214.760520][ C240] kthread+0x108/0x13c\n[ 214.764430][ C240] ret_from_fork+0x10/0x18\n\nThis is because in the hisi_sas driver, both the hardware interrupt\nhandler and the interrupt thread are executed on the same CPU. In the\nperformance test scenario, function irq_wait_for_interrupt() will always\nreturn 0 if lots of interrupts occurs and the CPU will be continuously\nconsumed. As a result, the CPU cannot run the watchdog thread. When the\nwatchdog time exceeds the specified time, call trace occurs.\n\nTo fix it, add cond_resched() to execute the watchdog thread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56589",
"url": "https://www.suse.com/security/cve/CVE-2024-56589"
},
{
"category": "external",
"summary": "SUSE Bug 1235241 for CVE-2024-56589",
"url": "https://bugzilla.suse.com/1235241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56589"
},
{
"cve": "CVE-2024-56590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56590"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_core: Fix not checking skb length on hci_acldata_packet\n\nThis fixes not checking if skb really contains an ACL header otherwise\nthe code may attempt to access some uninitilized/invalid memory past the\nvalid skb-\u003edata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56590",
"url": "https://www.suse.com/security/cve/CVE-2024-56590"
},
{
"category": "external",
"summary": "SUSE Bug 1235038 for CVE-2024-56590",
"url": "https://bugzilla.suse.com/1235038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56590"
},
{
"cve": "CVE-2024-56593",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56593"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw()\n\nThis patch fixes a NULL pointer dereference bug in brcmfmac that occurs\nwhen a high \u0027sd_sgentry_align\u0027 value applies (e.g. 512) and a lot of queued SKBs\nare sent from the pkt queue.\n\nThe problem is the number of entries in the pre-allocated sgtable, it is\nnents = max(rxglom_size, txglom_size) + max(rxglom_size, txglom_size) \u003e\u003e 4 + 1.\nGiven the default [rt]xglom_size=32 it\u0027s actually 35 which is too small.\nWorst case, the pkt queue can end up with 64 SKBs. This occurs when a new SKB\nis added for each original SKB if tailroom isn\u0027t enough to hold tail_pad.\nAt least one sg entry is needed for each SKB. So, eventually the \"skb_queue_walk loop\"\nin brcmf_sdiod_sglist_rw may run out of sg entries. This makes sg_next return\nNULL and this causes the oops.\n\nThe patch sets nents to max(rxglom_size, txglom_size) * 2 to be able handle\nthe worst-case.\nBtw. this requires only 64-35=29 * 16 (or 20 if CONFIG_NEED_SG_DMA_LENGTH) = 464\nadditional bytes of memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56593",
"url": "https://www.suse.com/security/cve/CVE-2024-56593"
},
{
"category": "external",
"summary": "SUSE Bug 1235252 for CVE-2024-56593",
"url": "https://bugzilla.suse.com/1235252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56593"
},
{
"cve": "CVE-2024-56594",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56594"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: set the right AMDGPU sg segment limitation\n\nThe driver needs to set the correct max_segment_size;\notherwise debug_dma_map_sg() will complain about the\nover-mapping of the AMDGPU sg length as following:\n\nWARNING: CPU: 6 PID: 1964 at kernel/dma/debug.c:1178 debug_dma_map_sg+0x2dc/0x370\n[ 364.049444] Modules linked in: veth amdgpu(OE) amdxcp drm_exec gpu_sched drm_buddy drm_ttm_helper ttm(OE) drm_suballoc_helper drm_display_helper drm_kms_helper i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc amd_atl intel_rapl_msr intel_rapl_common sunrpc sch_fq_codel snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd binfmt_misc snd_hda_codec snd_pci_acp6x snd_hda_core snd_acp_config snd_hwdep snd_soc_acpi kvm_amd snd_pcm kvm snd_seq_midi snd_seq_midi_event crct10dif_pclmul ghash_clmulni_intel sha512_ssse3 snd_rawmidi sha256_ssse3 sha1_ssse3 aesni_intel snd_seq nls_iso8859_1 crypto_simd snd_seq_device cryptd snd_timer rapl input_leds snd\n[ 364.049532] ipmi_devintf wmi_bmof ccp serio_raw k10temp sp5100_tco soundcore ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport drm efi_pstore ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 364.049576] CPU: 6 PID: 1964 Comm: rocminfo Tainted: G OE 6.10.0-custom #492\n[ 364.049579] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 364.049582] RIP: 0010:debug_dma_map_sg+0x2dc/0x370\n[ 364.049585] Code: 89 4d b8 e8 36 b1 86 00 8b 4d b8 48 8b 55 b0 44 8b 45 a8 4c 8b 4d a0 48 89 c6 48 c7 c7 00 4b 74 bc 4c 89 4d b8 e8 b4 73 f3 ff \u003c0f\u003e 0b 4c 8b 4d b8 8b 15 c8 2c b8 01 85 d2 0f 85 ee fd ff ff 8b 05\n[ 364.049588] RSP: 0018:ffff9ca600b57ac0 EFLAGS: 00010286\n[ 364.049590] RAX: 0000000000000000 RBX: ffff88b7c132b0c8 RCX: 0000000000000027\n[ 364.049592] RDX: ffff88bb0f521688 RSI: 0000000000000001 RDI: ffff88bb0f521680\n[ 364.049594] RBP: ffff9ca600b57b20 R08: 000000000000006f R09: ffff9ca600b57930\n[ 364.049596] R10: ffff9ca600b57928 R11: ffffffffbcb46328 R12: 0000000000000000\n[ 364.049597] R13: 0000000000000001 R14: ffff88b7c19c0700 R15: ffff88b7c9059800\n[ 364.049599] FS: 00007fb2d3516e80(0000) GS:ffff88bb0f500000(0000) knlGS:0000000000000000\n[ 364.049601] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 364.049603] CR2: 000055610bd03598 CR3: 00000001049f6000 CR4: 0000000000350ef0\n[ 364.049605] Call Trace:\n[ 364.049607] \u003cTASK\u003e\n[ 364.049609] ? show_regs+0x6d/0x80\n[ 364.049614] ? __warn+0x8c/0x140\n[ 364.049618] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049621] ? report_bug+0x193/0x1a0\n[ 364.049627] ? handle_bug+0x46/0x80\n[ 364.049631] ? exc_invalid_op+0x1d/0x80\n[ 364.049635] ? asm_exc_invalid_op+0x1f/0x30\n[ 364.049642] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049647] __dma_map_sg_attrs+0x90/0xe0\n[ 364.049651] dma_map_sgtable+0x25/0x40\n[ 364.049654] amdgpu_bo_move+0x59a/0x850 [amdgpu]\n[ 364.049935] ? srso_return_thunk+0x5/0x5f\n[ 364.049939] ? amdgpu_ttm_tt_populate+0x5d/0xc0 [amdgpu]\n[ 364.050095] ttm_bo_handle_move_mem+0xc3/0x180 [ttm]\n[ 364.050103] ttm_bo_validate+0xc1/0x160 [ttm]\n[ 364.050108] ? amdgpu_ttm_tt_get_user_pages+0xe5/0x1b0 [amdgpu]\n[ 364.050263] amdgpu_amdkfd_gpuvm_alloc_memory_of_gpu+0xa12/0xc90 [amdgpu]\n[ 364.050473] kfd_ioctl_alloc_memory_of_gpu+0x16b/0x3b0 [amdgpu]\n[ 364.050680] kfd_ioctl+0x3c2/0x530 [amdgpu]\n[ 364.050866] ? __pfx_kfd_ioctl_alloc_memory_of_gpu+0x10/0x10 [amdgpu]\n[ 364.05105\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56594",
"url": "https://www.suse.com/security/cve/CVE-2024-56594"
},
{
"category": "external",
"summary": "SUSE Bug 1235413 for CVE-2024-56594",
"url": "https://bugzilla.suse.com/1235413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56594"
},
{
"cve": "CVE-2024-56595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56595"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: add a check to prevent array-index-out-of-bounds in dbAdjTree\n\nWhen the value of lp is 0 at the beginning of the for loop, it will\nbecome negative in the next assignment and we should bail out.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56595",
"url": "https://www.suse.com/security/cve/CVE-2024-56595"
},
{
"category": "external",
"summary": "SUSE Bug 1235410 for CVE-2024-56595",
"url": "https://bugzilla.suse.com/1235410"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56595"
},
{
"cve": "CVE-2024-56596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix array-index-out-of-bounds in jfs_readdir\n\nThe stbl might contain some invalid values. Added a check to\nreturn error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56596",
"url": "https://www.suse.com/security/cve/CVE-2024-56596"
},
{
"category": "external",
"summary": "SUSE Bug 1235458 for CVE-2024-56596",
"url": "https://bugzilla.suse.com/1235458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56596"
},
{
"cve": "CVE-2024-56597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56597"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix shift-out-of-bounds in dbSplit\n\nWhen dmt_budmin is less than zero, it causes errors\nin the later stages. Added a check to return an error beforehand\nin dbAllocCtl itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56597",
"url": "https://www.suse.com/security/cve/CVE-2024-56597"
},
{
"category": "external",
"summary": "SUSE Bug 1235222 for CVE-2024-56597",
"url": "https://bugzilla.suse.com/1235222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56597"
},
{
"cve": "CVE-2024-56598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56598"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: array-index-out-of-bounds fix in dtReadFirst\n\nThe value of stbl can be sometimes out of bounds due\nto a bad filesystem. Added a check with appopriate return\nof error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56598",
"url": "https://www.suse.com/security/cve/CVE-2024-56598"
},
{
"category": "external",
"summary": "SUSE Bug 1235220 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "external",
"summary": "SUSE Bug 1235221 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56598"
},
{
"cve": "CVE-2024-56599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56599"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: avoid NULL pointer error during sdio remove\n\nWhen running \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will free sdio\nworkqueue by destroy_workqueue(). But if CONFIG_INIT_ON_FREE_DEFAULT_ON\nis set to yes, kernel panic will happen:\nCall trace:\n destroy_workqueue+0x1c/0x258\n ath10k_sdio_remove+0x84/0x94\n sdio_bus_remove+0x50/0x16c\n device_release_driver_internal+0x188/0x25c\n device_driver_detach+0x20/0x2c\n\nThis is because during \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will call\nath10k_core_destroy() before destroy_workqueue(). wiphy_dev_release()\nwill finally be called in ath10k_core_destroy(). This function will free\nstruct cfg80211_registered_device *rdev and all its members, including\nwiphy, dev and the pointer of sdio workqueue. Then the pointer of sdio\nworkqueue will be set to NULL due to CONFIG_INIT_ON_FREE_DEFAULT_ON.\n\nAfter device release, destroy_workqueue() will use NULL pointer then the\nkernel panic happen.\n\nCall trace:\nath10k_sdio_remove\n -\u003eath10k_core_unregister\n \u2026\u2026\n -\u003eath10k_core_stop\n -\u003eath10k_hif_stop\n -\u003eath10k_sdio_irq_disable\n -\u003eath10k_hif_power_down\n -\u003edel_timer_sync(\u0026ar_sdio-\u003esleep_timer)\n -\u003eath10k_core_destroy\n -\u003eath10k_mac_destroy\n -\u003eieee80211_free_hw\n -\u003ewiphy_free\n \u2026\u2026\n -\u003ewiphy_dev_release\n -\u003edestroy_workqueue\n\nNeed to call destroy_workqueue() before ath10k_core_destroy(), free\nthe work queue buffer first and then free pointer of work queue by\nath10k_core_destroy(). This order matches the error path order in\nath10k_sdio_probe().\n\nNo work will be queued on sdio workqueue between it is destroyed and\nath10k_core_destroy() is called. Based on the call_stack above, the\nreason is:\nOnly ath10k_sdio_sleep_timer_handler(), ath10k_sdio_hif_tx_sg() and\nath10k_sdio_irq_disable() will queue work on sdio workqueue.\nSleep timer will be deleted before ath10k_core_destroy() in\nath10k_hif_power_down().\nath10k_sdio_irq_disable() only be called in ath10k_hif_stop().\nath10k_core_unregister() will call ath10k_hif_power_down() to stop hif\nbus, so ath10k_sdio_hif_tx_sg() won\u0027t be called anymore.\n\nTested-on: QCA6174 hw3.2 SDIO WLAN.RMH.4.4.1-00189",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56599",
"url": "https://www.suse.com/security/cve/CVE-2024-56599"
},
{
"category": "external",
"summary": "SUSE Bug 1235138 for CVE-2024-56599",
"url": "https://bugzilla.suse.com/1235138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56599"
},
{
"cve": "CVE-2024-5660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-5660"
}
],
"notes": [
{
"category": "general",
"text": "Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 may permit bypass of Stage-2 translation and/or GPT protection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-5660",
"url": "https://www.suse.com/security/cve/CVE-2024-5660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "critical"
}
],
"title": "CVE-2024-5660"
},
{
"cve": "CVE-2024-56600",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56600"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: inet6: do not leave a dangling sk pointer in inet6_create()\n\nsock_init_data() attaches the allocated sk pointer to the provided sock\nobject. If inet6_create() fails later, the sk object is released, but the\nsock object retains the dangling sk pointer, which may cause use-after-free\nlater.\n\nClear the sock sk pointer on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56600",
"url": "https://www.suse.com/security/cve/CVE-2024-56600"
},
{
"category": "external",
"summary": "SUSE Bug 1235217 for CVE-2024-56600",
"url": "https://bugzilla.suse.com/1235217"
},
{
"category": "external",
"summary": "SUSE Bug 1235218 for CVE-2024-56600",
"url": "https://bugzilla.suse.com/1235218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56600"
},
{
"cve": "CVE-2024-56601",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56601"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: inet: do not leave a dangling sk pointer in inet_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If inet_create() fails later, the sk object is freed, but the\nsock object retains the dangling pointer, which may create use-after-free\nlater.\n\nClear the sk pointer in the sock object on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56601",
"url": "https://www.suse.com/security/cve/CVE-2024-56601"
},
{
"category": "external",
"summary": "SUSE Bug 1235230 for CVE-2024-56601",
"url": "https://bugzilla.suse.com/1235230"
},
{
"category": "external",
"summary": "SUSE Bug 1235231 for CVE-2024-56601",
"url": "https://bugzilla.suse.com/1235231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56601"
},
{
"cve": "CVE-2024-56602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56602"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ieee802154: do not leave a dangling sk pointer in ieee802154_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If ieee802154_create() fails later, the allocated sk object is\nfreed, but the dangling pointer remains in the provided sock object, which\nmay allow use-after-free.\n\nClear the sk pointer in the sock object on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56602",
"url": "https://www.suse.com/security/cve/CVE-2024-56602"
},
{
"category": "external",
"summary": "SUSE Bug 1235521 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "external",
"summary": "SUSE Bug 1235522 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235522"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56602"
},
{
"cve": "CVE-2024-56603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56603"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: af_can: do not leave a dangling sk pointer in can_create()\n\nOn error can_create() frees the allocated sk object, but sock_init_data()\nhas already attached it to the provided sock object. This will leave a\ndangling sk pointer in the sock object and may cause use-after-free later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56603",
"url": "https://www.suse.com/security/cve/CVE-2024-56603"
},
{
"category": "external",
"summary": "SUSE Bug 1235415 for CVE-2024-56603",
"url": "https://bugzilla.suse.com/1235415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56603"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56606"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_packet: avoid erroring out after sock_init_data() in packet_create()\n\nAfter sock_init_data() the allocated sk object is attached to the provided\nsock object. On error, packet_create() frees the sk object leaving the\ndangling pointer in the sock object on return. Some other code may try\nto use this pointer and cause use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56606",
"url": "https://www.suse.com/security/cve/CVE-2024-56606"
},
{
"category": "external",
"summary": "SUSE Bug 1235417 for CVE-2024-56606",
"url": "https://bugzilla.suse.com/1235417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56606"
},
{
"cve": "CVE-2024-56607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56607"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask()\n\nWhen I try to manually set bitrates:\n\niw wlan0 set bitrates legacy-2.4 1\n\nI get sleeping from invalid context error, see below. Fix that by switching to\nuse recently introduced ieee80211_iterate_stations_mtx().\n\nDo note that WCN6855 firmware is still crashing, I\u0027m not sure if that firmware\neven supports bitrate WMI commands and should we consider disabling\nath12k_mac_op_set_bitrate_mask() for WCN6855? But that\u0027s for another patch.\n\nBUG: sleeping function called from invalid context at drivers/net/wireless/ath/ath12k/wmi.c:420\nin_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 2236, name: iw\npreempt_count: 0, expected: 0\nRCU nest depth: 1, expected: 0\n3 locks held by iw/2236:\n #0: ffffffffabc6f1d8 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40\n #1: ffff888138410810 (\u0026rdev-\u003ewiphy.mtx){+.+.}-{3:3}, at: nl80211_pre_doit+0x54d/0x800 [cfg80211]\n #2: ffffffffab2cfaa0 (rcu_read_lock){....}-{1:2}, at: ieee80211_iterate_stations_atomic+0x2f/0x200 [mac80211]\nCPU: 3 UID: 0 PID: 2236 Comm: iw Not tainted 6.11.0-rc7-wt-ath+ #1772\nHardware name: Intel(R) Client Systems NUC8i7HVK/NUC8i7HVB, BIOS HNKBLi70.86A.0067.2021.0528.1339 05/28/2021\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xa4/0xe0\n dump_stack+0x10/0x20\n __might_resched+0x363/0x5a0\n ? __alloc_skb+0x165/0x340\n __might_sleep+0xad/0x160\n ath12k_wmi_cmd_send+0xb1/0x3d0 [ath12k]\n ? ath12k_wmi_init_wcn7850+0xa40/0xa40 [ath12k]\n ? __netdev_alloc_skb+0x45/0x7b0\n ? __asan_memset+0x39/0x40\n ? ath12k_wmi_alloc_skb+0xf0/0x150 [ath12k]\n ? reacquire_held_locks+0x4d0/0x4d0\n ath12k_wmi_set_peer_param+0x340/0x5b0 [ath12k]\n ath12k_mac_disable_peer_fixed_rate+0xa3/0x110 [ath12k]\n ? ath12k_mac_vdev_stop+0x4f0/0x4f0 [ath12k]\n ieee80211_iterate_stations_atomic+0xd4/0x200 [mac80211]\n ath12k_mac_op_set_bitrate_mask+0x5d2/0x1080 [ath12k]\n ? ath12k_mac_vif_chan+0x320/0x320 [ath12k]\n drv_set_bitrate_mask+0x267/0x470 [mac80211]\n ieee80211_set_bitrate_mask+0x4cc/0x8a0 [mac80211]\n ? __this_cpu_preempt_check+0x13/0x20\n nl80211_set_tx_bitrate_mask+0x2bc/0x530 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? trace_contention_end+0xef/0x140\n ? rtnl_unlock+0x9/0x10\n ? nl80211_pre_doit+0x557/0x800 [cfg80211]\n genl_family_rcv_msg_doit+0x1f0/0x2e0\n ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250\n ? ns_capable+0x57/0xd0\n genl_family_rcv_msg+0x34c/0x600\n ? genl_family_rcv_msg_dumpit+0x310/0x310\n ? __lock_acquire+0xc62/0x1de0\n ? he_set_mcs_mask.isra.0+0x8d0/0x8d0 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? cfg80211_external_auth_request+0x690/0x690 [cfg80211]\n genl_rcv_msg+0xa0/0x130\n netlink_rcv_skb+0x14c/0x400\n ? genl_family_rcv_msg+0x600/0x600\n ? netlink_ack+0xd70/0xd70\n ? rwsem_optimistic_spin+0x4f0/0x4f0\n ? genl_rcv+0x14/0x40\n ? down_read_killable+0x580/0x580\n ? netlink_deliver_tap+0x13e/0x350\n ? __this_cpu_preempt_check+0x13/0x20\n genl_rcv+0x23/0x40\n netlink_unicast+0x45e/0x790\n ? netlink_attachskb+0x7f0/0x7f0\n netlink_sendmsg+0x7eb/0xdb0\n ? netlink_unicast+0x790/0x790\n ? __this_cpu_preempt_check+0x13/0x20\n ? selinux_socket_sendmsg+0x31/0x40\n ? netlink_unicast+0x790/0x790\n __sock_sendmsg+0xc9/0x160\n ____sys_sendmsg+0x620/0x990\n ? kernel_sendmsg+0x30/0x30\n ? __copy_msghdr+0x410/0x410\n ? __kasan_check_read+0x11/0x20\n ? mark_lock+0xe6/0x1470\n ___sys_sendmsg+0xe9/0x170\n ? copy_msghdr_from_user+0x120/0x120\n ? __lock_acquire+0xc62/0x1de0\n ? do_fault_around+0x2c6/0x4e0\n ? do_user_addr_fault+0x8c1/0xde0\n ? reacquire_held_locks+0x220/0x4d0\n ? do_user_addr_fault+0x8c1/0xde0\n ? __kasan_check_read+0x11/0x20\n ? __fdget+0x4e/0x1d0\n ? sockfd_lookup_light+0x1a/0x170\n __sys_sendmsg+0xd2/0x180\n ? __sys_sendmsg_sock+0x20/0x20\n ? reacquire_held_locks+0x4d0/0x4d0\n ? debug_smp_processor_id+0x17/0x20\n __x64_sys_sendmsg+0x72/0xb0\n ? lockdep_hardirqs_on+0x7d/0x100\n x64_sys_call+0x894/0x9f0\n do_syscall_64+0x64/0x130\n entry_SYSCALL_64_after_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56607",
"url": "https://www.suse.com/security/cve/CVE-2024-56607"
},
{
"category": "external",
"summary": "SUSE Bug 1235423 for CVE-2024-56607",
"url": "https://bugzilla.suse.com/1235423"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56607"
},
{
"cve": "CVE-2024-56608",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56608"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix out-of-bounds access in \u0027dcn21_link_encoder_create\u0027\n\nAn issue was identified in the dcn21_link_encoder_create function where\nan out-of-bounds access could occur when the hpd_source index was used\nto reference the link_enc_hpd_regs array. This array has a fixed size\nand the index was not being checked against the array\u0027s bounds before\naccessing it.\n\nThis fix adds a conditional check to ensure that the hpd_source index is\nwithin the valid range of the link_enc_hpd_regs array. If the index is\nout of bounds, the function now returns NULL to prevent undefined\nbehavior.\n\nReferences:\n\n[ 65.920507] ------------[ cut here ]------------\n[ 65.920510] UBSAN: array-index-out-of-bounds in drivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn21/dcn21_resource.c:1312:29\n[ 65.920519] index 7 is out of range for type \u0027dcn10_link_enc_hpd_registers [5]\u0027\n[ 65.920523] CPU: 3 PID: 1178 Comm: modprobe Tainted: G OE 6.8.0-cleanershaderfeatureresetasdntipmi200nv2132 #13\n[ 65.920525] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS WMJ0429N_Weekly_20_04_2 04/29/2020\n[ 65.920527] Call Trace:\n[ 65.920529] \u003cTASK\u003e\n[ 65.920532] dump_stack_lvl+0x48/0x70\n[ 65.920541] dump_stack+0x10/0x20\n[ 65.920543] __ubsan_handle_out_of_bounds+0xa2/0xe0\n[ 65.920549] dcn21_link_encoder_create+0xd9/0x140 [amdgpu]\n[ 65.921009] link_create+0x6d3/0xed0 [amdgpu]\n[ 65.921355] create_links+0x18a/0x4e0 [amdgpu]\n[ 65.921679] dc_create+0x360/0x720 [amdgpu]\n[ 65.921999] ? dmi_matches+0xa0/0x220\n[ 65.922004] amdgpu_dm_init+0x2b6/0x2c90 [amdgpu]\n[ 65.922342] ? console_unlock+0x77/0x120\n[ 65.922348] ? dev_printk_emit+0x86/0xb0\n[ 65.922354] dm_hw_init+0x15/0x40 [amdgpu]\n[ 65.922686] amdgpu_device_init+0x26a8/0x33a0 [amdgpu]\n[ 65.922921] amdgpu_driver_load_kms+0x1b/0xa0 [amdgpu]\n[ 65.923087] amdgpu_pci_probe+0x1b7/0x630 [amdgpu]\n[ 65.923087] local_pci_probe+0x4b/0xb0\n[ 65.923087] pci_device_probe+0xc8/0x280\n[ 65.923087] really_probe+0x187/0x300\n[ 65.923087] __driver_probe_device+0x85/0x130\n[ 65.923087] driver_probe_device+0x24/0x110\n[ 65.923087] __driver_attach+0xac/0x1d0\n[ 65.923087] ? __pfx___driver_attach+0x10/0x10\n[ 65.923087] bus_for_each_dev+0x7d/0xd0\n[ 65.923087] driver_attach+0x1e/0x30\n[ 65.923087] bus_add_driver+0xf2/0x200\n[ 65.923087] driver_register+0x64/0x130\n[ 65.923087] ? __pfx_amdgpu_init+0x10/0x10 [amdgpu]\n[ 65.923087] __pci_register_driver+0x61/0x70\n[ 65.923087] amdgpu_init+0x7d/0xff0 [amdgpu]\n[ 65.923087] do_one_initcall+0x49/0x310\n[ 65.923087] ? kmalloc_trace+0x136/0x360\n[ 65.923087] do_init_module+0x6a/0x270\n[ 65.923087] load_module+0x1fce/0x23a0\n[ 65.923087] init_module_from_file+0x9c/0xe0\n[ 65.923087] ? init_module_from_file+0x9c/0xe0\n[ 65.923087] idempotent_init_module+0x179/0x230\n[ 65.923087] __x64_sys_finit_module+0x5d/0xa0\n[ 65.923087] do_syscall_64+0x76/0x120\n[ 65.923087] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n[ 65.923087] RIP: 0033:0x7f2d80f1e88d\n[ 65.923087] Code: 5b 41 5c c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 b5 0f 00 f7 d8 64 89 01 48\n[ 65.923087] RSP: 002b:00007ffc7bc1aa78 EFLAGS: 00000246 ORIG_RAX: 0000000000000139\n[ 65.923087] RAX: ffffffffffffffda RBX: 0000564c9c1db130 RCX: 00007f2d80f1e88d\n[ 65.923087] RDX: 0000000000000000 RSI: 0000564c9c1e5480 RDI: 000000000000000f\n[ 65.923087] RBP: 0000000000040000 R08: 0000000000000000 R09: 0000000000000002\n[ 65.923087] R10: 000000000000000f R11: 0000000000000246 R12: 0000564c9c1e5480\n[ 65.923087] R13: 0000564c9c1db260 R14: 0000000000000000 R15: 0000564c9c1e54b0\n[ 65.923087] \u003c/TASK\u003e\n[ 65.923927] ---[ end trace ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56608",
"url": "https://www.suse.com/security/cve/CVE-2024-56608"
},
{
"category": "external",
"summary": "SUSE Bug 1235487 for CVE-2024-56608",
"url": "https://bugzilla.suse.com/1235487"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56608"
},
{
"cve": "CVE-2024-56609",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56609"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb\n\nWhen removing kernel modules by:\n rmmod rtw88_8723cs rtw88_8703b rtw88_8723x rtw88_sdio rtw88_core\n\nDriver uses skb_queue_purge() to purge TX skb, but not report tx status\ncausing \"Have pending ack frames!\" warning. Use ieee80211_purge_tx_queue()\nto correct this.\n\nSince ieee80211_purge_tx_queue() doesn\u0027t take locks, to prevent racing\nbetween TX work and purge TX queue, flush and destroy TX work in advance.\n\n wlan0: deauthenticating from aa:f5:fd:60:4c:a8 by local\n choice (Reason: 3=DEAUTH_LEAVING)\n ------------[ cut here ]------------\n Have pending ack frames!\n WARNING: CPU: 3 PID: 9232 at net/mac80211/main.c:1691\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n CPU: 3 PID: 9232 Comm: rmmod Tainted: G C\n 6.10.1-200.fc40.aarch64 #1\n Hardware name: pine64 Pine64 PinePhone Braveheart\n (1.1)/Pine64 PinePhone Braveheart (1.1), BIOS 2024.01 01/01/2024\n pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n lr : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n sp : ffff80008c1b37b0\n x29: ffff80008c1b37b0 x28: ffff000003be8000 x27: 0000000000000000\n x26: 0000000000000000 x25: ffff000003dc14b8 x24: ffff80008c1b37d0\n x23: ffff000000ff9f80 x22: 0000000000000000 x21: 000000007fffffff\n x20: ffff80007c7e93d8 x19: ffff00006e66f400 x18: 0000000000000000\n x17: ffff7ffffd2b3000 x16: ffff800083fc0000 x15: 0000000000000000\n x14: 0000000000000000 x13: 2173656d61726620 x12: 6b636120676e6964\n x11: 0000000000000000 x10: 000000000000005d x9 : ffff8000802af2b0\n x8 : ffff80008c1b3430 x7 : 0000000000000001 x6 : 0000000000000001\n x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff000003be8000\n Call trace:\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n idr_for_each+0x74/0x110\n ieee80211_free_hw+0x44/0xe8 [mac80211]\n rtw_sdio_remove+0x9c/0xc0 [rtw88_sdio]\n sdio_bus_remove+0x44/0x180\n device_remove+0x54/0x90\n device_release_driver_internal+0x1d4/0x238\n driver_detach+0x54/0xc0\n bus_remove_driver+0x78/0x108\n driver_unregister+0x38/0x78\n sdio_unregister_driver+0x2c/0x40\n rtw_8723cs_driver_exit+0x18/0x1000 [rtw88_8723cs]\n __do_sys_delete_module.isra.0+0x190/0x338\n __arm64_sys_delete_module+0x1c/0x30\n invoke_syscall+0x74/0x100\n el0_svc_common.constprop.0+0x48/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x3c/0x158\n el0t_64_sync_handler+0x120/0x138\n el0t_64_sync+0x194/0x198\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56609",
"url": "https://www.suse.com/security/cve/CVE-2024-56609"
},
{
"category": "external",
"summary": "SUSE Bug 1235389 for CVE-2024-56609",
"url": "https://bugzilla.suse.com/1235389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56609"
},
{
"cve": "CVE-2024-56610",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56610"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcsan: Turn report_filterlist_lock into a raw_spinlock\n\nRan Xiaokai reports that with a KCSAN-enabled PREEMPT_RT kernel, we can see\nsplats like:\n\n| BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\n| in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 0, name: swapper/1\n| preempt_count: 10002, expected: 0\n| RCU nest depth: 0, expected: 0\n| no locks held by swapper/1/0.\n| irq event stamp: 156674\n| hardirqs last enabled at (156673): [\u003cffffffff81130bd9\u003e] do_idle+0x1f9/0x240\n| hardirqs last disabled at (156674): [\u003cffffffff82254f84\u003e] sysvec_apic_timer_interrupt+0x14/0xc0\n| softirqs last enabled at (0): [\u003cffffffff81099f47\u003e] copy_process+0xfc7/0x4b60\n| softirqs last disabled at (0): [\u003c0000000000000000\u003e] 0x0\n| Preemption disabled at:\n| [\u003cffffffff814a3e2a\u003e] paint_ptr+0x2a/0x90\n| CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.11.0+ #3\n| Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-0-ga698c8995f-prebuilt.qemu.org 04/01/2014\n| Call Trace:\n| \u003cIRQ\u003e\n| dump_stack_lvl+0x7e/0xc0\n| dump_stack+0x1d/0x30\n| __might_resched+0x1a2/0x270\n| rt_spin_lock+0x68/0x170\n| kcsan_skip_report_debugfs+0x43/0xe0\n| print_report+0xb5/0x590\n| kcsan_report_known_origin+0x1b1/0x1d0\n| kcsan_setup_watchpoint+0x348/0x650\n| __tsan_unaligned_write1+0x16d/0x1d0\n| hrtimer_interrupt+0x3d6/0x430\n| __sysvec_apic_timer_interrupt+0xe8/0x3a0\n| sysvec_apic_timer_interrupt+0x97/0xc0\n| \u003c/IRQ\u003e\n\nOn a detected data race, KCSAN\u0027s reporting logic checks if it should\nfilter the report. That list is protected by the report_filterlist_lock\n*non-raw* spinlock which may sleep on RT kernels.\n\nSince KCSAN may report data races in any context, convert it to a\nraw_spinlock.\n\nThis requires being careful about when to allocate memory for the filter\nlist itself which can be done via KCSAN\u0027s debugfs interface. Concurrent\nmodification of the filter list via debugfs should be rare: the chosen\nstrategy is to optimistically pre-allocate memory before the critical\nsection and discard if unused.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56610",
"url": "https://www.suse.com/security/cve/CVE-2024-56610"
},
{
"category": "external",
"summary": "SUSE Bug 1235390 for CVE-2024-56610",
"url": "https://bugzilla.suse.com/1235390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56610"
},
{
"cve": "CVE-2024-56611",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56611"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM\n\nWe currently assume that there is at least one VMA in a MM, which isn\u0027t\ntrue.\n\nSo we might end up having find_vma() return NULL, to then de-reference\nNULL. So properly handle find_vma() returning NULL.\n\nThis fixes the report:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 UID: 0 PID: 6021 Comm: syz-executor284 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\nRIP: 0010:migrate_to_node mm/mempolicy.c:1090 [inline]\nRIP: 0010:do_migrate_pages+0x403/0x6f0 mm/mempolicy.c:1194\nCode: ...\nRSP: 0018:ffffc9000375fd08 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffc9000375fd78 RCX: 0000000000000000\nRDX: ffff88807e171300 RSI: dffffc0000000000 RDI: ffff88803390c044\nRBP: ffff88807e171428 R08: 0000000000000014 R09: fffffbfff2039ef1\nR10: ffffffff901cf78f R11: 0000000000000000 R12: 0000000000000003\nR13: ffffc9000375fe90 R14: ffffc9000375fe98 R15: ffffc9000375fdf8\nFS: 00005555919e1380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555919e1ca8 CR3: 000000007f12a000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n kernel_migrate_pages+0x5b2/0x750 mm/mempolicy.c:1709\n __do_sys_migrate_pages mm/mempolicy.c:1727 [inline]\n __se_sys_migrate_pages mm/mempolicy.c:1723 [inline]\n __x64_sys_migrate_pages+0x96/0x100 mm/mempolicy.c:1723\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[akpm@linux-foundation.org: add unlikely()]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56611",
"url": "https://www.suse.com/security/cve/CVE-2024-56611"
},
{
"category": "external",
"summary": "SUSE Bug 1235391 for CVE-2024-56611",
"url": "https://bugzilla.suse.com/1235391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56611"
},
{
"cve": "CVE-2024-56614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56614"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: fix OOB map writes when deleting elements\n\nJordy says:\n\n\"\nIn the xsk_map_delete_elem function an unsigned integer\n(map-\u003emax_entries) is compared with a user-controlled signed integer\n(k). Due to implicit type conversion, a large unsigned value for\nmap-\u003emax_entries can bypass the intended bounds check:\n\n\tif (k \u003e= map-\u003emax_entries)\n\t\treturn -EINVAL;\n\nThis allows k to hold a negative value (between -2147483648 and -2),\nwhich is then used as an array index in m-\u003exsk_map[k], which results\nin an out-of-bounds access.\n\n\tspin_lock_bh(\u0026m-\u003elock);\n\tmap_entry = \u0026m-\u003exsk_map[k]; // Out-of-bounds map_entry\n\told_xs = unrcu_pointer(xchg(map_entry, NULL)); // Oob write\n\tif (old_xs)\n\t\txsk_map_sock_delete(old_xs, map_entry);\n\tspin_unlock_bh(\u0026m-\u003elock);\n\nThe xchg operation can then be used to cause an out-of-bounds write.\nMoreover, the invalid map_entry passed to xsk_map_sock_delete can lead\nto further memory corruption.\n\"\n\nIt indeed results in following splat:\n\n[76612.897343] BUG: unable to handle page fault for address: ffffc8fc2e461108\n[76612.904330] #PF: supervisor write access in kernel mode\n[76612.909639] #PF: error_code(0x0002) - not-present page\n[76612.914855] PGD 0 P4D 0\n[76612.917431] Oops: Oops: 0002 [#1] PREEMPT SMP\n[76612.921859] CPU: 11 UID: 0 PID: 10318 Comm: a.out Not tainted 6.12.0-rc1+ #470\n[76612.929189] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[76612.939781] RIP: 0010:xsk_map_delete_elem+0x2d/0x60\n[76612.944738] Code: 00 00 41 54 55 53 48 63 2e 3b 6f 24 73 38 4c 8d a7 f8 00 00 00 48 89 fb 4c 89 e7 e8 2d bf 05 00 48 8d b4 eb 00 01 00 00 31 ff \u003c48\u003e 87 3e 48 85 ff 74 05 e8 16 ff ff ff 4c 89 e7 e8 3e bc 05 00 31\n[76612.963774] RSP: 0018:ffffc9002e407df8 EFLAGS: 00010246\n[76612.969079] RAX: 0000000000000000 RBX: ffffc9002e461000 RCX: 0000000000000000\n[76612.976323] RDX: 0000000000000001 RSI: ffffc8fc2e461108 RDI: 0000000000000000\n[76612.983569] RBP: ffffffff80000001 R08: 0000000000000000 R09: 0000000000000007\n[76612.990812] R10: ffffc9002e407e18 R11: ffff888108a38858 R12: ffffc9002e4610f8\n[76612.998060] R13: ffff888108a38858 R14: 00007ffd1ae0ac78 R15: ffffc9002e4610c0\n[76613.005303] FS: 00007f80b6f59740(0000) GS:ffff8897e0ec0000(0000) knlGS:0000000000000000\n[76613.013517] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[76613.019349] CR2: ffffc8fc2e461108 CR3: 000000011e3ef001 CR4: 00000000007726f0\n[76613.026595] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[76613.033841] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[76613.041086] PKRU: 55555554\n[76613.043842] Call Trace:\n[76613.046331] \u003cTASK\u003e\n[76613.048468] ? __die+0x20/0x60\n[76613.051581] ? page_fault_oops+0x15a/0x450\n[76613.055747] ? search_extable+0x22/0x30\n[76613.059649] ? search_bpf_extables+0x5f/0x80\n[76613.063988] ? exc_page_fault+0xa9/0x140\n[76613.067975] ? asm_exc_page_fault+0x22/0x30\n[76613.072229] ? xsk_map_delete_elem+0x2d/0x60\n[76613.076573] ? xsk_map_delete_elem+0x23/0x60\n[76613.080914] __sys_bpf+0x19b7/0x23c0\n[76613.084555] __x64_sys_bpf+0x1a/0x20\n[76613.088194] do_syscall_64+0x37/0xb0\n[76613.091832] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[76613.096962] RIP: 0033:0x7f80b6d1e88d\n[76613.100592] Code: 5b 41 5c c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 b5 0f 00 f7 d8 64 89 01 48\n[76613.119631] RSP: 002b:00007ffd1ae0ac68 EFLAGS: 00000206 ORIG_RAX: 0000000000000141\n[76613.131330] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f80b6d1e88d\n[76613.142632] RDX: 0000000000000098 RSI: 00007ffd1ae0ad20 RDI: 0000000000000003\n[76613.153967] RBP: 00007ffd1ae0adc0 R08: 0000000000000000 R09: 0000000000000000\n[76613.166030] R10: 00007f80b6f77040 R11: 0000000000000206 R12: 00007ffd1ae0aed8\n[76613.177130] R13: 000055ddf42ce1e9 R14: 000055ddf42d0d98 R15: 00\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56614",
"url": "https://www.suse.com/security/cve/CVE-2024-56614"
},
{
"category": "external",
"summary": "SUSE Bug 1235424 for CVE-2024-56614",
"url": "https://bugzilla.suse.com/1235424"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56614"
},
{
"cve": "CVE-2024-56615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56615"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix OOB devmap writes when deleting elements\n\nJordy reported issue against XSKMAP which also applies to DEVMAP - the\nindex used for accessing map entry, due to being a signed integer,\ncauses the OOB writes. Fix is simple as changing the type from int to\nu32, however, when compared to XSKMAP case, one more thing needs to be\naddressed.\n\nWhen map is released from system via dev_map_free(), we iterate through\nall of the entries and an iterator variable is also an int, which\nimplies OOB accesses. Again, change it to be u32.\n\nExample splat below:\n\n[ 160.724676] BUG: unable to handle page fault for address: ffffc8fc2c001000\n[ 160.731662] #PF: supervisor read access in kernel mode\n[ 160.736876] #PF: error_code(0x0000) - not-present page\n[ 160.742095] PGD 0 P4D 0\n[ 160.744678] Oops: Oops: 0000 [#1] PREEMPT SMP\n[ 160.749106] CPU: 1 UID: 0 PID: 520 Comm: kworker/u145:12 Not tainted 6.12.0-rc1+ #487\n[ 160.757050] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[ 160.767642] Workqueue: events_unbound bpf_map_free_deferred\n[ 160.773308] RIP: 0010:dev_map_free+0x77/0x170\n[ 160.777735] Code: 00 e8 fd 91 ed ff e8 b8 73 ed ff 41 83 7d 18 19 74 6e 41 8b 45 24 49 8b bd f8 00 00 00 31 db 85 c0 74 48 48 63 c3 48 8d 04 c7 \u003c48\u003e 8b 28 48 85 ed 74 30 48 8b 7d 18 48 85 ff 74 05 e8 b3 52 fa ff\n[ 160.796777] RSP: 0018:ffffc9000ee1fe38 EFLAGS: 00010202\n[ 160.802086] RAX: ffffc8fc2c001000 RBX: 0000000080000000 RCX: 0000000000000024\n[ 160.809331] RDX: 0000000000000000 RSI: 0000000000000024 RDI: ffffc9002c001000\n[ 160.816576] RBP: 0000000000000000 R08: 0000000000000023 R09: 0000000000000001\n[ 160.823823] R10: 0000000000000001 R11: 00000000000ee6b2 R12: dead000000000122\n[ 160.831066] R13: ffff88810c928e00 R14: ffff8881002df405 R15: 0000000000000000\n[ 160.838310] FS: 0000000000000000(0000) GS:ffff8897e0c40000(0000) knlGS:0000000000000000\n[ 160.846528] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 160.852357] CR2: ffffc8fc2c001000 CR3: 0000000005c32006 CR4: 00000000007726f0\n[ 160.859604] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 160.866847] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 160.874092] PKRU: 55555554\n[ 160.876847] Call Trace:\n[ 160.879338] \u003cTASK\u003e\n[ 160.881477] ? __die+0x20/0x60\n[ 160.884586] ? page_fault_oops+0x15a/0x450\n[ 160.888746] ? search_extable+0x22/0x30\n[ 160.892647] ? search_bpf_extables+0x5f/0x80\n[ 160.896988] ? exc_page_fault+0xa9/0x140\n[ 160.900973] ? asm_exc_page_fault+0x22/0x30\n[ 160.905232] ? dev_map_free+0x77/0x170\n[ 160.909043] ? dev_map_free+0x58/0x170\n[ 160.912857] bpf_map_free_deferred+0x51/0x90\n[ 160.917196] process_one_work+0x142/0x370\n[ 160.921272] worker_thread+0x29e/0x3b0\n[ 160.925082] ? rescuer_thread+0x4b0/0x4b0\n[ 160.929157] kthread+0xd4/0x110\n[ 160.932355] ? kthread_park+0x80/0x80\n[ 160.936079] ret_from_fork+0x2d/0x50\n[ 160.943396] ? kthread_park+0x80/0x80\n[ 160.950803] ret_from_fork_asm+0x11/0x20\n[ 160.958482] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56615",
"url": "https://www.suse.com/security/cve/CVE-2024-56615"
},
{
"category": "external",
"summary": "SUSE Bug 1235426 for CVE-2024-56615",
"url": "https://bugzilla.suse.com/1235426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56615"
},
{
"cve": "CVE-2024-56616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56616"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix MST sideband message body length check\n\nFix the MST sideband message body length check, which must be at least 1\nbyte accounting for the message body CRC (aka message data CRC) at the\nend of the message.\n\nThis fixes a case where an MST branch device returns a header with a\ncorrect header CRC (indicating a correctly received body length), with\nthe body length being incorrectly set to 0. This will later lead to a\nmemory corruption in drm_dp_sideband_append_payload() and the following\nerrors in dmesg:\n\n UBSAN: array-index-out-of-bounds in drivers/gpu/drm/display/drm_dp_mst_topology.c:786:25\n index -1 is out of range for type \u0027u8 [48]\u0027\n Call Trace:\n drm_dp_sideband_append_payload+0x33d/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]\n\n memcpy: detected field-spanning write (size 18446744073709551615) of single field \"\u0026msg-\u003emsg[msg-\u003ecurlen]\" at drivers/gpu/drm/display/drm_dp_mst_topology.c:791 (size 256)\n Call Trace:\n drm_dp_sideband_append_payload+0x324/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56616",
"url": "https://www.suse.com/security/cve/CVE-2024-56616"
},
{
"category": "external",
"summary": "SUSE Bug 1235427 for CVE-2024-56616",
"url": "https://bugzilla.suse.com/1235427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56616"
},
{
"cve": "CVE-2024-56617",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56617"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU\n\nCommit\n\n 5944ce092b97 (\"arch_topology: Build cacheinfo from primary CPU\")\n\nadds functionality that architectures can use to optionally allocate and\nbuild cacheinfo early during boot. Commit\n\n 6539cffa9495 (\"cacheinfo: Add arch specific early level initializer\")\n\nlets secondary CPUs correct (and reallocate memory) cacheinfo data if\nneeded.\n\nIf the early build functionality is not used and cacheinfo does not need\ncorrection, memory for cacheinfo is never allocated. x86 does not use\nthe early build functionality. Consequently, during the cacheinfo CPU\nhotplug callback, last_level_cache_is_valid() attempts to dereference\na NULL pointer:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000100\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not present page\n PGD 0 P4D 0\n Oops: 0000 [#1] PREEPMT SMP NOPTI\n CPU: 0 PID 19 Comm: cpuhp/0 Not tainted 6.4.0-rc2 #1\n RIP: 0010: last_level_cache_is_valid+0x95/0xe0a\n\nAllocate memory for cacheinfo during the cacheinfo CPU hotplug callback\nif not done earlier.\n\nMoreover, before determining the validity of the last-level cache info,\nensure that it has been allocated. Simply checking for non-zero\ncache_leaves() is not sufficient, as some architectures (e.g., Intel\nprocessors) have non-zero cache_leaves() before allocation.\n\nDereferencing NULL cacheinfo can occur in update_per_cpu_data_slice_size().\nThis function iterates over all online CPUs. However, a CPU may have come\nonline recently, but its cacheinfo may not have been allocated yet.\n\nWhile here, remove an unnecessary indentation in allocate_cache_info().\n\n [ bp: Massage. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56617",
"url": "https://www.suse.com/security/cve/CVE-2024-56617"
},
{
"category": "external",
"summary": "SUSE Bug 1235429 for CVE-2024-56617",
"url": "https://bugzilla.suse.com/1235429"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56617"
},
{
"cve": "CVE-2024-56619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56619"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()\n\nSyzbot reported that when searching for records in a directory where the\ninode\u0027s i_size is corrupted and has a large value, memory access outside\nthe folio/page range may occur, or a use-after-free bug may be detected if\nKASAN is enabled.\n\nThis is because nilfs_last_byte(), which is called by nilfs_find_entry()\nand others to calculate the number of valid bytes of directory data in a\npage from i_size and the page index, loses the upper 32 bits of the 64-bit\nsize information due to an inappropriate type of local variable to which\nthe i_size value is assigned.\n\nThis caused a large byte offset value due to underflow in the end address\ncalculation in the calling nilfs_find_entry(), resulting in memory access\nthat exceeds the folio/page size.\n\nFix this issue by changing the type of the local variable causing the bit\nloss from \"unsigned int\" to \"u64\". The return value of nilfs_last_byte()\nis also of type \"unsigned int\", but it is truncated so as not to exceed\nPAGE_SIZE and no bit loss occurs, so no change is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56619",
"url": "https://www.suse.com/security/cve/CVE-2024-56619"
},
{
"category": "external",
"summary": "SUSE Bug 1235224 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "external",
"summary": "SUSE Bug 1235225 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56619"
},
{
"cve": "CVE-2024-56620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56620"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: qcom: Only free platform MSIs when ESI is enabled\n\nOtherwise, it will result in a NULL pointer dereference as below:\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000008\nCall trace:\n mutex_lock+0xc/0x54\n platform_device_msi_free_irqs_all+0x14/0x20\n ufs_qcom_remove+0x34/0x48 [ufs_qcom]\n platform_remove+0x28/0x44\n device_remove+0x4c/0x80\n device_release_driver_internal+0xd8/0x178\n driver_detach+0x50/0x9c\n bus_remove_driver+0x6c/0xbc\n driver_unregister+0x30/0x60\n platform_driver_unregister+0x14/0x20\n ufs_qcom_pltform_exit+0x18/0xb94 [ufs_qcom]\n __arm64_sys_delete_module+0x180/0x260\n invoke_syscall+0x44/0x100\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xdc\n el0t_64_sync_handler+0xc0/0xc4\n el0t_64_sync+0x190/0x194",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56620",
"url": "https://www.suse.com/security/cve/CVE-2024-56620"
},
{
"category": "external",
"summary": "SUSE Bug 1235227 for CVE-2024-56620",
"url": "https://bugzilla.suse.com/1235227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56620"
},
{
"cve": "CVE-2024-56622",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56622"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: sysfs: Prevent div by zero\n\nPrevent a division by 0 when monitoring is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56622",
"url": "https://www.suse.com/security/cve/CVE-2024-56622"
},
{
"category": "external",
"summary": "SUSE Bug 1235251 for CVE-2024-56622",
"url": "https://bugzilla.suse.com/1235251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56622"
},
{
"cve": "CVE-2024-56623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56623"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix use after free on unload\n\nSystem crash is observed with stack trace warning of use after\nfree. There are 2 signals to tell dpc_thread to terminate (UNLOADING\nflag and kthread_stop).\n\nOn setting the UNLOADING flag when dpc_thread happens to run at the time\nand sees the flag, this causes dpc_thread to exit and clean up\nitself. When kthread_stop is called for final cleanup, this causes use\nafter free.\n\nRemove UNLOADING signal to terminate dpc_thread. Use the kthread_stop\nas the main signal to exit dpc_thread.\n\n[596663.812935] kernel BUG at mm/slub.c:294!\n[596663.812950] invalid opcode: 0000 [#1] SMP PTI\n[596663.812957] CPU: 13 PID: 1475935 Comm: rmmod Kdump: loaded Tainted: G IOE --------- - - 4.18.0-240.el8.x86_64 #1\n[596663.812960] Hardware name: HP ProLiant DL380p Gen8, BIOS P70 08/20/2012\n[596663.812974] RIP: 0010:__slab_free+0x17d/0x360\n\n...\n[596663.813008] Call Trace:\n[596663.813022] ? __dentry_kill+0x121/0x170\n[596663.813030] ? _cond_resched+0x15/0x30\n[596663.813034] ? _cond_resched+0x15/0x30\n[596663.813039] ? wait_for_completion+0x35/0x190\n[596663.813048] ? try_to_wake_up+0x63/0x540\n[596663.813055] free_task+0x5a/0x60\n[596663.813061] kthread_stop+0xf3/0x100\n[596663.813103] qla2x00_remove_one+0x284/0x440 [qla2xxx]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56623",
"url": "https://www.suse.com/security/cve/CVE-2024-56623"
},
{
"category": "external",
"summary": "SUSE Bug 1235466 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "external",
"summary": "SUSE Bug 1235468 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56623"
},
{
"cve": "CVE-2024-56625",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56625"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: dev: can_set_termination(): allow sleeping GPIOs\n\nIn commit 6e86a1543c37 (\"can: dev: provide optional GPIO based\ntermination support\") GPIO based termination support was added.\n\nFor no particular reason that patch uses gpiod_set_value() to set the\nGPIO. This leads to the following warning, if the systems uses a\nsleeping GPIO, i.e. behind an I2C port expander:\n\n| WARNING: CPU: 0 PID: 379 at /drivers/gpio/gpiolib.c:3496 gpiod_set_value+0x50/0x6c\n| CPU: 0 UID: 0 PID: 379 Comm: ip Not tainted 6.11.0-20241016-1 #1 823affae360cc91126e4d316d7a614a8bf86236c\n\nReplace gpiod_set_value() by gpiod_set_value_cansleep() to allow the\nuse of sleeping GPIOs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56625",
"url": "https://www.suse.com/security/cve/CVE-2024-56625"
},
{
"category": "external",
"summary": "SUSE Bug 1235223 for CVE-2024-56625",
"url": "https://bugzilla.suse.com/1235223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56625"
},
{
"cve": "CVE-2024-56629",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56629"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: wacom: fix when get product name maybe null pointer\n\nDue to incorrect dev-\u003eproduct reporting by certain devices, null\npointer dereferences occur when dev-\u003eproduct is empty, leading to\npotential system crashes.\n\nThis issue was found on EXCELSIOR DL37-D05 device with\nLoongson-LS3A6000-7A2000-DL37 motherboard.\n\nKernel logs:\n[ 56.470885] usb 4-3: new full-speed USB device number 4 using ohci-pci\n[ 56.671638] usb 4-3: string descriptor 0 read error: -22\n[ 56.671644] usb 4-3: New USB device found, idVendor=056a, idProduct=0374, bcdDevice= 1.07\n[ 56.671647] usb 4-3: New USB device strings: Mfr=1, Product=2, SerialNumber=3\n[ 56.678839] hid-generic 0003:056A:0374.0004: hiddev0,hidraw3: USB HID v1.10 Device [HID 056a:0374] on usb-0000:00:05.0-3/input0\n[ 56.697719] CPU 2 Unable to handle kernel paging request at virtual address 0000000000000000, era == 90000000066e35c8, ra == ffff800004f98a80\n[ 56.697732] Oops[#1]:\n[ 56.697734] CPU: 2 PID: 2742 Comm: (udev-worker) Tainted: G OE 6.6.0-loong64-desktop #25.00.2000.015\n[ 56.697737] Hardware name: Inspur CE520L2/C09901N000000000, BIOS 2.09.00 10/11/2024\n[ 56.697739] pc 90000000066e35c8 ra ffff800004f98a80 tp 9000000125478000 sp 900000012547b8a0\n[ 56.697741] a0 0000000000000000 a1 ffff800004818b28 a2 0000000000000000 a3 0000000000000000\n[ 56.697743] a4 900000012547b8f0 a5 0000000000000000 a6 0000000000000000 a7 0000000000000000\n[ 56.697745] t0 ffff800004818b2d t1 0000000000000000 t2 0000000000000003 t3 0000000000000005\n[ 56.697747] t4 0000000000000000 t5 0000000000000000 t6 0000000000000000 t7 0000000000000000\n[ 56.697748] t8 0000000000000000 u0 0000000000000000 s9 0000000000000000 s0 900000011aa48028\n[ 56.697750] s1 0000000000000000 s2 0000000000000000 s3 ffff800004818e80 s4 ffff800004810000\n[ 56.697751] s5 90000001000b98d0 s6 ffff800004811f88 s7 ffff800005470440 s8 0000000000000000\n[ 56.697753] ra: ffff800004f98a80 wacom_update_name+0xe0/0x300 [wacom]\n[ 56.697802] ERA: 90000000066e35c8 strstr+0x28/0x120\n[ 56.697806] CRMD: 000000b0 (PLV0 -IE -DA +PG DACF=CC DACM=CC -WE)\n[ 56.697816] PRMD: 0000000c (PPLV0 +PIE +PWE)\n[ 56.697821] EUEN: 00000000 (-FPE -SXE -ASXE -BTE)\n[ 56.697827] ECFG: 00071c1d (LIE=0,2-4,10-12 VS=7)\n[ 56.697831] ESTAT: 00010000 [PIL] (IS= ECode=1 EsubCode=0)\n[ 56.697835] BADV: 0000000000000000\n[ 56.697836] PRID: 0014d000 (Loongson-64bit, Loongson-3A6000)\n[ 56.697838] Modules linked in: wacom(+) bnep bluetooth rfkill qrtr nls_iso8859_1 nls_cp437 snd_hda_codec_conexant snd_hda_codec_generic ledtrig_audio snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd soundcore input_leds mousedev led_class joydev deepin_netmonitor(OE) fuse nfnetlink dmi_sysfs ip_tables x_tables overlay amdgpu amdxcp drm_exec gpu_sched drm_buddy radeon drm_suballoc_helper i2c_algo_bit drm_ttm_helper r8169 ttm drm_display_helper spi_loongson_pci xhci_pci cec xhci_pci_renesas spi_loongson_core hid_generic realtek gpio_loongson_64bit\n[ 56.697887] Process (udev-worker) (pid: 2742, threadinfo=00000000aee0d8b4, task=00000000a9eff1f3)\n[ 56.697890] Stack : 0000000000000000 ffff800004817e00 0000000000000000 0000251c00000000\n[ 56.697896] 0000000000000000 00000011fffffffd 0000000000000000 0000000000000000\n[ 56.697901] 0000000000000000 1b67a968695184b9 0000000000000000 90000001000b98d0\n[ 56.697906] 90000001000bb8d0 900000011aa48028 0000000000000000 ffff800004f9d74c\n[ 56.697911] 90000001000ba000 ffff800004f9ce58 0000000000000000 ffff800005470440\n[ 56.697916] ffff800004811f88 90000001000b98d0 9000000100da2aa8 90000001000bb8d0\n[ 56.697921] 0000000000000000 90000001000ba000 900000011aa48028 ffff800004f9d74c\n[ 56.697926] ffff8000054704e8 90000001000bb8b8 90000001000ba000 0000000000000000\n[ 56.697931] 90000001000bb8d0 \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56629",
"url": "https://www.suse.com/security/cve/CVE-2024-56629"
},
{
"category": "external",
"summary": "SUSE Bug 1235473 for CVE-2024-56629",
"url": "https://bugzilla.suse.com/1235473"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56629"
},
{
"cve": "CVE-2024-56630",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56630"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: free inode when ocfs2_get_init_inode() fails\n\nsyzbot is reporting busy inodes after unmount, for commit 9c89fe0af826\n(\"ocfs2: Handle error from dquot_initialize()\") forgot to call iput() when\nnew_inode() succeeded and dquot_initialize() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56630",
"url": "https://www.suse.com/security/cve/CVE-2024-56630"
},
{
"category": "external",
"summary": "SUSE Bug 1235479 for CVE-2024-56630",
"url": "https://bugzilla.suse.com/1235479"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56630"
},
{
"cve": "CVE-2024-56631",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56631"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Fix slab-use-after-free read in sg_release()\n\nFix a use-after-free bug in sg_release(), detected by syzbot with KASAN:\n\nBUG: KASAN: slab-use-after-free in lock_release+0x151/0xa30\nkernel/locking/lockdep.c:5838\n__mutex_unlock_slowpath+0xe2/0x750 kernel/locking/mutex.c:912\nsg_release+0x1f4/0x2e0 drivers/scsi/sg.c:407\n\nIn sg_release(), the function kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) is\ncalled before releasing the open_rel_lock mutex. The kref_put() call may\ndecrement the reference count of sfp to zero, triggering its cleanup\nthrough sg_remove_sfp(). This cleanup includes scheduling deferred work\nvia sg_remove_sfp_usercontext(), which ultimately frees sfp.\n\nAfter kref_put(), sg_release() continues to unlock open_rel_lock and may\nreference sfp or sdp. If sfp has already been freed, this results in a\nslab-use-after-free error.\n\nMove the kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) call after unlocking the\nopen_rel_lock mutex. This ensures:\n\n - No references to sfp or sdp occur after the reference count is\n decremented.\n\n - Cleanup functions such as sg_remove_sfp() and\n sg_remove_sfp_usercontext() can safely execute without impacting the\n mutex handling in sg_release().\n\nThe fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures proper\nsequencing of resource cleanup and mutex operations, eliminating the\nrisk of use-after-free errors in sg_release().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56631",
"url": "https://www.suse.com/security/cve/CVE-2024-56631"
},
{
"category": "external",
"summary": "SUSE Bug 1235480 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "external",
"summary": "SUSE Bug 1235482 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56631"
},
{
"cve": "CVE-2024-56632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: fix the memleak while create new ctrl failed\n\nNow while we create new ctrl failed, we have not free the\ntagset occupied by admin_q, here try to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56632",
"url": "https://www.suse.com/security/cve/CVE-2024-56632"
},
{
"category": "external",
"summary": "SUSE Bug 1235483 for CVE-2024-56632",
"url": "https://bugzilla.suse.com/1235483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56632"
},
{
"cve": "CVE-2024-56634",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56634"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: grgpio: Add NULL check in grgpio_probe\n\ndevm_kasprintf() can return a NULL pointer on failure,but this\nreturned value in grgpio_probe is not checked.\nAdd NULL check in grgpio_probe, to handle kernel NULL\npointer dereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56634",
"url": "https://www.suse.com/security/cve/CVE-2024-56634"
},
{
"category": "external",
"summary": "SUSE Bug 1235486 for CVE-2024-56634",
"url": "https://bugzilla.suse.com/1235486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56634"
},
{
"cve": "CVE-2024-56635",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56635"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: avoid potential UAF in default_operstate()\n\nsyzbot reported an UAF in default_operstate() [1]\n\nIssue is a race between device and netns dismantles.\n\nAfter calling __rtnl_unlock() from netdev_run_todo(),\nwe can not assume the netns of each device is still alive.\n\nMake sure the device is not in NETREG_UNREGISTERED state,\nand add an ASSERT_RTNL() before the call to\n__dev_get_by_index().\n\nWe might move this ASSERT_RTNL() in __dev_get_by_index()\nin the future.\n\n[1]\n\nBUG: KASAN: slab-use-after-free in __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\nRead of size 8 at addr ffff888043eba1b0 by task syz.0.0/5339\n\nCPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\n default_operstate net/core/link_watch.c:51 [inline]\n rfc2863_policy+0x224/0x300 net/core/link_watch.c:67\n linkwatch_do_dev+0x3e/0x170 net/core/link_watch.c:170\n netdev_run_todo+0x461/0x1000 net/core/dev.c:10894\n rtnl_unlock net/core/rtnetlink.c:152 [inline]\n rtnl_net_unlock include/linux/rtnetlink.h:133 [inline]\n rtnl_dellink+0x760/0x8d0 net/core/rtnetlink.c:3520\n rtnetlink_rcv_msg+0x791/0xcf0 net/core/rtnetlink.c:6911\n netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2541\n netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]\n netlink_unicast+0x7f6/0x990 net/netlink/af_netlink.c:1347\n netlink_sendmsg+0x8e4/0xcb0 net/netlink/af_netlink.c:1891\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:726\n ____sys_sendmsg+0x52a/0x7e0 net/socket.c:2583\n ___sys_sendmsg net/socket.c:2637 [inline]\n __sys_sendmsg+0x269/0x350 net/socket.c:2669\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f2a3cb80809\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f2a3d9cd058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f2a3cd45fa0 RCX: 00007f2a3cb80809\nRDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000008\nRBP: 00007f2a3cbf393e R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f2a3cd45fa0 R15: 00007ffd03bc65c8\n \u003c/TASK\u003e\n\nAllocated by task 5339:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:394\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __kmalloc_cache_noprof+0x243/0x390 mm/slub.c:4314\n kmalloc_noprof include/linux/slab.h:901 [inline]\n kmalloc_array_noprof include/linux/slab.h:945 [inline]\n netdev_create_hash net/core/dev.c:11870 [inline]\n netdev_init+0x10c/0x250 net/core/dev.c:11890\n ops_init+0x31e/0x590 net/core/net_namespace.c:138\n setup_net+0x287/0x9e0 net/core/net_namespace.c:362\n copy_net_ns+0x33f/0x570 net/core/net_namespace.c:500\n create_new_namespaces+0x425/0x7b0 kernel/nsproxy.c:110\n unshare_nsproxy_namespaces+0x124/0x180 kernel/nsproxy.c:228\n ksys_unshare+0x57d/0xa70 kernel/fork.c:3314\n __do_sys_unshare kernel/fork.c:3385 [inline]\n __se_sys_unshare kernel/fork.c:3383 [inline]\n __x64_sys_unshare+0x38/0x40 kernel/fork.c:3383\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x8\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56635",
"url": "https://www.suse.com/security/cve/CVE-2024-56635"
},
{
"category": "external",
"summary": "SUSE Bug 1235519 for CVE-2024-56635",
"url": "https://bugzilla.suse.com/1235519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56635"
},
{
"cve": "CVE-2024-56636",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56636"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: do not assume mac header is set in geneve_xmit_skb()\n\nWe should not assume mac header is set in output path.\n\nUse skb_eth_hdr() instead of eth_hdr() to fix the issue.\n\nsysbot reported the following :\n\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 skb_mac_header include/linux/skbuff.h:3052 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 eth_hdr include/linux/if_ether.h:24 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nModules linked in:\nCPU: 0 UID: 0 PID: 11635 Comm: syz.4.1423 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_mac_header include/linux/skbuff.h:3052 [inline]\n RIP: 0010:eth_hdr include/linux/if_ether.h:24 [inline]\n RIP: 0010:geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n RIP: 0010:geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nCode: 21 c6 02 e9 35 d4 ff ff e8 a5 48 4c fb 90 0f 0b 90 e9 fd f5 ff ff e8 97 48 4c fb 90 0f 0b 90 e9 d8 f5 ff ff e8 89 48 4c fb 90 \u003c0f\u003e 0b 90 e9 41 e4 ff ff e8 7b 48 4c fb 90 0f 0b 90 e9 cd e7 ff ff\nRSP: 0018:ffffc90003b2f870 EFLAGS: 00010283\nRAX: 000000000000037a RBX: 000000000000ffff RCX: ffffc9000dc3d000\nRDX: 0000000000080000 RSI: ffffffff86428417 RDI: 0000000000000003\nRBP: ffffc90003b2f9f0 R08: 0000000000000003 R09: 000000000000ffff\nR10: 000000000000ffff R11: 0000000000000002 R12: ffff88806603c000\nR13: 0000000000000000 R14: ffff8880685b2780 R15: 0000000000000e23\nFS: 00007fdc2deed6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000001b30a1dff8 CR3: 0000000056b8c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n __dev_direct_xmit+0x58a/0x720 net/core/dev.c:4490\n dev_direct_xmit include/linux/netdevice.h:3181 [inline]\n packet_xmit+0x1e4/0x360 net/packet/af_packet.c:285\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x2700/0x5660 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg net/socket.c:726 [inline]\n __sys_sendto+0x488/0x4f0 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2200\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56636",
"url": "https://www.suse.com/security/cve/CVE-2024-56636"
},
{
"category": "external",
"summary": "SUSE Bug 1235520 for CVE-2024-56636",
"url": "https://bugzilla.suse.com/1235520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56636"
},
{
"cve": "CVE-2024-56637",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56637"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: Hold module reference while requesting a module\n\nUser space may unload ip_set.ko while it is itself requesting a set type\nbackend module, leading to a kernel crash. The race condition may be\nprovoked by inserting an mdelay() right after the nfnl_unlock() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56637",
"url": "https://www.suse.com/security/cve/CVE-2024-56637"
},
{
"category": "external",
"summary": "SUSE Bug 1235523 for CVE-2024-56637",
"url": "https://bugzilla.suse.com/1235523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56637"
},
{
"cve": "CVE-2024-56641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56641"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: initialize close_work early to avoid warning\n\nWe encountered a warning that close_work was canceled before\ninitialization.\n\n WARNING: CPU: 7 PID: 111103 at kernel/workqueue.c:3047 __flush_work+0x19e/0x1b0\n Workqueue: events smc_lgr_terminate_work [smc]\n RIP: 0010:__flush_work+0x19e/0x1b0\n Call Trace:\n ? __wake_up_common+0x7a/0x190\n ? work_busy+0x80/0x80\n __cancel_work_timer+0xe3/0x160\n smc_close_cancel_work+0x1a/0x70 [smc]\n smc_close_active_abort+0x207/0x360 [smc]\n __smc_lgr_terminate.part.38+0xc8/0x180 [smc]\n process_one_work+0x19e/0x340\n worker_thread+0x30/0x370\n ? process_one_work+0x340/0x340\n kthread+0x117/0x130\n ? __kthread_cancel_work+0x50/0x50\n ret_from_fork+0x22/0x30\n\nThis is because when smc_close_cancel_work is triggered, e.g. the RDMA\ndriver is rmmod and the LGR is terminated, the conn-\u003eclose_work is\nflushed before initialization, resulting in WARN_ON(!work-\u003efunc).\n\n__smc_lgr_terminate | smc_connect_{rdma|ism}\n-------------------------------------------------------------\n | smc_conn_create\n\t\t\t\t| \\- smc_lgr_register_conn\nfor conn in lgr-\u003econns_all |\n\\- smc_conn_kill |\n \\- smc_close_active_abort |\n \\- smc_close_cancel_work |\n \\- cancel_work_sync |\n \\- __flush_work |\n\t (close_work) |\n\t | smc_close_init\n\t | \\- INIT_WORK(\u0026close_work)\n\nSo fix this by initializing close_work before establishing the\nconnection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56641",
"url": "https://www.suse.com/security/cve/CVE-2024-56641"
},
{
"category": "external",
"summary": "SUSE Bug 1235526 for CVE-2024-56641",
"url": "https://bugzilla.suse.com/1235526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56641"
},
{
"cve": "CVE-2024-56642",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56642"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free of kernel socket in cleanup_bearer().\n\nsyzkaller reported a use-after-free of UDP kernel socket\nin cleanup_bearer() without repro. [0][1]\n\nWhen bearer_disable() calls tipc_udp_disable(), cleanup\nof the UDP kernel socket is deferred by work calling\ncleanup_bearer().\n\ntipc_exit_net() waits for such works to finish by checking\ntipc_net(net)-\u003ewq_count. However, the work decrements the\ncount too early before releasing the kernel socket,\nunblocking cleanup_net() and resulting in use-after-free.\n\nLet\u0027s move the decrement after releasing the socket in\ncleanup_bearer().\n\n[0]:\nref_tracker: net notrefcnt@000000009b3d1faf has 1/1 users at\n sk_alloc+0x438/0x608\n inet_create+0x4c8/0xcb0\n __sock_create+0x350/0x6b8\n sock_create_kern+0x58/0x78\n udp_sock_create4+0x68/0x398\n udp_sock_create+0x88/0xc8\n tipc_udp_enable+0x5e8/0x848\n __tipc_nl_bearer_enable+0x84c/0xed8\n tipc_nl_bearer_enable+0x38/0x60\n genl_family_rcv_msg_doit+0x170/0x248\n genl_rcv_msg+0x400/0x5b0\n netlink_rcv_skb+0x1dc/0x398\n genl_rcv+0x44/0x68\n netlink_unicast+0x678/0x8b0\n netlink_sendmsg+0x5e4/0x898\n ____sys_sendmsg+0x500/0x830\n\n[1]:\nBUG: KMSAN: use-after-free in udp_hashslot include/net/udp.h:85 [inline]\nBUG: KMSAN: use-after-free in udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n udp_hashslot include/net/udp.h:85 [inline]\n udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n sk_common_release+0xaf/0x3f0 net/core/sock.c:3820\n inet_release+0x1e0/0x260 net/ipv4/af_inet.c:437\n inet6_release+0x6f/0xd0 net/ipv6/af_inet6.c:489\n __sock_release net/socket.c:658 [inline]\n sock_release+0xa0/0x210 net/socket.c:686\n cleanup_bearer+0x42d/0x4c0 net/tipc/udp_media.c:819\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nUninit was created at:\n slab_free_hook mm/slub.c:2269 [inline]\n slab_free mm/slub.c:4580 [inline]\n kmem_cache_free+0x207/0xc40 mm/slub.c:4682\n net_free net/core/net_namespace.c:454 [inline]\n cleanup_net+0x16f2/0x19d0 net/core/net_namespace.c:647\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/0:2 Not tainted 6.12.0-rc1-00131-gf66ebf37d69c #7 91723d6f74857f70725e1583cba3cf4adc716cfa\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nWorkqueue: events cleanup_bearer",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56642",
"url": "https://www.suse.com/security/cve/CVE-2024-56642"
},
{
"category": "external",
"summary": "SUSE Bug 1235433 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "external",
"summary": "SUSE Bug 1235434 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56642"
},
{
"cve": "CVE-2024-56643",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56643"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: Fix memory leak in dccp_feat_change_recv\n\nIf dccp_feat_push_confirm() fails after new value for SP feature was accepted\nwithout reconciliation (\u0027entry == NULL\u0027 branch), memory allocated for that value\nwith dccp_feat_clone_sp_val() is never freed.\n\nHere is the kmemleak stack for this:\n\nunreferenced object 0xffff88801d4ab488 (size 8):\n comm \"syz-executor310\", pid 1127, jiffies 4295085598 (age 41.666s)\n hex dump (first 8 bytes):\n 01 b4 4a 1d 80 88 ff ff ..J.....\n backtrace:\n [\u003c00000000db7cabfe\u003e] kmemdup+0x23/0x50 mm/util.c:128\n [\u003c0000000019b38405\u003e] kmemdup include/linux/string.h:465 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:371 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:367 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_change_recv net/dccp/feat.c:1145 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_parse_options+0x1196/0x2180 net/dccp/feat.c:1416\n [\u003c00000000b1f6d94a\u003e] dccp_parse_options+0xa2a/0x1260 net/dccp/options.c:125\n [\u003c0000000030d7b621\u003e] dccp_rcv_state_process+0x197/0x13d0 net/dccp/input.c:650\n [\u003c000000001f74c72e\u003e] dccp_v4_do_rcv+0xf9/0x1a0 net/dccp/ipv4.c:688\n [\u003c00000000a6c24128\u003e] sk_backlog_rcv include/net/sock.h:1041 [inline]\n [\u003c00000000a6c24128\u003e] __release_sock+0x139/0x3b0 net/core/sock.c:2570\n [\u003c00000000cf1f3a53\u003e] release_sock+0x54/0x1b0 net/core/sock.c:3111\n [\u003c000000008422fa23\u003e] inet_wait_for_connect net/ipv4/af_inet.c:603 [inline]\n [\u003c000000008422fa23\u003e] __inet_stream_connect+0x5d0/0xf70 net/ipv4/af_inet.c:696\n [\u003c0000000015b6f64d\u003e] inet_stream_connect+0x53/0xa0 net/ipv4/af_inet.c:735\n [\u003c0000000010122488\u003e] __sys_connect_file+0x15c/0x1a0 net/socket.c:1865\n [\u003c00000000b4b70023\u003e] __sys_connect+0x165/0x1a0 net/socket.c:1882\n [\u003c00000000f4cb3815\u003e] __do_sys_connect net/socket.c:1892 [inline]\n [\u003c00000000f4cb3815\u003e] __se_sys_connect net/socket.c:1889 [inline]\n [\u003c00000000f4cb3815\u003e] __x64_sys_connect+0x6e/0xb0 net/socket.c:1889\n [\u003c00000000e7b1e839\u003e] do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46\n [\u003c0000000055e91434\u003e] entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nClean up the allocated memory in case of dccp_feat_push_confirm() failure\nand bail out with an error reset code.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56643",
"url": "https://www.suse.com/security/cve/CVE-2024-56643"
},
{
"category": "external",
"summary": "SUSE Bug 1235132 for CVE-2024-56643",
"url": "https://bugzilla.suse.com/1235132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56643"
},
{
"cve": "CVE-2024-56644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56644"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ipv6: release expired exception dst cached in socket\n\nDst objects get leaked in ip6_negative_advice() when this function is\nexecuted for an expired IPv6 route located in the exception table. There\nare several conditions that must be fulfilled for the leak to occur:\n* an ICMPv6 packet indicating a change of the MTU for the path is received,\n resulting in an exception dst being created\n* a TCP connection that uses the exception dst for routing packets must\n start timing out so that TCP begins retransmissions\n* after the exception dst expires, the FIB6 garbage collector must not run\n before TCP executes ip6_negative_advice() for the expired exception dst\n\nWhen TCP executes ip6_negative_advice() for an exception dst that has\nexpired and if no other socket holds a reference to the exception dst, the\nrefcount of the exception dst is 2, which corresponds to the increment\nmade by dst_init() and the increment made by the TCP socket for which the\nconnection is timing out. The refcount made by the socket is never\nreleased. The refcount of the dst is decremented in sk_dst_reset() but\nthat decrement is counteracted by a dst_hold() intentionally placed just\nbefore the sk_dst_reset() in ip6_negative_advice(). After\nip6_negative_advice() has finished, there is no other object tied to the\ndst. The socket lost its reference stored in sk_dst_cache and the dst is\nno longer in the exception table. The exception dst becomes a leaked\nobject.\n\nAs a result of this dst leak, an unbalanced refcount is reported for the\nloopback device of a net namespace being destroyed under kernels that do\nnot contain e5f80fcf869a (\"ipv6: give an IPv6 dev to blackhole_netdev\"):\nunregister_netdevice: waiting for lo to become free. Usage count = 2\n\nFix the dst leak by removing the dst_hold() in ip6_negative_advice(). The\npatch that introduced the dst_hold() in ip6_negative_advice() was\n92f1655aa2b22 (\"net: fix __dst_negative_advice() race\"). But 92f1655aa2b22\nmerely refactored the code with regards to the dst refcount so the issue\nwas present even before 92f1655aa2b22. The bug was introduced in\n54c1a859efd9f (\"ipv6: Don\u0027t drop cache route entry unless timer actually\nexpired.\") where the expired cached route is deleted and the sk_dst_cache\nmember of the socket is set to NULL by calling dst_negative_advice() but\nthe refcount belonging to the socket is left unbalanced.\n\nThe IPv4 version - ipv4_negative_advice() - is not affected by this bug.\nWhen the TCP connection times out ipv4_negative_advice() merely resets the\nsk_dst_cache of the socket while decrementing the refcount of the\nexception dst.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56644",
"url": "https://www.suse.com/security/cve/CVE-2024-56644"
},
{
"category": "external",
"summary": "SUSE Bug 1235133 for CVE-2024-56644",
"url": "https://bugzilla.suse.com/1235133"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56644"
},
{
"cve": "CVE-2024-56645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: j1939: j1939_session_new(): fix skb reference counting\n\nSince j1939_session_skb_queue() does an extra skb_get() for each new\nskb, do the same for the initial one in j1939_session_new() to avoid\nrefcount underflow.\n\n[mkl: clean up commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56645",
"url": "https://www.suse.com/security/cve/CVE-2024-56645"
},
{
"category": "external",
"summary": "SUSE Bug 1235134 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "external",
"summary": "SUSE Bug 1235135 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56645"
},
{
"cve": "CVE-2024-56648",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56648"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hsr: avoid potential out-of-bound access in fill_frame_info()\n\nsyzbot is able to feed a packet with 14 bytes, pretending\nit is a vlan one.\n\nSince fill_frame_info() is relying on skb-\u003emac_len already,\nextend the check to cover this case.\n\nBUG: KMSAN: uninit-value in fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n BUG: KMSAN: uninit-value in hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n hsr_dev_xmit+0x2f0/0x350 net/hsr/hsr_device.c:235\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n xmit_one net/core/dev.c:3590 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3606\n __dev_queue_xmit+0x366a/0x57d0 net/core/dev.c:4434\n dev_queue_xmit include/linux/netdevice.h:3168 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x91ae/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4091 [inline]\n slab_alloc_node mm/slub.c:4134 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4186\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n alloc_skb include/linux/skbuff.h:1323 [inline]\n alloc_skb_with_frags+0xc8/0xd00 net/core/skbuff.c:6612\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2881\n packet_alloc_skb net/packet/af_packet.c:2995 [inline]\n packet_snd net/packet/af_packet.c:3089 [inline]\n packet_sendmsg+0x74c6/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56648",
"url": "https://www.suse.com/security/cve/CVE-2024-56648"
},
{
"category": "external",
"summary": "SUSE Bug 1235451 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "external",
"summary": "SUSE Bug 1235452 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56648"
},
{
"cve": "CVE-2024-56649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: Do not configure preemptible TCs if SIs do not support\n\nBoth ENETC PF and VF drivers share enetc_setup_tc_mqprio() to configure\nMQPRIO. And enetc_setup_tc_mqprio() calls enetc_change_preemptible_tcs()\nto configure preemptible TCs. However, only PF is able to configure\npreemptible TCs. Because only PF has related registers, while VF does not\nhave these registers. So for VF, its hw-\u003eport pointer is NULL. Therefore,\nVF will access an invalid pointer when accessing a non-existent register,\nwhich will cause a crash issue. The simplified log is as follows.\n\nroot@ls1028ardb:~# tc qdisc add dev eno0vf0 parent root handle 100: \\\nmqprio num_tc 4 map 0 0 1 1 2 2 3 3 queues 1@0 1@1 1@2 1@3 hw 1\n[ 187.290775] Unable to handle kernel paging request at virtual address 0000000000001f00\n[ 187.424831] pc : enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.430518] lr : enetc_mm_commit_preemptible_tcs+0x30c/0x400\n[ 187.511140] Call trace:\n[ 187.513588] enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.518918] enetc_setup_tc_mqprio+0x180/0x214\n[ 187.523374] enetc_vf_setup_tc+0x1c/0x30\n[ 187.527306] mqprio_enable_offload+0x144/0x178\n[ 187.531766] mqprio_init+0x3ec/0x668\n[ 187.535351] qdisc_create+0x15c/0x488\n[ 187.539023] tc_modify_qdisc+0x398/0x73c\n[ 187.542958] rtnetlink_rcv_msg+0x128/0x378\n[ 187.547064] netlink_rcv_skb+0x60/0x130\n[ 187.550910] rtnetlink_rcv+0x18/0x24\n[ 187.554492] netlink_unicast+0x300/0x36c\n[ 187.558425] netlink_sendmsg+0x1a8/0x420\n[ 187.606759] ---[ end trace 0000000000000000 ]---\n\nIn addition, some PFs also do not support configuring preemptible TCs,\nsuch as eno1 and eno3 on LS1028A. It won\u0027t crash like it does for VFs,\nbut we should prevent these PFs from accessing these unimplemented\nregisters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56649",
"url": "https://www.suse.com/security/cve/CVE-2024-56649"
},
{
"category": "external",
"summary": "SUSE Bug 1235449 for CVE-2024-56649",
"url": "https://bugzilla.suse.com/1235449"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56649"
},
{
"cve": "CVE-2024-56650",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56650"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: x_tables: fix LED ID check in led_tg_check()\n\nSyzbot has reported the following BUG detected by KASAN:\n\nBUG: KASAN: slab-out-of-bounds in strlen+0x58/0x70\nRead of size 1 at addr ffff8881022da0c8 by task repro/5879\n...\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x241/0x360\n ? __pfx_dump_stack_lvl+0x10/0x10\n ? __pfx__printk+0x10/0x10\n ? _printk+0xd5/0x120\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x183/0x530\n print_report+0x169/0x550\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x45f/0x530\n ? __phys_addr+0xba/0x170\n ? strlen+0x58/0x70\n kasan_report+0x143/0x180\n ? strlen+0x58/0x70\n strlen+0x58/0x70\n kstrdup+0x20/0x80\n led_tg_check+0x18b/0x3c0\n xt_check_target+0x3bb/0xa40\n ? __pfx_xt_check_target+0x10/0x10\n ? stack_depot_save_flags+0x6e4/0x830\n ? nft_target_init+0x174/0xc30\n nft_target_init+0x82d/0xc30\n ? __pfx_nft_target_init+0x10/0x10\n ? nf_tables_newrule+0x1609/0x2980\n ? nf_tables_newrule+0x1609/0x2980\n ? rcu_is_watching+0x15/0xb0\n ? nf_tables_newrule+0x1609/0x2980\n ? nf_tables_newrule+0x1609/0x2980\n ? __kmalloc_noprof+0x21a/0x400\n nf_tables_newrule+0x1860/0x2980\n ? __pfx_nf_tables_newrule+0x10/0x10\n ? __nla_parse+0x40/0x60\n nfnetlink_rcv+0x14e5/0x2ab0\n ? __pfx_validate_chain+0x10/0x10\n ? __pfx_nfnetlink_rcv+0x10/0x10\n ? __lock_acquire+0x1384/0x2050\n ? netlink_deliver_tap+0x2e/0x1b0\n ? __pfx_lock_release+0x10/0x10\n ? netlink_deliver_tap+0x2e/0x1b0\n netlink_unicast+0x7f8/0x990\n ? __pfx_netlink_unicast+0x10/0x10\n ? __virt_addr_valid+0x183/0x530\n ? __check_object_size+0x48e/0x900\n netlink_sendmsg+0x8e4/0xcb0\n ? __pfx_netlink_sendmsg+0x10/0x10\n ? aa_sock_msg_perm+0x91/0x160\n ? __pfx_netlink_sendmsg+0x10/0x10\n __sock_sendmsg+0x223/0x270\n ____sys_sendmsg+0x52a/0x7e0\n ? __pfx_____sys_sendmsg+0x10/0x10\n __sys_sendmsg+0x292/0x380\n ? __pfx___sys_sendmsg+0x10/0x10\n ? lockdep_hardirqs_on_prepare+0x43d/0x780\n ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10\n ? exc_page_fault+0x590/0x8c0\n ? do_syscall_64+0xb6/0x230\n do_syscall_64+0xf3/0x230\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n \u003c/TASK\u003e\n\nSince an invalid (without \u0027\\0\u0027 byte at all) byte sequence may be passed\nfrom userspace, add an extra check to ensure that such a sequence is\nrejected as possible ID and so never passed to \u0027kstrdup()\u0027 and further.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56650",
"url": "https://www.suse.com/security/cve/CVE-2024-56650"
},
{
"category": "external",
"summary": "SUSE Bug 1235430 for CVE-2024-56650",
"url": "https://bugzilla.suse.com/1235430"
},
{
"category": "external",
"summary": "SUSE Bug 1235431 for CVE-2024-56650",
"url": "https://bugzilla.suse.com/1235431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56650"
},
{
"cve": "CVE-2024-56651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: hi311x: hi3110_can_ist(): fix potential use-after-free\n\nThe commit a22bd630cfff (\"can: hi311x: do not report txerr and rxerr\nduring bus-off\") removed the reporting of rxerr and txerr even in case\nof correct operation (i. e. not bus-off).\n\nThe error count information added to the CAN frame after netif_rx() is\na potential use after free, since there is no guarantee that the skb\nis in the same state. It might be freed or reused.\n\nFix the issue by postponing the netif_rx() call in case of txerr and\nrxerr reporting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56651",
"url": "https://www.suse.com/security/cve/CVE-2024-56651"
},
{
"category": "external",
"summary": "SUSE Bug 1235528 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "external",
"summary": "SUSE Bug 1236570 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1236570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56651"
},
{
"cve": "CVE-2024-56654",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56654"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Fix using rcu_read_(un)lock while iterating\n\nThe usage of rcu_read_(un)lock while inside list_for_each_entry_rcu is\nnot safe since for the most part entries fetched this way shall be\ntreated as rcu_dereference:\n\n\tNote that the value returned by rcu_dereference() is valid\n\tonly within the enclosing RCU read-side critical section [1]_.\n\tFor example, the following is **not** legal::\n\n\t\trcu_read_lock();\n\t\tp = rcu_dereference(head.next);\n\t\trcu_read_unlock();\n\t\tx = p-\u003eaddress;\t/* BUG!!! */\n\t\trcu_read_lock();\n\t\ty = p-\u003edata;\t/* BUG!!! */\n\t\trcu_read_unlock();",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56654",
"url": "https://www.suse.com/security/cve/CVE-2024-56654"
},
{
"category": "external",
"summary": "SUSE Bug 1235532 for CVE-2024-56654",
"url": "https://bugzilla.suse.com/1235532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56654"
},
{
"cve": "CVE-2024-56656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips\n\nThe 5760X (P7) chip\u0027s HW GRO/LRO interface is very similar to that of\nthe previous generation (5750X or P5). However, the aggregation ID\nfields in the completion structures on P7 have been redefined from\n16 bits to 12 bits. The freed up 4 bits are redefined for part of the\nmetadata such as the VLAN ID. The aggregation ID mask was not modified\nwhen adding support for P7 chips. Including the extra 4 bits for the\naggregation ID can potentially cause the driver to store or fetch the\npacket header of GRO/LRO packets in the wrong TPA buffer. It may hit\nthe BUG() condition in __skb_pull() because the SKB contains no valid\npacket header:\n\nkernel BUG at include/linux/skbuff.h:2766!\nOops: invalid opcode: 0000 1 PREEMPT SMP NOPTI\nCPU: 4 UID: 0 PID: 0 Comm: swapper/4 Kdump: loaded Tainted: G OE 6.12.0-rc2+ #7\nTainted: [O]=OOT_MODULE, [E]=UNSIGNED_MODULE\nHardware name: Dell Inc. PowerEdge R760/0VRV9X, BIOS 1.0.1 12/27/2022\nRIP: 0010:eth_type_trans+0xda/0x140\nCode: 80 00 00 00 eb c1 8b 47 70 2b 47 74 48 8b 97 d0 00 00 00 83 f8 01 7e 1b 48 85 d2 74 06 66 83 3a ff 74 09 b8 00 04 00 00 eb a5 \u003c0f\u003e 0b b8 00 01 00 00 eb 9c 48 85 ff 74 eb 31 f6 b9 02 00 00 00 48\nRSP: 0018:ff615003803fcc28 EFLAGS: 00010283\nRAX: 00000000000022d2 RBX: 0000000000000003 RCX: ff2e8c25da334040\nRDX: 0000000000000040 RSI: ff2e8c25c1ce8000 RDI: ff2e8c25869f9000\nRBP: ff2e8c258c31c000 R08: ff2e8c25da334000 R09: 0000000000000001\nR10: ff2e8c25da3342c0 R11: ff2e8c25c1ce89c0 R12: ff2e8c258e0990b0\nR13: ff2e8c25bb120000 R14: ff2e8c25c1ce89c0 R15: ff2e8c25869f9000\nFS: 0000000000000000(0000) GS:ff2e8c34be300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055f05317e4c8 CR3: 000000108bac6006 CR4: 0000000000773ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n ? die+0x33/0x90\n ? do_trap+0xd9/0x100\n ? eth_type_trans+0xda/0x140\n ? do_error_trap+0x65/0x80\n ? eth_type_trans+0xda/0x140\n ? exc_invalid_op+0x4e/0x70\n ? eth_type_trans+0xda/0x140\n ? asm_exc_invalid_op+0x16/0x20\n ? eth_type_trans+0xda/0x140\n bnxt_tpa_end+0x10b/0x6b0 [bnxt_en]\n ? bnxt_tpa_start+0x195/0x320 [bnxt_en]\n bnxt_rx_pkt+0x902/0xd90 [bnxt_en]\n ? __bnxt_tx_int.constprop.0+0x89/0x300 [bnxt_en]\n ? kmem_cache_free+0x343/0x440\n ? __bnxt_tx_int.constprop.0+0x24f/0x300 [bnxt_en]\n __bnxt_poll_work+0x193/0x370 [bnxt_en]\n bnxt_poll_p5+0x9a/0x300 [bnxt_en]\n ? try_to_wake_up+0x209/0x670\n __napi_poll+0x29/0x1b0\n\nFix it by redefining the aggregation ID mask for P5_PLUS chips to be\n12 bits. This will work because the maximum aggregation ID is less\nthan 4096 on all P5_PLUS chips.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56656",
"url": "https://www.suse.com/security/cve/CVE-2024-56656"
},
{
"category": "external",
"summary": "SUSE Bug 1235444 for CVE-2024-56656",
"url": "https://bugzilla.suse.com/1235444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56656"
},
{
"cve": "CVE-2024-56659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56659"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: lapb: increase LAPB_HEADER_LEN\n\nIt is unclear if net/lapb code is supposed to be ready for 8021q.\n\nWe can at least avoid crashes like the following :\n\nskbuff: skb_under_panic: text:ffffffff8aabe1f6 len:24 put:20 head:ffff88802824a400 data:ffff88802824a3fe tail:0x16 end:0x140 dev:nr0.2\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 5508 Comm: dhcpcd Not tainted 6.12.0-rc7-syzkaller-00144-g66418447d27b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 2e 9e 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 1a 6f 37 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc90002ddf638 EFLAGS: 00010282\nRAX: 0000000000000086 RBX: dffffc0000000000 RCX: 7a24750e538ff600\nRDX: 0000000000000000 RSI: 0000000000000201 RDI: 0000000000000000\nRBP: ffff888034a86650 R08: ffffffff8174b13c R09: 1ffff920005bbe60\nR10: dffffc0000000000 R11: fffff520005bbe61 R12: 0000000000000140\nR13: ffff88802824a400 R14: ffff88802824a3fe R15: 0000000000000016\nFS: 00007f2a5990d740(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c2631fd CR3: 0000000029504000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n nr_header+0x36/0x320 net/netrom/nr_dev.c:69\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n vlan_dev_hard_header+0x359/0x480 net/8021q/vlan_dev.c:83\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n lapbeth_data_transmit+0x1f6/0x2a0 drivers/net/wan/lapbether.c:257\n lapb_data_transmit+0x91/0xb0 net/lapb/lapb_iface.c:447\n lapb_transmit_buffer+0x168/0x1f0 net/lapb/lapb_out.c:149\n lapb_establish_data_link+0x84/0xd0\n lapb_device_event+0x4e0/0x670\n notifier_call_chain+0x19f/0x3e0 kernel/notifier.c:93\n __dev_notify_flags+0x207/0x400\n dev_change_flags+0xf0/0x1a0 net/core/dev.c:8922\n devinet_ioctl+0xa4e/0x1aa0 net/ipv4/devinet.c:1188\n inet_ioctl+0x3d7/0x4f0 net/ipv4/af_inet.c:1003\n sock_do_ioctl+0x158/0x460 net/socket.c:1227\n sock_ioctl+0x626/0x8e0 net/socket.c:1346\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xf9/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56659",
"url": "https://www.suse.com/security/cve/CVE-2024-56659"
},
{
"category": "external",
"summary": "SUSE Bug 1235439 for CVE-2024-56659",
"url": "https://bugzilla.suse.com/1235439"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56659"
},
{
"cve": "CVE-2024-56660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56660"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: DR, prevent potential error pointer dereference\n\nThe dr_domain_add_vport_cap() function generally returns NULL on error\nbut sometimes we want it to return ERR_PTR(-EBUSY) so the caller can\nretry. The problem here is that \"ret\" can be either -EBUSY or -ENOMEM\nand if it\u0027s and -ENOMEM then the error pointer is propogated back and\neventually dereferenced in dr_ste_v0_build_src_gvmi_qpn_tag().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56660",
"url": "https://www.suse.com/security/cve/CVE-2024-56660"
},
{
"category": "external",
"summary": "SUSE Bug 1235437 for CVE-2024-56660",
"url": "https://bugzilla.suse.com/1235437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56660"
},
{
"cve": "CVE-2024-56661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56661"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix NULL deref in cleanup_bearer()\n\nsyzbot found [1] that after blamed commit, ub-\u003eubsock-\u003esk\nwas NULL when attempting the atomic_dec() :\n\natomic_dec(\u0026tipc_net(sock_net(ub-\u003eubsock-\u003esk))-\u003ewq_count);\n\nFix this by caching the tipc_net pointer.\n\n[1]\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]\nCPU: 0 UID: 0 PID: 5896 Comm: kworker/0:3 Not tainted 6.13.0-rc1-next-20241203-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events cleanup_bearer\n RIP: 0010:read_pnet include/net/net_namespace.h:387 [inline]\n RIP: 0010:sock_net include/net/sock.h:655 [inline]\n RIP: 0010:cleanup_bearer+0x1f7/0x280 net/tipc/udp_media.c:820\nCode: 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 3c f7 99 f6 48 8b 1b 48 83 c3 30 e8 f0 e4 60 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 28 00 74 08 48 89 df e8 1a f7 99 f6 49 83 c7 e8 48 8b 1b\nRSP: 0018:ffffc9000410fb70 EFLAGS: 00010206\nRAX: 0000000000000006 RBX: 0000000000000030 RCX: ffff88802fe45a00\nRDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc9000410f900\nRBP: ffff88807e1f0908 R08: ffffc9000410f907 R09: 1ffff92000821f20\nR10: dffffc0000000000 R11: fffff52000821f21 R12: ffff888031d19980\nR13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88807e1f0918\nFS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000556ca050b000 CR3: 0000000031c0c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56661",
"url": "https://www.suse.com/security/cve/CVE-2024-56661"
},
{
"category": "external",
"summary": "SUSE Bug 1234931 for CVE-2024-56661",
"url": "https://bugzilla.suse.com/1234931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56661"
},
{
"cve": "CVE-2024-56662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nacpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl\n\nFix an issue detected by syzbot with KASAN:\n\nBUG: KASAN: vmalloc-out-of-bounds in cmd_to_func drivers/acpi/nfit/\ncore.c:416 [inline]\nBUG: KASAN: vmalloc-out-of-bounds in acpi_nfit_ctl+0x20e8/0x24a0\ndrivers/acpi/nfit/core.c:459\n\nThe issue occurs in cmd_to_func when the call_pkg-\u003end_reserved2\narray is accessed without verifying that call_pkg points to a buffer\nthat is appropriately sized as a struct nd_cmd_pkg. This can lead\nto out-of-bounds access and undefined behavior if the buffer does not\nhave sufficient space.\n\nTo address this, a check was added in acpi_nfit_ctl() to ensure that\nbuf is not NULL and that buf_len is less than sizeof(*call_pkg)\nbefore accessing it. This ensures safe access to the members of\ncall_pkg, including the nd_reserved2 array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56662",
"url": "https://www.suse.com/security/cve/CVE-2024-56662"
},
{
"category": "external",
"summary": "SUSE Bug 1235533 for CVE-2024-56662",
"url": "https://bugzilla.suse.com/1235533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56662"
},
{
"cve": "CVE-2024-56663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one\n\nSince the netlink attribute range validation provides inclusive\nchecking, the *max* of attribute NL80211_ATTR_MLO_LINK_ID should be\nIEEE80211_MLD_MAX_NUM_LINKS - 1 otherwise causing an off-by-one.\n\nOne crash stack for demonstration:\n==================================================================\nBUG: KASAN: wild-memory-access in ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\nRead of size 6 at addr 001102080000000c by task fuzzer.386/9508\n\nCPU: 1 PID: 9508 Comm: syz.1.386 Not tainted 6.1.70 #2\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x177/0x231 lib/dump_stack.c:106\n print_report+0xe0/0x750 mm/kasan/report.c:398\n kasan_report+0x139/0x170 mm/kasan/report.c:495\n kasan_check_range+0x287/0x290 mm/kasan/generic.c:189\n memcpy+0x25/0x60 mm/kasan/shadow.c:65\n ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\n rdev_tx_control_port net/wireless/rdev-ops.h:761 [inline]\n nl80211_tx_control_port+0x7b3/0xc40 net/wireless/nl80211.c:15453\n genl_family_rcv_msg_doit+0x22e/0x320 net/netlink/genetlink.c:756\n genl_family_rcv_msg net/netlink/genetlink.c:833 [inline]\n genl_rcv_msg+0x539/0x740 net/netlink/genetlink.c:850\n netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2508\n genl_rcv+0x24/0x40 net/netlink/genetlink.c:861\n netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]\n netlink_unicast+0x74b/0x8c0 net/netlink/af_netlink.c:1352\n netlink_sendmsg+0x882/0xb90 net/netlink/af_netlink.c:1874\n sock_sendmsg_nosec net/socket.c:716 [inline]\n __sock_sendmsg net/socket.c:728 [inline]\n ____sys_sendmsg+0x5cc/0x8f0 net/socket.c:2499\n ___sys_sendmsg+0x21c/0x290 net/socket.c:2553\n __sys_sendmsg net/socket.c:2582 [inline]\n __do_sys_sendmsg net/socket.c:2591 [inline]\n __se_sys_sendmsg+0x19e/0x270 net/socket.c:2589\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x45/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUpdate the policy to ensure correct validation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56663",
"url": "https://www.suse.com/security/cve/CVE-2024-56663"
},
{
"category": "external",
"summary": "SUSE Bug 1235454 for CVE-2024-56663",
"url": "https://bugzilla.suse.com/1235454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56663"
},
{
"cve": "CVE-2024-56664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Fix race between element replace and close()\n\nElement replace (with a socket different from the one stored) may race\nwith socket\u0027s close() link popping \u0026 unlinking. __sock_map_delete()\nunconditionally unrefs the (wrong) element:\n\n// set map[0] = s0\nmap_update_elem(map, 0, s0)\n\n// drop fd of s0\nclose(s0)\n sock_map_close()\n lock_sock(sk) (s0!)\n sock_map_remove_links(sk)\n link = sk_psock_link_pop()\n sock_map_unlink(sk, link)\n sock_map_delete_from_link\n // replace map[0] with s1\n map_update_elem(map, 0, s1)\n sock_map_update_elem\n (s1!) lock_sock(sk)\n sock_map_update_common\n psock = sk_psock(sk)\n spin_lock(\u0026stab-\u003elock)\n osk = stab-\u003esks[idx]\n sock_map_add_link(..., \u0026stab-\u003esks[idx])\n sock_map_unref(osk, \u0026stab-\u003esks[idx])\n psock = sk_psock(osk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test(\u0026psock))\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n unlock_sock(sk)\n __sock_map_delete\n spin_lock(\u0026stab-\u003elock)\n sk = *psk // s1 replaced s0; sk == s1\n if (!sk_test || sk_test == sk) // sk_test (s0) != sk (s1); no branch\n sk = xchg(psk, NULL)\n if (sk)\n sock_map_unref(sk, psk) // unref s1; sks[idx] will dangle\n psock = sk_psock(sk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test())\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n release_sock(sk)\n\nThen close(map) enqueues bpf_map_free_deferred, which finally calls\nsock_map_free(). This results in some refcount_t warnings along with\na KASAN splat [1].\n\nFix __sock_map_delete(), do not allow sock_map_unref() on elements that\nmay have been replaced.\n\n[1]:\nBUG: KASAN: slab-use-after-free in sock_map_free+0x10e/0x330\nWrite of size 4 at addr ffff88811f5b9100 by task kworker/u64:12/1063\n\nCPU: 14 UID: 0 PID: 1063 Comm: kworker/u64:12 Not tainted 6.12.0+ #125\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Arch Linux 1.16.3-1-1 04/01/2014\nWorkqueue: events_unbound bpf_map_free_deferred\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x68/0x90\n print_report+0x174/0x4f6\n kasan_report+0xb9/0x190\n kasan_check_range+0x10f/0x1e0\n sock_map_free+0x10e/0x330\n bpf_map_free_deferred+0x173/0x320\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 1202:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x85/0x90\n kmem_cache_alloc_noprof+0x131/0x450\n sk_prot_alloc+0x5b/0x220\n sk_alloc+0x2c/0x870\n unix_create1+0x88/0x8a0\n unix_create+0xc5/0x180\n __sock_create+0x241/0x650\n __sys_socketpair+0x1ce/0x420\n __x64_sys_socketpair+0x92/0x100\n do_syscall_64+0x93/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 46:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x60\n __kasan_slab_free+0x4b/0x70\n kmem_cache_free+0x1a1/0x590\n __sk_destruct+0x388/0x5a0\n sk_psock_destroy+0x73e/0xa50\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n\nThe bu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56664",
"url": "https://www.suse.com/security/cve/CVE-2024-56664"
},
{
"category": "external",
"summary": "SUSE Bug 1235249 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "external",
"summary": "SUSE Bug 1235250 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56664"
},
{
"cve": "CVE-2024-56665",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56665"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog\n\nSyzbot reported [1] crash that happens for following tracing scenario:\n\n - create tracepoint perf event with attr.inherit=1, attach it to the\n process and set bpf program to it\n - attached process forks -\u003e chid creates inherited event\n\n the new child event shares the parent\u0027s bpf program and tp_event\n (hence prog_array) which is global for tracepoint\n\n - exit both process and its child -\u003e release both events\n - first perf_event_detach_bpf_prog call will release tp_event-\u003eprog_array\n and second perf_event_detach_bpf_prog will crash, because\n tp_event-\u003eprog_array is NULL\n\nThe fix makes sure the perf_event_detach_bpf_prog checks prog_array\nis valid before it tries to remove the bpf program from it.\n\n[1] https://lore.kernel.org/bpf/Z1MR6dCIKajNS6nU@krava/T/#m91dbf0688221ec7a7fc95e896a7ef9ff93b0b8ad",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56665",
"url": "https://www.suse.com/security/cve/CVE-2024-56665"
},
{
"category": "external",
"summary": "SUSE Bug 1235489 for CVE-2024-56665",
"url": "https://bugzilla.suse.com/1235489"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56665"
},
{
"cve": "CVE-2024-56667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Fix NULL pointer dereference in capture_engine\n\nWhen the intel_context structure contains NULL,\nit raises a NULL pointer dereference error in drm_info().\n\n(cherry picked from commit 754302a5bc1bd8fd3b7d85c168b0a1af6d4bba4d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56667",
"url": "https://www.suse.com/security/cve/CVE-2024-56667"
},
{
"category": "external",
"summary": "SUSE Bug 1235016 for CVE-2024-56667",
"url": "https://bugzilla.suse.com/1235016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56667"
},
{
"cve": "CVE-2024-56670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56670"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer\n\nConsidering that in some extreme cases,\nwhen u_serial driver is accessed by multiple threads,\nThread A is executing the open operation and calling the gs_open,\nThread B is executing the disconnect operation and calling the\ngserial_disconnect function,The port-\u003eport_usb pointer will be set to NULL.\n\nE.g.\n Thread A Thread B\n gs_open() gadget_unbind_driver()\n gs_start_io() composite_disconnect()\n gs_start_rx() gserial_disconnect()\n ... ...\n spin_unlock(\u0026port-\u003eport_lock)\n status = usb_ep_queue() spin_lock(\u0026port-\u003eport_lock)\n spin_lock(\u0026port-\u003eport_lock) port-\u003eport_usb = NULL\n gs_free_requests(port-\u003eport_usb-\u003ein) spin_unlock(\u0026port-\u003eport_lock)\n Crash\n\nThis causes thread A to access a null pointer (port-\u003eport_usb is null)\nwhen calling the gs_free_requests function, causing a crash.\n\nIf port_usb is NULL, the release request will be skipped as it\nwill be done by gserial_disconnect.\n\nSo add a null pointer check to gs_start_io before attempting\nto access the value of the pointer port-\u003eport_usb.\n\nCall trace:\n gs_start_io+0x164/0x25c\n gs_open+0x108/0x13c\n tty_open+0x314/0x638\n chrdev_open+0x1b8/0x258\n do_dentry_open+0x2c4/0x700\n vfs_open+0x2c/0x3c\n path_openat+0xa64/0xc60\n do_filp_open+0xb8/0x164\n do_sys_openat2+0x84/0xf0\n __arm64_sys_openat+0x70/0x9c\n invoke_syscall+0x58/0x114\n el0_svc_common+0x80/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x38/0x68",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56670",
"url": "https://www.suse.com/security/cve/CVE-2024-56670"
},
{
"category": "external",
"summary": "SUSE Bug 1235488 for CVE-2024-56670",
"url": "https://bugzilla.suse.com/1235488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56670"
},
{
"cve": "CVE-2024-56672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: Fix UAF in blkcg_unpin_online()\n\nblkcg_unpin_online() walks up the blkcg hierarchy putting the online pin. To\nwalk up, it uses blkcg_parent(blkcg) but it was calling that after\nblkcg_destroy_blkgs(blkcg) which could free the blkcg, leading to the\nfollowing UAF:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in blkcg_unpin_online+0x15a/0x270\n Read of size 8 at addr ffff8881057678c0 by task kworker/9:1/117\n\n CPU: 9 UID: 0 PID: 117 Comm: kworker/9:1 Not tainted 6.13.0-rc1-work-00182-gb8f52214c61a-dirty #48\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS unknown 02/02/2022\n Workqueue: cgwb_release cgwb_release_workfn\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x27/0x80\n print_report+0x151/0x710\n kasan_report+0xc0/0x100\n blkcg_unpin_online+0x15a/0x270\n cgwb_release_workfn+0x194/0x480\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n ...\n Freed by task 1944:\n kasan_save_track+0x2b/0x70\n kasan_save_free_info+0x3c/0x50\n __kasan_slab_free+0x33/0x50\n kfree+0x10c/0x330\n css_free_rwork_fn+0xe6/0xb30\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n\nNote that the UAF is not easy to trigger as the free path is indirected\nbehind a couple RCU grace periods and a work item execution. I could only\ntrigger it with artifical msleep() injected in blkcg_unpin_online().\n\nFix it by reading the parent pointer before destroying the blkcg\u0027s blkg\u0027s.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56672",
"url": "https://www.suse.com/security/cve/CVE-2024-56672"
},
{
"category": "external",
"summary": "SUSE Bug 1235534 for CVE-2024-56672",
"url": "https://bugzilla.suse.com/1235534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56672"
},
{
"cve": "CVE-2024-56675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors\n\nUprobes always use bpf_prog_run_array_uprobe() under tasks-trace-RCU\nprotection. But it is possible to attach a non-sleepable BPF program to a\nuprobe, and non-sleepable BPF programs are freed via normal RCU (see\n__bpf_prog_put_noref()). This leads to UAF of the bpf_prog because a normal\nRCU grace period does not imply a tasks-trace-RCU grace period.\n\nFix it by explicitly waiting for a tasks-trace-RCU grace period after\nremoving the attachment of a bpf_prog to a perf_event.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56675",
"url": "https://www.suse.com/security/cve/CVE-2024-56675"
},
{
"category": "external",
"summary": "SUSE Bug 1235555 for CVE-2024-56675",
"url": "https://bugzilla.suse.com/1235555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56675"
},
{
"cve": "CVE-2024-56677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init()\n\nDuring early init CMA_MIN_ALIGNMENT_BYTES can be PAGE_SIZE,\nsince pageblock_order is still zero and it gets initialized\nlater during initmem_init() e.g.\nsetup_arch() -\u003e initmem_init() -\u003e sparse_init() -\u003e set_pageblock_order()\n\nOne such use case where this causes issue is -\nearly_setup() -\u003e early_init_devtree() -\u003e fadump_reserve_mem() -\u003e fadump_cma_init()\n\nThis causes CMA memory alignment check to be bypassed in\ncma_init_reserved_mem(). Then later cma_activate_area() can hit\na VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1)) if the reserved memory\narea was not pageblock_order aligned.\n\nFix it by moving the fadump_cma_init() after initmem_init(),\nwhere other such cma reservations also gets called.\n\n\u003cstack trace\u003e\n==============\npage: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10010\nflags: 0x13ffff800000000(node=1|zone=0|lastcpupid=0x7ffff) CMA\nraw: 013ffff800000000 5deadbeef0000100 5deadbeef0000122 0000000000000000\nraw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\npage dumped because: VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1))\n------------[ cut here ]------------\nkernel BUG at mm/page_alloc.c:778!\n\nCall Trace:\n__free_one_page+0x57c/0x7b0 (unreliable)\nfree_pcppages_bulk+0x1a8/0x2c8\nfree_unref_page_commit+0x3d4/0x4e4\nfree_unref_page+0x458/0x6d0\ninit_cma_reserved_pageblock+0x114/0x198\ncma_init_reserved_areas+0x270/0x3e0\ndo_one_initcall+0x80/0x2f8\nkernel_init_freeable+0x33c/0x530\nkernel_init+0x34/0x26c\nret_from_kernel_user_thread+0x14/0x1c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56677",
"url": "https://www.suse.com/security/cve/CVE-2024-56677"
},
{
"category": "external",
"summary": "SUSE Bug 1235494 for CVE-2024-56677",
"url": "https://bugzilla.suse.com/1235494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56677"
},
{
"cve": "CVE-2024-56678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/mm/fault: Fix kfence page fault reporting\n\ncopy_from_kernel_nofault() can be called when doing read of /proc/kcore.\n/proc/kcore can have some unmapped kfence objects which when read via\ncopy_from_kernel_nofault() can cause page faults. Since *_nofault()\nfunctions define their own fixup table for handling fault, use that\ninstead of asking kfence to handle such faults.\n\nHence we search the exception tables for the nip which generated the\nfault. If there is an entry then we let the fixup table handler handle the\npage fault by returning an error from within ___do_page_fault().\n\nThis can be easily triggered if someone tries to do dd from /proc/kcore.\neg. dd if=/proc/kcore of=/dev/null bs=1M\n\nSome example false negatives:\n\n ===============================\n BUG: KFENCE: invalid read in copy_from_kernel_nofault+0x9c/0x1a0\n Invalid read at 0xc0000000fdff0000:\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec\n\n BUG: KFENCE: use-after-free read in copy_from_kernel_nofault+0x9c/0x1a0\n Use-after-free read at 0xc0000000fe050000 (in kfence-#2):\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56678",
"url": "https://www.suse.com/security/cve/CVE-2024-56678"
},
{
"category": "external",
"summary": "SUSE Bug 1235495 for CVE-2024-56678",
"url": "https://bugzilla.suse.com/1235495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56678"
},
{
"cve": "CVE-2024-56679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56679",
"url": "https://www.suse.com/security/cve/CVE-2024-56679"
},
{
"category": "external",
"summary": "SUSE Bug 1235498 for CVE-2024-56679",
"url": "https://bugzilla.suse.com/1235498"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56679"
},
{
"cve": "CVE-2024-56681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: bcm - add error check in the ahash_hmac_init function\n\nThe ahash_init functions may return fails. The ahash_hmac_init should\nnot return ok when ahash_init returns error. For an example, ahash_init\nwill return -ENOMEM when allocation memory is error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56681",
"url": "https://www.suse.com/security/cve/CVE-2024-56681"
},
{
"category": "external",
"summary": "SUSE Bug 1235557 for CVE-2024-56681",
"url": "https://bugzilla.suse.com/1235557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56681"
},
{
"cve": "CVE-2024-56683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56683"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: hdmi: Avoid hang with debug registers when suspended\n\nTrying to read /sys/kernel/debug/dri/1/hdmi1_regs\nwhen the hdmi is disconnected results in a fatal system hang.\n\nThis is due to the pm suspend code disabling the dvp clock.\nThat is just a gate of the 108MHz clock in DVP_HT_RPI_MISC_CONFIG,\nwhich results in accesses hanging AXI bus.\n\nProtect against this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56683",
"url": "https://www.suse.com/security/cve/CVE-2024-56683"
},
{
"category": "external",
"summary": "SUSE Bug 1235497 for CVE-2024-56683",
"url": "https://bugzilla.suse.com/1235497"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56683"
},
{
"cve": "CVE-2024-56687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: musb: Fix hardware lockup on first Rx endpoint request\n\nThere is a possibility that a request\u0027s callback could be invoked from\nusb_ep_queue() (call trace below, supplemented with missing calls):\n\nreq-\u003ecomplete from usb_gadget_giveback_request\n\t(drivers/usb/gadget/udc/core.c:999)\nusb_gadget_giveback_request from musb_g_giveback\n\t(drivers/usb/musb/musb_gadget.c:147)\nmusb_g_giveback from rxstate\n\t(drivers/usb/musb/musb_gadget.c:784)\nrxstate from musb_ep_restart\n\t(drivers/usb/musb/musb_gadget.c:1169)\nmusb_ep_restart from musb_ep_restart_resume_work\n\t(drivers/usb/musb/musb_gadget.c:1176)\nmusb_ep_restart_resume_work from musb_queue_resume_work\n\t(drivers/usb/musb/musb_core.c:2279)\nmusb_queue_resume_work from musb_gadget_queue\n\t(drivers/usb/musb/musb_gadget.c:1241)\nmusb_gadget_queue from usb_ep_queue\n\t(drivers/usb/gadget/udc/core.c:300)\n\nAccording to the docstring of usb_ep_queue(), this should not happen:\n\n\"Note that @req\u0027s -\u003ecomplete() callback must never be called from within\nusb_ep_queue() as that can create deadlock situations.\"\n\nIn fact, a hardware lockup might occur in the following sequence:\n\n1. The gadget is initialized using musb_gadget_enable().\n2. Meanwhile, a packet arrives, and the RXPKTRDY flag is set, raising an\n interrupt.\n3. If IRQs are enabled, the interrupt is handled, but musb_g_rx() finds an\n empty queue (next_request() returns NULL). The interrupt flag has\n already been cleared by the glue layer handler, but the RXPKTRDY flag\n remains set.\n4. The first request is enqueued using usb_ep_queue(), leading to the call\n of req-\u003ecomplete(), as shown in the call trace above.\n5. If the callback enables IRQs and another packet is waiting, step (3)\n repeats. The request queue is empty because usb_g_giveback() removes the\n request before invoking the callback.\n6. The endpoint remains locked up, as the interrupt triggered by hardware\n setting the RXPKTRDY flag has been handled, but the flag itself remains\n set.\n\nFor this scenario to occur, it is only necessary for IRQs to be enabled at\nsome point during the complete callback. This happens with the USB Ethernet\ngadget, whose rx_complete() callback calls netif_rx(). If called in the\ntask context, netif_rx() disables the bottom halves (BHs). When the BHs are\nre-enabled, IRQs are also enabled to allow soft IRQs to be processed. The\ngadget itself is initialized at module load (or at boot if built-in), but\nthe first request is enqueued when the network interface is brought up,\ntriggering rx_complete() in the task context via ioctl(). If a packet\narrives while the interface is down, it can prevent the interface from\nreceiving any further packets from the USB host.\n\nThe situation is quite complicated with many parties involved. This\nparticular issue can be resolved in several possible ways:\n\n1. Ensure that callbacks never enable IRQs. This would be difficult to\n enforce, as discovering how netif_rx() interacts with interrupts was\n already quite challenging and u_ether is not the only function driver.\n Similar \"bugs\" could be hidden in other drivers as well.\n2. Disable MUSB interrupts in musb_g_giveback() before calling the callback\n and re-enable them afterwars (by calling musb_{dis,en}able_interrupts(),\n for example). This would ensure that MUSB interrupts are not handled\n during the callback, even if IRQs are enabled. In fact, it would allow\n IRQs to be enabled when releasing the lock. However, this feels like an\n inelegant hack.\n3. Modify the interrupt handler to clear the RXPKTRDY flag if the request\n queue is empty. While this approach also feels like a hack, it wastes\n CPU time by attempting to handle incoming packets when the software is\n not ready to process them.\n4. Flush the Rx FIFO instead of calling rxstate() in musb_ep_restart().\n This ensures that the hardware can receive packets when there is at\n least one request in the queue. Once I\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56687",
"url": "https://www.suse.com/security/cve/CVE-2024-56687"
},
{
"category": "external",
"summary": "SUSE Bug 1235537 for CVE-2024-56687",
"url": "https://bugzilla.suse.com/1235537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56687"
},
{
"cve": "CVE-2024-56688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56688"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport\n\nSince transport-\u003esock has been set to NULL during reset transport,\nXPRT_SOCK_UPD_TIMEOUT also needs to be cleared. Otherwise, the\nxs_tcp_set_socket_timeouts() may be triggered in xs_tcp_send_request()\nto dereference the transport-\u003esock that has been set to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56688",
"url": "https://www.suse.com/security/cve/CVE-2024-56688"
},
{
"category": "external",
"summary": "SUSE Bug 1235538 for CVE-2024-56688",
"url": "https://bugzilla.suse.com/1235538"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56688"
},
{
"cve": "CVE-2024-56690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY\n\nSince commit 8f4f68e788c3 (\"crypto: pcrypt - Fix hungtask for\nPADATA_RESET\"), the pcrypt encryption and decryption operations return\n-EAGAIN when the CPU goes online or offline. In alg_test(), a WARN is\ngenerated when pcrypt_aead_decrypt() or pcrypt_aead_encrypt() returns\n-EAGAIN, the unnecessary panic will occur when panic_on_warn set 1.\nFix this issue by calling crypto layer directly without parallelization\nin that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56690",
"url": "https://www.suse.com/security/cve/CVE-2024-56690"
},
{
"category": "external",
"summary": "SUSE Bug 1235428 for CVE-2024-56690",
"url": "https://bugzilla.suse.com/1235428"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56690"
},
{
"cve": "CVE-2024-56691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56691",
"url": "https://www.suse.com/security/cve/CVE-2024-56691"
},
{
"category": "external",
"summary": "SUSE Bug 1235425 for CVE-2024-56691",
"url": "https://bugzilla.suse.com/1235425"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56691"
},
{
"cve": "CVE-2024-56693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbrd: defer automatic disk creation until module initialization succeeds\n\nMy colleague Wupeng found the following problems during fault injection:\n\nBUG: unable to handle page fault for address: fffffbfff809d073\nPGD 6e648067 P4D 123ec8067 PUD 123ec4067 PMD 100e38067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nCPU: 5 UID: 0 PID: 755 Comm: modprobe Not tainted 6.12.0-rc3+ #17\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:__asan_load8+0x4c/0xa0\n...\nCall Trace:\n \u003cTASK\u003e\n blkdev_put_whole+0x41/0x70\n bdev_release+0x1a3/0x250\n blkdev_release+0x11/0x20\n __fput+0x1d7/0x4a0\n task_work_run+0xfc/0x180\n syscall_exit_to_user_mode+0x1de/0x1f0\n do_syscall_64+0x6b/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nloop_init() is calling loop_add() after __register_blkdev() succeeds and\nis ignoring disk_add() failure from loop_add(), for loop_add() failure\nis not fatal and successfully created disks are already visible to\nbdev_open().\n\nbrd_init() is currently calling brd_alloc() before __register_blkdev()\nsucceeds and is releasing successfully created disks when brd_init()\nreturns an error. This can cause UAF for the latter two case:\n\ncase 1:\n T1:\nmodprobe brd\n brd_init\n brd_alloc(0) // success\n add_disk\n disk_scan_partitions\n bdev_file_open_by_dev // alloc file\n fput // won\u0027t free until back to userspace\n brd_alloc(1) // failed since mem alloc error inject\n // error path for modprobe will release code segment\n // back to userspace\n __fput\n blkdev_release\n bdev_release\n blkdev_put_whole\n bdev-\u003ebd_disk-\u003efops-\u003erelease // fops is freed now, UAF!\n\ncase 2:\n T1: T2:\nmodprobe brd\n brd_init\n brd_alloc(0) // success\n open(/dev/ram0)\n brd_alloc(1) // fail\n // error path for modprobe\n\n close(/dev/ram0)\n ...\n /* UAF! */\n bdev-\u003ebd_disk-\u003efops-\u003erelease\n\nFix this problem by following what loop_init() does. Besides,\nreintroduce brd_devices_mutex to help serialize modifications to\nbrd_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56693",
"url": "https://www.suse.com/security/cve/CVE-2024-56693"
},
{
"category": "external",
"summary": "SUSE Bug 1235418 for CVE-2024-56693",
"url": "https://bugzilla.suse.com/1235418"
},
{
"category": "external",
"summary": "SUSE Bug 1235419 for CVE-2024-56693",
"url": "https://bugzilla.suse.com/1235419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56693"
},
{
"cve": "CVE-2024-56694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix recursive lock when verdict program return SK_PASS\n\nWhen the stream_verdict program returns SK_PASS, it places the received skb\ninto its own receive queue, but a recursive lock eventually occurs, leading\nto an operating system deadlock. This issue has been present since v6.9.\n\n\u0027\u0027\u0027\nsk_psock_strp_data_ready\n write_lock_bh(\u0026sk-\u003esk_callback_lock)\n strp_data_ready\n strp_read_sock\n read_sock -\u003e tcp_read_sock\n strp_recv\n cb.rcv_msg -\u003e sk_psock_strp_read\n # now stream_verdict return SK_PASS without peer sock assign\n __SK_PASS = sk_psock_map_verd(SK_PASS, NULL)\n sk_psock_verdict_apply\n sk_psock_skb_ingress_self\n sk_psock_skb_ingress_enqueue\n sk_psock_data_ready\n read_lock_bh(\u0026sk-\u003esk_callback_lock) \u003c= dead lock\n\n\u0027\u0027\u0027\n\nThis topic has been discussed before, but it has not been fixed.\nPrevious discussion:\nhttps://lore.kernel.org/all/6684a5864ec86_403d20898@john.notmuch",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56694",
"url": "https://www.suse.com/security/cve/CVE-2024-56694"
},
{
"category": "external",
"summary": "SUSE Bug 1235412 for CVE-2024-56694",
"url": "https://bugzilla.suse.com/1235412"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56694"
},
{
"cve": "CVE-2024-56698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56698"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: gadget: Fix looping of queued SG entries\n\nThe dwc3_request-\u003enum_queued_sgs is decremented on completion. If a\npartially completed request is handled, then the\ndwc3_request-\u003enum_queued_sgs no longer reflects the total number of\nnum_queued_sgs (it would be cleared).\n\nCorrectly check the number of request SG entries remained to be prepare\nand queued. Failure to do this may cause null pointer dereference when\naccessing non-existent SG entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56698",
"url": "https://www.suse.com/security/cve/CVE-2024-56698"
},
{
"category": "external",
"summary": "SUSE Bug 1235491 for CVE-2024-56698",
"url": "https://bugzilla.suse.com/1235491"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56698"
},
{
"cve": "CVE-2024-56700",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56700"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: wl128x: Fix atomicity violation in fmc_send_cmd()\n\nAtomicity violation occurs when the fmc_send_cmd() function is executed\nsimultaneously with the modification of the fmdev-\u003eresp_skb value.\nConsider a scenario where, after passing the validity check within the\nfunction, a non-null fmdev-\u003eresp_skb variable is assigned a null value.\nThis results in an invalid fmdev-\u003eresp_skb variable passing the validity\ncheck. As seen in the later part of the function, skb = fmdev-\u003eresp_skb;\nwhen the invalid fmdev-\u003eresp_skb passes the check, a null pointer\ndereference error may occur at line 478, evt_hdr = (void *)skb-\u003edata;\n\nTo address this issue, it is recommended to include the validity check of\nfmdev-\u003eresp_skb within the locked section of the function. This\nmodification ensures that the value of fmdev-\u003eresp_skb does not change\nduring the validation process, thereby maintaining its validity.\n\nThis possible bug is found by an experimental static analysis tool\ndeveloped by our team. This tool analyzes the locking APIs\nto extract function pairs that can be concurrently executed, and then\nanalyzes the instructions in the paired functions to identify possible\nconcurrency bugs including data races and atomicity violations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56700",
"url": "https://www.suse.com/security/cve/CVE-2024-56700"
},
{
"category": "external",
"summary": "SUSE Bug 1235500 for CVE-2024-56700",
"url": "https://bugzilla.suse.com/1235500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56700"
},
{
"cve": "CVE-2024-56701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56701"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: Fix dtl_access_lock to be a rw_semaphore\n\nThe dtl_access_lock needs to be a rw_sempahore, a sleeping lock, because\nthe code calls kmalloc() while holding it, which can sleep:\n\n # echo 1 \u003e /proc/powerpc/vcpudispatch_stats\n BUG: sleeping function called from invalid context at include/linux/sched/mm.h:337\n in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 199, name: sh\n preempt_count: 1, expected: 0\n 3 locks held by sh/199:\n #0: c00000000a0743f8 (sb_writers#3){.+.+}-{0:0}, at: vfs_write+0x324/0x438\n #1: c0000000028c7058 (dtl_enable_mutex){+.+.}-{3:3}, at: vcpudispatch_stats_write+0xd4/0x5f4\n #2: c0000000028c70b8 (dtl_access_lock){+.+.}-{2:2}, at: vcpudispatch_stats_write+0x220/0x5f4\n CPU: 0 PID: 199 Comm: sh Not tainted 6.10.0-rc4 #152\n Hardware name: IBM pSeries (emulated by qemu) POWER9 (raw) 0x4e1202 0xf000005 of:SLOF,HEAD hv:linux,kvm pSeries\n Call Trace:\n dump_stack_lvl+0x130/0x148 (unreliable)\n __might_resched+0x174/0x410\n kmem_cache_alloc_noprof+0x340/0x3d0\n alloc_dtl_buffers+0x124/0x1ac\n vcpudispatch_stats_write+0x2a8/0x5f4\n proc_reg_write+0xf4/0x150\n vfs_write+0xfc/0x438\n ksys_write+0x88/0x148\n system_call_exception+0x1c4/0x5a0\n system_call_common+0xf4/0x258",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56701",
"url": "https://www.suse.com/security/cve/CVE-2024-56701"
},
{
"category": "external",
"summary": "SUSE Bug 1235496 for CVE-2024-56701",
"url": "https://bugzilla.suse.com/1235496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56701"
},
{
"cve": "CVE-2024-56704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56704"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\n9p/xen: fix release of IRQ\n\nKernel logs indicate an IRQ was double-freed.\n\nPass correct device ID during IRQ release.\n\n[Dominique: remove confusing variable reset to 0]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56704",
"url": "https://www.suse.com/security/cve/CVE-2024-56704"
},
{
"category": "external",
"summary": "SUSE Bug 1235584 for CVE-2024-56704",
"url": "https://bugzilla.suse.com/1235584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56704"
},
{
"cve": "CVE-2024-56705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56705"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: atomisp: Add check for rgby_data memory allocation failure\n\nIn ia_css_3a_statistics_allocate(), there is no check on the allocation\nresult of the rgby_data memory. If rgby_data is not successfully\nallocated, it may trigger the assert(host_stats-\u003ergby_data) assertion in\nia_css_s3a_hmem_decode(). Adding a check to fix this potential issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56705",
"url": "https://www.suse.com/security/cve/CVE-2024-56705"
},
{
"category": "external",
"summary": "SUSE Bug 1235568 for CVE-2024-56705",
"url": "https://bugzilla.suse.com/1235568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56705"
},
{
"cve": "CVE-2024-56707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c\n\nAdd error pointer checks after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56707",
"url": "https://www.suse.com/security/cve/CVE-2024-56707"
},
{
"category": "external",
"summary": "SUSE Bug 1235545 for CVE-2024-56707",
"url": "https://bugzilla.suse.com/1235545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56707"
},
{
"cve": "CVE-2024-56708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56708"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/igen6: Avoid segmentation fault on module unload\n\nThe segmentation fault happens because:\n\nDuring modprobe:\n1. In igen6_probe(), igen6_pvt will be allocated with kzalloc()\n2. In igen6_register_mci(), mci-\u003epvt_info will point to\n \u0026igen6_pvt-\u003eimc[mc]\n\nDuring rmmod:\n1. In mci_release() in edac_mc.c, it will kfree(mci-\u003epvt_info)\n2. In igen6_remove(), it will kfree(igen6_pvt);\n\nFix this issue by setting mci-\u003epvt_info to NULL to avoid the double\nkfree.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56708",
"url": "https://www.suse.com/security/cve/CVE-2024-56708"
},
{
"category": "external",
"summary": "SUSE Bug 1235564 for CVE-2024-56708",
"url": "https://bugzilla.suse.com/1235564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56708"
},
{
"cve": "CVE-2024-56709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check if iowq is killed before queuing\n\ntask work can be executed after the task has gone through io_uring\ntermination, whether it\u0027s the final task_work run or the fallback path.\nIn this case, task work will find -\u003eio_wq being already killed and\nnull\u0027ed, which is a problem if it then tries to forward the request to\nio_queue_iowq(). Make io_queue_iowq() fail requests in this case.\n\nNote that it also checks PF_KTHREAD, because the user can first close\na DEFER_TASKRUN ring and shortly after kill the task, in which case\n-\u003eiowq check would race.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56709",
"url": "https://www.suse.com/security/cve/CVE-2024-56709"
},
{
"category": "external",
"summary": "SUSE Bug 1235552 for CVE-2024-56709",
"url": "https://bugzilla.suse.com/1235552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56709"
},
{
"cve": "CVE-2024-56712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56712"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudmabuf: fix memory leak on last export_udmabuf() error path\n\nIn export_udmabuf(), if dma_buf_fd() fails because the FD table is full, a\ndma_buf owning the udmabuf has already been created; but the error handling\nin udmabuf_create() will tear down the udmabuf without doing anything about\nthe containing dma_buf.\n\nThis leaves a dma_buf in memory that contains a dangling pointer; though\nthat doesn\u0027t seem to lead to anything bad except a memory leak.\n\nFix it by moving the dma_buf_fd() call out of export_udmabuf() so that we\ncan give it different error handling.\n\nNote that the shape of this code changed a lot in commit 5e72b2b41a21\n(\"udmabuf: convert udmabuf driver to use folios\"); but the memory leak\nseems to have existed since the introduction of udmabuf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56712",
"url": "https://www.suse.com/security/cve/CVE-2024-56712"
},
{
"category": "external",
"summary": "SUSE Bug 1235565 for CVE-2024-56712",
"url": "https://bugzilla.suse.com/1235565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56712"
},
{
"cve": "CVE-2024-56715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nionic: Fix netdev notifier unregister on failure\n\nIf register_netdev() fails, then the driver leaks the netdev notifier.\nFix this by calling ionic_lif_unregister() on register_netdev()\nfailure. This will also call ionic_lif_unregister_phc() if it has\nalready been registered.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56715",
"url": "https://www.suse.com/security/cve/CVE-2024-56715"
},
{
"category": "external",
"summary": "SUSE Bug 1235612 for CVE-2024-56715",
"url": "https://bugzilla.suse.com/1235612"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56715"
},
{
"cve": "CVE-2024-56716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: prevent bad user input in nsim_dev_health_break_write()\n\nIf either a zero count or a large one is provided, kernel can crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56716",
"url": "https://www.suse.com/security/cve/CVE-2024-56716"
},
{
"category": "external",
"summary": "SUSE Bug 1235587 for CVE-2024-56716",
"url": "https://bugzilla.suse.com/1235587"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56716"
},
{
"cve": "CVE-2024-56722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix cpu stuck caused by printings during reset\n\nDuring reset, cmd to destroy resources such as qp, cq, and mr may fail,\nand error logs will be printed. When a large number of resources are\ndestroyed, there will be lots of printings, and it may lead to a cpu\nstuck.\n\nDelete some unnecessary printings and replace other printing functions\nin these paths with the ratelimited version.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56722",
"url": "https://www.suse.com/security/cve/CVE-2024-56722"
},
{
"category": "external",
"summary": "SUSE Bug 1235570 for CVE-2024-56722",
"url": "https://bugzilla.suse.com/1235570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56722"
},
{
"cve": "CVE-2024-56723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56723",
"url": "https://www.suse.com/security/cve/CVE-2024-56723"
},
{
"category": "external",
"summary": "SUSE Bug 1235571 for CVE-2024-56723",
"url": "https://bugzilla.suse.com/1235571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56723"
},
{
"cve": "CVE-2024-56724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56724",
"url": "https://www.suse.com/security/cve/CVE-2024-56724"
},
{
"category": "external",
"summary": "SUSE Bug 1235577 for CVE-2024-56724",
"url": "https://bugzilla.suse.com/1235577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56724"
},
{
"cve": "CVE-2024-56725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56725",
"url": "https://www.suse.com/security/cve/CVE-2024-56725"
},
{
"category": "external",
"summary": "SUSE Bug 1235578 for CVE-2024-56725",
"url": "https://bugzilla.suse.com/1235578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56725"
},
{
"cve": "CVE-2024-56726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56726",
"url": "https://www.suse.com/security/cve/CVE-2024-56726"
},
{
"category": "external",
"summary": "SUSE Bug 1235582 for CVE-2024-56726",
"url": "https://bugzilla.suse.com/1235582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56726"
},
{
"cve": "CVE-2024-56727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c\n\nAdding error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56727",
"url": "https://www.suse.com/security/cve/CVE-2024-56727"
},
{
"category": "external",
"summary": "SUSE Bug 1235583 for CVE-2024-56727",
"url": "https://bugzilla.suse.com/1235583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56727"
},
{
"cve": "CVE-2024-56728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56728",
"url": "https://www.suse.com/security/cve/CVE-2024-56728"
},
{
"category": "external",
"summary": "SUSE Bug 1235656 for CVE-2024-56728",
"url": "https://bugzilla.suse.com/1235656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56728"
},
{
"cve": "CVE-2024-56729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: Initialize cfid-\u003etcon before performing network ops\n\nAvoid leaking a tcon ref when a lease break races with opening the\ncached directory. Processing the leak break might take a reference to\nthe tcon in cached_dir_lease_break() and then fail to release the ref in\ncached_dir_offload_close, since cfid-\u003etcon is still NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56729",
"url": "https://www.suse.com/security/cve/CVE-2024-56729"
},
{
"category": "external",
"summary": "SUSE Bug 1235503 for CVE-2024-56729",
"url": "https://bugzilla.suse.com/1235503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56729"
},
{
"cve": "CVE-2024-56739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtc: check if __rtc_read_time was successful in rtc_timer_do_work()\n\nIf the __rtc_read_time call fails,, the struct rtc_time tm; may contain\nuninitialized data, or an illegal date/time read from the RTC hardware.\n\nWhen calling rtc_tm_to_ktime later, the result may be a very large value\n(possibly KTIME_MAX). If there are periodic timers in rtc-\u003etimerqueue,\nthey will continually expire, may causing kernel softlockup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56739",
"url": "https://www.suse.com/security/cve/CVE-2024-56739"
},
{
"category": "external",
"summary": "SUSE Bug 1235611 for CVE-2024-56739",
"url": "https://bugzilla.suse.com/1235611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56739"
},
{
"cve": "CVE-2024-56741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56741"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56741",
"url": "https://www.suse.com/security/cve/CVE-2024-56741"
},
{
"category": "external",
"summary": "SUSE Bug 1235502 for CVE-2024-56741",
"url": "https://bugzilla.suse.com/1235502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56741"
},
{
"cve": "CVE-2024-56745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix reset_method_store() memory leak\n\nIn reset_method_store(), a string is allocated via kstrndup() and assigned\nto the local \"options\". options is then used in with strsep() to find\nspaces:\n\n while ((name = strsep(\u0026options, \" \")) != NULL) {\n\nIf there are no remaining spaces, then options is set to NULL by strsep(),\nso the subsequent kfree(options) doesn\u0027t free the memory allocated via\nkstrndup().\n\nFix by using a separate tmp_options to iterate with strsep() so options is\npreserved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56745",
"url": "https://www.suse.com/security/cve/CVE-2024-56745"
},
{
"category": "external",
"summary": "SUSE Bug 1235563 for CVE-2024-56745",
"url": "https://bugzilla.suse.com/1235563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56745"
},
{
"cve": "CVE-2024-56746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()\n\nWhen information such as info-\u003escreen_base is not ready, calling\nsh7760fb_free_mem() does not release memory correctly. Call\ndma_free_coherent() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56746",
"url": "https://www.suse.com/security/cve/CVE-2024-56746"
},
{
"category": "external",
"summary": "SUSE Bug 1235622 for CVE-2024-56746",
"url": "https://bugzilla.suse.com/1235622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56746"
},
{
"cve": "CVE-2024-56747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()\n\nHook \"qedi_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56747",
"url": "https://www.suse.com/security/cve/CVE-2024-56747"
},
{
"category": "external",
"summary": "SUSE Bug 1234934 for CVE-2024-56747",
"url": "https://bugzilla.suse.com/1234934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56747"
},
{
"cve": "CVE-2024-56748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56748"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()\n\nHook \"qed_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56748",
"url": "https://www.suse.com/security/cve/CVE-2024-56748"
},
{
"category": "external",
"summary": "SUSE Bug 1235627 for CVE-2024-56748",
"url": "https://bugzilla.suse.com/1235627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56748"
},
{
"cve": "CVE-2024-56752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()\n\nWhen the call to gf100_grctx_generate() fails, unlock gr-\u003efecs.mutex\nbefore returning the error.\n\nFixes smatch warning:\n\ndrivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480 gf100_gr_chan_new() warn: inconsistent returns \u0027\u0026gr-\u003efecs.mutex\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56752",
"url": "https://www.suse.com/security/cve/CVE-2024-56752"
},
{
"category": "external",
"summary": "SUSE Bug 1234937 for CVE-2024-56752",
"url": "https://bugzilla.suse.com/1234937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56752"
},
{
"cve": "CVE-2024-56754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: caam - Fix the pointer passed to caam_qi_shutdown()\n\nThe type of the last parameter given to devm_add_action_or_reset() is\n\"struct caam_drv_private *\", but in caam_qi_shutdown(), it is casted to\n\"struct device *\".\n\nPass the correct parameter to devm_add_action_or_reset() so that the\nresources are released as expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56754",
"url": "https://www.suse.com/security/cve/CVE-2024-56754"
},
{
"category": "external",
"summary": "SUSE Bug 1234918 for CVE-2024-56754",
"url": "https://bugzilla.suse.com/1234918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56754"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-56756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix freeing of the HMB descriptor table\n\nThe HMB descriptor table is sized to the maximum number of descriptors\nthat could be used for a given device, but __nvme_alloc_host_mem could\nbreak out of the loop earlier on memory allocation failure and end up\nusing less descriptors than planned for, which leads to an incorrect\nsize passed to dma_free_coherent.\n\nIn practice this was not showing up because the number of descriptors\ntends to be low and the dma coherent allocator always allocates and\nfrees at least a page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56756",
"url": "https://www.suse.com/security/cve/CVE-2024-56756"
},
{
"category": "external",
"summary": "SUSE Bug 1234922 for CVE-2024-56756",
"url": "https://bugzilla.suse.com/1234922"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56756"
},
{
"cve": "CVE-2024-56759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free when COWing tree bock and tracing is enabled\n\nWhen a COWing a tree block, at btrfs_cow_block(), and we have the\ntracepoint trace_btrfs_cow_block() enabled and preemption is also enabled\n(CONFIG_PREEMPT=y), we can trigger a use-after-free in the COWed extent\nbuffer while inside the tracepoint code. This is because in some paths\nthat call btrfs_cow_block(), such as btrfs_search_slot(), we are holding\nthe last reference on the extent buffer @buf so btrfs_force_cow_block()\ndrops the last reference on the @buf extent buffer when it calls\nfree_extent_buffer_stale(buf), which schedules the release of the extent\nbuffer with RCU. This means that if we are on a kernel with preemption,\nthe current task may be preempted before calling trace_btrfs_cow_block()\nand the extent buffer already released by the time trace_btrfs_cow_block()\nis called, resulting in a use-after-free.\n\nFix this by moving the trace_btrfs_cow_block() from btrfs_cow_block() to\nbtrfs_force_cow_block() before the COWed extent buffer is freed.\nThis also has a side effect of invoking the tracepoint in the tree defrag\ncode, at defrag.c:btrfs_realloc_node(), since btrfs_force_cow_block() is\ncalled there, but this is fine and it was actually missing there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56759",
"url": "https://www.suse.com/security/cve/CVE-2024-56759"
},
{
"category": "external",
"summary": "SUSE Bug 1235645 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "external",
"summary": "SUSE Bug 1236569 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1236569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56759"
},
{
"cve": "CVE-2024-56760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/MSI: Handle lack of irqdomain gracefully\n\nAlexandre observed a warning emitted from pci_msi_setup_msi_irqs() on a\nRISCV platform which does not provide PCI/MSI support:\n\n WARNING: CPU: 1 PID: 1 at drivers/pci/msi/msi.h:121 pci_msi_setup_msi_irqs+0x2c/0x32\n __pci_enable_msix_range+0x30c/0x596\n pci_msi_setup_msi_irqs+0x2c/0x32\n pci_alloc_irq_vectors_affinity+0xb8/0xe2\n\nRISCV uses hierarchical interrupt domains and correctly does not implement\nthe legacy fallback. The warning triggers from the legacy fallback stub.\n\nThat warning is bogus as the PCI/MSI layer knows whether a PCI/MSI parent\ndomain is associated with the device or not. There is a check for MSI-X,\nwhich has a legacy assumption. But that legacy fallback assumption is only\nvalid when legacy support is enabled, but otherwise the check should simply\nreturn -ENOTSUPP.\n\nLoongarch tripped over the same problem and blindly enabled legacy support\nwithout implementing the legacy fallbacks. There are weak implementations\nwhich return an error, so the problem was papered over.\n\nCorrect pci_msi_domain_supports() to evaluate the legacy mode and add\nthe missing supported check into the MSI enable path to complete it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56760",
"url": "https://www.suse.com/security/cve/CVE-2024-56760"
},
{
"category": "external",
"summary": "SUSE Bug 1235616 for CVE-2024-56760",
"url": "https://bugzilla.suse.com/1235616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56760"
},
{
"cve": "CVE-2024-56763",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56763"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Prevent bad count for tracing_cpumask_write\n\nIf a large count is provided, it will trigger a warning in bitmap_parse_user.\nAlso check zero for it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56763",
"url": "https://www.suse.com/security/cve/CVE-2024-56763"
},
{
"category": "external",
"summary": "SUSE Bug 1235638 for CVE-2024-56763",
"url": "https://bugzilla.suse.com/1235638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56763"
},
{
"cve": "CVE-2024-56765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries/vas: Add close() callback in vas_vm_ops struct\n\nThe mapping VMA address is saved in VAS window struct when the\npaste address is mapped. This VMA address is used during migration\nto unmap the paste address if the window is active. The paste\naddress mapping will be removed when the window is closed or with\nthe munmap(). But the VMA address in the VAS window is not updated\nwith munmap() which is causing invalid access during migration.\n\nThe KASAN report shows:\n[16386.254991] BUG: KASAN: slab-use-after-free in reconfig_close_windows+0x1a0/0x4e8\n[16386.255043] Read of size 8 at addr c00000014a819670 by task drmgr/696928\n\n[16386.255096] CPU: 29 UID: 0 PID: 696928 Comm: drmgr Kdump: loaded Tainted: G B 6.11.0-rc5-nxgzip #2\n[16386.255128] Tainted: [B]=BAD_PAGE\n[16386.255148] Hardware name: IBM,9080-HEX Power11 (architected) 0x820200 0xf000007 of:IBM,FW1110.00 (NH1110_016) hv:phyp pSeries\n[16386.255181] Call Trace:\n[16386.255202] [c00000016b297660] [c0000000018ad0ac] dump_stack_lvl+0x84/0xe8 (unreliable)\n[16386.255246] [c00000016b297690] [c0000000006e8a90] print_report+0x19c/0x764\n[16386.255285] [c00000016b297760] [c0000000006e9490] kasan_report+0x128/0x1f8\n[16386.255309] [c00000016b297880] [c0000000006eb5c8] __asan_load8+0xac/0xe0\n[16386.255326] [c00000016b2978a0] [c00000000013f898] reconfig_close_windows+0x1a0/0x4e8\n[16386.255343] [c00000016b297990] [c000000000140e58] vas_migration_handler+0x3a4/0x3fc\n[16386.255368] [c00000016b297a90] [c000000000128848] pseries_migrate_partition+0x4c/0x4c4\n...\n\n[16386.256136] Allocated by task 696554 on cpu 31 at 16377.277618s:\n[16386.256149] kasan_save_stack+0x34/0x68\n[16386.256163] kasan_save_track+0x34/0x80\n[16386.256175] kasan_save_alloc_info+0x58/0x74\n[16386.256196] __kasan_slab_alloc+0xb8/0xdc\n[16386.256209] kmem_cache_alloc_noprof+0x200/0x3d0\n[16386.256225] vm_area_alloc+0x44/0x150\n[16386.256245] mmap_region+0x214/0x10c4\n[16386.256265] do_mmap+0x5fc/0x750\n[16386.256277] vm_mmap_pgoff+0x14c/0x24c\n[16386.256292] ksys_mmap_pgoff+0x20c/0x348\n[16386.256303] sys_mmap+0xd0/0x160\n...\n\n[16386.256350] Freed by task 0 on cpu 31 at 16386.204848s:\n[16386.256363] kasan_save_stack+0x34/0x68\n[16386.256374] kasan_save_track+0x34/0x80\n[16386.256384] kasan_save_free_info+0x64/0x10c\n[16386.256396] __kasan_slab_free+0x120/0x204\n[16386.256415] kmem_cache_free+0x128/0x450\n[16386.256428] vm_area_free_rcu_cb+0xa8/0xd8\n[16386.256441] rcu_do_batch+0x2c8/0xcf0\n[16386.256458] rcu_core+0x378/0x3c4\n[16386.256473] handle_softirqs+0x20c/0x60c\n[16386.256495] do_softirq_own_stack+0x6c/0x88\n[16386.256509] do_softirq_own_stack+0x58/0x88\n[16386.256521] __irq_exit_rcu+0x1a4/0x20c\n[16386.256533] irq_exit+0x20/0x38\n[16386.256544] interrupt_async_exit_prepare.constprop.0+0x18/0x2c\n...\n\n[16386.256717] Last potentially related work creation:\n[16386.256729] kasan_save_stack+0x34/0x68\n[16386.256741] __kasan_record_aux_stack+0xcc/0x12c\n[16386.256753] __call_rcu_common.constprop.0+0x94/0xd04\n[16386.256766] vm_area_free+0x28/0x3c\n[16386.256778] remove_vma+0xf4/0x114\n[16386.256797] do_vmi_align_munmap.constprop.0+0x684/0x870\n[16386.256811] __vm_munmap+0xe0/0x1f8\n[16386.256821] sys_munmap+0x54/0x6c\n[16386.256830] system_call_exception+0x1a0/0x4a0\n[16386.256841] system_call_vectored_common+0x15c/0x2ec\n\n[16386.256868] The buggy address belongs to the object at c00000014a819670\n which belongs to the cache vm_area_struct of size 168\n[16386.256887] The buggy address is located 0 bytes inside of\n freed 168-byte region [c00000014a819670, c00000014a819718)\n\n[16386.256915] The buggy address belongs to the physical page:\n[16386.256928] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14a81\n[16386.256950] memcg:c0000000ba430001\n[16386.256961] anon flags: 0x43ffff800000000(node=4|zone=0|lastcpupid=0x7ffff)\n[16386.256975] page_type: 0xfdffffff(slab)\n[16386\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56765",
"url": "https://www.suse.com/security/cve/CVE-2024-56765"
},
{
"category": "external",
"summary": "SUSE Bug 1235643 for CVE-2024-56765",
"url": "https://bugzilla.suse.com/1235643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56765"
},
{
"cve": "CVE-2024-56766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: fix double free in atmel_pmecc_create_user()\n\nThe \"user\" pointer was converted from being allocated with kzalloc() to\nbeing allocated by devm_kzalloc(). Calling kfree(user) will lead to a\ndouble free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56766",
"url": "https://www.suse.com/security/cve/CVE-2024-56766"
},
{
"category": "external",
"summary": "SUSE Bug 1235219 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "external",
"summary": "SUSE Bug 1240426 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1240426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56766"
},
{
"cve": "CVE-2024-56767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset\n\nThe at_xdmac_memset_create_desc may return NULL, which will lead to a\nnull pointer dereference. For example, the len input is error, or the\natchan-\u003efree_descs_list is empty and memory is exhausted. Therefore, add\ncheck to avoid this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56767",
"url": "https://www.suse.com/security/cve/CVE-2024-56767"
},
{
"category": "external",
"summary": "SUSE Bug 1235160 for CVE-2024-56767",
"url": "https://bugzilla.suse.com/1235160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56767"
},
{
"cve": "CVE-2024-56769",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56769"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg\n\nSyzbot reports [1] an uninitialized value issue found by KMSAN in\ndib3000_read_reg().\n\nLocal u8 rb[2] is used in i2c_transfer() as a read buffer; in case\nthat call fails, the buffer may end up with some undefined values.\n\nSince no elaborate error handling is expected in dib3000_write_reg(),\nsimply zero out rb buffer to mitigate the problem.\n\n[1] Syzkaller report\ndvb-usb: bulk message failed: -22 (6/0)\n=====================================================\nBUG: KMSAN: uninit-value in dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dibusb_dib3000mb_frontend_attach+0x155/0x2f0 drivers/media/usb/dvb-usb/dibusb-mb.c:31\n dvb_usb_adapter_frontend_init+0xed/0x9a0 drivers/media/usb/dvb-usb/dvb-usb-dvb.c:290\n dvb_usb_adapter_init drivers/media/usb/dvb-usb/dvb-usb-init.c:90 [inline]\n dvb_usb_init drivers/media/usb/dvb-usb/dvb-usb-init.c:186 [inline]\n dvb_usb_device_init+0x25a8/0x3760 drivers/media/usb/dvb-usb/dvb-usb-init.c:310\n dibusb_probe+0x46/0x250 drivers/media/usb/dvb-usb/dibusb-mb.c:110\n...\nLocal variable rb created at:\n dib3000_read_reg+0x86/0x4e0 drivers/media/dvb-frontends/dib3000mb.c:54\n dib3000mb_attach+0x123/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56769",
"url": "https://www.suse.com/security/cve/CVE-2024-56769"
},
{
"category": "external",
"summary": "SUSE Bug 1235155 for CVE-2024-56769",
"url": "https://bugzilla.suse.com/1235155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56769"
},
{
"cve": "CVE-2024-56774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: add a sanity check for btrfs root in btrfs_search_slot()\n\nSyzbot reports a null-ptr-deref in btrfs_search_slot().\n\nThe reproducer is using rescue=ibadroots, and the extent tree root is\ncorrupted thus the extent tree is NULL.\n\nWhen scrub tries to search the extent tree to gather the needed extent\ninfo, btrfs_search_slot() doesn\u0027t check if the target root is NULL or\nnot, resulting the null-ptr-deref.\n\nAdd sanity check for btrfs root before using it in btrfs_search_slot().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56774",
"url": "https://www.suse.com/security/cve/CVE-2024-56774"
},
{
"category": "external",
"summary": "SUSE Bug 1235653 for CVE-2024-56774",
"url": "https://bugzilla.suse.com/1235653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56774"
},
{
"cve": "CVE-2024-56775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix handling of plane refcount\n\n[Why]\nThe mechanism to backup and restore plane states doesn\u0027t maintain\nrefcount, which can cause issues if the refcount of the plane changes\nin between backup and restore operations, such as memory leaks if the\nrefcount was supposed to go down, or double frees / invalid memory\naccesses if the refcount was supposed to go up.\n\n[How]\nCache and re-apply current refcount when restoring plane states.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56775",
"url": "https://www.suse.com/security/cve/CVE-2024-56775"
},
{
"category": "external",
"summary": "SUSE Bug 1235657 for CVE-2024-56775",
"url": "https://bugzilla.suse.com/1235657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56775"
},
{
"cve": "CVE-2024-56776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56776",
"url": "https://www.suse.com/security/cve/CVE-2024-56776"
},
{
"category": "external",
"summary": "SUSE Bug 1235647 for CVE-2024-56776",
"url": "https://bugzilla.suse.com/1235647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56776"
},
{
"cve": "CVE-2024-56777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56777",
"url": "https://www.suse.com/security/cve/CVE-2024-56777"
},
{
"category": "external",
"summary": "SUSE Bug 1235641 for CVE-2024-56777",
"url": "https://bugzilla.suse.com/1235641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56777"
},
{
"cve": "CVE-2024-56778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56778",
"url": "https://www.suse.com/security/cve/CVE-2024-56778"
},
{
"category": "external",
"summary": "SUSE Bug 1235635 for CVE-2024-56778",
"url": "https://bugzilla.suse.com/1235635"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56778"
},
{
"cve": "CVE-2024-56779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56779"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur\n\nThe action force umount(umount -f) will attempt to kill all rpc_task even\numount operation may ultimately fail if some files remain open.\nConsequently, if an action attempts to open a file, it can potentially\nsend two rpc_task to nfs server.\n\n NFS CLIENT\nthread1 thread2\nopen(\"file\")\n...\nnfs4_do_open\n _nfs4_do_open\n _nfs4_open_and_get_state\n _nfs4_proc_open\n nfs4_run_open_task\n /* rpc_task1 */\n rpc_run_task\n rpc_wait_for_completion_task\n\n umount -f\n nfs_umount_begin\n rpc_killall_tasks\n rpc_signal_task\n rpc_task1 been wakeup\n and return -512\n _nfs4_do_open // while loop\n ...\n nfs4_run_open_task\n /* rpc_task2 */\n rpc_run_task\n rpc_wait_for_completion_task\n\nWhile processing an open request, nfsd will first attempt to find or\nallocate an nfs4_openowner. If it finds an nfs4_openowner that is not\nmarked as NFS4_OO_CONFIRMED, this nfs4_openowner will released. Since\ntwo rpc_task can attempt to open the same file simultaneously from the\nclient to server, and because two instances of nfsd can run\nconcurrently, this situation can lead to lots of memory leak.\nAdditionally, when we echo 0 to /proc/fs/nfsd/threads, warning will be\ntriggered.\n\n NFS SERVER\nnfsd1 nfsd2 echo 0 \u003e /proc/fs/nfsd/threads\n\nnfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // alloc oo1, stateid1\n nfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // find oo1, without NFS4_OO_CONFIRMED\n release_openowner\n unhash_openowner_locked\n list_del_init(\u0026oo-\u003eoo_perclient)\n // cannot find this oo\n // from client, LEAK!!!\n alloc_stateowner // alloc oo2\n\n nfsd4_process_open2\n init_open_stateid\n // associate oo1\n // with stateid1, stateid1 LEAK!!!\n nfs4_get_vfs_file\n // alloc nfsd_file1 and nfsd_file_mark1\n // all LEAK!!!\n\n nfsd4_process_open2\n ...\n\n write_threads\n ...\n nfsd_destroy_serv\n nfsd_shutdown_net\n nfs4_state_shutdown_net\n nfs4_state_destroy_net\n destroy_client\n __destroy_client\n // won\u0027t find oo1!!!\n nfsd_shutdown_generic\n nfsd_file_cache_shutdown\n kmem_cache_destroy\n for nfsd_file_slab\n and nfsd_file_mark_slab\n // bark since nfsd_file1\n // and nfsd_file_mark1\n // still alive\n\n=======================================================================\nBUG nfsd_file (Not tainted): Objects remaining in nfsd_file on\n__kmem_cache_shutdown()\n-----------------------------------------------------------------------\n\nSlab 0xffd4000004438a80 objects=34 used=1 fp=0xff11000110e2ad28\nflags=0x17ffffc0000240(workingset|head|node=0|zone=2|lastcpupid=0x1fffff)\nCPU: 4 UID: 0 PID: 757 Comm: sh Not tainted 6.12.0-rc6+ #19\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dum\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56779",
"url": "https://www.suse.com/security/cve/CVE-2024-56779"
},
{
"category": "external",
"summary": "SUSE Bug 1235632 for CVE-2024-56779",
"url": "https://bugzilla.suse.com/1235632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56779"
},
{
"cve": "CVE-2024-56780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: flush quota_release_work upon quota writeback\n\nOne of the paths quota writeback is called from is:\n\nfreeze_super()\n sync_filesystem()\n ext4_sync_fs()\n dquot_writeback_dquots()\n\nSince we currently don\u0027t always flush the quota_release_work queue in\nthis path, we can end up with the following race:\n\n 1. dquot are added to releasing_dquots list during regular operations.\n 2. FS Freeze starts, however, this does not flush the quota_release_work queue.\n 3. Freeze completes.\n 4. Kernel eventually tries to flush the workqueue while FS is frozen which\n hits a WARN_ON since transaction gets started during frozen state:\n\n ext4_journal_check_start+0x28/0x110 [ext4] (unreliable)\n __ext4_journal_start_sb+0x64/0x1c0 [ext4]\n ext4_release_dquot+0x90/0x1d0 [ext4]\n quota_release_workfn+0x43c/0x4d0\n\nWhich is the following line:\n\n WARN_ON(sb-\u003es_writers.frozen == SB_FREEZE_COMPLETE);\n\nWhich ultimately results in generic/390 failing due to dmesg\nnoise. This was detected on powerpc machine 15 cores.\n\nTo avoid this, make sure to flush the workqueue during\ndquot_writeback_dquots() so we dont have any pending workitems after\nfreeze.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56780",
"url": "https://www.suse.com/security/cve/CVE-2024-56780"
},
{
"category": "external",
"summary": "SUSE Bug 1235650 for CVE-2024-56780",
"url": "https://bugzilla.suse.com/1235650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56780"
},
{
"cve": "CVE-2024-56787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: imx8m: Probe the SoC driver as platform driver\n\nWith driver_async_probe=* on kernel command line, the following trace is\nproduced because on i.MX8M Plus hardware because the soc-imx8m.c driver\ncalls of_clk_get_by_name() which returns -EPROBE_DEFER because the clock\ndriver is not yet probed. This was not detected during regular testing\nwithout driver_async_probe.\n\nConvert the SoC code to platform driver and instantiate a platform device\nin its current device_initcall() to probe the platform driver. Rework\n.soc_revision callback to always return valid error code and return SoC\nrevision via parameter. This way, if anything in the .soc_revision callback\nreturn -EPROBE_DEFER, it gets propagated to .probe and the .probe will get\nretried later.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 1 at drivers/soc/imx/soc-imx8m.c:115 imx8mm_soc_revision+0xdc/0x180\nCPU: 1 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.11.0-next-20240924-00002-g2062bb554dea #603\nHardware name: DH electronics i.MX8M Plus DHCOM Premium Developer Kit (3) (DT)\npstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : imx8mm_soc_revision+0xdc/0x180\nlr : imx8mm_soc_revision+0xd0/0x180\nsp : ffff8000821fbcc0\nx29: ffff8000821fbce0 x28: 0000000000000000 x27: ffff800081810120\nx26: ffff8000818a9970 x25: 0000000000000006 x24: 0000000000824311\nx23: ffff8000817f42c8 x22: ffff0000df8be210 x21: fffffffffffffdfb\nx20: ffff800082780000 x19: 0000000000000001 x18: ffffffffffffffff\nx17: ffff800081fff418 x16: ffff8000823e1000 x15: ffff0000c03b65e8\nx14: ffff0000c00051b0 x13: ffff800082790000 x12: 0000000000000801\nx11: ffff80008278ffff x10: ffff80008209d3a6 x9 : ffff80008062e95c\nx8 : ffff8000821fb9a0 x7 : 0000000000000000 x6 : 00000000000080e3\nx5 : ffff0000df8c03d8 x4 : 0000000000000000 x3 : 0000000000000000\nx2 : 0000000000000000 x1 : fffffffffffffdfb x0 : fffffffffffffdfb\nCall trace:\n imx8mm_soc_revision+0xdc/0x180\n imx8_soc_init+0xb0/0x1e0\n do_one_initcall+0x94/0x1a8\n kernel_init_freeable+0x240/0x2a8\n kernel_init+0x28/0x140\n ret_from_fork+0x10/0x20\n---[ end trace 0000000000000000 ]---\nSoC: i.MX8MP revision 1.1\n\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56787",
"url": "https://www.suse.com/security/cve/CVE-2024-56787"
},
{
"category": "external",
"summary": "SUSE Bug 1235663 for CVE-2024-56787",
"url": "https://bugzilla.suse.com/1235663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56787"
},
{
"cve": "CVE-2024-57791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: check return value of sock_recvmsg when draining clc data\n\nWhen receiving clc msg, the field length in smc_clc_msg_hdr indicates the\nlength of msg should be received from network and the value should not be\nfully trusted as it is from the network. Once the value of length exceeds\nthe value of buflen in function smc_clc_wait_msg it may run into deadloop\nwhen trying to drain the remaining data exceeding buflen.\n\nThis patch checks the return value of sock_recvmsg when draining data in\ncase of deadloop in draining.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57791",
"url": "https://www.suse.com/security/cve/CVE-2024-57791"
},
{
"category": "external",
"summary": "SUSE Bug 1235759 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "external",
"summary": "SUSE Bug 1235760 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57791"
},
{
"cve": "CVE-2024-57792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: gpio-charger: Fix set charge current limits\n\nFix set charge current limits for devices which allow to set the lowest\ncharge current limit to be greater zero. If requested charge current limit\nis below lowest limit, the index equals current_limit_map_size which leads\nto accessing memory beyond allocated memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57792",
"url": "https://www.suse.com/security/cve/CVE-2024-57792"
},
{
"category": "external",
"summary": "SUSE Bug 1235764 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "external",
"summary": "SUSE Bug 1236568 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1236568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57792"
},
{
"cve": "CVE-2024-57793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57793"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirt: tdx-guest: Just leak decrypted memory on unrecoverable errors\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_decrypted() to fail such that an error is returned\nand the resulting memory is shared. Callers need to take care\nto handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional\nor security issues.\n\nLeak the decrypted memory when set_memory_decrypted() fails,\nand don\u0027t need to print an error since set_memory_decrypted()\nwill call WARN_ONCE().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57793",
"url": "https://www.suse.com/security/cve/CVE-2024-57793"
},
{
"category": "external",
"summary": "SUSE Bug 1235768 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "external",
"summary": "SUSE Bug 1235769 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57793"
},
{
"cve": "CVE-2024-57795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Remove the direct link to net_device\n\nThe similar patch in siw is in the link:\nhttps://git.kernel.org/rdma/rdma/c/16b87037b48889\n\nThis problem also occurred in RXE. The following analyze this problem.\nIn the following Call Traces:\n\"\nBUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\nRead of size 4 at addr ffff8880554640b0 by task kworker/1:4/5295\n\nCPU: 1 UID: 0 PID: 5295 Comm: kworker/1:4 Not tainted\n6.12.0-rc3-syzkaller-00399-g9197b73fd7bb #0\nHardware name: Google Compute Engine/Google Compute Engine,\nBIOS Google 09/13/2024\nWorkqueue: infiniband ib_cache_event_task\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\n rxe_query_port+0x12d/0x260 drivers/infiniband/sw/rxe/rxe_verbs.c:60\n __ib_query_port drivers/infiniband/core/device.c:2111 [inline]\n ib_query_port+0x168/0x7d0 drivers/infiniband/core/device.c:2143\n ib_cache_update+0x1a9/0xb80 drivers/infiniband/core/cache.c:1494\n ib_cache_event_task+0xf3/0x1e0 drivers/infiniband/core/cache.c:1568\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa65/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f2/0x390 kernel/kthread.c:389\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\"\n\n1). In the link [1],\n\n\"\n infiniband syz2: set down\n\"\n\nThis means that on 839.350575, the event ib_cache_event_task was sent andi\nqueued in ib_wq.\n\n2). In the link [1],\n\n\"\n team0 (unregistering): Port device team_slave_0 removed\n\"\n\nIt indicates that before 843.251853, the net device should be freed.\n\n3). In the link [1],\n\n\"\n BUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0\n\"\n\nThis means that on 850.559070, this slab-use-after-free problem occurred.\n\nIn all, on 839.350575, the event ib_cache_event_task was sent and queued\nin ib_wq,\n\nbefore 843.251853, the net device veth was freed.\n\non 850.559070, this event was executed, and the mentioned freed net device\nwas called. Thus, the above call trace occurred.\n\n[1] https://syzkaller.appspot.com/x/log.txt?x=12e7025f980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57795",
"url": "https://www.suse.com/security/cve/CVE-2024-57795"
},
{
"category": "external",
"summary": "SUSE Bug 1235906 for CVE-2024-57795",
"url": "https://bugzilla.suse.com/1235906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57795"
},
{
"cve": "CVE-2024-57798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()\n\nWhile receiving an MST up request message from one thread in\ndrm_dp_mst_handle_up_req(), the MST topology could be removed from\nanother thread via drm_dp_mst_topology_mgr_set_mst(false), freeing\nmst_primary and setting drm_dp_mst_topology_mgr::mst_primary to NULL.\nThis could lead to a NULL deref/use-after-free of mst_primary in\ndrm_dp_mst_handle_up_req().\n\nAvoid the above by holding a reference for mst_primary in\ndrm_dp_mst_handle_up_req() while it\u0027s used.\n\nv2: Fix kfreeing the request if getting an mst_primary reference fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57798",
"url": "https://www.suse.com/security/cve/CVE-2024-57798"
},
{
"category": "external",
"summary": "SUSE Bug 1235818 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "external",
"summary": "SUSE Bug 1235819 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57798"
},
{
"cve": "CVE-2024-57801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Skip restore TC rules for vport rep without loaded flag\n\nDuring driver unload, unregister_netdev is called after unloading\nvport rep. So, the mlx5e_rep_priv is already freed while trying to get\nrpriv-\u003enetdev, or walk rpriv-\u003etc_ht, which results in use-after-free.\nSo add the checking to make sure access the data of vport rep which is\nstill loaded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57801",
"url": "https://www.suse.com/security/cve/CVE-2024-57801"
},
{
"category": "external",
"summary": "SUSE Bug 1235940 for CVE-2024-57801",
"url": "https://bugzilla.suse.com/1235940"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57801"
},
{
"cve": "CVE-2024-57802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetrom: check buffer length before accessing it\n\nSyzkaller reports an uninit value read from ax25cmp when sending raw message\nthrough ieee802154 implementation.\n\n=====================================================\nBUG: KMSAN: uninit-value in ax25cmp+0x3a5/0x460 net/ax25/ax25_addr.c:119\n ax25cmp+0x3a5/0x460 net/ax25/ax25_addr.c:119\n nr_dev_get+0x20e/0x450 net/netrom/nr_route.c:601\n nr_route_frame+0x1a2/0xfc0 net/netrom/nr_route.c:774\n nr_xmit+0x5a/0x1c0 net/netrom/nr_dev.c:144\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n __dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n raw_sendmsg+0x654/0xc10 net/ieee802154/socket.c:299\n ieee802154_sock_sendmsg+0x91/0xc0 net/ieee802154/socket.c:96\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n __sys_sendmsg net/socket.c:2667 [inline]\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x5e9/0xb10 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x318/0x740 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1286 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6334\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2780\n sock_alloc_send_skb include/net/sock.h:1884 [inline]\n raw_sendmsg+0x36d/0xc10 net/ieee802154/socket.c:282\n ieee802154_sock_sendmsg+0x91/0xc0 net/ieee802154/socket.c:96\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n __sys_sendmsg net/socket.c:2667 [inline]\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nCPU: 0 PID: 5037 Comm: syz-executor166 Not tainted 6.7.0-rc7-syzkaller-00003-gfbafc3e621c3 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023\n=====================================================\n\nThis issue occurs because the skb buffer is too small, and it\u0027s actual\nallocation is aligned. This hides an actual issue, which is that nr_route_frame\ndoes not validate the buffer size before using it.\n\nFix this issue by checking skb-\u003elen before accessing any fields in skb-\u003edata.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57802",
"url": "https://www.suse.com/security/cve/CVE-2024-57802"
},
{
"category": "external",
"summary": "SUSE Bug 1235941 for CVE-2024-57802",
"url": "https://bugzilla.suse.com/1235941"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57802"
},
{
"cve": "CVE-2024-57804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs\n\nThe driver, through the SAS transport, exposes a sysfs interface to\nenable/disable PHYs in a controller/expander setup. When multiple PHYs\nare disabled and enabled in rapid succession, the persistent and current\nconfig pages related to SAS IO unit/SAS Expander pages could get\ncorrupted.\n\nUse separate memory for each config request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57804",
"url": "https://www.suse.com/security/cve/CVE-2024-57804"
},
{
"category": "external",
"summary": "SUSE Bug 1235779 for CVE-2024-57804",
"url": "https://bugzilla.suse.com/1235779"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57804"
},
{
"cve": "CVE-2024-57809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: imx6: Fix suspend/resume support on i.MX6QDL\n\nThe suspend/resume functionality is currently broken on the i.MX6QDL\nplatform, as documented in the NXP errata (ERR005723):\n\n https://www.nxp.com/docs/en/errata/IMX6DQCE.pdf\n\nThis patch addresses the issue by sharing most of the suspend/resume\nsequences used by other i.MX devices, while avoiding modifications to\ncritical registers that disrupt the PCIe functionality. It targets the\nsame problem as the following downstream commit:\n\n https://github.com/nxp-imx/linux-imx/commit/4e92355e1f79d225ea842511fcfd42b343b32995\n\nUnlike the downstream commit, this patch also resets the connected PCIe\ndevice if possible. Without this reset, certain drivers, such as ath10k\nor iwlwifi, will crash on resume. The device reset is also done by the\ndriver on other i.MX platforms, making this patch consistent with\nexisting practices.\n\nUpon resuming, the kernel will hang and display an error. Here\u0027s an\nexample of the error encountered with the ath10k driver:\n\n ath10k_pci 0000:01:00.0: Unable to change power state from D3hot to D0, device inaccessible\n Unhandled fault: imprecise external abort (0x1406) at 0x0106f944\n\nWithout this patch, suspend/resume will fail on i.MX6QDL devices if a\nPCIe device is connected.\n\n[kwilczynski: commit log, added tag for stable releases]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57809",
"url": "https://www.suse.com/security/cve/CVE-2024-57809"
},
{
"category": "external",
"summary": "SUSE Bug 1235793 for CVE-2024-57809",
"url": "https://bugzilla.suse.com/1235793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57809"
},
{
"cve": "CVE-2024-57838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57838"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/entry: Mark IRQ entries to fix stack depot warnings\n\nThe stack depot filters out everything outside of the top interrupt\ncontext as an uninteresting or irrelevant part of the stack traces. This\nhelps with stack trace de-duplication, avoiding an explosion of saved\nstack traces that share the same IRQ context code path but originate\nfrom different randomly interrupted points, eventually exhausting the\nstack depot.\n\nFiltering uses in_irqentry_text() to identify functions within the\n.irqentry.text and .softirqentry.text sections, which then become the\nlast stack trace entries being saved.\n\nWhile __do_softirq() is placed into the .softirqentry.text section by\ncommon code, populating .irqentry.text is architecture-specific.\n\nCurrently, the .irqentry.text section on s390 is empty, which prevents\nstack depot filtering and de-duplication and could result in warnings\nlike:\n\nStack depot reached limit capacity\nWARNING: CPU: 0 PID: 286113 at lib/stackdepot.c:252 depot_alloc_stack+0x39a/0x3c8\n\nwith PREEMPT and KASAN enabled.\n\nFix this by moving the IO/EXT interrupt handlers from .kprobes.text into\nthe .irqentry.text section and updating the kprobes blacklist to include\nthe .irqentry.text section.\n\nThis is done only for asynchronous interrupts and explicitly not for\nprogram checks, which are synchronous and where the context beyond the\nprogram check is important to preserve. Despite machine checks being\nsomewhat in between, they are extremely rare, and preserving context\nwhen possible is also of value.\n\nSVCs and Restart Interrupts are not relevant, one being always at the\nboundary to user space and the other being a one-time thing.\n\nIRQ entries filtering is also optionally used in ftrace function graph,\nwhere the same logic applies.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57838",
"url": "https://www.suse.com/security/cve/CVE-2024-57838"
},
{
"category": "external",
"summary": "SUSE Bug 1235798 for CVE-2024-57838",
"url": "https://bugzilla.suse.com/1235798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57838"
},
{
"cve": "CVE-2024-57849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57849"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/cpum_sf: Handle CPU hotplug remove during sampling\n\nCPU hotplug remove handling triggers the following function\ncall sequence:\n\n CPUHP_AP_PERF_S390_SF_ONLINE --\u003e s390_pmu_sf_offline_cpu()\n ...\n CPUHP_AP_PERF_ONLINE --\u003e perf_event_exit_cpu()\n\nThe s390 CPUMF sampling CPU hotplug handler invokes:\n\n s390_pmu_sf_offline_cpu()\n +--\u003e cpusf_pmu_setup()\n +--\u003e setup_pmc_cpu()\n +--\u003e deallocate_buffers()\n\nThis function de-allocates all sampling data buffers (SDBs) allocated\nfor that CPU at event initialization. It also clears the\nPMU_F_RESERVED bit. The CPU is gone and can not be sampled.\n\nWith the event still being active on the removed CPU, the CPU event\nhotplug support in kernel performance subsystem triggers the\nfollowing function calls on the removed CPU:\n\n perf_event_exit_cpu()\n +--\u003e perf_event_exit_cpu_context()\n +--\u003e __perf_event_exit_context()\n\t +--\u003e __perf_remove_from_context()\n\t +--\u003e event_sched_out()\n\t +--\u003e cpumsf_pmu_del()\n\t +--\u003e cpumsf_pmu_stop()\n +--\u003e hw_perf_event_update()\n\nto stop and remove the event. During removal of the event, the\nsampling device driver tries to read out the remaining samples from\nthe sample data buffers (SDBs). But they have already been freed\n(and may have been re-assigned). This may lead to a use after free\nsituation in which case the samples are most likely invalid. In the\nbest case the memory has not been reassigned and still contains\nvalid data.\n\nRemedy this situation and check if the CPU is still in reserved\nstate (bit PMU_F_RESERVED set). In this case the SDBs have not been\nreleased an contain valid data. This is always the case when\nthe event is removed (and no CPU hotplug off occured).\nIf the PMU_F_RESERVED bit is not set, the SDB buffers are gone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57849",
"url": "https://www.suse.com/security/cve/CVE-2024-57849"
},
{
"category": "external",
"summary": "SUSE Bug 1235814 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "external",
"summary": "SUSE Bug 1235815 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57849"
},
{
"cve": "CVE-2024-57850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njffs2: Prevent rtime decompress memory corruption\n\nThe rtime decompression routine does not fully check bounds during the\nentirety of the decompression pass and can corrupt memory outside the\ndecompression buffer if the compressed data is corrupted. This adds the\nrequired check to prevent this failure mode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57850",
"url": "https://www.suse.com/security/cve/CVE-2024-57850"
},
{
"category": "external",
"summary": "SUSE Bug 1235812 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "external",
"summary": "SUSE Bug 1235813 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57850"
},
{
"cve": "CVE-2024-57857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/siw: Remove direct link to net_device\n\nDo not manage a per device direct link to net_device. Rely\non associated ib_devices net_device management, not doubling\nthe effort locally. A badly managed local link to net_device\nwas causing a \u0027KASAN: slab-use-after-free\u0027 exception during\nsiw_query_port() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57857",
"url": "https://www.suse.com/security/cve/CVE-2024-57857"
},
{
"category": "external",
"summary": "SUSE Bug 1235946 for CVE-2024-57857",
"url": "https://bugzilla.suse.com/1235946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57857"
},
{
"cve": "CVE-2024-57874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57874"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL\n\nCurrently tagged_addr_ctrl_set() doesn\u0027t initialize the temporary \u0027ctrl\u0027\nvariable, and a SETREGSET call with a length of zero will leave this\nuninitialized. Consequently tagged_addr_ctrl_set() will consume an\narbitrary value, potentially leaking up to 64 bits of memory from the\nkernel stack. The read is limited to a specific slot on the stack, and\nthe issue does not provide a write mechanism.\n\nAs set_tagged_addr_ctrl() only accepts values where bits [63:4] zero and\nrejects other values, a partial SETREGSET attempt will randomly succeed\nor fail depending on the value of the uninitialized value, and the\nexposure is significantly limited.\n\nFix this by initializing the temporary value before copying the regset\nfrom userspace, as for other regsets (e.g. NT_PRSTATUS, NT_PRFPREG,\nNT_ARM_SYSTEM_CALL). In the case of a zero-length write, the existing\nvalue of the tagged address ctrl will be retained.\n\nThe NT_ARM_TAGGED_ADDR_CTRL regset is only visible in the\nuser_aarch64_view used by a native AArch64 task to manipulate another\nnative AArch64 task. As get_tagged_addr_ctrl() only returns an error\nvalue when called for a compat task, tagged_addr_ctrl_get() and\ntagged_addr_ctrl_set() should never observe an error value from\nget_tagged_addr_ctrl(). Add a WARN_ON_ONCE() to both to indicate that\nsuch an error would be unexpected, and error handlnig is not missing in\neither case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57874",
"url": "https://www.suse.com/security/cve/CVE-2024-57874"
},
{
"category": "external",
"summary": "SUSE Bug 1235808 for CVE-2024-57874",
"url": "https://bugzilla.suse.com/1235808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-57874"
},
{
"cve": "CVE-2024-57876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57876"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix resetting msg rx state after topology removal\n\nIf the MST topology is removed during the reception of an MST down reply\nor MST up request sideband message, the\ndrm_dp_mst_topology_mgr::up_req_recv/down_rep_recv states could be reset\nfrom one thread via drm_dp_mst_topology_mgr_set_mst(false), racing with\nthe reading/parsing of the message from another thread via\ndrm_dp_mst_handle_down_rep() or drm_dp_mst_handle_up_req(). The race is\npossible since the reader/parser doesn\u0027t hold any lock while accessing\nthe reception state. This in turn can lead to a memory corruption in the\nreader/parser as described by commit bd2fccac61b4 (\"drm/dp_mst: Fix MST\nsideband message body length check\").\n\nFix the above by resetting the message reception state if needed before\nreading/parsing a message. Another solution would be to hold the\ndrm_dp_mst_topology_mgr::lock for the whole duration of the message\nreception/parsing in drm_dp_mst_handle_down_rep() and\ndrm_dp_mst_handle_up_req(), however this would require a bigger change.\nSince the fix is also needed for stable, opting for the simpler solution\nin this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57876",
"url": "https://www.suse.com/security/cve/CVE-2024-57876"
},
{
"category": "external",
"summary": "SUSE Bug 1235806 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "external",
"summary": "SUSE Bug 1235807 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57876"
},
{
"cve": "CVE-2024-57884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim()\n\nThe task sometimes continues looping in throttle_direct_reclaim() because\nallow_direct_reclaim(pgdat) keeps returning false. \n\n #0 [ffff80002cb6f8d0] __switch_to at ffff8000080095ac\n #1 [ffff80002cb6f900] __schedule at ffff800008abbd1c\n #2 [ffff80002cb6f990] schedule at ffff800008abc50c\n #3 [ffff80002cb6f9b0] throttle_direct_reclaim at ffff800008273550\n #4 [ffff80002cb6fa20] try_to_free_pages at ffff800008277b68\n #5 [ffff80002cb6fae0] __alloc_pages_nodemask at ffff8000082c4660\n #6 [ffff80002cb6fc50] alloc_pages_vma at ffff8000082e4a98\n #7 [ffff80002cb6fca0] do_anonymous_page at ffff80000829f5a8\n #8 [ffff80002cb6fce0] __handle_mm_fault at ffff8000082a5974\n #9 [ffff80002cb6fd90] handle_mm_fault at ffff8000082a5bd4\n\nAt this point, the pgdat contains the following two zones:\n\n NODE: 4 ZONE: 0 ADDR: ffff00817fffe540 NAME: \"DMA32\"\n SIZE: 20480 MIN/LOW/HIGH: 11/28/45\n VM_STAT:\n NR_FREE_PAGES: 359\n NR_ZONE_INACTIVE_ANON: 18813\n NR_ZONE_ACTIVE_ANON: 0\n NR_ZONE_INACTIVE_FILE: 50\n NR_ZONE_ACTIVE_FILE: 0\n NR_ZONE_UNEVICTABLE: 0\n NR_ZONE_WRITE_PENDING: 0\n NR_MLOCK: 0\n NR_BOUNCE: 0\n NR_ZSPAGES: 0\n NR_FREE_CMA_PAGES: 0\n\n NODE: 4 ZONE: 1 ADDR: ffff00817fffec00 NAME: \"Normal\"\n SIZE: 8454144 PRESENT: 98304 MIN/LOW/HIGH: 68/166/264\n VM_STAT:\n NR_FREE_PAGES: 146\n NR_ZONE_INACTIVE_ANON: 94668\n NR_ZONE_ACTIVE_ANON: 3\n NR_ZONE_INACTIVE_FILE: 735\n NR_ZONE_ACTIVE_FILE: 78\n NR_ZONE_UNEVICTABLE: 0\n NR_ZONE_WRITE_PENDING: 0\n NR_MLOCK: 0\n NR_BOUNCE: 0\n NR_ZSPAGES: 0\n NR_FREE_CMA_PAGES: 0\n\nIn allow_direct_reclaim(), while processing ZONE_DMA32, the sum of\ninactive/active file-backed pages calculated in zone_reclaimable_pages()\nbased on the result of zone_page_state_snapshot() is zero. \n\nAdditionally, since this system lacks swap, the calculation of inactive/\nactive anonymous pages is skipped.\n\n crash\u003e p nr_swap_pages\n nr_swap_pages = $1937 = {\n counter = 0\n }\n\nAs a result, ZONE_DMA32 is deemed unreclaimable and skipped, moving on to\nthe processing of the next zone, ZONE_NORMAL, despite ZONE_DMA32 having\nfree pages significantly exceeding the high watermark.\n\nThe problem is that the pgdat-\u003ekswapd_failures hasn\u0027t been incremented.\n\n crash\u003e px ((struct pglist_data *) 0xffff00817fffe540)-\u003ekswapd_failures\n $1935 = 0x0\n\nThis is because the node deemed balanced. The node balancing logic in\nbalance_pgdat() evaluates all zones collectively. If one or more zones\n(e.g., ZONE_DMA32) have enough free pages to meet their watermarks, the\nentire node is deemed balanced. This causes balance_pgdat() to exit early\nbefore incrementing the kswapd_failures, as it considers the overall\nmemory state acceptable, even though some zones (like ZONE_NORMAL) remain\nunder significant pressure.\n\n\nThe patch ensures that zone_reclaimable_pages() includes free pages\n(NR_FREE_PAGES) in its calculation when no other reclaimable pages are\navailable (e.g., file-backed or anonymous pages). This change prevents\nzones like ZONE_DMA32, which have sufficient free pages, from being\nmistakenly deemed unreclaimable. By doing so, the patch ensures proper\nnode balancing, avoids masking pressure on other zones like ZONE_NORMAL,\nand prevents infinite loops in throttle_direct_reclaim() caused by\nallow_direct_reclaim(pgdat) repeatedly returning false.\n\n\nThe kernel hangs due to a task stuck in throttle_direct_reclaim(), caused\nby a node being incorrectly deemed balanced despite pressure in certain\nzones, such as ZONE_NORMAL. This issue arises from\nzone_reclaimable_pages\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57884",
"url": "https://www.suse.com/security/cve/CVE-2024-57884"
},
{
"category": "external",
"summary": "SUSE Bug 1235948 for CVE-2024-57884",
"url": "https://bugzilla.suse.com/1235948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57884"
},
{
"cve": "CVE-2024-57887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: adv7511: Fix use-after-free in adv7533_attach_dsi()\n\nThe host_node pointer was assigned and freed in adv7533_parse_dt(), and\nlater, adv7533_attach_dsi() uses the same. Fix this use-after-free issue\nby dropping of_node_put() in adv7533_parse_dt() and calling of_node_put()\nin error path of probe() and also in the remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57887",
"url": "https://www.suse.com/security/cve/CVE-2024-57887"
},
{
"category": "external",
"summary": "SUSE Bug 1235952 for CVE-2024-57887",
"url": "https://bugzilla.suse.com/1235952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57887"
},
{
"cve": "CVE-2024-57888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nworkqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker\n\nAfter commit\n746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")\namdgpu started seeing the following warning:\n\n [ ] workqueue: WQ_MEM_RECLAIM sdma0:drm_sched_run_job_work [gpu_sched] is flushing !WQ_MEM_RECLAIM events:amdgpu_device_delay_enable_gfx_off [amdgpu]\n...\n [ ] Workqueue: sdma0 drm_sched_run_job_work [gpu_sched]\n...\n [ ] Call Trace:\n [ ] \u003cTASK\u003e\n...\n [ ] ? check_flush_dependency+0xf5/0x110\n...\n [ ] cancel_delayed_work_sync+0x6e/0x80\n [ ] amdgpu_gfx_off_ctrl+0xab/0x140 [amdgpu]\n [ ] amdgpu_ring_alloc+0x40/0x50 [amdgpu]\n [ ] amdgpu_ib_schedule+0xf4/0x810 [amdgpu]\n [ ] ? drm_sched_run_job_work+0x22c/0x430 [gpu_sched]\n [ ] amdgpu_job_run+0xaa/0x1f0 [amdgpu]\n [ ] drm_sched_run_job_work+0x257/0x430 [gpu_sched]\n [ ] process_one_work+0x217/0x720\n...\n [ ] \u003c/TASK\u003e\n\nThe intent of the verifcation done in check_flush_depedency is to ensure\nforward progress during memory reclaim, by flagging cases when either a\nmemory reclaim process, or a memory reclaim work item is flushed from a\ncontext not marked as memory reclaim safe.\n\nThis is correct when flushing, but when called from the\ncancel(_delayed)_work_sync() paths it is a false positive because work is\neither already running, or will not be running at all. Therefore\ncancelling it is safe and we can relax the warning criteria by letting the\nhelper know of the calling context.\n\nReferences: 746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57888",
"url": "https://www.suse.com/security/cve/CVE-2024-57888"
},
{
"category": "external",
"summary": "SUSE Bug 1235918 for CVE-2024-57888",
"url": "https://bugzilla.suse.com/1235918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57888"
},
{
"cve": "CVE-2024-57890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/uverbs: Prevent integer overflow issue\n\nIn the expression \"cmd.wqe_size * cmd.wr_count\", both variables are u32\nvalues that come from the user so the multiplication can lead to integer\nwrapping. Then we pass the result to uverbs_request_next_ptr() which also\ncould potentially wrap. The \"cmd.sge_count * sizeof(struct ib_uverbs_sge)\"\nmultiplication can also overflow on 32bit systems although it\u0027s fine on\n64bit systems.\n\nThis patch does two things. First, I\u0027ve re-arranged the condition in\nuverbs_request_next_ptr() so that the use controlled variable \"len\" is on\none side of the comparison by itself without any math. Then I\u0027ve modified\nall the callers to use size_mul() for the multiplications.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57890",
"url": "https://www.suse.com/security/cve/CVE-2024-57890"
},
{
"category": "external",
"summary": "SUSE Bug 1235919 for CVE-2024-57890",
"url": "https://bugzilla.suse.com/1235919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57890"
},
{
"cve": "CVE-2024-57892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57892"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix slab-use-after-free due to dangling pointer dqi_priv\n\nWhen mounting ocfs2 and then remounting it as read-only, a\nslab-use-after-free occurs after the user uses a syscall to\nquota_getnextquota. Specifically, sb_dqinfo(sb, type)-\u003edqi_priv is the\ndangling pointer.\n\nDuring the remounting process, the pointer dqi_priv is freed but is never\nset as null leaving it to be accessed. Additionally, the read-only option\nfor remounting sets the DQUOT_SUSPENDED flag instead of setting the\nDQUOT_USAGE_ENABLED flags. Moreover, later in the process of getting the\nnext quota, the function ocfs2_get_next_id is called and only checks the\nquota usage flags and not the quota suspended flags.\n\nTo fix this, I set dqi_priv to null when it is freed after remounting with\nread-only and put a check for DQUOT_SUSPENDED in ocfs2_get_next_id.\n\n[akpm@linux-foundation.org: coding-style cleanups]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57892",
"url": "https://www.suse.com/security/cve/CVE-2024-57892"
},
{
"category": "external",
"summary": "SUSE Bug 1235964 for CVE-2024-57892",
"url": "https://bugzilla.suse.com/1235964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57892"
},
{
"cve": "CVE-2024-57893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: oss: Fix races at processing SysEx messages\n\nOSS sequencer handles the SysEx messages split in 6 bytes packets, and\nALSA sequencer OSS layer tries to combine those. It stores the data\nin the internal buffer and this access is racy as of now, which may\nlead to the out-of-bounds access.\n\nAs a temporary band-aid fix, introduce a mutex for serializing the\nprocess of the SysEx message packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57893",
"url": "https://www.suse.com/security/cve/CVE-2024-57893"
},
{
"category": "external",
"summary": "SUSE Bug 1235920 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "external",
"summary": "SUSE Bug 1235921 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57893"
},
{
"cve": "CVE-2024-57896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: flush delalloc workers queue before stopping cleaner kthread during unmount\n\nDuring the unmount path, at close_ctree(), we first stop the cleaner\nkthread, using kthread_stop() which frees the associated task_struct, and\nthen stop and destroy all the work queues. However after we stopped the\ncleaner we may still have a worker from the delalloc_workers queue running\ninode.c:submit_compressed_extents(), which calls btrfs_add_delayed_iput(),\nwhich in turn tries to wake up the cleaner kthread - which was already\ndestroyed before, resulting in a use-after-free on the task_struct.\n\nSyzbot reported this with the following stack traces:\n\n BUG: KASAN: slab-use-after-free in __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n Read of size 8 at addr ffff8880259d2818 by task kworker/u8:3/52\n\n CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Workqueue: btrfs-delalloc btrfs_work_helper\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5849\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xd5/0x120 kernel/locking/spinlock.c:162\n class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:551 [inline]\n try_to_wake_up+0xc2/0x1470 kernel/sched/core.c:4205\n submit_compressed_extents+0xdf/0x16e0 fs/btrfs/inode.c:1615\n run_ordered_work fs/btrfs/async-thread.c:288 [inline]\n btrfs_work_helper+0x96f/0xc40 fs/btrfs/async-thread.c:324\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa66/0x1840 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\n Allocated by task 2:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:319 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:345\n kasan_slab_alloc include/linux/kasan.h:250 [inline]\n slab_post_alloc_hook mm/slub.c:4104 [inline]\n slab_alloc_node mm/slub.c:4153 [inline]\n kmem_cache_alloc_node_noprof+0x1d9/0x380 mm/slub.c:4205\n alloc_task_struct_node kernel/fork.c:180 [inline]\n dup_task_struct+0x57/0x8c0 kernel/fork.c:1113\n copy_process+0x5d1/0x3d50 kernel/fork.c:2225\n kernel_clone+0x223/0x870 kernel/fork.c:2807\n kernel_thread+0x1bc/0x240 kernel/fork.c:2869\n create_kthread kernel/kthread.c:412 [inline]\n kthreadd+0x60d/0x810 kernel/kthread.c:767\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\n Freed by task 24:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:582\n poison_slab_object mm/kasan/common.c:247 [inline]\n __kasan_slab_free+0x59/0x70 mm/kasan/common.c:264\n kasan_slab_free include/linux/kasan.h:233 [inline]\n slab_free_hook mm/slub.c:2338 [inline]\n slab_free mm/slub.c:4598 [inline]\n kmem_cache_free+0x195/0x410 mm/slub.c:4700\n put_task_struct include/linux/sched/task.h:144 [inline]\n delayed_put_task_struct+0x125/0x300 kernel/exit.c:227\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:554\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:943\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57896",
"url": "https://www.suse.com/security/cve/CVE-2024-57896"
},
{
"category": "external",
"summary": "SUSE Bug 1235965 for CVE-2024-57896",
"url": "https://bugzilla.suse.com/1235965"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57896"
},
{
"cve": "CVE-2024-57897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Correct the migration DMA map direction\n\nThe SVM DMA device map direction should be set the same as\nthe DMA unmap setting, otherwise the DMA core will report\nthe following warning.\n\nBefore finialize this solution, there\u0027re some discussion on\nthe DMA mapping type(stream-based or coherent) in this KFD\nmigration case, followed by https://lore.kernel.org/all/04d4ab32\n-45a1-4b88-86ee-fb0f35a0ca40@amd.com/T/.\n\nAs there\u0027s no dma_sync_single_for_*() in the DMA buffer accessed\nthat because this migration operation should be sync properly and\nautomatically. Give that there\u0027s might not be a performance problem\nin various cache sync policy of DMA sync. Therefore, in order to\nsimplify the DMA direction setting alignment, let\u0027s set the DMA map\ndirection as BIDIRECTIONAL.\n\n[ 150.834218] WARNING: CPU: 8 PID: 1812 at kernel/dma/debug.c:1028 check_unmap+0x1cc/0x930\n[ 150.834225] Modules linked in: amdgpu(OE) amdxcp drm_exec(OE) gpu_sched drm_buddy(OE) drm_ttm_helper(OE) ttm(OE) drm_suballoc_helper(OE) drm_display_helper(OE) drm_kms_helper(OE) i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc sch_fq_codel intel_rapl_msr amd_atl intel_rapl_common snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd snd_pci_acp6x snd_hda_codec snd_acp_config snd_hda_core snd_hwdep snd_soc_acpi kvm_amd sunrpc snd_pcm kvm binfmt_misc snd_seq_midi crct10dif_pclmul snd_seq_midi_event ghash_clmulni_intel sha512_ssse3 snd_rawmidi nls_iso8859_1 sha256_ssse3 sha1_ssse3 snd_seq aesni_intel snd_seq_device crypto_simd snd_timer cryptd input_leds\n[ 150.834310] wmi_bmof serio_raw k10temp rapl snd sp5100_tco ipmi_devintf soundcore ccp ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport efi_pstore drm(OE) ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 150.834354] CPU: 8 PID: 1812 Comm: rocrtst64 Tainted: G OE 6.10.0-custom #492\n[ 150.834358] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 150.834360] RIP: 0010:check_unmap+0x1cc/0x930\n[ 150.834363] Code: c0 4c 89 4d c8 e8 34 bf 86 00 4c 8b 4d c8 4c 8b 45 c0 48 8b 4d b8 48 89 c6 41 57 4c 89 ea 48 c7 c7 80 49 b4 84 e8 b4 81 f3 ff \u003c0f\u003e 0b 48 c7 c7 04 83 ac 84 e8 76 ba fc ff 41 8b 76 4c 49 8d 7e 50\n[ 150.834365] RSP: 0018:ffffaac5023739e0 EFLAGS: 00010086\n[ 150.834368] RAX: 0000000000000000 RBX: ffffffff8566a2e0 RCX: 0000000000000027\n[ 150.834370] RDX: ffff8f6a8f621688 RSI: 0000000000000001 RDI: ffff8f6a8f621680\n[ 150.834372] RBP: ffffaac502373a30 R08: 00000000000000c9 R09: ffffaac502373850\n[ 150.834373] R10: ffffaac502373848 R11: ffffffff84f46328 R12: ffffaac502373a40\n[ 150.834375] R13: ffff8f6741045330 R14: ffff8f6741a77700 R15: ffffffff84ac831b\n[ 150.834377] FS: 00007faf0fc94c00(0000) GS:ffff8f6a8f600000(0000) knlGS:0000000000000000\n[ 150.834379] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 150.834381] CR2: 00007faf0b600020 CR3: 000000010a52e000 CR4: 0000000000350ef0\n[ 150.834383] Call Trace:\n[ 150.834385] \u003cTASK\u003e\n[ 150.834387] ? show_regs+0x6d/0x80\n[ 150.834393] ? __warn+0x8c/0x140\n[ 150.834397] ? check_unmap+0x1cc/0x930\n[ 150.834400] ? report_bug+0x193/0x1a0\n[ 150.834406] ? handle_bug+0x46/0x80\n[ 150.834410] ? exc_invalid_op+0x1d/0x80\n[ 150.834413] ? asm_exc_invalid_op+0x1f/0x30\n[ 150.834420] ? check_unmap+0x1cc/0x930\n[ 150.834425] debug_dma_unmap_page+0x86/0x90\n[ 150.834431] ? srso_return_thunk+0x5/0x5f\n[ 150.834435] \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57897",
"url": "https://www.suse.com/security/cve/CVE-2024-57897"
},
{
"category": "external",
"summary": "SUSE Bug 1235969 for CVE-2024-57897",
"url": "https://bugzilla.suse.com/1235969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57897"
},
{
"cve": "CVE-2024-57899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57899"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: fix mbss changed flags corruption on 32 bit systems\n\nOn 32-bit systems, the size of an unsigned long is 4 bytes,\nwhile a u64 is 8 bytes. Therefore, when using\nor_each_set_bit(bit, \u0026bits, sizeof(changed) * BITS_PER_BYTE),\nthe code is incorrectly searching for a bit in a 32-bit\nvariable that is expected to be 64 bits in size,\nleading to incorrect bit finding.\n\nSolution: Ensure that the size of the bits variable is correctly\nadjusted for each architecture.\n\n Call Trace:\n ? show_regs+0x54/0x58\n ? __warn+0x6b/0xd4\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? report_bug+0x113/0x150\n ? exc_overflow+0x30/0x30\n ? handle_bug+0x27/0x44\n ? exc_invalid_op+0x18/0x50\n ? handle_exception+0xf6/0xf6\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? ieee80211_mesh_work+0xff/0x260 [mac80211]\n ? cfg80211_wiphy_work+0x72/0x98 [cfg80211]\n ? process_one_work+0xf1/0x1fc\n ? worker_thread+0x2c0/0x3b4\n ? kthread+0xc7/0xf0\n ? mod_delayed_work_on+0x4c/0x4c\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork+0x24/0x38\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork_asm+0xf/0x14\n ? entry_INT80_32+0xf0/0xf0\n\n[restore no-op path for no changes]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57899",
"url": "https://www.suse.com/security/cve/CVE-2024-57899"
},
{
"category": "external",
"summary": "SUSE Bug 1235924 for CVE-2024-57899",
"url": "https://bugzilla.suse.com/1235924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57899"
},
{
"cve": "CVE-2024-57903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: restrict SO_REUSEPORT to inet sockets\n\nAfter blamed commit, crypto sockets could accidentally be destroyed\nfrom RCU call back, as spotted by zyzbot [1].\n\nTrying to acquire a mutex in RCU callback is not allowed.\n\nRestrict SO_REUSEPORT socket option to inet sockets.\n\nv1 of this patch supported TCP, UDP and SCTP sockets,\nbut fcnal-test.sh test needed RAW and ICMP support.\n\n[1]\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:562\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 24, name: ksoftirqd/1\npreempt_count: 100, expected: 0\nRCU nest depth: 0, expected: 0\n1 lock held by ksoftirqd/1/24:\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_lock_acquire include/linux/rcupdate.h:337 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_do_batch kernel/rcu/tree.c:2561 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_core+0xa37/0x17a0 kernel/rcu/tree.c:2823\nPreemption disabled at:\n [\u003cffffffff8161c8c8\u003e] softirq_handle_begin kernel/softirq.c:402 [inline]\n [\u003cffffffff8161c8c8\u003e] handle_softirqs+0x128/0x9b0 kernel/softirq.c:537\nCPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.13.0-rc3-syzkaller-00174-ga024e377efed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n __might_resched+0x5d4/0x780 kernel/sched/core.c:8758\n __mutex_lock_common kernel/locking/mutex.c:562 [inline]\n __mutex_lock+0x131/0xee0 kernel/locking/mutex.c:735\n crypto_put_default_null_skcipher+0x18/0x70 crypto/crypto_null.c:179\n aead_release+0x3d/0x50 crypto/algif_aead.c:489\n alg_do_release crypto/af_alg.c:118 [inline]\n alg_sock_destruct+0x86/0xc0 crypto/af_alg.c:502\n __sk_destruct+0x58/0x5f0 net/core/sock.c:2260\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:561\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:950\n smpboot_thread_fn+0x544/0xa30 kernel/smpboot.c:164\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57903",
"url": "https://www.suse.com/security/cve/CVE-2024-57903"
},
{
"category": "external",
"summary": "SUSE Bug 1235967 for CVE-2024-57903",
"url": "https://bugzilla.suse.com/1235967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57903"
},
{
"cve": "CVE-2024-57904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: at91: call input_free_device() on allocated iio_dev\n\nCurrent implementation of at91_ts_register() calls input_free_deivce()\non st-\u003ets_input, however, the err label can be reached before the\nallocated iio_dev is stored to st-\u003ets_input. Thus call\ninput_free_device() on input instead of st-\u003ets_input.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57904",
"url": "https://www.suse.com/security/cve/CVE-2024-57904"
},
{
"category": "external",
"summary": "SUSE Bug 1236078 for CVE-2024-57904",
"url": "https://bugzilla.suse.com/1236078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57904"
},
{
"cve": "CVE-2024-57906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ti-ads8688: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57906",
"url": "https://www.suse.com/security/cve/CVE-2024-57906"
},
{
"category": "external",
"summary": "SUSE Bug 1236088 for CVE-2024-57906",
"url": "https://bugzilla.suse.com/1236088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-57906"
},
{
"cve": "CVE-2024-57907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: rockchip_saradc: fix information leak in triggered buffer\n\nThe \u0027data\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57907",
"url": "https://www.suse.com/security/cve/CVE-2024-57907"
},
{
"category": "external",
"summary": "SUSE Bug 1236090 for CVE-2024-57907",
"url": "https://bugzilla.suse.com/1236090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-57907"
},
{
"cve": "CVE-2024-57908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: imu: kmx61: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57908",
"url": "https://www.suse.com/security/cve/CVE-2024-57908"
},
{
"category": "external",
"summary": "SUSE Bug 1236091 for CVE-2024-57908",
"url": "https://bugzilla.suse.com/1236091"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57908"
},
{
"cve": "CVE-2024-57910",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57910"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: vcnl4035: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to userspace from a\ntriggered buffer, but it does not set an initial value for the single\ndata element, which is an u16 aligned to 8 bytes. That leaves at least\n4 bytes uninitialized even after writing an integer value with\nregmap_read().\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57910",
"url": "https://www.suse.com/security/cve/CVE-2024-57910"
},
{
"category": "external",
"summary": "SUSE Bug 1236097 for CVE-2024-57910",
"url": "https://bugzilla.suse.com/1236097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57910"
},
{
"cve": "CVE-2024-57911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer\n\nThe \u0027data\u0027 array is allocated via kmalloc() and it is used to push data\nto user space from a triggered buffer, but it does not set values for\ninactive channels, as it only uses iio_for_each_active_channel()\nto assign new values.\n\nUse kzalloc for the memory allocation to avoid pushing uninitialized\ninformation to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57911",
"url": "https://www.suse.com/security/cve/CVE-2024-57911"
},
{
"category": "external",
"summary": "SUSE Bug 1236098 for CVE-2024-57911",
"url": "https://bugzilla.suse.com/1236098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57911"
},
{
"cve": "CVE-2024-57912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: pressure: zpa2326: fix information leak in triggered buffer\n\nThe \u0027sample\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it has a hole between the temperature and the\ntimestamp (u32 pressure, u16 temperature, GAP, u64 timestamp).\nThis hole is never initialized.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57912",
"url": "https://www.suse.com/security/cve/CVE-2024-57912"
},
{
"category": "external",
"summary": "SUSE Bug 1236101 for CVE-2024-57912",
"url": "https://bugzilla.suse.com/1236101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57912"
},
{
"cve": "CVE-2024-57913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Remove WARN_ON in functionfs_bind\n\nThis commit addresses an issue related to below kernel panic where\npanic_on_warn is enabled. It is caused by the unnecessary use of WARN_ON\nin functionsfs_bind, which easily leads to the following scenarios.\n\n1.adb_write in adbd 2. UDC write via configfs\n =================\t =====================\n\n-\u003eusb_ffs_open_thread() -\u003eUDC write\n -\u003eopen_functionfs() -\u003econfigfs_write_iter()\n -\u003eadb_open() -\u003egadget_dev_desc_UDC_store()\n -\u003eadb_write() -\u003eusb_gadget_register_driver_owner\n -\u003edriver_register()\n-\u003eStartMonitor() -\u003ebus_add_driver()\n -\u003eadb_read() -\u003egadget_bind_driver()\n\u003ctimes-out without BIND event\u003e -\u003econfigfs_composite_bind()\n -\u003eusb_add_function()\n-\u003eopen_functionfs() -\u003effs_func_bind()\n -\u003eadb_open() -\u003efunctionfs_bind()\n \u003cffs-\u003estate !=FFS_ACTIVE\u003e\n\nThe adb_open, adb_read, and adb_write operations are invoked from the\ndaemon, but trying to bind the function is a process that is invoked by\nUDC write through configfs, which opens up the possibility of a race\ncondition between the two paths. In this race scenario, the kernel panic\noccurs due to the WARN_ON from functionfs_bind when panic_on_warn is\nenabled. This commit fixes the kernel panic by removing the unnecessary\nWARN_ON.\n\nKernel panic - not syncing: kernel: panic_on_warn set ...\n[ 14.542395] Call trace:\n[ 14.542464] ffs_func_bind+0x1c8/0x14a8\n[ 14.542468] usb_add_function+0xcc/0x1f0\n[ 14.542473] configfs_composite_bind+0x468/0x588\n[ 14.542478] gadget_bind_driver+0x108/0x27c\n[ 14.542483] really_probe+0x190/0x374\n[ 14.542488] __driver_probe_device+0xa0/0x12c\n[ 14.542492] driver_probe_device+0x3c/0x220\n[ 14.542498] __driver_attach+0x11c/0x1fc\n[ 14.542502] bus_for_each_dev+0x104/0x160\n[ 14.542506] driver_attach+0x24/0x34\n[ 14.542510] bus_add_driver+0x154/0x270\n[ 14.542514] driver_register+0x68/0x104\n[ 14.542518] usb_gadget_register_driver_owner+0x48/0xf4\n[ 14.542523] gadget_dev_desc_UDC_store+0xf8/0x144\n[ 14.542526] configfs_write_iter+0xf0/0x138",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57913",
"url": "https://www.suse.com/security/cve/CVE-2024-57913"
},
{
"category": "external",
"summary": "SUSE Bug 1236102 for CVE-2024-57913",
"url": "https://bugzilla.suse.com/1236102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57913"
},
{
"cve": "CVE-2024-57915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57915"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57915",
"url": "https://www.suse.com/security/cve/CVE-2024-57915"
},
{
"category": "external",
"summary": "SUSE Bug 1236120 for CVE-2024-57915",
"url": "https://bugzilla.suse.com/1236120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57915"
},
{
"cve": "CVE-2024-57916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling\n\nResolve kernel panic caused by improper handling of IRQs while\naccessing GPIO values. This is done by replacing generic_handle_irq with\nhandle_nested_irq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57916",
"url": "https://www.suse.com/security/cve/CVE-2024-57916"
},
{
"category": "external",
"summary": "SUSE Bug 1236125 for CVE-2024-57916",
"url": "https://bugzilla.suse.com/1236125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57916"
},
{
"cve": "CVE-2024-57917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57917"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntopology: Keep the cpumask unchanged when printing cpumap\n\nDuring fuzz testing, the following warning was discovered:\n\n different return values (15 and 11) from vsnprintf(\"%*pbl\n \", ...)\n\n test:keyward is WARNING in kvasprintf\n WARNING: CPU: 55 PID: 1168477 at lib/kasprintf.c:30 kvasprintf+0x121/0x130\n Call Trace:\n kvasprintf+0x121/0x130\n kasprintf+0xa6/0xe0\n bitmap_print_to_buf+0x89/0x100\n core_siblings_list_read+0x7e/0xb0\n kernfs_file_read_iter+0x15b/0x270\n new_sync_read+0x153/0x260\n vfs_read+0x215/0x290\n ksys_read+0xb9/0x160\n do_syscall_64+0x56/0x100\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe call trace shows that kvasprintf() reported this warning during the\nprinting of core_siblings_list. kvasprintf() has several steps:\n\n (1) First, calculate the length of the resulting formatted string.\n\n (2) Allocate a buffer based on the returned length.\n\n (3) Then, perform the actual string formatting.\n\n (4) Check whether the lengths of the formatted strings returned in\n steps (1) and (2) are consistent.\n\nIf the core_cpumask is modified between steps (1) and (3), the lengths\nobtained in these two steps may not match. Indeed our test includes cpu\nhotplugging, which should modify core_cpumask while printing.\n\nTo fix this issue, cache the cpumask into a temporary variable before\ncalling cpumap_print_{list, cpumask}_to_buf(), to keep it unchanged\nduring the printing process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57917",
"url": "https://www.suse.com/security/cve/CVE-2024-57917"
},
{
"category": "external",
"summary": "SUSE Bug 1236127 for CVE-2024-57917",
"url": "https://bugzilla.suse.com/1236127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57917"
},
{
"cve": "CVE-2024-57922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add check for granularity in dml ceil/floor helpers\n\n[Why]\nWrapper functions for dcn_bw_ceil2() and dcn_bw_floor2()\nshould check for granularity is non zero to avoid assert and\ndivide-by-zero error in dcn_bw_ functions.\n\n[How]\nAdd check for granularity 0.\n\n(cherry picked from commit f6e09701c3eb2ccb8cb0518e0b67f1c69742a4ec)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57922",
"url": "https://www.suse.com/security/cve/CVE-2024-57922"
},
{
"category": "external",
"summary": "SUSE Bug 1236080 for CVE-2024-57922",
"url": "https://bugzilla.suse.com/1236080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57922"
},
{
"cve": "CVE-2024-57926",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57926"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err\n\nThe pointer need to be set to NULL, otherwise KASAN complains about\nuse-after-free. Because in mtk_drm_bind, all private\u0027s drm are set\nas follows.\n\nprivate-\u003eall_drm_private[i]-\u003edrm = drm;\n\nAnd drm will be released by drm_dev_put in case mtk_drm_kms_init returns\nfailure. However, the shutdown path still accesses the previous allocated\nmemory in drm_atomic_helper_shutdown.\n\n[ 84.874820] watchdog: watchdog0: watchdog did not stop!\n[ 86.512054] ==================================================================\n[ 86.513162] BUG: KASAN: use-after-free in drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.514258] Read of size 8 at addr ffff0000d46fc068 by task shutdown/1\n[ 86.515213]\n[ 86.515455] CPU: 1 UID: 0 PID: 1 Comm: shutdown Not tainted 6.13.0-rc1-mtk+gfa1a78e5d24b-dirty #55\n[ 86.516752] Hardware name: Unknown Product/Unknown Product, BIOS 2022.10 10/01/2022\n[ 86.517960] Call trace:\n[ 86.518333] show_stack+0x20/0x38 (C)\n[ 86.518891] dump_stack_lvl+0x90/0xd0\n[ 86.519443] print_report+0xf8/0x5b0\n[ 86.519985] kasan_report+0xb4/0x100\n[ 86.520526] __asan_report_load8_noabort+0x20/0x30\n[ 86.521240] drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.521966] mtk_drm_shutdown+0x54/0x80\n[ 86.522546] platform_shutdown+0x64/0x90\n[ 86.523137] device_shutdown+0x260/0x5b8\n[ 86.523728] kernel_restart+0x78/0xf0\n[ 86.524282] __do_sys_reboot+0x258/0x2f0\n[ 86.524871] __arm64_sys_reboot+0x90/0xd8\n[ 86.525473] invoke_syscall+0x74/0x268\n[ 86.526041] el0_svc_common.constprop.0+0xb0/0x240\n[ 86.526751] do_el0_svc+0x4c/0x70\n[ 86.527251] el0_svc+0x4c/0xc0\n[ 86.527719] el0t_64_sync_handler+0x144/0x168\n[ 86.528367] el0t_64_sync+0x198/0x1a0\n[ 86.528920]\n[ 86.529157] The buggy address belongs to the physical page:\n[ 86.529972] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff0000d46fd4d0 pfn:0x1146fc\n[ 86.531319] flags: 0xbfffc0000000000(node=0|zone=2|lastcpupid=0xffff)\n[ 86.532267] raw: 0bfffc0000000000 0000000000000000 dead000000000122 0000000000000000\n[ 86.533390] raw: ffff0000d46fd4d0 0000000000000000 00000000ffffffff 0000000000000000\n[ 86.534511] page dumped because: kasan: bad access detected\n[ 86.535323]\n[ 86.535559] Memory state around the buggy address:\n[ 86.536265] ffff0000d46fbf00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.537314] ffff0000d46fbf80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.538363] \u003effff0000d46fc000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.544733] ^\n[ 86.551057] ffff0000d46fc080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.557510] ffff0000d46fc100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.563928] ==================================================================\n[ 86.571093] Disabling lock debugging due to kernel taint\n[ 86.577642] Unable to handle kernel paging request at virtual address e0e9c0920000000b\n[ 86.581834] KASAN: maybe wild-memory-access in range [0x0752049000000058-0x075204900000005f]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57926",
"url": "https://www.suse.com/security/cve/CVE-2024-57926"
},
{
"category": "external",
"summary": "SUSE Bug 1236082 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "external",
"summary": "SUSE Bug 1236084 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57926"
},
{
"cve": "CVE-2024-57929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57929"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm array: fix releasing a faulty array block twice in dm_array_cursor_end\n\nWhen dm_bm_read_lock() fails due to locking or checksum errors, it\nreleases the faulty block implicitly while leaving an invalid output\npointer behind. The caller of dm_bm_read_lock() should not operate on\nthis invalid dm_block pointer, or it will lead to undefined result.\nFor example, the dm_array_cursor incorrectly caches the invalid pointer\non reading a faulty array block, causing a double release in\ndm_array_cursor_end(), then hitting the BUG_ON in dm-bufio cache_put().\n\nReproduce steps:\n\n1. initialize a cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. wipe the second array block offline\n\ndmsteup remove cache cmeta cdata corig\nmapping_root=$(dd if=/dev/sdc bs=1c count=8 skip=192 \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\nablock=$(dd if=/dev/sdc bs=1c count=8 skip=$((4096*mapping_root+2056)) \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\ndd if=/dev/zero of=/dev/sdc bs=4k count=1 seek=$ablock\n\n3. try reopen the cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\ndevice-mapper: array: array_block_check failed: blocknr 0 != wanted 10\ndevice-mapper: block manager: array validator check failed for block 10\ndevice-mapper: array: get_ablock failed\ndevice-mapper: cache metadata: dm_array_cursor_next for mapping failed\n------------[ cut here ]------------\nkernel BUG at drivers/md/dm-bufio.c:638!\n\nFix by setting the cached block pointer to NULL on errors.\n\nIn addition to the reproducer described above, this fix can be\nverified using the \"array_cursor/damaged\" test in dm-unit:\n dm-unit run /pdata/array_cursor/damaged --kernel-dir \u003cKERNEL_DIR\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57929",
"url": "https://www.suse.com/security/cve/CVE-2024-57929"
},
{
"category": "external",
"summary": "SUSE Bug 1236096 for CVE-2024-57929",
"url": "https://bugzilla.suse.com/1236096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57929"
},
{
"cve": "CVE-2024-57931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57931"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: ignore unknown extended permissions\n\nWhen evaluating extended permissions, ignore unknown permissions instead\nof calling BUG(). This commit ensures that future permissions can be\nadded without interfering with older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57931",
"url": "https://www.suse.com/security/cve/CVE-2024-57931"
},
{
"category": "external",
"summary": "SUSE Bug 1236192 for CVE-2024-57931",
"url": "https://bugzilla.suse.com/1236192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57931"
},
{
"cve": "CVE-2024-57932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XDP xmit NDO on existence of xdp queues\n\nIn GVE, dedicated XDP queues only exist when an XDP program is installed\nand the interface is up. As such, the NDO XDP XMIT callback should\nreturn early if either of these conditions are false.\n\nIn the case of no loaded XDP program, priv-\u003enum_xdp_queues=0 which can\ncause a divide-by-zero error, and in the case of interface down,\nnum_xdp_queues remains untouched to persist XDP queue count for the next\ninterface up, but the TX pointer itself would be NULL.\n\nThe XDP xmit callback also needs to synchronize with a device\ntransitioning from open to close. This synchronization will happen via\nthe GVE_PRIV_FLAGS_NAPI_ENABLED bit along with a synchronize_net() call,\nwhich waits for any RCU critical sections at call-time to complete.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57932",
"url": "https://www.suse.com/security/cve/CVE-2024-57932"
},
{
"category": "external",
"summary": "SUSE Bug 1236190 for CVE-2024-57932",
"url": "https://bugzilla.suse.com/1236190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57932"
},
{
"cve": "CVE-2024-57933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57933"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XSK operations on the existence of queues\n\nThis patch predicates the enabling and disabling of XSK pools on the\nexistence of queues. As it stands, if the interface is down, disabling\nor enabling XSK pools would result in a crash, as the RX queue pointer\nwould be NULL. XSK pool registration will occur as part of the next\ninterface up.\n\nSimilarly, xsk_wakeup needs be guarded against queues disappearing\nwhile the function is executing, so a check against the\nGVE_PRIV_FLAGS_NAPI_ENABLED flag is added to synchronize with the\ndisabling of the bit and the synchronize_net() in gve_turndown.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57933",
"url": "https://www.suse.com/security/cve/CVE-2024-57933"
},
{
"category": "external",
"summary": "SUSE Bug 1236178 for CVE-2024-57933",
"url": "https://bugzilla.suse.com/1236178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57933"
},
{
"cve": "CVE-2024-57935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix accessing invalid dip_ctx during destroying QP\n\nIf it fails to modify QP to RTR, dip_ctx will not be attached. And\nduring detroying QP, the invalid dip_ctx pointer will be accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57935",
"url": "https://www.suse.com/security/cve/CVE-2024-57935"
},
{
"category": "external",
"summary": "SUSE Bug 1236180 for CVE-2024-57935",
"url": "https://bugzilla.suse.com/1236180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57935"
},
{
"cve": "CVE-2024-57936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57936"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix max SGEs for the Work Request\n\nGen P7 supports up to 13 SGEs for now. WQE software structure\ncan hold only 6 now. Since the max send sge is reported as\n13, the stack can give requests up to 13 SGEs. This is causing\ntraffic failures and system crashes.\n\nUse the define for max SGE supported for variable size. This\nwill work for both static and variable WQEs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57936",
"url": "https://www.suse.com/security/cve/CVE-2024-57936"
},
{
"category": "external",
"summary": "SUSE Bug 1236181 for CVE-2024-57936",
"url": "https://bugzilla.suse.com/1236181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57936"
},
{
"cve": "CVE-2024-57938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sctp: Prevent autoclose integer overflow in sctp_association_init()\n\nWhile by default max_autoclose equals to INT_MAX / HZ, one may set\nnet.sctp.max_autoclose to UINT_MAX. There is code in\nsctp_association_init() that can consequently trigger overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57938",
"url": "https://www.suse.com/security/cve/CVE-2024-57938"
},
{
"category": "external",
"summary": "SUSE Bug 1236182 for CVE-2024-57938",
"url": "https://bugzilla.suse.com/1236182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57938"
},
{
"cve": "CVE-2024-57940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix the infinite loop in exfat_readdir()\n\nIf the file system is corrupted so that a cluster is linked to\nitself in the cluster chain, and there is an unused directory\nentry in the cluster, \u0027dentry\u0027 will not be incremented, causing\ncondition \u0027dentry \u003c max_dentries\u0027 unable to prevent an infinite\nloop.\n\nThis infinite loop causes s_lock not to be released, and other\ntasks will hang, such as exfat_sync_fs().\n\nThis commit stops traversing the cluster chain when there is unused\ndirectory entry in the cluster to avoid this infinite loop.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57940",
"url": "https://www.suse.com/security/cve/CVE-2024-57940"
},
{
"category": "external",
"summary": "SUSE Bug 1236227 for CVE-2024-57940",
"url": "https://bugzilla.suse.com/1236227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57940"
},
{
"cve": "CVE-2024-57946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-blk: don\u0027t keep queue frozen during system suspend\n\nCommit 4ce6e2db00de (\"virtio-blk: Ensure no requests in virtqueues before\ndeleting vqs.\") replaces queue quiesce with queue freeze in virtio-blk\u0027s\nPM callbacks. And the motivation is to drain inflight IOs before suspending.\n\nblock layer\u0027s queue freeze looks very handy, but it is also easy to cause\ndeadlock, such as, any attempt to call into bio_queue_enter() may run into\ndeadlock if the queue is frozen in current context. There are all kinds\nof -\u003esuspend() called in suspend context, so keeping queue frozen in the\nwhole suspend context isn\u0027t one good idea. And Marek reported lockdep\nwarning[1] caused by virtio-blk\u0027s freeze queue in virtblk_freeze().\n\n[1] https://lore.kernel.org/linux-block/ca16370e-d646-4eee-b9cc-87277c89c43c@samsung.com/\n\nGiven the motivation is to drain in-flight IOs, it can be done by calling\nfreeze \u0026 unfreeze, meantime restore to previous behavior by keeping queue\nquiesced during suspend.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57946",
"url": "https://www.suse.com/security/cve/CVE-2024-57946"
},
{
"category": "external",
"summary": "SUSE Bug 1236247 for CVE-2024-57946",
"url": "https://bugzilla.suse.com/1236247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57946"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
},
{
"cve": "CVE-2025-21632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure shadow stack is active before \"getting\" registers\n\nThe x86 shadow stack support has its own set of registers. Those registers\nare XSAVE-managed, but they are \"supervisor state components\" which means\nthat userspace can not touch them with XSAVE/XRSTOR. It also means that\nthey are not accessible from the existing ptrace ABI for XSAVE state.\nThus, there is a new ptrace get/set interface for it.\n\nThe regset code that ptrace uses provides an -\u003eactive() handler in\naddition to the get/set ones. For shadow stack this -\u003eactive() handler\nverifies that shadow stack is enabled via the ARCH_SHSTK_SHSTK bit in the\nthread struct. The -\u003eactive() handler is checked from some call sites of\nthe regset get/set handlers, but not the ptrace ones. This was not\nunderstood when shadow stack support was put in place.\n\nAs a result, both the set/get handlers can be called with\nXFEATURE_CET_USER in its init state, which would cause get_xsave_addr() to\nreturn NULL and trigger a WARN_ON(). The ssp_set() handler luckily has an\nssp_active() check to avoid surprising the kernel with shadow stack\nbehavior when the kernel is not ready for it (ARCH_SHSTK_SHSTK==0). That\ncheck just happened to avoid the warning.\n\nBut the -\u003eget() side wasn\u0027t so lucky. It can be called with shadow stacks\ndisabled, triggering the warning in practice, as reported by Christina\nSchimpe:\n\nWARNING: CPU: 5 PID: 1773 at arch/x86/kernel/fpu/regset.c:198 ssp_get+0x89/0xa0\n[...]\nCall Trace:\n\u003cTASK\u003e\n? show_regs+0x6e/0x80\n? ssp_get+0x89/0xa0\n? __warn+0x91/0x150\n? ssp_get+0x89/0xa0\n? report_bug+0x19d/0x1b0\n? handle_bug+0x46/0x80\n? exc_invalid_op+0x1d/0x80\n? asm_exc_invalid_op+0x1f/0x30\n? __pfx_ssp_get+0x10/0x10\n? ssp_get+0x89/0xa0\n? ssp_get+0x52/0xa0\n__regset_get+0xad/0xf0\ncopy_regset_to_user+0x52/0xc0\nptrace_regset+0x119/0x140\nptrace_request+0x13c/0x850\n? wait_task_inactive+0x142/0x1d0\n? do_syscall_64+0x6d/0x90\narch_ptrace+0x102/0x300\n[...]\n\nEnsure that shadow stacks are active in a thread before looking them up\nin the XSAVE buffer. Since ARCH_SHSTK_SHSTK and user_ssp[SHSTK_EN] are\nset at the same time, the active check ensures that there will be\nsomething to find in the XSAVE buffer.\n\n[ dhansen: changelog/subject tweaks ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21632",
"url": "https://www.suse.com/security/cve/CVE-2025-21632"
},
{
"category": "external",
"summary": "SUSE Bug 1236106 for CVE-2025-21632",
"url": "https://bugzilla.suse.com/1236106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21632"
},
{
"cve": "CVE-2025-21645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it\n\nWakeup for IRQ1 should be disabled only in cases where i8042 had\nactually enabled it, otherwise \"wake_depth\" for this IRQ will try to\ndrop below zero and there will be an unpleasant WARN() logged:\n\nkernel: atkbd serio0: Disabling IRQ1 wakeup source to avoid platform firmware bug\nkernel: ------------[ cut here ]------------\nkernel: Unbalanced IRQ 1 wake disable\nkernel: WARNING: CPU: 10 PID: 6431 at kernel/irq/manage.c:920 irq_set_irq_wake+0x147/0x1a0\n\nThe PMC driver uses DEFINE_SIMPLE_DEV_PM_OPS() to define its dev_pm_ops\nwhich sets amd_pmc_suspend_handler() to the .suspend, .freeze, and\n.poweroff handlers. i8042_pm_suspend(), however, is only set as\nthe .suspend handler.\n\nFix the issue by call PMC suspend handler only from the same set of\ndev_pm_ops handlers as i8042_pm_suspend(), which currently means just\nthe .suspend handler.\n\nTo reproduce this issue try hibernating (S4) the machine after a fresh boot\nwithout putting it into s2idle first.\n\n[ij: edited the commit message.]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21645",
"url": "https://www.suse.com/security/cve/CVE-2025-21645"
},
{
"category": "external",
"summary": "SUSE Bug 1236131 for CVE-2025-21645",
"url": "https://bugzilla.suse.com/1236131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21645"
},
{
"cve": "CVE-2025-21646",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21646"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix the maximum cell name length\n\nThe kafs filesystem limits the maximum length of a cell to 256 bytes, but a\nproblem occurs if someone actually does that: kafs tries to create a\ndirectory under /proc/net/afs/ with the name of the cell, but that fails\nwith a warning:\n\n WARNING: CPU: 0 PID: 9 at fs/proc/generic.c:405\n\nbecause procfs limits the maximum filename length to 255.\n\nHowever, the DNS limits the maximum lookup length and, by extension, the\nmaximum cell name, to 255 less two (length count and trailing NUL).\n\nFix this by limiting the maximum acceptable cellname length to 253. This\nalso allows us to be sure we can create the \"/afs/.\u003ccell\u003e/\" mountpoint too.\n\nFurther, split the YFS VL record cell name maximum to be the 256 allowed by\nthe protocol and ignore the record retrieved by YFSVL.GetCellName if it\nexceeds 253.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21646",
"url": "https://www.suse.com/security/cve/CVE-2025-21646"
},
{
"category": "external",
"summary": "SUSE Bug 1236168 for CVE-2025-21646",
"url": "https://bugzilla.suse.com/1236168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21646"
},
{
"cve": "CVE-2025-21649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when 1588 is sent on HIP08 devices\n\nCurrently, HIP08 devices does not register the ptp devices, so the\nhdev-\u003eptp is NULL. But the tx process would still try to set hardware time\nstamp info with SKBTX_HW_TSTAMP flag and cause a kernel crash.\n\n[ 128.087798] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n...\n[ 128.280251] pc : hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.286600] lr : hclge_ptp_set_tx_info+0x20/0x140 [hclge]\n[ 128.292938] sp : ffff800059b93140\n[ 128.297200] x29: ffff800059b93140 x28: 0000000000003280\n[ 128.303455] x27: ffff800020d48280 x26: ffff0cb9dc814080\n[ 128.309715] x25: ffff0cb9cde93fa0 x24: 0000000000000001\n[ 128.315969] x23: 0000000000000000 x22: 0000000000000194\n[ 128.322219] x21: ffff0cd94f986000 x20: 0000000000000000\n[ 128.328462] x19: ffff0cb9d2a166c0 x18: 0000000000000000\n[ 128.334698] x17: 0000000000000000 x16: ffffcf1fc523ed24\n[ 128.340934] x15: 0000ffffd530a518 x14: 0000000000000000\n[ 128.347162] x13: ffff0cd6bdb31310 x12: 0000000000000368\n[ 128.353388] x11: ffff0cb9cfbc7070 x10: ffff2cf55dd11e02\n[ 128.359606] x9 : ffffcf1f85a212b4 x8 : ffff0cd7cf27dab0\n[ 128.365831] x7 : 0000000000000a20 x6 : ffff0cd7cf27d000\n[ 128.372040] x5 : 0000000000000000 x4 : 000000000000ffff\n[ 128.378243] x3 : 0000000000000400 x2 : ffffcf1f85a21294\n[ 128.384437] x1 : ffff0cb9db520080 x0 : ffff0cb9db500080\n[ 128.390626] Call trace:\n[ 128.393964] hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.399893] hns3_nic_net_xmit+0x39c/0x4c4 [hns3]\n[ 128.405468] xmit_one.constprop.0+0xc4/0x200\n[ 128.410600] dev_hard_start_xmit+0x54/0xf0\n[ 128.415556] sch_direct_xmit+0xe8/0x634\n[ 128.420246] __dev_queue_xmit+0x224/0xc70\n[ 128.425101] dev_queue_xmit+0x1c/0x40\n[ 128.429608] ovs_vport_send+0xac/0x1a0 [openvswitch]\n[ 128.435409] do_output+0x60/0x17c [openvswitch]\n[ 128.440770] do_execute_actions+0x898/0x8c4 [openvswitch]\n[ 128.446993] ovs_execute_actions+0x64/0xf0 [openvswitch]\n[ 128.453129] ovs_dp_process_packet+0xa0/0x224 [openvswitch]\n[ 128.459530] ovs_vport_receive+0x7c/0xfc [openvswitch]\n[ 128.465497] internal_dev_xmit+0x34/0xb0 [openvswitch]\n[ 128.471460] xmit_one.constprop.0+0xc4/0x200\n[ 128.476561] dev_hard_start_xmit+0x54/0xf0\n[ 128.481489] __dev_queue_xmit+0x968/0xc70\n[ 128.486330] dev_queue_xmit+0x1c/0x40\n[ 128.490856] ip_finish_output2+0x250/0x570\n[ 128.495810] __ip_finish_output+0x170/0x1e0\n[ 128.500832] ip_finish_output+0x3c/0xf0\n[ 128.505504] ip_output+0xbc/0x160\n[ 128.509654] ip_send_skb+0x58/0xd4\n[ 128.513892] udp_send_skb+0x12c/0x354\n[ 128.518387] udp_sendmsg+0x7a8/0x9c0\n[ 128.522793] inet_sendmsg+0x4c/0x8c\n[ 128.527116] __sock_sendmsg+0x48/0x80\n[ 128.531609] __sys_sendto+0x124/0x164\n[ 128.536099] __arm64_sys_sendto+0x30/0x5c\n[ 128.540935] invoke_syscall+0x50/0x130\n[ 128.545508] el0_svc_common.constprop.0+0x10c/0x124\n[ 128.551205] do_el0_svc+0x34/0xdc\n[ 128.555347] el0_svc+0x20/0x30\n[ 128.559227] el0_sync_handler+0xb8/0xc0\n[ 128.563883] el0_sync+0x160/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21649",
"url": "https://www.suse.com/security/cve/CVE-2025-21649"
},
{
"category": "external",
"summary": "SUSE Bug 1236143 for CVE-2025-21649",
"url": "https://bugzilla.suse.com/1236143"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21649"
},
{
"cve": "CVE-2025-21650",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21650"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue\n\nThe TQP BAR space is divided into two segments. TQPs 0-1023 and TQPs\n1024-1279 are in different BAR space addresses. However,\nhclge_fetch_pf_reg does not distinguish the tqp space information when\nreading the tqp space information. When the number of TQPs is greater\nthan 1024, access bar space overwriting occurs.\nThe problem of different segments has been considered during the\ninitialization of tqp.io_base. Therefore, tqp.io_base is directly used\nwhen the queue is read in hclge_fetch_pf_reg.\n\nThe error message:\n\nUnable to handle kernel paging request at virtual address ffff800037200000\npc : hclge_fetch_pf_reg+0x138/0x250 [hclge]\nlr : hclge_get_regs+0x84/0x1d0 [hclge]\nCall trace:\n hclge_fetch_pf_reg+0x138/0x250 [hclge]\n hclge_get_regs+0x84/0x1d0 [hclge]\n hns3_get_regs+0x2c/0x50 [hns3]\n ethtool_get_regs+0xf4/0x270\n dev_ethtool+0x674/0x8a0\n dev_ioctl+0x270/0x36c\n sock_do_ioctl+0x110/0x2a0\n sock_ioctl+0x2ac/0x530\n __arm64_sys_ioctl+0xa8/0x100\n invoke_syscall+0x4c/0x124\n el0_svc_common.constprop.0+0x140/0x15c\n do_el0_svc+0x30/0xd0\n el0_svc+0x1c/0x2c\n el0_sync_handler+0xb0/0xb4\n el0_sync+0x168/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21650",
"url": "https://www.suse.com/security/cve/CVE-2025-21650"
},
{
"category": "external",
"summary": "SUSE Bug 1236144 for CVE-2025-21650",
"url": "https://bugzilla.suse.com/1236144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21650"
},
{
"cve": "CVE-2025-21651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: don\u0027t auto enable misc vector\n\nCurrently, there is a time window between misc irq enabled\nand service task inited. If an interrupte is reported at\nthis time, it will cause warning like below:\n\n[ 16.324639] Call trace:\n[ 16.324641] __queue_delayed_work+0xb8/0xe0\n[ 16.324643] mod_delayed_work_on+0x78/0xd0\n[ 16.324655] hclge_errhand_task_schedule+0x58/0x90 [hclge]\n[ 16.324662] hclge_misc_irq_handle+0x168/0x240 [hclge]\n[ 16.324666] __handle_irq_event_percpu+0x64/0x1e0\n[ 16.324667] handle_irq_event+0x80/0x170\n[ 16.324670] handle_fasteoi_edge_irq+0x110/0x2bc\n[ 16.324671] __handle_domain_irq+0x84/0xfc\n[ 16.324673] gic_handle_irq+0x88/0x2c0\n[ 16.324674] el1_irq+0xb8/0x140\n[ 16.324677] arch_cpu_idle+0x18/0x40\n[ 16.324679] default_idle_call+0x5c/0x1bc\n[ 16.324682] cpuidle_idle_call+0x18c/0x1c4\n[ 16.324684] do_idle+0x174/0x17c\n[ 16.324685] cpu_startup_entry+0x30/0x6c\n[ 16.324687] secondary_start_kernel+0x1a4/0x280\n[ 16.324688] ---[ end trace 6aa0bff672a964aa ]---\n\nSo don\u0027t auto enable misc vector when request irq..",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21651",
"url": "https://www.suse.com/security/cve/CVE-2025-21651"
},
{
"category": "external",
"summary": "SUSE Bug 1236145 for CVE-2025-21651",
"url": "https://bugzilla.suse.com/1236145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21651"
},
{
"cve": "CVE-2025-21652",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21652"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvlan: Fix use-after-free in ipvlan_get_iflink().\n\nsyzbot presented an use-after-free report [0] regarding ipvlan and\nlinkwatch.\n\nipvlan does not hold a refcnt of the lower device unlike vlan and\nmacvlan.\n\nIf the linkwatch work is triggered for the ipvlan dev, the lower dev\nmight have already been freed, resulting in UAF of ipvlan-\u003ephy_dev in\nipvlan_get_iflink().\n\nWe can delay the lower dev unregistration like vlan and macvlan by\nholding the lower dev\u0027s refcnt in dev-\u003enetdev_ops-\u003endo_init() and\nreleasing it in dev-\u003epriv_destructor().\n\nJakub pointed out calling .ndo_XXX after unregister_netdevice() has\nreturned is error prone and suggested [1] addressing this UAF in the\ncore by taking commit 750e51603395 (\"net: avoid potential UAF in\ndefault_operstate()\") further.\n\nLet\u0027s assume unregistering devices DOWN and use RCU protection in\ndefault_operstate() not to race with the device unregistration.\n\n[0]:\nBUG: KASAN: slab-use-after-free in ipvlan_get_iflink+0x84/0x88 drivers/net/ipvlan/ipvlan_main.c:353\nRead of size 4 at addr ffff0000d768c0e0 by task kworker/u8:35/6944\n\nCPU: 0 UID: 0 PID: 6944 Comm: kworker/u8:35 Not tainted 6.13.0-rc2-g9bc5c9515b48 #12 4c3cb9e8b4565456f6a355f312ff91f4f29b3c47\nHardware name: linux,dummy-virt (DT)\nWorkqueue: events_unbound linkwatch_event\nCall trace:\n show_stack+0x38/0x50 arch/arm64/kernel/stacktrace.c:484 (C)\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0xbc/0x108 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x16c/0x6f0 mm/kasan/report.c:489\n kasan_report+0xc0/0x120 mm/kasan/report.c:602\n __asan_report_load4_noabort+0x20/0x30 mm/kasan/report_generic.c:380\n ipvlan_get_iflink+0x84/0x88 drivers/net/ipvlan/ipvlan_main.c:353\n dev_get_iflink+0x7c/0xd8 net/core/dev.c:674\n default_operstate net/core/link_watch.c:45 [inline]\n rfc2863_policy+0x144/0x360 net/core/link_watch.c:72\n linkwatch_do_dev+0x60/0x228 net/core/link_watch.c:175\n __linkwatch_run_queue+0x2f4/0x5b8 net/core/link_watch.c:239\n linkwatch_event+0x64/0xa8 net/core/link_watch.c:282\n process_one_work+0x700/0x1398 kernel/workqueue.c:3229\n process_scheduled_works kernel/workqueue.c:3310 [inline]\n worker_thread+0x8c4/0xe10 kernel/workqueue.c:3391\n kthread+0x2b0/0x360 kernel/kthread.c:389\n ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862\n\nAllocated by task 9303:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x68 mm/kasan/common.c:68\n kasan_save_alloc_info+0x44/0x58 mm/kasan/generic.c:568\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0x84/0xa0 mm/kasan/common.c:394\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __do_kmalloc_node mm/slub.c:4283 [inline]\n __kmalloc_node_noprof+0x2a0/0x560 mm/slub.c:4289\n __kvmalloc_node_noprof+0x9c/0x230 mm/util.c:650\n alloc_netdev_mqs+0xb4/0x1118 net/core/dev.c:11209\n rtnl_create_link+0x2b8/0xb60 net/core/rtnetlink.c:3595\n rtnl_newlink_create+0x19c/0x868 net/core/rtnetlink.c:3771\n __rtnl_newlink net/core/rtnetlink.c:3896 [inline]\n rtnl_newlink+0x122c/0x15c0 net/core/rtnetlink.c:4011\n rtnetlink_rcv_msg+0x61c/0x918 net/core/rtnetlink.c:6901\n netlink_rcv_skb+0x1dc/0x398 net/netlink/af_netlink.c:2542\n rtnetlink_rcv+0x34/0x50 net/core/rtnetlink.c:6928\n netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]\n netlink_unicast+0x618/0x838 net/netlink/af_netlink.c:1347\n netlink_sendmsg+0x5fc/0x8b0 net/netlink/af_netlink.c:1891\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg net/socket.c:726 [inline]\n __sys_sendto+0x2ec/0x438 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __arm64_sys_sendto+0xe4/0x110 net/socket.c:2200\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x90/0x278 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x13c/0x250 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x54/0x70 arch/arm64/kernel/syscall.c:151\n el\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21652",
"url": "https://www.suse.com/security/cve/CVE-2025-21652"
},
{
"category": "external",
"summary": "SUSE Bug 1236160 for CVE-2025-21652",
"url": "https://bugzilla.suse.com/1236160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21652"
},
{
"cve": "CVE-2025-21653",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21653"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute\n\nsyzbot found that TCA_FLOW_RSHIFT attribute was not validated.\nRight shitfing a 32bit integer is undefined for large shift values.\n\nUBSAN: shift-out-of-bounds in net/sched/cls_flow.c:329:23\nshift exponent 9445 is too large for 32-bit type \u0027u32\u0027 (aka \u0027unsigned int\u0027)\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u8:3 Not tainted 6.13.0-rc3-syzkaller-00180-g4f619d518db9 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: ipv6_addrconf addrconf_dad_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n ubsan_epilogue lib/ubsan.c:231 [inline]\n __ubsan_handle_shift_out_of_bounds+0x3c8/0x420 lib/ubsan.c:468\n flow_classify+0x24d5/0x25b0 net/sched/cls_flow.c:329\n tc_classify include/net/tc_wrapper.h:197 [inline]\n __tcf_classify net/sched/cls_api.c:1771 [inline]\n tcf_classify+0x420/0x1160 net/sched/cls_api.c:1867\n sfb_classify net/sched/sch_sfb.c:260 [inline]\n sfb_enqueue+0x3ad/0x18b0 net/sched/sch_sfb.c:318\n dev_qdisc_enqueue+0x4b/0x290 net/core/dev.c:3793\n __dev_xmit_skb net/core/dev.c:3889 [inline]\n __dev_queue_xmit+0xf0e/0x3f50 net/core/dev.c:4400\n dev_queue_xmit include/linux/netdevice.h:3168 [inline]\n neigh_hh_output include/net/neighbour.h:523 [inline]\n neigh_output include/net/neighbour.h:537 [inline]\n ip_finish_output2+0xd41/0x1390 net/ipv4/ip_output.c:236\n iptunnel_xmit+0x55d/0x9b0 net/ipv4/ip_tunnel_core.c:82\n udp_tunnel_xmit_skb+0x262/0x3b0 net/ipv4/udp_tunnel_core.c:173\n geneve_xmit_skb drivers/net/geneve.c:916 [inline]\n geneve_xmit+0x21dc/0x2d00 drivers/net/geneve.c:1039\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n xmit_one net/core/dev.c:3590 [inline]\n dev_hard_start_xmit+0x27a/0x7d0 net/core/dev.c:3606\n __dev_queue_xmit+0x1b73/0x3f50 net/core/dev.c:4434",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21653",
"url": "https://www.suse.com/security/cve/CVE-2025-21653"
},
{
"category": "external",
"summary": "SUSE Bug 1236161 for CVE-2025-21653",
"url": "https://bugzilla.suse.com/1236161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21653"
},
{
"cve": "CVE-2025-21655",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21655"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/eventfd: ensure io_eventfd_signal() defers another RCU period\n\nio_eventfd_do_signal() is invoked from an RCU callback, but when\ndropping the reference to the io_ev_fd, it calls io_eventfd_free()\ndirectly if the refcount drops to zero. This isn\u0027t correct, as any\npotential freeing of the io_ev_fd should be deferred another RCU grace\nperiod.\n\nJust call io_eventfd_put() rather than open-code the dec-and-test and\nfree, which will correctly defer it another RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21655",
"url": "https://www.suse.com/security/cve/CVE-2025-21655"
},
{
"category": "external",
"summary": "SUSE Bug 1236163 for CVE-2025-21655",
"url": "https://bugzilla.suse.com/1236163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21655"
},
{
"cve": "CVE-2025-21656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur\n\nscsi_execute_cmd() function can return both negative (linux codes) and\npositive (scsi_cmnd result field) error codes.\n\nCurrently the driver just passes error codes of scsi_execute_cmd() to\nhwmon core, which is incorrect because hwmon only checks for negative\nerror codes. This leads to hwmon reporting uninitialized data to\nuserspace in case of SCSI errors (for example if the disk drive was\ndisconnected).\n\nThis patch checks scsi_execute_cmd() output and returns -EIO if it\u0027s\nerror code is positive.\n\n[groeck: Avoid inline variable declaration for portability]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21656",
"url": "https://www.suse.com/security/cve/CVE-2025-21656"
},
{
"category": "external",
"summary": "SUSE Bug 1236248 for CVE-2025-21656",
"url": "https://bugzilla.suse.com/1236248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2025-21656"
},
{
"cve": "CVE-2025-21662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix variable not being completed when function returns\n\nWhen cmd_alloc_index(), fails cmd_work_handler() needs\nto complete ent-\u003eslotted before returning early.\nOtherwise the task which issued the command may hang:\n\n mlx5_core 0000:01:00.0: cmd_work_handler:877:(pid 3880418): failed to allocate command entry\n INFO: task kworker/13:2:4055883 blocked for more than 120 seconds.\n Not tainted 4.19.90-25.44.v2101.ky10.aarch64 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n kworker/13:2 D 0 4055883 2 0x00000228\n Workqueue: events mlx5e_tx_dim_work [mlx5_core]\n Call trace:\n __switch_to+0xe8/0x150\n __schedule+0x2a8/0x9b8\n schedule+0x2c/0x88\n schedule_timeout+0x204/0x478\n wait_for_common+0x154/0x250\n wait_for_completion+0x28/0x38\n cmd_exec+0x7a0/0xa00 [mlx5_core]\n mlx5_cmd_exec+0x54/0x80 [mlx5_core]\n mlx5_core_modify_cq+0x6c/0x80 [mlx5_core]\n mlx5_core_modify_cq_moderation+0xa0/0xb8 [mlx5_core]\n mlx5e_tx_dim_work+0x54/0x68 [mlx5_core]\n process_one_work+0x1b0/0x448\n worker_thread+0x54/0x468\n kthread+0x134/0x138\n ret_from_fork+0x10/0x18",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21662",
"url": "https://www.suse.com/security/cve/CVE-2025-21662"
},
{
"category": "external",
"summary": "SUSE Bug 1236198 for CVE-2025-21662",
"url": "https://bugzilla.suse.com/1236198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21662"
},
{
"cve": "CVE-2025-21663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: dwmac-tegra: Read iommu stream id from device tree\n\nNvidia\u0027s Tegra MGBE controllers require the IOMMU \"Stream ID\" (SID) to be\nwritten to the MGBE_WRAP_AXI_ASID0_CTRL register.\n\nThe current driver is hard coded to use MGBE0\u0027s SID for all controllers.\nThis causes softirq time outs and kernel panics when using controllers\nother than MGBE0.\n\nExample dmesg errors when an ethernet cable is connected to MGBE1:\n\n[ 116.133290] tegra-mgbe 6910000.ethernet eth1: Link is Up - 1Gbps/Full - flow control rx/tx\n[ 121.851283] tegra-mgbe 6910000.ethernet eth1: NETDEV WATCHDOG: CPU: 5: transmit queue 0 timed out 5690 ms\n[ 121.851782] tegra-mgbe 6910000.ethernet eth1: Reset adapter.\n[ 121.892464] tegra-mgbe 6910000.ethernet eth1: Register MEM_TYPE_PAGE_POOL RxQ-0\n[ 121.905920] tegra-mgbe 6910000.ethernet eth1: PHY [stmmac-1:00] driver [Aquantia AQR113] (irq=171)\n[ 121.907356] tegra-mgbe 6910000.ethernet eth1: Enabling Safety Features\n[ 121.907578] tegra-mgbe 6910000.ethernet eth1: IEEE 1588-2008 Advanced Timestamp supported\n[ 121.908399] tegra-mgbe 6910000.ethernet eth1: registered PTP clock\n[ 121.908582] tegra-mgbe 6910000.ethernet eth1: configuring for phy/10gbase-r link mode\n[ 125.961292] tegra-mgbe 6910000.ethernet eth1: Link is Up - 1Gbps/Full - flow control rx/tx\n[ 181.921198] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:\n[ 181.921404] rcu: \t7-....: (1 GPs behind) idle=540c/1/0x4000000000000002 softirq=1748/1749 fqs=2337\n[ 181.921684] rcu: \t(detected by 4, t=6002 jiffies, g=1357, q=1254 ncpus=8)\n[ 181.921878] Sending NMI from CPU 4 to CPUs 7:\n[ 181.921886] NMI backtrace for cpu 7\n[ 181.922131] CPU: 7 UID: 0 PID: 0 Comm: swapper/7 Kdump: loaded Not tainted 6.13.0-rc3+ #6\n[ 181.922390] Hardware name: NVIDIA CTI Forge + Orin AGX/Jetson, BIOS 202402.1-Unknown 10/28/2024\n[ 181.922658] pstate: 40400009 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 181.922847] pc : handle_softirqs+0x98/0x368\n[ 181.922978] lr : __do_softirq+0x18/0x20\n[ 181.923095] sp : ffff80008003bf50\n[ 181.923189] x29: ffff80008003bf50 x28: 0000000000000008 x27: 0000000000000000\n[ 181.923379] x26: ffffce78ea277000 x25: 0000000000000000 x24: 0000001c61befda0\n[ 181.924486] x23: 0000000060400009 x22: ffffce78e99918bc x21: ffff80008018bd70\n[ 181.925568] x20: ffffce78e8bb00d8 x19: ffff80008018bc20 x18: 0000000000000000\n[ 181.926655] x17: ffff318ebe7d3000 x16: ffff800080038000 x15: 0000000000000000\n[ 181.931455] x14: ffff000080816680 x13: ffff318ebe7d3000 x12: 000000003464d91d\n[ 181.938628] x11: 0000000000000040 x10: ffff000080165a70 x9 : ffffce78e8bb0160\n[ 181.945804] x8 : ffff8000827b3160 x7 : f9157b241586f343 x6 : eeb6502a01c81c74\n[ 181.953068] x5 : a4acfcdd2e8096bb x4 : ffffce78ea277340 x3 : 00000000ffffd1e1\n[ 181.960329] x2 : 0000000000000101 x1 : ffffce78ea277340 x0 : ffff318ebe7d3000\n[ 181.967591] Call trace:\n[ 181.970043] handle_softirqs+0x98/0x368 (P)\n[ 181.974240] __do_softirq+0x18/0x20\n[ 181.977743] ____do_softirq+0x14/0x28\n[ 181.981415] call_on_irq_stack+0x24/0x30\n[ 181.985180] do_softirq_own_stack+0x20/0x30\n[ 181.989379] __irq_exit_rcu+0x114/0x140\n[ 181.993142] irq_exit_rcu+0x14/0x28\n[ 181.996816] el1_interrupt+0x44/0xb8\n[ 182.000316] el1h_64_irq_handler+0x14/0x20\n[ 182.004343] el1h_64_irq+0x80/0x88\n[ 182.007755] cpuidle_enter_state+0xc4/0x4a8 (P)\n[ 182.012305] cpuidle_enter+0x3c/0x58\n[ 182.015980] cpuidle_idle_call+0x128/0x1c0\n[ 182.020005] do_idle+0xe0/0xf0\n[ 182.023155] cpu_startup_entry+0x3c/0x48\n[ 182.026917] secondary_start_kernel+0xdc/0x120\n[ 182.031379] __secondary_switched+0x74/0x78\n[ 212.971162] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 7-.... } 6103 jiffies s: 417 root: 0x80/.\n[ 212.985935] rcu: blocking rcu_node structures (internal RCU debug):\n[ 212.992758] Sending NMI from CPU 0 to CPUs 7:\n[ 212.998539] NMI backtrace for cpu 7\n[ 213.004304] CPU: 7 UID: 0 PI\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21663",
"url": "https://www.suse.com/security/cve/CVE-2025-21663"
},
{
"category": "external",
"summary": "SUSE Bug 1236260 for CVE-2025-21663",
"url": "https://bugzilla.suse.com/1236260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21663"
},
{
"cve": "CVE-2025-21664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm thin: make get_first_thin use rcu-safe list first function\n\nThe documentation in rculist.h explains the absence of list_empty_rcu()\nand cautions programmers against relying on a list_empty() -\u003e\nlist_first() sequence in RCU safe code. This is because each of these\nfunctions performs its own READ_ONCE() of the list head. This can lead\nto a situation where the list_empty() sees a valid list entry, but the\nsubsequent list_first() sees a different view of list head state after a\nmodification.\n\nIn the case of dm-thin, this author had a production box crash from a GP\nfault in the process_deferred_bios path. This function saw a valid list\nhead in get_first_thin() but when it subsequently dereferenced that and\nturned it into a thin_c, it got the inside of the struct pool, since the\nlist was now empty and referring to itself. The kernel on which this\noccurred printed both a warning about a refcount_t being saturated, and\na UBSAN error for an out-of-bounds cpuid access in the queued spinlock,\nprior to the fault itself. When the resulting kdump was examined, it\nwas possible to see another thread patiently waiting in thin_dtr\u0027s\nsynchronize_rcu.\n\nThe thin_dtr call managed to pull the thin_c out of the active thins\nlist (and have it be the last entry in the active_thins list) at just\nthe wrong moment which lead to this crash.\n\nFortunately, the fix here is straight forward. Switch get_first_thin()\nfunction to use list_first_or_null_rcu() which performs just a single\nREAD_ONCE() and returns NULL if the list is already empty.\n\nThis was run against the devicemapper test suite\u0027s thin-provisioning\nsuites for delete and suspend and no regressions were observed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21664",
"url": "https://www.suse.com/security/cve/CVE-2025-21664"
},
{
"category": "external",
"summary": "SUSE Bug 1236262 for CVE-2025-21664",
"url": "https://bugzilla.suse.com/1236262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21664"
},
{
"cve": "CVE-2025-21674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel\n\nAttempt to enable IPsec packet offload in tunnel mode in debug kernel\ngenerates the following kernel panic, which is happening due to two\nissues:\n1. In SA add section, the should be _bh() variant when marking SA mode.\n2. There is not needed flush_workqueue in SA delete routine. It is not\nneeded as at this stage as it is removed from SADB and the running work\nwill be canceled later in SA free.\n\n =====================================================\n WARNING: SOFTIRQ-safe -\u003e SOFTIRQ-unsafe lock order detected\n 6.12.0+ #4 Not tainted\n -----------------------------------------------------\n charon/1337 [HC0[0]:SC0[4]:HE1:SE0] is trying to acquire:\n ffff88810f365020 (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}, at: mlx5e_xfrm_del_state+0xca/0x1e0 [mlx5_core]\n\n and this task is already holding:\n ffff88813e0f0d48 (\u0026x-\u003elock){+.-.}-{3:3}, at: xfrm_state_delete+0x16/0x30\n which would create a new lock dependency:\n (\u0026x-\u003elock){+.-.}-{3:3} -\u003e (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}\n\n but this new dependency connects a SOFTIRQ-irq-safe lock:\n (\u0026x-\u003elock){+.-.}-{3:3}\n\n ... which became SOFTIRQ-irq-safe at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_timer_handler+0x91/0xd70\n __hrtimer_run_queues+0x1dd/0xa60\n hrtimer_run_softirq+0x146/0x2e0\n handle_softirqs+0x266/0x860\n irq_exit_rcu+0x115/0x1a0\n sysvec_apic_timer_interrupt+0x6e/0x90\n asm_sysvec_apic_timer_interrupt+0x16/0x20\n default_idle+0x13/0x20\n default_idle_call+0x67/0xa0\n do_idle+0x2da/0x320\n cpu_startup_entry+0x50/0x60\n start_secondary+0x213/0x2a0\n common_startup_64+0x129/0x138\n\n to a SOFTIRQ-irq-unsafe lock:\n (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}\n\n ... which became SOFTIRQ-irq-unsafe at:\n ...\n lock_acquire+0x1be/0x520\n _raw_spin_lock+0x2c/0x40\n xa_set_mark+0x70/0x110\n mlx5e_xfrm_add_state+0xe48/0x2290 [mlx5_core]\n xfrm_dev_state_add+0x3bb/0xd70\n xfrm_add_sa+0x2451/0x4a90\n xfrm_user_rcv_msg+0x493/0x880\n netlink_rcv_skb+0x12e/0x380\n xfrm_netlink_rcv+0x6d/0x90\n netlink_unicast+0x42f/0x740\n netlink_sendmsg+0x745/0xbe0\n __sock_sendmsg+0xc5/0x190\n __sys_sendto+0x1fe/0x2c0\n __x64_sys_sendto+0xdc/0x1b0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n other info that might help us debug this:\n\n Possible interrupt unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026xa-\u003exa_lock#24);\n local_irq_disable();\n lock(\u0026x-\u003elock);\n lock(\u0026xa-\u003exa_lock#24);\n \u003cInterrupt\u003e\n lock(\u0026x-\u003elock);\n\n *** DEADLOCK ***\n\n 2 locks held by charon/1337:\n #0: ffffffff87f8f858 (\u0026net-\u003exfrm.xfrm_cfg_mutex){+.+.}-{4:4}, at: xfrm_netlink_rcv+0x5e/0x90\n #1: ffff88813e0f0d48 (\u0026x-\u003elock){+.-.}-{3:3}, at: xfrm_state_delete+0x16/0x30\n\n the dependencies between SOFTIRQ-irq-safe lock and the holding lock:\n -\u003e (\u0026x-\u003elock){+.-.}-{3:3} ops: 29 {\n HARDIRQ-ON-W at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_alloc_spi+0xc0/0xe60\n xfrm_alloc_userspi+0x5f6/0xbc0\n xfrm_user_rcv_msg+0x493/0x880\n netlink_rcv_skb+0x12e/0x380\n xfrm_netlink_rcv+0x6d/0x90\n netlink_unicast+0x42f/0x740\n netlink_sendmsg+0x745/0xbe0\n __sock_sendmsg+0xc5/0x190\n __sys_sendto+0x1fe/0x2c0\n __x64_sys_sendto+0xdc/0x1b0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n IN-SOFTIRQ-W at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_timer_handler+0x91/0xd70\n __hrtimer_run_queues+0x1dd/0xa60\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21674",
"url": "https://www.suse.com/security/cve/CVE-2025-21674"
},
{
"category": "external",
"summary": "SUSE Bug 1236688 for CVE-2025-21674",
"url": "https://bugzilla.suse.com/1236688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21674"
},
{
"cve": "CVE-2025-21676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fec: handle page_pool_dev_alloc_pages error\n\nThe fec_enet_update_cbd function calls page_pool_dev_alloc_pages but did\nnot handle the case when it returned NULL. There was a WARN_ON(!new_page)\nbut it would still proceed to use the NULL pointer and then crash.\n\nThis case does seem somewhat rare but when the system is under memory\npressure it can happen. One case where I can duplicate this with some\nfrequency is when writing over a smbd share to a SATA HDD attached to an\nimx6q.\n\nSetting /proc/sys/vm/min_free_kbytes to higher values also seems to solve\nthe problem for my test case. But it still seems wrong that the fec driver\nignores the memory allocation error and can crash.\n\nThis commit handles the allocation error by dropping the current packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21676",
"url": "https://www.suse.com/security/cve/CVE-2025-21676"
},
{
"category": "external",
"summary": "SUSE Bug 1236696 for CVE-2025-21676",
"url": "https://bugzilla.suse.com/1236696"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21676"
},
{
"cve": "CVE-2025-21682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21682"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\neth: bnxt: always recalculate features after XDP clearing, fix null-deref\n\nRecalculate features when XDP is detached.\n\nBefore:\n # ip li set dev eth0 xdp obj xdp_dummy.bpf.o sec xdp\n # ip li set dev eth0 xdp off\n # ethtool -k eth0 | grep gro\n rx-gro-hw: off [requested on]\n\nAfter:\n # ip li set dev eth0 xdp obj xdp_dummy.bpf.o sec xdp\n # ip li set dev eth0 xdp off\n # ethtool -k eth0 | grep gro\n rx-gro-hw: on\n\nThe fact that HW-GRO doesn\u0027t get re-enabled automatically is just\na minor annoyance. The real issue is that the features will randomly\ncome back during another reconfiguration which just happens to invoke\nnetdev_update_features(). The driver doesn\u0027t handle reconfiguring\ntwo things at a time very robustly.\n\nStarting with commit 98ba1d931f61 (\"bnxt_en: Fix RSS logic in\n__bnxt_reserve_rings()\") we only reconfigure the RSS hash table\nif the \"effective\" number of Rx rings has changed. If HW-GRO is\nenabled \"effective\" number of rings is 2x what user sees.\nSo if we are in the bad state, with HW-GRO re-enablement \"pending\"\nafter XDP off, and we lower the rings by / 2 - the HW-GRO rings\ndoing 2x and the ethtool -L doing / 2 may cancel each other out,\nand the:\n\n if (old_rx_rings != bp-\u003ehw_resc.resv_rx_rings \u0026\u0026\n\ncondition in __bnxt_reserve_rings() will be false.\nThe RSS map won\u0027t get updated, and we\u0027ll crash with:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000168\n RIP: 0010:__bnxt_hwrm_vnic_set_rss+0x13a/0x1a0\n bnxt_hwrm_vnic_rss_cfg_p5+0x47/0x180\n __bnxt_setup_vnic_p5+0x58/0x110\n bnxt_init_nic+0xb72/0xf50\n __bnxt_open_nic+0x40d/0xab0\n bnxt_open_nic+0x2b/0x60\n ethtool_set_channels+0x18c/0x1d0\n\nAs we try to access a freed ring.\n\nThe issue is present since XDP support was added, really, but\nprior to commit 98ba1d931f61 (\"bnxt_en: Fix RSS logic in\n__bnxt_reserve_rings()\") it wasn\u0027t causing major issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21682",
"url": "https://www.suse.com/security/cve/CVE-2025-21682"
},
{
"category": "external",
"summary": "SUSE Bug 1236703 for CVE-2025-21682",
"url": "https://bugzilla.suse.com/1236703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-rt-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21682"
}
]
}
SUSE-SU-2025:20165-1
Vulnerability from csaf_suse - Published: 2025-03-27 15:23 - Updated: 2025-03-27 15:23Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).
- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).
- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-44996: vsock: fix recursive ->recvmsg calls (bsc#1230205).
- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).
- CVE-2024-49948: net: add more sanity checks to qdisc_pkt_len_init() (bsc#1232161).
- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).
- CVE-2024-49978: gso: fix udp gso fraglist segmentation after pull from frag_list (bsc#1232101).
- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).
- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized
delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).
- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).
- CVE-2024-53099: bpf: Check validity of link->type in bpf_link_show_fdinfo() (bsc#1233772).
- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).
- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).
- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)
- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).
- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).
- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).
- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).
- CVE-2024-53187: io_uring: check for overflows in io_pin_pages (bsc#1234947).
- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).
- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).
- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).
- CVE-2024-53203: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() (bsc#1235001).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).
- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).
- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).
- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).
- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).
- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).
- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).
- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).
- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).
- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).
- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).
- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).
- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).
- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).
- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).
- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).
- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).
- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).
- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).
- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).
- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56608: drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create' (bsc#1235487).
- CVE-2024-56610: kcsan: Turn report_filterlist_lock into a raw_spinlock (bsc#1235390).
- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).
- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).
- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).
- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).
- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).
- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).
- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).
- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).
- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).
- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).
- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).
- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).
- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).
- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).
- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).
- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).
- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).
- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).
- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).
- CVE-2024-56665: bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog (bsc#1235489).
- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).
- CVE-2024-56679: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (bsc#1235498).
- CVE-2024-56693: brd: defer automatic disk creation until module initialization succeeds (bsc#1235418).
- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).
- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).
- CVE-2024-56707: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c (bsc#1235545).
- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).
- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).
- CVE-2024-56715: ionic: Fix netdev notifier unregister on failure (bsc#1235612).
- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).
- CVE-2024-56725: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c (bsc#1235578).
- CVE-2024-56726: octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (bsc#1235582).
- CVE-2024-56727: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c (bsc#1235583).
- CVE-2024-56728: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (bsc#1235656).
- CVE-2024-56729: smb: Initialize cfid->tcon before performing network ops (bsc#1235503).
- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).
- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).
- CVE-2024-56763: tracing: Prevent bad count for tracing_cpumask_write (bsc#1235638).
- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).
- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).
- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).
- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).
- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).
- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).
- CVE-2024-57802: netrom: check buffer length before accessing it (bsc#1235941).
- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).
- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).
- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).
- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).
- CVE-2024-57884: mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (bsc#1235948).
- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).
- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).
- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).
- CVE-2024-57917: topology: Keep the cpumask unchanged when printing cpumap (bsc#1236127).
- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).
- CVE-2024-57931: selinux: ignore unknown extended permissions (bsc#1236192).
- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).
- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).
- CVE-2024-57938: net/sctp: Prevent autoclose integer overflow in sctp_association_init() (bsc#1236182).
- CVE-2024-57946: virtio-blk: do not keep queue frozen during system suspend (bsc#1236247).
- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before "getting" registers (bsc#1236106).
- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).
- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).
- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).
- CVE-2025-21652: ipvlan: Fix use-after-free in ipvlan_get_iflink() (bsc#1236160).
- CVE-2025-21653: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute (bsc#1236161).
- CVE-2025-21655: io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period (bsc#1236163).
- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).
- CVE-2025-21663: net: stmmac: dwmac-tegra: Read iommu stream id from device tree (bsc#1236260).
- CVE-2025-21664: dm thin: make get_first_thin use rcu-safe list first function (bsc#1236262).
- CVE-2025-21674: net/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel (bsc#1236688).
- CVE-2025-21676: net: fec: handle page_pool_dev_alloc_pages error (bsc#1236696).
- CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref (bsc#1236703).
The following non-security bugs were fixed:
- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).
- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).
- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
- ACPI: fan: cleanup resources in the error path of .probe() (git-fixes).
- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).
- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).
- ACPI: resource: Fix memory resource type union access (git-fixes).
- ACPI: resource: acpi_dev_irq_override(): Check DMI match last (stable-fixes).
- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).
- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).
- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).
- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).
- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).
- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).
- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).
- ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31 laptop (git-fixes).
- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).
- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).
- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).
- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).
- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14s-fq1xxx (stable-fixes).
- ALSA: hda/realtek: Enable headset mic on Positivo C6400 (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).
- ALSA: hda/realtek: Workaround for resume on Dell Venue 11 Pro 7130 (bsc#1235686).
- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).
- ALSA: hda: Fix headset detection failure due to unstable sort (git-fixes).
- ALSA: line6: Fix racy access to midibuf (stable-fixes).
- ALSA: seq: Check UMP support for midi_version change (git-fixes).
- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).
- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).
- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).
- ALSA: seq: ump: Use guard() for locking (stable-fixes).
- ALSA: ump: Use guard() for locking (stable-fixes).
- ALSA: usb-audio: Add delay quirk for USB Audio Device (stable-fixes).
- ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro (stable-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).
- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).
- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).
- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).
- ASoC: Intel: avs: Fix theoretical infinite loop (git-fixes).
- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).
- ASoC: SOF: Remove libraries from topology lookups (git-fixes).
- ASoC: acp: Support microphone from Lenovo Go S (stable-fixes).
- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).
- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).
- ASoC: amd: yc: Fix the wrong return value (git-fixes).
- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).
- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).
- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).
- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).
- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).
- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).
- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).
- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).
- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).
- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).
- ASoC: nau8822: Lower debug print priority (stable-fixes).
- ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback (git-fixes).
- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).
- ASoC: samsung: Add missing depends on I2C (git-fixes).
- ASoC: samsung: Add missing selects for MFD_WM8994 (stable-fixes).
- ASoC: sun4i-spdif: Add clock multiplier settings (git-fixes).
- ASoC: wm8994: Add depends on MFD core (stable-fixes).
- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).
- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).
- Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection (git-fixes).
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).
- Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc (git-fixes).
- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).
- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).
- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).
- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).
- Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming (git-fixes).
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).
- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).
- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).
- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).
- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).
- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).
- Bluetooth: iso: Fix recursive locking warning (git-fixes).
- Delete XHCI patch for regression (bsc#1235550)
- Disable ceph (jsc#PED-7242)
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- Drop downstream TPM fix patch (bsc#1233260 bsc#1233259 bsc#1232421)
- Drop uvcvideo fix due to regression (bsc#1235894)
- EDAC/{i10nm,skx,skx_common}: Support UV systems (bsc#1234693).
- HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections (git-fixes).
- HID: fix generic desktop D-Pad controls (git-fixes).
- HID: hid-sensor-hub: do not use stale platform-data on remove (git-fixes).
- HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check (git-fixes).
- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).
- HID: multitouch: fix support for Goodix PID 0x01e9 (git-fixes).
- Input: atkbd - map F23 key to support default copilot shortcut (stable-fixes).
- Input: bbnsm_pwrkey - add remove hook (git-fixes).
- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).
- Input: davinci-keyscan - remove leftover header (git-fixes).
- Input: xpad - add QH Electronics VID/PID (stable-fixes).
- Input: xpad - add support for Nacon Evol-X Xbox One Controller (stable-fixes).
- Input: xpad - add support for Nacon Pro Compact (stable-fixes).
- Input: xpad - add support for wooting two he (arm) (stable-fixes).
- Input: xpad - add unofficial Xbox 360 wireless receiver clone (stable-fixes).
- Input: xpad - improve name of 8BitDo controller 2dc8:3106 (stable-fixes).
- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).
- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).
- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).
- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).
- NFC: nci: Add bounds checking in nci_hci_create_pipe() (git-fixes).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Async COPY result needs to return a write verifier (git-fixes).
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: Remove a never-true comparison (git-fixes).
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (git-fixes).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- NFSv4.2: fix COPY_NOTIFY xdr buf size calculation (git-fixes).
- NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE (git-fixes).
- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).
- PCI/AER: Disable AER service on suspend (stable-fixes).
- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (stable-fixes).
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).
- PCI: Add T_PERST_CLK_US macro (git-fixes).
- PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 (git-fixes).
- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).
- PCI: Fix use-after-free of slot->bus on hot remove (stable-fixes).
- PCI: Use preserve_config in place of pci_flags (stable-fixes).
- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).
- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).
- PCI: dwc: Always stop link in the dw_pcie_suspend_noirq (git-fixes).
- PCI: dwc: ep: Prevent changing BAR size/flags in pci_epc_set_bar() (git-fixes).
- PCI: dwc: ep: Write BAR_MASK before iATU registers in pci_epc_set_bar() (git-fixes).
- PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy() (git-fixes).
- PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf() (git-fixes).
- PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test (git-fixes).
- PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error (git-fixes).
- PCI: imx6: Deassert apps_reset in imx_pcie_deassert_core_reset() (git-fixes).
- PCI: imx6: Skip controller_id generation logic for i.MX7D (git-fixes).
- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).
- PCI: j721e: Add per platform maximum lane settings (stable-fixes).
- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).
- PCI: j721e: Add suspend and resume support (git-fixes).
- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).
- PCI: microchip: Set inbound address translation for coherent or non-coherent mode (git-fixes).
- PCI: qcom: Add support for IPQ9574 (stable-fixes).
- PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region() (git-fixes).
- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).
- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).
- PM: hibernate: Add error handling for syscore_suspend() (git-fixes).
- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)
- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)
- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)
- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)
- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)
- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)
- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)
- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)
- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)
- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)
- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)
- RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error (git-fixes)
- RDMA/bnxt_re: Fix to export port num to ib_query_qp (git-fixes)
- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)
- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)
- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)
- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)
- RDMA/mlx4: Avoid false error about access to uninitialized gids array (git-fixes)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)
- RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error (git-fixes)
- RDMA/mlx5: Fix implicit ODP use after free (git-fixes)
- RDMA/mlx5: Fix indirect mkey ODP page count (git-fixes)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (git-fixes)
- RDMA/rxe: Fix mismatched max_msg_sz (git-fixes)
- RDMA/rxe: Fix the warning "__rxe_cleanup+0x12c/0x170 [rdma_rxe]" (git-fixes)
- RDMA/srp: Fix error handling in srp_add_port (git-fixes)
- RDMA/uverbs: Prevent integer overflow issue (git-fixes)
- Revert "HID: multitouch: Add support for lenovo Y9000P Touchpad" (stable-fixes).
- Revert "block/mq-deadline: use correct way to throttling write requests" (bsc#1234146).
- Revert "btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)"
- Revert "drm/i915/dpt: Make DPT object unshrinkable" (stable-fixes).
- Revert "igb: Disable threaded IRQ for igb_msix_other" (git-fixes).
- Revert "mm, kmsan: fix infinite recursion due to RCU critical section" (bsc#1230413)
- Revert "mm/sparsemem: fix race in accessing memory_section->usage" (bsc#1230413)
- Revert "mm: prevent derefencing NULL ptr in pfn_section_valid()" (bsc#1230413)
- Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (git-fixes).
- Revert "unicode: Do not special case ignorable code points" (stable-fixes).
- Revert "usb: gadget: u_serial: Disable ep before setting port to null
to fix the crash caused by port being null" (stable-fixes).
- Revert 'arm64: Kconfig: Make SME depend on BROKEN for now'
- Revert 0dd78566990 ("Disable ceph (jsc#PED-7242)")
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).
- USB: core: Disable LPM only for non-suspended ports (git-fixes).
- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).
- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).
- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).
- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).
- USB: serial: option: add Neoway N723-EA support (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).
- USB: serial: option: add TCL IK512 MBIM & ECM (stable-fixes).
- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).
- USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() (git-fixes).
- USB: usblp: return error when setting unsupported protocol (git-fixes).
- VFS: use system_unbound_wq for delayed_mntput (bsc#1234683).
- VMCI: fix reference to ioctl-number.rst (git-fixes).
- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).
- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).
- accel/habanalabs: fix debugfs files permissions (stable-fixes).
- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).
- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).
- afs: Automatically generate trace tag enums (git-fixes).
- afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY (git-fixes).
- afs: Fix cleanup of immediately failed async calls (git-fixes).
- afs: Fix directory format encoding struct (git-fixes).
- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).
- afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call (git-fixes).
- afs: Fix the maximum cell name length (git-fixes).
- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).
- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).
- arch: Remove cmpxchg_double (bsc#1220773).
- arch: consolidate arch_irq_work_raise prototypes (git-fixes).
- arm64/sme: Move storage of reg_smidr to __cpuinfo_store_cpu() (git-fixes)
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: Filter out SVE hwcaps when FEAT_SVE isn't implemented (git-fixes)
- arm64: Force position-independent veneers (git-fixes).
- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes bsc#1236245)
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- arm64: dts: rockchip: Add sdmmc/sdio/emmc reset controls for RK3328 (git-fixes)
- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).
- arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma (git-fixes)
- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).
- arm64: tegra: Disable Tegra234 sce-fabric node (git-fixes)
- arm64: tegra: Fix Tegra234 PCIe interrupt-map (git-fixes)
- arm64: tegra: Fix typo in Tegra234 dce-fabric compatible (git-fixes)
- ata: libata-core: Set ATA_QCFLAG_RTF_FILLED in fill_result_tf() (stable-fixes).
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).
- batman-adv: Do not send uninitialized TT changes (git-fixes).
- batman-adv: Remove uninitialized data in full table TT response (git-fixes).
- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).
- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).
- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).
- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).
- blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock required!" (bsc#1234140).
- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).
- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).
- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).
- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).
- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).
- block/mq-deadline: Fix the tag reservation code (bsc#1234148).
- block: Call .limit_depth() after .hctx has been set (bsc#1234148).
- block: Fix where bio IO priority gets set (bsc#1234145).
- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).
- block: update the stable_writes flag in bdev_add (bsc#1234141).
- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)
- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).
- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).
- bpf: verifier: prevent userspace memory access (git-fixes).
- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).
- bus: mhi: host: Free mhi_buf vector inside mhi_alloc_bhie_table() (git-fixes).
- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).
- can: j1939: fix error in J1939 documentation (stable-fixes).
- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).
- checkpatch: always parse orig_commit in fixes tag (git-fixes).
- checkpatch: check for missing Fixes tags (stable-fixes).
- cleanup: Add conditional guard support (stable-fixes).
- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).
- cleanup: Remove address space of returned pointer (git-fixes).
- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).
- clocksource/drivers:sp804: Make user selectable (git-fixes).
- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).
- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).
- cpufreq: ACPI: Fix max-frequency computation (git-fixes).
- cpufreq: Do not unregister cpufreq cooling on CPU hotplug (git-fixes).
- cpufreq: amd-pstate: remove global header file (git-fixes).
- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).
- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).
- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).
- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).
- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).
- cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock (git-fixes).
- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).
- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).
- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).
- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).
- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).
- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).
- cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing (git-fixes).
- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).
- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).
- cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back (git-fixes).
- cpuidle: Avoid potential overflow in integer multiplication (git-fixes).
- cpupower: fix TSC MHz calculation (git-fixes).
- crypto: caam - use JobR's space to access page 0 regs (git-fixes).
- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).
- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).
- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).
- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).
- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).
- crypto: iaa - Fix IAA disabling that occurs when sync_mode is set to 'async' (git-fixes).
- crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto() (git-fixes).
- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).
- crypto: qce - fix goto jump in error path (git-fixes).
- crypto: qce - fix priority to be less than ARMv8 CE (git-fixes).
- crypto: qce - unregister previously registered algos in error path (git-fixes).
- crypto: x86/sha256 - Add parentheses around macros' single arguments (stable-fixes).
- cyrpto/b128ops: Remove struct u128 (bsc#1220773).
- devcoredump: cleanup some comments (git-fixes).
- devlink: Fix length of eswitch inline-mode (git-fixes).
- dlm: fix possible lkb_resource null dereference (git-fixes).
- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).
- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).
- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).
- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).
- dmaengine: tegra: Return correct DMA status when paused (git-fixes).
- dmaengine: ti: edma: fix OF node reference leaks in edma_driver (git-fixes).
- docs: media: update location of the media patches (stable-fixes).
- docs: power: Fix footnote reference for Toshiba Satellite P10-554 (git-fixes).
- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).
- driver core: class: Fix wild pointer dereferences in API class_dev_iter_next() (git-fixes).
- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).
- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).
- drivers/card_reader/rtsx_usb: Restore interrupt based detection (git-fixes).
- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).
- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).
- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).
- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).
- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).
- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).
- drm/amd/display: Fix DSC-re-computing (stable-fixes).
- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).
- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).
- drm/amd/display: Use HW lock mgr for PSR1 (stable-fixes).
- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).
- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).
- drm/amd/pm: Fix an error handling path in vega10_enable_se_edc_force_stall_config() (git-fixes).
- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).
- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).
- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).
- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).
- drm/amdgpu/pm: Remove gpu_od if it's an empty directory (stable-fixes).
- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).
- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).
- drm/amdgpu/vcn: reset fw_shared under SRIOV (git-fixes).
- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).
- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).
- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).
- drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table (git-fixes).
- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).
- drm/amdgpu: always sync the GFX pipe on ctx switch (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).
- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).
- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
- drm/amdgpu: do not access invalid sched (git-fixes).
- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
- drm/amdgpu: fix usage slab after free (stable-fixes).
- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).
- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).
- drm/amdgpu: simplify return statement in amdgpu_ras_eeprom_init (git-fixes).
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).
- drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini() (git-fixes).
- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).
- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
- drm/amdkfd: Use device based logging for errors (stable-fixes).
- drm/amdkfd: Use the correct wptr size (stable-fixes).
- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).
- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).
- drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE (git-fixes).
- drm/bridge: it6505: Enable module autoloading (stable-fixes).
- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).
- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).
- drm/display: Fix building with GCC 15 (stable-fixes).
- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).
- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).
- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).
- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).
- drm/etnaviv: Fix page property being used for non writecombine buffers (git-fixes).
- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).
- drm/i915/dg1: Fix power gate sequence (git-fixes).
- drm/i915/fb: Relax clear color alignment to 64 bytes (stable-fixes).
- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).
- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).
- drm/mcde: Enable module autoloading (stable-fixes).
- drm/mediatek: Add return value check when reading DPCD (git-fixes).
- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).
- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).
- drm/mediatek: Fix mode valid issue for dp (git-fixes).
- drm/mediatek: Set private->all_drm_private[i]->drm to NULL if mtk_drm_bind returns err (git-fixes).
- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).
- drm/mediatek: stop selecting foreign drivers (git-fixes).
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).
- drm/msm/dp: set safe_to_exit_level before printing it (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8150 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8250 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8350 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8550 (git-fixes).
- drm/msm: Check return value of of_dma_configure() (git-fixes).
- drm/msm: do not clean up priv->kms prematurely (git-fixes).
- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).
- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).
- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).
- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).
- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).
- drm/radeon: change rdev->ddev to rdev_to_drm(rdev) (stable-fixes).
- drm/rcar-du: dsi: Fix PHY lock bit check (git-fixes).
- drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event() (git-fixes).
- drm/rockchip: vop2: Check linear format for Cluster windows on rk3566/8 (git-fixes).
- drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters offset (git-fixes).
- drm/rockchip: vop2: Fix the mixer alpha setup for layer 0 (git-fixes).
- drm/sched: memset() 'job' in drm_sched_job_init() (stable-fixes).
- drm/tidss: Clear the interrupt status for interrupts being disabled (git-fixes).
- drm/tidss: Fix issue in irq handling causing irq-flood issue (git-fixes).
- drm/v3d: Assign job pointer to NULL before signaling the fence (git-fixes).
- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).
- drm/v3d: Stop active perfmon if it is being destroyed (git-fixes).
- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).
- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).
- drm/vmwgfx: Add new keep_resv BO param (git-fixes).
- drm: adv7511: Drop dsi single lane support (git-fixes).
- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).
- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- erofs: avoid debugging output for (de)compressed data (git-fixes).
- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).
- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).
- exfat: fix the infinite loop in exfat_readdir() (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- ext4: add a new helper to check if es must be kept (bsc#1234170).
- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).
- ext4: add missed brelse in update_backups (bsc#1234171).
- ext4: allow for the last group to be marked as trimmed (bsc#1234278).
- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).
- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).
- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).
- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).
- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).
- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).
- ext4: check the extent status again before inserting delalloc block (bsc#1234186).
- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).
- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).
- ext4: correct best extent lstart adjustment logic (bsc#1234179).
- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).
- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).
- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).
- ext4: correct the start block of counting reserved clusters (bsc#1234169).
- ext4: do not let fstrim block system suspend (bsc#1234166).
- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).
- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).
- ext4: factor out a common helper to query extent map (bsc#1234186).
- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).
- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).
- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).
- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).
- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).
- ext4: fix potential unnitialized variable (bsc#1234183).
- ext4: fix race between writepages and remount (bsc#1234168).
- ext4: fix rec_len verify error (bsc#1234167).
- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).
- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).
- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).
- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).
- ext4: make ext4_es_insert_extent() return void (bsc#1234170).
- ext4: make ext4_es_remove_extent() return void (bsc#1234170).
- ext4: make ext4_zeroout_es() return void (bsc#1234170).
- ext4: make sure allocate pending entry not fail (bsc#1234170).
- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).
- ext4: move 'ix' sanity check to corrent position (bsc#1234174).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).
- ext4: nested locking for xattr inode (bsc#1234189).
- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).
- ext4: refactor ext4_da_map_blocks() (bsc#1234178).
- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).
- ext4: remove the redundant folio_wait_stable() (bsc#1234184).
- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).
- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).
- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).
- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).
- fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device() (git-fixes).
- filemap: Fix bounds checking in filemap_read() (bsc#1234209).
- filemap: add a per-mapping stable writes flag (bsc#1234141).
- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).
- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).
- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).
- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).
- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).
- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).
- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).
- genirq: Make handle_enforce_irqctx() unconditionally available (git-fixes).
- genksyms: fix memory leak when the same symbol is added from source (git-fixes).
- genksyms: fix memory leak when the same symbol is read from *.symref file (git-fixes).
- gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (git-fixes).
- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (stable-fixes).
- gpio: mxc: remove dead code after switch to DT-only (git-fixes).
- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- hvc/xen: fix console unplug (git-fixes).
- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).
- hvc/xen: fix event channel handling for secondary consoles (git-fixes).
- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).
- hwmon: (drivetemp) Set scsi command timeout to 10s (stable-fixes).
- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).
- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).
- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).
- hwmon: (tmp513) Do not use "proxy" headers (stable-fixes).
- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).
- hwmon: (tmp513) Fix division of negative numbers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).
- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).
- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).
- hyperv: Do not overlap the hvcall IO areas in get_vtl() (git-fixes).
- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).
- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).
- i2c: i801: Add support for Intel Panther Lake (stable-fixes).
- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).
- i2c: microchip-core: actually use repeated sends (git-fixes).
- i2c: microchip-core: fix "ghost" detections (git-fixes).
- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).
- i2c: pnx: Fix timeout in wait functions (git-fixes).
- i2c: rcar: fix NACK handling when being a target (git-fixes).
- i2c: riic: Always round-up when calculating bus period (git-fixes).
- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).
- i40e: Fix handling changed priv flags (git-fixes).
- i915/guc: Accumulate active runtime on gt reset (git-fixes).
- i915/guc: Ensure busyness counter increases motonically (git-fixes).
- i915/guc: Reset engine utilization buffer before registration (git-fixes).
- ibmvnic: Free any outstanding tx skbs during scrq reset (bsc#1226980).
- ice: Unbind the workqueue (bsc#1234989)
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).
- ice: fix PHY Clock Recovery availability check (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).
- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).
- iio: adc: ad7124: Disable all channels at probe time (git-fixes).
- iio: adc: ad_sigma_delta: Handle CS assertion as intended in ad_sd_read_reg_raw() (git-fixes).
- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).
- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).
- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).
- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).
- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).
- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).
- iio: iio-mux: kzalloc instead of devm_kzalloc to ensure page alignment (git-fixes).
- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).
- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).
- iio: light: as73211: fix channel handling in only-color triggered buffer (git-fixes).
- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).
- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).
- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).
- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).
- instrumentation: Wire up cmpxchg128() (bsc#1220773).
- intel_th: core: fix kernel-doc warnings (git-fixes).
- io_uring/rw: avoid punting to io-wq directly (git-fixes).
- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).
- io_uring: Fix registered ring file refcount leak (git-fixes).
- io_uring: always lock __io_cqring_overflow_flush (git-fixes).
- io_uring: check if iowq is killed before queuing (git-fixes).
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).
- ipmi: ipmb: Add check devm_kasprintf() returned value (git-fixes).
- ipmi: ssif_bmc: Fix new request loss when bmc ready for a response (git-fixes).
- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).
- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).
- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).
- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).
- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).
- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kABI workaround for struct auto_pin_cfg_item change (git-fixes).
- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).
- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)
- kasan: make report_lock a raw spinlock (git-fixes).
- kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST (git-fixes).
- kdb: Fix buffer overflow during tab-complete (bsc#1234652).
- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).
- kdb: Merge identical case statements in kdb_read() (bsc#1234657).
- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).
- kdb: Use format-strings rather than '\0' injection in kdb_read() (bsc#1234654).
- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).
- kdb: address -Wformat-security warnings (bsc#1234659).
- kgdb: Flush console before entering kgdb on panic (bsc#1234651).
- kheaders: Ignore silly-rename files (stable-fixes).
- ktest.pl: Avoid false positives with grub2 skip regex (stable-fixes).
- ktest.pl: Check kernelrelease return in get_version (git-fixes).
- ktest.pl: Fix typo "accesing" (git-fixes).
- ktest.pl: Fix typo in comment (git-fixes).
- ktest.pl: Remove unused declarations in run_bisect_test function (git-fixes).
- ktest: force $buildonly = 1 for 'make_warnings_file' test type (stable-fixes).
- landlock: Handle weird files (git-fixes).
- latencytop: use correct kernel-doc format for func params (git-fixes).
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (stable-fixes).
- leds: lp8860: Write full EEPROM, not only half of it (git-fixes).
- leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata() (git-fixes).
- lib/inflate.c: remove dead code (git-fixes).
- lib/stackdepot: print disabled message only if truly disabled (git-fixes).
- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).
- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).
- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).
- mac80211: fix user-power when emulating chanctx (stable-fixes).
- mac802154: check local interfaces before deleting sdata list (stable-fixes).
- mailbox: pcc: Add support for platform notification handling (stable-fixes).
- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).
- mailbox: tegra-hsp: Clear mailbox before using message (git-fixes).
- maple_tree: simplify split calculation (git-fixes).
- media: camif-core: Add check for clk_enable() (git-fixes).
- media: ccs: Clean up parsed CCS static data on parse failure (git-fixes).
- media: ccs: Fix CCS static data parsing for large block sizes (git-fixes).
- media: ccs: Fix cleanup order in ccs_probe() (git-fixes).
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).
- media: dvb-usb-v2: af9035: fix ISO C90 compilation error on af9035_i2c_master_xfer (git-fixes).
- media: i2c: imx412: Add missing newline to prints (git-fixes).
- media: i2c: ov9282: Correct the exposure offset (git-fixes).
- media: imx-jpeg: Fix potential error pointer dereference in detach_pm() (git-fixes).
- media: imx296: Add standby delay during probe (git-fixes).
- media: lmedm04: Handle errors for lme2510_int_read (git-fixes).
- media: marvell: Add check for clk_enable() (git-fixes).
- media: mc: fix endpoint iteration (git-fixes).
- media: mipi-csis: Add check for clk_enable() (git-fixes).
- media: nxp: imx8-isi: fix v4l2-compliance test errors (git-fixes).
- media: ov5640: fix get_light_freq on auto (git-fixes).
- media: rc: iguanair: handle timeouts (git-fixes).
- media: rkisp1: Fix unused value issue (git-fixes).
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).
- media: uvcvideo: Fix crash during unbind if gpio unit is in use (git-fixes).
- media: uvcvideo: Fix double free in error path (git-fixes).
- media: uvcvideo: Fix event flags in uvc_ctrl_send_events (git-fixes).
- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).
- media: uvcvideo: Only save async fh if success (git-fixes).
- media: uvcvideo: Propagate buf->error to userspace (git-fixes).
- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).
- media: uvcvideo: Remove dangling pointers (git-fixes).
- media: uvcvideo: Remove redundant NULL assignment (git-fixes).
- media: uvcvideo: Support partial control reads (git-fixes).
- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).
- memory-failure: use a folio in me_huge_page() (git-fixes).
- memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code() (git-fixes).
- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).
- misc: fastrpc: Deregister device nodes properly in error scenarios (git-fixes).
- misc: fastrpc: Fix copy buffer page size (git-fixes).
- misc: fastrpc: Fix registered buffer page address (git-fixes).
- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).
- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).
- misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors (git-fixes).
- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).
- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).
- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).
- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).
- mm/memory-failure: check the mapcount of the precise page (git-fixes).
- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).
- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).
- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).
- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).
- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).
- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).
- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).
- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).
- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).
- mm/migrate: putback split folios when numa hint migration fails (git-fixes).
- mm/migrate: split source folio if it is on deferred split list (git-fixes).
- mm/page_owner: remove free_ts from page_owner output (git-fixes).
- mm/readahead: do not allow order-1 folio (bsc#1234205).
- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).
- mm/rodata_test: use READ_ONCE() to read const variable (git-fixes).
- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).
- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).
- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).
- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).
- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).
- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).
- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).
- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).
- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).
- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).
- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).
- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).
- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).
- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).
- mtd: onenand: Fix uninitialized retlen in do_otp_read() (git-fixes).
- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).
- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).
- mtd: spinand: Remove write_enable_op() in markbad() (git-fixes).
- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).
- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).
- net/qed: allow old cards not supporting "num_images" to work (git-fixes).
- net/rose: prevent integer overflows in rose_setsockopt() (git-fixes).
- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset (git-fixes).
- net: rose: fix timer races against user threads (git-fixes).
- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).
- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).
- net: usb: rtl8150: enable basic endpoint checking (git-fixes).
- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).
- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).
- netfilter: nf_tables: validate family when identifying table via handle (bsc#1233778 ZDI-24-1454).
- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).
- nilfs2: fix possible int overflows in nilfs_fiemap() (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).
- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).
- nvme-tcp: Fix I/O queue cpu spreading for multiple controllers (git-fixes).
- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).
- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).
- nvme: Add error check for xa_store in nvme_get_effects_log (git-fixes).
- nvme: Add error path for xa_store in nvme_init_effects (git-fixes).
- nvme: apple: fix device reference counting (git-fixes).
- nvme: fix bogus kzalloc() return check in nvme_init_effects_log() (git-fixes).
- nvme: fix metadata handling in nvme-passthrough (git-fixes).
- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).
- nvmet: propagate npwg topology (git-fixes).
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).
- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).
- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).
- of: address: Report error on resource bounds overflow (stable-fixes).
- padata: add pd get/put refcnt helper (git-fixes).
- padata: avoid UAF for reorder_work (git-fixes).
- padata: fix UAF in padata_reorder (git-fixes).
- parisc: Raise minimal GCC version (bsc#1220773).
- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).
- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).
- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).
- percpu: Wire up cmpxchg128 (bsc#1220773).
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).
- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).
- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).
- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).
- phy: usb: Toggle the PHY power during init (git-fixes).
- pinctrl: amd: Take suspend type into consideration which pins are non-wake (git-fixes).
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).
- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).
- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).
- pinctrl: samsung: fix fwnode refcount cleanup if platform_get_irq_optional() fails (git-fixes).
- pinmux: Use sequential access to access desc->pinmux data (stable-fixes).
- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).
- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).
- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).
- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).
- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).
- platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing incorrect fan speed (stable-fixes).
- pm:cpupower: Add missing powercap_set_enabled() stub function (git-fixes).
- power: ip5xxx_power: Fix return value on ADC read errors (git-fixes).
- power: supply: gpio-charger: Fix set charge current limits (git-fixes).
- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).
- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).
- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).
- powerpc/pseries/eeh: Fix get PE state translation (bsc#1215199).
- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).
- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).
- pps: add an error check in parport_attach (git-fixes).
- pps: remove usage of the deprecated ida_simple_xx() API (stable-fixes).
- printk: Add is_printk_legacy_deferred() (bsc#1236733).
- printk: Defer legacy printing when holding printk_cpu_sync (bsc#1236733).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- pwm: stm32-lp: Add check for clk_enable() (git-fixes).
- pwm: stm32: Add check for clk_enable() (git-fixes).
- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).
- quota: explicitly forbid quota files from being encrypted (bsc#1234196).
- quota: flush quota_release_work upon quota writeback (bsc#1234195).
- quota: simplify drop_dquot_ref() (bsc#1234197).
- rcu-tasks: Pull sampling of ->percpu_dequeue_lim out of loop (git-fixes)
- rcu/tree: Defer setting of jiffies during stall reset (git-fixes)
- rcu: Dump memory object info if callback function is invalid (git-fixes)
- rcu: Eliminate rcu_gp_slow_unregister() false positive (git-fixes)
- rcuscale: Move rcu_scale_writer() (git-fixes)
- rdma/cxgb4: Prevent potential integer overflow on 32bit (git-fixes)
- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).
- regmap: Use correct format specifier for logging range errors (stable-fixes).
- regulator: core: Add missing newline character (git-fixes).
- regulator: of: Implement the unwind path of of_regulator_match() (git-fixes).
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).
- remoteproc: core: Fix ida_free call while not allocated (git-fixes).
- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).
- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read (git-fixes).
- rtc: zynqmp: Fix optional clock name property (git-fixes).
- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).
- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).
- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).
- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).
- s390/facility: Disable compile time optimization for decompressor code (git-fixes).
- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).
- s390/pageattr: Implement missing kernel_page_present() (git-fixes).
- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)
- samples/landlock: Fix possible NULL dereference in parse_path() (git-fixes).
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat (bsc#1235865).
- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat -kabi (bsc#1235865).
- sched/numa: fix memory leak due to the overwritten vma->numab_state (git fixes (sched/numa)).
- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).
- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).
- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).
- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).
- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).
- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).
- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).
- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).
- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).
- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).
- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).
- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).
- scsi: qla2xxx: Remove the unused 'del_list_entry' field in struct fc_port (bsc#1235406).
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).
- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (git-fixes).
- seccomp: Stub for !CONFIG_SECCOMP (stable-fixes).
- selftest: media_tests: fix trivial UAF typo (git-fixes).
- selftests/alsa: Fix circular dependency involving global-timer (stable-fixes).
- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).
- selftests/landlock: Fix error message (git-fixes).
- selftests/mm/cow: modify the incorrect checking parameters (git-fixes).
- selftests/powerpc: Fix argument order to timer_sub() (git-fixes).
- selftests: harness: fix printing of mismatch values in __EXPECT() (git-fixes).
- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).
- selftests: tc-testing: reduce rshift value (stable-fixes).
- selftests: timers: clocksource-switch: Adapt progress to kselftest framework (git-fixes).
- selinux: Fix SCTP error inconsistency in selinux_socket_bind() (git-fixes).
- serial: 8250: Adjust the timeout for FIFO mode (git-fixes).
- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).
- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).
- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).
- serial: 8250_fintek: Add support for F81216E (stable-fixes).
- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).
- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).
- serial: amba-pl011: Use port lock wrappers (stable-fixes).
- serial: amba-pl011: fix build regression (git-fixes).
- serial: do not use uninitialized value in uart_poll_init() (git-fixes).
- serial: imx: only set receiver level if it is zero (git-fixes).
- serial: imx: set receiver level before starting uart (git-fixes).
- serial: qcom-geni: Do not cancel/abort if we can't get the port lock (git-fixes).
- serial: qcom-geni: disable interrupts during console writes (git-fixes).
- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).
- serial: qcom-geni: fix console corruption (git-fixes).
- serial: qcom-geni: fix dma rx cancellation (git-fixes).
- serial: qcom-geni: fix false console tx restart (git-fixes).
- serial: qcom-geni: fix fifo polling timeout (git-fixes).
- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).
- serial: qcom-geni: fix polled console corruption (git-fixes).
- serial: qcom-geni: fix polled console initialisation (git-fixes).
- serial: qcom-geni: fix receiver enable (git-fixes).
- serial: qcom-geni: fix shutdown race (git-fixes).
- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).
- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).
- serial: qcom-geni: revert broken hibernation support (git-fixes).
- serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use (git-fixes).
- serial: sh-sci: Drop __initdata macro for port_cfg (git-fixes).
- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).
- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).
- slub: Replace cmpxchg_double() (bsc#1220773).
- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]
- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).
- soc: atmel: fix device_node release in atmel_soc_device_init() (git-fixes).
- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).
- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).
- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).
- soc: mediatek: mtk-devapc: Fix leaking IO map on error paths (git-fixes).
- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).
- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).
- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).
- soc: qcom: smem_state: fix missing of_node_put in error path (git-fixes).
- soc: qcom: socinfo: Avoid out of bounds read of serial number (git-fixes).
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).
- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).
- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).
- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).
- spi: zynq-qspi: Add check for clk_enable() (git-fixes).
- srcu: Fix srcu_struct node grpmask overflow on 64-bit systems (git-fixes)
- srcu: Only accelerate on enqueue time (git-fixes)
- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).
- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).
- staging: iio: ad9832: Correct phase range check (git-fixes).
- staging: iio: ad9834: Correct phase range check (git-fixes).
- staging: media: imx: fix OF node leak in imx_media_add_of_subdevs() (git-fixes).
- staging: media: max96712: fix kernel oops when removing module (git-fixes).
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).
- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).
- supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).
- swiotlb: Reinstate page-alignment for mappings >= PAGE_SIZE (git-fixes).
- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).
- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).
- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).
- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).
- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).
- tools: Sync if_xdp.h uapi tooling header (git-fixes).
- tools: hv: change permissions of NetworkManager configuration file (git-fixes).
- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).
- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).
- types: Introduce [us]128 (bsc#1220773).
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- ubifs: skip dumping tnc tree when zroot is null (git-fixes).
- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).
- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).
- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).
- udf: refactor inode_bmap() to handle error (bsc#1234242).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).
- uio: Fix return value of poll (git-fixes).
- uio: uio_dmem_genirq: check the return value of devm_kasprintf() (git-fixes).
- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).
- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).
- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).
- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).
- usb: dwc2: Fix HCD port connection race (git-fixes).
- usb: dwc2: Fix HCD resume (git-fixes).
- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (git-fixes).
- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).
- usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk() (git-fixes).
- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).
- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).
- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).
- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).
- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).
- usb: fix reference leak in usb_new_device() (git-fixes).
- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).
- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).
- usb: gadget: f_tcm: Decrement command ref count on cleanup (git-fixes).
- usb: gadget: f_tcm: Do not free command immediately (git-fixes).
- usb: gadget: f_tcm: Do not prepare BOT write request twice (git-fixes).
- usb: gadget: f_tcm: Fix Get/SetInterface return value (git-fixes).
- usb: gadget: f_tcm: Translate error to sense (git-fixes).
- usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint (git-fixes).
- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).
- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).
- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).
- usb: host: xhci-plat: Assign shared_hcd->rsrc_start (git-fixes).
- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).
- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).
- usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control() (bsc#1235001)
- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).
- usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE (git-fixes).
- usb: typec: use cleanup facility for 'altmodes_node' (stable-fixes).
- usbnet: ipheth: break up NCM header size computation (git-fixes).
- usbnet: ipheth: check that DPE points past NCM header (git-fixes).
- usbnet: ipheth: fix DPE OoB read (git-fixes).
- usbnet: ipheth: fix possible overflow in DPE length check (git-fixes).
- usbnet: ipheth: refactor NCM datagram loop (git-fixes).
- usbnet: ipheth: use static NDP16 location in URB (git-fixes).
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).
- vdpa: solidrun: Fix UB bug with devres (git-fixes).
- vfs: fix readahead(2) on block devices (bsc#1234201).
- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).
- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).
- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).
- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).
- wifi: ath11k: Fix unexpected return buffer manager error for WCN6750/WCN6855 (git-fixes).
- wifi: ath11k: cleanup struct ath11k_mon_data (git-fixes).
- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).
- wifi: ath12k: fix tx power, max reg power update to firmware (git-fixes).
- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).
- wifi: ath5k: add PCI ID for SX76X (git-fixes).
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).
- wifi: brcmfmac: add missing header include for brcmf_dbg (git-fixes).
- wifi: cfg80211: adjust allocation of colocated AP data (git-fixes).
- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).
- wifi: cw1200: Fix potential NULL dereference (git-fixes).
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).
- wifi: iwlwifi: fw: read STEP table from correct UEFI var (git-fixes).
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).
- wifi: mac80211: Add non-atomic station iterator (stable-fixes).
- wifi: mac80211: Fix common size calculation for ML element (git-fixes).
- wifi: mac80211: clean up 'ret' in sta_link_apply_parameters() (stable-fixes).
- wifi: mac80211: do not flush non-uploaded STAs (git-fixes).
- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).
- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).
- wifi: mac80211: fix station NSS capability initialization order (git-fixes).
- wifi: mac80211: fix tid removal during mesh forwarding (git-fixes).
- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).
- wifi: mac80211: prohibit deactivating all links (git-fixes).
- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).
- wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO (git-fixes).
- wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC (git-fixes).
- wifi: mt76: mt7915: add module param to select 5 GHz or 6 GHz on MT7916 (git-fixes).
- wifi: mt76: mt7915: firmware restart on devices with a second pcie link (git-fixes).
- wifi: mt76: mt7915: fix overflows seen when writing limit attributes (git-fixes).
- wifi: mt76: mt7915: fix register mapping (git-fixes).
- wifi: mt76: mt7921: fix using incorrect group cipher after disconnection (git-fixes).
- wifi: mt76: mt7925: fix off by one in mt7925_load_clc() (git-fixes).
- wifi: mt76: mt7996: add max mpdu len capability (git-fixes).
- wifi: mt76: mt7996: fix HE Phy capability (git-fixes).
- wifi: mt76: mt7996: fix definition of tx descriptor (git-fixes).
- wifi: mt76: mt7996: fix incorrect indexing of MIB FW event (git-fixes).
- wifi: mt76: mt7996: fix ldpc setting (git-fixes).
- wifi: mt76: mt7996: fix overflows seen when writing limit attributes (git-fixes).
- wifi: mt76: mt7996: fix register mapping (git-fixes).
- wifi: mt76: mt7996: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU (git-fixes).
- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).
- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).
- wifi: rtlwifi: destroy workqueue at rtl_deinit_core (git-fixes).
- wifi: rtlwifi: do not complete firmware loading needlessly (git-fixes).
- wifi: rtlwifi: fix init_sw_vars leak when probe fails (git-fixes).
- wifi: rtlwifi: fix memory leaks and invalid access at probe error path (git-fixes).
- wifi: rtlwifi: pci: wait for firmware loading before releasing memory (git-fixes).
- wifi: rtlwifi: remove unused check_buddy_priv (git-fixes).
- wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step (git-fixes).
- wifi: rtlwifi: rtl8821ae: Fix media status report (git-fixes).
- wifi: rtlwifi: rtl8821ae: phy: restore removed code to fix infinite loop (git-fixes).
- wifi: rtlwifi: usb: fix workqueue leak when probe fails (git-fixes).
- wifi: rtlwifi: wait for firmware loading before releasing memory (git-fixes).
- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).
- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).
- wifi: rtw89: mcc: consider time limits not divisible by 1024 (git-fixes).
- wifi: wcn36xx: fix channel survey memory allocation size (git-fixes).
- wifi: wlcore: fix unbalanced pm_runtime calls (git-fixes).
- workqueue: Add rcu lock check at the end of work item execution (bsc#1236732).
- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).
- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).
- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).
- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).
- xfs: Add error handling for xfs_reflink_cancel_cow_range (git-fixes).
- xfs: Propagate errors from xfs_reflink_cancel_cow_range in xfs_dax_write_iomap_end (git-fixes).
- xfs: do not allocate COW extents when unsharing a hole (git-fixes).
- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).
- xfs: remove unknown compat feature check in superblock write validation (git-fixes).
- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).
- xfs: sb_spino_align is not verified (git-fixes).
- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).
- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).
- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).
Patchnames
SUSE-SLE-Micro-6.0-kernel-3
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).\n- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).\n- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-44996: vsock: fix recursive -\u003erecvmsg calls (bsc#1230205).\n- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).\n- CVE-2024-49948: net: add more sanity checks to qdisc_pkt_len_init() (bsc#1232161).\n- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).\n- CVE-2024-49978: gso: fix udp gso fraglist segmentation after pull from frag_list (bsc#1232101).\n- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).\n- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized\n delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).\n- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).\n- CVE-2024-53099: bpf: Check validity of link-\u003etype in bpf_link_show_fdinfo() (bsc#1233772).\n- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).\n- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).\n- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)\n- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).\n- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).\n- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).\n- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).\n- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).\n- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).\n- CVE-2024-53187: io_uring: check for overflows in io_pin_pages (bsc#1234947).\n- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).\n- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).\n- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).\n- CVE-2024-53203: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() (bsc#1235001).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).\n- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).\n- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).\n- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).\n- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).\n- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).\n- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).\n- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).\n- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).\n- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).\n- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).\n- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).\n- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).\n- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).\n- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).\n- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).\n- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).\n- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).\n- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).\n- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).\n- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56608: drm/amd/display: Fix out-of-bounds access in \u0027dcn21_link_encoder_create\u0027 (bsc#1235487).\n- CVE-2024-56610: kcsan: Turn report_filterlist_lock into a raw_spinlock (bsc#1235390).\n- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).\n- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).\n- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).\n- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).\n- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).\n- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).\n- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).\n- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).\n- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).\n- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).\n- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).\n- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).\n- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).\n- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).\n- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).\n- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).\n- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).\n- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).\n- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).\n- CVE-2024-56665: bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog (bsc#1235489).\n- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).\n- CVE-2024-56679: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (bsc#1235498).\n- CVE-2024-56693: brd: defer automatic disk creation until module initialization succeeds (bsc#1235418).\n- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).\n- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).\n- CVE-2024-56707: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c (bsc#1235545).\n- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).\n- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).\n- CVE-2024-56715: ionic: Fix netdev notifier unregister on failure (bsc#1235612).\n- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).\n- CVE-2024-56725: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c (bsc#1235578).\n- CVE-2024-56726: octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (bsc#1235582).\n- CVE-2024-56727: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c (bsc#1235583).\n- CVE-2024-56728: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (bsc#1235656).\n- CVE-2024-56729: smb: Initialize cfid-\u003etcon before performing network ops (bsc#1235503).\n- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).\n- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).\n- CVE-2024-56763: tracing: Prevent bad count for tracing_cpumask_write (bsc#1235638).\n- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).\n- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).\n- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).\n- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).\n- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).\n- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).\n- CVE-2024-57802: netrom: check buffer length before accessing it (bsc#1235941).\n- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).\n- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).\n- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).\n- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).\n- CVE-2024-57884: mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (bsc#1235948).\n- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).\n- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).\n- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).\n- CVE-2024-57917: topology: Keep the cpumask unchanged when printing cpumap (bsc#1236127).\n- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).\n- CVE-2024-57931: selinux: ignore unknown extended permissions (bsc#1236192).\n- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).\n- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).\n- CVE-2024-57938: net/sctp: Prevent autoclose integer overflow in sctp_association_init() (bsc#1236182).\n- CVE-2024-57946: virtio-blk: do not keep queue frozen during system suspend (bsc#1236247).\n- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before \"getting\" registers (bsc#1236106).\n- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).\n- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).\n- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).\n- CVE-2025-21652: ipvlan: Fix use-after-free in ipvlan_get_iflink() (bsc#1236160).\n- CVE-2025-21653: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute (bsc#1236161).\n- CVE-2025-21655: io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period (bsc#1236163).\n- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).\n- CVE-2025-21663: net: stmmac: dwmac-tegra: Read iommu stream id from device tree (bsc#1236260).\n- CVE-2025-21664: dm thin: make get_first_thin use rcu-safe list first function (bsc#1236262).\n- CVE-2025-21674: net/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel (bsc#1236688).\n- CVE-2025-21676: net: fec: handle page_pool_dev_alloc_pages error (bsc#1236696).\n- CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref (bsc#1236703).\n\nThe following non-security bugs were fixed:\n\n- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).\n- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).\n- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n- ACPI: fan: cleanup resources in the error path of .probe() (git-fixes).\n- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).\n- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).\n- ACPI: resource: Fix memory resource type union access (git-fixes).\n- ACPI: resource: acpi_dev_irq_override(): Check DMI match last (stable-fixes).\n- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).\n- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).\n- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).\n- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).\n- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).\n- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).\n- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).\n- ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31 laptop (git-fixes).\n- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).\n- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).\n- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).\n- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).\n- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14s-fq1xxx (stable-fixes).\n- ALSA: hda/realtek: Enable headset mic on Positivo C6400 (stable-fixes).\n- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).\n- ALSA: hda/realtek: Workaround for resume on Dell Venue 11 Pro 7130 (bsc#1235686).\n- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).\n- ALSA: hda: Fix headset detection failure due to unstable sort (git-fixes).\n- ALSA: line6: Fix racy access to midibuf (stable-fixes).\n- ALSA: seq: Check UMP support for midi_version change (git-fixes).\n- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).\n- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).\n- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).\n- ALSA: seq: ump: Use guard() for locking (stable-fixes).\n- ALSA: ump: Use guard() for locking (stable-fixes).\n- ALSA: usb-audio: Add delay quirk for USB Audio Device (stable-fixes).\n- ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro (stable-fixes).\n- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).\n- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).\n- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).\n- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).\n- ASoC: Intel: avs: Fix theoretical infinite loop (git-fixes).\n- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).\n- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).\n- ASoC: SOF: Remove libraries from topology lookups (git-fixes).\n- ASoC: acp: Support microphone from Lenovo Go S (stable-fixes).\n- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).\n- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).\n- ASoC: amd: yc: Fix the wrong return value (git-fixes).\n- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).\n- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).\n- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).\n- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).\n- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).\n- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).\n- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).\n- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).\n- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).\n- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).\n- ASoC: nau8822: Lower debug print priority (stable-fixes).\n- ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback (git-fixes).\n- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).\n- ASoC: samsung: Add missing depends on I2C (git-fixes).\n- ASoC: samsung: Add missing selects for MFD_WM8994 (stable-fixes).\n- ASoC: sun4i-spdif: Add clock multiplier settings (git-fixes).\n- ASoC: wm8994: Add depends on MFD core (stable-fixes).\n- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).\n- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).\n- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).\n- Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection (git-fixes).\n- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).\n- Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc (git-fixes).\n- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).\n- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).\n- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).\n- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).\n- Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming (git-fixes).\n- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).\n- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).\n- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).\n- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).\n- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).\n- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).\n- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).\n- Bluetooth: iso: Fix recursive locking warning (git-fixes).\n- Delete XHCI patch for regression (bsc#1235550)\n- Disable ceph (jsc#PED-7242)\n- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- Drop downstream TPM fix patch (bsc#1233260 bsc#1233259 bsc#1232421)\n- Drop uvcvideo fix due to regression (bsc#1235894)\n- EDAC/{i10nm,skx,skx_common}: Support UV systems (bsc#1234693).\n- HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections (git-fixes).\n- HID: fix generic desktop D-Pad controls (git-fixes).\n- HID: hid-sensor-hub: do not use stale platform-data on remove (git-fixes).\n- HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check (git-fixes).\n- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).\n- HID: multitouch: fix support for Goodix PID 0x01e9 (git-fixes).\n- Input: atkbd - map F23 key to support default copilot shortcut (stable-fixes).\n- Input: bbnsm_pwrkey - add remove hook (git-fixes).\n- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).\n- Input: davinci-keyscan - remove leftover header (git-fixes).\n- Input: xpad - add QH Electronics VID/PID (stable-fixes).\n- Input: xpad - add support for Nacon Evol-X Xbox One Controller (stable-fixes).\n- Input: xpad - add support for Nacon Pro Compact (stable-fixes).\n- Input: xpad - add support for wooting two he (arm) (stable-fixes).\n- Input: xpad - add unofficial Xbox 360 wireless receiver clone (stable-fixes).\n- Input: xpad - improve name of 8BitDo controller 2dc8:3106 (stable-fixes).\n- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).\n- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).\n- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).\n- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).\n- NFC: nci: Add bounds checking in nci_hci_create_pipe() (git-fixes).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Async COPY result needs to return a write verifier (git-fixes).\n- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: Remove a never-true comparison (git-fixes).\n- NFSD: initialize copy-\u003ecp_clp early in nfsd4_copy for use by trace point (git-fixes).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- NFSv4.2: fix COPY_NOTIFY xdr buf size calculation (git-fixes).\n- NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE (git-fixes).\n- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).\n- PCI/AER: Disable AER service on suspend (stable-fixes).\n- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).\n- PCI: Add \u0027reset_subordinate\u0027 to reset hierarchy below bridge (stable-fixes).\n- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).\n- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).\n- PCI: Add T_PERST_CLK_US macro (git-fixes).\n- PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 (git-fixes).\n- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).\n- PCI: Fix use-after-free of slot-\u003ebus on hot remove (stable-fixes).\n- PCI: Use preserve_config in place of pci_flags (stable-fixes).\n- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).\n- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).\n- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).\n- PCI: dwc: Always stop link in the dw_pcie_suspend_noirq (git-fixes).\n- PCI: dwc: ep: Prevent changing BAR size/flags in pci_epc_set_bar() (git-fixes).\n- PCI: dwc: ep: Write BAR_MASK before iATU registers in pci_epc_set_bar() (git-fixes).\n- PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy() (git-fixes).\n- PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf() (git-fixes).\n- PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test (git-fixes).\n- PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error (git-fixes).\n- PCI: imx6: Deassert apps_reset in imx_pcie_deassert_core_reset() (git-fixes).\n- PCI: imx6: Skip controller_id generation logic for i.MX7D (git-fixes).\n- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).\n- PCI: j721e: Add per platform maximum lane settings (stable-fixes).\n- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).\n- PCI: j721e: Add suspend and resume support (git-fixes).\n- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).\n- PCI: microchip: Set inbound address translation for coherent or non-coherent mode (git-fixes).\n- PCI: qcom: Add support for IPQ9574 (stable-fixes).\n- PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region() (git-fixes).\n- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).\n- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).\n- PM: hibernate: Add error handling for syscore_suspend() (git-fixes).\n- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)\n- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)\n- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)\n- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)\n- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)\n- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)\n- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)\n- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)\n- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)\n- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)\n- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)\n- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)\n- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)\n- RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error (git-fixes)\n- RDMA/bnxt_re: Fix to export port num to ib_query_qp (git-fixes)\n- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)\n- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)\n- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)\n- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)\n- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)\n- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)\n- RDMA/mlx4: Avoid false error about access to uninitialized gids array (git-fixes)\n- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)\n- RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error (git-fixes)\n- RDMA/mlx5: Fix implicit ODP use after free (git-fixes)\n- RDMA/mlx5: Fix indirect mkey ODP page count (git-fixes)\n- RDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible (git-fixes)\n- RDMA/rxe: Fix mismatched max_msg_sz (git-fixes)\n- RDMA/rxe: Fix the warning \"__rxe_cleanup+0x12c/0x170 [rdma_rxe]\" (git-fixes)\n- RDMA/srp: Fix error handling in srp_add_port (git-fixes)\n- RDMA/uverbs: Prevent integer overflow issue (git-fixes)\n- Revert \"HID: multitouch: Add support for lenovo Y9000P Touchpad\" (stable-fixes).\n- Revert \"block/mq-deadline: use correct way to throttling write requests\" (bsc#1234146).\n- Revert \"btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\"\n- Revert \"drm/i915/dpt: Make DPT object unshrinkable\" (stable-fixes).\n- Revert \"igb: Disable threaded IRQ for igb_msix_other\" (git-fixes).\n- Revert \"mm, kmsan: fix infinite recursion due to RCU critical section\" (bsc#1230413)\n- Revert \"mm/sparsemem: fix race in accessing memory_section-\u003eusage\" (bsc#1230413)\n- Revert \"mm: prevent derefencing NULL ptr in pfn_section_valid()\" (bsc#1230413)\n- Revert \"mtd: spi-nor: core: replace dummy buswidth from addr to data\" (git-fixes).\n- Revert \"unicode: Do not special case ignorable code points\" (stable-fixes).\n- Revert \"usb: gadget: u_serial: Disable ep before setting port to null\n to fix the crash caused by port being null\" (stable-fixes).\n- Revert \u0027arm64: Kconfig: Make SME depend on BROKEN for now\u0027 \n- Revert 0dd78566990 (\"Disable ceph (jsc#PED-7242)\") \n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).\n- USB: core: Disable LPM only for non-suspended ports (git-fixes).\n- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).\n- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).\n- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).\n- USB: serial: option: add Neoway N723-EA support (stable-fixes).\n- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).\n- USB: serial: option: add TCL IK512 MBIM \u0026 ECM (stable-fixes).\n- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).\n- USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() (git-fixes).\n- USB: usblp: return error when setting unsupported protocol (git-fixes).\n- VFS: use system_unbound_wq for delayed_mntput (bsc#1234683).\n- VMCI: fix reference to ioctl-number.rst (git-fixes).\n- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).\n- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).\n- accel/habanalabs: fix debugfs files permissions (stable-fixes).\n- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).\n- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).\n- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).\n- afs: Automatically generate trace tag enums (git-fixes).\n- afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY (git-fixes).\n- afs: Fix cleanup of immediately failed async calls (git-fixes).\n- afs: Fix directory format encoding struct (git-fixes).\n- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).\n- afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call (git-fixes).\n- afs: Fix the maximum cell name length (git-fixes).\n- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).\n- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).\n- arch: Remove cmpxchg_double (bsc#1220773).\n- arch: consolidate arch_irq_work_raise prototypes (git-fixes).\n- arm64/sme: Move storage of reg_smidr to __cpuinfo_store_cpu() (git-fixes)\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: Filter out SVE hwcaps when FEAT_SVE isn\u0027t implemented (git-fixes)\n- arm64: Force position-independent veneers (git-fixes).\n- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes bsc#1236245)\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- arm64: dts: rockchip: Add sdmmc/sdio/emmc reset controls for RK3328 (git-fixes)\n- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).\n- arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma (git-fixes)\n- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).\n- arm64: tegra: Disable Tegra234 sce-fabric node (git-fixes)\n- arm64: tegra: Fix Tegra234 PCIe interrupt-map (git-fixes)\n- arm64: tegra: Fix typo in Tegra234 dce-fabric compatible (git-fixes)\n- ata: libata-core: Set ATA_QCFLAG_RTF_FILLED in fill_result_tf() (stable-fixes).\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).\n- batman-adv: Do not send uninitialized TT changes (git-fixes).\n- batman-adv: Remove uninitialized data in full table TT response (git-fixes).\n- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).\n- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).\n- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).\n- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).\n- blk-throttle: fix lockdep warning of \"cgroup_mutex or RCU read lock required!\" (bsc#1234140).\n- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).\n- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).\n- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).\n- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).\n- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).\n- block/mq-deadline: Fix the tag reservation code (bsc#1234148).\n- block: Call .limit_depth() after .hctx has been set (bsc#1234148).\n- block: Fix where bio IO priority gets set (bsc#1234145).\n- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).\n- block: update the stable_writes flag in bdev_add (bsc#1234141).\n- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)\n- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).\n- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).\n- bpf: verifier: prevent userspace memory access (git-fixes).\n- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).\n- bus: mhi: host: Free mhi_buf vector inside mhi_alloc_bhie_table() (git-fixes).\n- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).\n- can: j1939: fix error in J1939 documentation (stable-fixes).\n- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).\n- checkpatch: always parse orig_commit in fixes tag (git-fixes).\n- checkpatch: check for missing Fixes tags (stable-fixes).\n- cleanup: Add conditional guard support (stable-fixes).\n- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).\n- cleanup: Remove address space of returned pointer (git-fixes).\n- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).\n- clocksource/drivers:sp804: Make user selectable (git-fixes).\n- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).\n- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).\n- cpufreq: ACPI: Fix max-frequency computation (git-fixes).\n- cpufreq: Do not unregister cpufreq cooling on CPU hotplug (git-fixes).\n- cpufreq: amd-pstate: remove global header file (git-fixes).\n- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).\n- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).\n- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).\n- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).\n- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).\n- cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock (git-fixes).\n- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).\n- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).\n- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).\n- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).\n- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).\n- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).\n- cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing (git-fixes).\n- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).\n- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).\n- cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back (git-fixes).\n- cpuidle: Avoid potential overflow in integer multiplication (git-fixes).\n- cpupower: fix TSC MHz calculation (git-fixes).\n- crypto: caam - use JobR\u0027s space to access page 0 regs (git-fixes).\n- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).\n- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).\n- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).\n- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).\n- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).\n- crypto: iaa - Fix IAA disabling that occurs when sync_mode is set to \u0027async\u0027 (git-fixes).\n- crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto() (git-fixes).\n- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).\n- crypto: qce - fix goto jump in error path (git-fixes).\n- crypto: qce - fix priority to be less than ARMv8 CE (git-fixes).\n- crypto: qce - unregister previously registered algos in error path (git-fixes).\n- crypto: x86/sha256 - Add parentheses around macros\u0027 single arguments (stable-fixes).\n- cyrpto/b128ops: Remove struct u128 (bsc#1220773).\n- devcoredump: cleanup some comments (git-fixes).\n- devlink: Fix length of eswitch inline-mode (git-fixes).\n- dlm: fix possible lkb_resource null dereference (git-fixes).\n- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).\n- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).\n- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).\n- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).\n- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).\n- dmaengine: tegra: Return correct DMA status when paused (git-fixes).\n- dmaengine: ti: edma: fix OF node reference leaks in edma_driver (git-fixes).\n- docs: media: update location of the media patches (stable-fixes).\n- docs: power: Fix footnote reference for Toshiba Satellite P10-554 (git-fixes).\n- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).\n- driver core: class: Fix wild pointer dereferences in API class_dev_iter_next() (git-fixes).\n- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).\n- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).\n- drivers/card_reader/rtsx_usb: Restore interrupt based detection (git-fixes).\n- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).\n- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).\n- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).\n- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).\n- drm/amd/display: Fix DSC-re-computing (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).\n- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).\n- drm/amd/display: Use HW lock mgr for PSR1 (stable-fixes).\n- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).\n- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).\n- drm/amd/pm: Fix an error handling path in vega10_enable_se_edc_force_stall_config() (git-fixes).\n- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).\n- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).\n- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).\n- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).\n- drm/amdgpu/pm: Remove gpu_od if it\u0027s an empty directory (stable-fixes).\n- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).\n- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).\n- drm/amdgpu/vcn: reset fw_shared under SRIOV (git-fixes).\n- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).\n- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).\n- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).\n- drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table (git-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).\n- drm/amdgpu: always sync the GFX pipe on ctx switch (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).\n- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: do not access invalid sched (git-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: fix usage slab after free (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).\n- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).\n- drm/amdgpu: simplify return statement in amdgpu_ras_eeprom_init (git-fixes).\n- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).\n- drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini() (git-fixes).\n- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/amdkfd: Use device based logging for errors (stable-fixes).\n- drm/amdkfd: Use the correct wptr size (stable-fixes).\n- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).\n- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).\n- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).\n- drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE (git-fixes).\n- drm/bridge: it6505: Enable module autoloading (stable-fixes).\n- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).\n- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).\n- drm/display: Fix building with GCC 15 (stable-fixes).\n- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).\n- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).\n- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).\n- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).\n- drm/etnaviv: Fix page property being used for non writecombine buffers (git-fixes).\n- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).\n- drm/i915/dg1: Fix power gate sequence (git-fixes).\n- drm/i915/fb: Relax clear color alignment to 64 bytes (stable-fixes).\n- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).\n- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).\n- drm/mcde: Enable module autoloading (stable-fixes).\n- drm/mediatek: Add return value check when reading DPCD (git-fixes).\n- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).\n- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).\n- drm/mediatek: Fix mode valid issue for dp (git-fixes).\n- drm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err (git-fixes).\n- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).\n- drm/mediatek: stop selecting foreign drivers (git-fixes).\n- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).\n- drm/msm/dp: set safe_to_exit_level before printing it (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8150 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8250 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8350 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8550 (git-fixes).\n- drm/msm: Check return value of of_dma_configure() (git-fixes).\n- drm/msm: do not clean up priv-\u003ekms prematurely (git-fixes).\n- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).\n- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).\n- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).\n- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).\n- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).\n- drm/radeon: change rdev-\u003eddev to rdev_to_drm(rdev) (stable-fixes).\n- drm/rcar-du: dsi: Fix PHY lock bit check (git-fixes).\n- drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event() (git-fixes).\n- drm/rockchip: vop2: Check linear format for Cluster windows on rk3566/8 (git-fixes).\n- drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters offset (git-fixes).\n- drm/rockchip: vop2: Fix the mixer alpha setup for layer 0 (git-fixes).\n- drm/sched: memset() \u0027job\u0027 in drm_sched_job_init() (stable-fixes).\n- drm/tidss: Clear the interrupt status for interrupts being disabled (git-fixes).\n- drm/tidss: Fix issue in irq handling causing irq-flood issue (git-fixes).\n- drm/v3d: Assign job pointer to NULL before signaling the fence (git-fixes).\n- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).\n- drm/v3d: Stop active perfmon if it is being destroyed (git-fixes).\n- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).\n- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).\n- drm/vmwgfx: Add new keep_resv BO param (git-fixes).\n- drm: adv7511: Drop dsi single lane support (git-fixes).\n- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).\n- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- erofs: avoid debugging output for (de)compressed data (git-fixes).\n- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).\n- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).\n- exfat: fix the infinite loop in exfat_readdir() (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- ext4: add a new helper to check if es must be kept (bsc#1234170).\n- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).\n- ext4: add missed brelse in update_backups (bsc#1234171).\n- ext4: allow for the last group to be marked as trimmed (bsc#1234278).\n- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).\n- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).\n- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).\n- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).\n- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).\n- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).\n- ext4: check the extent status again before inserting delalloc block (bsc#1234186).\n- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).\n- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).\n- ext4: correct best extent lstart adjustment logic (bsc#1234179).\n- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).\n- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).\n- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).\n- ext4: correct the start block of counting reserved clusters (bsc#1234169).\n- ext4: do not let fstrim block system suspend (bsc#1234166).\n- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).\n- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).\n- ext4: factor out a common helper to query extent map (bsc#1234186).\n- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).\n- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).\n- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).\n- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).\n- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).\n- ext4: fix potential unnitialized variable (bsc#1234183).\n- ext4: fix race between writepages and remount (bsc#1234168).\n- ext4: fix rec_len verify error (bsc#1234167).\n- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).\n- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).\n- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).\n- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).\n- ext4: make ext4_es_insert_extent() return void (bsc#1234170).\n- ext4: make ext4_es_remove_extent() return void (bsc#1234170).\n- ext4: make ext4_zeroout_es() return void (bsc#1234170).\n- ext4: make sure allocate pending entry not fail (bsc#1234170).\n- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).\n- ext4: move \u0027ix\u0027 sanity check to corrent position (bsc#1234174).\n- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).\n- ext4: nested locking for xattr inode (bsc#1234189).\n- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).\n- ext4: refactor ext4_da_map_blocks() (bsc#1234178).\n- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).\n- ext4: remove the redundant folio_wait_stable() (bsc#1234184).\n- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).\n- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).\n- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).\n- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).\n- fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device() (git-fixes).\n- filemap: Fix bounds checking in filemap_read() (bsc#1234209).\n- filemap: add a per-mapping stable writes flag (bsc#1234141).\n- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).\n- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).\n- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).\n- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).\n- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).\n- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).\n- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).\n- genirq: Make handle_enforce_irqctx() unconditionally available (git-fixes).\n- genksyms: fix memory leak when the same symbol is added from source (git-fixes).\n- genksyms: fix memory leak when the same symbol is read from *.symref file (git-fixes).\n- gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (git-fixes).\n- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).\n- gpio: grgpio: use a helper variable to store the address of ofdev-\u003edev (stable-fixes).\n- gpio: mxc: remove dead code after switch to DT-only (git-fixes).\n- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- hvc/xen: fix console unplug (git-fixes).\n- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).\n- hvc/xen: fix event channel handling for secondary consoles (git-fixes).\n- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).\n- hwmon: (drivetemp) Set scsi command timeout to 10s (stable-fixes).\n- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).\n- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).\n- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).\n- hwmon: (tmp513) Do not use \"proxy\" headers (stable-fixes).\n- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).\n- hwmon: (tmp513) Fix division of negative numbers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).\n- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).\n- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).\n- hyperv: Do not overlap the hvcall IO areas in get_vtl() (git-fixes).\n- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).\n- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).\n- i2c: i801: Add support for Intel Panther Lake (stable-fixes).\n- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).\n- i2c: microchip-core: actually use repeated sends (git-fixes).\n- i2c: microchip-core: fix \"ghost\" detections (git-fixes).\n- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).\n- i2c: pnx: Fix timeout in wait functions (git-fixes).\n- i2c: rcar: fix NACK handling when being a target (git-fixes).\n- i2c: riic: Always round-up when calculating bus period (git-fixes).\n- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).\n- i40e: Fix handling changed priv flags (git-fixes).\n- i915/guc: Accumulate active runtime on gt reset (git-fixes).\n- i915/guc: Ensure busyness counter increases motonically (git-fixes).\n- i915/guc: Reset engine utilization buffer before registration (git-fixes).\n- ibmvnic: Free any outstanding tx skbs during scrq reset (bsc#1226980).\n- ice: Unbind the workqueue (bsc#1234989)\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).\n- ice: fix PHY Clock Recovery availability check (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).\n- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).\n- iio: adc: ad7124: Disable all channels at probe time (git-fixes).\n- iio: adc: ad_sigma_delta: Handle CS assertion as intended in ad_sd_read_reg_raw() (git-fixes).\n- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).\n- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).\n- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).\n- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).\n- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).\n- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).\n- iio: iio-mux: kzalloc instead of devm_kzalloc to ensure page alignment (git-fixes).\n- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).\n- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).\n- iio: light: as73211: fix channel handling in only-color triggered buffer (git-fixes).\n- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).\n- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).\n- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).\n- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).\n- instrumentation: Wire up cmpxchg128() (bsc#1220773).\n- intel_th: core: fix kernel-doc warnings (git-fixes).\n- io_uring/rw: avoid punting to io-wq directly (git-fixes).\n- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).\n- io_uring: Fix registered ring file refcount leak (git-fixes).\n- io_uring: always lock __io_cqring_overflow_flush (git-fixes).\n- io_uring: check if iowq is killed before queuing (git-fixes).\n- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).\n- ipmi: ipmb: Add check devm_kasprintf() returned value (git-fixes).\n- ipmi: ssif_bmc: Fix new request loss when bmc ready for a response (git-fixes).\n- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).\n- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).\n- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).\n- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).\n- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).\n- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kABI workaround for struct auto_pin_cfg_item change (git-fixes).\n- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).\n- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)\n- kasan: make report_lock a raw spinlock (git-fixes).\n- kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST (git-fixes).\n- kdb: Fix buffer overflow during tab-complete (bsc#1234652).\n- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).\n- kdb: Merge identical case statements in kdb_read() (bsc#1234657).\n- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).\n- kdb: Use format-strings rather than \u0027\\0\u0027 injection in kdb_read() (bsc#1234654).\n- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).\n- kdb: address -Wformat-security warnings (bsc#1234659).\n- kgdb: Flush console before entering kgdb on panic (bsc#1234651).\n- kheaders: Ignore silly-rename files (stable-fixes).\n- ktest.pl: Avoid false positives with grub2 skip regex (stable-fixes).\n- ktest.pl: Check kernelrelease return in get_version (git-fixes).\n- ktest.pl: Fix typo \"accesing\" (git-fixes).\n- ktest.pl: Fix typo in comment (git-fixes).\n- ktest.pl: Remove unused declarations in run_bisect_test function (git-fixes).\n- ktest: force $buildonly = 1 for \u0027make_warnings_file\u0027 test type (stable-fixes).\n- landlock: Handle weird files (git-fixes).\n- latencytop: use correct kernel-doc format for func params (git-fixes).\n- leds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex (stable-fixes).\n- leds: lp8860: Write full EEPROM, not only half of it (git-fixes).\n- leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata() (git-fixes).\n- lib/inflate.c: remove dead code (git-fixes).\n- lib/stackdepot: print disabled message only if truly disabled (git-fixes).\n- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).\n- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).\n- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).\n- mac80211: fix user-power when emulating chanctx (stable-fixes).\n- mac802154: check local interfaces before deleting sdata list (stable-fixes).\n- mailbox: pcc: Add support for platform notification handling (stable-fixes).\n- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).\n- mailbox: tegra-hsp: Clear mailbox before using message (git-fixes).\n- maple_tree: simplify split calculation (git-fixes).\n- media: camif-core: Add check for clk_enable() (git-fixes).\n- media: ccs: Clean up parsed CCS static data on parse failure (git-fixes).\n- media: ccs: Fix CCS static data parsing for large block sizes (git-fixes).\n- media: ccs: Fix cleanup order in ccs_probe() (git-fixes).\n- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).\n- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).\n- media: dvb-usb-v2: af9035: fix ISO C90 compilation error on af9035_i2c_master_xfer (git-fixes).\n- media: i2c: imx412: Add missing newline to prints (git-fixes).\n- media: i2c: ov9282: Correct the exposure offset (git-fixes).\n- media: imx-jpeg: Fix potential error pointer dereference in detach_pm() (git-fixes).\n- media: imx296: Add standby delay during probe (git-fixes).\n- media: lmedm04: Handle errors for lme2510_int_read (git-fixes).\n- media: marvell: Add check for clk_enable() (git-fixes).\n- media: mc: fix endpoint iteration (git-fixes).\n- media: mipi-csis: Add check for clk_enable() (git-fixes).\n- media: nxp: imx8-isi: fix v4l2-compliance test errors (git-fixes).\n- media: ov5640: fix get_light_freq on auto (git-fixes).\n- media: rc: iguanair: handle timeouts (git-fixes).\n- media: rkisp1: Fix unused value issue (git-fixes).\n- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).\n- media: uvcvideo: Fix crash during unbind if gpio unit is in use (git-fixes).\n- media: uvcvideo: Fix double free in error path (git-fixes).\n- media: uvcvideo: Fix event flags in uvc_ctrl_send_events (git-fixes).\n- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).\n- media: uvcvideo: Only save async fh if success (git-fixes).\n- media: uvcvideo: Propagate buf-\u003eerror to userspace (git-fixes).\n- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).\n- media: uvcvideo: Remove dangling pointers (git-fixes).\n- media: uvcvideo: Remove redundant NULL assignment (git-fixes).\n- media: uvcvideo: Support partial control reads (git-fixes).\n- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).\n- memory-failure: use a folio in me_huge_page() (git-fixes).\n- memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code() (git-fixes).\n- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).\n- misc: fastrpc: Deregister device nodes properly in error scenarios (git-fixes).\n- misc: fastrpc: Fix copy buffer page size (git-fixes).\n- misc: fastrpc: Fix registered buffer page address (git-fixes).\n- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).\n- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).\n- misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors (git-fixes).\n- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).\n- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).\n- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).\n- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).\n- mm/memory-failure: check the mapcount of the precise page (git-fixes).\n- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).\n- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).\n- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).\n- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).\n- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).\n- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).\n- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).\n- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).\n- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).\n- mm/migrate: putback split folios when numa hint migration fails (git-fixes).\n- mm/migrate: split source folio if it is on deferred split list (git-fixes).\n- mm/page_owner: remove free_ts from page_owner output (git-fixes).\n- mm/readahead: do not allow order-1 folio (bsc#1234205).\n- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).\n- mm/rodata_test: use READ_ONCE() to read const variable (git-fixes).\n- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).\n- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).\n- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).\n- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).\n- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).\n- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).\n- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).\n- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).\n- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).\n- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).\n- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).\n- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).\n- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).\n- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).\n- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).\n- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).\n- mtd: onenand: Fix uninitialized retlen in do_otp_read() (git-fixes).\n- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).\n- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).\n- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).\n- mtd: spinand: Remove write_enable_op() in markbad() (git-fixes).\n- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).\n- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).\n- net/qed: allow old cards not supporting \"num_images\" to work (git-fixes).\n- net/rose: prevent integer overflows in rose_setsockopt() (git-fixes).\n- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset (git-fixes).\n- net: rose: fix timer races against user threads (git-fixes).\n- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).\n- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).\n- net: usb: rtl8150: enable basic endpoint checking (git-fixes).\n- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).\n- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).\n- netfilter: nf_tables: validate family when identifying table via handle (bsc#1233778 ZDI-24-1454).\n- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).\n- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).\n- nilfs2: fix possible int overflows in nilfs_fiemap() (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).\n- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).\n- nvme-tcp: Fix I/O queue cpu spreading for multiple controllers (git-fixes).\n- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).\n- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).\n- nvme: Add error check for xa_store in nvme_get_effects_log (git-fixes).\n- nvme: Add error path for xa_store in nvme_init_effects (git-fixes).\n- nvme: apple: fix device reference counting (git-fixes).\n- nvme: fix bogus kzalloc() return check in nvme_init_effects_log() (git-fixes).\n- nvme: fix metadata handling in nvme-passthrough (git-fixes).\n- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).\n- nvmet: propagate npwg topology (git-fixes).\n- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).\n- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).\n- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).\n- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).\n- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).\n- of: address: Report error on resource bounds overflow (stable-fixes).\n- padata: add pd get/put refcnt helper (git-fixes).\n- padata: avoid UAF for reorder_work (git-fixes).\n- padata: fix UAF in padata_reorder (git-fixes).\n- parisc: Raise minimal GCC version (bsc#1220773).\n- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).\n- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).\n- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).\n- percpu: Wire up cmpxchg128 (bsc#1220773).\n- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).\n- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).\n- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).\n- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).\n- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).\n- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).\n- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).\n- phy: usb: Toggle the PHY power during init (git-fixes).\n- pinctrl: amd: Take suspend type into consideration which pins are non-wake (git-fixes).\n- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).\n- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).\n- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).\n- pinctrl: samsung: fix fwnode refcount cleanup if platform_get_irq_optional() fails (git-fixes).\n- pinmux: Use sequential access to access desc-\u003epinmux data (stable-fixes).\n- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).\n- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).\n- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).\n- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).\n- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).\n- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).\n- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).\n- platform/x86: thinkpad_acpi: Fix for ThinkPad\u0027s with ECFW showing incorrect fan speed (stable-fixes).\n- pm:cpupower: Add missing powercap_set_enabled() stub function (git-fixes).\n- power: ip5xxx_power: Fix return value on ADC read errors (git-fixes).\n- power: supply: gpio-charger: Fix set charge current limits (git-fixes).\n- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).\n- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).\n- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).\n- powerpc/pseries/eeh: Fix get PE state translation (bsc#1215199).\n- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).\n- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).\n- pps: add an error check in parport_attach (git-fixes).\n- pps: remove usage of the deprecated ida_simple_xx() API (stable-fixes).\n- printk: Add is_printk_legacy_deferred() (bsc#1236733).\n- printk: Defer legacy printing when holding printk_cpu_sync (bsc#1236733).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- pwm: stm32-lp: Add check for clk_enable() (git-fixes).\n- pwm: stm32: Add check for clk_enable() (git-fixes).\n- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).\n- quota: explicitly forbid quota files from being encrypted (bsc#1234196).\n- quota: flush quota_release_work upon quota writeback (bsc#1234195).\n- quota: simplify drop_dquot_ref() (bsc#1234197).\n- rcu-tasks: Pull sampling of -\u003epercpu_dequeue_lim out of loop (git-fixes)\n- rcu/tree: Defer setting of jiffies during stall reset (git-fixes)\n- rcu: Dump memory object info if callback function is invalid (git-fixes)\n- rcu: Eliminate rcu_gp_slow_unregister() false positive (git-fixes)\n- rcuscale: Move rcu_scale_writer() (git-fixes)\n- rdma/cxgb4: Prevent potential integer overflow on 32bit (git-fixes)\n- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).\n- regmap: Use correct format specifier for logging range errors (stable-fixes).\n- regulator: core: Add missing newline character (git-fixes).\n- regulator: of: Implement the unwind path of of_regulator_match() (git-fixes).\n- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).\n- remoteproc: core: Fix ida_free call while not allocated (git-fixes).\n- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).\n- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read (git-fixes).\n- rtc: zynqmp: Fix optional clock name property (git-fixes).\n- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).\n- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).\n- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).\n- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).\n- s390/facility: Disable compile time optimization for decompressor code (git-fixes).\n- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).\n- s390/pageattr: Implement missing kernel_page_present() (git-fixes).\n- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)\n- samples/landlock: Fix possible NULL dereference in parse_path() (git-fixes).\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat (bsc#1235865).\n- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat -kabi (bsc#1235865).\n- sched/numa: fix memory leak due to the overwritten vma-\u003enumab_state (git fixes (sched/numa)).\n- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).\n- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).\n- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).\n- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).\n- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).\n- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).\n- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).\n- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).\n- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).\n- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).\n- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).\n- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).\n- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).\n- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).\n- scsi: qla2xxx: Remove the unused \u0027del_list_entry\u0027 field in struct fc_port (bsc#1235406).\n- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).\n- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (git-fixes).\n- seccomp: Stub for !CONFIG_SECCOMP (stable-fixes).\n- selftest: media_tests: fix trivial UAF typo (git-fixes).\n- selftests/alsa: Fix circular dependency involving global-timer (stable-fixes).\n- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).\n- selftests/landlock: Fix error message (git-fixes).\n- selftests/mm/cow: modify the incorrect checking parameters (git-fixes).\n- selftests/powerpc: Fix argument order to timer_sub() (git-fixes).\n- selftests: harness: fix printing of mismatch values in __EXPECT() (git-fixes).\n- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).\n- selftests: tc-testing: reduce rshift value (stable-fixes).\n- selftests: timers: clocksource-switch: Adapt progress to kselftest framework (git-fixes).\n- selinux: Fix SCTP error inconsistency in selinux_socket_bind() (git-fixes).\n- serial: 8250: Adjust the timeout for FIFO mode (git-fixes).\n- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).\n- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).\n- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).\n- serial: 8250_fintek: Add support for F81216E (stable-fixes).\n- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).\n- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).\n- serial: amba-pl011: Use port lock wrappers (stable-fixes).\n- serial: amba-pl011: fix build regression (git-fixes).\n- serial: do not use uninitialized value in uart_poll_init() (git-fixes).\n- serial: imx: only set receiver level if it is zero (git-fixes).\n- serial: imx: set receiver level before starting uart (git-fixes).\n- serial: qcom-geni: Do not cancel/abort if we can\u0027t get the port lock (git-fixes).\n- serial: qcom-geni: disable interrupts during console writes (git-fixes).\n- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).\n- serial: qcom-geni: fix console corruption (git-fixes).\n- serial: qcom-geni: fix dma rx cancellation (git-fixes).\n- serial: qcom-geni: fix false console tx restart (git-fixes).\n- serial: qcom-geni: fix fifo polling timeout (git-fixes).\n- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).\n- serial: qcom-geni: fix polled console corruption (git-fixes).\n- serial: qcom-geni: fix polled console initialisation (git-fixes).\n- serial: qcom-geni: fix receiver enable (git-fixes).\n- serial: qcom-geni: fix shutdown race (git-fixes).\n- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).\n- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).\n- serial: qcom-geni: revert broken hibernation support (git-fixes).\n- serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use (git-fixes).\n- serial: sh-sci: Drop __initdata macro for port_cfg (git-fixes).\n- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).\n- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).\n- slub: Replace cmpxchg_double() (bsc#1220773).\n- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]\n- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).\n- soc: atmel: fix device_node release in atmel_soc_device_init() (git-fixes).\n- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).\n- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).\n- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).\n- soc: mediatek: mtk-devapc: Fix leaking IO map on error paths (git-fixes).\n- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).\n- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).\n- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).\n- soc: qcom: smem_state: fix missing of_node_put in error path (git-fixes).\n- soc: qcom: socinfo: Avoid out of bounds read of serial number (git-fixes).\n- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).\n- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).\n- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).\n- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).\n- spi: zynq-qspi: Add check for clk_enable() (git-fixes).\n- srcu: Fix srcu_struct node grpmask overflow on 64-bit systems (git-fixes)\n- srcu: Only accelerate on enqueue time (git-fixes)\n- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).\n- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).\n- staging: iio: ad9832: Correct phase range check (git-fixes).\n- staging: iio: ad9834: Correct phase range check (git-fixes).\n- staging: media: imx: fix OF node leak in imx_media_add_of_subdevs() (git-fixes).\n- staging: media: max96712: fix kernel oops when removing module (git-fixes).\n- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).\n- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).\n- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).\n- supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).\n- swiotlb: Reinstate page-alignment for mappings \u003e= PAGE_SIZE (git-fixes).\n- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).\n- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).\n- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).\n- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).\n- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).\n- tools: Sync if_xdp.h uapi tooling header (git-fixes).\n- tools: hv: change permissions of NetworkManager configuration file (git-fixes).\n- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).\n- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).\n- types: Introduce [us]128 (bsc#1220773).\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- ubifs: skip dumping tnc tree when zroot is null (git-fixes).\n- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).\n- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).\n- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).\n- udf: refactor inode_bmap() to handle error (bsc#1234242).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).\n- uio: Fix return value of poll (git-fixes).\n- uio: uio_dmem_genirq: check the return value of devm_kasprintf() (git-fixes).\n- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).\n- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).\n- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).\n- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).\n- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).\n- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).\n- usb: dwc2: Fix HCD port connection race (git-fixes).\n- usb: dwc2: Fix HCD resume (git-fixes).\n- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).\n- usb: dwc2: hcd: Fix GetPortStatus \u0026 SetPortFeature (git-fixes).\n- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).\n- usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk() (git-fixes).\n- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).\n- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).\n- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).\n- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).\n- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).\n- usb: fix reference leak in usb_new_device() (git-fixes).\n- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).\n- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).\n- usb: gadget: f_tcm: Decrement command ref count on cleanup (git-fixes).\n- usb: gadget: f_tcm: Do not free command immediately (git-fixes).\n- usb: gadget: f_tcm: Do not prepare BOT write request twice (git-fixes).\n- usb: gadget: f_tcm: Fix Get/SetInterface return value (git-fixes).\n- usb: gadget: f_tcm: Translate error to sense (git-fixes).\n- usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint (git-fixes).\n- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).\n- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).\n- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).\n- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).\n- usb: host: xhci-plat: Assign shared_hcd-\u003ersrc_start (git-fixes).\n- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).\n- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).\n- usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control() (bsc#1235001)\n- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).\n- usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE (git-fixes).\n- usb: typec: use cleanup facility for \u0027altmodes_node\u0027 (stable-fixes).\n- usbnet: ipheth: break up NCM header size computation (git-fixes).\n- usbnet: ipheth: check that DPE points past NCM header (git-fixes).\n- usbnet: ipheth: fix DPE OoB read (git-fixes).\n- usbnet: ipheth: fix possible overflow in DPE length check (git-fixes).\n- usbnet: ipheth: refactor NCM datagram loop (git-fixes).\n- usbnet: ipheth: use static NDP16 location in URB (git-fixes).\n- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).\n- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).\n- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).\n- vdpa: solidrun: Fix UB bug with devres (git-fixes).\n- vfs: fix readahead(2) on block devices (bsc#1234201).\n- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).\n- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).\n- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).\n- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).\n- wifi: ath11k: Fix unexpected return buffer manager error for WCN6750/WCN6855 (git-fixes).\n- wifi: ath11k: cleanup struct ath11k_mon_data (git-fixes).\n- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).\n- wifi: ath12k: fix tx power, max reg power update to firmware (git-fixes).\n- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).\n- wifi: ath5k: add PCI ID for SX76X (git-fixes).\n- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).\n- wifi: brcmfmac: add missing header include for brcmf_dbg (git-fixes).\n- wifi: cfg80211: adjust allocation of colocated AP data (git-fixes).\n- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).\n- wifi: cw1200: Fix potential NULL dereference (git-fixes).\n- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).\n- wifi: iwlwifi: fw: read STEP table from correct UEFI var (git-fixes).\n- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).\n- wifi: mac80211: Add non-atomic station iterator (stable-fixes).\n- wifi: mac80211: Fix common size calculation for ML element (git-fixes).\n- wifi: mac80211: clean up \u0027ret\u0027 in sta_link_apply_parameters() (stable-fixes).\n- wifi: mac80211: do not flush non-uploaded STAs (git-fixes).\n- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).\n- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).\n- wifi: mac80211: fix station NSS capability initialization order (git-fixes).\n- wifi: mac80211: fix tid removal during mesh forwarding (git-fixes).\n- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).\n- wifi: mac80211: prohibit deactivating all links (git-fixes).\n- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).\n- wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO (git-fixes).\n- wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC (git-fixes).\n- wifi: mt76: mt7915: add module param to select 5 GHz or 6 GHz on MT7916 (git-fixes).\n- wifi: mt76: mt7915: firmware restart on devices with a second pcie link (git-fixes).\n- wifi: mt76: mt7915: fix overflows seen when writing limit attributes (git-fixes).\n- wifi: mt76: mt7915: fix register mapping (git-fixes).\n- wifi: mt76: mt7921: fix using incorrect group cipher after disconnection (git-fixes).\n- wifi: mt76: mt7925: fix off by one in mt7925_load_clc() (git-fixes).\n- wifi: mt76: mt7996: add max mpdu len capability (git-fixes).\n- wifi: mt76: mt7996: fix HE Phy capability (git-fixes).\n- wifi: mt76: mt7996: fix definition of tx descriptor (git-fixes).\n- wifi: mt76: mt7996: fix incorrect indexing of MIB FW event (git-fixes).\n- wifi: mt76: mt7996: fix ldpc setting (git-fixes).\n- wifi: mt76: mt7996: fix overflows seen when writing limit attributes (git-fixes).\n- wifi: mt76: mt7996: fix register mapping (git-fixes).\n- wifi: mt76: mt7996: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU (git-fixes).\n- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).\n- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).\n- wifi: rtlwifi: destroy workqueue at rtl_deinit_core (git-fixes).\n- wifi: rtlwifi: do not complete firmware loading needlessly (git-fixes).\n- wifi: rtlwifi: fix init_sw_vars leak when probe fails (git-fixes).\n- wifi: rtlwifi: fix memory leaks and invalid access at probe error path (git-fixes).\n- wifi: rtlwifi: pci: wait for firmware loading before releasing memory (git-fixes).\n- wifi: rtlwifi: remove unused check_buddy_priv (git-fixes).\n- wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step (git-fixes).\n- wifi: rtlwifi: rtl8821ae: Fix media status report (git-fixes).\n- wifi: rtlwifi: rtl8821ae: phy: restore removed code to fix infinite loop (git-fixes).\n- wifi: rtlwifi: usb: fix workqueue leak when probe fails (git-fixes).\n- wifi: rtlwifi: wait for firmware loading before releasing memory (git-fixes).\n- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).\n- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).\n- wifi: rtw89: mcc: consider time limits not divisible by 1024 (git-fixes).\n- wifi: wcn36xx: fix channel survey memory allocation size (git-fixes).\n- wifi: wlcore: fix unbalanced pm_runtime calls (git-fixes).\n- workqueue: Add rcu lock check at the end of work item execution (bsc#1236732).\n- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).\n- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).\n- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).\n- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).\n- xfs: Add error handling for xfs_reflink_cancel_cow_range (git-fixes).\n- xfs: Propagate errors from xfs_reflink_cancel_cow_range in xfs_dax_write_iomap_end (git-fixes).\n- xfs: do not allocate COW extents when unsharing a hole (git-fixes).\n- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).\n- xfs: remove unknown compat feature check in superblock write validation (git-fixes).\n- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).\n- xfs: sb_spino_align is not verified (git-fixes).\n- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).\n- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).\n- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-kernel-3",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20165-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20165-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520165-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20165-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-June/039787.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1214954",
"url": "https://bugzilla.suse.com/1214954"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1218470",
"url": "https://bugzilla.suse.com/1218470"
},
{
"category": "self",
"summary": "SUSE Bug 1220711",
"url": "https://bugzilla.suse.com/1220711"
},
{
"category": "self",
"summary": "SUSE Bug 1220773",
"url": "https://bugzilla.suse.com/1220773"
},
{
"category": "self",
"summary": "SUSE Bug 1224095",
"url": "https://bugzilla.suse.com/1224095"
},
{
"category": "self",
"summary": "SUSE Bug 1224726",
"url": "https://bugzilla.suse.com/1224726"
},
{
"category": "self",
"summary": "SUSE Bug 1225743",
"url": "https://bugzilla.suse.com/1225743"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1225897",
"url": "https://bugzilla.suse.com/1225897"
},
{
"category": "self",
"summary": "SUSE Bug 1226980",
"url": "https://bugzilla.suse.com/1226980"
},
{
"category": "self",
"summary": "SUSE Bug 1227445",
"url": "https://bugzilla.suse.com/1227445"
},
{
"category": "self",
"summary": "SUSE Bug 1228526",
"url": "https://bugzilla.suse.com/1228526"
},
{
"category": "self",
"summary": "SUSE Bug 1228592",
"url": "https://bugzilla.suse.com/1228592"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1229833",
"url": "https://bugzilla.suse.com/1229833"
},
{
"category": "self",
"summary": "SUSE Bug 1230205",
"url": "https://bugzilla.suse.com/1230205"
},
{
"category": "self",
"summary": "SUSE Bug 1230413",
"url": "https://bugzilla.suse.com/1230413"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231016",
"url": "https://bugzilla.suse.com/1231016"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1231909",
"url": "https://bugzilla.suse.com/1231909"
},
{
"category": "self",
"summary": "SUSE Bug 1231963",
"url": "https://bugzilla.suse.com/1231963"
},
{
"category": "self",
"summary": "SUSE Bug 1232087",
"url": "https://bugzilla.suse.com/1232087"
},
{
"category": "self",
"summary": "SUSE Bug 1232101",
"url": "https://bugzilla.suse.com/1232101"
},
{
"category": "self",
"summary": "SUSE Bug 1232158",
"url": "https://bugzilla.suse.com/1232158"
},
{
"category": "self",
"summary": "SUSE Bug 1232161",
"url": "https://bugzilla.suse.com/1232161"
},
{
"category": "self",
"summary": "SUSE Bug 1232193",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232418",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232420",
"url": "https://bugzilla.suse.com/1232420"
},
{
"category": "self",
"summary": "SUSE Bug 1232421",
"url": "https://bugzilla.suse.com/1232421"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232882",
"url": "https://bugzilla.suse.com/1232882"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233055",
"url": "https://bugzilla.suse.com/1233055"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233112",
"url": "https://bugzilla.suse.com/1233112"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233204",
"url": "https://bugzilla.suse.com/1233204"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233259",
"url": "https://bugzilla.suse.com/1233259"
},
{
"category": "self",
"summary": "SUSE Bug 1233260",
"url": "https://bugzilla.suse.com/1233260"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233328",
"url": "https://bugzilla.suse.com/1233328"
},
{
"category": "self",
"summary": "SUSE Bug 1233461",
"url": "https://bugzilla.suse.com/1233461"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233488",
"url": "https://bugzilla.suse.com/1233488"
},
{
"category": "self",
"summary": "SUSE Bug 1233546",
"url": "https://bugzilla.suse.com/1233546"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233638",
"url": "https://bugzilla.suse.com/1233638"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233772",
"url": "https://bugzilla.suse.com/1233772"
},
{
"category": "self",
"summary": "SUSE Bug 1233778",
"url": "https://bugzilla.suse.com/1233778"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234024",
"url": "https://bugzilla.suse.com/1234024"
},
{
"category": "self",
"summary": "SUSE Bug 1234069",
"url": "https://bugzilla.suse.com/1234069"
},
{
"category": "self",
"summary": "SUSE Bug 1234071",
"url": "https://bugzilla.suse.com/1234071"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234079",
"url": "https://bugzilla.suse.com/1234079"
},
{
"category": "self",
"summary": "SUSE Bug 1234086",
"url": "https://bugzilla.suse.com/1234086"
},
{
"category": "self",
"summary": "SUSE Bug 1234139",
"url": "https://bugzilla.suse.com/1234139"
},
{
"category": "self",
"summary": "SUSE Bug 1234140",
"url": "https://bugzilla.suse.com/1234140"
},
{
"category": "self",
"summary": "SUSE Bug 1234141",
"url": "https://bugzilla.suse.com/1234141"
},
{
"category": "self",
"summary": "SUSE Bug 1234142",
"url": "https://bugzilla.suse.com/1234142"
},
{
"category": "self",
"summary": "SUSE Bug 1234143",
"url": "https://bugzilla.suse.com/1234143"
},
{
"category": "self",
"summary": "SUSE Bug 1234144",
"url": "https://bugzilla.suse.com/1234144"
},
{
"category": "self",
"summary": "SUSE Bug 1234145",
"url": "https://bugzilla.suse.com/1234145"
},
{
"category": "self",
"summary": "SUSE Bug 1234146",
"url": "https://bugzilla.suse.com/1234146"
},
{
"category": "self",
"summary": "SUSE Bug 1234147",
"url": "https://bugzilla.suse.com/1234147"
},
{
"category": "self",
"summary": "SUSE Bug 1234148",
"url": "https://bugzilla.suse.com/1234148"
},
{
"category": "self",
"summary": "SUSE Bug 1234149",
"url": "https://bugzilla.suse.com/1234149"
},
{
"category": "self",
"summary": "SUSE Bug 1234150",
"url": "https://bugzilla.suse.com/1234150"
},
{
"category": "self",
"summary": "SUSE Bug 1234153",
"url": "https://bugzilla.suse.com/1234153"
},
{
"category": "self",
"summary": "SUSE Bug 1234155",
"url": "https://bugzilla.suse.com/1234155"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234158",
"url": "https://bugzilla.suse.com/1234158"
},
{
"category": "self",
"summary": "SUSE Bug 1234159",
"url": "https://bugzilla.suse.com/1234159"
},
{
"category": "self",
"summary": "SUSE Bug 1234160",
"url": "https://bugzilla.suse.com/1234160"
},
{
"category": "self",
"summary": "SUSE Bug 1234161",
"url": "https://bugzilla.suse.com/1234161"
},
{
"category": "self",
"summary": "SUSE Bug 1234162",
"url": "https://bugzilla.suse.com/1234162"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234164",
"url": "https://bugzilla.suse.com/1234164"
},
{
"category": "self",
"summary": "SUSE Bug 1234165",
"url": "https://bugzilla.suse.com/1234165"
},
{
"category": "self",
"summary": "SUSE Bug 1234166",
"url": "https://bugzilla.suse.com/1234166"
},
{
"category": "self",
"summary": "SUSE Bug 1234167",
"url": "https://bugzilla.suse.com/1234167"
},
{
"category": "self",
"summary": "SUSE Bug 1234168",
"url": "https://bugzilla.suse.com/1234168"
},
{
"category": "self",
"summary": "SUSE Bug 1234169",
"url": "https://bugzilla.suse.com/1234169"
},
{
"category": "self",
"summary": "SUSE Bug 1234170",
"url": "https://bugzilla.suse.com/1234170"
},
{
"category": "self",
"summary": "SUSE Bug 1234171",
"url": "https://bugzilla.suse.com/1234171"
},
{
"category": "self",
"summary": "SUSE Bug 1234172",
"url": "https://bugzilla.suse.com/1234172"
},
{
"category": "self",
"summary": "SUSE Bug 1234173",
"url": "https://bugzilla.suse.com/1234173"
},
{
"category": "self",
"summary": "SUSE Bug 1234174",
"url": "https://bugzilla.suse.com/1234174"
},
{
"category": "self",
"summary": "SUSE Bug 1234175",
"url": "https://bugzilla.suse.com/1234175"
},
{
"category": "self",
"summary": "SUSE Bug 1234176",
"url": "https://bugzilla.suse.com/1234176"
},
{
"category": "self",
"summary": "SUSE Bug 1234177",
"url": "https://bugzilla.suse.com/1234177"
},
{
"category": "self",
"summary": "SUSE Bug 1234178",
"url": "https://bugzilla.suse.com/1234178"
},
{
"category": "self",
"summary": "SUSE Bug 1234179",
"url": "https://bugzilla.suse.com/1234179"
},
{
"category": "self",
"summary": "SUSE Bug 1234180",
"url": "https://bugzilla.suse.com/1234180"
},
{
"category": "self",
"summary": "SUSE Bug 1234181",
"url": "https://bugzilla.suse.com/1234181"
},
{
"category": "self",
"summary": "SUSE Bug 1234182",
"url": "https://bugzilla.suse.com/1234182"
},
{
"category": "self",
"summary": "SUSE Bug 1234183",
"url": "https://bugzilla.suse.com/1234183"
},
{
"category": "self",
"summary": "SUSE Bug 1234184",
"url": "https://bugzilla.suse.com/1234184"
},
{
"category": "self",
"summary": "SUSE Bug 1234185",
"url": "https://bugzilla.suse.com/1234185"
},
{
"category": "self",
"summary": "SUSE Bug 1234186",
"url": "https://bugzilla.suse.com/1234186"
},
{
"category": "self",
"summary": "SUSE Bug 1234187",
"url": "https://bugzilla.suse.com/1234187"
},
{
"category": "self",
"summary": "SUSE Bug 1234188",
"url": "https://bugzilla.suse.com/1234188"
},
{
"category": "self",
"summary": "SUSE Bug 1234189",
"url": "https://bugzilla.suse.com/1234189"
},
{
"category": "self",
"summary": "SUSE Bug 1234190",
"url": "https://bugzilla.suse.com/1234190"
},
{
"category": "self",
"summary": "SUSE Bug 1234191",
"url": "https://bugzilla.suse.com/1234191"
},
{
"category": "self",
"summary": "SUSE Bug 1234192",
"url": "https://bugzilla.suse.com/1234192"
},
{
"category": "self",
"summary": "SUSE Bug 1234193",
"url": "https://bugzilla.suse.com/1234193"
},
{
"category": "self",
"summary": "SUSE Bug 1234194",
"url": "https://bugzilla.suse.com/1234194"
},
{
"category": "self",
"summary": "SUSE Bug 1234195",
"url": "https://bugzilla.suse.com/1234195"
},
{
"category": "self",
"summary": "SUSE Bug 1234196",
"url": "https://bugzilla.suse.com/1234196"
},
{
"category": "self",
"summary": "SUSE Bug 1234197",
"url": "https://bugzilla.suse.com/1234197"
},
{
"category": "self",
"summary": "SUSE Bug 1234198",
"url": "https://bugzilla.suse.com/1234198"
},
{
"category": "self",
"summary": "SUSE Bug 1234199",
"url": "https://bugzilla.suse.com/1234199"
},
{
"category": "self",
"summary": "SUSE Bug 1234200",
"url": "https://bugzilla.suse.com/1234200"
},
{
"category": "self",
"summary": "SUSE Bug 1234201",
"url": "https://bugzilla.suse.com/1234201"
},
{
"category": "self",
"summary": "SUSE Bug 1234203",
"url": "https://bugzilla.suse.com/1234203"
},
{
"category": "self",
"summary": "SUSE Bug 1234204",
"url": "https://bugzilla.suse.com/1234204"
},
{
"category": "self",
"summary": "SUSE Bug 1234205",
"url": "https://bugzilla.suse.com/1234205"
},
{
"category": "self",
"summary": "SUSE Bug 1234207",
"url": "https://bugzilla.suse.com/1234207"
},
{
"category": "self",
"summary": "SUSE Bug 1234208",
"url": "https://bugzilla.suse.com/1234208"
},
{
"category": "self",
"summary": "SUSE Bug 1234209",
"url": "https://bugzilla.suse.com/1234209"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234221",
"url": "https://bugzilla.suse.com/1234221"
},
{
"category": "self",
"summary": "SUSE Bug 1234237",
"url": "https://bugzilla.suse.com/1234237"
},
{
"category": "self",
"summary": "SUSE Bug 1234238",
"url": "https://bugzilla.suse.com/1234238"
},
{
"category": "self",
"summary": "SUSE Bug 1234239",
"url": "https://bugzilla.suse.com/1234239"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234242",
"url": "https://bugzilla.suse.com/1234242"
},
{
"category": "self",
"summary": "SUSE Bug 1234243",
"url": "https://bugzilla.suse.com/1234243"
},
{
"category": "self",
"summary": "SUSE Bug 1234278",
"url": "https://bugzilla.suse.com/1234278"
},
{
"category": "self",
"summary": "SUSE Bug 1234279",
"url": "https://bugzilla.suse.com/1234279"
},
{
"category": "self",
"summary": "SUSE Bug 1234280",
"url": "https://bugzilla.suse.com/1234280"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234381",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "self",
"summary": "SUSE Bug 1234454",
"url": "https://bugzilla.suse.com/1234454"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234619",
"url": "https://bugzilla.suse.com/1234619"
},
{
"category": "self",
"summary": "SUSE Bug 1234635",
"url": "https://bugzilla.suse.com/1234635"
},
{
"category": "self",
"summary": "SUSE Bug 1234651",
"url": "https://bugzilla.suse.com/1234651"
},
{
"category": "self",
"summary": "SUSE Bug 1234652",
"url": "https://bugzilla.suse.com/1234652"
},
{
"category": "self",
"summary": "SUSE Bug 1234654",
"url": "https://bugzilla.suse.com/1234654"
},
{
"category": "self",
"summary": "SUSE Bug 1234655",
"url": "https://bugzilla.suse.com/1234655"
},
{
"category": "self",
"summary": "SUSE Bug 1234657",
"url": "https://bugzilla.suse.com/1234657"
},
{
"category": "self",
"summary": "SUSE Bug 1234658",
"url": "https://bugzilla.suse.com/1234658"
},
{
"category": "self",
"summary": "SUSE Bug 1234659",
"url": "https://bugzilla.suse.com/1234659"
},
{
"category": "self",
"summary": "SUSE Bug 1234668",
"url": "https://bugzilla.suse.com/1234668"
},
{
"category": "self",
"summary": "SUSE Bug 1234683",
"url": "https://bugzilla.suse.com/1234683"
},
{
"category": "self",
"summary": "SUSE Bug 1234690",
"url": "https://bugzilla.suse.com/1234690"
},
{
"category": "self",
"summary": "SUSE Bug 1234693",
"url": "https://bugzilla.suse.com/1234693"
},
{
"category": "self",
"summary": "SUSE Bug 1234725",
"url": "https://bugzilla.suse.com/1234725"
},
{
"category": "self",
"summary": "SUSE Bug 1234726",
"url": "https://bugzilla.suse.com/1234726"
},
{
"category": "self",
"summary": "SUSE Bug 1234810",
"url": "https://bugzilla.suse.com/1234810"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234825",
"url": "https://bugzilla.suse.com/1234825"
},
{
"category": "self",
"summary": "SUSE Bug 1234826",
"url": "https://bugzilla.suse.com/1234826"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234829",
"url": "https://bugzilla.suse.com/1234829"
},
{
"category": "self",
"summary": "SUSE Bug 1234832",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234848",
"url": "https://bugzilla.suse.com/1234848"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234855",
"url": "https://bugzilla.suse.com/1234855"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234863",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "self",
"summary": "SUSE Bug 1234884",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "self",
"summary": "SUSE Bug 1234887",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "self",
"summary": "SUSE Bug 1234888",
"url": "https://bugzilla.suse.com/1234888"
},
{
"category": "self",
"summary": "SUSE Bug 1234889",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234893",
"url": "https://bugzilla.suse.com/1234893"
},
{
"category": "self",
"summary": "SUSE Bug 1234898",
"url": "https://bugzilla.suse.com/1234898"
},
{
"category": "self",
"summary": "SUSE Bug 1234899",
"url": "https://bugzilla.suse.com/1234899"
},
{
"category": "self",
"summary": "SUSE Bug 1234900",
"url": "https://bugzilla.suse.com/1234900"
},
{
"category": "self",
"summary": "SUSE Bug 1234901",
"url": "https://bugzilla.suse.com/1234901"
},
{
"category": "self",
"summary": "SUSE Bug 1234905",
"url": "https://bugzilla.suse.com/1234905"
},
{
"category": "self",
"summary": "SUSE Bug 1234906",
"url": "https://bugzilla.suse.com/1234906"
},
{
"category": "self",
"summary": "SUSE Bug 1234907",
"url": "https://bugzilla.suse.com/1234907"
},
{
"category": "self",
"summary": "SUSE Bug 1234909",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "self",
"summary": "SUSE Bug 1234911",
"url": "https://bugzilla.suse.com/1234911"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234916",
"url": "https://bugzilla.suse.com/1234916"
},
{
"category": "self",
"summary": "SUSE Bug 1234918",
"url": "https://bugzilla.suse.com/1234918"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234922",
"url": "https://bugzilla.suse.com/1234922"
},
{
"category": "self",
"summary": "SUSE Bug 1234923",
"url": "https://bugzilla.suse.com/1234923"
},
{
"category": "self",
"summary": "SUSE Bug 1234929",
"url": "https://bugzilla.suse.com/1234929"
},
{
"category": "self",
"summary": "SUSE Bug 1234930",
"url": "https://bugzilla.suse.com/1234930"
},
{
"category": "self",
"summary": "SUSE Bug 1234931",
"url": "https://bugzilla.suse.com/1234931"
},
{
"category": "self",
"summary": "SUSE Bug 1234934",
"url": "https://bugzilla.suse.com/1234934"
},
{
"category": "self",
"summary": "SUSE Bug 1234937",
"url": "https://bugzilla.suse.com/1234937"
},
{
"category": "self",
"summary": "SUSE Bug 1234947",
"url": "https://bugzilla.suse.com/1234947"
},
{
"category": "self",
"summary": "SUSE Bug 1234948",
"url": "https://bugzilla.suse.com/1234948"
},
{
"category": "self",
"summary": "SUSE Bug 1234950",
"url": "https://bugzilla.suse.com/1234950"
},
{
"category": "self",
"summary": "SUSE Bug 1234952",
"url": "https://bugzilla.suse.com/1234952"
},
{
"category": "self",
"summary": "SUSE Bug 1234957",
"url": "https://bugzilla.suse.com/1234957"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234962",
"url": "https://bugzilla.suse.com/1234962"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234968",
"url": "https://bugzilla.suse.com/1234968"
},
{
"category": "self",
"summary": "SUSE Bug 1234969",
"url": "https://bugzilla.suse.com/1234969"
},
{
"category": "self",
"summary": "SUSE Bug 1234970",
"url": "https://bugzilla.suse.com/1234970"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1234974",
"url": "https://bugzilla.suse.com/1234974"
},
{
"category": "self",
"summary": "SUSE Bug 1234989",
"url": "https://bugzilla.suse.com/1234989"
},
{
"category": "self",
"summary": "SUSE Bug 1234999",
"url": "https://bugzilla.suse.com/1234999"
},
{
"category": "self",
"summary": "SUSE Bug 1235000",
"url": "https://bugzilla.suse.com/1235000"
},
{
"category": "self",
"summary": "SUSE Bug 1235001",
"url": "https://bugzilla.suse.com/1235001"
},
{
"category": "self",
"summary": "SUSE Bug 1235002",
"url": "https://bugzilla.suse.com/1235002"
},
{
"category": "self",
"summary": "SUSE Bug 1235003",
"url": "https://bugzilla.suse.com/1235003"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235007",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "self",
"summary": "SUSE Bug 1235009",
"url": "https://bugzilla.suse.com/1235009"
},
{
"category": "self",
"summary": "SUSE Bug 1235011",
"url": "https://bugzilla.suse.com/1235011"
},
{
"category": "self",
"summary": "SUSE Bug 1235016",
"url": "https://bugzilla.suse.com/1235016"
},
{
"category": "self",
"summary": "SUSE Bug 1235019",
"url": "https://bugzilla.suse.com/1235019"
},
{
"category": "self",
"summary": "SUSE Bug 1235031",
"url": "https://bugzilla.suse.com/1235031"
},
{
"category": "self",
"summary": "SUSE Bug 1235032",
"url": "https://bugzilla.suse.com/1235032"
},
{
"category": "self",
"summary": "SUSE Bug 1235033",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "self",
"summary": "SUSE Bug 1235035",
"url": "https://bugzilla.suse.com/1235035"
},
{
"category": "self",
"summary": "SUSE Bug 1235037",
"url": "https://bugzilla.suse.com/1235037"
},
{
"category": "self",
"summary": "SUSE Bug 1235038",
"url": "https://bugzilla.suse.com/1235038"
},
{
"category": "self",
"summary": "SUSE Bug 1235039",
"url": "https://bugzilla.suse.com/1235039"
},
{
"category": "self",
"summary": "SUSE Bug 1235040",
"url": "https://bugzilla.suse.com/1235040"
},
{
"category": "self",
"summary": "SUSE Bug 1235042",
"url": "https://bugzilla.suse.com/1235042"
},
{
"category": "self",
"summary": "SUSE Bug 1235043",
"url": "https://bugzilla.suse.com/1235043"
},
{
"category": "self",
"summary": "SUSE Bug 1235045",
"url": "https://bugzilla.suse.com/1235045"
},
{
"category": "self",
"summary": "SUSE Bug 1235046",
"url": "https://bugzilla.suse.com/1235046"
},
{
"category": "self",
"summary": "SUSE Bug 1235050",
"url": "https://bugzilla.suse.com/1235050"
},
{
"category": "self",
"summary": "SUSE Bug 1235051",
"url": "https://bugzilla.suse.com/1235051"
},
{
"category": "self",
"summary": "SUSE Bug 1235053",
"url": "https://bugzilla.suse.com/1235053"
},
{
"category": "self",
"summary": "SUSE Bug 1235054",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235057",
"url": "https://bugzilla.suse.com/1235057"
},
{
"category": "self",
"summary": "SUSE Bug 1235059",
"url": "https://bugzilla.suse.com/1235059"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235065",
"url": "https://bugzilla.suse.com/1235065"
},
{
"category": "self",
"summary": "SUSE Bug 1235070",
"url": "https://bugzilla.suse.com/1235070"
},
{
"category": "self",
"summary": "SUSE Bug 1235073",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "self",
"summary": "SUSE Bug 1235075",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "self",
"summary": "SUSE Bug 1235100",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "self",
"summary": "SUSE Bug 1235108",
"url": "https://bugzilla.suse.com/1235108"
},
{
"category": "self",
"summary": "SUSE Bug 1235112",
"url": "https://bugzilla.suse.com/1235112"
},
{
"category": "self",
"summary": "SUSE Bug 1235115",
"url": "https://bugzilla.suse.com/1235115"
},
{
"category": "self",
"summary": "SUSE Bug 1235117",
"url": "https://bugzilla.suse.com/1235117"
},
{
"category": "self",
"summary": "SUSE Bug 1235122",
"url": "https://bugzilla.suse.com/1235122"
},
{
"category": "self",
"summary": "SUSE Bug 1235123",
"url": "https://bugzilla.suse.com/1235123"
},
{
"category": "self",
"summary": "SUSE Bug 1235125",
"url": "https://bugzilla.suse.com/1235125"
},
{
"category": "self",
"summary": "SUSE Bug 1235128",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "self",
"summary": "SUSE Bug 1235132",
"url": "https://bugzilla.suse.com/1235132"
},
{
"category": "self",
"summary": "SUSE Bug 1235133",
"url": "https://bugzilla.suse.com/1235133"
},
{
"category": "self",
"summary": "SUSE Bug 1235134",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "self",
"summary": "SUSE Bug 1235138",
"url": "https://bugzilla.suse.com/1235138"
},
{
"category": "self",
"summary": "SUSE Bug 1235155",
"url": "https://bugzilla.suse.com/1235155"
},
{
"category": "self",
"summary": "SUSE Bug 1235160",
"url": "https://bugzilla.suse.com/1235160"
},
{
"category": "self",
"summary": "SUSE Bug 1235217",
"url": "https://bugzilla.suse.com/1235217"
},
{
"category": "self",
"summary": "SUSE Bug 1235219",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "self",
"summary": "SUSE Bug 1235220",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "self",
"summary": "SUSE Bug 1235222",
"url": "https://bugzilla.suse.com/1235222"
},
{
"category": "self",
"summary": "SUSE Bug 1235223",
"url": "https://bugzilla.suse.com/1235223"
},
{
"category": "self",
"summary": "SUSE Bug 1235224",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "self",
"summary": "SUSE Bug 1235227",
"url": "https://bugzilla.suse.com/1235227"
},
{
"category": "self",
"summary": "SUSE Bug 1235230",
"url": "https://bugzilla.suse.com/1235230"
},
{
"category": "self",
"summary": "SUSE Bug 1235241",
"url": "https://bugzilla.suse.com/1235241"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235249",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "self",
"summary": "SUSE Bug 1235251",
"url": "https://bugzilla.suse.com/1235251"
},
{
"category": "self",
"summary": "SUSE Bug 1235252",
"url": "https://bugzilla.suse.com/1235252"
},
{
"category": "self",
"summary": "SUSE Bug 1235389",
"url": "https://bugzilla.suse.com/1235389"
},
{
"category": "self",
"summary": "SUSE Bug 1235390",
"url": "https://bugzilla.suse.com/1235390"
},
{
"category": "self",
"summary": "SUSE Bug 1235391",
"url": "https://bugzilla.suse.com/1235391"
},
{
"category": "self",
"summary": "SUSE Bug 1235406",
"url": "https://bugzilla.suse.com/1235406"
},
{
"category": "self",
"summary": "SUSE Bug 1235409",
"url": "https://bugzilla.suse.com/1235409"
},
{
"category": "self",
"summary": "SUSE Bug 1235410",
"url": "https://bugzilla.suse.com/1235410"
},
{
"category": "self",
"summary": "SUSE Bug 1235412",
"url": "https://bugzilla.suse.com/1235412"
},
{
"category": "self",
"summary": "SUSE Bug 1235413",
"url": "https://bugzilla.suse.com/1235413"
},
{
"category": "self",
"summary": "SUSE Bug 1235415",
"url": "https://bugzilla.suse.com/1235415"
},
{
"category": "self",
"summary": "SUSE Bug 1235416",
"url": "https://bugzilla.suse.com/1235416"
},
{
"category": "self",
"summary": "SUSE Bug 1235417",
"url": "https://bugzilla.suse.com/1235417"
},
{
"category": "self",
"summary": "SUSE Bug 1235418",
"url": "https://bugzilla.suse.com/1235418"
},
{
"category": "self",
"summary": "SUSE Bug 1235423",
"url": "https://bugzilla.suse.com/1235423"
},
{
"category": "self",
"summary": "SUSE Bug 1235424",
"url": "https://bugzilla.suse.com/1235424"
},
{
"category": "self",
"summary": "SUSE Bug 1235425",
"url": "https://bugzilla.suse.com/1235425"
},
{
"category": "self",
"summary": "SUSE Bug 1235426",
"url": "https://bugzilla.suse.com/1235426"
},
{
"category": "self",
"summary": "SUSE Bug 1235427",
"url": "https://bugzilla.suse.com/1235427"
},
{
"category": "self",
"summary": "SUSE Bug 1235428",
"url": "https://bugzilla.suse.com/1235428"
},
{
"category": "self",
"summary": "SUSE Bug 1235429",
"url": "https://bugzilla.suse.com/1235429"
},
{
"category": "self",
"summary": "SUSE Bug 1235430",
"url": "https://bugzilla.suse.com/1235430"
},
{
"category": "self",
"summary": "SUSE Bug 1235433",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "self",
"summary": "SUSE Bug 1235437",
"url": "https://bugzilla.suse.com/1235437"
},
{
"category": "self",
"summary": "SUSE Bug 1235439",
"url": "https://bugzilla.suse.com/1235439"
},
{
"category": "self",
"summary": "SUSE Bug 1235444",
"url": "https://bugzilla.suse.com/1235444"
},
{
"category": "self",
"summary": "SUSE Bug 1235445",
"url": "https://bugzilla.suse.com/1235445"
},
{
"category": "self",
"summary": "SUSE Bug 1235449",
"url": "https://bugzilla.suse.com/1235449"
},
{
"category": "self",
"summary": "SUSE Bug 1235451",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "self",
"summary": "SUSE Bug 1235454",
"url": "https://bugzilla.suse.com/1235454"
},
{
"category": "self",
"summary": "SUSE Bug 1235458",
"url": "https://bugzilla.suse.com/1235458"
},
{
"category": "self",
"summary": "SUSE Bug 1235459",
"url": "https://bugzilla.suse.com/1235459"
},
{
"category": "self",
"summary": "SUSE Bug 1235464",
"url": "https://bugzilla.suse.com/1235464"
},
{
"category": "self",
"summary": "SUSE Bug 1235466",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "self",
"summary": "SUSE Bug 1235473",
"url": "https://bugzilla.suse.com/1235473"
},
{
"category": "self",
"summary": "SUSE Bug 1235479",
"url": "https://bugzilla.suse.com/1235479"
},
{
"category": "self",
"summary": "SUSE Bug 1235480",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "self",
"summary": "SUSE Bug 1235483",
"url": "https://bugzilla.suse.com/1235483"
},
{
"category": "self",
"summary": "SUSE Bug 1235486",
"url": "https://bugzilla.suse.com/1235486"
},
{
"category": "self",
"summary": "SUSE Bug 1235487",
"url": "https://bugzilla.suse.com/1235487"
},
{
"category": "self",
"summary": "SUSE Bug 1235488",
"url": "https://bugzilla.suse.com/1235488"
},
{
"category": "self",
"summary": "SUSE Bug 1235489",
"url": "https://bugzilla.suse.com/1235489"
},
{
"category": "self",
"summary": "SUSE Bug 1235491",
"url": "https://bugzilla.suse.com/1235491"
},
{
"category": "self",
"summary": "SUSE Bug 1235494",
"url": "https://bugzilla.suse.com/1235494"
},
{
"category": "self",
"summary": "SUSE Bug 1235495",
"url": "https://bugzilla.suse.com/1235495"
},
{
"category": "self",
"summary": "SUSE Bug 1235496",
"url": "https://bugzilla.suse.com/1235496"
},
{
"category": "self",
"summary": "SUSE Bug 1235497",
"url": "https://bugzilla.suse.com/1235497"
},
{
"category": "self",
"summary": "SUSE Bug 1235498",
"url": "https://bugzilla.suse.com/1235498"
},
{
"category": "self",
"summary": "SUSE Bug 1235500",
"url": "https://bugzilla.suse.com/1235500"
},
{
"category": "self",
"summary": "SUSE Bug 1235502",
"url": "https://bugzilla.suse.com/1235502"
},
{
"category": "self",
"summary": "SUSE Bug 1235503",
"url": "https://bugzilla.suse.com/1235503"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE Bug 1235519",
"url": "https://bugzilla.suse.com/1235519"
},
{
"category": "self",
"summary": "SUSE Bug 1235520",
"url": "https://bugzilla.suse.com/1235520"
},
{
"category": "self",
"summary": "SUSE Bug 1235521",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "self",
"summary": "SUSE Bug 1235523",
"url": "https://bugzilla.suse.com/1235523"
},
{
"category": "self",
"summary": "SUSE Bug 1235526",
"url": "https://bugzilla.suse.com/1235526"
},
{
"category": "self",
"summary": "SUSE Bug 1235528",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "self",
"summary": "SUSE Bug 1235532",
"url": "https://bugzilla.suse.com/1235532"
},
{
"category": "self",
"summary": "SUSE Bug 1235533",
"url": "https://bugzilla.suse.com/1235533"
},
{
"category": "self",
"summary": "SUSE Bug 1235534",
"url": "https://bugzilla.suse.com/1235534"
},
{
"category": "self",
"summary": "SUSE Bug 1235537",
"url": "https://bugzilla.suse.com/1235537"
},
{
"category": "self",
"summary": "SUSE Bug 1235538",
"url": "https://bugzilla.suse.com/1235538"
},
{
"category": "self",
"summary": "SUSE Bug 1235545",
"url": "https://bugzilla.suse.com/1235545"
},
{
"category": "self",
"summary": "SUSE Bug 1235550",
"url": "https://bugzilla.suse.com/1235550"
},
{
"category": "self",
"summary": "SUSE Bug 1235552",
"url": "https://bugzilla.suse.com/1235552"
},
{
"category": "self",
"summary": "SUSE Bug 1235555",
"url": "https://bugzilla.suse.com/1235555"
},
{
"category": "self",
"summary": "SUSE Bug 1235557",
"url": "https://bugzilla.suse.com/1235557"
},
{
"category": "self",
"summary": "SUSE Bug 1235563",
"url": "https://bugzilla.suse.com/1235563"
},
{
"category": "self",
"summary": "SUSE Bug 1235564",
"url": "https://bugzilla.suse.com/1235564"
},
{
"category": "self",
"summary": "SUSE Bug 1235565",
"url": "https://bugzilla.suse.com/1235565"
},
{
"category": "self",
"summary": "SUSE Bug 1235568",
"url": "https://bugzilla.suse.com/1235568"
},
{
"category": "self",
"summary": "SUSE Bug 1235570",
"url": "https://bugzilla.suse.com/1235570"
},
{
"category": "self",
"summary": "SUSE Bug 1235571",
"url": "https://bugzilla.suse.com/1235571"
},
{
"category": "self",
"summary": "SUSE Bug 1235577",
"url": "https://bugzilla.suse.com/1235577"
},
{
"category": "self",
"summary": "SUSE Bug 1235578",
"url": "https://bugzilla.suse.com/1235578"
},
{
"category": "self",
"summary": "SUSE Bug 1235582",
"url": "https://bugzilla.suse.com/1235582"
},
{
"category": "self",
"summary": "SUSE Bug 1235583",
"url": "https://bugzilla.suse.com/1235583"
},
{
"category": "self",
"summary": "SUSE Bug 1235584",
"url": "https://bugzilla.suse.com/1235584"
},
{
"category": "self",
"summary": "SUSE Bug 1235587",
"url": "https://bugzilla.suse.com/1235587"
},
{
"category": "self",
"summary": "SUSE Bug 1235611",
"url": "https://bugzilla.suse.com/1235611"
},
{
"category": "self",
"summary": "SUSE Bug 1235612",
"url": "https://bugzilla.suse.com/1235612"
},
{
"category": "self",
"summary": "SUSE Bug 1235616",
"url": "https://bugzilla.suse.com/1235616"
},
{
"category": "self",
"summary": "SUSE Bug 1235622",
"url": "https://bugzilla.suse.com/1235622"
},
{
"category": "self",
"summary": "SUSE Bug 1235627",
"url": "https://bugzilla.suse.com/1235627"
},
{
"category": "self",
"summary": "SUSE Bug 1235632",
"url": "https://bugzilla.suse.com/1235632"
},
{
"category": "self",
"summary": "SUSE Bug 1235635",
"url": "https://bugzilla.suse.com/1235635"
},
{
"category": "self",
"summary": "SUSE Bug 1235638",
"url": "https://bugzilla.suse.com/1235638"
},
{
"category": "self",
"summary": "SUSE Bug 1235641",
"url": "https://bugzilla.suse.com/1235641"
},
{
"category": "self",
"summary": "SUSE Bug 1235643",
"url": "https://bugzilla.suse.com/1235643"
},
{
"category": "self",
"summary": "SUSE Bug 1235645",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "self",
"summary": "SUSE Bug 1235646",
"url": "https://bugzilla.suse.com/1235646"
},
{
"category": "self",
"summary": "SUSE Bug 1235647",
"url": "https://bugzilla.suse.com/1235647"
},
{
"category": "self",
"summary": "SUSE Bug 1235650",
"url": "https://bugzilla.suse.com/1235650"
},
{
"category": "self",
"summary": "SUSE Bug 1235653",
"url": "https://bugzilla.suse.com/1235653"
},
{
"category": "self",
"summary": "SUSE Bug 1235656",
"url": "https://bugzilla.suse.com/1235656"
},
{
"category": "self",
"summary": "SUSE Bug 1235657",
"url": "https://bugzilla.suse.com/1235657"
},
{
"category": "self",
"summary": "SUSE Bug 1235663",
"url": "https://bugzilla.suse.com/1235663"
},
{
"category": "self",
"summary": "SUSE Bug 1235686",
"url": "https://bugzilla.suse.com/1235686"
},
{
"category": "self",
"summary": "SUSE Bug 1235700",
"url": "https://bugzilla.suse.com/1235700"
},
{
"category": "self",
"summary": "SUSE Bug 1235705",
"url": "https://bugzilla.suse.com/1235705"
},
{
"category": "self",
"summary": "SUSE Bug 1235707",
"url": "https://bugzilla.suse.com/1235707"
},
{
"category": "self",
"summary": "SUSE Bug 1235708",
"url": "https://bugzilla.suse.com/1235708"
},
{
"category": "self",
"summary": "SUSE Bug 1235710",
"url": "https://bugzilla.suse.com/1235710"
},
{
"category": "self",
"summary": "SUSE Bug 1235714",
"url": "https://bugzilla.suse.com/1235714"
},
{
"category": "self",
"summary": "SUSE Bug 1235716",
"url": "https://bugzilla.suse.com/1235716"
},
{
"category": "self",
"summary": "SUSE Bug 1235720",
"url": "https://bugzilla.suse.com/1235720"
},
{
"category": "self",
"summary": "SUSE Bug 1235723",
"url": "https://bugzilla.suse.com/1235723"
},
{
"category": "self",
"summary": "SUSE Bug 1235727",
"url": "https://bugzilla.suse.com/1235727"
},
{
"category": "self",
"summary": "SUSE Bug 1235730",
"url": "https://bugzilla.suse.com/1235730"
},
{
"category": "self",
"summary": "SUSE Bug 1235737",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "self",
"summary": "SUSE Bug 1235739",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "self",
"summary": "SUSE Bug 1235745",
"url": "https://bugzilla.suse.com/1235745"
},
{
"category": "self",
"summary": "SUSE Bug 1235747",
"url": "https://bugzilla.suse.com/1235747"
},
{
"category": "self",
"summary": "SUSE Bug 1235750",
"url": "https://bugzilla.suse.com/1235750"
},
{
"category": "self",
"summary": "SUSE Bug 1235753",
"url": "https://bugzilla.suse.com/1235753"
},
{
"category": "self",
"summary": "SUSE Bug 1235759",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "self",
"summary": "SUSE Bug 1235764",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "self",
"summary": "SUSE Bug 1235768",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "self",
"summary": "SUSE Bug 1235776",
"url": "https://bugzilla.suse.com/1235776"
},
{
"category": "self",
"summary": "SUSE Bug 1235777",
"url": "https://bugzilla.suse.com/1235777"
},
{
"category": "self",
"summary": "SUSE Bug 1235778",
"url": "https://bugzilla.suse.com/1235778"
},
{
"category": "self",
"summary": "SUSE Bug 1235779",
"url": "https://bugzilla.suse.com/1235779"
},
{
"category": "self",
"summary": "SUSE Bug 1235793",
"url": "https://bugzilla.suse.com/1235793"
},
{
"category": "self",
"summary": "SUSE Bug 1235798",
"url": "https://bugzilla.suse.com/1235798"
},
{
"category": "self",
"summary": "SUSE Bug 1235806",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "self",
"summary": "SUSE Bug 1235808",
"url": "https://bugzilla.suse.com/1235808"
},
{
"category": "self",
"summary": "SUSE Bug 1235812",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "self",
"summary": "SUSE Bug 1235814",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "self",
"summary": "SUSE Bug 1235818",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "self",
"summary": "SUSE Bug 1235842",
"url": "https://bugzilla.suse.com/1235842"
},
{
"category": "self",
"summary": "SUSE Bug 1235865",
"url": "https://bugzilla.suse.com/1235865"
},
{
"category": "self",
"summary": "SUSE Bug 1235894",
"url": "https://bugzilla.suse.com/1235894"
},
{
"category": "self",
"summary": "SUSE Bug 1235902",
"url": "https://bugzilla.suse.com/1235902"
},
{
"category": "self",
"summary": "SUSE Bug 1235903",
"url": "https://bugzilla.suse.com/1235903"
},
{
"category": "self",
"summary": "SUSE Bug 1235906",
"url": "https://bugzilla.suse.com/1235906"
},
{
"category": "self",
"summary": "SUSE Bug 1235918",
"url": "https://bugzilla.suse.com/1235918"
},
{
"category": "self",
"summary": "SUSE Bug 1235919",
"url": "https://bugzilla.suse.com/1235919"
},
{
"category": "self",
"summary": "SUSE Bug 1235920",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "self",
"summary": "SUSE Bug 1235924",
"url": "https://bugzilla.suse.com/1235924"
},
{
"category": "self",
"summary": "SUSE Bug 1235940",
"url": "https://bugzilla.suse.com/1235940"
},
{
"category": "self",
"summary": "SUSE Bug 1235941",
"url": "https://bugzilla.suse.com/1235941"
},
{
"category": "self",
"summary": "SUSE Bug 1235946",
"url": "https://bugzilla.suse.com/1235946"
},
{
"category": "self",
"summary": "SUSE Bug 1235948",
"url": "https://bugzilla.suse.com/1235948"
},
{
"category": "self",
"summary": "SUSE Bug 1235952",
"url": "https://bugzilla.suse.com/1235952"
},
{
"category": "self",
"summary": "SUSE Bug 1235964",
"url": "https://bugzilla.suse.com/1235964"
},
{
"category": "self",
"summary": "SUSE Bug 1235965",
"url": "https://bugzilla.suse.com/1235965"
},
{
"category": "self",
"summary": "SUSE Bug 1235967",
"url": "https://bugzilla.suse.com/1235967"
},
{
"category": "self",
"summary": "SUSE Bug 1235969",
"url": "https://bugzilla.suse.com/1235969"
},
{
"category": "self",
"summary": "SUSE Bug 1235976",
"url": "https://bugzilla.suse.com/1235976"
},
{
"category": "self",
"summary": "SUSE Bug 1235977",
"url": "https://bugzilla.suse.com/1235977"
},
{
"category": "self",
"summary": "SUSE Bug 1236078",
"url": "https://bugzilla.suse.com/1236078"
},
{
"category": "self",
"summary": "SUSE Bug 1236080",
"url": "https://bugzilla.suse.com/1236080"
},
{
"category": "self",
"summary": "SUSE Bug 1236082",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "self",
"summary": "SUSE Bug 1236088",
"url": "https://bugzilla.suse.com/1236088"
},
{
"category": "self",
"summary": "SUSE Bug 1236090",
"url": "https://bugzilla.suse.com/1236090"
},
{
"category": "self",
"summary": "SUSE Bug 1236091",
"url": "https://bugzilla.suse.com/1236091"
},
{
"category": "self",
"summary": "SUSE Bug 1236096",
"url": "https://bugzilla.suse.com/1236096"
},
{
"category": "self",
"summary": "SUSE Bug 1236097",
"url": "https://bugzilla.suse.com/1236097"
},
{
"category": "self",
"summary": "SUSE Bug 1236098",
"url": "https://bugzilla.suse.com/1236098"
},
{
"category": "self",
"summary": "SUSE Bug 1236101",
"url": "https://bugzilla.suse.com/1236101"
},
{
"category": "self",
"summary": "SUSE Bug 1236102",
"url": "https://bugzilla.suse.com/1236102"
},
{
"category": "self",
"summary": "SUSE Bug 1236104",
"url": "https://bugzilla.suse.com/1236104"
},
{
"category": "self",
"summary": "SUSE Bug 1236106",
"url": "https://bugzilla.suse.com/1236106"
},
{
"category": "self",
"summary": "SUSE Bug 1236120",
"url": "https://bugzilla.suse.com/1236120"
},
{
"category": "self",
"summary": "SUSE Bug 1236125",
"url": "https://bugzilla.suse.com/1236125"
},
{
"category": "self",
"summary": "SUSE Bug 1236127",
"url": "https://bugzilla.suse.com/1236127"
},
{
"category": "self",
"summary": "SUSE Bug 1236131",
"url": "https://bugzilla.suse.com/1236131"
},
{
"category": "self",
"summary": "SUSE Bug 1236138",
"url": "https://bugzilla.suse.com/1236138"
},
{
"category": "self",
"summary": "SUSE Bug 1236143",
"url": "https://bugzilla.suse.com/1236143"
},
{
"category": "self",
"summary": "SUSE Bug 1236144",
"url": "https://bugzilla.suse.com/1236144"
},
{
"category": "self",
"summary": "SUSE Bug 1236145",
"url": "https://bugzilla.suse.com/1236145"
},
{
"category": "self",
"summary": "SUSE Bug 1236160",
"url": "https://bugzilla.suse.com/1236160"
},
{
"category": "self",
"summary": "SUSE Bug 1236161",
"url": "https://bugzilla.suse.com/1236161"
},
{
"category": "self",
"summary": "SUSE Bug 1236163",
"url": "https://bugzilla.suse.com/1236163"
},
{
"category": "self",
"summary": "SUSE Bug 1236168",
"url": "https://bugzilla.suse.com/1236168"
},
{
"category": "self",
"summary": "SUSE Bug 1236178",
"url": "https://bugzilla.suse.com/1236178"
},
{
"category": "self",
"summary": "SUSE Bug 1236180",
"url": "https://bugzilla.suse.com/1236180"
},
{
"category": "self",
"summary": "SUSE Bug 1236181",
"url": "https://bugzilla.suse.com/1236181"
},
{
"category": "self",
"summary": "SUSE Bug 1236182",
"url": "https://bugzilla.suse.com/1236182"
},
{
"category": "self",
"summary": "SUSE Bug 1236190",
"url": "https://bugzilla.suse.com/1236190"
},
{
"category": "self",
"summary": "SUSE Bug 1236192",
"url": "https://bugzilla.suse.com/1236192"
},
{
"category": "self",
"summary": "SUSE Bug 1236198",
"url": "https://bugzilla.suse.com/1236198"
},
{
"category": "self",
"summary": "SUSE Bug 1236227",
"url": "https://bugzilla.suse.com/1236227"
},
{
"category": "self",
"summary": "SUSE Bug 1236245",
"url": "https://bugzilla.suse.com/1236245"
},
{
"category": "self",
"summary": "SUSE Bug 1236247",
"url": "https://bugzilla.suse.com/1236247"
},
{
"category": "self",
"summary": "SUSE Bug 1236248",
"url": "https://bugzilla.suse.com/1236248"
},
{
"category": "self",
"summary": "SUSE Bug 1236260",
"url": "https://bugzilla.suse.com/1236260"
},
{
"category": "self",
"summary": "SUSE Bug 1236262",
"url": "https://bugzilla.suse.com/1236262"
},
{
"category": "self",
"summary": "SUSE Bug 1236628",
"url": "https://bugzilla.suse.com/1236628"
},
{
"category": "self",
"summary": "SUSE Bug 1236688",
"url": "https://bugzilla.suse.com/1236688"
},
{
"category": "self",
"summary": "SUSE Bug 1236696",
"url": "https://bugzilla.suse.com/1236696"
},
{
"category": "self",
"summary": "SUSE Bug 1236703",
"url": "https://bugzilla.suse.com/1236703"
},
{
"category": "self",
"summary": "SUSE Bug 1236732",
"url": "https://bugzilla.suse.com/1236732"
},
{
"category": "self",
"summary": "SUSE Bug 1236733",
"url": "https://bugzilla.suse.com/1236733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52923 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27397 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27397/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35839 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36476 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36476/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39282 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39480 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39480/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48873 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49978 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50051 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50106 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50199 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50199/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50272 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50299 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52332 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53050 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53091 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53164 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53168 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53169 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53170 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53172 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53175 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53175/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53185 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53187 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53194 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53195 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53196 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53197 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53227 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53230 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53231 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53233 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53236 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-54680 page",
"url": "https://www.suse.com/security/cve/CVE-2024-54680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55639 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55639/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56369 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56372 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56531 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56531/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56532 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56532/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56533 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56533/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56536 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56543 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56546 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56546/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56557 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56557/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56558 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56562 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56566 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56568 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56571 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56572 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56573 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56573/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56574 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56574/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56575 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56576 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56577 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56578 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56578/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56582 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56584 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56584/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56587 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56587/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56588 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56589 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56590 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56593 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56593/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56594 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56595 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56597 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56600 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56600/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56601 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56601/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56602 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56603 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56606 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56607 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56608 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56608/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56609 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56609/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56610 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56611 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56611/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56614 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56615 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56616 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56617 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56617/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56620 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56622 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56622/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56623 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56625 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56625/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56629 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56629/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56630 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56630/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56631 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56631/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56634 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56634/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56635 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56635/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56636 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56636/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56637 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56637/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56641 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56642 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56642/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56643 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56643/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56644 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56645 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56648 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56648/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56649 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56650 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56650/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56651 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56654 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56654/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56656 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56662 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56663 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56664 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56665 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56665/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56670 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56681 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56683 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56688 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56698 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56700 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56700/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56701 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56704 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56705 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56708 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56712 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56748 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56763 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56763/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56765 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56766 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56769 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56769/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56775 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56777 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56779 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57792 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57793 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57795 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57801 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57802 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57838 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57849 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57874 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57876 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57892 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57899 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57910 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57910/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57917 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57926 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57926/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57929 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57931 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57933 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57936 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21632 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21645 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21646 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21646/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21649 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21650 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21650/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21651 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21652 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21653 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21653/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21655 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21655/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21656 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21662 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21663 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21664 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21674 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21676 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21682 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21682/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-03-27T15:23:42Z",
"generator": {
"date": "2025-03-27T15:23:42Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20165-1",
"initial_release_date": "2025-03-27T15:23:42Z",
"revision_history": [
{
"date": "2025-03-27T15:23:42Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-25.1.aarch64",
"product": {
"name": "kernel-default-6.4.0-25.1.aarch64",
"product_id": "kernel-default-6.4.0-25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-24.1.21.4.aarch64",
"product": {
"name": "kernel-default-base-6.4.0-24.1.21.4.aarch64",
"product_id": "kernel-default-base-6.4.0-24.1.21.4.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.4.0-25.1.noarch",
"product": {
"name": "kernel-devel-6.4.0-25.1.noarch",
"product_id": "kernel-devel-6.4.0-25.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.4.0-25.1.noarch",
"product": {
"name": "kernel-macros-6.4.0-25.1.noarch",
"product_id": "kernel-macros-6.4.0-25.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.4.0-25.1.noarch",
"product": {
"name": "kernel-source-6.4.0-25.1.noarch",
"product_id": "kernel-source-6.4.0-25.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-25.1.s390x",
"product": {
"name": "kernel-default-6.4.0-25.1.s390x",
"product_id": "kernel-default-6.4.0-25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-25.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.4.0-25.1.s390x",
"product_id": "kernel-default-livepatch-6.4.0-25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"product": {
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"product_id": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-default-6.4.0-25.1.x86_64",
"product_id": "kernel-default-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-24.1.21.4.x86_64",
"product": {
"name": "kernel-default-base-6.4.0-24.1.21.4.x86_64",
"product_id": "kernel-default-base-6.4.0-24.1.21.4.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.4.0-25.1.x86_64",
"product_id": "kernel-default-livepatch-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.4.0-25.1.x86_64",
"product_id": "kernel-kvmsmall-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"product_id": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-25.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-25.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x"
},
"product_reference": "kernel-default-6.4.0-25.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-24.1.21.4.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-24.1.21.4.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-24.1.21.4.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-24.1.21.4.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-25.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-25.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x"
},
"product_reference": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
},
"product_reference": "kernel-source-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: adapt set backend to use GC transaction API\n\nUse the GC transaction API to replace the old and buggy gc API and the\nbusy mark approach.\n\nNo set elements are removed from async garbage collection anymore,\ninstead the _DEAD bit is set on so the set element is not visible from\nlookup path anymore. Async GC enqueues transaction work that might be\naborted and retried later.\n\nrbtree and pipapo set backends does not set on the _DEAD bit from the\nsync GC path since this runs in control plane path where mutex is held.\nIn this case, set elements are deactivated, removed and then released\nvia RCU callback, sync GC never fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52923",
"url": "https://www.suse.com/security/cve/CVE-2023-52923"
},
{
"category": "external",
"summary": "SUSE Bug 1236104 for CVE-2023-52923",
"url": "https://bugzilla.suse.com/1236104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2023-52923"
},
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-27397",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27397"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: use timestamp to check for set element timeout\n\nAdd a timestamp field at the beginning of the transaction, store it\nin the nftables per-netns area.\n\nUpdate set backend .insert, .deactivate and sync gc path to use the\ntimestamp, this avoids that an element expires while control plane\ntransaction is still unfinished.\n\n.lookup and .update, which are used from packet path, still use the\ncurrent time to check if the element has expired. And .get path and dump\nalso since this runs lockless under rcu read size lock. Then, there is\nasync gc which also needs to check the current time since it runs\nasynchronously from a workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27397",
"url": "https://www.suse.com/security/cve/CVE-2024-27397"
},
{
"category": "external",
"summary": "SUSE Bug 1224095 for CVE-2024-27397",
"url": "https://bugzilla.suse.com/1224095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-27397"
},
{
"cve": "CVE-2024-35839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bridge: replace physindev with physinif in nf_bridge_info\n\nAn skb can be added to a neigh-\u003earp_queue while waiting for an arp\nreply. Where original skb\u0027s skb-\u003edev can be different to neigh\u0027s\nneigh-\u003edev. For instance in case of bridging dnated skb from one veth to\nanother, the skb would be added to a neigh-\u003earp_queue of the bridge.\n\nAs skb-\u003edev can be reset back to nf_bridge-\u003ephysindev and used, and as\nthere is no explicit mechanism that prevents this physindev from been\nfreed under us (for instance neigh_flush_dev doesn\u0027t cleanup skbs from\ndifferent device\u0027s neigh queue) we can crash on e.g. this stack:\n\narp_process\n neigh_update\n skb = __skb_dequeue(\u0026neigh-\u003earp_queue)\n neigh_resolve_output(..., skb)\n ...\n br_nf_dev_xmit\n br_nf_pre_routing_finish_bridge_slow\n skb-\u003edev = nf_bridge-\u003ephysindev\n br_handle_frame_finish\n\nLet\u0027s use plain ifindex instead of net_device link. To peek into the\noriginal net_device we will use dev_get_by_index_rcu(). Thus either we\nget device and are safe to use it or we don\u0027t get it and drop skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35839",
"url": "https://www.suse.com/security/cve/CVE-2024-35839"
},
{
"category": "external",
"summary": "SUSE Bug 1224726 for CVE-2024-35839",
"url": "https://bugzilla.suse.com/1224726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-35839"
},
{
"cve": "CVE-2024-36476",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36476"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible\n\nMove the declaration of the \u0027ib_sge list\u0027 variable outside the\n\u0027always_invalidate\u0027 block to ensure it remains accessible for use\nthroughout the function.\n\nPreviously, \u0027ib_sge list\u0027 was declared within the \u0027always_invalidate\u0027\nblock, limiting its accessibility, then caused a\n\u0027BUG: kernel NULL pointer dereference\u0027[1].\n ? __die_body.cold+0x19/0x27\n ? page_fault_oops+0x15a/0x2d0\n ? search_module_extables+0x19/0x60\n ? search_bpf_extables+0x5f/0x80\n ? exc_page_fault+0x7e/0x180\n ? asm_exc_page_fault+0x26/0x30\n ? memcpy_orig+0xd5/0x140\n rxe_mr_copy+0x1c3/0x200 [rdma_rxe]\n ? rxe_pool_get_index+0x4b/0x80 [rdma_rxe]\n copy_data+0xa5/0x230 [rdma_rxe]\n rxe_requester+0xd9b/0xf70 [rdma_rxe]\n ? finish_task_switch.isra.0+0x99/0x2e0\n rxe_sender+0x13/0x40 [rdma_rxe]\n do_task+0x68/0x1e0 [rdma_rxe]\n process_one_work+0x177/0x330\n worker_thread+0x252/0x390\n ? __pfx_worker_thread+0x10/0x10\n\nThis change ensures the variable is available for subsequent operations\nthat require it.\n\n[1] https://lore.kernel.org/linux-rdma/6a1f3e8f-deb0-49f9-bc69-a9b03ecfcda7@fujitsu.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36476",
"url": "https://www.suse.com/security/cve/CVE-2024-36476"
},
{
"category": "external",
"summary": "SUSE Bug 1235902 for CVE-2024-36476",
"url": "https://bugzilla.suse.com/1235902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-36476"
},
{
"cve": "CVE-2024-36908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-iocost: do not WARN if iocg was already offlined\n\nIn iocg_pay_debt(), warn is triggered if \u0027active_list\u0027 is empty, which\nis intended to confirm iocg is active when it has debt. However, warn\ncan be triggered during a blkcg or disk removal, if iocg_waitq_timer_fn()\nis run at that time:\n\n WARNING: CPU: 0 PID: 2344971 at block/blk-iocost.c:1402 iocg_pay_debt+0x14c/0x190\n Call trace:\n iocg_pay_debt+0x14c/0x190\n iocg_kick_waitq+0x438/0x4c0\n iocg_waitq_timer_fn+0xd8/0x130\n __run_hrtimer+0x144/0x45c\n __hrtimer_run_queues+0x16c/0x244\n hrtimer_interrupt+0x2cc/0x7b0\n\nThe warn in this situation is meaningless. Since this iocg is being\nremoved, the state of the \u0027active_list\u0027 is irrelevant, and \u0027waitq_timer\u0027\nis canceled after removing \u0027active_list\u0027 in ioc_pd_free(), which ensures\niocg is freed after iocg_waitq_timer_fn() returns.\n\nTherefore, add the check if iocg was already offlined to avoid warn\nwhen removing a blkcg or disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36908",
"url": "https://www.suse.com/security/cve/CVE-2024-36908"
},
{
"category": "external",
"summary": "SUSE Bug 1225743 for CVE-2024-36908",
"url": "https://bugzilla.suse.com/1225743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-36908"
},
{
"cve": "CVE-2024-39282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: t7xx: Fix FSM command timeout issue\n\nWhen driver processes the internal state change command, it use an\nasynchronous thread to process the command operation. If the main\nthread detects that the task has timed out, the asynchronous thread\nwill panic when executing the completion notification because the\nmain thread completion object has been released.\n\nBUG: unable to handle page fault for address: fffffffffffffff8\nPGD 1f283a067 P4D 1f283a067 PUD 1f283c067 PMD 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nRIP: 0010:complete_all+0x3e/0xa0\n[...]\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x68/0xb0\n ? page_fault_oops+0x379/0x3e0\n ? exc_page_fault+0x69/0xa0\n ? asm_exc_page_fault+0x22/0x30\n ? complete_all+0x3e/0xa0\n fsm_main_thread+0xa3/0x9c0 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_autoremove_wake_function+0x10/0x10\n kthread+0xd8/0x110\n ? __pfx_fsm_main_thread+0x10/0x10 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x38/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n[...]\nCR2: fffffffffffffff8\n---[ end trace 0000000000000000 ]---\n\nUse the reference counter to ensure safe release as Sergey suggests:\nhttps://lore.kernel.org/all/da90f64c-260a-4329-87bf-1f9ff20a5951@gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39282",
"url": "https://www.suse.com/security/cve/CVE-2024-39282"
},
{
"category": "external",
"summary": "SUSE Bug 1235903 for CVE-2024-39282",
"url": "https://bugzilla.suse.com/1235903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-39282"
},
{
"cve": "CVE-2024-39480",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39480"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkdb: Fix buffer overflow during tab-complete\n\nCurrently, when the user attempts symbol completion with the Tab key, kdb\nwill use strncpy() to insert the completed symbol into the command buffer.\nUnfortunately it passes the size of the source buffer rather than the\ndestination to strncpy() with predictably horrible results. Most obviously\nif the command buffer is already full but cp, the cursor position, is in\nthe middle of the buffer, then we will write past the end of the supplied\nbuffer.\n\nFix this by replacing the dubious strncpy() calls with memmove()/memcpy()\ncalls plus explicit boundary checks to make sure we have enough space\nbefore we start moving characters around.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39480",
"url": "https://www.suse.com/security/cve/CVE-2024-39480"
},
{
"category": "external",
"summary": "SUSE Bug 1227445 for CVE-2024-39480",
"url": "https://bugzilla.suse.com/1227445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-39480"
},
{
"cve": "CVE-2024-41042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prefer nft_chain_validate\n\nnft_chain_validate already performs loop detection because a cycle will\nresult in a call stack overflow (ctx-\u003elevel \u003e= NFT_JUMP_STACK_SIZE).\n\nIt also follows maps via -\u003evalidate callback in nft_lookup, so there\nappears no reason to iterate the maps again.\n\nnf_tables_check_loops() and all its helper functions can be removed.\nThis improves ruleset load time significantly, from 23s down to 12s.\n\nThis also fixes a crash bug. Old loop detection code can result in\nunbounded recursion:\n\nBUG: TASK stack guard page was hit at ....\nOops: stack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 4 PID: 1539 Comm: nft Not tainted 6.10.0-rc5+ #1\n[..]\n\nwith a suitable ruleset during validation of register stores.\n\nI can\u0027t see any actual reason to attempt to check for this from\nnft_validate_register_store(), at this point the transaction is still in\nprogress, so we don\u0027t have a full picture of the rule graph.\n\nFor nf-next it might make sense to either remove it or make this depend\non table-\u003evalidate_state in case we could catch an error earlier\n(for improved error reporting to userspace).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41042",
"url": "https://www.suse.com/security/cve/CVE-2024-41042"
},
{
"category": "external",
"summary": "SUSE Bug 1228526 for CVE-2024-41042",
"url": "https://bugzilla.suse.com/1228526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-41042"
},
{
"cve": "CVE-2024-43913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: apple: fix device reference counting\n\nDrivers must call nvme_uninit_ctrl after a successful nvme_init_ctrl.\nSplit the allocation side out to make the error handling boundary easier\nto navigate. The apple driver had been doing this wrong, leaking the\ncontroller device memory on a tagset failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43913",
"url": "https://www.suse.com/security/cve/CVE-2024-43913"
},
{
"category": "external",
"summary": "SUSE Bug 1229833 for CVE-2024-43913",
"url": "https://bugzilla.suse.com/1229833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-43913"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-44996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix recursive -\u003erecvmsg calls\n\nAfter a vsock socket has been added to a BPF sockmap, its prot-\u003erecvmsg\nhas been replaced with vsock_bpf_recvmsg(). Thus the following\nrecursiion could happen:\n\nvsock_bpf_recvmsg()\n -\u003e __vsock_recvmsg()\n -\u003e vsock_connectible_recvmsg()\n -\u003e prot-\u003erecvmsg()\n -\u003e vsock_bpf_recvmsg() again\n\nWe need to fix it by calling the original -\u003erecvmsg() without any BPF\nsockmap logic in __vsock_recvmsg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44996",
"url": "https://www.suse.com/security/cve/CVE-2024-44996"
},
{
"category": "external",
"summary": "SUSE Bug 1230205 for CVE-2024-44996",
"url": "https://bugzilla.suse.com/1230205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-44996"
},
{
"cve": "CVE-2024-45828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Mask ring interrupts before ring stop request\n\nBus cleanup path in DMA mode may trigger a RING_OP_STAT interrupt when\nthe ring is being stopped. Depending on timing between ring stop request\ncompletion, interrupt handler removal and code execution this may lead\nto a NULL pointer dereference in hci_dma_irq_handler() if it gets to run\nafter the io_data pointer is set to NULL in hci_dma_cleanup().\n\nPrevent this my masking the ring interrupts before ring stop request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45828",
"url": "https://www.suse.com/security/cve/CVE-2024-45828"
},
{
"category": "external",
"summary": "SUSE Bug 1235705 for CVE-2024-45828",
"url": "https://bugzilla.suse.com/1235705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-45828"
},
{
"cve": "CVE-2024-46896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: don\u0027t access invalid sched\n\nSince 2320c9e6a768 (\"drm/sched: memset() \u0027job\u0027 in drm_sched_job_init()\")\naccessing job-\u003ebase.sched can produce unexpected results as the initialisation\nof (*job)-\u003ebase.sched done in amdgpu_job_alloc is overwritten by the\nmemset.\n\nThis commit fixes an issue when a CS would fail validation and would\nbe rejected after job-\u003enum_ibs is incremented. In this case,\namdgpu_ib_free(ring-\u003eadev, ...) will be called, which would crash the\nmachine because the ring value is bogus.\n\nTo fix this, pass a NULL pointer to amdgpu_ib_free(): we can do this\nbecause the device is actually not used in this function.\n\nThe next commit will remove the ring argument completely.\n\n(cherry picked from commit 2ae520cb12831d264ceb97c61f72c59d33c0dbd7)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46896",
"url": "https://www.suse.com/security/cve/CVE-2024-46896"
},
{
"category": "external",
"summary": "SUSE Bug 1235707 for CVE-2024-46896",
"url": "https://bugzilla.suse.com/1235707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-46896"
},
{
"cve": "CVE-2024-47141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinmux: Use sequential access to access desc-\u003epinmux data\n\nWhen two client of the same gpio call pinctrl_select_state() for the\nsame functionality, we are seeing NULL pointer issue while accessing\ndesc-\u003emux_owner.\n\nLet\u0027s say two processes A, B executing in pin_request() for the same pin\nand process A updates the desc-\u003emux_usecount but not yet updated the\ndesc-\u003emux_owner while process B see the desc-\u003emux_usecount which got\nupdated by A path and further executes strcmp and while accessing\ndesc-\u003emux_owner it crashes with NULL pointer.\n\nSerialize the access to mux related setting with a mutex lock.\n\n\tcpu0 (process A)\t\t\tcpu1(process B)\n\npinctrl_select_state() {\t\t pinctrl_select_state() {\n pin_request() {\t\t\t\tpin_request() {\n ...\n\t\t\t\t\t\t ....\n } else {\n desc-\u003emux_usecount++;\n \t\t\t\t\t\tdesc-\u003emux_usecount \u0026\u0026 strcmp(desc-\u003emux_owner, owner)) {\n\n if (desc-\u003emux_usecount \u003e 1)\n return 0;\n desc-\u003emux_owner = owner;\n\n }\t\t\t\t\t\t}",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47141",
"url": "https://www.suse.com/security/cve/CVE-2024-47141"
},
{
"category": "external",
"summary": "SUSE Bug 1235708 for CVE-2024-47141",
"url": "https://bugzilla.suse.com/1235708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-47141"
},
{
"cve": "CVE-2024-47143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-debug: fix a possible deadlock on radix_lock\n\nradix_lock() shouldn\u0027t be held while holding dma_hash_entry[idx].lock\notherwise, there\u0027s a possible deadlock scenario when\ndma debug API is called holding rq_lock():\n\nCPU0 CPU1 CPU2\ndma_free_attrs()\ncheck_unmap() add_dma_entry() __schedule() //out\n (A) rq_lock()\nget_hash_bucket()\n(A) dma_entry_hash\n check_sync()\n (A) radix_lock() (W) dma_entry_hash\ndma_entry_free()\n(W) radix_lock()\n // CPU2\u0027s one\n (W) rq_lock()\n\nCPU1 situation can happen when it extending radix tree and\nit tries to wake up kswapd via wake_all_kswapd().\n\nCPU2 situation can happen while perf_event_task_sched_out()\n(i.e. dma sync operation is called while deleting perf_event using\n etm and etr tmc which are Arm Coresight hwtracing driver backends).\n\nTo remove this possible situation, call dma_entry_free() after\nput_hash_bucket() in check_unmap().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47143",
"url": "https://www.suse.com/security/cve/CVE-2024-47143"
},
{
"category": "external",
"summary": "SUSE Bug 1235710 for CVE-2024-47143",
"url": "https://bugzilla.suse.com/1235710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-47143"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-47809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndlm: fix possible lkb_resource null dereference\n\nThis patch fixes a possible null pointer dereference when this function is\ncalled from request_lock() as lkb-\u003elkb_resource is not assigned yet,\nonly after validate_lock_args() by calling attach_lkb(). Another issue\nis that a resource name could be a non printable bytearray and we cannot\nassume to be ASCII coded.\n\nThe log functionality is probably never being hit when DLM is used in\nnormal way and no debug logging is enabled. The null pointer dereference\ncan only occur on a new created lkb that does not have the resource\nassigned yet, it probably never hits the null pointer dereference but we\nshould be sure that other changes might not change this behaviour and we\nactually can hit the mentioned null pointer dereference.\n\nIn this patch we just drop the printout of the resource name, the lkb id\nis enough to make a possible connection to a resource name if this\nexists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47809",
"url": "https://www.suse.com/security/cve/CVE-2024-47809"
},
{
"category": "external",
"summary": "SUSE Bug 1235714 for CVE-2024-47809",
"url": "https://bugzilla.suse.com/1235714"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-47809"
},
{
"cve": "CVE-2024-48873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48873"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: check return value of ieee80211_probereq_get() for RNR\n\nThe return value of ieee80211_probereq_get() might be NULL, so check it\nbefore using to avoid NULL pointer access.\n\nAddresses-Coverity-ID: 1529805 (\"Dereference null return value\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48873",
"url": "https://www.suse.com/security/cve/CVE-2024-48873"
},
{
"category": "external",
"summary": "SUSE Bug 1235716 for CVE-2024-48873",
"url": "https://bugzilla.suse.com/1235716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-48873"
},
{
"cve": "CVE-2024-48881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbcache: revert replacing IS_ERR_OR_NULL with IS_ERR again\n\nCommit 028ddcac477b (\"bcache: Remove unnecessary NULL point check in\nnode allocations\") leads a NULL pointer deference in cache_set_flush().\n\n1721 if (!IS_ERR_OR_NULL(c-\u003eroot))\n1722 list_add(\u0026c-\u003eroot-\u003elist, \u0026c-\u003ebtree_cache);\n\n\u003eFrom the above code in cache_set_flush(), if previous registration code\nfails before allocating c-\u003eroot, it is possible c-\u003eroot is NULL as what\nit is initialized. __bch_btree_node_alloc() never returns NULL but\nc-\u003eroot is possible to be NULL at above line 1721.\n\nThis patch replaces IS_ERR() by IS_ERR_OR_NULL() to fix this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48881",
"url": "https://www.suse.com/security/cve/CVE-2024-48881"
},
{
"category": "external",
"summary": "SUSE Bug 1235727 for CVE-2024-48881",
"url": "https://bugzilla.suse.com/1235727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-48881"
},
{
"cve": "CVE-2024-49569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-rdma: unquiesce admin_q before destroy it\n\nKernel will hang on destroy admin_q while we create ctrl failed, such\nas following calltrace:\n\nPID: 23644 TASK: ff2d52b40f439fc0 CPU: 2 COMMAND: \"nvme\"\n #0 [ff61d23de260fb78] __schedule at ffffffff8323bc15\n #1 [ff61d23de260fc08] schedule at ffffffff8323c014\n #2 [ff61d23de260fc28] blk_mq_freeze_queue_wait at ffffffff82a3dba1\n #3 [ff61d23de260fc78] blk_freeze_queue at ffffffff82a4113a\n #4 [ff61d23de260fc90] blk_cleanup_queue at ffffffff82a33006\n #5 [ff61d23de260fcb0] nvme_rdma_destroy_admin_queue at ffffffffc12686ce\n #6 [ff61d23de260fcc8] nvme_rdma_setup_ctrl at ffffffffc1268ced\n #7 [ff61d23de260fd28] nvme_rdma_create_ctrl at ffffffffc126919b\n #8 [ff61d23de260fd68] nvmf_dev_write at ffffffffc024f362\n #9 [ff61d23de260fe38] vfs_write at ffffffff827d5f25\n RIP: 00007fda7891d574 RSP: 00007ffe2ef06958 RFLAGS: 00000202\n RAX: ffffffffffffffda RBX: 000055e8122a4d90 RCX: 00007fda7891d574\n RDX: 000000000000012b RSI: 000055e8122a4d90 RDI: 0000000000000004\n RBP: 00007ffe2ef079c0 R8: 000000000000012b R9: 000055e8122a4d90\n R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000004\n R13: 000055e8122923c0 R14: 000000000000012b R15: 00007fda78a54500\n ORIG_RAX: 0000000000000001 CS: 0033 SS: 002b\n\nThis due to we have quiesced admi_q before cancel requests, but forgot\nto unquiesce before destroy it, as a result we fail to drain the\npending requests, and hang on blk_mq_freeze_queue_wait() forever. Here\ntry to reuse nvme_rdma_teardown_admin_queue() to fix this issue and\nsimplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49569",
"url": "https://www.suse.com/security/cve/CVE-2024-49569"
},
{
"category": "external",
"summary": "SUSE Bug 1235730 for CVE-2024-49569",
"url": "https://bugzilla.suse.com/1235730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-49569"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix uaf for accessing waker_bfqq after splitting\n\nAfter commit 42c306ed7233 (\"block, bfq: don\u0027t break merge chain in\nbfq_split_bfqq()\"), if the current procress is the last holder of bfqq,\nthe bfqq can be freed after bfq_split_bfqq(). Hence recored the bfqq and\nthen access bfqq-\u003ewaker_bfqq may trigger UAF. What\u0027s more, the waker_bfqq\nmay in the merge chain of bfqq, hence just recored waker_bfqq is still\nnot safe.\n\nFix the problem by adding a helper bfq_waker_bfqq() to check if\nbfqq-\u003ewaker_bfqq is in the merge chain, and current procress is the only\nholder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-49948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: add more sanity checks to qdisc_pkt_len_init()\n\nOne path takes care of SKB_GSO_DODGY, assuming\nskb-\u003elen is bigger than hdr_len.\n\nvirtio_net_hdr_to_skb() does not fully dissect TCP headers,\nit only make sure it is at least 20 bytes.\n\nIt is possible for an user to provide a malicious \u0027GSO\u0027 packet,\ntotal length of 80 bytes.\n\n- 20 bytes of IPv4 header\n- 60 bytes TCP header\n- a small gso_size like 8\n\nvirtio_net_hdr_to_skb() would declare this packet as a normal\nGSO packet, because it would see 40 bytes of payload,\nbigger than gso_size.\n\nWe need to make detect this case to not underflow\nqdisc_skb_cb(skb)-\u003epkt_len.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49948",
"url": "https://www.suse.com/security/cve/CVE-2024-49948"
},
{
"category": "external",
"summary": "SUSE Bug 1232161 for CVE-2024-49948",
"url": "https://bugzilla.suse.com/1232161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-49948"
},
{
"cve": "CVE-2024-49951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible crash on mgmt_index_removed\n\nIf mgmt_index_removed is called while there are commands queued on\ncmd_sync it could lead to crashes like the bellow trace:\n\n0x0000053D: __list_del_entry_valid_or_report+0x98/0xdc\n0x0000053D: mgmt_pending_remove+0x18/0x58 [bluetooth]\n0x0000053E: mgmt_remove_adv_monitor_complete+0x80/0x108 [bluetooth]\n0x0000053E: hci_cmd_sync_work+0xbc/0x164 [bluetooth]\n\nSo while handling mgmt_index_removed this attempts to dequeue\ncommands passed as user_data to cmd_sync.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49951",
"url": "https://www.suse.com/security/cve/CVE-2024-49951"
},
{
"category": "external",
"summary": "SUSE Bug 1232158 for CVE-2024-49951",
"url": "https://bugzilla.suse.com/1232158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-49951"
},
{
"cve": "CVE-2024-49978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngso: fix udp gso fraglist segmentation after pull from frag_list\n\nDetect gso fraglist skbs with corrupted geometry (see below) and\npass these to skb_segment instead of skb_segment_list, as the first\ncan segment them correctly.\n\nValid SKB_GSO_FRAGLIST skbs\n- consist of two or more segments\n- the head_skb holds the protocol headers plus first gso_size\n- one or more frag_list skbs hold exactly one segment\n- all but the last must be gso_size\n\nOptional datapath hooks such as NAT and BPF (bpf_skb_pull_data) can\nmodify these skbs, breaking these invariants.\n\nIn extreme cases they pull all data into skb linear. For UDP, this\ncauses a NULL ptr deref in __udpv4_gso_segment_list_csum at\nudp_hdr(seg-\u003enext)-\u003edest.\n\nDetect invalid geometry due to pull, by checking head_skb size.\nDon\u0027t just drop, as this may blackhole a destination. Convert to be\nable to pass to regular skb_segment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49978",
"url": "https://www.suse.com/security/cve/CVE-2024-49978"
},
{
"category": "external",
"summary": "SUSE Bug 1232101 for CVE-2024-49978",
"url": "https://bugzilla.suse.com/1232101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-49978"
},
{
"cve": "CVE-2024-49998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: improve shutdown sequence\n\nAlexander Sverdlin presents 2 problems during shutdown with the\nlan9303 driver. One is specific to lan9303 and the other just happens\nto reproduce there.\n\nThe first problem is that lan9303 is unique among DSA drivers in that it\ncalls dev_get_drvdata() at \"arbitrary runtime\" (not probe, not shutdown,\nnot remove):\n\nphy_state_machine()\n-\u003e ...\n -\u003e dsa_user_phy_read()\n -\u003e ds-\u003eops-\u003ephy_read()\n -\u003e lan9303_phy_read()\n -\u003e chip-\u003eops-\u003ephy_read()\n -\u003e lan9303_mdio_phy_read()\n -\u003e dev_get_drvdata()\n\nBut we never stop the phy_state_machine(), so it may continue to run\nafter dsa_switch_shutdown(). Our common pattern in all DSA drivers is\nto set drvdata to NULL to suppress the remove() method that may come\nafterwards. But in this case it will result in an NPD.\n\nThe second problem is that the way in which we set\ndp-\u003econduit-\u003edsa_ptr = NULL; is concurrent with receive packet\nprocessing. dsa_switch_rcv() checks once whether dev-\u003edsa_ptr is NULL,\nbut afterwards, rather than continuing to use that non-NULL value,\ndev-\u003edsa_ptr is dereferenced again and again without NULL checks:\ndsa_conduit_find_user() and many other places. In between dereferences,\nthere is no locking to ensure that what was valid once continues to be\nvalid.\n\nBoth problems have the common aspect that closing the conduit interface\nsolves them.\n\nIn the first case, dev_close(conduit) triggers the NETDEV_GOING_DOWN\nevent in dsa_user_netdevice_event() which closes user ports as well.\ndsa_port_disable_rt() calls phylink_stop(), which synchronously stops\nthe phylink state machine, and ds-\u003eops-\u003ephy_read() will thus no longer\ncall into the driver after this point.\n\nIn the second case, dev_close(conduit) should do this, as per\nDocumentation/networking/driver.rst:\n\n| Quiescence\n| ----------\n|\n| After the ndo_stop routine has been called, the hardware must\n| not receive or transmit any data. All in flight packets must\n| be aborted. If necessary, poll or wait for completion of\n| any reset commands.\n\nSo it should be sufficient to ensure that later, when we zeroize\nconduit-\u003edsa_ptr, there will be no concurrent dsa_switch_rcv() call\non this conduit.\n\nThe addition of the netif_device_detach() function is to ensure that\nioctls, rtnetlinks and ethtool requests on the user ports no longer\npropagate down to the driver - we\u0027re no longer prepared to handle them.\n\nThe race condition actually did not exist when commit 0650bf52b31f\n(\"net: dsa: be compatible with masters which unregister on shutdown\")\nfirst introduced dsa_switch_shutdown(). It was created later, when we\nstopped unregistering the user interfaces from a bad spot, and we just\nreplaced that sequence with a racy zeroization of conduit-\u003edsa_ptr\n(one which doesn\u0027t ensure that the interfaces aren\u0027t up).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49998",
"url": "https://www.suse.com/security/cve/CVE-2024-49998"
},
{
"category": "external",
"summary": "SUSE Bug 1232087 for CVE-2024-49998",
"url": "https://bugzilla.suse.com/1232087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-49998"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: mpc52xx: Add cancel_work_sync before module remove\n\nIf we remove the module which will call mpc52xx_spi_remove\nit will free \u0027ms\u0027 through spi_unregister_controller.\nwhile the work ms-\u003ework will be used. The sequence of operations\nthat may lead to a UAF bug.\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in mpc52xx_spi_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50051",
"url": "https://www.suse.com/security/cve/CVE-2024-50051"
},
{
"category": "external",
"summary": "SUSE Bug 1235739 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "external",
"summary": "SUSE Bug 1239156 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1239156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-50051"
},
{
"cve": "CVE-2024-50106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix race between laundromat and free_stateid\n\nThere is a race between laundromat handling of revoked delegations\nand a client sending free_stateid operation. Laundromat thread\nfinds that delegation has expired and needs to be revoked so it\nmarks the delegation stid revoked and it puts it on a reaper list\nbut then it unlock the state lock and the actual delegation revocation\nhappens without the lock. Once the stid is marked revoked a racing\nfree_stateid processing thread does the following (1) it calls\nlist_del_init() which removes it from the reaper list and (2) frees\nthe delegation stid structure. The laundromat thread ends up not\ncalling the revoke_delegation() function for this particular delegation\nbut that means it will no release the lock lease that exists on\nthe file.\n\nNow, a new open for this file comes in and ends up finding that\nlease list isn\u0027t empty and calls nfsd_breaker_owns_lease() which ends\nup trying to derefence a freed delegation stateid. Leading to the\nfollowint use-after-free KASAN warning:\n\nkernel: ==================================================================\nkernel: BUG: KASAN: slab-use-after-free in nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: Read of size 8 at addr ffff0000e73cd0c8 by task nfsd/6205\nkernel:\nkernel: CPU: 2 UID: 0 PID: 6205 Comm: nfsd Kdump: loaded Not tainted 6.11.0-rc7+ #9\nkernel: Hardware name: Apple Inc. Apple Virtualization Generic Platform, BIOS 2069.0.0.0.0 08/03/2024\nkernel: Call trace:\nkernel: dump_backtrace+0x98/0x120\nkernel: show_stack+0x1c/0x30\nkernel: dump_stack_lvl+0x80/0xe8\nkernel: print_address_description.constprop.0+0x84/0x390\nkernel: print_report+0xa4/0x268\nkernel: kasan_report+0xb4/0xf8\nkernel: __asan_report_load8_noabort+0x1c/0x28\nkernel: nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: nfsd_file_do_acquire+0xb3c/0x11d0 [nfsd]\nkernel: nfsd_file_acquire_opened+0x84/0x110 [nfsd]\nkernel: nfs4_get_vfs_file+0x634/0x958 [nfsd]\nkernel: nfsd4_process_open2+0xa40/0x1a40 [nfsd]\nkernel: nfsd4_open+0xa08/0xe80 [nfsd]\nkernel: nfsd4_proc_compound+0xb8c/0x2130 [nfsd]\nkernel: nfsd_dispatch+0x22c/0x718 [nfsd]\nkernel: svc_process_common+0x8e8/0x1960 [sunrpc]\nkernel: svc_process+0x3d4/0x7e0 [sunrpc]\nkernel: svc_handle_xprt+0x828/0xe10 [sunrpc]\nkernel: svc_recv+0x2cc/0x6a8 [sunrpc]\nkernel: nfsd+0x270/0x400 [nfsd]\nkernel: kthread+0x288/0x310\nkernel: ret_from_fork+0x10/0x20\n\nThis patch proposes a fixed that\u0027s based on adding 2 new additional\nstid\u0027s sc_status values that help coordinate between the laundromat\nand other operations (nfsd4_free_stateid() and nfsd4_delegreturn()).\n\nFirst to make sure, that once the stid is marked revoked, it is not\nremoved by the nfsd4_free_stateid(), the laundromat take a reference\non the stateid. Then, coordinating whether the stid has been put\non the cl_revoked list or we are processing FREE_STATEID and need to\nmake sure to remove it from the list, each check that state and act\naccordingly. If laundromat has added to the cl_revoke list before\nthe arrival of FREE_STATEID, then nfsd4_free_stateid() knows to remove\nit from the list. If nfsd4_free_stateid() finds that operations arrived\nbefore laundromat has placed it on cl_revoke list, it marks the state\nfreed and then laundromat will no longer add it to the list.\n\nAlso, for nfsd4_delegreturn() when looking for the specified stid,\nwe need to access stid that are marked removed or freeable, it means\nthe laundromat has started processing it but hasn\u0027t finished and this\ndelegreturn needs to return nfserr_deleg_revoked and not\nnfserr_bad_stateid. The latter will not trigger a FREE_STATEID and the\nlack of it will leave this stid on the cl_revoked list indefinitely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50106",
"url": "https://www.suse.com/security/cve/CVE-2024-50106"
},
{
"category": "external",
"summary": "SUSE Bug 1232882 for CVE-2024-50106",
"url": "https://bugzilla.suse.com/1232882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50106"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix OOBs when building SMB2_IOCTL request\n\nWhen using encryption, either enforced by the server or when using\n\u0027seal\u0027 mount option, the client will squash all compound request buffers\ndown for encryption into a single iov in smb2_set_next_command().\n\nSMB2_ioctl_init() allocates a small buffer (448 bytes) to hold the\nSMB2_IOCTL request in the first iov, and if the user passes an input\nbuffer that is greater than 328 bytes, smb2_set_next_command() will\nend up writing off the end of @rqst-\u003eiov[0].iov_base as shown below:\n\n mount.cifs //srv/share /mnt -o ...,seal\n ln -s $(perl -e \"print(\u0027a\u0027)for 1..1024\") /mnt/link\n\n BUG: KASAN: slab-out-of-bounds in\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n Write of size 4116 at addr ffff8881148fcab8 by task ln/859\n\n CPU: 1 UID: 0 PID: 859 Comm: ln Not tainted 6.12.0-rc3 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n 1.16.3-2.fc40 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n print_report+0x156/0x4d9\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n ? __virt_addr_valid+0x145/0x310\n ? __phys_addr+0x46/0x90\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_report+0xda/0x110\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_check_range+0x10f/0x1f0\n __asan_memcpy+0x3c/0x60\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n smb2_compound_op+0x238c/0x3840 [cifs]\n ? kasan_save_track+0x14/0x30\n ? kasan_save_free_info+0x3b/0x70\n ? vfs_symlink+0x1a1/0x2c0\n ? do_symlinkat+0x108/0x1c0\n ? __pfx_smb2_compound_op+0x10/0x10 [cifs]\n ? kmem_cache_free+0x118/0x3e0\n ? cifs_get_writable_path+0xeb/0x1a0 [cifs]\n smb2_get_reparse_inode+0x423/0x540 [cifs]\n ? __pfx_smb2_get_reparse_inode+0x10/0x10 [cifs]\n ? rcu_is_watching+0x20/0x50\n ? __kmalloc_noprof+0x37c/0x480\n ? smb2_create_reparse_symlink+0x257/0x490 [cifs]\n ? smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n ? __pfx_smb2_create_reparse_symlink+0x10/0x10 [cifs]\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? __build_path_from_dentry_optional_prefix+0x19d/0x2e0 [cifs]\n cifs_symlink+0x24f/0x960 [cifs]\n ? __pfx_make_vfsuid+0x10/0x10\n ? __pfx_cifs_symlink+0x10/0x10 [cifs]\n ? make_vfsgid+0x6b/0xc0\n ? generic_permission+0x96/0x2d0\n vfs_symlink+0x1a1/0x2c0\n do_symlinkat+0x108/0x1c0\n ? __pfx_do_symlinkat+0x10/0x10\n ? strncpy_from_user+0xaa/0x160\n __x64_sys_symlinkat+0xb9/0xf0\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7f08d75c13bb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50151",
"url": "https://www.suse.com/security/cve/CVE-2024-50151"
},
{
"category": "external",
"summary": "SUSE Bug 1233055 for CVE-2024-50151",
"url": "https://bugzilla.suse.com/1233055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50151"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50199",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50199"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swapfile: skip HugeTLB pages for unuse_vma\n\nI got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The\nproblem can be reproduced by the following steps:\n\n 1. Allocate an anonymous 1GB HugeTLB and some other anonymous memory.\n 2. Swapout the above anonymous memory.\n 3. run swapoff and we will get a bad pud error in kernel message:\n\n mm/pgtable-generic.c:42: bad pud 00000000743d215d(84000001400000e7)\n\nWe can tell that pud_clear_bad is called by pud_none_or_clear_bad in\nunuse_pud_range() by ftrace. And therefore the HugeTLB pages will never\nbe freed because we lost it from page table. We can skip HugeTLB pages\nfor unuse_vma to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50199",
"url": "https://www.suse.com/security/cve/CVE-2024-50199"
},
{
"category": "external",
"summary": "SUSE Bug 1233112 for CVE-2024-50199",
"url": "https://bugzilla.suse.com/1233112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50199"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix address emission with tag-based KASAN enabled\n\nWhen BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_image\nstruct on the stack is passed during the size calculation pass and\nan address on the heap is passed during code generation. This may\ncause a heap buffer overflow if the heap address is tagged because\nemit_a64_mov_i64() will emit longer code than it did during the size\ncalculation pass. The same problem could occur without tag-based\nKASAN if one of the 16-bit words of the stack address happened to\nbe all-ones during the size calculation pass. Fix the problem by\nassuming the worst case (4 instructions) when calculating the size\nof the bpf_tramp_image address emission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50203",
"url": "https://www.suse.com/security/cve/CVE-2024-50203"
},
{
"category": "external",
"summary": "SUSE Bug 1233328 for CVE-2024-50203",
"url": "https://bugzilla.suse.com/1233328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50203"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilemap: Fix bounds checking in filemap_read()\n\nIf the caller supplies an iocb-\u003eki_pos value that is close to the\nfilesystem upper limit, and an iterator with a count that causes us to\noverflow that limit, then filemap_read() enters an infinite loop.\n\nThis behaviour was discovered when testing xfstests generic/525 with the\n\"localio\" optimisation for loopback NFS mounts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50272",
"url": "https://www.suse.com/security/cve/CVE-2024-50272"
},
{
"category": "external",
"summary": "SUSE Bug 1233461 for CVE-2024-50272",
"url": "https://bugzilla.suse.com/1233461"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50272"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-50299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50299"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: properly validate chunk size in sctp_sf_ootb()\n\nA size validation fix similar to that in Commit 50619dbf8db7 (\"sctp: add\nsize validation when walking chunks\") is also required in sctp_sf_ootb()\nto address a crash reported by syzbot:\n\n BUG: KMSAN: uninit-value in sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_do_sm+0x181/0x93d0 net/sctp/sm_sideeffect.c:1166\n sctp_endpoint_bh_rcv+0xc38/0xf90 net/sctp/endpointola.c:407\n sctp_inq_push+0x2ef/0x380 net/sctp/inqueue.c:88\n sctp_rcv+0x3831/0x3b20 net/sctp/input.c:243\n sctp4_rcv+0x42/0x50 net/sctp/protocol.c:1159\n ip_protocol_deliver_rcu+0xb51/0x13d0 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x336/0x500 net/ipv4/ip_input.c:233",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50299",
"url": "https://www.suse.com/security/cve/CVE-2024-50299"
},
{
"category": "external",
"summary": "SUSE Bug 1233488 for CVE-2024-50299",
"url": "https://bugzilla.suse.com/1233488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-50299"
},
{
"cve": "CVE-2024-52332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Fix potential invalid memory access in igb_init_module()\n\nThe pci_register_driver() can fail and when this happened, the dca_notifier\nneeds to be unregistered, otherwise the dca_notifier can be called when\nigb fails to install, resulting to invalid memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52332",
"url": "https://www.suse.com/security/cve/CVE-2024-52332"
},
{
"category": "external",
"summary": "SUSE Bug 1235700 for CVE-2024-52332",
"url": "https://bugzilla.suse.com/1235700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-52332"
},
{
"cve": "CVE-2024-53050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53050"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in hdcp2_get_capability\n\nAdd encoder check in intel_hdcp2_get_capability to avoid\nnull pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53050",
"url": "https://www.suse.com/security/cve/CVE-2024-53050"
},
{
"category": "external",
"summary": "SUSE Bug 1233546 for CVE-2024-53050",
"url": "https://bugzilla.suse.com/1233546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53050"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx\n\nAs the introduction of the support for vsock and unix sockets in sockmap,\ntls_sw_has_ctx_tx/rx cannot presume the socket passed in must be IS_ICSK.\nvsock and af_unix sockets have vsock_sock and unix_sock instead of\ninet_connection_sock. For these sockets, tls_get_ctx may return an invalid\npointer and cause page fault in function tls_sw_ctx_rx.\n\nBUG: unable to handle page fault for address: 0000000000040030\nWorkqueue: vsock-loopback vsock_loopback_work\nRIP: 0010:sk_psock_strp_data_ready+0x23/0x60\nCall Trace:\n ? __die+0x81/0xc3\n ? no_context+0x194/0x350\n ? do_page_fault+0x30/0x110\n ? async_page_fault+0x3e/0x50\n ? sk_psock_strp_data_ready+0x23/0x60\n virtio_transport_recv_pkt+0x750/0x800\n ? update_load_avg+0x7e/0x620\n vsock_loopback_work+0xd0/0x100\n process_one_work+0x1a7/0x360\n worker_thread+0x30/0x390\n ? create_worker+0x1a0/0x1a0\n kthread+0x112/0x130\n ? __kthread_cancel_work+0x40/0x40\n ret_from_fork+0x1f/0x40\n\nv2:\n - Add IS_ICSK check\nv3:\n - Update the commits in Fixes",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53091",
"url": "https://www.suse.com/security/cve/CVE-2024-53091"
},
{
"category": "external",
"summary": "SUSE Bug 1233638 for CVE-2024-53091",
"url": "https://bugzilla.suse.com/1233638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53091"
},
{
"cve": "CVE-2024-53095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Fix use-after-free of network namespace.\n\nRecently, we got a customer report that CIFS triggers oops while\nreconnecting to a server. [0]\n\nThe workload runs on Kubernetes, and some pods mount CIFS servers\nin non-root network namespaces. The problem rarely happened, but\nit was always while the pod was dying.\n\nThe root cause is wrong reference counting for network namespace.\n\nCIFS uses kernel sockets, which do not hold refcnt of the netns that\nthe socket belongs to. That means CIFS must ensure the socket is\nalways freed before its netns; otherwise, use-after-free happens.\n\nThe repro steps are roughly:\n\n 1. mount CIFS in a non-root netns\n 2. drop packets from the netns\n 3. destroy the netns\n 4. unmount CIFS\n\nWe can reproduce the issue quickly with the script [1] below and see\nthe splat [2] if CONFIG_NET_NS_REFCNT_TRACKER is enabled.\n\nWhen the socket is TCP, it is hard to guarantee the netns lifetime\nwithout holding refcnt due to async timers.\n\nLet\u0027s hold netns refcnt for each socket as done for SMC in commit\n9744d2bf1976 (\"smc: Fix use-after-free in tcp_write_timer_handler().\").\n\nNote that we need to move put_net() from cifs_put_tcp_session() to\nclean_demultiplex_info(); otherwise, __sock_create() still could touch a\nfreed netns while cifsd tries to reconnect from cifs_demultiplex_thread().\n\nAlso, maybe_get_net() cannot be put just before __sock_create() because\nthe code is not under RCU and there is a small chance that the same\naddress happened to be reallocated to another netns.\n\n[0]:\nCIFS: VFS: \\\\XXXXXXXXXXX has not responded in 15 seconds. Reconnecting...\nCIFS: Serverclose failed 4 times, giving up\nUnable to handle kernel paging request at virtual address 14de99e461f84a07\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\n[14de99e461f84a07] address between user and kernel address ranges\nInternal error: Oops: 0000000096000004 [#1] SMP\nModules linked in: cls_bpf sch_ingress nls_utf8 cifs cifs_arc4 cifs_md4 dns_resolver tcp_diag inet_diag veth xt_state xt_connmark nf_conntrack_netlink xt_nat xt_statistic xt_MASQUERADE xt_mark xt_addrtype ipt_REJECT nf_reject_ipv4 nft_chain_nat nf_nat xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment nft_compat nf_tables nfnetlink overlay nls_ascii nls_cp437 sunrpc vfat fat aes_ce_blk aes_ce_cipher ghash_ce sm4_ce_cipher sm4 sm3_ce sm3 sha3_ce sha512_ce sha512_arm64 sha1_ce ena button sch_fq_codel loop fuse configfs dmi_sysfs sha2_ce sha256_arm64 dm_mirror dm_region_hash dm_log dm_mod dax efivarfs\nCPU: 5 PID: 2690970 Comm: cifsd Not tainted 6.1.103-109.184.amzn2023.aarch64 #1\nHardware name: Amazon EC2 r7g.4xlarge/, BIOS 1.0 11/1/2018\npstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : fib_rules_lookup+0x44/0x238\nlr : __fib_lookup+0x64/0xbc\nsp : ffff8000265db790\nx29: ffff8000265db790 x28: 0000000000000000 x27: 000000000000bd01\nx26: 0000000000000000 x25: ffff000b4baf8000 x24: ffff00047b5e4580\nx23: ffff8000265db7e0 x22: 0000000000000000 x21: ffff00047b5e4500\nx20: ffff0010e3f694f8 x19: 14de99e461f849f7 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 3f92800abd010002\nx11: 0000000000000001 x10: ffff0010e3f69420 x9 : ffff800008a6f294\nx8 : 0000000000000000 x7 : 0000000000000006 x6 : 0000000000000000\nx5 : 0000000000000001 x4 : ffff001924354280 x3 : ffff8000265db7e0\nx2 : 0000000000000000 x1 : ffff0010e3f694f8 x0 : ffff00047b5e4500\nCall trace:\n fib_rules_lookup+0x44/0x238\n __fib_lookup+0x64/0xbc\n ip_route_output_key_hash_rcu+0x2c4/0x398\n ip_route_output_key_hash+0x60/0x8c\n tcp_v4_connect+0x290/0x488\n __inet_stream_connect+0x108/0x3d0\n inet_stream_connect+0x50/0x78\n kernel_connect+0x6c/0xac\n generic_ip_conne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53095",
"url": "https://www.suse.com/security/cve/CVE-2024-53095"
},
{
"category": "external",
"summary": "SUSE Bug 1233642 for CVE-2024-53095",
"url": "https://bugzilla.suse.com/1233642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53095"
},
{
"cve": "CVE-2024-53099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()\n\nIf a newly-added link type doesn\u0027t invoke BPF_LINK_TYPE(), accessing\nbpf_link_type_strs[link-\u003etype] may result in an out-of-bounds access.\n\nTo spot such missed invocations early in the future, checking the\nvalidity of link-\u003etype in bpf_link_show_fdinfo() and emitting a warning\nwhen such invocations are missed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53099",
"url": "https://www.suse.com/security/cve/CVE-2024-53099"
},
{
"category": "external",
"summary": "SUSE Bug 1233772 for CVE-2024-53099",
"url": "https://bugzilla.suse.com/1233772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53099"
},
{
"cve": "CVE-2024-53103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer\n\nWhen hvs is released, there is a possibility that vsk-\u003etrans may not\nbe initialized to NULL, which could lead to a dangling pointer.\nThis issue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53103",
"url": "https://www.suse.com/security/cve/CVE-2024-53103"
},
{
"category": "external",
"summary": "SUSE Bug 1234024 for CVE-2024-53103",
"url": "https://bugzilla.suse.com/1234024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53103"
},
{
"cve": "CVE-2024-53105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: page_alloc: move mlocked flag clearance into free_pages_prepare()\n\nSyzbot reported a bad page state problem caused by a page being freed\nusing free_page() still having a mlocked flag at free_pages_prepare()\nstage:\n\n BUG: Bad page state in process syz.5.504 pfn:61f45\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61f45\n flags: 0xfff00000080204(referenced|workingset|mlocked|node=0|zone=1|lastcpupid=0x7ff)\n raw: 00fff00000080204 0000000000000000 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\n page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set\n page_owner tracks the page as allocated\n page last allocated via order 0, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 8443, tgid 8442 (syz.5.504), ts 201884660643, free_ts 201499827394\n set_page_owner include/linux/page_owner.h:32 [inline]\n post_alloc_hook+0x1f3/0x230 mm/page_alloc.c:1537\n prep_new_page mm/page_alloc.c:1545 [inline]\n get_page_from_freelist+0x303f/0x3190 mm/page_alloc.c:3457\n __alloc_pages_noprof+0x292/0x710 mm/page_alloc.c:4733\n alloc_pages_mpol_noprof+0x3e8/0x680 mm/mempolicy.c:2265\n kvm_coalesced_mmio_init+0x1f/0xf0 virt/kvm/coalesced_mmio.c:99\n kvm_create_vm virt/kvm/kvm_main.c:1235 [inline]\n kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5488 [inline]\n kvm_dev_ioctl+0x12dc/0x2240 virt/kvm/kvm_main.c:5530\n __do_compat_sys_ioctl fs/ioctl.c:1007 [inline]\n __se_compat_sys_ioctl+0x510/0xc90 fs/ioctl.c:950\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0xb4/0x110 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x34/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n page last free pid 8399 tgid 8399 stack trace:\n reset_page_owner include/linux/page_owner.h:25 [inline]\n free_pages_prepare mm/page_alloc.c:1108 [inline]\n free_unref_folios+0xf12/0x18d0 mm/page_alloc.c:2686\n folios_put_refs+0x76c/0x860 mm/swap.c:1007\n free_pages_and_swap_cache+0x5c8/0x690 mm/swap_state.c:335\n __tlb_batch_free_encoded_pages mm/mmu_gather.c:136 [inline]\n tlb_batch_pages_flush mm/mmu_gather.c:149 [inline]\n tlb_flush_mmu_free mm/mmu_gather.c:366 [inline]\n tlb_flush_mmu+0x3a3/0x680 mm/mmu_gather.c:373\n tlb_finish_mmu+0xd4/0x200 mm/mmu_gather.c:465\n exit_mmap+0x496/0xc40 mm/mmap.c:1926\n __mmput+0x115/0x390 kernel/fork.c:1348\n exit_mm+0x220/0x310 kernel/exit.c:571\n do_exit+0x9b2/0x28e0 kernel/exit.c:926\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [inline]\n __se_sys_exit_group kernel/exit.c:1097 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1097\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n Modules linked in:\n CPU: 0 UID: 0 PID: 8442 Comm: syz.5.504 Not tainted 6.12.0-rc6-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n bad_page+0x176/0x1d0 mm/page_alloc.c:501\n free_page_is_bad mm/page_alloc.c:918 [inline]\n free_pages_prepare mm/page_alloc.c:1100 [inline]\n free_unref_page+0xed0/0xf20 mm/page_alloc.c:2638\n kvm_destroy_vm virt/kvm/kvm_main.c:1327 [inline]\n kvm_put_kvm+0xc75/0x1350 virt/kvm/kvm_main.c:1386\n kvm_vcpu_release+0x54/0x60 virt/kvm/kvm_main.c:4143\n __fput+0x23f/0x880 fs/file_table.c:431\n task_work_run+0x24f/0x310 kernel/task_work.c:239\n exit_task_work include/linux/task_work.h:43 [inline]\n do_exit+0xa2f/0x28e0 kernel/exit.c:939\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53105",
"url": "https://www.suse.com/security/cve/CVE-2024-53105"
},
{
"category": "external",
"summary": "SUSE Bug 1234069 for CVE-2024-53105",
"url": "https://bugzilla.suse.com/1234069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53105"
},
{
"cve": "CVE-2024-53111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix address wraparound in move_page_tables()\n\nOn 32-bit platforms, it is possible for the expression `len + old_addr \u003c\nold_end` to be false-positive if `len + old_addr` wraps around. \n`old_addr` is the cursor in the old range up to which page table entries\nhave been moved; so if the operation succeeded, `old_addr` is the *end* of\nthe old region, and adding `len` to it can wrap.\n\nThe overflow causes mremap() to mistakenly believe that PTEs have been\ncopied; the consequence is that mremap() bails out, but doesn\u0027t move the\nPTEs back before the new VMA is unmapped, causing anonymous pages in the\nregion to be lost. So basically if userspace tries to mremap() a\nprivate-anon region and hits this bug, mremap() will return an error and\nthe private-anon region\u0027s contents appear to have been zeroed.\n\nThe idea of this check is that `old_end - len` is the original start\naddress, and writing the check that way also makes it easier to read; so\nfix the check by rearranging the comparison accordingly.\n\n(An alternate fix would be to refactor this function by introducing an\n\"orig_old_start\" variable or such.)\n\n\nTested in a VM with a 32-bit X86 kernel; without the patch:\n\n```\nuser@horn:~/big_mremap$ cat test.c\n#define _GNU_SOURCE\n#include \u003cstdlib.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003cerr.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define ADDR1 ((void*)0x60000000)\n#define ADDR2 ((void*)0x10000000)\n#define SIZE 0x50000000uL\n\nint main(void) {\n unsigned char *p1 = mmap(ADDR1, SIZE, PROT_READ|PROT_WRITE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p1 == MAP_FAILED)\n err(1, \"mmap 1\");\n unsigned char *p2 = mmap(ADDR2, SIZE, PROT_NONE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p2 == MAP_FAILED)\n err(1, \"mmap 2\");\n *p1 = 0x41;\n printf(\"first char is 0x%02hhx\\n\", *p1);\n unsigned char *p3 = mremap(p1, SIZE, SIZE,\n MREMAP_MAYMOVE|MREMAP_FIXED, p2);\n if (p3 == MAP_FAILED) {\n printf(\"mremap() failed; first char is 0x%02hhx\\n\", *p1);\n } else {\n printf(\"mremap() succeeded; first char is 0x%02hhx\\n\", *p3);\n }\n}\nuser@horn:~/big_mremap$ gcc -static -o test test.c\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() failed; first char is 0x00\n```\n\nWith the patch:\n\n```\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() succeeded; first char is 0x41\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53111",
"url": "https://www.suse.com/security/cve/CVE-2024-53111"
},
{
"category": "external",
"summary": "SUSE Bug 1234086 for CVE-2024-53111",
"url": "https://bugzilla.suse.com/1234086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53111"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Improve MSG_ZEROCOPY error handling\n\nAdd a missing kfree_skb() to prevent memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53117",
"url": "https://www.suse.com/security/cve/CVE-2024-53117"
},
{
"category": "external",
"summary": "SUSE Bug 1234079 for CVE-2024-53117",
"url": "https://bugzilla.suse.com/1234079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53117"
},
{
"cve": "CVE-2024-53118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Fix sk_error_queue memory leak\n\nKernel queues MSG_ZEROCOPY completion notifications on the error queue.\nWhere they remain, until explicitly recv()ed. To prevent memory leaks,\nclean up the queue when the socket is destroyed.\n\nunreferenced object 0xffff8881028beb00 (size 224):\n comm \"vsock_test\", pid 1218, jiffies 4294694897\n hex dump (first 32 bytes):\n 90 b0 21 17 81 88 ff ff 90 b0 21 17 81 88 ff ff ..!.......!.....\n 00 00 00 00 00 00 00 00 00 b0 21 17 81 88 ff ff ..........!.....\n backtrace (crc 6c7031ca):\n [\u003cffffffff81418ef7\u003e] kmem_cache_alloc_node_noprof+0x2f7/0x370\n [\u003cffffffff81d35882\u003e] __alloc_skb+0x132/0x180\n [\u003cffffffff81d2d32b\u003e] sock_omalloc+0x4b/0x80\n [\u003cffffffff81d3a8ae\u003e] msg_zerocopy_realloc+0x9e/0x240\n [\u003cffffffff81fe5cb2\u003e] virtio_transport_send_pkt_info+0x412/0x4c0\n [\u003cffffffff81fe6183\u003e] virtio_transport_stream_enqueue+0x43/0x50\n [\u003cffffffff81fe0813\u003e] vsock_connectible_sendmsg+0x373/0x450\n [\u003cffffffff81d233d5\u003e] ____sys_sendmsg+0x365/0x3a0\n [\u003cffffffff81d246f4\u003e] ___sys_sendmsg+0x84/0xd0\n [\u003cffffffff81d26f47\u003e] __sys_sendmsg+0x47/0x80\n [\u003cffffffff820d3df3\u003e] do_syscall_64+0x93/0x180\n [\u003cffffffff8220012b\u003e] entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53118",
"url": "https://www.suse.com/security/cve/CVE-2024-53118"
},
{
"category": "external",
"summary": "SUSE Bug 1234071 for CVE-2024-53118",
"url": "https://bugzilla.suse.com/1234071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53118"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: solidrun: Fix UB bug with devres\n\nIn psnet_open_pf_bar() and snet_open_vf_bar() a string later passed to\npcim_iomap_regions() is placed on the stack. Neither\npcim_iomap_regions() nor the functions it calls copy that string.\n\nShould the string later ever be used, this, consequently, causes\nundefined behavior since the stack frame will by then have disappeared.\n\nFix the bug by allocating the strings on the heap through\ndevm_kasprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53126",
"url": "https://www.suse.com/security/cve/CVE-2024-53126"
},
{
"category": "external",
"summary": "SUSE Bug 1234158 for CVE-2024-53126",
"url": "https://bugzilla.suse.com/1234158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53126"
},
{
"cve": "CVE-2024-53127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\"\n\nThe commit 8396c793ffdf (\"mmc: dw_mmc: Fix IDMAC operation with pages\nbigger than 4K\") increased the max_req_size, even for 4K pages, causing\nvarious issues:\n- Panic booting the kernel/rootfs from an SD card on Rockchip RK3566\n- Panic booting the kernel/rootfs from an SD card on StarFive JH7100\n- \"swiotlb buffer is full\" and data corruption on StarFive JH7110\n\nAt this stage no fix have been found, so it\u0027s probably better to just\nrevert the change.\n\nThis reverts commit 8396c793ffdf28bb8aee7cfe0891080f8cab7890.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53127",
"url": "https://www.suse.com/security/cve/CVE-2024-53127"
},
{
"category": "external",
"summary": "SUSE Bug 1234153 for CVE-2024-53127",
"url": "https://bugzilla.suse.com/1234153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53127"
},
{
"cve": "CVE-2024-53129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/rockchip: vop: Fix a dereferenced before check warning\n\nThe \u0027state\u0027 can\u0027t be NULL, we should check crtc_state.\n\nFix warning:\ndrivers/gpu/drm/rockchip/rockchip_drm_vop.c:1096\nvop_plane_atomic_async_check() warn: variable dereferenced before check\n\u0027state\u0027 (see line 1077)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53129",
"url": "https://www.suse.com/security/cve/CVE-2024-53129"
},
{
"category": "external",
"summary": "SUSE Bug 1234155 for CVE-2024-53129",
"url": "https://bugzilla.suse.com/1234155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53129"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle dml allocation failure to avoid crash\n\n[Why]\nIn the case where a dml allocation fails for any reason, the\ncurrent state\u0027s dml contexts would no longer be valid. Then\nsubsequent calls dc_state_copy_internal would shallow copy\ninvalid memory and if the new state was released, a double\nfree would occur.\n\n[How]\nReset dml pointers in new_state to NULL and avoid invalid\npointer\n\n(cherry picked from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53133",
"url": "https://www.suse.com/security/cve/CVE-2024-53133"
},
{
"category": "external",
"summary": "SUSE Bug 1234221 for CVE-2024-53133",
"url": "https://bugzilla.suse.com/1234221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53133"
},
{
"cve": "CVE-2024-53134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx93-blk-ctrl: correct remove path\n\nThe check condition should be \u0027i \u003c bc-\u003eonecell_data.num_domains\u0027, not\n\u0027bc-\u003eonecell_data.num_domains\u0027 which will make the look never finish\nand cause kernel panic.\n\nAlso disable runtime to address\n\"imx93-blk-ctrl 4ac10000.system-controller: Unbalanced pm_runtime_enable!\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53134",
"url": "https://www.suse.com/security/cve/CVE-2024-53134"
},
{
"category": "external",
"summary": "SUSE Bug 1234159 for CVE-2024-53134",
"url": "https://bugzilla.suse.com/1234159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53134"
},
{
"cve": "CVE-2024-53136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: revert \"mm: shmem: fix data-race in shmem_getattr()\"\n\nRevert d949d1d14fa2 (\"mm: shmem: fix data-race in shmem_getattr()\") as\nsuggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over\nNFS.\n\nAs Hugh commented, \"added just to silence a syzbot sanitizer splat: added\nwhere there has never been any practical problem\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53136",
"url": "https://www.suse.com/security/cve/CVE-2024-53136"
},
{
"category": "external",
"summary": "SUSE Bug 1234161 for CVE-2024-53136",
"url": "https://bugzilla.suse.com/1234161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53136"
},
{
"cve": "CVE-2024-53141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: add missing range check in bitmap_ip_uadt\n\nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,\nthe values of ip and ip_to are slightly swapped. Therefore, the range check\nfor ip should be done later, but this part is missing and it seems that the\nvulnerability occurs.\n\nSo we should add missing range checks and remove unnecessary range checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53141",
"url": "https://www.suse.com/security/cve/CVE-2024-53141"
},
{
"category": "external",
"summary": "SUSE Bug 1234381 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "external",
"summary": "SUSE Bug 1245778 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1245778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53141"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE\n\nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4\n(\"Bluetooth: Always request for user confirmation for Just Works\")\nalways request user confirmation with confirm_hint set since the\nlikes of bluetoothd have dedicated policy around JUST_WORKS method\n(e.g. main.conf:JustWorksRepairing).\n\nCVE: CVE-2024-8805",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53144",
"url": "https://www.suse.com/security/cve/CVE-2024-53144"
},
{
"category": "external",
"summary": "SUSE Bug 1234690 for CVE-2024-53144",
"url": "https://bugzilla.suse.com/1234690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53144"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: Flush partial mappings in error case\n\nIf some remap_pfn_range() calls succeeded before one failed, we still have\nbuffer pages mapped into the userspace page tables when we drop the buffer\nreference with comedi_buf_map_put(bm). The userspace mappings are only\ncleaned up later in the mmap error path.\n\nFix it by explicitly flushing all mappings in our VMA on the error path.\n\nSee commit 79a61cc3fc04 (\"mm: avoid leaving partial pfn mappings around in\nerror case\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53148",
"url": "https://www.suse.com/security/cve/CVE-2024-53148"
},
{
"category": "external",
"summary": "SUSE Bug 1234832 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "external",
"summary": "SUSE Bug 1234833 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53148"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: Address an integer overflow\n\nDan Carpenter reports:\n\u003e Commit 78147ca8b4a9 (\"svcrdma: Add a \"parsed chunk list\" data\n\u003e structure\") from Jun 22, 2020 (linux-next), leads to the following\n\u003e Smatch static checker warning:\n\u003e\n\u003e\tnet/sunrpc/xprtrdma/svc_rdma_recvfrom.c:498 xdr_check_write_chunk()\n\u003e\twarn: potential user controlled sizeof overflow \u0027segcount * 4 * 4\u0027\n\u003e\n\u003e net/sunrpc/xprtrdma/svc_rdma_recvfrom.c\n\u003e 488 static bool xdr_check_write_chunk(struct svc_rdma_recv_ctxt *rctxt)\n\u003e 489 {\n\u003e 490 u32 segcount;\n\u003e 491 __be32 *p;\n\u003e 492\n\u003e 493 if (xdr_stream_decode_u32(\u0026rctxt-\u003erc_stream, \u0026segcount))\n\u003e ^^^^^^^^\n\u003e\n\u003e 494 return false;\n\u003e 495\n\u003e 496 /* A bogus segcount causes this buffer overflow check to fail. */\n\u003e 497 p = xdr_inline_decode(\u0026rctxt-\u003erc_stream,\n\u003e --\u003e 498 segcount * rpcrdma_segment_maxsz * sizeof(*p));\n\u003e\n\u003e\n\u003e segcount is an untrusted u32. On 32bit systems anything \u003e= SIZE_MAX / 16 will\n\u003e have an integer overflow and some those values will be accepted by\n\u003e xdr_inline_decode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53151",
"url": "https://www.suse.com/security/cve/CVE-2024-53151"
},
{
"category": "external",
"summary": "SUSE Bug 1234829 for CVE-2024-53151",
"url": "https://bugzilla.suse.com/1234829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53151"
},
{
"cve": "CVE-2024-53154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clk-apple-nco: Add NULL check in applnco_probe\n\nAdd NULL check in applnco_probe, to handle kernel NULL pointer\ndereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53154",
"url": "https://www.suse.com/security/cve/CVE-2024-53154"
},
{
"category": "external",
"summary": "SUSE Bug 1234826 for CVE-2024-53154",
"url": "https://bugzilla.suse.com/1234826"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53154"
},
{
"cve": "CVE-2024-53155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix uninitialized value in ocfs2_file_read_iter()\n\nSyzbot has reported the following KMSAN splat:\n\nBUG: KMSAN: uninit-value in ocfs2_file_read_iter+0x9a4/0xf80\n ocfs2_file_read_iter+0x9a4/0xf80\n __io_read+0x8d4/0x20f0\n io_read+0x3e/0xf0\n io_issue_sqe+0x42b/0x22c0\n io_wq_submit_work+0xaf9/0xdc0\n io_worker_handle_work+0xd13/0x2110\n io_wq_worker+0x447/0x1410\n ret_from_fork+0x6f/0x90\n ret_from_fork_asm+0x1a/0x30\n\nUninit was created at:\n __alloc_pages_noprof+0x9a7/0xe00\n alloc_pages_mpol_noprof+0x299/0x990\n alloc_pages_noprof+0x1bf/0x1e0\n allocate_slab+0x33a/0x1250\n ___slab_alloc+0x12ef/0x35e0\n kmem_cache_alloc_bulk_noprof+0x486/0x1330\n __io_alloc_req_refill+0x84/0x560\n io_submit_sqes+0x172f/0x2f30\n __se_sys_io_uring_enter+0x406/0x41c0\n __x64_sys_io_uring_enter+0x11f/0x1a0\n x64_sys_call+0x2b54/0x3ba0\n do_syscall_64+0xcd/0x1e0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nSince an instance of \u0027struct kiocb\u0027 may be passed from the block layer\nwith \u0027private\u0027 field uninitialized, introduce \u0027ocfs2_iocb_init_rw_locked()\u0027\nand use it from where \u0027ocfs2_dio_end_io()\u0027 might take care, i.e. in\n\u0027ocfs2_file_read_iter()\u0027 and \u0027ocfs2_file_write_iter()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53155",
"url": "https://www.suse.com/security/cve/CVE-2024-53155"
},
{
"category": "external",
"summary": "SUSE Bug 1234855 for CVE-2024-53155",
"url": "https://bugzilla.suse.com/1234855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53155"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53159"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53159",
"url": "https://www.suse.com/security/cve/CVE-2024-53159"
},
{
"category": "external",
"summary": "SUSE Bug 1234848 for CVE-2024-53159",
"url": "https://bugzilla.suse.com/1234848"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53159"
},
{
"cve": "CVE-2024-53160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu\n\nKCSAN reports a data race when access the krcp-\u003emonitor_work.timer.expires\nvariable in the schedule_delayed_monitor_work() function:\n\n\u003csnip\u003e\nBUG: KCSAN: data-race in __mod_timer / kvfree_call_rcu\n\nread to 0xffff888237d1cce8 of 8 bytes by task 10149 on cpu 1:\n schedule_delayed_monitor_work kernel/rcu/tree.c:3520 [inline]\n kvfree_call_rcu+0x3b8/0x510 kernel/rcu/tree.c:3839\n trie_update_elem+0x47c/0x620 kernel/bpf/lpm_trie.c:441\n bpf_map_update_value+0x324/0x350 kernel/bpf/syscall.c:203\n generic_map_update_batch+0x401/0x520 kernel/bpf/syscall.c:1849\n bpf_map_do_batch+0x28c/0x3f0 kernel/bpf/syscall.c:5143\n __sys_bpf+0x2e5/0x7a0\n __do_sys_bpf kernel/bpf/syscall.c:5741 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5739 [inline]\n __x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5739\n x64_sys_call+0x2625/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nwrite to 0xffff888237d1cce8 of 8 bytes by task 56 on cpu 0:\n __mod_timer+0x578/0x7f0 kernel/time/timer.c:1173\n add_timer_global+0x51/0x70 kernel/time/timer.c:1330\n __queue_delayed_work+0x127/0x1a0 kernel/workqueue.c:2523\n queue_delayed_work_on+0xdf/0x190 kernel/workqueue.c:2552\n queue_delayed_work include/linux/workqueue.h:677 [inline]\n schedule_delayed_monitor_work kernel/rcu/tree.c:3525 [inline]\n kfree_rcu_monitor+0x5e8/0x660 kernel/rcu/tree.c:3643\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0x483/0x9a0 kernel/workqueue.c:3310\n worker_thread+0x51d/0x6f0 kernel/workqueue.c:3391\n kthread+0x1d1/0x210 kernel/kthread.c:389\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 UID: 0 PID: 56 Comm: kworker/u8:4 Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events_unbound kfree_rcu_monitor\n\u003csnip\u003e\n\nkfree_rcu_monitor() rearms the work if a \"krcp\" has to be still\noffloaded and this is done without holding krcp-\u003elock, whereas\nthe kvfree_call_rcu() holds it.\n\nFix it by acquiring the \"krcp-\u003elock\" for kfree_rcu_monitor() so\nboth functions do not race anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53160",
"url": "https://www.suse.com/security/cve/CVE-2024-53160"
},
{
"category": "external",
"summary": "SUSE Bug 1234810 for CVE-2024-53160",
"url": "https://bugzilla.suse.com/1234810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53160"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix ordering of qlen adjustment\n\nChanges to sch-\u003eq.qlen around qdisc_tree_reduce_backlog() need to happen\n_before_ a call to said function because otherwise it may fail to notify\nparent qdiscs when the child is about to become empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53164",
"url": "https://www.suse.com/security/cve/CVE-2024-53164"
},
{
"category": "external",
"summary": "SUSE Bug 1234863 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "external",
"summary": "SUSE Bug 1246019 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1246019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53164"
},
{
"cve": "CVE-2024-53166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix bfqq uaf in bfq_limit_depth()\n\nSet new allocated bfqq to bic or remove freed bfqq from bic are both\nprotected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq\nfrom bic without the lock, this can lead to UAF if the io_context is\nshared by multiple tasks.\n\nFor example, test bfq with io_uring can trigger following UAF in v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfqq_group+0x15/0x50\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x80\n print_address_description.constprop.0+0x66/0x300\n print_report+0x3e/0x70\n kasan_report+0xb4/0xf0\n bfqq_group+0x15/0x50\n bfqq_request_over_limit+0x130/0x9a0\n bfq_limit_depth+0x1b5/0x480\n __blk_mq_alloc_requests+0x2b5/0xa00\n blk_mq_get_new_requests+0x11d/0x1d0\n blk_mq_submit_bio+0x286/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __block_write_full_folio+0x3d0/0x640\n writepage_cb+0x3b/0xc0\n write_cache_pages+0x254/0x6c0\n write_cache_pages+0x254/0x6c0\n do_writepages+0x192/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nAllocated by task 808602:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_slab_alloc+0x83/0x90\n kmem_cache_alloc_node+0x1b1/0x6d0\n bfq_get_queue+0x138/0xfa0\n bfq_get_bfqq_handle_split+0xe3/0x2c0\n bfq_init_rq+0x196/0xbb0\n bfq_insert_request.isra.0+0xb5/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_insert_request+0x15d/0x440\n blk_mq_submit_bio+0x8a4/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __blkdev_direct_IO_async+0x2dd/0x330\n blkdev_write_iter+0x39a/0x450\n io_write+0x22a/0x840\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFreed by task 808589:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n __kasan_slab_free+0x126/0x1b0\n kmem_cache_free+0x10c/0x750\n bfq_put_queue+0x2dd/0x770\n __bfq_insert_request.isra.0+0x155/0x7a0\n bfq_insert_request.isra.0+0x122/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_dispatch_plug_list+0x528/0x7e0\n blk_mq_flush_plug_list.part.0+0xe5/0x590\n __blk_flush_plug+0x3b/0x90\n blk_finish_plug+0x40/0x60\n do_writepages+0x19d/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFix the problem by protecting bic_to_bfqq() with bfqd-\u003elock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53166",
"url": "https://www.suse.com/security/cve/CVE-2024-53166"
},
{
"category": "external",
"summary": "SUSE Bug 1234884 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "external",
"summary": "SUSE Bug 1234885 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-53168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: fix one UAF issue caused by sunrpc kernel tcp socket\n\nBUG: KASAN: slab-use-after-free in tcp_write_timer_handler+0x156/0x3e0\nRead of size 1 at addr ffff888111f322cd by task swapper/0/0\n\nCPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc4-dirty #7\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x68/0xa0\n print_address_description.constprop.0+0x2c/0x3d0\n print_report+0xb4/0x270\n kasan_report+0xbd/0xf0\n tcp_write_timer_handler+0x156/0x3e0\n tcp_write_timer+0x66/0x170\n call_timer_fn+0xfb/0x1d0\n __run_timers+0x3f8/0x480\n run_timer_softirq+0x9b/0x100\n handle_softirqs+0x153/0x390\n __irq_exit_rcu+0x103/0x120\n irq_exit_rcu+0xe/0x20\n sysvec_apic_timer_interrupt+0x76/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\nCode: 4c 01 c7 4c 29 c2 e9 72 ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90\n 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 f8 25 00 fb f4 \u003cfa\u003e c3 cc cc cc\n cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90\nRSP: 0018:ffffffffa2007e28 EFLAGS: 00000242\nRAX: 00000000000f3b31 RBX: 1ffffffff4400fc7 RCX: ffffffffa09c3196\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9f00590f\nRBP: 0000000000000000 R08: 0000000000000001 R09: ffffed102360835d\nR10: ffff88811b041aeb R11: 0000000000000001 R12: 0000000000000000\nR13: ffffffffa202d7c0 R14: 0000000000000000 R15: 00000000000147d0\n default_idle_call+0x6b/0xa0\n cpuidle_idle_call+0x1af/0x1f0\n do_idle+0xbc/0x130\n cpu_startup_entry+0x33/0x40\n rest_init+0x11f/0x210\n start_kernel+0x39a/0x420\n x86_64_start_reservations+0x18/0x30\n x86_64_start_kernel+0x97/0xa0\n common_startup_64+0x13e/0x141\n \u003c/TASK\u003e\n\nAllocated by task 595:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_slab_alloc+0x87/0x90\n kmem_cache_alloc_noprof+0x12b/0x3f0\n copy_net_ns+0x94/0x380\n create_new_namespaces+0x24c/0x500\n unshare_nsproxy_namespaces+0x75/0xf0\n ksys_unshare+0x24e/0x4f0\n __x64_sys_unshare+0x1f/0x30\n do_syscall_64+0x70/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 100:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x54/0x70\n kmem_cache_free+0x156/0x5d0\n cleanup_net+0x5d3/0x670\n process_one_work+0x776/0xa90\n worker_thread+0x2e2/0x560\n kthread+0x1a8/0x1f0\n ret_from_fork+0x34/0x60\n ret_from_fork_asm+0x1a/0x30\n\nReproduction script:\n\nmkdir -p /mnt/nfsshare\nmkdir -p /mnt/nfs/netns_1\nmkfs.ext4 /dev/sdb\nmount /dev/sdb /mnt/nfsshare\nsystemctl restart nfs-server\nchmod 777 /mnt/nfsshare\nexportfs -i -o rw,no_root_squash *:/mnt/nfsshare\n\nip netns add netns_1\nip link add name veth_1_peer type veth peer veth_1\nifconfig veth_1_peer 11.11.0.254 up\nip link set veth_1 netns netns_1\nip netns exec netns_1 ifconfig veth_1 11.11.0.1\n\nip netns exec netns_1 /root/iptables -A OUTPUT -d 11.11.0.254 -p tcp \\\n\t--tcp-flags FIN FIN -j DROP\n\n(note: In my environment, a DESTROY_CLIENTID operation is always sent\n immediately, breaking the nfs tcp connection.)\nip netns exec netns_1 timeout -s 9 300 mount -t nfs -o proto=tcp,vers=4.1 \\\n\t11.11.0.254:/mnt/nfsshare /mnt/nfs/netns_1\n\nip netns del netns_1\n\nThe reason here is that the tcp socket in netns_1 (nfs side) has been\nshutdown and closed (done in xs_destroy), but the FIN message (with ack)\nis discarded, and the nfsd side keeps sending retransmission messages.\nAs a result, when the tcp sock in netns_1 processes the received message,\nit sends the message (FIN message) in the sending queue, and the tcp timer\nis re-established. When the network namespace is deleted, the net structure\naccessed by tcp\u0027s timer handler function causes problems.\n\nTo fix this problem, let\u0027s hold netns refcnt for the tcp kernel socket as\ndone in other modules. This is an ugly hack which can easily be backported\nto earlier kernels. A proper fix which cleans up the interfaces will\nfollow, but may not be so easy to backport.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53168",
"url": "https://www.suse.com/security/cve/CVE-2024-53168"
},
{
"category": "external",
"summary": "SUSE Bug 1234887 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "external",
"summary": "SUSE Bug 1243650 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1243650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53168"
},
{
"cve": "CVE-2024-53169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fabrics: fix kernel crash while shutting down controller\n\nThe nvme keep-alive operation, which executes at a periodic interval,\ncould potentially sneak in while shutting down a fabric controller.\nThis may lead to a race between the fabric controller admin queue\ndestroy code path (invoked while shutting down controller) and hw/hctx\nqueue dispatcher called from the nvme keep-alive async request queuing\noperation. This race could lead to the kernel crash shown below:\n\nCall Trace:\n autoremove_wake_function+0x0/0xbc (unreliable)\n __blk_mq_sched_dispatch_requests+0x114/0x24c\n blk_mq_sched_dispatch_requests+0x44/0x84\n blk_mq_run_hw_queue+0x140/0x220\n nvme_keep_alive_work+0xc8/0x19c [nvme_core]\n process_one_work+0x200/0x4e0\n worker_thread+0x340/0x504\n kthread+0x138/0x140\n start_kernel_thread+0x14/0x18\n\nWhile shutting down fabric controller, if nvme keep-alive request sneaks\nin then it would be flushed off. The nvme_keep_alive_end_io function is\nthen invoked to handle the end of the keep-alive operation which\ndecrements the admin-\u003eq_usage_counter and assuming this is the last/only\nrequest in the admin queue then the admin-\u003eq_usage_counter becomes zero.\nIf that happens then blk-mq destroy queue operation (blk_mq_destroy_\nqueue()) which could be potentially running simultaneously on another\ncpu (as this is the controller shutdown code path) would forward\nprogress and deletes the admin queue. So, now from this point onward\nwe are not supposed to access the admin queue resources. However the\nissue here\u0027s that the nvme keep-alive thread running hw/hctx queue\ndispatch operation hasn\u0027t yet finished its work and so it could still\npotentially access the admin queue resource while the admin queue had\nbeen already deleted and that causes the above crash.\n\nThe above kernel crash is regression caused due to changes implemented\nin commit a54a93d0e359 (\"nvme: move stopping keep-alive into\nnvme_uninit_ctrl()\"). Ideally we should stop keep-alive before destroyin\ng the admin queue and freeing the admin tagset so that it wouldn\u0027t sneak\nin during the shutdown operation. However we removed the keep alive stop\noperation from the beginning of the controller shutdown code path in commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\")\nand added it under nvme_uninit_ctrl() which executes very late in the\nshutdown code path after the admin queue is destroyed and its tagset is\nremoved. So this change created the possibility of keep-alive sneaking in\nand interfering with the shutdown operation and causing observed kernel\ncrash.\n\nTo fix the observed crash, we decided to move nvme_stop_keep_alive() from\nnvme_uninit_ctrl() to nvme_remove_admin_tag_set(). This change would ensure\nthat we don\u0027t forward progress and delete the admin queue until the keep-\nalive operation is finished (if it\u0027s in-flight) or cancelled and that would\nhelp contain the race condition explained above and hence avoid the crash.\n\nMoving nvme_stop_keep_alive() to nvme_remove_admin_tag_set() instead of\nadding nvme_stop_keep_alive() to the beginning of the controller shutdown\ncode path in nvme_stop_ctrl(), as was the case earlier before commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\"),\nwould help save one callsite of nvme_stop_keep_alive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53169",
"url": "https://www.suse.com/security/cve/CVE-2024-53169"
},
{
"category": "external",
"summary": "SUSE Bug 1234900 for CVE-2024-53169",
"url": "https://bugzilla.suse.com/1234900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53169"
},
{
"cve": "CVE-2024-53170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix uaf for flush rq while iterating tags\n\nblk_mq_clear_flush_rq_mapping() is not called during scsi probe, by\nchecking blk_queue_init_done(). However, QUEUE_FLAG_INIT_DONE is cleared\nin del_gendisk by commit aec89dc5d421 (\"block: keep q_usage_counter in\natomic mode after del_gendisk\"), hence for disk like scsi, following\nblk_mq_destroy_queue() will not clear flush rq from tags-\u003erqs[] as well,\ncause following uaf that is found by our syzkaller for v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in blk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nRead of size 4 at addr ffff88811c969c20 by task kworker/1:2H/224909\n\nCPU: 1 PID: 224909 Comm: kworker/1:2H Not tainted 6.6.0-ga836a5060850 #32\nWorkqueue: kblockd blk_mq_timeout_work\nCall Trace:\n\n__dump_stack lib/dump_stack.c:88 [inline]\ndump_stack_lvl+0x91/0xf0 lib/dump_stack.c:106\nprint_address_description.constprop.0+0x66/0x300 mm/kasan/report.c:364\nprint_report+0x3e/0x70 mm/kasan/report.c:475\nkasan_report+0xb8/0xf0 mm/kasan/report.c:588\nblk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nbt_iter block/blk-mq-tag.c:288 [inline]\n__sbitmap_for_each_set include/linux/sbitmap.h:295 [inline]\nsbitmap_for_each_set include/linux/sbitmap.h:316 [inline]\nbt_for_each+0x455/0x790 block/blk-mq-tag.c:325\nblk_mq_queue_tag_busy_iter+0x320/0x740 block/blk-mq-tag.c:534\nblk_mq_timeout_work+0x1a3/0x7b0 block/blk-mq.c:1673\nprocess_one_work+0x7c4/0x1450 kernel/workqueue.c:2631\nprocess_scheduled_works kernel/workqueue.c:2704 [inline]\nworker_thread+0x804/0xe40 kernel/workqueue.c:2785\nkthread+0x346/0x450 kernel/kthread.c:388\nret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\nret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:293\n\nAllocated by task 942:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\n____kasan_kmalloc mm/kasan/common.c:374 [inline]\n__kasan_kmalloc mm/kasan/common.c:383 [inline]\n__kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:380\nkasan_kmalloc include/linux/kasan.h:198 [inline]\n__do_kmalloc_node mm/slab_common.c:1007 [inline]\n__kmalloc_node+0x69/0x170 mm/slab_common.c:1014\nkmalloc_node include/linux/slab.h:620 [inline]\nkzalloc_node include/linux/slab.h:732 [inline]\nblk_alloc_flush_queue+0x144/0x2f0 block/blk-flush.c:499\nblk_mq_alloc_hctx+0x601/0x940 block/blk-mq.c:3788\nblk_mq_alloc_and_init_hctx+0x27f/0x330 block/blk-mq.c:4261\nblk_mq_realloc_hw_ctxs+0x488/0x5e0 block/blk-mq.c:4294\nblk_mq_init_allocated_queue+0x188/0x860 block/blk-mq.c:4350\nblk_mq_init_queue_data block/blk-mq.c:4166 [inline]\nblk_mq_init_queue+0x8d/0x100 block/blk-mq.c:4176\nscsi_alloc_sdev+0x843/0xd50 drivers/scsi/scsi_scan.c:335\nscsi_probe_and_add_lun+0x77c/0xde0 drivers/scsi/scsi_scan.c:1189\n__scsi_scan_target+0x1fc/0x5a0 drivers/scsi/scsi_scan.c:1727\nscsi_scan_channel drivers/scsi/scsi_scan.c:1815 [inline]\nscsi_scan_channel+0x14b/0x1e0 drivers/scsi/scsi_scan.c:1791\nscsi_scan_host_selected+0x2fe/0x400 drivers/scsi/scsi_scan.c:1844\nscsi_scan+0x3a0/0x3f0 drivers/scsi/scsi_sysfs.c:151\nstore_scan+0x2a/0x60 drivers/scsi/scsi_sysfs.c:191\ndev_attr_store+0x5c/0x90 drivers/base/core.c:2388\nsysfs_kf_write+0x11c/0x170 fs/sysfs/file.c:136\nkernfs_fop_write_iter+0x3fc/0x610 fs/kernfs/file.c:338\ncall_write_iter include/linux/fs.h:2083 [inline]\nnew_sync_write+0x1b4/0x2d0 fs/read_write.c:493\nvfs_write+0x76c/0xb00 fs/read_write.c:586\nksys_write+0x127/0x250 fs/read_write.c:639\ndo_syscall_x64 arch/x86/entry/common.c:51 [inline]\ndo_syscall_64+0x70/0x120 arch/x86/entry/common.c:81\nentry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nFreed by task 244687:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\nkasan_save_free_info+0x2b/0x50 mm/kasan/generic.c:522\n____kasan_slab_free mm/kasan/common.c:236 [inline]\n__kasan_slab_free+0x12a/0x1b0 mm/kasan/common.c:244\nkasan_slab_free include/linux/kasan.h:164 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53170",
"url": "https://www.suse.com/security/cve/CVE-2024-53170"
},
{
"category": "external",
"summary": "SUSE Bug 1234888 for CVE-2024-53170",
"url": "https://bugzilla.suse.com/1234888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53170"
},
{
"cve": "CVE-2024-53171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit\n\nAfter an insertion in TNC, the tree might split and cause a node to\nchange its `znode-\u003eparent`. A further deletion of other nodes in the\ntree (which also could free the nodes), the aforementioned node\u0027s\n`znode-\u003ecparent` could still point to a freed node. This\n`znode-\u003ecparent` may not be updated when getting nodes to commit in\n`ubifs_tnc_start_commit()`. This could then trigger a use-after-free\nwhen accessing the `znode-\u003ecparent` in `write_index()` in\n`ubifs_tnc_end_commit()`.\n\nThis can be triggered by running\n\n rm -f /etc/test-file.bin\n dd if=/dev/urandom of=/etc/test-file.bin bs=1M count=60 conv=fsync\n\nin a loop, and with `CONFIG_UBIFS_FS_AUTHENTICATION`. KASAN then\nreports:\n\n BUG: KASAN: use-after-free in ubifs_tnc_end_commit+0xa5c/0x1950\n Write of size 32 at addr ffffff800a3af86c by task ubifs_bgt0_20/153\n\n Call trace:\n dump_backtrace+0x0/0x340\n show_stack+0x18/0x24\n dump_stack_lvl+0x9c/0xbc\n print_address_description.constprop.0+0x74/0x2b0\n kasan_report+0x1d8/0x1f0\n kasan_check_range+0xf8/0x1a0\n memcpy+0x84/0xf4\n ubifs_tnc_end_commit+0xa5c/0x1950\n do_commit+0x4e0/0x1340\n ubifs_bg_thread+0x234/0x2e0\n kthread+0x36c/0x410\n ret_from_fork+0x10/0x20\n\n Allocated by task 401:\n kasan_save_stack+0x38/0x70\n __kasan_kmalloc+0x8c/0xd0\n __kmalloc+0x34c/0x5bc\n tnc_insert+0x140/0x16a4\n ubifs_tnc_add+0x370/0x52c\n ubifs_jnl_write_data+0x5d8/0x870\n do_writepage+0x36c/0x510\n ubifs_writepage+0x190/0x4dc\n __writepage+0x58/0x154\n write_cache_pages+0x394/0x830\n do_writepages+0x1f0/0x5b0\n filemap_fdatawrite_wbc+0x170/0x25c\n file_write_and_wait_range+0x140/0x190\n ubifs_fsync+0xe8/0x290\n vfs_fsync_range+0xc0/0x1e4\n do_fsync+0x40/0x90\n __arm64_sys_fsync+0x34/0x50\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\n Freed by task 403:\n kasan_save_stack+0x38/0x70\n kasan_set_track+0x28/0x40\n kasan_set_free_info+0x28/0x4c\n __kasan_slab_free+0xd4/0x13c\n kfree+0xc4/0x3a0\n tnc_delete+0x3f4/0xe40\n ubifs_tnc_remove_range+0x368/0x73c\n ubifs_tnc_remove_ino+0x29c/0x2e0\n ubifs_jnl_delete_inode+0x150/0x260\n ubifs_evict_inode+0x1d4/0x2e4\n evict+0x1c8/0x450\n iput+0x2a0/0x3c4\n do_unlinkat+0x2cc/0x490\n __arm64_sys_unlinkat+0x90/0x100\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\nThe offending `memcpy()` in `ubifs_copy_hash()` has a use-after-free\nwhen a node becomes root in TNC but still has a `cparent` to an already\nfreed node. More specifically, consider the following TNC:\n\n zroot\n /\n /\n zp1\n /\n /\n zn\n\nInserting a new node `zn_new` with a key smaller then `zn` will trigger\na split in `tnc_insert()` if `zp1` is full:\n\n zroot\n / \\\n / \\\n zp1 zp2\n / \\\n / \\\n zn_new zn\n\n`zn-\u003eparent` has now been moved to `zp2`, *but* `zn-\u003ecparent` still\npoints to `zp1`.\n\nNow, consider a removal of all the nodes _except_ `zn`. Just when\n`tnc_delete()` is about to delete `zroot` and `zp2`:\n\n zroot\n \\\n \\\n zp2\n \\\n \\\n zn\n\n`zroot` and `zp2` get freed and the tree collapses:\n\n zn\n\n`zn` now becomes the new `zroot`.\n\n`get_znodes_to_commit()` will now only find `zn`, the new `zroot`, and\n`write_index()` will check its `znode-\u003ecparent` that wrongly points to\nthe already freed `zp1`. `ubifs_copy_hash()` thus gets wrongly called\nwith `znode-\u003ecparent-\u003ezbranch[znode-\u003eiip].hash` that triggers the\nuse-after-free!\n\nFix this by explicitly setting `znode-\u003ecparent` to `NULL` in\n`get_znodes_to_commit()` for the root node. The search for the dirty\nnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53171",
"url": "https://www.suse.com/security/cve/CVE-2024-53171"
},
{
"category": "external",
"summary": "SUSE Bug 1234889 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "external",
"summary": "SUSE Bug 1236234 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1236234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53171"
},
{
"cve": "CVE-2024-53172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubi: fastmap: Fix duplicate slab cache names while attaching\n\nSince commit 4c39529663b9 (\"slab: Warn on duplicate cache names when\nDEBUG_VM=y\"), the duplicate slab cache names can be detected and a\nkernel WARNING is thrown out.\nIn UBI fast attaching process, alloc_ai() could be invoked twice\nwith the same slab cache name \u0027ubi_aeb_slab_cache\u0027, which will trigger\nfollowing warning messages:\n kmem_cache of name \u0027ubi_aeb_slab_cache\u0027 already exists\n WARNING: CPU: 0 PID: 7519 at mm/slab_common.c:107\n __kmem_cache_create_args+0x100/0x5f0\n Modules linked in: ubi(+) nandsim [last unloaded: nandsim]\n CPU: 0 UID: 0 PID: 7519 Comm: modprobe Tainted: G 6.12.0-rc2\n RIP: 0010:__kmem_cache_create_args+0x100/0x5f0\n Call Trace:\n __kmem_cache_create_args+0x100/0x5f0\n alloc_ai+0x295/0x3f0 [ubi]\n ubi_attach+0x3c3/0xcc0 [ubi]\n ubi_attach_mtd_dev+0x17cf/0x3fa0 [ubi]\n ubi_init+0x3fb/0x800 [ubi]\n do_init_module+0x265/0x7d0\n __x64_sys_finit_module+0x7a/0xc0\n\nThe problem could be easily reproduced by loading UBI device by fastmap\nwith CONFIG_DEBUG_VM=y.\nFix it by using different slab names for alloc_ai() callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53172",
"url": "https://www.suse.com/security/cve/CVE-2024-53172"
},
{
"category": "external",
"summary": "SUSE Bug 1234898 for CVE-2024-53172",
"url": "https://bugzilla.suse.com/1234898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53172"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: make sure cache entry active before cache_show\n\nThe function `c_show` was called with protection from RCU. This only\nensures that `cp` will not be freed. Therefore, the reference count for\n`cp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `cache_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `cp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 7 PID: 822 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 7 UID: 0 PID: 822 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n\nCall Trace:\n \u003cTASK\u003e\n c_show+0x2fc/0x380 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53174",
"url": "https://www.suse.com/security/cve/CVE-2024-53174"
},
{
"category": "external",
"summary": "SUSE Bug 1234899 for CVE-2024-53174",
"url": "https://bugzilla.suse.com/1234899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53174"
},
{
"cve": "CVE-2024-53175",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53175"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipc: fix memleak if msg_init_ns failed in create_ipc_ns\n\nPercpu memory allocation may failed during create_ipc_ns however this\nfail is not handled properly since ipc sysctls and mq sysctls is not\nreleased properly. Fix this by release these two resource when failure.\n\nHere is the kmemleak stack when percpu failed:\n\nunreferenced object 0xffff88819de2a600 (size 512):\n comm \"shmem_2nstest\", pid 120711, jiffies 4300542254\n hex dump (first 32 bytes):\n 60 aa 9d 84 ff ff ff ff fc 18 48 b2 84 88 ff ff `.........H.....\n 04 00 00 00 a4 01 00 00 20 e4 56 81 ff ff ff ff ........ .V.....\n backtrace (crc be7cba35):\n [\u003cffffffff81b43f83\u003e] __kmalloc_node_track_caller_noprof+0x333/0x420\n [\u003cffffffff81a52e56\u003e] kmemdup_noprof+0x26/0x50\n [\u003cffffffff821b2f37\u003e] setup_mq_sysctls+0x57/0x1d0\n [\u003cffffffff821b29cc\u003e] copy_ipcs+0x29c/0x3b0\n [\u003cffffffff815d6a10\u003e] create_new_namespaces+0x1d0/0x920\n [\u003cffffffff815d7449\u003e] copy_namespaces+0x2e9/0x3e0\n [\u003cffffffff815458f3\u003e] copy_process+0x29f3/0x7ff0\n [\u003cffffffff8154b080\u003e] kernel_clone+0xc0/0x650\n [\u003cffffffff8154b6b1\u003e] __do_sys_clone+0xa1/0xe0\n [\u003cffffffff843df8ff\u003e] do_syscall_64+0xbf/0x1c0\n [\u003cffffffff846000b0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53175",
"url": "https://www.suse.com/security/cve/CVE-2024-53175"
},
{
"category": "external",
"summary": "SUSE Bug 1234893 for CVE-2024-53175",
"url": "https://bugzilla.suse.com/1234893"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53175"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Add sanity NULL check for the default mmap fault handler\n\nA driver might allow the mmap access before initializing its\nruntime-\u003edma_area properly. Add a proper NULL check before passing to\nvirt_to_page() for avoiding a panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53180",
"url": "https://www.suse.com/security/cve/CVE-2024-53180"
},
{
"category": "external",
"summary": "SUSE Bug 1234929 for CVE-2024-53180",
"url": "https://bugzilla.suse.com/1234929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53180"
},
{
"cve": "CVE-2024-53185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix NULL ptr deref in crypto_aead_setkey()\n\nNeither SMB3.0 or SMB3.02 supports encryption negotiate context, so\nwhen SMB2_GLOBAL_CAP_ENCRYPTION flag is set in the negotiate response,\nthe client uses AES-128-CCM as the default cipher. See MS-SMB2\n3.3.5.4.\n\nCommit b0abcd65ec54 (\"smb: client: fix UAF in async decryption\") added\na @server-\u003ecipher_type check to conditionally call\nsmb3_crypto_aead_allocate(), but that check would always be false as\n@server-\u003ecipher_type is unset for SMB3.02.\n\nFix the following KASAN splat by setting @server-\u003ecipher_type for\nSMB3.02 as well.\n\nmount.cifs //srv/share /mnt -o vers=3.02,seal,...\n\nBUG: KASAN: null-ptr-deref in crypto_aead_setkey+0x2c/0x130\nRead of size 8 at addr 0000000000000020 by task mount.cifs/1095\nCPU: 1 UID: 0 PID: 1095 Comm: mount.cifs Not tainted 6.12.0 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-3.fc41\n04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? crypto_aead_setkey+0x2c/0x130\n kasan_report+0xda/0x110\n ? crypto_aead_setkey+0x2c/0x130\n crypto_aead_setkey+0x2c/0x130\n crypt_message+0x258/0xec0 [cifs]\n ? __asan_memset+0x23/0x50\n ? __pfx_crypt_message+0x10/0x10 [cifs]\n ? mark_lock+0xb0/0x6a0\n ? hlock_class+0x32/0xb0\n ? mark_lock+0xb0/0x6a0\n smb3_init_transform_rq+0x352/0x3f0 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n smb_send_rqst+0x144/0x230 [cifs]\n ? __pfx_smb_send_rqst+0x10/0x10 [cifs]\n ? hlock_class+0x32/0xb0\n ? smb2_setup_request+0x225/0x3a0 [cifs]\n ? __pfx_cifs_compound_last_callback+0x10/0x10 [cifs]\n compound_send_recv+0x59b/0x1140 [cifs]\n ? __pfx_compound_send_recv+0x10/0x10 [cifs]\n ? __create_object+0x5e/0x90\n ? hlock_class+0x32/0xb0\n ? do_raw_spin_unlock+0x9a/0xf0\n cifs_send_recv+0x23/0x30 [cifs]\n SMB2_tcon+0x3ec/0xb30 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? __pfx_lock_release+0x10/0x10\n ? do_raw_spin_trylock+0xc6/0x120\n ? lock_acquire+0x3f/0x90\n ? _get_xid+0x16/0xd0 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n ? __pfx_cifs_get_smb_ses+0x10/0x10 [cifs]\n ? cifs_get_tcp_session+0xaa0/0xca0 [cifs]\n cifs_mount_get_session+0x8a/0x210 [cifs]\n dfs_mount_share+0x1b0/0x11d0 [cifs]\n ? __pfx___lock_acquire+0x10/0x10\n ? __pfx_dfs_mount_share+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? lock_release+0x203/0x5d0\n cifs_mount+0xb3/0x3d0 [cifs]\n ? do_raw_spin_trylock+0xc6/0x120\n ? __pfx_cifs_mount+0x10/0x10 [cifs]\n ? lock_acquire+0x3f/0x90\n ? find_nls+0x16/0xa0\n ? smb3_update_mnt_flags+0x372/0x3b0 [cifs]\n cifs_smb3_do_mount+0x1e2/0xc80 [cifs]\n ? __pfx_vfs_parse_fs_string+0x10/0x10\n ? __pfx_cifs_smb3_do_mount+0x10/0x10 [cifs]\n smb3_get_tree+0x1bf/0x330 [cifs]\n vfs_get_tree+0x4a/0x160\n path_mount+0x3c1/0xfb0\n ? kasan_quarantine_put+0xc7/0x1d0\n ? __pfx_path_mount+0x10/0x10\n ? kmem_cache_free+0x118/0x3e0\n ? user_path_at+0x74/0xa0\n __x64_sys_mount+0x1a6/0x1e0\n ? __pfx___x64_sys_mount+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53185",
"url": "https://www.suse.com/security/cve/CVE-2024-53185"
},
{
"category": "external",
"summary": "SUSE Bug 1234901 for CVE-2024-53185",
"url": "https://bugzilla.suse.com/1234901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53185"
},
{
"cve": "CVE-2024-53187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check for overflows in io_pin_pages\n\nWARNING: CPU: 0 PID: 5834 at io_uring/memmap.c:144 io_pin_pages+0x149/0x180 io_uring/memmap.c:144\nCPU: 0 UID: 0 PID: 5834 Comm: syz-executor825 Not tainted 6.12.0-next-20241118-syzkaller #0\nCall Trace:\n \u003cTASK\u003e\n __io_uaddr_map+0xfb/0x2d0 io_uring/memmap.c:183\n io_rings_map io_uring/io_uring.c:2611 [inline]\n io_allocate_scq_urings+0x1c0/0x650 io_uring/io_uring.c:3470\n io_uring_create+0x5b5/0xc00 io_uring/io_uring.c:3692\n io_uring_setup io_uring/io_uring.c:3781 [inline]\n ...\n \u003c/TASK\u003e\n\nio_pin_pages()\u0027s uaddr parameter came directly from the user and can be\ngarbage. Don\u0027t just add size to it as it can overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53187",
"url": "https://www.suse.com/security/cve/CVE-2024-53187"
},
{
"category": "external",
"summary": "SUSE Bug 1234947 for CVE-2024-53187",
"url": "https://bugzilla.suse.com/1234947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53187"
},
{
"cve": "CVE-2024-53188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix crash when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe function ath12k_dp_cc_cleanup is called to release resources.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nat RIP: 0010:ath12k_dp_cc_cleanup.part.0+0xb6/0x500 [ath12k]\nCall Trace:\nath12k_dp_cc_cleanup\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set to NULL the released structure in\nath12k_dp_cc_cleanup at the end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53188",
"url": "https://www.suse.com/security/cve/CVE-2024-53188"
},
{
"category": "external",
"summary": "SUSE Bug 1234948 for CVE-2024-53188",
"url": "https://bugzilla.suse.com/1234948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53188"
},
{
"cve": "CVE-2024-53190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures\n\nSyzkaller reported a hung task with uevent_show() on stack trace. That\nspecific issue was addressed by another commit [0], but even with that\nfix applied (for example, running v6.12-rc5) we face another type of hung\ntask that comes from the same reproducer [1]. By investigating that, we\ncould narrow it to the following path:\n\n(a) Syzkaller emulates a Realtek USB WiFi adapter using raw-gadget and\ndummy_hcd infrastructure.\n\n(b) During the probe of rtl8192cu, the driver ends-up performing an efuse\nread procedure (which is related to EEPROM load IIUC), and here lies the\nissue: the function read_efuse() calls read_efuse_byte() many times, as\nloop iterations depending on the efuse size (in our example, 512 in total).\n\nThis procedure for reading efuse bytes relies in a loop that performs an\nI/O read up to *10k* times in case of failures. We measured the time of\nthe loop inside read_efuse_byte() alone, and in this reproducer (which\ninvolves the dummy_hcd emulation layer), it takes 15 seconds each. As a\nconsequence, we have the driver stuck in its probe routine for big time,\nexposing a stack trace like below if we attempt to reboot the system, for\nexample:\n\ntask:kworker/0:3 state:D stack:0 pid:662 tgid:662 ppid:2 flags:0x00004000\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n __schedule+0xe22/0xeb6\n schedule_timeout+0xe7/0x132\n __wait_for_common+0xb5/0x12e\n usb_start_wait_urb+0xc5/0x1ef\n ? usb_alloc_urb+0x95/0xa4\n usb_control_msg+0xff/0x184\n _usbctrl_vendorreq_sync+0xa0/0x161\n _usb_read_sync+0xb3/0xc5\n read_efuse_byte+0x13c/0x146\n read_efuse+0x351/0x5f0\n efuse_read_all_map+0x42/0x52\n rtl_efuse_shadow_map_update+0x60/0xef\n rtl_get_hwinfo+0x5d/0x1c2\n rtl92cu_read_eeprom_info+0x10a/0x8d5\n ? rtl92c_read_chip_version+0x14f/0x17e\n rtl_usb_probe+0x323/0x851\n usb_probe_interface+0x278/0x34b\n really_probe+0x202/0x4a4\n __driver_probe_device+0x166/0x1b2\n driver_probe_device+0x2f/0xd8\n [...]\n\nWe propose hereby to drastically reduce the attempts of doing the I/O\nreads in case of failures, restricted to USB devices (given that\nthey\u0027re inherently slower than PCIe ones). By retrying up to 10 times\n(instead of 10000), we got reponsiveness in the reproducer, while seems\nreasonable to believe that there\u0027s no sane USB device implementation in\nthe field requiring this amount of retries at every I/O read in order\nto properly work. Based on that assumption, it\u0027d be good to have it\nbackported to stable but maybe not since driver implementation (the 10k\nnumber comes from day 0), perhaps up to 6.x series makes sense.\n\n[0] Commit 15fffc6a5624 (\"driver core: Fix uevent_show() vs driver detach race\")\n\n[1] A note about that: this syzkaller report presents multiple reproducers\nthat differs by the type of emulated USB device. For this specific case,\ncheck the entry from 2024/08/08 06:23 in the list of crashes; the C repro\nis available at https://syzkaller.appspot.com/text?tag=ReproC\u0026x=1521fc83980000.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53190",
"url": "https://www.suse.com/security/cve/CVE-2024-53190"
},
{
"category": "external",
"summary": "SUSE Bug 1234950 for CVE-2024-53190",
"url": "https://bugzilla.suse.com/1234950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-53190"
},
{
"cve": "CVE-2024-53191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix warning when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe buffers dp-\u003etx_ring[i].tx_status are released.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nWARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80\nCall Trace:\nfree_large_kmalloc\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set the buffers to NULL after releasing in\norder to avoid the double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53191",
"url": "https://www.suse.com/security/cve/CVE-2024-53191"
},
{
"category": "external",
"summary": "SUSE Bug 1234952 for CVE-2024-53191",
"url": "https://bugzilla.suse.com/1234952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53191"
},
{
"cve": "CVE-2024-53194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix use-after-free of slot-\u003ebus on hot remove\n\nDennis reports a boot crash on recent Lenovo laptops with a USB4 dock.\n\nSince commit 0fc70886569c (\"thunderbolt: Reset USB4 v2 host router\") and\ncommit 59a54c5f3dbd (\"thunderbolt: Reset topology created by the boot\nfirmware\"), USB4 v2 and v1 Host Routers are reset on probe of the\nthunderbolt driver.\n\nThe reset clears the Presence Detect State and Data Link Layer Link Active\nbits at the USB4 Host Router\u0027s Root Port and thus causes hot removal of the\ndock.\n\nThe crash occurs when pciehp is unbound from one of the dock\u0027s Downstream\nPorts: pciehp creates a pci_slot on bind and destroys it on unbind. The\npci_slot contains a pointer to the pci_bus below the Downstream Port, but\na reference on that pci_bus is never acquired. The pci_bus is destroyed\nbefore the pci_slot, so a use-after-free ensues when pci_slot_release()\naccesses slot-\u003ebus.\n\nIn principle this should not happen because pci_stop_bus_device() unbinds\npciehp (and therefore destroys the pci_slot) before the pci_bus is\ndestroyed by pci_remove_bus_device().\n\nHowever the stacktrace provided by Dennis shows that pciehp is unbound from\npci_remove_bus_device() instead of pci_stop_bus_device(). To understand\nthe significance of this, one needs to know that the PCI core uses a two\nstep process to remove a portion of the hierarchy: It first unbinds all\ndrivers in the sub-hierarchy in pci_stop_bus_device() and then actually\nremoves the devices in pci_remove_bus_device(). There is no precaution to\nprevent driver binding in-between pci_stop_bus_device() and\npci_remove_bus_device().\n\nIn Dennis\u0027 case, it seems removal of the hierarchy by pciehp races with\ndriver binding by pci_bus_add_devices(). pciehp is bound to the\nDownstream Port after pci_stop_bus_device() has run, so it is unbound by\npci_remove_bus_device() instead of pci_stop_bus_device(). Because the\npci_bus has already been destroyed at that point, accesses to it result in\na use-after-free.\n\nOne might conclude that driver binding needs to be prevented after\npci_stop_bus_device() has run. However it seems risky that pci_slot points\nto pci_bus without holding a reference. Solely relying on correct ordering\nof driver unbind versus pci_bus destruction is certainly not defensive\nprogramming.\n\nIf pci_slot has a need to access data in pci_bus, it ought to acquire a\nreference. Amend pci_create_slot() accordingly. Dennis reports that the\ncrash is not reproducible with this change.\n\nAbridged stacktrace:\n\n pcieport 0000:00:07.0: PME: Signaling with IRQ 156\n pcieport 0000:00:07.0: pciehp: Slot #12 AttnBtn- PwrCtrl- MRL- AttnInd- PwrInd- HotPlug+ Surprise+ Interlock- NoCompl+ IbPresDis- LLActRep+\n pci_bus 0000:20: dev 00, created physical slot 12\n pcieport 0000:00:07.0: pciehp: Slot(12): Card not present\n ...\n pcieport 0000:21:02.0: pciehp: pcie_disable_notification: SLOTCTRL d8 write cmd 0\n Oops: general protection fault, probably for non-canonical address 0x6b6b6b6b6b6b6b6b: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 13 UID: 0 PID: 134 Comm: irq/156-pciehp Not tainted 6.11.0-devel+ #1\n RIP: 0010:dev_driver_string+0x12/0x40\n pci_destroy_slot\n pciehp_remove\n pcie_port_remove_service\n device_release_driver_internal\n bus_remove_device\n device_del\n device_unregister\n remove_iter\n device_for_each_child\n pcie_portdrv_remove\n pci_device_remove\n device_release_driver_internal\n bus_remove_device\n device_del\n pci_remove_bus_device (recursive invocation)\n pci_remove_bus_device\n pciehp_unconfigure_device\n pciehp_disable_slot\n pciehp_handle_presence_or_link_change\n pciehp_ist",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53194",
"url": "https://www.suse.com/security/cve/CVE-2024-53194"
},
{
"category": "external",
"summary": "SUSE Bug 1235459 for CVE-2024-53194",
"url": "https://bugzilla.suse.com/1235459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53194"
},
{
"cve": "CVE-2024-53195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Get rid of userspace_irqchip_in_use\n\nImproper use of userspace_irqchip_in_use led to syzbot hitting the\nfollowing WARN_ON() in kvm_timer_update_irq():\n\nWARNING: CPU: 0 PID: 3281 at arch/arm64/kvm/arch_timer.c:459\nkvm_timer_update_irq+0x21c/0x394\nCall trace:\n kvm_timer_update_irq+0x21c/0x394 arch/arm64/kvm/arch_timer.c:459\n kvm_timer_vcpu_reset+0x158/0x684 arch/arm64/kvm/arch_timer.c:968\n kvm_reset_vcpu+0x3b4/0x560 arch/arm64/kvm/reset.c:264\n kvm_vcpu_set_target arch/arm64/kvm/arm.c:1553 [inline]\n kvm_arch_vcpu_ioctl_vcpu_init arch/arm64/kvm/arm.c:1573 [inline]\n kvm_arch_vcpu_ioctl+0x112c/0x1b3c arch/arm64/kvm/arm.c:1695\n kvm_vcpu_ioctl+0x4ec/0xf74 virt/kvm/kvm_main.c:4658\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x108/0x184 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x78/0x1b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0xe8/0x1b0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x40/0x50 arch/arm64/kernel/syscall.c:151\n el0_svc+0x54/0x14c arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe following sequence led to the scenario:\n - Userspace creates a VM and a vCPU.\n - The vCPU is initialized with KVM_ARM_VCPU_PMU_V3 during\n KVM_ARM_VCPU_INIT.\n - Without any other setup, such as vGIC or vPMU, userspace issues\n KVM_RUN on the vCPU. Since the vPMU is requested, but not setup,\n kvm_arm_pmu_v3_enable() fails in kvm_arch_vcpu_run_pid_change().\n As a result, KVM_RUN returns after enabling the timer, but before\n incrementing \u0027userspace_irqchip_in_use\u0027:\n kvm_arch_vcpu_run_pid_change()\n ret = kvm_arm_pmu_v3_enable()\n if (!vcpu-\u003earch.pmu.created)\n return -EINVAL;\n if (ret)\n return ret;\n [...]\n if (!irqchip_in_kernel(kvm))\n static_branch_inc(\u0026userspace_irqchip_in_use);\n - Userspace ignores the error and issues KVM_ARM_VCPU_INIT again.\n Since the timer is already enabled, control moves through the\n following flow, ultimately hitting the WARN_ON():\n kvm_timer_vcpu_reset()\n if (timer-\u003eenabled)\n kvm_timer_update_irq()\n if (!userspace_irqchip())\n ret = kvm_vgic_inject_irq()\n ret = vgic_lazy_init()\n if (unlikely(!vgic_initialized(kvm)))\n if (kvm-\u003earch.vgic.vgic_model !=\n KVM_DEV_TYPE_ARM_VGIC_V2)\n return -EBUSY;\n WARN_ON(ret);\n\nTheoretically, since userspace_irqchip_in_use\u0027s functionality can be\nsimply replaced by \u0027!irqchip_in_kernel()\u0027, get rid of the static key\nto avoid the mismanagement, which also helps with the syzbot issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53195",
"url": "https://www.suse.com/security/cve/CVE-2024-53195"
},
{
"category": "external",
"summary": "SUSE Bug 1234957 for CVE-2024-53195",
"url": "https://bugzilla.suse.com/1234957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53195"
},
{
"cve": "CVE-2024-53196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Don\u0027t retire aborted MMIO instruction\n\nReturning an abort to the guest for an unsupported MMIO access is a\ndocumented feature of the KVM UAPI. Nevertheless, it\u0027s clear that this\nplumbing has seen limited testing, since userspace can trivially cause a\nWARN in the MMIO return:\n\n WARNING: CPU: 0 PID: 30558 at arch/arm64/include/asm/kvm_emulate.h:536 kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n Call trace:\n kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n kvm_arch_vcpu_ioctl_run+0x98/0x15b4 arch/arm64/kvm/arm.c:1133\n kvm_vcpu_ioctl+0x75c/0xa78 virt/kvm/kvm_main.c:4487\n __do_sys_ioctl fs/ioctl.c:51 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x1e0/0x23c arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n el0_svc+0x38/0x68 arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x90/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe splat is complaining that KVM is advancing PC while an exception is\npending, i.e. that KVM is retiring the MMIO instruction despite a\npending synchronous external abort. Womp womp.\n\nFix the glaring UAPI bug by skipping over all the MMIO emulation in\ncase there is a pending synchronous exception. Note that while userspace\nis capable of pending an asynchronous exception (SError, IRQ, or FIQ),\nit is still safe to retire the MMIO instruction in this case as (1) they\nare by definition asynchronous, and (2) KVM relies on hardware support\nfor pending/delivering these exceptions instead of the software state\nmachine for advancing PC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53196",
"url": "https://www.suse.com/security/cve/CVE-2024-53196"
},
{
"category": "external",
"summary": "SUSE Bug 1234906 for CVE-2024-53196",
"url": "https://bugzilla.suse.com/1234906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53196"
},
{
"cve": "CVE-2024-53197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53197"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices\n\nA bogus device can provide a bNumConfigurations value that exceeds the\ninitial value used in usb_get_configuration for allocating dev-\u003econfig.\n\nThis can lead to out-of-bounds accesses later, e.g. in\nusb_destroy_configuration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53197",
"url": "https://www.suse.com/security/cve/CVE-2024-53197"
},
{
"category": "external",
"summary": "SUSE Bug 1235464 for CVE-2024-53197",
"url": "https://bugzilla.suse.com/1235464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53197"
},
{
"cve": "CVE-2024-53198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen: Fix the issue of resource not being properly released in xenbus_dev_probe()\n\nThis patch fixes an issue in the function xenbus_dev_probe(). In the\nxenbus_dev_probe() function, within the if (err) branch at line 313, the\nprogram incorrectly returns err directly without releasing the resources\nallocated by err = drv-\u003eprobe(dev, id). As the return value is non-zero,\nthe upper layers assume the processing logic has failed. However, the probe\noperation was performed earlier without a corresponding remove operation.\nSince the probe actually allocates resources, failing to perform the remove\noperation could lead to problems.\n\nTo fix this issue, we followed the resource release logic of the\nxenbus_dev_remove() function by adding a new block fail_remove before the\nfail_put block. After entering the branch if (err) at line 313, the\nfunction will use a goto statement to jump to the fail_remove block,\nensuring that the previously acquired resources are correctly released,\nthus preventing the reference count leak.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand detecting potential issues where resources are not properly managed.\nIn this case, the tool flagged the missing release operation as a\npotential problem, which led to the development of this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53198",
"url": "https://www.suse.com/security/cve/CVE-2024-53198"
},
{
"category": "external",
"summary": "SUSE Bug 1234923 for CVE-2024-53198",
"url": "https://bugzilla.suse.com/1234923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53198"
},
{
"cve": "CVE-2024-53200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in hwss_setup_dpp\n\nThis commit addresses a null pointer dereference issue in\nhwss_setup_dpp(). The issue could occur when pipe_ctx-\u003eplane_state is\nnull. The fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53200",
"url": "https://www.suse.com/security/cve/CVE-2024-53200"
},
{
"category": "external",
"summary": "SUSE Bug 1234968 for CVE-2024-53200",
"url": "https://bugzilla.suse.com/1234968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53200"
},
{
"cve": "CVE-2024-53201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in\ndcn20_program_pipe(). Previously, commit 8e4ed3cf1642 (\"drm/amd/display:\nAdd null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\")\npartially fixed the null pointer dereference issue. However, in\ndcn20_update_dchubp_dpp(), the variable pipe_ctx is passed in, and\nplane_state is accessed again through pipe_ctx. Multiple if statements\ndirectly call attributes of plane_state, leading to potential null\npointer dereference issues. This patch adds necessary null checks to\nensure stability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53201",
"url": "https://www.suse.com/security/cve/CVE-2024-53201"
},
{
"category": "external",
"summary": "SUSE Bug 1234969 for CVE-2024-53201",
"url": "https://bugzilla.suse.com/1234969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53201"
},
{
"cve": "CVE-2024-53202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Fix possible resource leak in fw_log_firmware_info()\n\nThe alg instance should be released under the exception path, otherwise\nthere may be resource leak here.\n\nTo mitigate this, free the alg instance with crypto_free_shash when kmalloc\nfails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53202",
"url": "https://www.suse.com/security/cve/CVE-2024-53202"
},
{
"category": "external",
"summary": "SUSE Bug 1234970 for CVE-2024-53202",
"url": "https://bugzilla.suse.com/1234970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53202"
},
{
"cve": "CVE-2024-53203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: fix potential array underflow in ucsi_ccg_sync_control()\n\nThe \"command\" variable can be controlled by the user via debugfs. The\nworry is that if con_index is zero then \"\u0026uc-\u003eucsi-\u003econnector[con_index\n- 1]\" would be an array underflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53203",
"url": "https://www.suse.com/security/cve/CVE-2024-53203"
},
{
"category": "external",
"summary": "SUSE Bug 1235001 for CVE-2024-53203",
"url": "https://bugzilla.suse.com/1235001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53203"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible deadlocks\n\nThis fixes possible deadlocks like the following caused by\nhci_cmd_sync_dequeue causing the destroy function to run:\n\n INFO: task kworker/u19:0:143 blocked for more than 120 seconds.\n Tainted: G W O 6.8.0-2024-03-19-intel-next-iLS-24ww14 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u19:0 state:D stack:0 pid:143 tgid:143 ppid:2 flags:0x00004000\n Workqueue: hci0 hci_cmd_sync_work [bluetooth]\n Call Trace:\n \u003cTASK\u003e\n __schedule+0x374/0xaf0\n schedule+0x3c/0xf0\n schedule_preempt_disabled+0x1c/0x30\n __mutex_lock.constprop.0+0x3ef/0x7a0\n __mutex_lock_slowpath+0x13/0x20\n mutex_lock+0x3c/0x50\n mgmt_set_connectable_complete+0xa4/0x150 [bluetooth]\n ? kfree+0x211/0x2a0\n hci_cmd_sync_dequeue+0xae/0x130 [bluetooth]\n ? __pfx_cmd_complete_rsp+0x10/0x10 [bluetooth]\n cmd_complete_rsp+0x26/0x80 [bluetooth]\n mgmt_pending_foreach+0x4d/0x70 [bluetooth]\n __mgmt_power_off+0x8d/0x180 [bluetooth]\n ? _raw_spin_unlock_irq+0x23/0x40\n hci_dev_close_sync+0x445/0x5b0 [bluetooth]\n hci_set_powered_sync+0x149/0x250 [bluetooth]\n set_powered_sync+0x24/0x60 [bluetooth]\n hci_cmd_sync_work+0x90/0x150 [bluetooth]\n process_one_work+0x13e/0x300\n worker_thread+0x2f7/0x420\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x107/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x3d/0x60\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53207",
"url": "https://www.suse.com/security/cve/CVE-2024-53207"
},
{
"category": "external",
"summary": "SUSE Bug 1234907 for CVE-2024-53207",
"url": "https://bugzilla.suse.com/1234907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53207"
},
{
"cve": "CVE-2024-53208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync\n\nThis fixes the following crash:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\nRead of size 8 at addr ffff888029b4dd18 by task kworker/u9:0/54\n\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-01155-gf723224742fc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\nq kasan_report+0x143/0x180 mm/kasan/report.c:601\n set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\n hci_cmd_sync_work+0x22b/0x400 net/bluetooth/hci_sync.c:328\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd10 kernel/workqueue.c:3389\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\nAllocated by task 5247:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __kmalloc_cache_noprof+0x19c/0x2c0 mm/slub.c:4193\n kmalloc_noprof include/linux/slab.h:681 [inline]\n kzalloc_noprof include/linux/slab.h:807 [inline]\n mgmt_pending_new+0x65/0x250 net/bluetooth/mgmt_util.c:269\n mgmt_pending_add+0x36/0x120 net/bluetooth/mgmt_util.c:296\n set_powered+0x3cd/0x5e0 net/bluetooth/mgmt.c:1394\n hci_mgmt_cmd+0xc47/0x11d0 net/bluetooth/hci_sock.c:1712\n hci_sock_sendmsg+0x7b8/0x11c0 net/bluetooth/hci_sock.c:1832\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xa72/0xc90 fs/read_write.c:590\n ksys_write+0x1a0/0x2c0 fs/read_write.c:643\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5246:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x149/0x360 mm/slub.c:4598\n settings_rsp+0x2bc/0x390 net/bluetooth/mgmt.c:1443\n mgmt_pending_foreach+0xd1/0x130 net/bluetooth/mgmt_util.c:259\n __mgmt_power_off+0x112/0x420 net/bluetooth/mgmt.c:9455\n hci_dev_close_sync+0x665/0x11a0 net/bluetooth/hci_sync.c:5191\n hci_dev_do_close net/bluetooth/hci_core.c:483 [inline]\n hci_dev_close+0x112/0x210 net/bluetooth/hci_core.c:508\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83gv\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53208",
"url": "https://www.suse.com/security/cve/CVE-2024-53208"
},
{
"category": "external",
"summary": "SUSE Bug 1234909 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "external",
"summary": "SUSE Bug 1236244 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1236244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53208"
},
{
"cve": "CVE-2024-53209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix receive ring space parameters when XDP is active\n\nThe MTU setting at the time an XDP multi-buffer is attached\ndetermines whether the aggregation ring will be used and the\nrx_skb_func handler. This is done in bnxt_set_rx_skb_mode().\n\nIf the MTU is later changed, the aggregation ring setting may need\nto be changed and it may become out-of-sync with the settings\ninitially done in bnxt_set_rx_skb_mode(). This may result in\nrandom memory corruption and crashes as the HW may DMA data larger\nthan the allocated buffer size, such as:\n\nBUG: kernel NULL pointer dereference, address: 00000000000003c0\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 17 PID: 0 Comm: swapper/17 Kdump: loaded Tainted: G S OE 6.1.0-226bf9805506 #1\nHardware name: Wiwynn Delta Lake PVT BZA.02601.0150/Delta Lake-Class1, BIOS F0E_3A12 08/26/2021\nRIP: 0010:bnxt_rx_pkt+0xe97/0x1ae0 [bnxt_en]\nCode: 8b 95 70 ff ff ff 4c 8b 9d 48 ff ff ff 66 41 89 87 b4 00 00 00 e9 0b f7 ff ff 0f b7 43 0a 49 8b 95 a8 04 00 00 25 ff 0f 00 00 \u003c0f\u003e b7 14 42 48 c1 e2 06 49 03 95 a0 04 00 00 0f b6 42 33f\nRSP: 0018:ffffa19f40cc0d18 EFLAGS: 00010202\nRAX: 00000000000001e0 RBX: ffff8e2c805c6100 RCX: 00000000000007ff\nRDX: 0000000000000000 RSI: ffff8e2c271ab990 RDI: ffff8e2c84f12380\nRBP: ffffa19f40cc0e48 R08: 000000000001000d R09: 974ea2fcddfa4cbf\nR10: 0000000000000000 R11: ffffa19f40cc0ff8 R12: ffff8e2c94b58980\nR13: ffff8e2c952d6600 R14: 0000000000000016 R15: ffff8e2c271ab990\nFS: 0000000000000000(0000) GS:ffff8e3b3f840000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000000003c0 CR3: 0000000e8580a004 CR4: 00000000007706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n __bnxt_poll_work+0x1c2/0x3e0 [bnxt_en]\n\nTo address the issue, we now call bnxt_set_rx_skb_mode() within\nbnxt_change_mtu() to properly set the AGG rings configuration and\nupdate rx_skb_func based on the new MTU value.\nAdditionally, BNXT_FLAG_NO_AGG_RINGS is cleared at the beginning of\nbnxt_set_rx_skb_mode() to make sure it gets set or cleared based on\nthe current MTU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53209",
"url": "https://www.suse.com/security/cve/CVE-2024-53209"
},
{
"category": "external",
"summary": "SUSE Bug 1235002 for CVE-2024-53209",
"url": "https://bugzilla.suse.com/1235002"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53209"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()\n\nThere\u0027s issue as follows:\nRPC: Registered rdma transport module.\nRPC: Registered rdma backchannel transport module.\nRPC: Unregistered rdma transport module.\nRPC: Unregistered rdma backchannel transport module.\nBUG: unable to handle page fault for address: fffffbfff80c609a\nPGD 123fee067 P4D 123fee067 PUD 123fea067 PMD 10c624067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nRIP: 0010:percpu_counter_destroy_many+0xf7/0x2a0\nCall Trace:\n \u003cTASK\u003e\n __die+0x1f/0x70\n page_fault_oops+0x2cd/0x860\n spurious_kernel_fault+0x36/0x450\n do_kern_addr_fault+0xca/0x100\n exc_page_fault+0x128/0x150\n asm_exc_page_fault+0x26/0x30\n percpu_counter_destroy_many+0xf7/0x2a0\n mmdrop+0x209/0x350\n finish_task_switch.isra.0+0x481/0x840\n schedule_tail+0xe/0xd0\n ret_from_fork+0x23/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nIf register_sysctl() return NULL, then svc_rdma_proc_cleanup() will not\ndestroy the percpu counters which init in svc_rdma_proc_init().\nIf CONFIG_HOTPLUG_CPU is enabled, residual nodes may be in the\n\u0027percpu_counters\u0027 list. The above issue may occur once the module is\nremoved. If the CONFIG_HOTPLUG_CPU configuration is not enabled, memory\nleakage occurs.\nTo solve above issue just destroy all percpu counters when\nregister_sysctl() return NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53215",
"url": "https://www.suse.com/security/cve/CVE-2024-53215"
},
{
"category": "external",
"summary": "SUSE Bug 1234962 for CVE-2024-53215",
"url": "https://bugzilla.suse.com/1234962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53215"
},
{
"cve": "CVE-2024-53216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: release svc_expkey/svc_export with rcu_work\n\nThe last reference for `cache_head` can be reduced to zero in `c_show`\nand `e_show`(using `rcu_read_lock` and `rcu_read_unlock`). Consequently,\n`svc_export_put` and `expkey_put` will be invoked, leading to two\nissues:\n\n1. The `svc_export_put` will directly free ex_uuid. However,\n `e_show`/`c_show` will access `ex_uuid` after `cache_put`, which can\n trigger a use-after-free issue, shown below.\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in svc_export_show+0x362/0x430 [nfsd]\n Read of size 1 at addr ff11000010fdc120 by task cat/870\n\n CPU: 1 UID: 0 PID: 870 Comm: cat Not tainted 6.12.0-rc3+ #1\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n 1.16.1-2.fc37 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x53/0x70\n print_address_description.constprop.0+0x2c/0x3a0\n print_report+0xb9/0x280\n kasan_report+0xae/0xe0\n svc_export_show+0x362/0x430 [nfsd]\n c_show+0x161/0x390 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Allocated by task 830:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __kmalloc_node_track_caller_noprof+0x1bc/0x400\n kmemdup_noprof+0x22/0x50\n svc_export_parse+0x8a9/0xb80 [nfsd]\n cache_do_downcall+0x71/0xa0 [sunrpc]\n cache_write_procfs+0x8e/0xd0 [sunrpc]\n proc_reg_write+0xe1/0x140\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 868:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x37/0x50\n kfree+0xf3/0x3e0\n svc_export_put+0x87/0xb0 [nfsd]\n cache_purge+0x17f/0x1f0 [sunrpc]\n nfsd_destroy_serv+0x226/0x2d0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n2. We cannot sleep while using `rcu_read_lock`/`rcu_read_unlock`.\n However, `svc_export_put`/`expkey_put` will call path_put, which\n subsequently triggers a sleeping operation due to the following\n `dput`.\n\n =============================\n WARNING: suspicious RCU usage\n 5.10.0-dirty #141 Not tainted\n -----------------------------\n ...\n Call Trace:\n dump_stack+0x9a/0xd0\n ___might_sleep+0x231/0x240\n dput+0x39/0x600\n path_put+0x1b/0x30\n svc_export_put+0x17/0x80\n e_show+0x1c9/0x200\n seq_read_iter+0x63f/0x7c0\n seq_read+0x226/0x2d0\n vfs_read+0x113/0x2c0\n ksys_read+0xc9/0x170\n do_syscall_64+0x33/0x40\n entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nFix these issues by using `rcu_work` to help release\n`svc_expkey`/`svc_export`. This approach allows for an asynchronous\ncontext to invoke `path_put` and also facilitates the freeing of\n`uuid/exp/key` after an RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53216",
"url": "https://www.suse.com/security/cve/CVE-2024-53216"
},
{
"category": "external",
"summary": "SUSE Bug 1235003 for CVE-2024-53216",
"url": "https://bugzilla.suse.com/1235003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53216"
},
{
"cve": "CVE-2024-53217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent NULL dereference in nfsd4_process_cb_update()\n\n@ses is initialized to NULL. If __nfsd4_find_backchannel() finds no\navailable backchannel session, setup_callback_client() will try to\ndereference @ses and segfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53217",
"url": "https://www.suse.com/security/cve/CVE-2024-53217"
},
{
"category": "external",
"summary": "SUSE Bug 1234999 for CVE-2024-53217",
"url": "https://bugzilla.suse.com/1234999"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53217"
},
{
"cve": "CVE-2024-53222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram-\u003ecomp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram-\u003einit_lock in other places and no such problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53222",
"url": "https://www.suse.com/security/cve/CVE-2024-53222"
},
{
"category": "external",
"summary": "SUSE Bug 1234974 for CVE-2024-53222",
"url": "https://bugzilla.suse.com/1234974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53222"
},
{
"cve": "CVE-2024-53224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Move events notifier registration to be after device registration\n\nMove pkey change work initialization and cleanup from device resources\nstage to notifier stage, since this is the stage which handles this work\nevents.\n\nFix a race between the device deregistration and pkey change work by moving\nMLX5_IB_STAGE_DEVICE_NOTIFIER to be after MLX5_IB_STAGE_IB_REG in order to\nensure that the notifier is deregistered before the device during cleanup.\nWhich ensures there are no works that are being executed after the\ndevice has already unregistered which can cause the panic below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 1 PID: 630071 Comm: kworker/1:2 Kdump: loaded Tainted: G W OE --------- --- 5.14.0-162.6.1.el9_1.x86_64 #1\nHardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 02/27/2023\nWorkqueue: events pkey_change_handler [mlx5_ib]\nRIP: 0010:setup_qp+0x38/0x1f0 [mlx5_ib]\nCode: ee 41 54 45 31 e4 55 89 f5 53 48 89 fb 48 83 ec 20 8b 77 08 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 48 8b 07 48 8d 4c 24 16 \u003c4c\u003e 8b 38 49 8b 87 80 0b 00 00 4c 89 ff 48 8b 80 08 05 00 00 8b 40\nRSP: 0018:ffffbcc54068be20 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff954054494128 RCX: ffffbcc54068be36\nRDX: ffff954004934000 RSI: 0000000000000001 RDI: ffff954054494128\nRBP: 0000000000000023 R08: ffff954001be2c20 R09: 0000000000000001\nR10: ffff954001be2c20 R11: ffff9540260133c0 R12: 0000000000000000\nR13: 0000000000000023 R14: 0000000000000000 R15: ffff9540ffcb0905\nFS: 0000000000000000(0000) GS:ffff9540ffc80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000010625c001 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\nmlx5_ib_gsi_pkey_change+0x20/0x40 [mlx5_ib]\nprocess_one_work+0x1e8/0x3c0\nworker_thread+0x50/0x3b0\n? rescuer_thread+0x380/0x380\nkthread+0x149/0x170\n? set_kthread_struct+0x50/0x50\nret_from_fork+0x22/0x30\nModules linked in: rdma_ucm(OE) rdma_cm(OE) iw_cm(OE) ib_ipoib(OE) ib_cm(OE) ib_umad(OE) mlx5_ib(OE) mlx5_fwctl(OE) fwctl(OE) ib_uverbs(OE) mlx5_core(OE) mlxdevm(OE) ib_core(OE) mlx_compat(OE) psample mlxfw(OE) tls knem(OE) netconsole nfsv3 nfs_acl nfs lockd grace fscache netfs qrtr rfkill sunrpc intel_rapl_msr intel_rapl_common rapl hv_balloon hv_utils i2c_piix4 pcspkr joydev fuse ext4 mbcache jbd2 sr_mod sd_mod cdrom t10_pi sg ata_generic pci_hyperv pci_hyperv_intf hyperv_drm drm_shmem_helper drm_kms_helper hv_storvsc syscopyarea hv_netvsc sysfillrect sysimgblt hid_hyperv fb_sys_fops scsi_transport_fc hyperv_keyboard drm ata_piix crct10dif_pclmul crc32_pclmul crc32c_intel libata ghash_clmulni_intel hv_vmbus serio_raw [last unloaded: ib_core]\nCR2: 0000000000000000\n---[ end trace f6f8be4eae12f7bc ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53224",
"url": "https://www.suse.com/security/cve/CVE-2024-53224"
},
{
"category": "external",
"summary": "SUSE Bug 1235009 for CVE-2024-53224",
"url": "https://bugzilla.suse.com/1235009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53224"
},
{
"cve": "CVE-2024-53227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bfa: Fix use-after-free in bfad_im_module_exit()\n\nBUG: KASAN: slab-use-after-free in __lock_acquire+0x2aca/0x3a20\nRead of size 8 at addr ffff8881082d80c8 by task modprobe/25303\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x95/0xe0\n print_report+0xcb/0x620\n kasan_report+0xbd/0xf0\n __lock_acquire+0x2aca/0x3a20\n lock_acquire+0x19b/0x520\n _raw_spin_lock+0x2b/0x40\n attribute_container_unregister+0x30/0x160\n fc_release_transport+0x19/0x90 [scsi_transport_fc]\n bfad_im_module_exit+0x23/0x60 [bfa]\n bfad_init+0xdb/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\nAllocated by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n fc_attach_transport+0x4f/0x4740 [scsi_transport_fc]\n bfad_im_module_init+0x17/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x38/0x50\n kfree+0x212/0x480\n bfad_im_module_init+0x7e/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nAbove issue happens as follows:\n\nbfad_init\n error = bfad_im_module_init()\n fc_release_transport(bfad_im_scsi_transport_template);\n if (error)\n goto ext;\n\next:\n bfad_im_module_exit();\n fc_release_transport(bfad_im_scsi_transport_template);\n --\u003e Trigger double release\n\nDon\u0027t call bfad_im_module_exit() if bfad_im_module_init() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53227",
"url": "https://www.suse.com/security/cve/CVE-2024-53227"
},
{
"category": "external",
"summary": "SUSE Bug 1235011 for CVE-2024-53227",
"url": "https://bugzilla.suse.com/1235011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53227"
},
{
"cve": "CVE-2024-53229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix the qp flush warnings in req\n\nWhen the qp is in error state, the status of WQEs in the queue should be\nset to error. Or else the following will appear.\n\n[ 920.617269] WARNING: CPU: 1 PID: 21 at drivers/infiniband/sw/rxe/rxe_comp.c:756 rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.617744] Modules linked in: rnbd_client(O) rtrs_client(O) rtrs_core(O) rdma_ucm rdma_cm iw_cm ib_cm crc32_generic rdma_rxe ip6_udp_tunnel udp_tunnel ib_uverbs ib_core loop brd null_blk ipv6\n[ 920.618516] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G O 6.1.113-storage+ #65\n[ 920.618986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n[ 920.619396] RIP: 0010:rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.619658] Code: 0f b6 84 24 3a 02 00 00 41 89 84 24 44 04 00 00 e9 2a f7 ff ff 39 ca bb 03 00 00 00 b8 0e 00 00 00 48 0f 45 d8 e9 15 f7 ff ff \u003c0f\u003e 0b e9 cb f8 ff ff 41 bf f5 ff ff ff e9 08 f8 ff ff 49 8d bc 24\n[ 920.620482] RSP: 0018:ffff97b7c00bbc38 EFLAGS: 00010246\n[ 920.620817] RAX: 0000000000000000 RBX: 000000000000000c RCX: 0000000000000008\n[ 920.621183] RDX: ffff960dc396ebc0 RSI: 0000000000005400 RDI: ffff960dc4e2fbac\n[ 920.621548] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffffac406450\n[ 920.621884] R10: ffffffffac4060c0 R11: 0000000000000001 R12: ffff960dc4e2f800\n[ 920.622254] R13: ffff960dc4e2f928 R14: ffff97b7c029c580 R15: 0000000000000000\n[ 920.622609] FS: 0000000000000000(0000) GS:ffff960ef7d00000(0000) knlGS:0000000000000000\n[ 920.622979] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 920.623245] CR2: 00007fa056965e90 CR3: 00000001107f1000 CR4: 00000000000006e0\n[ 920.623680] Call Trace:\n[ 920.623815] \u003cTASK\u003e\n[ 920.623933] ? __warn+0x79/0xc0\n[ 920.624116] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.624356] ? report_bug+0xfb/0x150\n[ 920.624594] ? handle_bug+0x3c/0x60\n[ 920.624796] ? exc_invalid_op+0x14/0x70\n[ 920.624976] ? asm_exc_invalid_op+0x16/0x20\n[ 920.625203] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.625474] ? rxe_completer+0x329/0xcc0 [rdma_rxe]\n[ 920.625749] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.626037] rxe_requester+0x625/0xde0 [rdma_rxe]\n[ 920.626310] ? rxe_cq_post+0xe2/0x180 [rdma_rxe]\n[ 920.626583] ? do_complete+0x18d/0x220 [rdma_rxe]\n[ 920.626812] ? rxe_completer+0x1a3/0xcc0 [rdma_rxe]\n[ 920.627050] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.627285] tasklet_action_common.constprop.0+0xa4/0x120\n[ 920.627522] handle_softirqs+0xc2/0x250\n[ 920.627728] ? sort_range+0x20/0x20\n[ 920.627942] run_ksoftirqd+0x1f/0x30\n[ 920.628158] smpboot_thread_fn+0xc7/0x1b0\n[ 920.628334] kthread+0xd6/0x100\n[ 920.628504] ? kthread_complete_and_exit+0x20/0x20\n[ 920.628709] ret_from_fork+0x1f/0x30\n[ 920.628892] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53229",
"url": "https://www.suse.com/security/cve/CVE-2024-53229"
},
{
"category": "external",
"summary": "SUSE Bug 1234905 for CVE-2024-53229",
"url": "https://bugzilla.suse.com/1234905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53229"
},
{
"cve": "CVE-2024-53230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference,\nso check NULL for cppc_get_cpu_cost().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53230",
"url": "https://www.suse.com/security/cve/CVE-2024-53230"
},
{
"category": "external",
"summary": "SUSE Bug 1235976 for CVE-2024-53230",
"url": "https://bugzilla.suse.com/1235976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53230"
},
{
"cve": "CVE-2024-53231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53231",
"url": "https://www.suse.com/security/cve/CVE-2024-53231"
},
{
"category": "external",
"summary": "SUSE Bug 1235977 for CVE-2024-53231",
"url": "https://bugzilla.suse.com/1235977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53231"
},
{
"cve": "CVE-2024-53232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/s390: Implement blocking domain\n\nThis fixes a crash when surprise hot-unplugging a PCI device. This crash\nhappens because during hot-unplug __iommu_group_set_domain_nofail()\nattaching the default domain fails when the platform no longer\nrecognizes the device as it has already been removed and we end up with\na NULL domain pointer and UAF. This is exactly the case referred to in\nthe second comment in __iommu_device_set_domain() and just as stated\nthere if we can instead attach the blocking domain the UAF is prevented\nas this can handle the already removed device. Implement the blocking\ndomain to use this handling. With this change, the crash is fixed but\nwe still hit a warning attempting to change DMA ownership on a blocked\ndevice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53232",
"url": "https://www.suse.com/security/cve/CVE-2024-53232"
},
{
"category": "external",
"summary": "SUSE Bug 1235050 for CVE-2024-53232",
"url": "https://bugzilla.suse.com/1235050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53232"
},
{
"cve": "CVE-2024-53233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nunicode: Fix utf8_load() error path\n\nutf8_load() requests the symbol \"utf8_data_table\" and then checks if the\nrequested UTF-8 version is supported. If it\u0027s unsupported, it tries to\nput the data table using symbol_put(). If an unsupported version is\nrequested, symbol_put() fails like this:\n\n kernel BUG at kernel/module/main.c:786!\n RIP: 0010:__symbol_put+0x93/0xb0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x19/0x27\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x65/0x80\n ? __symbol_put+0x93/0xb0\n ? exc_invalid_op+0x51/0x70\n ? __symbol_put+0x93/0xb0\n ? asm_exc_invalid_op+0x1a/0x20\n ? __pfx_cmp_name+0x10/0x10\n ? __symbol_put+0x93/0xb0\n ? __symbol_put+0x62/0xb0\n utf8_load+0xf8/0x150\n\nThat happens because symbol_put() expects the unique string that\nidentify the symbol, instead of a pointer to the loaded symbol. Fix that\nby using such string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53233",
"url": "https://www.suse.com/security/cve/CVE-2024-53233"
},
{
"category": "external",
"summary": "SUSE Bug 1235046 for CVE-2024-53233",
"url": "https://bugzilla.suse.com/1235046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53233"
},
{
"cve": "CVE-2024-53234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle NONHEAD !delta[1] lclusters gracefully\n\nsyzbot reported a WARNING in iomap_iter_done:\n iomap_fiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80\n ioctl_fiemap fs/ioctl.c:220 [inline]\n\nGenerally, NONHEAD lclusters won\u0027t have delta[1]==0, except for crafted\nimages and filesystems created by pre-1.0 mkfs versions.\n\nPreviously, it would immediately bail out if delta[1]==0, which led to\ninadequate decompressed lengths (thus FIEMAP is impacted). Treat it as\ndelta[1]=1 to work around these legacy mkfs versions.\n\n`lclusterbits \u003e 14` is illegal for compact indexes, error out too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53234",
"url": "https://www.suse.com/security/cve/CVE-2024-53234"
},
{
"category": "external",
"summary": "SUSE Bug 1235045 for CVE-2024-53234",
"url": "https://bugzilla.suse.com/1235045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53234"
},
{
"cve": "CVE-2024-53236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: Free skb when TX metadata options are invalid\n\nWhen a new skb is allocated for transmitting an xsk descriptor, i.e., for\nevery non-multibuf descriptor or the first frag of a multibuf descriptor,\nbut the descriptor is later found to have invalid options set for the TX\nmetadata, the new skb is never freed. This can leak skbs until the send\nbuffer is full which makes sending more packets impossible.\n\nFix this by freeing the skb in the error path if we are currently dealing\nwith the first frag, i.e., an skb allocated in this iteration of\nxsk_build_skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53236",
"url": "https://www.suse.com/security/cve/CVE-2024-53236"
},
{
"category": "external",
"summary": "SUSE Bug 1235000 for CVE-2024-53236",
"url": "https://bugzilla.suse.com/1235000"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53236"
},
{
"cve": "CVE-2024-53237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: fix use-after-free in device_for_each_child()\n\nSyzbot has reported the following KASAN splat:\n\nBUG: KASAN: slab-use-after-free in device_for_each_child+0x18f/0x1a0\nRead of size 8 at addr ffff88801f605308 by task kbnepd bnep0/4980\n\nCPU: 0 UID: 0 PID: 4980 Comm: kbnepd bnep0 Not tainted 6.12.0-rc4-00161-gae90f6a6170d #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x100/0x190\n ? device_for_each_child+0x18f/0x1a0\n print_report+0x13a/0x4cb\n ? __virt_addr_valid+0x5e/0x590\n ? __phys_addr+0xc6/0x150\n ? device_for_each_child+0x18f/0x1a0\n kasan_report+0xda/0x110\n ? device_for_each_child+0x18f/0x1a0\n ? __pfx_dev_memalloc_noio+0x10/0x10\n device_for_each_child+0x18f/0x1a0\n ? __pfx_device_for_each_child+0x10/0x10\n pm_runtime_set_memalloc_noio+0xf2/0x180\n netdev_unregister_kobject+0x1ed/0x270\n unregister_netdevice_many_notify+0x123c/0x1d80\n ? __mutex_trylock_common+0xde/0x250\n ? __pfx_unregister_netdevice_many_notify+0x10/0x10\n ? trace_contention_end+0xe6/0x140\n ? __mutex_lock+0x4e7/0x8f0\n ? __pfx_lock_acquire.part.0+0x10/0x10\n ? rcu_is_watching+0x12/0xc0\n ? unregister_netdev+0x12/0x30\n unregister_netdevice_queue+0x30d/0x3f0\n ? __pfx_unregister_netdevice_queue+0x10/0x10\n ? __pfx_down_write+0x10/0x10\n unregister_netdev+0x1c/0x30\n bnep_session+0x1fb3/0x2ab0\n ? __pfx_bnep_session+0x10/0x10\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_woken_wake_function+0x10/0x10\n ? __kthread_parkme+0x132/0x200\n ? __pfx_bnep_session+0x10/0x10\n ? kthread+0x13a/0x370\n ? __pfx_bnep_session+0x10/0x10\n kthread+0x2b7/0x370\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x48/0x80\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 4974:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n __kmalloc_noprof+0x1d1/0x440\n hci_alloc_dev_priv+0x1d/0x2820\n __vhci_create_device+0xef/0x7d0\n vhci_write+0x2c7/0x480\n vfs_write+0x6a0/0xfc0\n ksys_write+0x12f/0x260\n do_syscall_64+0xc7/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 4979:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x4f/0x70\n kfree+0x141/0x490\n hci_release_dev+0x4d9/0x600\n bt_host_release+0x6a/0xb0\n device_release+0xa4/0x240\n kobject_put+0x1ec/0x5a0\n put_device+0x1f/0x30\n vhci_release+0x81/0xf0\n __fput+0x3f6/0xb30\n task_work_run+0x151/0x250\n do_exit+0xa79/0x2c30\n do_group_exit+0xd5/0x2a0\n get_signal+0x1fcd/0x2210\n arch_do_signal_or_restart+0x93/0x780\n syscall_exit_to_user_mode+0x140/0x290\n do_syscall_64+0xd4/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nIn \u0027hci_conn_del_sysfs()\u0027, \u0027device_unregister()\u0027 may be called when\nan underlying (kobject) reference counter is greater than 1. This\nmeans that reparenting (happened when the device is actually freed)\nis delayed and, during that delay, parent controller device (hciX)\nmay be deleted. Since the latter may create a dangling pointer to\nfreed parent, avoid that scenario by reparenting to NULL explicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53237",
"url": "https://www.suse.com/security/cve/CVE-2024-53237"
},
{
"category": "external",
"summary": "SUSE Bug 1235007 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "external",
"summary": "SUSE Bug 1235008 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235008"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53237"
},
{
"cve": "CVE-2024-53239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: 6fire: Release resources at card release\n\nThe current 6fire code tries to release the resources right after the\ncall of usb6fire_chip_abort(). But at this moment, the card object\nmight be still in use (as we\u0027re calling snd_card_free_when_closed()).\n\nFor avoid potential UAFs, move the release of resources to the card\u0027s\nprivate_free instead of the manual call of usb6fire_chip_destroy() at\nthe USB disconnect callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53239",
"url": "https://www.suse.com/security/cve/CVE-2024-53239"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235054 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "external",
"summary": "SUSE Bug 1235055 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-53239"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-53685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: give up on paths longer than PATH_MAX\n\nIf the full path to be built by ceph_mdsc_build_path() happens to be\nlonger than PATH_MAX, then this function will enter an endless (retry)\nloop, effectively blocking the whole task. Most of the machine\nbecomes unusable, making this a very simple and effective DoS\nvulnerability.\n\nI cannot imagine why this retry was ever implemented, but it seems\nrather useless and harmful to me. Let\u0027s remove it and fail with\nENAMETOOLONG instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53685",
"url": "https://www.suse.com/security/cve/CVE-2024-53685"
},
{
"category": "external",
"summary": "SUSE Bug 1235720 for CVE-2024-53685",
"url": "https://bugzilla.suse.com/1235720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53685"
},
{
"cve": "CVE-2024-53690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: prevent use of deleted inode\n\nsyzbot reported a WARNING in nilfs_rmdir. [1]\n\nBecause the inode bitmap is corrupted, an inode with an inode number that\nshould exist as a \".nilfs\" file was reassigned by nilfs_mkdir for \"file0\",\ncausing an inode duplication during execution. And this causes an\nunderflow of i_nlink in rmdir operations.\n\nThe inode is used twice by the same task to unmount and remove directories\n\".nilfs\" and \"file0\", it trigger warning in nilfs_rmdir.\n\nAvoid to this issue, check i_nlink in nilfs_iget(), if it is 0, it means\nthat this inode has been deleted, and iput is executed to reclaim it.\n\n[1]\nWARNING: CPU: 1 PID: 5824 at fs/inode.c:407 drop_nlink+0xc4/0x110 fs/inode.c:407\n...\nCall Trace:\n \u003cTASK\u003e\n nilfs_rmdir+0x1b0/0x250 fs/nilfs2/namei.c:342\n vfs_rmdir+0x3a3/0x510 fs/namei.c:4394\n do_rmdir+0x3b5/0x580 fs/namei.c:4453\n __do_sys_rmdir fs/namei.c:4472 [inline]\n __se_sys_rmdir fs/namei.c:4470 [inline]\n __x64_sys_rmdir+0x47/0x50 fs/namei.c:4470\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53690",
"url": "https://www.suse.com/security/cve/CVE-2024-53690"
},
{
"category": "external",
"summary": "SUSE Bug 1235842 for CVE-2024-53690",
"url": "https://bugzilla.suse.com/1235842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-53690"
},
{
"cve": "CVE-2024-54680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-54680"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-54680",
"url": "https://www.suse.com/security/cve/CVE-2024-54680"
},
{
"category": "external",
"summary": "SUSE Bug 1235723 for CVE-2024-54680",
"url": "https://bugzilla.suse.com/1235723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-54680"
},
{
"cve": "CVE-2024-55639",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55639"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: renesas: rswitch: avoid use-after-put for a device tree node\n\nThe device tree node saved in the rswitch_device structure is used at\nseveral driver locations. So passing this node to of_node_put() after\nthe first use is wrong.\n\nMove of_node_put() for this node to exit paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55639",
"url": "https://www.suse.com/security/cve/CVE-2024-55639"
},
{
"category": "external",
"summary": "SUSE Bug 1235737 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "external",
"summary": "SUSE Bug 1235738 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-55639"
},
{
"cve": "CVE-2024-55881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: x86: Play nice with protected guests in complete_hypercall_exit()\n\nUse is_64_bit_hypercall() instead of is_64_bit_mode() to detect a 64-bit\nhypercall when completing said hypercall. For guests with protected state,\ne.g. SEV-ES and SEV-SNP, KVM must assume the hypercall was made in 64-bit\nmode as the vCPU state needed to detect 64-bit mode is unavailable.\n\nHacking the sev_smoke_test selftest to generate a KVM_HC_MAP_GPA_RANGE\nhypercall via VMGEXIT trips the WARN:\n\n ------------[ cut here ]------------\n WARNING: CPU: 273 PID: 326626 at arch/x86/kvm/x86.h:180 complete_hypercall_exit+0x44/0xe0 [kvm]\n Modules linked in: kvm_amd kvm ... [last unloaded: kvm]\n CPU: 273 UID: 0 PID: 326626 Comm: sev_smoke_test Not tainted 6.12.0-smp--392e932fa0f3-feat #470\n Hardware name: Google Astoria/astoria, BIOS 0.20240617.0-0 06/17/2024\n RIP: 0010:complete_hypercall_exit+0x44/0xe0 [kvm]\n Call Trace:\n \u003cTASK\u003e\n kvm_arch_vcpu_ioctl_run+0x2400/0x2720 [kvm]\n kvm_vcpu_ioctl+0x54f/0x630 [kvm]\n __se_sys_ioctl+0x6b/0xc0\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55881",
"url": "https://www.suse.com/security/cve/CVE-2024-55881"
},
{
"category": "external",
"summary": "SUSE Bug 1235745 for CVE-2024-55881",
"url": "https://bugzilla.suse.com/1235745"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-55881"
},
{
"cve": "CVE-2024-55916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nDrivers: hv: util: Avoid accessing a ringbuffer not initialized yet\n\nIf the KVP (or VSS) daemon starts before the VMBus channel\u0027s ringbuffer is\nfully initialized, we can hit the panic below:\n\nhv_utils: Registering HyperV Utility Driver\nhv_vmbus: registering driver hv_utils\n...\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nCPU: 44 UID: 0 PID: 2552 Comm: hv_kvp_daemon Tainted: G E 6.11.0-rc3+ #1\nRIP: 0010:hv_pkt_iter_first+0x12/0xd0\nCall Trace:\n...\n vmbus_recvpacket\n hv_kvp_onchannelcallback\n vmbus_on_event\n tasklet_action_common\n tasklet_action\n handle_softirqs\n irq_exit_rcu\n sysvec_hyperv_stimer0\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_hyperv_stimer0\n...\n kvp_register_done\n hvt_op_read\n vfs_read\n ksys_read\n __x64_sys_read\n\nThis can happen because the KVP/VSS channel callback can be invoked\neven before the channel is fully opened:\n1) as soon as hv_kvp_init() -\u003e hvutil_transport_init() creates\n/dev/vmbus/hv_kvp, the kvp daemon can open the device file immediately and\nregister itself to the driver by writing a message KVP_OP_REGISTER1 to the\nfile (which is handled by kvp_on_msg() -\u003ekvp_handle_handshake()) and\nreading the file for the driver\u0027s response, which is handled by\nhvt_op_read(), which calls hvt-\u003eon_read(), i.e. kvp_register_done().\n\n2) the problem with kvp_register_done() is that it can cause the\nchannel callback to be called even before the channel is fully opened,\nand when the channel callback is starting to run, util_probe()-\u003e\nvmbus_open() may have not initialized the ringbuffer yet, so the\ncallback can hit the panic of NULL pointer dereference.\n\nTo reproduce the panic consistently, we can add a \"ssleep(10)\" for KVP in\n__vmbus_open(), just before the first hv_ringbuffer_init(), and then we\nunload and reload the driver hv_utils, and run the daemon manually within\nthe 10 seconds.\n\nFix the panic by reordering the steps in util_probe() so the char dev\nentry used by the KVP or VSS daemon is not created until after\nvmbus_open() has completed. This reordering prevents the race condition\nfrom happening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55916",
"url": "https://www.suse.com/security/cve/CVE-2024-55916"
},
{
"category": "external",
"summary": "SUSE Bug 1235747 for CVE-2024-55916",
"url": "https://bugzilla.suse.com/1235747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-55916"
},
{
"cve": "CVE-2024-56369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56369"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/modes: Avoid divide by zero harder in drm_mode_vrefresh()\n\ndrm_mode_vrefresh() is trying to avoid divide by zero\nby checking whether htotal or vtotal are zero. But we may\nstill end up with a div-by-zero of vtotal*htotal*...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56369",
"url": "https://www.suse.com/security/cve/CVE-2024-56369"
},
{
"category": "external",
"summary": "SUSE Bug 1235750 for CVE-2024-56369",
"url": "https://bugzilla.suse.com/1235750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56369"
},
{
"cve": "CVE-2024-56372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tun: fix tun_napi_alloc_frags()\n\nsyzbot reported the following crash [1]\n\nIssue came with the blamed commit. Instead of going through\nall the iov components, we keep using the first one\nand end up with a malformed skb.\n\n[1]\n\nkernel BUG at net/core/skbuff.c:2849 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 6230 Comm: syz-executor132 Not tainted 6.13.0-rc1-syzkaller-00407-g96b6fcc0ee41 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024\n RIP: 0010:__pskb_pull_tail+0x1568/0x1570 net/core/skbuff.c:2848\nCode: 38 c1 0f 8c 32 f1 ff ff 4c 89 f7 e8 92 96 74 f8 e9 25 f1 ff ff e8 e8 ae 09 f8 48 8b 5c 24 08 e9 eb fb ff ff e8 d9 ae 09 f8 90 \u003c0f\u003e 0b 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90\nRSP: 0018:ffffc90004cbef30 EFLAGS: 00010293\nRAX: ffffffff8995c347 RBX: 00000000fffffff2 RCX: ffff88802cf45a00\nRDX: 0000000000000000 RSI: 00000000fffffff2 RDI: 0000000000000000\nRBP: ffff88807df0c06a R08: ffffffff8995b084 R09: 1ffff1100fbe185c\nR10: dffffc0000000000 R11: ffffed100fbe185d R12: ffff888076e85d50\nR13: ffff888076e85c80 R14: ffff888076e85cf4 R15: ffff888076e85c80\nFS: 00007f0dca6ea6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f0dca6ead58 CR3: 00000000119da000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_cow_data+0x2da/0xcb0 net/core/skbuff.c:5284\n tipc_aead_decrypt net/tipc/crypto.c:894 [inline]\n tipc_crypto_rcv+0x402/0x24e0 net/tipc/crypto.c:1844\n tipc_rcv+0x57e/0x12a0 net/tipc/node.c:2109\n tipc_l2_rcv_msg+0x2bd/0x450 net/tipc/bearer.c:668\n __netif_receive_skb_list_ptype net/core/dev.c:5720 [inline]\n __netif_receive_skb_list_core+0x8b7/0x980 net/core/dev.c:5762\n __netif_receive_skb_list net/core/dev.c:5814 [inline]\n netif_receive_skb_list_internal+0xa51/0xe30 net/core/dev.c:5905\n gro_normal_list include/net/gro.h:515 [inline]\n napi_complete_done+0x2b5/0x870 net/core/dev.c:6256\n napi_complete include/linux/netdevice.h:567 [inline]\n tun_get_user+0x2ea0/0x4890 drivers/net/tun.c:1982\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2057\n do_iter_readv_writev+0x600/0x880\n vfs_writev+0x376/0xba0 fs/read_write.c:1050\n do_writev+0x1b6/0x360 fs/read_write.c:1096\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56372",
"url": "https://www.suse.com/security/cve/CVE-2024-56372"
},
{
"category": "external",
"summary": "SUSE Bug 1235753 for CVE-2024-56372",
"url": "https://bugzilla.suse.com/1235753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56372"
},
{
"cve": "CVE-2024-56531",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56531"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: caiaq: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThis patch also splits the code to the disconnect and the free phases;\nthe former is called immediately at the USB disconnect callback while\nthe latter is called from the card destructor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56531",
"url": "https://www.suse.com/security/cve/CVE-2024-56531"
},
{
"category": "external",
"summary": "SUSE Bug 1235057 for CVE-2024-56531",
"url": "https://bugzilla.suse.com/1235057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56531"
},
{
"cve": "CVE-2024-56532",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56532"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: us122l: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThe loop of us122l-\u003emmap_count check is dropped as well. The check is\nuseless for the asynchronous operation with *_when_closed().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56532",
"url": "https://www.suse.com/security/cve/CVE-2024-56532"
},
{
"category": "external",
"summary": "SUSE Bug 1235059 for CVE-2024-56532",
"url": "https://bugzilla.suse.com/1235059"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56532"
},
{
"cve": "CVE-2024-56533",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56533"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usx2y: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56533",
"url": "https://www.suse.com/security/cve/CVE-2024-56533"
},
{
"category": "external",
"summary": "SUSE Bug 1235053 for CVE-2024-56533",
"url": "https://bugzilla.suse.com/1235053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56533"
},
{
"cve": "CVE-2024-56536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56536"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cw1200: Fix potential NULL dereference\n\nA recent refactoring was identified by static analysis to\ncause a potential NULL dereference, fix this!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56536",
"url": "https://www.suse.com/security/cve/CVE-2024-56536"
},
{
"category": "external",
"summary": "SUSE Bug 1234911 for CVE-2024-56536",
"url": "https://bugzilla.suse.com/1234911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56536"
},
{
"cve": "CVE-2024-56538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: zynqmp_kms: Unplug DRM device before removal\n\nPrevent userspace accesses to the DRM device from causing\nuse-after-frees by unplugging the device before we remove it. This\ncauses any further userspace accesses to result in an error without\nfurther calls into this driver\u0027s internals.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56538",
"url": "https://www.suse.com/security/cve/CVE-2024-56538"
},
{
"category": "external",
"summary": "SUSE Bug 1235051 for CVE-2024-56538",
"url": "https://bugzilla.suse.com/1235051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56538"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: Skip Rx TID cleanup for self peer\n\nDuring peer create, dp setup for the peer is done where Rx TID is\nupdated for all the TIDs. Peer object for self peer will not go through\ndp setup.\n\nWhen core halts, dp cleanup is done for all the peers. While cleanup,\nrx_tid::ab is accessed which causes below stack trace for self peer.\n\nWARNING: CPU: 6 PID: 12297 at drivers/net/wireless/ath/ath12k/dp_rx.c:851\nCall Trace:\n__warn+0x7b/0x1a0\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nreport_bug+0x10b/0x200\nhandle_bug+0x3f/0x70\nexc_invalid_op+0x13/0x60\nasm_exc_invalid_op+0x16/0x20\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nath12k_dp_rx_frags_cleanup+0xca/0xe0 [ath12k]\nath12k_dp_rx_peer_tid_cleanup+0x39/0xa0 [ath12k]\nath12k_mac_peer_cleanup_all+0x61/0x100 [ath12k]\nath12k_core_halt+0x3b/0x100 [ath12k]\nath12k_core_reset+0x494/0x4c0 [ath12k]\n\nsta object in peer will be updated when remote peer is created. Hence\nuse peer::sta to detect the self peer and skip the cleanup.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.1.0.c5-00481-QCAHMTSWPL_V1.0_V2.0_SILICONZ-3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56543",
"url": "https://www.suse.com/security/cve/CVE-2024-56543"
},
{
"category": "external",
"summary": "SUSE Bug 1235065 for CVE-2024-56543",
"url": "https://bugzilla.suse.com/1235065"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56543"
},
{
"cve": "CVE-2024-56546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56546"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()\n\nIf we fail to allocate memory for cb_data by kmalloc, the memory\nallocation for eve_data is never freed, add the missing kfree()\nin the error handling path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56546",
"url": "https://www.suse.com/security/cve/CVE-2024-56546"
},
{
"category": "external",
"summary": "SUSE Bug 1235070 for CVE-2024-56546",
"url": "https://bugzilla.suse.com/1235070"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56546"
},
{
"cve": "CVE-2024-56548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: don\u0027t query the device logical block size multiple times\n\nDevices block sizes may change. One of these cases is a loop device by\nusing ioctl LOOP_SET_BLOCK_SIZE.\n\nWhile this may cause other issues like IO being rejected, in the case of\nhfsplus, it will allocate a block by using that size and potentially write\nout-of-bounds when hfsplus_read_wrapper calls hfsplus_submit_bio and the\nlatter function reads a different io_size.\n\nUsing a new min_io_size initally set to sb_min_blocksize works for the\npurposes of the original fix, since it will be set to the max between\nHFSPLUS_SECTOR_SIZE and the first seen logical block size. We still use the\nmax between HFSPLUS_SECTOR_SIZE and min_io_size in case the latter is not\ninitialized.\n\nTested by mounting an hfsplus filesystem with loop block sizes 512, 1024\nand 4096.\n\nThe produced KASAN report before the fix looks like this:\n\n[ 419.944641] ==================================================================\n[ 419.945655] BUG: KASAN: slab-use-after-free in hfsplus_read_wrapper+0x659/0xa0a\n[ 419.946703] Read of size 2 at addr ffff88800721fc00 by task repro/10678\n[ 419.947612]\n[ 419.947846] CPU: 0 UID: 0 PID: 10678 Comm: repro Not tainted 6.12.0-rc5-00008-gdf56e0f2f3ca #84\n[ 419.949007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 419.950035] Call Trace:\n[ 419.950384] \u003cTASK\u003e\n[ 419.950676] dump_stack_lvl+0x57/0x78\n[ 419.951212] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.951830] print_report+0x14c/0x49e\n[ 419.952361] ? __virt_addr_valid+0x267/0x278\n[ 419.952979] ? kmem_cache_debug_flags+0xc/0x1d\n[ 419.953561] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.954231] kasan_report+0x89/0xb0\n[ 419.954748] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955367] hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955948] ? __pfx_hfsplus_read_wrapper+0x10/0x10\n[ 419.956618] ? do_raw_spin_unlock+0x59/0x1a9\n[ 419.957214] ? _raw_spin_unlock+0x1a/0x2e\n[ 419.957772] hfsplus_fill_super+0x348/0x1590\n[ 419.958355] ? hlock_class+0x4c/0x109\n[ 419.958867] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.959499] ? __pfx_string+0x10/0x10\n[ 419.960006] ? lock_acquire+0x3e2/0x454\n[ 419.960532] ? bdev_name.constprop.0+0xce/0x243\n[ 419.961129] ? __pfx_bdev_name.constprop.0+0x10/0x10\n[ 419.961799] ? pointer+0x3f0/0x62f\n[ 419.962277] ? __pfx_pointer+0x10/0x10\n[ 419.962761] ? vsnprintf+0x6c4/0xfba\n[ 419.963178] ? __pfx_vsnprintf+0x10/0x10\n[ 419.963621] ? setup_bdev_super+0x376/0x3b3\n[ 419.964029] ? snprintf+0x9d/0xd2\n[ 419.964344] ? __pfx_snprintf+0x10/0x10\n[ 419.964675] ? lock_acquired+0x45c/0x5e9\n[ 419.965016] ? set_blocksize+0x139/0x1c1\n[ 419.965381] ? sb_set_blocksize+0x6d/0xae\n[ 419.965742] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.966179] mount_bdev+0x12f/0x1bf\n[ 419.966512] ? __pfx_mount_bdev+0x10/0x10\n[ 419.966886] ? vfs_parse_fs_string+0xce/0x111\n[ 419.967293] ? __pfx_vfs_parse_fs_string+0x10/0x10\n[ 419.967702] ? __pfx_hfsplus_mount+0x10/0x10\n[ 419.968073] legacy_get_tree+0x104/0x178\n[ 419.968414] vfs_get_tree+0x86/0x296\n[ 419.968751] path_mount+0xba3/0xd0b\n[ 419.969157] ? __pfx_path_mount+0x10/0x10\n[ 419.969594] ? kmem_cache_free+0x1e2/0x260\n[ 419.970311] do_mount+0x99/0xe0\n[ 419.970630] ? __pfx_do_mount+0x10/0x10\n[ 419.971008] __do_sys_mount+0x199/0x1c9\n[ 419.971397] do_syscall_64+0xd0/0x135\n[ 419.971761] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 419.972233] RIP: 0033:0x7c3cb812972e\n[ 419.972564] Code: 48 8b 0d f5 46 0d 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 a5 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d c2 46 0d 00 f7 d8 64 89 01 48\n[ 419.974371] RSP: 002b:00007ffe30632548 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5\n[ 419.975048] RAX: ffffffffffffffda RBX: 00007ffe306328d8 RCX: 00007c3cb812972e\n[ 419.975701] RDX: 0000000020000000 RSI: 0000000020000c80 RDI:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56548",
"url": "https://www.suse.com/security/cve/CVE-2024-56548"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235073 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "external",
"summary": "SUSE Bug 1235074 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56548"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix usage slab after free\n\n[ +0.000021] BUG: KASAN: slab-use-after-free in drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000027] Read of size 8 at addr ffff8881b8605f88 by task amd_pci_unplug/2147\n\n[ +0.000023] CPU: 6 PID: 2147 Comm: amd_pci_unplug Not tainted 6.10.0+ #1\n[ +0.000016] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[ +0.000016] Call Trace:\n[ +0.000008] \u003cTASK\u003e\n[ +0.000009] dump_stack_lvl+0x76/0xa0\n[ +0.000017] print_report+0xce/0x5f0\n[ +0.000017] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] ? srso_return_thunk+0x5/0x5f\n[ +0.000015] ? kasan_complete_mode_report_info+0x72/0x200\n[ +0.000016] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] kasan_report+0xbe/0x110\n[ +0.000015] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000023] __asan_report_load8_noabort+0x14/0x30\n[ +0.000014] drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000016] ? __pfx_drm_sched_entity_flush+0x10/0x10 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? enable_work+0x124/0x220\n[ +0.000015] ? __pfx_enable_work+0x10/0x10\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? free_large_kmalloc+0x85/0xf0\n[ +0.000016] drm_sched_entity_destroy+0x18/0x30 [gpu_sched]\n[ +0.000020] amdgpu_vce_sw_fini+0x55/0x170 [amdgpu]\n[ +0.000735] ? __kasan_check_read+0x11/0x20\n[ +0.000016] vce_v4_0_sw_fini+0x80/0x110 [amdgpu]\n[ +0.000726] amdgpu_device_fini_sw+0x331/0xfc0 [amdgpu]\n[ +0.000679] ? mutex_unlock+0x80/0xe0\n[ +0.000017] ? __pfx_amdgpu_device_fini_sw+0x10/0x10 [amdgpu]\n[ +0.000662] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? mutex_unlock+0x80/0xe0\n[ +0.000016] amdgpu_driver_release_kms+0x16/0x80 [amdgpu]\n[ +0.000663] drm_minor_release+0xc9/0x140 [drm]\n[ +0.000081] drm_release+0x1fd/0x390 [drm]\n[ +0.000082] __fput+0x36c/0xad0\n[ +0.000018] __fput_sync+0x3c/0x50\n[ +0.000014] __x64_sys_close+0x7d/0xe0\n[ +0.000014] x64_sys_call+0x1bc6/0x2680\n[ +0.000014] do_syscall_64+0x70/0x130\n[ +0.000014] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit_to_user_mode+0x60/0x190\n[ +0.000015] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit+0x43/0x50\n[ +0.000012] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? exc_page_fault+0x7c/0x110\n[ +0.000015] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ +0.000014] RIP: 0033:0x7ffff7b14f67\n[ +0.000013] Code: ff e8 0d 16 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 03 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 41 c3 48 83 ec 18 89 7c 24 0c e8 73 ba f7 ff\n[ +0.000026] RSP: 002b:00007fffffffe378 EFLAGS: 00000246 ORIG_RAX: 0000000000000003\n[ +0.000019] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffff7b14f67\n[ +0.000014] RDX: 0000000000000000 RSI: 00007ffff7f6f47a RDI: 0000000000000003\n[ +0.000014] RBP: 00007fffffffe3a0 R08: 0000555555569890 R09: 0000000000000000\n[ +0.000014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffffe5c8\n[ +0.000013] R13: 00005555555552a9 R14: 0000555555557d48 R15: 00007ffff7ffd040\n[ +0.000020] \u003c/TASK\u003e\n\n[ +0.000016] Allocated by task 383 on cpu 7 at 26.880319s:\n[ +0.000014] kasan_save_stack+0x28/0x60\n[ +0.000008] kasan_save_track+0x18/0x70\n[ +0.000007] kasan_save_alloc_info+0x38/0x60\n[ +0.000007] __kasan_kmalloc+0xc1/0xd0\n[ +0.000007] kmalloc_trace_noprof+0x180/0x380\n[ +0.000007] drm_sched_init+0x411/0xec0 [gpu_sched]\n[ +0.000012] amdgpu_device_init+0x695f/0xa610 [amdgpu]\n[ +0.000658] amdgpu_driver_load_kms+0x1a/0x120 [amdgpu]\n[ +0.000662] amdgpu_pci_p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56551",
"url": "https://www.suse.com/security/cve/CVE-2024-56551"
},
{
"category": "external",
"summary": "SUSE Bug 1235075 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "external",
"summary": "SUSE Bug 1235102 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56551"
},
{
"cve": "CVE-2024-56557",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56557"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer\n\nThe AD7923 was updated to support devices with 8 channels, but the size\nof tx_buf and ring_xfer was not increased accordingly, leading to a\npotential buffer overflow in ad7923_update_scan_mode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56557",
"url": "https://www.suse.com/security/cve/CVE-2024-56557"
},
{
"category": "external",
"summary": "SUSE Bug 1235122 for CVE-2024-56557",
"url": "https://bugzilla.suse.com/1235122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56557"
},
{
"cve": "CVE-2024-56558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56558"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: make sure exp active before svc_export_show\n\nThe function `e_show` was called with protection from RCU. This only\nensures that `exp` will not be freed. Therefore, the reference count for\n`exp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `exp_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `exp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 3 PID: 819 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 3 UID: 0 PID: 819 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n...\nCall Trace:\n \u003cTASK\u003e\n e_show+0x20b/0x230 [nfsd]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56558",
"url": "https://www.suse.com/security/cve/CVE-2024-56558"
},
{
"category": "external",
"summary": "SUSE Bug 1235100 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "external",
"summary": "SUSE Bug 1243648 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1243648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56558"
},
{
"cve": "CVE-2024-56562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56562"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()\n\nif (dev-\u003eboardinfo \u0026\u0026 dev-\u003eboardinfo-\u003einit_dyn_addr)\n ^^^ here check \"init_dyn_addr\"\n\ti3c_bus_set_addr_slot_status(\u0026master-\u003ebus, dev-\u003einfo.dyn_addr, ...)\n\t\t\t\t\t\t ^^^^\n\t\t\t\t\t\t\tfree \"dyn_addr\"\nFix copy/paste error \"dyn_addr\" by replacing it with \"init_dyn_addr\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56562",
"url": "https://www.suse.com/security/cve/CVE-2024-56562"
},
{
"category": "external",
"summary": "SUSE Bug 1234930 for CVE-2024-56562",
"url": "https://bugzilla.suse.com/1234930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56562"
},
{
"cve": "CVE-2024-56566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: Avoid list corruption when removing a slab from the full list\n\nBoot with slub_debug=UFPZ.\n\nIf allocated object failed in alloc_consistency_checks, all objects of\nthe slab will be marked as used, and then the slab will be removed from\nthe partial list.\n\nWhen an object belonging to the slab got freed later, the remove_full()\nfunction is called. Because the slab is neither on the partial list nor\non the full list, it eventually lead to a list corruption (actually a\nlist poison being detected).\n\nSo we need to mark and isolate the slab page with metadata corruption,\ndo not put it back in circulation.\n\nBecause the debug caches avoid all the fastpaths, reusing the frozen bit\nto mark slab page with metadata corruption seems to be fine.\n\n[ 4277.385669] list_del corruption, ffffea00044b3e50-\u003enext is LIST_POISON1 (dead000000000100)\n[ 4277.387023] ------------[ cut here ]------------\n[ 4277.387880] kernel BUG at lib/list_debug.c:56!\n[ 4277.388680] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 4277.389562] CPU: 5 PID: 90 Comm: kworker/5:1 Kdump: loaded Tainted: G OE 6.6.1-1 #1\n[ 4277.392113] Workqueue: xfs-inodegc/vda1 xfs_inodegc_worker [xfs]\n[ 4277.393551] RIP: 0010:__list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.394518] Code: 48 91 82 e8 37 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 28 49 91 82 e8 26 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 58 49 91\n[ 4277.397292] RSP: 0018:ffffc90000333b38 EFLAGS: 00010082\n[ 4277.398202] RAX: 000000000000004e RBX: ffffea00044b3e50 RCX: 0000000000000000\n[ 4277.399340] RDX: 0000000000000002 RSI: ffffffff828f8715 RDI: 00000000ffffffff\n[ 4277.400545] RBP: ffffea00044b3e40 R08: 0000000000000000 R09: ffffc900003339f0\n[ 4277.401710] R10: 0000000000000003 R11: ffffffff82d44088 R12: ffff888112cf9910\n[ 4277.402887] R13: 0000000000000001 R14: 0000000000000001 R15: ffff8881000424c0\n[ 4277.404049] FS: 0000000000000000(0000) GS:ffff88842fd40000(0000) knlGS:0000000000000000\n[ 4277.405357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4277.406389] CR2: 00007f2ad0b24000 CR3: 0000000102a3a006 CR4: 00000000007706e0\n[ 4277.407589] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4277.408780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4277.410000] PKRU: 55555554\n[ 4277.410645] Call Trace:\n[ 4277.411234] \u003cTASK\u003e\n[ 4277.411777] ? die+0x32/0x80\n[ 4277.412439] ? do_trap+0xd6/0x100\n[ 4277.413150] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.414158] ? do_error_trap+0x6a/0x90\n[ 4277.414948] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.415915] ? exc_invalid_op+0x4c/0x60\n[ 4277.416710] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.417675] ? asm_exc_invalid_op+0x16/0x20\n[ 4277.418482] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.419466] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.420410] free_to_partial_list+0x515/0x5e0\n[ 4277.421242] ? xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.422298] xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.423316] ? xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.424383] xfs_bmap_del_extent_delay+0x4fe/0x7d0 [xfs]\n[ 4277.425490] __xfs_bunmapi+0x50d/0x840 [xfs]\n[ 4277.426445] xfs_itruncate_extents_flags+0x13a/0x490 [xfs]\n[ 4277.427553] xfs_inactive_truncate+0xa3/0x120 [xfs]\n[ 4277.428567] xfs_inactive+0x22d/0x290 [xfs]\n[ 4277.429500] xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.430479] process_one_work+0x171/0x340\n[ 4277.431227] worker_thread+0x277/0x390\n[ 4277.431962] ? __pfx_worker_thread+0x10/0x10\n[ 4277.432752] kthread+0xf0/0x120\n[ 4277.433382] ? __pfx_kthread+0x10/0x10\n[ 4277.434134] ret_from_fork+0x2d/0x50\n[ 4277.434837] ? __pfx_kthread+0x10/0x10\n[ 4277.435566] ret_from_fork_asm+0x1b/0x30\n[ 4277.436280] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56566",
"url": "https://www.suse.com/security/cve/CVE-2024-56566"
},
{
"category": "external",
"summary": "SUSE Bug 1235033 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "external",
"summary": "SUSE Bug 1235034 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56566"
},
{
"cve": "CVE-2024-56567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nad7780: fix division by zero in ad7780_write_raw()\n\nIn the ad7780_write_raw() , val2 can be zero, which might lead to a\ndivision by zero error in DIV_ROUND_CLOSEST(). The ad7780_write_raw()\nis based on iio_info\u0027s write_raw. While val is explicitly declared that\ncan be zero (in read mode), val2 is not specified to be non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56567",
"url": "https://www.suse.com/security/cve/CVE-2024-56567"
},
{
"category": "external",
"summary": "SUSE Bug 1234916 for CVE-2024-56567",
"url": "https://bugzilla.suse.com/1234916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56567"
},
{
"cve": "CVE-2024-56568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56568"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/arm-smmu: Defer probe of clients after smmu device bound\n\nNull pointer dereference occurs due to a race between smmu\ndriver probe and client driver probe, when of_dma_configure()\nfor client is called after the iommu_device_register() for smmu driver\nprobe has executed but before the driver_bound() for smmu driver\nhas been called.\n\nFollowing is how the race occurs:\n\nT1:Smmu device probe\t\tT2: Client device probe\n\nreally_probe()\narm_smmu_device_probe()\niommu_device_register()\n\t\t\t\t\treally_probe()\n\t\t\t\t\tplatform_dma_configure()\n\t\t\t\t\tof_dma_configure()\n\t\t\t\t\tof_dma_configure_id()\n\t\t\t\t\tof_iommu_configure()\n\t\t\t\t\tiommu_probe_device()\n\t\t\t\t\tiommu_init_device()\n\t\t\t\t\tarm_smmu_probe_device()\n\t\t\t\t\tarm_smmu_get_by_fwnode()\n\t\t\t\t\t\tdriver_find_device_by_fwnode()\n\t\t\t\t\t\tdriver_find_device()\n\t\t\t\t\t\tnext_device()\n\t\t\t\t\t\tklist_next()\n\t\t\t\t\t\t /* null ptr\n\t\t\t\t\t\t assigned to smmu */\n\t\t\t\t\t/* null ptr dereference\n\t\t\t\t\t while smmu-\u003estreamid_mask */\ndriver_bound()\n\tklist_add_tail()\n\nWhen this null smmu pointer is dereferenced later in\narm_smmu_probe_device, the device crashes.\n\nFix this by deferring the probe of the client device\nuntil the smmu device has bound to the arm smmu driver.\n\n[will: Add comment]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56568",
"url": "https://www.suse.com/security/cve/CVE-2024-56568"
},
{
"category": "external",
"summary": "SUSE Bug 1235032 for CVE-2024-56568",
"url": "https://bugzilla.suse.com/1235032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56568"
},
{
"cve": "CVE-2024-56569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix regression with module command in stack_trace_filter\n\nWhen executing the following command:\n\n # echo \"write*:mod:ext3\" \u003e /sys/kernel/tracing/stack_trace_filter\n\nThe current mod command causes a null pointer dereference. While commit\n0f17976568b3f (\"ftrace: Fix regression with module command in stack_trace_filter\")\nhas addressed part of the issue, it left a corner case unhandled, which still\nresults in a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56569",
"url": "https://www.suse.com/security/cve/CVE-2024-56569"
},
{
"category": "external",
"summary": "SUSE Bug 1235031 for CVE-2024-56569",
"url": "https://bugzilla.suse.com/1235031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56569"
},
{
"cve": "CVE-2024-56570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Filter invalid inodes with missing lookup function\n\nAdd a check to the ovl_dentry_weird() function to prevent the\nprocessing of directory inodes that lack the lookup function.\nThis is important because such inodes can cause errors in overlayfs\nwhen passed to the lowerstack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56570",
"url": "https://www.suse.com/security/cve/CVE-2024-56570"
},
{
"category": "external",
"summary": "SUSE Bug 1235035 for CVE-2024-56570",
"url": "https://bugzilla.suse.com/1235035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56570"
},
{
"cve": "CVE-2024-56571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56571"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56571",
"url": "https://www.suse.com/security/cve/CVE-2024-56571"
},
{
"category": "external",
"summary": "SUSE Bug 1235037 for CVE-2024-56571",
"url": "https://bugzilla.suse.com/1235037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56571"
},
{
"cve": "CVE-2024-56572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56572"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal()\n\nThe buffer in the loop should be released under the exception path,\notherwise there may be a memory leak here.\n\nTo mitigate this, free the buffer when allegro_alloc_buffer fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56572",
"url": "https://www.suse.com/security/cve/CVE-2024-56572"
},
{
"category": "external",
"summary": "SUSE Bug 1235043 for CVE-2024-56572",
"url": "https://bugzilla.suse.com/1235043"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56572"
},
{
"cve": "CVE-2024-56573",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56573"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi/libstub: Free correct pointer on failure\n\ncmdline_ptr is an out parameter, which is not allocated by the function\nitself, and likely points into the caller\u0027s stack.\n\ncmdline refers to the pool allocation that should be freed when cleaning\nup after a failure, so pass this instead to free_pool().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56573",
"url": "https://www.suse.com/security/cve/CVE-2024-56573"
},
{
"category": "external",
"summary": "SUSE Bug 1235042 for CVE-2024-56573",
"url": "https://bugzilla.suse.com/1235042"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56573"
},
{
"cve": "CVE-2024-56574",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56574"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: ts2020: fix null-ptr-deref in ts2020_probe()\n\nKASAN reported a null-ptr-deref issue when executing the following\ncommand:\n\n # echo ts2020 0x20 \u003e /sys/bus/i2c/devices/i2c-0/new_device\n KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\n CPU: 53 UID: 0 PID: 970 Comm: systemd-udevd Not tainted 6.12.0-rc2+ #24\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)\n RIP: 0010:ts2020_probe+0xad/0xe10 [ts2020]\n RSP: 0018:ffffc9000abbf598 EFLAGS: 00010202\n RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffffc0714809\n RDX: 0000000000000002 RSI: ffff88811550be00 RDI: 0000000000000010\n RBP: ffff888109868800 R08: 0000000000000001 R09: fffff52001577eb6\n R10: 0000000000000000 R11: ffffc9000abbff50 R12: ffffffffc0714790\n R13: 1ffff92001577eb8 R14: ffffffffc07190d0 R15: 0000000000000001\n FS: 00007f95f13b98c0(0000) GS:ffff888149280000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000555d2634b000 CR3: 0000000152236000 CR4: 00000000000006f0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ts2020_probe+0xad/0xe10 [ts2020]\n i2c_device_probe+0x421/0xb40\n really_probe+0x266/0x850\n ...\n\nThe cause of the problem is that when using sysfs to dynamically register\nan i2c device, there is no platform data, but the probe process of ts2020\nneeds to use platform data, resulting in a null pointer being accessed.\n\nSolve this problem by adding checks to platform data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56574",
"url": "https://www.suse.com/security/cve/CVE-2024-56574"
},
{
"category": "external",
"summary": "SUSE Bug 1235040 for CVE-2024-56574",
"url": "https://bugzilla.suse.com/1235040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56574"
},
{
"cve": "CVE-2024-56575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56575"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Ensure power suppliers be suspended before detach them\n\nThe power suppliers are always requested to suspend asynchronously,\ndev_pm_domain_detach() requires the caller to ensure proper\nsynchronization of this function with power management callbacks.\notherwise the detach may led to kernel panic, like below:\n\n[ 1457.107934] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000040\n[ 1457.116777] Mem abort info:\n[ 1457.119589] ESR = 0x0000000096000004\n[ 1457.123358] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 1457.128692] SET = 0, FnV = 0\n[ 1457.131764] EA = 0, S1PTW = 0\n[ 1457.134920] FSC = 0x04: level 0 translation fault\n[ 1457.139812] Data abort info:\n[ 1457.142707] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 1457.148196] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 1457.153256] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 1457.158563] user pgtable: 4k pages, 48-bit VAs, pgdp=00000001138b6000\n[ 1457.165000] [0000000000000040] pgd=0000000000000000, p4d=0000000000000000\n[ 1457.171792] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 1457.178045] Modules linked in: v4l2_jpeg wave6_vpu_ctrl(-) [last unloaded: mxc_jpeg_encdec]\n[ 1457.186383] CPU: 0 PID: 51938 Comm: kworker/0:3 Not tainted 6.6.36-gd23d64eea511 #66\n[ 1457.194112] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 1457.199236] Workqueue: pm pm_runtime_work\n[ 1457.203247] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1457.210188] pc : genpd_runtime_suspend+0x20/0x290\n[ 1457.214886] lr : __rpm_callback+0x48/0x1d8\n[ 1457.218968] sp : ffff80008250bc50\n[ 1457.222270] x29: ffff80008250bc50 x28: 0000000000000000 x27: 0000000000000000\n[ 1457.229394] x26: 0000000000000000 x25: 0000000000000008 x24: 00000000000f4240\n[ 1457.236518] x23: 0000000000000000 x22: ffff00008590f0e4 x21: 0000000000000008\n[ 1457.243642] x20: ffff80008099c434 x19: ffff00008590f000 x18: ffffffffffffffff\n[ 1457.250766] x17: 5300326563697665 x16: 645f676e696c6f6f x15: 63343a6d726f6674\n[ 1457.257890] x14: 0000000000000004 x13: 00000000000003a4 x12: 0000000000000002\n[ 1457.265014] x11: 0000000000000000 x10: 0000000000000a60 x9 : ffff80008250bbb0\n[ 1457.272138] x8 : ffff000092937200 x7 : ffff0003fdf6af80 x6 : 0000000000000000\n[ 1457.279262] x5 : 00000000410fd050 x4 : 0000000000200000 x3 : 0000000000000000\n[ 1457.286386] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff00008590f000\n[ 1457.293510] Call trace:\n[ 1457.295946] genpd_runtime_suspend+0x20/0x290\n[ 1457.300296] __rpm_callback+0x48/0x1d8\n[ 1457.304038] rpm_callback+0x6c/0x78\n[ 1457.307515] rpm_suspend+0x10c/0x570\n[ 1457.311077] pm_runtime_work+0xc4/0xc8\n[ 1457.314813] process_one_work+0x138/0x248\n[ 1457.318816] worker_thread+0x320/0x438\n[ 1457.322552] kthread+0x110/0x114\n[ 1457.325767] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56575",
"url": "https://www.suse.com/security/cve/CVE-2024-56575"
},
{
"category": "external",
"summary": "SUSE Bug 1235039 for CVE-2024-56575",
"url": "https://bugzilla.suse.com/1235039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56575"
},
{
"cve": "CVE-2024-56576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56576"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: tc358743: Fix crash in the probe error path when using polling\n\nIf an error occurs in the probe() function, we should remove the polling\ntimer that was alarmed earlier, otherwise the timer is called with\narguments that are already freed, which results in a crash.\n\n------------[ cut here ]------------\nWARNING: CPU: 3 PID: 0 at kernel/time/timer.c:1830 __run_timers+0x244/0x268\nModules linked in:\nCPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted 6.11.0 #226\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\npstate: 804000c9 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : __run_timers+0x244/0x268\nlr : __run_timers+0x1d4/0x268\nsp : ffffff80eff2baf0\nx29: ffffff80eff2bb50 x28: 7fffffffffffffff x27: ffffff80eff2bb00\nx26: ffffffc080f669c0 x25: ffffff80efef6bf0 x24: ffffff80eff2bb00\nx23: 0000000000000000 x22: dead000000000122 x21: 0000000000000000\nx20: ffffff80efef6b80 x19: ffffff80041c8bf8 x18: ffffffffffffffff\nx17: ffffffc06f146000 x16: ffffff80eff27dc0 x15: 000000000000003e\nx14: 0000000000000000 x13: 00000000000054da x12: 0000000000000000\nx11: 00000000000639c0 x10: 000000000000000c x9 : 0000000000000009\nx8 : ffffff80eff2cb40 x7 : ffffff80eff2cb40 x6 : ffffff8002bee480\nx5 : ffffffc080cb2220 x4 : ffffffc080cb2150 x3 : 00000000000f4240\nx2 : 0000000000000102 x1 : ffffff80eff2bb00 x0 : ffffff80041c8bf0\nCall trace:\n __run_timers+0x244/0x268\n timer_expire_remote+0x50/0x68\n tmigr_handle_remote+0x388/0x39c\n run_timer_softirq+0x38/0x44\n handle_softirqs+0x138/0x298\n __do_softirq+0x14/0x20\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0x9c/0xcc\n el1_interrupt+0x48/0xc0\n el1h_64_irq_handler+0x18/0x24\n el1h_64_irq+0x7c/0x80\n default_idle_call+0x34/0x68\n do_idle+0x23c/0x294\n cpu_startup_entry+0x38/0x3c\n secondary_start_kernel+0x128/0x160\n __secondary_switched+0xb8/0xbc\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56576",
"url": "https://www.suse.com/security/cve/CVE-2024-56576"
},
{
"category": "external",
"summary": "SUSE Bug 1235019 for CVE-2024-56576",
"url": "https://bugzilla.suse.com/1235019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56576"
},
{
"cve": "CVE-2024-56577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56577"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-jpeg: Fix null-ptr-deref during unload module\n\nThe workqueue should be destroyed in mtk_jpeg_core.c since commit\n09aea13ecf6f (\"media: mtk-jpeg: refactor some variables\"), otherwise\nthe below calltrace can be easily triggered.\n\n[ 677.862514] Unable to handle kernel paging request at virtual address dfff800000000023\n[ 677.863633] KASAN: null-ptr-deref in range [0x0000000000000118-0x000000000000011f]\n...\n[ 677.879654] CPU: 6 PID: 1071 Comm: modprobe Tainted: G O 6.8.12-mtk+gfa1a78e5d24b+ #17\n...\n[ 677.882838] pc : destroy_workqueue+0x3c/0x770\n[ 677.883413] lr : mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.884314] sp : ffff80008ad974f0\n[ 677.884744] x29: ffff80008ad974f0 x28: ffff0000d7115580 x27: ffff0000dd691070\n[ 677.885669] x26: ffff0000dd691408 x25: ffff8000844af3e0 x24: ffff80008ad97690\n[ 677.886592] x23: ffff0000e051d400 x22: ffff0000dd691010 x21: dfff800000000000\n[ 677.887515] x20: 0000000000000000 x19: 0000000000000000 x18: ffff800085397ac0\n[ 677.888438] x17: 0000000000000000 x16: ffff8000801b87c8 x15: 1ffff000115b2e10\n[ 677.889361] x14: 00000000f1f1f1f1 x13: 0000000000000000 x12: ffff7000115b2e4d\n[ 677.890285] x11: 1ffff000115b2e4c x10: ffff7000115b2e4c x9 : ffff80000aa43e90\n[ 677.891208] x8 : 00008fffeea4d1b4 x7 : ffff80008ad97267 x6 : 0000000000000001\n[ 677.892131] x5 : ffff80008ad97260 x4 : ffff7000115b2e4d x3 : 0000000000000000\n[ 677.893054] x2 : 0000000000000023 x1 : dfff800000000000 x0 : 0000000000000118\n[ 677.893977] Call trace:\n[ 677.894297] destroy_workqueue+0x3c/0x770\n[ 677.894826] mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.895677] devm_action_release+0x50/0x90\n[ 677.896211] release_nodes+0xe8/0x170\n[ 677.896688] devres_release_all+0xf8/0x178\n[ 677.897219] device_unbind_cleanup+0x24/0x170\n[ 677.897785] device_release_driver_internal+0x35c/0x480\n[ 677.898461] device_release_driver+0x20/0x38\n...\n[ 677.912665] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56577",
"url": "https://www.suse.com/security/cve/CVE-2024-56577"
},
{
"category": "external",
"summary": "SUSE Bug 1235112 for CVE-2024-56577",
"url": "https://bugzilla.suse.com/1235112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56577"
},
{
"cve": "CVE-2024-56578",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56578"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Set video drvdata before register video device\n\nThe video drvdata should be set before the video device is registered,\notherwise video_drvdata() may return NULL in the open() file ops, and led\nto oops.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56578",
"url": "https://www.suse.com/security/cve/CVE-2024-56578"
},
{
"category": "external",
"summary": "SUSE Bug 1235115 for CVE-2024-56578",
"url": "https://bugzilla.suse.com/1235115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56578"
},
{
"cve": "CVE-2024-56582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56582"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free in btrfs_encoded_read_endio()\n\nShinichiro reported the following use-after free that sometimes is\nhappening in our CI system when running fstests\u0027 btrfs/284 on a TCMU\nrunner device:\n\n BUG: KASAN: slab-use-after-free in lock_release+0x708/0x780\n Read of size 8 at addr ffff888106a83f18 by task kworker/u80:6/219\n\n CPU: 8 UID: 0 PID: 219 Comm: kworker/u80:6 Not tainted 6.12.0-rc6-kts+ #15\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6e/0xa0\n ? lock_release+0x708/0x780\n print_report+0x174/0x505\n ? lock_release+0x708/0x780\n ? __virt_addr_valid+0x224/0x410\n ? lock_release+0x708/0x780\n kasan_report+0xda/0x1b0\n ? lock_release+0x708/0x780\n ? __wake_up+0x44/0x60\n lock_release+0x708/0x780\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? lock_is_held_type+0x9a/0x110\n _raw_spin_unlock_irqrestore+0x1f/0x60\n __wake_up+0x44/0x60\n btrfs_encoded_read_endio+0x14b/0x190 [btrfs]\n btrfs_check_read_bio+0x8d9/0x1360 [btrfs]\n ? lock_release+0x1b0/0x780\n ? trace_lock_acquire+0x12f/0x1a0\n ? __pfx_btrfs_check_read_bio+0x10/0x10 [btrfs]\n ? process_one_work+0x7e3/0x1460\n ? lock_acquire+0x31/0xc0\n ? process_one_work+0x7e3/0x1460\n process_one_work+0x85c/0x1460\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x16c/0x240\n worker_thread+0x5e6/0xfc0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2c3/0x3a0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_encoded_read_regular_fill_pages+0x16c/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x4f/0x70\n kfree+0x143/0x490\n btrfs_encoded_read_regular_fill_pages+0x531/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n The buggy address belongs to the object at ffff888106a83f00\n which belongs to the cache kmalloc-rnd-07-96 of size 96\n The buggy address is located 24 bytes inside of\n freed 96-byte region [ffff888106a83f00, ffff888106a83f60)\n\n The buggy address belongs to the physical page:\n page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888106a83800 pfn:0x106a83\n flags: 0x17ffffc0000000(node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f5(slab)\n raw: 0017ffffc0000000 ffff888100053680 ffffea0004917200 0000000000000004\n raw: ffff888106a83800 0000000080200019 00000001f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888106a83e00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a83e80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n \u003effff888106a83f00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ^\n ffff888106a83f80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a84000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ==================================================================\n\nFurther analyzing the trace and \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56582",
"url": "https://www.suse.com/security/cve/CVE-2024-56582"
},
{
"category": "external",
"summary": "SUSE Bug 1235128 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "external",
"summary": "SUSE Bug 1235129 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56582"
},
{
"cve": "CVE-2024-56584",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56584"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/tctx: work around xa_store() allocation error issue\n\nsyzbot triggered the following WARN_ON:\n\nWARNING: CPU: 0 PID: 16 at io_uring/tctx.c:51 __io_uring_free+0xfa/0x140 io_uring/tctx.c:51\n\nwhich is the\n\nWARN_ON_ONCE(!xa_empty(\u0026tctx-\u003exa));\n\nsanity check in __io_uring_free() when a io_uring_task is going through\nits final put. The syzbot test case includes injecting memory allocation\nfailures, and it very much looks like xa_store() can fail one of its\nmemory allocations and end up with -\u003ehead being non-NULL even though no\nentries exist in the xarray.\n\nUntil this issue gets sorted out, work around it by attempting to\niterate entries in our xarray, and WARN_ON_ONCE() if one is found.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56584",
"url": "https://www.suse.com/security/cve/CVE-2024-56584"
},
{
"category": "external",
"summary": "SUSE Bug 1235117 for CVE-2024-56584",
"url": "https://bugzilla.suse.com/1235117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56584"
},
{
"cve": "CVE-2024-56587",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56587"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nleds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex\n\nThere is NULL pointer issue observed if from Process A where hid device\nbeing added which results in adding a led_cdev addition and later a\nanother call to access of led_cdev attribute from Process B can result\nin NULL pointer issue.\n\nUse mutex led_cdev-\u003eled_access to protect access to led-\u003ecdev and its\nattribute inside brightness_show() and max_brightness_show() and also\nupdate the comment for mutex that it should be used to protect the led\nclass device fields.\n\n\tProcess A \t\t\t\tProcess B\n\n kthread+0x114\n worker_thread+0x244\n process_scheduled_works+0x248\n uhid_device_add_worker+0x24\n hid_add_device+0x120\n device_add+0x268\n bus_probe_device+0x94\n device_initial_probe+0x14\n __device_attach+0xfc\n bus_for_each_drv+0x10c\n __device_attach_driver+0x14c\n driver_probe_device+0x3c\n __driver_probe_device+0xa0\n really_probe+0x190\n hid_device_probe+0x130\n ps_probe+0x990\n ps_led_register+0x94\n devm_led_classdev_register_ext+0x58\n led_classdev_register_ext+0x1f8\n device_create_with_groups+0x48\n device_create_groups_vargs+0xc8\n device_add+0x244\n kobject_uevent+0x14\n kobject_uevent_env[jt]+0x224\n mutex_unlock[jt]+0xc4\n __mutex_unlock_slowpath+0xd4\n wake_up_q+0x70\n try_to_wake_up[jt]+0x48c\n preempt_schedule_common+0x28\n __schedule+0x628\n __switch_to+0x174\n\t\t\t\t\t\tel0t_64_sync+0x1a8/0x1ac\n\t\t\t\t\t\tel0t_64_sync_handler+0x68/0xbc\n\t\t\t\t\t\tel0_svc+0x38/0x68\n\t\t\t\t\t\tdo_el0_svc+0x1c/0x28\n\t\t\t\t\t\tel0_svc_common+0x80/0xe0\n\t\t\t\t\t\tinvoke_syscall+0x58/0x114\n\t\t\t\t\t\t__arm64_sys_read+0x1c/0x2c\n\t\t\t\t\t\tksys_read+0x78/0xe8\n\t\t\t\t\t\tvfs_read+0x1e0/0x2c8\n\t\t\t\t\t\tkernfs_fop_read_iter+0x68/0x1b4\n\t\t\t\t\t\tseq_read_iter+0x158/0x4ec\n\t\t\t\t\t\tkernfs_seq_show+0x44/0x54\n\t\t\t\t\t\tsysfs_kf_seq_show+0xb4/0x130\n\t\t\t\t\t\tdev_attr_show+0x38/0x74\n\t\t\t\t\t\tbrightness_show+0x20/0x4c\n\t\t\t\t\t\tdualshock4_led_get_brightness+0xc/0x74\n\n[ 3313.874295][ T4013] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000060\n[ 3313.874301][ T4013] Mem abort info:\n[ 3313.874303][ T4013] ESR = 0x0000000096000006\n[ 3313.874305][ T4013] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 3313.874307][ T4013] SET = 0, FnV = 0\n[ 3313.874309][ T4013] EA = 0, S1PTW = 0\n[ 3313.874311][ T4013] FSC = 0x06: level 2 translation fault\n[ 3313.874313][ T4013] Data abort info:\n[ 3313.874314][ T4013] ISV = 0, ISS = 0x00000006, ISS2 = 0x00000000\n[ 3313.874316][ T4013] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 3313.874318][ T4013] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 3313.874320][ T4013] user pgtable: 4k pages, 39-bit VAs, pgdp=00000008f2b0a000\n..\n\n[ 3313.874332][ T4013] Dumping ftrace buffer:\n[ 3313.874334][ T4013] (ftrace buffer empty)\n..\n..\n[ dd3313.874639][ T4013] CPU: 6 PID: 4013 Comm: InputReader\n[ 3313.874648][ T4013] pc : dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874653][ T4013] lr : led_update_brightness+0x38/0x60\n[ 3313.874656][ T4013] sp : ffffffc0b910bbd0\n..\n..\n[ 3313.874685][ T4013] Call trace:\n[ 3313.874687][ T4013] dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874690][ T4013] brightness_show+0x20/0x4c\n[ 3313.874692][ T4013] dev_attr_show+0x38/0x74\n[ 3313.874696][ T4013] sysfs_kf_seq_show+0xb4/0x130\n[ 3313.874700][ T4013] kernfs_seq_show+0x44/0x54\n[ 3313.874703][ T4013] seq_read_iter+0x158/0x4ec\n[ 3313.874705][ T4013] kernfs_fop_read_iter+0x68/0x1b4\n[ 3313.874708][ T4013] vfs_read+0x1e0/0x2c8\n[ 3313.874711][ T4013] ksys_read+0x78/0xe8\n[ 3313.874714][ T4013] __arm64_sys_read+0x1c/0x2c\n[ 3313.874718][ T4013] invoke_syscall+0x58/0x114\n[ 3313.874721][ T4013] el0_svc_common+0x80/0xe0\n[ 3313.874724][ T4013] do_el0_svc+0x1c/0x28\n[ 3313.874727][ T4013] el0_svc+0x38/0x68\n[ 3313.874730][ T4013] el0t_64_sync_handler+0x68/0xbc\n[ 3313.874732][ T4013] el0t_64_sync+0x1a8/0x1ac",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56587",
"url": "https://www.suse.com/security/cve/CVE-2024-56587"
},
{
"category": "external",
"summary": "SUSE Bug 1235125 for CVE-2024-56587",
"url": "https://bugzilla.suse.com/1235125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56587"
},
{
"cve": "CVE-2024-56588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56588"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Create all dump files during debugfs initialization\n\nFor the current debugfs of hisi_sas, after user triggers dump, the\ndriver allocate memory space to save the register information and create\ndebugfs files to display the saved information. In this process, the\ndebugfs files created after each dump.\n\nTherefore, when the dump is triggered while the driver is unbind, the\nfollowing hang occurs:\n\n[67840.853907] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000a0\n[67840.862947] Mem abort info:\n[67840.865855] ESR = 0x0000000096000004\n[67840.869713] EC = 0x25: DABT (current EL), IL = 32 bits\n[67840.875125] SET = 0, FnV = 0\n[67840.878291] EA = 0, S1PTW = 0\n[67840.881545] FSC = 0x04: level 0 translation fault\n[67840.886528] Data abort info:\n[67840.889524] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[67840.895117] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[67840.900284] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[67840.905709] user pgtable: 4k pages, 48-bit VAs, pgdp=0000002803a1f000\n[67840.912263] [00000000000000a0] pgd=0000000000000000, p4d=0000000000000000\n[67840.919177] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[67840.996435] pstate: 80400009 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[67841.003628] pc : down_write+0x30/0x98\n[67841.007546] lr : start_creating.part.0+0x60/0x198\n[67841.012495] sp : ffff8000b979ba20\n[67841.016046] x29: ffff8000b979ba20 x28: 0000000000000010 x27: 0000000000024b40\n[67841.023412] x26: 0000000000000012 x25: ffff20202b355ae8 x24: ffff20202b35a8c8\n[67841.030779] x23: ffffa36877928208 x22: ffffa368b4972240 x21: ffff8000b979bb18\n[67841.038147] x20: ffff00281dc1e3c0 x19: fffffffffffffffe x18: 0000000000000020\n[67841.045515] x17: 0000000000000000 x16: ffffa368b128a530 x15: ffffffffffffffff\n[67841.052888] x14: ffff8000b979bc18 x13: ffffffffffffffff x12: ffff8000b979bb18\n[67841.060263] x11: 0000000000000000 x10: 0000000000000000 x9 : ffffa368b1289b18\n[67841.067640] x8 : 0000000000000012 x7 : 0000000000000000 x6 : 00000000000003a9\n[67841.075014] x5 : 0000000000000000 x4 : ffff002818c5cb00 x3 : 0000000000000001\n[67841.082388] x2 : 0000000000000000 x1 : ffff002818c5cb00 x0 : 00000000000000a0\n[67841.089759] Call trace:\n[67841.092456] down_write+0x30/0x98\n[67841.096017] start_creating.part.0+0x60/0x198\n[67841.100613] debugfs_create_dir+0x48/0x1f8\n[67841.104950] debugfs_create_files_v3_hw+0x88/0x348 [hisi_sas_v3_hw]\n[67841.111447] debugfs_snapshot_regs_v3_hw+0x708/0x798 [hisi_sas_v3_hw]\n[67841.118111] debugfs_trigger_dump_v3_hw_write+0x9c/0x120 [hisi_sas_v3_hw]\n[67841.125115] full_proxy_write+0x68/0xc8\n[67841.129175] vfs_write+0xd8/0x3f0\n[67841.132708] ksys_write+0x70/0x108\n[67841.136317] __arm64_sys_write+0x24/0x38\n[67841.140440] invoke_syscall+0x50/0x128\n[67841.144385] el0_svc_common.constprop.0+0xc8/0xf0\n[67841.149273] do_el0_svc+0x24/0x38\n[67841.152773] el0_svc+0x38/0xd8\n[67841.156009] el0t_64_sync_handler+0xc0/0xc8\n[67841.160361] el0t_64_sync+0x1a4/0x1a8\n[67841.164189] Code: b9000882 d2800002 d2800023 f9800011 (c85ffc05)\n[67841.170443] ---[ end trace 0000000000000000 ]---\n\nTo fix this issue, create all directories and files during debugfs\ninitialization. In this way, the driver only needs to allocate memory\nspace to save information each time the user triggers dumping.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56588",
"url": "https://www.suse.com/security/cve/CVE-2024-56588"
},
{
"category": "external",
"summary": "SUSE Bug 1235123 for CVE-2024-56588",
"url": "https://bugzilla.suse.com/1235123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56588"
},
{
"cve": "CVE-2024-56589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Add cond_resched() for no forced preemption model\n\nFor no forced preemption model kernel, in the scenario where the\nexpander is connected to 12 high performance SAS SSDs, the following\ncall trace may occur:\n\n[ 214.409199][ C240] watchdog: BUG: soft lockup - CPU#240 stuck for 22s! [irq/149-hisi_sa:3211]\n[ 214.568533][ C240] pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--)\n[ 214.575224][ C240] pc : fput_many+0x8c/0xdc\n[ 214.579480][ C240] lr : fput+0x1c/0xf0\n[ 214.583302][ C240] sp : ffff80002de2b900\n[ 214.587298][ C240] x29: ffff80002de2b900 x28: ffff1082aa412000\n[ 214.593291][ C240] x27: ffff3062a0348c08 x26: ffff80003a9f6000\n[ 214.599284][ C240] x25: ffff1062bbac5c40 x24: 0000000000001000\n[ 214.605277][ C240] x23: 000000000000000a x22: 0000000000000001\n[ 214.611270][ C240] x21: 0000000000001000 x20: 0000000000000000\n[ 214.617262][ C240] x19: ffff3062a41ae580 x18: 0000000000010000\n[ 214.623255][ C240] x17: 0000000000000001 x16: ffffdb3a6efe5fc0\n[ 214.629248][ C240] x15: ffffffffffffffff x14: 0000000003ffffff\n[ 214.635241][ C240] x13: 000000000000ffff x12: 000000000000029c\n[ 214.641234][ C240] x11: 0000000000000006 x10: ffff80003a9f7fd0\n[ 214.647226][ C240] x9 : ffffdb3a6f0482fc x8 : 0000000000000001\n[ 214.653219][ C240] x7 : 0000000000000002 x6 : 0000000000000080\n[ 214.659212][ C240] x5 : ffff55480ee9b000 x4 : fffffde7f94c6554\n[ 214.665205][ C240] x3 : 0000000000000002 x2 : 0000000000000020\n[ 214.671198][ C240] x1 : 0000000000000021 x0 : ffff3062a41ae5b8\n[ 214.677191][ C240] Call trace:\n[ 214.680320][ C240] fput_many+0x8c/0xdc\n[ 214.684230][ C240] fput+0x1c/0xf0\n[ 214.687707][ C240] aio_complete_rw+0xd8/0x1fc\n[ 214.692225][ C240] blkdev_bio_end_io+0x98/0x140\n[ 214.696917][ C240] bio_endio+0x160/0x1bc\n[ 214.701001][ C240] blk_update_request+0x1c8/0x3bc\n[ 214.705867][ C240] scsi_end_request+0x3c/0x1f0\n[ 214.710471][ C240] scsi_io_completion+0x7c/0x1a0\n[ 214.715249][ C240] scsi_finish_command+0x104/0x140\n[ 214.720200][ C240] scsi_softirq_done+0x90/0x180\n[ 214.724892][ C240] blk_mq_complete_request+0x5c/0x70\n[ 214.730016][ C240] scsi_mq_done+0x48/0xac\n[ 214.734194][ C240] sas_scsi_task_done+0xbc/0x16c [libsas]\n[ 214.739758][ C240] slot_complete_v3_hw+0x260/0x760 [hisi_sas_v3_hw]\n[ 214.746185][ C240] cq_thread_v3_hw+0xbc/0x190 [hisi_sas_v3_hw]\n[ 214.752179][ C240] irq_thread_fn+0x34/0xa4\n[ 214.756435][ C240] irq_thread+0xc4/0x130\n[ 214.760520][ C240] kthread+0x108/0x13c\n[ 214.764430][ C240] ret_from_fork+0x10/0x18\n\nThis is because in the hisi_sas driver, both the hardware interrupt\nhandler and the interrupt thread are executed on the same CPU. In the\nperformance test scenario, function irq_wait_for_interrupt() will always\nreturn 0 if lots of interrupts occurs and the CPU will be continuously\nconsumed. As a result, the CPU cannot run the watchdog thread. When the\nwatchdog time exceeds the specified time, call trace occurs.\n\nTo fix it, add cond_resched() to execute the watchdog thread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56589",
"url": "https://www.suse.com/security/cve/CVE-2024-56589"
},
{
"category": "external",
"summary": "SUSE Bug 1235241 for CVE-2024-56589",
"url": "https://bugzilla.suse.com/1235241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56589"
},
{
"cve": "CVE-2024-56590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56590"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_core: Fix not checking skb length on hci_acldata_packet\n\nThis fixes not checking if skb really contains an ACL header otherwise\nthe code may attempt to access some uninitilized/invalid memory past the\nvalid skb-\u003edata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56590",
"url": "https://www.suse.com/security/cve/CVE-2024-56590"
},
{
"category": "external",
"summary": "SUSE Bug 1235038 for CVE-2024-56590",
"url": "https://bugzilla.suse.com/1235038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56590"
},
{
"cve": "CVE-2024-56593",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56593"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw()\n\nThis patch fixes a NULL pointer dereference bug in brcmfmac that occurs\nwhen a high \u0027sd_sgentry_align\u0027 value applies (e.g. 512) and a lot of queued SKBs\nare sent from the pkt queue.\n\nThe problem is the number of entries in the pre-allocated sgtable, it is\nnents = max(rxglom_size, txglom_size) + max(rxglom_size, txglom_size) \u003e\u003e 4 + 1.\nGiven the default [rt]xglom_size=32 it\u0027s actually 35 which is too small.\nWorst case, the pkt queue can end up with 64 SKBs. This occurs when a new SKB\nis added for each original SKB if tailroom isn\u0027t enough to hold tail_pad.\nAt least one sg entry is needed for each SKB. So, eventually the \"skb_queue_walk loop\"\nin brcmf_sdiod_sglist_rw may run out of sg entries. This makes sg_next return\nNULL and this causes the oops.\n\nThe patch sets nents to max(rxglom_size, txglom_size) * 2 to be able handle\nthe worst-case.\nBtw. this requires only 64-35=29 * 16 (or 20 if CONFIG_NEED_SG_DMA_LENGTH) = 464\nadditional bytes of memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56593",
"url": "https://www.suse.com/security/cve/CVE-2024-56593"
},
{
"category": "external",
"summary": "SUSE Bug 1235252 for CVE-2024-56593",
"url": "https://bugzilla.suse.com/1235252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56593"
},
{
"cve": "CVE-2024-56594",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56594"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: set the right AMDGPU sg segment limitation\n\nThe driver needs to set the correct max_segment_size;\notherwise debug_dma_map_sg() will complain about the\nover-mapping of the AMDGPU sg length as following:\n\nWARNING: CPU: 6 PID: 1964 at kernel/dma/debug.c:1178 debug_dma_map_sg+0x2dc/0x370\n[ 364.049444] Modules linked in: veth amdgpu(OE) amdxcp drm_exec gpu_sched drm_buddy drm_ttm_helper ttm(OE) drm_suballoc_helper drm_display_helper drm_kms_helper i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc amd_atl intel_rapl_msr intel_rapl_common sunrpc sch_fq_codel snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd binfmt_misc snd_hda_codec snd_pci_acp6x snd_hda_core snd_acp_config snd_hwdep snd_soc_acpi kvm_amd snd_pcm kvm snd_seq_midi snd_seq_midi_event crct10dif_pclmul ghash_clmulni_intel sha512_ssse3 snd_rawmidi sha256_ssse3 sha1_ssse3 aesni_intel snd_seq nls_iso8859_1 crypto_simd snd_seq_device cryptd snd_timer rapl input_leds snd\n[ 364.049532] ipmi_devintf wmi_bmof ccp serio_raw k10temp sp5100_tco soundcore ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport drm efi_pstore ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 364.049576] CPU: 6 PID: 1964 Comm: rocminfo Tainted: G OE 6.10.0-custom #492\n[ 364.049579] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 364.049582] RIP: 0010:debug_dma_map_sg+0x2dc/0x370\n[ 364.049585] Code: 89 4d b8 e8 36 b1 86 00 8b 4d b8 48 8b 55 b0 44 8b 45 a8 4c 8b 4d a0 48 89 c6 48 c7 c7 00 4b 74 bc 4c 89 4d b8 e8 b4 73 f3 ff \u003c0f\u003e 0b 4c 8b 4d b8 8b 15 c8 2c b8 01 85 d2 0f 85 ee fd ff ff 8b 05\n[ 364.049588] RSP: 0018:ffff9ca600b57ac0 EFLAGS: 00010286\n[ 364.049590] RAX: 0000000000000000 RBX: ffff88b7c132b0c8 RCX: 0000000000000027\n[ 364.049592] RDX: ffff88bb0f521688 RSI: 0000000000000001 RDI: ffff88bb0f521680\n[ 364.049594] RBP: ffff9ca600b57b20 R08: 000000000000006f R09: ffff9ca600b57930\n[ 364.049596] R10: ffff9ca600b57928 R11: ffffffffbcb46328 R12: 0000000000000000\n[ 364.049597] R13: 0000000000000001 R14: ffff88b7c19c0700 R15: ffff88b7c9059800\n[ 364.049599] FS: 00007fb2d3516e80(0000) GS:ffff88bb0f500000(0000) knlGS:0000000000000000\n[ 364.049601] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 364.049603] CR2: 000055610bd03598 CR3: 00000001049f6000 CR4: 0000000000350ef0\n[ 364.049605] Call Trace:\n[ 364.049607] \u003cTASK\u003e\n[ 364.049609] ? show_regs+0x6d/0x80\n[ 364.049614] ? __warn+0x8c/0x140\n[ 364.049618] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049621] ? report_bug+0x193/0x1a0\n[ 364.049627] ? handle_bug+0x46/0x80\n[ 364.049631] ? exc_invalid_op+0x1d/0x80\n[ 364.049635] ? asm_exc_invalid_op+0x1f/0x30\n[ 364.049642] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049647] __dma_map_sg_attrs+0x90/0xe0\n[ 364.049651] dma_map_sgtable+0x25/0x40\n[ 364.049654] amdgpu_bo_move+0x59a/0x850 [amdgpu]\n[ 364.049935] ? srso_return_thunk+0x5/0x5f\n[ 364.049939] ? amdgpu_ttm_tt_populate+0x5d/0xc0 [amdgpu]\n[ 364.050095] ttm_bo_handle_move_mem+0xc3/0x180 [ttm]\n[ 364.050103] ttm_bo_validate+0xc1/0x160 [ttm]\n[ 364.050108] ? amdgpu_ttm_tt_get_user_pages+0xe5/0x1b0 [amdgpu]\n[ 364.050263] amdgpu_amdkfd_gpuvm_alloc_memory_of_gpu+0xa12/0xc90 [amdgpu]\n[ 364.050473] kfd_ioctl_alloc_memory_of_gpu+0x16b/0x3b0 [amdgpu]\n[ 364.050680] kfd_ioctl+0x3c2/0x530 [amdgpu]\n[ 364.050866] ? __pfx_kfd_ioctl_alloc_memory_of_gpu+0x10/0x10 [amdgpu]\n[ 364.05105\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56594",
"url": "https://www.suse.com/security/cve/CVE-2024-56594"
},
{
"category": "external",
"summary": "SUSE Bug 1235413 for CVE-2024-56594",
"url": "https://bugzilla.suse.com/1235413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56594"
},
{
"cve": "CVE-2024-56595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56595"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: add a check to prevent array-index-out-of-bounds in dbAdjTree\n\nWhen the value of lp is 0 at the beginning of the for loop, it will\nbecome negative in the next assignment and we should bail out.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56595",
"url": "https://www.suse.com/security/cve/CVE-2024-56595"
},
{
"category": "external",
"summary": "SUSE Bug 1235410 for CVE-2024-56595",
"url": "https://bugzilla.suse.com/1235410"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56595"
},
{
"cve": "CVE-2024-56596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix array-index-out-of-bounds in jfs_readdir\n\nThe stbl might contain some invalid values. Added a check to\nreturn error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56596",
"url": "https://www.suse.com/security/cve/CVE-2024-56596"
},
{
"category": "external",
"summary": "SUSE Bug 1235458 for CVE-2024-56596",
"url": "https://bugzilla.suse.com/1235458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56596"
},
{
"cve": "CVE-2024-56597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56597"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix shift-out-of-bounds in dbSplit\n\nWhen dmt_budmin is less than zero, it causes errors\nin the later stages. Added a check to return an error beforehand\nin dbAllocCtl itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56597",
"url": "https://www.suse.com/security/cve/CVE-2024-56597"
},
{
"category": "external",
"summary": "SUSE Bug 1235222 for CVE-2024-56597",
"url": "https://bugzilla.suse.com/1235222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56597"
},
{
"cve": "CVE-2024-56598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56598"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: array-index-out-of-bounds fix in dtReadFirst\n\nThe value of stbl can be sometimes out of bounds due\nto a bad filesystem. Added a check with appopriate return\nof error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56598",
"url": "https://www.suse.com/security/cve/CVE-2024-56598"
},
{
"category": "external",
"summary": "SUSE Bug 1235220 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "external",
"summary": "SUSE Bug 1235221 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56598"
},
{
"cve": "CVE-2024-56599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56599"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: avoid NULL pointer error during sdio remove\n\nWhen running \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will free sdio\nworkqueue by destroy_workqueue(). But if CONFIG_INIT_ON_FREE_DEFAULT_ON\nis set to yes, kernel panic will happen:\nCall trace:\n destroy_workqueue+0x1c/0x258\n ath10k_sdio_remove+0x84/0x94\n sdio_bus_remove+0x50/0x16c\n device_release_driver_internal+0x188/0x25c\n device_driver_detach+0x20/0x2c\n\nThis is because during \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will call\nath10k_core_destroy() before destroy_workqueue(). wiphy_dev_release()\nwill finally be called in ath10k_core_destroy(). This function will free\nstruct cfg80211_registered_device *rdev and all its members, including\nwiphy, dev and the pointer of sdio workqueue. Then the pointer of sdio\nworkqueue will be set to NULL due to CONFIG_INIT_ON_FREE_DEFAULT_ON.\n\nAfter device release, destroy_workqueue() will use NULL pointer then the\nkernel panic happen.\n\nCall trace:\nath10k_sdio_remove\n -\u003eath10k_core_unregister\n \u2026\u2026\n -\u003eath10k_core_stop\n -\u003eath10k_hif_stop\n -\u003eath10k_sdio_irq_disable\n -\u003eath10k_hif_power_down\n -\u003edel_timer_sync(\u0026ar_sdio-\u003esleep_timer)\n -\u003eath10k_core_destroy\n -\u003eath10k_mac_destroy\n -\u003eieee80211_free_hw\n -\u003ewiphy_free\n \u2026\u2026\n -\u003ewiphy_dev_release\n -\u003edestroy_workqueue\n\nNeed to call destroy_workqueue() before ath10k_core_destroy(), free\nthe work queue buffer first and then free pointer of work queue by\nath10k_core_destroy(). This order matches the error path order in\nath10k_sdio_probe().\n\nNo work will be queued on sdio workqueue between it is destroyed and\nath10k_core_destroy() is called. Based on the call_stack above, the\nreason is:\nOnly ath10k_sdio_sleep_timer_handler(), ath10k_sdio_hif_tx_sg() and\nath10k_sdio_irq_disable() will queue work on sdio workqueue.\nSleep timer will be deleted before ath10k_core_destroy() in\nath10k_hif_power_down().\nath10k_sdio_irq_disable() only be called in ath10k_hif_stop().\nath10k_core_unregister() will call ath10k_hif_power_down() to stop hif\nbus, so ath10k_sdio_hif_tx_sg() won\u0027t be called anymore.\n\nTested-on: QCA6174 hw3.2 SDIO WLAN.RMH.4.4.1-00189",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56599",
"url": "https://www.suse.com/security/cve/CVE-2024-56599"
},
{
"category": "external",
"summary": "SUSE Bug 1235138 for CVE-2024-56599",
"url": "https://bugzilla.suse.com/1235138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56599"
},
{
"cve": "CVE-2024-56600",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56600"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: inet6: do not leave a dangling sk pointer in inet6_create()\n\nsock_init_data() attaches the allocated sk pointer to the provided sock\nobject. If inet6_create() fails later, the sk object is released, but the\nsock object retains the dangling sk pointer, which may cause use-after-free\nlater.\n\nClear the sock sk pointer on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56600",
"url": "https://www.suse.com/security/cve/CVE-2024-56600"
},
{
"category": "external",
"summary": "SUSE Bug 1235217 for CVE-2024-56600",
"url": "https://bugzilla.suse.com/1235217"
},
{
"category": "external",
"summary": "SUSE Bug 1235218 for CVE-2024-56600",
"url": "https://bugzilla.suse.com/1235218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56600"
},
{
"cve": "CVE-2024-56601",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56601"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: inet: do not leave a dangling sk pointer in inet_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If inet_create() fails later, the sk object is freed, but the\nsock object retains the dangling pointer, which may create use-after-free\nlater.\n\nClear the sk pointer in the sock object on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56601",
"url": "https://www.suse.com/security/cve/CVE-2024-56601"
},
{
"category": "external",
"summary": "SUSE Bug 1235230 for CVE-2024-56601",
"url": "https://bugzilla.suse.com/1235230"
},
{
"category": "external",
"summary": "SUSE Bug 1235231 for CVE-2024-56601",
"url": "https://bugzilla.suse.com/1235231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56601"
},
{
"cve": "CVE-2024-56602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56602"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ieee802154: do not leave a dangling sk pointer in ieee802154_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If ieee802154_create() fails later, the allocated sk object is\nfreed, but the dangling pointer remains in the provided sock object, which\nmay allow use-after-free.\n\nClear the sk pointer in the sock object on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56602",
"url": "https://www.suse.com/security/cve/CVE-2024-56602"
},
{
"category": "external",
"summary": "SUSE Bug 1235521 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "external",
"summary": "SUSE Bug 1235522 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235522"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56602"
},
{
"cve": "CVE-2024-56603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56603"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: af_can: do not leave a dangling sk pointer in can_create()\n\nOn error can_create() frees the allocated sk object, but sock_init_data()\nhas already attached it to the provided sock object. This will leave a\ndangling sk pointer in the sock object and may cause use-after-free later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56603",
"url": "https://www.suse.com/security/cve/CVE-2024-56603"
},
{
"category": "external",
"summary": "SUSE Bug 1235415 for CVE-2024-56603",
"url": "https://bugzilla.suse.com/1235415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56603"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56606"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_packet: avoid erroring out after sock_init_data() in packet_create()\n\nAfter sock_init_data() the allocated sk object is attached to the provided\nsock object. On error, packet_create() frees the sk object leaving the\ndangling pointer in the sock object on return. Some other code may try\nto use this pointer and cause use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56606",
"url": "https://www.suse.com/security/cve/CVE-2024-56606"
},
{
"category": "external",
"summary": "SUSE Bug 1235417 for CVE-2024-56606",
"url": "https://bugzilla.suse.com/1235417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56606"
},
{
"cve": "CVE-2024-56607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56607"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask()\n\nWhen I try to manually set bitrates:\n\niw wlan0 set bitrates legacy-2.4 1\n\nI get sleeping from invalid context error, see below. Fix that by switching to\nuse recently introduced ieee80211_iterate_stations_mtx().\n\nDo note that WCN6855 firmware is still crashing, I\u0027m not sure if that firmware\neven supports bitrate WMI commands and should we consider disabling\nath12k_mac_op_set_bitrate_mask() for WCN6855? But that\u0027s for another patch.\n\nBUG: sleeping function called from invalid context at drivers/net/wireless/ath/ath12k/wmi.c:420\nin_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 2236, name: iw\npreempt_count: 0, expected: 0\nRCU nest depth: 1, expected: 0\n3 locks held by iw/2236:\n #0: ffffffffabc6f1d8 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40\n #1: ffff888138410810 (\u0026rdev-\u003ewiphy.mtx){+.+.}-{3:3}, at: nl80211_pre_doit+0x54d/0x800 [cfg80211]\n #2: ffffffffab2cfaa0 (rcu_read_lock){....}-{1:2}, at: ieee80211_iterate_stations_atomic+0x2f/0x200 [mac80211]\nCPU: 3 UID: 0 PID: 2236 Comm: iw Not tainted 6.11.0-rc7-wt-ath+ #1772\nHardware name: Intel(R) Client Systems NUC8i7HVK/NUC8i7HVB, BIOS HNKBLi70.86A.0067.2021.0528.1339 05/28/2021\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xa4/0xe0\n dump_stack+0x10/0x20\n __might_resched+0x363/0x5a0\n ? __alloc_skb+0x165/0x340\n __might_sleep+0xad/0x160\n ath12k_wmi_cmd_send+0xb1/0x3d0 [ath12k]\n ? ath12k_wmi_init_wcn7850+0xa40/0xa40 [ath12k]\n ? __netdev_alloc_skb+0x45/0x7b0\n ? __asan_memset+0x39/0x40\n ? ath12k_wmi_alloc_skb+0xf0/0x150 [ath12k]\n ? reacquire_held_locks+0x4d0/0x4d0\n ath12k_wmi_set_peer_param+0x340/0x5b0 [ath12k]\n ath12k_mac_disable_peer_fixed_rate+0xa3/0x110 [ath12k]\n ? ath12k_mac_vdev_stop+0x4f0/0x4f0 [ath12k]\n ieee80211_iterate_stations_atomic+0xd4/0x200 [mac80211]\n ath12k_mac_op_set_bitrate_mask+0x5d2/0x1080 [ath12k]\n ? ath12k_mac_vif_chan+0x320/0x320 [ath12k]\n drv_set_bitrate_mask+0x267/0x470 [mac80211]\n ieee80211_set_bitrate_mask+0x4cc/0x8a0 [mac80211]\n ? __this_cpu_preempt_check+0x13/0x20\n nl80211_set_tx_bitrate_mask+0x2bc/0x530 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? trace_contention_end+0xef/0x140\n ? rtnl_unlock+0x9/0x10\n ? nl80211_pre_doit+0x557/0x800 [cfg80211]\n genl_family_rcv_msg_doit+0x1f0/0x2e0\n ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250\n ? ns_capable+0x57/0xd0\n genl_family_rcv_msg+0x34c/0x600\n ? genl_family_rcv_msg_dumpit+0x310/0x310\n ? __lock_acquire+0xc62/0x1de0\n ? he_set_mcs_mask.isra.0+0x8d0/0x8d0 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? cfg80211_external_auth_request+0x690/0x690 [cfg80211]\n genl_rcv_msg+0xa0/0x130\n netlink_rcv_skb+0x14c/0x400\n ? genl_family_rcv_msg+0x600/0x600\n ? netlink_ack+0xd70/0xd70\n ? rwsem_optimistic_spin+0x4f0/0x4f0\n ? genl_rcv+0x14/0x40\n ? down_read_killable+0x580/0x580\n ? netlink_deliver_tap+0x13e/0x350\n ? __this_cpu_preempt_check+0x13/0x20\n genl_rcv+0x23/0x40\n netlink_unicast+0x45e/0x790\n ? netlink_attachskb+0x7f0/0x7f0\n netlink_sendmsg+0x7eb/0xdb0\n ? netlink_unicast+0x790/0x790\n ? __this_cpu_preempt_check+0x13/0x20\n ? selinux_socket_sendmsg+0x31/0x40\n ? netlink_unicast+0x790/0x790\n __sock_sendmsg+0xc9/0x160\n ____sys_sendmsg+0x620/0x990\n ? kernel_sendmsg+0x30/0x30\n ? __copy_msghdr+0x410/0x410\n ? __kasan_check_read+0x11/0x20\n ? mark_lock+0xe6/0x1470\n ___sys_sendmsg+0xe9/0x170\n ? copy_msghdr_from_user+0x120/0x120\n ? __lock_acquire+0xc62/0x1de0\n ? do_fault_around+0x2c6/0x4e0\n ? do_user_addr_fault+0x8c1/0xde0\n ? reacquire_held_locks+0x220/0x4d0\n ? do_user_addr_fault+0x8c1/0xde0\n ? __kasan_check_read+0x11/0x20\n ? __fdget+0x4e/0x1d0\n ? sockfd_lookup_light+0x1a/0x170\n __sys_sendmsg+0xd2/0x180\n ? __sys_sendmsg_sock+0x20/0x20\n ? reacquire_held_locks+0x4d0/0x4d0\n ? debug_smp_processor_id+0x17/0x20\n __x64_sys_sendmsg+0x72/0xb0\n ? lockdep_hardirqs_on+0x7d/0x100\n x64_sys_call+0x894/0x9f0\n do_syscall_64+0x64/0x130\n entry_SYSCALL_64_after_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56607",
"url": "https://www.suse.com/security/cve/CVE-2024-56607"
},
{
"category": "external",
"summary": "SUSE Bug 1235423 for CVE-2024-56607",
"url": "https://bugzilla.suse.com/1235423"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56607"
},
{
"cve": "CVE-2024-56608",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56608"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix out-of-bounds access in \u0027dcn21_link_encoder_create\u0027\n\nAn issue was identified in the dcn21_link_encoder_create function where\nan out-of-bounds access could occur when the hpd_source index was used\nto reference the link_enc_hpd_regs array. This array has a fixed size\nand the index was not being checked against the array\u0027s bounds before\naccessing it.\n\nThis fix adds a conditional check to ensure that the hpd_source index is\nwithin the valid range of the link_enc_hpd_regs array. If the index is\nout of bounds, the function now returns NULL to prevent undefined\nbehavior.\n\nReferences:\n\n[ 65.920507] ------------[ cut here ]------------\n[ 65.920510] UBSAN: array-index-out-of-bounds in drivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn21/dcn21_resource.c:1312:29\n[ 65.920519] index 7 is out of range for type \u0027dcn10_link_enc_hpd_registers [5]\u0027\n[ 65.920523] CPU: 3 PID: 1178 Comm: modprobe Tainted: G OE 6.8.0-cleanershaderfeatureresetasdntipmi200nv2132 #13\n[ 65.920525] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS WMJ0429N_Weekly_20_04_2 04/29/2020\n[ 65.920527] Call Trace:\n[ 65.920529] \u003cTASK\u003e\n[ 65.920532] dump_stack_lvl+0x48/0x70\n[ 65.920541] dump_stack+0x10/0x20\n[ 65.920543] __ubsan_handle_out_of_bounds+0xa2/0xe0\n[ 65.920549] dcn21_link_encoder_create+0xd9/0x140 [amdgpu]\n[ 65.921009] link_create+0x6d3/0xed0 [amdgpu]\n[ 65.921355] create_links+0x18a/0x4e0 [amdgpu]\n[ 65.921679] dc_create+0x360/0x720 [amdgpu]\n[ 65.921999] ? dmi_matches+0xa0/0x220\n[ 65.922004] amdgpu_dm_init+0x2b6/0x2c90 [amdgpu]\n[ 65.922342] ? console_unlock+0x77/0x120\n[ 65.922348] ? dev_printk_emit+0x86/0xb0\n[ 65.922354] dm_hw_init+0x15/0x40 [amdgpu]\n[ 65.922686] amdgpu_device_init+0x26a8/0x33a0 [amdgpu]\n[ 65.922921] amdgpu_driver_load_kms+0x1b/0xa0 [amdgpu]\n[ 65.923087] amdgpu_pci_probe+0x1b7/0x630 [amdgpu]\n[ 65.923087] local_pci_probe+0x4b/0xb0\n[ 65.923087] pci_device_probe+0xc8/0x280\n[ 65.923087] really_probe+0x187/0x300\n[ 65.923087] __driver_probe_device+0x85/0x130\n[ 65.923087] driver_probe_device+0x24/0x110\n[ 65.923087] __driver_attach+0xac/0x1d0\n[ 65.923087] ? __pfx___driver_attach+0x10/0x10\n[ 65.923087] bus_for_each_dev+0x7d/0xd0\n[ 65.923087] driver_attach+0x1e/0x30\n[ 65.923087] bus_add_driver+0xf2/0x200\n[ 65.923087] driver_register+0x64/0x130\n[ 65.923087] ? __pfx_amdgpu_init+0x10/0x10 [amdgpu]\n[ 65.923087] __pci_register_driver+0x61/0x70\n[ 65.923087] amdgpu_init+0x7d/0xff0 [amdgpu]\n[ 65.923087] do_one_initcall+0x49/0x310\n[ 65.923087] ? kmalloc_trace+0x136/0x360\n[ 65.923087] do_init_module+0x6a/0x270\n[ 65.923087] load_module+0x1fce/0x23a0\n[ 65.923087] init_module_from_file+0x9c/0xe0\n[ 65.923087] ? init_module_from_file+0x9c/0xe0\n[ 65.923087] idempotent_init_module+0x179/0x230\n[ 65.923087] __x64_sys_finit_module+0x5d/0xa0\n[ 65.923087] do_syscall_64+0x76/0x120\n[ 65.923087] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n[ 65.923087] RIP: 0033:0x7f2d80f1e88d\n[ 65.923087] Code: 5b 41 5c c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 b5 0f 00 f7 d8 64 89 01 48\n[ 65.923087] RSP: 002b:00007ffc7bc1aa78 EFLAGS: 00000246 ORIG_RAX: 0000000000000139\n[ 65.923087] RAX: ffffffffffffffda RBX: 0000564c9c1db130 RCX: 00007f2d80f1e88d\n[ 65.923087] RDX: 0000000000000000 RSI: 0000564c9c1e5480 RDI: 000000000000000f\n[ 65.923087] RBP: 0000000000040000 R08: 0000000000000000 R09: 0000000000000002\n[ 65.923087] R10: 000000000000000f R11: 0000000000000246 R12: 0000564c9c1e5480\n[ 65.923087] R13: 0000564c9c1db260 R14: 0000000000000000 R15: 0000564c9c1e54b0\n[ 65.923087] \u003c/TASK\u003e\n[ 65.923927] ---[ end trace ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56608",
"url": "https://www.suse.com/security/cve/CVE-2024-56608"
},
{
"category": "external",
"summary": "SUSE Bug 1235487 for CVE-2024-56608",
"url": "https://bugzilla.suse.com/1235487"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56608"
},
{
"cve": "CVE-2024-56609",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56609"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb\n\nWhen removing kernel modules by:\n rmmod rtw88_8723cs rtw88_8703b rtw88_8723x rtw88_sdio rtw88_core\n\nDriver uses skb_queue_purge() to purge TX skb, but not report tx status\ncausing \"Have pending ack frames!\" warning. Use ieee80211_purge_tx_queue()\nto correct this.\n\nSince ieee80211_purge_tx_queue() doesn\u0027t take locks, to prevent racing\nbetween TX work and purge TX queue, flush and destroy TX work in advance.\n\n wlan0: deauthenticating from aa:f5:fd:60:4c:a8 by local\n choice (Reason: 3=DEAUTH_LEAVING)\n ------------[ cut here ]------------\n Have pending ack frames!\n WARNING: CPU: 3 PID: 9232 at net/mac80211/main.c:1691\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n CPU: 3 PID: 9232 Comm: rmmod Tainted: G C\n 6.10.1-200.fc40.aarch64 #1\n Hardware name: pine64 Pine64 PinePhone Braveheart\n (1.1)/Pine64 PinePhone Braveheart (1.1), BIOS 2024.01 01/01/2024\n pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n lr : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n sp : ffff80008c1b37b0\n x29: ffff80008c1b37b0 x28: ffff000003be8000 x27: 0000000000000000\n x26: 0000000000000000 x25: ffff000003dc14b8 x24: ffff80008c1b37d0\n x23: ffff000000ff9f80 x22: 0000000000000000 x21: 000000007fffffff\n x20: ffff80007c7e93d8 x19: ffff00006e66f400 x18: 0000000000000000\n x17: ffff7ffffd2b3000 x16: ffff800083fc0000 x15: 0000000000000000\n x14: 0000000000000000 x13: 2173656d61726620 x12: 6b636120676e6964\n x11: 0000000000000000 x10: 000000000000005d x9 : ffff8000802af2b0\n x8 : ffff80008c1b3430 x7 : 0000000000000001 x6 : 0000000000000001\n x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff000003be8000\n Call trace:\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n idr_for_each+0x74/0x110\n ieee80211_free_hw+0x44/0xe8 [mac80211]\n rtw_sdio_remove+0x9c/0xc0 [rtw88_sdio]\n sdio_bus_remove+0x44/0x180\n device_remove+0x54/0x90\n device_release_driver_internal+0x1d4/0x238\n driver_detach+0x54/0xc0\n bus_remove_driver+0x78/0x108\n driver_unregister+0x38/0x78\n sdio_unregister_driver+0x2c/0x40\n rtw_8723cs_driver_exit+0x18/0x1000 [rtw88_8723cs]\n __do_sys_delete_module.isra.0+0x190/0x338\n __arm64_sys_delete_module+0x1c/0x30\n invoke_syscall+0x74/0x100\n el0_svc_common.constprop.0+0x48/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x3c/0x158\n el0t_64_sync_handler+0x120/0x138\n el0t_64_sync+0x194/0x198\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56609",
"url": "https://www.suse.com/security/cve/CVE-2024-56609"
},
{
"category": "external",
"summary": "SUSE Bug 1235389 for CVE-2024-56609",
"url": "https://bugzilla.suse.com/1235389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56609"
},
{
"cve": "CVE-2024-56610",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56610"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcsan: Turn report_filterlist_lock into a raw_spinlock\n\nRan Xiaokai reports that with a KCSAN-enabled PREEMPT_RT kernel, we can see\nsplats like:\n\n| BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\n| in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 0, name: swapper/1\n| preempt_count: 10002, expected: 0\n| RCU nest depth: 0, expected: 0\n| no locks held by swapper/1/0.\n| irq event stamp: 156674\n| hardirqs last enabled at (156673): [\u003cffffffff81130bd9\u003e] do_idle+0x1f9/0x240\n| hardirqs last disabled at (156674): [\u003cffffffff82254f84\u003e] sysvec_apic_timer_interrupt+0x14/0xc0\n| softirqs last enabled at (0): [\u003cffffffff81099f47\u003e] copy_process+0xfc7/0x4b60\n| softirqs last disabled at (0): [\u003c0000000000000000\u003e] 0x0\n| Preemption disabled at:\n| [\u003cffffffff814a3e2a\u003e] paint_ptr+0x2a/0x90\n| CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.11.0+ #3\n| Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-0-ga698c8995f-prebuilt.qemu.org 04/01/2014\n| Call Trace:\n| \u003cIRQ\u003e\n| dump_stack_lvl+0x7e/0xc0\n| dump_stack+0x1d/0x30\n| __might_resched+0x1a2/0x270\n| rt_spin_lock+0x68/0x170\n| kcsan_skip_report_debugfs+0x43/0xe0\n| print_report+0xb5/0x590\n| kcsan_report_known_origin+0x1b1/0x1d0\n| kcsan_setup_watchpoint+0x348/0x650\n| __tsan_unaligned_write1+0x16d/0x1d0\n| hrtimer_interrupt+0x3d6/0x430\n| __sysvec_apic_timer_interrupt+0xe8/0x3a0\n| sysvec_apic_timer_interrupt+0x97/0xc0\n| \u003c/IRQ\u003e\n\nOn a detected data race, KCSAN\u0027s reporting logic checks if it should\nfilter the report. That list is protected by the report_filterlist_lock\n*non-raw* spinlock which may sleep on RT kernels.\n\nSince KCSAN may report data races in any context, convert it to a\nraw_spinlock.\n\nThis requires being careful about when to allocate memory for the filter\nlist itself which can be done via KCSAN\u0027s debugfs interface. Concurrent\nmodification of the filter list via debugfs should be rare: the chosen\nstrategy is to optimistically pre-allocate memory before the critical\nsection and discard if unused.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56610",
"url": "https://www.suse.com/security/cve/CVE-2024-56610"
},
{
"category": "external",
"summary": "SUSE Bug 1235390 for CVE-2024-56610",
"url": "https://bugzilla.suse.com/1235390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56610"
},
{
"cve": "CVE-2024-56611",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56611"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM\n\nWe currently assume that there is at least one VMA in a MM, which isn\u0027t\ntrue.\n\nSo we might end up having find_vma() return NULL, to then de-reference\nNULL. So properly handle find_vma() returning NULL.\n\nThis fixes the report:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 UID: 0 PID: 6021 Comm: syz-executor284 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\nRIP: 0010:migrate_to_node mm/mempolicy.c:1090 [inline]\nRIP: 0010:do_migrate_pages+0x403/0x6f0 mm/mempolicy.c:1194\nCode: ...\nRSP: 0018:ffffc9000375fd08 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffc9000375fd78 RCX: 0000000000000000\nRDX: ffff88807e171300 RSI: dffffc0000000000 RDI: ffff88803390c044\nRBP: ffff88807e171428 R08: 0000000000000014 R09: fffffbfff2039ef1\nR10: ffffffff901cf78f R11: 0000000000000000 R12: 0000000000000003\nR13: ffffc9000375fe90 R14: ffffc9000375fe98 R15: ffffc9000375fdf8\nFS: 00005555919e1380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555919e1ca8 CR3: 000000007f12a000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n kernel_migrate_pages+0x5b2/0x750 mm/mempolicy.c:1709\n __do_sys_migrate_pages mm/mempolicy.c:1727 [inline]\n __se_sys_migrate_pages mm/mempolicy.c:1723 [inline]\n __x64_sys_migrate_pages+0x96/0x100 mm/mempolicy.c:1723\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[akpm@linux-foundation.org: add unlikely()]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56611",
"url": "https://www.suse.com/security/cve/CVE-2024-56611"
},
{
"category": "external",
"summary": "SUSE Bug 1235391 for CVE-2024-56611",
"url": "https://bugzilla.suse.com/1235391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56611"
},
{
"cve": "CVE-2024-56614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56614"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: fix OOB map writes when deleting elements\n\nJordy says:\n\n\"\nIn the xsk_map_delete_elem function an unsigned integer\n(map-\u003emax_entries) is compared with a user-controlled signed integer\n(k). Due to implicit type conversion, a large unsigned value for\nmap-\u003emax_entries can bypass the intended bounds check:\n\n\tif (k \u003e= map-\u003emax_entries)\n\t\treturn -EINVAL;\n\nThis allows k to hold a negative value (between -2147483648 and -2),\nwhich is then used as an array index in m-\u003exsk_map[k], which results\nin an out-of-bounds access.\n\n\tspin_lock_bh(\u0026m-\u003elock);\n\tmap_entry = \u0026m-\u003exsk_map[k]; // Out-of-bounds map_entry\n\told_xs = unrcu_pointer(xchg(map_entry, NULL)); // Oob write\n\tif (old_xs)\n\t\txsk_map_sock_delete(old_xs, map_entry);\n\tspin_unlock_bh(\u0026m-\u003elock);\n\nThe xchg operation can then be used to cause an out-of-bounds write.\nMoreover, the invalid map_entry passed to xsk_map_sock_delete can lead\nto further memory corruption.\n\"\n\nIt indeed results in following splat:\n\n[76612.897343] BUG: unable to handle page fault for address: ffffc8fc2e461108\n[76612.904330] #PF: supervisor write access in kernel mode\n[76612.909639] #PF: error_code(0x0002) - not-present page\n[76612.914855] PGD 0 P4D 0\n[76612.917431] Oops: Oops: 0002 [#1] PREEMPT SMP\n[76612.921859] CPU: 11 UID: 0 PID: 10318 Comm: a.out Not tainted 6.12.0-rc1+ #470\n[76612.929189] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[76612.939781] RIP: 0010:xsk_map_delete_elem+0x2d/0x60\n[76612.944738] Code: 00 00 41 54 55 53 48 63 2e 3b 6f 24 73 38 4c 8d a7 f8 00 00 00 48 89 fb 4c 89 e7 e8 2d bf 05 00 48 8d b4 eb 00 01 00 00 31 ff \u003c48\u003e 87 3e 48 85 ff 74 05 e8 16 ff ff ff 4c 89 e7 e8 3e bc 05 00 31\n[76612.963774] RSP: 0018:ffffc9002e407df8 EFLAGS: 00010246\n[76612.969079] RAX: 0000000000000000 RBX: ffffc9002e461000 RCX: 0000000000000000\n[76612.976323] RDX: 0000000000000001 RSI: ffffc8fc2e461108 RDI: 0000000000000000\n[76612.983569] RBP: ffffffff80000001 R08: 0000000000000000 R09: 0000000000000007\n[76612.990812] R10: ffffc9002e407e18 R11: ffff888108a38858 R12: ffffc9002e4610f8\n[76612.998060] R13: ffff888108a38858 R14: 00007ffd1ae0ac78 R15: ffffc9002e4610c0\n[76613.005303] FS: 00007f80b6f59740(0000) GS:ffff8897e0ec0000(0000) knlGS:0000000000000000\n[76613.013517] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[76613.019349] CR2: ffffc8fc2e461108 CR3: 000000011e3ef001 CR4: 00000000007726f0\n[76613.026595] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[76613.033841] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[76613.041086] PKRU: 55555554\n[76613.043842] Call Trace:\n[76613.046331] \u003cTASK\u003e\n[76613.048468] ? __die+0x20/0x60\n[76613.051581] ? page_fault_oops+0x15a/0x450\n[76613.055747] ? search_extable+0x22/0x30\n[76613.059649] ? search_bpf_extables+0x5f/0x80\n[76613.063988] ? exc_page_fault+0xa9/0x140\n[76613.067975] ? asm_exc_page_fault+0x22/0x30\n[76613.072229] ? xsk_map_delete_elem+0x2d/0x60\n[76613.076573] ? xsk_map_delete_elem+0x23/0x60\n[76613.080914] __sys_bpf+0x19b7/0x23c0\n[76613.084555] __x64_sys_bpf+0x1a/0x20\n[76613.088194] do_syscall_64+0x37/0xb0\n[76613.091832] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[76613.096962] RIP: 0033:0x7f80b6d1e88d\n[76613.100592] Code: 5b 41 5c c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 b5 0f 00 f7 d8 64 89 01 48\n[76613.119631] RSP: 002b:00007ffd1ae0ac68 EFLAGS: 00000206 ORIG_RAX: 0000000000000141\n[76613.131330] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f80b6d1e88d\n[76613.142632] RDX: 0000000000000098 RSI: 00007ffd1ae0ad20 RDI: 0000000000000003\n[76613.153967] RBP: 00007ffd1ae0adc0 R08: 0000000000000000 R09: 0000000000000000\n[76613.166030] R10: 00007f80b6f77040 R11: 0000000000000206 R12: 00007ffd1ae0aed8\n[76613.177130] R13: 000055ddf42ce1e9 R14: 000055ddf42d0d98 R15: 00\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56614",
"url": "https://www.suse.com/security/cve/CVE-2024-56614"
},
{
"category": "external",
"summary": "SUSE Bug 1235424 for CVE-2024-56614",
"url": "https://bugzilla.suse.com/1235424"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56614"
},
{
"cve": "CVE-2024-56615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56615"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix OOB devmap writes when deleting elements\n\nJordy reported issue against XSKMAP which also applies to DEVMAP - the\nindex used for accessing map entry, due to being a signed integer,\ncauses the OOB writes. Fix is simple as changing the type from int to\nu32, however, when compared to XSKMAP case, one more thing needs to be\naddressed.\n\nWhen map is released from system via dev_map_free(), we iterate through\nall of the entries and an iterator variable is also an int, which\nimplies OOB accesses. Again, change it to be u32.\n\nExample splat below:\n\n[ 160.724676] BUG: unable to handle page fault for address: ffffc8fc2c001000\n[ 160.731662] #PF: supervisor read access in kernel mode\n[ 160.736876] #PF: error_code(0x0000) - not-present page\n[ 160.742095] PGD 0 P4D 0\n[ 160.744678] Oops: Oops: 0000 [#1] PREEMPT SMP\n[ 160.749106] CPU: 1 UID: 0 PID: 520 Comm: kworker/u145:12 Not tainted 6.12.0-rc1+ #487\n[ 160.757050] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[ 160.767642] Workqueue: events_unbound bpf_map_free_deferred\n[ 160.773308] RIP: 0010:dev_map_free+0x77/0x170\n[ 160.777735] Code: 00 e8 fd 91 ed ff e8 b8 73 ed ff 41 83 7d 18 19 74 6e 41 8b 45 24 49 8b bd f8 00 00 00 31 db 85 c0 74 48 48 63 c3 48 8d 04 c7 \u003c48\u003e 8b 28 48 85 ed 74 30 48 8b 7d 18 48 85 ff 74 05 e8 b3 52 fa ff\n[ 160.796777] RSP: 0018:ffffc9000ee1fe38 EFLAGS: 00010202\n[ 160.802086] RAX: ffffc8fc2c001000 RBX: 0000000080000000 RCX: 0000000000000024\n[ 160.809331] RDX: 0000000000000000 RSI: 0000000000000024 RDI: ffffc9002c001000\n[ 160.816576] RBP: 0000000000000000 R08: 0000000000000023 R09: 0000000000000001\n[ 160.823823] R10: 0000000000000001 R11: 00000000000ee6b2 R12: dead000000000122\n[ 160.831066] R13: ffff88810c928e00 R14: ffff8881002df405 R15: 0000000000000000\n[ 160.838310] FS: 0000000000000000(0000) GS:ffff8897e0c40000(0000) knlGS:0000000000000000\n[ 160.846528] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 160.852357] CR2: ffffc8fc2c001000 CR3: 0000000005c32006 CR4: 00000000007726f0\n[ 160.859604] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 160.866847] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 160.874092] PKRU: 55555554\n[ 160.876847] Call Trace:\n[ 160.879338] \u003cTASK\u003e\n[ 160.881477] ? __die+0x20/0x60\n[ 160.884586] ? page_fault_oops+0x15a/0x450\n[ 160.888746] ? search_extable+0x22/0x30\n[ 160.892647] ? search_bpf_extables+0x5f/0x80\n[ 160.896988] ? exc_page_fault+0xa9/0x140\n[ 160.900973] ? asm_exc_page_fault+0x22/0x30\n[ 160.905232] ? dev_map_free+0x77/0x170\n[ 160.909043] ? dev_map_free+0x58/0x170\n[ 160.912857] bpf_map_free_deferred+0x51/0x90\n[ 160.917196] process_one_work+0x142/0x370\n[ 160.921272] worker_thread+0x29e/0x3b0\n[ 160.925082] ? rescuer_thread+0x4b0/0x4b0\n[ 160.929157] kthread+0xd4/0x110\n[ 160.932355] ? kthread_park+0x80/0x80\n[ 160.936079] ret_from_fork+0x2d/0x50\n[ 160.943396] ? kthread_park+0x80/0x80\n[ 160.950803] ret_from_fork_asm+0x11/0x20\n[ 160.958482] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56615",
"url": "https://www.suse.com/security/cve/CVE-2024-56615"
},
{
"category": "external",
"summary": "SUSE Bug 1235426 for CVE-2024-56615",
"url": "https://bugzilla.suse.com/1235426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56615"
},
{
"cve": "CVE-2024-56616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56616"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix MST sideband message body length check\n\nFix the MST sideband message body length check, which must be at least 1\nbyte accounting for the message body CRC (aka message data CRC) at the\nend of the message.\n\nThis fixes a case where an MST branch device returns a header with a\ncorrect header CRC (indicating a correctly received body length), with\nthe body length being incorrectly set to 0. This will later lead to a\nmemory corruption in drm_dp_sideband_append_payload() and the following\nerrors in dmesg:\n\n UBSAN: array-index-out-of-bounds in drivers/gpu/drm/display/drm_dp_mst_topology.c:786:25\n index -1 is out of range for type \u0027u8 [48]\u0027\n Call Trace:\n drm_dp_sideband_append_payload+0x33d/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]\n\n memcpy: detected field-spanning write (size 18446744073709551615) of single field \"\u0026msg-\u003emsg[msg-\u003ecurlen]\" at drivers/gpu/drm/display/drm_dp_mst_topology.c:791 (size 256)\n Call Trace:\n drm_dp_sideband_append_payload+0x324/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56616",
"url": "https://www.suse.com/security/cve/CVE-2024-56616"
},
{
"category": "external",
"summary": "SUSE Bug 1235427 for CVE-2024-56616",
"url": "https://bugzilla.suse.com/1235427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56616"
},
{
"cve": "CVE-2024-56617",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56617"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU\n\nCommit\n\n 5944ce092b97 (\"arch_topology: Build cacheinfo from primary CPU\")\n\nadds functionality that architectures can use to optionally allocate and\nbuild cacheinfo early during boot. Commit\n\n 6539cffa9495 (\"cacheinfo: Add arch specific early level initializer\")\n\nlets secondary CPUs correct (and reallocate memory) cacheinfo data if\nneeded.\n\nIf the early build functionality is not used and cacheinfo does not need\ncorrection, memory for cacheinfo is never allocated. x86 does not use\nthe early build functionality. Consequently, during the cacheinfo CPU\nhotplug callback, last_level_cache_is_valid() attempts to dereference\na NULL pointer:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000100\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not present page\n PGD 0 P4D 0\n Oops: 0000 [#1] PREEPMT SMP NOPTI\n CPU: 0 PID 19 Comm: cpuhp/0 Not tainted 6.4.0-rc2 #1\n RIP: 0010: last_level_cache_is_valid+0x95/0xe0a\n\nAllocate memory for cacheinfo during the cacheinfo CPU hotplug callback\nif not done earlier.\n\nMoreover, before determining the validity of the last-level cache info,\nensure that it has been allocated. Simply checking for non-zero\ncache_leaves() is not sufficient, as some architectures (e.g., Intel\nprocessors) have non-zero cache_leaves() before allocation.\n\nDereferencing NULL cacheinfo can occur in update_per_cpu_data_slice_size().\nThis function iterates over all online CPUs. However, a CPU may have come\nonline recently, but its cacheinfo may not have been allocated yet.\n\nWhile here, remove an unnecessary indentation in allocate_cache_info().\n\n [ bp: Massage. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56617",
"url": "https://www.suse.com/security/cve/CVE-2024-56617"
},
{
"category": "external",
"summary": "SUSE Bug 1235429 for CVE-2024-56617",
"url": "https://bugzilla.suse.com/1235429"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56617"
},
{
"cve": "CVE-2024-56619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56619"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()\n\nSyzbot reported that when searching for records in a directory where the\ninode\u0027s i_size is corrupted and has a large value, memory access outside\nthe folio/page range may occur, or a use-after-free bug may be detected if\nKASAN is enabled.\n\nThis is because nilfs_last_byte(), which is called by nilfs_find_entry()\nand others to calculate the number of valid bytes of directory data in a\npage from i_size and the page index, loses the upper 32 bits of the 64-bit\nsize information due to an inappropriate type of local variable to which\nthe i_size value is assigned.\n\nThis caused a large byte offset value due to underflow in the end address\ncalculation in the calling nilfs_find_entry(), resulting in memory access\nthat exceeds the folio/page size.\n\nFix this issue by changing the type of the local variable causing the bit\nloss from \"unsigned int\" to \"u64\". The return value of nilfs_last_byte()\nis also of type \"unsigned int\", but it is truncated so as not to exceed\nPAGE_SIZE and no bit loss occurs, so no change is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56619",
"url": "https://www.suse.com/security/cve/CVE-2024-56619"
},
{
"category": "external",
"summary": "SUSE Bug 1235224 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "external",
"summary": "SUSE Bug 1235225 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56619"
},
{
"cve": "CVE-2024-56620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56620"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: qcom: Only free platform MSIs when ESI is enabled\n\nOtherwise, it will result in a NULL pointer dereference as below:\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000008\nCall trace:\n mutex_lock+0xc/0x54\n platform_device_msi_free_irqs_all+0x14/0x20\n ufs_qcom_remove+0x34/0x48 [ufs_qcom]\n platform_remove+0x28/0x44\n device_remove+0x4c/0x80\n device_release_driver_internal+0xd8/0x178\n driver_detach+0x50/0x9c\n bus_remove_driver+0x6c/0xbc\n driver_unregister+0x30/0x60\n platform_driver_unregister+0x14/0x20\n ufs_qcom_pltform_exit+0x18/0xb94 [ufs_qcom]\n __arm64_sys_delete_module+0x180/0x260\n invoke_syscall+0x44/0x100\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xdc\n el0t_64_sync_handler+0xc0/0xc4\n el0t_64_sync+0x190/0x194",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56620",
"url": "https://www.suse.com/security/cve/CVE-2024-56620"
},
{
"category": "external",
"summary": "SUSE Bug 1235227 for CVE-2024-56620",
"url": "https://bugzilla.suse.com/1235227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56620"
},
{
"cve": "CVE-2024-56622",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56622"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: sysfs: Prevent div by zero\n\nPrevent a division by 0 when monitoring is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56622",
"url": "https://www.suse.com/security/cve/CVE-2024-56622"
},
{
"category": "external",
"summary": "SUSE Bug 1235251 for CVE-2024-56622",
"url": "https://bugzilla.suse.com/1235251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56622"
},
{
"cve": "CVE-2024-56623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56623"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix use after free on unload\n\nSystem crash is observed with stack trace warning of use after\nfree. There are 2 signals to tell dpc_thread to terminate (UNLOADING\nflag and kthread_stop).\n\nOn setting the UNLOADING flag when dpc_thread happens to run at the time\nand sees the flag, this causes dpc_thread to exit and clean up\nitself. When kthread_stop is called for final cleanup, this causes use\nafter free.\n\nRemove UNLOADING signal to terminate dpc_thread. Use the kthread_stop\nas the main signal to exit dpc_thread.\n\n[596663.812935] kernel BUG at mm/slub.c:294!\n[596663.812950] invalid opcode: 0000 [#1] SMP PTI\n[596663.812957] CPU: 13 PID: 1475935 Comm: rmmod Kdump: loaded Tainted: G IOE --------- - - 4.18.0-240.el8.x86_64 #1\n[596663.812960] Hardware name: HP ProLiant DL380p Gen8, BIOS P70 08/20/2012\n[596663.812974] RIP: 0010:__slab_free+0x17d/0x360\n\n...\n[596663.813008] Call Trace:\n[596663.813022] ? __dentry_kill+0x121/0x170\n[596663.813030] ? _cond_resched+0x15/0x30\n[596663.813034] ? _cond_resched+0x15/0x30\n[596663.813039] ? wait_for_completion+0x35/0x190\n[596663.813048] ? try_to_wake_up+0x63/0x540\n[596663.813055] free_task+0x5a/0x60\n[596663.813061] kthread_stop+0xf3/0x100\n[596663.813103] qla2x00_remove_one+0x284/0x440 [qla2xxx]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56623",
"url": "https://www.suse.com/security/cve/CVE-2024-56623"
},
{
"category": "external",
"summary": "SUSE Bug 1235466 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "external",
"summary": "SUSE Bug 1235468 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56623"
},
{
"cve": "CVE-2024-56625",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56625"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: dev: can_set_termination(): allow sleeping GPIOs\n\nIn commit 6e86a1543c37 (\"can: dev: provide optional GPIO based\ntermination support\") GPIO based termination support was added.\n\nFor no particular reason that patch uses gpiod_set_value() to set the\nGPIO. This leads to the following warning, if the systems uses a\nsleeping GPIO, i.e. behind an I2C port expander:\n\n| WARNING: CPU: 0 PID: 379 at /drivers/gpio/gpiolib.c:3496 gpiod_set_value+0x50/0x6c\n| CPU: 0 UID: 0 PID: 379 Comm: ip Not tainted 6.11.0-20241016-1 #1 823affae360cc91126e4d316d7a614a8bf86236c\n\nReplace gpiod_set_value() by gpiod_set_value_cansleep() to allow the\nuse of sleeping GPIOs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56625",
"url": "https://www.suse.com/security/cve/CVE-2024-56625"
},
{
"category": "external",
"summary": "SUSE Bug 1235223 for CVE-2024-56625",
"url": "https://bugzilla.suse.com/1235223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56625"
},
{
"cve": "CVE-2024-56629",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56629"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: wacom: fix when get product name maybe null pointer\n\nDue to incorrect dev-\u003eproduct reporting by certain devices, null\npointer dereferences occur when dev-\u003eproduct is empty, leading to\npotential system crashes.\n\nThis issue was found on EXCELSIOR DL37-D05 device with\nLoongson-LS3A6000-7A2000-DL37 motherboard.\n\nKernel logs:\n[ 56.470885] usb 4-3: new full-speed USB device number 4 using ohci-pci\n[ 56.671638] usb 4-3: string descriptor 0 read error: -22\n[ 56.671644] usb 4-3: New USB device found, idVendor=056a, idProduct=0374, bcdDevice= 1.07\n[ 56.671647] usb 4-3: New USB device strings: Mfr=1, Product=2, SerialNumber=3\n[ 56.678839] hid-generic 0003:056A:0374.0004: hiddev0,hidraw3: USB HID v1.10 Device [HID 056a:0374] on usb-0000:00:05.0-3/input0\n[ 56.697719] CPU 2 Unable to handle kernel paging request at virtual address 0000000000000000, era == 90000000066e35c8, ra == ffff800004f98a80\n[ 56.697732] Oops[#1]:\n[ 56.697734] CPU: 2 PID: 2742 Comm: (udev-worker) Tainted: G OE 6.6.0-loong64-desktop #25.00.2000.015\n[ 56.697737] Hardware name: Inspur CE520L2/C09901N000000000, BIOS 2.09.00 10/11/2024\n[ 56.697739] pc 90000000066e35c8 ra ffff800004f98a80 tp 9000000125478000 sp 900000012547b8a0\n[ 56.697741] a0 0000000000000000 a1 ffff800004818b28 a2 0000000000000000 a3 0000000000000000\n[ 56.697743] a4 900000012547b8f0 a5 0000000000000000 a6 0000000000000000 a7 0000000000000000\n[ 56.697745] t0 ffff800004818b2d t1 0000000000000000 t2 0000000000000003 t3 0000000000000005\n[ 56.697747] t4 0000000000000000 t5 0000000000000000 t6 0000000000000000 t7 0000000000000000\n[ 56.697748] t8 0000000000000000 u0 0000000000000000 s9 0000000000000000 s0 900000011aa48028\n[ 56.697750] s1 0000000000000000 s2 0000000000000000 s3 ffff800004818e80 s4 ffff800004810000\n[ 56.697751] s5 90000001000b98d0 s6 ffff800004811f88 s7 ffff800005470440 s8 0000000000000000\n[ 56.697753] ra: ffff800004f98a80 wacom_update_name+0xe0/0x300 [wacom]\n[ 56.697802] ERA: 90000000066e35c8 strstr+0x28/0x120\n[ 56.697806] CRMD: 000000b0 (PLV0 -IE -DA +PG DACF=CC DACM=CC -WE)\n[ 56.697816] PRMD: 0000000c (PPLV0 +PIE +PWE)\n[ 56.697821] EUEN: 00000000 (-FPE -SXE -ASXE -BTE)\n[ 56.697827] ECFG: 00071c1d (LIE=0,2-4,10-12 VS=7)\n[ 56.697831] ESTAT: 00010000 [PIL] (IS= ECode=1 EsubCode=0)\n[ 56.697835] BADV: 0000000000000000\n[ 56.697836] PRID: 0014d000 (Loongson-64bit, Loongson-3A6000)\n[ 56.697838] Modules linked in: wacom(+) bnep bluetooth rfkill qrtr nls_iso8859_1 nls_cp437 snd_hda_codec_conexant snd_hda_codec_generic ledtrig_audio snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd soundcore input_leds mousedev led_class joydev deepin_netmonitor(OE) fuse nfnetlink dmi_sysfs ip_tables x_tables overlay amdgpu amdxcp drm_exec gpu_sched drm_buddy radeon drm_suballoc_helper i2c_algo_bit drm_ttm_helper r8169 ttm drm_display_helper spi_loongson_pci xhci_pci cec xhci_pci_renesas spi_loongson_core hid_generic realtek gpio_loongson_64bit\n[ 56.697887] Process (udev-worker) (pid: 2742, threadinfo=00000000aee0d8b4, task=00000000a9eff1f3)\n[ 56.697890] Stack : 0000000000000000 ffff800004817e00 0000000000000000 0000251c00000000\n[ 56.697896] 0000000000000000 00000011fffffffd 0000000000000000 0000000000000000\n[ 56.697901] 0000000000000000 1b67a968695184b9 0000000000000000 90000001000b98d0\n[ 56.697906] 90000001000bb8d0 900000011aa48028 0000000000000000 ffff800004f9d74c\n[ 56.697911] 90000001000ba000 ffff800004f9ce58 0000000000000000 ffff800005470440\n[ 56.697916] ffff800004811f88 90000001000b98d0 9000000100da2aa8 90000001000bb8d0\n[ 56.697921] 0000000000000000 90000001000ba000 900000011aa48028 ffff800004f9d74c\n[ 56.697926] ffff8000054704e8 90000001000bb8b8 90000001000ba000 0000000000000000\n[ 56.697931] 90000001000bb8d0 \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56629",
"url": "https://www.suse.com/security/cve/CVE-2024-56629"
},
{
"category": "external",
"summary": "SUSE Bug 1235473 for CVE-2024-56629",
"url": "https://bugzilla.suse.com/1235473"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56629"
},
{
"cve": "CVE-2024-56630",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56630"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: free inode when ocfs2_get_init_inode() fails\n\nsyzbot is reporting busy inodes after unmount, for commit 9c89fe0af826\n(\"ocfs2: Handle error from dquot_initialize()\") forgot to call iput() when\nnew_inode() succeeded and dquot_initialize() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56630",
"url": "https://www.suse.com/security/cve/CVE-2024-56630"
},
{
"category": "external",
"summary": "SUSE Bug 1235479 for CVE-2024-56630",
"url": "https://bugzilla.suse.com/1235479"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56630"
},
{
"cve": "CVE-2024-56631",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56631"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Fix slab-use-after-free read in sg_release()\n\nFix a use-after-free bug in sg_release(), detected by syzbot with KASAN:\n\nBUG: KASAN: slab-use-after-free in lock_release+0x151/0xa30\nkernel/locking/lockdep.c:5838\n__mutex_unlock_slowpath+0xe2/0x750 kernel/locking/mutex.c:912\nsg_release+0x1f4/0x2e0 drivers/scsi/sg.c:407\n\nIn sg_release(), the function kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) is\ncalled before releasing the open_rel_lock mutex. The kref_put() call may\ndecrement the reference count of sfp to zero, triggering its cleanup\nthrough sg_remove_sfp(). This cleanup includes scheduling deferred work\nvia sg_remove_sfp_usercontext(), which ultimately frees sfp.\n\nAfter kref_put(), sg_release() continues to unlock open_rel_lock and may\nreference sfp or sdp. If sfp has already been freed, this results in a\nslab-use-after-free error.\n\nMove the kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) call after unlocking the\nopen_rel_lock mutex. This ensures:\n\n - No references to sfp or sdp occur after the reference count is\n decremented.\n\n - Cleanup functions such as sg_remove_sfp() and\n sg_remove_sfp_usercontext() can safely execute without impacting the\n mutex handling in sg_release().\n\nThe fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures proper\nsequencing of resource cleanup and mutex operations, eliminating the\nrisk of use-after-free errors in sg_release().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56631",
"url": "https://www.suse.com/security/cve/CVE-2024-56631"
},
{
"category": "external",
"summary": "SUSE Bug 1235480 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "external",
"summary": "SUSE Bug 1235482 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56631"
},
{
"cve": "CVE-2024-56632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: fix the memleak while create new ctrl failed\n\nNow while we create new ctrl failed, we have not free the\ntagset occupied by admin_q, here try to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56632",
"url": "https://www.suse.com/security/cve/CVE-2024-56632"
},
{
"category": "external",
"summary": "SUSE Bug 1235483 for CVE-2024-56632",
"url": "https://bugzilla.suse.com/1235483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56632"
},
{
"cve": "CVE-2024-56634",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56634"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: grgpio: Add NULL check in grgpio_probe\n\ndevm_kasprintf() can return a NULL pointer on failure,but this\nreturned value in grgpio_probe is not checked.\nAdd NULL check in grgpio_probe, to handle kernel NULL\npointer dereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56634",
"url": "https://www.suse.com/security/cve/CVE-2024-56634"
},
{
"category": "external",
"summary": "SUSE Bug 1235486 for CVE-2024-56634",
"url": "https://bugzilla.suse.com/1235486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56634"
},
{
"cve": "CVE-2024-56635",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56635"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: avoid potential UAF in default_operstate()\n\nsyzbot reported an UAF in default_operstate() [1]\n\nIssue is a race between device and netns dismantles.\n\nAfter calling __rtnl_unlock() from netdev_run_todo(),\nwe can not assume the netns of each device is still alive.\n\nMake sure the device is not in NETREG_UNREGISTERED state,\nand add an ASSERT_RTNL() before the call to\n__dev_get_by_index().\n\nWe might move this ASSERT_RTNL() in __dev_get_by_index()\nin the future.\n\n[1]\n\nBUG: KASAN: slab-use-after-free in __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\nRead of size 8 at addr ffff888043eba1b0 by task syz.0.0/5339\n\nCPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\n default_operstate net/core/link_watch.c:51 [inline]\n rfc2863_policy+0x224/0x300 net/core/link_watch.c:67\n linkwatch_do_dev+0x3e/0x170 net/core/link_watch.c:170\n netdev_run_todo+0x461/0x1000 net/core/dev.c:10894\n rtnl_unlock net/core/rtnetlink.c:152 [inline]\n rtnl_net_unlock include/linux/rtnetlink.h:133 [inline]\n rtnl_dellink+0x760/0x8d0 net/core/rtnetlink.c:3520\n rtnetlink_rcv_msg+0x791/0xcf0 net/core/rtnetlink.c:6911\n netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2541\n netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]\n netlink_unicast+0x7f6/0x990 net/netlink/af_netlink.c:1347\n netlink_sendmsg+0x8e4/0xcb0 net/netlink/af_netlink.c:1891\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:726\n ____sys_sendmsg+0x52a/0x7e0 net/socket.c:2583\n ___sys_sendmsg net/socket.c:2637 [inline]\n __sys_sendmsg+0x269/0x350 net/socket.c:2669\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f2a3cb80809\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f2a3d9cd058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f2a3cd45fa0 RCX: 00007f2a3cb80809\nRDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000008\nRBP: 00007f2a3cbf393e R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f2a3cd45fa0 R15: 00007ffd03bc65c8\n \u003c/TASK\u003e\n\nAllocated by task 5339:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:394\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __kmalloc_cache_noprof+0x243/0x390 mm/slub.c:4314\n kmalloc_noprof include/linux/slab.h:901 [inline]\n kmalloc_array_noprof include/linux/slab.h:945 [inline]\n netdev_create_hash net/core/dev.c:11870 [inline]\n netdev_init+0x10c/0x250 net/core/dev.c:11890\n ops_init+0x31e/0x590 net/core/net_namespace.c:138\n setup_net+0x287/0x9e0 net/core/net_namespace.c:362\n copy_net_ns+0x33f/0x570 net/core/net_namespace.c:500\n create_new_namespaces+0x425/0x7b0 kernel/nsproxy.c:110\n unshare_nsproxy_namespaces+0x124/0x180 kernel/nsproxy.c:228\n ksys_unshare+0x57d/0xa70 kernel/fork.c:3314\n __do_sys_unshare kernel/fork.c:3385 [inline]\n __se_sys_unshare kernel/fork.c:3383 [inline]\n __x64_sys_unshare+0x38/0x40 kernel/fork.c:3383\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x8\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56635",
"url": "https://www.suse.com/security/cve/CVE-2024-56635"
},
{
"category": "external",
"summary": "SUSE Bug 1235519 for CVE-2024-56635",
"url": "https://bugzilla.suse.com/1235519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56635"
},
{
"cve": "CVE-2024-56636",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56636"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: do not assume mac header is set in geneve_xmit_skb()\n\nWe should not assume mac header is set in output path.\n\nUse skb_eth_hdr() instead of eth_hdr() to fix the issue.\n\nsysbot reported the following :\n\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 skb_mac_header include/linux/skbuff.h:3052 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 eth_hdr include/linux/if_ether.h:24 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nModules linked in:\nCPU: 0 UID: 0 PID: 11635 Comm: syz.4.1423 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_mac_header include/linux/skbuff.h:3052 [inline]\n RIP: 0010:eth_hdr include/linux/if_ether.h:24 [inline]\n RIP: 0010:geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n RIP: 0010:geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nCode: 21 c6 02 e9 35 d4 ff ff e8 a5 48 4c fb 90 0f 0b 90 e9 fd f5 ff ff e8 97 48 4c fb 90 0f 0b 90 e9 d8 f5 ff ff e8 89 48 4c fb 90 \u003c0f\u003e 0b 90 e9 41 e4 ff ff e8 7b 48 4c fb 90 0f 0b 90 e9 cd e7 ff ff\nRSP: 0018:ffffc90003b2f870 EFLAGS: 00010283\nRAX: 000000000000037a RBX: 000000000000ffff RCX: ffffc9000dc3d000\nRDX: 0000000000080000 RSI: ffffffff86428417 RDI: 0000000000000003\nRBP: ffffc90003b2f9f0 R08: 0000000000000003 R09: 000000000000ffff\nR10: 000000000000ffff R11: 0000000000000002 R12: ffff88806603c000\nR13: 0000000000000000 R14: ffff8880685b2780 R15: 0000000000000e23\nFS: 00007fdc2deed6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000001b30a1dff8 CR3: 0000000056b8c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n __dev_direct_xmit+0x58a/0x720 net/core/dev.c:4490\n dev_direct_xmit include/linux/netdevice.h:3181 [inline]\n packet_xmit+0x1e4/0x360 net/packet/af_packet.c:285\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x2700/0x5660 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg net/socket.c:726 [inline]\n __sys_sendto+0x488/0x4f0 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2200\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56636",
"url": "https://www.suse.com/security/cve/CVE-2024-56636"
},
{
"category": "external",
"summary": "SUSE Bug 1235520 for CVE-2024-56636",
"url": "https://bugzilla.suse.com/1235520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56636"
},
{
"cve": "CVE-2024-56637",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56637"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: Hold module reference while requesting a module\n\nUser space may unload ip_set.ko while it is itself requesting a set type\nbackend module, leading to a kernel crash. The race condition may be\nprovoked by inserting an mdelay() right after the nfnl_unlock() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56637",
"url": "https://www.suse.com/security/cve/CVE-2024-56637"
},
{
"category": "external",
"summary": "SUSE Bug 1235523 for CVE-2024-56637",
"url": "https://bugzilla.suse.com/1235523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56637"
},
{
"cve": "CVE-2024-56641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56641"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: initialize close_work early to avoid warning\n\nWe encountered a warning that close_work was canceled before\ninitialization.\n\n WARNING: CPU: 7 PID: 111103 at kernel/workqueue.c:3047 __flush_work+0x19e/0x1b0\n Workqueue: events smc_lgr_terminate_work [smc]\n RIP: 0010:__flush_work+0x19e/0x1b0\n Call Trace:\n ? __wake_up_common+0x7a/0x190\n ? work_busy+0x80/0x80\n __cancel_work_timer+0xe3/0x160\n smc_close_cancel_work+0x1a/0x70 [smc]\n smc_close_active_abort+0x207/0x360 [smc]\n __smc_lgr_terminate.part.38+0xc8/0x180 [smc]\n process_one_work+0x19e/0x340\n worker_thread+0x30/0x370\n ? process_one_work+0x340/0x340\n kthread+0x117/0x130\n ? __kthread_cancel_work+0x50/0x50\n ret_from_fork+0x22/0x30\n\nThis is because when smc_close_cancel_work is triggered, e.g. the RDMA\ndriver is rmmod and the LGR is terminated, the conn-\u003eclose_work is\nflushed before initialization, resulting in WARN_ON(!work-\u003efunc).\n\n__smc_lgr_terminate | smc_connect_{rdma|ism}\n-------------------------------------------------------------\n | smc_conn_create\n\t\t\t\t| \\- smc_lgr_register_conn\nfor conn in lgr-\u003econns_all |\n\\- smc_conn_kill |\n \\- smc_close_active_abort |\n \\- smc_close_cancel_work |\n \\- cancel_work_sync |\n \\- __flush_work |\n\t (close_work) |\n\t | smc_close_init\n\t | \\- INIT_WORK(\u0026close_work)\n\nSo fix this by initializing close_work before establishing the\nconnection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56641",
"url": "https://www.suse.com/security/cve/CVE-2024-56641"
},
{
"category": "external",
"summary": "SUSE Bug 1235526 for CVE-2024-56641",
"url": "https://bugzilla.suse.com/1235526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56641"
},
{
"cve": "CVE-2024-56642",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56642"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free of kernel socket in cleanup_bearer().\n\nsyzkaller reported a use-after-free of UDP kernel socket\nin cleanup_bearer() without repro. [0][1]\n\nWhen bearer_disable() calls tipc_udp_disable(), cleanup\nof the UDP kernel socket is deferred by work calling\ncleanup_bearer().\n\ntipc_exit_net() waits for such works to finish by checking\ntipc_net(net)-\u003ewq_count. However, the work decrements the\ncount too early before releasing the kernel socket,\nunblocking cleanup_net() and resulting in use-after-free.\n\nLet\u0027s move the decrement after releasing the socket in\ncleanup_bearer().\n\n[0]:\nref_tracker: net notrefcnt@000000009b3d1faf has 1/1 users at\n sk_alloc+0x438/0x608\n inet_create+0x4c8/0xcb0\n __sock_create+0x350/0x6b8\n sock_create_kern+0x58/0x78\n udp_sock_create4+0x68/0x398\n udp_sock_create+0x88/0xc8\n tipc_udp_enable+0x5e8/0x848\n __tipc_nl_bearer_enable+0x84c/0xed8\n tipc_nl_bearer_enable+0x38/0x60\n genl_family_rcv_msg_doit+0x170/0x248\n genl_rcv_msg+0x400/0x5b0\n netlink_rcv_skb+0x1dc/0x398\n genl_rcv+0x44/0x68\n netlink_unicast+0x678/0x8b0\n netlink_sendmsg+0x5e4/0x898\n ____sys_sendmsg+0x500/0x830\n\n[1]:\nBUG: KMSAN: use-after-free in udp_hashslot include/net/udp.h:85 [inline]\nBUG: KMSAN: use-after-free in udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n udp_hashslot include/net/udp.h:85 [inline]\n udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n sk_common_release+0xaf/0x3f0 net/core/sock.c:3820\n inet_release+0x1e0/0x260 net/ipv4/af_inet.c:437\n inet6_release+0x6f/0xd0 net/ipv6/af_inet6.c:489\n __sock_release net/socket.c:658 [inline]\n sock_release+0xa0/0x210 net/socket.c:686\n cleanup_bearer+0x42d/0x4c0 net/tipc/udp_media.c:819\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nUninit was created at:\n slab_free_hook mm/slub.c:2269 [inline]\n slab_free mm/slub.c:4580 [inline]\n kmem_cache_free+0x207/0xc40 mm/slub.c:4682\n net_free net/core/net_namespace.c:454 [inline]\n cleanup_net+0x16f2/0x19d0 net/core/net_namespace.c:647\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/0:2 Not tainted 6.12.0-rc1-00131-gf66ebf37d69c #7 91723d6f74857f70725e1583cba3cf4adc716cfa\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nWorkqueue: events cleanup_bearer",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56642",
"url": "https://www.suse.com/security/cve/CVE-2024-56642"
},
{
"category": "external",
"summary": "SUSE Bug 1235433 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "external",
"summary": "SUSE Bug 1235434 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56642"
},
{
"cve": "CVE-2024-56643",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56643"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: Fix memory leak in dccp_feat_change_recv\n\nIf dccp_feat_push_confirm() fails after new value for SP feature was accepted\nwithout reconciliation (\u0027entry == NULL\u0027 branch), memory allocated for that value\nwith dccp_feat_clone_sp_val() is never freed.\n\nHere is the kmemleak stack for this:\n\nunreferenced object 0xffff88801d4ab488 (size 8):\n comm \"syz-executor310\", pid 1127, jiffies 4295085598 (age 41.666s)\n hex dump (first 8 bytes):\n 01 b4 4a 1d 80 88 ff ff ..J.....\n backtrace:\n [\u003c00000000db7cabfe\u003e] kmemdup+0x23/0x50 mm/util.c:128\n [\u003c0000000019b38405\u003e] kmemdup include/linux/string.h:465 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:371 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:367 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_change_recv net/dccp/feat.c:1145 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_parse_options+0x1196/0x2180 net/dccp/feat.c:1416\n [\u003c00000000b1f6d94a\u003e] dccp_parse_options+0xa2a/0x1260 net/dccp/options.c:125\n [\u003c0000000030d7b621\u003e] dccp_rcv_state_process+0x197/0x13d0 net/dccp/input.c:650\n [\u003c000000001f74c72e\u003e] dccp_v4_do_rcv+0xf9/0x1a0 net/dccp/ipv4.c:688\n [\u003c00000000a6c24128\u003e] sk_backlog_rcv include/net/sock.h:1041 [inline]\n [\u003c00000000a6c24128\u003e] __release_sock+0x139/0x3b0 net/core/sock.c:2570\n [\u003c00000000cf1f3a53\u003e] release_sock+0x54/0x1b0 net/core/sock.c:3111\n [\u003c000000008422fa23\u003e] inet_wait_for_connect net/ipv4/af_inet.c:603 [inline]\n [\u003c000000008422fa23\u003e] __inet_stream_connect+0x5d0/0xf70 net/ipv4/af_inet.c:696\n [\u003c0000000015b6f64d\u003e] inet_stream_connect+0x53/0xa0 net/ipv4/af_inet.c:735\n [\u003c0000000010122488\u003e] __sys_connect_file+0x15c/0x1a0 net/socket.c:1865\n [\u003c00000000b4b70023\u003e] __sys_connect+0x165/0x1a0 net/socket.c:1882\n [\u003c00000000f4cb3815\u003e] __do_sys_connect net/socket.c:1892 [inline]\n [\u003c00000000f4cb3815\u003e] __se_sys_connect net/socket.c:1889 [inline]\n [\u003c00000000f4cb3815\u003e] __x64_sys_connect+0x6e/0xb0 net/socket.c:1889\n [\u003c00000000e7b1e839\u003e] do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46\n [\u003c0000000055e91434\u003e] entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nClean up the allocated memory in case of dccp_feat_push_confirm() failure\nand bail out with an error reset code.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56643",
"url": "https://www.suse.com/security/cve/CVE-2024-56643"
},
{
"category": "external",
"summary": "SUSE Bug 1235132 for CVE-2024-56643",
"url": "https://bugzilla.suse.com/1235132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56643"
},
{
"cve": "CVE-2024-56644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56644"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ipv6: release expired exception dst cached in socket\n\nDst objects get leaked in ip6_negative_advice() when this function is\nexecuted for an expired IPv6 route located in the exception table. There\nare several conditions that must be fulfilled for the leak to occur:\n* an ICMPv6 packet indicating a change of the MTU for the path is received,\n resulting in an exception dst being created\n* a TCP connection that uses the exception dst for routing packets must\n start timing out so that TCP begins retransmissions\n* after the exception dst expires, the FIB6 garbage collector must not run\n before TCP executes ip6_negative_advice() for the expired exception dst\n\nWhen TCP executes ip6_negative_advice() for an exception dst that has\nexpired and if no other socket holds a reference to the exception dst, the\nrefcount of the exception dst is 2, which corresponds to the increment\nmade by dst_init() and the increment made by the TCP socket for which the\nconnection is timing out. The refcount made by the socket is never\nreleased. The refcount of the dst is decremented in sk_dst_reset() but\nthat decrement is counteracted by a dst_hold() intentionally placed just\nbefore the sk_dst_reset() in ip6_negative_advice(). After\nip6_negative_advice() has finished, there is no other object tied to the\ndst. The socket lost its reference stored in sk_dst_cache and the dst is\nno longer in the exception table. The exception dst becomes a leaked\nobject.\n\nAs a result of this dst leak, an unbalanced refcount is reported for the\nloopback device of a net namespace being destroyed under kernels that do\nnot contain e5f80fcf869a (\"ipv6: give an IPv6 dev to blackhole_netdev\"):\nunregister_netdevice: waiting for lo to become free. Usage count = 2\n\nFix the dst leak by removing the dst_hold() in ip6_negative_advice(). The\npatch that introduced the dst_hold() in ip6_negative_advice() was\n92f1655aa2b22 (\"net: fix __dst_negative_advice() race\"). But 92f1655aa2b22\nmerely refactored the code with regards to the dst refcount so the issue\nwas present even before 92f1655aa2b22. The bug was introduced in\n54c1a859efd9f (\"ipv6: Don\u0027t drop cache route entry unless timer actually\nexpired.\") where the expired cached route is deleted and the sk_dst_cache\nmember of the socket is set to NULL by calling dst_negative_advice() but\nthe refcount belonging to the socket is left unbalanced.\n\nThe IPv4 version - ipv4_negative_advice() - is not affected by this bug.\nWhen the TCP connection times out ipv4_negative_advice() merely resets the\nsk_dst_cache of the socket while decrementing the refcount of the\nexception dst.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56644",
"url": "https://www.suse.com/security/cve/CVE-2024-56644"
},
{
"category": "external",
"summary": "SUSE Bug 1235133 for CVE-2024-56644",
"url": "https://bugzilla.suse.com/1235133"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56644"
},
{
"cve": "CVE-2024-56645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: j1939: j1939_session_new(): fix skb reference counting\n\nSince j1939_session_skb_queue() does an extra skb_get() for each new\nskb, do the same for the initial one in j1939_session_new() to avoid\nrefcount underflow.\n\n[mkl: clean up commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56645",
"url": "https://www.suse.com/security/cve/CVE-2024-56645"
},
{
"category": "external",
"summary": "SUSE Bug 1235134 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "external",
"summary": "SUSE Bug 1235135 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56645"
},
{
"cve": "CVE-2024-56648",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56648"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hsr: avoid potential out-of-bound access in fill_frame_info()\n\nsyzbot is able to feed a packet with 14 bytes, pretending\nit is a vlan one.\n\nSince fill_frame_info() is relying on skb-\u003emac_len already,\nextend the check to cover this case.\n\nBUG: KMSAN: uninit-value in fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n BUG: KMSAN: uninit-value in hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n hsr_dev_xmit+0x2f0/0x350 net/hsr/hsr_device.c:235\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n xmit_one net/core/dev.c:3590 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3606\n __dev_queue_xmit+0x366a/0x57d0 net/core/dev.c:4434\n dev_queue_xmit include/linux/netdevice.h:3168 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x91ae/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4091 [inline]\n slab_alloc_node mm/slub.c:4134 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4186\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n alloc_skb include/linux/skbuff.h:1323 [inline]\n alloc_skb_with_frags+0xc8/0xd00 net/core/skbuff.c:6612\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2881\n packet_alloc_skb net/packet/af_packet.c:2995 [inline]\n packet_snd net/packet/af_packet.c:3089 [inline]\n packet_sendmsg+0x74c6/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56648",
"url": "https://www.suse.com/security/cve/CVE-2024-56648"
},
{
"category": "external",
"summary": "SUSE Bug 1235451 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "external",
"summary": "SUSE Bug 1235452 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56648"
},
{
"cve": "CVE-2024-56649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: Do not configure preemptible TCs if SIs do not support\n\nBoth ENETC PF and VF drivers share enetc_setup_tc_mqprio() to configure\nMQPRIO. And enetc_setup_tc_mqprio() calls enetc_change_preemptible_tcs()\nto configure preemptible TCs. However, only PF is able to configure\npreemptible TCs. Because only PF has related registers, while VF does not\nhave these registers. So for VF, its hw-\u003eport pointer is NULL. Therefore,\nVF will access an invalid pointer when accessing a non-existent register,\nwhich will cause a crash issue. The simplified log is as follows.\n\nroot@ls1028ardb:~# tc qdisc add dev eno0vf0 parent root handle 100: \\\nmqprio num_tc 4 map 0 0 1 1 2 2 3 3 queues 1@0 1@1 1@2 1@3 hw 1\n[ 187.290775] Unable to handle kernel paging request at virtual address 0000000000001f00\n[ 187.424831] pc : enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.430518] lr : enetc_mm_commit_preemptible_tcs+0x30c/0x400\n[ 187.511140] Call trace:\n[ 187.513588] enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.518918] enetc_setup_tc_mqprio+0x180/0x214\n[ 187.523374] enetc_vf_setup_tc+0x1c/0x30\n[ 187.527306] mqprio_enable_offload+0x144/0x178\n[ 187.531766] mqprio_init+0x3ec/0x668\n[ 187.535351] qdisc_create+0x15c/0x488\n[ 187.539023] tc_modify_qdisc+0x398/0x73c\n[ 187.542958] rtnetlink_rcv_msg+0x128/0x378\n[ 187.547064] netlink_rcv_skb+0x60/0x130\n[ 187.550910] rtnetlink_rcv+0x18/0x24\n[ 187.554492] netlink_unicast+0x300/0x36c\n[ 187.558425] netlink_sendmsg+0x1a8/0x420\n[ 187.606759] ---[ end trace 0000000000000000 ]---\n\nIn addition, some PFs also do not support configuring preemptible TCs,\nsuch as eno1 and eno3 on LS1028A. It won\u0027t crash like it does for VFs,\nbut we should prevent these PFs from accessing these unimplemented\nregisters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56649",
"url": "https://www.suse.com/security/cve/CVE-2024-56649"
},
{
"category": "external",
"summary": "SUSE Bug 1235449 for CVE-2024-56649",
"url": "https://bugzilla.suse.com/1235449"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56649"
},
{
"cve": "CVE-2024-56650",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56650"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: x_tables: fix LED ID check in led_tg_check()\n\nSyzbot has reported the following BUG detected by KASAN:\n\nBUG: KASAN: slab-out-of-bounds in strlen+0x58/0x70\nRead of size 1 at addr ffff8881022da0c8 by task repro/5879\n...\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x241/0x360\n ? __pfx_dump_stack_lvl+0x10/0x10\n ? __pfx__printk+0x10/0x10\n ? _printk+0xd5/0x120\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x183/0x530\n print_report+0x169/0x550\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x45f/0x530\n ? __phys_addr+0xba/0x170\n ? strlen+0x58/0x70\n kasan_report+0x143/0x180\n ? strlen+0x58/0x70\n strlen+0x58/0x70\n kstrdup+0x20/0x80\n led_tg_check+0x18b/0x3c0\n xt_check_target+0x3bb/0xa40\n ? __pfx_xt_check_target+0x10/0x10\n ? stack_depot_save_flags+0x6e4/0x830\n ? nft_target_init+0x174/0xc30\n nft_target_init+0x82d/0xc30\n ? __pfx_nft_target_init+0x10/0x10\n ? nf_tables_newrule+0x1609/0x2980\n ? nf_tables_newrule+0x1609/0x2980\n ? rcu_is_watching+0x15/0xb0\n ? nf_tables_newrule+0x1609/0x2980\n ? nf_tables_newrule+0x1609/0x2980\n ? __kmalloc_noprof+0x21a/0x400\n nf_tables_newrule+0x1860/0x2980\n ? __pfx_nf_tables_newrule+0x10/0x10\n ? __nla_parse+0x40/0x60\n nfnetlink_rcv+0x14e5/0x2ab0\n ? __pfx_validate_chain+0x10/0x10\n ? __pfx_nfnetlink_rcv+0x10/0x10\n ? __lock_acquire+0x1384/0x2050\n ? netlink_deliver_tap+0x2e/0x1b0\n ? __pfx_lock_release+0x10/0x10\n ? netlink_deliver_tap+0x2e/0x1b0\n netlink_unicast+0x7f8/0x990\n ? __pfx_netlink_unicast+0x10/0x10\n ? __virt_addr_valid+0x183/0x530\n ? __check_object_size+0x48e/0x900\n netlink_sendmsg+0x8e4/0xcb0\n ? __pfx_netlink_sendmsg+0x10/0x10\n ? aa_sock_msg_perm+0x91/0x160\n ? __pfx_netlink_sendmsg+0x10/0x10\n __sock_sendmsg+0x223/0x270\n ____sys_sendmsg+0x52a/0x7e0\n ? __pfx_____sys_sendmsg+0x10/0x10\n __sys_sendmsg+0x292/0x380\n ? __pfx___sys_sendmsg+0x10/0x10\n ? lockdep_hardirqs_on_prepare+0x43d/0x780\n ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10\n ? exc_page_fault+0x590/0x8c0\n ? do_syscall_64+0xb6/0x230\n do_syscall_64+0xf3/0x230\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n \u003c/TASK\u003e\n\nSince an invalid (without \u0027\\0\u0027 byte at all) byte sequence may be passed\nfrom userspace, add an extra check to ensure that such a sequence is\nrejected as possible ID and so never passed to \u0027kstrdup()\u0027 and further.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56650",
"url": "https://www.suse.com/security/cve/CVE-2024-56650"
},
{
"category": "external",
"summary": "SUSE Bug 1235430 for CVE-2024-56650",
"url": "https://bugzilla.suse.com/1235430"
},
{
"category": "external",
"summary": "SUSE Bug 1235431 for CVE-2024-56650",
"url": "https://bugzilla.suse.com/1235431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56650"
},
{
"cve": "CVE-2024-56651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: hi311x: hi3110_can_ist(): fix potential use-after-free\n\nThe commit a22bd630cfff (\"can: hi311x: do not report txerr and rxerr\nduring bus-off\") removed the reporting of rxerr and txerr even in case\nof correct operation (i. e. not bus-off).\n\nThe error count information added to the CAN frame after netif_rx() is\na potential use after free, since there is no guarantee that the skb\nis in the same state. It might be freed or reused.\n\nFix the issue by postponing the netif_rx() call in case of txerr and\nrxerr reporting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56651",
"url": "https://www.suse.com/security/cve/CVE-2024-56651"
},
{
"category": "external",
"summary": "SUSE Bug 1235528 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "external",
"summary": "SUSE Bug 1236570 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1236570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56651"
},
{
"cve": "CVE-2024-56654",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56654"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Fix using rcu_read_(un)lock while iterating\n\nThe usage of rcu_read_(un)lock while inside list_for_each_entry_rcu is\nnot safe since for the most part entries fetched this way shall be\ntreated as rcu_dereference:\n\n\tNote that the value returned by rcu_dereference() is valid\n\tonly within the enclosing RCU read-side critical section [1]_.\n\tFor example, the following is **not** legal::\n\n\t\trcu_read_lock();\n\t\tp = rcu_dereference(head.next);\n\t\trcu_read_unlock();\n\t\tx = p-\u003eaddress;\t/* BUG!!! */\n\t\trcu_read_lock();\n\t\ty = p-\u003edata;\t/* BUG!!! */\n\t\trcu_read_unlock();",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56654",
"url": "https://www.suse.com/security/cve/CVE-2024-56654"
},
{
"category": "external",
"summary": "SUSE Bug 1235532 for CVE-2024-56654",
"url": "https://bugzilla.suse.com/1235532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56654"
},
{
"cve": "CVE-2024-56656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips\n\nThe 5760X (P7) chip\u0027s HW GRO/LRO interface is very similar to that of\nthe previous generation (5750X or P5). However, the aggregation ID\nfields in the completion structures on P7 have been redefined from\n16 bits to 12 bits. The freed up 4 bits are redefined for part of the\nmetadata such as the VLAN ID. The aggregation ID mask was not modified\nwhen adding support for P7 chips. Including the extra 4 bits for the\naggregation ID can potentially cause the driver to store or fetch the\npacket header of GRO/LRO packets in the wrong TPA buffer. It may hit\nthe BUG() condition in __skb_pull() because the SKB contains no valid\npacket header:\n\nkernel BUG at include/linux/skbuff.h:2766!\nOops: invalid opcode: 0000 1 PREEMPT SMP NOPTI\nCPU: 4 UID: 0 PID: 0 Comm: swapper/4 Kdump: loaded Tainted: G OE 6.12.0-rc2+ #7\nTainted: [O]=OOT_MODULE, [E]=UNSIGNED_MODULE\nHardware name: Dell Inc. PowerEdge R760/0VRV9X, BIOS 1.0.1 12/27/2022\nRIP: 0010:eth_type_trans+0xda/0x140\nCode: 80 00 00 00 eb c1 8b 47 70 2b 47 74 48 8b 97 d0 00 00 00 83 f8 01 7e 1b 48 85 d2 74 06 66 83 3a ff 74 09 b8 00 04 00 00 eb a5 \u003c0f\u003e 0b b8 00 01 00 00 eb 9c 48 85 ff 74 eb 31 f6 b9 02 00 00 00 48\nRSP: 0018:ff615003803fcc28 EFLAGS: 00010283\nRAX: 00000000000022d2 RBX: 0000000000000003 RCX: ff2e8c25da334040\nRDX: 0000000000000040 RSI: ff2e8c25c1ce8000 RDI: ff2e8c25869f9000\nRBP: ff2e8c258c31c000 R08: ff2e8c25da334000 R09: 0000000000000001\nR10: ff2e8c25da3342c0 R11: ff2e8c25c1ce89c0 R12: ff2e8c258e0990b0\nR13: ff2e8c25bb120000 R14: ff2e8c25c1ce89c0 R15: ff2e8c25869f9000\nFS: 0000000000000000(0000) GS:ff2e8c34be300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055f05317e4c8 CR3: 000000108bac6006 CR4: 0000000000773ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n ? die+0x33/0x90\n ? do_trap+0xd9/0x100\n ? eth_type_trans+0xda/0x140\n ? do_error_trap+0x65/0x80\n ? eth_type_trans+0xda/0x140\n ? exc_invalid_op+0x4e/0x70\n ? eth_type_trans+0xda/0x140\n ? asm_exc_invalid_op+0x16/0x20\n ? eth_type_trans+0xda/0x140\n bnxt_tpa_end+0x10b/0x6b0 [bnxt_en]\n ? bnxt_tpa_start+0x195/0x320 [bnxt_en]\n bnxt_rx_pkt+0x902/0xd90 [bnxt_en]\n ? __bnxt_tx_int.constprop.0+0x89/0x300 [bnxt_en]\n ? kmem_cache_free+0x343/0x440\n ? __bnxt_tx_int.constprop.0+0x24f/0x300 [bnxt_en]\n __bnxt_poll_work+0x193/0x370 [bnxt_en]\n bnxt_poll_p5+0x9a/0x300 [bnxt_en]\n ? try_to_wake_up+0x209/0x670\n __napi_poll+0x29/0x1b0\n\nFix it by redefining the aggregation ID mask for P5_PLUS chips to be\n12 bits. This will work because the maximum aggregation ID is less\nthan 4096 on all P5_PLUS chips.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56656",
"url": "https://www.suse.com/security/cve/CVE-2024-56656"
},
{
"category": "external",
"summary": "SUSE Bug 1235444 for CVE-2024-56656",
"url": "https://bugzilla.suse.com/1235444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56656"
},
{
"cve": "CVE-2024-56659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56659"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: lapb: increase LAPB_HEADER_LEN\n\nIt is unclear if net/lapb code is supposed to be ready for 8021q.\n\nWe can at least avoid crashes like the following :\n\nskbuff: skb_under_panic: text:ffffffff8aabe1f6 len:24 put:20 head:ffff88802824a400 data:ffff88802824a3fe tail:0x16 end:0x140 dev:nr0.2\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 5508 Comm: dhcpcd Not tainted 6.12.0-rc7-syzkaller-00144-g66418447d27b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 2e 9e 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 1a 6f 37 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc90002ddf638 EFLAGS: 00010282\nRAX: 0000000000000086 RBX: dffffc0000000000 RCX: 7a24750e538ff600\nRDX: 0000000000000000 RSI: 0000000000000201 RDI: 0000000000000000\nRBP: ffff888034a86650 R08: ffffffff8174b13c R09: 1ffff920005bbe60\nR10: dffffc0000000000 R11: fffff520005bbe61 R12: 0000000000000140\nR13: ffff88802824a400 R14: ffff88802824a3fe R15: 0000000000000016\nFS: 00007f2a5990d740(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c2631fd CR3: 0000000029504000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n nr_header+0x36/0x320 net/netrom/nr_dev.c:69\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n vlan_dev_hard_header+0x359/0x480 net/8021q/vlan_dev.c:83\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n lapbeth_data_transmit+0x1f6/0x2a0 drivers/net/wan/lapbether.c:257\n lapb_data_transmit+0x91/0xb0 net/lapb/lapb_iface.c:447\n lapb_transmit_buffer+0x168/0x1f0 net/lapb/lapb_out.c:149\n lapb_establish_data_link+0x84/0xd0\n lapb_device_event+0x4e0/0x670\n notifier_call_chain+0x19f/0x3e0 kernel/notifier.c:93\n __dev_notify_flags+0x207/0x400\n dev_change_flags+0xf0/0x1a0 net/core/dev.c:8922\n devinet_ioctl+0xa4e/0x1aa0 net/ipv4/devinet.c:1188\n inet_ioctl+0x3d7/0x4f0 net/ipv4/af_inet.c:1003\n sock_do_ioctl+0x158/0x460 net/socket.c:1227\n sock_ioctl+0x626/0x8e0 net/socket.c:1346\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xf9/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56659",
"url": "https://www.suse.com/security/cve/CVE-2024-56659"
},
{
"category": "external",
"summary": "SUSE Bug 1235439 for CVE-2024-56659",
"url": "https://bugzilla.suse.com/1235439"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56659"
},
{
"cve": "CVE-2024-56660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56660"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: DR, prevent potential error pointer dereference\n\nThe dr_domain_add_vport_cap() function generally returns NULL on error\nbut sometimes we want it to return ERR_PTR(-EBUSY) so the caller can\nretry. The problem here is that \"ret\" can be either -EBUSY or -ENOMEM\nand if it\u0027s and -ENOMEM then the error pointer is propogated back and\neventually dereferenced in dr_ste_v0_build_src_gvmi_qpn_tag().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56660",
"url": "https://www.suse.com/security/cve/CVE-2024-56660"
},
{
"category": "external",
"summary": "SUSE Bug 1235437 for CVE-2024-56660",
"url": "https://bugzilla.suse.com/1235437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56660"
},
{
"cve": "CVE-2024-56661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56661"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix NULL deref in cleanup_bearer()\n\nsyzbot found [1] that after blamed commit, ub-\u003eubsock-\u003esk\nwas NULL when attempting the atomic_dec() :\n\natomic_dec(\u0026tipc_net(sock_net(ub-\u003eubsock-\u003esk))-\u003ewq_count);\n\nFix this by caching the tipc_net pointer.\n\n[1]\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]\nCPU: 0 UID: 0 PID: 5896 Comm: kworker/0:3 Not tainted 6.13.0-rc1-next-20241203-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events cleanup_bearer\n RIP: 0010:read_pnet include/net/net_namespace.h:387 [inline]\n RIP: 0010:sock_net include/net/sock.h:655 [inline]\n RIP: 0010:cleanup_bearer+0x1f7/0x280 net/tipc/udp_media.c:820\nCode: 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 3c f7 99 f6 48 8b 1b 48 83 c3 30 e8 f0 e4 60 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 28 00 74 08 48 89 df e8 1a f7 99 f6 49 83 c7 e8 48 8b 1b\nRSP: 0018:ffffc9000410fb70 EFLAGS: 00010206\nRAX: 0000000000000006 RBX: 0000000000000030 RCX: ffff88802fe45a00\nRDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc9000410f900\nRBP: ffff88807e1f0908 R08: ffffc9000410f907 R09: 1ffff92000821f20\nR10: dffffc0000000000 R11: fffff52000821f21 R12: ffff888031d19980\nR13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88807e1f0918\nFS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000556ca050b000 CR3: 0000000031c0c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56661",
"url": "https://www.suse.com/security/cve/CVE-2024-56661"
},
{
"category": "external",
"summary": "SUSE Bug 1234931 for CVE-2024-56661",
"url": "https://bugzilla.suse.com/1234931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56661"
},
{
"cve": "CVE-2024-56662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nacpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl\n\nFix an issue detected by syzbot with KASAN:\n\nBUG: KASAN: vmalloc-out-of-bounds in cmd_to_func drivers/acpi/nfit/\ncore.c:416 [inline]\nBUG: KASAN: vmalloc-out-of-bounds in acpi_nfit_ctl+0x20e8/0x24a0\ndrivers/acpi/nfit/core.c:459\n\nThe issue occurs in cmd_to_func when the call_pkg-\u003end_reserved2\narray is accessed without verifying that call_pkg points to a buffer\nthat is appropriately sized as a struct nd_cmd_pkg. This can lead\nto out-of-bounds access and undefined behavior if the buffer does not\nhave sufficient space.\n\nTo address this, a check was added in acpi_nfit_ctl() to ensure that\nbuf is not NULL and that buf_len is less than sizeof(*call_pkg)\nbefore accessing it. This ensures safe access to the members of\ncall_pkg, including the nd_reserved2 array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56662",
"url": "https://www.suse.com/security/cve/CVE-2024-56662"
},
{
"category": "external",
"summary": "SUSE Bug 1235533 for CVE-2024-56662",
"url": "https://bugzilla.suse.com/1235533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56662"
},
{
"cve": "CVE-2024-56663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one\n\nSince the netlink attribute range validation provides inclusive\nchecking, the *max* of attribute NL80211_ATTR_MLO_LINK_ID should be\nIEEE80211_MLD_MAX_NUM_LINKS - 1 otherwise causing an off-by-one.\n\nOne crash stack for demonstration:\n==================================================================\nBUG: KASAN: wild-memory-access in ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\nRead of size 6 at addr 001102080000000c by task fuzzer.386/9508\n\nCPU: 1 PID: 9508 Comm: syz.1.386 Not tainted 6.1.70 #2\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x177/0x231 lib/dump_stack.c:106\n print_report+0xe0/0x750 mm/kasan/report.c:398\n kasan_report+0x139/0x170 mm/kasan/report.c:495\n kasan_check_range+0x287/0x290 mm/kasan/generic.c:189\n memcpy+0x25/0x60 mm/kasan/shadow.c:65\n ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\n rdev_tx_control_port net/wireless/rdev-ops.h:761 [inline]\n nl80211_tx_control_port+0x7b3/0xc40 net/wireless/nl80211.c:15453\n genl_family_rcv_msg_doit+0x22e/0x320 net/netlink/genetlink.c:756\n genl_family_rcv_msg net/netlink/genetlink.c:833 [inline]\n genl_rcv_msg+0x539/0x740 net/netlink/genetlink.c:850\n netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2508\n genl_rcv+0x24/0x40 net/netlink/genetlink.c:861\n netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]\n netlink_unicast+0x74b/0x8c0 net/netlink/af_netlink.c:1352\n netlink_sendmsg+0x882/0xb90 net/netlink/af_netlink.c:1874\n sock_sendmsg_nosec net/socket.c:716 [inline]\n __sock_sendmsg net/socket.c:728 [inline]\n ____sys_sendmsg+0x5cc/0x8f0 net/socket.c:2499\n ___sys_sendmsg+0x21c/0x290 net/socket.c:2553\n __sys_sendmsg net/socket.c:2582 [inline]\n __do_sys_sendmsg net/socket.c:2591 [inline]\n __se_sys_sendmsg+0x19e/0x270 net/socket.c:2589\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x45/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUpdate the policy to ensure correct validation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56663",
"url": "https://www.suse.com/security/cve/CVE-2024-56663"
},
{
"category": "external",
"summary": "SUSE Bug 1235454 for CVE-2024-56663",
"url": "https://bugzilla.suse.com/1235454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56663"
},
{
"cve": "CVE-2024-56664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Fix race between element replace and close()\n\nElement replace (with a socket different from the one stored) may race\nwith socket\u0027s close() link popping \u0026 unlinking. __sock_map_delete()\nunconditionally unrefs the (wrong) element:\n\n// set map[0] = s0\nmap_update_elem(map, 0, s0)\n\n// drop fd of s0\nclose(s0)\n sock_map_close()\n lock_sock(sk) (s0!)\n sock_map_remove_links(sk)\n link = sk_psock_link_pop()\n sock_map_unlink(sk, link)\n sock_map_delete_from_link\n // replace map[0] with s1\n map_update_elem(map, 0, s1)\n sock_map_update_elem\n (s1!) lock_sock(sk)\n sock_map_update_common\n psock = sk_psock(sk)\n spin_lock(\u0026stab-\u003elock)\n osk = stab-\u003esks[idx]\n sock_map_add_link(..., \u0026stab-\u003esks[idx])\n sock_map_unref(osk, \u0026stab-\u003esks[idx])\n psock = sk_psock(osk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test(\u0026psock))\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n unlock_sock(sk)\n __sock_map_delete\n spin_lock(\u0026stab-\u003elock)\n sk = *psk // s1 replaced s0; sk == s1\n if (!sk_test || sk_test == sk) // sk_test (s0) != sk (s1); no branch\n sk = xchg(psk, NULL)\n if (sk)\n sock_map_unref(sk, psk) // unref s1; sks[idx] will dangle\n psock = sk_psock(sk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test())\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n release_sock(sk)\n\nThen close(map) enqueues bpf_map_free_deferred, which finally calls\nsock_map_free(). This results in some refcount_t warnings along with\na KASAN splat [1].\n\nFix __sock_map_delete(), do not allow sock_map_unref() on elements that\nmay have been replaced.\n\n[1]:\nBUG: KASAN: slab-use-after-free in sock_map_free+0x10e/0x330\nWrite of size 4 at addr ffff88811f5b9100 by task kworker/u64:12/1063\n\nCPU: 14 UID: 0 PID: 1063 Comm: kworker/u64:12 Not tainted 6.12.0+ #125\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Arch Linux 1.16.3-1-1 04/01/2014\nWorkqueue: events_unbound bpf_map_free_deferred\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x68/0x90\n print_report+0x174/0x4f6\n kasan_report+0xb9/0x190\n kasan_check_range+0x10f/0x1e0\n sock_map_free+0x10e/0x330\n bpf_map_free_deferred+0x173/0x320\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 1202:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x85/0x90\n kmem_cache_alloc_noprof+0x131/0x450\n sk_prot_alloc+0x5b/0x220\n sk_alloc+0x2c/0x870\n unix_create1+0x88/0x8a0\n unix_create+0xc5/0x180\n __sock_create+0x241/0x650\n __sys_socketpair+0x1ce/0x420\n __x64_sys_socketpair+0x92/0x100\n do_syscall_64+0x93/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 46:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x60\n __kasan_slab_free+0x4b/0x70\n kmem_cache_free+0x1a1/0x590\n __sk_destruct+0x388/0x5a0\n sk_psock_destroy+0x73e/0xa50\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n\nThe bu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56664",
"url": "https://www.suse.com/security/cve/CVE-2024-56664"
},
{
"category": "external",
"summary": "SUSE Bug 1235249 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "external",
"summary": "SUSE Bug 1235250 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56664"
},
{
"cve": "CVE-2024-56665",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56665"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog\n\nSyzbot reported [1] crash that happens for following tracing scenario:\n\n - create tracepoint perf event with attr.inherit=1, attach it to the\n process and set bpf program to it\n - attached process forks -\u003e chid creates inherited event\n\n the new child event shares the parent\u0027s bpf program and tp_event\n (hence prog_array) which is global for tracepoint\n\n - exit both process and its child -\u003e release both events\n - first perf_event_detach_bpf_prog call will release tp_event-\u003eprog_array\n and second perf_event_detach_bpf_prog will crash, because\n tp_event-\u003eprog_array is NULL\n\nThe fix makes sure the perf_event_detach_bpf_prog checks prog_array\nis valid before it tries to remove the bpf program from it.\n\n[1] https://lore.kernel.org/bpf/Z1MR6dCIKajNS6nU@krava/T/#m91dbf0688221ec7a7fc95e896a7ef9ff93b0b8ad",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56665",
"url": "https://www.suse.com/security/cve/CVE-2024-56665"
},
{
"category": "external",
"summary": "SUSE Bug 1235489 for CVE-2024-56665",
"url": "https://bugzilla.suse.com/1235489"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56665"
},
{
"cve": "CVE-2024-56667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Fix NULL pointer dereference in capture_engine\n\nWhen the intel_context structure contains NULL,\nit raises a NULL pointer dereference error in drm_info().\n\n(cherry picked from commit 754302a5bc1bd8fd3b7d85c168b0a1af6d4bba4d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56667",
"url": "https://www.suse.com/security/cve/CVE-2024-56667"
},
{
"category": "external",
"summary": "SUSE Bug 1235016 for CVE-2024-56667",
"url": "https://bugzilla.suse.com/1235016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56667"
},
{
"cve": "CVE-2024-56670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56670"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer\n\nConsidering that in some extreme cases,\nwhen u_serial driver is accessed by multiple threads,\nThread A is executing the open operation and calling the gs_open,\nThread B is executing the disconnect operation and calling the\ngserial_disconnect function,The port-\u003eport_usb pointer will be set to NULL.\n\nE.g.\n Thread A Thread B\n gs_open() gadget_unbind_driver()\n gs_start_io() composite_disconnect()\n gs_start_rx() gserial_disconnect()\n ... ...\n spin_unlock(\u0026port-\u003eport_lock)\n status = usb_ep_queue() spin_lock(\u0026port-\u003eport_lock)\n spin_lock(\u0026port-\u003eport_lock) port-\u003eport_usb = NULL\n gs_free_requests(port-\u003eport_usb-\u003ein) spin_unlock(\u0026port-\u003eport_lock)\n Crash\n\nThis causes thread A to access a null pointer (port-\u003eport_usb is null)\nwhen calling the gs_free_requests function, causing a crash.\n\nIf port_usb is NULL, the release request will be skipped as it\nwill be done by gserial_disconnect.\n\nSo add a null pointer check to gs_start_io before attempting\nto access the value of the pointer port-\u003eport_usb.\n\nCall trace:\n gs_start_io+0x164/0x25c\n gs_open+0x108/0x13c\n tty_open+0x314/0x638\n chrdev_open+0x1b8/0x258\n do_dentry_open+0x2c4/0x700\n vfs_open+0x2c/0x3c\n path_openat+0xa64/0xc60\n do_filp_open+0xb8/0x164\n do_sys_openat2+0x84/0xf0\n __arm64_sys_openat+0x70/0x9c\n invoke_syscall+0x58/0x114\n el0_svc_common+0x80/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x38/0x68",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56670",
"url": "https://www.suse.com/security/cve/CVE-2024-56670"
},
{
"category": "external",
"summary": "SUSE Bug 1235488 for CVE-2024-56670",
"url": "https://bugzilla.suse.com/1235488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56670"
},
{
"cve": "CVE-2024-56672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: Fix UAF in blkcg_unpin_online()\n\nblkcg_unpin_online() walks up the blkcg hierarchy putting the online pin. To\nwalk up, it uses blkcg_parent(blkcg) but it was calling that after\nblkcg_destroy_blkgs(blkcg) which could free the blkcg, leading to the\nfollowing UAF:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in blkcg_unpin_online+0x15a/0x270\n Read of size 8 at addr ffff8881057678c0 by task kworker/9:1/117\n\n CPU: 9 UID: 0 PID: 117 Comm: kworker/9:1 Not tainted 6.13.0-rc1-work-00182-gb8f52214c61a-dirty #48\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS unknown 02/02/2022\n Workqueue: cgwb_release cgwb_release_workfn\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x27/0x80\n print_report+0x151/0x710\n kasan_report+0xc0/0x100\n blkcg_unpin_online+0x15a/0x270\n cgwb_release_workfn+0x194/0x480\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n ...\n Freed by task 1944:\n kasan_save_track+0x2b/0x70\n kasan_save_free_info+0x3c/0x50\n __kasan_slab_free+0x33/0x50\n kfree+0x10c/0x330\n css_free_rwork_fn+0xe6/0xb30\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n\nNote that the UAF is not easy to trigger as the free path is indirected\nbehind a couple RCU grace periods and a work item execution. I could only\ntrigger it with artifical msleep() injected in blkcg_unpin_online().\n\nFix it by reading the parent pointer before destroying the blkcg\u0027s blkg\u0027s.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56672",
"url": "https://www.suse.com/security/cve/CVE-2024-56672"
},
{
"category": "external",
"summary": "SUSE Bug 1235534 for CVE-2024-56672",
"url": "https://bugzilla.suse.com/1235534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56672"
},
{
"cve": "CVE-2024-56675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors\n\nUprobes always use bpf_prog_run_array_uprobe() under tasks-trace-RCU\nprotection. But it is possible to attach a non-sleepable BPF program to a\nuprobe, and non-sleepable BPF programs are freed via normal RCU (see\n__bpf_prog_put_noref()). This leads to UAF of the bpf_prog because a normal\nRCU grace period does not imply a tasks-trace-RCU grace period.\n\nFix it by explicitly waiting for a tasks-trace-RCU grace period after\nremoving the attachment of a bpf_prog to a perf_event.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56675",
"url": "https://www.suse.com/security/cve/CVE-2024-56675"
},
{
"category": "external",
"summary": "SUSE Bug 1235555 for CVE-2024-56675",
"url": "https://bugzilla.suse.com/1235555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56675"
},
{
"cve": "CVE-2024-56677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init()\n\nDuring early init CMA_MIN_ALIGNMENT_BYTES can be PAGE_SIZE,\nsince pageblock_order is still zero and it gets initialized\nlater during initmem_init() e.g.\nsetup_arch() -\u003e initmem_init() -\u003e sparse_init() -\u003e set_pageblock_order()\n\nOne such use case where this causes issue is -\nearly_setup() -\u003e early_init_devtree() -\u003e fadump_reserve_mem() -\u003e fadump_cma_init()\n\nThis causes CMA memory alignment check to be bypassed in\ncma_init_reserved_mem(). Then later cma_activate_area() can hit\na VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1)) if the reserved memory\narea was not pageblock_order aligned.\n\nFix it by moving the fadump_cma_init() after initmem_init(),\nwhere other such cma reservations also gets called.\n\n\u003cstack trace\u003e\n==============\npage: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10010\nflags: 0x13ffff800000000(node=1|zone=0|lastcpupid=0x7ffff) CMA\nraw: 013ffff800000000 5deadbeef0000100 5deadbeef0000122 0000000000000000\nraw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\npage dumped because: VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1))\n------------[ cut here ]------------\nkernel BUG at mm/page_alloc.c:778!\n\nCall Trace:\n__free_one_page+0x57c/0x7b0 (unreliable)\nfree_pcppages_bulk+0x1a8/0x2c8\nfree_unref_page_commit+0x3d4/0x4e4\nfree_unref_page+0x458/0x6d0\ninit_cma_reserved_pageblock+0x114/0x198\ncma_init_reserved_areas+0x270/0x3e0\ndo_one_initcall+0x80/0x2f8\nkernel_init_freeable+0x33c/0x530\nkernel_init+0x34/0x26c\nret_from_kernel_user_thread+0x14/0x1c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56677",
"url": "https://www.suse.com/security/cve/CVE-2024-56677"
},
{
"category": "external",
"summary": "SUSE Bug 1235494 for CVE-2024-56677",
"url": "https://bugzilla.suse.com/1235494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56677"
},
{
"cve": "CVE-2024-56678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/mm/fault: Fix kfence page fault reporting\n\ncopy_from_kernel_nofault() can be called when doing read of /proc/kcore.\n/proc/kcore can have some unmapped kfence objects which when read via\ncopy_from_kernel_nofault() can cause page faults. Since *_nofault()\nfunctions define their own fixup table for handling fault, use that\ninstead of asking kfence to handle such faults.\n\nHence we search the exception tables for the nip which generated the\nfault. If there is an entry then we let the fixup table handler handle the\npage fault by returning an error from within ___do_page_fault().\n\nThis can be easily triggered if someone tries to do dd from /proc/kcore.\neg. dd if=/proc/kcore of=/dev/null bs=1M\n\nSome example false negatives:\n\n ===============================\n BUG: KFENCE: invalid read in copy_from_kernel_nofault+0x9c/0x1a0\n Invalid read at 0xc0000000fdff0000:\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec\n\n BUG: KFENCE: use-after-free read in copy_from_kernel_nofault+0x9c/0x1a0\n Use-after-free read at 0xc0000000fe050000 (in kfence-#2):\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56678",
"url": "https://www.suse.com/security/cve/CVE-2024-56678"
},
{
"category": "external",
"summary": "SUSE Bug 1235495 for CVE-2024-56678",
"url": "https://bugzilla.suse.com/1235495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56678"
},
{
"cve": "CVE-2024-56679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56679",
"url": "https://www.suse.com/security/cve/CVE-2024-56679"
},
{
"category": "external",
"summary": "SUSE Bug 1235498 for CVE-2024-56679",
"url": "https://bugzilla.suse.com/1235498"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56679"
},
{
"cve": "CVE-2024-56681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: bcm - add error check in the ahash_hmac_init function\n\nThe ahash_init functions may return fails. The ahash_hmac_init should\nnot return ok when ahash_init returns error. For an example, ahash_init\nwill return -ENOMEM when allocation memory is error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56681",
"url": "https://www.suse.com/security/cve/CVE-2024-56681"
},
{
"category": "external",
"summary": "SUSE Bug 1235557 for CVE-2024-56681",
"url": "https://bugzilla.suse.com/1235557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56681"
},
{
"cve": "CVE-2024-56683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56683"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: hdmi: Avoid hang with debug registers when suspended\n\nTrying to read /sys/kernel/debug/dri/1/hdmi1_regs\nwhen the hdmi is disconnected results in a fatal system hang.\n\nThis is due to the pm suspend code disabling the dvp clock.\nThat is just a gate of the 108MHz clock in DVP_HT_RPI_MISC_CONFIG,\nwhich results in accesses hanging AXI bus.\n\nProtect against this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56683",
"url": "https://www.suse.com/security/cve/CVE-2024-56683"
},
{
"category": "external",
"summary": "SUSE Bug 1235497 for CVE-2024-56683",
"url": "https://bugzilla.suse.com/1235497"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56683"
},
{
"cve": "CVE-2024-56687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: musb: Fix hardware lockup on first Rx endpoint request\n\nThere is a possibility that a request\u0027s callback could be invoked from\nusb_ep_queue() (call trace below, supplemented with missing calls):\n\nreq-\u003ecomplete from usb_gadget_giveback_request\n\t(drivers/usb/gadget/udc/core.c:999)\nusb_gadget_giveback_request from musb_g_giveback\n\t(drivers/usb/musb/musb_gadget.c:147)\nmusb_g_giveback from rxstate\n\t(drivers/usb/musb/musb_gadget.c:784)\nrxstate from musb_ep_restart\n\t(drivers/usb/musb/musb_gadget.c:1169)\nmusb_ep_restart from musb_ep_restart_resume_work\n\t(drivers/usb/musb/musb_gadget.c:1176)\nmusb_ep_restart_resume_work from musb_queue_resume_work\n\t(drivers/usb/musb/musb_core.c:2279)\nmusb_queue_resume_work from musb_gadget_queue\n\t(drivers/usb/musb/musb_gadget.c:1241)\nmusb_gadget_queue from usb_ep_queue\n\t(drivers/usb/gadget/udc/core.c:300)\n\nAccording to the docstring of usb_ep_queue(), this should not happen:\n\n\"Note that @req\u0027s -\u003ecomplete() callback must never be called from within\nusb_ep_queue() as that can create deadlock situations.\"\n\nIn fact, a hardware lockup might occur in the following sequence:\n\n1. The gadget is initialized using musb_gadget_enable().\n2. Meanwhile, a packet arrives, and the RXPKTRDY flag is set, raising an\n interrupt.\n3. If IRQs are enabled, the interrupt is handled, but musb_g_rx() finds an\n empty queue (next_request() returns NULL). The interrupt flag has\n already been cleared by the glue layer handler, but the RXPKTRDY flag\n remains set.\n4. The first request is enqueued using usb_ep_queue(), leading to the call\n of req-\u003ecomplete(), as shown in the call trace above.\n5. If the callback enables IRQs and another packet is waiting, step (3)\n repeats. The request queue is empty because usb_g_giveback() removes the\n request before invoking the callback.\n6. The endpoint remains locked up, as the interrupt triggered by hardware\n setting the RXPKTRDY flag has been handled, but the flag itself remains\n set.\n\nFor this scenario to occur, it is only necessary for IRQs to be enabled at\nsome point during the complete callback. This happens with the USB Ethernet\ngadget, whose rx_complete() callback calls netif_rx(). If called in the\ntask context, netif_rx() disables the bottom halves (BHs). When the BHs are\nre-enabled, IRQs are also enabled to allow soft IRQs to be processed. The\ngadget itself is initialized at module load (or at boot if built-in), but\nthe first request is enqueued when the network interface is brought up,\ntriggering rx_complete() in the task context via ioctl(). If a packet\narrives while the interface is down, it can prevent the interface from\nreceiving any further packets from the USB host.\n\nThe situation is quite complicated with many parties involved. This\nparticular issue can be resolved in several possible ways:\n\n1. Ensure that callbacks never enable IRQs. This would be difficult to\n enforce, as discovering how netif_rx() interacts with interrupts was\n already quite challenging and u_ether is not the only function driver.\n Similar \"bugs\" could be hidden in other drivers as well.\n2. Disable MUSB interrupts in musb_g_giveback() before calling the callback\n and re-enable them afterwars (by calling musb_{dis,en}able_interrupts(),\n for example). This would ensure that MUSB interrupts are not handled\n during the callback, even if IRQs are enabled. In fact, it would allow\n IRQs to be enabled when releasing the lock. However, this feels like an\n inelegant hack.\n3. Modify the interrupt handler to clear the RXPKTRDY flag if the request\n queue is empty. While this approach also feels like a hack, it wastes\n CPU time by attempting to handle incoming packets when the software is\n not ready to process them.\n4. Flush the Rx FIFO instead of calling rxstate() in musb_ep_restart().\n This ensures that the hardware can receive packets when there is at\n least one request in the queue. Once I\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56687",
"url": "https://www.suse.com/security/cve/CVE-2024-56687"
},
{
"category": "external",
"summary": "SUSE Bug 1235537 for CVE-2024-56687",
"url": "https://bugzilla.suse.com/1235537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56687"
},
{
"cve": "CVE-2024-56688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56688"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport\n\nSince transport-\u003esock has been set to NULL during reset transport,\nXPRT_SOCK_UPD_TIMEOUT also needs to be cleared. Otherwise, the\nxs_tcp_set_socket_timeouts() may be triggered in xs_tcp_send_request()\nto dereference the transport-\u003esock that has been set to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56688",
"url": "https://www.suse.com/security/cve/CVE-2024-56688"
},
{
"category": "external",
"summary": "SUSE Bug 1235538 for CVE-2024-56688",
"url": "https://bugzilla.suse.com/1235538"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56688"
},
{
"cve": "CVE-2024-56690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY\n\nSince commit 8f4f68e788c3 (\"crypto: pcrypt - Fix hungtask for\nPADATA_RESET\"), the pcrypt encryption and decryption operations return\n-EAGAIN when the CPU goes online or offline. In alg_test(), a WARN is\ngenerated when pcrypt_aead_decrypt() or pcrypt_aead_encrypt() returns\n-EAGAIN, the unnecessary panic will occur when panic_on_warn set 1.\nFix this issue by calling crypto layer directly without parallelization\nin that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56690",
"url": "https://www.suse.com/security/cve/CVE-2024-56690"
},
{
"category": "external",
"summary": "SUSE Bug 1235428 for CVE-2024-56690",
"url": "https://bugzilla.suse.com/1235428"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56690"
},
{
"cve": "CVE-2024-56691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56691",
"url": "https://www.suse.com/security/cve/CVE-2024-56691"
},
{
"category": "external",
"summary": "SUSE Bug 1235425 for CVE-2024-56691",
"url": "https://bugzilla.suse.com/1235425"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56691"
},
{
"cve": "CVE-2024-56693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbrd: defer automatic disk creation until module initialization succeeds\n\nMy colleague Wupeng found the following problems during fault injection:\n\nBUG: unable to handle page fault for address: fffffbfff809d073\nPGD 6e648067 P4D 123ec8067 PUD 123ec4067 PMD 100e38067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nCPU: 5 UID: 0 PID: 755 Comm: modprobe Not tainted 6.12.0-rc3+ #17\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:__asan_load8+0x4c/0xa0\n...\nCall Trace:\n \u003cTASK\u003e\n blkdev_put_whole+0x41/0x70\n bdev_release+0x1a3/0x250\n blkdev_release+0x11/0x20\n __fput+0x1d7/0x4a0\n task_work_run+0xfc/0x180\n syscall_exit_to_user_mode+0x1de/0x1f0\n do_syscall_64+0x6b/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nloop_init() is calling loop_add() after __register_blkdev() succeeds and\nis ignoring disk_add() failure from loop_add(), for loop_add() failure\nis not fatal and successfully created disks are already visible to\nbdev_open().\n\nbrd_init() is currently calling brd_alloc() before __register_blkdev()\nsucceeds and is releasing successfully created disks when brd_init()\nreturns an error. This can cause UAF for the latter two case:\n\ncase 1:\n T1:\nmodprobe brd\n brd_init\n brd_alloc(0) // success\n add_disk\n disk_scan_partitions\n bdev_file_open_by_dev // alloc file\n fput // won\u0027t free until back to userspace\n brd_alloc(1) // failed since mem alloc error inject\n // error path for modprobe will release code segment\n // back to userspace\n __fput\n blkdev_release\n bdev_release\n blkdev_put_whole\n bdev-\u003ebd_disk-\u003efops-\u003erelease // fops is freed now, UAF!\n\ncase 2:\n T1: T2:\nmodprobe brd\n brd_init\n brd_alloc(0) // success\n open(/dev/ram0)\n brd_alloc(1) // fail\n // error path for modprobe\n\n close(/dev/ram0)\n ...\n /* UAF! */\n bdev-\u003ebd_disk-\u003efops-\u003erelease\n\nFix this problem by following what loop_init() does. Besides,\nreintroduce brd_devices_mutex to help serialize modifications to\nbrd_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56693",
"url": "https://www.suse.com/security/cve/CVE-2024-56693"
},
{
"category": "external",
"summary": "SUSE Bug 1235418 for CVE-2024-56693",
"url": "https://bugzilla.suse.com/1235418"
},
{
"category": "external",
"summary": "SUSE Bug 1235419 for CVE-2024-56693",
"url": "https://bugzilla.suse.com/1235419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56693"
},
{
"cve": "CVE-2024-56694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix recursive lock when verdict program return SK_PASS\n\nWhen the stream_verdict program returns SK_PASS, it places the received skb\ninto its own receive queue, but a recursive lock eventually occurs, leading\nto an operating system deadlock. This issue has been present since v6.9.\n\n\u0027\u0027\u0027\nsk_psock_strp_data_ready\n write_lock_bh(\u0026sk-\u003esk_callback_lock)\n strp_data_ready\n strp_read_sock\n read_sock -\u003e tcp_read_sock\n strp_recv\n cb.rcv_msg -\u003e sk_psock_strp_read\n # now stream_verdict return SK_PASS without peer sock assign\n __SK_PASS = sk_psock_map_verd(SK_PASS, NULL)\n sk_psock_verdict_apply\n sk_psock_skb_ingress_self\n sk_psock_skb_ingress_enqueue\n sk_psock_data_ready\n read_lock_bh(\u0026sk-\u003esk_callback_lock) \u003c= dead lock\n\n\u0027\u0027\u0027\n\nThis topic has been discussed before, but it has not been fixed.\nPrevious discussion:\nhttps://lore.kernel.org/all/6684a5864ec86_403d20898@john.notmuch",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56694",
"url": "https://www.suse.com/security/cve/CVE-2024-56694"
},
{
"category": "external",
"summary": "SUSE Bug 1235412 for CVE-2024-56694",
"url": "https://bugzilla.suse.com/1235412"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56694"
},
{
"cve": "CVE-2024-56698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56698"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: gadget: Fix looping of queued SG entries\n\nThe dwc3_request-\u003enum_queued_sgs is decremented on completion. If a\npartially completed request is handled, then the\ndwc3_request-\u003enum_queued_sgs no longer reflects the total number of\nnum_queued_sgs (it would be cleared).\n\nCorrectly check the number of request SG entries remained to be prepare\nand queued. Failure to do this may cause null pointer dereference when\naccessing non-existent SG entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56698",
"url": "https://www.suse.com/security/cve/CVE-2024-56698"
},
{
"category": "external",
"summary": "SUSE Bug 1235491 for CVE-2024-56698",
"url": "https://bugzilla.suse.com/1235491"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56698"
},
{
"cve": "CVE-2024-56700",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56700"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: wl128x: Fix atomicity violation in fmc_send_cmd()\n\nAtomicity violation occurs when the fmc_send_cmd() function is executed\nsimultaneously with the modification of the fmdev-\u003eresp_skb value.\nConsider a scenario where, after passing the validity check within the\nfunction, a non-null fmdev-\u003eresp_skb variable is assigned a null value.\nThis results in an invalid fmdev-\u003eresp_skb variable passing the validity\ncheck. As seen in the later part of the function, skb = fmdev-\u003eresp_skb;\nwhen the invalid fmdev-\u003eresp_skb passes the check, a null pointer\ndereference error may occur at line 478, evt_hdr = (void *)skb-\u003edata;\n\nTo address this issue, it is recommended to include the validity check of\nfmdev-\u003eresp_skb within the locked section of the function. This\nmodification ensures that the value of fmdev-\u003eresp_skb does not change\nduring the validation process, thereby maintaining its validity.\n\nThis possible bug is found by an experimental static analysis tool\ndeveloped by our team. This tool analyzes the locking APIs\nto extract function pairs that can be concurrently executed, and then\nanalyzes the instructions in the paired functions to identify possible\nconcurrency bugs including data races and atomicity violations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56700",
"url": "https://www.suse.com/security/cve/CVE-2024-56700"
},
{
"category": "external",
"summary": "SUSE Bug 1235500 for CVE-2024-56700",
"url": "https://bugzilla.suse.com/1235500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56700"
},
{
"cve": "CVE-2024-56701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56701"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: Fix dtl_access_lock to be a rw_semaphore\n\nThe dtl_access_lock needs to be a rw_sempahore, a sleeping lock, because\nthe code calls kmalloc() while holding it, which can sleep:\n\n # echo 1 \u003e /proc/powerpc/vcpudispatch_stats\n BUG: sleeping function called from invalid context at include/linux/sched/mm.h:337\n in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 199, name: sh\n preempt_count: 1, expected: 0\n 3 locks held by sh/199:\n #0: c00000000a0743f8 (sb_writers#3){.+.+}-{0:0}, at: vfs_write+0x324/0x438\n #1: c0000000028c7058 (dtl_enable_mutex){+.+.}-{3:3}, at: vcpudispatch_stats_write+0xd4/0x5f4\n #2: c0000000028c70b8 (dtl_access_lock){+.+.}-{2:2}, at: vcpudispatch_stats_write+0x220/0x5f4\n CPU: 0 PID: 199 Comm: sh Not tainted 6.10.0-rc4 #152\n Hardware name: IBM pSeries (emulated by qemu) POWER9 (raw) 0x4e1202 0xf000005 of:SLOF,HEAD hv:linux,kvm pSeries\n Call Trace:\n dump_stack_lvl+0x130/0x148 (unreliable)\n __might_resched+0x174/0x410\n kmem_cache_alloc_noprof+0x340/0x3d0\n alloc_dtl_buffers+0x124/0x1ac\n vcpudispatch_stats_write+0x2a8/0x5f4\n proc_reg_write+0xf4/0x150\n vfs_write+0xfc/0x438\n ksys_write+0x88/0x148\n system_call_exception+0x1c4/0x5a0\n system_call_common+0xf4/0x258",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56701",
"url": "https://www.suse.com/security/cve/CVE-2024-56701"
},
{
"category": "external",
"summary": "SUSE Bug 1235496 for CVE-2024-56701",
"url": "https://bugzilla.suse.com/1235496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56701"
},
{
"cve": "CVE-2024-56704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56704"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\n9p/xen: fix release of IRQ\n\nKernel logs indicate an IRQ was double-freed.\n\nPass correct device ID during IRQ release.\n\n[Dominique: remove confusing variable reset to 0]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56704",
"url": "https://www.suse.com/security/cve/CVE-2024-56704"
},
{
"category": "external",
"summary": "SUSE Bug 1235584 for CVE-2024-56704",
"url": "https://bugzilla.suse.com/1235584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56704"
},
{
"cve": "CVE-2024-56705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56705"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: atomisp: Add check for rgby_data memory allocation failure\n\nIn ia_css_3a_statistics_allocate(), there is no check on the allocation\nresult of the rgby_data memory. If rgby_data is not successfully\nallocated, it may trigger the assert(host_stats-\u003ergby_data) assertion in\nia_css_s3a_hmem_decode(). Adding a check to fix this potential issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56705",
"url": "https://www.suse.com/security/cve/CVE-2024-56705"
},
{
"category": "external",
"summary": "SUSE Bug 1235568 for CVE-2024-56705",
"url": "https://bugzilla.suse.com/1235568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56705"
},
{
"cve": "CVE-2024-56707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c\n\nAdd error pointer checks after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56707",
"url": "https://www.suse.com/security/cve/CVE-2024-56707"
},
{
"category": "external",
"summary": "SUSE Bug 1235545 for CVE-2024-56707",
"url": "https://bugzilla.suse.com/1235545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56707"
},
{
"cve": "CVE-2024-56708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56708"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/igen6: Avoid segmentation fault on module unload\n\nThe segmentation fault happens because:\n\nDuring modprobe:\n1. In igen6_probe(), igen6_pvt will be allocated with kzalloc()\n2. In igen6_register_mci(), mci-\u003epvt_info will point to\n \u0026igen6_pvt-\u003eimc[mc]\n\nDuring rmmod:\n1. In mci_release() in edac_mc.c, it will kfree(mci-\u003epvt_info)\n2. In igen6_remove(), it will kfree(igen6_pvt);\n\nFix this issue by setting mci-\u003epvt_info to NULL to avoid the double\nkfree.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56708",
"url": "https://www.suse.com/security/cve/CVE-2024-56708"
},
{
"category": "external",
"summary": "SUSE Bug 1235564 for CVE-2024-56708",
"url": "https://bugzilla.suse.com/1235564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56708"
},
{
"cve": "CVE-2024-56709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check if iowq is killed before queuing\n\ntask work can be executed after the task has gone through io_uring\ntermination, whether it\u0027s the final task_work run or the fallback path.\nIn this case, task work will find -\u003eio_wq being already killed and\nnull\u0027ed, which is a problem if it then tries to forward the request to\nio_queue_iowq(). Make io_queue_iowq() fail requests in this case.\n\nNote that it also checks PF_KTHREAD, because the user can first close\na DEFER_TASKRUN ring and shortly after kill the task, in which case\n-\u003eiowq check would race.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56709",
"url": "https://www.suse.com/security/cve/CVE-2024-56709"
},
{
"category": "external",
"summary": "SUSE Bug 1235552 for CVE-2024-56709",
"url": "https://bugzilla.suse.com/1235552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56709"
},
{
"cve": "CVE-2024-56712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56712"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudmabuf: fix memory leak on last export_udmabuf() error path\n\nIn export_udmabuf(), if dma_buf_fd() fails because the FD table is full, a\ndma_buf owning the udmabuf has already been created; but the error handling\nin udmabuf_create() will tear down the udmabuf without doing anything about\nthe containing dma_buf.\n\nThis leaves a dma_buf in memory that contains a dangling pointer; though\nthat doesn\u0027t seem to lead to anything bad except a memory leak.\n\nFix it by moving the dma_buf_fd() call out of export_udmabuf() so that we\ncan give it different error handling.\n\nNote that the shape of this code changed a lot in commit 5e72b2b41a21\n(\"udmabuf: convert udmabuf driver to use folios\"); but the memory leak\nseems to have existed since the introduction of udmabuf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56712",
"url": "https://www.suse.com/security/cve/CVE-2024-56712"
},
{
"category": "external",
"summary": "SUSE Bug 1235565 for CVE-2024-56712",
"url": "https://bugzilla.suse.com/1235565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56712"
},
{
"cve": "CVE-2024-56715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nionic: Fix netdev notifier unregister on failure\n\nIf register_netdev() fails, then the driver leaks the netdev notifier.\nFix this by calling ionic_lif_unregister() on register_netdev()\nfailure. This will also call ionic_lif_unregister_phc() if it has\nalready been registered.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56715",
"url": "https://www.suse.com/security/cve/CVE-2024-56715"
},
{
"category": "external",
"summary": "SUSE Bug 1235612 for CVE-2024-56715",
"url": "https://bugzilla.suse.com/1235612"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56715"
},
{
"cve": "CVE-2024-56716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: prevent bad user input in nsim_dev_health_break_write()\n\nIf either a zero count or a large one is provided, kernel can crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56716",
"url": "https://www.suse.com/security/cve/CVE-2024-56716"
},
{
"category": "external",
"summary": "SUSE Bug 1235587 for CVE-2024-56716",
"url": "https://bugzilla.suse.com/1235587"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56716"
},
{
"cve": "CVE-2024-56722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix cpu stuck caused by printings during reset\n\nDuring reset, cmd to destroy resources such as qp, cq, and mr may fail,\nand error logs will be printed. When a large number of resources are\ndestroyed, there will be lots of printings, and it may lead to a cpu\nstuck.\n\nDelete some unnecessary printings and replace other printing functions\nin these paths with the ratelimited version.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56722",
"url": "https://www.suse.com/security/cve/CVE-2024-56722"
},
{
"category": "external",
"summary": "SUSE Bug 1235570 for CVE-2024-56722",
"url": "https://bugzilla.suse.com/1235570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56722"
},
{
"cve": "CVE-2024-56723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56723",
"url": "https://www.suse.com/security/cve/CVE-2024-56723"
},
{
"category": "external",
"summary": "SUSE Bug 1235571 for CVE-2024-56723",
"url": "https://bugzilla.suse.com/1235571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56723"
},
{
"cve": "CVE-2024-56724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56724",
"url": "https://www.suse.com/security/cve/CVE-2024-56724"
},
{
"category": "external",
"summary": "SUSE Bug 1235577 for CVE-2024-56724",
"url": "https://bugzilla.suse.com/1235577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56724"
},
{
"cve": "CVE-2024-56725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56725",
"url": "https://www.suse.com/security/cve/CVE-2024-56725"
},
{
"category": "external",
"summary": "SUSE Bug 1235578 for CVE-2024-56725",
"url": "https://bugzilla.suse.com/1235578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56725"
},
{
"cve": "CVE-2024-56726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56726",
"url": "https://www.suse.com/security/cve/CVE-2024-56726"
},
{
"category": "external",
"summary": "SUSE Bug 1235582 for CVE-2024-56726",
"url": "https://bugzilla.suse.com/1235582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56726"
},
{
"cve": "CVE-2024-56727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c\n\nAdding error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56727",
"url": "https://www.suse.com/security/cve/CVE-2024-56727"
},
{
"category": "external",
"summary": "SUSE Bug 1235583 for CVE-2024-56727",
"url": "https://bugzilla.suse.com/1235583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56727"
},
{
"cve": "CVE-2024-56728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56728",
"url": "https://www.suse.com/security/cve/CVE-2024-56728"
},
{
"category": "external",
"summary": "SUSE Bug 1235656 for CVE-2024-56728",
"url": "https://bugzilla.suse.com/1235656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56728"
},
{
"cve": "CVE-2024-56729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: Initialize cfid-\u003etcon before performing network ops\n\nAvoid leaking a tcon ref when a lease break races with opening the\ncached directory. Processing the leak break might take a reference to\nthe tcon in cached_dir_lease_break() and then fail to release the ref in\ncached_dir_offload_close, since cfid-\u003etcon is still NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56729",
"url": "https://www.suse.com/security/cve/CVE-2024-56729"
},
{
"category": "external",
"summary": "SUSE Bug 1235503 for CVE-2024-56729",
"url": "https://bugzilla.suse.com/1235503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56729"
},
{
"cve": "CVE-2024-56739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtc: check if __rtc_read_time was successful in rtc_timer_do_work()\n\nIf the __rtc_read_time call fails,, the struct rtc_time tm; may contain\nuninitialized data, or an illegal date/time read from the RTC hardware.\n\nWhen calling rtc_tm_to_ktime later, the result may be a very large value\n(possibly KTIME_MAX). If there are periodic timers in rtc-\u003etimerqueue,\nthey will continually expire, may causing kernel softlockup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56739",
"url": "https://www.suse.com/security/cve/CVE-2024-56739"
},
{
"category": "external",
"summary": "SUSE Bug 1235611 for CVE-2024-56739",
"url": "https://bugzilla.suse.com/1235611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56739"
},
{
"cve": "CVE-2024-56741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56741"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56741",
"url": "https://www.suse.com/security/cve/CVE-2024-56741"
},
{
"category": "external",
"summary": "SUSE Bug 1235502 for CVE-2024-56741",
"url": "https://bugzilla.suse.com/1235502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56741"
},
{
"cve": "CVE-2024-56745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix reset_method_store() memory leak\n\nIn reset_method_store(), a string is allocated via kstrndup() and assigned\nto the local \"options\". options is then used in with strsep() to find\nspaces:\n\n while ((name = strsep(\u0026options, \" \")) != NULL) {\n\nIf there are no remaining spaces, then options is set to NULL by strsep(),\nso the subsequent kfree(options) doesn\u0027t free the memory allocated via\nkstrndup().\n\nFix by using a separate tmp_options to iterate with strsep() so options is\npreserved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56745",
"url": "https://www.suse.com/security/cve/CVE-2024-56745"
},
{
"category": "external",
"summary": "SUSE Bug 1235563 for CVE-2024-56745",
"url": "https://bugzilla.suse.com/1235563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56745"
},
{
"cve": "CVE-2024-56746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()\n\nWhen information such as info-\u003escreen_base is not ready, calling\nsh7760fb_free_mem() does not release memory correctly. Call\ndma_free_coherent() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56746",
"url": "https://www.suse.com/security/cve/CVE-2024-56746"
},
{
"category": "external",
"summary": "SUSE Bug 1235622 for CVE-2024-56746",
"url": "https://bugzilla.suse.com/1235622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56746"
},
{
"cve": "CVE-2024-56747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()\n\nHook \"qedi_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56747",
"url": "https://www.suse.com/security/cve/CVE-2024-56747"
},
{
"category": "external",
"summary": "SUSE Bug 1234934 for CVE-2024-56747",
"url": "https://bugzilla.suse.com/1234934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56747"
},
{
"cve": "CVE-2024-56748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56748"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()\n\nHook \"qed_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56748",
"url": "https://www.suse.com/security/cve/CVE-2024-56748"
},
{
"category": "external",
"summary": "SUSE Bug 1235627 for CVE-2024-56748",
"url": "https://bugzilla.suse.com/1235627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56748"
},
{
"cve": "CVE-2024-56752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()\n\nWhen the call to gf100_grctx_generate() fails, unlock gr-\u003efecs.mutex\nbefore returning the error.\n\nFixes smatch warning:\n\ndrivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480 gf100_gr_chan_new() warn: inconsistent returns \u0027\u0026gr-\u003efecs.mutex\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56752",
"url": "https://www.suse.com/security/cve/CVE-2024-56752"
},
{
"category": "external",
"summary": "SUSE Bug 1234937 for CVE-2024-56752",
"url": "https://bugzilla.suse.com/1234937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56752"
},
{
"cve": "CVE-2024-56754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: caam - Fix the pointer passed to caam_qi_shutdown()\n\nThe type of the last parameter given to devm_add_action_or_reset() is\n\"struct caam_drv_private *\", but in caam_qi_shutdown(), it is casted to\n\"struct device *\".\n\nPass the correct parameter to devm_add_action_or_reset() so that the\nresources are released as expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56754",
"url": "https://www.suse.com/security/cve/CVE-2024-56754"
},
{
"category": "external",
"summary": "SUSE Bug 1234918 for CVE-2024-56754",
"url": "https://bugzilla.suse.com/1234918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56754"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-56756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix freeing of the HMB descriptor table\n\nThe HMB descriptor table is sized to the maximum number of descriptors\nthat could be used for a given device, but __nvme_alloc_host_mem could\nbreak out of the loop earlier on memory allocation failure and end up\nusing less descriptors than planned for, which leads to an incorrect\nsize passed to dma_free_coherent.\n\nIn practice this was not showing up because the number of descriptors\ntends to be low and the dma coherent allocator always allocates and\nfrees at least a page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56756",
"url": "https://www.suse.com/security/cve/CVE-2024-56756"
},
{
"category": "external",
"summary": "SUSE Bug 1234922 for CVE-2024-56756",
"url": "https://bugzilla.suse.com/1234922"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56756"
},
{
"cve": "CVE-2024-56759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free when COWing tree bock and tracing is enabled\n\nWhen a COWing a tree block, at btrfs_cow_block(), and we have the\ntracepoint trace_btrfs_cow_block() enabled and preemption is also enabled\n(CONFIG_PREEMPT=y), we can trigger a use-after-free in the COWed extent\nbuffer while inside the tracepoint code. This is because in some paths\nthat call btrfs_cow_block(), such as btrfs_search_slot(), we are holding\nthe last reference on the extent buffer @buf so btrfs_force_cow_block()\ndrops the last reference on the @buf extent buffer when it calls\nfree_extent_buffer_stale(buf), which schedules the release of the extent\nbuffer with RCU. This means that if we are on a kernel with preemption,\nthe current task may be preempted before calling trace_btrfs_cow_block()\nand the extent buffer already released by the time trace_btrfs_cow_block()\nis called, resulting in a use-after-free.\n\nFix this by moving the trace_btrfs_cow_block() from btrfs_cow_block() to\nbtrfs_force_cow_block() before the COWed extent buffer is freed.\nThis also has a side effect of invoking the tracepoint in the tree defrag\ncode, at defrag.c:btrfs_realloc_node(), since btrfs_force_cow_block() is\ncalled there, but this is fine and it was actually missing there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56759",
"url": "https://www.suse.com/security/cve/CVE-2024-56759"
},
{
"category": "external",
"summary": "SUSE Bug 1235645 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "external",
"summary": "SUSE Bug 1236569 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1236569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56759"
},
{
"cve": "CVE-2024-56760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/MSI: Handle lack of irqdomain gracefully\n\nAlexandre observed a warning emitted from pci_msi_setup_msi_irqs() on a\nRISCV platform which does not provide PCI/MSI support:\n\n WARNING: CPU: 1 PID: 1 at drivers/pci/msi/msi.h:121 pci_msi_setup_msi_irqs+0x2c/0x32\n __pci_enable_msix_range+0x30c/0x596\n pci_msi_setup_msi_irqs+0x2c/0x32\n pci_alloc_irq_vectors_affinity+0xb8/0xe2\n\nRISCV uses hierarchical interrupt domains and correctly does not implement\nthe legacy fallback. The warning triggers from the legacy fallback stub.\n\nThat warning is bogus as the PCI/MSI layer knows whether a PCI/MSI parent\ndomain is associated with the device or not. There is a check for MSI-X,\nwhich has a legacy assumption. But that legacy fallback assumption is only\nvalid when legacy support is enabled, but otherwise the check should simply\nreturn -ENOTSUPP.\n\nLoongarch tripped over the same problem and blindly enabled legacy support\nwithout implementing the legacy fallbacks. There are weak implementations\nwhich return an error, so the problem was papered over.\n\nCorrect pci_msi_domain_supports() to evaluate the legacy mode and add\nthe missing supported check into the MSI enable path to complete it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56760",
"url": "https://www.suse.com/security/cve/CVE-2024-56760"
},
{
"category": "external",
"summary": "SUSE Bug 1235616 for CVE-2024-56760",
"url": "https://bugzilla.suse.com/1235616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56760"
},
{
"cve": "CVE-2024-56763",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56763"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Prevent bad count for tracing_cpumask_write\n\nIf a large count is provided, it will trigger a warning in bitmap_parse_user.\nAlso check zero for it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56763",
"url": "https://www.suse.com/security/cve/CVE-2024-56763"
},
{
"category": "external",
"summary": "SUSE Bug 1235638 for CVE-2024-56763",
"url": "https://bugzilla.suse.com/1235638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56763"
},
{
"cve": "CVE-2024-56765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries/vas: Add close() callback in vas_vm_ops struct\n\nThe mapping VMA address is saved in VAS window struct when the\npaste address is mapped. This VMA address is used during migration\nto unmap the paste address if the window is active. The paste\naddress mapping will be removed when the window is closed or with\nthe munmap(). But the VMA address in the VAS window is not updated\nwith munmap() which is causing invalid access during migration.\n\nThe KASAN report shows:\n[16386.254991] BUG: KASAN: slab-use-after-free in reconfig_close_windows+0x1a0/0x4e8\n[16386.255043] Read of size 8 at addr c00000014a819670 by task drmgr/696928\n\n[16386.255096] CPU: 29 UID: 0 PID: 696928 Comm: drmgr Kdump: loaded Tainted: G B 6.11.0-rc5-nxgzip #2\n[16386.255128] Tainted: [B]=BAD_PAGE\n[16386.255148] Hardware name: IBM,9080-HEX Power11 (architected) 0x820200 0xf000007 of:IBM,FW1110.00 (NH1110_016) hv:phyp pSeries\n[16386.255181] Call Trace:\n[16386.255202] [c00000016b297660] [c0000000018ad0ac] dump_stack_lvl+0x84/0xe8 (unreliable)\n[16386.255246] [c00000016b297690] [c0000000006e8a90] print_report+0x19c/0x764\n[16386.255285] [c00000016b297760] [c0000000006e9490] kasan_report+0x128/0x1f8\n[16386.255309] [c00000016b297880] [c0000000006eb5c8] __asan_load8+0xac/0xe0\n[16386.255326] [c00000016b2978a0] [c00000000013f898] reconfig_close_windows+0x1a0/0x4e8\n[16386.255343] [c00000016b297990] [c000000000140e58] vas_migration_handler+0x3a4/0x3fc\n[16386.255368] [c00000016b297a90] [c000000000128848] pseries_migrate_partition+0x4c/0x4c4\n...\n\n[16386.256136] Allocated by task 696554 on cpu 31 at 16377.277618s:\n[16386.256149] kasan_save_stack+0x34/0x68\n[16386.256163] kasan_save_track+0x34/0x80\n[16386.256175] kasan_save_alloc_info+0x58/0x74\n[16386.256196] __kasan_slab_alloc+0xb8/0xdc\n[16386.256209] kmem_cache_alloc_noprof+0x200/0x3d0\n[16386.256225] vm_area_alloc+0x44/0x150\n[16386.256245] mmap_region+0x214/0x10c4\n[16386.256265] do_mmap+0x5fc/0x750\n[16386.256277] vm_mmap_pgoff+0x14c/0x24c\n[16386.256292] ksys_mmap_pgoff+0x20c/0x348\n[16386.256303] sys_mmap+0xd0/0x160\n...\n\n[16386.256350] Freed by task 0 on cpu 31 at 16386.204848s:\n[16386.256363] kasan_save_stack+0x34/0x68\n[16386.256374] kasan_save_track+0x34/0x80\n[16386.256384] kasan_save_free_info+0x64/0x10c\n[16386.256396] __kasan_slab_free+0x120/0x204\n[16386.256415] kmem_cache_free+0x128/0x450\n[16386.256428] vm_area_free_rcu_cb+0xa8/0xd8\n[16386.256441] rcu_do_batch+0x2c8/0xcf0\n[16386.256458] rcu_core+0x378/0x3c4\n[16386.256473] handle_softirqs+0x20c/0x60c\n[16386.256495] do_softirq_own_stack+0x6c/0x88\n[16386.256509] do_softirq_own_stack+0x58/0x88\n[16386.256521] __irq_exit_rcu+0x1a4/0x20c\n[16386.256533] irq_exit+0x20/0x38\n[16386.256544] interrupt_async_exit_prepare.constprop.0+0x18/0x2c\n...\n\n[16386.256717] Last potentially related work creation:\n[16386.256729] kasan_save_stack+0x34/0x68\n[16386.256741] __kasan_record_aux_stack+0xcc/0x12c\n[16386.256753] __call_rcu_common.constprop.0+0x94/0xd04\n[16386.256766] vm_area_free+0x28/0x3c\n[16386.256778] remove_vma+0xf4/0x114\n[16386.256797] do_vmi_align_munmap.constprop.0+0x684/0x870\n[16386.256811] __vm_munmap+0xe0/0x1f8\n[16386.256821] sys_munmap+0x54/0x6c\n[16386.256830] system_call_exception+0x1a0/0x4a0\n[16386.256841] system_call_vectored_common+0x15c/0x2ec\n\n[16386.256868] The buggy address belongs to the object at c00000014a819670\n which belongs to the cache vm_area_struct of size 168\n[16386.256887] The buggy address is located 0 bytes inside of\n freed 168-byte region [c00000014a819670, c00000014a819718)\n\n[16386.256915] The buggy address belongs to the physical page:\n[16386.256928] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14a81\n[16386.256950] memcg:c0000000ba430001\n[16386.256961] anon flags: 0x43ffff800000000(node=4|zone=0|lastcpupid=0x7ffff)\n[16386.256975] page_type: 0xfdffffff(slab)\n[16386\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56765",
"url": "https://www.suse.com/security/cve/CVE-2024-56765"
},
{
"category": "external",
"summary": "SUSE Bug 1235643 for CVE-2024-56765",
"url": "https://bugzilla.suse.com/1235643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56765"
},
{
"cve": "CVE-2024-56766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: fix double free in atmel_pmecc_create_user()\n\nThe \"user\" pointer was converted from being allocated with kzalloc() to\nbeing allocated by devm_kzalloc(). Calling kfree(user) will lead to a\ndouble free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56766",
"url": "https://www.suse.com/security/cve/CVE-2024-56766"
},
{
"category": "external",
"summary": "SUSE Bug 1235219 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "external",
"summary": "SUSE Bug 1240426 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1240426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-56766"
},
{
"cve": "CVE-2024-56767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset\n\nThe at_xdmac_memset_create_desc may return NULL, which will lead to a\nnull pointer dereference. For example, the len input is error, or the\natchan-\u003efree_descs_list is empty and memory is exhausted. Therefore, add\ncheck to avoid this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56767",
"url": "https://www.suse.com/security/cve/CVE-2024-56767"
},
{
"category": "external",
"summary": "SUSE Bug 1235160 for CVE-2024-56767",
"url": "https://bugzilla.suse.com/1235160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56767"
},
{
"cve": "CVE-2024-56769",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56769"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg\n\nSyzbot reports [1] an uninitialized value issue found by KMSAN in\ndib3000_read_reg().\n\nLocal u8 rb[2] is used in i2c_transfer() as a read buffer; in case\nthat call fails, the buffer may end up with some undefined values.\n\nSince no elaborate error handling is expected in dib3000_write_reg(),\nsimply zero out rb buffer to mitigate the problem.\n\n[1] Syzkaller report\ndvb-usb: bulk message failed: -22 (6/0)\n=====================================================\nBUG: KMSAN: uninit-value in dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dibusb_dib3000mb_frontend_attach+0x155/0x2f0 drivers/media/usb/dvb-usb/dibusb-mb.c:31\n dvb_usb_adapter_frontend_init+0xed/0x9a0 drivers/media/usb/dvb-usb/dvb-usb-dvb.c:290\n dvb_usb_adapter_init drivers/media/usb/dvb-usb/dvb-usb-init.c:90 [inline]\n dvb_usb_init drivers/media/usb/dvb-usb/dvb-usb-init.c:186 [inline]\n dvb_usb_device_init+0x25a8/0x3760 drivers/media/usb/dvb-usb/dvb-usb-init.c:310\n dibusb_probe+0x46/0x250 drivers/media/usb/dvb-usb/dibusb-mb.c:110\n...\nLocal variable rb created at:\n dib3000_read_reg+0x86/0x4e0 drivers/media/dvb-frontends/dib3000mb.c:54\n dib3000mb_attach+0x123/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56769",
"url": "https://www.suse.com/security/cve/CVE-2024-56769"
},
{
"category": "external",
"summary": "SUSE Bug 1235155 for CVE-2024-56769",
"url": "https://bugzilla.suse.com/1235155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56769"
},
{
"cve": "CVE-2024-56774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: add a sanity check for btrfs root in btrfs_search_slot()\n\nSyzbot reports a null-ptr-deref in btrfs_search_slot().\n\nThe reproducer is using rescue=ibadroots, and the extent tree root is\ncorrupted thus the extent tree is NULL.\n\nWhen scrub tries to search the extent tree to gather the needed extent\ninfo, btrfs_search_slot() doesn\u0027t check if the target root is NULL or\nnot, resulting the null-ptr-deref.\n\nAdd sanity check for btrfs root before using it in btrfs_search_slot().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56774",
"url": "https://www.suse.com/security/cve/CVE-2024-56774"
},
{
"category": "external",
"summary": "SUSE Bug 1235653 for CVE-2024-56774",
"url": "https://bugzilla.suse.com/1235653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56774"
},
{
"cve": "CVE-2024-56775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix handling of plane refcount\n\n[Why]\nThe mechanism to backup and restore plane states doesn\u0027t maintain\nrefcount, which can cause issues if the refcount of the plane changes\nin between backup and restore operations, such as memory leaks if the\nrefcount was supposed to go down, or double frees / invalid memory\naccesses if the refcount was supposed to go up.\n\n[How]\nCache and re-apply current refcount when restoring plane states.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56775",
"url": "https://www.suse.com/security/cve/CVE-2024-56775"
},
{
"category": "external",
"summary": "SUSE Bug 1235657 for CVE-2024-56775",
"url": "https://bugzilla.suse.com/1235657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56775"
},
{
"cve": "CVE-2024-56776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56776",
"url": "https://www.suse.com/security/cve/CVE-2024-56776"
},
{
"category": "external",
"summary": "SUSE Bug 1235647 for CVE-2024-56776",
"url": "https://bugzilla.suse.com/1235647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56776"
},
{
"cve": "CVE-2024-56777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56777",
"url": "https://www.suse.com/security/cve/CVE-2024-56777"
},
{
"category": "external",
"summary": "SUSE Bug 1235641 for CVE-2024-56777",
"url": "https://bugzilla.suse.com/1235641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56777"
},
{
"cve": "CVE-2024-56778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56778",
"url": "https://www.suse.com/security/cve/CVE-2024-56778"
},
{
"category": "external",
"summary": "SUSE Bug 1235635 for CVE-2024-56778",
"url": "https://bugzilla.suse.com/1235635"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56778"
},
{
"cve": "CVE-2024-56779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56779"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur\n\nThe action force umount(umount -f) will attempt to kill all rpc_task even\numount operation may ultimately fail if some files remain open.\nConsequently, if an action attempts to open a file, it can potentially\nsend two rpc_task to nfs server.\n\n NFS CLIENT\nthread1 thread2\nopen(\"file\")\n...\nnfs4_do_open\n _nfs4_do_open\n _nfs4_open_and_get_state\n _nfs4_proc_open\n nfs4_run_open_task\n /* rpc_task1 */\n rpc_run_task\n rpc_wait_for_completion_task\n\n umount -f\n nfs_umount_begin\n rpc_killall_tasks\n rpc_signal_task\n rpc_task1 been wakeup\n and return -512\n _nfs4_do_open // while loop\n ...\n nfs4_run_open_task\n /* rpc_task2 */\n rpc_run_task\n rpc_wait_for_completion_task\n\nWhile processing an open request, nfsd will first attempt to find or\nallocate an nfs4_openowner. If it finds an nfs4_openowner that is not\nmarked as NFS4_OO_CONFIRMED, this nfs4_openowner will released. Since\ntwo rpc_task can attempt to open the same file simultaneously from the\nclient to server, and because two instances of nfsd can run\nconcurrently, this situation can lead to lots of memory leak.\nAdditionally, when we echo 0 to /proc/fs/nfsd/threads, warning will be\ntriggered.\n\n NFS SERVER\nnfsd1 nfsd2 echo 0 \u003e /proc/fs/nfsd/threads\n\nnfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // alloc oo1, stateid1\n nfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // find oo1, without NFS4_OO_CONFIRMED\n release_openowner\n unhash_openowner_locked\n list_del_init(\u0026oo-\u003eoo_perclient)\n // cannot find this oo\n // from client, LEAK!!!\n alloc_stateowner // alloc oo2\n\n nfsd4_process_open2\n init_open_stateid\n // associate oo1\n // with stateid1, stateid1 LEAK!!!\n nfs4_get_vfs_file\n // alloc nfsd_file1 and nfsd_file_mark1\n // all LEAK!!!\n\n nfsd4_process_open2\n ...\n\n write_threads\n ...\n nfsd_destroy_serv\n nfsd_shutdown_net\n nfs4_state_shutdown_net\n nfs4_state_destroy_net\n destroy_client\n __destroy_client\n // won\u0027t find oo1!!!\n nfsd_shutdown_generic\n nfsd_file_cache_shutdown\n kmem_cache_destroy\n for nfsd_file_slab\n and nfsd_file_mark_slab\n // bark since nfsd_file1\n // and nfsd_file_mark1\n // still alive\n\n=======================================================================\nBUG nfsd_file (Not tainted): Objects remaining in nfsd_file on\n__kmem_cache_shutdown()\n-----------------------------------------------------------------------\n\nSlab 0xffd4000004438a80 objects=34 used=1 fp=0xff11000110e2ad28\nflags=0x17ffffc0000240(workingset|head|node=0|zone=2|lastcpupid=0x1fffff)\nCPU: 4 UID: 0 PID: 757 Comm: sh Not tainted 6.12.0-rc6+ #19\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dum\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56779",
"url": "https://www.suse.com/security/cve/CVE-2024-56779"
},
{
"category": "external",
"summary": "SUSE Bug 1235632 for CVE-2024-56779",
"url": "https://bugzilla.suse.com/1235632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56779"
},
{
"cve": "CVE-2024-56780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: flush quota_release_work upon quota writeback\n\nOne of the paths quota writeback is called from is:\n\nfreeze_super()\n sync_filesystem()\n ext4_sync_fs()\n dquot_writeback_dquots()\n\nSince we currently don\u0027t always flush the quota_release_work queue in\nthis path, we can end up with the following race:\n\n 1. dquot are added to releasing_dquots list during regular operations.\n 2. FS Freeze starts, however, this does not flush the quota_release_work queue.\n 3. Freeze completes.\n 4. Kernel eventually tries to flush the workqueue while FS is frozen which\n hits a WARN_ON since transaction gets started during frozen state:\n\n ext4_journal_check_start+0x28/0x110 [ext4] (unreliable)\n __ext4_journal_start_sb+0x64/0x1c0 [ext4]\n ext4_release_dquot+0x90/0x1d0 [ext4]\n quota_release_workfn+0x43c/0x4d0\n\nWhich is the following line:\n\n WARN_ON(sb-\u003es_writers.frozen == SB_FREEZE_COMPLETE);\n\nWhich ultimately results in generic/390 failing due to dmesg\nnoise. This was detected on powerpc machine 15 cores.\n\nTo avoid this, make sure to flush the workqueue during\ndquot_writeback_dquots() so we dont have any pending workitems after\nfreeze.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56780",
"url": "https://www.suse.com/security/cve/CVE-2024-56780"
},
{
"category": "external",
"summary": "SUSE Bug 1235650 for CVE-2024-56780",
"url": "https://bugzilla.suse.com/1235650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56780"
},
{
"cve": "CVE-2024-56787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: imx8m: Probe the SoC driver as platform driver\n\nWith driver_async_probe=* on kernel command line, the following trace is\nproduced because on i.MX8M Plus hardware because the soc-imx8m.c driver\ncalls of_clk_get_by_name() which returns -EPROBE_DEFER because the clock\ndriver is not yet probed. This was not detected during regular testing\nwithout driver_async_probe.\n\nConvert the SoC code to platform driver and instantiate a platform device\nin its current device_initcall() to probe the platform driver. Rework\n.soc_revision callback to always return valid error code and return SoC\nrevision via parameter. This way, if anything in the .soc_revision callback\nreturn -EPROBE_DEFER, it gets propagated to .probe and the .probe will get\nretried later.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 1 at drivers/soc/imx/soc-imx8m.c:115 imx8mm_soc_revision+0xdc/0x180\nCPU: 1 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.11.0-next-20240924-00002-g2062bb554dea #603\nHardware name: DH electronics i.MX8M Plus DHCOM Premium Developer Kit (3) (DT)\npstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : imx8mm_soc_revision+0xdc/0x180\nlr : imx8mm_soc_revision+0xd0/0x180\nsp : ffff8000821fbcc0\nx29: ffff8000821fbce0 x28: 0000000000000000 x27: ffff800081810120\nx26: ffff8000818a9970 x25: 0000000000000006 x24: 0000000000824311\nx23: ffff8000817f42c8 x22: ffff0000df8be210 x21: fffffffffffffdfb\nx20: ffff800082780000 x19: 0000000000000001 x18: ffffffffffffffff\nx17: ffff800081fff418 x16: ffff8000823e1000 x15: ffff0000c03b65e8\nx14: ffff0000c00051b0 x13: ffff800082790000 x12: 0000000000000801\nx11: ffff80008278ffff x10: ffff80008209d3a6 x9 : ffff80008062e95c\nx8 : ffff8000821fb9a0 x7 : 0000000000000000 x6 : 00000000000080e3\nx5 : ffff0000df8c03d8 x4 : 0000000000000000 x3 : 0000000000000000\nx2 : 0000000000000000 x1 : fffffffffffffdfb x0 : fffffffffffffdfb\nCall trace:\n imx8mm_soc_revision+0xdc/0x180\n imx8_soc_init+0xb0/0x1e0\n do_one_initcall+0x94/0x1a8\n kernel_init_freeable+0x240/0x2a8\n kernel_init+0x28/0x140\n ret_from_fork+0x10/0x20\n---[ end trace 0000000000000000 ]---\nSoC: i.MX8MP revision 1.1\n\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56787",
"url": "https://www.suse.com/security/cve/CVE-2024-56787"
},
{
"category": "external",
"summary": "SUSE Bug 1235663 for CVE-2024-56787",
"url": "https://bugzilla.suse.com/1235663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-56787"
},
{
"cve": "CVE-2024-57791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: check return value of sock_recvmsg when draining clc data\n\nWhen receiving clc msg, the field length in smc_clc_msg_hdr indicates the\nlength of msg should be received from network and the value should not be\nfully trusted as it is from the network. Once the value of length exceeds\nthe value of buflen in function smc_clc_wait_msg it may run into deadloop\nwhen trying to drain the remaining data exceeding buflen.\n\nThis patch checks the return value of sock_recvmsg when draining data in\ncase of deadloop in draining.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57791",
"url": "https://www.suse.com/security/cve/CVE-2024-57791"
},
{
"category": "external",
"summary": "SUSE Bug 1235759 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "external",
"summary": "SUSE Bug 1235760 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-57791"
},
{
"cve": "CVE-2024-57792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: gpio-charger: Fix set charge current limits\n\nFix set charge current limits for devices which allow to set the lowest\ncharge current limit to be greater zero. If requested charge current limit\nis below lowest limit, the index equals current_limit_map_size which leads\nto accessing memory beyond allocated memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57792",
"url": "https://www.suse.com/security/cve/CVE-2024-57792"
},
{
"category": "external",
"summary": "SUSE Bug 1235764 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "external",
"summary": "SUSE Bug 1236568 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1236568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-57792"
},
{
"cve": "CVE-2024-57793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57793"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirt: tdx-guest: Just leak decrypted memory on unrecoverable errors\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_decrypted() to fail such that an error is returned\nand the resulting memory is shared. Callers need to take care\nto handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional\nor security issues.\n\nLeak the decrypted memory when set_memory_decrypted() fails,\nand don\u0027t need to print an error since set_memory_decrypted()\nwill call WARN_ONCE().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57793",
"url": "https://www.suse.com/security/cve/CVE-2024-57793"
},
{
"category": "external",
"summary": "SUSE Bug 1235768 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "external",
"summary": "SUSE Bug 1235769 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-57793"
},
{
"cve": "CVE-2024-57795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Remove the direct link to net_device\n\nThe similar patch in siw is in the link:\nhttps://git.kernel.org/rdma/rdma/c/16b87037b48889\n\nThis problem also occurred in RXE. The following analyze this problem.\nIn the following Call Traces:\n\"\nBUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\nRead of size 4 at addr ffff8880554640b0 by task kworker/1:4/5295\n\nCPU: 1 UID: 0 PID: 5295 Comm: kworker/1:4 Not tainted\n6.12.0-rc3-syzkaller-00399-g9197b73fd7bb #0\nHardware name: Google Compute Engine/Google Compute Engine,\nBIOS Google 09/13/2024\nWorkqueue: infiniband ib_cache_event_task\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\n rxe_query_port+0x12d/0x260 drivers/infiniband/sw/rxe/rxe_verbs.c:60\n __ib_query_port drivers/infiniband/core/device.c:2111 [inline]\n ib_query_port+0x168/0x7d0 drivers/infiniband/core/device.c:2143\n ib_cache_update+0x1a9/0xb80 drivers/infiniband/core/cache.c:1494\n ib_cache_event_task+0xf3/0x1e0 drivers/infiniband/core/cache.c:1568\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa65/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f2/0x390 kernel/kthread.c:389\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\"\n\n1). In the link [1],\n\n\"\n infiniband syz2: set down\n\"\n\nThis means that on 839.350575, the event ib_cache_event_task was sent andi\nqueued in ib_wq.\n\n2). In the link [1],\n\n\"\n team0 (unregistering): Port device team_slave_0 removed\n\"\n\nIt indicates that before 843.251853, the net device should be freed.\n\n3). In the link [1],\n\n\"\n BUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0\n\"\n\nThis means that on 850.559070, this slab-use-after-free problem occurred.\n\nIn all, on 839.350575, the event ib_cache_event_task was sent and queued\nin ib_wq,\n\nbefore 843.251853, the net device veth was freed.\n\non 850.559070, this event was executed, and the mentioned freed net device\nwas called. Thus, the above call trace occurred.\n\n[1] https://syzkaller.appspot.com/x/log.txt?x=12e7025f980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57795",
"url": "https://www.suse.com/security/cve/CVE-2024-57795"
},
{
"category": "external",
"summary": "SUSE Bug 1235906 for CVE-2024-57795",
"url": "https://bugzilla.suse.com/1235906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57795"
},
{
"cve": "CVE-2024-57798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()\n\nWhile receiving an MST up request message from one thread in\ndrm_dp_mst_handle_up_req(), the MST topology could be removed from\nanother thread via drm_dp_mst_topology_mgr_set_mst(false), freeing\nmst_primary and setting drm_dp_mst_topology_mgr::mst_primary to NULL.\nThis could lead to a NULL deref/use-after-free of mst_primary in\ndrm_dp_mst_handle_up_req().\n\nAvoid the above by holding a reference for mst_primary in\ndrm_dp_mst_handle_up_req() while it\u0027s used.\n\nv2: Fix kfreeing the request if getting an mst_primary reference fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57798",
"url": "https://www.suse.com/security/cve/CVE-2024-57798"
},
{
"category": "external",
"summary": "SUSE Bug 1235818 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "external",
"summary": "SUSE Bug 1235819 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-57798"
},
{
"cve": "CVE-2024-57801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Skip restore TC rules for vport rep without loaded flag\n\nDuring driver unload, unregister_netdev is called after unloading\nvport rep. So, the mlx5e_rep_priv is already freed while trying to get\nrpriv-\u003enetdev, or walk rpriv-\u003etc_ht, which results in use-after-free.\nSo add the checking to make sure access the data of vport rep which is\nstill loaded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57801",
"url": "https://www.suse.com/security/cve/CVE-2024-57801"
},
{
"category": "external",
"summary": "SUSE Bug 1235940 for CVE-2024-57801",
"url": "https://bugzilla.suse.com/1235940"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57801"
},
{
"cve": "CVE-2024-57802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetrom: check buffer length before accessing it\n\nSyzkaller reports an uninit value read from ax25cmp when sending raw message\nthrough ieee802154 implementation.\n\n=====================================================\nBUG: KMSAN: uninit-value in ax25cmp+0x3a5/0x460 net/ax25/ax25_addr.c:119\n ax25cmp+0x3a5/0x460 net/ax25/ax25_addr.c:119\n nr_dev_get+0x20e/0x450 net/netrom/nr_route.c:601\n nr_route_frame+0x1a2/0xfc0 net/netrom/nr_route.c:774\n nr_xmit+0x5a/0x1c0 net/netrom/nr_dev.c:144\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n __dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n raw_sendmsg+0x654/0xc10 net/ieee802154/socket.c:299\n ieee802154_sock_sendmsg+0x91/0xc0 net/ieee802154/socket.c:96\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n __sys_sendmsg net/socket.c:2667 [inline]\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x5e9/0xb10 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x318/0x740 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1286 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6334\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2780\n sock_alloc_send_skb include/net/sock.h:1884 [inline]\n raw_sendmsg+0x36d/0xc10 net/ieee802154/socket.c:282\n ieee802154_sock_sendmsg+0x91/0xc0 net/ieee802154/socket.c:96\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n __sys_sendmsg net/socket.c:2667 [inline]\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nCPU: 0 PID: 5037 Comm: syz-executor166 Not tainted 6.7.0-rc7-syzkaller-00003-gfbafc3e621c3 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023\n=====================================================\n\nThis issue occurs because the skb buffer is too small, and it\u0027s actual\nallocation is aligned. This hides an actual issue, which is that nr_route_frame\ndoes not validate the buffer size before using it.\n\nFix this issue by checking skb-\u003elen before accessing any fields in skb-\u003edata.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57802",
"url": "https://www.suse.com/security/cve/CVE-2024-57802"
},
{
"category": "external",
"summary": "SUSE Bug 1235941 for CVE-2024-57802",
"url": "https://bugzilla.suse.com/1235941"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57802"
},
{
"cve": "CVE-2024-57804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs\n\nThe driver, through the SAS transport, exposes a sysfs interface to\nenable/disable PHYs in a controller/expander setup. When multiple PHYs\nare disabled and enabled in rapid succession, the persistent and current\nconfig pages related to SAS IO unit/SAS Expander pages could get\ncorrupted.\n\nUse separate memory for each config request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57804",
"url": "https://www.suse.com/security/cve/CVE-2024-57804"
},
{
"category": "external",
"summary": "SUSE Bug 1235779 for CVE-2024-57804",
"url": "https://bugzilla.suse.com/1235779"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57804"
},
{
"cve": "CVE-2024-57809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: imx6: Fix suspend/resume support on i.MX6QDL\n\nThe suspend/resume functionality is currently broken on the i.MX6QDL\nplatform, as documented in the NXP errata (ERR005723):\n\n https://www.nxp.com/docs/en/errata/IMX6DQCE.pdf\n\nThis patch addresses the issue by sharing most of the suspend/resume\nsequences used by other i.MX devices, while avoiding modifications to\ncritical registers that disrupt the PCIe functionality. It targets the\nsame problem as the following downstream commit:\n\n https://github.com/nxp-imx/linux-imx/commit/4e92355e1f79d225ea842511fcfd42b343b32995\n\nUnlike the downstream commit, this patch also resets the connected PCIe\ndevice if possible. Without this reset, certain drivers, such as ath10k\nor iwlwifi, will crash on resume. The device reset is also done by the\ndriver on other i.MX platforms, making this patch consistent with\nexisting practices.\n\nUpon resuming, the kernel will hang and display an error. Here\u0027s an\nexample of the error encountered with the ath10k driver:\n\n ath10k_pci 0000:01:00.0: Unable to change power state from D3hot to D0, device inaccessible\n Unhandled fault: imprecise external abort (0x1406) at 0x0106f944\n\nWithout this patch, suspend/resume will fail on i.MX6QDL devices if a\nPCIe device is connected.\n\n[kwilczynski: commit log, added tag for stable releases]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57809",
"url": "https://www.suse.com/security/cve/CVE-2024-57809"
},
{
"category": "external",
"summary": "SUSE Bug 1235793 for CVE-2024-57809",
"url": "https://bugzilla.suse.com/1235793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57809"
},
{
"cve": "CVE-2024-57838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57838"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/entry: Mark IRQ entries to fix stack depot warnings\n\nThe stack depot filters out everything outside of the top interrupt\ncontext as an uninteresting or irrelevant part of the stack traces. This\nhelps with stack trace de-duplication, avoiding an explosion of saved\nstack traces that share the same IRQ context code path but originate\nfrom different randomly interrupted points, eventually exhausting the\nstack depot.\n\nFiltering uses in_irqentry_text() to identify functions within the\n.irqentry.text and .softirqentry.text sections, which then become the\nlast stack trace entries being saved.\n\nWhile __do_softirq() is placed into the .softirqentry.text section by\ncommon code, populating .irqentry.text is architecture-specific.\n\nCurrently, the .irqentry.text section on s390 is empty, which prevents\nstack depot filtering and de-duplication and could result in warnings\nlike:\n\nStack depot reached limit capacity\nWARNING: CPU: 0 PID: 286113 at lib/stackdepot.c:252 depot_alloc_stack+0x39a/0x3c8\n\nwith PREEMPT and KASAN enabled.\n\nFix this by moving the IO/EXT interrupt handlers from .kprobes.text into\nthe .irqentry.text section and updating the kprobes blacklist to include\nthe .irqentry.text section.\n\nThis is done only for asynchronous interrupts and explicitly not for\nprogram checks, which are synchronous and where the context beyond the\nprogram check is important to preserve. Despite machine checks being\nsomewhat in between, they are extremely rare, and preserving context\nwhen possible is also of value.\n\nSVCs and Restart Interrupts are not relevant, one being always at the\nboundary to user space and the other being a one-time thing.\n\nIRQ entries filtering is also optionally used in ftrace function graph,\nwhere the same logic applies.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57838",
"url": "https://www.suse.com/security/cve/CVE-2024-57838"
},
{
"category": "external",
"summary": "SUSE Bug 1235798 for CVE-2024-57838",
"url": "https://bugzilla.suse.com/1235798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57838"
},
{
"cve": "CVE-2024-57849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57849"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/cpum_sf: Handle CPU hotplug remove during sampling\n\nCPU hotplug remove handling triggers the following function\ncall sequence:\n\n CPUHP_AP_PERF_S390_SF_ONLINE --\u003e s390_pmu_sf_offline_cpu()\n ...\n CPUHP_AP_PERF_ONLINE --\u003e perf_event_exit_cpu()\n\nThe s390 CPUMF sampling CPU hotplug handler invokes:\n\n s390_pmu_sf_offline_cpu()\n +--\u003e cpusf_pmu_setup()\n +--\u003e setup_pmc_cpu()\n +--\u003e deallocate_buffers()\n\nThis function de-allocates all sampling data buffers (SDBs) allocated\nfor that CPU at event initialization. It also clears the\nPMU_F_RESERVED bit. The CPU is gone and can not be sampled.\n\nWith the event still being active on the removed CPU, the CPU event\nhotplug support in kernel performance subsystem triggers the\nfollowing function calls on the removed CPU:\n\n perf_event_exit_cpu()\n +--\u003e perf_event_exit_cpu_context()\n +--\u003e __perf_event_exit_context()\n\t +--\u003e __perf_remove_from_context()\n\t +--\u003e event_sched_out()\n\t +--\u003e cpumsf_pmu_del()\n\t +--\u003e cpumsf_pmu_stop()\n +--\u003e hw_perf_event_update()\n\nto stop and remove the event. During removal of the event, the\nsampling device driver tries to read out the remaining samples from\nthe sample data buffers (SDBs). But they have already been freed\n(and may have been re-assigned). This may lead to a use after free\nsituation in which case the samples are most likely invalid. In the\nbest case the memory has not been reassigned and still contains\nvalid data.\n\nRemedy this situation and check if the CPU is still in reserved\nstate (bit PMU_F_RESERVED set). In this case the SDBs have not been\nreleased an contain valid data. This is always the case when\nthe event is removed (and no CPU hotplug off occured).\nIf the PMU_F_RESERVED bit is not set, the SDB buffers are gone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57849",
"url": "https://www.suse.com/security/cve/CVE-2024-57849"
},
{
"category": "external",
"summary": "SUSE Bug 1235814 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "external",
"summary": "SUSE Bug 1235815 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-57849"
},
{
"cve": "CVE-2024-57850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njffs2: Prevent rtime decompress memory corruption\n\nThe rtime decompression routine does not fully check bounds during the\nentirety of the decompression pass and can corrupt memory outside the\ndecompression buffer if the compressed data is corrupted. This adds the\nrequired check to prevent this failure mode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57850",
"url": "https://www.suse.com/security/cve/CVE-2024-57850"
},
{
"category": "external",
"summary": "SUSE Bug 1235812 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "external",
"summary": "SUSE Bug 1235813 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-57850"
},
{
"cve": "CVE-2024-57857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/siw: Remove direct link to net_device\n\nDo not manage a per device direct link to net_device. Rely\non associated ib_devices net_device management, not doubling\nthe effort locally. A badly managed local link to net_device\nwas causing a \u0027KASAN: slab-use-after-free\u0027 exception during\nsiw_query_port() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57857",
"url": "https://www.suse.com/security/cve/CVE-2024-57857"
},
{
"category": "external",
"summary": "SUSE Bug 1235946 for CVE-2024-57857",
"url": "https://bugzilla.suse.com/1235946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57857"
},
{
"cve": "CVE-2024-57874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57874"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL\n\nCurrently tagged_addr_ctrl_set() doesn\u0027t initialize the temporary \u0027ctrl\u0027\nvariable, and a SETREGSET call with a length of zero will leave this\nuninitialized. Consequently tagged_addr_ctrl_set() will consume an\narbitrary value, potentially leaking up to 64 bits of memory from the\nkernel stack. The read is limited to a specific slot on the stack, and\nthe issue does not provide a write mechanism.\n\nAs set_tagged_addr_ctrl() only accepts values where bits [63:4] zero and\nrejects other values, a partial SETREGSET attempt will randomly succeed\nor fail depending on the value of the uninitialized value, and the\nexposure is significantly limited.\n\nFix this by initializing the temporary value before copying the regset\nfrom userspace, as for other regsets (e.g. NT_PRSTATUS, NT_PRFPREG,\nNT_ARM_SYSTEM_CALL). In the case of a zero-length write, the existing\nvalue of the tagged address ctrl will be retained.\n\nThe NT_ARM_TAGGED_ADDR_CTRL regset is only visible in the\nuser_aarch64_view used by a native AArch64 task to manipulate another\nnative AArch64 task. As get_tagged_addr_ctrl() only returns an error\nvalue when called for a compat task, tagged_addr_ctrl_get() and\ntagged_addr_ctrl_set() should never observe an error value from\nget_tagged_addr_ctrl(). Add a WARN_ON_ONCE() to both to indicate that\nsuch an error would be unexpected, and error handlnig is not missing in\neither case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57874",
"url": "https://www.suse.com/security/cve/CVE-2024-57874"
},
{
"category": "external",
"summary": "SUSE Bug 1235808 for CVE-2024-57874",
"url": "https://bugzilla.suse.com/1235808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-57874"
},
{
"cve": "CVE-2024-57876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57876"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix resetting msg rx state after topology removal\n\nIf the MST topology is removed during the reception of an MST down reply\nor MST up request sideband message, the\ndrm_dp_mst_topology_mgr::up_req_recv/down_rep_recv states could be reset\nfrom one thread via drm_dp_mst_topology_mgr_set_mst(false), racing with\nthe reading/parsing of the message from another thread via\ndrm_dp_mst_handle_down_rep() or drm_dp_mst_handle_up_req(). The race is\npossible since the reader/parser doesn\u0027t hold any lock while accessing\nthe reception state. This in turn can lead to a memory corruption in the\nreader/parser as described by commit bd2fccac61b4 (\"drm/dp_mst: Fix MST\nsideband message body length check\").\n\nFix the above by resetting the message reception state if needed before\nreading/parsing a message. Another solution would be to hold the\ndrm_dp_mst_topology_mgr::lock for the whole duration of the message\nreception/parsing in drm_dp_mst_handle_down_rep() and\ndrm_dp_mst_handle_up_req(), however this would require a bigger change.\nSince the fix is also needed for stable, opting for the simpler solution\nin this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57876",
"url": "https://www.suse.com/security/cve/CVE-2024-57876"
},
{
"category": "external",
"summary": "SUSE Bug 1235806 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "external",
"summary": "SUSE Bug 1235807 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-57876"
},
{
"cve": "CVE-2024-57884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim()\n\nThe task sometimes continues looping in throttle_direct_reclaim() because\nallow_direct_reclaim(pgdat) keeps returning false. \n\n #0 [ffff80002cb6f8d0] __switch_to at ffff8000080095ac\n #1 [ffff80002cb6f900] __schedule at ffff800008abbd1c\n #2 [ffff80002cb6f990] schedule at ffff800008abc50c\n #3 [ffff80002cb6f9b0] throttle_direct_reclaim at ffff800008273550\n #4 [ffff80002cb6fa20] try_to_free_pages at ffff800008277b68\n #5 [ffff80002cb6fae0] __alloc_pages_nodemask at ffff8000082c4660\n #6 [ffff80002cb6fc50] alloc_pages_vma at ffff8000082e4a98\n #7 [ffff80002cb6fca0] do_anonymous_page at ffff80000829f5a8\n #8 [ffff80002cb6fce0] __handle_mm_fault at ffff8000082a5974\n #9 [ffff80002cb6fd90] handle_mm_fault at ffff8000082a5bd4\n\nAt this point, the pgdat contains the following two zones:\n\n NODE: 4 ZONE: 0 ADDR: ffff00817fffe540 NAME: \"DMA32\"\n SIZE: 20480 MIN/LOW/HIGH: 11/28/45\n VM_STAT:\n NR_FREE_PAGES: 359\n NR_ZONE_INACTIVE_ANON: 18813\n NR_ZONE_ACTIVE_ANON: 0\n NR_ZONE_INACTIVE_FILE: 50\n NR_ZONE_ACTIVE_FILE: 0\n NR_ZONE_UNEVICTABLE: 0\n NR_ZONE_WRITE_PENDING: 0\n NR_MLOCK: 0\n NR_BOUNCE: 0\n NR_ZSPAGES: 0\n NR_FREE_CMA_PAGES: 0\n\n NODE: 4 ZONE: 1 ADDR: ffff00817fffec00 NAME: \"Normal\"\n SIZE: 8454144 PRESENT: 98304 MIN/LOW/HIGH: 68/166/264\n VM_STAT:\n NR_FREE_PAGES: 146\n NR_ZONE_INACTIVE_ANON: 94668\n NR_ZONE_ACTIVE_ANON: 3\n NR_ZONE_INACTIVE_FILE: 735\n NR_ZONE_ACTIVE_FILE: 78\n NR_ZONE_UNEVICTABLE: 0\n NR_ZONE_WRITE_PENDING: 0\n NR_MLOCK: 0\n NR_BOUNCE: 0\n NR_ZSPAGES: 0\n NR_FREE_CMA_PAGES: 0\n\nIn allow_direct_reclaim(), while processing ZONE_DMA32, the sum of\ninactive/active file-backed pages calculated in zone_reclaimable_pages()\nbased on the result of zone_page_state_snapshot() is zero. \n\nAdditionally, since this system lacks swap, the calculation of inactive/\nactive anonymous pages is skipped.\n\n crash\u003e p nr_swap_pages\n nr_swap_pages = $1937 = {\n counter = 0\n }\n\nAs a result, ZONE_DMA32 is deemed unreclaimable and skipped, moving on to\nthe processing of the next zone, ZONE_NORMAL, despite ZONE_DMA32 having\nfree pages significantly exceeding the high watermark.\n\nThe problem is that the pgdat-\u003ekswapd_failures hasn\u0027t been incremented.\n\n crash\u003e px ((struct pglist_data *) 0xffff00817fffe540)-\u003ekswapd_failures\n $1935 = 0x0\n\nThis is because the node deemed balanced. The node balancing logic in\nbalance_pgdat() evaluates all zones collectively. If one or more zones\n(e.g., ZONE_DMA32) have enough free pages to meet their watermarks, the\nentire node is deemed balanced. This causes balance_pgdat() to exit early\nbefore incrementing the kswapd_failures, as it considers the overall\nmemory state acceptable, even though some zones (like ZONE_NORMAL) remain\nunder significant pressure.\n\n\nThe patch ensures that zone_reclaimable_pages() includes free pages\n(NR_FREE_PAGES) in its calculation when no other reclaimable pages are\navailable (e.g., file-backed or anonymous pages). This change prevents\nzones like ZONE_DMA32, which have sufficient free pages, from being\nmistakenly deemed unreclaimable. By doing so, the patch ensures proper\nnode balancing, avoids masking pressure on other zones like ZONE_NORMAL,\nand prevents infinite loops in throttle_direct_reclaim() caused by\nallow_direct_reclaim(pgdat) repeatedly returning false.\n\n\nThe kernel hangs due to a task stuck in throttle_direct_reclaim(), caused\nby a node being incorrectly deemed balanced despite pressure in certain\nzones, such as ZONE_NORMAL. This issue arises from\nzone_reclaimable_pages\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57884",
"url": "https://www.suse.com/security/cve/CVE-2024-57884"
},
{
"category": "external",
"summary": "SUSE Bug 1235948 for CVE-2024-57884",
"url": "https://bugzilla.suse.com/1235948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57884"
},
{
"cve": "CVE-2024-57887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: adv7511: Fix use-after-free in adv7533_attach_dsi()\n\nThe host_node pointer was assigned and freed in adv7533_parse_dt(), and\nlater, adv7533_attach_dsi() uses the same. Fix this use-after-free issue\nby dropping of_node_put() in adv7533_parse_dt() and calling of_node_put()\nin error path of probe() and also in the remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57887",
"url": "https://www.suse.com/security/cve/CVE-2024-57887"
},
{
"category": "external",
"summary": "SUSE Bug 1235952 for CVE-2024-57887",
"url": "https://bugzilla.suse.com/1235952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57887"
},
{
"cve": "CVE-2024-57888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nworkqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker\n\nAfter commit\n746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")\namdgpu started seeing the following warning:\n\n [ ] workqueue: WQ_MEM_RECLAIM sdma0:drm_sched_run_job_work [gpu_sched] is flushing !WQ_MEM_RECLAIM events:amdgpu_device_delay_enable_gfx_off [amdgpu]\n...\n [ ] Workqueue: sdma0 drm_sched_run_job_work [gpu_sched]\n...\n [ ] Call Trace:\n [ ] \u003cTASK\u003e\n...\n [ ] ? check_flush_dependency+0xf5/0x110\n...\n [ ] cancel_delayed_work_sync+0x6e/0x80\n [ ] amdgpu_gfx_off_ctrl+0xab/0x140 [amdgpu]\n [ ] amdgpu_ring_alloc+0x40/0x50 [amdgpu]\n [ ] amdgpu_ib_schedule+0xf4/0x810 [amdgpu]\n [ ] ? drm_sched_run_job_work+0x22c/0x430 [gpu_sched]\n [ ] amdgpu_job_run+0xaa/0x1f0 [amdgpu]\n [ ] drm_sched_run_job_work+0x257/0x430 [gpu_sched]\n [ ] process_one_work+0x217/0x720\n...\n [ ] \u003c/TASK\u003e\n\nThe intent of the verifcation done in check_flush_depedency is to ensure\nforward progress during memory reclaim, by flagging cases when either a\nmemory reclaim process, or a memory reclaim work item is flushed from a\ncontext not marked as memory reclaim safe.\n\nThis is correct when flushing, but when called from the\ncancel(_delayed)_work_sync() paths it is a false positive because work is\neither already running, or will not be running at all. Therefore\ncancelling it is safe and we can relax the warning criteria by letting the\nhelper know of the calling context.\n\nReferences: 746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57888",
"url": "https://www.suse.com/security/cve/CVE-2024-57888"
},
{
"category": "external",
"summary": "SUSE Bug 1235918 for CVE-2024-57888",
"url": "https://bugzilla.suse.com/1235918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57888"
},
{
"cve": "CVE-2024-57890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/uverbs: Prevent integer overflow issue\n\nIn the expression \"cmd.wqe_size * cmd.wr_count\", both variables are u32\nvalues that come from the user so the multiplication can lead to integer\nwrapping. Then we pass the result to uverbs_request_next_ptr() which also\ncould potentially wrap. The \"cmd.sge_count * sizeof(struct ib_uverbs_sge)\"\nmultiplication can also overflow on 32bit systems although it\u0027s fine on\n64bit systems.\n\nThis patch does two things. First, I\u0027ve re-arranged the condition in\nuverbs_request_next_ptr() so that the use controlled variable \"len\" is on\none side of the comparison by itself without any math. Then I\u0027ve modified\nall the callers to use size_mul() for the multiplications.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57890",
"url": "https://www.suse.com/security/cve/CVE-2024-57890"
},
{
"category": "external",
"summary": "SUSE Bug 1235919 for CVE-2024-57890",
"url": "https://bugzilla.suse.com/1235919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57890"
},
{
"cve": "CVE-2024-57892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57892"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix slab-use-after-free due to dangling pointer dqi_priv\n\nWhen mounting ocfs2 and then remounting it as read-only, a\nslab-use-after-free occurs after the user uses a syscall to\nquota_getnextquota. Specifically, sb_dqinfo(sb, type)-\u003edqi_priv is the\ndangling pointer.\n\nDuring the remounting process, the pointer dqi_priv is freed but is never\nset as null leaving it to be accessed. Additionally, the read-only option\nfor remounting sets the DQUOT_SUSPENDED flag instead of setting the\nDQUOT_USAGE_ENABLED flags. Moreover, later in the process of getting the\nnext quota, the function ocfs2_get_next_id is called and only checks the\nquota usage flags and not the quota suspended flags.\n\nTo fix this, I set dqi_priv to null when it is freed after remounting with\nread-only and put a check for DQUOT_SUSPENDED in ocfs2_get_next_id.\n\n[akpm@linux-foundation.org: coding-style cleanups]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57892",
"url": "https://www.suse.com/security/cve/CVE-2024-57892"
},
{
"category": "external",
"summary": "SUSE Bug 1235964 for CVE-2024-57892",
"url": "https://bugzilla.suse.com/1235964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57892"
},
{
"cve": "CVE-2024-57893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: oss: Fix races at processing SysEx messages\n\nOSS sequencer handles the SysEx messages split in 6 bytes packets, and\nALSA sequencer OSS layer tries to combine those. It stores the data\nin the internal buffer and this access is racy as of now, which may\nlead to the out-of-bounds access.\n\nAs a temporary band-aid fix, introduce a mutex for serializing the\nprocess of the SysEx message packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57893",
"url": "https://www.suse.com/security/cve/CVE-2024-57893"
},
{
"category": "external",
"summary": "SUSE Bug 1235920 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "external",
"summary": "SUSE Bug 1235921 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-57893"
},
{
"cve": "CVE-2024-57896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: flush delalloc workers queue before stopping cleaner kthread during unmount\n\nDuring the unmount path, at close_ctree(), we first stop the cleaner\nkthread, using kthread_stop() which frees the associated task_struct, and\nthen stop and destroy all the work queues. However after we stopped the\ncleaner we may still have a worker from the delalloc_workers queue running\ninode.c:submit_compressed_extents(), which calls btrfs_add_delayed_iput(),\nwhich in turn tries to wake up the cleaner kthread - which was already\ndestroyed before, resulting in a use-after-free on the task_struct.\n\nSyzbot reported this with the following stack traces:\n\n BUG: KASAN: slab-use-after-free in __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n Read of size 8 at addr ffff8880259d2818 by task kworker/u8:3/52\n\n CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Workqueue: btrfs-delalloc btrfs_work_helper\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5849\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xd5/0x120 kernel/locking/spinlock.c:162\n class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:551 [inline]\n try_to_wake_up+0xc2/0x1470 kernel/sched/core.c:4205\n submit_compressed_extents+0xdf/0x16e0 fs/btrfs/inode.c:1615\n run_ordered_work fs/btrfs/async-thread.c:288 [inline]\n btrfs_work_helper+0x96f/0xc40 fs/btrfs/async-thread.c:324\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa66/0x1840 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\n Allocated by task 2:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:319 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:345\n kasan_slab_alloc include/linux/kasan.h:250 [inline]\n slab_post_alloc_hook mm/slub.c:4104 [inline]\n slab_alloc_node mm/slub.c:4153 [inline]\n kmem_cache_alloc_node_noprof+0x1d9/0x380 mm/slub.c:4205\n alloc_task_struct_node kernel/fork.c:180 [inline]\n dup_task_struct+0x57/0x8c0 kernel/fork.c:1113\n copy_process+0x5d1/0x3d50 kernel/fork.c:2225\n kernel_clone+0x223/0x870 kernel/fork.c:2807\n kernel_thread+0x1bc/0x240 kernel/fork.c:2869\n create_kthread kernel/kthread.c:412 [inline]\n kthreadd+0x60d/0x810 kernel/kthread.c:767\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\n Freed by task 24:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:582\n poison_slab_object mm/kasan/common.c:247 [inline]\n __kasan_slab_free+0x59/0x70 mm/kasan/common.c:264\n kasan_slab_free include/linux/kasan.h:233 [inline]\n slab_free_hook mm/slub.c:2338 [inline]\n slab_free mm/slub.c:4598 [inline]\n kmem_cache_free+0x195/0x410 mm/slub.c:4700\n put_task_struct include/linux/sched/task.h:144 [inline]\n delayed_put_task_struct+0x125/0x300 kernel/exit.c:227\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:554\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:943\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57896",
"url": "https://www.suse.com/security/cve/CVE-2024-57896"
},
{
"category": "external",
"summary": "SUSE Bug 1235965 for CVE-2024-57896",
"url": "https://bugzilla.suse.com/1235965"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57896"
},
{
"cve": "CVE-2024-57897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Correct the migration DMA map direction\n\nThe SVM DMA device map direction should be set the same as\nthe DMA unmap setting, otherwise the DMA core will report\nthe following warning.\n\nBefore finialize this solution, there\u0027re some discussion on\nthe DMA mapping type(stream-based or coherent) in this KFD\nmigration case, followed by https://lore.kernel.org/all/04d4ab32\n-45a1-4b88-86ee-fb0f35a0ca40@amd.com/T/.\n\nAs there\u0027s no dma_sync_single_for_*() in the DMA buffer accessed\nthat because this migration operation should be sync properly and\nautomatically. Give that there\u0027s might not be a performance problem\nin various cache sync policy of DMA sync. Therefore, in order to\nsimplify the DMA direction setting alignment, let\u0027s set the DMA map\ndirection as BIDIRECTIONAL.\n\n[ 150.834218] WARNING: CPU: 8 PID: 1812 at kernel/dma/debug.c:1028 check_unmap+0x1cc/0x930\n[ 150.834225] Modules linked in: amdgpu(OE) amdxcp drm_exec(OE) gpu_sched drm_buddy(OE) drm_ttm_helper(OE) ttm(OE) drm_suballoc_helper(OE) drm_display_helper(OE) drm_kms_helper(OE) i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc sch_fq_codel intel_rapl_msr amd_atl intel_rapl_common snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd snd_pci_acp6x snd_hda_codec snd_acp_config snd_hda_core snd_hwdep snd_soc_acpi kvm_amd sunrpc snd_pcm kvm binfmt_misc snd_seq_midi crct10dif_pclmul snd_seq_midi_event ghash_clmulni_intel sha512_ssse3 snd_rawmidi nls_iso8859_1 sha256_ssse3 sha1_ssse3 snd_seq aesni_intel snd_seq_device crypto_simd snd_timer cryptd input_leds\n[ 150.834310] wmi_bmof serio_raw k10temp rapl snd sp5100_tco ipmi_devintf soundcore ccp ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport efi_pstore drm(OE) ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 150.834354] CPU: 8 PID: 1812 Comm: rocrtst64 Tainted: G OE 6.10.0-custom #492\n[ 150.834358] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 150.834360] RIP: 0010:check_unmap+0x1cc/0x930\n[ 150.834363] Code: c0 4c 89 4d c8 e8 34 bf 86 00 4c 8b 4d c8 4c 8b 45 c0 48 8b 4d b8 48 89 c6 41 57 4c 89 ea 48 c7 c7 80 49 b4 84 e8 b4 81 f3 ff \u003c0f\u003e 0b 48 c7 c7 04 83 ac 84 e8 76 ba fc ff 41 8b 76 4c 49 8d 7e 50\n[ 150.834365] RSP: 0018:ffffaac5023739e0 EFLAGS: 00010086\n[ 150.834368] RAX: 0000000000000000 RBX: ffffffff8566a2e0 RCX: 0000000000000027\n[ 150.834370] RDX: ffff8f6a8f621688 RSI: 0000000000000001 RDI: ffff8f6a8f621680\n[ 150.834372] RBP: ffffaac502373a30 R08: 00000000000000c9 R09: ffffaac502373850\n[ 150.834373] R10: ffffaac502373848 R11: ffffffff84f46328 R12: ffffaac502373a40\n[ 150.834375] R13: ffff8f6741045330 R14: ffff8f6741a77700 R15: ffffffff84ac831b\n[ 150.834377] FS: 00007faf0fc94c00(0000) GS:ffff8f6a8f600000(0000) knlGS:0000000000000000\n[ 150.834379] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 150.834381] CR2: 00007faf0b600020 CR3: 000000010a52e000 CR4: 0000000000350ef0\n[ 150.834383] Call Trace:\n[ 150.834385] \u003cTASK\u003e\n[ 150.834387] ? show_regs+0x6d/0x80\n[ 150.834393] ? __warn+0x8c/0x140\n[ 150.834397] ? check_unmap+0x1cc/0x930\n[ 150.834400] ? report_bug+0x193/0x1a0\n[ 150.834406] ? handle_bug+0x46/0x80\n[ 150.834410] ? exc_invalid_op+0x1d/0x80\n[ 150.834413] ? asm_exc_invalid_op+0x1f/0x30\n[ 150.834420] ? check_unmap+0x1cc/0x930\n[ 150.834425] debug_dma_unmap_page+0x86/0x90\n[ 150.834431] ? srso_return_thunk+0x5/0x5f\n[ 150.834435] \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57897",
"url": "https://www.suse.com/security/cve/CVE-2024-57897"
},
{
"category": "external",
"summary": "SUSE Bug 1235969 for CVE-2024-57897",
"url": "https://bugzilla.suse.com/1235969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57897"
},
{
"cve": "CVE-2024-57899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57899"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: fix mbss changed flags corruption on 32 bit systems\n\nOn 32-bit systems, the size of an unsigned long is 4 bytes,\nwhile a u64 is 8 bytes. Therefore, when using\nor_each_set_bit(bit, \u0026bits, sizeof(changed) * BITS_PER_BYTE),\nthe code is incorrectly searching for a bit in a 32-bit\nvariable that is expected to be 64 bits in size,\nleading to incorrect bit finding.\n\nSolution: Ensure that the size of the bits variable is correctly\nadjusted for each architecture.\n\n Call Trace:\n ? show_regs+0x54/0x58\n ? __warn+0x6b/0xd4\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? report_bug+0x113/0x150\n ? exc_overflow+0x30/0x30\n ? handle_bug+0x27/0x44\n ? exc_invalid_op+0x18/0x50\n ? handle_exception+0xf6/0xf6\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? ieee80211_mesh_work+0xff/0x260 [mac80211]\n ? cfg80211_wiphy_work+0x72/0x98 [cfg80211]\n ? process_one_work+0xf1/0x1fc\n ? worker_thread+0x2c0/0x3b4\n ? kthread+0xc7/0xf0\n ? mod_delayed_work_on+0x4c/0x4c\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork+0x24/0x38\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork_asm+0xf/0x14\n ? entry_INT80_32+0xf0/0xf0\n\n[restore no-op path for no changes]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57899",
"url": "https://www.suse.com/security/cve/CVE-2024-57899"
},
{
"category": "external",
"summary": "SUSE Bug 1235924 for CVE-2024-57899",
"url": "https://bugzilla.suse.com/1235924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57899"
},
{
"cve": "CVE-2024-57903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: restrict SO_REUSEPORT to inet sockets\n\nAfter blamed commit, crypto sockets could accidentally be destroyed\nfrom RCU call back, as spotted by zyzbot [1].\n\nTrying to acquire a mutex in RCU callback is not allowed.\n\nRestrict SO_REUSEPORT socket option to inet sockets.\n\nv1 of this patch supported TCP, UDP and SCTP sockets,\nbut fcnal-test.sh test needed RAW and ICMP support.\n\n[1]\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:562\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 24, name: ksoftirqd/1\npreempt_count: 100, expected: 0\nRCU nest depth: 0, expected: 0\n1 lock held by ksoftirqd/1/24:\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_lock_acquire include/linux/rcupdate.h:337 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_do_batch kernel/rcu/tree.c:2561 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_core+0xa37/0x17a0 kernel/rcu/tree.c:2823\nPreemption disabled at:\n [\u003cffffffff8161c8c8\u003e] softirq_handle_begin kernel/softirq.c:402 [inline]\n [\u003cffffffff8161c8c8\u003e] handle_softirqs+0x128/0x9b0 kernel/softirq.c:537\nCPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.13.0-rc3-syzkaller-00174-ga024e377efed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n __might_resched+0x5d4/0x780 kernel/sched/core.c:8758\n __mutex_lock_common kernel/locking/mutex.c:562 [inline]\n __mutex_lock+0x131/0xee0 kernel/locking/mutex.c:735\n crypto_put_default_null_skcipher+0x18/0x70 crypto/crypto_null.c:179\n aead_release+0x3d/0x50 crypto/algif_aead.c:489\n alg_do_release crypto/af_alg.c:118 [inline]\n alg_sock_destruct+0x86/0xc0 crypto/af_alg.c:502\n __sk_destruct+0x58/0x5f0 net/core/sock.c:2260\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:561\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:950\n smpboot_thread_fn+0x544/0xa30 kernel/smpboot.c:164\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57903",
"url": "https://www.suse.com/security/cve/CVE-2024-57903"
},
{
"category": "external",
"summary": "SUSE Bug 1235967 for CVE-2024-57903",
"url": "https://bugzilla.suse.com/1235967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57903"
},
{
"cve": "CVE-2024-57904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: at91: call input_free_device() on allocated iio_dev\n\nCurrent implementation of at91_ts_register() calls input_free_deivce()\non st-\u003ets_input, however, the err label can be reached before the\nallocated iio_dev is stored to st-\u003ets_input. Thus call\ninput_free_device() on input instead of st-\u003ets_input.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57904",
"url": "https://www.suse.com/security/cve/CVE-2024-57904"
},
{
"category": "external",
"summary": "SUSE Bug 1236078 for CVE-2024-57904",
"url": "https://bugzilla.suse.com/1236078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57904"
},
{
"cve": "CVE-2024-57906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ti-ads8688: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57906",
"url": "https://www.suse.com/security/cve/CVE-2024-57906"
},
{
"category": "external",
"summary": "SUSE Bug 1236088 for CVE-2024-57906",
"url": "https://bugzilla.suse.com/1236088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-57906"
},
{
"cve": "CVE-2024-57907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: rockchip_saradc: fix information leak in triggered buffer\n\nThe \u0027data\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57907",
"url": "https://www.suse.com/security/cve/CVE-2024-57907"
},
{
"category": "external",
"summary": "SUSE Bug 1236090 for CVE-2024-57907",
"url": "https://bugzilla.suse.com/1236090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2024-57907"
},
{
"cve": "CVE-2024-57908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: imu: kmx61: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57908",
"url": "https://www.suse.com/security/cve/CVE-2024-57908"
},
{
"category": "external",
"summary": "SUSE Bug 1236091 for CVE-2024-57908",
"url": "https://bugzilla.suse.com/1236091"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57908"
},
{
"cve": "CVE-2024-57910",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57910"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: vcnl4035: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to userspace from a\ntriggered buffer, but it does not set an initial value for the single\ndata element, which is an u16 aligned to 8 bytes. That leaves at least\n4 bytes uninitialized even after writing an integer value with\nregmap_read().\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57910",
"url": "https://www.suse.com/security/cve/CVE-2024-57910"
},
{
"category": "external",
"summary": "SUSE Bug 1236097 for CVE-2024-57910",
"url": "https://bugzilla.suse.com/1236097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57910"
},
{
"cve": "CVE-2024-57911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer\n\nThe \u0027data\u0027 array is allocated via kmalloc() and it is used to push data\nto user space from a triggered buffer, but it does not set values for\ninactive channels, as it only uses iio_for_each_active_channel()\nto assign new values.\n\nUse kzalloc for the memory allocation to avoid pushing uninitialized\ninformation to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57911",
"url": "https://www.suse.com/security/cve/CVE-2024-57911"
},
{
"category": "external",
"summary": "SUSE Bug 1236098 for CVE-2024-57911",
"url": "https://bugzilla.suse.com/1236098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57911"
},
{
"cve": "CVE-2024-57912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: pressure: zpa2326: fix information leak in triggered buffer\n\nThe \u0027sample\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it has a hole between the temperature and the\ntimestamp (u32 pressure, u16 temperature, GAP, u64 timestamp).\nThis hole is never initialized.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57912",
"url": "https://www.suse.com/security/cve/CVE-2024-57912"
},
{
"category": "external",
"summary": "SUSE Bug 1236101 for CVE-2024-57912",
"url": "https://bugzilla.suse.com/1236101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57912"
},
{
"cve": "CVE-2024-57913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Remove WARN_ON in functionfs_bind\n\nThis commit addresses an issue related to below kernel panic where\npanic_on_warn is enabled. It is caused by the unnecessary use of WARN_ON\nin functionsfs_bind, which easily leads to the following scenarios.\n\n1.adb_write in adbd 2. UDC write via configfs\n =================\t =====================\n\n-\u003eusb_ffs_open_thread() -\u003eUDC write\n -\u003eopen_functionfs() -\u003econfigfs_write_iter()\n -\u003eadb_open() -\u003egadget_dev_desc_UDC_store()\n -\u003eadb_write() -\u003eusb_gadget_register_driver_owner\n -\u003edriver_register()\n-\u003eStartMonitor() -\u003ebus_add_driver()\n -\u003eadb_read() -\u003egadget_bind_driver()\n\u003ctimes-out without BIND event\u003e -\u003econfigfs_composite_bind()\n -\u003eusb_add_function()\n-\u003eopen_functionfs() -\u003effs_func_bind()\n -\u003eadb_open() -\u003efunctionfs_bind()\n \u003cffs-\u003estate !=FFS_ACTIVE\u003e\n\nThe adb_open, adb_read, and adb_write operations are invoked from the\ndaemon, but trying to bind the function is a process that is invoked by\nUDC write through configfs, which opens up the possibility of a race\ncondition between the two paths. In this race scenario, the kernel panic\noccurs due to the WARN_ON from functionfs_bind when panic_on_warn is\nenabled. This commit fixes the kernel panic by removing the unnecessary\nWARN_ON.\n\nKernel panic - not syncing: kernel: panic_on_warn set ...\n[ 14.542395] Call trace:\n[ 14.542464] ffs_func_bind+0x1c8/0x14a8\n[ 14.542468] usb_add_function+0xcc/0x1f0\n[ 14.542473] configfs_composite_bind+0x468/0x588\n[ 14.542478] gadget_bind_driver+0x108/0x27c\n[ 14.542483] really_probe+0x190/0x374\n[ 14.542488] __driver_probe_device+0xa0/0x12c\n[ 14.542492] driver_probe_device+0x3c/0x220\n[ 14.542498] __driver_attach+0x11c/0x1fc\n[ 14.542502] bus_for_each_dev+0x104/0x160\n[ 14.542506] driver_attach+0x24/0x34\n[ 14.542510] bus_add_driver+0x154/0x270\n[ 14.542514] driver_register+0x68/0x104\n[ 14.542518] usb_gadget_register_driver_owner+0x48/0xf4\n[ 14.542523] gadget_dev_desc_UDC_store+0xf8/0x144\n[ 14.542526] configfs_write_iter+0xf0/0x138",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57913",
"url": "https://www.suse.com/security/cve/CVE-2024-57913"
},
{
"category": "external",
"summary": "SUSE Bug 1236102 for CVE-2024-57913",
"url": "https://bugzilla.suse.com/1236102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57913"
},
{
"cve": "CVE-2024-57915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57915"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57915",
"url": "https://www.suse.com/security/cve/CVE-2024-57915"
},
{
"category": "external",
"summary": "SUSE Bug 1236120 for CVE-2024-57915",
"url": "https://bugzilla.suse.com/1236120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57915"
},
{
"cve": "CVE-2024-57916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling\n\nResolve kernel panic caused by improper handling of IRQs while\naccessing GPIO values. This is done by replacing generic_handle_irq with\nhandle_nested_irq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57916",
"url": "https://www.suse.com/security/cve/CVE-2024-57916"
},
{
"category": "external",
"summary": "SUSE Bug 1236125 for CVE-2024-57916",
"url": "https://bugzilla.suse.com/1236125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57916"
},
{
"cve": "CVE-2024-57917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57917"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntopology: Keep the cpumask unchanged when printing cpumap\n\nDuring fuzz testing, the following warning was discovered:\n\n different return values (15 and 11) from vsnprintf(\"%*pbl\n \", ...)\n\n test:keyward is WARNING in kvasprintf\n WARNING: CPU: 55 PID: 1168477 at lib/kasprintf.c:30 kvasprintf+0x121/0x130\n Call Trace:\n kvasprintf+0x121/0x130\n kasprintf+0xa6/0xe0\n bitmap_print_to_buf+0x89/0x100\n core_siblings_list_read+0x7e/0xb0\n kernfs_file_read_iter+0x15b/0x270\n new_sync_read+0x153/0x260\n vfs_read+0x215/0x290\n ksys_read+0xb9/0x160\n do_syscall_64+0x56/0x100\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe call trace shows that kvasprintf() reported this warning during the\nprinting of core_siblings_list. kvasprintf() has several steps:\n\n (1) First, calculate the length of the resulting formatted string.\n\n (2) Allocate a buffer based on the returned length.\n\n (3) Then, perform the actual string formatting.\n\n (4) Check whether the lengths of the formatted strings returned in\n steps (1) and (2) are consistent.\n\nIf the core_cpumask is modified between steps (1) and (3), the lengths\nobtained in these two steps may not match. Indeed our test includes cpu\nhotplugging, which should modify core_cpumask while printing.\n\nTo fix this issue, cache the cpumask into a temporary variable before\ncalling cpumap_print_{list, cpumask}_to_buf(), to keep it unchanged\nduring the printing process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57917",
"url": "https://www.suse.com/security/cve/CVE-2024-57917"
},
{
"category": "external",
"summary": "SUSE Bug 1236127 for CVE-2024-57917",
"url": "https://bugzilla.suse.com/1236127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57917"
},
{
"cve": "CVE-2024-57922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add check for granularity in dml ceil/floor helpers\n\n[Why]\nWrapper functions for dcn_bw_ceil2() and dcn_bw_floor2()\nshould check for granularity is non zero to avoid assert and\ndivide-by-zero error in dcn_bw_ functions.\n\n[How]\nAdd check for granularity 0.\n\n(cherry picked from commit f6e09701c3eb2ccb8cb0518e0b67f1c69742a4ec)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57922",
"url": "https://www.suse.com/security/cve/CVE-2024-57922"
},
{
"category": "external",
"summary": "SUSE Bug 1236080 for CVE-2024-57922",
"url": "https://bugzilla.suse.com/1236080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57922"
},
{
"cve": "CVE-2024-57926",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57926"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err\n\nThe pointer need to be set to NULL, otherwise KASAN complains about\nuse-after-free. Because in mtk_drm_bind, all private\u0027s drm are set\nas follows.\n\nprivate-\u003eall_drm_private[i]-\u003edrm = drm;\n\nAnd drm will be released by drm_dev_put in case mtk_drm_kms_init returns\nfailure. However, the shutdown path still accesses the previous allocated\nmemory in drm_atomic_helper_shutdown.\n\n[ 84.874820] watchdog: watchdog0: watchdog did not stop!\n[ 86.512054] ==================================================================\n[ 86.513162] BUG: KASAN: use-after-free in drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.514258] Read of size 8 at addr ffff0000d46fc068 by task shutdown/1\n[ 86.515213]\n[ 86.515455] CPU: 1 UID: 0 PID: 1 Comm: shutdown Not tainted 6.13.0-rc1-mtk+gfa1a78e5d24b-dirty #55\n[ 86.516752] Hardware name: Unknown Product/Unknown Product, BIOS 2022.10 10/01/2022\n[ 86.517960] Call trace:\n[ 86.518333] show_stack+0x20/0x38 (C)\n[ 86.518891] dump_stack_lvl+0x90/0xd0\n[ 86.519443] print_report+0xf8/0x5b0\n[ 86.519985] kasan_report+0xb4/0x100\n[ 86.520526] __asan_report_load8_noabort+0x20/0x30\n[ 86.521240] drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.521966] mtk_drm_shutdown+0x54/0x80\n[ 86.522546] platform_shutdown+0x64/0x90\n[ 86.523137] device_shutdown+0x260/0x5b8\n[ 86.523728] kernel_restart+0x78/0xf0\n[ 86.524282] __do_sys_reboot+0x258/0x2f0\n[ 86.524871] __arm64_sys_reboot+0x90/0xd8\n[ 86.525473] invoke_syscall+0x74/0x268\n[ 86.526041] el0_svc_common.constprop.0+0xb0/0x240\n[ 86.526751] do_el0_svc+0x4c/0x70\n[ 86.527251] el0_svc+0x4c/0xc0\n[ 86.527719] el0t_64_sync_handler+0x144/0x168\n[ 86.528367] el0t_64_sync+0x198/0x1a0\n[ 86.528920]\n[ 86.529157] The buggy address belongs to the physical page:\n[ 86.529972] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff0000d46fd4d0 pfn:0x1146fc\n[ 86.531319] flags: 0xbfffc0000000000(node=0|zone=2|lastcpupid=0xffff)\n[ 86.532267] raw: 0bfffc0000000000 0000000000000000 dead000000000122 0000000000000000\n[ 86.533390] raw: ffff0000d46fd4d0 0000000000000000 00000000ffffffff 0000000000000000\n[ 86.534511] page dumped because: kasan: bad access detected\n[ 86.535323]\n[ 86.535559] Memory state around the buggy address:\n[ 86.536265] ffff0000d46fbf00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.537314] ffff0000d46fbf80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.538363] \u003effff0000d46fc000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.544733] ^\n[ 86.551057] ffff0000d46fc080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.557510] ffff0000d46fc100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.563928] ==================================================================\n[ 86.571093] Disabling lock debugging due to kernel taint\n[ 86.577642] Unable to handle kernel paging request at virtual address e0e9c0920000000b\n[ 86.581834] KASAN: maybe wild-memory-access in range [0x0752049000000058-0x075204900000005f]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57926",
"url": "https://www.suse.com/security/cve/CVE-2024-57926"
},
{
"category": "external",
"summary": "SUSE Bug 1236082 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "external",
"summary": "SUSE Bug 1236084 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-57926"
},
{
"cve": "CVE-2024-57929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57929"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm array: fix releasing a faulty array block twice in dm_array_cursor_end\n\nWhen dm_bm_read_lock() fails due to locking or checksum errors, it\nreleases the faulty block implicitly while leaving an invalid output\npointer behind. The caller of dm_bm_read_lock() should not operate on\nthis invalid dm_block pointer, or it will lead to undefined result.\nFor example, the dm_array_cursor incorrectly caches the invalid pointer\non reading a faulty array block, causing a double release in\ndm_array_cursor_end(), then hitting the BUG_ON in dm-bufio cache_put().\n\nReproduce steps:\n\n1. initialize a cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. wipe the second array block offline\n\ndmsteup remove cache cmeta cdata corig\nmapping_root=$(dd if=/dev/sdc bs=1c count=8 skip=192 \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\nablock=$(dd if=/dev/sdc bs=1c count=8 skip=$((4096*mapping_root+2056)) \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\ndd if=/dev/zero of=/dev/sdc bs=4k count=1 seek=$ablock\n\n3. try reopen the cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\ndevice-mapper: array: array_block_check failed: blocknr 0 != wanted 10\ndevice-mapper: block manager: array validator check failed for block 10\ndevice-mapper: array: get_ablock failed\ndevice-mapper: cache metadata: dm_array_cursor_next for mapping failed\n------------[ cut here ]------------\nkernel BUG at drivers/md/dm-bufio.c:638!\n\nFix by setting the cached block pointer to NULL on errors.\n\nIn addition to the reproducer described above, this fix can be\nverified using the \"array_cursor/damaged\" test in dm-unit:\n dm-unit run /pdata/array_cursor/damaged --kernel-dir \u003cKERNEL_DIR\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57929",
"url": "https://www.suse.com/security/cve/CVE-2024-57929"
},
{
"category": "external",
"summary": "SUSE Bug 1236096 for CVE-2024-57929",
"url": "https://bugzilla.suse.com/1236096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57929"
},
{
"cve": "CVE-2024-57931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57931"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: ignore unknown extended permissions\n\nWhen evaluating extended permissions, ignore unknown permissions instead\nof calling BUG(). This commit ensures that future permissions can be\nadded without interfering with older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57931",
"url": "https://www.suse.com/security/cve/CVE-2024-57931"
},
{
"category": "external",
"summary": "SUSE Bug 1236192 for CVE-2024-57931",
"url": "https://bugzilla.suse.com/1236192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57931"
},
{
"cve": "CVE-2024-57932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XDP xmit NDO on existence of xdp queues\n\nIn GVE, dedicated XDP queues only exist when an XDP program is installed\nand the interface is up. As such, the NDO XDP XMIT callback should\nreturn early if either of these conditions are false.\n\nIn the case of no loaded XDP program, priv-\u003enum_xdp_queues=0 which can\ncause a divide-by-zero error, and in the case of interface down,\nnum_xdp_queues remains untouched to persist XDP queue count for the next\ninterface up, but the TX pointer itself would be NULL.\n\nThe XDP xmit callback also needs to synchronize with a device\ntransitioning from open to close. This synchronization will happen via\nthe GVE_PRIV_FLAGS_NAPI_ENABLED bit along with a synchronize_net() call,\nwhich waits for any RCU critical sections at call-time to complete.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57932",
"url": "https://www.suse.com/security/cve/CVE-2024-57932"
},
{
"category": "external",
"summary": "SUSE Bug 1236190 for CVE-2024-57932",
"url": "https://bugzilla.suse.com/1236190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57932"
},
{
"cve": "CVE-2024-57933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57933"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XSK operations on the existence of queues\n\nThis patch predicates the enabling and disabling of XSK pools on the\nexistence of queues. As it stands, if the interface is down, disabling\nor enabling XSK pools would result in a crash, as the RX queue pointer\nwould be NULL. XSK pool registration will occur as part of the next\ninterface up.\n\nSimilarly, xsk_wakeup needs be guarded against queues disappearing\nwhile the function is executing, so a check against the\nGVE_PRIV_FLAGS_NAPI_ENABLED flag is added to synchronize with the\ndisabling of the bit and the synchronize_net() in gve_turndown.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57933",
"url": "https://www.suse.com/security/cve/CVE-2024-57933"
},
{
"category": "external",
"summary": "SUSE Bug 1236178 for CVE-2024-57933",
"url": "https://bugzilla.suse.com/1236178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57933"
},
{
"cve": "CVE-2024-57935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix accessing invalid dip_ctx during destroying QP\n\nIf it fails to modify QP to RTR, dip_ctx will not be attached. And\nduring detroying QP, the invalid dip_ctx pointer will be accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57935",
"url": "https://www.suse.com/security/cve/CVE-2024-57935"
},
{
"category": "external",
"summary": "SUSE Bug 1236180 for CVE-2024-57935",
"url": "https://bugzilla.suse.com/1236180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57935"
},
{
"cve": "CVE-2024-57936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57936"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix max SGEs for the Work Request\n\nGen P7 supports up to 13 SGEs for now. WQE software structure\ncan hold only 6 now. Since the max send sge is reported as\n13, the stack can give requests up to 13 SGEs. This is causing\ntraffic failures and system crashes.\n\nUse the define for max SGE supported for variable size. This\nwill work for both static and variable WQEs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57936",
"url": "https://www.suse.com/security/cve/CVE-2024-57936"
},
{
"category": "external",
"summary": "SUSE Bug 1236181 for CVE-2024-57936",
"url": "https://bugzilla.suse.com/1236181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57936"
},
{
"cve": "CVE-2024-57938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sctp: Prevent autoclose integer overflow in sctp_association_init()\n\nWhile by default max_autoclose equals to INT_MAX / HZ, one may set\nnet.sctp.max_autoclose to UINT_MAX. There is code in\nsctp_association_init() that can consequently trigger overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57938",
"url": "https://www.suse.com/security/cve/CVE-2024-57938"
},
{
"category": "external",
"summary": "SUSE Bug 1236182 for CVE-2024-57938",
"url": "https://bugzilla.suse.com/1236182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57938"
},
{
"cve": "CVE-2024-57940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix the infinite loop in exfat_readdir()\n\nIf the file system is corrupted so that a cluster is linked to\nitself in the cluster chain, and there is an unused directory\nentry in the cluster, \u0027dentry\u0027 will not be incremented, causing\ncondition \u0027dentry \u003c max_dentries\u0027 unable to prevent an infinite\nloop.\n\nThis infinite loop causes s_lock not to be released, and other\ntasks will hang, such as exfat_sync_fs().\n\nThis commit stops traversing the cluster chain when there is unused\ndirectory entry in the cluster to avoid this infinite loop.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57940",
"url": "https://www.suse.com/security/cve/CVE-2024-57940"
},
{
"category": "external",
"summary": "SUSE Bug 1236227 for CVE-2024-57940",
"url": "https://bugzilla.suse.com/1236227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57940"
},
{
"cve": "CVE-2024-57946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-blk: don\u0027t keep queue frozen during system suspend\n\nCommit 4ce6e2db00de (\"virtio-blk: Ensure no requests in virtqueues before\ndeleting vqs.\") replaces queue quiesce with queue freeze in virtio-blk\u0027s\nPM callbacks. And the motivation is to drain inflight IOs before suspending.\n\nblock layer\u0027s queue freeze looks very handy, but it is also easy to cause\ndeadlock, such as, any attempt to call into bio_queue_enter() may run into\ndeadlock if the queue is frozen in current context. There are all kinds\nof -\u003esuspend() called in suspend context, so keeping queue frozen in the\nwhole suspend context isn\u0027t one good idea. And Marek reported lockdep\nwarning[1] caused by virtio-blk\u0027s freeze queue in virtblk_freeze().\n\n[1] https://lore.kernel.org/linux-block/ca16370e-d646-4eee-b9cc-87277c89c43c@samsung.com/\n\nGiven the motivation is to drain in-flight IOs, it can be done by calling\nfreeze \u0026 unfreeze, meantime restore to previous behavior by keeping queue\nquiesced during suspend.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57946",
"url": "https://www.suse.com/security/cve/CVE-2024-57946"
},
{
"category": "external",
"summary": "SUSE Bug 1236247 for CVE-2024-57946",
"url": "https://bugzilla.suse.com/1236247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2024-57946"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
},
{
"cve": "CVE-2025-21632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure shadow stack is active before \"getting\" registers\n\nThe x86 shadow stack support has its own set of registers. Those registers\nare XSAVE-managed, but they are \"supervisor state components\" which means\nthat userspace can not touch them with XSAVE/XRSTOR. It also means that\nthey are not accessible from the existing ptrace ABI for XSAVE state.\nThus, there is a new ptrace get/set interface for it.\n\nThe regset code that ptrace uses provides an -\u003eactive() handler in\naddition to the get/set ones. For shadow stack this -\u003eactive() handler\nverifies that shadow stack is enabled via the ARCH_SHSTK_SHSTK bit in the\nthread struct. The -\u003eactive() handler is checked from some call sites of\nthe regset get/set handlers, but not the ptrace ones. This was not\nunderstood when shadow stack support was put in place.\n\nAs a result, both the set/get handlers can be called with\nXFEATURE_CET_USER in its init state, which would cause get_xsave_addr() to\nreturn NULL and trigger a WARN_ON(). The ssp_set() handler luckily has an\nssp_active() check to avoid surprising the kernel with shadow stack\nbehavior when the kernel is not ready for it (ARCH_SHSTK_SHSTK==0). That\ncheck just happened to avoid the warning.\n\nBut the -\u003eget() side wasn\u0027t so lucky. It can be called with shadow stacks\ndisabled, triggering the warning in practice, as reported by Christina\nSchimpe:\n\nWARNING: CPU: 5 PID: 1773 at arch/x86/kernel/fpu/regset.c:198 ssp_get+0x89/0xa0\n[...]\nCall Trace:\n\u003cTASK\u003e\n? show_regs+0x6e/0x80\n? ssp_get+0x89/0xa0\n? __warn+0x91/0x150\n? ssp_get+0x89/0xa0\n? report_bug+0x19d/0x1b0\n? handle_bug+0x46/0x80\n? exc_invalid_op+0x1d/0x80\n? asm_exc_invalid_op+0x1f/0x30\n? __pfx_ssp_get+0x10/0x10\n? ssp_get+0x89/0xa0\n? ssp_get+0x52/0xa0\n__regset_get+0xad/0xf0\ncopy_regset_to_user+0x52/0xc0\nptrace_regset+0x119/0x140\nptrace_request+0x13c/0x850\n? wait_task_inactive+0x142/0x1d0\n? do_syscall_64+0x6d/0x90\narch_ptrace+0x102/0x300\n[...]\n\nEnsure that shadow stacks are active in a thread before looking them up\nin the XSAVE buffer. Since ARCH_SHSTK_SHSTK and user_ssp[SHSTK_EN] are\nset at the same time, the active check ensures that there will be\nsomething to find in the XSAVE buffer.\n\n[ dhansen: changelog/subject tweaks ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21632",
"url": "https://www.suse.com/security/cve/CVE-2025-21632"
},
{
"category": "external",
"summary": "SUSE Bug 1236106 for CVE-2025-21632",
"url": "https://bugzilla.suse.com/1236106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21632"
},
{
"cve": "CVE-2025-21645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it\n\nWakeup for IRQ1 should be disabled only in cases where i8042 had\nactually enabled it, otherwise \"wake_depth\" for this IRQ will try to\ndrop below zero and there will be an unpleasant WARN() logged:\n\nkernel: atkbd serio0: Disabling IRQ1 wakeup source to avoid platform firmware bug\nkernel: ------------[ cut here ]------------\nkernel: Unbalanced IRQ 1 wake disable\nkernel: WARNING: CPU: 10 PID: 6431 at kernel/irq/manage.c:920 irq_set_irq_wake+0x147/0x1a0\n\nThe PMC driver uses DEFINE_SIMPLE_DEV_PM_OPS() to define its dev_pm_ops\nwhich sets amd_pmc_suspend_handler() to the .suspend, .freeze, and\n.poweroff handlers. i8042_pm_suspend(), however, is only set as\nthe .suspend handler.\n\nFix the issue by call PMC suspend handler only from the same set of\ndev_pm_ops handlers as i8042_pm_suspend(), which currently means just\nthe .suspend handler.\n\nTo reproduce this issue try hibernating (S4) the machine after a fresh boot\nwithout putting it into s2idle first.\n\n[ij: edited the commit message.]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21645",
"url": "https://www.suse.com/security/cve/CVE-2025-21645"
},
{
"category": "external",
"summary": "SUSE Bug 1236131 for CVE-2025-21645",
"url": "https://bugzilla.suse.com/1236131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21645"
},
{
"cve": "CVE-2025-21646",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21646"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix the maximum cell name length\n\nThe kafs filesystem limits the maximum length of a cell to 256 bytes, but a\nproblem occurs if someone actually does that: kafs tries to create a\ndirectory under /proc/net/afs/ with the name of the cell, but that fails\nwith a warning:\n\n WARNING: CPU: 0 PID: 9 at fs/proc/generic.c:405\n\nbecause procfs limits the maximum filename length to 255.\n\nHowever, the DNS limits the maximum lookup length and, by extension, the\nmaximum cell name, to 255 less two (length count and trailing NUL).\n\nFix this by limiting the maximum acceptable cellname length to 253. This\nalso allows us to be sure we can create the \"/afs/.\u003ccell\u003e/\" mountpoint too.\n\nFurther, split the YFS VL record cell name maximum to be the 256 allowed by\nthe protocol and ignore the record retrieved by YFSVL.GetCellName if it\nexceeds 253.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21646",
"url": "https://www.suse.com/security/cve/CVE-2025-21646"
},
{
"category": "external",
"summary": "SUSE Bug 1236168 for CVE-2025-21646",
"url": "https://bugzilla.suse.com/1236168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21646"
},
{
"cve": "CVE-2025-21649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when 1588 is sent on HIP08 devices\n\nCurrently, HIP08 devices does not register the ptp devices, so the\nhdev-\u003eptp is NULL. But the tx process would still try to set hardware time\nstamp info with SKBTX_HW_TSTAMP flag and cause a kernel crash.\n\n[ 128.087798] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n...\n[ 128.280251] pc : hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.286600] lr : hclge_ptp_set_tx_info+0x20/0x140 [hclge]\n[ 128.292938] sp : ffff800059b93140\n[ 128.297200] x29: ffff800059b93140 x28: 0000000000003280\n[ 128.303455] x27: ffff800020d48280 x26: ffff0cb9dc814080\n[ 128.309715] x25: ffff0cb9cde93fa0 x24: 0000000000000001\n[ 128.315969] x23: 0000000000000000 x22: 0000000000000194\n[ 128.322219] x21: ffff0cd94f986000 x20: 0000000000000000\n[ 128.328462] x19: ffff0cb9d2a166c0 x18: 0000000000000000\n[ 128.334698] x17: 0000000000000000 x16: ffffcf1fc523ed24\n[ 128.340934] x15: 0000ffffd530a518 x14: 0000000000000000\n[ 128.347162] x13: ffff0cd6bdb31310 x12: 0000000000000368\n[ 128.353388] x11: ffff0cb9cfbc7070 x10: ffff2cf55dd11e02\n[ 128.359606] x9 : ffffcf1f85a212b4 x8 : ffff0cd7cf27dab0\n[ 128.365831] x7 : 0000000000000a20 x6 : ffff0cd7cf27d000\n[ 128.372040] x5 : 0000000000000000 x4 : 000000000000ffff\n[ 128.378243] x3 : 0000000000000400 x2 : ffffcf1f85a21294\n[ 128.384437] x1 : ffff0cb9db520080 x0 : ffff0cb9db500080\n[ 128.390626] Call trace:\n[ 128.393964] hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.399893] hns3_nic_net_xmit+0x39c/0x4c4 [hns3]\n[ 128.405468] xmit_one.constprop.0+0xc4/0x200\n[ 128.410600] dev_hard_start_xmit+0x54/0xf0\n[ 128.415556] sch_direct_xmit+0xe8/0x634\n[ 128.420246] __dev_queue_xmit+0x224/0xc70\n[ 128.425101] dev_queue_xmit+0x1c/0x40\n[ 128.429608] ovs_vport_send+0xac/0x1a0 [openvswitch]\n[ 128.435409] do_output+0x60/0x17c [openvswitch]\n[ 128.440770] do_execute_actions+0x898/0x8c4 [openvswitch]\n[ 128.446993] ovs_execute_actions+0x64/0xf0 [openvswitch]\n[ 128.453129] ovs_dp_process_packet+0xa0/0x224 [openvswitch]\n[ 128.459530] ovs_vport_receive+0x7c/0xfc [openvswitch]\n[ 128.465497] internal_dev_xmit+0x34/0xb0 [openvswitch]\n[ 128.471460] xmit_one.constprop.0+0xc4/0x200\n[ 128.476561] dev_hard_start_xmit+0x54/0xf0\n[ 128.481489] __dev_queue_xmit+0x968/0xc70\n[ 128.486330] dev_queue_xmit+0x1c/0x40\n[ 128.490856] ip_finish_output2+0x250/0x570\n[ 128.495810] __ip_finish_output+0x170/0x1e0\n[ 128.500832] ip_finish_output+0x3c/0xf0\n[ 128.505504] ip_output+0xbc/0x160\n[ 128.509654] ip_send_skb+0x58/0xd4\n[ 128.513892] udp_send_skb+0x12c/0x354\n[ 128.518387] udp_sendmsg+0x7a8/0x9c0\n[ 128.522793] inet_sendmsg+0x4c/0x8c\n[ 128.527116] __sock_sendmsg+0x48/0x80\n[ 128.531609] __sys_sendto+0x124/0x164\n[ 128.536099] __arm64_sys_sendto+0x30/0x5c\n[ 128.540935] invoke_syscall+0x50/0x130\n[ 128.545508] el0_svc_common.constprop.0+0x10c/0x124\n[ 128.551205] do_el0_svc+0x34/0xdc\n[ 128.555347] el0_svc+0x20/0x30\n[ 128.559227] el0_sync_handler+0xb8/0xc0\n[ 128.563883] el0_sync+0x160/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21649",
"url": "https://www.suse.com/security/cve/CVE-2025-21649"
},
{
"category": "external",
"summary": "SUSE Bug 1236143 for CVE-2025-21649",
"url": "https://bugzilla.suse.com/1236143"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21649"
},
{
"cve": "CVE-2025-21650",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21650"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue\n\nThe TQP BAR space is divided into two segments. TQPs 0-1023 and TQPs\n1024-1279 are in different BAR space addresses. However,\nhclge_fetch_pf_reg does not distinguish the tqp space information when\nreading the tqp space information. When the number of TQPs is greater\nthan 1024, access bar space overwriting occurs.\nThe problem of different segments has been considered during the\ninitialization of tqp.io_base. Therefore, tqp.io_base is directly used\nwhen the queue is read in hclge_fetch_pf_reg.\n\nThe error message:\n\nUnable to handle kernel paging request at virtual address ffff800037200000\npc : hclge_fetch_pf_reg+0x138/0x250 [hclge]\nlr : hclge_get_regs+0x84/0x1d0 [hclge]\nCall trace:\n hclge_fetch_pf_reg+0x138/0x250 [hclge]\n hclge_get_regs+0x84/0x1d0 [hclge]\n hns3_get_regs+0x2c/0x50 [hns3]\n ethtool_get_regs+0xf4/0x270\n dev_ethtool+0x674/0x8a0\n dev_ioctl+0x270/0x36c\n sock_do_ioctl+0x110/0x2a0\n sock_ioctl+0x2ac/0x530\n __arm64_sys_ioctl+0xa8/0x100\n invoke_syscall+0x4c/0x124\n el0_svc_common.constprop.0+0x140/0x15c\n do_el0_svc+0x30/0xd0\n el0_svc+0x1c/0x2c\n el0_sync_handler+0xb0/0xb4\n el0_sync+0x168/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21650",
"url": "https://www.suse.com/security/cve/CVE-2025-21650"
},
{
"category": "external",
"summary": "SUSE Bug 1236144 for CVE-2025-21650",
"url": "https://bugzilla.suse.com/1236144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21650"
},
{
"cve": "CVE-2025-21651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: don\u0027t auto enable misc vector\n\nCurrently, there is a time window between misc irq enabled\nand service task inited. If an interrupte is reported at\nthis time, it will cause warning like below:\n\n[ 16.324639] Call trace:\n[ 16.324641] __queue_delayed_work+0xb8/0xe0\n[ 16.324643] mod_delayed_work_on+0x78/0xd0\n[ 16.324655] hclge_errhand_task_schedule+0x58/0x90 [hclge]\n[ 16.324662] hclge_misc_irq_handle+0x168/0x240 [hclge]\n[ 16.324666] __handle_irq_event_percpu+0x64/0x1e0\n[ 16.324667] handle_irq_event+0x80/0x170\n[ 16.324670] handle_fasteoi_edge_irq+0x110/0x2bc\n[ 16.324671] __handle_domain_irq+0x84/0xfc\n[ 16.324673] gic_handle_irq+0x88/0x2c0\n[ 16.324674] el1_irq+0xb8/0x140\n[ 16.324677] arch_cpu_idle+0x18/0x40\n[ 16.324679] default_idle_call+0x5c/0x1bc\n[ 16.324682] cpuidle_idle_call+0x18c/0x1c4\n[ 16.324684] do_idle+0x174/0x17c\n[ 16.324685] cpu_startup_entry+0x30/0x6c\n[ 16.324687] secondary_start_kernel+0x1a4/0x280\n[ 16.324688] ---[ end trace 6aa0bff672a964aa ]---\n\nSo don\u0027t auto enable misc vector when request irq..",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21651",
"url": "https://www.suse.com/security/cve/CVE-2025-21651"
},
{
"category": "external",
"summary": "SUSE Bug 1236145 for CVE-2025-21651",
"url": "https://bugzilla.suse.com/1236145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21651"
},
{
"cve": "CVE-2025-21652",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21652"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvlan: Fix use-after-free in ipvlan_get_iflink().\n\nsyzbot presented an use-after-free report [0] regarding ipvlan and\nlinkwatch.\n\nipvlan does not hold a refcnt of the lower device unlike vlan and\nmacvlan.\n\nIf the linkwatch work is triggered for the ipvlan dev, the lower dev\nmight have already been freed, resulting in UAF of ipvlan-\u003ephy_dev in\nipvlan_get_iflink().\n\nWe can delay the lower dev unregistration like vlan and macvlan by\nholding the lower dev\u0027s refcnt in dev-\u003enetdev_ops-\u003endo_init() and\nreleasing it in dev-\u003epriv_destructor().\n\nJakub pointed out calling .ndo_XXX after unregister_netdevice() has\nreturned is error prone and suggested [1] addressing this UAF in the\ncore by taking commit 750e51603395 (\"net: avoid potential UAF in\ndefault_operstate()\") further.\n\nLet\u0027s assume unregistering devices DOWN and use RCU protection in\ndefault_operstate() not to race with the device unregistration.\n\n[0]:\nBUG: KASAN: slab-use-after-free in ipvlan_get_iflink+0x84/0x88 drivers/net/ipvlan/ipvlan_main.c:353\nRead of size 4 at addr ffff0000d768c0e0 by task kworker/u8:35/6944\n\nCPU: 0 UID: 0 PID: 6944 Comm: kworker/u8:35 Not tainted 6.13.0-rc2-g9bc5c9515b48 #12 4c3cb9e8b4565456f6a355f312ff91f4f29b3c47\nHardware name: linux,dummy-virt (DT)\nWorkqueue: events_unbound linkwatch_event\nCall trace:\n show_stack+0x38/0x50 arch/arm64/kernel/stacktrace.c:484 (C)\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0xbc/0x108 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x16c/0x6f0 mm/kasan/report.c:489\n kasan_report+0xc0/0x120 mm/kasan/report.c:602\n __asan_report_load4_noabort+0x20/0x30 mm/kasan/report_generic.c:380\n ipvlan_get_iflink+0x84/0x88 drivers/net/ipvlan/ipvlan_main.c:353\n dev_get_iflink+0x7c/0xd8 net/core/dev.c:674\n default_operstate net/core/link_watch.c:45 [inline]\n rfc2863_policy+0x144/0x360 net/core/link_watch.c:72\n linkwatch_do_dev+0x60/0x228 net/core/link_watch.c:175\n __linkwatch_run_queue+0x2f4/0x5b8 net/core/link_watch.c:239\n linkwatch_event+0x64/0xa8 net/core/link_watch.c:282\n process_one_work+0x700/0x1398 kernel/workqueue.c:3229\n process_scheduled_works kernel/workqueue.c:3310 [inline]\n worker_thread+0x8c4/0xe10 kernel/workqueue.c:3391\n kthread+0x2b0/0x360 kernel/kthread.c:389\n ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862\n\nAllocated by task 9303:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x68 mm/kasan/common.c:68\n kasan_save_alloc_info+0x44/0x58 mm/kasan/generic.c:568\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0x84/0xa0 mm/kasan/common.c:394\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __do_kmalloc_node mm/slub.c:4283 [inline]\n __kmalloc_node_noprof+0x2a0/0x560 mm/slub.c:4289\n __kvmalloc_node_noprof+0x9c/0x230 mm/util.c:650\n alloc_netdev_mqs+0xb4/0x1118 net/core/dev.c:11209\n rtnl_create_link+0x2b8/0xb60 net/core/rtnetlink.c:3595\n rtnl_newlink_create+0x19c/0x868 net/core/rtnetlink.c:3771\n __rtnl_newlink net/core/rtnetlink.c:3896 [inline]\n rtnl_newlink+0x122c/0x15c0 net/core/rtnetlink.c:4011\n rtnetlink_rcv_msg+0x61c/0x918 net/core/rtnetlink.c:6901\n netlink_rcv_skb+0x1dc/0x398 net/netlink/af_netlink.c:2542\n rtnetlink_rcv+0x34/0x50 net/core/rtnetlink.c:6928\n netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]\n netlink_unicast+0x618/0x838 net/netlink/af_netlink.c:1347\n netlink_sendmsg+0x5fc/0x8b0 net/netlink/af_netlink.c:1891\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg net/socket.c:726 [inline]\n __sys_sendto+0x2ec/0x438 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __arm64_sys_sendto+0xe4/0x110 net/socket.c:2200\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x90/0x278 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x13c/0x250 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x54/0x70 arch/arm64/kernel/syscall.c:151\n el\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21652",
"url": "https://www.suse.com/security/cve/CVE-2025-21652"
},
{
"category": "external",
"summary": "SUSE Bug 1236160 for CVE-2025-21652",
"url": "https://bugzilla.suse.com/1236160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21652"
},
{
"cve": "CVE-2025-21653",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21653"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute\n\nsyzbot found that TCA_FLOW_RSHIFT attribute was not validated.\nRight shitfing a 32bit integer is undefined for large shift values.\n\nUBSAN: shift-out-of-bounds in net/sched/cls_flow.c:329:23\nshift exponent 9445 is too large for 32-bit type \u0027u32\u0027 (aka \u0027unsigned int\u0027)\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u8:3 Not tainted 6.13.0-rc3-syzkaller-00180-g4f619d518db9 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: ipv6_addrconf addrconf_dad_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n ubsan_epilogue lib/ubsan.c:231 [inline]\n __ubsan_handle_shift_out_of_bounds+0x3c8/0x420 lib/ubsan.c:468\n flow_classify+0x24d5/0x25b0 net/sched/cls_flow.c:329\n tc_classify include/net/tc_wrapper.h:197 [inline]\n __tcf_classify net/sched/cls_api.c:1771 [inline]\n tcf_classify+0x420/0x1160 net/sched/cls_api.c:1867\n sfb_classify net/sched/sch_sfb.c:260 [inline]\n sfb_enqueue+0x3ad/0x18b0 net/sched/sch_sfb.c:318\n dev_qdisc_enqueue+0x4b/0x290 net/core/dev.c:3793\n __dev_xmit_skb net/core/dev.c:3889 [inline]\n __dev_queue_xmit+0xf0e/0x3f50 net/core/dev.c:4400\n dev_queue_xmit include/linux/netdevice.h:3168 [inline]\n neigh_hh_output include/net/neighbour.h:523 [inline]\n neigh_output include/net/neighbour.h:537 [inline]\n ip_finish_output2+0xd41/0x1390 net/ipv4/ip_output.c:236\n iptunnel_xmit+0x55d/0x9b0 net/ipv4/ip_tunnel_core.c:82\n udp_tunnel_xmit_skb+0x262/0x3b0 net/ipv4/udp_tunnel_core.c:173\n geneve_xmit_skb drivers/net/geneve.c:916 [inline]\n geneve_xmit+0x21dc/0x2d00 drivers/net/geneve.c:1039\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n xmit_one net/core/dev.c:3590 [inline]\n dev_hard_start_xmit+0x27a/0x7d0 net/core/dev.c:3606\n __dev_queue_xmit+0x1b73/0x3f50 net/core/dev.c:4434",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21653",
"url": "https://www.suse.com/security/cve/CVE-2025-21653"
},
{
"category": "external",
"summary": "SUSE Bug 1236161 for CVE-2025-21653",
"url": "https://bugzilla.suse.com/1236161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21653"
},
{
"cve": "CVE-2025-21655",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21655"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/eventfd: ensure io_eventfd_signal() defers another RCU period\n\nio_eventfd_do_signal() is invoked from an RCU callback, but when\ndropping the reference to the io_ev_fd, it calls io_eventfd_free()\ndirectly if the refcount drops to zero. This isn\u0027t correct, as any\npotential freeing of the io_ev_fd should be deferred another RCU grace\nperiod.\n\nJust call io_eventfd_put() rather than open-code the dec-and-test and\nfree, which will correctly defer it another RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21655",
"url": "https://www.suse.com/security/cve/CVE-2025-21655"
},
{
"category": "external",
"summary": "SUSE Bug 1236163 for CVE-2025-21655",
"url": "https://bugzilla.suse.com/1236163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21655"
},
{
"cve": "CVE-2025-21656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur\n\nscsi_execute_cmd() function can return both negative (linux codes) and\npositive (scsi_cmnd result field) error codes.\n\nCurrently the driver just passes error codes of scsi_execute_cmd() to\nhwmon core, which is incorrect because hwmon only checks for negative\nerror codes. This leads to hwmon reporting uninitialized data to\nuserspace in case of SCSI errors (for example if the disk drive was\ndisconnected).\n\nThis patch checks scsi_execute_cmd() output and returns -EIO if it\u0027s\nerror code is positive.\n\n[groeck: Avoid inline variable declaration for portability]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21656",
"url": "https://www.suse.com/security/cve/CVE-2025-21656"
},
{
"category": "external",
"summary": "SUSE Bug 1236248 for CVE-2025-21656",
"url": "https://bugzilla.suse.com/1236248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "low"
}
],
"title": "CVE-2025-21656"
},
{
"cve": "CVE-2025-21662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix variable not being completed when function returns\n\nWhen cmd_alloc_index(), fails cmd_work_handler() needs\nto complete ent-\u003eslotted before returning early.\nOtherwise the task which issued the command may hang:\n\n mlx5_core 0000:01:00.0: cmd_work_handler:877:(pid 3880418): failed to allocate command entry\n INFO: task kworker/13:2:4055883 blocked for more than 120 seconds.\n Not tainted 4.19.90-25.44.v2101.ky10.aarch64 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n kworker/13:2 D 0 4055883 2 0x00000228\n Workqueue: events mlx5e_tx_dim_work [mlx5_core]\n Call trace:\n __switch_to+0xe8/0x150\n __schedule+0x2a8/0x9b8\n schedule+0x2c/0x88\n schedule_timeout+0x204/0x478\n wait_for_common+0x154/0x250\n wait_for_completion+0x28/0x38\n cmd_exec+0x7a0/0xa00 [mlx5_core]\n mlx5_cmd_exec+0x54/0x80 [mlx5_core]\n mlx5_core_modify_cq+0x6c/0x80 [mlx5_core]\n mlx5_core_modify_cq_moderation+0xa0/0xb8 [mlx5_core]\n mlx5e_tx_dim_work+0x54/0x68 [mlx5_core]\n process_one_work+0x1b0/0x448\n worker_thread+0x54/0x468\n kthread+0x134/0x138\n ret_from_fork+0x10/0x18",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21662",
"url": "https://www.suse.com/security/cve/CVE-2025-21662"
},
{
"category": "external",
"summary": "SUSE Bug 1236198 for CVE-2025-21662",
"url": "https://bugzilla.suse.com/1236198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21662"
},
{
"cve": "CVE-2025-21663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: dwmac-tegra: Read iommu stream id from device tree\n\nNvidia\u0027s Tegra MGBE controllers require the IOMMU \"Stream ID\" (SID) to be\nwritten to the MGBE_WRAP_AXI_ASID0_CTRL register.\n\nThe current driver is hard coded to use MGBE0\u0027s SID for all controllers.\nThis causes softirq time outs and kernel panics when using controllers\nother than MGBE0.\n\nExample dmesg errors when an ethernet cable is connected to MGBE1:\n\n[ 116.133290] tegra-mgbe 6910000.ethernet eth1: Link is Up - 1Gbps/Full - flow control rx/tx\n[ 121.851283] tegra-mgbe 6910000.ethernet eth1: NETDEV WATCHDOG: CPU: 5: transmit queue 0 timed out 5690 ms\n[ 121.851782] tegra-mgbe 6910000.ethernet eth1: Reset adapter.\n[ 121.892464] tegra-mgbe 6910000.ethernet eth1: Register MEM_TYPE_PAGE_POOL RxQ-0\n[ 121.905920] tegra-mgbe 6910000.ethernet eth1: PHY [stmmac-1:00] driver [Aquantia AQR113] (irq=171)\n[ 121.907356] tegra-mgbe 6910000.ethernet eth1: Enabling Safety Features\n[ 121.907578] tegra-mgbe 6910000.ethernet eth1: IEEE 1588-2008 Advanced Timestamp supported\n[ 121.908399] tegra-mgbe 6910000.ethernet eth1: registered PTP clock\n[ 121.908582] tegra-mgbe 6910000.ethernet eth1: configuring for phy/10gbase-r link mode\n[ 125.961292] tegra-mgbe 6910000.ethernet eth1: Link is Up - 1Gbps/Full - flow control rx/tx\n[ 181.921198] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:\n[ 181.921404] rcu: \t7-....: (1 GPs behind) idle=540c/1/0x4000000000000002 softirq=1748/1749 fqs=2337\n[ 181.921684] rcu: \t(detected by 4, t=6002 jiffies, g=1357, q=1254 ncpus=8)\n[ 181.921878] Sending NMI from CPU 4 to CPUs 7:\n[ 181.921886] NMI backtrace for cpu 7\n[ 181.922131] CPU: 7 UID: 0 PID: 0 Comm: swapper/7 Kdump: loaded Not tainted 6.13.0-rc3+ #6\n[ 181.922390] Hardware name: NVIDIA CTI Forge + Orin AGX/Jetson, BIOS 202402.1-Unknown 10/28/2024\n[ 181.922658] pstate: 40400009 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 181.922847] pc : handle_softirqs+0x98/0x368\n[ 181.922978] lr : __do_softirq+0x18/0x20\n[ 181.923095] sp : ffff80008003bf50\n[ 181.923189] x29: ffff80008003bf50 x28: 0000000000000008 x27: 0000000000000000\n[ 181.923379] x26: ffffce78ea277000 x25: 0000000000000000 x24: 0000001c61befda0\n[ 181.924486] x23: 0000000060400009 x22: ffffce78e99918bc x21: ffff80008018bd70\n[ 181.925568] x20: ffffce78e8bb00d8 x19: ffff80008018bc20 x18: 0000000000000000\n[ 181.926655] x17: ffff318ebe7d3000 x16: ffff800080038000 x15: 0000000000000000\n[ 181.931455] x14: ffff000080816680 x13: ffff318ebe7d3000 x12: 000000003464d91d\n[ 181.938628] x11: 0000000000000040 x10: ffff000080165a70 x9 : ffffce78e8bb0160\n[ 181.945804] x8 : ffff8000827b3160 x7 : f9157b241586f343 x6 : eeb6502a01c81c74\n[ 181.953068] x5 : a4acfcdd2e8096bb x4 : ffffce78ea277340 x3 : 00000000ffffd1e1\n[ 181.960329] x2 : 0000000000000101 x1 : ffffce78ea277340 x0 : ffff318ebe7d3000\n[ 181.967591] Call trace:\n[ 181.970043] handle_softirqs+0x98/0x368 (P)\n[ 181.974240] __do_softirq+0x18/0x20\n[ 181.977743] ____do_softirq+0x14/0x28\n[ 181.981415] call_on_irq_stack+0x24/0x30\n[ 181.985180] do_softirq_own_stack+0x20/0x30\n[ 181.989379] __irq_exit_rcu+0x114/0x140\n[ 181.993142] irq_exit_rcu+0x14/0x28\n[ 181.996816] el1_interrupt+0x44/0xb8\n[ 182.000316] el1h_64_irq_handler+0x14/0x20\n[ 182.004343] el1h_64_irq+0x80/0x88\n[ 182.007755] cpuidle_enter_state+0xc4/0x4a8 (P)\n[ 182.012305] cpuidle_enter+0x3c/0x58\n[ 182.015980] cpuidle_idle_call+0x128/0x1c0\n[ 182.020005] do_idle+0xe0/0xf0\n[ 182.023155] cpu_startup_entry+0x3c/0x48\n[ 182.026917] secondary_start_kernel+0xdc/0x120\n[ 182.031379] __secondary_switched+0x74/0x78\n[ 212.971162] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 7-.... } 6103 jiffies s: 417 root: 0x80/.\n[ 212.985935] rcu: blocking rcu_node structures (internal RCU debug):\n[ 212.992758] Sending NMI from CPU 0 to CPUs 7:\n[ 212.998539] NMI backtrace for cpu 7\n[ 213.004304] CPU: 7 UID: 0 PI\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21663",
"url": "https://www.suse.com/security/cve/CVE-2025-21663"
},
{
"category": "external",
"summary": "SUSE Bug 1236260 for CVE-2025-21663",
"url": "https://bugzilla.suse.com/1236260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21663"
},
{
"cve": "CVE-2025-21664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm thin: make get_first_thin use rcu-safe list first function\n\nThe documentation in rculist.h explains the absence of list_empty_rcu()\nand cautions programmers against relying on a list_empty() -\u003e\nlist_first() sequence in RCU safe code. This is because each of these\nfunctions performs its own READ_ONCE() of the list head. This can lead\nto a situation where the list_empty() sees a valid list entry, but the\nsubsequent list_first() sees a different view of list head state after a\nmodification.\n\nIn the case of dm-thin, this author had a production box crash from a GP\nfault in the process_deferred_bios path. This function saw a valid list\nhead in get_first_thin() but when it subsequently dereferenced that and\nturned it into a thin_c, it got the inside of the struct pool, since the\nlist was now empty and referring to itself. The kernel on which this\noccurred printed both a warning about a refcount_t being saturated, and\na UBSAN error for an out-of-bounds cpuid access in the queued spinlock,\nprior to the fault itself. When the resulting kdump was examined, it\nwas possible to see another thread patiently waiting in thin_dtr\u0027s\nsynchronize_rcu.\n\nThe thin_dtr call managed to pull the thin_c out of the active thins\nlist (and have it be the last entry in the active_thins list) at just\nthe wrong moment which lead to this crash.\n\nFortunately, the fix here is straight forward. Switch get_first_thin()\nfunction to use list_first_or_null_rcu() which performs just a single\nREAD_ONCE() and returns NULL if the list is already empty.\n\nThis was run against the devicemapper test suite\u0027s thin-provisioning\nsuites for delete and suspend and no regressions were observed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21664",
"url": "https://www.suse.com/security/cve/CVE-2025-21664"
},
{
"category": "external",
"summary": "SUSE Bug 1236262 for CVE-2025-21664",
"url": "https://bugzilla.suse.com/1236262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21664"
},
{
"cve": "CVE-2025-21674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel\n\nAttempt to enable IPsec packet offload in tunnel mode in debug kernel\ngenerates the following kernel panic, which is happening due to two\nissues:\n1. In SA add section, the should be _bh() variant when marking SA mode.\n2. There is not needed flush_workqueue in SA delete routine. It is not\nneeded as at this stage as it is removed from SADB and the running work\nwill be canceled later in SA free.\n\n =====================================================\n WARNING: SOFTIRQ-safe -\u003e SOFTIRQ-unsafe lock order detected\n 6.12.0+ #4 Not tainted\n -----------------------------------------------------\n charon/1337 [HC0[0]:SC0[4]:HE1:SE0] is trying to acquire:\n ffff88810f365020 (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}, at: mlx5e_xfrm_del_state+0xca/0x1e0 [mlx5_core]\n\n and this task is already holding:\n ffff88813e0f0d48 (\u0026x-\u003elock){+.-.}-{3:3}, at: xfrm_state_delete+0x16/0x30\n which would create a new lock dependency:\n (\u0026x-\u003elock){+.-.}-{3:3} -\u003e (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}\n\n but this new dependency connects a SOFTIRQ-irq-safe lock:\n (\u0026x-\u003elock){+.-.}-{3:3}\n\n ... which became SOFTIRQ-irq-safe at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_timer_handler+0x91/0xd70\n __hrtimer_run_queues+0x1dd/0xa60\n hrtimer_run_softirq+0x146/0x2e0\n handle_softirqs+0x266/0x860\n irq_exit_rcu+0x115/0x1a0\n sysvec_apic_timer_interrupt+0x6e/0x90\n asm_sysvec_apic_timer_interrupt+0x16/0x20\n default_idle+0x13/0x20\n default_idle_call+0x67/0xa0\n do_idle+0x2da/0x320\n cpu_startup_entry+0x50/0x60\n start_secondary+0x213/0x2a0\n common_startup_64+0x129/0x138\n\n to a SOFTIRQ-irq-unsafe lock:\n (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}\n\n ... which became SOFTIRQ-irq-unsafe at:\n ...\n lock_acquire+0x1be/0x520\n _raw_spin_lock+0x2c/0x40\n xa_set_mark+0x70/0x110\n mlx5e_xfrm_add_state+0xe48/0x2290 [mlx5_core]\n xfrm_dev_state_add+0x3bb/0xd70\n xfrm_add_sa+0x2451/0x4a90\n xfrm_user_rcv_msg+0x493/0x880\n netlink_rcv_skb+0x12e/0x380\n xfrm_netlink_rcv+0x6d/0x90\n netlink_unicast+0x42f/0x740\n netlink_sendmsg+0x745/0xbe0\n __sock_sendmsg+0xc5/0x190\n __sys_sendto+0x1fe/0x2c0\n __x64_sys_sendto+0xdc/0x1b0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n other info that might help us debug this:\n\n Possible interrupt unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026xa-\u003exa_lock#24);\n local_irq_disable();\n lock(\u0026x-\u003elock);\n lock(\u0026xa-\u003exa_lock#24);\n \u003cInterrupt\u003e\n lock(\u0026x-\u003elock);\n\n *** DEADLOCK ***\n\n 2 locks held by charon/1337:\n #0: ffffffff87f8f858 (\u0026net-\u003exfrm.xfrm_cfg_mutex){+.+.}-{4:4}, at: xfrm_netlink_rcv+0x5e/0x90\n #1: ffff88813e0f0d48 (\u0026x-\u003elock){+.-.}-{3:3}, at: xfrm_state_delete+0x16/0x30\n\n the dependencies between SOFTIRQ-irq-safe lock and the holding lock:\n -\u003e (\u0026x-\u003elock){+.-.}-{3:3} ops: 29 {\n HARDIRQ-ON-W at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_alloc_spi+0xc0/0xe60\n xfrm_alloc_userspi+0x5f6/0xbc0\n xfrm_user_rcv_msg+0x493/0x880\n netlink_rcv_skb+0x12e/0x380\n xfrm_netlink_rcv+0x6d/0x90\n netlink_unicast+0x42f/0x740\n netlink_sendmsg+0x745/0xbe0\n __sock_sendmsg+0xc5/0x190\n __sys_sendto+0x1fe/0x2c0\n __x64_sys_sendto+0xdc/0x1b0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n IN-SOFTIRQ-W at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_timer_handler+0x91/0xd70\n __hrtimer_run_queues+0x1dd/0xa60\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21674",
"url": "https://www.suse.com/security/cve/CVE-2025-21674"
},
{
"category": "external",
"summary": "SUSE Bug 1236688 for CVE-2025-21674",
"url": "https://bugzilla.suse.com/1236688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21674"
},
{
"cve": "CVE-2025-21676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fec: handle page_pool_dev_alloc_pages error\n\nThe fec_enet_update_cbd function calls page_pool_dev_alloc_pages but did\nnot handle the case when it returned NULL. There was a WARN_ON(!new_page)\nbut it would still proceed to use the NULL pointer and then crash.\n\nThis case does seem somewhat rare but when the system is under memory\npressure it can happen. One case where I can duplicate this with some\nfrequency is when writing over a smbd share to a SATA HDD attached to an\nimx6q.\n\nSetting /proc/sys/vm/min_free_kbytes to higher values also seems to solve\nthe problem for my test case. But it still seems wrong that the fec driver\nignores the memory allocation error and can crash.\n\nThis commit handles the allocation error by dropping the current packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21676",
"url": "https://www.suse.com/security/cve/CVE-2025-21676"
},
{
"category": "external",
"summary": "SUSE Bug 1236696 for CVE-2025-21676",
"url": "https://bugzilla.suse.com/1236696"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21676"
},
{
"cve": "CVE-2025-21682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21682"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\neth: bnxt: always recalculate features after XDP clearing, fix null-deref\n\nRecalculate features when XDP is detached.\n\nBefore:\n # ip li set dev eth0 xdp obj xdp_dummy.bpf.o sec xdp\n # ip li set dev eth0 xdp off\n # ethtool -k eth0 | grep gro\n rx-gro-hw: off [requested on]\n\nAfter:\n # ip li set dev eth0 xdp obj xdp_dummy.bpf.o sec xdp\n # ip li set dev eth0 xdp off\n # ethtool -k eth0 | grep gro\n rx-gro-hw: on\n\nThe fact that HW-GRO doesn\u0027t get re-enabled automatically is just\na minor annoyance. The real issue is that the features will randomly\ncome back during another reconfiguration which just happens to invoke\nnetdev_update_features(). The driver doesn\u0027t handle reconfiguring\ntwo things at a time very robustly.\n\nStarting with commit 98ba1d931f61 (\"bnxt_en: Fix RSS logic in\n__bnxt_reserve_rings()\") we only reconfigure the RSS hash table\nif the \"effective\" number of Rx rings has changed. If HW-GRO is\nenabled \"effective\" number of rings is 2x what user sees.\nSo if we are in the bad state, with HW-GRO re-enablement \"pending\"\nafter XDP off, and we lower the rings by / 2 - the HW-GRO rings\ndoing 2x and the ethtool -L doing / 2 may cancel each other out,\nand the:\n\n if (old_rx_rings != bp-\u003ehw_resc.resv_rx_rings \u0026\u0026\n\ncondition in __bnxt_reserve_rings() will be false.\nThe RSS map won\u0027t get updated, and we\u0027ll crash with:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000168\n RIP: 0010:__bnxt_hwrm_vnic_set_rss+0x13a/0x1a0\n bnxt_hwrm_vnic_rss_cfg_p5+0x47/0x180\n __bnxt_setup_vnic_p5+0x58/0x110\n bnxt_init_nic+0xb72/0xf50\n __bnxt_open_nic+0x40d/0xab0\n bnxt_open_nic+0x2b/0x60\n ethtool_set_channels+0x18c/0x1d0\n\nAs we try to access a freed ring.\n\nThe issue is present since XDP support was added, really, but\nprior to commit 98ba1d931f61 (\"bnxt_en: Fix RSS logic in\n__bnxt_reserve_rings()\") it wasn\u0027t causing major issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21682",
"url": "https://www.suse.com/security/cve/CVE-2025-21682"
},
{
"category": "external",
"summary": "SUSE Bug 1236703 for CVE-2025-21682",
"url": "https://bugzilla.suse.com/1236703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T15:23:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-21682"
}
]
}
SUSE-SU-2025:0201-1
Vulnerability from csaf_suse - Published: 2025-03-11 13:41 - Updated: 2025-03-11 13:41Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver (bsc#1203332).
- CVE-2022-48742: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() (bsc#1226694).
- CVE-2022-49033: btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit() (bsc#1232045).
- CVE-2023-1382: Fixed denial of service in tipc_conn_close (bsc#1209288).
- CVE-2023-33951: Fixed a race condition that could have led to an information disclosure inside the vmwgfx driver (bsc#1211593).
- CVE-2023-33952: Fixed a double free that could have led to a local privilege escalation inside the vmwgfx driver (bsc#1211595).
- CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking (bsc#1232823).
- CVE-2024-26886: Bluetooth: af_bluetooth: Fix deadlock (bsc#1223044).
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-47666: scsi: pm80xx: Set phy->enable_completion only when we wait for it (bsc#1231453).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).
- CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption (bsc#1232157).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices (bsc#1233050).
- CVE-2024-50181: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D (bsc#1233127).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50211: udf: refactor inode_bmap() to handle error (bsc#1233096).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).
- CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver (bsc#1233485).
- CVE-2024-53051: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability (bsc#1233547).
- CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction (bsc#1233550).
- CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() (bsc#1233568).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).
- CVE-2024-53072: platform/x86/amd/pmc: Detect when STB is not available (bsc#1233564).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53095: smb: client: Fix use-after-free of network namespace (bsc#1233642).
- CVE-2024-53101: fs: Fix uninitialized value issue in from_kuid and from_kgid (bsc#1233769).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53114: x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client (bsc#1234072).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).
- CVE-2024-53150: ALSA: usb-audio: Fix out of bounds reads when finding clock sources (bsc#1234834).
- CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846).
- CVE-2024-53157: firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (bsc#1234827).
- CVE-2024-53158: soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (bsc#1234811).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53162: crypto: qat/qat_4xxx - fix off by one in uof_get_name() (bsc#1234843).
- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53210: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (bsc#1234971).
- CVE-2024-53213: net: usb: lan78xx: Fix double free issue with interrupt buffer allocation (bsc#1234973).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).
- CVE-2024-56539: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (bsc#1234963).
- CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).
- CVE-2024-56571: media: uvcvideo: Require entities to have a non-zero unique ID (bsc#1235037).
- CVE-2024-56575: media: imx-jpeg: Ensure power suppliers be suspended before detach them (bsc#1235039).
- CVE-2024-56598: jfs: array-index-out-of-bounds fix in dtReadFirst (bsc#1235220).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).
- CVE-2024-56619: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (bsc#1235224).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
The following non-security bugs were fixed:
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- Documentation: Add x86/amd_hsmp driver (jsc#PED-1295).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- Drop a couple of block layer git-fixes (bsc#1170891 bsc#1173139)
- KVM: x86: fix sending PV IPI (git-fixes).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: Move fill_pre_wcc() and fill_post_wcc() (bsc#1234650 bsc#1233701 bsc#1232472).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: reduce locking in nfsd_lookup() (bsc#1234650 bsc#1233701 bsc#1232472).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- PCI: vmd: Fix secondary bus reset for Intel bridges (git-fixes).
- RDMA/hns: Disassociate mmap pages for all uctx when HW is being reset (git-fixes)
- README: Clean-up trailing whitespace
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- amd_hsmp: Add HSMP protocol version 5 messages (jsc#PED-1295).
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-fixes).
- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes).
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-fixes).
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (git-fixes).
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (git-fixes).
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (git-fixes).
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- autofs: use flexible array in ioctl structure (git-fixes).
- devlink: allow registering parameters after the instance (bsc#1231388 bsc#1230422).
- devlink: do not require setting features before registration (bsc#1231388 bsc#1230422).
- dma-fence: Fix reference leak on fence merge failure path (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: idxd: add wq driver name support for accel-config user tool (bsc#1234357).
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (git-fixes).
- drm/v3d: Enable Performance Counters before clearing them (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- fixup 'rpm: support gz and zst compression methods' once more (bsc#1190428, bsc#1190358) Fixes: 3b8c4d9bcc24 ('rpm: support gz and zst compression methods') Fixes: 23510fce36ec ('fixup 'rpm: support gz and zst compression methods'')
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- ipc/sem: Fix dangling sem_array access in semtimedop race (bsc#1234727).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kabi/severities: ignore intermodule symbols between fsl_fman and fsl_dpaa_eth
- kernel-binary: do not BuildIgnore m4. It is actually needed for regenerating zconf when it is not up-to-date due to merge.
- kobject: Add sanity check for kset->kobj.ktype in kset_register() (bsc#1234639).
- memory: tegra: Add API for retrieving carveout bounds (jsc#PED-1763).
- mm/kfence: reset PG_slab and memcg_data before freeing __kfence_pool (bsc#1234120).
- mmc: core: Further prevent card detect during shutdown (git-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- nfsd: remove unsafe BUG_ON from set_change_info (bsc#1234650 bsc#1233701 bsc#1232472).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- ocfs2: uncache inode which has failed entering the group (bsc#1234087).
- phy: tegra: p2u: Set ENABLE_L2_EXIT_RATE_CHANGE in calibration (jsc#PED-1763).
- platform/x86: Add AMD system management interface (jsc#PED-1295).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- pwm: tegra: Improve required rate calculation (jsc#PED-1763).
- regmap: detach regmap from dev on regmap_exit (git-fixes).
- rpm/kernel-binary.spec.in: Fix build regression The previous fix forgot to take over grep -c option that broke the conditional expression
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- scripts/git_sort/git_sort.py: add tegra DRM and linux-pwm repo
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- serial: tegra: Read DMA status before terminating (jsc#PED-1763).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: this fixes issue discussed in bsc#1233642].
- spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes).
- sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (git-fixes).
- supported.conf: add bsc1185010 dependency
- supported.conf: hyperv_drm (jsc#sle-19733)
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- udf: Handle error when adding extent to a file (bsc#1234437).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes).
- usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes).
- x86/bug: Merge annotate_reachable() into _BUG_FLAGS() asm (git-fixes).
- x86/fpu/xsave: Handle compacted offsets correctly with supervisor states (git-fixes).
- x86/fpu/xstate: Fix the ARCH_REQ_XCOMP_PERM implementation (git-fixes).
- x86/fpu: Remove unused supervisor only offsets (git-fixes).
- x86/kvm: Do not use pv tlb/ipi/sched_yield if on 1 vCPU (git-fixes).
- x86/mce/inject: Avoid out-of-bounds write when setting flags (git-fixes).
- x86/mce: Allow instrumentation during task work queueing (git-fixes).
- x86/mce: Mark mce_end() noinstr (git-fixes).
- x86/mce: Mark mce_panic() noinstr (git-fixes).
- x86/mce: Mark mce_read_aux() noinstr (git-fixes).
- x86/mm: Flush global TLB when switching to trampoline page-table (git-fixes).
- x86/sev: Make enc_dec_hypercall() accept a size instead of npages (bsc#1214635).
- x86/sgx: Free backing memory after faulting the enclave page (git-fixes).
- x86/sgx: Silence softlockup detection when releasing large enclaves (git-fixes).
- x86/uaccess: Move variable into switch case statement (git-fixes).
- x86: Annotate call_on_stack() (git-fixes).
- xfs: can't use kmem_zalloc() for attribute buffers (bsc#1216909).
- zonefs: fix zone report size in __zonefs_io_error() (git-fixes).
Patchnames
SUSE-2025-201,SUSE-SLE-Micro-5.5-2025-201,SUSE-SLE-Module-Live-Patching-15-SP5-2025-201,SUSE-SLE-Product-HA-15-SP5-2025-201,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-201,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-201,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-201,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-201
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver (bsc#1203332).\n- CVE-2022-48742: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() (bsc#1226694).\n- CVE-2022-49033: btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit() (bsc#1232045).\n- CVE-2023-1382: Fixed denial of service in tipc_conn_close (bsc#1209288).\n- CVE-2023-33951: Fixed a race condition that could have led to an information disclosure inside the vmwgfx driver (bsc#1211593).\n- CVE-2023-33952: Fixed a double free that could have led to a local privilege escalation inside the vmwgfx driver (bsc#1211595).\n- CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking (bsc#1232823).\n- CVE-2024-26886: Bluetooth: af_bluetooth: Fix deadlock (bsc#1223044).\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-47666: scsi: pm80xx: Set phy-\u003eenable_completion only when we wait for it (bsc#1231453).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).\n- CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption (bsc#1232157).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices (bsc#1233050).\n- CVE-2024-50181: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D (bsc#1233127).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50211: udf: refactor inode_bmap() to handle error (bsc#1233096).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).\n- CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver (bsc#1233485).\n- CVE-2024-53051: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability (bsc#1233547).\n- CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction (bsc#1233550).\n- CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() (bsc#1233568).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).\n- CVE-2024-53072: platform/x86/amd/pmc: Detect when STB is not available (bsc#1233564).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53095: smb: client: Fix use-after-free of network namespace (bsc#1233642).\n- CVE-2024-53101: fs: Fix uninitialized value issue in from_kuid and from_kgid (bsc#1233769).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53114: x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client (bsc#1234072).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).\n- CVE-2024-53150: ALSA: usb-audio: Fix out of bounds reads when finding clock sources (bsc#1234834).\n- CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846).\n- CVE-2024-53157: firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (bsc#1234827).\n- CVE-2024-53158: soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (bsc#1234811).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53162: crypto: qat/qat_4xxx - fix off by one in uof_get_name() (bsc#1234843).\n- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53210: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (bsc#1234971).\n- CVE-2024-53213: net: usb: lan78xx: Fix double free issue with interrupt buffer allocation (bsc#1234973).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).\n- CVE-2024-56539: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (bsc#1234963).\n- CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).\n- CVE-2024-56571: media: uvcvideo: Require entities to have a non-zero unique ID (bsc#1235037).\n- CVE-2024-56575: media: imx-jpeg: Ensure power suppliers be suspended before detach them (bsc#1235039).\n- CVE-2024-56598: jfs: array-index-out-of-bounds fix in dtReadFirst (bsc#1235220).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).\n- CVE-2024-56619: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (bsc#1235224).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n\nThe following non-security bugs were fixed:\n\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- Documentation: Add x86/amd_hsmp driver (jsc#PED-1295).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- Drop a couple of block layer git-fixes (bsc#1170891 bsc#1173139)\n- KVM: x86: fix sending PV IPI (git-fixes).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: Move fill_pre_wcc() and fill_post_wcc() (bsc#1234650 bsc#1233701 bsc#1232472).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: reduce locking in nfsd_lookup() (bsc#1234650 bsc#1233701 bsc#1232472).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- PCI: vmd: Fix secondary bus reset for Intel bridges (git-fixes).\n- RDMA/hns: Disassociate mmap pages for all uctx when HW is being reset (git-fixes)\n- README: Clean-up trailing whitespace\n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- amd_hsmp: Add HSMP protocol version 5 messages (jsc#PED-1295).\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-fixes).\n- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes).\n- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-fixes).\n- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (git-fixes).\n- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (git-fixes).\n- arm64: dts: rockchip: Remove hdmi\u0027s 2nd interrupt on rk3328 (git-fixes).\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- autofs: use flexible array in ioctl structure (git-fixes).\n- devlink: allow registering parameters after the instance (bsc#1231388 bsc#1230422).\n- devlink: do not require setting features before registration (bsc#1231388 bsc#1230422).\n- dma-fence: Fix reference leak on fence merge failure path (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: idxd: add wq driver name support for accel-config user tool (bsc#1234357).\n- drm/sti: Add __iomem for mixer_dbg_mxn\u0027s parameter (git-fixes).\n- drm/v3d: Enable Performance Counters before clearing them (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- fixup \u0027rpm: support gz and zst compression methods\u0027 once more (bsc#1190428, bsc#1190358) Fixes: 3b8c4d9bcc24 (\u0027rpm: support gz and zst compression methods\u0027) Fixes: 23510fce36ec (\u0027fixup \u0027rpm: support gz and zst compression methods\u0027\u0027)\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- ipc/sem: Fix dangling sem_array access in semtimedop race (bsc#1234727).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kabi/severities: ignore intermodule symbols between fsl_fman and fsl_dpaa_eth\n- kernel-binary: do not BuildIgnore m4. It is actually needed for regenerating zconf when it is not up-to-date due to merge.\n- kobject: Add sanity check for kset-\u003ekobj.ktype in kset_register() (bsc#1234639).\n- memory: tegra: Add API for retrieving carveout bounds (jsc#PED-1763).\n- mm/kfence: reset PG_slab and memcg_data before freeing __kfence_pool (bsc#1234120).\n- mmc: core: Further prevent card detect during shutdown (git-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- nfsd: remove unsafe BUG_ON from set_change_info (bsc#1234650 bsc#1233701 bsc#1232472).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- ocfs2: uncache inode which has failed entering the group (bsc#1234087).\n- phy: tegra: p2u: Set ENABLE_L2_EXIT_RATE_CHANGE in calibration (jsc#PED-1763).\n- platform/x86: Add AMD system management interface (jsc#PED-1295).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- pwm: tegra: Improve required rate calculation (jsc#PED-1763).\n- regmap: detach regmap from dev on regmap_exit (git-fixes).\n- rpm/kernel-binary.spec.in: Fix build regression The previous fix forgot to take over grep -c option that broke the conditional expression\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- scripts/git_sort/git_sort.py: add tegra DRM and linux-pwm repo\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- serial: tegra: Read DMA status before terminating (jsc#PED-1763).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: this fixes issue discussed in bsc#1233642].\n- spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes).\n- sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (git-fixes).\n- supported.conf: add bsc1185010 dependency\n- supported.conf: hyperv_drm (jsc#sle-19733)\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- udf: Handle error when adding extent to a file (bsc#1234437).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes).\n- usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes).\n- x86/bug: Merge annotate_reachable() into _BUG_FLAGS() asm (git-fixes).\n- x86/fpu/xsave: Handle compacted offsets correctly with supervisor states (git-fixes).\n- x86/fpu/xstate: Fix the ARCH_REQ_XCOMP_PERM implementation (git-fixes).\n- x86/fpu: Remove unused supervisor only offsets (git-fixes).\n- x86/kvm: Do not use pv tlb/ipi/sched_yield if on 1 vCPU (git-fixes).\n- x86/mce/inject: Avoid out-of-bounds write when setting flags (git-fixes).\n- x86/mce: Allow instrumentation during task work queueing (git-fixes).\n- x86/mce: Mark mce_end() noinstr (git-fixes).\n- x86/mce: Mark mce_panic() noinstr (git-fixes).\n- x86/mce: Mark mce_read_aux() noinstr (git-fixes).\n- x86/mm: Flush global TLB when switching to trampoline page-table (git-fixes).\n- x86/sev: Make enc_dec_hypercall() accept a size instead of npages (bsc#1214635).\n- x86/sgx: Free backing memory after faulting the enclave page (git-fixes).\n- x86/sgx: Silence softlockup detection when releasing large enclaves (git-fixes).\n- x86/uaccess: Move variable into switch case statement (git-fixes).\n- x86: Annotate call_on_stack() (git-fixes).\n- xfs: can\u0027t use kmem_zalloc() for attribute buffers (bsc#1216909).\n- zonefs: fix zone report size in __zonefs_io_error() (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-201,SUSE-SLE-Micro-5.5-2025-201,SUSE-SLE-Module-Live-Patching-15-SP5-2025-201,SUSE-SLE-Product-HA-15-SP5-2025-201,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-201,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-201,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-201,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-201",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0201-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0201-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250201-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0201-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020185.html"
},
{
"category": "self",
"summary": "SUSE Bug 1170891",
"url": "https://bugzilla.suse.com/1170891"
},
{
"category": "self",
"summary": "SUSE Bug 1173139",
"url": "https://bugzilla.suse.com/1173139"
},
{
"category": "self",
"summary": "SUSE Bug 1185010",
"url": "https://bugzilla.suse.com/1185010"
},
{
"category": "self",
"summary": "SUSE Bug 1190358",
"url": "https://bugzilla.suse.com/1190358"
},
{
"category": "self",
"summary": "SUSE Bug 1190428",
"url": "https://bugzilla.suse.com/1190428"
},
{
"category": "self",
"summary": "SUSE Bug 1203332",
"url": "https://bugzilla.suse.com/1203332"
},
{
"category": "self",
"summary": "SUSE Bug 1205521",
"url": "https://bugzilla.suse.com/1205521"
},
{
"category": "self",
"summary": "SUSE Bug 1209288",
"url": "https://bugzilla.suse.com/1209288"
},
{
"category": "self",
"summary": "SUSE Bug 1209798",
"url": "https://bugzilla.suse.com/1209798"
},
{
"category": "self",
"summary": "SUSE Bug 1211593",
"url": "https://bugzilla.suse.com/1211593"
},
{
"category": "self",
"summary": "SUSE Bug 1211595",
"url": "https://bugzilla.suse.com/1211595"
},
{
"category": "self",
"summary": "SUSE Bug 1214635",
"url": "https://bugzilla.suse.com/1214635"
},
{
"category": "self",
"summary": "SUSE Bug 1215304",
"url": "https://bugzilla.suse.com/1215304"
},
{
"category": "self",
"summary": "SUSE Bug 1215523",
"url": "https://bugzilla.suse.com/1215523"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1216909",
"url": "https://bugzilla.suse.com/1216909"
},
{
"category": "self",
"summary": "SUSE Bug 1219608",
"url": "https://bugzilla.suse.com/1219608"
},
{
"category": "self",
"summary": "SUSE Bug 1222878",
"url": "https://bugzilla.suse.com/1222878"
},
{
"category": "self",
"summary": "SUSE Bug 1223044",
"url": "https://bugzilla.suse.com/1223044"
},
{
"category": "self",
"summary": "SUSE Bug 1225758",
"url": "https://bugzilla.suse.com/1225758"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1226694",
"url": "https://bugzilla.suse.com/1226694"
},
{
"category": "self",
"summary": "SUSE Bug 1228190",
"url": "https://bugzilla.suse.com/1228190"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1230422",
"url": "https://bugzilla.suse.com/1230422"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231388",
"url": "https://bugzilla.suse.com/1231388"
},
{
"category": "self",
"summary": "SUSE Bug 1231453",
"url": "https://bugzilla.suse.com/1231453"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1232045",
"url": "https://bugzilla.suse.com/1232045"
},
{
"category": "self",
"summary": "SUSE Bug 1232157",
"url": "https://bugzilla.suse.com/1232157"
},
{
"category": "self",
"summary": "SUSE Bug 1232166",
"url": "https://bugzilla.suse.com/1232166"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232472",
"url": "https://bugzilla.suse.com/1232472"
},
{
"category": "self",
"summary": "SUSE Bug 1232823",
"url": "https://bugzilla.suse.com/1232823"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233050",
"url": "https://bugzilla.suse.com/1233050"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233127",
"url": "https://bugzilla.suse.com/1233127"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233468",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233485",
"url": "https://bugzilla.suse.com/1233485"
},
{
"category": "self",
"summary": "SUSE Bug 1233547",
"url": "https://bugzilla.suse.com/1233547"
},
{
"category": "self",
"summary": "SUSE Bug 1233550",
"url": "https://bugzilla.suse.com/1233550"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233564",
"url": "https://bugzilla.suse.com/1233564"
},
{
"category": "self",
"summary": "SUSE Bug 1233568",
"url": "https://bugzilla.suse.com/1233568"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233701",
"url": "https://bugzilla.suse.com/1233701"
},
{
"category": "self",
"summary": "SUSE Bug 1233769",
"url": "https://bugzilla.suse.com/1233769"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234072",
"url": "https://bugzilla.suse.com/1234072"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234087",
"url": "https://bugzilla.suse.com/1234087"
},
{
"category": "self",
"summary": "SUSE Bug 1234120",
"url": "https://bugzilla.suse.com/1234120"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234437",
"url": "https://bugzilla.suse.com/1234437"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234639",
"url": "https://bugzilla.suse.com/1234639"
},
{
"category": "self",
"summary": "SUSE Bug 1234650",
"url": "https://bugzilla.suse.com/1234650"
},
{
"category": "self",
"summary": "SUSE Bug 1234727",
"url": "https://bugzilla.suse.com/1234727"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235035",
"url": "https://bugzilla.suse.com/1235035"
},
{
"category": "self",
"summary": "SUSE Bug 1235037",
"url": "https://bugzilla.suse.com/1235037"
},
{
"category": "self",
"summary": "SUSE Bug 1235039",
"url": "https://bugzilla.suse.com/1235039"
},
{
"category": "self",
"summary": "SUSE Bug 1235054",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235073",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "self",
"summary": "SUSE Bug 1235220",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "self",
"summary": "SUSE Bug 1235224",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47202 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-36280 page",
"url": "https://www.suse.com/security/cve/CVE-2022-36280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48742 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-49033 page",
"url": "https://www.suse.com/security/cve/CVE-2022-49033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-49035 page",
"url": "https://www.suse.com/security/cve/CVE-2022-49035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-1382 page",
"url": "https://www.suse.com/security/cve/CVE-2023-1382/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-33951 page",
"url": "https://www.suse.com/security/cve/CVE-2023-33951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-33952 page",
"url": "https://www.suse.com/security/cve/CVE-2023-33952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52920 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52920/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24860 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24860/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47666 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47666/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50181 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50279 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50296 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53051 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53055 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53056 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53056/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53072 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53072/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53101 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53114 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56571 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56575 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-03-11T13:41:34Z",
"generator": {
"date": "2025-03-11T13:41:34Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0201-1",
"initial_release_date": "2025-03-11T13:41:34Z",
"revision_history": [
{
"date": "2025-03-11T13:41:34Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "cluster-md-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "cluster-md-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dlm-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "dlm-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-allwinner-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-allwinner-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-allwinner-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-altera-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-altera-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-altera-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amazon-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-amazon-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-amazon-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amd-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-amd-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-amd-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amlogic-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-amlogic-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-amlogic-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apm-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-apm-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-apm-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apple-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-apple-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-apple-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-arm-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-arm-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-arm-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-broadcom-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-broadcom-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-broadcom-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-cavium-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-cavium-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-cavium-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-exynos-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-exynos-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-exynos-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-freescale-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-freescale-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-freescale-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-hisilicon-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-hisilicon-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-hisilicon-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-lg-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-lg-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-lg-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-marvell-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-marvell-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-marvell-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-mediatek-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-mediatek-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-mediatek-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-nvidia-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-nvidia-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-nvidia-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-qcom-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-qcom-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-qcom-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-renesas-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-renesas-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-renesas-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-rockchip-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-rockchip-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-rockchip-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-socionext-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-socionext-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-socionext-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-sprd-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-sprd-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-sprd-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-xilinx-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-xilinx-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-xilinx-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "gfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "gfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-64kb-extra-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-64kb-extra-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-optional-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-64kb-optional-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-64kb-optional-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"product": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"product_id": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"product": {
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"product_id": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-extra-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-optional-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-kvmsmall-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-obs-qa-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-syms-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kselftests-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "kselftests-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "ocfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "ocfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "reiserfs-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "reiserfs-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-devel-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-docs-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-docs-html-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-docs-html-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-macros-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-source-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-source-vanilla-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-source-vanilla-5.14.21-150500.55.91.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-debug-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-debug-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-debug-devel-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-debug-devel-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"product": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"product_id": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"product": {
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"product_id": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-extra-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-optional-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-kvmsmall-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-obs-qa-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-syms-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-devel-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-extra-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-optional-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-obs-build-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-obs-qa-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-syms-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-syms-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-debug-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-debug-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-debug-devel-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-debug-devel-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-vdso-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-debug-vdso-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-debug-vdso-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"product": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"product_id": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"product": {
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"product_id": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-extra-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-optional-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-vdso-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-vdso-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-vdso-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-kvmsmall-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-vdso-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-kvmsmall-vdso-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-kvmsmall-vdso-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-obs-qa-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-syms-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le"
},
"product_reference": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x"
},
"product_reference": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64"
},
"product_reference": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-source-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-source-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-source-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-source-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-47202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: Fix NULL pointer dereferences in of_thermal_ functions\n\nof_parse_thermal_zones() parses the thermal-zones node and registers a\nthermal_zone device for each subnode. However, if a thermal zone is\nconsuming a thermal sensor and that thermal sensor device hasn\u0027t probed\nyet, an attempt to set trip_point_*_temp for that thermal zone device\ncan cause a NULL pointer dereference. Fix it.\n\n console:/sys/class/thermal/thermal_zone87 # echo 120000 \u003e trip_point_0_temp\n ...\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n ...\n Call trace:\n of_thermal_set_trip_temp+0x40/0xc4\n trip_point_temp_store+0xc0/0x1dc\n dev_attr_store+0x38/0x88\n sysfs_kf_write+0x64/0xc0\n kernfs_fop_write_iter+0x108/0x1d0\n vfs_write+0x2f4/0x368\n ksys_write+0x7c/0xec\n __arm64_sys_write+0x20/0x30\n el0_svc_common.llvm.7279915941325364641+0xbc/0x1bc\n do_el0_svc+0x28/0xa0\n el0_svc+0x14/0x24\n el0_sync_handler+0x88/0xec\n el0_sync+0x1c0/0x200\n\nWhile at it, fix the possible NULL pointer dereference in other\nfunctions as well: of_thermal_get_temp(), of_thermal_set_emul_temp(),\nof_thermal_get_trend().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47202",
"url": "https://www.suse.com/security/cve/CVE-2021-47202"
},
{
"category": "external",
"summary": "SUSE Bug 1222878 for CVE-2021-47202",
"url": "https://bugzilla.suse.com/1222878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2021-47202"
},
{
"cve": "CVE-2022-36280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-36280"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file \u0027/dev/dri/renderD128 (or Dxxx)\u0027. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-36280",
"url": "https://www.suse.com/security/cve/CVE-2022-36280"
},
{
"category": "external",
"summary": "SUSE Bug 1203332 for CVE-2022-36280",
"url": "https://bugzilla.suse.com/1203332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2022-36280"
},
{
"cve": "CVE-2022-48742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink()\n\nWhile looking at one unrelated syzbot bug, I found the replay logic\nin __rtnl_newlink() to potentially trigger use-after-free.\n\nIt is better to clear master_dev and m_ops inside the loop,\nin case we have to replay it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48742",
"url": "https://www.suse.com/security/cve/CVE-2022-48742"
},
{
"category": "external",
"summary": "SUSE Bug 1226694 for CVE-2022-48742",
"url": "https://bugzilla.suse.com/1226694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2022-48742"
},
{
"cve": "CVE-2022-49033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-49033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit()\n\nSyzkaller reported BUG as follows:\n\n BUG: sleeping function called from invalid context at\n include/linux/sched/mm.h:274\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xcd/0x134\n __might_resched.cold+0x222/0x26b\n kmem_cache_alloc+0x2e7/0x3c0\n update_qgroup_limit_item+0xe1/0x390\n btrfs_qgroup_inherit+0x147b/0x1ee0\n create_subvol+0x4eb/0x1710\n btrfs_mksubvol+0xfe5/0x13f0\n __btrfs_ioctl_snap_create+0x2b0/0x430\n btrfs_ioctl_snap_create_v2+0x25a/0x520\n btrfs_ioctl+0x2a1c/0x5ce0\n __x64_sys_ioctl+0x193/0x200\n do_syscall_64+0x35/0x80\n\nFix this by calling qgroup_dirty() on @dstqgroup, and update limit item in\nbtrfs_run_qgroups() later outside of the spinlock context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-49033",
"url": "https://www.suse.com/security/cve/CVE-2022-49033"
},
{
"category": "external",
"summary": "SUSE Bug 1232045 for CVE-2022-49033",
"url": "https://bugzilla.suse.com/1232045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2022-49033"
},
{
"cve": "CVE-2022-49035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-49035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE\n\nI expect that the hardware will have limited this to 16, but just in\ncase it hasn\u0027t, check for this corner case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-49035",
"url": "https://www.suse.com/security/cve/CVE-2022-49035"
},
{
"category": "external",
"summary": "SUSE Bug 1215304 for CVE-2022-49035",
"url": "https://bugzilla.suse.com/1215304"
},
{
"category": "external",
"summary": "SUSE Bug 1235013 for CVE-2022-49035",
"url": "https://bugzilla.suse.com/1235013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2022-49035"
},
{
"cve": "CVE-2023-1382",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-1382"
}
],
"notes": [
{
"category": "general",
"text": "A data race flaw was found in the Linux kernel, between where con is allocated and con-\u003esock is set. This issue leads to a NULL pointer dereference when accessing con-\u003esock-\u003esk in net/tipc/topsrv.c in the tipc protocol in the Linux kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-1382",
"url": "https://www.suse.com/security/cve/CVE-2023-1382"
},
{
"category": "external",
"summary": "SUSE Bug 1209288 for CVE-2023-1382",
"url": "https://bugzilla.suse.com/1209288"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2023-1382"
},
{
"cve": "CVE-2023-33951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-33951"
}
],
"notes": [
{
"category": "general",
"text": "A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information in the context of the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-33951",
"url": "https://www.suse.com/security/cve/CVE-2023-33951"
},
{
"category": "external",
"summary": "SUSE Bug 1211593 for CVE-2023-33951",
"url": "https://bugzilla.suse.com/1211593"
},
{
"category": "external",
"summary": "SUSE Bug 1216527 for CVE-2023-33951",
"url": "https://bugzilla.suse.com/1216527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2023-33951"
},
{
"cve": "CVE-2023-33952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-33952"
}
],
"notes": [
{
"category": "general",
"text": "A double-free vulnerability was found in handling vmw_buffer_object objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior to performing further free operations on the object, which may allow a local privileged user to escalate privileges and execute code in the context of the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-33952",
"url": "https://www.suse.com/security/cve/CVE-2023-33952"
},
{
"category": "external",
"summary": "SUSE Bug 1211595 for CVE-2023-33952",
"url": "https://bugzilla.suse.com/1211595"
},
{
"category": "external",
"summary": "SUSE Bug 1212348 for CVE-2023-33952",
"url": "https://bugzilla.suse.com/1212348"
},
{
"category": "external",
"summary": "SUSE Bug 1216527 for CVE-2023-33952",
"url": "https://bugzilla.suse.com/1216527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2023-33952"
},
{
"cve": "CVE-2023-52920",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52920"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: support non-r10 register spill/fill to/from stack in precision tracking\n\nUse instruction (jump) history to record instructions that performed\nregister spill/fill to/from stack, regardless if this was done through\nread-only r10 register, or any other register after copying r10 into it\n*and* potentially adjusting offset.\n\nTo make this work reliably, we push extra per-instruction flags into\ninstruction history, encoding stack slot index (spi) and stack frame\nnumber in extra 10 bit flags we take away from prev_idx in instruction\nhistory. We don\u0027t touch idx field for maximum performance, as it\u0027s\nchecked most frequently during backtracking.\n\nThis change removes basically the last remaining practical limitation of\nprecision backtracking logic in BPF verifier. It fixes known\ndeficiencies, but also opens up new opportunities to reduce number of\nverified states, explored in the subsequent patches.\n\nThere are only three differences in selftests\u0027 BPF object files\naccording to veristat, all in the positive direction (less states).\n\nFile Program Insns (A) Insns (B) Insns (DIFF) States (A) States (B) States (DIFF)\n-------------------------------------- ------------- --------- --------- ------------- ---------- ---------- -------------\ntest_cls_redirect_dynptr.bpf.linked3.o cls_redirect 2987 2864 -123 (-4.12%) 240 231 -9 (-3.75%)\nxdp_synproxy_kern.bpf.linked3.o syncookie_tc 82848 82661 -187 (-0.23%) 5107 5073 -34 (-0.67%)\nxdp_synproxy_kern.bpf.linked3.o syncookie_xdp 85116 84964 -152 (-0.18%) 5162 5130 -32 (-0.62%)\n\nNote, I avoided renaming jmp_history to more generic insn_hist to\nminimize number of lines changed and potential merge conflicts between\nbpf and bpf-next trees.\n\nNotice also cur_hist_entry pointer reset to NULL at the beginning of\ninstruction verification loop. This pointer avoids the problem of\nrelying on last jump history entry\u0027s insn_idx to determine whether we\nalready have entry for current instruction or not. It can happen that we\nadded jump history entry because current instruction is_jmp_point(), but\nalso we need to add instruction flags for stack access. In this case, we\ndon\u0027t want to entries, so we need to reuse last added entry, if it is\npresent.\n\nRelying on insn_idx comparison has the same ambiguity problem as the one\nthat was fixed recently in [0], so we avoid that.\n\n [0] https://patchwork.kernel.org/project/netdevbpf/patch/20231110002638.4168352-3-andrii@kernel.org/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52920",
"url": "https://www.suse.com/security/cve/CVE-2023-52920"
},
{
"category": "external",
"summary": "SUSE Bug 1232823 for CVE-2023-52920",
"url": "https://bugzilla.suse.com/1232823"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2023-52920"
},
{
"cve": "CVE-2024-24860",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24860"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the Linux kernel\u0027s bluetooth device driver in {min,max}_key_size_set() function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24860",
"url": "https://www.suse.com/security/cve/CVE-2024-24860"
},
{
"category": "external",
"summary": "SUSE Bug 1219608 for CVE-2024-24860",
"url": "https://bugzilla.suse.com/1219608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-24860"
},
{
"cve": "CVE-2024-26886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: af_bluetooth: Fix deadlock\n\nAttemting to do sock_lock on .recvmsg may cause a deadlock as shown\nbellow, so instead of using sock_sock this uses sk_receive_queue.lock\non bt_sock_ioctl to avoid the UAF:\n\nINFO: task kworker/u9:1:121 blocked for more than 30 seconds.\n Not tainted 6.7.6-lemon #183\nWorkqueue: hci0 hci_rx_work\nCall Trace:\n \u003cTASK\u003e\n __schedule+0x37d/0xa00\n schedule+0x32/0xe0\n __lock_sock+0x68/0xa0\n ? __pfx_autoremove_wake_function+0x10/0x10\n lock_sock_nested+0x43/0x50\n l2cap_sock_recv_cb+0x21/0xa0\n l2cap_recv_frame+0x55b/0x30a0\n ? psi_task_switch+0xeb/0x270\n ? finish_task_switch.isra.0+0x93/0x2a0\n hci_rx_work+0x33a/0x3f0\n process_one_work+0x13a/0x2f0\n worker_thread+0x2f0/0x410\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xe0/0x110\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2c/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26886",
"url": "https://www.suse.com/security/cve/CVE-2024-26886"
},
{
"category": "external",
"summary": "SUSE Bug 1223044 for CVE-2024-26886",
"url": "https://bugzilla.suse.com/1223044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-26886"
},
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-36915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: llcp: fix nfc_llcp_setsockopt() unsafe copies\n\nsyzbot reported unsafe calls to copy_from_sockptr() [1]\n\nUse copy_safe_from_sockptr() instead.\n\n[1]\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\nRead of size 4 at addr ffff88801caa1ec3 by task syz-executor459/5078\n\nCPU: 0 PID: 5078 Comm: syz-executor459 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\n do_sock_setsockopt+0x3b1/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfd/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7f7fac07fd89\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff660eb788 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7fac07fd89\nRDX: 0000000000000000 RSI: 0000000000000118 RDI: 0000000000000004\nRBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020000a80 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36915",
"url": "https://www.suse.com/security/cve/CVE-2024-36915"
},
{
"category": "external",
"summary": "SUSE Bug 1225758 for CVE-2024-36915",
"url": "https://bugzilla.suse.com/1225758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-36915"
},
{
"cve": "CVE-2024-42232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix race between delayed_work() and ceph_monc_stop()\n\nThe way the delayed work is handled in ceph_monc_stop() is prone to\nraces with mon_fault() and possibly also finish_hunting(). Both of\nthese can requeue the delayed work which wouldn\u0027t be canceled by any of\nthe following code in case that happens after cancel_delayed_work_sync()\nruns -- __close_session() doesn\u0027t mess with the delayed work in order\nto avoid interfering with the hunting interval logic. This part was\nmissed in commit b5d91704f53e (\"libceph: behave in mon_fault() if\ncur_mon \u003c 0\") and use-after-free can still ensue on monc and objects\nthat hang off of it, with monc-\u003eauth and monc-\u003emonmap being\nparticularly susceptible to quickly being reused.\n\nTo fix this:\n\n- clear monc-\u003ecur_mon and monc-\u003ehunting as part of closing the session\n in ceph_monc_stop()\n- bail from delayed_work() if monc-\u003ecur_mon is cleared, similar to how\n it\u0027s done in mon_fault() and finish_hunting() (based on monc-\u003ehunting)\n- call cancel_delayed_work_sync() after the session is closed",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42232",
"url": "https://www.suse.com/security/cve/CVE-2024-42232"
},
{
"category": "external",
"summary": "SUSE Bug 1228959 for CVE-2024-42232",
"url": "https://bugzilla.suse.com/1228959"
},
{
"category": "external",
"summary": "SUSE Bug 1229458 for CVE-2024-42232",
"url": "https://bugzilla.suse.com/1229458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-42232"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-47666",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47666"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: pm80xx: Set phy-\u003eenable_completion only when we wait for it\n\npm8001_phy_control() populates the enable_completion pointer with a stack\naddress, sends a PHY_LINK_RESET / PHY_HARD_RESET, waits 300 ms, and\nreturns. The problem arises when a phy control response comes late. After\n300 ms the pm8001_phy_control() function returns and the passed\nenable_completion stack address is no longer valid. Late phy control\nresponse invokes complete() on a dangling enable_completion pointer which\nleads to a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47666",
"url": "https://www.suse.com/security/cve/CVE-2024-47666"
},
{
"category": "external",
"summary": "SUSE Bug 1231453 for CVE-2024-47666",
"url": "https://bugzilla.suse.com/1231453"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-47666"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-49944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start\n\nIn sctp_listen_start() invoked by sctp_inet_listen(), it should set the\nsk_state back to CLOSED if sctp_autobind() fails due to whatever reason.\n\nOtherwise, next time when calling sctp_inet_listen(), if sctp_sk(sk)-\u003ereuse\nis already set via setsockopt(SCTP_REUSE_PORT), sctp_sk(sk)-\u003ebind_hash will\nbe dereferenced as sk_state is LISTENING, which causes a crash as bind_hash\nis NULL.\n\n KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n RIP: 0010:sctp_inet_listen+0x7f0/0xa20 net/sctp/socket.c:8617\n Call Trace:\n \u003cTASK\u003e\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49944",
"url": "https://www.suse.com/security/cve/CVE-2024-49944"
},
{
"category": "external",
"summary": "SUSE Bug 1232166 for CVE-2024-49944",
"url": "https://bugzilla.suse.com/1232166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-49944"
},
{
"cve": "CVE-2024-49952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49952"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prevent nf_skb_duplicated corruption\n\nsyzbot found that nf_dup_ipv4() or nf_dup_ipv6() could write\nper-cpu variable nf_skb_duplicated in an unsafe way [1].\n\nDisabling preemption as hinted by the splat is not enough,\nwe have to disable soft interrupts as well.\n\n[1]\nBUG: using __this_cpu_write() in preemptible [00000000] code: syz.4.282/6316\n caller is nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\nCPU: 0 UID: 0 PID: 6316 Comm: syz.4.282 Not tainted 6.11.0-rc7-syzkaller-00104-g7052622fccb1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n check_preemption_disabled+0x10e/0x120 lib/smp_processor_id.c:49\n nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\n nft_dup_ipv4_eval+0x1db/0x300 net/ipv4/netfilter/nft_dup_ipv4.c:30\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_ipv4+0x202/0x320 net/netfilter/nft_chain_filter.c:23\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook+0x2c4/0x450 include/linux/netfilter.h:269\n NF_HOOK_COND include/linux/netfilter.h:302 [inline]\n ip_output+0x185/0x230 net/ipv4/ip_output.c:433\n ip_local_out net/ipv4/ip_output.c:129 [inline]\n ip_send_skb+0x74/0x100 net/ipv4/ip_output.c:1495\n udp_send_skb+0xacf/0x1650 net/ipv4/udp.c:981\n udp_sendmsg+0x1c21/0x2a60 net/ipv4/udp.c:1269\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmmsg+0x3b2/0x740 net/socket.c:2737\n __do_sys_sendmmsg net/socket.c:2766 [inline]\n __se_sys_sendmmsg net/socket.c:2763 [inline]\n __x64_sys_sendmmsg+0xa0/0xb0 net/socket.c:2763\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f4ce4f7def9\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f4ce5d4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133\nRAX: ffffffffffffffda RBX: 00007f4ce5135f80 RCX: 00007f4ce4f7def9\nRDX: 0000000000000001 RSI: 0000000020005d40 RDI: 0000000000000006\nRBP: 00007f4ce4ff0b76 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f4ce5135f80 R15: 00007ffd4cbc6d68\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49952",
"url": "https://www.suse.com/security/cve/CVE-2024-49952"
},
{
"category": "external",
"summary": "SUSE Bug 1232157 for CVE-2024-49952",
"url": "https://bugzilla.suse.com/1232157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-49952"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsl/fman: Fix refcount handling of fman-related devices\n\nIn mac_probe() there are multiple calls to of_find_device_by_node(),\nfman_bind() and fman_port_bind() which takes references to of_dev-\u003edev.\nNot all references taken by these calls are released later on error path\nin mac_probe() and in mac_remove() which lead to reference leaks.\n\nAdd references release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50166",
"url": "https://www.suse.com/security/cve/CVE-2024-50166"
},
{
"category": "external",
"summary": "SUSE Bug 1233050 for CVE-2024-50166",
"url": "https://bugzilla.suse.com/1233050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50166"
},
{
"cve": "CVE-2024-50181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50181"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50181",
"url": "https://www.suse.com/security/cve/CVE-2024-50181"
},
{
"category": "external",
"summary": "SUSE Bug 1233127 for CVE-2024-50181",
"url": "https://bugzilla.suse.com/1233127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50181"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix out-of-bounds access to the dirty bitset when resizing\n\ndm-cache checks the dirty bits of the cache blocks to be dropped when\nshrinking the fast device, but an index bug in bitset iteration causes\nout-of-bounds access.\n\nReproduce steps:\n\n1. create a cache device of 1024 cache blocks (128 bytes dirty bitset)\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. shrink the fast device to 512 cache blocks, triggering out-of-bounds\n access to the dirty bitset (offset 0x80)\n\ndmsetup suspend cache\ndmsetup reload cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in cache_preresume+0x269/0x7b0\n Read of size 8 at addr ffffc900000f3080 by task dmsetup/131\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc900000f3000, ffffc900000f5000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc900000f2f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effffc900000f3080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc900000f3100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by making the index post-incremented.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50279",
"url": "https://www.suse.com/security/cve/CVE-2024-50279"
},
{
"category": "external",
"summary": "SUSE Bug 1233468 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "external",
"summary": "SUSE Bug 1233708 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-50279"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-50296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when uninstalling driver\n\nWhen the driver is uninstalled and the VF is disabled concurrently, a\nkernel crash occurs. The reason is that the two actions call function\npci_disable_sriov(). The num_VFs is checked to determine whether to\nrelease the corresponding resources. During the second calling, num_VFs\nis not 0 and the resource release function is called. However, the\ncorresponding resource has been released during the first invoking.\nTherefore, the problem occurs:\n\n[15277.839633][T50670] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n...\n[15278.131557][T50670] Call trace:\n[15278.134686][T50670] klist_put+0x28/0x12c\n[15278.138682][T50670] klist_del+0x14/0x20\n[15278.142592][T50670] device_del+0xbc/0x3c0\n[15278.146676][T50670] pci_remove_bus_device+0x84/0x120\n[15278.151714][T50670] pci_stop_and_remove_bus_device+0x6c/0x80\n[15278.157447][T50670] pci_iov_remove_virtfn+0xb4/0x12c\n[15278.162485][T50670] sriov_disable+0x50/0x11c\n[15278.166829][T50670] pci_disable_sriov+0x24/0x30\n[15278.171433][T50670] hnae3_unregister_ae_algo_prepare+0x60/0x90 [hnae3]\n[15278.178039][T50670] hclge_exit+0x28/0xd0 [hclge]\n[15278.182730][T50670] __se_sys_delete_module.isra.0+0x164/0x230\n[15278.188550][T50670] __arm64_sys_delete_module+0x1c/0x30\n[15278.193848][T50670] invoke_syscall+0x50/0x11c\n[15278.198278][T50670] el0_svc_common.constprop.0+0x158/0x164\n[15278.203837][T50670] do_el0_svc+0x34/0xcc\n[15278.207834][T50670] el0_svc+0x20/0x30\n\nFor details, see the following figure.\n\n rmmod hclge disable VFs\n----------------------------------------------------\nhclge_exit() sriov_numvfs_store()\n ... device_lock()\n pci_disable_sriov() hns3_pci_sriov_configure()\n pci_disable_sriov()\n sriov_disable()\n sriov_disable() if !num_VFs :\n if !num_VFs : return;\n return; sriov_del_vfs()\n sriov_del_vfs() ...\n ... klist_put()\n klist_put() ...\n ... num_VFs = 0;\n num_VFs = 0; device_unlock();\n\nIn this patch, when driver is removing, we get the device_lock()\nto protect num_VFs, just like sriov_numvfs_store().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50296",
"url": "https://www.suse.com/security/cve/CVE-2024-50296"
},
{
"category": "external",
"summary": "SUSE Bug 1233485 for CVE-2024-50296",
"url": "https://bugzilla.suse.com/1233485"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50296"
},
{
"cve": "CVE-2024-53051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in intel_hdcp_get_capability\n\nSometimes during hotplug scenario or suspend/resume scenario encoder is\nnot always initialized when intel_hdcp_get_capability add\na check to avoid kernel null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53051",
"url": "https://www.suse.com/security/cve/CVE-2024-53051"
},
{
"category": "external",
"summary": "SUSE Bug 1233547 for CVE-2024-53051",
"url": "https://bugzilla.suse.com/1233547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53051"
},
{
"cve": "CVE-2024-53055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53055"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: fix 6 GHz scan construction\n\nIf more than 255 colocated APs exist for the set of all\nAPs found during 2.4/5 GHz scanning, then the 6 GHz scan\nconstruction will loop forever since the loop variable\nhas type u8, which can never reach the number found when\nthat\u0027s bigger than 255, and is stored in a u32 variable.\nAlso move it into the loops to have a smaller scope.\n\nUsing a u32 there is fine, we limit the number of APs in\nthe scan list and each has a limit on the number of RNR\nentries due to the frame size. With a limit of 1000 scan\nresults, a frame size upper bound of 4096 (really it\u0027s\nmore like ~2300) and a TBTT entry size of at least 11,\nwe get an upper bound for the number of ~372k, well in\nthe bounds of a u32.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53055",
"url": "https://www.suse.com/security/cve/CVE-2024-53055"
},
{
"category": "external",
"summary": "SUSE Bug 1233550 for CVE-2024-53055",
"url": "https://bugzilla.suse.com/1233550"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53055"
},
{
"cve": "CVE-2024-53056",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53056"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy()\n\nIn mtk_crtc_create(), if the call to mbox_request_channel() fails then we\nset the \"mtk_crtc-\u003ecmdq_client.chan\" pointer to NULL. In that situation,\nwe do not call cmdq_pkt_create().\n\nDuring the cleanup, we need to check if the \"mtk_crtc-\u003ecmdq_client.chan\"\nis NULL first before calling cmdq_pkt_destroy(). Calling\ncmdq_pkt_destroy() is unnecessary if we didn\u0027t call cmdq_pkt_create() and\nit will result in a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53056",
"url": "https://www.suse.com/security/cve/CVE-2024-53056"
},
{
"category": "external",
"summary": "SUSE Bug 1233568 for CVE-2024-53056",
"url": "https://bugzilla.suse.com/1233568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53056"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53072",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53072"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/amd/pmc: Detect when STB is not available\n\nLoading the amd_pmc module as:\n\n amd_pmc enable_stb=1\n\n...can result in the following messages in the kernel ring buffer:\n\n amd_pmc AMDI0009:00: SMU cmd failed. err: 0xff\n ioremap on RAM at 0x0000000000000000 - 0x0000000000ffffff\n WARNING: CPU: 10 PID: 2151 at arch/x86/mm/ioremap.c:217 __ioremap_caller+0x2cd/0x340\n\nFurther debugging reveals that this occurs when the requests for\nS2D_PHYS_ADDR_LOW and S2D_PHYS_ADDR_HIGH return a value of 0,\nindicating that the STB is inaccessible. To prevent the ioremap\nwarning and provide clarity to the user, handle the invalid address\nand display an error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53072",
"url": "https://www.suse.com/security/cve/CVE-2024-53072"
},
{
"category": "external",
"summary": "SUSE Bug 1233564 for CVE-2024-53072",
"url": "https://bugzilla.suse.com/1233564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53072"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Fix use-after-free of network namespace.\n\nRecently, we got a customer report that CIFS triggers oops while\nreconnecting to a server. [0]\n\nThe workload runs on Kubernetes, and some pods mount CIFS servers\nin non-root network namespaces. The problem rarely happened, but\nit was always while the pod was dying.\n\nThe root cause is wrong reference counting for network namespace.\n\nCIFS uses kernel sockets, which do not hold refcnt of the netns that\nthe socket belongs to. That means CIFS must ensure the socket is\nalways freed before its netns; otherwise, use-after-free happens.\n\nThe repro steps are roughly:\n\n 1. mount CIFS in a non-root netns\n 2. drop packets from the netns\n 3. destroy the netns\n 4. unmount CIFS\n\nWe can reproduce the issue quickly with the script [1] below and see\nthe splat [2] if CONFIG_NET_NS_REFCNT_TRACKER is enabled.\n\nWhen the socket is TCP, it is hard to guarantee the netns lifetime\nwithout holding refcnt due to async timers.\n\nLet\u0027s hold netns refcnt for each socket as done for SMC in commit\n9744d2bf1976 (\"smc: Fix use-after-free in tcp_write_timer_handler().\").\n\nNote that we need to move put_net() from cifs_put_tcp_session() to\nclean_demultiplex_info(); otherwise, __sock_create() still could touch a\nfreed netns while cifsd tries to reconnect from cifs_demultiplex_thread().\n\nAlso, maybe_get_net() cannot be put just before __sock_create() because\nthe code is not under RCU and there is a small chance that the same\naddress happened to be reallocated to another netns.\n\n[0]:\nCIFS: VFS: \\\\XXXXXXXXXXX has not responded in 15 seconds. Reconnecting...\nCIFS: Serverclose failed 4 times, giving up\nUnable to handle kernel paging request at virtual address 14de99e461f84a07\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\n[14de99e461f84a07] address between user and kernel address ranges\nInternal error: Oops: 0000000096000004 [#1] SMP\nModules linked in: cls_bpf sch_ingress nls_utf8 cifs cifs_arc4 cifs_md4 dns_resolver tcp_diag inet_diag veth xt_state xt_connmark nf_conntrack_netlink xt_nat xt_statistic xt_MASQUERADE xt_mark xt_addrtype ipt_REJECT nf_reject_ipv4 nft_chain_nat nf_nat xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment nft_compat nf_tables nfnetlink overlay nls_ascii nls_cp437 sunrpc vfat fat aes_ce_blk aes_ce_cipher ghash_ce sm4_ce_cipher sm4 sm3_ce sm3 sha3_ce sha512_ce sha512_arm64 sha1_ce ena button sch_fq_codel loop fuse configfs dmi_sysfs sha2_ce sha256_arm64 dm_mirror dm_region_hash dm_log dm_mod dax efivarfs\nCPU: 5 PID: 2690970 Comm: cifsd Not tainted 6.1.103-109.184.amzn2023.aarch64 #1\nHardware name: Amazon EC2 r7g.4xlarge/, BIOS 1.0 11/1/2018\npstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : fib_rules_lookup+0x44/0x238\nlr : __fib_lookup+0x64/0xbc\nsp : ffff8000265db790\nx29: ffff8000265db790 x28: 0000000000000000 x27: 000000000000bd01\nx26: 0000000000000000 x25: ffff000b4baf8000 x24: ffff00047b5e4580\nx23: ffff8000265db7e0 x22: 0000000000000000 x21: ffff00047b5e4500\nx20: ffff0010e3f694f8 x19: 14de99e461f849f7 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 3f92800abd010002\nx11: 0000000000000001 x10: ffff0010e3f69420 x9 : ffff800008a6f294\nx8 : 0000000000000000 x7 : 0000000000000006 x6 : 0000000000000000\nx5 : 0000000000000001 x4 : ffff001924354280 x3 : ffff8000265db7e0\nx2 : 0000000000000000 x1 : ffff0010e3f694f8 x0 : ffff00047b5e4500\nCall trace:\n fib_rules_lookup+0x44/0x238\n __fib_lookup+0x64/0xbc\n ip_route_output_key_hash_rcu+0x2c4/0x398\n ip_route_output_key_hash+0x60/0x8c\n tcp_v4_connect+0x290/0x488\n __inet_stream_connect+0x108/0x3d0\n inet_stream_connect+0x50/0x78\n kernel_connect+0x6c/0xac\n generic_ip_conne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53095",
"url": "https://www.suse.com/security/cve/CVE-2024-53095"
},
{
"category": "external",
"summary": "SUSE Bug 1233642 for CVE-2024-53095",
"url": "https://bugzilla.suse.com/1233642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53095"
},
{
"cve": "CVE-2024-53101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs: Fix uninitialized value issue in from_kuid and from_kgid\n\nocfs2_setattr() uses attr-\u003eia_mode, attr-\u003eia_uid and attr-\u003eia_gid in\na trace point even though ATTR_MODE, ATTR_UID and ATTR_GID aren\u0027t set.\n\nInitialize all fields of newattrs to avoid uninitialized variables, by\nchecking if ATTR_MODE, ATTR_UID, ATTR_GID are initialized, otherwise 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53101",
"url": "https://www.suse.com/security/cve/CVE-2024-53101"
},
{
"category": "external",
"summary": "SUSE Bug 1233769 for CVE-2024-53101",
"url": "https://bugzilla.suse.com/1233769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53101"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client\n\nA number of Zen4 client SoCs advertise the ability to use virtualized\nVMLOAD/VMSAVE, but using these instructions is reported to be a cause\nof a random host reboot.\n\nThese instructions aren\u0027t intended to be advertised on Zen4 client\nso clear the capability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53114",
"url": "https://www.suse.com/security/cve/CVE-2024-53114"
},
{
"category": "external",
"summary": "SUSE Bug 1234072 for CVE-2024-53114",
"url": "https://bugzilla.suse.com/1234072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53114"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: 6fire: Release resources at card release\n\nThe current 6fire code tries to release the resources right after the\ncall of usb6fire_chip_abort(). But at this moment, the card object\nmight be still in use (as we\u0027re calling snd_card_free_when_closed()).\n\nFor avoid potential UAFs, move the release of resources to the card\u0027s\nprivate_free instead of the manual call of usb6fire_chip_destroy() at\nthe USB disconnect callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53239",
"url": "https://www.suse.com/security/cve/CVE-2024-53239"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235054 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "external",
"summary": "SUSE Bug 1235055 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53239"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: don\u0027t query the device logical block size multiple times\n\nDevices block sizes may change. One of these cases is a loop device by\nusing ioctl LOOP_SET_BLOCK_SIZE.\n\nWhile this may cause other issues like IO being rejected, in the case of\nhfsplus, it will allocate a block by using that size and potentially write\nout-of-bounds when hfsplus_read_wrapper calls hfsplus_submit_bio and the\nlatter function reads a different io_size.\n\nUsing a new min_io_size initally set to sb_min_blocksize works for the\npurposes of the original fix, since it will be set to the max between\nHFSPLUS_SECTOR_SIZE and the first seen logical block size. We still use the\nmax between HFSPLUS_SECTOR_SIZE and min_io_size in case the latter is not\ninitialized.\n\nTested by mounting an hfsplus filesystem with loop block sizes 512, 1024\nand 4096.\n\nThe produced KASAN report before the fix looks like this:\n\n[ 419.944641] ==================================================================\n[ 419.945655] BUG: KASAN: slab-use-after-free in hfsplus_read_wrapper+0x659/0xa0a\n[ 419.946703] Read of size 2 at addr ffff88800721fc00 by task repro/10678\n[ 419.947612]\n[ 419.947846] CPU: 0 UID: 0 PID: 10678 Comm: repro Not tainted 6.12.0-rc5-00008-gdf56e0f2f3ca #84\n[ 419.949007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 419.950035] Call Trace:\n[ 419.950384] \u003cTASK\u003e\n[ 419.950676] dump_stack_lvl+0x57/0x78\n[ 419.951212] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.951830] print_report+0x14c/0x49e\n[ 419.952361] ? __virt_addr_valid+0x267/0x278\n[ 419.952979] ? kmem_cache_debug_flags+0xc/0x1d\n[ 419.953561] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.954231] kasan_report+0x89/0xb0\n[ 419.954748] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955367] hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955948] ? __pfx_hfsplus_read_wrapper+0x10/0x10\n[ 419.956618] ? do_raw_spin_unlock+0x59/0x1a9\n[ 419.957214] ? _raw_spin_unlock+0x1a/0x2e\n[ 419.957772] hfsplus_fill_super+0x348/0x1590\n[ 419.958355] ? hlock_class+0x4c/0x109\n[ 419.958867] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.959499] ? __pfx_string+0x10/0x10\n[ 419.960006] ? lock_acquire+0x3e2/0x454\n[ 419.960532] ? bdev_name.constprop.0+0xce/0x243\n[ 419.961129] ? __pfx_bdev_name.constprop.0+0x10/0x10\n[ 419.961799] ? pointer+0x3f0/0x62f\n[ 419.962277] ? __pfx_pointer+0x10/0x10\n[ 419.962761] ? vsnprintf+0x6c4/0xfba\n[ 419.963178] ? __pfx_vsnprintf+0x10/0x10\n[ 419.963621] ? setup_bdev_super+0x376/0x3b3\n[ 419.964029] ? snprintf+0x9d/0xd2\n[ 419.964344] ? __pfx_snprintf+0x10/0x10\n[ 419.964675] ? lock_acquired+0x45c/0x5e9\n[ 419.965016] ? set_blocksize+0x139/0x1c1\n[ 419.965381] ? sb_set_blocksize+0x6d/0xae\n[ 419.965742] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.966179] mount_bdev+0x12f/0x1bf\n[ 419.966512] ? __pfx_mount_bdev+0x10/0x10\n[ 419.966886] ? vfs_parse_fs_string+0xce/0x111\n[ 419.967293] ? __pfx_vfs_parse_fs_string+0x10/0x10\n[ 419.967702] ? __pfx_hfsplus_mount+0x10/0x10\n[ 419.968073] legacy_get_tree+0x104/0x178\n[ 419.968414] vfs_get_tree+0x86/0x296\n[ 419.968751] path_mount+0xba3/0xd0b\n[ 419.969157] ? __pfx_path_mount+0x10/0x10\n[ 419.969594] ? kmem_cache_free+0x1e2/0x260\n[ 419.970311] do_mount+0x99/0xe0\n[ 419.970630] ? __pfx_do_mount+0x10/0x10\n[ 419.971008] __do_sys_mount+0x199/0x1c9\n[ 419.971397] do_syscall_64+0xd0/0x135\n[ 419.971761] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 419.972233] RIP: 0033:0x7c3cb812972e\n[ 419.972564] Code: 48 8b 0d f5 46 0d 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 a5 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d c2 46 0d 00 f7 d8 64 89 01 48\n[ 419.974371] RSP: 002b:00007ffe30632548 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5\n[ 419.975048] RAX: ffffffffffffffda RBX: 00007ffe306328d8 RCX: 00007c3cb812972e\n[ 419.975701] RDX: 0000000020000000 RSI: 0000000020000c80 RDI:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56548",
"url": "https://www.suse.com/security/cve/CVE-2024-56548"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235073 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "external",
"summary": "SUSE Bug 1235074 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56548"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Filter invalid inodes with missing lookup function\n\nAdd a check to the ovl_dentry_weird() function to prevent the\nprocessing of directory inodes that lack the lookup function.\nThis is important because such inodes can cause errors in overlayfs\nwhen passed to the lowerstack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56570",
"url": "https://www.suse.com/security/cve/CVE-2024-56570"
},
{
"category": "external",
"summary": "SUSE Bug 1235035 for CVE-2024-56570",
"url": "https://bugzilla.suse.com/1235035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-56570"
},
{
"cve": "CVE-2024-56571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56571"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56571",
"url": "https://www.suse.com/security/cve/CVE-2024-56571"
},
{
"category": "external",
"summary": "SUSE Bug 1235037 for CVE-2024-56571",
"url": "https://bugzilla.suse.com/1235037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-56571"
},
{
"cve": "CVE-2024-56575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56575"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Ensure power suppliers be suspended before detach them\n\nThe power suppliers are always requested to suspend asynchronously,\ndev_pm_domain_detach() requires the caller to ensure proper\nsynchronization of this function with power management callbacks.\notherwise the detach may led to kernel panic, like below:\n\n[ 1457.107934] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000040\n[ 1457.116777] Mem abort info:\n[ 1457.119589] ESR = 0x0000000096000004\n[ 1457.123358] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 1457.128692] SET = 0, FnV = 0\n[ 1457.131764] EA = 0, S1PTW = 0\n[ 1457.134920] FSC = 0x04: level 0 translation fault\n[ 1457.139812] Data abort info:\n[ 1457.142707] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 1457.148196] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 1457.153256] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 1457.158563] user pgtable: 4k pages, 48-bit VAs, pgdp=00000001138b6000\n[ 1457.165000] [0000000000000040] pgd=0000000000000000, p4d=0000000000000000\n[ 1457.171792] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 1457.178045] Modules linked in: v4l2_jpeg wave6_vpu_ctrl(-) [last unloaded: mxc_jpeg_encdec]\n[ 1457.186383] CPU: 0 PID: 51938 Comm: kworker/0:3 Not tainted 6.6.36-gd23d64eea511 #66\n[ 1457.194112] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 1457.199236] Workqueue: pm pm_runtime_work\n[ 1457.203247] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1457.210188] pc : genpd_runtime_suspend+0x20/0x290\n[ 1457.214886] lr : __rpm_callback+0x48/0x1d8\n[ 1457.218968] sp : ffff80008250bc50\n[ 1457.222270] x29: ffff80008250bc50 x28: 0000000000000000 x27: 0000000000000000\n[ 1457.229394] x26: 0000000000000000 x25: 0000000000000008 x24: 00000000000f4240\n[ 1457.236518] x23: 0000000000000000 x22: ffff00008590f0e4 x21: 0000000000000008\n[ 1457.243642] x20: ffff80008099c434 x19: ffff00008590f000 x18: ffffffffffffffff\n[ 1457.250766] x17: 5300326563697665 x16: 645f676e696c6f6f x15: 63343a6d726f6674\n[ 1457.257890] x14: 0000000000000004 x13: 00000000000003a4 x12: 0000000000000002\n[ 1457.265014] x11: 0000000000000000 x10: 0000000000000a60 x9 : ffff80008250bbb0\n[ 1457.272138] x8 : ffff000092937200 x7 : ffff0003fdf6af80 x6 : 0000000000000000\n[ 1457.279262] x5 : 00000000410fd050 x4 : 0000000000200000 x3 : 0000000000000000\n[ 1457.286386] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff00008590f000\n[ 1457.293510] Call trace:\n[ 1457.295946] genpd_runtime_suspend+0x20/0x290\n[ 1457.300296] __rpm_callback+0x48/0x1d8\n[ 1457.304038] rpm_callback+0x6c/0x78\n[ 1457.307515] rpm_suspend+0x10c/0x570\n[ 1457.311077] pm_runtime_work+0xc4/0xc8\n[ 1457.314813] process_one_work+0x138/0x248\n[ 1457.318816] worker_thread+0x320/0x438\n[ 1457.322552] kthread+0x110/0x114\n[ 1457.325767] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56575",
"url": "https://www.suse.com/security/cve/CVE-2024-56575"
},
{
"category": "external",
"summary": "SUSE Bug 1235039 for CVE-2024-56575",
"url": "https://bugzilla.suse.com/1235039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-56575"
},
{
"cve": "CVE-2024-56598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56598"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: array-index-out-of-bounds fix in dtReadFirst\n\nThe value of stbl can be sometimes out of bounds due\nto a bad filesystem. Added a check with appopriate return\nof error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56598",
"url": "https://www.suse.com/security/cve/CVE-2024-56598"
},
{
"category": "external",
"summary": "SUSE Bug 1235220 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "external",
"summary": "SUSE Bug 1235221 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56598"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56619"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()\n\nSyzbot reported that when searching for records in a directory where the\ninode\u0027s i_size is corrupted and has a large value, memory access outside\nthe folio/page range may occur, or a use-after-free bug may be detected if\nKASAN is enabled.\n\nThis is because nilfs_last_byte(), which is called by nilfs_find_entry()\nand others to calculate the number of valid bytes of directory data in a\npage from i_size and the page index, loses the upper 32 bits of the 64-bit\nsize information due to an inappropriate type of local variable to which\nthe i_size value is assigned.\n\nThis caused a large byte offset value due to underflow in the end address\ncalculation in the calling nilfs_find_entry(), resulting in memory access\nthat exceeds the folio/page size.\n\nFix this issue by changing the type of the local variable causing the bit\nloss from \"unsigned int\" to \"u64\". The return value of nilfs_last_byte()\nis also of type \"unsigned int\", but it is truncated so as not to exceed\nPAGE_SIZE and no bit loss occurs, so no change is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56619",
"url": "https://www.suse.com/security/cve/CVE-2024-56619"
},
{
"category": "external",
"summary": "SUSE Bug 1235224 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "external",
"summary": "SUSE Bug 1235225 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56619"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
}
]
}
SUSE-SU-2025:0117-1
Vulnerability from csaf_suse - Published: 2025-01-15 09:07 - Updated: 2025-01-15 09:07Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).
- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).
- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).
- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-44996: vsock: fix recursive ->recvmsg calls (bsc#1230205).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53099: bpf: Check validity of link->type in bpf_link_show_fdinfo() (bsc#1233772).
- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).
- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).
- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)
- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).
- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).
- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (bsc#1234282).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).
- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).
- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
The following non-security bugs were fixed:
- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).
- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).
- accel/habanalabs: fix debugfs files permissions (stable-fixes).
- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).
- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).
- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
- ACPI: resource: Fix memory resource type union access (git-fixes).
- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).
- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).
- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).
- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).
- afs: Automatically generate trace tag enums (git-fixes).
- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).
- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).
- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).
- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).
- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).
- ALSA: line6: Fix racy access to midibuf (stable-fixes).
- ALSA: seq: Check UMP support for midi_version change (git-fixes).
- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).
- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).
- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).
- ALSA: seq: ump: Use guard() for locking (stable-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).
- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).
- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).
- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).
- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).
- arch: consolidate arch_irq_work_raise prototypes (git-fixes).
- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).
- arch: Remove cmpxchg_double (bsc#1220773).
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: Force position-independent veneers (git-fixes).
- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).
- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).
- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).
- ASoC: amd: yc: Fix the wrong return value (git-fixes).
- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).
- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).
- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).
- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).
- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).
- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).
- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).
- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).
- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).
- ASoC: nau8822: Lower debug print priority (stable-fixes).
- ASoC: SOF: Remove libraries from topology lookups (git-fixes).
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).
- batman-adv: Do not send uninitialized TT changes (git-fixes).
- batman-adv: Remove uninitialized data in full table TT response (git-fixes).
- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).
- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).
- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).
- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).
- blk-throttle: fix lockdep warning of 'cgroup_mutex or RCU read lock required!' (bsc#1234140).
- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).
- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).
- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).
- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).
- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).
- block: Call .limit_depth() after .hctx has been set (bsc#1234148).
- block: Fix where bio IO priority gets set (bsc#1234145).
- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).
- block: update the stable_writes flag in bdev_add (bsc#1234141).
- block/mq-deadline: Fix the tag reservation code (bsc#1234148).
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).
- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).
- Bluetooth: iso: Fix recursive locking warning (git-fixes).
- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).
- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).
- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).
- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).
- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).
- bpf: verifier: prevent userspace memory access (git-fixes).
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)
- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).
- can: j1939: fix error in J1939 documentation (stable-fixes).
- checkpatch: always parse orig_commit in fixes tag (git-fixes).
- checkpatch: check for missing Fixes tags (stable-fixes).
- clocksource/drivers:sp804: Make user selectable (git-fixes).
- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).
- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).
- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).
- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).
- crypto: x86/sha256 - Add parentheses around macros' single arguments (stable-fixes).
- cyrpto/b128ops: Remove struct u128 (bsc#1220773).
- devlink: Fix length of eswitch inline-mode (git-fixes).
- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).
- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).
- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).
- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).
- dmaengine: tegra: Return correct DMA status when paused (git-fixes).
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).
- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).
- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).
- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).
- drm: adv7511: Drop dsi single lane support (git-fixes).
- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).
- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).
- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).
- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).
- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).
- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).
- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).
- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).
- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).
- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).
- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).
- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).
- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).
- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
- drm/amdgpu: do not access invalid sched (git-fixes).
- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
- drm/amdgpu: fix usage slab after free (stable-fixes).
- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).
- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).
- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).
- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).
- drm/amdgpu/pm: Remove gpu_od if it's an empty directory (stable-fixes).
- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).
- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).
- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).
- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).
- drm/amdkfd: Use device based logging for errors (stable-fixes).
- drm/amdkfd: Use the correct wptr size (stable-fixes).
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).
- drm/bridge: it6505: Enable module autoloading (stable-fixes).
- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).
- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).
- drm/display: Fix building with GCC 15 (stable-fixes).
- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).
- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).
- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).
- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).
- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).
- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).
- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).
- drm/i915/dg1: Fix power gate sequence (git-fixes).
- drm/mcde: Enable module autoloading (stable-fixes).
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).
- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).
- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).
- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).
- drm/radeon: change rdev->ddev to rdev_to_drm(rdev) (stable-fixes).
- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).
- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).
- drm/sched: memset() 'job' in drm_sched_job_init() (stable-fixes).
- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).
- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).
- erofs: avoid debugging output for (de)compressed data (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- ext4: add a new helper to check if es must be kept (bsc#1234170).
- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).
- ext4: add missed brelse in update_backups (bsc#1234171).
- ext4: allow for the last group to be marked as trimmed (bsc#1234278).
- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).
- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).
- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).
- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).
- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).
- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).
- ext4: check the extent status again before inserting delalloc block (bsc#1234186).
- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).
- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).
- ext4: correct best extent lstart adjustment logic (bsc#1234179).
- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).
- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).
- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).
- ext4: correct the start block of counting reserved clusters (bsc#1234169).
- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).
- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).
- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).
- ext4: factor out a common helper to query extent map (bsc#1234186).
- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).
- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).
- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).
- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).
- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).
- ext4: fix potential unnitialized variable (bsc#1234183).
- ext4: fix race between writepages and remount (bsc#1234168).
- ext4: fix rec_len verify error (bsc#1234167).
- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).
- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).
- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).
- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).
- ext4: make ext4_es_insert_extent() return void (bsc#1234170).
- ext4: make ext4_es_remove_extent() return void (bsc#1234170).
- ext4: make ext4_zeroout_es() return void (bsc#1234170).
- ext4: make sure allocate pending entry not fail (bsc#1234170).
- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).
- ext4: move 'ix' sanity check to corrent position (bsc#1234174).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).
- ext4: nested locking for xattr inode (bsc#1234189).
- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).
- ext4: refactor ext4_da_map_blocks() (bsc#1234178).
- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).
- ext4: remove the redundant folio_wait_stable() (bsc#1234184).
- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).
- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).
- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).
- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).
- filemap: add a per-mapping stable writes flag (bsc#1234141).
- filemap: Fix bounds checking in filemap_read() (bsc#1234209).
- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).
- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).
- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).
- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).
- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).
- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).
- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).
- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (stable-fixes).
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).
- hvc/xen: fix console unplug (git-fixes).
- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).
- hvc/xen: fix event channel handling for secondary consoles (git-fixes).
- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).
- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).
- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).
- hwmon: (tmp513) Do not use 'proxy' headers (stable-fixes).
- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).
- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).
- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).
- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).
- i2c: microchip-core: actually use repeated sends (git-fixes).
- i2c: microchip-core: fix 'ghost' detections (git-fixes).
- i2c: pnx: Fix timeout in wait functions (git-fixes).
- i2c: riic: Always round-up when calculating bus period (git-fixes).
- i40e: Fix handling changed priv flags (git-fixes).
- i915/guc: Accumulate active runtime on gt reset (git-fixes).
- i915/guc: Ensure busyness counter increases motonically (git-fixes).
- i915/guc: Reset engine utilization buffer before registration (git-fixes).
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).
- ice: fix PHY Clock Recovery availability check (git-fixes).
- ice: Unbind the workqueue (bsc#1234989)
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).
- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).
- instrumentation: Wire up cmpxchg128() (bsc#1220773).
- io_uring: always lock __io_cqring_overflow_flush (git-fixes).
- io_uring: check if iowq is killed before queuing (git-fixes).
- io_uring: Fix registered ring file refcount leak (git-fixes).
- io_uring/rw: avoid punting to io-wq directly (git-fixes).
- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).
- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).
- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).
- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).
- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kasan: make report_lock a raw spinlock (git-fixes).
- kdb: address -Wformat-security warnings (bsc#1234659).
- kdb: Fix buffer overflow during tab-complete (bsc#1234652).
- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).
- kdb: Merge identical case statements in kdb_read() (bsc#1234657).
- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).
- kdb: Use format-strings rather than '\0' injection in kdb_read() (bsc#1234654).
- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).
- kgdb: Flush console before entering kgdb on panic (bsc#1234651).
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (stable-fixes).
- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).
- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).
- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).
- mac80211: fix user-power when emulating chanctx (stable-fixes).
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).
- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).
- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).
- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).
- mm/readahead: do not allow order-1 folio (bsc#1234205).
- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).
- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).
- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).
- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).
- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).
- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).
- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).
- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).
- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).
- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).
- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).
- net/qed: allow old cards not supporting 'num_images' to work (git-fixes).
- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Async COPY result needs to return a write verifier (git-fixes).
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (git-fixes).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).
- NFSD: Remove a never-true comparison (git-fixes).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).
- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).
- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).
- nvme: apple: fix device reference counting (git-fixes).
- nvme: fix metadata handling in nvme-passthrough (git-fixes).
- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).
- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).
- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).
- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).
- of: address: Report error on resource bounds overflow (stable-fixes).
- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).
- parisc: Raise minimal GCC version (bsc#1220773).
- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (stable-fixes).
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).
- PCI: Add T_PERST_CLK_US macro (git-fixes).
- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).
- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).
- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).
- PCI: Fix use-after-free of slot->bus on hot remove (stable-fixes).
- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).
- PCI: j721e: Add per platform maximum lane settings (stable-fixes).
- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).
- PCI: j721e: Add suspend and resume support (git-fixes).
- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).
- PCI: qcom: Add support for IPQ9574 (stable-fixes).
- PCI: Use preserve_config in place of pci_flags (stable-fixes).
- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).
- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).
- PCI/AER: Disable AER service on suspend (stable-fixes).
- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).
- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).
- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).
- percpu: Wire up cmpxchg128 (bsc#1220773).
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).
- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).
- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).
- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).
- phy: usb: Toggle the PHY power during init (git-fixes).
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).
- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).
- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).
- pinmux: Use sequential access to access desc->pinmux data (stable-fixes).
- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).
- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).
- platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing incorrect fan speed (stable-fixes).
- power: supply: gpio-charger: Fix set charge current limits (git-fixes).
- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- quota: explicitly forbid quota files from being encrypted (bsc#1234196).
- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).
- quota: flush quota_release_work upon quota writeback (bsc#1234195).
- quota: simplify drop_dquot_ref() (bsc#1234197).
- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)
- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)
- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)
- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)
- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)
- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)
- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)
- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)
- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)
- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (git-fixes)
- RDMA/uverbs: Prevent integer overflow issue (git-fixes)
- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).
- regmap: Use correct format specifier for logging range errors (stable-fixes).
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).
- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).
- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).
- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).
- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).
- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).
- s390/facility: Disable compile time optimization for decompressor code (git-fixes).
- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).
- s390/pageattr: Implement missing kernel_page_present() (git-fixes).
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- sched/numa: fix memory leak due to the overwritten vma->numab_state (git fixes (sched/numa)).
- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).
- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).
- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).
- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).
- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).
- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).
- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).
- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).
- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).
- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).
- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).
- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).
- scsi: qla2xxx: Remove the unused 'del_list_entry' field in struct fc_port (bsc#1235406).
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).
- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).
- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).
- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).
- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).
- serial: 8250_fintek: Add support for F81216E (stable-fixes).
- serial: amba-pl011: fix build regression (git-fixes).
- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).
- serial: amba-pl011: Use port lock wrappers (stable-fixes).
- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).
- serial: do not use uninitialized value in uart_poll_init() (git-fixes).
- serial: imx: only set receiver level if it is zero (git-fixes).
- serial: imx: set receiver level before starting uart (git-fixes).
- serial: qcom-geni: disable interrupts during console writes (git-fixes).
- serial: qcom-geni: Do not cancel/abort if we can't get the port lock (git-fixes).
- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).
- serial: qcom-geni: fix console corruption (git-fixes).
- serial: qcom-geni: fix dma rx cancellation (git-fixes).
- serial: qcom-geni: fix false console tx restart (git-fixes).
- serial: qcom-geni: fix fifo polling timeout (git-fixes).
- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).
- serial: qcom-geni: fix polled console corruption (git-fixes).
- serial: qcom-geni: fix polled console initialisation (git-fixes).
- serial: qcom-geni: fix receiver enable (git-fixes).
- serial: qcom-geni: fix shutdown race (git-fixes).
- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).
- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).
- serial: qcom-geni: revert broken hibernation support (git-fixes).
- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).
- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).
- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).
- slub: Replace cmpxchg_double() (bsc#1220773).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]
- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).
- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).
- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).
- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).
- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).
- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).
- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).
- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).
- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).
- swiotlb: Reinstate page-alignment for mappings >= PAGE_SIZE (git-fixes).
- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).
- tools: hv: change permissions of NetworkManager configuration file (git-fixes).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).
- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).
- types: Introduce [us]128 (bsc#1220773).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).
- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).
- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).
- udf: refactor inode_bmap() to handle error (bsc#1234242).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).
- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).
- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).
- usb: dwc2: Fix HCD port connection race (git-fixes).
- usb: dwc2: Fix HCD resume (git-fixes).
- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (git-fixes).
- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).
- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).
- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).
- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).
- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).
- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).
- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).
- USB: serial: option: add TCL IK512 MBIM & ECM (stable-fixes).
- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).
- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).
- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).
- usb: typec: use cleanup facility for 'altmodes_node' (stable-fixes).
- vdpa: solidrun: Fix UB bug with devres (git-fixes).
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).
- vfs: fix readahead(2) on block devices (bsc#1234201).
- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).
- wifi: ath5k: add PCI ID for SX76X (git-fixes).
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).
- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).
- wifi: cw1200: Fix potential NULL dereference (git-fixes).
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).
- wifi: mac80211: clean up 'ret' in sta_link_apply_parameters() (stable-fixes).
- wifi: mac80211: fix station NSS capability initialization order (git-fixes).
- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).
- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).
- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).
- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).
- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).
- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).
- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).
- xfs: do not allocate COW extents when unsharing a hole (git-fixes).
- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).
- xfs: remove unknown compat feature check in superblock write validation (git-fixes).
- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).
- xfs: sb_spino_align is not verified (git-fixes).
- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).
- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).
- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).
Patchnames
SUSE-2025-117,SUSE-SLE-Module-Public-Cloud-15-SP6-2025-117,openSUSE-SLE-15.6-2025-117
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).\n- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).\n- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).\n- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-44996: vsock: fix recursive -\u003erecvmsg calls (bsc#1230205).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53099: bpf: Check validity of link-\u003etype in bpf_link_show_fdinfo() (bsc#1233772).\n- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).\n- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).\n- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)\n- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).\n- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).\n- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).\n- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).\n- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (bsc#1234282).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).\n- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).\n- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n\nThe following non-security bugs were fixed:\n\n- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).\n- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).\n- accel/habanalabs: fix debugfs files permissions (stable-fixes).\n- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).\n- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).\n- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).\n- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n- ACPI: resource: Fix memory resource type union access (git-fixes).\n- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).\n- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).\n- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).\n- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).\n- afs: Automatically generate trace tag enums (git-fixes).\n- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).\n- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).\n- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).\n- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).\n- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).\n- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).\n- ALSA: line6: Fix racy access to midibuf (stable-fixes).\n- ALSA: seq: Check UMP support for midi_version change (git-fixes).\n- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).\n- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).\n- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).\n- ALSA: seq: ump: Use guard() for locking (stable-fixes).\n- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).\n- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).\n- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).\n- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).\n- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).\n- arch: consolidate arch_irq_work_raise prototypes (git-fixes).\n- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).\n- arch: Remove cmpxchg_double (bsc#1220773).\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: Force position-independent veneers (git-fixes).\n- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).\n- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).\n- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).\n- ASoC: amd: yc: Fix the wrong return value (git-fixes).\n- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).\n- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).\n- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).\n- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).\n- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).\n- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).\n- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).\n- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).\n- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).\n- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).\n- ASoC: nau8822: Lower debug print priority (stable-fixes).\n- ASoC: SOF: Remove libraries from topology lookups (git-fixes).\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).\n- batman-adv: Do not send uninitialized TT changes (git-fixes).\n- batman-adv: Remove uninitialized data in full table TT response (git-fixes).\n- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).\n- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).\n- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).\n- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).\n- blk-throttle: fix lockdep warning of \u0027cgroup_mutex or RCU read lock required!\u0027 (bsc#1234140).\n- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).\n- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).\n- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).\n- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).\n- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).\n- block: Call .limit_depth() after .hctx has been set (bsc#1234148).\n- block: Fix where bio IO priority gets set (bsc#1234145).\n- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).\n- block: update the stable_writes flag in bdev_add (bsc#1234141).\n- block/mq-deadline: Fix the tag reservation code (bsc#1234148).\n- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).\n- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).\n- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).\n- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).\n- Bluetooth: iso: Fix recursive locking warning (git-fixes).\n- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).\n- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).\n- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).\n- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).\n- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).\n- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).\n- bpf: verifier: prevent userspace memory access (git-fixes).\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\n- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).\n- can: j1939: fix error in J1939 documentation (stable-fixes).\n- checkpatch: always parse orig_commit in fixes tag (git-fixes).\n- checkpatch: check for missing Fixes tags (stable-fixes).\n- clocksource/drivers:sp804: Make user selectable (git-fixes).\n- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).\n- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).\n- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).\n- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).\n- crypto: x86/sha256 - Add parentheses around macros\u0027 single arguments (stable-fixes).\n- cyrpto/b128ops: Remove struct u128 (bsc#1220773).\n- devlink: Fix length of eswitch inline-mode (git-fixes).\n- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).\n- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).\n- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).\n- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).\n- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).\n- dmaengine: tegra: Return correct DMA status when paused (git-fixes).\n- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).\n- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).\n- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).\n- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).\n- drm: adv7511: Drop dsi single lane support (git-fixes).\n- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).\n- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).\n- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).\n- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).\n- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).\n- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).\n- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).\n- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).\n- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: do not access invalid sched (git-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: fix usage slab after free (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).\n- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).\n- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).\n- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).\n- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).\n- drm/amdgpu/pm: Remove gpu_od if it\u0027s an empty directory (stable-fixes).\n- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).\n- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).\n- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).\n- drm/amdkfd: Use device based logging for errors (stable-fixes).\n- drm/amdkfd: Use the correct wptr size (stable-fixes).\n- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).\n- drm/bridge: it6505: Enable module autoloading (stable-fixes).\n- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).\n- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).\n- drm/display: Fix building with GCC 15 (stable-fixes).\n- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).\n- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).\n- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).\n- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).\n- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).\n- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).\n- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).\n- drm/i915/dg1: Fix power gate sequence (git-fixes).\n- drm/mcde: Enable module autoloading (stable-fixes).\n- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).\n- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).\n- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).\n- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).\n- drm/radeon: change rdev-\u003eddev to rdev_to_drm(rdev) (stable-fixes).\n- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).\n- drm/sched: memset() \u0027job\u0027 in drm_sched_job_init() (stable-fixes).\n- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).\n- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).\n- erofs: avoid debugging output for (de)compressed data (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- ext4: add a new helper to check if es must be kept (bsc#1234170).\n- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).\n- ext4: add missed brelse in update_backups (bsc#1234171).\n- ext4: allow for the last group to be marked as trimmed (bsc#1234278).\n- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).\n- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).\n- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).\n- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).\n- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).\n- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).\n- ext4: check the extent status again before inserting delalloc block (bsc#1234186).\n- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).\n- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).\n- ext4: correct best extent lstart adjustment logic (bsc#1234179).\n- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).\n- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).\n- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).\n- ext4: correct the start block of counting reserved clusters (bsc#1234169).\n- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).\n- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).\n- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).\n- ext4: factor out a common helper to query extent map (bsc#1234186).\n- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).\n- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).\n- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).\n- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).\n- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).\n- ext4: fix potential unnitialized variable (bsc#1234183).\n- ext4: fix race between writepages and remount (bsc#1234168).\n- ext4: fix rec_len verify error (bsc#1234167).\n- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).\n- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).\n- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).\n- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).\n- ext4: make ext4_es_insert_extent() return void (bsc#1234170).\n- ext4: make ext4_es_remove_extent() return void (bsc#1234170).\n- ext4: make ext4_zeroout_es() return void (bsc#1234170).\n- ext4: make sure allocate pending entry not fail (bsc#1234170).\n- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).\n- ext4: move \u0027ix\u0027 sanity check to corrent position (bsc#1234174).\n- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).\n- ext4: nested locking for xattr inode (bsc#1234189).\n- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).\n- ext4: refactor ext4_da_map_blocks() (bsc#1234178).\n- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).\n- ext4: remove the redundant folio_wait_stable() (bsc#1234184).\n- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).\n- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).\n- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).\n- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).\n- filemap: add a per-mapping stable writes flag (bsc#1234141).\n- filemap: Fix bounds checking in filemap_read() (bsc#1234209).\n- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).\n- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).\n- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).\n- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).\n- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).\n- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).\n- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).\n- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).\n- gpio: grgpio: use a helper variable to store the address of ofdev-\u003edev (stable-fixes).\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).\n- hvc/xen: fix console unplug (git-fixes).\n- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).\n- hvc/xen: fix event channel handling for secondary consoles (git-fixes).\n- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).\n- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).\n- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).\n- hwmon: (tmp513) Do not use \u0027proxy\u0027 headers (stable-fixes).\n- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).\n- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).\n- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).\n- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).\n- i2c: microchip-core: actually use repeated sends (git-fixes).\n- i2c: microchip-core: fix \u0027ghost\u0027 detections (git-fixes).\n- i2c: pnx: Fix timeout in wait functions (git-fixes).\n- i2c: riic: Always round-up when calculating bus period (git-fixes).\n- i40e: Fix handling changed priv flags (git-fixes).\n- i915/guc: Accumulate active runtime on gt reset (git-fixes).\n- i915/guc: Ensure busyness counter increases motonically (git-fixes).\n- i915/guc: Reset engine utilization buffer before registration (git-fixes).\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).\n- ice: fix PHY Clock Recovery availability check (git-fixes).\n- ice: Unbind the workqueue (bsc#1234989)\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).\n- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).\n- instrumentation: Wire up cmpxchg128() (bsc#1220773).\n- io_uring: always lock __io_cqring_overflow_flush (git-fixes).\n- io_uring: check if iowq is killed before queuing (git-fixes).\n- io_uring: Fix registered ring file refcount leak (git-fixes).\n- io_uring/rw: avoid punting to io-wq directly (git-fixes).\n- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).\n- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).\n- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).\n- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).\n- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).\n- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kasan: make report_lock a raw spinlock (git-fixes).\n- kdb: address -Wformat-security warnings (bsc#1234659).\n- kdb: Fix buffer overflow during tab-complete (bsc#1234652).\n- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).\n- kdb: Merge identical case statements in kdb_read() (bsc#1234657).\n- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).\n- kdb: Use format-strings rather than \u0027\\0\u0027 injection in kdb_read() (bsc#1234654).\n- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).\n- kgdb: Flush console before entering kgdb on panic (bsc#1234651).\n- leds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex (stable-fixes).\n- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).\n- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).\n- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).\n- mac80211: fix user-power when emulating chanctx (stable-fixes).\n- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).\n- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).\n- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).\n- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).\n- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).\n- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).\n- mm/readahead: do not allow order-1 folio (bsc#1234205).\n- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).\n- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).\n- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).\n- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).\n- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).\n- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).\n- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).\n- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).\n- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).\n- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).\n- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).\n- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).\n- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).\n- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).\n- net/qed: allow old cards not supporting \u0027num_images\u0027 to work (git-fixes).\n- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Async COPY result needs to return a write verifier (git-fixes).\n- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).\n- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: initialize copy-\u003ecp_clp early in nfsd4_copy for use by trace point (git-fixes).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).\n- NFSD: Remove a never-true comparison (git-fixes).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).\n- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).\n- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).\n- nvme: apple: fix device reference counting (git-fixes).\n- nvme: fix metadata handling in nvme-passthrough (git-fixes).\n- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).\n- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).\n- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).\n- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).\n- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).\n- of: address: Report error on resource bounds overflow (stable-fixes).\n- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).\n- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).\n- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).\n- parisc: Raise minimal GCC version (bsc#1220773).\n- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).\n- PCI: Add \u0027reset_subordinate\u0027 to reset hierarchy below bridge (stable-fixes).\n- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).\n- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).\n- PCI: Add T_PERST_CLK_US macro (git-fixes).\n- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).\n- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).\n- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).\n- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).\n- PCI: Fix use-after-free of slot-\u003ebus on hot remove (stable-fixes).\n- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).\n- PCI: j721e: Add per platform maximum lane settings (stable-fixes).\n- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).\n- PCI: j721e: Add suspend and resume support (git-fixes).\n- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).\n- PCI: qcom: Add support for IPQ9574 (stable-fixes).\n- PCI: Use preserve_config in place of pci_flags (stable-fixes).\n- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).\n- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).\n- PCI/AER: Disable AER service on suspend (stable-fixes).\n- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).\n- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).\n- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).\n- percpu: Wire up cmpxchg128 (bsc#1220773).\n- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).\n- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).\n- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).\n- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).\n- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).\n- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).\n- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).\n- phy: usb: Toggle the PHY power during init (git-fixes).\n- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).\n- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).\n- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).\n- pinmux: Use sequential access to access desc-\u003epinmux data (stable-fixes).\n- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).\n- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).\n- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).\n- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).\n- platform/x86: thinkpad_acpi: Fix for ThinkPad\u0027s with ECFW showing incorrect fan speed (stable-fixes).\n- power: supply: gpio-charger: Fix set charge current limits (git-fixes).\n- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- quota: explicitly forbid quota files from being encrypted (bsc#1234196).\n- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).\n- quota: flush quota_release_work upon quota writeback (bsc#1234195).\n- quota: simplify drop_dquot_ref() (bsc#1234197).\n- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)\n- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)\n- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)\n- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)\n- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)\n- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)\n- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)\n- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)\n- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)\n- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)\n- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)\n- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)\n- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)\n- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)\n- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)\n- RDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible (git-fixes)\n- RDMA/uverbs: Prevent integer overflow issue (git-fixes)\n- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).\n- regmap: Use correct format specifier for logging range errors (stable-fixes).\n- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).\n- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).\n- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).\n- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).\n- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).\n- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).\n- s390/facility: Disable compile time optimization for decompressor code (git-fixes).\n- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).\n- s390/pageattr: Implement missing kernel_page_present() (git-fixes).\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- sched/numa: fix memory leak due to the overwritten vma-\u003enumab_state (git fixes (sched/numa)).\n- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).\n- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).\n- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).\n- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).\n- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).\n- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).\n- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).\n- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).\n- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).\n- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).\n- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).\n- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).\n- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).\n- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).\n- scsi: qla2xxx: Remove the unused \u0027del_list_entry\u0027 field in struct fc_port (bsc#1235406).\n- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).\n- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).\n- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).\n- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).\n- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).\n- serial: 8250_fintek: Add support for F81216E (stable-fixes).\n- serial: amba-pl011: fix build regression (git-fixes).\n- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).\n- serial: amba-pl011: Use port lock wrappers (stable-fixes).\n- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).\n- serial: do not use uninitialized value in uart_poll_init() (git-fixes).\n- serial: imx: only set receiver level if it is zero (git-fixes).\n- serial: imx: set receiver level before starting uart (git-fixes).\n- serial: qcom-geni: disable interrupts during console writes (git-fixes).\n- serial: qcom-geni: Do not cancel/abort if we can\u0027t get the port lock (git-fixes).\n- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).\n- serial: qcom-geni: fix console corruption (git-fixes).\n- serial: qcom-geni: fix dma rx cancellation (git-fixes).\n- serial: qcom-geni: fix false console tx restart (git-fixes).\n- serial: qcom-geni: fix fifo polling timeout (git-fixes).\n- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).\n- serial: qcom-geni: fix polled console corruption (git-fixes).\n- serial: qcom-geni: fix polled console initialisation (git-fixes).\n- serial: qcom-geni: fix receiver enable (git-fixes).\n- serial: qcom-geni: fix shutdown race (git-fixes).\n- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).\n- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).\n- serial: qcom-geni: revert broken hibernation support (git-fixes).\n- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).\n- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).\n- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).\n- slub: Replace cmpxchg_double() (bsc#1220773).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]\n- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).\n- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).\n- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).\n- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).\n- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).\n- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).\n- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).\n- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).\n- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).\n- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).\n- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).\n- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).\n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).\n- swiotlb: Reinstate page-alignment for mappings \u003e= PAGE_SIZE (git-fixes).\n- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).\n- tools: hv: change permissions of NetworkManager configuration file (git-fixes).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).\n- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).\n- types: Introduce [us]128 (bsc#1220773).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).\n- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).\n- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).\n- udf: refactor inode_bmap() to handle error (bsc#1234242).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).\n- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).\n- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).\n- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).\n- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).\n- usb: dwc2: Fix HCD port connection race (git-fixes).\n- usb: dwc2: Fix HCD resume (git-fixes).\n- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).\n- usb: dwc2: hcd: Fix GetPortStatus \u0026 SetPortFeature (git-fixes).\n- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).\n- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).\n- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).\n- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).\n- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).\n- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).\n- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).\n- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).\n- USB: serial: option: add TCL IK512 MBIM \u0026 ECM (stable-fixes).\n- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).\n- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).\n- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).\n- usb: typec: use cleanup facility for \u0027altmodes_node\u0027 (stable-fixes).\n- vdpa: solidrun: Fix UB bug with devres (git-fixes).\n- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).\n- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).\n- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).\n- vfs: fix readahead(2) on block devices (bsc#1234201).\n- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).\n- wifi: ath5k: add PCI ID for SX76X (git-fixes).\n- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).\n- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).\n- wifi: cw1200: Fix potential NULL dereference (git-fixes).\n- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).\n- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).\n- wifi: mac80211: clean up \u0027ret\u0027 in sta_link_apply_parameters() (stable-fixes).\n- wifi: mac80211: fix station NSS capability initialization order (git-fixes).\n- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).\n- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).\n- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).\n- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).\n- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).\n- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).\n- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).\n- xfs: do not allocate COW extents when unsharing a hole (git-fixes).\n- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).\n- xfs: remove unknown compat feature check in superblock write validation (git-fixes).\n- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).\n- xfs: sb_spino_align is not verified (git-fixes).\n- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).\n- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).\n- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-117,SUSE-SLE-Module-Public-Cloud-15-SP6-2025-117,openSUSE-SLE-15.6-2025-117",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0117-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0117-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250117-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0117-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020131.html"
},
{
"category": "self",
"summary": "SUSE Bug 1214954",
"url": "https://bugzilla.suse.com/1214954"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1220773",
"url": "https://bugzilla.suse.com/1220773"
},
{
"category": "self",
"summary": "SUSE Bug 1224095",
"url": "https://bugzilla.suse.com/1224095"
},
{
"category": "self",
"summary": "SUSE Bug 1224726",
"url": "https://bugzilla.suse.com/1224726"
},
{
"category": "self",
"summary": "SUSE Bug 1225743",
"url": "https://bugzilla.suse.com/1225743"
},
{
"category": "self",
"summary": "SUSE Bug 1225758",
"url": "https://bugzilla.suse.com/1225758"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1227445",
"url": "https://bugzilla.suse.com/1227445"
},
{
"category": "self",
"summary": "SUSE Bug 1228526",
"url": "https://bugzilla.suse.com/1228526"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1230205",
"url": "https://bugzilla.suse.com/1230205"
},
{
"category": "self",
"summary": "SUSE Bug 1230413",
"url": "https://bugzilla.suse.com/1230413"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1231909",
"url": "https://bugzilla.suse.com/1231909"
},
{
"category": "self",
"summary": "SUSE Bug 1231963",
"url": "https://bugzilla.suse.com/1231963"
},
{
"category": "self",
"summary": "SUSE Bug 1232193",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232418",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232420",
"url": "https://bugzilla.suse.com/1232420"
},
{
"category": "self",
"summary": "SUSE Bug 1232421",
"url": "https://bugzilla.suse.com/1232421"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233204",
"url": "https://bugzilla.suse.com/1233204"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233259",
"url": "https://bugzilla.suse.com/1233259"
},
{
"category": "self",
"summary": "SUSE Bug 1233260",
"url": "https://bugzilla.suse.com/1233260"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233328",
"url": "https://bugzilla.suse.com/1233328"
},
{
"category": "self",
"summary": "SUSE Bug 1233461",
"url": "https://bugzilla.suse.com/1233461"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233468",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233546",
"url": "https://bugzilla.suse.com/1233546"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233772",
"url": "https://bugzilla.suse.com/1233772"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234024",
"url": "https://bugzilla.suse.com/1234024"
},
{
"category": "self",
"summary": "SUSE Bug 1234069",
"url": "https://bugzilla.suse.com/1234069"
},
{
"category": "self",
"summary": "SUSE Bug 1234071",
"url": "https://bugzilla.suse.com/1234071"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234079",
"url": "https://bugzilla.suse.com/1234079"
},
{
"category": "self",
"summary": "SUSE Bug 1234086",
"url": "https://bugzilla.suse.com/1234086"
},
{
"category": "self",
"summary": "SUSE Bug 1234139",
"url": "https://bugzilla.suse.com/1234139"
},
{
"category": "self",
"summary": "SUSE Bug 1234140",
"url": "https://bugzilla.suse.com/1234140"
},
{
"category": "self",
"summary": "SUSE Bug 1234141",
"url": "https://bugzilla.suse.com/1234141"
},
{
"category": "self",
"summary": "SUSE Bug 1234142",
"url": "https://bugzilla.suse.com/1234142"
},
{
"category": "self",
"summary": "SUSE Bug 1234143",
"url": "https://bugzilla.suse.com/1234143"
},
{
"category": "self",
"summary": "SUSE Bug 1234144",
"url": "https://bugzilla.suse.com/1234144"
},
{
"category": "self",
"summary": "SUSE Bug 1234145",
"url": "https://bugzilla.suse.com/1234145"
},
{
"category": "self",
"summary": "SUSE Bug 1234146",
"url": "https://bugzilla.suse.com/1234146"
},
{
"category": "self",
"summary": "SUSE Bug 1234147",
"url": "https://bugzilla.suse.com/1234147"
},
{
"category": "self",
"summary": "SUSE Bug 1234148",
"url": "https://bugzilla.suse.com/1234148"
},
{
"category": "self",
"summary": "SUSE Bug 1234149",
"url": "https://bugzilla.suse.com/1234149"
},
{
"category": "self",
"summary": "SUSE Bug 1234150",
"url": "https://bugzilla.suse.com/1234150"
},
{
"category": "self",
"summary": "SUSE Bug 1234153",
"url": "https://bugzilla.suse.com/1234153"
},
{
"category": "self",
"summary": "SUSE Bug 1234155",
"url": "https://bugzilla.suse.com/1234155"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234158",
"url": "https://bugzilla.suse.com/1234158"
},
{
"category": "self",
"summary": "SUSE Bug 1234159",
"url": "https://bugzilla.suse.com/1234159"
},
{
"category": "self",
"summary": "SUSE Bug 1234160",
"url": "https://bugzilla.suse.com/1234160"
},
{
"category": "self",
"summary": "SUSE Bug 1234161",
"url": "https://bugzilla.suse.com/1234161"
},
{
"category": "self",
"summary": "SUSE Bug 1234162",
"url": "https://bugzilla.suse.com/1234162"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234164",
"url": "https://bugzilla.suse.com/1234164"
},
{
"category": "self",
"summary": "SUSE Bug 1234165",
"url": "https://bugzilla.suse.com/1234165"
},
{
"category": "self",
"summary": "SUSE Bug 1234166",
"url": "https://bugzilla.suse.com/1234166"
},
{
"category": "self",
"summary": "SUSE Bug 1234167",
"url": "https://bugzilla.suse.com/1234167"
},
{
"category": "self",
"summary": "SUSE Bug 1234168",
"url": "https://bugzilla.suse.com/1234168"
},
{
"category": "self",
"summary": "SUSE Bug 1234169",
"url": "https://bugzilla.suse.com/1234169"
},
{
"category": "self",
"summary": "SUSE Bug 1234170",
"url": "https://bugzilla.suse.com/1234170"
},
{
"category": "self",
"summary": "SUSE Bug 1234171",
"url": "https://bugzilla.suse.com/1234171"
},
{
"category": "self",
"summary": "SUSE Bug 1234172",
"url": "https://bugzilla.suse.com/1234172"
},
{
"category": "self",
"summary": "SUSE Bug 1234173",
"url": "https://bugzilla.suse.com/1234173"
},
{
"category": "self",
"summary": "SUSE Bug 1234174",
"url": "https://bugzilla.suse.com/1234174"
},
{
"category": "self",
"summary": "SUSE Bug 1234175",
"url": "https://bugzilla.suse.com/1234175"
},
{
"category": "self",
"summary": "SUSE Bug 1234176",
"url": "https://bugzilla.suse.com/1234176"
},
{
"category": "self",
"summary": "SUSE Bug 1234177",
"url": "https://bugzilla.suse.com/1234177"
},
{
"category": "self",
"summary": "SUSE Bug 1234178",
"url": "https://bugzilla.suse.com/1234178"
},
{
"category": "self",
"summary": "SUSE Bug 1234179",
"url": "https://bugzilla.suse.com/1234179"
},
{
"category": "self",
"summary": "SUSE Bug 1234180",
"url": "https://bugzilla.suse.com/1234180"
},
{
"category": "self",
"summary": "SUSE Bug 1234181",
"url": "https://bugzilla.suse.com/1234181"
},
{
"category": "self",
"summary": "SUSE Bug 1234182",
"url": "https://bugzilla.suse.com/1234182"
},
{
"category": "self",
"summary": "SUSE Bug 1234183",
"url": "https://bugzilla.suse.com/1234183"
},
{
"category": "self",
"summary": "SUSE Bug 1234184",
"url": "https://bugzilla.suse.com/1234184"
},
{
"category": "self",
"summary": "SUSE Bug 1234185",
"url": "https://bugzilla.suse.com/1234185"
},
{
"category": "self",
"summary": "SUSE Bug 1234186",
"url": "https://bugzilla.suse.com/1234186"
},
{
"category": "self",
"summary": "SUSE Bug 1234187",
"url": "https://bugzilla.suse.com/1234187"
},
{
"category": "self",
"summary": "SUSE Bug 1234188",
"url": "https://bugzilla.suse.com/1234188"
},
{
"category": "self",
"summary": "SUSE Bug 1234189",
"url": "https://bugzilla.suse.com/1234189"
},
{
"category": "self",
"summary": "SUSE Bug 1234190",
"url": "https://bugzilla.suse.com/1234190"
},
{
"category": "self",
"summary": "SUSE Bug 1234191",
"url": "https://bugzilla.suse.com/1234191"
},
{
"category": "self",
"summary": "SUSE Bug 1234192",
"url": "https://bugzilla.suse.com/1234192"
},
{
"category": "self",
"summary": "SUSE Bug 1234193",
"url": "https://bugzilla.suse.com/1234193"
},
{
"category": "self",
"summary": "SUSE Bug 1234194",
"url": "https://bugzilla.suse.com/1234194"
},
{
"category": "self",
"summary": "SUSE Bug 1234195",
"url": "https://bugzilla.suse.com/1234195"
},
{
"category": "self",
"summary": "SUSE Bug 1234196",
"url": "https://bugzilla.suse.com/1234196"
},
{
"category": "self",
"summary": "SUSE Bug 1234197",
"url": "https://bugzilla.suse.com/1234197"
},
{
"category": "self",
"summary": "SUSE Bug 1234198",
"url": "https://bugzilla.suse.com/1234198"
},
{
"category": "self",
"summary": "SUSE Bug 1234199",
"url": "https://bugzilla.suse.com/1234199"
},
{
"category": "self",
"summary": "SUSE Bug 1234200",
"url": "https://bugzilla.suse.com/1234200"
},
{
"category": "self",
"summary": "SUSE Bug 1234201",
"url": "https://bugzilla.suse.com/1234201"
},
{
"category": "self",
"summary": "SUSE Bug 1234203",
"url": "https://bugzilla.suse.com/1234203"
},
{
"category": "self",
"summary": "SUSE Bug 1234204",
"url": "https://bugzilla.suse.com/1234204"
},
{
"category": "self",
"summary": "SUSE Bug 1234205",
"url": "https://bugzilla.suse.com/1234205"
},
{
"category": "self",
"summary": "SUSE Bug 1234207",
"url": "https://bugzilla.suse.com/1234207"
},
{
"category": "self",
"summary": "SUSE Bug 1234208",
"url": "https://bugzilla.suse.com/1234208"
},
{
"category": "self",
"summary": "SUSE Bug 1234209",
"url": "https://bugzilla.suse.com/1234209"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234221",
"url": "https://bugzilla.suse.com/1234221"
},
{
"category": "self",
"summary": "SUSE Bug 1234237",
"url": "https://bugzilla.suse.com/1234237"
},
{
"category": "self",
"summary": "SUSE Bug 1234238",
"url": "https://bugzilla.suse.com/1234238"
},
{
"category": "self",
"summary": "SUSE Bug 1234239",
"url": "https://bugzilla.suse.com/1234239"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234242",
"url": "https://bugzilla.suse.com/1234242"
},
{
"category": "self",
"summary": "SUSE Bug 1234243",
"url": "https://bugzilla.suse.com/1234243"
},
{
"category": "self",
"summary": "SUSE Bug 1234278",
"url": "https://bugzilla.suse.com/1234278"
},
{
"category": "self",
"summary": "SUSE Bug 1234279",
"url": "https://bugzilla.suse.com/1234279"
},
{
"category": "self",
"summary": "SUSE Bug 1234280",
"url": "https://bugzilla.suse.com/1234280"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234381",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "self",
"summary": "SUSE Bug 1234454",
"url": "https://bugzilla.suse.com/1234454"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234651",
"url": "https://bugzilla.suse.com/1234651"
},
{
"category": "self",
"summary": "SUSE Bug 1234652",
"url": "https://bugzilla.suse.com/1234652"
},
{
"category": "self",
"summary": "SUSE Bug 1234654",
"url": "https://bugzilla.suse.com/1234654"
},
{
"category": "self",
"summary": "SUSE Bug 1234655",
"url": "https://bugzilla.suse.com/1234655"
},
{
"category": "self",
"summary": "SUSE Bug 1234657",
"url": "https://bugzilla.suse.com/1234657"
},
{
"category": "self",
"summary": "SUSE Bug 1234658",
"url": "https://bugzilla.suse.com/1234658"
},
{
"category": "self",
"summary": "SUSE Bug 1234659",
"url": "https://bugzilla.suse.com/1234659"
},
{
"category": "self",
"summary": "SUSE Bug 1234668",
"url": "https://bugzilla.suse.com/1234668"
},
{
"category": "self",
"summary": "SUSE Bug 1234690",
"url": "https://bugzilla.suse.com/1234690"
},
{
"category": "self",
"summary": "SUSE Bug 1234725",
"url": "https://bugzilla.suse.com/1234725"
},
{
"category": "self",
"summary": "SUSE Bug 1234726",
"url": "https://bugzilla.suse.com/1234726"
},
{
"category": "self",
"summary": "SUSE Bug 1234810",
"url": "https://bugzilla.suse.com/1234810"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234826",
"url": "https://bugzilla.suse.com/1234826"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234829",
"url": "https://bugzilla.suse.com/1234829"
},
{
"category": "self",
"summary": "SUSE Bug 1234832",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234848",
"url": "https://bugzilla.suse.com/1234848"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234855",
"url": "https://bugzilla.suse.com/1234855"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234884",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "self",
"summary": "SUSE Bug 1234889",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234899",
"url": "https://bugzilla.suse.com/1234899"
},
{
"category": "self",
"summary": "SUSE Bug 1234900",
"url": "https://bugzilla.suse.com/1234900"
},
{
"category": "self",
"summary": "SUSE Bug 1234905",
"url": "https://bugzilla.suse.com/1234905"
},
{
"category": "self",
"summary": "SUSE Bug 1234907",
"url": "https://bugzilla.suse.com/1234907"
},
{
"category": "self",
"summary": "SUSE Bug 1234909",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "self",
"summary": "SUSE Bug 1234911",
"url": "https://bugzilla.suse.com/1234911"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234916",
"url": "https://bugzilla.suse.com/1234916"
},
{
"category": "self",
"summary": "SUSE Bug 1234918",
"url": "https://bugzilla.suse.com/1234918"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234922",
"url": "https://bugzilla.suse.com/1234922"
},
{
"category": "self",
"summary": "SUSE Bug 1234929",
"url": "https://bugzilla.suse.com/1234929"
},
{
"category": "self",
"summary": "SUSE Bug 1234930",
"url": "https://bugzilla.suse.com/1234930"
},
{
"category": "self",
"summary": "SUSE Bug 1234937",
"url": "https://bugzilla.suse.com/1234937"
},
{
"category": "self",
"summary": "SUSE Bug 1234948",
"url": "https://bugzilla.suse.com/1234948"
},
{
"category": "self",
"summary": "SUSE Bug 1234950",
"url": "https://bugzilla.suse.com/1234950"
},
{
"category": "self",
"summary": "SUSE Bug 1234952",
"url": "https://bugzilla.suse.com/1234952"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234962",
"url": "https://bugzilla.suse.com/1234962"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234968",
"url": "https://bugzilla.suse.com/1234968"
},
{
"category": "self",
"summary": "SUSE Bug 1234969",
"url": "https://bugzilla.suse.com/1234969"
},
{
"category": "self",
"summary": "SUSE Bug 1234970",
"url": "https://bugzilla.suse.com/1234970"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1234974",
"url": "https://bugzilla.suse.com/1234974"
},
{
"category": "self",
"summary": "SUSE Bug 1234989",
"url": "https://bugzilla.suse.com/1234989"
},
{
"category": "self",
"summary": "SUSE Bug 1234999",
"url": "https://bugzilla.suse.com/1234999"
},
{
"category": "self",
"summary": "SUSE Bug 1235002",
"url": "https://bugzilla.suse.com/1235002"
},
{
"category": "self",
"summary": "SUSE Bug 1235003",
"url": "https://bugzilla.suse.com/1235003"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235007",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "self",
"summary": "SUSE Bug 1235009",
"url": "https://bugzilla.suse.com/1235009"
},
{
"category": "self",
"summary": "SUSE Bug 1235016",
"url": "https://bugzilla.suse.com/1235016"
},
{
"category": "self",
"summary": "SUSE Bug 1235019",
"url": "https://bugzilla.suse.com/1235019"
},
{
"category": "self",
"summary": "SUSE Bug 1235033",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "self",
"summary": "SUSE Bug 1235045",
"url": "https://bugzilla.suse.com/1235045"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235075",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "self",
"summary": "SUSE Bug 1235108",
"url": "https://bugzilla.suse.com/1235108"
},
{
"category": "self",
"summary": "SUSE Bug 1235128",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "self",
"summary": "SUSE Bug 1235134",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "self",
"summary": "SUSE Bug 1235138",
"url": "https://bugzilla.suse.com/1235138"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235406",
"url": "https://bugzilla.suse.com/1235406"
},
{
"category": "self",
"summary": "SUSE Bug 1235409",
"url": "https://bugzilla.suse.com/1235409"
},
{
"category": "self",
"summary": "SUSE Bug 1235416",
"url": "https://bugzilla.suse.com/1235416"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE Bug 1235550",
"url": "https://bugzilla.suse.com/1235550"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27397 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27397/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35839 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39480 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39480/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50272 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50279 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53050 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53169 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56536 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56562 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56566 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56576 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56582 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56645 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-01-15T09:07:49Z",
"generator": {
"date": "2025-01-15T09:07:49Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0117-1",
"initial_release_date": "2025-01-15T09:07:49Z",
"revision_history": [
{
"date": "2025-01-15T09:07:49Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product_id": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product_id": "dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product_id": "gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "kernel-azure-6.4.0-150600.8.23.1.aarch64",
"product_id": "kernel-azure-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"product_id": "kernel-azure-devel-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"product_id": "kernel-azure-extra-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"product_id": "kernel-azure-optional-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"product_id": "kernel-syms-azure-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product_id": "kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product_id": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"product_id": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"product": {
"name": "kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"product_id": "kernel-devel-azure-6.4.0-150600.8.23.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"product": {
"name": "kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"product_id": "kernel-source-azure-6.4.0-150600.8.23.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product_id": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product_id": "dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product_id": "gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "kernel-azure-6.4.0-150600.8.23.1.x86_64",
"product_id": "kernel-azure-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"product_id": "kernel-azure-devel-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"product_id": "kernel-azure-extra-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"product_id": "kernel-azure-optional-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"product_id": "kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"product_id": "kernel-syms-azure-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product_id": "kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product_id": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"product_id": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.23.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.23.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.23.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.23.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-6.4.0-150600.8.23.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch"
},
"product_reference": "kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-6.4.0-150600.8.23.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch"
},
"product_reference": "kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.23.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.23.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-6.4.0-150600.8.23.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch"
},
"product_reference": "kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-6.4.0-150600.8.23.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch"
},
"product_reference": "kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64"
},
"product_reference": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
},
"product_reference": "reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-27397",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27397"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: use timestamp to check for set element timeout\n\nAdd a timestamp field at the beginning of the transaction, store it\nin the nftables per-netns area.\n\nUpdate set backend .insert, .deactivate and sync gc path to use the\ntimestamp, this avoids that an element expires while control plane\ntransaction is still unfinished.\n\n.lookup and .update, which are used from packet path, still use the\ncurrent time to check if the element has expired. And .get path and dump\nalso since this runs lockless under rcu read size lock. Then, there is\nasync gc which also needs to check the current time since it runs\nasynchronously from a workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27397",
"url": "https://www.suse.com/security/cve/CVE-2024-27397"
},
{
"category": "external",
"summary": "SUSE Bug 1224095 for CVE-2024-27397",
"url": "https://bugzilla.suse.com/1224095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-27397"
},
{
"cve": "CVE-2024-35839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bridge: replace physindev with physinif in nf_bridge_info\n\nAn skb can be added to a neigh-\u003earp_queue while waiting for an arp\nreply. Where original skb\u0027s skb-\u003edev can be different to neigh\u0027s\nneigh-\u003edev. For instance in case of bridging dnated skb from one veth to\nanother, the skb would be added to a neigh-\u003earp_queue of the bridge.\n\nAs skb-\u003edev can be reset back to nf_bridge-\u003ephysindev and used, and as\nthere is no explicit mechanism that prevents this physindev from been\nfreed under us (for instance neigh_flush_dev doesn\u0027t cleanup skbs from\ndifferent device\u0027s neigh queue) we can crash on e.g. this stack:\n\narp_process\n neigh_update\n skb = __skb_dequeue(\u0026neigh-\u003earp_queue)\n neigh_resolve_output(..., skb)\n ...\n br_nf_dev_xmit\n br_nf_pre_routing_finish_bridge_slow\n skb-\u003edev = nf_bridge-\u003ephysindev\n br_handle_frame_finish\n\nLet\u0027s use plain ifindex instead of net_device link. To peek into the\noriginal net_device we will use dev_get_by_index_rcu(). Thus either we\nget device and are safe to use it or we don\u0027t get it and drop skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35839",
"url": "https://www.suse.com/security/cve/CVE-2024-35839"
},
{
"category": "external",
"summary": "SUSE Bug 1224726 for CVE-2024-35839",
"url": "https://bugzilla.suse.com/1224726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-35839"
},
{
"cve": "CVE-2024-36908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-iocost: do not WARN if iocg was already offlined\n\nIn iocg_pay_debt(), warn is triggered if \u0027active_list\u0027 is empty, which\nis intended to confirm iocg is active when it has debt. However, warn\ncan be triggered during a blkcg or disk removal, if iocg_waitq_timer_fn()\nis run at that time:\n\n WARNING: CPU: 0 PID: 2344971 at block/blk-iocost.c:1402 iocg_pay_debt+0x14c/0x190\n Call trace:\n iocg_pay_debt+0x14c/0x190\n iocg_kick_waitq+0x438/0x4c0\n iocg_waitq_timer_fn+0xd8/0x130\n __run_hrtimer+0x144/0x45c\n __hrtimer_run_queues+0x16c/0x244\n hrtimer_interrupt+0x2cc/0x7b0\n\nThe warn in this situation is meaningless. Since this iocg is being\nremoved, the state of the \u0027active_list\u0027 is irrelevant, and \u0027waitq_timer\u0027\nis canceled after removing \u0027active_list\u0027 in ioc_pd_free(), which ensures\niocg is freed after iocg_waitq_timer_fn() returns.\n\nTherefore, add the check if iocg was already offlined to avoid warn\nwhen removing a blkcg or disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36908",
"url": "https://www.suse.com/security/cve/CVE-2024-36908"
},
{
"category": "external",
"summary": "SUSE Bug 1225743 for CVE-2024-36908",
"url": "https://bugzilla.suse.com/1225743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-36908"
},
{
"cve": "CVE-2024-36915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: llcp: fix nfc_llcp_setsockopt() unsafe copies\n\nsyzbot reported unsafe calls to copy_from_sockptr() [1]\n\nUse copy_safe_from_sockptr() instead.\n\n[1]\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\nRead of size 4 at addr ffff88801caa1ec3 by task syz-executor459/5078\n\nCPU: 0 PID: 5078 Comm: syz-executor459 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\n do_sock_setsockopt+0x3b1/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfd/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7f7fac07fd89\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff660eb788 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7fac07fd89\nRDX: 0000000000000000 RSI: 0000000000000118 RDI: 0000000000000004\nRBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020000a80 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36915",
"url": "https://www.suse.com/security/cve/CVE-2024-36915"
},
{
"category": "external",
"summary": "SUSE Bug 1225758 for CVE-2024-36915",
"url": "https://bugzilla.suse.com/1225758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-36915"
},
{
"cve": "CVE-2024-39480",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39480"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkdb: Fix buffer overflow during tab-complete\n\nCurrently, when the user attempts symbol completion with the Tab key, kdb\nwill use strncpy() to insert the completed symbol into the command buffer.\nUnfortunately it passes the size of the source buffer rather than the\ndestination to strncpy() with predictably horrible results. Most obviously\nif the command buffer is already full but cp, the cursor position, is in\nthe middle of the buffer, then we will write past the end of the supplied\nbuffer.\n\nFix this by replacing the dubious strncpy() calls with memmove()/memcpy()\ncalls plus explicit boundary checks to make sure we have enough space\nbefore we start moving characters around.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39480",
"url": "https://www.suse.com/security/cve/CVE-2024-39480"
},
{
"category": "external",
"summary": "SUSE Bug 1227445 for CVE-2024-39480",
"url": "https://bugzilla.suse.com/1227445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-39480"
},
{
"cve": "CVE-2024-41042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prefer nft_chain_validate\n\nnft_chain_validate already performs loop detection because a cycle will\nresult in a call stack overflow (ctx-\u003elevel \u003e= NFT_JUMP_STACK_SIZE).\n\nIt also follows maps via -\u003evalidate callback in nft_lookup, so there\nappears no reason to iterate the maps again.\n\nnf_tables_check_loops() and all its helper functions can be removed.\nThis improves ruleset load time significantly, from 23s down to 12s.\n\nThis also fixes a crash bug. Old loop detection code can result in\nunbounded recursion:\n\nBUG: TASK stack guard page was hit at ....\nOops: stack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 4 PID: 1539 Comm: nft Not tainted 6.10.0-rc5+ #1\n[..]\n\nwith a suitable ruleset during validation of register stores.\n\nI can\u0027t see any actual reason to attempt to check for this from\nnft_validate_register_store(), at this point the transaction is still in\nprogress, so we don\u0027t have a full picture of the rule graph.\n\nFor nf-next it might make sense to either remove it or make this depend\non table-\u003evalidate_state in case we could catch an error earlier\n(for improved error reporting to userspace).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41042",
"url": "https://www.suse.com/security/cve/CVE-2024-41042"
},
{
"category": "external",
"summary": "SUSE Bug 1228526 for CVE-2024-41042",
"url": "https://bugzilla.suse.com/1228526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-41042"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-44996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix recursive -\u003erecvmsg calls\n\nAfter a vsock socket has been added to a BPF sockmap, its prot-\u003erecvmsg\nhas been replaced with vsock_bpf_recvmsg(). Thus the following\nrecursiion could happen:\n\nvsock_bpf_recvmsg()\n -\u003e __vsock_recvmsg()\n -\u003e vsock_connectible_recvmsg()\n -\u003e prot-\u003erecvmsg()\n -\u003e vsock_bpf_recvmsg() again\n\nWe need to fix it by calling the original -\u003erecvmsg() without any BPF\nsockmap logic in __vsock_recvmsg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44996",
"url": "https://www.suse.com/security/cve/CVE-2024-44996"
},
{
"category": "external",
"summary": "SUSE Bug 1230205 for CVE-2024-44996",
"url": "https://bugzilla.suse.com/1230205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-44996"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix uaf for accessing waker_bfqq after splitting\n\nAfter commit 42c306ed7233 (\"block, bfq: don\u0027t break merge chain in\nbfq_split_bfqq()\"), if the current procress is the last holder of bfqq,\nthe bfqq can be freed after bfq_split_bfqq(). Hence recored the bfqq and\nthen access bfqq-\u003ewaker_bfqq may trigger UAF. What\u0027s more, the waker_bfqq\nmay in the merge chain of bfqq, hence just recored waker_bfqq is still\nnot safe.\n\nFix the problem by adding a helper bfq_waker_bfqq() to check if\nbfqq-\u003ewaker_bfqq is in the merge chain, and current procress is the only\nholder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix address emission with tag-based KASAN enabled\n\nWhen BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_image\nstruct on the stack is passed during the size calculation pass and\nan address on the heap is passed during code generation. This may\ncause a heap buffer overflow if the heap address is tagged because\nemit_a64_mov_i64() will emit longer code than it did during the size\ncalculation pass. The same problem could occur without tag-based\nKASAN if one of the 16-bit words of the stack address happened to\nbe all-ones during the size calculation pass. Fix the problem by\nassuming the worst case (4 instructions) when calculating the size\nof the bpf_tramp_image address emission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50203",
"url": "https://www.suse.com/security/cve/CVE-2024-50203"
},
{
"category": "external",
"summary": "SUSE Bug 1233328 for CVE-2024-50203",
"url": "https://bugzilla.suse.com/1233328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50203"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilemap: Fix bounds checking in filemap_read()\n\nIf the caller supplies an iocb-\u003eki_pos value that is close to the\nfilesystem upper limit, and an iterator with a count that causes us to\noverflow that limit, then filemap_read() enters an infinite loop.\n\nThis behaviour was discovered when testing xfstests generic/525 with the\n\"localio\" optimisation for loopback NFS mounts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50272",
"url": "https://www.suse.com/security/cve/CVE-2024-50272"
},
{
"category": "external",
"summary": "SUSE Bug 1233461 for CVE-2024-50272",
"url": "https://bugzilla.suse.com/1233461"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50272"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix out-of-bounds access to the dirty bitset when resizing\n\ndm-cache checks the dirty bits of the cache blocks to be dropped when\nshrinking the fast device, but an index bug in bitset iteration causes\nout-of-bounds access.\n\nReproduce steps:\n\n1. create a cache device of 1024 cache blocks (128 bytes dirty bitset)\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. shrink the fast device to 512 cache blocks, triggering out-of-bounds\n access to the dirty bitset (offset 0x80)\n\ndmsetup suspend cache\ndmsetup reload cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in cache_preresume+0x269/0x7b0\n Read of size 8 at addr ffffc900000f3080 by task dmsetup/131\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc900000f3000, ffffc900000f5000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc900000f2f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effffc900000f3080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc900000f3100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by making the index post-incremented.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50279",
"url": "https://www.suse.com/security/cve/CVE-2024-50279"
},
{
"category": "external",
"summary": "SUSE Bug 1233468 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "external",
"summary": "SUSE Bug 1233708 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-50279"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-53050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53050"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in hdcp2_get_capability\n\nAdd encoder check in intel_hdcp2_get_capability to avoid\nnull pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53050",
"url": "https://www.suse.com/security/cve/CVE-2024-53050"
},
{
"category": "external",
"summary": "SUSE Bug 1233546 for CVE-2024-53050",
"url": "https://bugzilla.suse.com/1233546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53050"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()\n\nIf a newly-added link type doesn\u0027t invoke BPF_LINK_TYPE(), accessing\nbpf_link_type_strs[link-\u003etype] may result in an out-of-bounds access.\n\nTo spot such missed invocations early in the future, checking the\nvalidity of link-\u003etype in bpf_link_show_fdinfo() and emitting a warning\nwhen such invocations are missed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53099",
"url": "https://www.suse.com/security/cve/CVE-2024-53099"
},
{
"category": "external",
"summary": "SUSE Bug 1233772 for CVE-2024-53099",
"url": "https://bugzilla.suse.com/1233772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53099"
},
{
"cve": "CVE-2024-53103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer\n\nWhen hvs is released, there is a possibility that vsk-\u003etrans may not\nbe initialized to NULL, which could lead to a dangling pointer.\nThis issue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53103",
"url": "https://www.suse.com/security/cve/CVE-2024-53103"
},
{
"category": "external",
"summary": "SUSE Bug 1234024 for CVE-2024-53103",
"url": "https://bugzilla.suse.com/1234024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53103"
},
{
"cve": "CVE-2024-53105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: page_alloc: move mlocked flag clearance into free_pages_prepare()\n\nSyzbot reported a bad page state problem caused by a page being freed\nusing free_page() still having a mlocked flag at free_pages_prepare()\nstage:\n\n BUG: Bad page state in process syz.5.504 pfn:61f45\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61f45\n flags: 0xfff00000080204(referenced|workingset|mlocked|node=0|zone=1|lastcpupid=0x7ff)\n raw: 00fff00000080204 0000000000000000 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\n page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set\n page_owner tracks the page as allocated\n page last allocated via order 0, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 8443, tgid 8442 (syz.5.504), ts 201884660643, free_ts 201499827394\n set_page_owner include/linux/page_owner.h:32 [inline]\n post_alloc_hook+0x1f3/0x230 mm/page_alloc.c:1537\n prep_new_page mm/page_alloc.c:1545 [inline]\n get_page_from_freelist+0x303f/0x3190 mm/page_alloc.c:3457\n __alloc_pages_noprof+0x292/0x710 mm/page_alloc.c:4733\n alloc_pages_mpol_noprof+0x3e8/0x680 mm/mempolicy.c:2265\n kvm_coalesced_mmio_init+0x1f/0xf0 virt/kvm/coalesced_mmio.c:99\n kvm_create_vm virt/kvm/kvm_main.c:1235 [inline]\n kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5488 [inline]\n kvm_dev_ioctl+0x12dc/0x2240 virt/kvm/kvm_main.c:5530\n __do_compat_sys_ioctl fs/ioctl.c:1007 [inline]\n __se_compat_sys_ioctl+0x510/0xc90 fs/ioctl.c:950\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0xb4/0x110 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x34/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n page last free pid 8399 tgid 8399 stack trace:\n reset_page_owner include/linux/page_owner.h:25 [inline]\n free_pages_prepare mm/page_alloc.c:1108 [inline]\n free_unref_folios+0xf12/0x18d0 mm/page_alloc.c:2686\n folios_put_refs+0x76c/0x860 mm/swap.c:1007\n free_pages_and_swap_cache+0x5c8/0x690 mm/swap_state.c:335\n __tlb_batch_free_encoded_pages mm/mmu_gather.c:136 [inline]\n tlb_batch_pages_flush mm/mmu_gather.c:149 [inline]\n tlb_flush_mmu_free mm/mmu_gather.c:366 [inline]\n tlb_flush_mmu+0x3a3/0x680 mm/mmu_gather.c:373\n tlb_finish_mmu+0xd4/0x200 mm/mmu_gather.c:465\n exit_mmap+0x496/0xc40 mm/mmap.c:1926\n __mmput+0x115/0x390 kernel/fork.c:1348\n exit_mm+0x220/0x310 kernel/exit.c:571\n do_exit+0x9b2/0x28e0 kernel/exit.c:926\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [inline]\n __se_sys_exit_group kernel/exit.c:1097 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1097\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n Modules linked in:\n CPU: 0 UID: 0 PID: 8442 Comm: syz.5.504 Not tainted 6.12.0-rc6-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n bad_page+0x176/0x1d0 mm/page_alloc.c:501\n free_page_is_bad mm/page_alloc.c:918 [inline]\n free_pages_prepare mm/page_alloc.c:1100 [inline]\n free_unref_page+0xed0/0xf20 mm/page_alloc.c:2638\n kvm_destroy_vm virt/kvm/kvm_main.c:1327 [inline]\n kvm_put_kvm+0xc75/0x1350 virt/kvm/kvm_main.c:1386\n kvm_vcpu_release+0x54/0x60 virt/kvm/kvm_main.c:4143\n __fput+0x23f/0x880 fs/file_table.c:431\n task_work_run+0x24f/0x310 kernel/task_work.c:239\n exit_task_work include/linux/task_work.h:43 [inline]\n do_exit+0xa2f/0x28e0 kernel/exit.c:939\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53105",
"url": "https://www.suse.com/security/cve/CVE-2024-53105"
},
{
"category": "external",
"summary": "SUSE Bug 1234069 for CVE-2024-53105",
"url": "https://bugzilla.suse.com/1234069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53105"
},
{
"cve": "CVE-2024-53111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix address wraparound in move_page_tables()\n\nOn 32-bit platforms, it is possible for the expression `len + old_addr \u003c\nold_end` to be false-positive if `len + old_addr` wraps around. \n`old_addr` is the cursor in the old range up to which page table entries\nhave been moved; so if the operation succeeded, `old_addr` is the *end* of\nthe old region, and adding `len` to it can wrap.\n\nThe overflow causes mremap() to mistakenly believe that PTEs have been\ncopied; the consequence is that mremap() bails out, but doesn\u0027t move the\nPTEs back before the new VMA is unmapped, causing anonymous pages in the\nregion to be lost. So basically if userspace tries to mremap() a\nprivate-anon region and hits this bug, mremap() will return an error and\nthe private-anon region\u0027s contents appear to have been zeroed.\n\nThe idea of this check is that `old_end - len` is the original start\naddress, and writing the check that way also makes it easier to read; so\nfix the check by rearranging the comparison accordingly.\n\n(An alternate fix would be to refactor this function by introducing an\n\"orig_old_start\" variable or such.)\n\n\nTested in a VM with a 32-bit X86 kernel; without the patch:\n\n```\nuser@horn:~/big_mremap$ cat test.c\n#define _GNU_SOURCE\n#include \u003cstdlib.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003cerr.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define ADDR1 ((void*)0x60000000)\n#define ADDR2 ((void*)0x10000000)\n#define SIZE 0x50000000uL\n\nint main(void) {\n unsigned char *p1 = mmap(ADDR1, SIZE, PROT_READ|PROT_WRITE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p1 == MAP_FAILED)\n err(1, \"mmap 1\");\n unsigned char *p2 = mmap(ADDR2, SIZE, PROT_NONE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p2 == MAP_FAILED)\n err(1, \"mmap 2\");\n *p1 = 0x41;\n printf(\"first char is 0x%02hhx\\n\", *p1);\n unsigned char *p3 = mremap(p1, SIZE, SIZE,\n MREMAP_MAYMOVE|MREMAP_FIXED, p2);\n if (p3 == MAP_FAILED) {\n printf(\"mremap() failed; first char is 0x%02hhx\\n\", *p1);\n } else {\n printf(\"mremap() succeeded; first char is 0x%02hhx\\n\", *p3);\n }\n}\nuser@horn:~/big_mremap$ gcc -static -o test test.c\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() failed; first char is 0x00\n```\n\nWith the patch:\n\n```\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() succeeded; first char is 0x41\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53111",
"url": "https://www.suse.com/security/cve/CVE-2024-53111"
},
{
"category": "external",
"summary": "SUSE Bug 1234086 for CVE-2024-53111",
"url": "https://bugzilla.suse.com/1234086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53111"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Improve MSG_ZEROCOPY error handling\n\nAdd a missing kfree_skb() to prevent memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53117",
"url": "https://www.suse.com/security/cve/CVE-2024-53117"
},
{
"category": "external",
"summary": "SUSE Bug 1234079 for CVE-2024-53117",
"url": "https://bugzilla.suse.com/1234079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53117"
},
{
"cve": "CVE-2024-53118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Fix sk_error_queue memory leak\n\nKernel queues MSG_ZEROCOPY completion notifications on the error queue.\nWhere they remain, until explicitly recv()ed. To prevent memory leaks,\nclean up the queue when the socket is destroyed.\n\nunreferenced object 0xffff8881028beb00 (size 224):\n comm \"vsock_test\", pid 1218, jiffies 4294694897\n hex dump (first 32 bytes):\n 90 b0 21 17 81 88 ff ff 90 b0 21 17 81 88 ff ff ..!.......!.....\n 00 00 00 00 00 00 00 00 00 b0 21 17 81 88 ff ff ..........!.....\n backtrace (crc 6c7031ca):\n [\u003cffffffff81418ef7\u003e] kmem_cache_alloc_node_noprof+0x2f7/0x370\n [\u003cffffffff81d35882\u003e] __alloc_skb+0x132/0x180\n [\u003cffffffff81d2d32b\u003e] sock_omalloc+0x4b/0x80\n [\u003cffffffff81d3a8ae\u003e] msg_zerocopy_realloc+0x9e/0x240\n [\u003cffffffff81fe5cb2\u003e] virtio_transport_send_pkt_info+0x412/0x4c0\n [\u003cffffffff81fe6183\u003e] virtio_transport_stream_enqueue+0x43/0x50\n [\u003cffffffff81fe0813\u003e] vsock_connectible_sendmsg+0x373/0x450\n [\u003cffffffff81d233d5\u003e] ____sys_sendmsg+0x365/0x3a0\n [\u003cffffffff81d246f4\u003e] ___sys_sendmsg+0x84/0xd0\n [\u003cffffffff81d26f47\u003e] __sys_sendmsg+0x47/0x80\n [\u003cffffffff820d3df3\u003e] do_syscall_64+0x93/0x180\n [\u003cffffffff8220012b\u003e] entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53118",
"url": "https://www.suse.com/security/cve/CVE-2024-53118"
},
{
"category": "external",
"summary": "SUSE Bug 1234071 for CVE-2024-53118",
"url": "https://bugzilla.suse.com/1234071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53118"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: solidrun: Fix UB bug with devres\n\nIn psnet_open_pf_bar() and snet_open_vf_bar() a string later passed to\npcim_iomap_regions() is placed on the stack. Neither\npcim_iomap_regions() nor the functions it calls copy that string.\n\nShould the string later ever be used, this, consequently, causes\nundefined behavior since the stack frame will by then have disappeared.\n\nFix the bug by allocating the strings on the heap through\ndevm_kasprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53126",
"url": "https://www.suse.com/security/cve/CVE-2024-53126"
},
{
"category": "external",
"summary": "SUSE Bug 1234158 for CVE-2024-53126",
"url": "https://bugzilla.suse.com/1234158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53126"
},
{
"cve": "CVE-2024-53127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\"\n\nThe commit 8396c793ffdf (\"mmc: dw_mmc: Fix IDMAC operation with pages\nbigger than 4K\") increased the max_req_size, even for 4K pages, causing\nvarious issues:\n- Panic booting the kernel/rootfs from an SD card on Rockchip RK3566\n- Panic booting the kernel/rootfs from an SD card on StarFive JH7100\n- \"swiotlb buffer is full\" and data corruption on StarFive JH7110\n\nAt this stage no fix have been found, so it\u0027s probably better to just\nrevert the change.\n\nThis reverts commit 8396c793ffdf28bb8aee7cfe0891080f8cab7890.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53127",
"url": "https://www.suse.com/security/cve/CVE-2024-53127"
},
{
"category": "external",
"summary": "SUSE Bug 1234153 for CVE-2024-53127",
"url": "https://bugzilla.suse.com/1234153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53127"
},
{
"cve": "CVE-2024-53129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/rockchip: vop: Fix a dereferenced before check warning\n\nThe \u0027state\u0027 can\u0027t be NULL, we should check crtc_state.\n\nFix warning:\ndrivers/gpu/drm/rockchip/rockchip_drm_vop.c:1096\nvop_plane_atomic_async_check() warn: variable dereferenced before check\n\u0027state\u0027 (see line 1077)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53129",
"url": "https://www.suse.com/security/cve/CVE-2024-53129"
},
{
"category": "external",
"summary": "SUSE Bug 1234155 for CVE-2024-53129",
"url": "https://bugzilla.suse.com/1234155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53129"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle dml allocation failure to avoid crash\n\n[Why]\nIn the case where a dml allocation fails for any reason, the\ncurrent state\u0027s dml contexts would no longer be valid. Then\nsubsequent calls dc_state_copy_internal would shallow copy\ninvalid memory and if the new state was released, a double\nfree would occur.\n\n[How]\nReset dml pointers in new_state to NULL and avoid invalid\npointer\n\n(cherry picked from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53133",
"url": "https://www.suse.com/security/cve/CVE-2024-53133"
},
{
"category": "external",
"summary": "SUSE Bug 1234221 for CVE-2024-53133",
"url": "https://bugzilla.suse.com/1234221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53133"
},
{
"cve": "CVE-2024-53134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx93-blk-ctrl: correct remove path\n\nThe check condition should be \u0027i \u003c bc-\u003eonecell_data.num_domains\u0027, not\n\u0027bc-\u003eonecell_data.num_domains\u0027 which will make the look never finish\nand cause kernel panic.\n\nAlso disable runtime to address\n\"imx93-blk-ctrl 4ac10000.system-controller: Unbalanced pm_runtime_enable!\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53134",
"url": "https://www.suse.com/security/cve/CVE-2024-53134"
},
{
"category": "external",
"summary": "SUSE Bug 1234159 for CVE-2024-53134",
"url": "https://bugzilla.suse.com/1234159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53134"
},
{
"cve": "CVE-2024-53136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: revert \"mm: shmem: fix data-race in shmem_getattr()\"\n\nRevert d949d1d14fa2 (\"mm: shmem: fix data-race in shmem_getattr()\") as\nsuggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over\nNFS.\n\nAs Hugh commented, \"added just to silence a syzbot sanitizer splat: added\nwhere there has never been any practical problem\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53136",
"url": "https://www.suse.com/security/cve/CVE-2024-53136"
},
{
"category": "external",
"summary": "SUSE Bug 1234161 for CVE-2024-53136",
"url": "https://bugzilla.suse.com/1234161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53136"
},
{
"cve": "CVE-2024-53141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: add missing range check in bitmap_ip_uadt\n\nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,\nthe values of ip and ip_to are slightly swapped. Therefore, the range check\nfor ip should be done later, but this part is missing and it seems that the\nvulnerability occurs.\n\nSo we should add missing range checks and remove unnecessary range checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53141",
"url": "https://www.suse.com/security/cve/CVE-2024-53141"
},
{
"category": "external",
"summary": "SUSE Bug 1234381 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "external",
"summary": "SUSE Bug 1245778 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1245778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53141"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE\n\nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4\n(\"Bluetooth: Always request for user confirmation for Just Works\")\nalways request user confirmation with confirm_hint set since the\nlikes of bluetoothd have dedicated policy around JUST_WORKS method\n(e.g. main.conf:JustWorksRepairing).\n\nCVE: CVE-2024-8805",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53144",
"url": "https://www.suse.com/security/cve/CVE-2024-53144"
},
{
"category": "external",
"summary": "SUSE Bug 1234690 for CVE-2024-53144",
"url": "https://bugzilla.suse.com/1234690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53144"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: Flush partial mappings in error case\n\nIf some remap_pfn_range() calls succeeded before one failed, we still have\nbuffer pages mapped into the userspace page tables when we drop the buffer\nreference with comedi_buf_map_put(bm). The userspace mappings are only\ncleaned up later in the mmap error path.\n\nFix it by explicitly flushing all mappings in our VMA on the error path.\n\nSee commit 79a61cc3fc04 (\"mm: avoid leaving partial pfn mappings around in\nerror case\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53148",
"url": "https://www.suse.com/security/cve/CVE-2024-53148"
},
{
"category": "external",
"summary": "SUSE Bug 1234832 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "external",
"summary": "SUSE Bug 1234833 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53148"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: Address an integer overflow\n\nDan Carpenter reports:\n\u003e Commit 78147ca8b4a9 (\"svcrdma: Add a \"parsed chunk list\" data\n\u003e structure\") from Jun 22, 2020 (linux-next), leads to the following\n\u003e Smatch static checker warning:\n\u003e\n\u003e\tnet/sunrpc/xprtrdma/svc_rdma_recvfrom.c:498 xdr_check_write_chunk()\n\u003e\twarn: potential user controlled sizeof overflow \u0027segcount * 4 * 4\u0027\n\u003e\n\u003e net/sunrpc/xprtrdma/svc_rdma_recvfrom.c\n\u003e 488 static bool xdr_check_write_chunk(struct svc_rdma_recv_ctxt *rctxt)\n\u003e 489 {\n\u003e 490 u32 segcount;\n\u003e 491 __be32 *p;\n\u003e 492\n\u003e 493 if (xdr_stream_decode_u32(\u0026rctxt-\u003erc_stream, \u0026segcount))\n\u003e ^^^^^^^^\n\u003e\n\u003e 494 return false;\n\u003e 495\n\u003e 496 /* A bogus segcount causes this buffer overflow check to fail. */\n\u003e 497 p = xdr_inline_decode(\u0026rctxt-\u003erc_stream,\n\u003e --\u003e 498 segcount * rpcrdma_segment_maxsz * sizeof(*p));\n\u003e\n\u003e\n\u003e segcount is an untrusted u32. On 32bit systems anything \u003e= SIZE_MAX / 16 will\n\u003e have an integer overflow and some those values will be accepted by\n\u003e xdr_inline_decode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53151",
"url": "https://www.suse.com/security/cve/CVE-2024-53151"
},
{
"category": "external",
"summary": "SUSE Bug 1234829 for CVE-2024-53151",
"url": "https://bugzilla.suse.com/1234829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53151"
},
{
"cve": "CVE-2024-53154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clk-apple-nco: Add NULL check in applnco_probe\n\nAdd NULL check in applnco_probe, to handle kernel NULL pointer\ndereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53154",
"url": "https://www.suse.com/security/cve/CVE-2024-53154"
},
{
"category": "external",
"summary": "SUSE Bug 1234826 for CVE-2024-53154",
"url": "https://bugzilla.suse.com/1234826"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53154"
},
{
"cve": "CVE-2024-53155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix uninitialized value in ocfs2_file_read_iter()\n\nSyzbot has reported the following KMSAN splat:\n\nBUG: KMSAN: uninit-value in ocfs2_file_read_iter+0x9a4/0xf80\n ocfs2_file_read_iter+0x9a4/0xf80\n __io_read+0x8d4/0x20f0\n io_read+0x3e/0xf0\n io_issue_sqe+0x42b/0x22c0\n io_wq_submit_work+0xaf9/0xdc0\n io_worker_handle_work+0xd13/0x2110\n io_wq_worker+0x447/0x1410\n ret_from_fork+0x6f/0x90\n ret_from_fork_asm+0x1a/0x30\n\nUninit was created at:\n __alloc_pages_noprof+0x9a7/0xe00\n alloc_pages_mpol_noprof+0x299/0x990\n alloc_pages_noprof+0x1bf/0x1e0\n allocate_slab+0x33a/0x1250\n ___slab_alloc+0x12ef/0x35e0\n kmem_cache_alloc_bulk_noprof+0x486/0x1330\n __io_alloc_req_refill+0x84/0x560\n io_submit_sqes+0x172f/0x2f30\n __se_sys_io_uring_enter+0x406/0x41c0\n __x64_sys_io_uring_enter+0x11f/0x1a0\n x64_sys_call+0x2b54/0x3ba0\n do_syscall_64+0xcd/0x1e0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nSince an instance of \u0027struct kiocb\u0027 may be passed from the block layer\nwith \u0027private\u0027 field uninitialized, introduce \u0027ocfs2_iocb_init_rw_locked()\u0027\nand use it from where \u0027ocfs2_dio_end_io()\u0027 might take care, i.e. in\n\u0027ocfs2_file_read_iter()\u0027 and \u0027ocfs2_file_write_iter()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53155",
"url": "https://www.suse.com/security/cve/CVE-2024-53155"
},
{
"category": "external",
"summary": "SUSE Bug 1234855 for CVE-2024-53155",
"url": "https://bugzilla.suse.com/1234855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53155"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53159"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53159",
"url": "https://www.suse.com/security/cve/CVE-2024-53159"
},
{
"category": "external",
"summary": "SUSE Bug 1234848 for CVE-2024-53159",
"url": "https://bugzilla.suse.com/1234848"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53159"
},
{
"cve": "CVE-2024-53160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu\n\nKCSAN reports a data race when access the krcp-\u003emonitor_work.timer.expires\nvariable in the schedule_delayed_monitor_work() function:\n\n\u003csnip\u003e\nBUG: KCSAN: data-race in __mod_timer / kvfree_call_rcu\n\nread to 0xffff888237d1cce8 of 8 bytes by task 10149 on cpu 1:\n schedule_delayed_monitor_work kernel/rcu/tree.c:3520 [inline]\n kvfree_call_rcu+0x3b8/0x510 kernel/rcu/tree.c:3839\n trie_update_elem+0x47c/0x620 kernel/bpf/lpm_trie.c:441\n bpf_map_update_value+0x324/0x350 kernel/bpf/syscall.c:203\n generic_map_update_batch+0x401/0x520 kernel/bpf/syscall.c:1849\n bpf_map_do_batch+0x28c/0x3f0 kernel/bpf/syscall.c:5143\n __sys_bpf+0x2e5/0x7a0\n __do_sys_bpf kernel/bpf/syscall.c:5741 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5739 [inline]\n __x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5739\n x64_sys_call+0x2625/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nwrite to 0xffff888237d1cce8 of 8 bytes by task 56 on cpu 0:\n __mod_timer+0x578/0x7f0 kernel/time/timer.c:1173\n add_timer_global+0x51/0x70 kernel/time/timer.c:1330\n __queue_delayed_work+0x127/0x1a0 kernel/workqueue.c:2523\n queue_delayed_work_on+0xdf/0x190 kernel/workqueue.c:2552\n queue_delayed_work include/linux/workqueue.h:677 [inline]\n schedule_delayed_monitor_work kernel/rcu/tree.c:3525 [inline]\n kfree_rcu_monitor+0x5e8/0x660 kernel/rcu/tree.c:3643\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0x483/0x9a0 kernel/workqueue.c:3310\n worker_thread+0x51d/0x6f0 kernel/workqueue.c:3391\n kthread+0x1d1/0x210 kernel/kthread.c:389\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 UID: 0 PID: 56 Comm: kworker/u8:4 Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events_unbound kfree_rcu_monitor\n\u003csnip\u003e\n\nkfree_rcu_monitor() rearms the work if a \"krcp\" has to be still\noffloaded and this is done without holding krcp-\u003elock, whereas\nthe kvfree_call_rcu() holds it.\n\nFix it by acquiring the \"krcp-\u003elock\" for kfree_rcu_monitor() so\nboth functions do not race anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53160",
"url": "https://www.suse.com/security/cve/CVE-2024-53160"
},
{
"category": "external",
"summary": "SUSE Bug 1234810 for CVE-2024-53160",
"url": "https://bugzilla.suse.com/1234810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53160"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix bfqq uaf in bfq_limit_depth()\n\nSet new allocated bfqq to bic or remove freed bfqq from bic are both\nprotected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq\nfrom bic without the lock, this can lead to UAF if the io_context is\nshared by multiple tasks.\n\nFor example, test bfq with io_uring can trigger following UAF in v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfqq_group+0x15/0x50\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x80\n print_address_description.constprop.0+0x66/0x300\n print_report+0x3e/0x70\n kasan_report+0xb4/0xf0\n bfqq_group+0x15/0x50\n bfqq_request_over_limit+0x130/0x9a0\n bfq_limit_depth+0x1b5/0x480\n __blk_mq_alloc_requests+0x2b5/0xa00\n blk_mq_get_new_requests+0x11d/0x1d0\n blk_mq_submit_bio+0x286/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __block_write_full_folio+0x3d0/0x640\n writepage_cb+0x3b/0xc0\n write_cache_pages+0x254/0x6c0\n write_cache_pages+0x254/0x6c0\n do_writepages+0x192/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nAllocated by task 808602:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_slab_alloc+0x83/0x90\n kmem_cache_alloc_node+0x1b1/0x6d0\n bfq_get_queue+0x138/0xfa0\n bfq_get_bfqq_handle_split+0xe3/0x2c0\n bfq_init_rq+0x196/0xbb0\n bfq_insert_request.isra.0+0xb5/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_insert_request+0x15d/0x440\n blk_mq_submit_bio+0x8a4/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __blkdev_direct_IO_async+0x2dd/0x330\n blkdev_write_iter+0x39a/0x450\n io_write+0x22a/0x840\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFreed by task 808589:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n __kasan_slab_free+0x126/0x1b0\n kmem_cache_free+0x10c/0x750\n bfq_put_queue+0x2dd/0x770\n __bfq_insert_request.isra.0+0x155/0x7a0\n bfq_insert_request.isra.0+0x122/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_dispatch_plug_list+0x528/0x7e0\n blk_mq_flush_plug_list.part.0+0xe5/0x590\n __blk_flush_plug+0x3b/0x90\n blk_finish_plug+0x40/0x60\n do_writepages+0x19d/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFix the problem by protecting bic_to_bfqq() with bfqd-\u003elock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53166",
"url": "https://www.suse.com/security/cve/CVE-2024-53166"
},
{
"category": "external",
"summary": "SUSE Bug 1234884 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "external",
"summary": "SUSE Bug 1234885 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-53169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fabrics: fix kernel crash while shutting down controller\n\nThe nvme keep-alive operation, which executes at a periodic interval,\ncould potentially sneak in while shutting down a fabric controller.\nThis may lead to a race between the fabric controller admin queue\ndestroy code path (invoked while shutting down controller) and hw/hctx\nqueue dispatcher called from the nvme keep-alive async request queuing\noperation. This race could lead to the kernel crash shown below:\n\nCall Trace:\n autoremove_wake_function+0x0/0xbc (unreliable)\n __blk_mq_sched_dispatch_requests+0x114/0x24c\n blk_mq_sched_dispatch_requests+0x44/0x84\n blk_mq_run_hw_queue+0x140/0x220\n nvme_keep_alive_work+0xc8/0x19c [nvme_core]\n process_one_work+0x200/0x4e0\n worker_thread+0x340/0x504\n kthread+0x138/0x140\n start_kernel_thread+0x14/0x18\n\nWhile shutting down fabric controller, if nvme keep-alive request sneaks\nin then it would be flushed off. The nvme_keep_alive_end_io function is\nthen invoked to handle the end of the keep-alive operation which\ndecrements the admin-\u003eq_usage_counter and assuming this is the last/only\nrequest in the admin queue then the admin-\u003eq_usage_counter becomes zero.\nIf that happens then blk-mq destroy queue operation (blk_mq_destroy_\nqueue()) which could be potentially running simultaneously on another\ncpu (as this is the controller shutdown code path) would forward\nprogress and deletes the admin queue. So, now from this point onward\nwe are not supposed to access the admin queue resources. However the\nissue here\u0027s that the nvme keep-alive thread running hw/hctx queue\ndispatch operation hasn\u0027t yet finished its work and so it could still\npotentially access the admin queue resource while the admin queue had\nbeen already deleted and that causes the above crash.\n\nThe above kernel crash is regression caused due to changes implemented\nin commit a54a93d0e359 (\"nvme: move stopping keep-alive into\nnvme_uninit_ctrl()\"). Ideally we should stop keep-alive before destroyin\ng the admin queue and freeing the admin tagset so that it wouldn\u0027t sneak\nin during the shutdown operation. However we removed the keep alive stop\noperation from the beginning of the controller shutdown code path in commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\")\nand added it under nvme_uninit_ctrl() which executes very late in the\nshutdown code path after the admin queue is destroyed and its tagset is\nremoved. So this change created the possibility of keep-alive sneaking in\nand interfering with the shutdown operation and causing observed kernel\ncrash.\n\nTo fix the observed crash, we decided to move nvme_stop_keep_alive() from\nnvme_uninit_ctrl() to nvme_remove_admin_tag_set(). This change would ensure\nthat we don\u0027t forward progress and delete the admin queue until the keep-\nalive operation is finished (if it\u0027s in-flight) or cancelled and that would\nhelp contain the race condition explained above and hence avoid the crash.\n\nMoving nvme_stop_keep_alive() to nvme_remove_admin_tag_set() instead of\nadding nvme_stop_keep_alive() to the beginning of the controller shutdown\ncode path in nvme_stop_ctrl(), as was the case earlier before commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\"),\nwould help save one callsite of nvme_stop_keep_alive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53169",
"url": "https://www.suse.com/security/cve/CVE-2024-53169"
},
{
"category": "external",
"summary": "SUSE Bug 1234900 for CVE-2024-53169",
"url": "https://bugzilla.suse.com/1234900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53169"
},
{
"cve": "CVE-2024-53171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit\n\nAfter an insertion in TNC, the tree might split and cause a node to\nchange its `znode-\u003eparent`. A further deletion of other nodes in the\ntree (which also could free the nodes), the aforementioned node\u0027s\n`znode-\u003ecparent` could still point to a freed node. This\n`znode-\u003ecparent` may not be updated when getting nodes to commit in\n`ubifs_tnc_start_commit()`. This could then trigger a use-after-free\nwhen accessing the `znode-\u003ecparent` in `write_index()` in\n`ubifs_tnc_end_commit()`.\n\nThis can be triggered by running\n\n rm -f /etc/test-file.bin\n dd if=/dev/urandom of=/etc/test-file.bin bs=1M count=60 conv=fsync\n\nin a loop, and with `CONFIG_UBIFS_FS_AUTHENTICATION`. KASAN then\nreports:\n\n BUG: KASAN: use-after-free in ubifs_tnc_end_commit+0xa5c/0x1950\n Write of size 32 at addr ffffff800a3af86c by task ubifs_bgt0_20/153\n\n Call trace:\n dump_backtrace+0x0/0x340\n show_stack+0x18/0x24\n dump_stack_lvl+0x9c/0xbc\n print_address_description.constprop.0+0x74/0x2b0\n kasan_report+0x1d8/0x1f0\n kasan_check_range+0xf8/0x1a0\n memcpy+0x84/0xf4\n ubifs_tnc_end_commit+0xa5c/0x1950\n do_commit+0x4e0/0x1340\n ubifs_bg_thread+0x234/0x2e0\n kthread+0x36c/0x410\n ret_from_fork+0x10/0x20\n\n Allocated by task 401:\n kasan_save_stack+0x38/0x70\n __kasan_kmalloc+0x8c/0xd0\n __kmalloc+0x34c/0x5bc\n tnc_insert+0x140/0x16a4\n ubifs_tnc_add+0x370/0x52c\n ubifs_jnl_write_data+0x5d8/0x870\n do_writepage+0x36c/0x510\n ubifs_writepage+0x190/0x4dc\n __writepage+0x58/0x154\n write_cache_pages+0x394/0x830\n do_writepages+0x1f0/0x5b0\n filemap_fdatawrite_wbc+0x170/0x25c\n file_write_and_wait_range+0x140/0x190\n ubifs_fsync+0xe8/0x290\n vfs_fsync_range+0xc0/0x1e4\n do_fsync+0x40/0x90\n __arm64_sys_fsync+0x34/0x50\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\n Freed by task 403:\n kasan_save_stack+0x38/0x70\n kasan_set_track+0x28/0x40\n kasan_set_free_info+0x28/0x4c\n __kasan_slab_free+0xd4/0x13c\n kfree+0xc4/0x3a0\n tnc_delete+0x3f4/0xe40\n ubifs_tnc_remove_range+0x368/0x73c\n ubifs_tnc_remove_ino+0x29c/0x2e0\n ubifs_jnl_delete_inode+0x150/0x260\n ubifs_evict_inode+0x1d4/0x2e4\n evict+0x1c8/0x450\n iput+0x2a0/0x3c4\n do_unlinkat+0x2cc/0x490\n __arm64_sys_unlinkat+0x90/0x100\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\nThe offending `memcpy()` in `ubifs_copy_hash()` has a use-after-free\nwhen a node becomes root in TNC but still has a `cparent` to an already\nfreed node. More specifically, consider the following TNC:\n\n zroot\n /\n /\n zp1\n /\n /\n zn\n\nInserting a new node `zn_new` with a key smaller then `zn` will trigger\na split in `tnc_insert()` if `zp1` is full:\n\n zroot\n / \\\n / \\\n zp1 zp2\n / \\\n / \\\n zn_new zn\n\n`zn-\u003eparent` has now been moved to `zp2`, *but* `zn-\u003ecparent` still\npoints to `zp1`.\n\nNow, consider a removal of all the nodes _except_ `zn`. Just when\n`tnc_delete()` is about to delete `zroot` and `zp2`:\n\n zroot\n \\\n \\\n zp2\n \\\n \\\n zn\n\n`zroot` and `zp2` get freed and the tree collapses:\n\n zn\n\n`zn` now becomes the new `zroot`.\n\n`get_znodes_to_commit()` will now only find `zn`, the new `zroot`, and\n`write_index()` will check its `znode-\u003ecparent` that wrongly points to\nthe already freed `zp1`. `ubifs_copy_hash()` thus gets wrongly called\nwith `znode-\u003ecparent-\u003ezbranch[znode-\u003eiip].hash` that triggers the\nuse-after-free!\n\nFix this by explicitly setting `znode-\u003ecparent` to `NULL` in\n`get_znodes_to_commit()` for the root node. The search for the dirty\nnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53171",
"url": "https://www.suse.com/security/cve/CVE-2024-53171"
},
{
"category": "external",
"summary": "SUSE Bug 1234889 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "external",
"summary": "SUSE Bug 1236234 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1236234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53171"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: make sure cache entry active before cache_show\n\nThe function `c_show` was called with protection from RCU. This only\nensures that `cp` will not be freed. Therefore, the reference count for\n`cp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `cache_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `cp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 7 PID: 822 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 7 UID: 0 PID: 822 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n\nCall Trace:\n \u003cTASK\u003e\n c_show+0x2fc/0x380 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53174",
"url": "https://www.suse.com/security/cve/CVE-2024-53174"
},
{
"category": "external",
"summary": "SUSE Bug 1234899 for CVE-2024-53174",
"url": "https://bugzilla.suse.com/1234899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53174"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Add sanity NULL check for the default mmap fault handler\n\nA driver might allow the mmap access before initializing its\nruntime-\u003edma_area properly. Add a proper NULL check before passing to\nvirt_to_page() for avoiding a panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53180",
"url": "https://www.suse.com/security/cve/CVE-2024-53180"
},
{
"category": "external",
"summary": "SUSE Bug 1234929 for CVE-2024-53180",
"url": "https://bugzilla.suse.com/1234929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53180"
},
{
"cve": "CVE-2024-53188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix crash when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe function ath12k_dp_cc_cleanup is called to release resources.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nat RIP: 0010:ath12k_dp_cc_cleanup.part.0+0xb6/0x500 [ath12k]\nCall Trace:\nath12k_dp_cc_cleanup\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set to NULL the released structure in\nath12k_dp_cc_cleanup at the end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53188",
"url": "https://www.suse.com/security/cve/CVE-2024-53188"
},
{
"category": "external",
"summary": "SUSE Bug 1234948 for CVE-2024-53188",
"url": "https://bugzilla.suse.com/1234948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53188"
},
{
"cve": "CVE-2024-53190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures\n\nSyzkaller reported a hung task with uevent_show() on stack trace. That\nspecific issue was addressed by another commit [0], but even with that\nfix applied (for example, running v6.12-rc5) we face another type of hung\ntask that comes from the same reproducer [1]. By investigating that, we\ncould narrow it to the following path:\n\n(a) Syzkaller emulates a Realtek USB WiFi adapter using raw-gadget and\ndummy_hcd infrastructure.\n\n(b) During the probe of rtl8192cu, the driver ends-up performing an efuse\nread procedure (which is related to EEPROM load IIUC), and here lies the\nissue: the function read_efuse() calls read_efuse_byte() many times, as\nloop iterations depending on the efuse size (in our example, 512 in total).\n\nThis procedure for reading efuse bytes relies in a loop that performs an\nI/O read up to *10k* times in case of failures. We measured the time of\nthe loop inside read_efuse_byte() alone, and in this reproducer (which\ninvolves the dummy_hcd emulation layer), it takes 15 seconds each. As a\nconsequence, we have the driver stuck in its probe routine for big time,\nexposing a stack trace like below if we attempt to reboot the system, for\nexample:\n\ntask:kworker/0:3 state:D stack:0 pid:662 tgid:662 ppid:2 flags:0x00004000\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n __schedule+0xe22/0xeb6\n schedule_timeout+0xe7/0x132\n __wait_for_common+0xb5/0x12e\n usb_start_wait_urb+0xc5/0x1ef\n ? usb_alloc_urb+0x95/0xa4\n usb_control_msg+0xff/0x184\n _usbctrl_vendorreq_sync+0xa0/0x161\n _usb_read_sync+0xb3/0xc5\n read_efuse_byte+0x13c/0x146\n read_efuse+0x351/0x5f0\n efuse_read_all_map+0x42/0x52\n rtl_efuse_shadow_map_update+0x60/0xef\n rtl_get_hwinfo+0x5d/0x1c2\n rtl92cu_read_eeprom_info+0x10a/0x8d5\n ? rtl92c_read_chip_version+0x14f/0x17e\n rtl_usb_probe+0x323/0x851\n usb_probe_interface+0x278/0x34b\n really_probe+0x202/0x4a4\n __driver_probe_device+0x166/0x1b2\n driver_probe_device+0x2f/0xd8\n [...]\n\nWe propose hereby to drastically reduce the attempts of doing the I/O\nreads in case of failures, restricted to USB devices (given that\nthey\u0027re inherently slower than PCIe ones). By retrying up to 10 times\n(instead of 10000), we got reponsiveness in the reproducer, while seems\nreasonable to believe that there\u0027s no sane USB device implementation in\nthe field requiring this amount of retries at every I/O read in order\nto properly work. Based on that assumption, it\u0027d be good to have it\nbackported to stable but maybe not since driver implementation (the 10k\nnumber comes from day 0), perhaps up to 6.x series makes sense.\n\n[0] Commit 15fffc6a5624 (\"driver core: Fix uevent_show() vs driver detach race\")\n\n[1] A note about that: this syzkaller report presents multiple reproducers\nthat differs by the type of emulated USB device. For this specific case,\ncheck the entry from 2024/08/08 06:23 in the list of crashes; the C repro\nis available at https://syzkaller.appspot.com/text?tag=ReproC\u0026x=1521fc83980000.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53190",
"url": "https://www.suse.com/security/cve/CVE-2024-53190"
},
{
"category": "external",
"summary": "SUSE Bug 1234950 for CVE-2024-53190",
"url": "https://bugzilla.suse.com/1234950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "low"
}
],
"title": "CVE-2024-53190"
},
{
"cve": "CVE-2024-53191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix warning when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe buffers dp-\u003etx_ring[i].tx_status are released.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nWARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80\nCall Trace:\nfree_large_kmalloc\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set the buffers to NULL after releasing in\norder to avoid the double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53191",
"url": "https://www.suse.com/security/cve/CVE-2024-53191"
},
{
"category": "external",
"summary": "SUSE Bug 1234952 for CVE-2024-53191",
"url": "https://bugzilla.suse.com/1234952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53191"
},
{
"cve": "CVE-2024-53200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in hwss_setup_dpp\n\nThis commit addresses a null pointer dereference issue in\nhwss_setup_dpp(). The issue could occur when pipe_ctx-\u003eplane_state is\nnull. The fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53200",
"url": "https://www.suse.com/security/cve/CVE-2024-53200"
},
{
"category": "external",
"summary": "SUSE Bug 1234968 for CVE-2024-53200",
"url": "https://bugzilla.suse.com/1234968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53200"
},
{
"cve": "CVE-2024-53201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in\ndcn20_program_pipe(). Previously, commit 8e4ed3cf1642 (\"drm/amd/display:\nAdd null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\")\npartially fixed the null pointer dereference issue. However, in\ndcn20_update_dchubp_dpp(), the variable pipe_ctx is passed in, and\nplane_state is accessed again through pipe_ctx. Multiple if statements\ndirectly call attributes of plane_state, leading to potential null\npointer dereference issues. This patch adds necessary null checks to\nensure stability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53201",
"url": "https://www.suse.com/security/cve/CVE-2024-53201"
},
{
"category": "external",
"summary": "SUSE Bug 1234969 for CVE-2024-53201",
"url": "https://bugzilla.suse.com/1234969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53201"
},
{
"cve": "CVE-2024-53202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Fix possible resource leak in fw_log_firmware_info()\n\nThe alg instance should be released under the exception path, otherwise\nthere may be resource leak here.\n\nTo mitigate this, free the alg instance with crypto_free_shash when kmalloc\nfails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53202",
"url": "https://www.suse.com/security/cve/CVE-2024-53202"
},
{
"category": "external",
"summary": "SUSE Bug 1234970 for CVE-2024-53202",
"url": "https://bugzilla.suse.com/1234970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53202"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible deadlocks\n\nThis fixes possible deadlocks like the following caused by\nhci_cmd_sync_dequeue causing the destroy function to run:\n\n INFO: task kworker/u19:0:143 blocked for more than 120 seconds.\n Tainted: G W O 6.8.0-2024-03-19-intel-next-iLS-24ww14 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u19:0 state:D stack:0 pid:143 tgid:143 ppid:2 flags:0x00004000\n Workqueue: hci0 hci_cmd_sync_work [bluetooth]\n Call Trace:\n \u003cTASK\u003e\n __schedule+0x374/0xaf0\n schedule+0x3c/0xf0\n schedule_preempt_disabled+0x1c/0x30\n __mutex_lock.constprop.0+0x3ef/0x7a0\n __mutex_lock_slowpath+0x13/0x20\n mutex_lock+0x3c/0x50\n mgmt_set_connectable_complete+0xa4/0x150 [bluetooth]\n ? kfree+0x211/0x2a0\n hci_cmd_sync_dequeue+0xae/0x130 [bluetooth]\n ? __pfx_cmd_complete_rsp+0x10/0x10 [bluetooth]\n cmd_complete_rsp+0x26/0x80 [bluetooth]\n mgmt_pending_foreach+0x4d/0x70 [bluetooth]\n __mgmt_power_off+0x8d/0x180 [bluetooth]\n ? _raw_spin_unlock_irq+0x23/0x40\n hci_dev_close_sync+0x445/0x5b0 [bluetooth]\n hci_set_powered_sync+0x149/0x250 [bluetooth]\n set_powered_sync+0x24/0x60 [bluetooth]\n hci_cmd_sync_work+0x90/0x150 [bluetooth]\n process_one_work+0x13e/0x300\n worker_thread+0x2f7/0x420\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x107/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x3d/0x60\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53207",
"url": "https://www.suse.com/security/cve/CVE-2024-53207"
},
{
"category": "external",
"summary": "SUSE Bug 1234907 for CVE-2024-53207",
"url": "https://bugzilla.suse.com/1234907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53207"
},
{
"cve": "CVE-2024-53208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync\n\nThis fixes the following crash:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\nRead of size 8 at addr ffff888029b4dd18 by task kworker/u9:0/54\n\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-01155-gf723224742fc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\nq kasan_report+0x143/0x180 mm/kasan/report.c:601\n set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\n hci_cmd_sync_work+0x22b/0x400 net/bluetooth/hci_sync.c:328\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd10 kernel/workqueue.c:3389\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\nAllocated by task 5247:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __kmalloc_cache_noprof+0x19c/0x2c0 mm/slub.c:4193\n kmalloc_noprof include/linux/slab.h:681 [inline]\n kzalloc_noprof include/linux/slab.h:807 [inline]\n mgmt_pending_new+0x65/0x250 net/bluetooth/mgmt_util.c:269\n mgmt_pending_add+0x36/0x120 net/bluetooth/mgmt_util.c:296\n set_powered+0x3cd/0x5e0 net/bluetooth/mgmt.c:1394\n hci_mgmt_cmd+0xc47/0x11d0 net/bluetooth/hci_sock.c:1712\n hci_sock_sendmsg+0x7b8/0x11c0 net/bluetooth/hci_sock.c:1832\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xa72/0xc90 fs/read_write.c:590\n ksys_write+0x1a0/0x2c0 fs/read_write.c:643\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5246:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x149/0x360 mm/slub.c:4598\n settings_rsp+0x2bc/0x390 net/bluetooth/mgmt.c:1443\n mgmt_pending_foreach+0xd1/0x130 net/bluetooth/mgmt_util.c:259\n __mgmt_power_off+0x112/0x420 net/bluetooth/mgmt.c:9455\n hci_dev_close_sync+0x665/0x11a0 net/bluetooth/hci_sync.c:5191\n hci_dev_do_close net/bluetooth/hci_core.c:483 [inline]\n hci_dev_close+0x112/0x210 net/bluetooth/hci_core.c:508\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83gv\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53208",
"url": "https://www.suse.com/security/cve/CVE-2024-53208"
},
{
"category": "external",
"summary": "SUSE Bug 1234909 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "external",
"summary": "SUSE Bug 1236244 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1236244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53208"
},
{
"cve": "CVE-2024-53209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix receive ring space parameters when XDP is active\n\nThe MTU setting at the time an XDP multi-buffer is attached\ndetermines whether the aggregation ring will be used and the\nrx_skb_func handler. This is done in bnxt_set_rx_skb_mode().\n\nIf the MTU is later changed, the aggregation ring setting may need\nto be changed and it may become out-of-sync with the settings\ninitially done in bnxt_set_rx_skb_mode(). This may result in\nrandom memory corruption and crashes as the HW may DMA data larger\nthan the allocated buffer size, such as:\n\nBUG: kernel NULL pointer dereference, address: 00000000000003c0\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 17 PID: 0 Comm: swapper/17 Kdump: loaded Tainted: G S OE 6.1.0-226bf9805506 #1\nHardware name: Wiwynn Delta Lake PVT BZA.02601.0150/Delta Lake-Class1, BIOS F0E_3A12 08/26/2021\nRIP: 0010:bnxt_rx_pkt+0xe97/0x1ae0 [bnxt_en]\nCode: 8b 95 70 ff ff ff 4c 8b 9d 48 ff ff ff 66 41 89 87 b4 00 00 00 e9 0b f7 ff ff 0f b7 43 0a 49 8b 95 a8 04 00 00 25 ff 0f 00 00 \u003c0f\u003e b7 14 42 48 c1 e2 06 49 03 95 a0 04 00 00 0f b6 42 33f\nRSP: 0018:ffffa19f40cc0d18 EFLAGS: 00010202\nRAX: 00000000000001e0 RBX: ffff8e2c805c6100 RCX: 00000000000007ff\nRDX: 0000000000000000 RSI: ffff8e2c271ab990 RDI: ffff8e2c84f12380\nRBP: ffffa19f40cc0e48 R08: 000000000001000d R09: 974ea2fcddfa4cbf\nR10: 0000000000000000 R11: ffffa19f40cc0ff8 R12: ffff8e2c94b58980\nR13: ffff8e2c952d6600 R14: 0000000000000016 R15: ffff8e2c271ab990\nFS: 0000000000000000(0000) GS:ffff8e3b3f840000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000000003c0 CR3: 0000000e8580a004 CR4: 00000000007706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n __bnxt_poll_work+0x1c2/0x3e0 [bnxt_en]\n\nTo address the issue, we now call bnxt_set_rx_skb_mode() within\nbnxt_change_mtu() to properly set the AGG rings configuration and\nupdate rx_skb_func based on the new MTU value.\nAdditionally, BNXT_FLAG_NO_AGG_RINGS is cleared at the beginning of\nbnxt_set_rx_skb_mode() to make sure it gets set or cleared based on\nthe current MTU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53209",
"url": "https://www.suse.com/security/cve/CVE-2024-53209"
},
{
"category": "external",
"summary": "SUSE Bug 1235002 for CVE-2024-53209",
"url": "https://bugzilla.suse.com/1235002"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53209"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()\n\nThere\u0027s issue as follows:\nRPC: Registered rdma transport module.\nRPC: Registered rdma backchannel transport module.\nRPC: Unregistered rdma transport module.\nRPC: Unregistered rdma backchannel transport module.\nBUG: unable to handle page fault for address: fffffbfff80c609a\nPGD 123fee067 P4D 123fee067 PUD 123fea067 PMD 10c624067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nRIP: 0010:percpu_counter_destroy_many+0xf7/0x2a0\nCall Trace:\n \u003cTASK\u003e\n __die+0x1f/0x70\n page_fault_oops+0x2cd/0x860\n spurious_kernel_fault+0x36/0x450\n do_kern_addr_fault+0xca/0x100\n exc_page_fault+0x128/0x150\n asm_exc_page_fault+0x26/0x30\n percpu_counter_destroy_many+0xf7/0x2a0\n mmdrop+0x209/0x350\n finish_task_switch.isra.0+0x481/0x840\n schedule_tail+0xe/0xd0\n ret_from_fork+0x23/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nIf register_sysctl() return NULL, then svc_rdma_proc_cleanup() will not\ndestroy the percpu counters which init in svc_rdma_proc_init().\nIf CONFIG_HOTPLUG_CPU is enabled, residual nodes may be in the\n\u0027percpu_counters\u0027 list. The above issue may occur once the module is\nremoved. If the CONFIG_HOTPLUG_CPU configuration is not enabled, memory\nleakage occurs.\nTo solve above issue just destroy all percpu counters when\nregister_sysctl() return NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53215",
"url": "https://www.suse.com/security/cve/CVE-2024-53215"
},
{
"category": "external",
"summary": "SUSE Bug 1234962 for CVE-2024-53215",
"url": "https://bugzilla.suse.com/1234962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53215"
},
{
"cve": "CVE-2024-53216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: release svc_expkey/svc_export with rcu_work\n\nThe last reference for `cache_head` can be reduced to zero in `c_show`\nand `e_show`(using `rcu_read_lock` and `rcu_read_unlock`). Consequently,\n`svc_export_put` and `expkey_put` will be invoked, leading to two\nissues:\n\n1. The `svc_export_put` will directly free ex_uuid. However,\n `e_show`/`c_show` will access `ex_uuid` after `cache_put`, which can\n trigger a use-after-free issue, shown below.\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in svc_export_show+0x362/0x430 [nfsd]\n Read of size 1 at addr ff11000010fdc120 by task cat/870\n\n CPU: 1 UID: 0 PID: 870 Comm: cat Not tainted 6.12.0-rc3+ #1\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n 1.16.1-2.fc37 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x53/0x70\n print_address_description.constprop.0+0x2c/0x3a0\n print_report+0xb9/0x280\n kasan_report+0xae/0xe0\n svc_export_show+0x362/0x430 [nfsd]\n c_show+0x161/0x390 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Allocated by task 830:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __kmalloc_node_track_caller_noprof+0x1bc/0x400\n kmemdup_noprof+0x22/0x50\n svc_export_parse+0x8a9/0xb80 [nfsd]\n cache_do_downcall+0x71/0xa0 [sunrpc]\n cache_write_procfs+0x8e/0xd0 [sunrpc]\n proc_reg_write+0xe1/0x140\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 868:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x37/0x50\n kfree+0xf3/0x3e0\n svc_export_put+0x87/0xb0 [nfsd]\n cache_purge+0x17f/0x1f0 [sunrpc]\n nfsd_destroy_serv+0x226/0x2d0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n2. We cannot sleep while using `rcu_read_lock`/`rcu_read_unlock`.\n However, `svc_export_put`/`expkey_put` will call path_put, which\n subsequently triggers a sleeping operation due to the following\n `dput`.\n\n =============================\n WARNING: suspicious RCU usage\n 5.10.0-dirty #141 Not tainted\n -----------------------------\n ...\n Call Trace:\n dump_stack+0x9a/0xd0\n ___might_sleep+0x231/0x240\n dput+0x39/0x600\n path_put+0x1b/0x30\n svc_export_put+0x17/0x80\n e_show+0x1c9/0x200\n seq_read_iter+0x63f/0x7c0\n seq_read+0x226/0x2d0\n vfs_read+0x113/0x2c0\n ksys_read+0xc9/0x170\n do_syscall_64+0x33/0x40\n entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nFix these issues by using `rcu_work` to help release\n`svc_expkey`/`svc_export`. This approach allows for an asynchronous\ncontext to invoke `path_put` and also facilitates the freeing of\n`uuid/exp/key` after an RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53216",
"url": "https://www.suse.com/security/cve/CVE-2024-53216"
},
{
"category": "external",
"summary": "SUSE Bug 1235003 for CVE-2024-53216",
"url": "https://bugzilla.suse.com/1235003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53216"
},
{
"cve": "CVE-2024-53217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent NULL dereference in nfsd4_process_cb_update()\n\n@ses is initialized to NULL. If __nfsd4_find_backchannel() finds no\navailable backchannel session, setup_callback_client() will try to\ndereference @ses and segfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53217",
"url": "https://www.suse.com/security/cve/CVE-2024-53217"
},
{
"category": "external",
"summary": "SUSE Bug 1234999 for CVE-2024-53217",
"url": "https://bugzilla.suse.com/1234999"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53217"
},
{
"cve": "CVE-2024-53222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram-\u003ecomp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram-\u003einit_lock in other places and no such problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53222",
"url": "https://www.suse.com/security/cve/CVE-2024-53222"
},
{
"category": "external",
"summary": "SUSE Bug 1234974 for CVE-2024-53222",
"url": "https://bugzilla.suse.com/1234974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53222"
},
{
"cve": "CVE-2024-53224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Move events notifier registration to be after device registration\n\nMove pkey change work initialization and cleanup from device resources\nstage to notifier stage, since this is the stage which handles this work\nevents.\n\nFix a race between the device deregistration and pkey change work by moving\nMLX5_IB_STAGE_DEVICE_NOTIFIER to be after MLX5_IB_STAGE_IB_REG in order to\nensure that the notifier is deregistered before the device during cleanup.\nWhich ensures there are no works that are being executed after the\ndevice has already unregistered which can cause the panic below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 1 PID: 630071 Comm: kworker/1:2 Kdump: loaded Tainted: G W OE --------- --- 5.14.0-162.6.1.el9_1.x86_64 #1\nHardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 02/27/2023\nWorkqueue: events pkey_change_handler [mlx5_ib]\nRIP: 0010:setup_qp+0x38/0x1f0 [mlx5_ib]\nCode: ee 41 54 45 31 e4 55 89 f5 53 48 89 fb 48 83 ec 20 8b 77 08 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 48 8b 07 48 8d 4c 24 16 \u003c4c\u003e 8b 38 49 8b 87 80 0b 00 00 4c 89 ff 48 8b 80 08 05 00 00 8b 40\nRSP: 0018:ffffbcc54068be20 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff954054494128 RCX: ffffbcc54068be36\nRDX: ffff954004934000 RSI: 0000000000000001 RDI: ffff954054494128\nRBP: 0000000000000023 R08: ffff954001be2c20 R09: 0000000000000001\nR10: ffff954001be2c20 R11: ffff9540260133c0 R12: 0000000000000000\nR13: 0000000000000023 R14: 0000000000000000 R15: ffff9540ffcb0905\nFS: 0000000000000000(0000) GS:ffff9540ffc80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000010625c001 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\nmlx5_ib_gsi_pkey_change+0x20/0x40 [mlx5_ib]\nprocess_one_work+0x1e8/0x3c0\nworker_thread+0x50/0x3b0\n? rescuer_thread+0x380/0x380\nkthread+0x149/0x170\n? set_kthread_struct+0x50/0x50\nret_from_fork+0x22/0x30\nModules linked in: rdma_ucm(OE) rdma_cm(OE) iw_cm(OE) ib_ipoib(OE) ib_cm(OE) ib_umad(OE) mlx5_ib(OE) mlx5_fwctl(OE) fwctl(OE) ib_uverbs(OE) mlx5_core(OE) mlxdevm(OE) ib_core(OE) mlx_compat(OE) psample mlxfw(OE) tls knem(OE) netconsole nfsv3 nfs_acl nfs lockd grace fscache netfs qrtr rfkill sunrpc intel_rapl_msr intel_rapl_common rapl hv_balloon hv_utils i2c_piix4 pcspkr joydev fuse ext4 mbcache jbd2 sr_mod sd_mod cdrom t10_pi sg ata_generic pci_hyperv pci_hyperv_intf hyperv_drm drm_shmem_helper drm_kms_helper hv_storvsc syscopyarea hv_netvsc sysfillrect sysimgblt hid_hyperv fb_sys_fops scsi_transport_fc hyperv_keyboard drm ata_piix crct10dif_pclmul crc32_pclmul crc32c_intel libata ghash_clmulni_intel hv_vmbus serio_raw [last unloaded: ib_core]\nCR2: 0000000000000000\n---[ end trace f6f8be4eae12f7bc ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53224",
"url": "https://www.suse.com/security/cve/CVE-2024-53224"
},
{
"category": "external",
"summary": "SUSE Bug 1235009 for CVE-2024-53224",
"url": "https://bugzilla.suse.com/1235009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53224"
},
{
"cve": "CVE-2024-53229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix the qp flush warnings in req\n\nWhen the qp is in error state, the status of WQEs in the queue should be\nset to error. Or else the following will appear.\n\n[ 920.617269] WARNING: CPU: 1 PID: 21 at drivers/infiniband/sw/rxe/rxe_comp.c:756 rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.617744] Modules linked in: rnbd_client(O) rtrs_client(O) rtrs_core(O) rdma_ucm rdma_cm iw_cm ib_cm crc32_generic rdma_rxe ip6_udp_tunnel udp_tunnel ib_uverbs ib_core loop brd null_blk ipv6\n[ 920.618516] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G O 6.1.113-storage+ #65\n[ 920.618986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n[ 920.619396] RIP: 0010:rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.619658] Code: 0f b6 84 24 3a 02 00 00 41 89 84 24 44 04 00 00 e9 2a f7 ff ff 39 ca bb 03 00 00 00 b8 0e 00 00 00 48 0f 45 d8 e9 15 f7 ff ff \u003c0f\u003e 0b e9 cb f8 ff ff 41 bf f5 ff ff ff e9 08 f8 ff ff 49 8d bc 24\n[ 920.620482] RSP: 0018:ffff97b7c00bbc38 EFLAGS: 00010246\n[ 920.620817] RAX: 0000000000000000 RBX: 000000000000000c RCX: 0000000000000008\n[ 920.621183] RDX: ffff960dc396ebc0 RSI: 0000000000005400 RDI: ffff960dc4e2fbac\n[ 920.621548] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffffac406450\n[ 920.621884] R10: ffffffffac4060c0 R11: 0000000000000001 R12: ffff960dc4e2f800\n[ 920.622254] R13: ffff960dc4e2f928 R14: ffff97b7c029c580 R15: 0000000000000000\n[ 920.622609] FS: 0000000000000000(0000) GS:ffff960ef7d00000(0000) knlGS:0000000000000000\n[ 920.622979] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 920.623245] CR2: 00007fa056965e90 CR3: 00000001107f1000 CR4: 00000000000006e0\n[ 920.623680] Call Trace:\n[ 920.623815] \u003cTASK\u003e\n[ 920.623933] ? __warn+0x79/0xc0\n[ 920.624116] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.624356] ? report_bug+0xfb/0x150\n[ 920.624594] ? handle_bug+0x3c/0x60\n[ 920.624796] ? exc_invalid_op+0x14/0x70\n[ 920.624976] ? asm_exc_invalid_op+0x16/0x20\n[ 920.625203] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.625474] ? rxe_completer+0x329/0xcc0 [rdma_rxe]\n[ 920.625749] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.626037] rxe_requester+0x625/0xde0 [rdma_rxe]\n[ 920.626310] ? rxe_cq_post+0xe2/0x180 [rdma_rxe]\n[ 920.626583] ? do_complete+0x18d/0x220 [rdma_rxe]\n[ 920.626812] ? rxe_completer+0x1a3/0xcc0 [rdma_rxe]\n[ 920.627050] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.627285] tasklet_action_common.constprop.0+0xa4/0x120\n[ 920.627522] handle_softirqs+0xc2/0x250\n[ 920.627728] ? sort_range+0x20/0x20\n[ 920.627942] run_ksoftirqd+0x1f/0x30\n[ 920.628158] smpboot_thread_fn+0xc7/0x1b0\n[ 920.628334] kthread+0xd6/0x100\n[ 920.628504] ? kthread_complete_and_exit+0x20/0x20\n[ 920.628709] ret_from_fork+0x1f/0x30\n[ 920.628892] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53229",
"url": "https://www.suse.com/security/cve/CVE-2024-53229"
},
{
"category": "external",
"summary": "SUSE Bug 1234905 for CVE-2024-53229",
"url": "https://bugzilla.suse.com/1234905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53229"
},
{
"cve": "CVE-2024-53234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle NONHEAD !delta[1] lclusters gracefully\n\nsyzbot reported a WARNING in iomap_iter_done:\n iomap_fiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80\n ioctl_fiemap fs/ioctl.c:220 [inline]\n\nGenerally, NONHEAD lclusters won\u0027t have delta[1]==0, except for crafted\nimages and filesystems created by pre-1.0 mkfs versions.\n\nPreviously, it would immediately bail out if delta[1]==0, which led to\ninadequate decompressed lengths (thus FIEMAP is impacted). Treat it as\ndelta[1]=1 to work around these legacy mkfs versions.\n\n`lclusterbits \u003e 14` is illegal for compact indexes, error out too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53234",
"url": "https://www.suse.com/security/cve/CVE-2024-53234"
},
{
"category": "external",
"summary": "SUSE Bug 1235045 for CVE-2024-53234",
"url": "https://bugzilla.suse.com/1235045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53234"
},
{
"cve": "CVE-2024-53237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: fix use-after-free in device_for_each_child()\n\nSyzbot has reported the following KASAN splat:\n\nBUG: KASAN: slab-use-after-free in device_for_each_child+0x18f/0x1a0\nRead of size 8 at addr ffff88801f605308 by task kbnepd bnep0/4980\n\nCPU: 0 UID: 0 PID: 4980 Comm: kbnepd bnep0 Not tainted 6.12.0-rc4-00161-gae90f6a6170d #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x100/0x190\n ? device_for_each_child+0x18f/0x1a0\n print_report+0x13a/0x4cb\n ? __virt_addr_valid+0x5e/0x590\n ? __phys_addr+0xc6/0x150\n ? device_for_each_child+0x18f/0x1a0\n kasan_report+0xda/0x110\n ? device_for_each_child+0x18f/0x1a0\n ? __pfx_dev_memalloc_noio+0x10/0x10\n device_for_each_child+0x18f/0x1a0\n ? __pfx_device_for_each_child+0x10/0x10\n pm_runtime_set_memalloc_noio+0xf2/0x180\n netdev_unregister_kobject+0x1ed/0x270\n unregister_netdevice_many_notify+0x123c/0x1d80\n ? __mutex_trylock_common+0xde/0x250\n ? __pfx_unregister_netdevice_many_notify+0x10/0x10\n ? trace_contention_end+0xe6/0x140\n ? __mutex_lock+0x4e7/0x8f0\n ? __pfx_lock_acquire.part.0+0x10/0x10\n ? rcu_is_watching+0x12/0xc0\n ? unregister_netdev+0x12/0x30\n unregister_netdevice_queue+0x30d/0x3f0\n ? __pfx_unregister_netdevice_queue+0x10/0x10\n ? __pfx_down_write+0x10/0x10\n unregister_netdev+0x1c/0x30\n bnep_session+0x1fb3/0x2ab0\n ? __pfx_bnep_session+0x10/0x10\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_woken_wake_function+0x10/0x10\n ? __kthread_parkme+0x132/0x200\n ? __pfx_bnep_session+0x10/0x10\n ? kthread+0x13a/0x370\n ? __pfx_bnep_session+0x10/0x10\n kthread+0x2b7/0x370\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x48/0x80\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 4974:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n __kmalloc_noprof+0x1d1/0x440\n hci_alloc_dev_priv+0x1d/0x2820\n __vhci_create_device+0xef/0x7d0\n vhci_write+0x2c7/0x480\n vfs_write+0x6a0/0xfc0\n ksys_write+0x12f/0x260\n do_syscall_64+0xc7/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 4979:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x4f/0x70\n kfree+0x141/0x490\n hci_release_dev+0x4d9/0x600\n bt_host_release+0x6a/0xb0\n device_release+0xa4/0x240\n kobject_put+0x1ec/0x5a0\n put_device+0x1f/0x30\n vhci_release+0x81/0xf0\n __fput+0x3f6/0xb30\n task_work_run+0x151/0x250\n do_exit+0xa79/0x2c30\n do_group_exit+0xd5/0x2a0\n get_signal+0x1fcd/0x2210\n arch_do_signal_or_restart+0x93/0x780\n syscall_exit_to_user_mode+0x140/0x290\n do_syscall_64+0xd4/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nIn \u0027hci_conn_del_sysfs()\u0027, \u0027device_unregister()\u0027 may be called when\nan underlying (kobject) reference counter is greater than 1. This\nmeans that reparenting (happened when the device is actually freed)\nis delayed and, during that delay, parent controller device (hciX)\nmay be deleted. Since the latter may create a dangling pointer to\nfreed parent, avoid that scenario by reparenting to NULL explicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53237",
"url": "https://www.suse.com/security/cve/CVE-2024-53237"
},
{
"category": "external",
"summary": "SUSE Bug 1235007 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "external",
"summary": "SUSE Bug 1235008 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235008"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-53237"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-56536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56536"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cw1200: Fix potential NULL dereference\n\nA recent refactoring was identified by static analysis to\ncause a potential NULL dereference, fix this!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56536",
"url": "https://www.suse.com/security/cve/CVE-2024-56536"
},
{
"category": "external",
"summary": "SUSE Bug 1234911 for CVE-2024-56536",
"url": "https://bugzilla.suse.com/1234911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56536"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix usage slab after free\n\n[ +0.000021] BUG: KASAN: slab-use-after-free in drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000027] Read of size 8 at addr ffff8881b8605f88 by task amd_pci_unplug/2147\n\n[ +0.000023] CPU: 6 PID: 2147 Comm: amd_pci_unplug Not tainted 6.10.0+ #1\n[ +0.000016] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[ +0.000016] Call Trace:\n[ +0.000008] \u003cTASK\u003e\n[ +0.000009] dump_stack_lvl+0x76/0xa0\n[ +0.000017] print_report+0xce/0x5f0\n[ +0.000017] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] ? srso_return_thunk+0x5/0x5f\n[ +0.000015] ? kasan_complete_mode_report_info+0x72/0x200\n[ +0.000016] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] kasan_report+0xbe/0x110\n[ +0.000015] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000023] __asan_report_load8_noabort+0x14/0x30\n[ +0.000014] drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000016] ? __pfx_drm_sched_entity_flush+0x10/0x10 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? enable_work+0x124/0x220\n[ +0.000015] ? __pfx_enable_work+0x10/0x10\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? free_large_kmalloc+0x85/0xf0\n[ +0.000016] drm_sched_entity_destroy+0x18/0x30 [gpu_sched]\n[ +0.000020] amdgpu_vce_sw_fini+0x55/0x170 [amdgpu]\n[ +0.000735] ? __kasan_check_read+0x11/0x20\n[ +0.000016] vce_v4_0_sw_fini+0x80/0x110 [amdgpu]\n[ +0.000726] amdgpu_device_fini_sw+0x331/0xfc0 [amdgpu]\n[ +0.000679] ? mutex_unlock+0x80/0xe0\n[ +0.000017] ? __pfx_amdgpu_device_fini_sw+0x10/0x10 [amdgpu]\n[ +0.000662] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? mutex_unlock+0x80/0xe0\n[ +0.000016] amdgpu_driver_release_kms+0x16/0x80 [amdgpu]\n[ +0.000663] drm_minor_release+0xc9/0x140 [drm]\n[ +0.000081] drm_release+0x1fd/0x390 [drm]\n[ +0.000082] __fput+0x36c/0xad0\n[ +0.000018] __fput_sync+0x3c/0x50\n[ +0.000014] __x64_sys_close+0x7d/0xe0\n[ +0.000014] x64_sys_call+0x1bc6/0x2680\n[ +0.000014] do_syscall_64+0x70/0x130\n[ +0.000014] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit_to_user_mode+0x60/0x190\n[ +0.000015] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit+0x43/0x50\n[ +0.000012] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? exc_page_fault+0x7c/0x110\n[ +0.000015] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ +0.000014] RIP: 0033:0x7ffff7b14f67\n[ +0.000013] Code: ff e8 0d 16 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 03 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 41 c3 48 83 ec 18 89 7c 24 0c e8 73 ba f7 ff\n[ +0.000026] RSP: 002b:00007fffffffe378 EFLAGS: 00000246 ORIG_RAX: 0000000000000003\n[ +0.000019] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffff7b14f67\n[ +0.000014] RDX: 0000000000000000 RSI: 00007ffff7f6f47a RDI: 0000000000000003\n[ +0.000014] RBP: 00007fffffffe3a0 R08: 0000555555569890 R09: 0000000000000000\n[ +0.000014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffffe5c8\n[ +0.000013] R13: 00005555555552a9 R14: 0000555555557d48 R15: 00007ffff7ffd040\n[ +0.000020] \u003c/TASK\u003e\n\n[ +0.000016] Allocated by task 383 on cpu 7 at 26.880319s:\n[ +0.000014] kasan_save_stack+0x28/0x60\n[ +0.000008] kasan_save_track+0x18/0x70\n[ +0.000007] kasan_save_alloc_info+0x38/0x60\n[ +0.000007] __kasan_kmalloc+0xc1/0xd0\n[ +0.000007] kmalloc_trace_noprof+0x180/0x380\n[ +0.000007] drm_sched_init+0x411/0xec0 [gpu_sched]\n[ +0.000012] amdgpu_device_init+0x695f/0xa610 [amdgpu]\n[ +0.000658] amdgpu_driver_load_kms+0x1a/0x120 [amdgpu]\n[ +0.000662] amdgpu_pci_p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56551",
"url": "https://www.suse.com/security/cve/CVE-2024-56551"
},
{
"category": "external",
"summary": "SUSE Bug 1235075 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "external",
"summary": "SUSE Bug 1235102 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56551"
},
{
"cve": "CVE-2024-56562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56562"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()\n\nif (dev-\u003eboardinfo \u0026\u0026 dev-\u003eboardinfo-\u003einit_dyn_addr)\n ^^^ here check \"init_dyn_addr\"\n\ti3c_bus_set_addr_slot_status(\u0026master-\u003ebus, dev-\u003einfo.dyn_addr, ...)\n\t\t\t\t\t\t ^^^^\n\t\t\t\t\t\t\tfree \"dyn_addr\"\nFix copy/paste error \"dyn_addr\" by replacing it with \"init_dyn_addr\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56562",
"url": "https://www.suse.com/security/cve/CVE-2024-56562"
},
{
"category": "external",
"summary": "SUSE Bug 1234930 for CVE-2024-56562",
"url": "https://bugzilla.suse.com/1234930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56562"
},
{
"cve": "CVE-2024-56566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: Avoid list corruption when removing a slab from the full list\n\nBoot with slub_debug=UFPZ.\n\nIf allocated object failed in alloc_consistency_checks, all objects of\nthe slab will be marked as used, and then the slab will be removed from\nthe partial list.\n\nWhen an object belonging to the slab got freed later, the remove_full()\nfunction is called. Because the slab is neither on the partial list nor\non the full list, it eventually lead to a list corruption (actually a\nlist poison being detected).\n\nSo we need to mark and isolate the slab page with metadata corruption,\ndo not put it back in circulation.\n\nBecause the debug caches avoid all the fastpaths, reusing the frozen bit\nto mark slab page with metadata corruption seems to be fine.\n\n[ 4277.385669] list_del corruption, ffffea00044b3e50-\u003enext is LIST_POISON1 (dead000000000100)\n[ 4277.387023] ------------[ cut here ]------------\n[ 4277.387880] kernel BUG at lib/list_debug.c:56!\n[ 4277.388680] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 4277.389562] CPU: 5 PID: 90 Comm: kworker/5:1 Kdump: loaded Tainted: G OE 6.6.1-1 #1\n[ 4277.392113] Workqueue: xfs-inodegc/vda1 xfs_inodegc_worker [xfs]\n[ 4277.393551] RIP: 0010:__list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.394518] Code: 48 91 82 e8 37 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 28 49 91 82 e8 26 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 58 49 91\n[ 4277.397292] RSP: 0018:ffffc90000333b38 EFLAGS: 00010082\n[ 4277.398202] RAX: 000000000000004e RBX: ffffea00044b3e50 RCX: 0000000000000000\n[ 4277.399340] RDX: 0000000000000002 RSI: ffffffff828f8715 RDI: 00000000ffffffff\n[ 4277.400545] RBP: ffffea00044b3e40 R08: 0000000000000000 R09: ffffc900003339f0\n[ 4277.401710] R10: 0000000000000003 R11: ffffffff82d44088 R12: ffff888112cf9910\n[ 4277.402887] R13: 0000000000000001 R14: 0000000000000001 R15: ffff8881000424c0\n[ 4277.404049] FS: 0000000000000000(0000) GS:ffff88842fd40000(0000) knlGS:0000000000000000\n[ 4277.405357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4277.406389] CR2: 00007f2ad0b24000 CR3: 0000000102a3a006 CR4: 00000000007706e0\n[ 4277.407589] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4277.408780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4277.410000] PKRU: 55555554\n[ 4277.410645] Call Trace:\n[ 4277.411234] \u003cTASK\u003e\n[ 4277.411777] ? die+0x32/0x80\n[ 4277.412439] ? do_trap+0xd6/0x100\n[ 4277.413150] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.414158] ? do_error_trap+0x6a/0x90\n[ 4277.414948] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.415915] ? exc_invalid_op+0x4c/0x60\n[ 4277.416710] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.417675] ? asm_exc_invalid_op+0x16/0x20\n[ 4277.418482] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.419466] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.420410] free_to_partial_list+0x515/0x5e0\n[ 4277.421242] ? xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.422298] xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.423316] ? xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.424383] xfs_bmap_del_extent_delay+0x4fe/0x7d0 [xfs]\n[ 4277.425490] __xfs_bunmapi+0x50d/0x840 [xfs]\n[ 4277.426445] xfs_itruncate_extents_flags+0x13a/0x490 [xfs]\n[ 4277.427553] xfs_inactive_truncate+0xa3/0x120 [xfs]\n[ 4277.428567] xfs_inactive+0x22d/0x290 [xfs]\n[ 4277.429500] xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.430479] process_one_work+0x171/0x340\n[ 4277.431227] worker_thread+0x277/0x390\n[ 4277.431962] ? __pfx_worker_thread+0x10/0x10\n[ 4277.432752] kthread+0xf0/0x120\n[ 4277.433382] ? __pfx_kthread+0x10/0x10\n[ 4277.434134] ret_from_fork+0x2d/0x50\n[ 4277.434837] ? __pfx_kthread+0x10/0x10\n[ 4277.435566] ret_from_fork_asm+0x1b/0x30\n[ 4277.436280] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56566",
"url": "https://www.suse.com/security/cve/CVE-2024-56566"
},
{
"category": "external",
"summary": "SUSE Bug 1235033 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "external",
"summary": "SUSE Bug 1235034 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56566"
},
{
"cve": "CVE-2024-56567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nad7780: fix division by zero in ad7780_write_raw()\n\nIn the ad7780_write_raw() , val2 can be zero, which might lead to a\ndivision by zero error in DIV_ROUND_CLOSEST(). The ad7780_write_raw()\nis based on iio_info\u0027s write_raw. While val is explicitly declared that\ncan be zero (in read mode), val2 is not specified to be non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56567",
"url": "https://www.suse.com/security/cve/CVE-2024-56567"
},
{
"category": "external",
"summary": "SUSE Bug 1234916 for CVE-2024-56567",
"url": "https://bugzilla.suse.com/1234916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56567"
},
{
"cve": "CVE-2024-56576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56576"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: tc358743: Fix crash in the probe error path when using polling\n\nIf an error occurs in the probe() function, we should remove the polling\ntimer that was alarmed earlier, otherwise the timer is called with\narguments that are already freed, which results in a crash.\n\n------------[ cut here ]------------\nWARNING: CPU: 3 PID: 0 at kernel/time/timer.c:1830 __run_timers+0x244/0x268\nModules linked in:\nCPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted 6.11.0 #226\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\npstate: 804000c9 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : __run_timers+0x244/0x268\nlr : __run_timers+0x1d4/0x268\nsp : ffffff80eff2baf0\nx29: ffffff80eff2bb50 x28: 7fffffffffffffff x27: ffffff80eff2bb00\nx26: ffffffc080f669c0 x25: ffffff80efef6bf0 x24: ffffff80eff2bb00\nx23: 0000000000000000 x22: dead000000000122 x21: 0000000000000000\nx20: ffffff80efef6b80 x19: ffffff80041c8bf8 x18: ffffffffffffffff\nx17: ffffffc06f146000 x16: ffffff80eff27dc0 x15: 000000000000003e\nx14: 0000000000000000 x13: 00000000000054da x12: 0000000000000000\nx11: 00000000000639c0 x10: 000000000000000c x9 : 0000000000000009\nx8 : ffffff80eff2cb40 x7 : ffffff80eff2cb40 x6 : ffffff8002bee480\nx5 : ffffffc080cb2220 x4 : ffffffc080cb2150 x3 : 00000000000f4240\nx2 : 0000000000000102 x1 : ffffff80eff2bb00 x0 : ffffff80041c8bf0\nCall trace:\n __run_timers+0x244/0x268\n timer_expire_remote+0x50/0x68\n tmigr_handle_remote+0x388/0x39c\n run_timer_softirq+0x38/0x44\n handle_softirqs+0x138/0x298\n __do_softirq+0x14/0x20\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0x9c/0xcc\n el1_interrupt+0x48/0xc0\n el1h_64_irq_handler+0x18/0x24\n el1h_64_irq+0x7c/0x80\n default_idle_call+0x34/0x68\n do_idle+0x23c/0x294\n cpu_startup_entry+0x38/0x3c\n secondary_start_kernel+0x128/0x160\n __secondary_switched+0xb8/0xbc\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56576",
"url": "https://www.suse.com/security/cve/CVE-2024-56576"
},
{
"category": "external",
"summary": "SUSE Bug 1235019 for CVE-2024-56576",
"url": "https://bugzilla.suse.com/1235019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56576"
},
{
"cve": "CVE-2024-56582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56582"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free in btrfs_encoded_read_endio()\n\nShinichiro reported the following use-after free that sometimes is\nhappening in our CI system when running fstests\u0027 btrfs/284 on a TCMU\nrunner device:\n\n BUG: KASAN: slab-use-after-free in lock_release+0x708/0x780\n Read of size 8 at addr ffff888106a83f18 by task kworker/u80:6/219\n\n CPU: 8 UID: 0 PID: 219 Comm: kworker/u80:6 Not tainted 6.12.0-rc6-kts+ #15\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6e/0xa0\n ? lock_release+0x708/0x780\n print_report+0x174/0x505\n ? lock_release+0x708/0x780\n ? __virt_addr_valid+0x224/0x410\n ? lock_release+0x708/0x780\n kasan_report+0xda/0x1b0\n ? lock_release+0x708/0x780\n ? __wake_up+0x44/0x60\n lock_release+0x708/0x780\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? lock_is_held_type+0x9a/0x110\n _raw_spin_unlock_irqrestore+0x1f/0x60\n __wake_up+0x44/0x60\n btrfs_encoded_read_endio+0x14b/0x190 [btrfs]\n btrfs_check_read_bio+0x8d9/0x1360 [btrfs]\n ? lock_release+0x1b0/0x780\n ? trace_lock_acquire+0x12f/0x1a0\n ? __pfx_btrfs_check_read_bio+0x10/0x10 [btrfs]\n ? process_one_work+0x7e3/0x1460\n ? lock_acquire+0x31/0xc0\n ? process_one_work+0x7e3/0x1460\n process_one_work+0x85c/0x1460\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x16c/0x240\n worker_thread+0x5e6/0xfc0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2c3/0x3a0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_encoded_read_regular_fill_pages+0x16c/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x4f/0x70\n kfree+0x143/0x490\n btrfs_encoded_read_regular_fill_pages+0x531/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n The buggy address belongs to the object at ffff888106a83f00\n which belongs to the cache kmalloc-rnd-07-96 of size 96\n The buggy address is located 24 bytes inside of\n freed 96-byte region [ffff888106a83f00, ffff888106a83f60)\n\n The buggy address belongs to the physical page:\n page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888106a83800 pfn:0x106a83\n flags: 0x17ffffc0000000(node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f5(slab)\n raw: 0017ffffc0000000 ffff888100053680 ffffea0004917200 0000000000000004\n raw: ffff888106a83800 0000000080200019 00000001f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888106a83e00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a83e80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n \u003effff888106a83f00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ^\n ffff888106a83f80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a84000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ==================================================================\n\nFurther analyzing the trace and \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56582",
"url": "https://www.suse.com/security/cve/CVE-2024-56582"
},
{
"category": "external",
"summary": "SUSE Bug 1235128 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "external",
"summary": "SUSE Bug 1235129 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-56582"
},
{
"cve": "CVE-2024-56599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56599"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: avoid NULL pointer error during sdio remove\n\nWhen running \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will free sdio\nworkqueue by destroy_workqueue(). But if CONFIG_INIT_ON_FREE_DEFAULT_ON\nis set to yes, kernel panic will happen:\nCall trace:\n destroy_workqueue+0x1c/0x258\n ath10k_sdio_remove+0x84/0x94\n sdio_bus_remove+0x50/0x16c\n device_release_driver_internal+0x188/0x25c\n device_driver_detach+0x20/0x2c\n\nThis is because during \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will call\nath10k_core_destroy() before destroy_workqueue(). wiphy_dev_release()\nwill finally be called in ath10k_core_destroy(). This function will free\nstruct cfg80211_registered_device *rdev and all its members, including\nwiphy, dev and the pointer of sdio workqueue. Then the pointer of sdio\nworkqueue will be set to NULL due to CONFIG_INIT_ON_FREE_DEFAULT_ON.\n\nAfter device release, destroy_workqueue() will use NULL pointer then the\nkernel panic happen.\n\nCall trace:\nath10k_sdio_remove\n -\u003eath10k_core_unregister\n \u2026\u2026\n -\u003eath10k_core_stop\n -\u003eath10k_hif_stop\n -\u003eath10k_sdio_irq_disable\n -\u003eath10k_hif_power_down\n -\u003edel_timer_sync(\u0026ar_sdio-\u003esleep_timer)\n -\u003eath10k_core_destroy\n -\u003eath10k_mac_destroy\n -\u003eieee80211_free_hw\n -\u003ewiphy_free\n \u2026\u2026\n -\u003ewiphy_dev_release\n -\u003edestroy_workqueue\n\nNeed to call destroy_workqueue() before ath10k_core_destroy(), free\nthe work queue buffer first and then free pointer of work queue by\nath10k_core_destroy(). This order matches the error path order in\nath10k_sdio_probe().\n\nNo work will be queued on sdio workqueue between it is destroyed and\nath10k_core_destroy() is called. Based on the call_stack above, the\nreason is:\nOnly ath10k_sdio_sleep_timer_handler(), ath10k_sdio_hif_tx_sg() and\nath10k_sdio_irq_disable() will queue work on sdio workqueue.\nSleep timer will be deleted before ath10k_core_destroy() in\nath10k_hif_power_down().\nath10k_sdio_irq_disable() only be called in ath10k_hif_stop().\nath10k_core_unregister() will call ath10k_hif_power_down() to stop hif\nbus, so ath10k_sdio_hif_tx_sg() won\u0027t be called anymore.\n\nTested-on: QCA6174 hw3.2 SDIO WLAN.RMH.4.4.1-00189",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56599",
"url": "https://www.suse.com/security/cve/CVE-2024-56599"
},
{
"category": "external",
"summary": "SUSE Bug 1235138 for CVE-2024-56599",
"url": "https://bugzilla.suse.com/1235138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56599"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: j1939: j1939_session_new(): fix skb reference counting\n\nSince j1939_session_skb_queue() does an extra skb_get() for each new\nskb, do the same for the initial one in j1939_session_new() to avoid\nrefcount underflow.\n\n[mkl: clean up commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56645",
"url": "https://www.suse.com/security/cve/CVE-2024-56645"
},
{
"category": "external",
"summary": "SUSE Bug 1235134 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "external",
"summary": "SUSE Bug 1235135 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-56645"
},
{
"cve": "CVE-2024-56667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Fix NULL pointer dereference in capture_engine\n\nWhen the intel_context structure contains NULL,\nit raises a NULL pointer dereference error in drm_info().\n\n(cherry picked from commit 754302a5bc1bd8fd3b7d85c168b0a1af6d4bba4d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56667",
"url": "https://www.suse.com/security/cve/CVE-2024-56667"
},
{
"category": "external",
"summary": "SUSE Bug 1235016 for CVE-2024-56667",
"url": "https://bugzilla.suse.com/1235016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56667"
},
{
"cve": "CVE-2024-56752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()\n\nWhen the call to gf100_grctx_generate() fails, unlock gr-\u003efecs.mutex\nbefore returning the error.\n\nFixes smatch warning:\n\ndrivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480 gf100_gr_chan_new() warn: inconsistent returns \u0027\u0026gr-\u003efecs.mutex\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56752",
"url": "https://www.suse.com/security/cve/CVE-2024-56752"
},
{
"category": "external",
"summary": "SUSE Bug 1234937 for CVE-2024-56752",
"url": "https://bugzilla.suse.com/1234937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56752"
},
{
"cve": "CVE-2024-56754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: caam - Fix the pointer passed to caam_qi_shutdown()\n\nThe type of the last parameter given to devm_add_action_or_reset() is\n\"struct caam_drv_private *\", but in caam_qi_shutdown(), it is casted to\n\"struct device *\".\n\nPass the correct parameter to devm_add_action_or_reset() so that the\nresources are released as expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56754",
"url": "https://www.suse.com/security/cve/CVE-2024-56754"
},
{
"category": "external",
"summary": "SUSE Bug 1234918 for CVE-2024-56754",
"url": "https://bugzilla.suse.com/1234918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56754"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-56756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix freeing of the HMB descriptor table\n\nThe HMB descriptor table is sized to the maximum number of descriptors\nthat could be used for a given device, but __nvme_alloc_host_mem could\nbreak out of the loop earlier on memory allocation failure and end up\nusing less descriptors than planned for, which leads to an incorrect\nsize passed to dma_free_coherent.\n\nIn practice this was not showing up because the number of descriptors\ntends to be low and the dma coherent allocator always allocates and\nfrees at least a page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56756",
"url": "https://www.suse.com/security/cve/CVE-2024-56756"
},
{
"category": "external",
"summary": "SUSE Bug 1234922 for CVE-2024-56756",
"url": "https://bugzilla.suse.com/1234922"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "moderate"
}
],
"title": "CVE-2024-56756"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.23.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.23.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-15T09:07:49Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
}
]
}
SUSE-SU-2025:0154-1
Vulnerability from csaf_suse - Published: 2025-01-17 09:15 - Updated: 2025-01-17 09:15Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).
- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).
- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).
- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-44996: vsock: fix recursive ->recvmsg calls (bsc#1230205).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).
- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53095: smb: client: Fix use-after-free of network namespace (bsc#1233642).
- CVE-2024-53099: bpf: Check validity of link->type in bpf_link_show_fdinfo() (bsc#1233772).
- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).
- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).
- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)
- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).
- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).
- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).
- CVE-2024-53240: xen/netfront: fix crash when removing device (XSA-465 bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).
- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).
- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
The following non-security bugs were fixed:
- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
- ACPI: resource: Fix memory resource type union access (git-fixes).
- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).
- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).
- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).
- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).
- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).
- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).
- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).
- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).
- ALSA: line6: Fix racy access to midibuf (stable-fixes).
- ALSA: seq: Check UMP support for midi_version change (git-fixes).
- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).
- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).
- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).
- ALSA: seq: ump: Use guard() for locking (stable-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).
- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).
- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).
- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).
- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).
- ASoC: SOF: Remove libraries from topology lookups (git-fixes).
- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).
- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).
- ASoC: amd: yc: Fix the wrong return value (git-fixes).
- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).
- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).
- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).
- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).
- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).
- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).
- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).
- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).
- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).
- ASoC: nau8822: Lower debug print priority (stable-fixes).
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).
- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).
- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).
- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).
- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).
- Bluetooth: iso: Fix recursive locking warning (git-fixes).
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Async COPY result needs to return a write verifier (git-fixes).
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: Remove a never-true comparison (git-fixes).
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (git-fixes).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).
- PCI/AER: Disable AER service on suspend (stable-fixes).
- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (stable-fixes).
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).
- PCI: Add T_PERST_CLK_US macro (git-fixes).
- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).
- PCI: Fix use-after-free of slot->bus on hot remove (stable-fixes).
- PCI: Use preserve_config in place of pci_flags (stable-fixes).
- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).
- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).
- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).
- PCI: j721e: Add per platform maximum lane settings (stable-fixes).
- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).
- PCI: j721e: Add suspend and resume support (git-fixes).
- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).
- PCI: qcom: Add support for IPQ9574 (stable-fixes).
- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).
- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).
- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)
- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)
- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)
- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)
- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)
- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)
- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)
- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)
- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)
- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (git-fixes)
- RDMA/uverbs: Prevent integer overflow issue (git-fixes)
- Revert 'block/mq-deadline: use correct way to throttling write requests' (bsc#1234146).
- Revert 'btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)'
- Revert 'igb: Disable threaded IRQ for igb_msix_other' (git-fixes).
- Revert 'mm, kmsan: fix infinite recursion due to RCU critical section' (bsc#1230413)
- Revert 'mm/sparsemem: fix race in accessing memory_section->usage' (bsc#1230413)
- Revert 'mm: prevent derefencing NULL ptr in pfn_section_valid()' (bsc#1230413)
- Revert 'unicode: Do not special case ignorable code points' (stable-fixes).
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).
- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).
- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).
- USB: serial: option: add TCL IK512 MBIM & ECM (stable-fixes).
- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).
- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).
- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).
- accel/habanalabs: fix debugfs files permissions (stable-fixes).
- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).
- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).
- afs: Automatically generate trace tag enums (git-fixes).
- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).
- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).
- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).
- arch: Remove cmpxchg_double (bsc#1220773).
- arch: consolidate arch_irq_work_raise prototypes (git-fixes).
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: Force position-independent veneers (git-fixes).
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).
- batman-adv: Do not send uninitialized TT changes (git-fixes).
- batman-adv: Remove uninitialized data in full table TT response (git-fixes).
- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).
- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).
- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).
- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).
- blk-throttle: fix lockdep warning of 'cgroup_mutex or RCU read lock required!' (bsc#1234140).
- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).
- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).
- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).
- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).
- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).
- block/mq-deadline: Fix the tag reservation code (bsc#1234148).
- block: Call .limit_depth() after .hctx has been set (bsc#1234148).
- block: Fix where bio IO priority gets set (bsc#1234145).
- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).
- block: update the stable_writes flag in bdev_add (bsc#1234141).
- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).
- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).
- bpf: verifier: prevent userspace memory access (git-fixes).
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)
- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).
- can: j1939: fix error in J1939 documentation (stable-fixes).
- checkpatch: always parse orig_commit in fixes tag (git-fixes).
- checkpatch: check for missing Fixes tags (stable-fixes).
- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).
- clocksource/drivers:sp804: Make user selectable (git-fixes).
- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).
- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).
- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).
- crypto: x86/sha256 - Add parentheses around macros' single arguments (stable-fixes).
- cyrpto/b128ops: Remove struct u128 (bsc#1220773).
- devlink: Fix length of eswitch inline-mode (git-fixes).
- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).
- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).
- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).
- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).
- dmaengine: tegra: Return correct DMA status when paused (git-fixes).
- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).
- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).
- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).
- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).
- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).
- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).
- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).
- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).
- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).
- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).
- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).
- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).
- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).
- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).
- drm/amdgpu/pm: Remove gpu_od if it's an empty directory (stable-fixes).
- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).
- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).
- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).
- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).
- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).
- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).
- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).
- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
- drm/amdgpu: do not access invalid sched (git-fixes).
- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
- drm/amdgpu: fix usage slab after free (stable-fixes).
- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).
- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).
- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
- drm/amdkfd: Use device based logging for errors (stable-fixes).
- drm/amdkfd: Use the correct wptr size (stable-fixes).
- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).
- drm/bridge: it6505: Enable module autoloading (stable-fixes).
- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).
- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).
- drm/display: Fix building with GCC 15 (stable-fixes).
- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).
- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).
- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).
- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).
- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).
- drm/i915/dg1: Fix power gate sequence (git-fixes).
- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).
- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).
- drm/mcde: Enable module autoloading (stable-fixes).
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).
- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).
- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).
- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).
- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).
- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).
- drm/radeon: change rdev->ddev to rdev_to_drm(rdev) (stable-fixes).
- drm/sched: memset() 'job' in drm_sched_job_init() (stable-fixes).
- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).
- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).
- drm: adv7511: Drop dsi single lane support (git-fixes).
- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).
- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- erofs: avoid debugging output for (de)compressed data (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- ext4: add a new helper to check if es must be kept (bsc#1234170).
- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).
- ext4: add missed brelse in update_backups (bsc#1234171).
- ext4: allow for the last group to be marked as trimmed (bsc#1234278).
- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).
- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).
- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).
- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).
- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).
- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).
- ext4: check the extent status again before inserting delalloc block (bsc#1234186).
- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).
- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).
- ext4: correct best extent lstart adjustment logic (bsc#1234179).
- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).
- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).
- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).
- ext4: correct the start block of counting reserved clusters (bsc#1234169).
- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).
- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).
- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).
- ext4: factor out a common helper to query extent map (bsc#1234186).
- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).
- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).
- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).
- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).
- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).
- ext4: fix potential unnitialized variable (bsc#1234183).
- ext4: fix race between writepages and remount (bsc#1234168).
- ext4: fix rec_len verify error (bsc#1234167).
- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).
- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).
- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).
- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).
- ext4: make ext4_es_insert_extent() return void (bsc#1234170).
- ext4: make ext4_es_remove_extent() return void (bsc#1234170).
- ext4: make ext4_zeroout_es() return void (bsc#1234170).
- ext4: make sure allocate pending entry not fail (bsc#1234170).
- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).
- ext4: move 'ix' sanity check to corrent position (bsc#1234174).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).
- ext4: nested locking for xattr inode (bsc#1234189).
- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).
- ext4: refactor ext4_da_map_blocks() (bsc#1234178).
- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).
- ext4: remove the redundant folio_wait_stable() (bsc#1234184).
- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).
- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).
- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).
- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).
- filemap: Fix bounds checking in filemap_read() (bsc#1234209).
- filemap: add a per-mapping stable writes flag (bsc#1234141).
- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).
- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).
- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).
- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).
- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).
- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).
- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).
- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (stable-fixes).
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- hvc/xen: fix console unplug (git-fixes).
- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).
- hvc/xen: fix event channel handling for secondary consoles (git-fixes).
- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).
- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).
- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).
- hwmon: (tmp513) Do not use 'proxy' headers (stable-fixes).
- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).
- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).
- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).
- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).
- i2c: microchip-core: actually use repeated sends (git-fixes).
- i2c: microchip-core: fix 'ghost' detections (git-fixes).
- i2c: pnx: Fix timeout in wait functions (git-fixes).
- i2c: riic: Always round-up when calculating bus period (git-fixes).
- i40e: Fix handling changed priv flags (git-fixes).
- i915/guc: Accumulate active runtime on gt reset (git-fixes).
- i915/guc: Ensure busyness counter increases motonically (git-fixes).
- i915/guc: Reset engine utilization buffer before registration (git-fixes).
- ice: Unbind the workqueue (bsc#1234989)
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).
- ice: fix PHY Clock Recovery availability check (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).
- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).
- instrumentation: Wire up cmpxchg128() (bsc#1220773).
- io_uring/rw: avoid punting to io-wq directly (git-fixes).
- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).
- io_uring: Fix registered ring file refcount leak (git-fixes).
- io_uring: always lock __io_cqring_overflow_flush (git-fixes).
- io_uring: check if iowq is killed before queuing (git-fixes).
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).
- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).
- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).
- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).
- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).
- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)
- kasan: make report_lock a raw spinlock (git-fixes).
- kdb: Fix buffer overflow during tab-complete (bsc#1234652).
- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).
- kdb: Merge identical case statements in kdb_read() (bsc#1234657).
- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).
- kdb: Use format-strings rather than '\0' injection in kdb_read() (bsc#1234654).
- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).
- kdb: address -Wformat-security warnings (bsc#1234659).
- kgdb: Flush console before entering kgdb on panic (bsc#1234651).
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (stable-fixes).
- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).
- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).
- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).
- mac80211: fix user-power when emulating chanctx (stable-fixes).
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).
- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).
- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).
- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).
- mm/readahead: do not allow order-1 folio (bsc#1234205).
- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).
- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).
- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).
- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).
- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).
- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).
- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).
- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).
- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).
- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).
- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).
- net/qed: allow old cards not supporting 'num_images' to work (git-fixes).
- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).
- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).
- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).
- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).
- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).
- nvme: apple: fix device reference counting (git-fixes).
- nvme: fix metadata handling in nvme-passthrough (git-fixes).
- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).
- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).
- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).
- of: address: Report error on resource bounds overflow (stable-fixes).
- parisc: Raise minimal GCC version (bsc#1220773).
- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).
- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).
- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).
- percpu: Wire up cmpxchg128 (bsc#1220773).
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).
- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).
- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).
- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).
- phy: usb: Toggle the PHY power during init (git-fixes).
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).
- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).
- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).
- pinmux: Use sequential access to access desc->pinmux data (stable-fixes).
- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).
- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).
- platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing incorrect fan speed (stable-fixes).
- power: supply: gpio-charger: Fix set charge current limits (git-fixes).
- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).
- quota: explicitly forbid quota files from being encrypted (bsc#1234196).
- quota: flush quota_release_work upon quota writeback (bsc#1234195).
- quota: simplify drop_dquot_ref() (bsc#1234197).
- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).
- regmap: Use correct format specifier for logging range errors (stable-fixes).
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).
- rpm/kernel-binary.spec.in: fix KMPs build on 6.13+ (bsc#1234454)
- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).
- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).
- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).
- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).
- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).
- s390/facility: Disable compile time optimization for decompressor code (git-fixes).
- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).
- s390/pageattr: Implement missing kernel_page_present() (git-fixes).
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- sched/numa: fix memory leak due to the overwritten vma->numab_state (git fixes (sched/numa)).
- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).
- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).
- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).
- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).
- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).
- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).
- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).
- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).
- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).
- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).
- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).
- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).
- scsi: qla2xxx: Remove the unused 'del_list_entry' field in struct fc_port (bsc#1235406).
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).
- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).
- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).
- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).
- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).
- serial: 8250_fintek: Add support for F81216E (stable-fixes).
- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).
- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).
- serial: amba-pl011: Use port lock wrappers (stable-fixes).
- serial: amba-pl011: fix build regression (git-fixes).
- serial: do not use uninitialized value in uart_poll_init() (git-fixes).
- serial: imx: only set receiver level if it is zero (git-fixes).
- serial: imx: set receiver level before starting uart (git-fixes).
- serial: qcom-geni: Do not cancel/abort if we can't get the port lock (git-fixes).
- serial: qcom-geni: disable interrupts during console writes (git-fixes).
- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).
- serial: qcom-geni: fix console corruption (git-fixes).
- serial: qcom-geni: fix dma rx cancellation (git-fixes).
- serial: qcom-geni: fix false console tx restart (git-fixes).
- serial: qcom-geni: fix fifo polling timeout (git-fixes).
- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).
- serial: qcom-geni: fix polled console corruption (git-fixes).
- serial: qcom-geni: fix polled console initialisation (git-fixes).
- serial: qcom-geni: fix receiver enable (git-fixes).
- serial: qcom-geni: fix shutdown race (git-fixes).
- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).
- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).
- serial: qcom-geni: revert broken hibernation support (git-fixes).
- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).
- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).
- slub: Replace cmpxchg_double() (bsc#1220773).
- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]
- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).
- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).
- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).
- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).
- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).
- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).
- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).
- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).
- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).
- swiotlb: Reinstate page-alignment for mappings >= PAGE_SIZE (git-fixes).
- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).
- tools: hv: change permissions of NetworkManager configuration file (git-fixes).
- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).
- types: Introduce [us]128 (bsc#1220773).
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).
- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).
- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).
- udf: refactor inode_bmap() to handle error (bsc#1234242).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).
- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).
- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).
- usb: dwc2: Fix HCD port connection race (git-fixes).
- usb: dwc2: Fix HCD resume (git-fixes).
- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (git-fixes).
- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).
- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).
- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).
- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).
- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).
- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).
- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).
- usb: typec: use cleanup facility for 'altmodes_node' (stable-fixes).
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).
- vdpa: solidrun: Fix UB bug with devres (git-fixes).
- vfs: fix readahead(2) on block devices (bsc#1234201).
- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).
- wifi: ath5k: add PCI ID for SX76X (git-fixes).
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).
- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).
- wifi: cw1200: Fix potential NULL dereference (git-fixes).
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).
- wifi: mac80211: clean up 'ret' in sta_link_apply_parameters() (stable-fixes).
- wifi: mac80211: fix station NSS capability initialization order (git-fixes).
- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).
- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).
- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).
- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).
- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).
- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).
- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).
- xfs: do not allocate COW extents when unsharing a hole (git-fixes).
- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).
- xfs: remove unknown compat feature check in superblock write validation (git-fixes).
- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).
- xfs: sb_spino_align is not verified (git-fixes).
- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).
- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).
- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).
Patchnames
SUSE-2025-154,SUSE-SLE-Module-Basesystem-15-SP6-2025-154,SUSE-SLE-Module-Development-Tools-15-SP6-2025-154,SUSE-SLE-Module-Legacy-15-SP6-2025-154,SUSE-SLE-Module-Live-Patching-15-SP6-2025-154,SUSE-SLE-Product-HA-15-SP6-2025-154,SUSE-SLE-Product-WE-15-SP6-2025-154,openSUSE-SLE-15.6-2025-154
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).\n- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).\n- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).\n- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-44996: vsock: fix recursive -\u003erecvmsg calls (bsc#1230205).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).\n- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53095: smb: client: Fix use-after-free of network namespace (bsc#1233642).\n- CVE-2024-53099: bpf: Check validity of link-\u003etype in bpf_link_show_fdinfo() (bsc#1233772).\n- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).\n- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).\n- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)\n- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).\n- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).\n- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).\n- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).\n- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (XSA-465 bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).\n- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).\n- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n\nThe following non-security bugs were fixed:\n\n- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n- ACPI: resource: Fix memory resource type union access (git-fixes).\n- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).\n- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).\n- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).\n- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).\n- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).\n- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).\n- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).\n- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).\n- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).\n- ALSA: line6: Fix racy access to midibuf (stable-fixes).\n- ALSA: seq: Check UMP support for midi_version change (git-fixes).\n- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).\n- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).\n- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).\n- ALSA: seq: ump: Use guard() for locking (stable-fixes).\n- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).\n- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).\n- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).\n- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).\n- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).\n- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).\n- ASoC: SOF: Remove libraries from topology lookups (git-fixes).\n- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).\n- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).\n- ASoC: amd: yc: Fix the wrong return value (git-fixes).\n- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).\n- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).\n- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).\n- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).\n- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).\n- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).\n- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).\n- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).\n- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).\n- ASoC: nau8822: Lower debug print priority (stable-fixes).\n- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).\n- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).\n- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).\n- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).\n- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).\n- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).\n- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).\n- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).\n- Bluetooth: iso: Fix recursive locking warning (git-fixes).\n- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Async COPY result needs to return a write verifier (git-fixes).\n- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: Remove a never-true comparison (git-fixes).\n- NFSD: initialize copy-\u003ecp_clp early in nfsd4_copy for use by trace point (git-fixes).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).\n- PCI/AER: Disable AER service on suspend (stable-fixes).\n- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).\n- PCI: Add \u0027reset_subordinate\u0027 to reset hierarchy below bridge (stable-fixes).\n- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).\n- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).\n- PCI: Add T_PERST_CLK_US macro (git-fixes).\n- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).\n- PCI: Fix use-after-free of slot-\u003ebus on hot remove (stable-fixes).\n- PCI: Use preserve_config in place of pci_flags (stable-fixes).\n- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).\n- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).\n- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).\n- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).\n- PCI: j721e: Add per platform maximum lane settings (stable-fixes).\n- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).\n- PCI: j721e: Add suspend and resume support (git-fixes).\n- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).\n- PCI: qcom: Add support for IPQ9574 (stable-fixes).\n- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).\n- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).\n- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)\n- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)\n- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)\n- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)\n- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)\n- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)\n- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)\n- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)\n- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)\n- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)\n- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)\n- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)\n- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)\n- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)\n- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)\n- RDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible (git-fixes)\n- RDMA/uverbs: Prevent integer overflow issue (git-fixes)\n- Revert \u0027block/mq-deadline: use correct way to throttling write requests\u0027 (bsc#1234146).\n- Revert \u0027btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\u0027\n- Revert \u0027igb: Disable threaded IRQ for igb_msix_other\u0027 (git-fixes).\n- Revert \u0027mm, kmsan: fix infinite recursion due to RCU critical section\u0027 (bsc#1230413)\n- Revert \u0027mm/sparsemem: fix race in accessing memory_section-\u003eusage\u0027 (bsc#1230413)\n- Revert \u0027mm: prevent derefencing NULL ptr in pfn_section_valid()\u0027 (bsc#1230413)\n- Revert \u0027unicode: Do not special case ignorable code points\u0027 (stable-fixes).\n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).\n- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).\n- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).\n- USB: serial: option: add TCL IK512 MBIM \u0026 ECM (stable-fixes).\n- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).\n- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).\n- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).\n- accel/habanalabs: fix debugfs files permissions (stable-fixes).\n- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).\n- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).\n- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).\n- afs: Automatically generate trace tag enums (git-fixes).\n- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).\n- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).\n- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).\n- arch: Remove cmpxchg_double (bsc#1220773).\n- arch: consolidate arch_irq_work_raise prototypes (git-fixes).\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: Force position-independent veneers (git-fixes).\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).\n- batman-adv: Do not send uninitialized TT changes (git-fixes).\n- batman-adv: Remove uninitialized data in full table TT response (git-fixes).\n- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).\n- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).\n- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).\n- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).\n- blk-throttle: fix lockdep warning of \u0027cgroup_mutex or RCU read lock required!\u0027 (bsc#1234140).\n- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).\n- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).\n- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).\n- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).\n- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).\n- block/mq-deadline: Fix the tag reservation code (bsc#1234148).\n- block: Call .limit_depth() after .hctx has been set (bsc#1234148).\n- block: Fix where bio IO priority gets set (bsc#1234145).\n- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).\n- block: update the stable_writes flag in bdev_add (bsc#1234141).\n- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).\n- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).\n- bpf: verifier: prevent userspace memory access (git-fixes).\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\n- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).\n- can: j1939: fix error in J1939 documentation (stable-fixes).\n- checkpatch: always parse orig_commit in fixes tag (git-fixes).\n- checkpatch: check for missing Fixes tags (stable-fixes).\n- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).\n- clocksource/drivers:sp804: Make user selectable (git-fixes).\n- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).\n- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).\n- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).\n- crypto: x86/sha256 - Add parentheses around macros\u0027 single arguments (stable-fixes).\n- cyrpto/b128ops: Remove struct u128 (bsc#1220773).\n- devlink: Fix length of eswitch inline-mode (git-fixes).\n- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).\n- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).\n- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).\n- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).\n- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).\n- dmaengine: tegra: Return correct DMA status when paused (git-fixes).\n- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).\n- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).\n- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).\n- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).\n- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).\n- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).\n- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).\n- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).\n- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).\n- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).\n- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).\n- drm/amdgpu/pm: Remove gpu_od if it\u0027s an empty directory (stable-fixes).\n- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).\n- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).\n- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).\n- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).\n- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).\n- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: do not access invalid sched (git-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: fix usage slab after free (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).\n- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).\n- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/amdkfd: Use device based logging for errors (stable-fixes).\n- drm/amdkfd: Use the correct wptr size (stable-fixes).\n- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).\n- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).\n- drm/bridge: it6505: Enable module autoloading (stable-fixes).\n- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).\n- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).\n- drm/display: Fix building with GCC 15 (stable-fixes).\n- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).\n- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).\n- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).\n- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).\n- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).\n- drm/i915/dg1: Fix power gate sequence (git-fixes).\n- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).\n- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).\n- drm/mcde: Enable module autoloading (stable-fixes).\n- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).\n- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).\n- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).\n- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).\n- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).\n- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).\n- drm/radeon: change rdev-\u003eddev to rdev_to_drm(rdev) (stable-fixes).\n- drm/sched: memset() \u0027job\u0027 in drm_sched_job_init() (stable-fixes).\n- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).\n- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).\n- drm: adv7511: Drop dsi single lane support (git-fixes).\n- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).\n- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- erofs: avoid debugging output for (de)compressed data (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- ext4: add a new helper to check if es must be kept (bsc#1234170).\n- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).\n- ext4: add missed brelse in update_backups (bsc#1234171).\n- ext4: allow for the last group to be marked as trimmed (bsc#1234278).\n- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).\n- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).\n- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).\n- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).\n- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).\n- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).\n- ext4: check the extent status again before inserting delalloc block (bsc#1234186).\n- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).\n- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).\n- ext4: correct best extent lstart adjustment logic (bsc#1234179).\n- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).\n- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).\n- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).\n- ext4: correct the start block of counting reserved clusters (bsc#1234169).\n- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).\n- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).\n- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).\n- ext4: factor out a common helper to query extent map (bsc#1234186).\n- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).\n- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).\n- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).\n- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).\n- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).\n- ext4: fix potential unnitialized variable (bsc#1234183).\n- ext4: fix race between writepages and remount (bsc#1234168).\n- ext4: fix rec_len verify error (bsc#1234167).\n- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).\n- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).\n- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).\n- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).\n- ext4: make ext4_es_insert_extent() return void (bsc#1234170).\n- ext4: make ext4_es_remove_extent() return void (bsc#1234170).\n- ext4: make ext4_zeroout_es() return void (bsc#1234170).\n- ext4: make sure allocate pending entry not fail (bsc#1234170).\n- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).\n- ext4: move \u0027ix\u0027 sanity check to corrent position (bsc#1234174).\n- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).\n- ext4: nested locking for xattr inode (bsc#1234189).\n- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).\n- ext4: refactor ext4_da_map_blocks() (bsc#1234178).\n- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).\n- ext4: remove the redundant folio_wait_stable() (bsc#1234184).\n- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).\n- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).\n- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).\n- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).\n- filemap: Fix bounds checking in filemap_read() (bsc#1234209).\n- filemap: add a per-mapping stable writes flag (bsc#1234141).\n- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).\n- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).\n- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).\n- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).\n- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).\n- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).\n- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).\n- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).\n- gpio: grgpio: use a helper variable to store the address of ofdev-\u003edev (stable-fixes).\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- hvc/xen: fix console unplug (git-fixes).\n- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).\n- hvc/xen: fix event channel handling for secondary consoles (git-fixes).\n- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).\n- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).\n- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).\n- hwmon: (tmp513) Do not use \u0027proxy\u0027 headers (stable-fixes).\n- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).\n- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).\n- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).\n- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).\n- i2c: microchip-core: actually use repeated sends (git-fixes).\n- i2c: microchip-core: fix \u0027ghost\u0027 detections (git-fixes).\n- i2c: pnx: Fix timeout in wait functions (git-fixes).\n- i2c: riic: Always round-up when calculating bus period (git-fixes).\n- i40e: Fix handling changed priv flags (git-fixes).\n- i915/guc: Accumulate active runtime on gt reset (git-fixes).\n- i915/guc: Ensure busyness counter increases motonically (git-fixes).\n- i915/guc: Reset engine utilization buffer before registration (git-fixes).\n- ice: Unbind the workqueue (bsc#1234989)\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).\n- ice: fix PHY Clock Recovery availability check (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).\n- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).\n- instrumentation: Wire up cmpxchg128() (bsc#1220773).\n- io_uring/rw: avoid punting to io-wq directly (git-fixes).\n- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).\n- io_uring: Fix registered ring file refcount leak (git-fixes).\n- io_uring: always lock __io_cqring_overflow_flush (git-fixes).\n- io_uring: check if iowq is killed before queuing (git-fixes).\n- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).\n- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).\n- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).\n- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).\n- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).\n- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)\n- kasan: make report_lock a raw spinlock (git-fixes).\n- kdb: Fix buffer overflow during tab-complete (bsc#1234652).\n- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).\n- kdb: Merge identical case statements in kdb_read() (bsc#1234657).\n- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).\n- kdb: Use format-strings rather than \u0027\\0\u0027 injection in kdb_read() (bsc#1234654).\n- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).\n- kdb: address -Wformat-security warnings (bsc#1234659).\n- kgdb: Flush console before entering kgdb on panic (bsc#1234651).\n- leds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex (stable-fixes).\n- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).\n- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).\n- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).\n- mac80211: fix user-power when emulating chanctx (stable-fixes).\n- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).\n- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).\n- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).\n- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).\n- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).\n- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).\n- mm/readahead: do not allow order-1 folio (bsc#1234205).\n- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).\n- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).\n- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).\n- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).\n- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).\n- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).\n- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).\n- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).\n- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).\n- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).\n- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).\n- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).\n- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).\n- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).\n- net/qed: allow old cards not supporting \u0027num_images\u0027 to work (git-fixes).\n- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).\n- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).\n- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).\n- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).\n- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).\n- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).\n- nvme: apple: fix device reference counting (git-fixes).\n- nvme: fix metadata handling in nvme-passthrough (git-fixes).\n- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).\n- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).\n- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).\n- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).\n- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).\n- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).\n- of: address: Report error on resource bounds overflow (stable-fixes).\n- parisc: Raise minimal GCC version (bsc#1220773).\n- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).\n- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).\n- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).\n- percpu: Wire up cmpxchg128 (bsc#1220773).\n- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).\n- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).\n- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).\n- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).\n- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).\n- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).\n- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).\n- phy: usb: Toggle the PHY power during init (git-fixes).\n- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).\n- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).\n- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).\n- pinmux: Use sequential access to access desc-\u003epinmux data (stable-fixes).\n- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).\n- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).\n- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).\n- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).\n- platform/x86: thinkpad_acpi: Fix for ThinkPad\u0027s with ECFW showing incorrect fan speed (stable-fixes).\n- power: supply: gpio-charger: Fix set charge current limits (git-fixes).\n- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).\n- quota: explicitly forbid quota files from being encrypted (bsc#1234196).\n- quota: flush quota_release_work upon quota writeback (bsc#1234195).\n- quota: simplify drop_dquot_ref() (bsc#1234197).\n- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).\n- regmap: Use correct format specifier for logging range errors (stable-fixes).\n- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).\n- rpm/kernel-binary.spec.in: fix KMPs build on 6.13+ (bsc#1234454)\n- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).\n- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).\n- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).\n- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).\n- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).\n- s390/facility: Disable compile time optimization for decompressor code (git-fixes).\n- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).\n- s390/pageattr: Implement missing kernel_page_present() (git-fixes).\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- sched/numa: fix memory leak due to the overwritten vma-\u003enumab_state (git fixes (sched/numa)).\n- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).\n- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).\n- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).\n- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).\n- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).\n- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).\n- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).\n- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).\n- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).\n- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).\n- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).\n- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).\n- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).\n- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).\n- scsi: qla2xxx: Remove the unused \u0027del_list_entry\u0027 field in struct fc_port (bsc#1235406).\n- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).\n- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).\n- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).\n- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).\n- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).\n- serial: 8250_fintek: Add support for F81216E (stable-fixes).\n- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).\n- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).\n- serial: amba-pl011: Use port lock wrappers (stable-fixes).\n- serial: amba-pl011: fix build regression (git-fixes).\n- serial: do not use uninitialized value in uart_poll_init() (git-fixes).\n- serial: imx: only set receiver level if it is zero (git-fixes).\n- serial: imx: set receiver level before starting uart (git-fixes).\n- serial: qcom-geni: Do not cancel/abort if we can\u0027t get the port lock (git-fixes).\n- serial: qcom-geni: disable interrupts during console writes (git-fixes).\n- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).\n- serial: qcom-geni: fix console corruption (git-fixes).\n- serial: qcom-geni: fix dma rx cancellation (git-fixes).\n- serial: qcom-geni: fix false console tx restart (git-fixes).\n- serial: qcom-geni: fix fifo polling timeout (git-fixes).\n- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).\n- serial: qcom-geni: fix polled console corruption (git-fixes).\n- serial: qcom-geni: fix polled console initialisation (git-fixes).\n- serial: qcom-geni: fix receiver enable (git-fixes).\n- serial: qcom-geni: fix shutdown race (git-fixes).\n- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).\n- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).\n- serial: qcom-geni: revert broken hibernation support (git-fixes).\n- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).\n- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).\n- slub: Replace cmpxchg_double() (bsc#1220773).\n- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]\n- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).\n- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).\n- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).\n- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).\n- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).\n- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).\n- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).\n- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).\n- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).\n- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).\n- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).\n- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).\n- swiotlb: Reinstate page-alignment for mappings \u003e= PAGE_SIZE (git-fixes).\n- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).\n- tools: hv: change permissions of NetworkManager configuration file (git-fixes).\n- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).\n- types: Introduce [us]128 (bsc#1220773).\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).\n- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).\n- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).\n- udf: refactor inode_bmap() to handle error (bsc#1234242).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).\n- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).\n- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).\n- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).\n- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).\n- usb: dwc2: Fix HCD port connection race (git-fixes).\n- usb: dwc2: Fix HCD resume (git-fixes).\n- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).\n- usb: dwc2: hcd: Fix GetPortStatus \u0026 SetPortFeature (git-fixes).\n- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).\n- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).\n- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).\n- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).\n- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).\n- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).\n- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).\n- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).\n- usb: typec: use cleanup facility for \u0027altmodes_node\u0027 (stable-fixes).\n- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).\n- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).\n- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).\n- vdpa: solidrun: Fix UB bug with devres (git-fixes).\n- vfs: fix readahead(2) on block devices (bsc#1234201).\n- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).\n- wifi: ath5k: add PCI ID for SX76X (git-fixes).\n- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).\n- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).\n- wifi: cw1200: Fix potential NULL dereference (git-fixes).\n- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).\n- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).\n- wifi: mac80211: clean up \u0027ret\u0027 in sta_link_apply_parameters() (stable-fixes).\n- wifi: mac80211: fix station NSS capability initialization order (git-fixes).\n- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).\n- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).\n- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).\n- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).\n- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).\n- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).\n- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).\n- xfs: do not allocate COW extents when unsharing a hole (git-fixes).\n- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).\n- xfs: remove unknown compat feature check in superblock write validation (git-fixes).\n- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).\n- xfs: sb_spino_align is not verified (git-fixes).\n- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).\n- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).\n- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-154,SUSE-SLE-Module-Basesystem-15-SP6-2025-154,SUSE-SLE-Module-Development-Tools-15-SP6-2025-154,SUSE-SLE-Module-Legacy-15-SP6-2025-154,SUSE-SLE-Module-Live-Patching-15-SP6-2025-154,SUSE-SLE-Product-HA-15-SP6-2025-154,SUSE-SLE-Product-WE-15-SP6-2025-154,openSUSE-SLE-15.6-2025-154",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0154-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0154-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250154-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0154-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020151.html"
},
{
"category": "self",
"summary": "SUSE Bug 1214954",
"url": "https://bugzilla.suse.com/1214954"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1220773",
"url": "https://bugzilla.suse.com/1220773"
},
{
"category": "self",
"summary": "SUSE Bug 1224095",
"url": "https://bugzilla.suse.com/1224095"
},
{
"category": "self",
"summary": "SUSE Bug 1224726",
"url": "https://bugzilla.suse.com/1224726"
},
{
"category": "self",
"summary": "SUSE Bug 1225743",
"url": "https://bugzilla.suse.com/1225743"
},
{
"category": "self",
"summary": "SUSE Bug 1225758",
"url": "https://bugzilla.suse.com/1225758"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1227445",
"url": "https://bugzilla.suse.com/1227445"
},
{
"category": "self",
"summary": "SUSE Bug 1228526",
"url": "https://bugzilla.suse.com/1228526"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1230205",
"url": "https://bugzilla.suse.com/1230205"
},
{
"category": "self",
"summary": "SUSE Bug 1230413",
"url": "https://bugzilla.suse.com/1230413"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1231909",
"url": "https://bugzilla.suse.com/1231909"
},
{
"category": "self",
"summary": "SUSE Bug 1231963",
"url": "https://bugzilla.suse.com/1231963"
},
{
"category": "self",
"summary": "SUSE Bug 1232193",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232418",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232420",
"url": "https://bugzilla.suse.com/1232420"
},
{
"category": "self",
"summary": "SUSE Bug 1232421",
"url": "https://bugzilla.suse.com/1232421"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233204",
"url": "https://bugzilla.suse.com/1233204"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233259",
"url": "https://bugzilla.suse.com/1233259"
},
{
"category": "self",
"summary": "SUSE Bug 1233260",
"url": "https://bugzilla.suse.com/1233260"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233328",
"url": "https://bugzilla.suse.com/1233328"
},
{
"category": "self",
"summary": "SUSE Bug 1233461",
"url": "https://bugzilla.suse.com/1233461"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233468",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233546",
"url": "https://bugzilla.suse.com/1233546"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233772",
"url": "https://bugzilla.suse.com/1233772"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234024",
"url": "https://bugzilla.suse.com/1234024"
},
{
"category": "self",
"summary": "SUSE Bug 1234069",
"url": "https://bugzilla.suse.com/1234069"
},
{
"category": "self",
"summary": "SUSE Bug 1234071",
"url": "https://bugzilla.suse.com/1234071"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234079",
"url": "https://bugzilla.suse.com/1234079"
},
{
"category": "self",
"summary": "SUSE Bug 1234086",
"url": "https://bugzilla.suse.com/1234086"
},
{
"category": "self",
"summary": "SUSE Bug 1234139",
"url": "https://bugzilla.suse.com/1234139"
},
{
"category": "self",
"summary": "SUSE Bug 1234140",
"url": "https://bugzilla.suse.com/1234140"
},
{
"category": "self",
"summary": "SUSE Bug 1234141",
"url": "https://bugzilla.suse.com/1234141"
},
{
"category": "self",
"summary": "SUSE Bug 1234142",
"url": "https://bugzilla.suse.com/1234142"
},
{
"category": "self",
"summary": "SUSE Bug 1234143",
"url": "https://bugzilla.suse.com/1234143"
},
{
"category": "self",
"summary": "SUSE Bug 1234144",
"url": "https://bugzilla.suse.com/1234144"
},
{
"category": "self",
"summary": "SUSE Bug 1234145",
"url": "https://bugzilla.suse.com/1234145"
},
{
"category": "self",
"summary": "SUSE Bug 1234146",
"url": "https://bugzilla.suse.com/1234146"
},
{
"category": "self",
"summary": "SUSE Bug 1234147",
"url": "https://bugzilla.suse.com/1234147"
},
{
"category": "self",
"summary": "SUSE Bug 1234148",
"url": "https://bugzilla.suse.com/1234148"
},
{
"category": "self",
"summary": "SUSE Bug 1234149",
"url": "https://bugzilla.suse.com/1234149"
},
{
"category": "self",
"summary": "SUSE Bug 1234150",
"url": "https://bugzilla.suse.com/1234150"
},
{
"category": "self",
"summary": "SUSE Bug 1234153",
"url": "https://bugzilla.suse.com/1234153"
},
{
"category": "self",
"summary": "SUSE Bug 1234155",
"url": "https://bugzilla.suse.com/1234155"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234158",
"url": "https://bugzilla.suse.com/1234158"
},
{
"category": "self",
"summary": "SUSE Bug 1234159",
"url": "https://bugzilla.suse.com/1234159"
},
{
"category": "self",
"summary": "SUSE Bug 1234160",
"url": "https://bugzilla.suse.com/1234160"
},
{
"category": "self",
"summary": "SUSE Bug 1234161",
"url": "https://bugzilla.suse.com/1234161"
},
{
"category": "self",
"summary": "SUSE Bug 1234162",
"url": "https://bugzilla.suse.com/1234162"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234164",
"url": "https://bugzilla.suse.com/1234164"
},
{
"category": "self",
"summary": "SUSE Bug 1234165",
"url": "https://bugzilla.suse.com/1234165"
},
{
"category": "self",
"summary": "SUSE Bug 1234166",
"url": "https://bugzilla.suse.com/1234166"
},
{
"category": "self",
"summary": "SUSE Bug 1234167",
"url": "https://bugzilla.suse.com/1234167"
},
{
"category": "self",
"summary": "SUSE Bug 1234168",
"url": "https://bugzilla.suse.com/1234168"
},
{
"category": "self",
"summary": "SUSE Bug 1234169",
"url": "https://bugzilla.suse.com/1234169"
},
{
"category": "self",
"summary": "SUSE Bug 1234170",
"url": "https://bugzilla.suse.com/1234170"
},
{
"category": "self",
"summary": "SUSE Bug 1234171",
"url": "https://bugzilla.suse.com/1234171"
},
{
"category": "self",
"summary": "SUSE Bug 1234172",
"url": "https://bugzilla.suse.com/1234172"
},
{
"category": "self",
"summary": "SUSE Bug 1234173",
"url": "https://bugzilla.suse.com/1234173"
},
{
"category": "self",
"summary": "SUSE Bug 1234174",
"url": "https://bugzilla.suse.com/1234174"
},
{
"category": "self",
"summary": "SUSE Bug 1234175",
"url": "https://bugzilla.suse.com/1234175"
},
{
"category": "self",
"summary": "SUSE Bug 1234176",
"url": "https://bugzilla.suse.com/1234176"
},
{
"category": "self",
"summary": "SUSE Bug 1234177",
"url": "https://bugzilla.suse.com/1234177"
},
{
"category": "self",
"summary": "SUSE Bug 1234178",
"url": "https://bugzilla.suse.com/1234178"
},
{
"category": "self",
"summary": "SUSE Bug 1234179",
"url": "https://bugzilla.suse.com/1234179"
},
{
"category": "self",
"summary": "SUSE Bug 1234180",
"url": "https://bugzilla.suse.com/1234180"
},
{
"category": "self",
"summary": "SUSE Bug 1234181",
"url": "https://bugzilla.suse.com/1234181"
},
{
"category": "self",
"summary": "SUSE Bug 1234182",
"url": "https://bugzilla.suse.com/1234182"
},
{
"category": "self",
"summary": "SUSE Bug 1234183",
"url": "https://bugzilla.suse.com/1234183"
},
{
"category": "self",
"summary": "SUSE Bug 1234184",
"url": "https://bugzilla.suse.com/1234184"
},
{
"category": "self",
"summary": "SUSE Bug 1234185",
"url": "https://bugzilla.suse.com/1234185"
},
{
"category": "self",
"summary": "SUSE Bug 1234186",
"url": "https://bugzilla.suse.com/1234186"
},
{
"category": "self",
"summary": "SUSE Bug 1234187",
"url": "https://bugzilla.suse.com/1234187"
},
{
"category": "self",
"summary": "SUSE Bug 1234188",
"url": "https://bugzilla.suse.com/1234188"
},
{
"category": "self",
"summary": "SUSE Bug 1234189",
"url": "https://bugzilla.suse.com/1234189"
},
{
"category": "self",
"summary": "SUSE Bug 1234190",
"url": "https://bugzilla.suse.com/1234190"
},
{
"category": "self",
"summary": "SUSE Bug 1234191",
"url": "https://bugzilla.suse.com/1234191"
},
{
"category": "self",
"summary": "SUSE Bug 1234192",
"url": "https://bugzilla.suse.com/1234192"
},
{
"category": "self",
"summary": "SUSE Bug 1234193",
"url": "https://bugzilla.suse.com/1234193"
},
{
"category": "self",
"summary": "SUSE Bug 1234194",
"url": "https://bugzilla.suse.com/1234194"
},
{
"category": "self",
"summary": "SUSE Bug 1234195",
"url": "https://bugzilla.suse.com/1234195"
},
{
"category": "self",
"summary": "SUSE Bug 1234196",
"url": "https://bugzilla.suse.com/1234196"
},
{
"category": "self",
"summary": "SUSE Bug 1234197",
"url": "https://bugzilla.suse.com/1234197"
},
{
"category": "self",
"summary": "SUSE Bug 1234198",
"url": "https://bugzilla.suse.com/1234198"
},
{
"category": "self",
"summary": "SUSE Bug 1234199",
"url": "https://bugzilla.suse.com/1234199"
},
{
"category": "self",
"summary": "SUSE Bug 1234200",
"url": "https://bugzilla.suse.com/1234200"
},
{
"category": "self",
"summary": "SUSE Bug 1234201",
"url": "https://bugzilla.suse.com/1234201"
},
{
"category": "self",
"summary": "SUSE Bug 1234203",
"url": "https://bugzilla.suse.com/1234203"
},
{
"category": "self",
"summary": "SUSE Bug 1234204",
"url": "https://bugzilla.suse.com/1234204"
},
{
"category": "self",
"summary": "SUSE Bug 1234205",
"url": "https://bugzilla.suse.com/1234205"
},
{
"category": "self",
"summary": "SUSE Bug 1234207",
"url": "https://bugzilla.suse.com/1234207"
},
{
"category": "self",
"summary": "SUSE Bug 1234208",
"url": "https://bugzilla.suse.com/1234208"
},
{
"category": "self",
"summary": "SUSE Bug 1234209",
"url": "https://bugzilla.suse.com/1234209"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234221",
"url": "https://bugzilla.suse.com/1234221"
},
{
"category": "self",
"summary": "SUSE Bug 1234237",
"url": "https://bugzilla.suse.com/1234237"
},
{
"category": "self",
"summary": "SUSE Bug 1234238",
"url": "https://bugzilla.suse.com/1234238"
},
{
"category": "self",
"summary": "SUSE Bug 1234239",
"url": "https://bugzilla.suse.com/1234239"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234242",
"url": "https://bugzilla.suse.com/1234242"
},
{
"category": "self",
"summary": "SUSE Bug 1234243",
"url": "https://bugzilla.suse.com/1234243"
},
{
"category": "self",
"summary": "SUSE Bug 1234278",
"url": "https://bugzilla.suse.com/1234278"
},
{
"category": "self",
"summary": "SUSE Bug 1234279",
"url": "https://bugzilla.suse.com/1234279"
},
{
"category": "self",
"summary": "SUSE Bug 1234280",
"url": "https://bugzilla.suse.com/1234280"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234381",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "self",
"summary": "SUSE Bug 1234454",
"url": "https://bugzilla.suse.com/1234454"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234651",
"url": "https://bugzilla.suse.com/1234651"
},
{
"category": "self",
"summary": "SUSE Bug 1234652",
"url": "https://bugzilla.suse.com/1234652"
},
{
"category": "self",
"summary": "SUSE Bug 1234654",
"url": "https://bugzilla.suse.com/1234654"
},
{
"category": "self",
"summary": "SUSE Bug 1234655",
"url": "https://bugzilla.suse.com/1234655"
},
{
"category": "self",
"summary": "SUSE Bug 1234657",
"url": "https://bugzilla.suse.com/1234657"
},
{
"category": "self",
"summary": "SUSE Bug 1234658",
"url": "https://bugzilla.suse.com/1234658"
},
{
"category": "self",
"summary": "SUSE Bug 1234659",
"url": "https://bugzilla.suse.com/1234659"
},
{
"category": "self",
"summary": "SUSE Bug 1234668",
"url": "https://bugzilla.suse.com/1234668"
},
{
"category": "self",
"summary": "SUSE Bug 1234690",
"url": "https://bugzilla.suse.com/1234690"
},
{
"category": "self",
"summary": "SUSE Bug 1234725",
"url": "https://bugzilla.suse.com/1234725"
},
{
"category": "self",
"summary": "SUSE Bug 1234726",
"url": "https://bugzilla.suse.com/1234726"
},
{
"category": "self",
"summary": "SUSE Bug 1234810",
"url": "https://bugzilla.suse.com/1234810"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234826",
"url": "https://bugzilla.suse.com/1234826"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234829",
"url": "https://bugzilla.suse.com/1234829"
},
{
"category": "self",
"summary": "SUSE Bug 1234832",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234848",
"url": "https://bugzilla.suse.com/1234848"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234855",
"url": "https://bugzilla.suse.com/1234855"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234884",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "self",
"summary": "SUSE Bug 1234889",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234899",
"url": "https://bugzilla.suse.com/1234899"
},
{
"category": "self",
"summary": "SUSE Bug 1234900",
"url": "https://bugzilla.suse.com/1234900"
},
{
"category": "self",
"summary": "SUSE Bug 1234905",
"url": "https://bugzilla.suse.com/1234905"
},
{
"category": "self",
"summary": "SUSE Bug 1234907",
"url": "https://bugzilla.suse.com/1234907"
},
{
"category": "self",
"summary": "SUSE Bug 1234909",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "self",
"summary": "SUSE Bug 1234911",
"url": "https://bugzilla.suse.com/1234911"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234916",
"url": "https://bugzilla.suse.com/1234916"
},
{
"category": "self",
"summary": "SUSE Bug 1234918",
"url": "https://bugzilla.suse.com/1234918"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234922",
"url": "https://bugzilla.suse.com/1234922"
},
{
"category": "self",
"summary": "SUSE Bug 1234929",
"url": "https://bugzilla.suse.com/1234929"
},
{
"category": "self",
"summary": "SUSE Bug 1234930",
"url": "https://bugzilla.suse.com/1234930"
},
{
"category": "self",
"summary": "SUSE Bug 1234937",
"url": "https://bugzilla.suse.com/1234937"
},
{
"category": "self",
"summary": "SUSE Bug 1234948",
"url": "https://bugzilla.suse.com/1234948"
},
{
"category": "self",
"summary": "SUSE Bug 1234950",
"url": "https://bugzilla.suse.com/1234950"
},
{
"category": "self",
"summary": "SUSE Bug 1234952",
"url": "https://bugzilla.suse.com/1234952"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234962",
"url": "https://bugzilla.suse.com/1234962"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234968",
"url": "https://bugzilla.suse.com/1234968"
},
{
"category": "self",
"summary": "SUSE Bug 1234969",
"url": "https://bugzilla.suse.com/1234969"
},
{
"category": "self",
"summary": "SUSE Bug 1234970",
"url": "https://bugzilla.suse.com/1234970"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1234974",
"url": "https://bugzilla.suse.com/1234974"
},
{
"category": "self",
"summary": "SUSE Bug 1234989",
"url": "https://bugzilla.suse.com/1234989"
},
{
"category": "self",
"summary": "SUSE Bug 1234999",
"url": "https://bugzilla.suse.com/1234999"
},
{
"category": "self",
"summary": "SUSE Bug 1235002",
"url": "https://bugzilla.suse.com/1235002"
},
{
"category": "self",
"summary": "SUSE Bug 1235003",
"url": "https://bugzilla.suse.com/1235003"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235007",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "self",
"summary": "SUSE Bug 1235009",
"url": "https://bugzilla.suse.com/1235009"
},
{
"category": "self",
"summary": "SUSE Bug 1235016",
"url": "https://bugzilla.suse.com/1235016"
},
{
"category": "self",
"summary": "SUSE Bug 1235019",
"url": "https://bugzilla.suse.com/1235019"
},
{
"category": "self",
"summary": "SUSE Bug 1235033",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "self",
"summary": "SUSE Bug 1235045",
"url": "https://bugzilla.suse.com/1235045"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235075",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "self",
"summary": "SUSE Bug 1235108",
"url": "https://bugzilla.suse.com/1235108"
},
{
"category": "self",
"summary": "SUSE Bug 1235128",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "self",
"summary": "SUSE Bug 1235134",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "self",
"summary": "SUSE Bug 1235138",
"url": "https://bugzilla.suse.com/1235138"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235406",
"url": "https://bugzilla.suse.com/1235406"
},
{
"category": "self",
"summary": "SUSE Bug 1235409",
"url": "https://bugzilla.suse.com/1235409"
},
{
"category": "self",
"summary": "SUSE Bug 1235416",
"url": "https://bugzilla.suse.com/1235416"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE Bug 1235550",
"url": "https://bugzilla.suse.com/1235550"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27397 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27397/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35839 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39480 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39480/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50272 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50279 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53050 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53169 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56536 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56562 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56566 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56576 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56582 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56645 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-01-17T09:15:09Z",
"generator": {
"date": "2025-01-17T09:15:09Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0154-1",
"initial_release_date": "2025-01-17T09:15:09Z",
"revision_history": [
{
"date": "2025-01-17T09:15:09Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product_id": "cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product_id": "cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product_id": "dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product_id": "dlm-kmp-default-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-allwinner-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-altera-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-altera-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-altera-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-amazon-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amd-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-amd-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-amd-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-amlogic-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apm-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-apm-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-apm-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apple-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-apple-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-apple-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-arm-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-arm-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-arm-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-broadcom-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-cavium-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-exynos-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-freescale-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-hisilicon-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-lg-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-lg-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-lg-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-marvell-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-mediatek-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-nvidia-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-qcom-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-renesas-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-rockchip-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-socionext-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-sprd-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"product_id": "dtb-xilinx-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product_id": "gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product_id": "gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-64kb-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-default-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-default-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"product": {
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"product_id": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"product": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"product_id": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-default-devel-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-default-extra-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-default-optional-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-obs-build-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-obs-qa-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kernel-syms-6.4.0-150600.23.33.1.aarch64",
"product_id": "kernel-syms-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product_id": "kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product_id": "kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product_id": "ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product_id": "ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"product_id": "reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"product_id": "reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.4.0-150600.23.33.1.noarch",
"product": {
"name": "kernel-devel-6.4.0-150600.23.33.1.noarch",
"product_id": "kernel-devel-6.4.0-150600.23.33.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-6.4.0-150600.23.33.1.noarch",
"product": {
"name": "kernel-docs-6.4.0-150600.23.33.1.noarch",
"product_id": "kernel-docs-6.4.0-150600.23.33.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"product": {
"name": "kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"product_id": "kernel-docs-html-6.4.0-150600.23.33.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.4.0-150600.23.33.1.noarch",
"product": {
"name": "kernel-macros-6.4.0-150600.23.33.1.noarch",
"product_id": "kernel-macros-6.4.0-150600.23.33.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.4.0-150600.23.33.1.noarch",
"product": {
"name": "kernel-source-6.4.0-150600.23.33.1.noarch",
"product_id": "kernel-source-6.4.0-150600.23.33.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"product": {
"name": "kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"product_id": "kernel-source-vanilla-6.4.0-150600.23.33.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product_id": "cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product_id": "dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product_id": "gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-debug-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-default-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-default-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"product": {
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"product_id": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"product": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"product_id": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-default-devel-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-default-extra-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-default-optional-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"product": {
"name": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"product_id": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-obs-build-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kernel-syms-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product_id": "kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product_id": "ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"product_id": "reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"product_id": "cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"product_id": "dlm-kmp-default-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"product_id": "gfs2-kmp-default-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-default-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-default-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-default-devel-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-default-extra-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-default-livepatch-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-default-optional-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"product": {
"name": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"product_id": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-obs-build-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-obs-qa-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-syms-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-syms-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"product_id": "kernel-zfcpdump-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"product_id": "kselftests-kmp-default-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"product_id": "ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"product_id": "reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product_id": "cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product_id": "dlm-kmp-default-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product_id": "gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-debug-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-debug-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-debug-devel-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-default-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-default-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"product": {
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"product_id": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"product": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"product_id": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-default-devel-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-default-extra-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-default-optional-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-default-vdso-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"product_id": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-obs-build-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-obs-qa-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kernel-syms-6.4.0-150600.23.33.1.x86_64",
"product_id": "kernel-syms-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product_id": "kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product_id": "ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"product_id": "reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Legacy 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-legacy:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-ha:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-150600.23.33.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-150600.23.33.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-6.4.0-150600.23.33.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-docs-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-150600.23.33.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-source-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-syms-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-syms-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-syms-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le"
},
"product_reference": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x"
},
"product_reference": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.33.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-allwinner-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-altera-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-altera-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amazon-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amd-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-amd-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amlogic-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-apm-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-apm-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-apple-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-apple-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-arm-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-arm-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-broadcom-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-cavium-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-exynos-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-freescale-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-hisilicon-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-lg-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-lg-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-marvell-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-mediatek-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-nvidia-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-qcom-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-renesas-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-rockchip-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-socionext-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-sprd-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-xilinx-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-debug-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64"
},
"product_reference": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le"
},
"product_reference": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64"
},
"product_reference": "kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-vdso-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-150600.23.33.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-6.4.0-150600.23.33.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-docs-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-6.4.0-150600.23.33.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-150600.23.33.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-150600.23.33.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-source-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-6.4.0-150600.23.33.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch"
},
"product_reference": "kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kernel-syms-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-syms-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kernel-syms-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-27397",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27397"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: use timestamp to check for set element timeout\n\nAdd a timestamp field at the beginning of the transaction, store it\nin the nftables per-netns area.\n\nUpdate set backend .insert, .deactivate and sync gc path to use the\ntimestamp, this avoids that an element expires while control plane\ntransaction is still unfinished.\n\n.lookup and .update, which are used from packet path, still use the\ncurrent time to check if the element has expired. And .get path and dump\nalso since this runs lockless under rcu read size lock. Then, there is\nasync gc which also needs to check the current time since it runs\nasynchronously from a workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27397",
"url": "https://www.suse.com/security/cve/CVE-2024-27397"
},
{
"category": "external",
"summary": "SUSE Bug 1224095 for CVE-2024-27397",
"url": "https://bugzilla.suse.com/1224095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-27397"
},
{
"cve": "CVE-2024-35839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bridge: replace physindev with physinif in nf_bridge_info\n\nAn skb can be added to a neigh-\u003earp_queue while waiting for an arp\nreply. Where original skb\u0027s skb-\u003edev can be different to neigh\u0027s\nneigh-\u003edev. For instance in case of bridging dnated skb from one veth to\nanother, the skb would be added to a neigh-\u003earp_queue of the bridge.\n\nAs skb-\u003edev can be reset back to nf_bridge-\u003ephysindev and used, and as\nthere is no explicit mechanism that prevents this physindev from been\nfreed under us (for instance neigh_flush_dev doesn\u0027t cleanup skbs from\ndifferent device\u0027s neigh queue) we can crash on e.g. this stack:\n\narp_process\n neigh_update\n skb = __skb_dequeue(\u0026neigh-\u003earp_queue)\n neigh_resolve_output(..., skb)\n ...\n br_nf_dev_xmit\n br_nf_pre_routing_finish_bridge_slow\n skb-\u003edev = nf_bridge-\u003ephysindev\n br_handle_frame_finish\n\nLet\u0027s use plain ifindex instead of net_device link. To peek into the\noriginal net_device we will use dev_get_by_index_rcu(). Thus either we\nget device and are safe to use it or we don\u0027t get it and drop skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35839",
"url": "https://www.suse.com/security/cve/CVE-2024-35839"
},
{
"category": "external",
"summary": "SUSE Bug 1224726 for CVE-2024-35839",
"url": "https://bugzilla.suse.com/1224726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-35839"
},
{
"cve": "CVE-2024-36908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-iocost: do not WARN if iocg was already offlined\n\nIn iocg_pay_debt(), warn is triggered if \u0027active_list\u0027 is empty, which\nis intended to confirm iocg is active when it has debt. However, warn\ncan be triggered during a blkcg or disk removal, if iocg_waitq_timer_fn()\nis run at that time:\n\n WARNING: CPU: 0 PID: 2344971 at block/blk-iocost.c:1402 iocg_pay_debt+0x14c/0x190\n Call trace:\n iocg_pay_debt+0x14c/0x190\n iocg_kick_waitq+0x438/0x4c0\n iocg_waitq_timer_fn+0xd8/0x130\n __run_hrtimer+0x144/0x45c\n __hrtimer_run_queues+0x16c/0x244\n hrtimer_interrupt+0x2cc/0x7b0\n\nThe warn in this situation is meaningless. Since this iocg is being\nremoved, the state of the \u0027active_list\u0027 is irrelevant, and \u0027waitq_timer\u0027\nis canceled after removing \u0027active_list\u0027 in ioc_pd_free(), which ensures\niocg is freed after iocg_waitq_timer_fn() returns.\n\nTherefore, add the check if iocg was already offlined to avoid warn\nwhen removing a blkcg or disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36908",
"url": "https://www.suse.com/security/cve/CVE-2024-36908"
},
{
"category": "external",
"summary": "SUSE Bug 1225743 for CVE-2024-36908",
"url": "https://bugzilla.suse.com/1225743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-36908"
},
{
"cve": "CVE-2024-36915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: llcp: fix nfc_llcp_setsockopt() unsafe copies\n\nsyzbot reported unsafe calls to copy_from_sockptr() [1]\n\nUse copy_safe_from_sockptr() instead.\n\n[1]\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\nRead of size 4 at addr ffff88801caa1ec3 by task syz-executor459/5078\n\nCPU: 0 PID: 5078 Comm: syz-executor459 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\n do_sock_setsockopt+0x3b1/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfd/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7f7fac07fd89\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff660eb788 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7fac07fd89\nRDX: 0000000000000000 RSI: 0000000000000118 RDI: 0000000000000004\nRBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020000a80 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36915",
"url": "https://www.suse.com/security/cve/CVE-2024-36915"
},
{
"category": "external",
"summary": "SUSE Bug 1225758 for CVE-2024-36915",
"url": "https://bugzilla.suse.com/1225758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-36915"
},
{
"cve": "CVE-2024-39480",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39480"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkdb: Fix buffer overflow during tab-complete\n\nCurrently, when the user attempts symbol completion with the Tab key, kdb\nwill use strncpy() to insert the completed symbol into the command buffer.\nUnfortunately it passes the size of the source buffer rather than the\ndestination to strncpy() with predictably horrible results. Most obviously\nif the command buffer is already full but cp, the cursor position, is in\nthe middle of the buffer, then we will write past the end of the supplied\nbuffer.\n\nFix this by replacing the dubious strncpy() calls with memmove()/memcpy()\ncalls plus explicit boundary checks to make sure we have enough space\nbefore we start moving characters around.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39480",
"url": "https://www.suse.com/security/cve/CVE-2024-39480"
},
{
"category": "external",
"summary": "SUSE Bug 1227445 for CVE-2024-39480",
"url": "https://bugzilla.suse.com/1227445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-39480"
},
{
"cve": "CVE-2024-41042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prefer nft_chain_validate\n\nnft_chain_validate already performs loop detection because a cycle will\nresult in a call stack overflow (ctx-\u003elevel \u003e= NFT_JUMP_STACK_SIZE).\n\nIt also follows maps via -\u003evalidate callback in nft_lookup, so there\nappears no reason to iterate the maps again.\n\nnf_tables_check_loops() and all its helper functions can be removed.\nThis improves ruleset load time significantly, from 23s down to 12s.\n\nThis also fixes a crash bug. Old loop detection code can result in\nunbounded recursion:\n\nBUG: TASK stack guard page was hit at ....\nOops: stack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 4 PID: 1539 Comm: nft Not tainted 6.10.0-rc5+ #1\n[..]\n\nwith a suitable ruleset during validation of register stores.\n\nI can\u0027t see any actual reason to attempt to check for this from\nnft_validate_register_store(), at this point the transaction is still in\nprogress, so we don\u0027t have a full picture of the rule graph.\n\nFor nf-next it might make sense to either remove it or make this depend\non table-\u003evalidate_state in case we could catch an error earlier\n(for improved error reporting to userspace).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41042",
"url": "https://www.suse.com/security/cve/CVE-2024-41042"
},
{
"category": "external",
"summary": "SUSE Bug 1228526 for CVE-2024-41042",
"url": "https://bugzilla.suse.com/1228526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-41042"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-44996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix recursive -\u003erecvmsg calls\n\nAfter a vsock socket has been added to a BPF sockmap, its prot-\u003erecvmsg\nhas been replaced with vsock_bpf_recvmsg(). Thus the following\nrecursiion could happen:\n\nvsock_bpf_recvmsg()\n -\u003e __vsock_recvmsg()\n -\u003e vsock_connectible_recvmsg()\n -\u003e prot-\u003erecvmsg()\n -\u003e vsock_bpf_recvmsg() again\n\nWe need to fix it by calling the original -\u003erecvmsg() without any BPF\nsockmap logic in __vsock_recvmsg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44996",
"url": "https://www.suse.com/security/cve/CVE-2024-44996"
},
{
"category": "external",
"summary": "SUSE Bug 1230205 for CVE-2024-44996",
"url": "https://bugzilla.suse.com/1230205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-44996"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix uaf for accessing waker_bfqq after splitting\n\nAfter commit 42c306ed7233 (\"block, bfq: don\u0027t break merge chain in\nbfq_split_bfqq()\"), if the current procress is the last holder of bfqq,\nthe bfqq can be freed after bfq_split_bfqq(). Hence recored the bfqq and\nthen access bfqq-\u003ewaker_bfqq may trigger UAF. What\u0027s more, the waker_bfqq\nmay in the merge chain of bfqq, hence just recored waker_bfqq is still\nnot safe.\n\nFix the problem by adding a helper bfq_waker_bfqq() to check if\nbfqq-\u003ewaker_bfqq is in the merge chain, and current procress is the only\nholder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix address emission with tag-based KASAN enabled\n\nWhen BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_image\nstruct on the stack is passed during the size calculation pass and\nan address on the heap is passed during code generation. This may\ncause a heap buffer overflow if the heap address is tagged because\nemit_a64_mov_i64() will emit longer code than it did during the size\ncalculation pass. The same problem could occur without tag-based\nKASAN if one of the 16-bit words of the stack address happened to\nbe all-ones during the size calculation pass. Fix the problem by\nassuming the worst case (4 instructions) when calculating the size\nof the bpf_tramp_image address emission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50203",
"url": "https://www.suse.com/security/cve/CVE-2024-50203"
},
{
"category": "external",
"summary": "SUSE Bug 1233328 for CVE-2024-50203",
"url": "https://bugzilla.suse.com/1233328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50203"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilemap: Fix bounds checking in filemap_read()\n\nIf the caller supplies an iocb-\u003eki_pos value that is close to the\nfilesystem upper limit, and an iterator with a count that causes us to\noverflow that limit, then filemap_read() enters an infinite loop.\n\nThis behaviour was discovered when testing xfstests generic/525 with the\n\"localio\" optimisation for loopback NFS mounts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50272",
"url": "https://www.suse.com/security/cve/CVE-2024-50272"
},
{
"category": "external",
"summary": "SUSE Bug 1233461 for CVE-2024-50272",
"url": "https://bugzilla.suse.com/1233461"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50272"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix out-of-bounds access to the dirty bitset when resizing\n\ndm-cache checks the dirty bits of the cache blocks to be dropped when\nshrinking the fast device, but an index bug in bitset iteration causes\nout-of-bounds access.\n\nReproduce steps:\n\n1. create a cache device of 1024 cache blocks (128 bytes dirty bitset)\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. shrink the fast device to 512 cache blocks, triggering out-of-bounds\n access to the dirty bitset (offset 0x80)\n\ndmsetup suspend cache\ndmsetup reload cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in cache_preresume+0x269/0x7b0\n Read of size 8 at addr ffffc900000f3080 by task dmsetup/131\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc900000f3000, ffffc900000f5000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc900000f2f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effffc900000f3080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc900000f3100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by making the index post-incremented.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50279",
"url": "https://www.suse.com/security/cve/CVE-2024-50279"
},
{
"category": "external",
"summary": "SUSE Bug 1233468 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "external",
"summary": "SUSE Bug 1233708 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-50279"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-53050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53050"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in hdcp2_get_capability\n\nAdd encoder check in intel_hdcp2_get_capability to avoid\nnull pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53050",
"url": "https://www.suse.com/security/cve/CVE-2024-53050"
},
{
"category": "external",
"summary": "SUSE Bug 1233546 for CVE-2024-53050",
"url": "https://bugzilla.suse.com/1233546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53050"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Fix use-after-free of network namespace.\n\nRecently, we got a customer report that CIFS triggers oops while\nreconnecting to a server. [0]\n\nThe workload runs on Kubernetes, and some pods mount CIFS servers\nin non-root network namespaces. The problem rarely happened, but\nit was always while the pod was dying.\n\nThe root cause is wrong reference counting for network namespace.\n\nCIFS uses kernel sockets, which do not hold refcnt of the netns that\nthe socket belongs to. That means CIFS must ensure the socket is\nalways freed before its netns; otherwise, use-after-free happens.\n\nThe repro steps are roughly:\n\n 1. mount CIFS in a non-root netns\n 2. drop packets from the netns\n 3. destroy the netns\n 4. unmount CIFS\n\nWe can reproduce the issue quickly with the script [1] below and see\nthe splat [2] if CONFIG_NET_NS_REFCNT_TRACKER is enabled.\n\nWhen the socket is TCP, it is hard to guarantee the netns lifetime\nwithout holding refcnt due to async timers.\n\nLet\u0027s hold netns refcnt for each socket as done for SMC in commit\n9744d2bf1976 (\"smc: Fix use-after-free in tcp_write_timer_handler().\").\n\nNote that we need to move put_net() from cifs_put_tcp_session() to\nclean_demultiplex_info(); otherwise, __sock_create() still could touch a\nfreed netns while cifsd tries to reconnect from cifs_demultiplex_thread().\n\nAlso, maybe_get_net() cannot be put just before __sock_create() because\nthe code is not under RCU and there is a small chance that the same\naddress happened to be reallocated to another netns.\n\n[0]:\nCIFS: VFS: \\\\XXXXXXXXXXX has not responded in 15 seconds. Reconnecting...\nCIFS: Serverclose failed 4 times, giving up\nUnable to handle kernel paging request at virtual address 14de99e461f84a07\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\n[14de99e461f84a07] address between user and kernel address ranges\nInternal error: Oops: 0000000096000004 [#1] SMP\nModules linked in: cls_bpf sch_ingress nls_utf8 cifs cifs_arc4 cifs_md4 dns_resolver tcp_diag inet_diag veth xt_state xt_connmark nf_conntrack_netlink xt_nat xt_statistic xt_MASQUERADE xt_mark xt_addrtype ipt_REJECT nf_reject_ipv4 nft_chain_nat nf_nat xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment nft_compat nf_tables nfnetlink overlay nls_ascii nls_cp437 sunrpc vfat fat aes_ce_blk aes_ce_cipher ghash_ce sm4_ce_cipher sm4 sm3_ce sm3 sha3_ce sha512_ce sha512_arm64 sha1_ce ena button sch_fq_codel loop fuse configfs dmi_sysfs sha2_ce sha256_arm64 dm_mirror dm_region_hash dm_log dm_mod dax efivarfs\nCPU: 5 PID: 2690970 Comm: cifsd Not tainted 6.1.103-109.184.amzn2023.aarch64 #1\nHardware name: Amazon EC2 r7g.4xlarge/, BIOS 1.0 11/1/2018\npstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : fib_rules_lookup+0x44/0x238\nlr : __fib_lookup+0x64/0xbc\nsp : ffff8000265db790\nx29: ffff8000265db790 x28: 0000000000000000 x27: 000000000000bd01\nx26: 0000000000000000 x25: ffff000b4baf8000 x24: ffff00047b5e4580\nx23: ffff8000265db7e0 x22: 0000000000000000 x21: ffff00047b5e4500\nx20: ffff0010e3f694f8 x19: 14de99e461f849f7 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 3f92800abd010002\nx11: 0000000000000001 x10: ffff0010e3f69420 x9 : ffff800008a6f294\nx8 : 0000000000000000 x7 : 0000000000000006 x6 : 0000000000000000\nx5 : 0000000000000001 x4 : ffff001924354280 x3 : ffff8000265db7e0\nx2 : 0000000000000000 x1 : ffff0010e3f694f8 x0 : ffff00047b5e4500\nCall trace:\n fib_rules_lookup+0x44/0x238\n __fib_lookup+0x64/0xbc\n ip_route_output_key_hash_rcu+0x2c4/0x398\n ip_route_output_key_hash+0x60/0x8c\n tcp_v4_connect+0x290/0x488\n __inet_stream_connect+0x108/0x3d0\n inet_stream_connect+0x50/0x78\n kernel_connect+0x6c/0xac\n generic_ip_conne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53095",
"url": "https://www.suse.com/security/cve/CVE-2024-53095"
},
{
"category": "external",
"summary": "SUSE Bug 1233642 for CVE-2024-53095",
"url": "https://bugzilla.suse.com/1233642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53095"
},
{
"cve": "CVE-2024-53099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()\n\nIf a newly-added link type doesn\u0027t invoke BPF_LINK_TYPE(), accessing\nbpf_link_type_strs[link-\u003etype] may result in an out-of-bounds access.\n\nTo spot such missed invocations early in the future, checking the\nvalidity of link-\u003etype in bpf_link_show_fdinfo() and emitting a warning\nwhen such invocations are missed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53099",
"url": "https://www.suse.com/security/cve/CVE-2024-53099"
},
{
"category": "external",
"summary": "SUSE Bug 1233772 for CVE-2024-53099",
"url": "https://bugzilla.suse.com/1233772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53099"
},
{
"cve": "CVE-2024-53103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer\n\nWhen hvs is released, there is a possibility that vsk-\u003etrans may not\nbe initialized to NULL, which could lead to a dangling pointer.\nThis issue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53103",
"url": "https://www.suse.com/security/cve/CVE-2024-53103"
},
{
"category": "external",
"summary": "SUSE Bug 1234024 for CVE-2024-53103",
"url": "https://bugzilla.suse.com/1234024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53103"
},
{
"cve": "CVE-2024-53105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: page_alloc: move mlocked flag clearance into free_pages_prepare()\n\nSyzbot reported a bad page state problem caused by a page being freed\nusing free_page() still having a mlocked flag at free_pages_prepare()\nstage:\n\n BUG: Bad page state in process syz.5.504 pfn:61f45\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61f45\n flags: 0xfff00000080204(referenced|workingset|mlocked|node=0|zone=1|lastcpupid=0x7ff)\n raw: 00fff00000080204 0000000000000000 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\n page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set\n page_owner tracks the page as allocated\n page last allocated via order 0, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 8443, tgid 8442 (syz.5.504), ts 201884660643, free_ts 201499827394\n set_page_owner include/linux/page_owner.h:32 [inline]\n post_alloc_hook+0x1f3/0x230 mm/page_alloc.c:1537\n prep_new_page mm/page_alloc.c:1545 [inline]\n get_page_from_freelist+0x303f/0x3190 mm/page_alloc.c:3457\n __alloc_pages_noprof+0x292/0x710 mm/page_alloc.c:4733\n alloc_pages_mpol_noprof+0x3e8/0x680 mm/mempolicy.c:2265\n kvm_coalesced_mmio_init+0x1f/0xf0 virt/kvm/coalesced_mmio.c:99\n kvm_create_vm virt/kvm/kvm_main.c:1235 [inline]\n kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5488 [inline]\n kvm_dev_ioctl+0x12dc/0x2240 virt/kvm/kvm_main.c:5530\n __do_compat_sys_ioctl fs/ioctl.c:1007 [inline]\n __se_compat_sys_ioctl+0x510/0xc90 fs/ioctl.c:950\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0xb4/0x110 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x34/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n page last free pid 8399 tgid 8399 stack trace:\n reset_page_owner include/linux/page_owner.h:25 [inline]\n free_pages_prepare mm/page_alloc.c:1108 [inline]\n free_unref_folios+0xf12/0x18d0 mm/page_alloc.c:2686\n folios_put_refs+0x76c/0x860 mm/swap.c:1007\n free_pages_and_swap_cache+0x5c8/0x690 mm/swap_state.c:335\n __tlb_batch_free_encoded_pages mm/mmu_gather.c:136 [inline]\n tlb_batch_pages_flush mm/mmu_gather.c:149 [inline]\n tlb_flush_mmu_free mm/mmu_gather.c:366 [inline]\n tlb_flush_mmu+0x3a3/0x680 mm/mmu_gather.c:373\n tlb_finish_mmu+0xd4/0x200 mm/mmu_gather.c:465\n exit_mmap+0x496/0xc40 mm/mmap.c:1926\n __mmput+0x115/0x390 kernel/fork.c:1348\n exit_mm+0x220/0x310 kernel/exit.c:571\n do_exit+0x9b2/0x28e0 kernel/exit.c:926\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [inline]\n __se_sys_exit_group kernel/exit.c:1097 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1097\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n Modules linked in:\n CPU: 0 UID: 0 PID: 8442 Comm: syz.5.504 Not tainted 6.12.0-rc6-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n bad_page+0x176/0x1d0 mm/page_alloc.c:501\n free_page_is_bad mm/page_alloc.c:918 [inline]\n free_pages_prepare mm/page_alloc.c:1100 [inline]\n free_unref_page+0xed0/0xf20 mm/page_alloc.c:2638\n kvm_destroy_vm virt/kvm/kvm_main.c:1327 [inline]\n kvm_put_kvm+0xc75/0x1350 virt/kvm/kvm_main.c:1386\n kvm_vcpu_release+0x54/0x60 virt/kvm/kvm_main.c:4143\n __fput+0x23f/0x880 fs/file_table.c:431\n task_work_run+0x24f/0x310 kernel/task_work.c:239\n exit_task_work include/linux/task_work.h:43 [inline]\n do_exit+0xa2f/0x28e0 kernel/exit.c:939\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53105",
"url": "https://www.suse.com/security/cve/CVE-2024-53105"
},
{
"category": "external",
"summary": "SUSE Bug 1234069 for CVE-2024-53105",
"url": "https://bugzilla.suse.com/1234069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53105"
},
{
"cve": "CVE-2024-53111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix address wraparound in move_page_tables()\n\nOn 32-bit platforms, it is possible for the expression `len + old_addr \u003c\nold_end` to be false-positive if `len + old_addr` wraps around. \n`old_addr` is the cursor in the old range up to which page table entries\nhave been moved; so if the operation succeeded, `old_addr` is the *end* of\nthe old region, and adding `len` to it can wrap.\n\nThe overflow causes mremap() to mistakenly believe that PTEs have been\ncopied; the consequence is that mremap() bails out, but doesn\u0027t move the\nPTEs back before the new VMA is unmapped, causing anonymous pages in the\nregion to be lost. So basically if userspace tries to mremap() a\nprivate-anon region and hits this bug, mremap() will return an error and\nthe private-anon region\u0027s contents appear to have been zeroed.\n\nThe idea of this check is that `old_end - len` is the original start\naddress, and writing the check that way also makes it easier to read; so\nfix the check by rearranging the comparison accordingly.\n\n(An alternate fix would be to refactor this function by introducing an\n\"orig_old_start\" variable or such.)\n\n\nTested in a VM with a 32-bit X86 kernel; without the patch:\n\n```\nuser@horn:~/big_mremap$ cat test.c\n#define _GNU_SOURCE\n#include \u003cstdlib.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003cerr.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define ADDR1 ((void*)0x60000000)\n#define ADDR2 ((void*)0x10000000)\n#define SIZE 0x50000000uL\n\nint main(void) {\n unsigned char *p1 = mmap(ADDR1, SIZE, PROT_READ|PROT_WRITE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p1 == MAP_FAILED)\n err(1, \"mmap 1\");\n unsigned char *p2 = mmap(ADDR2, SIZE, PROT_NONE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p2 == MAP_FAILED)\n err(1, \"mmap 2\");\n *p1 = 0x41;\n printf(\"first char is 0x%02hhx\\n\", *p1);\n unsigned char *p3 = mremap(p1, SIZE, SIZE,\n MREMAP_MAYMOVE|MREMAP_FIXED, p2);\n if (p3 == MAP_FAILED) {\n printf(\"mremap() failed; first char is 0x%02hhx\\n\", *p1);\n } else {\n printf(\"mremap() succeeded; first char is 0x%02hhx\\n\", *p3);\n }\n}\nuser@horn:~/big_mremap$ gcc -static -o test test.c\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() failed; first char is 0x00\n```\n\nWith the patch:\n\n```\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() succeeded; first char is 0x41\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53111",
"url": "https://www.suse.com/security/cve/CVE-2024-53111"
},
{
"category": "external",
"summary": "SUSE Bug 1234086 for CVE-2024-53111",
"url": "https://bugzilla.suse.com/1234086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53111"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Improve MSG_ZEROCOPY error handling\n\nAdd a missing kfree_skb() to prevent memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53117",
"url": "https://www.suse.com/security/cve/CVE-2024-53117"
},
{
"category": "external",
"summary": "SUSE Bug 1234079 for CVE-2024-53117",
"url": "https://bugzilla.suse.com/1234079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53117"
},
{
"cve": "CVE-2024-53118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Fix sk_error_queue memory leak\n\nKernel queues MSG_ZEROCOPY completion notifications on the error queue.\nWhere they remain, until explicitly recv()ed. To prevent memory leaks,\nclean up the queue when the socket is destroyed.\n\nunreferenced object 0xffff8881028beb00 (size 224):\n comm \"vsock_test\", pid 1218, jiffies 4294694897\n hex dump (first 32 bytes):\n 90 b0 21 17 81 88 ff ff 90 b0 21 17 81 88 ff ff ..!.......!.....\n 00 00 00 00 00 00 00 00 00 b0 21 17 81 88 ff ff ..........!.....\n backtrace (crc 6c7031ca):\n [\u003cffffffff81418ef7\u003e] kmem_cache_alloc_node_noprof+0x2f7/0x370\n [\u003cffffffff81d35882\u003e] __alloc_skb+0x132/0x180\n [\u003cffffffff81d2d32b\u003e] sock_omalloc+0x4b/0x80\n [\u003cffffffff81d3a8ae\u003e] msg_zerocopy_realloc+0x9e/0x240\n [\u003cffffffff81fe5cb2\u003e] virtio_transport_send_pkt_info+0x412/0x4c0\n [\u003cffffffff81fe6183\u003e] virtio_transport_stream_enqueue+0x43/0x50\n [\u003cffffffff81fe0813\u003e] vsock_connectible_sendmsg+0x373/0x450\n [\u003cffffffff81d233d5\u003e] ____sys_sendmsg+0x365/0x3a0\n [\u003cffffffff81d246f4\u003e] ___sys_sendmsg+0x84/0xd0\n [\u003cffffffff81d26f47\u003e] __sys_sendmsg+0x47/0x80\n [\u003cffffffff820d3df3\u003e] do_syscall_64+0x93/0x180\n [\u003cffffffff8220012b\u003e] entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53118",
"url": "https://www.suse.com/security/cve/CVE-2024-53118"
},
{
"category": "external",
"summary": "SUSE Bug 1234071 for CVE-2024-53118",
"url": "https://bugzilla.suse.com/1234071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53118"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: solidrun: Fix UB bug with devres\n\nIn psnet_open_pf_bar() and snet_open_vf_bar() a string later passed to\npcim_iomap_regions() is placed on the stack. Neither\npcim_iomap_regions() nor the functions it calls copy that string.\n\nShould the string later ever be used, this, consequently, causes\nundefined behavior since the stack frame will by then have disappeared.\n\nFix the bug by allocating the strings on the heap through\ndevm_kasprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53126",
"url": "https://www.suse.com/security/cve/CVE-2024-53126"
},
{
"category": "external",
"summary": "SUSE Bug 1234158 for CVE-2024-53126",
"url": "https://bugzilla.suse.com/1234158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53126"
},
{
"cve": "CVE-2024-53127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\"\n\nThe commit 8396c793ffdf (\"mmc: dw_mmc: Fix IDMAC operation with pages\nbigger than 4K\") increased the max_req_size, even for 4K pages, causing\nvarious issues:\n- Panic booting the kernel/rootfs from an SD card on Rockchip RK3566\n- Panic booting the kernel/rootfs from an SD card on StarFive JH7100\n- \"swiotlb buffer is full\" and data corruption on StarFive JH7110\n\nAt this stage no fix have been found, so it\u0027s probably better to just\nrevert the change.\n\nThis reverts commit 8396c793ffdf28bb8aee7cfe0891080f8cab7890.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53127",
"url": "https://www.suse.com/security/cve/CVE-2024-53127"
},
{
"category": "external",
"summary": "SUSE Bug 1234153 for CVE-2024-53127",
"url": "https://bugzilla.suse.com/1234153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53127"
},
{
"cve": "CVE-2024-53129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/rockchip: vop: Fix a dereferenced before check warning\n\nThe \u0027state\u0027 can\u0027t be NULL, we should check crtc_state.\n\nFix warning:\ndrivers/gpu/drm/rockchip/rockchip_drm_vop.c:1096\nvop_plane_atomic_async_check() warn: variable dereferenced before check\n\u0027state\u0027 (see line 1077)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53129",
"url": "https://www.suse.com/security/cve/CVE-2024-53129"
},
{
"category": "external",
"summary": "SUSE Bug 1234155 for CVE-2024-53129",
"url": "https://bugzilla.suse.com/1234155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53129"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle dml allocation failure to avoid crash\n\n[Why]\nIn the case where a dml allocation fails for any reason, the\ncurrent state\u0027s dml contexts would no longer be valid. Then\nsubsequent calls dc_state_copy_internal would shallow copy\ninvalid memory and if the new state was released, a double\nfree would occur.\n\n[How]\nReset dml pointers in new_state to NULL and avoid invalid\npointer\n\n(cherry picked from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53133",
"url": "https://www.suse.com/security/cve/CVE-2024-53133"
},
{
"category": "external",
"summary": "SUSE Bug 1234221 for CVE-2024-53133",
"url": "https://bugzilla.suse.com/1234221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53133"
},
{
"cve": "CVE-2024-53134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx93-blk-ctrl: correct remove path\n\nThe check condition should be \u0027i \u003c bc-\u003eonecell_data.num_domains\u0027, not\n\u0027bc-\u003eonecell_data.num_domains\u0027 which will make the look never finish\nand cause kernel panic.\n\nAlso disable runtime to address\n\"imx93-blk-ctrl 4ac10000.system-controller: Unbalanced pm_runtime_enable!\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53134",
"url": "https://www.suse.com/security/cve/CVE-2024-53134"
},
{
"category": "external",
"summary": "SUSE Bug 1234159 for CVE-2024-53134",
"url": "https://bugzilla.suse.com/1234159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53134"
},
{
"cve": "CVE-2024-53136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: revert \"mm: shmem: fix data-race in shmem_getattr()\"\n\nRevert d949d1d14fa2 (\"mm: shmem: fix data-race in shmem_getattr()\") as\nsuggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over\nNFS.\n\nAs Hugh commented, \"added just to silence a syzbot sanitizer splat: added\nwhere there has never been any practical problem\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53136",
"url": "https://www.suse.com/security/cve/CVE-2024-53136"
},
{
"category": "external",
"summary": "SUSE Bug 1234161 for CVE-2024-53136",
"url": "https://bugzilla.suse.com/1234161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53136"
},
{
"cve": "CVE-2024-53141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: add missing range check in bitmap_ip_uadt\n\nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,\nthe values of ip and ip_to are slightly swapped. Therefore, the range check\nfor ip should be done later, but this part is missing and it seems that the\nvulnerability occurs.\n\nSo we should add missing range checks and remove unnecessary range checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53141",
"url": "https://www.suse.com/security/cve/CVE-2024-53141"
},
{
"category": "external",
"summary": "SUSE Bug 1234381 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "external",
"summary": "SUSE Bug 1245778 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1245778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53141"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE\n\nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4\n(\"Bluetooth: Always request for user confirmation for Just Works\")\nalways request user confirmation with confirm_hint set since the\nlikes of bluetoothd have dedicated policy around JUST_WORKS method\n(e.g. main.conf:JustWorksRepairing).\n\nCVE: CVE-2024-8805",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53144",
"url": "https://www.suse.com/security/cve/CVE-2024-53144"
},
{
"category": "external",
"summary": "SUSE Bug 1234690 for CVE-2024-53144",
"url": "https://bugzilla.suse.com/1234690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53144"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: Flush partial mappings in error case\n\nIf some remap_pfn_range() calls succeeded before one failed, we still have\nbuffer pages mapped into the userspace page tables when we drop the buffer\nreference with comedi_buf_map_put(bm). The userspace mappings are only\ncleaned up later in the mmap error path.\n\nFix it by explicitly flushing all mappings in our VMA on the error path.\n\nSee commit 79a61cc3fc04 (\"mm: avoid leaving partial pfn mappings around in\nerror case\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53148",
"url": "https://www.suse.com/security/cve/CVE-2024-53148"
},
{
"category": "external",
"summary": "SUSE Bug 1234832 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "external",
"summary": "SUSE Bug 1234833 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53148"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: Address an integer overflow\n\nDan Carpenter reports:\n\u003e Commit 78147ca8b4a9 (\"svcrdma: Add a \"parsed chunk list\" data\n\u003e structure\") from Jun 22, 2020 (linux-next), leads to the following\n\u003e Smatch static checker warning:\n\u003e\n\u003e\tnet/sunrpc/xprtrdma/svc_rdma_recvfrom.c:498 xdr_check_write_chunk()\n\u003e\twarn: potential user controlled sizeof overflow \u0027segcount * 4 * 4\u0027\n\u003e\n\u003e net/sunrpc/xprtrdma/svc_rdma_recvfrom.c\n\u003e 488 static bool xdr_check_write_chunk(struct svc_rdma_recv_ctxt *rctxt)\n\u003e 489 {\n\u003e 490 u32 segcount;\n\u003e 491 __be32 *p;\n\u003e 492\n\u003e 493 if (xdr_stream_decode_u32(\u0026rctxt-\u003erc_stream, \u0026segcount))\n\u003e ^^^^^^^^\n\u003e\n\u003e 494 return false;\n\u003e 495\n\u003e 496 /* A bogus segcount causes this buffer overflow check to fail. */\n\u003e 497 p = xdr_inline_decode(\u0026rctxt-\u003erc_stream,\n\u003e --\u003e 498 segcount * rpcrdma_segment_maxsz * sizeof(*p));\n\u003e\n\u003e\n\u003e segcount is an untrusted u32. On 32bit systems anything \u003e= SIZE_MAX / 16 will\n\u003e have an integer overflow and some those values will be accepted by\n\u003e xdr_inline_decode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53151",
"url": "https://www.suse.com/security/cve/CVE-2024-53151"
},
{
"category": "external",
"summary": "SUSE Bug 1234829 for CVE-2024-53151",
"url": "https://bugzilla.suse.com/1234829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53151"
},
{
"cve": "CVE-2024-53154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clk-apple-nco: Add NULL check in applnco_probe\n\nAdd NULL check in applnco_probe, to handle kernel NULL pointer\ndereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53154",
"url": "https://www.suse.com/security/cve/CVE-2024-53154"
},
{
"category": "external",
"summary": "SUSE Bug 1234826 for CVE-2024-53154",
"url": "https://bugzilla.suse.com/1234826"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53154"
},
{
"cve": "CVE-2024-53155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix uninitialized value in ocfs2_file_read_iter()\n\nSyzbot has reported the following KMSAN splat:\n\nBUG: KMSAN: uninit-value in ocfs2_file_read_iter+0x9a4/0xf80\n ocfs2_file_read_iter+0x9a4/0xf80\n __io_read+0x8d4/0x20f0\n io_read+0x3e/0xf0\n io_issue_sqe+0x42b/0x22c0\n io_wq_submit_work+0xaf9/0xdc0\n io_worker_handle_work+0xd13/0x2110\n io_wq_worker+0x447/0x1410\n ret_from_fork+0x6f/0x90\n ret_from_fork_asm+0x1a/0x30\n\nUninit was created at:\n __alloc_pages_noprof+0x9a7/0xe00\n alloc_pages_mpol_noprof+0x299/0x990\n alloc_pages_noprof+0x1bf/0x1e0\n allocate_slab+0x33a/0x1250\n ___slab_alloc+0x12ef/0x35e0\n kmem_cache_alloc_bulk_noprof+0x486/0x1330\n __io_alloc_req_refill+0x84/0x560\n io_submit_sqes+0x172f/0x2f30\n __se_sys_io_uring_enter+0x406/0x41c0\n __x64_sys_io_uring_enter+0x11f/0x1a0\n x64_sys_call+0x2b54/0x3ba0\n do_syscall_64+0xcd/0x1e0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nSince an instance of \u0027struct kiocb\u0027 may be passed from the block layer\nwith \u0027private\u0027 field uninitialized, introduce \u0027ocfs2_iocb_init_rw_locked()\u0027\nand use it from where \u0027ocfs2_dio_end_io()\u0027 might take care, i.e. in\n\u0027ocfs2_file_read_iter()\u0027 and \u0027ocfs2_file_write_iter()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53155",
"url": "https://www.suse.com/security/cve/CVE-2024-53155"
},
{
"category": "external",
"summary": "SUSE Bug 1234855 for CVE-2024-53155",
"url": "https://bugzilla.suse.com/1234855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53155"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53159"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53159",
"url": "https://www.suse.com/security/cve/CVE-2024-53159"
},
{
"category": "external",
"summary": "SUSE Bug 1234848 for CVE-2024-53159",
"url": "https://bugzilla.suse.com/1234848"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53159"
},
{
"cve": "CVE-2024-53160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu\n\nKCSAN reports a data race when access the krcp-\u003emonitor_work.timer.expires\nvariable in the schedule_delayed_monitor_work() function:\n\n\u003csnip\u003e\nBUG: KCSAN: data-race in __mod_timer / kvfree_call_rcu\n\nread to 0xffff888237d1cce8 of 8 bytes by task 10149 on cpu 1:\n schedule_delayed_monitor_work kernel/rcu/tree.c:3520 [inline]\n kvfree_call_rcu+0x3b8/0x510 kernel/rcu/tree.c:3839\n trie_update_elem+0x47c/0x620 kernel/bpf/lpm_trie.c:441\n bpf_map_update_value+0x324/0x350 kernel/bpf/syscall.c:203\n generic_map_update_batch+0x401/0x520 kernel/bpf/syscall.c:1849\n bpf_map_do_batch+0x28c/0x3f0 kernel/bpf/syscall.c:5143\n __sys_bpf+0x2e5/0x7a0\n __do_sys_bpf kernel/bpf/syscall.c:5741 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5739 [inline]\n __x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5739\n x64_sys_call+0x2625/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nwrite to 0xffff888237d1cce8 of 8 bytes by task 56 on cpu 0:\n __mod_timer+0x578/0x7f0 kernel/time/timer.c:1173\n add_timer_global+0x51/0x70 kernel/time/timer.c:1330\n __queue_delayed_work+0x127/0x1a0 kernel/workqueue.c:2523\n queue_delayed_work_on+0xdf/0x190 kernel/workqueue.c:2552\n queue_delayed_work include/linux/workqueue.h:677 [inline]\n schedule_delayed_monitor_work kernel/rcu/tree.c:3525 [inline]\n kfree_rcu_monitor+0x5e8/0x660 kernel/rcu/tree.c:3643\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0x483/0x9a0 kernel/workqueue.c:3310\n worker_thread+0x51d/0x6f0 kernel/workqueue.c:3391\n kthread+0x1d1/0x210 kernel/kthread.c:389\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 UID: 0 PID: 56 Comm: kworker/u8:4 Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events_unbound kfree_rcu_monitor\n\u003csnip\u003e\n\nkfree_rcu_monitor() rearms the work if a \"krcp\" has to be still\noffloaded and this is done without holding krcp-\u003elock, whereas\nthe kvfree_call_rcu() holds it.\n\nFix it by acquiring the \"krcp-\u003elock\" for kfree_rcu_monitor() so\nboth functions do not race anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53160",
"url": "https://www.suse.com/security/cve/CVE-2024-53160"
},
{
"category": "external",
"summary": "SUSE Bug 1234810 for CVE-2024-53160",
"url": "https://bugzilla.suse.com/1234810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53160"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix bfqq uaf in bfq_limit_depth()\n\nSet new allocated bfqq to bic or remove freed bfqq from bic are both\nprotected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq\nfrom bic without the lock, this can lead to UAF if the io_context is\nshared by multiple tasks.\n\nFor example, test bfq with io_uring can trigger following UAF in v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfqq_group+0x15/0x50\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x80\n print_address_description.constprop.0+0x66/0x300\n print_report+0x3e/0x70\n kasan_report+0xb4/0xf0\n bfqq_group+0x15/0x50\n bfqq_request_over_limit+0x130/0x9a0\n bfq_limit_depth+0x1b5/0x480\n __blk_mq_alloc_requests+0x2b5/0xa00\n blk_mq_get_new_requests+0x11d/0x1d0\n blk_mq_submit_bio+0x286/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __block_write_full_folio+0x3d0/0x640\n writepage_cb+0x3b/0xc0\n write_cache_pages+0x254/0x6c0\n write_cache_pages+0x254/0x6c0\n do_writepages+0x192/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nAllocated by task 808602:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_slab_alloc+0x83/0x90\n kmem_cache_alloc_node+0x1b1/0x6d0\n bfq_get_queue+0x138/0xfa0\n bfq_get_bfqq_handle_split+0xe3/0x2c0\n bfq_init_rq+0x196/0xbb0\n bfq_insert_request.isra.0+0xb5/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_insert_request+0x15d/0x440\n blk_mq_submit_bio+0x8a4/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __blkdev_direct_IO_async+0x2dd/0x330\n blkdev_write_iter+0x39a/0x450\n io_write+0x22a/0x840\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFreed by task 808589:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n __kasan_slab_free+0x126/0x1b0\n kmem_cache_free+0x10c/0x750\n bfq_put_queue+0x2dd/0x770\n __bfq_insert_request.isra.0+0x155/0x7a0\n bfq_insert_request.isra.0+0x122/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_dispatch_plug_list+0x528/0x7e0\n blk_mq_flush_plug_list.part.0+0xe5/0x590\n __blk_flush_plug+0x3b/0x90\n blk_finish_plug+0x40/0x60\n do_writepages+0x19d/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFix the problem by protecting bic_to_bfqq() with bfqd-\u003elock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53166",
"url": "https://www.suse.com/security/cve/CVE-2024-53166"
},
{
"category": "external",
"summary": "SUSE Bug 1234884 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "external",
"summary": "SUSE Bug 1234885 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-53169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fabrics: fix kernel crash while shutting down controller\n\nThe nvme keep-alive operation, which executes at a periodic interval,\ncould potentially sneak in while shutting down a fabric controller.\nThis may lead to a race between the fabric controller admin queue\ndestroy code path (invoked while shutting down controller) and hw/hctx\nqueue dispatcher called from the nvme keep-alive async request queuing\noperation. This race could lead to the kernel crash shown below:\n\nCall Trace:\n autoremove_wake_function+0x0/0xbc (unreliable)\n __blk_mq_sched_dispatch_requests+0x114/0x24c\n blk_mq_sched_dispatch_requests+0x44/0x84\n blk_mq_run_hw_queue+0x140/0x220\n nvme_keep_alive_work+0xc8/0x19c [nvme_core]\n process_one_work+0x200/0x4e0\n worker_thread+0x340/0x504\n kthread+0x138/0x140\n start_kernel_thread+0x14/0x18\n\nWhile shutting down fabric controller, if nvme keep-alive request sneaks\nin then it would be flushed off. The nvme_keep_alive_end_io function is\nthen invoked to handle the end of the keep-alive operation which\ndecrements the admin-\u003eq_usage_counter and assuming this is the last/only\nrequest in the admin queue then the admin-\u003eq_usage_counter becomes zero.\nIf that happens then blk-mq destroy queue operation (blk_mq_destroy_\nqueue()) which could be potentially running simultaneously on another\ncpu (as this is the controller shutdown code path) would forward\nprogress and deletes the admin queue. So, now from this point onward\nwe are not supposed to access the admin queue resources. However the\nissue here\u0027s that the nvme keep-alive thread running hw/hctx queue\ndispatch operation hasn\u0027t yet finished its work and so it could still\npotentially access the admin queue resource while the admin queue had\nbeen already deleted and that causes the above crash.\n\nThe above kernel crash is regression caused due to changes implemented\nin commit a54a93d0e359 (\"nvme: move stopping keep-alive into\nnvme_uninit_ctrl()\"). Ideally we should stop keep-alive before destroyin\ng the admin queue and freeing the admin tagset so that it wouldn\u0027t sneak\nin during the shutdown operation. However we removed the keep alive stop\noperation from the beginning of the controller shutdown code path in commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\")\nand added it under nvme_uninit_ctrl() which executes very late in the\nshutdown code path after the admin queue is destroyed and its tagset is\nremoved. So this change created the possibility of keep-alive sneaking in\nand interfering with the shutdown operation and causing observed kernel\ncrash.\n\nTo fix the observed crash, we decided to move nvme_stop_keep_alive() from\nnvme_uninit_ctrl() to nvme_remove_admin_tag_set(). This change would ensure\nthat we don\u0027t forward progress and delete the admin queue until the keep-\nalive operation is finished (if it\u0027s in-flight) or cancelled and that would\nhelp contain the race condition explained above and hence avoid the crash.\n\nMoving nvme_stop_keep_alive() to nvme_remove_admin_tag_set() instead of\nadding nvme_stop_keep_alive() to the beginning of the controller shutdown\ncode path in nvme_stop_ctrl(), as was the case earlier before commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\"),\nwould help save one callsite of nvme_stop_keep_alive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53169",
"url": "https://www.suse.com/security/cve/CVE-2024-53169"
},
{
"category": "external",
"summary": "SUSE Bug 1234900 for CVE-2024-53169",
"url": "https://bugzilla.suse.com/1234900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53169"
},
{
"cve": "CVE-2024-53171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit\n\nAfter an insertion in TNC, the tree might split and cause a node to\nchange its `znode-\u003eparent`. A further deletion of other nodes in the\ntree (which also could free the nodes), the aforementioned node\u0027s\n`znode-\u003ecparent` could still point to a freed node. This\n`znode-\u003ecparent` may not be updated when getting nodes to commit in\n`ubifs_tnc_start_commit()`. This could then trigger a use-after-free\nwhen accessing the `znode-\u003ecparent` in `write_index()` in\n`ubifs_tnc_end_commit()`.\n\nThis can be triggered by running\n\n rm -f /etc/test-file.bin\n dd if=/dev/urandom of=/etc/test-file.bin bs=1M count=60 conv=fsync\n\nin a loop, and with `CONFIG_UBIFS_FS_AUTHENTICATION`. KASAN then\nreports:\n\n BUG: KASAN: use-after-free in ubifs_tnc_end_commit+0xa5c/0x1950\n Write of size 32 at addr ffffff800a3af86c by task ubifs_bgt0_20/153\n\n Call trace:\n dump_backtrace+0x0/0x340\n show_stack+0x18/0x24\n dump_stack_lvl+0x9c/0xbc\n print_address_description.constprop.0+0x74/0x2b0\n kasan_report+0x1d8/0x1f0\n kasan_check_range+0xf8/0x1a0\n memcpy+0x84/0xf4\n ubifs_tnc_end_commit+0xa5c/0x1950\n do_commit+0x4e0/0x1340\n ubifs_bg_thread+0x234/0x2e0\n kthread+0x36c/0x410\n ret_from_fork+0x10/0x20\n\n Allocated by task 401:\n kasan_save_stack+0x38/0x70\n __kasan_kmalloc+0x8c/0xd0\n __kmalloc+0x34c/0x5bc\n tnc_insert+0x140/0x16a4\n ubifs_tnc_add+0x370/0x52c\n ubifs_jnl_write_data+0x5d8/0x870\n do_writepage+0x36c/0x510\n ubifs_writepage+0x190/0x4dc\n __writepage+0x58/0x154\n write_cache_pages+0x394/0x830\n do_writepages+0x1f0/0x5b0\n filemap_fdatawrite_wbc+0x170/0x25c\n file_write_and_wait_range+0x140/0x190\n ubifs_fsync+0xe8/0x290\n vfs_fsync_range+0xc0/0x1e4\n do_fsync+0x40/0x90\n __arm64_sys_fsync+0x34/0x50\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\n Freed by task 403:\n kasan_save_stack+0x38/0x70\n kasan_set_track+0x28/0x40\n kasan_set_free_info+0x28/0x4c\n __kasan_slab_free+0xd4/0x13c\n kfree+0xc4/0x3a0\n tnc_delete+0x3f4/0xe40\n ubifs_tnc_remove_range+0x368/0x73c\n ubifs_tnc_remove_ino+0x29c/0x2e0\n ubifs_jnl_delete_inode+0x150/0x260\n ubifs_evict_inode+0x1d4/0x2e4\n evict+0x1c8/0x450\n iput+0x2a0/0x3c4\n do_unlinkat+0x2cc/0x490\n __arm64_sys_unlinkat+0x90/0x100\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\nThe offending `memcpy()` in `ubifs_copy_hash()` has a use-after-free\nwhen a node becomes root in TNC but still has a `cparent` to an already\nfreed node. More specifically, consider the following TNC:\n\n zroot\n /\n /\n zp1\n /\n /\n zn\n\nInserting a new node `zn_new` with a key smaller then `zn` will trigger\na split in `tnc_insert()` if `zp1` is full:\n\n zroot\n / \\\n / \\\n zp1 zp2\n / \\\n / \\\n zn_new zn\n\n`zn-\u003eparent` has now been moved to `zp2`, *but* `zn-\u003ecparent` still\npoints to `zp1`.\n\nNow, consider a removal of all the nodes _except_ `zn`. Just when\n`tnc_delete()` is about to delete `zroot` and `zp2`:\n\n zroot\n \\\n \\\n zp2\n \\\n \\\n zn\n\n`zroot` and `zp2` get freed and the tree collapses:\n\n zn\n\n`zn` now becomes the new `zroot`.\n\n`get_znodes_to_commit()` will now only find `zn`, the new `zroot`, and\n`write_index()` will check its `znode-\u003ecparent` that wrongly points to\nthe already freed `zp1`. `ubifs_copy_hash()` thus gets wrongly called\nwith `znode-\u003ecparent-\u003ezbranch[znode-\u003eiip].hash` that triggers the\nuse-after-free!\n\nFix this by explicitly setting `znode-\u003ecparent` to `NULL` in\n`get_znodes_to_commit()` for the root node. The search for the dirty\nnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53171",
"url": "https://www.suse.com/security/cve/CVE-2024-53171"
},
{
"category": "external",
"summary": "SUSE Bug 1234889 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "external",
"summary": "SUSE Bug 1236234 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1236234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53171"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: make sure cache entry active before cache_show\n\nThe function `c_show` was called with protection from RCU. This only\nensures that `cp` will not be freed. Therefore, the reference count for\n`cp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `cache_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `cp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 7 PID: 822 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 7 UID: 0 PID: 822 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n\nCall Trace:\n \u003cTASK\u003e\n c_show+0x2fc/0x380 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53174",
"url": "https://www.suse.com/security/cve/CVE-2024-53174"
},
{
"category": "external",
"summary": "SUSE Bug 1234899 for CVE-2024-53174",
"url": "https://bugzilla.suse.com/1234899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53174"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Add sanity NULL check for the default mmap fault handler\n\nA driver might allow the mmap access before initializing its\nruntime-\u003edma_area properly. Add a proper NULL check before passing to\nvirt_to_page() for avoiding a panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53180",
"url": "https://www.suse.com/security/cve/CVE-2024-53180"
},
{
"category": "external",
"summary": "SUSE Bug 1234929 for CVE-2024-53180",
"url": "https://bugzilla.suse.com/1234929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53180"
},
{
"cve": "CVE-2024-53188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix crash when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe function ath12k_dp_cc_cleanup is called to release resources.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nat RIP: 0010:ath12k_dp_cc_cleanup.part.0+0xb6/0x500 [ath12k]\nCall Trace:\nath12k_dp_cc_cleanup\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set to NULL the released structure in\nath12k_dp_cc_cleanup at the end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53188",
"url": "https://www.suse.com/security/cve/CVE-2024-53188"
},
{
"category": "external",
"summary": "SUSE Bug 1234948 for CVE-2024-53188",
"url": "https://bugzilla.suse.com/1234948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53188"
},
{
"cve": "CVE-2024-53190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures\n\nSyzkaller reported a hung task with uevent_show() on stack trace. That\nspecific issue was addressed by another commit [0], but even with that\nfix applied (for example, running v6.12-rc5) we face another type of hung\ntask that comes from the same reproducer [1]. By investigating that, we\ncould narrow it to the following path:\n\n(a) Syzkaller emulates a Realtek USB WiFi adapter using raw-gadget and\ndummy_hcd infrastructure.\n\n(b) During the probe of rtl8192cu, the driver ends-up performing an efuse\nread procedure (which is related to EEPROM load IIUC), and here lies the\nissue: the function read_efuse() calls read_efuse_byte() many times, as\nloop iterations depending on the efuse size (in our example, 512 in total).\n\nThis procedure for reading efuse bytes relies in a loop that performs an\nI/O read up to *10k* times in case of failures. We measured the time of\nthe loop inside read_efuse_byte() alone, and in this reproducer (which\ninvolves the dummy_hcd emulation layer), it takes 15 seconds each. As a\nconsequence, we have the driver stuck in its probe routine for big time,\nexposing a stack trace like below if we attempt to reboot the system, for\nexample:\n\ntask:kworker/0:3 state:D stack:0 pid:662 tgid:662 ppid:2 flags:0x00004000\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n __schedule+0xe22/0xeb6\n schedule_timeout+0xe7/0x132\n __wait_for_common+0xb5/0x12e\n usb_start_wait_urb+0xc5/0x1ef\n ? usb_alloc_urb+0x95/0xa4\n usb_control_msg+0xff/0x184\n _usbctrl_vendorreq_sync+0xa0/0x161\n _usb_read_sync+0xb3/0xc5\n read_efuse_byte+0x13c/0x146\n read_efuse+0x351/0x5f0\n efuse_read_all_map+0x42/0x52\n rtl_efuse_shadow_map_update+0x60/0xef\n rtl_get_hwinfo+0x5d/0x1c2\n rtl92cu_read_eeprom_info+0x10a/0x8d5\n ? rtl92c_read_chip_version+0x14f/0x17e\n rtl_usb_probe+0x323/0x851\n usb_probe_interface+0x278/0x34b\n really_probe+0x202/0x4a4\n __driver_probe_device+0x166/0x1b2\n driver_probe_device+0x2f/0xd8\n [...]\n\nWe propose hereby to drastically reduce the attempts of doing the I/O\nreads in case of failures, restricted to USB devices (given that\nthey\u0027re inherently slower than PCIe ones). By retrying up to 10 times\n(instead of 10000), we got reponsiveness in the reproducer, while seems\nreasonable to believe that there\u0027s no sane USB device implementation in\nthe field requiring this amount of retries at every I/O read in order\nto properly work. Based on that assumption, it\u0027d be good to have it\nbackported to stable but maybe not since driver implementation (the 10k\nnumber comes from day 0), perhaps up to 6.x series makes sense.\n\n[0] Commit 15fffc6a5624 (\"driver core: Fix uevent_show() vs driver detach race\")\n\n[1] A note about that: this syzkaller report presents multiple reproducers\nthat differs by the type of emulated USB device. For this specific case,\ncheck the entry from 2024/08/08 06:23 in the list of crashes; the C repro\nis available at https://syzkaller.appspot.com/text?tag=ReproC\u0026x=1521fc83980000.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53190",
"url": "https://www.suse.com/security/cve/CVE-2024-53190"
},
{
"category": "external",
"summary": "SUSE Bug 1234950 for CVE-2024-53190",
"url": "https://bugzilla.suse.com/1234950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "low"
}
],
"title": "CVE-2024-53190"
},
{
"cve": "CVE-2024-53191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix warning when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe buffers dp-\u003etx_ring[i].tx_status are released.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nWARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80\nCall Trace:\nfree_large_kmalloc\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set the buffers to NULL after releasing in\norder to avoid the double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53191",
"url": "https://www.suse.com/security/cve/CVE-2024-53191"
},
{
"category": "external",
"summary": "SUSE Bug 1234952 for CVE-2024-53191",
"url": "https://bugzilla.suse.com/1234952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53191"
},
{
"cve": "CVE-2024-53200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in hwss_setup_dpp\n\nThis commit addresses a null pointer dereference issue in\nhwss_setup_dpp(). The issue could occur when pipe_ctx-\u003eplane_state is\nnull. The fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53200",
"url": "https://www.suse.com/security/cve/CVE-2024-53200"
},
{
"category": "external",
"summary": "SUSE Bug 1234968 for CVE-2024-53200",
"url": "https://bugzilla.suse.com/1234968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53200"
},
{
"cve": "CVE-2024-53201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in\ndcn20_program_pipe(). Previously, commit 8e4ed3cf1642 (\"drm/amd/display:\nAdd null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\")\npartially fixed the null pointer dereference issue. However, in\ndcn20_update_dchubp_dpp(), the variable pipe_ctx is passed in, and\nplane_state is accessed again through pipe_ctx. Multiple if statements\ndirectly call attributes of plane_state, leading to potential null\npointer dereference issues. This patch adds necessary null checks to\nensure stability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53201",
"url": "https://www.suse.com/security/cve/CVE-2024-53201"
},
{
"category": "external",
"summary": "SUSE Bug 1234969 for CVE-2024-53201",
"url": "https://bugzilla.suse.com/1234969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53201"
},
{
"cve": "CVE-2024-53202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Fix possible resource leak in fw_log_firmware_info()\n\nThe alg instance should be released under the exception path, otherwise\nthere may be resource leak here.\n\nTo mitigate this, free the alg instance with crypto_free_shash when kmalloc\nfails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53202",
"url": "https://www.suse.com/security/cve/CVE-2024-53202"
},
{
"category": "external",
"summary": "SUSE Bug 1234970 for CVE-2024-53202",
"url": "https://bugzilla.suse.com/1234970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53202"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible deadlocks\n\nThis fixes possible deadlocks like the following caused by\nhci_cmd_sync_dequeue causing the destroy function to run:\n\n INFO: task kworker/u19:0:143 blocked for more than 120 seconds.\n Tainted: G W O 6.8.0-2024-03-19-intel-next-iLS-24ww14 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u19:0 state:D stack:0 pid:143 tgid:143 ppid:2 flags:0x00004000\n Workqueue: hci0 hci_cmd_sync_work [bluetooth]\n Call Trace:\n \u003cTASK\u003e\n __schedule+0x374/0xaf0\n schedule+0x3c/0xf0\n schedule_preempt_disabled+0x1c/0x30\n __mutex_lock.constprop.0+0x3ef/0x7a0\n __mutex_lock_slowpath+0x13/0x20\n mutex_lock+0x3c/0x50\n mgmt_set_connectable_complete+0xa4/0x150 [bluetooth]\n ? kfree+0x211/0x2a0\n hci_cmd_sync_dequeue+0xae/0x130 [bluetooth]\n ? __pfx_cmd_complete_rsp+0x10/0x10 [bluetooth]\n cmd_complete_rsp+0x26/0x80 [bluetooth]\n mgmt_pending_foreach+0x4d/0x70 [bluetooth]\n __mgmt_power_off+0x8d/0x180 [bluetooth]\n ? _raw_spin_unlock_irq+0x23/0x40\n hci_dev_close_sync+0x445/0x5b0 [bluetooth]\n hci_set_powered_sync+0x149/0x250 [bluetooth]\n set_powered_sync+0x24/0x60 [bluetooth]\n hci_cmd_sync_work+0x90/0x150 [bluetooth]\n process_one_work+0x13e/0x300\n worker_thread+0x2f7/0x420\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x107/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x3d/0x60\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53207",
"url": "https://www.suse.com/security/cve/CVE-2024-53207"
},
{
"category": "external",
"summary": "SUSE Bug 1234907 for CVE-2024-53207",
"url": "https://bugzilla.suse.com/1234907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53207"
},
{
"cve": "CVE-2024-53208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync\n\nThis fixes the following crash:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\nRead of size 8 at addr ffff888029b4dd18 by task kworker/u9:0/54\n\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-01155-gf723224742fc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\nq kasan_report+0x143/0x180 mm/kasan/report.c:601\n set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\n hci_cmd_sync_work+0x22b/0x400 net/bluetooth/hci_sync.c:328\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd10 kernel/workqueue.c:3389\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\nAllocated by task 5247:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __kmalloc_cache_noprof+0x19c/0x2c0 mm/slub.c:4193\n kmalloc_noprof include/linux/slab.h:681 [inline]\n kzalloc_noprof include/linux/slab.h:807 [inline]\n mgmt_pending_new+0x65/0x250 net/bluetooth/mgmt_util.c:269\n mgmt_pending_add+0x36/0x120 net/bluetooth/mgmt_util.c:296\n set_powered+0x3cd/0x5e0 net/bluetooth/mgmt.c:1394\n hci_mgmt_cmd+0xc47/0x11d0 net/bluetooth/hci_sock.c:1712\n hci_sock_sendmsg+0x7b8/0x11c0 net/bluetooth/hci_sock.c:1832\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xa72/0xc90 fs/read_write.c:590\n ksys_write+0x1a0/0x2c0 fs/read_write.c:643\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5246:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x149/0x360 mm/slub.c:4598\n settings_rsp+0x2bc/0x390 net/bluetooth/mgmt.c:1443\n mgmt_pending_foreach+0xd1/0x130 net/bluetooth/mgmt_util.c:259\n __mgmt_power_off+0x112/0x420 net/bluetooth/mgmt.c:9455\n hci_dev_close_sync+0x665/0x11a0 net/bluetooth/hci_sync.c:5191\n hci_dev_do_close net/bluetooth/hci_core.c:483 [inline]\n hci_dev_close+0x112/0x210 net/bluetooth/hci_core.c:508\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83gv\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53208",
"url": "https://www.suse.com/security/cve/CVE-2024-53208"
},
{
"category": "external",
"summary": "SUSE Bug 1234909 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "external",
"summary": "SUSE Bug 1236244 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1236244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53208"
},
{
"cve": "CVE-2024-53209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix receive ring space parameters when XDP is active\n\nThe MTU setting at the time an XDP multi-buffer is attached\ndetermines whether the aggregation ring will be used and the\nrx_skb_func handler. This is done in bnxt_set_rx_skb_mode().\n\nIf the MTU is later changed, the aggregation ring setting may need\nto be changed and it may become out-of-sync with the settings\ninitially done in bnxt_set_rx_skb_mode(). This may result in\nrandom memory corruption and crashes as the HW may DMA data larger\nthan the allocated buffer size, such as:\n\nBUG: kernel NULL pointer dereference, address: 00000000000003c0\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 17 PID: 0 Comm: swapper/17 Kdump: loaded Tainted: G S OE 6.1.0-226bf9805506 #1\nHardware name: Wiwynn Delta Lake PVT BZA.02601.0150/Delta Lake-Class1, BIOS F0E_3A12 08/26/2021\nRIP: 0010:bnxt_rx_pkt+0xe97/0x1ae0 [bnxt_en]\nCode: 8b 95 70 ff ff ff 4c 8b 9d 48 ff ff ff 66 41 89 87 b4 00 00 00 e9 0b f7 ff ff 0f b7 43 0a 49 8b 95 a8 04 00 00 25 ff 0f 00 00 \u003c0f\u003e b7 14 42 48 c1 e2 06 49 03 95 a0 04 00 00 0f b6 42 33f\nRSP: 0018:ffffa19f40cc0d18 EFLAGS: 00010202\nRAX: 00000000000001e0 RBX: ffff8e2c805c6100 RCX: 00000000000007ff\nRDX: 0000000000000000 RSI: ffff8e2c271ab990 RDI: ffff8e2c84f12380\nRBP: ffffa19f40cc0e48 R08: 000000000001000d R09: 974ea2fcddfa4cbf\nR10: 0000000000000000 R11: ffffa19f40cc0ff8 R12: ffff8e2c94b58980\nR13: ffff8e2c952d6600 R14: 0000000000000016 R15: ffff8e2c271ab990\nFS: 0000000000000000(0000) GS:ffff8e3b3f840000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000000003c0 CR3: 0000000e8580a004 CR4: 00000000007706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n __bnxt_poll_work+0x1c2/0x3e0 [bnxt_en]\n\nTo address the issue, we now call bnxt_set_rx_skb_mode() within\nbnxt_change_mtu() to properly set the AGG rings configuration and\nupdate rx_skb_func based on the new MTU value.\nAdditionally, BNXT_FLAG_NO_AGG_RINGS is cleared at the beginning of\nbnxt_set_rx_skb_mode() to make sure it gets set or cleared based on\nthe current MTU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53209",
"url": "https://www.suse.com/security/cve/CVE-2024-53209"
},
{
"category": "external",
"summary": "SUSE Bug 1235002 for CVE-2024-53209",
"url": "https://bugzilla.suse.com/1235002"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53209"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()\n\nThere\u0027s issue as follows:\nRPC: Registered rdma transport module.\nRPC: Registered rdma backchannel transport module.\nRPC: Unregistered rdma transport module.\nRPC: Unregistered rdma backchannel transport module.\nBUG: unable to handle page fault for address: fffffbfff80c609a\nPGD 123fee067 P4D 123fee067 PUD 123fea067 PMD 10c624067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nRIP: 0010:percpu_counter_destroy_many+0xf7/0x2a0\nCall Trace:\n \u003cTASK\u003e\n __die+0x1f/0x70\n page_fault_oops+0x2cd/0x860\n spurious_kernel_fault+0x36/0x450\n do_kern_addr_fault+0xca/0x100\n exc_page_fault+0x128/0x150\n asm_exc_page_fault+0x26/0x30\n percpu_counter_destroy_many+0xf7/0x2a0\n mmdrop+0x209/0x350\n finish_task_switch.isra.0+0x481/0x840\n schedule_tail+0xe/0xd0\n ret_from_fork+0x23/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nIf register_sysctl() return NULL, then svc_rdma_proc_cleanup() will not\ndestroy the percpu counters which init in svc_rdma_proc_init().\nIf CONFIG_HOTPLUG_CPU is enabled, residual nodes may be in the\n\u0027percpu_counters\u0027 list. The above issue may occur once the module is\nremoved. If the CONFIG_HOTPLUG_CPU configuration is not enabled, memory\nleakage occurs.\nTo solve above issue just destroy all percpu counters when\nregister_sysctl() return NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53215",
"url": "https://www.suse.com/security/cve/CVE-2024-53215"
},
{
"category": "external",
"summary": "SUSE Bug 1234962 for CVE-2024-53215",
"url": "https://bugzilla.suse.com/1234962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53215"
},
{
"cve": "CVE-2024-53216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: release svc_expkey/svc_export with rcu_work\n\nThe last reference for `cache_head` can be reduced to zero in `c_show`\nand `e_show`(using `rcu_read_lock` and `rcu_read_unlock`). Consequently,\n`svc_export_put` and `expkey_put` will be invoked, leading to two\nissues:\n\n1. The `svc_export_put` will directly free ex_uuid. However,\n `e_show`/`c_show` will access `ex_uuid` after `cache_put`, which can\n trigger a use-after-free issue, shown below.\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in svc_export_show+0x362/0x430 [nfsd]\n Read of size 1 at addr ff11000010fdc120 by task cat/870\n\n CPU: 1 UID: 0 PID: 870 Comm: cat Not tainted 6.12.0-rc3+ #1\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n 1.16.1-2.fc37 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x53/0x70\n print_address_description.constprop.0+0x2c/0x3a0\n print_report+0xb9/0x280\n kasan_report+0xae/0xe0\n svc_export_show+0x362/0x430 [nfsd]\n c_show+0x161/0x390 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Allocated by task 830:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __kmalloc_node_track_caller_noprof+0x1bc/0x400\n kmemdup_noprof+0x22/0x50\n svc_export_parse+0x8a9/0xb80 [nfsd]\n cache_do_downcall+0x71/0xa0 [sunrpc]\n cache_write_procfs+0x8e/0xd0 [sunrpc]\n proc_reg_write+0xe1/0x140\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 868:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x37/0x50\n kfree+0xf3/0x3e0\n svc_export_put+0x87/0xb0 [nfsd]\n cache_purge+0x17f/0x1f0 [sunrpc]\n nfsd_destroy_serv+0x226/0x2d0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n2. We cannot sleep while using `rcu_read_lock`/`rcu_read_unlock`.\n However, `svc_export_put`/`expkey_put` will call path_put, which\n subsequently triggers a sleeping operation due to the following\n `dput`.\n\n =============================\n WARNING: suspicious RCU usage\n 5.10.0-dirty #141 Not tainted\n -----------------------------\n ...\n Call Trace:\n dump_stack+0x9a/0xd0\n ___might_sleep+0x231/0x240\n dput+0x39/0x600\n path_put+0x1b/0x30\n svc_export_put+0x17/0x80\n e_show+0x1c9/0x200\n seq_read_iter+0x63f/0x7c0\n seq_read+0x226/0x2d0\n vfs_read+0x113/0x2c0\n ksys_read+0xc9/0x170\n do_syscall_64+0x33/0x40\n entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nFix these issues by using `rcu_work` to help release\n`svc_expkey`/`svc_export`. This approach allows for an asynchronous\ncontext to invoke `path_put` and also facilitates the freeing of\n`uuid/exp/key` after an RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53216",
"url": "https://www.suse.com/security/cve/CVE-2024-53216"
},
{
"category": "external",
"summary": "SUSE Bug 1235003 for CVE-2024-53216",
"url": "https://bugzilla.suse.com/1235003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53216"
},
{
"cve": "CVE-2024-53217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent NULL dereference in nfsd4_process_cb_update()\n\n@ses is initialized to NULL. If __nfsd4_find_backchannel() finds no\navailable backchannel session, setup_callback_client() will try to\ndereference @ses and segfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53217",
"url": "https://www.suse.com/security/cve/CVE-2024-53217"
},
{
"category": "external",
"summary": "SUSE Bug 1234999 for CVE-2024-53217",
"url": "https://bugzilla.suse.com/1234999"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53217"
},
{
"cve": "CVE-2024-53222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram-\u003ecomp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram-\u003einit_lock in other places and no such problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53222",
"url": "https://www.suse.com/security/cve/CVE-2024-53222"
},
{
"category": "external",
"summary": "SUSE Bug 1234974 for CVE-2024-53222",
"url": "https://bugzilla.suse.com/1234974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53222"
},
{
"cve": "CVE-2024-53224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Move events notifier registration to be after device registration\n\nMove pkey change work initialization and cleanup from device resources\nstage to notifier stage, since this is the stage which handles this work\nevents.\n\nFix a race between the device deregistration and pkey change work by moving\nMLX5_IB_STAGE_DEVICE_NOTIFIER to be after MLX5_IB_STAGE_IB_REG in order to\nensure that the notifier is deregistered before the device during cleanup.\nWhich ensures there are no works that are being executed after the\ndevice has already unregistered which can cause the panic below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 1 PID: 630071 Comm: kworker/1:2 Kdump: loaded Tainted: G W OE --------- --- 5.14.0-162.6.1.el9_1.x86_64 #1\nHardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 02/27/2023\nWorkqueue: events pkey_change_handler [mlx5_ib]\nRIP: 0010:setup_qp+0x38/0x1f0 [mlx5_ib]\nCode: ee 41 54 45 31 e4 55 89 f5 53 48 89 fb 48 83 ec 20 8b 77 08 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 48 8b 07 48 8d 4c 24 16 \u003c4c\u003e 8b 38 49 8b 87 80 0b 00 00 4c 89 ff 48 8b 80 08 05 00 00 8b 40\nRSP: 0018:ffffbcc54068be20 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff954054494128 RCX: ffffbcc54068be36\nRDX: ffff954004934000 RSI: 0000000000000001 RDI: ffff954054494128\nRBP: 0000000000000023 R08: ffff954001be2c20 R09: 0000000000000001\nR10: ffff954001be2c20 R11: ffff9540260133c0 R12: 0000000000000000\nR13: 0000000000000023 R14: 0000000000000000 R15: ffff9540ffcb0905\nFS: 0000000000000000(0000) GS:ffff9540ffc80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000010625c001 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\nmlx5_ib_gsi_pkey_change+0x20/0x40 [mlx5_ib]\nprocess_one_work+0x1e8/0x3c0\nworker_thread+0x50/0x3b0\n? rescuer_thread+0x380/0x380\nkthread+0x149/0x170\n? set_kthread_struct+0x50/0x50\nret_from_fork+0x22/0x30\nModules linked in: rdma_ucm(OE) rdma_cm(OE) iw_cm(OE) ib_ipoib(OE) ib_cm(OE) ib_umad(OE) mlx5_ib(OE) mlx5_fwctl(OE) fwctl(OE) ib_uverbs(OE) mlx5_core(OE) mlxdevm(OE) ib_core(OE) mlx_compat(OE) psample mlxfw(OE) tls knem(OE) netconsole nfsv3 nfs_acl nfs lockd grace fscache netfs qrtr rfkill sunrpc intel_rapl_msr intel_rapl_common rapl hv_balloon hv_utils i2c_piix4 pcspkr joydev fuse ext4 mbcache jbd2 sr_mod sd_mod cdrom t10_pi sg ata_generic pci_hyperv pci_hyperv_intf hyperv_drm drm_shmem_helper drm_kms_helper hv_storvsc syscopyarea hv_netvsc sysfillrect sysimgblt hid_hyperv fb_sys_fops scsi_transport_fc hyperv_keyboard drm ata_piix crct10dif_pclmul crc32_pclmul crc32c_intel libata ghash_clmulni_intel hv_vmbus serio_raw [last unloaded: ib_core]\nCR2: 0000000000000000\n---[ end trace f6f8be4eae12f7bc ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53224",
"url": "https://www.suse.com/security/cve/CVE-2024-53224"
},
{
"category": "external",
"summary": "SUSE Bug 1235009 for CVE-2024-53224",
"url": "https://bugzilla.suse.com/1235009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53224"
},
{
"cve": "CVE-2024-53229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix the qp flush warnings in req\n\nWhen the qp is in error state, the status of WQEs in the queue should be\nset to error. Or else the following will appear.\n\n[ 920.617269] WARNING: CPU: 1 PID: 21 at drivers/infiniband/sw/rxe/rxe_comp.c:756 rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.617744] Modules linked in: rnbd_client(O) rtrs_client(O) rtrs_core(O) rdma_ucm rdma_cm iw_cm ib_cm crc32_generic rdma_rxe ip6_udp_tunnel udp_tunnel ib_uverbs ib_core loop brd null_blk ipv6\n[ 920.618516] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G O 6.1.113-storage+ #65\n[ 920.618986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n[ 920.619396] RIP: 0010:rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.619658] Code: 0f b6 84 24 3a 02 00 00 41 89 84 24 44 04 00 00 e9 2a f7 ff ff 39 ca bb 03 00 00 00 b8 0e 00 00 00 48 0f 45 d8 e9 15 f7 ff ff \u003c0f\u003e 0b e9 cb f8 ff ff 41 bf f5 ff ff ff e9 08 f8 ff ff 49 8d bc 24\n[ 920.620482] RSP: 0018:ffff97b7c00bbc38 EFLAGS: 00010246\n[ 920.620817] RAX: 0000000000000000 RBX: 000000000000000c RCX: 0000000000000008\n[ 920.621183] RDX: ffff960dc396ebc0 RSI: 0000000000005400 RDI: ffff960dc4e2fbac\n[ 920.621548] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffffac406450\n[ 920.621884] R10: ffffffffac4060c0 R11: 0000000000000001 R12: ffff960dc4e2f800\n[ 920.622254] R13: ffff960dc4e2f928 R14: ffff97b7c029c580 R15: 0000000000000000\n[ 920.622609] FS: 0000000000000000(0000) GS:ffff960ef7d00000(0000) knlGS:0000000000000000\n[ 920.622979] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 920.623245] CR2: 00007fa056965e90 CR3: 00000001107f1000 CR4: 00000000000006e0\n[ 920.623680] Call Trace:\n[ 920.623815] \u003cTASK\u003e\n[ 920.623933] ? __warn+0x79/0xc0\n[ 920.624116] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.624356] ? report_bug+0xfb/0x150\n[ 920.624594] ? handle_bug+0x3c/0x60\n[ 920.624796] ? exc_invalid_op+0x14/0x70\n[ 920.624976] ? asm_exc_invalid_op+0x16/0x20\n[ 920.625203] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.625474] ? rxe_completer+0x329/0xcc0 [rdma_rxe]\n[ 920.625749] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.626037] rxe_requester+0x625/0xde0 [rdma_rxe]\n[ 920.626310] ? rxe_cq_post+0xe2/0x180 [rdma_rxe]\n[ 920.626583] ? do_complete+0x18d/0x220 [rdma_rxe]\n[ 920.626812] ? rxe_completer+0x1a3/0xcc0 [rdma_rxe]\n[ 920.627050] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.627285] tasklet_action_common.constprop.0+0xa4/0x120\n[ 920.627522] handle_softirqs+0xc2/0x250\n[ 920.627728] ? sort_range+0x20/0x20\n[ 920.627942] run_ksoftirqd+0x1f/0x30\n[ 920.628158] smpboot_thread_fn+0xc7/0x1b0\n[ 920.628334] kthread+0xd6/0x100\n[ 920.628504] ? kthread_complete_and_exit+0x20/0x20\n[ 920.628709] ret_from_fork+0x1f/0x30\n[ 920.628892] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53229",
"url": "https://www.suse.com/security/cve/CVE-2024-53229"
},
{
"category": "external",
"summary": "SUSE Bug 1234905 for CVE-2024-53229",
"url": "https://bugzilla.suse.com/1234905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53229"
},
{
"cve": "CVE-2024-53234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle NONHEAD !delta[1] lclusters gracefully\n\nsyzbot reported a WARNING in iomap_iter_done:\n iomap_fiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80\n ioctl_fiemap fs/ioctl.c:220 [inline]\n\nGenerally, NONHEAD lclusters won\u0027t have delta[1]==0, except for crafted\nimages and filesystems created by pre-1.0 mkfs versions.\n\nPreviously, it would immediately bail out if delta[1]==0, which led to\ninadequate decompressed lengths (thus FIEMAP is impacted). Treat it as\ndelta[1]=1 to work around these legacy mkfs versions.\n\n`lclusterbits \u003e 14` is illegal for compact indexes, error out too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53234",
"url": "https://www.suse.com/security/cve/CVE-2024-53234"
},
{
"category": "external",
"summary": "SUSE Bug 1235045 for CVE-2024-53234",
"url": "https://bugzilla.suse.com/1235045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53234"
},
{
"cve": "CVE-2024-53237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: fix use-after-free in device_for_each_child()\n\nSyzbot has reported the following KASAN splat:\n\nBUG: KASAN: slab-use-after-free in device_for_each_child+0x18f/0x1a0\nRead of size 8 at addr ffff88801f605308 by task kbnepd bnep0/4980\n\nCPU: 0 UID: 0 PID: 4980 Comm: kbnepd bnep0 Not tainted 6.12.0-rc4-00161-gae90f6a6170d #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x100/0x190\n ? device_for_each_child+0x18f/0x1a0\n print_report+0x13a/0x4cb\n ? __virt_addr_valid+0x5e/0x590\n ? __phys_addr+0xc6/0x150\n ? device_for_each_child+0x18f/0x1a0\n kasan_report+0xda/0x110\n ? device_for_each_child+0x18f/0x1a0\n ? __pfx_dev_memalloc_noio+0x10/0x10\n device_for_each_child+0x18f/0x1a0\n ? __pfx_device_for_each_child+0x10/0x10\n pm_runtime_set_memalloc_noio+0xf2/0x180\n netdev_unregister_kobject+0x1ed/0x270\n unregister_netdevice_many_notify+0x123c/0x1d80\n ? __mutex_trylock_common+0xde/0x250\n ? __pfx_unregister_netdevice_many_notify+0x10/0x10\n ? trace_contention_end+0xe6/0x140\n ? __mutex_lock+0x4e7/0x8f0\n ? __pfx_lock_acquire.part.0+0x10/0x10\n ? rcu_is_watching+0x12/0xc0\n ? unregister_netdev+0x12/0x30\n unregister_netdevice_queue+0x30d/0x3f0\n ? __pfx_unregister_netdevice_queue+0x10/0x10\n ? __pfx_down_write+0x10/0x10\n unregister_netdev+0x1c/0x30\n bnep_session+0x1fb3/0x2ab0\n ? __pfx_bnep_session+0x10/0x10\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_woken_wake_function+0x10/0x10\n ? __kthread_parkme+0x132/0x200\n ? __pfx_bnep_session+0x10/0x10\n ? kthread+0x13a/0x370\n ? __pfx_bnep_session+0x10/0x10\n kthread+0x2b7/0x370\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x48/0x80\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 4974:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n __kmalloc_noprof+0x1d1/0x440\n hci_alloc_dev_priv+0x1d/0x2820\n __vhci_create_device+0xef/0x7d0\n vhci_write+0x2c7/0x480\n vfs_write+0x6a0/0xfc0\n ksys_write+0x12f/0x260\n do_syscall_64+0xc7/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 4979:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x4f/0x70\n kfree+0x141/0x490\n hci_release_dev+0x4d9/0x600\n bt_host_release+0x6a/0xb0\n device_release+0xa4/0x240\n kobject_put+0x1ec/0x5a0\n put_device+0x1f/0x30\n vhci_release+0x81/0xf0\n __fput+0x3f6/0xb30\n task_work_run+0x151/0x250\n do_exit+0xa79/0x2c30\n do_group_exit+0xd5/0x2a0\n get_signal+0x1fcd/0x2210\n arch_do_signal_or_restart+0x93/0x780\n syscall_exit_to_user_mode+0x140/0x290\n do_syscall_64+0xd4/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nIn \u0027hci_conn_del_sysfs()\u0027, \u0027device_unregister()\u0027 may be called when\nan underlying (kobject) reference counter is greater than 1. This\nmeans that reparenting (happened when the device is actually freed)\nis delayed and, during that delay, parent controller device (hciX)\nmay be deleted. Since the latter may create a dangling pointer to\nfreed parent, avoid that scenario by reparenting to NULL explicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53237",
"url": "https://www.suse.com/security/cve/CVE-2024-53237"
},
{
"category": "external",
"summary": "SUSE Bug 1235007 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "external",
"summary": "SUSE Bug 1235008 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235008"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-53237"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-56536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56536"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cw1200: Fix potential NULL dereference\n\nA recent refactoring was identified by static analysis to\ncause a potential NULL dereference, fix this!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56536",
"url": "https://www.suse.com/security/cve/CVE-2024-56536"
},
{
"category": "external",
"summary": "SUSE Bug 1234911 for CVE-2024-56536",
"url": "https://bugzilla.suse.com/1234911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56536"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix usage slab after free\n\n[ +0.000021] BUG: KASAN: slab-use-after-free in drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000027] Read of size 8 at addr ffff8881b8605f88 by task amd_pci_unplug/2147\n\n[ +0.000023] CPU: 6 PID: 2147 Comm: amd_pci_unplug Not tainted 6.10.0+ #1\n[ +0.000016] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[ +0.000016] Call Trace:\n[ +0.000008] \u003cTASK\u003e\n[ +0.000009] dump_stack_lvl+0x76/0xa0\n[ +0.000017] print_report+0xce/0x5f0\n[ +0.000017] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] ? srso_return_thunk+0x5/0x5f\n[ +0.000015] ? kasan_complete_mode_report_info+0x72/0x200\n[ +0.000016] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] kasan_report+0xbe/0x110\n[ +0.000015] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000023] __asan_report_load8_noabort+0x14/0x30\n[ +0.000014] drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000016] ? __pfx_drm_sched_entity_flush+0x10/0x10 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? enable_work+0x124/0x220\n[ +0.000015] ? __pfx_enable_work+0x10/0x10\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? free_large_kmalloc+0x85/0xf0\n[ +0.000016] drm_sched_entity_destroy+0x18/0x30 [gpu_sched]\n[ +0.000020] amdgpu_vce_sw_fini+0x55/0x170 [amdgpu]\n[ +0.000735] ? __kasan_check_read+0x11/0x20\n[ +0.000016] vce_v4_0_sw_fini+0x80/0x110 [amdgpu]\n[ +0.000726] amdgpu_device_fini_sw+0x331/0xfc0 [amdgpu]\n[ +0.000679] ? mutex_unlock+0x80/0xe0\n[ +0.000017] ? __pfx_amdgpu_device_fini_sw+0x10/0x10 [amdgpu]\n[ +0.000662] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? mutex_unlock+0x80/0xe0\n[ +0.000016] amdgpu_driver_release_kms+0x16/0x80 [amdgpu]\n[ +0.000663] drm_minor_release+0xc9/0x140 [drm]\n[ +0.000081] drm_release+0x1fd/0x390 [drm]\n[ +0.000082] __fput+0x36c/0xad0\n[ +0.000018] __fput_sync+0x3c/0x50\n[ +0.000014] __x64_sys_close+0x7d/0xe0\n[ +0.000014] x64_sys_call+0x1bc6/0x2680\n[ +0.000014] do_syscall_64+0x70/0x130\n[ +0.000014] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit_to_user_mode+0x60/0x190\n[ +0.000015] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit+0x43/0x50\n[ +0.000012] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? exc_page_fault+0x7c/0x110\n[ +0.000015] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ +0.000014] RIP: 0033:0x7ffff7b14f67\n[ +0.000013] Code: ff e8 0d 16 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 03 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 41 c3 48 83 ec 18 89 7c 24 0c e8 73 ba f7 ff\n[ +0.000026] RSP: 002b:00007fffffffe378 EFLAGS: 00000246 ORIG_RAX: 0000000000000003\n[ +0.000019] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffff7b14f67\n[ +0.000014] RDX: 0000000000000000 RSI: 00007ffff7f6f47a RDI: 0000000000000003\n[ +0.000014] RBP: 00007fffffffe3a0 R08: 0000555555569890 R09: 0000000000000000\n[ +0.000014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffffe5c8\n[ +0.000013] R13: 00005555555552a9 R14: 0000555555557d48 R15: 00007ffff7ffd040\n[ +0.000020] \u003c/TASK\u003e\n\n[ +0.000016] Allocated by task 383 on cpu 7 at 26.880319s:\n[ +0.000014] kasan_save_stack+0x28/0x60\n[ +0.000008] kasan_save_track+0x18/0x70\n[ +0.000007] kasan_save_alloc_info+0x38/0x60\n[ +0.000007] __kasan_kmalloc+0xc1/0xd0\n[ +0.000007] kmalloc_trace_noprof+0x180/0x380\n[ +0.000007] drm_sched_init+0x411/0xec0 [gpu_sched]\n[ +0.000012] amdgpu_device_init+0x695f/0xa610 [amdgpu]\n[ +0.000658] amdgpu_driver_load_kms+0x1a/0x120 [amdgpu]\n[ +0.000662] amdgpu_pci_p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56551",
"url": "https://www.suse.com/security/cve/CVE-2024-56551"
},
{
"category": "external",
"summary": "SUSE Bug 1235075 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "external",
"summary": "SUSE Bug 1235102 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56551"
},
{
"cve": "CVE-2024-56562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56562"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()\n\nif (dev-\u003eboardinfo \u0026\u0026 dev-\u003eboardinfo-\u003einit_dyn_addr)\n ^^^ here check \"init_dyn_addr\"\n\ti3c_bus_set_addr_slot_status(\u0026master-\u003ebus, dev-\u003einfo.dyn_addr, ...)\n\t\t\t\t\t\t ^^^^\n\t\t\t\t\t\t\tfree \"dyn_addr\"\nFix copy/paste error \"dyn_addr\" by replacing it with \"init_dyn_addr\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56562",
"url": "https://www.suse.com/security/cve/CVE-2024-56562"
},
{
"category": "external",
"summary": "SUSE Bug 1234930 for CVE-2024-56562",
"url": "https://bugzilla.suse.com/1234930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56562"
},
{
"cve": "CVE-2024-56566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: Avoid list corruption when removing a slab from the full list\n\nBoot with slub_debug=UFPZ.\n\nIf allocated object failed in alloc_consistency_checks, all objects of\nthe slab will be marked as used, and then the slab will be removed from\nthe partial list.\n\nWhen an object belonging to the slab got freed later, the remove_full()\nfunction is called. Because the slab is neither on the partial list nor\non the full list, it eventually lead to a list corruption (actually a\nlist poison being detected).\n\nSo we need to mark and isolate the slab page with metadata corruption,\ndo not put it back in circulation.\n\nBecause the debug caches avoid all the fastpaths, reusing the frozen bit\nto mark slab page with metadata corruption seems to be fine.\n\n[ 4277.385669] list_del corruption, ffffea00044b3e50-\u003enext is LIST_POISON1 (dead000000000100)\n[ 4277.387023] ------------[ cut here ]------------\n[ 4277.387880] kernel BUG at lib/list_debug.c:56!\n[ 4277.388680] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 4277.389562] CPU: 5 PID: 90 Comm: kworker/5:1 Kdump: loaded Tainted: G OE 6.6.1-1 #1\n[ 4277.392113] Workqueue: xfs-inodegc/vda1 xfs_inodegc_worker [xfs]\n[ 4277.393551] RIP: 0010:__list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.394518] Code: 48 91 82 e8 37 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 28 49 91 82 e8 26 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 58 49 91\n[ 4277.397292] RSP: 0018:ffffc90000333b38 EFLAGS: 00010082\n[ 4277.398202] RAX: 000000000000004e RBX: ffffea00044b3e50 RCX: 0000000000000000\n[ 4277.399340] RDX: 0000000000000002 RSI: ffffffff828f8715 RDI: 00000000ffffffff\n[ 4277.400545] RBP: ffffea00044b3e40 R08: 0000000000000000 R09: ffffc900003339f0\n[ 4277.401710] R10: 0000000000000003 R11: ffffffff82d44088 R12: ffff888112cf9910\n[ 4277.402887] R13: 0000000000000001 R14: 0000000000000001 R15: ffff8881000424c0\n[ 4277.404049] FS: 0000000000000000(0000) GS:ffff88842fd40000(0000) knlGS:0000000000000000\n[ 4277.405357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4277.406389] CR2: 00007f2ad0b24000 CR3: 0000000102a3a006 CR4: 00000000007706e0\n[ 4277.407589] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4277.408780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4277.410000] PKRU: 55555554\n[ 4277.410645] Call Trace:\n[ 4277.411234] \u003cTASK\u003e\n[ 4277.411777] ? die+0x32/0x80\n[ 4277.412439] ? do_trap+0xd6/0x100\n[ 4277.413150] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.414158] ? do_error_trap+0x6a/0x90\n[ 4277.414948] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.415915] ? exc_invalid_op+0x4c/0x60\n[ 4277.416710] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.417675] ? asm_exc_invalid_op+0x16/0x20\n[ 4277.418482] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.419466] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.420410] free_to_partial_list+0x515/0x5e0\n[ 4277.421242] ? xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.422298] xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.423316] ? xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.424383] xfs_bmap_del_extent_delay+0x4fe/0x7d0 [xfs]\n[ 4277.425490] __xfs_bunmapi+0x50d/0x840 [xfs]\n[ 4277.426445] xfs_itruncate_extents_flags+0x13a/0x490 [xfs]\n[ 4277.427553] xfs_inactive_truncate+0xa3/0x120 [xfs]\n[ 4277.428567] xfs_inactive+0x22d/0x290 [xfs]\n[ 4277.429500] xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.430479] process_one_work+0x171/0x340\n[ 4277.431227] worker_thread+0x277/0x390\n[ 4277.431962] ? __pfx_worker_thread+0x10/0x10\n[ 4277.432752] kthread+0xf0/0x120\n[ 4277.433382] ? __pfx_kthread+0x10/0x10\n[ 4277.434134] ret_from_fork+0x2d/0x50\n[ 4277.434837] ? __pfx_kthread+0x10/0x10\n[ 4277.435566] ret_from_fork_asm+0x1b/0x30\n[ 4277.436280] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56566",
"url": "https://www.suse.com/security/cve/CVE-2024-56566"
},
{
"category": "external",
"summary": "SUSE Bug 1235033 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "external",
"summary": "SUSE Bug 1235034 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56566"
},
{
"cve": "CVE-2024-56567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nad7780: fix division by zero in ad7780_write_raw()\n\nIn the ad7780_write_raw() , val2 can be zero, which might lead to a\ndivision by zero error in DIV_ROUND_CLOSEST(). The ad7780_write_raw()\nis based on iio_info\u0027s write_raw. While val is explicitly declared that\ncan be zero (in read mode), val2 is not specified to be non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56567",
"url": "https://www.suse.com/security/cve/CVE-2024-56567"
},
{
"category": "external",
"summary": "SUSE Bug 1234916 for CVE-2024-56567",
"url": "https://bugzilla.suse.com/1234916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56567"
},
{
"cve": "CVE-2024-56576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56576"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: tc358743: Fix crash in the probe error path when using polling\n\nIf an error occurs in the probe() function, we should remove the polling\ntimer that was alarmed earlier, otherwise the timer is called with\narguments that are already freed, which results in a crash.\n\n------------[ cut here ]------------\nWARNING: CPU: 3 PID: 0 at kernel/time/timer.c:1830 __run_timers+0x244/0x268\nModules linked in:\nCPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted 6.11.0 #226\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\npstate: 804000c9 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : __run_timers+0x244/0x268\nlr : __run_timers+0x1d4/0x268\nsp : ffffff80eff2baf0\nx29: ffffff80eff2bb50 x28: 7fffffffffffffff x27: ffffff80eff2bb00\nx26: ffffffc080f669c0 x25: ffffff80efef6bf0 x24: ffffff80eff2bb00\nx23: 0000000000000000 x22: dead000000000122 x21: 0000000000000000\nx20: ffffff80efef6b80 x19: ffffff80041c8bf8 x18: ffffffffffffffff\nx17: ffffffc06f146000 x16: ffffff80eff27dc0 x15: 000000000000003e\nx14: 0000000000000000 x13: 00000000000054da x12: 0000000000000000\nx11: 00000000000639c0 x10: 000000000000000c x9 : 0000000000000009\nx8 : ffffff80eff2cb40 x7 : ffffff80eff2cb40 x6 : ffffff8002bee480\nx5 : ffffffc080cb2220 x4 : ffffffc080cb2150 x3 : 00000000000f4240\nx2 : 0000000000000102 x1 : ffffff80eff2bb00 x0 : ffffff80041c8bf0\nCall trace:\n __run_timers+0x244/0x268\n timer_expire_remote+0x50/0x68\n tmigr_handle_remote+0x388/0x39c\n run_timer_softirq+0x38/0x44\n handle_softirqs+0x138/0x298\n __do_softirq+0x14/0x20\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0x9c/0xcc\n el1_interrupt+0x48/0xc0\n el1h_64_irq_handler+0x18/0x24\n el1h_64_irq+0x7c/0x80\n default_idle_call+0x34/0x68\n do_idle+0x23c/0x294\n cpu_startup_entry+0x38/0x3c\n secondary_start_kernel+0x128/0x160\n __secondary_switched+0xb8/0xbc\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56576",
"url": "https://www.suse.com/security/cve/CVE-2024-56576"
},
{
"category": "external",
"summary": "SUSE Bug 1235019 for CVE-2024-56576",
"url": "https://bugzilla.suse.com/1235019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56576"
},
{
"cve": "CVE-2024-56582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56582"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free in btrfs_encoded_read_endio()\n\nShinichiro reported the following use-after free that sometimes is\nhappening in our CI system when running fstests\u0027 btrfs/284 on a TCMU\nrunner device:\n\n BUG: KASAN: slab-use-after-free in lock_release+0x708/0x780\n Read of size 8 at addr ffff888106a83f18 by task kworker/u80:6/219\n\n CPU: 8 UID: 0 PID: 219 Comm: kworker/u80:6 Not tainted 6.12.0-rc6-kts+ #15\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6e/0xa0\n ? lock_release+0x708/0x780\n print_report+0x174/0x505\n ? lock_release+0x708/0x780\n ? __virt_addr_valid+0x224/0x410\n ? lock_release+0x708/0x780\n kasan_report+0xda/0x1b0\n ? lock_release+0x708/0x780\n ? __wake_up+0x44/0x60\n lock_release+0x708/0x780\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? lock_is_held_type+0x9a/0x110\n _raw_spin_unlock_irqrestore+0x1f/0x60\n __wake_up+0x44/0x60\n btrfs_encoded_read_endio+0x14b/0x190 [btrfs]\n btrfs_check_read_bio+0x8d9/0x1360 [btrfs]\n ? lock_release+0x1b0/0x780\n ? trace_lock_acquire+0x12f/0x1a0\n ? __pfx_btrfs_check_read_bio+0x10/0x10 [btrfs]\n ? process_one_work+0x7e3/0x1460\n ? lock_acquire+0x31/0xc0\n ? process_one_work+0x7e3/0x1460\n process_one_work+0x85c/0x1460\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x16c/0x240\n worker_thread+0x5e6/0xfc0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2c3/0x3a0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_encoded_read_regular_fill_pages+0x16c/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x4f/0x70\n kfree+0x143/0x490\n btrfs_encoded_read_regular_fill_pages+0x531/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n The buggy address belongs to the object at ffff888106a83f00\n which belongs to the cache kmalloc-rnd-07-96 of size 96\n The buggy address is located 24 bytes inside of\n freed 96-byte region [ffff888106a83f00, ffff888106a83f60)\n\n The buggy address belongs to the physical page:\n page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888106a83800 pfn:0x106a83\n flags: 0x17ffffc0000000(node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f5(slab)\n raw: 0017ffffc0000000 ffff888100053680 ffffea0004917200 0000000000000004\n raw: ffff888106a83800 0000000080200019 00000001f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888106a83e00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a83e80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n \u003effff888106a83f00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ^\n ffff888106a83f80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a84000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ==================================================================\n\nFurther analyzing the trace and \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56582",
"url": "https://www.suse.com/security/cve/CVE-2024-56582"
},
{
"category": "external",
"summary": "SUSE Bug 1235128 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "external",
"summary": "SUSE Bug 1235129 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-56582"
},
{
"cve": "CVE-2024-56599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56599"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: avoid NULL pointer error during sdio remove\n\nWhen running \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will free sdio\nworkqueue by destroy_workqueue(). But if CONFIG_INIT_ON_FREE_DEFAULT_ON\nis set to yes, kernel panic will happen:\nCall trace:\n destroy_workqueue+0x1c/0x258\n ath10k_sdio_remove+0x84/0x94\n sdio_bus_remove+0x50/0x16c\n device_release_driver_internal+0x188/0x25c\n device_driver_detach+0x20/0x2c\n\nThis is because during \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will call\nath10k_core_destroy() before destroy_workqueue(). wiphy_dev_release()\nwill finally be called in ath10k_core_destroy(). This function will free\nstruct cfg80211_registered_device *rdev and all its members, including\nwiphy, dev and the pointer of sdio workqueue. Then the pointer of sdio\nworkqueue will be set to NULL due to CONFIG_INIT_ON_FREE_DEFAULT_ON.\n\nAfter device release, destroy_workqueue() will use NULL pointer then the\nkernel panic happen.\n\nCall trace:\nath10k_sdio_remove\n -\u003eath10k_core_unregister\n \u2026\u2026\n -\u003eath10k_core_stop\n -\u003eath10k_hif_stop\n -\u003eath10k_sdio_irq_disable\n -\u003eath10k_hif_power_down\n -\u003edel_timer_sync(\u0026ar_sdio-\u003esleep_timer)\n -\u003eath10k_core_destroy\n -\u003eath10k_mac_destroy\n -\u003eieee80211_free_hw\n -\u003ewiphy_free\n \u2026\u2026\n -\u003ewiphy_dev_release\n -\u003edestroy_workqueue\n\nNeed to call destroy_workqueue() before ath10k_core_destroy(), free\nthe work queue buffer first and then free pointer of work queue by\nath10k_core_destroy(). This order matches the error path order in\nath10k_sdio_probe().\n\nNo work will be queued on sdio workqueue between it is destroyed and\nath10k_core_destroy() is called. Based on the call_stack above, the\nreason is:\nOnly ath10k_sdio_sleep_timer_handler(), ath10k_sdio_hif_tx_sg() and\nath10k_sdio_irq_disable() will queue work on sdio workqueue.\nSleep timer will be deleted before ath10k_core_destroy() in\nath10k_hif_power_down().\nath10k_sdio_irq_disable() only be called in ath10k_hif_stop().\nath10k_core_unregister() will call ath10k_hif_power_down() to stop hif\nbus, so ath10k_sdio_hif_tx_sg() won\u0027t be called anymore.\n\nTested-on: QCA6174 hw3.2 SDIO WLAN.RMH.4.4.1-00189",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56599",
"url": "https://www.suse.com/security/cve/CVE-2024-56599"
},
{
"category": "external",
"summary": "SUSE Bug 1235138 for CVE-2024-56599",
"url": "https://bugzilla.suse.com/1235138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56599"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: j1939: j1939_session_new(): fix skb reference counting\n\nSince j1939_session_skb_queue() does an extra skb_get() for each new\nskb, do the same for the initial one in j1939_session_new() to avoid\nrefcount underflow.\n\n[mkl: clean up commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56645",
"url": "https://www.suse.com/security/cve/CVE-2024-56645"
},
{
"category": "external",
"summary": "SUSE Bug 1235134 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "external",
"summary": "SUSE Bug 1235135 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-56645"
},
{
"cve": "CVE-2024-56667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Fix NULL pointer dereference in capture_engine\n\nWhen the intel_context structure contains NULL,\nit raises a NULL pointer dereference error in drm_info().\n\n(cherry picked from commit 754302a5bc1bd8fd3b7d85c168b0a1af6d4bba4d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56667",
"url": "https://www.suse.com/security/cve/CVE-2024-56667"
},
{
"category": "external",
"summary": "SUSE Bug 1235016 for CVE-2024-56667",
"url": "https://bugzilla.suse.com/1235016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56667"
},
{
"cve": "CVE-2024-56752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()\n\nWhen the call to gf100_grctx_generate() fails, unlock gr-\u003efecs.mutex\nbefore returning the error.\n\nFixes smatch warning:\n\ndrivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480 gf100_gr_chan_new() warn: inconsistent returns \u0027\u0026gr-\u003efecs.mutex\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56752",
"url": "https://www.suse.com/security/cve/CVE-2024-56752"
},
{
"category": "external",
"summary": "SUSE Bug 1234937 for CVE-2024-56752",
"url": "https://bugzilla.suse.com/1234937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56752"
},
{
"cve": "CVE-2024-56754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: caam - Fix the pointer passed to caam_qi_shutdown()\n\nThe type of the last parameter given to devm_add_action_or_reset() is\n\"struct caam_drv_private *\", but in caam_qi_shutdown(), it is casted to\n\"struct device *\".\n\nPass the correct parameter to devm_add_action_or_reset() so that the\nresources are released as expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56754",
"url": "https://www.suse.com/security/cve/CVE-2024-56754"
},
{
"category": "external",
"summary": "SUSE Bug 1234918 for CVE-2024-56754",
"url": "https://bugzilla.suse.com/1234918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56754"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-56756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix freeing of the HMB descriptor table\n\nThe HMB descriptor table is sized to the maximum number of descriptors\nthat could be used for a given device, but __nvme_alloc_host_mem could\nbreak out of the loop earlier on memory allocation failure and end up\nusing less descriptors than planned for, which leads to an incorrect\nsize passed to dma_free_coherent.\n\nIn practice this was not showing up because the number of descriptors\ntends to be low and the dma coherent allocator always allocates and\nfrees at least a page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56756",
"url": "https://www.suse.com/security/cve/CVE-2024-56756"
},
{
"category": "external",
"summary": "SUSE Bug 1234922 for CVE-2024-56756",
"url": "https://bugzilla.suse.com/1234922"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "moderate"
}
],
"title": "CVE-2024-56756"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_33-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.33.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.33.1.150600.12.14.1.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.33.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.33.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-17T09:15:09Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
}
]
}
SUSE-SU-2025:0201-2
Vulnerability from csaf_suse - Published: 2025-03-11 13:41 - Updated: 2025-03-11 13:41Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver (bsc#1203332).
- CVE-2022-48742: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() (bsc#1226694).
- CVE-2022-49033: btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit() (bsc#1232045).
- CVE-2023-1382: Fixed denial of service in tipc_conn_close (bsc#1209288).
- CVE-2023-33951: Fixed a race condition that could have led to an information disclosure inside the vmwgfx driver (bsc#1211593).
- CVE-2023-33952: Fixed a double free that could have led to a local privilege escalation inside the vmwgfx driver (bsc#1211595).
- CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking (bsc#1232823).
- CVE-2024-26886: Bluetooth: af_bluetooth: Fix deadlock (bsc#1223044).
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-47666: scsi: pm80xx: Set phy->enable_completion only when we wait for it (bsc#1231453).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).
- CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption (bsc#1232157).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices (bsc#1233050).
- CVE-2024-50181: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D (bsc#1233127).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50211: udf: refactor inode_bmap() to handle error (bsc#1233096).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).
- CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver (bsc#1233485).
- CVE-2024-53051: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability (bsc#1233547).
- CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction (bsc#1233550).
- CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() (bsc#1233568).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).
- CVE-2024-53072: platform/x86/amd/pmc: Detect when STB is not available (bsc#1233564).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53095: smb: client: Fix use-after-free of network namespace (bsc#1233642).
- CVE-2024-53101: fs: Fix uninitialized value issue in from_kuid and from_kgid (bsc#1233769).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53114: x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client (bsc#1234072).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).
- CVE-2024-53150: ALSA: usb-audio: Fix out of bounds reads when finding clock sources (bsc#1234834).
- CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846).
- CVE-2024-53157: firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (bsc#1234827).
- CVE-2024-53158: soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (bsc#1234811).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53162: crypto: qat/qat_4xxx - fix off by one in uof_get_name() (bsc#1234843).
- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53210: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (bsc#1234971).
- CVE-2024-53213: net: usb: lan78xx: Fix double free issue with interrupt buffer allocation (bsc#1234973).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).
- CVE-2024-56539: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (bsc#1234963).
- CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).
- CVE-2024-56571: media: uvcvideo: Require entities to have a non-zero unique ID (bsc#1235037).
- CVE-2024-56575: media: imx-jpeg: Ensure power suppliers be suspended before detach them (bsc#1235039).
- CVE-2024-56598: jfs: array-index-out-of-bounds fix in dtReadFirst (bsc#1235220).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).
- CVE-2024-56619: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (bsc#1235224).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
The following non-security bugs were fixed:
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- Documentation: Add x86/amd_hsmp driver (jsc#PED-1295).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- Drop a couple of block layer git-fixes (bsc#1170891 bsc#1173139)
- KVM: x86: fix sending PV IPI (git-fixes).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: Move fill_pre_wcc() and fill_post_wcc() (bsc#1234650 bsc#1233701 bsc#1232472).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: reduce locking in nfsd_lookup() (bsc#1234650 bsc#1233701 bsc#1232472).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- PCI: vmd: Fix secondary bus reset for Intel bridges (git-fixes).
- RDMA/hns: Disassociate mmap pages for all uctx when HW is being reset (git-fixes)
- README: Clean-up trailing whitespace
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- amd_hsmp: Add HSMP protocol version 5 messages (jsc#PED-1295).
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-fixes).
- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes).
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-fixes).
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (git-fixes).
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (git-fixes).
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (git-fixes).
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- autofs: use flexible array in ioctl structure (git-fixes).
- devlink: allow registering parameters after the instance (bsc#1231388 bsc#1230422).
- devlink: do not require setting features before registration (bsc#1231388 bsc#1230422).
- dma-fence: Fix reference leak on fence merge failure path (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: idxd: add wq driver name support for accel-config user tool (bsc#1234357).
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (git-fixes).
- drm/v3d: Enable Performance Counters before clearing them (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- fixup 'rpm: support gz and zst compression methods' once more (bsc#1190428, bsc#1190358) Fixes: 3b8c4d9bcc24 ('rpm: support gz and zst compression methods') Fixes: 23510fce36ec ('fixup 'rpm: support gz and zst compression methods'')
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- ipc/sem: Fix dangling sem_array access in semtimedop race (bsc#1234727).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kabi/severities: ignore intermodule symbols between fsl_fman and fsl_dpaa_eth
- kernel-binary: do not BuildIgnore m4. It is actually needed for regenerating zconf when it is not up-to-date due to merge.
- kobject: Add sanity check for kset->kobj.ktype in kset_register() (bsc#1234639).
- memory: tegra: Add API for retrieving carveout bounds (jsc#PED-1763).
- mm/kfence: reset PG_slab and memcg_data before freeing __kfence_pool (bsc#1234120).
- mmc: core: Further prevent card detect during shutdown (git-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- nfsd: remove unsafe BUG_ON from set_change_info (bsc#1234650 bsc#1233701 bsc#1232472).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- ocfs2: uncache inode which has failed entering the group (bsc#1234087).
- phy: tegra: p2u: Set ENABLE_L2_EXIT_RATE_CHANGE in calibration (jsc#PED-1763).
- platform/x86: Add AMD system management interface (jsc#PED-1295).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- pwm: tegra: Improve required rate calculation (jsc#PED-1763).
- regmap: detach regmap from dev on regmap_exit (git-fixes).
- rpm/kernel-binary.spec.in: Fix build regression The previous fix forgot to take over grep -c option that broke the conditional expression
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- scripts/git_sort/git_sort.py: add tegra DRM and linux-pwm repo
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- serial: tegra: Read DMA status before terminating (jsc#PED-1763).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: this fixes issue discussed in bsc#1233642].
- spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes).
- sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (git-fixes).
- supported.conf: add bsc1185010 dependency
- supported.conf: hyperv_drm (jsc#sle-19733)
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- udf: Handle error when adding extent to a file (bsc#1234437).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes).
- usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes).
- x86/bug: Merge annotate_reachable() into _BUG_FLAGS() asm (git-fixes).
- x86/fpu/xsave: Handle compacted offsets correctly with supervisor states (git-fixes).
- x86/fpu/xstate: Fix the ARCH_REQ_XCOMP_PERM implementation (git-fixes).
- x86/fpu: Remove unused supervisor only offsets (git-fixes).
- x86/kvm: Do not use pv tlb/ipi/sched_yield if on 1 vCPU (git-fixes).
- x86/mce/inject: Avoid out-of-bounds write when setting flags (git-fixes).
- x86/mce: Allow instrumentation during task work queueing (git-fixes).
- x86/mce: Mark mce_end() noinstr (git-fixes).
- x86/mce: Mark mce_panic() noinstr (git-fixes).
- x86/mce: Mark mce_read_aux() noinstr (git-fixes).
- x86/mm: Flush global TLB when switching to trampoline page-table (git-fixes).
- x86/sev: Make enc_dec_hypercall() accept a size instead of npages (bsc#1214635).
- x86/sgx: Free backing memory after faulting the enclave page (git-fixes).
- x86/sgx: Silence softlockup detection when releasing large enclaves (git-fixes).
- x86/uaccess: Move variable into switch case statement (git-fixes).
- x86: Annotate call_on_stack() (git-fixes).
- xfs: can't use kmem_zalloc() for attribute buffers (bsc#1216909).
- zonefs: fix zone report size in __zonefs_io_error() (git-fixes).
Patchnames
SUSE-2025-201,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-201,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-201,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-201,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-201
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver (bsc#1203332).\n- CVE-2022-48742: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() (bsc#1226694).\n- CVE-2022-49033: btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit() (bsc#1232045).\n- CVE-2023-1382: Fixed denial of service in tipc_conn_close (bsc#1209288).\n- CVE-2023-33951: Fixed a race condition that could have led to an information disclosure inside the vmwgfx driver (bsc#1211593).\n- CVE-2023-33952: Fixed a double free that could have led to a local privilege escalation inside the vmwgfx driver (bsc#1211595).\n- CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking (bsc#1232823).\n- CVE-2024-26886: Bluetooth: af_bluetooth: Fix deadlock (bsc#1223044).\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-47666: scsi: pm80xx: Set phy-\u003eenable_completion only when we wait for it (bsc#1231453).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).\n- CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption (bsc#1232157).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices (bsc#1233050).\n- CVE-2024-50181: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D (bsc#1233127).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50211: udf: refactor inode_bmap() to handle error (bsc#1233096).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).\n- CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver (bsc#1233485).\n- CVE-2024-53051: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability (bsc#1233547).\n- CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction (bsc#1233550).\n- CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() (bsc#1233568).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).\n- CVE-2024-53072: platform/x86/amd/pmc: Detect when STB is not available (bsc#1233564).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53095: smb: client: Fix use-after-free of network namespace (bsc#1233642).\n- CVE-2024-53101: fs: Fix uninitialized value issue in from_kuid and from_kgid (bsc#1233769).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53114: x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client (bsc#1234072).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).\n- CVE-2024-53150: ALSA: usb-audio: Fix out of bounds reads when finding clock sources (bsc#1234834).\n- CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846).\n- CVE-2024-53157: firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (bsc#1234827).\n- CVE-2024-53158: soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (bsc#1234811).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53162: crypto: qat/qat_4xxx - fix off by one in uof_get_name() (bsc#1234843).\n- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53210: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (bsc#1234971).\n- CVE-2024-53213: net: usb: lan78xx: Fix double free issue with interrupt buffer allocation (bsc#1234973).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).\n- CVE-2024-56539: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (bsc#1234963).\n- CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).\n- CVE-2024-56571: media: uvcvideo: Require entities to have a non-zero unique ID (bsc#1235037).\n- CVE-2024-56575: media: imx-jpeg: Ensure power suppliers be suspended before detach them (bsc#1235039).\n- CVE-2024-56598: jfs: array-index-out-of-bounds fix in dtReadFirst (bsc#1235220).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).\n- CVE-2024-56619: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (bsc#1235224).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n\nThe following non-security bugs were fixed:\n\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- Documentation: Add x86/amd_hsmp driver (jsc#PED-1295).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- Drop a couple of block layer git-fixes (bsc#1170891 bsc#1173139)\n- KVM: x86: fix sending PV IPI (git-fixes).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: Move fill_pre_wcc() and fill_post_wcc() (bsc#1234650 bsc#1233701 bsc#1232472).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: reduce locking in nfsd_lookup() (bsc#1234650 bsc#1233701 bsc#1232472).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- PCI: vmd: Fix secondary bus reset for Intel bridges (git-fixes).\n- RDMA/hns: Disassociate mmap pages for all uctx when HW is being reset (git-fixes)\n- README: Clean-up trailing whitespace\n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- amd_hsmp: Add HSMP protocol version 5 messages (jsc#PED-1295).\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-fixes).\n- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes).\n- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-fixes).\n- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (git-fixes).\n- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (git-fixes).\n- arm64: dts: rockchip: Remove hdmi\u0027s 2nd interrupt on rk3328 (git-fixes).\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- autofs: use flexible array in ioctl structure (git-fixes).\n- devlink: allow registering parameters after the instance (bsc#1231388 bsc#1230422).\n- devlink: do not require setting features before registration (bsc#1231388 bsc#1230422).\n- dma-fence: Fix reference leak on fence merge failure path (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: idxd: add wq driver name support for accel-config user tool (bsc#1234357).\n- drm/sti: Add __iomem for mixer_dbg_mxn\u0027s parameter (git-fixes).\n- drm/v3d: Enable Performance Counters before clearing them (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- fixup \u0027rpm: support gz and zst compression methods\u0027 once more (bsc#1190428, bsc#1190358) Fixes: 3b8c4d9bcc24 (\u0027rpm: support gz and zst compression methods\u0027) Fixes: 23510fce36ec (\u0027fixup \u0027rpm: support gz and zst compression methods\u0027\u0027)\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- ipc/sem: Fix dangling sem_array access in semtimedop race (bsc#1234727).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kabi/severities: ignore intermodule symbols between fsl_fman and fsl_dpaa_eth\n- kernel-binary: do not BuildIgnore m4. It is actually needed for regenerating zconf when it is not up-to-date due to merge.\n- kobject: Add sanity check for kset-\u003ekobj.ktype in kset_register() (bsc#1234639).\n- memory: tegra: Add API for retrieving carveout bounds (jsc#PED-1763).\n- mm/kfence: reset PG_slab and memcg_data before freeing __kfence_pool (bsc#1234120).\n- mmc: core: Further prevent card detect during shutdown (git-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- nfsd: remove unsafe BUG_ON from set_change_info (bsc#1234650 bsc#1233701 bsc#1232472).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- ocfs2: uncache inode which has failed entering the group (bsc#1234087).\n- phy: tegra: p2u: Set ENABLE_L2_EXIT_RATE_CHANGE in calibration (jsc#PED-1763).\n- platform/x86: Add AMD system management interface (jsc#PED-1295).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- pwm: tegra: Improve required rate calculation (jsc#PED-1763).\n- regmap: detach regmap from dev on regmap_exit (git-fixes).\n- rpm/kernel-binary.spec.in: Fix build regression The previous fix forgot to take over grep -c option that broke the conditional expression\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- scripts/git_sort/git_sort.py: add tegra DRM and linux-pwm repo\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- serial: tegra: Read DMA status before terminating (jsc#PED-1763).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: this fixes issue discussed in bsc#1233642].\n- spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes).\n- sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (git-fixes).\n- supported.conf: add bsc1185010 dependency\n- supported.conf: hyperv_drm (jsc#sle-19733)\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- udf: Handle error when adding extent to a file (bsc#1234437).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes).\n- usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes).\n- x86/bug: Merge annotate_reachable() into _BUG_FLAGS() asm (git-fixes).\n- x86/fpu/xsave: Handle compacted offsets correctly with supervisor states (git-fixes).\n- x86/fpu/xstate: Fix the ARCH_REQ_XCOMP_PERM implementation (git-fixes).\n- x86/fpu: Remove unused supervisor only offsets (git-fixes).\n- x86/kvm: Do not use pv tlb/ipi/sched_yield if on 1 vCPU (git-fixes).\n- x86/mce/inject: Avoid out-of-bounds write when setting flags (git-fixes).\n- x86/mce: Allow instrumentation during task work queueing (git-fixes).\n- x86/mce: Mark mce_end() noinstr (git-fixes).\n- x86/mce: Mark mce_panic() noinstr (git-fixes).\n- x86/mce: Mark mce_read_aux() noinstr (git-fixes).\n- x86/mm: Flush global TLB when switching to trampoline page-table (git-fixes).\n- x86/sev: Make enc_dec_hypercall() accept a size instead of npages (bsc#1214635).\n- x86/sgx: Free backing memory after faulting the enclave page (git-fixes).\n- x86/sgx: Silence softlockup detection when releasing large enclaves (git-fixes).\n- x86/uaccess: Move variable into switch case statement (git-fixes).\n- x86: Annotate call_on_stack() (git-fixes).\n- xfs: can\u0027t use kmem_zalloc() for attribute buffers (bsc#1216909).\n- zonefs: fix zone report size in __zonefs_io_error() (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-201,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-201,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-201,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-201,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-201",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0201-2.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0201-2",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250201-2/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0201-2",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020501.html"
},
{
"category": "self",
"summary": "SUSE Bug 1170891",
"url": "https://bugzilla.suse.com/1170891"
},
{
"category": "self",
"summary": "SUSE Bug 1173139",
"url": "https://bugzilla.suse.com/1173139"
},
{
"category": "self",
"summary": "SUSE Bug 1185010",
"url": "https://bugzilla.suse.com/1185010"
},
{
"category": "self",
"summary": "SUSE Bug 1190358",
"url": "https://bugzilla.suse.com/1190358"
},
{
"category": "self",
"summary": "SUSE Bug 1190428",
"url": "https://bugzilla.suse.com/1190428"
},
{
"category": "self",
"summary": "SUSE Bug 1203332",
"url": "https://bugzilla.suse.com/1203332"
},
{
"category": "self",
"summary": "SUSE Bug 1205521",
"url": "https://bugzilla.suse.com/1205521"
},
{
"category": "self",
"summary": "SUSE Bug 1209288",
"url": "https://bugzilla.suse.com/1209288"
},
{
"category": "self",
"summary": "SUSE Bug 1209798",
"url": "https://bugzilla.suse.com/1209798"
},
{
"category": "self",
"summary": "SUSE Bug 1211593",
"url": "https://bugzilla.suse.com/1211593"
},
{
"category": "self",
"summary": "SUSE Bug 1211595",
"url": "https://bugzilla.suse.com/1211595"
},
{
"category": "self",
"summary": "SUSE Bug 1214635",
"url": "https://bugzilla.suse.com/1214635"
},
{
"category": "self",
"summary": "SUSE Bug 1215304",
"url": "https://bugzilla.suse.com/1215304"
},
{
"category": "self",
"summary": "SUSE Bug 1215523",
"url": "https://bugzilla.suse.com/1215523"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1216909",
"url": "https://bugzilla.suse.com/1216909"
},
{
"category": "self",
"summary": "SUSE Bug 1219608",
"url": "https://bugzilla.suse.com/1219608"
},
{
"category": "self",
"summary": "SUSE Bug 1222878",
"url": "https://bugzilla.suse.com/1222878"
},
{
"category": "self",
"summary": "SUSE Bug 1223044",
"url": "https://bugzilla.suse.com/1223044"
},
{
"category": "self",
"summary": "SUSE Bug 1225758",
"url": "https://bugzilla.suse.com/1225758"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1226694",
"url": "https://bugzilla.suse.com/1226694"
},
{
"category": "self",
"summary": "SUSE Bug 1228190",
"url": "https://bugzilla.suse.com/1228190"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1230422",
"url": "https://bugzilla.suse.com/1230422"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231388",
"url": "https://bugzilla.suse.com/1231388"
},
{
"category": "self",
"summary": "SUSE Bug 1231453",
"url": "https://bugzilla.suse.com/1231453"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1232045",
"url": "https://bugzilla.suse.com/1232045"
},
{
"category": "self",
"summary": "SUSE Bug 1232157",
"url": "https://bugzilla.suse.com/1232157"
},
{
"category": "self",
"summary": "SUSE Bug 1232166",
"url": "https://bugzilla.suse.com/1232166"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232472",
"url": "https://bugzilla.suse.com/1232472"
},
{
"category": "self",
"summary": "SUSE Bug 1232823",
"url": "https://bugzilla.suse.com/1232823"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233050",
"url": "https://bugzilla.suse.com/1233050"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233127",
"url": "https://bugzilla.suse.com/1233127"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233468",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233485",
"url": "https://bugzilla.suse.com/1233485"
},
{
"category": "self",
"summary": "SUSE Bug 1233547",
"url": "https://bugzilla.suse.com/1233547"
},
{
"category": "self",
"summary": "SUSE Bug 1233550",
"url": "https://bugzilla.suse.com/1233550"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233564",
"url": "https://bugzilla.suse.com/1233564"
},
{
"category": "self",
"summary": "SUSE Bug 1233568",
"url": "https://bugzilla.suse.com/1233568"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233701",
"url": "https://bugzilla.suse.com/1233701"
},
{
"category": "self",
"summary": "SUSE Bug 1233769",
"url": "https://bugzilla.suse.com/1233769"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234072",
"url": "https://bugzilla.suse.com/1234072"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234087",
"url": "https://bugzilla.suse.com/1234087"
},
{
"category": "self",
"summary": "SUSE Bug 1234120",
"url": "https://bugzilla.suse.com/1234120"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234437",
"url": "https://bugzilla.suse.com/1234437"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234639",
"url": "https://bugzilla.suse.com/1234639"
},
{
"category": "self",
"summary": "SUSE Bug 1234650",
"url": "https://bugzilla.suse.com/1234650"
},
{
"category": "self",
"summary": "SUSE Bug 1234727",
"url": "https://bugzilla.suse.com/1234727"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235035",
"url": "https://bugzilla.suse.com/1235035"
},
{
"category": "self",
"summary": "SUSE Bug 1235037",
"url": "https://bugzilla.suse.com/1235037"
},
{
"category": "self",
"summary": "SUSE Bug 1235039",
"url": "https://bugzilla.suse.com/1235039"
},
{
"category": "self",
"summary": "SUSE Bug 1235054",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235073",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "self",
"summary": "SUSE Bug 1235220",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "self",
"summary": "SUSE Bug 1235224",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47202 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-36280 page",
"url": "https://www.suse.com/security/cve/CVE-2022-36280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48742 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-49033 page",
"url": "https://www.suse.com/security/cve/CVE-2022-49033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-49035 page",
"url": "https://www.suse.com/security/cve/CVE-2022-49035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-1382 page",
"url": "https://www.suse.com/security/cve/CVE-2023-1382/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-33951 page",
"url": "https://www.suse.com/security/cve/CVE-2023-33951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-33952 page",
"url": "https://www.suse.com/security/cve/CVE-2023-33952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52920 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52920/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24860 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24860/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47666 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47666/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50181 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50279 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50296 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53051 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53055 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53056 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53056/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53072 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53072/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53101 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53114 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56571 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56575 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-03-11T13:41:34Z",
"generator": {
"date": "2025-03-11T13:41:34Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0201-2",
"initial_release_date": "2025-03-11T13:41:34Z",
"revision_history": [
{
"date": "2025-03-11T13:41:34Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "cluster-md-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "cluster-md-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dlm-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "dlm-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-allwinner-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-allwinner-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-allwinner-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-altera-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-altera-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-altera-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amazon-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-amazon-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-amazon-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amd-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-amd-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-amd-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amlogic-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-amlogic-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-amlogic-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apm-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-apm-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-apm-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apple-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-apple-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-apple-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-arm-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-arm-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-arm-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-broadcom-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-broadcom-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-broadcom-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-cavium-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-cavium-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-cavium-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-exynos-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-exynos-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-exynos-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-freescale-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-freescale-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-freescale-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-hisilicon-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-hisilicon-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-hisilicon-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-lg-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-lg-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-lg-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-marvell-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-marvell-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-marvell-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-mediatek-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-mediatek-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-mediatek-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-nvidia-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-nvidia-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-nvidia-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-qcom-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-qcom-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-qcom-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-renesas-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-renesas-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-renesas-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-rockchip-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-rockchip-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-rockchip-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-socionext-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-socionext-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-socionext-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-sprd-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-sprd-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-sprd-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-xilinx-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "dtb-xilinx-5.14.21-150500.55.91.1.aarch64",
"product_id": "dtb-xilinx-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "gfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "gfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-64kb-extra-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-64kb-extra-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-optional-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-64kb-optional-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-64kb-optional-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"product": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"product_id": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"product": {
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"product_id": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-extra-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-default-optional-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-kvmsmall-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-obs-qa-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"product_id": "kernel-syms-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kselftests-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "kselftests-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "ocfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "ocfs2-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "reiserfs-kmp-64kb-5.14.21-150500.55.91.1.aarch64",
"product_id": "reiserfs-kmp-64kb-5.14.21-150500.55.91.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-devel-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-docs-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-docs-html-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-docs-html-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-macros-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-source-5.14.21-150500.55.91.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-5.14.21-150500.55.91.1.noarch",
"product": {
"name": "kernel-source-vanilla-5.14.21-150500.55.91.1.noarch",
"product_id": "kernel-source-vanilla-5.14.21-150500.55.91.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-debug-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-debug-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-debug-devel-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-debug-devel-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"product": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"product_id": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"product": {
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"product_id": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-extra-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-default-optional-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-kvmsmall-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-obs-qa-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kernel-syms-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-devel-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-extra-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-default-optional-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-obs-build-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-obs-qa-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-syms-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-syms-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"product_id": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-debug-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-debug-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-debug-devel-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-debug-devel-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-vdso-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-debug-vdso-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-debug-vdso-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"product": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"product_id": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"product": {
"name": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"product_id": "kernel-default-base-rebuild-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-extra-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-livepatch-devel-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-optional-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-vdso-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-default-vdso-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-default-vdso-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-kvmsmall-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-kvmsmall-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-kvmsmall-devel-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-vdso-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-kvmsmall-vdso-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-kvmsmall-vdso-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_55_91-default-1-150500.11.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-obs-qa-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"product_id": "kernel-syms-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-source-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-source-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-source-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-devel-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-docs-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-macros-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.14.21-150500.55.91.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch"
},
"product_reference": "kernel-source-5.14.21-150500.55.91.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "kernel-syms-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-47202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: Fix NULL pointer dereferences in of_thermal_ functions\n\nof_parse_thermal_zones() parses the thermal-zones node and registers a\nthermal_zone device for each subnode. However, if a thermal zone is\nconsuming a thermal sensor and that thermal sensor device hasn\u0027t probed\nyet, an attempt to set trip_point_*_temp for that thermal zone device\ncan cause a NULL pointer dereference. Fix it.\n\n console:/sys/class/thermal/thermal_zone87 # echo 120000 \u003e trip_point_0_temp\n ...\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n ...\n Call trace:\n of_thermal_set_trip_temp+0x40/0xc4\n trip_point_temp_store+0xc0/0x1dc\n dev_attr_store+0x38/0x88\n sysfs_kf_write+0x64/0xc0\n kernfs_fop_write_iter+0x108/0x1d0\n vfs_write+0x2f4/0x368\n ksys_write+0x7c/0xec\n __arm64_sys_write+0x20/0x30\n el0_svc_common.llvm.7279915941325364641+0xbc/0x1bc\n do_el0_svc+0x28/0xa0\n el0_svc+0x14/0x24\n el0_sync_handler+0x88/0xec\n el0_sync+0x1c0/0x200\n\nWhile at it, fix the possible NULL pointer dereference in other\nfunctions as well: of_thermal_get_temp(), of_thermal_set_emul_temp(),\nof_thermal_get_trend().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47202",
"url": "https://www.suse.com/security/cve/CVE-2021-47202"
},
{
"category": "external",
"summary": "SUSE Bug 1222878 for CVE-2021-47202",
"url": "https://bugzilla.suse.com/1222878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2021-47202"
},
{
"cve": "CVE-2022-36280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-36280"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file \u0027/dev/dri/renderD128 (or Dxxx)\u0027. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-36280",
"url": "https://www.suse.com/security/cve/CVE-2022-36280"
},
{
"category": "external",
"summary": "SUSE Bug 1203332 for CVE-2022-36280",
"url": "https://bugzilla.suse.com/1203332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2022-36280"
},
{
"cve": "CVE-2022-48742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink()\n\nWhile looking at one unrelated syzbot bug, I found the replay logic\nin __rtnl_newlink() to potentially trigger use-after-free.\n\nIt is better to clear master_dev and m_ops inside the loop,\nin case we have to replay it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48742",
"url": "https://www.suse.com/security/cve/CVE-2022-48742"
},
{
"category": "external",
"summary": "SUSE Bug 1226694 for CVE-2022-48742",
"url": "https://bugzilla.suse.com/1226694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2022-48742"
},
{
"cve": "CVE-2022-49033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-49033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit()\n\nSyzkaller reported BUG as follows:\n\n BUG: sleeping function called from invalid context at\n include/linux/sched/mm.h:274\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xcd/0x134\n __might_resched.cold+0x222/0x26b\n kmem_cache_alloc+0x2e7/0x3c0\n update_qgroup_limit_item+0xe1/0x390\n btrfs_qgroup_inherit+0x147b/0x1ee0\n create_subvol+0x4eb/0x1710\n btrfs_mksubvol+0xfe5/0x13f0\n __btrfs_ioctl_snap_create+0x2b0/0x430\n btrfs_ioctl_snap_create_v2+0x25a/0x520\n btrfs_ioctl+0x2a1c/0x5ce0\n __x64_sys_ioctl+0x193/0x200\n do_syscall_64+0x35/0x80\n\nFix this by calling qgroup_dirty() on @dstqgroup, and update limit item in\nbtrfs_run_qgroups() later outside of the spinlock context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-49033",
"url": "https://www.suse.com/security/cve/CVE-2022-49033"
},
{
"category": "external",
"summary": "SUSE Bug 1232045 for CVE-2022-49033",
"url": "https://bugzilla.suse.com/1232045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2022-49033"
},
{
"cve": "CVE-2022-49035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-49035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE\n\nI expect that the hardware will have limited this to 16, but just in\ncase it hasn\u0027t, check for this corner case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-49035",
"url": "https://www.suse.com/security/cve/CVE-2022-49035"
},
{
"category": "external",
"summary": "SUSE Bug 1215304 for CVE-2022-49035",
"url": "https://bugzilla.suse.com/1215304"
},
{
"category": "external",
"summary": "SUSE Bug 1235013 for CVE-2022-49035",
"url": "https://bugzilla.suse.com/1235013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2022-49035"
},
{
"cve": "CVE-2023-1382",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-1382"
}
],
"notes": [
{
"category": "general",
"text": "A data race flaw was found in the Linux kernel, between where con is allocated and con-\u003esock is set. This issue leads to a NULL pointer dereference when accessing con-\u003esock-\u003esk in net/tipc/topsrv.c in the tipc protocol in the Linux kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-1382",
"url": "https://www.suse.com/security/cve/CVE-2023-1382"
},
{
"category": "external",
"summary": "SUSE Bug 1209288 for CVE-2023-1382",
"url": "https://bugzilla.suse.com/1209288"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2023-1382"
},
{
"cve": "CVE-2023-33951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-33951"
}
],
"notes": [
{
"category": "general",
"text": "A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information in the context of the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-33951",
"url": "https://www.suse.com/security/cve/CVE-2023-33951"
},
{
"category": "external",
"summary": "SUSE Bug 1211593 for CVE-2023-33951",
"url": "https://bugzilla.suse.com/1211593"
},
{
"category": "external",
"summary": "SUSE Bug 1216527 for CVE-2023-33951",
"url": "https://bugzilla.suse.com/1216527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2023-33951"
},
{
"cve": "CVE-2023-33952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-33952"
}
],
"notes": [
{
"category": "general",
"text": "A double-free vulnerability was found in handling vmw_buffer_object objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior to performing further free operations on the object, which may allow a local privileged user to escalate privileges and execute code in the context of the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-33952",
"url": "https://www.suse.com/security/cve/CVE-2023-33952"
},
{
"category": "external",
"summary": "SUSE Bug 1211595 for CVE-2023-33952",
"url": "https://bugzilla.suse.com/1211595"
},
{
"category": "external",
"summary": "SUSE Bug 1212348 for CVE-2023-33952",
"url": "https://bugzilla.suse.com/1212348"
},
{
"category": "external",
"summary": "SUSE Bug 1216527 for CVE-2023-33952",
"url": "https://bugzilla.suse.com/1216527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2023-33952"
},
{
"cve": "CVE-2023-52920",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52920"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: support non-r10 register spill/fill to/from stack in precision tracking\n\nUse instruction (jump) history to record instructions that performed\nregister spill/fill to/from stack, regardless if this was done through\nread-only r10 register, or any other register after copying r10 into it\n*and* potentially adjusting offset.\n\nTo make this work reliably, we push extra per-instruction flags into\ninstruction history, encoding stack slot index (spi) and stack frame\nnumber in extra 10 bit flags we take away from prev_idx in instruction\nhistory. We don\u0027t touch idx field for maximum performance, as it\u0027s\nchecked most frequently during backtracking.\n\nThis change removes basically the last remaining practical limitation of\nprecision backtracking logic in BPF verifier. It fixes known\ndeficiencies, but also opens up new opportunities to reduce number of\nverified states, explored in the subsequent patches.\n\nThere are only three differences in selftests\u0027 BPF object files\naccording to veristat, all in the positive direction (less states).\n\nFile Program Insns (A) Insns (B) Insns (DIFF) States (A) States (B) States (DIFF)\n-------------------------------------- ------------- --------- --------- ------------- ---------- ---------- -------------\ntest_cls_redirect_dynptr.bpf.linked3.o cls_redirect 2987 2864 -123 (-4.12%) 240 231 -9 (-3.75%)\nxdp_synproxy_kern.bpf.linked3.o syncookie_tc 82848 82661 -187 (-0.23%) 5107 5073 -34 (-0.67%)\nxdp_synproxy_kern.bpf.linked3.o syncookie_xdp 85116 84964 -152 (-0.18%) 5162 5130 -32 (-0.62%)\n\nNote, I avoided renaming jmp_history to more generic insn_hist to\nminimize number of lines changed and potential merge conflicts between\nbpf and bpf-next trees.\n\nNotice also cur_hist_entry pointer reset to NULL at the beginning of\ninstruction verification loop. This pointer avoids the problem of\nrelying on last jump history entry\u0027s insn_idx to determine whether we\nalready have entry for current instruction or not. It can happen that we\nadded jump history entry because current instruction is_jmp_point(), but\nalso we need to add instruction flags for stack access. In this case, we\ndon\u0027t want to entries, so we need to reuse last added entry, if it is\npresent.\n\nRelying on insn_idx comparison has the same ambiguity problem as the one\nthat was fixed recently in [0], so we avoid that.\n\n [0] https://patchwork.kernel.org/project/netdevbpf/patch/20231110002638.4168352-3-andrii@kernel.org/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52920",
"url": "https://www.suse.com/security/cve/CVE-2023-52920"
},
{
"category": "external",
"summary": "SUSE Bug 1232823 for CVE-2023-52920",
"url": "https://bugzilla.suse.com/1232823"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2023-52920"
},
{
"cve": "CVE-2024-24860",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24860"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the Linux kernel\u0027s bluetooth device driver in {min,max}_key_size_set() function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24860",
"url": "https://www.suse.com/security/cve/CVE-2024-24860"
},
{
"category": "external",
"summary": "SUSE Bug 1219608 for CVE-2024-24860",
"url": "https://bugzilla.suse.com/1219608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-24860"
},
{
"cve": "CVE-2024-26886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: af_bluetooth: Fix deadlock\n\nAttemting to do sock_lock on .recvmsg may cause a deadlock as shown\nbellow, so instead of using sock_sock this uses sk_receive_queue.lock\non bt_sock_ioctl to avoid the UAF:\n\nINFO: task kworker/u9:1:121 blocked for more than 30 seconds.\n Not tainted 6.7.6-lemon #183\nWorkqueue: hci0 hci_rx_work\nCall Trace:\n \u003cTASK\u003e\n __schedule+0x37d/0xa00\n schedule+0x32/0xe0\n __lock_sock+0x68/0xa0\n ? __pfx_autoremove_wake_function+0x10/0x10\n lock_sock_nested+0x43/0x50\n l2cap_sock_recv_cb+0x21/0xa0\n l2cap_recv_frame+0x55b/0x30a0\n ? psi_task_switch+0xeb/0x270\n ? finish_task_switch.isra.0+0x93/0x2a0\n hci_rx_work+0x33a/0x3f0\n process_one_work+0x13a/0x2f0\n worker_thread+0x2f0/0x410\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xe0/0x110\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2c/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26886",
"url": "https://www.suse.com/security/cve/CVE-2024-26886"
},
{
"category": "external",
"summary": "SUSE Bug 1223044 for CVE-2024-26886",
"url": "https://bugzilla.suse.com/1223044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-26886"
},
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-36915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: llcp: fix nfc_llcp_setsockopt() unsafe copies\n\nsyzbot reported unsafe calls to copy_from_sockptr() [1]\n\nUse copy_safe_from_sockptr() instead.\n\n[1]\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\nRead of size 4 at addr ffff88801caa1ec3 by task syz-executor459/5078\n\nCPU: 0 PID: 5078 Comm: syz-executor459 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\n do_sock_setsockopt+0x3b1/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfd/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7f7fac07fd89\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff660eb788 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7fac07fd89\nRDX: 0000000000000000 RSI: 0000000000000118 RDI: 0000000000000004\nRBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020000a80 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36915",
"url": "https://www.suse.com/security/cve/CVE-2024-36915"
},
{
"category": "external",
"summary": "SUSE Bug 1225758 for CVE-2024-36915",
"url": "https://bugzilla.suse.com/1225758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-36915"
},
{
"cve": "CVE-2024-42232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix race between delayed_work() and ceph_monc_stop()\n\nThe way the delayed work is handled in ceph_monc_stop() is prone to\nraces with mon_fault() and possibly also finish_hunting(). Both of\nthese can requeue the delayed work which wouldn\u0027t be canceled by any of\nthe following code in case that happens after cancel_delayed_work_sync()\nruns -- __close_session() doesn\u0027t mess with the delayed work in order\nto avoid interfering with the hunting interval logic. This part was\nmissed in commit b5d91704f53e (\"libceph: behave in mon_fault() if\ncur_mon \u003c 0\") and use-after-free can still ensue on monc and objects\nthat hang off of it, with monc-\u003eauth and monc-\u003emonmap being\nparticularly susceptible to quickly being reused.\n\nTo fix this:\n\n- clear monc-\u003ecur_mon and monc-\u003ehunting as part of closing the session\n in ceph_monc_stop()\n- bail from delayed_work() if monc-\u003ecur_mon is cleared, similar to how\n it\u0027s done in mon_fault() and finish_hunting() (based on monc-\u003ehunting)\n- call cancel_delayed_work_sync() after the session is closed",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42232",
"url": "https://www.suse.com/security/cve/CVE-2024-42232"
},
{
"category": "external",
"summary": "SUSE Bug 1228959 for CVE-2024-42232",
"url": "https://bugzilla.suse.com/1228959"
},
{
"category": "external",
"summary": "SUSE Bug 1229458 for CVE-2024-42232",
"url": "https://bugzilla.suse.com/1229458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-42232"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-47666",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47666"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: pm80xx: Set phy-\u003eenable_completion only when we wait for it\n\npm8001_phy_control() populates the enable_completion pointer with a stack\naddress, sends a PHY_LINK_RESET / PHY_HARD_RESET, waits 300 ms, and\nreturns. The problem arises when a phy control response comes late. After\n300 ms the pm8001_phy_control() function returns and the passed\nenable_completion stack address is no longer valid. Late phy control\nresponse invokes complete() on a dangling enable_completion pointer which\nleads to a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47666",
"url": "https://www.suse.com/security/cve/CVE-2024-47666"
},
{
"category": "external",
"summary": "SUSE Bug 1231453 for CVE-2024-47666",
"url": "https://bugzilla.suse.com/1231453"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-47666"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-49944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start\n\nIn sctp_listen_start() invoked by sctp_inet_listen(), it should set the\nsk_state back to CLOSED if sctp_autobind() fails due to whatever reason.\n\nOtherwise, next time when calling sctp_inet_listen(), if sctp_sk(sk)-\u003ereuse\nis already set via setsockopt(SCTP_REUSE_PORT), sctp_sk(sk)-\u003ebind_hash will\nbe dereferenced as sk_state is LISTENING, which causes a crash as bind_hash\nis NULL.\n\n KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n RIP: 0010:sctp_inet_listen+0x7f0/0xa20 net/sctp/socket.c:8617\n Call Trace:\n \u003cTASK\u003e\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49944",
"url": "https://www.suse.com/security/cve/CVE-2024-49944"
},
{
"category": "external",
"summary": "SUSE Bug 1232166 for CVE-2024-49944",
"url": "https://bugzilla.suse.com/1232166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-49944"
},
{
"cve": "CVE-2024-49952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49952"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prevent nf_skb_duplicated corruption\n\nsyzbot found that nf_dup_ipv4() or nf_dup_ipv6() could write\nper-cpu variable nf_skb_duplicated in an unsafe way [1].\n\nDisabling preemption as hinted by the splat is not enough,\nwe have to disable soft interrupts as well.\n\n[1]\nBUG: using __this_cpu_write() in preemptible [00000000] code: syz.4.282/6316\n caller is nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\nCPU: 0 UID: 0 PID: 6316 Comm: syz.4.282 Not tainted 6.11.0-rc7-syzkaller-00104-g7052622fccb1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n check_preemption_disabled+0x10e/0x120 lib/smp_processor_id.c:49\n nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\n nft_dup_ipv4_eval+0x1db/0x300 net/ipv4/netfilter/nft_dup_ipv4.c:30\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_ipv4+0x202/0x320 net/netfilter/nft_chain_filter.c:23\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook+0x2c4/0x450 include/linux/netfilter.h:269\n NF_HOOK_COND include/linux/netfilter.h:302 [inline]\n ip_output+0x185/0x230 net/ipv4/ip_output.c:433\n ip_local_out net/ipv4/ip_output.c:129 [inline]\n ip_send_skb+0x74/0x100 net/ipv4/ip_output.c:1495\n udp_send_skb+0xacf/0x1650 net/ipv4/udp.c:981\n udp_sendmsg+0x1c21/0x2a60 net/ipv4/udp.c:1269\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmmsg+0x3b2/0x740 net/socket.c:2737\n __do_sys_sendmmsg net/socket.c:2766 [inline]\n __se_sys_sendmmsg net/socket.c:2763 [inline]\n __x64_sys_sendmmsg+0xa0/0xb0 net/socket.c:2763\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f4ce4f7def9\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f4ce5d4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133\nRAX: ffffffffffffffda RBX: 00007f4ce5135f80 RCX: 00007f4ce4f7def9\nRDX: 0000000000000001 RSI: 0000000020005d40 RDI: 0000000000000006\nRBP: 00007f4ce4ff0b76 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f4ce5135f80 R15: 00007ffd4cbc6d68\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49952",
"url": "https://www.suse.com/security/cve/CVE-2024-49952"
},
{
"category": "external",
"summary": "SUSE Bug 1232157 for CVE-2024-49952",
"url": "https://bugzilla.suse.com/1232157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-49952"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsl/fman: Fix refcount handling of fman-related devices\n\nIn mac_probe() there are multiple calls to of_find_device_by_node(),\nfman_bind() and fman_port_bind() which takes references to of_dev-\u003edev.\nNot all references taken by these calls are released later on error path\nin mac_probe() and in mac_remove() which lead to reference leaks.\n\nAdd references release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50166",
"url": "https://www.suse.com/security/cve/CVE-2024-50166"
},
{
"category": "external",
"summary": "SUSE Bug 1233050 for CVE-2024-50166",
"url": "https://bugzilla.suse.com/1233050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50166"
},
{
"cve": "CVE-2024-50181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50181"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50181",
"url": "https://www.suse.com/security/cve/CVE-2024-50181"
},
{
"category": "external",
"summary": "SUSE Bug 1233127 for CVE-2024-50181",
"url": "https://bugzilla.suse.com/1233127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50181"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix out-of-bounds access to the dirty bitset when resizing\n\ndm-cache checks the dirty bits of the cache blocks to be dropped when\nshrinking the fast device, but an index bug in bitset iteration causes\nout-of-bounds access.\n\nReproduce steps:\n\n1. create a cache device of 1024 cache blocks (128 bytes dirty bitset)\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. shrink the fast device to 512 cache blocks, triggering out-of-bounds\n access to the dirty bitset (offset 0x80)\n\ndmsetup suspend cache\ndmsetup reload cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in cache_preresume+0x269/0x7b0\n Read of size 8 at addr ffffc900000f3080 by task dmsetup/131\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc900000f3000, ffffc900000f5000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc900000f2f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effffc900000f3080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc900000f3100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by making the index post-incremented.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50279",
"url": "https://www.suse.com/security/cve/CVE-2024-50279"
},
{
"category": "external",
"summary": "SUSE Bug 1233468 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "external",
"summary": "SUSE Bug 1233708 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-50279"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-50296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when uninstalling driver\n\nWhen the driver is uninstalled and the VF is disabled concurrently, a\nkernel crash occurs. The reason is that the two actions call function\npci_disable_sriov(). The num_VFs is checked to determine whether to\nrelease the corresponding resources. During the second calling, num_VFs\nis not 0 and the resource release function is called. However, the\ncorresponding resource has been released during the first invoking.\nTherefore, the problem occurs:\n\n[15277.839633][T50670] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n...\n[15278.131557][T50670] Call trace:\n[15278.134686][T50670] klist_put+0x28/0x12c\n[15278.138682][T50670] klist_del+0x14/0x20\n[15278.142592][T50670] device_del+0xbc/0x3c0\n[15278.146676][T50670] pci_remove_bus_device+0x84/0x120\n[15278.151714][T50670] pci_stop_and_remove_bus_device+0x6c/0x80\n[15278.157447][T50670] pci_iov_remove_virtfn+0xb4/0x12c\n[15278.162485][T50670] sriov_disable+0x50/0x11c\n[15278.166829][T50670] pci_disable_sriov+0x24/0x30\n[15278.171433][T50670] hnae3_unregister_ae_algo_prepare+0x60/0x90 [hnae3]\n[15278.178039][T50670] hclge_exit+0x28/0xd0 [hclge]\n[15278.182730][T50670] __se_sys_delete_module.isra.0+0x164/0x230\n[15278.188550][T50670] __arm64_sys_delete_module+0x1c/0x30\n[15278.193848][T50670] invoke_syscall+0x50/0x11c\n[15278.198278][T50670] el0_svc_common.constprop.0+0x158/0x164\n[15278.203837][T50670] do_el0_svc+0x34/0xcc\n[15278.207834][T50670] el0_svc+0x20/0x30\n\nFor details, see the following figure.\n\n rmmod hclge disable VFs\n----------------------------------------------------\nhclge_exit() sriov_numvfs_store()\n ... device_lock()\n pci_disable_sriov() hns3_pci_sriov_configure()\n pci_disable_sriov()\n sriov_disable()\n sriov_disable() if !num_VFs :\n if !num_VFs : return;\n return; sriov_del_vfs()\n sriov_del_vfs() ...\n ... klist_put()\n klist_put() ...\n ... num_VFs = 0;\n num_VFs = 0; device_unlock();\n\nIn this patch, when driver is removing, we get the device_lock()\nto protect num_VFs, just like sriov_numvfs_store().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50296",
"url": "https://www.suse.com/security/cve/CVE-2024-50296"
},
{
"category": "external",
"summary": "SUSE Bug 1233485 for CVE-2024-50296",
"url": "https://bugzilla.suse.com/1233485"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-50296"
},
{
"cve": "CVE-2024-53051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in intel_hdcp_get_capability\n\nSometimes during hotplug scenario or suspend/resume scenario encoder is\nnot always initialized when intel_hdcp_get_capability add\na check to avoid kernel null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53051",
"url": "https://www.suse.com/security/cve/CVE-2024-53051"
},
{
"category": "external",
"summary": "SUSE Bug 1233547 for CVE-2024-53051",
"url": "https://bugzilla.suse.com/1233547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53051"
},
{
"cve": "CVE-2024-53055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53055"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: fix 6 GHz scan construction\n\nIf more than 255 colocated APs exist for the set of all\nAPs found during 2.4/5 GHz scanning, then the 6 GHz scan\nconstruction will loop forever since the loop variable\nhas type u8, which can never reach the number found when\nthat\u0027s bigger than 255, and is stored in a u32 variable.\nAlso move it into the loops to have a smaller scope.\n\nUsing a u32 there is fine, we limit the number of APs in\nthe scan list and each has a limit on the number of RNR\nentries due to the frame size. With a limit of 1000 scan\nresults, a frame size upper bound of 4096 (really it\u0027s\nmore like ~2300) and a TBTT entry size of at least 11,\nwe get an upper bound for the number of ~372k, well in\nthe bounds of a u32.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53055",
"url": "https://www.suse.com/security/cve/CVE-2024-53055"
},
{
"category": "external",
"summary": "SUSE Bug 1233550 for CVE-2024-53055",
"url": "https://bugzilla.suse.com/1233550"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53055"
},
{
"cve": "CVE-2024-53056",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53056"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy()\n\nIn mtk_crtc_create(), if the call to mbox_request_channel() fails then we\nset the \"mtk_crtc-\u003ecmdq_client.chan\" pointer to NULL. In that situation,\nwe do not call cmdq_pkt_create().\n\nDuring the cleanup, we need to check if the \"mtk_crtc-\u003ecmdq_client.chan\"\nis NULL first before calling cmdq_pkt_destroy(). Calling\ncmdq_pkt_destroy() is unnecessary if we didn\u0027t call cmdq_pkt_create() and\nit will result in a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53056",
"url": "https://www.suse.com/security/cve/CVE-2024-53056"
},
{
"category": "external",
"summary": "SUSE Bug 1233568 for CVE-2024-53056",
"url": "https://bugzilla.suse.com/1233568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53056"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53072",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53072"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/amd/pmc: Detect when STB is not available\n\nLoading the amd_pmc module as:\n\n amd_pmc enable_stb=1\n\n...can result in the following messages in the kernel ring buffer:\n\n amd_pmc AMDI0009:00: SMU cmd failed. err: 0xff\n ioremap on RAM at 0x0000000000000000 - 0x0000000000ffffff\n WARNING: CPU: 10 PID: 2151 at arch/x86/mm/ioremap.c:217 __ioremap_caller+0x2cd/0x340\n\nFurther debugging reveals that this occurs when the requests for\nS2D_PHYS_ADDR_LOW and S2D_PHYS_ADDR_HIGH return a value of 0,\nindicating that the STB is inaccessible. To prevent the ioremap\nwarning and provide clarity to the user, handle the invalid address\nand display an error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53072",
"url": "https://www.suse.com/security/cve/CVE-2024-53072"
},
{
"category": "external",
"summary": "SUSE Bug 1233564 for CVE-2024-53072",
"url": "https://bugzilla.suse.com/1233564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53072"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Fix use-after-free of network namespace.\n\nRecently, we got a customer report that CIFS triggers oops while\nreconnecting to a server. [0]\n\nThe workload runs on Kubernetes, and some pods mount CIFS servers\nin non-root network namespaces. The problem rarely happened, but\nit was always while the pod was dying.\n\nThe root cause is wrong reference counting for network namespace.\n\nCIFS uses kernel sockets, which do not hold refcnt of the netns that\nthe socket belongs to. That means CIFS must ensure the socket is\nalways freed before its netns; otherwise, use-after-free happens.\n\nThe repro steps are roughly:\n\n 1. mount CIFS in a non-root netns\n 2. drop packets from the netns\n 3. destroy the netns\n 4. unmount CIFS\n\nWe can reproduce the issue quickly with the script [1] below and see\nthe splat [2] if CONFIG_NET_NS_REFCNT_TRACKER is enabled.\n\nWhen the socket is TCP, it is hard to guarantee the netns lifetime\nwithout holding refcnt due to async timers.\n\nLet\u0027s hold netns refcnt for each socket as done for SMC in commit\n9744d2bf1976 (\"smc: Fix use-after-free in tcp_write_timer_handler().\").\n\nNote that we need to move put_net() from cifs_put_tcp_session() to\nclean_demultiplex_info(); otherwise, __sock_create() still could touch a\nfreed netns while cifsd tries to reconnect from cifs_demultiplex_thread().\n\nAlso, maybe_get_net() cannot be put just before __sock_create() because\nthe code is not under RCU and there is a small chance that the same\naddress happened to be reallocated to another netns.\n\n[0]:\nCIFS: VFS: \\\\XXXXXXXXXXX has not responded in 15 seconds. Reconnecting...\nCIFS: Serverclose failed 4 times, giving up\nUnable to handle kernel paging request at virtual address 14de99e461f84a07\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\n[14de99e461f84a07] address between user and kernel address ranges\nInternal error: Oops: 0000000096000004 [#1] SMP\nModules linked in: cls_bpf sch_ingress nls_utf8 cifs cifs_arc4 cifs_md4 dns_resolver tcp_diag inet_diag veth xt_state xt_connmark nf_conntrack_netlink xt_nat xt_statistic xt_MASQUERADE xt_mark xt_addrtype ipt_REJECT nf_reject_ipv4 nft_chain_nat nf_nat xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment nft_compat nf_tables nfnetlink overlay nls_ascii nls_cp437 sunrpc vfat fat aes_ce_blk aes_ce_cipher ghash_ce sm4_ce_cipher sm4 sm3_ce sm3 sha3_ce sha512_ce sha512_arm64 sha1_ce ena button sch_fq_codel loop fuse configfs dmi_sysfs sha2_ce sha256_arm64 dm_mirror dm_region_hash dm_log dm_mod dax efivarfs\nCPU: 5 PID: 2690970 Comm: cifsd Not tainted 6.1.103-109.184.amzn2023.aarch64 #1\nHardware name: Amazon EC2 r7g.4xlarge/, BIOS 1.0 11/1/2018\npstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : fib_rules_lookup+0x44/0x238\nlr : __fib_lookup+0x64/0xbc\nsp : ffff8000265db790\nx29: ffff8000265db790 x28: 0000000000000000 x27: 000000000000bd01\nx26: 0000000000000000 x25: ffff000b4baf8000 x24: ffff00047b5e4580\nx23: ffff8000265db7e0 x22: 0000000000000000 x21: ffff00047b5e4500\nx20: ffff0010e3f694f8 x19: 14de99e461f849f7 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 3f92800abd010002\nx11: 0000000000000001 x10: ffff0010e3f69420 x9 : ffff800008a6f294\nx8 : 0000000000000000 x7 : 0000000000000006 x6 : 0000000000000000\nx5 : 0000000000000001 x4 : ffff001924354280 x3 : ffff8000265db7e0\nx2 : 0000000000000000 x1 : ffff0010e3f694f8 x0 : ffff00047b5e4500\nCall trace:\n fib_rules_lookup+0x44/0x238\n __fib_lookup+0x64/0xbc\n ip_route_output_key_hash_rcu+0x2c4/0x398\n ip_route_output_key_hash+0x60/0x8c\n tcp_v4_connect+0x290/0x488\n __inet_stream_connect+0x108/0x3d0\n inet_stream_connect+0x50/0x78\n kernel_connect+0x6c/0xac\n generic_ip_conne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53095",
"url": "https://www.suse.com/security/cve/CVE-2024-53095"
},
{
"category": "external",
"summary": "SUSE Bug 1233642 for CVE-2024-53095",
"url": "https://bugzilla.suse.com/1233642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53095"
},
{
"cve": "CVE-2024-53101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs: Fix uninitialized value issue in from_kuid and from_kgid\n\nocfs2_setattr() uses attr-\u003eia_mode, attr-\u003eia_uid and attr-\u003eia_gid in\na trace point even though ATTR_MODE, ATTR_UID and ATTR_GID aren\u0027t set.\n\nInitialize all fields of newattrs to avoid uninitialized variables, by\nchecking if ATTR_MODE, ATTR_UID, ATTR_GID are initialized, otherwise 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53101",
"url": "https://www.suse.com/security/cve/CVE-2024-53101"
},
{
"category": "external",
"summary": "SUSE Bug 1233769 for CVE-2024-53101",
"url": "https://bugzilla.suse.com/1233769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53101"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client\n\nA number of Zen4 client SoCs advertise the ability to use virtualized\nVMLOAD/VMSAVE, but using these instructions is reported to be a cause\nof a random host reboot.\n\nThese instructions aren\u0027t intended to be advertised on Zen4 client\nso clear the capability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53114",
"url": "https://www.suse.com/security/cve/CVE-2024-53114"
},
{
"category": "external",
"summary": "SUSE Bug 1234072 for CVE-2024-53114",
"url": "https://bugzilla.suse.com/1234072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53114"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: 6fire: Release resources at card release\n\nThe current 6fire code tries to release the resources right after the\ncall of usb6fire_chip_abort(). But at this moment, the card object\nmight be still in use (as we\u0027re calling snd_card_free_when_closed()).\n\nFor avoid potential UAFs, move the release of resources to the card\u0027s\nprivate_free instead of the manual call of usb6fire_chip_destroy() at\nthe USB disconnect callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53239",
"url": "https://www.suse.com/security/cve/CVE-2024-53239"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235054 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "external",
"summary": "SUSE Bug 1235055 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-53239"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: don\u0027t query the device logical block size multiple times\n\nDevices block sizes may change. One of these cases is a loop device by\nusing ioctl LOOP_SET_BLOCK_SIZE.\n\nWhile this may cause other issues like IO being rejected, in the case of\nhfsplus, it will allocate a block by using that size and potentially write\nout-of-bounds when hfsplus_read_wrapper calls hfsplus_submit_bio and the\nlatter function reads a different io_size.\n\nUsing a new min_io_size initally set to sb_min_blocksize works for the\npurposes of the original fix, since it will be set to the max between\nHFSPLUS_SECTOR_SIZE and the first seen logical block size. We still use the\nmax between HFSPLUS_SECTOR_SIZE and min_io_size in case the latter is not\ninitialized.\n\nTested by mounting an hfsplus filesystem with loop block sizes 512, 1024\nand 4096.\n\nThe produced KASAN report before the fix looks like this:\n\n[ 419.944641] ==================================================================\n[ 419.945655] BUG: KASAN: slab-use-after-free in hfsplus_read_wrapper+0x659/0xa0a\n[ 419.946703] Read of size 2 at addr ffff88800721fc00 by task repro/10678\n[ 419.947612]\n[ 419.947846] CPU: 0 UID: 0 PID: 10678 Comm: repro Not tainted 6.12.0-rc5-00008-gdf56e0f2f3ca #84\n[ 419.949007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 419.950035] Call Trace:\n[ 419.950384] \u003cTASK\u003e\n[ 419.950676] dump_stack_lvl+0x57/0x78\n[ 419.951212] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.951830] print_report+0x14c/0x49e\n[ 419.952361] ? __virt_addr_valid+0x267/0x278\n[ 419.952979] ? kmem_cache_debug_flags+0xc/0x1d\n[ 419.953561] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.954231] kasan_report+0x89/0xb0\n[ 419.954748] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955367] hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955948] ? __pfx_hfsplus_read_wrapper+0x10/0x10\n[ 419.956618] ? do_raw_spin_unlock+0x59/0x1a9\n[ 419.957214] ? _raw_spin_unlock+0x1a/0x2e\n[ 419.957772] hfsplus_fill_super+0x348/0x1590\n[ 419.958355] ? hlock_class+0x4c/0x109\n[ 419.958867] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.959499] ? __pfx_string+0x10/0x10\n[ 419.960006] ? lock_acquire+0x3e2/0x454\n[ 419.960532] ? bdev_name.constprop.0+0xce/0x243\n[ 419.961129] ? __pfx_bdev_name.constprop.0+0x10/0x10\n[ 419.961799] ? pointer+0x3f0/0x62f\n[ 419.962277] ? __pfx_pointer+0x10/0x10\n[ 419.962761] ? vsnprintf+0x6c4/0xfba\n[ 419.963178] ? __pfx_vsnprintf+0x10/0x10\n[ 419.963621] ? setup_bdev_super+0x376/0x3b3\n[ 419.964029] ? snprintf+0x9d/0xd2\n[ 419.964344] ? __pfx_snprintf+0x10/0x10\n[ 419.964675] ? lock_acquired+0x45c/0x5e9\n[ 419.965016] ? set_blocksize+0x139/0x1c1\n[ 419.965381] ? sb_set_blocksize+0x6d/0xae\n[ 419.965742] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.966179] mount_bdev+0x12f/0x1bf\n[ 419.966512] ? __pfx_mount_bdev+0x10/0x10\n[ 419.966886] ? vfs_parse_fs_string+0xce/0x111\n[ 419.967293] ? __pfx_vfs_parse_fs_string+0x10/0x10\n[ 419.967702] ? __pfx_hfsplus_mount+0x10/0x10\n[ 419.968073] legacy_get_tree+0x104/0x178\n[ 419.968414] vfs_get_tree+0x86/0x296\n[ 419.968751] path_mount+0xba3/0xd0b\n[ 419.969157] ? __pfx_path_mount+0x10/0x10\n[ 419.969594] ? kmem_cache_free+0x1e2/0x260\n[ 419.970311] do_mount+0x99/0xe0\n[ 419.970630] ? __pfx_do_mount+0x10/0x10\n[ 419.971008] __do_sys_mount+0x199/0x1c9\n[ 419.971397] do_syscall_64+0xd0/0x135\n[ 419.971761] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 419.972233] RIP: 0033:0x7c3cb812972e\n[ 419.972564] Code: 48 8b 0d f5 46 0d 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 a5 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d c2 46 0d 00 f7 d8 64 89 01 48\n[ 419.974371] RSP: 002b:00007ffe30632548 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5\n[ 419.975048] RAX: ffffffffffffffda RBX: 00007ffe306328d8 RCX: 00007c3cb812972e\n[ 419.975701] RDX: 0000000020000000 RSI: 0000000020000c80 RDI:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56548",
"url": "https://www.suse.com/security/cve/CVE-2024-56548"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235073 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "external",
"summary": "SUSE Bug 1235074 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56548"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Filter invalid inodes with missing lookup function\n\nAdd a check to the ovl_dentry_weird() function to prevent the\nprocessing of directory inodes that lack the lookup function.\nThis is important because such inodes can cause errors in overlayfs\nwhen passed to the lowerstack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56570",
"url": "https://www.suse.com/security/cve/CVE-2024-56570"
},
{
"category": "external",
"summary": "SUSE Bug 1235035 for CVE-2024-56570",
"url": "https://bugzilla.suse.com/1235035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-56570"
},
{
"cve": "CVE-2024-56571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56571"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56571",
"url": "https://www.suse.com/security/cve/CVE-2024-56571"
},
{
"category": "external",
"summary": "SUSE Bug 1235037 for CVE-2024-56571",
"url": "https://bugzilla.suse.com/1235037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-56571"
},
{
"cve": "CVE-2024-56575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56575"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Ensure power suppliers be suspended before detach them\n\nThe power suppliers are always requested to suspend asynchronously,\ndev_pm_domain_detach() requires the caller to ensure proper\nsynchronization of this function with power management callbacks.\notherwise the detach may led to kernel panic, like below:\n\n[ 1457.107934] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000040\n[ 1457.116777] Mem abort info:\n[ 1457.119589] ESR = 0x0000000096000004\n[ 1457.123358] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 1457.128692] SET = 0, FnV = 0\n[ 1457.131764] EA = 0, S1PTW = 0\n[ 1457.134920] FSC = 0x04: level 0 translation fault\n[ 1457.139812] Data abort info:\n[ 1457.142707] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 1457.148196] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 1457.153256] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 1457.158563] user pgtable: 4k pages, 48-bit VAs, pgdp=00000001138b6000\n[ 1457.165000] [0000000000000040] pgd=0000000000000000, p4d=0000000000000000\n[ 1457.171792] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 1457.178045] Modules linked in: v4l2_jpeg wave6_vpu_ctrl(-) [last unloaded: mxc_jpeg_encdec]\n[ 1457.186383] CPU: 0 PID: 51938 Comm: kworker/0:3 Not tainted 6.6.36-gd23d64eea511 #66\n[ 1457.194112] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 1457.199236] Workqueue: pm pm_runtime_work\n[ 1457.203247] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1457.210188] pc : genpd_runtime_suspend+0x20/0x290\n[ 1457.214886] lr : __rpm_callback+0x48/0x1d8\n[ 1457.218968] sp : ffff80008250bc50\n[ 1457.222270] x29: ffff80008250bc50 x28: 0000000000000000 x27: 0000000000000000\n[ 1457.229394] x26: 0000000000000000 x25: 0000000000000008 x24: 00000000000f4240\n[ 1457.236518] x23: 0000000000000000 x22: ffff00008590f0e4 x21: 0000000000000008\n[ 1457.243642] x20: ffff80008099c434 x19: ffff00008590f000 x18: ffffffffffffffff\n[ 1457.250766] x17: 5300326563697665 x16: 645f676e696c6f6f x15: 63343a6d726f6674\n[ 1457.257890] x14: 0000000000000004 x13: 00000000000003a4 x12: 0000000000000002\n[ 1457.265014] x11: 0000000000000000 x10: 0000000000000a60 x9 : ffff80008250bbb0\n[ 1457.272138] x8 : ffff000092937200 x7 : ffff0003fdf6af80 x6 : 0000000000000000\n[ 1457.279262] x5 : 00000000410fd050 x4 : 0000000000200000 x3 : 0000000000000000\n[ 1457.286386] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff00008590f000\n[ 1457.293510] Call trace:\n[ 1457.295946] genpd_runtime_suspend+0x20/0x290\n[ 1457.300296] __rpm_callback+0x48/0x1d8\n[ 1457.304038] rpm_callback+0x6c/0x78\n[ 1457.307515] rpm_suspend+0x10c/0x570\n[ 1457.311077] pm_runtime_work+0xc4/0xc8\n[ 1457.314813] process_one_work+0x138/0x248\n[ 1457.318816] worker_thread+0x320/0x438\n[ 1457.322552] kthread+0x110/0x114\n[ 1457.325767] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56575",
"url": "https://www.suse.com/security/cve/CVE-2024-56575"
},
{
"category": "external",
"summary": "SUSE Bug 1235039 for CVE-2024-56575",
"url": "https://bugzilla.suse.com/1235039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-56575"
},
{
"cve": "CVE-2024-56598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56598"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: array-index-out-of-bounds fix in dtReadFirst\n\nThe value of stbl can be sometimes out of bounds due\nto a bad filesystem. Added a check with appopriate return\nof error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56598",
"url": "https://www.suse.com/security/cve/CVE-2024-56598"
},
{
"category": "external",
"summary": "SUSE Bug 1235220 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "external",
"summary": "SUSE Bug 1235221 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56598"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56619"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()\n\nSyzbot reported that when searching for records in a directory where the\ninode\u0027s i_size is corrupted and has a large value, memory access outside\nthe folio/page range may occur, or a use-after-free bug may be detected if\nKASAN is enabled.\n\nThis is because nilfs_last_byte(), which is called by nilfs_find_entry()\nand others to calculate the number of valid bytes of directory data in a\npage from i_size and the page index, loses the upper 32 bits of the 64-bit\nsize information due to an inappropriate type of local variable to which\nthe i_size value is assigned.\n\nThis caused a large byte offset value due to underflow in the end address\ncalculation in the calling nilfs_find_entry(), resulting in memory access\nthat exceeds the folio/page size.\n\nFix this issue by changing the type of the local variable causing the bit\nloss from \"unsigned int\" to \"u64\". The return value of nilfs_last_byte()\nis also of type \"unsigned int\", but it is truncated so as not to exceed\nPAGE_SIZE and no bit loss occurs, so no change is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56619",
"url": "https://www.suse.com/security/cve/CVE-2024-56619"
},
{
"category": "external",
"summary": "SUSE Bug 1235224 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "external",
"summary": "SUSE Bug 1235225 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-56619"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-64kb-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:kernel-zfcpdump-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:cluster-md-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:dlm-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-base-5.14.21-150500.55.91.1.150500.6.41.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-default-devel-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-devel-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-docs-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-macros-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-obs-build-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-source-5.14.21-150500.55.91.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:kernel-syms-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:ocfs2-kmp-default-5.14.21-150500.55.91.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:reiserfs-kmp-default-5.14.21-150500.55.91.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-11T13:41:34Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
}
]
}
SUSE-SU-2025:20166-1
Vulnerability from csaf_suse - Published: 2025-03-28 07:51 - Updated: 2025-03-28 07:51Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).
- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).
- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-44996: vsock: fix recursive ->recvmsg calls (bsc#1230205).
- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).
- CVE-2024-49948: net: add more sanity checks to qdisc_pkt_len_init() (bsc#1232161).
- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).
- CVE-2024-49978: gso: fix udp gso fraglist segmentation after pull from frag_list (bsc#1232101).
- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).
- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).
- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).
- CVE-2024-53099: bpf: Check validity of link->type in bpf_link_show_fdinfo() (bsc#1233772).
- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).
- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).
- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)
- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).
- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).
- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).
- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).
- CVE-2024-53187: io_uring: check for overflows in io_pin_pages (bsc#1234947).
- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).
- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).
- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).
- CVE-2024-53203: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() (bsc#1235001).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).
- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).
- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).
- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).
- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).
- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).
- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).
- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).
- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).
- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).
- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).
- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).
- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).
- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).
- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).
- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).
- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).
- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).
- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).
- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).
- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56608: drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create' (bsc#1235487).
- CVE-2024-56610: kcsan: Turn report_filterlist_lock into a raw_spinlock (bsc#1235390).
- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).
- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).
- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).
- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).
- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).
- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).
- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).
- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).
- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).
- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).
- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).
- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).
- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).
- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).
- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).
- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).
- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).
- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).
- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).
- CVE-2024-56665: bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog (bsc#1235489).
- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).
- CVE-2024-56679: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (bsc#1235498).
- CVE-2024-56693: brd: defer automatic disk creation until module initialization succeeds (bsc#1235418).
- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).
- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).
- CVE-2024-56707: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c (bsc#1235545).
- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).
- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).
- CVE-2024-56715: ionic: Fix netdev notifier unregister on failure (bsc#1235612).
- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).
- CVE-2024-56725: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c (bsc#1235578).
- CVE-2024-56726: octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (bsc#1235582).
- CVE-2024-56727: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c (bsc#1235583).
- CVE-2024-56728: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (bsc#1235656).
- CVE-2024-56729: smb: Initialize cfid->tcon before performing network ops (bsc#1235503).
- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).
- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).
- CVE-2024-56763: tracing: Prevent bad count for tracing_cpumask_write (bsc#1235638).
- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).
- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).
- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).
- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).
- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).
- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).
- CVE-2024-57802: netrom: check buffer length before accessing it (bsc#1235941).
- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).
- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).
- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).
- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).
- CVE-2024-57884: mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (bsc#1235948).
- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).
- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).
- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).
- CVE-2024-57917: topology: Keep the cpumask unchanged when printing cpumap (bsc#1236127).
- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).
- CVE-2024-57931: selinux: ignore unknown extended permissions (bsc#1236192).
- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).
- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).
- CVE-2024-57938: net/sctp: Prevent autoclose integer overflow in sctp_association_init() (bsc#1236182).
- CVE-2024-57946: virtio-blk: do not keep queue frozen during system suspend (bsc#1236247).
- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before "getting" registers (bsc#1236106).
- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).
- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).
- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).
- CVE-2025-21652: ipvlan: Fix use-after-free in ipvlan_get_iflink() (bsc#1236160).
- CVE-2025-21653: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute (bsc#1236161).
- CVE-2025-21655: io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period (bsc#1236163).
- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).
- CVE-2025-21663: net: stmmac: dwmac-tegra: Read iommu stream id from device tree (bsc#1236260).
- CVE-2025-21664: dm thin: make get_first_thin use rcu-safe list first function (bsc#1236262).
- CVE-2025-21674: net/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel (bsc#1236688).
- CVE-2025-21676: net: fec: handle page_pool_dev_alloc_pages error (bsc#1236696).
- CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref (bsc#1236703).
Features added:
* - Disable ceph (jsc#PED-7242)
* - RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
* - ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
* - supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)
The following non-security bugs were fixed:
- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).
- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).
- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
- ACPI: fan: cleanup resources in the error path of .probe() (git-fixes).
- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).
- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).
- ACPI: resource: Fix memory resource type union access (git-fixes).
- ACPI: resource: acpi_dev_irq_override(): Check DMI match last (stable-fixes).
- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).
- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).
- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).
- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).
- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).
- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).
- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).
- ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31 laptop (git-fixes).
- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).
- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).
- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).
- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).
- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14s-fq1xxx (stable-fixes).
- ALSA: hda/realtek: Enable headset mic on Positivo C6400 (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).
- ALSA: hda/realtek: Workaround for resume on Dell Venue 11 Pro 7130 (bsc#1235686).
- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).
- ALSA: hda: Fix headset detection failure due to unstable sort (git-fixes).
- ALSA: line6: Fix racy access to midibuf (stable-fixes).
- ALSA: seq: Check UMP support for midi_version change (git-fixes).
- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).
- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).
- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).
- ALSA: seq: ump: Use guard() for locking (stable-fixes).
- ALSA: ump: Use guard() for locking (stable-fixes).
- ALSA: usb-audio: Add delay quirk for USB Audio Device (stable-fixes).
- ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro (stable-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).
- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).
- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).
- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).
- ASoC: Intel: avs: Fix theoretical infinite loop (git-fixes).
- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).
- ASoC: SOF: Remove libraries from topology lookups (git-fixes).
- ASoC: acp: Support microphone from Lenovo Go S (stable-fixes).
- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).
- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).
- ASoC: amd: yc: Fix the wrong return value (git-fixes).
- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).
- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).
- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).
- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).
- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).
- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).
- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).
- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).
- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).
- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).
- ASoC: nau8822: Lower debug print priority (stable-fixes).
- ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback (git-fixes).
- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).
- ASoC: samsung: Add missing depends on I2C (git-fixes).
- ASoC: samsung: Add missing selects for MFD_WM8994 (stable-fixes).
- ASoC: sun4i-spdif: Add clock multiplier settings (git-fixes).
- ASoC: wm8994: Add depends on MFD core (stable-fixes).
- Add already cherry-picked ids to AMDGPU patch
- Align git commit ID abbreviation guidelines and checks (git-fixes).
- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).
- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).
- Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection (git-fixes).
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).
- Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc (git-fixes).
- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).
- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).
- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).
- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).
- Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming (git-fixes).
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).
- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).
- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).
- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).
- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).
- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).
- Bluetooth: iso: Fix recursive locking warning (git-fixes).
- Delete XHCI patch for regression (bsc#1235550)
- Disable ceph (jsc#PED-7242)
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- Drop downstream TPM fix patch (bsc#1233260 bsc#1233259 bsc#1232421)
- Drop uvcvideo fix due to regression (bsc#1235894)
- EDAC/{i10nm,skx,skx_common}: Support UV systems (bsc#1234693).
- HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections (git-fixes).
- HID: fix generic desktop D-Pad controls (git-fixes).
- HID: hid-sensor-hub: do not use stale platform-data on remove (git-fixes).
- HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check (git-fixes).
- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).
- HID: multitouch: fix support for Goodix PID 0x01e9 (git-fixes).
- Input: atkbd - map F23 key to support default copilot shortcut (stable-fixes).
- Input: bbnsm_pwrkey - add remove hook (git-fixes).
- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).
- Input: davinci-keyscan - remove leftover header (git-fixes).
- Input: xpad - add QH Electronics VID/PID (stable-fixes).
- Input: xpad - add support for Nacon Evol-X Xbox One Controller (stable-fixes).
- Input: xpad - add support for Nacon Pro Compact (stable-fixes).
- Input: xpad - add support for wooting two he (arm) (stable-fixes).
- Input: xpad - add unofficial Xbox 360 wireless receiver clone (stable-fixes).
- Input: xpad - improve name of 8BitDo controller 2dc8:3106 (stable-fixes).
- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).
- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).
- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).
- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).
- Move kABI workaround patch to correct folder
- Move upstreamed DRM patch into sorted section
- Move upstreamed NFS patch into sorted section
- Move upstreamed TPM patch into sorted section
- Move upstreamed lpfc patches into sorted section
- Move upstreamed ppc patch into sorted section
- Move upstreamed sound patch into sorted section
- Move upstreamed sound patches into sorted section
- NFC: nci: Add bounds checking in nci_hci_create_pipe() (git-fixes).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Async COPY result needs to return a write verifier (git-fixes).
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: Remove a never-true comparison (git-fixes).
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (git-fixes).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- NFSv4.2: fix COPY_NOTIFY xdr buf size calculation (git-fixes).
- NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE (git-fixes).
- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).
- PCI/AER: Disable AER service on suspend (stable-fixes).
- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (stable-fixes).
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).
- PCI: Add T_PERST_CLK_US macro (git-fixes).
- PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 (git-fixes).
- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).
- PCI: Fix use-after-free of slot->bus on hot remove (stable-fixes).
- PCI: Use preserve_config in place of pci_flags (stable-fixes).
- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).
- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).
- PCI: dwc: Always stop link in the dw_pcie_suspend_noirq (git-fixes).
- PCI: dwc: ep: Prevent changing BAR size/flags in pci_epc_set_bar() (git-fixes).
- PCI: dwc: ep: Write BAR_MASK before iATU registers in pci_epc_set_bar() (git-fixes).
- PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy() (git-fixes).
- PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf() (git-fixes).
- PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test (git-fixes).
- PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error (git-fixes).
- PCI: imx6: Deassert apps_reset in imx_pcie_deassert_core_reset() (git-fixes).
- PCI: imx6: Skip controller_id generation logic for i.MX7D (git-fixes).
- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).
- PCI: j721e: Add per platform maximum lane settings (stable-fixes).
- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).
- PCI: j721e: Add suspend and resume support (git-fixes).
- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).
- PCI: microchip: Set inbound address translation for coherent or non-coherent mode (git-fixes).
- PCI: qcom: Add support for IPQ9574 (stable-fixes).
- PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region() (git-fixes).
- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).
- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).
- PM: hibernate: Add error handling for syscore_suspend() (git-fixes).
- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)
- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)
- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)
- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)
- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)
- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)
- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)
- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)
- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)
- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)
- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)
- RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error (git-fixes)
- RDMA/bnxt_re: Fix to export port num to ib_query_qp (git-fixes)
- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)
- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)
- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)
- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)
- RDMA/mlx4: Avoid false error about access to uninitialized gids array (git-fixes)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)
- RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error (git-fixes)
- RDMA/mlx5: Fix implicit ODP use after free (git-fixes)
- RDMA/mlx5: Fix indirect mkey ODP page count (git-fixes)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (git-fixes)
- RDMA/rxe: Fix mismatched max_msg_sz (git-fixes)
- RDMA/rxe: Fix the warning "__rxe_cleanup+0x12c/0x170 [rdma_rxe]" (git-fixes)
- RDMA/srp: Fix error handling in srp_add_port (git-fixes)
- RDMA/uverbs: Prevent integer overflow issue (git-fixes)
- README.BRANCH: Remove copy of branch name
- Refresh patches.suse/ALSA-hda-realtek-Add-support-for-Samsung-Galaxy-Book.patch.
- Refresh patches.suse/cpufreq-intel_pstate-Temporarily-boost-P-state-when-.patch.
- Revert "HID: multitouch: Add support for lenovo Y9000P Touchpad" (stable-fixes).
- Revert "block/mq-deadline: use correct way to throttling write requests" (bsc#1234146).
- Revert "btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)"
- Revert "drm/i915/dpt: Make DPT object unshrinkable" (stable-fixes).
- Revert "igb: Disable threaded IRQ for igb_msix_other" (git-fixes).
- Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (git-fixes).
- Revert "unicode: Do not special case ignorable code points" (stable-fixes).
- Revert "usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null" (stable-fixes).
- Revert 'arm64: Kconfig: Make SME depend on BROKEN for now' This reverts commit 2ccfee6be929dd4ea49ef59a7ae686473aae40b6 CONFIG_ARM64_SME is enabled by default so some customers may rely on SME. We need further analysis to evaluate to what extent we are impacted and in case we'll disable SME support later.
- Revert 0dd78566990 ("Disable ceph (jsc#PED-7242)") Apparently, jsc#PED-7242 is only deprecate ceph for 15-SP6 and disable for 15-SP7. Revert the disabling.
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).
- USB: core: Disable LPM only for non-suspended ports (git-fixes).
- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).
- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).
- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).
- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).
- USB: serial: option: add Neoway N723-EA support (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).
- USB: serial: option: add TCL IK512 MBIM & ECM (stable-fixes).
- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).
- USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() (git-fixes).
- USB: usblp: return error when setting unsupported protocol (git-fixes).
- VFS: use system_unbound_wq for delayed_mntput (bsc#1234683).
- VMCI: fix reference to ioctl-number.rst (git-fixes).
- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).
- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).
- accel/habanalabs: fix debugfs files permissions (stable-fixes).
- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).
- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).
- afs: Automatically generate trace tag enums (git-fixes).
- afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY (git-fixes).
- afs: Fix cleanup of immediately failed async calls (git-fixes).
- afs: Fix directory format encoding struct (git-fixes).
- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).
- afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call (git-fixes).
- afs: Fix the maximum cell name length (git-fixes).
- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).
- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).
- arch: Remove cmpxchg_double (bsc#1220773).
- arch: consolidate arch_irq_work_raise prototypes (git-fixes).
- arm64/sme: Move storage of reg_smidr to __cpuinfo_store_cpu() (git-fixes)
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: Filter out SVE hwcaps when FEAT_SVE isn't implemented (git-fixes)
- arm64: Force position-independent veneers (git-fixes).
- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes bsc#1236245) Update arm64 default configuration file
- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes).
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- arm64: dts: rockchip: Add sdmmc/sdio/emmc reset controls for RK3328 (git-fixes)
- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).
- arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma (git-fixes)
- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).
- arm64: tegra: Disable Tegra234 sce-fabric node (git-fixes)
- arm64: tegra: Fix Tegra234 PCIe interrupt-map (git-fixes)
- arm64: tegra: Fix typo in Tegra234 dce-fabric compatible (git-fixes)
- ata: libata-core: Set ATA_QCFLAG_RTF_FILLED in fill_result_tf() (stable-fixes).
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).
- batman-adv: Do not send uninitialized TT changes (git-fixes).
- batman-adv: Remove uninitialized data in full table TT response (git-fixes).
- blacklist.conf: printk/sysctl: breaks kernel without pre-requisite patches (bsc#1229025)
- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).
- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).
- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).
- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).
- blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock required!" (bsc#1234140).
- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).
- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).
- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).
- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).
- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).
- block/mq-deadline: Fix the tag reservation code (bsc#1234148).
- block: Call .limit_depth() after .hctx has been set (bsc#1234148).
- block: Fix where bio IO priority gets set (bsc#1234145).
- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).
- block: update the stable_writes flag in bdev_add (bsc#1234141).
- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)
- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).
- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).
- bpf: verifier: prevent userspace memory access (git-fixes).
- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).
- bus: mhi: host: Free mhi_buf vector inside mhi_alloc_bhie_table() (git-fixes).
- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).
- can: j1939: fix error in J1939 documentation (stable-fixes).
- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).
- checkpatch: always parse orig_commit in fixes tag (git-fixes).
- checkpatch: check for missing Fixes tags (stable-fixes).
- cleanup: Add conditional guard support (stable-fixes).
- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).
- cleanup: Remove address space of returned pointer (git-fixes).
- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).
- clocksource/drivers:sp804: Make user selectable (git-fixes).
- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).
- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).
- cpufreq: ACPI: Fix max-frequency computation (git-fixes).
- cpufreq: Do not unregister cpufreq cooling on CPU hotplug (git-fixes).
- cpufreq: amd-pstate: remove global header file (git-fixes).
- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).
- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).
- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).
- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).
- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).
- cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock (git-fixes).
- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).
- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).
- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).
- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).
- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).
- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).
- cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing (git-fixes).
- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).
- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).
- cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back (git-fixes).
- cpuidle: Avoid potential overflow in integer multiplication (git-fixes).
- cpupower: fix TSC MHz calculation (git-fixes).
- crypto: caam - use JobR's space to access page 0 regs (git-fixes).
- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).
- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).
- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).
- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).
- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).
- crypto: iaa - Fix IAA disabling that occurs when sync_mode is set to 'async' (git-fixes).
- crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto() (git-fixes).
- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).
- crypto: qce - fix goto jump in error path (git-fixes).
- crypto: qce - fix priority to be less than ARMv8 CE (git-fixes).
- crypto: qce - unregister previously registered algos in error path (git-fixes).
- crypto: x86/sha256 - Add parentheses around macros' single arguments (stable-fixes).
- cyrpto/b128ops: Remove struct u128 (bsc#1220773).
- devcoredump: cleanup some comments (git-fixes).
- devlink: Fix length of eswitch inline-mode (git-fixes).
- dlm: fix possible lkb_resource null dereference (git-fixes).
- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).
- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).
- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).
- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).
- dmaengine: tegra: Return correct DMA status when paused (git-fixes).
- dmaengine: ti: edma: fix OF node reference leaks in edma_driver (git-fixes).
- docs: media: update location of the media patches (stable-fixes).
- docs: power: Fix footnote reference for Toshiba Satellite P10-554 (git-fixes).
- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).
- driver core: class: Fix wild pointer dereferences in API class_dev_iter_next() (git-fixes).
- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).
- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).
- drivers/card_reader/rtsx_usb: Restore interrupt based detection (git-fixes).
- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).
- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).
- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).
- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).
- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).
- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).
- drm/amd/display: Fix DSC-re-computing (stable-fixes).
- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).
- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).
- drm/amd/display: Use HW lock mgr for PSR1 (stable-fixes).
- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).
- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).
- drm/amd/pm: Fix an error handling path in vega10_enable_se_edc_force_stall_config() (git-fixes).
- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).
- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).
- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).
- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).
- drm/amdgpu/pm: Remove gpu_od if it's an empty directory (stable-fixes).
- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).
- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).
- drm/amdgpu/vcn: reset fw_shared under SRIOV (git-fixes).
- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).
- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).
- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).
- drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table (git-fixes).
- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).
- drm/amdgpu: always sync the GFX pipe on ctx switch (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).
- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).
- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
- drm/amdgpu: do not access invalid sched (git-fixes).
- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
- drm/amdgpu: fix usage slab after free (stable-fixes).
- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).
- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).
- drm/amdgpu: simplify return statement in amdgpu_ras_eeprom_init (git-fixes).
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).
- drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini() (git-fixes).
- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).
- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
- drm/amdkfd: Use device based logging for errors (stable-fixes).
- drm/amdkfd: Use the correct wptr size (stable-fixes).
- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).
- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).
- drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE (git-fixes).
- drm/bridge: it6505: Enable module autoloading (stable-fixes).
- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).
- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).
- drm/display: Fix building with GCC 15 (stable-fixes).
- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).
- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).
- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).
- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).
- drm/etnaviv: Fix page property being used for non writecombine buffers (git-fixes).
- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).
- drm/i915/dg1: Fix power gate sequence (git-fixes).
- drm/i915/fb: Relax clear color alignment to 64 bytes (stable-fixes).
- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).
- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).
- drm/mcde: Enable module autoloading (stable-fixes).
- drm/mediatek: Add return value check when reading DPCD (git-fixes).
- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).
- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).
- drm/mediatek: Fix mode valid issue for dp (git-fixes).
- drm/mediatek: Set private->all_drm_private[i]->drm to NULL if mtk_drm_bind returns err (git-fixes).
- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).
- drm/mediatek: stop selecting foreign drivers (git-fixes).
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).
- drm/msm/dp: set safe_to_exit_level before printing it (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8150 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8250 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8350 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8550 (git-fixes).
- drm/msm: Check return value of of_dma_configure() (git-fixes).
- drm/msm: do not clean up priv->kms prematurely (git-fixes).
- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).
- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).
- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).
- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).
- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).
- drm/radeon: change rdev->ddev to rdev_to_drm(rdev) (stable-fixes).
- drm/rcar-du: dsi: Fix PHY lock bit check (git-fixes).
- drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event() (git-fixes).
- drm/rockchip: vop2: Check linear format for Cluster windows on rk3566/8 (git-fixes).
- drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters offset (git-fixes).
- drm/rockchip: vop2: Fix the mixer alpha setup for layer 0 (git-fixes).
- drm/sched: memset() 'job' in drm_sched_job_init() (stable-fixes).
- drm/tidss: Clear the interrupt status for interrupts being disabled (git-fixes).
- drm/tidss: Fix issue in irq handling causing irq-flood issue (git-fixes).
- drm/v3d: Assign job pointer to NULL before signaling the fence (git-fixes).
- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).
- drm/v3d: Stop active perfmon if it is being destroyed (git-fixes).
- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).
- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).
- drm/vmwgfx: Add new keep_resv BO param (git-fixes).
- drm: adv7511: Drop dsi single lane support (git-fixes).
- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).
- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- erofs: avoid debugging output for (de)compressed data (git-fixes).
- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).
- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).
- exfat: fix the infinite loop in exfat_readdir() (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- ext4: add a new helper to check if es must be kept (bsc#1234170).
- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).
- ext4: add missed brelse in update_backups (bsc#1234171).
- ext4: allow for the last group to be marked as trimmed (bsc#1234278).
- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).
- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).
- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).
- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).
- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).
- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).
- ext4: check the extent status again before inserting delalloc block (bsc#1234186).
- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).
- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).
- ext4: correct best extent lstart adjustment logic (bsc#1234179).
- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).
- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).
- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).
- ext4: correct the start block of counting reserved clusters (bsc#1234169).
- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).
- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).
- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).
- ext4: factor out a common helper to query extent map (bsc#1234186).
- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).
- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).
- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).
- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).
- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).
- ext4: fix potential unnitialized variable (bsc#1234183).
- ext4: fix race between writepages and remount (bsc#1234168).
- ext4: fix rec_len verify error (bsc#1234167).
- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).
- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).
- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).
- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).
- ext4: make ext4_es_insert_extent() return void (bsc#1234170).
- ext4: make ext4_es_remove_extent() return void (bsc#1234170).
- ext4: make ext4_zeroout_es() return void (bsc#1234170).
- ext4: make sure allocate pending entry not fail (bsc#1234170).
- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).
- ext4: move 'ix' sanity check to corrent position (bsc#1234174).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).
- ext4: nested locking for xattr inode (bsc#1234189).
- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).
- ext4: refactor ext4_da_map_blocks() (bsc#1234178).
- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).
- ext4: remove the redundant folio_wait_stable() (bsc#1234184).
- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).
- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).
- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).
- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).
- fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device() (git-fixes).
- filemap: Fix bounds checking in filemap_read() (bsc#1234209).
- filemap: add a per-mapping stable writes flag (bsc#1234141).
- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).
- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).
- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).
- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).
- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).
- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).
- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).
- genirq: Make handle_enforce_irqctx() unconditionally available (git-fixes).
- genksyms: fix memory leak when the same symbol is added from source (git-fixes).
- genksyms: fix memory leak when the same symbol is read from *.symref file (git-fixes).
- gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (git-fixes).
- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (stable-fixes).
- gpio: mxc: remove dead code after switch to DT-only (git-fixes).
- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- hvc/xen: fix console unplug (git-fixes).
- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).
- hvc/xen: fix event channel handling for secondary consoles (git-fixes).
- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).
- hwmon: (drivetemp) Set scsi command timeout to 10s (stable-fixes).
- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).
- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).
- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).
- hwmon: (tmp513) Do not use "proxy" headers (stable-fixes).
- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).
- hwmon: (tmp513) Fix division of negative numbers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).
- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).
- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).
- hyperv: Do not overlap the hvcall IO areas in get_vtl() (git-fixes).
- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).
- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).
- i2c: i801: Add support for Intel Panther Lake (stable-fixes).
- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).
- i2c: microchip-core: actually use repeated sends (git-fixes).
- i2c: microchip-core: fix "ghost" detections (git-fixes).
- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).
- i2c: pnx: Fix timeout in wait functions (git-fixes).
- i2c: rcar: fix NACK handling when being a target (git-fixes).
- i2c: riic: Always round-up when calculating bus period (git-fixes).
- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).
- i40e: Fix handling changed priv flags (git-fixes).
- i915/guc: Accumulate active runtime on gt reset (git-fixes).
- i915/guc: Ensure busyness counter increases motonically (git-fixes).
- i915/guc: Reset engine utilization buffer before registration (git-fixes).
- ibmvnic: Free any outstanding tx skbs during scrq reset (bsc#1226980).
- ice: Unbind the workqueue (bsc#1234989)
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).
- ice: fix PHY Clock Recovery availability check (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).
- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).
- iio: adc: ad7124: Disable all channels at probe time (git-fixes).
- iio: adc: ad_sigma_delta: Handle CS assertion as intended in ad_sd_read_reg_raw() (git-fixes).
- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).
- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).
- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).
- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).
- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).
- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).
- iio: iio-mux: kzalloc instead of devm_kzalloc to ensure page alignment (git-fixes).
- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).
- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).
- iio: light: as73211: fix channel handling in only-color triggered buffer (git-fixes).
- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).
- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).
- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).
- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).
- instrumentation: Wire up cmpxchg128() (bsc#1220773).
- intel_th: core: fix kernel-doc warnings (git-fixes).
- io_uring/rw: avoid punting to io-wq directly (git-fixes).
- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).
- io_uring: Fix registered ring file refcount leak (git-fixes).
- io_uring: always lock __io_cqring_overflow_flush (git-fixes).
- io_uring: check if iowq is killed before queuing (git-fixes).
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).
- ipmi: ipmb: Add check devm_kasprintf() returned value (git-fixes).
- ipmi: ssif_bmc: Fix new request loss when bmc ready for a response (git-fixes).
- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).
- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).
- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).
- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).
- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).
- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kABI workaround for struct auto_pin_cfg_item change (git-fixes).
- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).
- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)
- kasan: make report_lock a raw spinlock (git-fixes).
- kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST (git-fixes).
- kdb: Fix buffer overflow during tab-complete (bsc#1234652).
- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).
- kdb: Merge identical case statements in kdb_read() (bsc#1234657).
- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).
- kdb: Use format-strings rather than '\0' injection in kdb_read() (bsc#1234654).
- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).
- kdb: address -Wformat-security warnings (bsc#1234659).
- kgdb: Flush console before entering kgdb on panic (bsc#1234651).
- kheaders: Ignore silly-rename files (stable-fixes).
- ktest.pl: Avoid false positives with grub2 skip regex (stable-fixes).
- ktest.pl: Check kernelrelease return in get_version (git-fixes).
- ktest.pl: Fix typo "accesing" (git-fixes).
- ktest.pl: Fix typo in comment (git-fixes).
- ktest.pl: Remove unused declarations in run_bisect_test function (git-fixes).
- ktest: force $buildonly = 1 for 'make_warnings_file' test type (stable-fixes).
- landlock: Handle weird files (git-fixes).
- latencytop: use correct kernel-doc format for func params (git-fixes).
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (stable-fixes).
- leds: lp8860: Write full EEPROM, not only half of it (git-fixes).
- leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata() (git-fixes).
- lib/inflate.c: remove dead code (git-fixes).
- lib/stackdepot: print disabled message only if truly disabled (git-fixes).
- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).
- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).
- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).
- mac80211: fix user-power when emulating chanctx (stable-fixes).
- mac802154: check local interfaces before deleting sdata list (stable-fixes).
- mailbox: pcc: Add support for platform notification handling (stable-fixes).
- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).
- mailbox: tegra-hsp: Clear mailbox before using message (git-fixes).
- maple_tree: simplify split calculation (git-fixes).
- media: camif-core: Add check for clk_enable() (git-fixes).
- media: ccs: Clean up parsed CCS static data on parse failure (git-fixes).
- media: ccs: Fix CCS static data parsing for large block sizes (git-fixes).
- media: ccs: Fix cleanup order in ccs_probe() (git-fixes).
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).
- media: dvb-usb-v2: af9035: fix ISO C90 compilation error on af9035_i2c_master_xfer (git-fixes).
- media: i2c: imx412: Add missing newline to prints (git-fixes).
- media: i2c: ov9282: Correct the exposure offset (git-fixes).
- media: imx-jpeg: Fix potential error pointer dereference in detach_pm() (git-fixes).
- media: imx296: Add standby delay during probe (git-fixes).
- media: lmedm04: Handle errors for lme2510_int_read (git-fixes).
- media: marvell: Add check for clk_enable() (git-fixes).
- media: mc: fix endpoint iteration (git-fixes).
- media: mipi-csis: Add check for clk_enable() (git-fixes).
- media: nxp: imx8-isi: fix v4l2-compliance test errors (git-fixes).
- media: ov5640: fix get_light_freq on auto (git-fixes).
- media: rc: iguanair: handle timeouts (git-fixes).
- media: rkisp1: Fix unused value issue (git-fixes).
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).
- media: uvcvideo: Fix crash during unbind if gpio unit is in use (git-fixes).
- media: uvcvideo: Fix double free in error path (git-fixes).
- media: uvcvideo: Fix event flags in uvc_ctrl_send_events (git-fixes).
- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).
- media: uvcvideo: Only save async fh if success (git-fixes).
- media: uvcvideo: Propagate buf->error to userspace (git-fixes).
- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).
- media: uvcvideo: Remove dangling pointers (git-fixes).
- media: uvcvideo: Remove redundant NULL assignment (git-fixes).
- media: uvcvideo: Support partial control reads (git-fixes).
- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).
- memory-failure: use a folio in me_huge_page() (git-fixes).
- memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code() (git-fixes).
- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).
- misc: fastrpc: Deregister device nodes properly in error scenarios (git-fixes).
- misc: fastrpc: Fix copy buffer page size (git-fixes).
- misc: fastrpc: Fix registered buffer page address (git-fixes).
- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).
- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).
- misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors (git-fixes).
- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).
- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).
- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).
- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).
- mm/memory-failure: check the mapcount of the precise page (git-fixes).
- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).
- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).
- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).
- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).
- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).
- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).
- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).
- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).
- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).
- mm/migrate: putback split folios when numa hint migration fails (git-fixes).
- mm/migrate: split source folio if it is on deferred split list (git-fixes).
- mm/page_owner: remove free_ts from page_owner output (git-fixes).
- mm/readahead: do not allow order-1 folio (bsc#1234205).
- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).
- mm/rodata_test: use READ_ONCE() to read const variable (git-fixes).
- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).
- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).
- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).
- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).
- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).
- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).
- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).
- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).
- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).
- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).
- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).
- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).
- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).
- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).
- mtd: onenand: Fix uninitialized retlen in do_otp_read() (git-fixes).
- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).
- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).
- mtd: spinand: Remove write_enable_op() in markbad() (git-fixes).
- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).
- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).
- net/qed: allow old cards not supporting "num_images" to work (git-fixes).
- net/rose: prevent integer overflows in rose_setsockopt() (git-fixes).
- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset (git-fixes).
- net: rose: fix timer races against user threads (git-fixes).
- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).
- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).
- net: usb: rtl8150: enable basic endpoint checking (git-fixes).
- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).
- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).
- netfilter: nf_tables: validate family when identifying table via handle (bsc#1233778 ZDI-24-1454).
- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).
- nilfs2: fix possible int overflows in nilfs_fiemap() (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).
- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).
- nvme-tcp: Fix I/O queue cpu spreading for multiple controllers (git-fixes).
- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).
- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).
- nvme: Add error check for xa_store in nvme_get_effects_log (git-fixes).
- nvme: Add error path for xa_store in nvme_init_effects (git-fixes).
- nvme: apple: fix device reference counting (git-fixes).
- nvme: fix bogus kzalloc() return check in nvme_init_effects_log() (git-fixes).
- nvme: fix metadata handling in nvme-passthrough (git-fixes).
- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).
- nvmet: propagate npwg topology (git-fixes).
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).
- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).
- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).
- of: address: Report error on resource bounds overflow (stable-fixes).
- padata: add pd get/put refcnt helper (git-fixes).
- padata: avoid UAF for reorder_work (git-fixes).
- padata: fix UAF in padata_reorder (git-fixes).
- parisc: Raise minimal GCC version (bsc#1220773).
- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).
- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).
- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).
- percpu: Wire up cmpxchg128 (bsc#1220773).
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).
- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).
- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).
- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).
- phy: usb: Toggle the PHY power during init (git-fixes).
- pinctrl: amd: Take suspend type into consideration which pins are non-wake (git-fixes).
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).
- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).
- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).
- pinctrl: samsung: fix fwnode refcount cleanup if platform_get_irq_optional() fails (git-fixes).
- pinmux: Use sequential access to access desc->pinmux data (stable-fixes).
- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).
- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).
- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).
- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).
- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).
- platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing incorrect fan speed (stable-fixes).
- pm:cpupower: Add missing powercap_set_enabled() stub function (git-fixes).
- power: ip5xxx_power: Fix return value on ADC read errors (git-fixes).
- power: supply: gpio-charger: Fix set charge current limits (git-fixes).
- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).
- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).
- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).
- powerpc/pseries/eeh: Fix get PE state translation (bsc#1215199).
- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).
- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).
- pps: add an error check in parport_attach (git-fixes).
- pps: remove usage of the deprecated ida_simple_xx() API (stable-fixes).
- printk: Add is_printk_legacy_deferred() (bsc#1236733).
- printk: Defer legacy printing when holding printk_cpu_sync (bsc#1236733).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- pwm: stm32-lp: Add check for clk_enable() (git-fixes).
- pwm: stm32: Add check for clk_enable() (git-fixes).
- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).
- quota: explicitly forbid quota files from being encrypted (bsc#1234196).
- quota: flush quota_release_work upon quota writeback (bsc#1234195).
- quota: simplify drop_dquot_ref() (bsc#1234197).
- rcu-tasks: Pull sampling of ->percpu_dequeue_lim out of loop (git-fixes)
- rcu/tree: Defer setting of jiffies during stall reset (git-fixes)
- rcu: Dump memory object info if callback function is invalid (git-fixes)
- rcu: Eliminate rcu_gp_slow_unregister() false positive (git-fixes)
- rcuscale: Move rcu_scale_writer() (git-fixes)
- rdma/cxgb4: Prevent potential integer overflow on 32bit (git-fixes)
- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).
- regmap: Use correct format specifier for logging range errors (stable-fixes).
- regulator: core: Add missing newline character (git-fixes).
- regulator: of: Implement the unwind path of of_regulator_match() (git-fixes).
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).
- remoteproc: core: Fix ida_free call while not allocated (git-fixes).
- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).
- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read (git-fixes).
- rtc: zynqmp: Fix optional clock name property (git-fixes).
- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).
- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).
- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).
- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).
- s390/facility: Disable compile time optimization for decompressor code (git-fixes).
- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).
- s390/pageattr: Implement missing kernel_page_present() (git-fixes).
- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)
- samples/landlock: Fix possible NULL dereference in parse_path() (git-fixes).
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat (bsc#1235865).
- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat -kabi (bsc#1235865).
- sched/numa: fix memory leak due to the overwritten vma->numab_state (git fixes (sched/numa)).
- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).
- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).
- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).
- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).
- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).
- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).
- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).
- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).
- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).
- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).
- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).
- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).
- scsi: qla2xxx: Remove the unused 'del_list_entry' field in struct fc_port (bsc#1235406).
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).
- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (git-fixes).
- seccomp: Stub for !CONFIG_SECCOMP (stable-fixes).
- selftest: media_tests: fix trivial UAF typo (git-fixes).
- selftests/alsa: Fix circular dependency involving global-timer (stable-fixes).
- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).
- selftests/landlock: Fix error message (git-fixes).
- selftests/mm/cow: modify the incorrect checking parameters (git-fixes).
- selftests/powerpc: Fix argument order to timer_sub() (git-fixes).
- selftests: harness: fix printing of mismatch values in __EXPECT() (git-fixes).
- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).
- selftests: tc-testing: reduce rshift value (stable-fixes).
- selftests: timers: clocksource-switch: Adapt progress to kselftest framework (git-fixes).
- selinux: Fix SCTP error inconsistency in selinux_socket_bind() (git-fixes).
- serial: 8250: Adjust the timeout for FIFO mode (git-fixes).
- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).
- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).
- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).
- serial: 8250_fintek: Add support for F81216E (stable-fixes).
- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).
- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).
- serial: amba-pl011: Use port lock wrappers (stable-fixes).
- serial: amba-pl011: fix build regression (git-fixes).
- serial: do not use uninitialized value in uart_poll_init() (git-fixes).
- serial: imx: only set receiver level if it is zero (git-fixes).
- serial: imx: set receiver level before starting uart (git-fixes).
- serial: qcom-geni: Do not cancel/abort if we can't get the port lock (git-fixes).
- serial: qcom-geni: disable interrupts during console writes (git-fixes).
- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).
- serial: qcom-geni: fix console corruption (git-fixes).
- serial: qcom-geni: fix dma rx cancellation (git-fixes).
- serial: qcom-geni: fix false console tx restart (git-fixes).
- serial: qcom-geni: fix fifo polling timeout (git-fixes).
- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).
- serial: qcom-geni: fix polled console corruption (git-fixes).
- serial: qcom-geni: fix polled console initialisation (git-fixes).
- serial: qcom-geni: fix receiver enable (git-fixes).
- serial: qcom-geni: fix shutdown race (git-fixes).
- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).
- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).
- serial: qcom-geni: revert broken hibernation support (git-fixes).
- serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use (git-fixes).
- serial: sh-sci: Drop __initdata macro for port_cfg (git-fixes).
- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).
- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).
- series.conf: temporarily disable upstream patch patches.suse/ocfs2-fix-UBSAN-warning-in-ocfs2_verify_volume.patch (bsc#1236138)
- slub: Replace cmpxchg_double() (bsc#1220773).
- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]
- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).
- soc: atmel: fix device_node release in atmel_soc_device_init() (git-fixes).
- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).
- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).
- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).
- soc: mediatek: mtk-devapc: Fix leaking IO map on error paths (git-fixes).
- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).
- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).
- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).
- soc: qcom: smem_state: fix missing of_node_put in error path (git-fixes).
- soc: qcom: socinfo: Avoid out of bounds read of serial number (git-fixes).
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).
- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).
- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).
- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).
- spi: zynq-qspi: Add check for clk_enable() (git-fixes).
- srcu: Fix srcu_struct node grpmask overflow on 64-bit systems (git-fixes)
- srcu: Only accelerate on enqueue time (git-fixes)
- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).
- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).
- staging: iio: ad9832: Correct phase range check (git-fixes).
- staging: iio: ad9834: Correct phase range check (git-fixes).
- staging: media: imx: fix OF node leak in imx_media_add_of_subdevs() (git-fixes).
- staging: media: max96712: fix kernel oops when removing module (git-fixes).
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).
- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).
- supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).
- swiotlb: Reinstate page-alignment for mappings >= PAGE_SIZE (git-fixes).
- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).
- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).
- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).
- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).
- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).
- tools: Sync if_xdp.h uapi tooling header (git-fixes).
- tools: hv: change permissions of NetworkManager configuration file (git-fixes).
- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).
- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).
- types: Introduce [us]128 (bsc#1220773).
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- ubifs: skip dumping tnc tree when zroot is null (git-fixes).
- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).
- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).
- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).
- udf: refactor inode_bmap() to handle error (bsc#1234242).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).
- uio: Fix return value of poll (git-fixes).
- uio: uio_dmem_genirq: check the return value of devm_kasprintf() (git-fixes).
- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).
- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).
- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).
- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).
- usb: dwc2: Fix HCD port connection race (git-fixes).
- usb: dwc2: Fix HCD resume (git-fixes).
- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (git-fixes).
- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).
- usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk() (git-fixes).
- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).
- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).
- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).
- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).
- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).
- usb: fix reference leak in usb_new_device() (git-fixes).
- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).
- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).
- usb: gadget: f_tcm: Decrement command ref count on cleanup (git-fixes).
- usb: gadget: f_tcm: Do not free command immediately (git-fixes).
- usb: gadget: f_tcm: Do not prepare BOT write request twice (git-fixes).
- usb: gadget: f_tcm: Fix Get/SetInterface return value (git-fixes).
- usb: gadget: f_tcm: Translate error to sense (git-fixes).
- usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint (git-fixes).
- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).
- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).
- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).
- usb: host: xhci-plat: Assign shared_hcd->rsrc_start (git-fixes).
- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).
- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).
- usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control() (bsc#1235001)
- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).
- usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE (git-fixes).
- usb: typec: use cleanup facility for 'altmodes_node' (stable-fixes).
- usbnet: ipheth: break up NCM header size computation (git-fixes).
- usbnet: ipheth: check that DPE points past NCM header (git-fixes).
- usbnet: ipheth: fix DPE OoB read (git-fixes).
- usbnet: ipheth: fix possible overflow in DPE length check (git-fixes).
- usbnet: ipheth: refactor NCM datagram loop (git-fixes).
- usbnet: ipheth: use static NDP16 location in URB (git-fixes).
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).
- vdpa: solidrun: Fix UB bug with devres (git-fixes).
- vfs: fix readahead(2) on block devices (bsc#1234201).
- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).
- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).
- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).
- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).
- wifi: ath11k: Fix unexpected return buffer manager error for WCN6750/WCN6855 (git-fixes).
- wifi: ath11k: cleanup struct ath11k_mon_data (git-fixes).
- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).
- wifi: ath12k: fix tx power, max reg power update to firmware (git-fixes).
- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).
- wifi: ath5k: add PCI ID for SX76X (git-fixes).
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).
- wifi: brcmfmac: add missing header include for brcmf_dbg (git-fixes).
- wifi: cfg80211: adjust allocation of colocated AP data (git-fixes).
- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).
- wifi: cw1200: Fix potential NULL dereference (git-fixes).
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).
- wifi: iwlwifi: fw: read STEP table from correct UEFI var (git-fixes).
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).
- wifi: mac80211: Add non-atomic station iterator (stable-fixes).
- wifi: mac80211: Fix common size calculation for ML element (git-fixes).
- wifi: mac80211: clean up 'ret' in sta_link_apply_parameters() (stable-fixes).
- wifi: mac80211: do not flush non-uploaded STAs (git-fixes).
- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).
- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).
- wifi: mac80211: fix station NSS capability initialization order (git-fixes).
- wifi: mac80211: fix tid removal during mesh forwarding (git-fixes).
- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).
- wifi: mac80211: prohibit deactivating all links (git-fixes).
- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).
- wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO (git-fixes).
- wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC (git-fixes).
- wifi: mt76: mt7915: add module param to select 5 GHz or 6 GHz on MT7916 (git-fixes).
- wifi: mt76: mt7915: firmware restart on devices with a second pcie link (git-fixes).
- wifi: mt76: mt7915: fix overflows seen when writing limit attributes (git-fixes).
- wifi: mt76: mt7915: fix register mapping (git-fixes).
- wifi: mt76: mt7921: fix using incorrect group cipher after disconnection (git-fixes).
- wifi: mt76: mt7925: fix off by one in mt7925_load_clc() (git-fixes).
- wifi: mt76: mt7996: add max mpdu len capability (git-fixes).
- wifi: mt76: mt7996: fix HE Phy capability (git-fixes).
- wifi: mt76: mt7996: fix definition of tx descriptor (git-fixes).
- wifi: mt76: mt7996: fix incorrect indexing of MIB FW event (git-fixes).
- wifi: mt76: mt7996: fix ldpc setting (git-fixes).
- wifi: mt76: mt7996: fix overflows seen when writing limit attributes (git-fixes).
- wifi: mt76: mt7996: fix register mapping (git-fixes).
- wifi: mt76: mt7996: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU (git-fixes).
- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).
- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).
- wifi: rtlwifi: destroy workqueue at rtl_deinit_core (git-fixes).
- wifi: rtlwifi: do not complete firmware loading needlessly (git-fixes).
- wifi: rtlwifi: fix init_sw_vars leak when probe fails (git-fixes).
- wifi: rtlwifi: fix memory leaks and invalid access at probe error path (git-fixes).
- wifi: rtlwifi: pci: wait for firmware loading before releasing memory (git-fixes).
- wifi: rtlwifi: remove unused check_buddy_priv (git-fixes).
- wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step (git-fixes).
- wifi: rtlwifi: rtl8821ae: Fix media status report (git-fixes).
- wifi: rtlwifi: rtl8821ae: phy: restore removed code to fix infinite loop (git-fixes).
- wifi: rtlwifi: usb: fix workqueue leak when probe fails (git-fixes).
- wifi: rtlwifi: wait for firmware loading before releasing memory (git-fixes).
- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).
- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).
- wifi: rtw89: mcc: consider time limits not divisible by 1024 (git-fixes).
- wifi: wcn36xx: fix channel survey memory allocation size (git-fixes).
- wifi: wlcore: fix unbalanced pm_runtime calls (git-fixes).
- workqueue: Add rcu lock check at the end of work item execution (bsc#1236732).
- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).
- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).
- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).
- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).
- xfs: Add error handling for xfs_reflink_cancel_cow_range (git-fixes).
- xfs: Propagate errors from xfs_reflink_cancel_cow_range in xfs_dax_write_iomap_end (git-fixes).
- xfs: do not allocate COW extents when unsharing a hole (git-fixes).
- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).
- xfs: remove unknown compat feature check in superblock write validation (git-fixes).
- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).
- xfs: sb_spino_align is not verified (git-fixes).
- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).
- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).
- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).
Patchnames
SUSE-SLE-Micro-6.0-kernel-4
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).\n- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).\n- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-44996: vsock: fix recursive -\u003erecvmsg calls (bsc#1230205).\n- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).\n- CVE-2024-49948: net: add more sanity checks to qdisc_pkt_len_init() (bsc#1232161).\n- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).\n- CVE-2024-49978: gso: fix udp gso fraglist segmentation after pull from frag_list (bsc#1232101).\n- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).\n- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).\n- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).\n- CVE-2024-53099: bpf: Check validity of link-\u003etype in bpf_link_show_fdinfo() (bsc#1233772).\n- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).\n- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).\n- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)\n- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).\n- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).\n- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).\n- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).\n- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).\n- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).\n- CVE-2024-53187: io_uring: check for overflows in io_pin_pages (bsc#1234947).\n- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).\n- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).\n- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).\n- CVE-2024-53203: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() (bsc#1235001).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).\n- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).\n- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).\n- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).\n- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).\n- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).\n- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).\n- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).\n- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).\n- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).\n- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).\n- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).\n- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).\n- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).\n- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).\n- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).\n- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).\n- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).\n- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).\n- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).\n- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56608: drm/amd/display: Fix out-of-bounds access in \u0027dcn21_link_encoder_create\u0027 (bsc#1235487).\n- CVE-2024-56610: kcsan: Turn report_filterlist_lock into a raw_spinlock (bsc#1235390).\n- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).\n- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).\n- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).\n- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).\n- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).\n- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).\n- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).\n- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).\n- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).\n- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).\n- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).\n- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).\n- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).\n- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).\n- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).\n- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).\n- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).\n- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).\n- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).\n- CVE-2024-56665: bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog (bsc#1235489).\n- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).\n- CVE-2024-56679: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (bsc#1235498).\n- CVE-2024-56693: brd: defer automatic disk creation until module initialization succeeds (bsc#1235418).\n- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).\n- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).\n- CVE-2024-56707: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c (bsc#1235545).\n- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).\n- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).\n- CVE-2024-56715: ionic: Fix netdev notifier unregister on failure (bsc#1235612).\n- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).\n- CVE-2024-56725: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c (bsc#1235578).\n- CVE-2024-56726: octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (bsc#1235582).\n- CVE-2024-56727: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c (bsc#1235583).\n- CVE-2024-56728: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (bsc#1235656).\n- CVE-2024-56729: smb: Initialize cfid-\u003etcon before performing network ops (bsc#1235503).\n- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).\n- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).\n- CVE-2024-56763: tracing: Prevent bad count for tracing_cpumask_write (bsc#1235638).\n- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).\n- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).\n- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).\n- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).\n- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).\n- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).\n- CVE-2024-57802: netrom: check buffer length before accessing it (bsc#1235941).\n- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).\n- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).\n- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).\n- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).\n- CVE-2024-57884: mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (bsc#1235948).\n- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).\n- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).\n- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).\n- CVE-2024-57917: topology: Keep the cpumask unchanged when printing cpumap (bsc#1236127).\n- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).\n- CVE-2024-57931: selinux: ignore unknown extended permissions (bsc#1236192).\n- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).\n- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).\n- CVE-2024-57938: net/sctp: Prevent autoclose integer overflow in sctp_association_init() (bsc#1236182).\n- CVE-2024-57946: virtio-blk: do not keep queue frozen during system suspend (bsc#1236247).\n- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before \"getting\" registers (bsc#1236106).\n- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).\n- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).\n- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).\n- CVE-2025-21652: ipvlan: Fix use-after-free in ipvlan_get_iflink() (bsc#1236160).\n- CVE-2025-21653: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute (bsc#1236161).\n- CVE-2025-21655: io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period (bsc#1236163).\n- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).\n- CVE-2025-21663: net: stmmac: dwmac-tegra: Read iommu stream id from device tree (bsc#1236260).\n- CVE-2025-21664: dm thin: make get_first_thin use rcu-safe list first function (bsc#1236262).\n- CVE-2025-21674: net/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel (bsc#1236688).\n- CVE-2025-21676: net: fec: handle page_pool_dev_alloc_pages error (bsc#1236696).\n- CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref (bsc#1236703).\n\nFeatures added:\n\n * - Disable ceph (jsc#PED-7242)\n * - RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n * - ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n * - supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)\n\n\nThe following non-security bugs were fixed:\n\n- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).\n- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).\n- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n- ACPI: fan: cleanup resources in the error path of .probe() (git-fixes).\n- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).\n- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).\n- ACPI: resource: Fix memory resource type union access (git-fixes).\n- ACPI: resource: acpi_dev_irq_override(): Check DMI match last (stable-fixes).\n- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).\n- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).\n- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).\n- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).\n- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).\n- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).\n- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).\n- ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31 laptop (git-fixes).\n- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).\n- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).\n- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).\n- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).\n- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14s-fq1xxx (stable-fixes).\n- ALSA: hda/realtek: Enable headset mic on Positivo C6400 (stable-fixes).\n- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).\n- ALSA: hda/realtek: Workaround for resume on Dell Venue 11 Pro 7130 (bsc#1235686).\n- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).\n- ALSA: hda: Fix headset detection failure due to unstable sort (git-fixes).\n- ALSA: line6: Fix racy access to midibuf (stable-fixes).\n- ALSA: seq: Check UMP support for midi_version change (git-fixes).\n- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).\n- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).\n- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).\n- ALSA: seq: ump: Use guard() for locking (stable-fixes).\n- ALSA: ump: Use guard() for locking (stable-fixes).\n- ALSA: usb-audio: Add delay quirk for USB Audio Device (stable-fixes).\n- ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro (stable-fixes).\n- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).\n- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).\n- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).\n- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).\n- ASoC: Intel: avs: Fix theoretical infinite loop (git-fixes).\n- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).\n- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).\n- ASoC: SOF: Remove libraries from topology lookups (git-fixes).\n- ASoC: acp: Support microphone from Lenovo Go S (stable-fixes).\n- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).\n- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).\n- ASoC: amd: yc: Fix the wrong return value (git-fixes).\n- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).\n- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).\n- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).\n- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).\n- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).\n- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).\n- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).\n- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).\n- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).\n- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).\n- ASoC: nau8822: Lower debug print priority (stable-fixes).\n- ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback (git-fixes).\n- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).\n- ASoC: samsung: Add missing depends on I2C (git-fixes).\n- ASoC: samsung: Add missing selects for MFD_WM8994 (stable-fixes).\n- ASoC: sun4i-spdif: Add clock multiplier settings (git-fixes).\n- ASoC: wm8994: Add depends on MFD core (stable-fixes).\n- Add already cherry-picked ids to AMDGPU patch\n- Align git commit ID abbreviation guidelines and checks (git-fixes).\n- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).\n- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).\n- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).\n- Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection (git-fixes).\n- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).\n- Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc (git-fixes).\n- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).\n- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).\n- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).\n- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).\n- Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming (git-fixes).\n- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).\n- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).\n- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).\n- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).\n- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).\n- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).\n- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).\n- Bluetooth: iso: Fix recursive locking warning (git-fixes).\n- Delete XHCI patch for regression (bsc#1235550)\n- Disable ceph (jsc#PED-7242)\n- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- Drop downstream TPM fix patch (bsc#1233260 bsc#1233259 bsc#1232421)\n- Drop uvcvideo fix due to regression (bsc#1235894)\n- EDAC/{i10nm,skx,skx_common}: Support UV systems (bsc#1234693).\n- HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections (git-fixes).\n- HID: fix generic desktop D-Pad controls (git-fixes).\n- HID: hid-sensor-hub: do not use stale platform-data on remove (git-fixes).\n- HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check (git-fixes).\n- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).\n- HID: multitouch: fix support for Goodix PID 0x01e9 (git-fixes).\n- Input: atkbd - map F23 key to support default copilot shortcut (stable-fixes).\n- Input: bbnsm_pwrkey - add remove hook (git-fixes).\n- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).\n- Input: davinci-keyscan - remove leftover header (git-fixes).\n- Input: xpad - add QH Electronics VID/PID (stable-fixes).\n- Input: xpad - add support for Nacon Evol-X Xbox One Controller (stable-fixes).\n- Input: xpad - add support for Nacon Pro Compact (stable-fixes).\n- Input: xpad - add support for wooting two he (arm) (stable-fixes).\n- Input: xpad - add unofficial Xbox 360 wireless receiver clone (stable-fixes).\n- Input: xpad - improve name of 8BitDo controller 2dc8:3106 (stable-fixes).\n- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).\n- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).\n- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).\n- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).\n- Move kABI workaround patch to correct folder\n- Move upstreamed DRM patch into sorted section\n- Move upstreamed NFS patch into sorted section\n- Move upstreamed TPM patch into sorted section\n- Move upstreamed lpfc patches into sorted section\n- Move upstreamed ppc patch into sorted section\n- Move upstreamed sound patch into sorted section\n- Move upstreamed sound patches into sorted section\n- NFC: nci: Add bounds checking in nci_hci_create_pipe() (git-fixes).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Async COPY result needs to return a write verifier (git-fixes).\n- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: Remove a never-true comparison (git-fixes).\n- NFSD: initialize copy-\u003ecp_clp early in nfsd4_copy for use by trace point (git-fixes).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- NFSv4.2: fix COPY_NOTIFY xdr buf size calculation (git-fixes).\n- NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE (git-fixes).\n- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).\n- PCI/AER: Disable AER service on suspend (stable-fixes).\n- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).\n- PCI: Add \u0027reset_subordinate\u0027 to reset hierarchy below bridge (stable-fixes).\n- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).\n- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).\n- PCI: Add T_PERST_CLK_US macro (git-fixes).\n- PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 (git-fixes).\n- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).\n- PCI: Fix use-after-free of slot-\u003ebus on hot remove (stable-fixes).\n- PCI: Use preserve_config in place of pci_flags (stable-fixes).\n- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).\n- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).\n- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).\n- PCI: dwc: Always stop link in the dw_pcie_suspend_noirq (git-fixes).\n- PCI: dwc: ep: Prevent changing BAR size/flags in pci_epc_set_bar() (git-fixes).\n- PCI: dwc: ep: Write BAR_MASK before iATU registers in pci_epc_set_bar() (git-fixes).\n- PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy() (git-fixes).\n- PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf() (git-fixes).\n- PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test (git-fixes).\n- PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error (git-fixes).\n- PCI: imx6: Deassert apps_reset in imx_pcie_deassert_core_reset() (git-fixes).\n- PCI: imx6: Skip controller_id generation logic for i.MX7D (git-fixes).\n- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).\n- PCI: j721e: Add per platform maximum lane settings (stable-fixes).\n- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).\n- PCI: j721e: Add suspend and resume support (git-fixes).\n- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).\n- PCI: microchip: Set inbound address translation for coherent or non-coherent mode (git-fixes).\n- PCI: qcom: Add support for IPQ9574 (stable-fixes).\n- PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region() (git-fixes).\n- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).\n- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).\n- PM: hibernate: Add error handling for syscore_suspend() (git-fixes).\n- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)\n- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)\n- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)\n- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)\n- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)\n- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)\n- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)\n- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)\n- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)\n- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)\n- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)\n- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)\n- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)\n- RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error (git-fixes)\n- RDMA/bnxt_re: Fix to export port num to ib_query_qp (git-fixes)\n- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)\n- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)\n- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)\n- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)\n- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)\n- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)\n- RDMA/mlx4: Avoid false error about access to uninitialized gids array (git-fixes)\n- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)\n- RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error (git-fixes)\n- RDMA/mlx5: Fix implicit ODP use after free (git-fixes)\n- RDMA/mlx5: Fix indirect mkey ODP page count (git-fixes)\n- RDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible (git-fixes)\n- RDMA/rxe: Fix mismatched max_msg_sz (git-fixes)\n- RDMA/rxe: Fix the warning \"__rxe_cleanup+0x12c/0x170 [rdma_rxe]\" (git-fixes)\n- RDMA/srp: Fix error handling in srp_add_port (git-fixes)\n- RDMA/uverbs: Prevent integer overflow issue (git-fixes)\n- README.BRANCH: Remove copy of branch name\n- Refresh patches.suse/ALSA-hda-realtek-Add-support-for-Samsung-Galaxy-Book.patch.\n- Refresh patches.suse/cpufreq-intel_pstate-Temporarily-boost-P-state-when-.patch.\n- Revert \"HID: multitouch: Add support for lenovo Y9000P Touchpad\" (stable-fixes).\n- Revert \"block/mq-deadline: use correct way to throttling write requests\" (bsc#1234146).\n- Revert \"btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\"\n- Revert \"drm/i915/dpt: Make DPT object unshrinkable\" (stable-fixes).\n- Revert \"igb: Disable threaded IRQ for igb_msix_other\" (git-fixes).\n- Revert \"mtd: spi-nor: core: replace dummy buswidth from addr to data\" (git-fixes).\n- Revert \"unicode: Do not special case ignorable code points\" (stable-fixes).\n- Revert \"usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null\" (stable-fixes).\n- Revert \u0027arm64: Kconfig: Make SME depend on BROKEN for now\u0027 This reverts commit 2ccfee6be929dd4ea49ef59a7ae686473aae40b6 CONFIG_ARM64_SME is enabled by default so some customers may rely on SME. We need further analysis to evaluate to what extent we are impacted and in case we\u0027ll disable SME support later.\n- Revert 0dd78566990 (\"Disable ceph (jsc#PED-7242)\") Apparently, jsc#PED-7242 is only deprecate ceph for 15-SP6 and disable for 15-SP7. Revert the disabling.\n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).\n- USB: core: Disable LPM only for non-suspended ports (git-fixes).\n- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).\n- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).\n- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).\n- USB: serial: option: add Neoway N723-EA support (stable-fixes).\n- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).\n- USB: serial: option: add TCL IK512 MBIM \u0026 ECM (stable-fixes).\n- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).\n- USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() (git-fixes).\n- USB: usblp: return error when setting unsupported protocol (git-fixes).\n- VFS: use system_unbound_wq for delayed_mntput (bsc#1234683).\n- VMCI: fix reference to ioctl-number.rst (git-fixes).\n- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).\n- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).\n- accel/habanalabs: fix debugfs files permissions (stable-fixes).\n- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).\n- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).\n- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).\n- afs: Automatically generate trace tag enums (git-fixes).\n- afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY (git-fixes).\n- afs: Fix cleanup of immediately failed async calls (git-fixes).\n- afs: Fix directory format encoding struct (git-fixes).\n- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).\n- afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call (git-fixes).\n- afs: Fix the maximum cell name length (git-fixes).\n- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).\n- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).\n- arch: Remove cmpxchg_double (bsc#1220773).\n- arch: consolidate arch_irq_work_raise prototypes (git-fixes).\n- arm64/sme: Move storage of reg_smidr to __cpuinfo_store_cpu() (git-fixes)\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: Filter out SVE hwcaps when FEAT_SVE isn\u0027t implemented (git-fixes)\n- arm64: Force position-independent veneers (git-fixes).\n- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes bsc#1236245) Update arm64 default configuration file\n- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes).\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- arm64: dts: rockchip: Add sdmmc/sdio/emmc reset controls for RK3328 (git-fixes)\n- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).\n- arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma (git-fixes)\n- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).\n- arm64: tegra: Disable Tegra234 sce-fabric node (git-fixes)\n- arm64: tegra: Fix Tegra234 PCIe interrupt-map (git-fixes)\n- arm64: tegra: Fix typo in Tegra234 dce-fabric compatible (git-fixes)\n- ata: libata-core: Set ATA_QCFLAG_RTF_FILLED in fill_result_tf() (stable-fixes).\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).\n- batman-adv: Do not send uninitialized TT changes (git-fixes).\n- batman-adv: Remove uninitialized data in full table TT response (git-fixes).\n- blacklist.conf: printk/sysctl: breaks kernel without pre-requisite patches (bsc#1229025)\n- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).\n- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).\n- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).\n- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).\n- blk-throttle: fix lockdep warning of \"cgroup_mutex or RCU read lock required!\" (bsc#1234140).\n- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).\n- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).\n- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).\n- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).\n- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).\n- block/mq-deadline: Fix the tag reservation code (bsc#1234148).\n- block: Call .limit_depth() after .hctx has been set (bsc#1234148).\n- block: Fix where bio IO priority gets set (bsc#1234145).\n- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).\n- block: update the stable_writes flag in bdev_add (bsc#1234141).\n- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)\n- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).\n- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).\n- bpf: verifier: prevent userspace memory access (git-fixes).\n- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).\n- bus: mhi: host: Free mhi_buf vector inside mhi_alloc_bhie_table() (git-fixes).\n- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).\n- can: j1939: fix error in J1939 documentation (stable-fixes).\n- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).\n- checkpatch: always parse orig_commit in fixes tag (git-fixes).\n- checkpatch: check for missing Fixes tags (stable-fixes).\n- cleanup: Add conditional guard support (stable-fixes).\n- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).\n- cleanup: Remove address space of returned pointer (git-fixes).\n- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).\n- clocksource/drivers:sp804: Make user selectable (git-fixes).\n- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).\n- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).\n- cpufreq: ACPI: Fix max-frequency computation (git-fixes).\n- cpufreq: Do not unregister cpufreq cooling on CPU hotplug (git-fixes).\n- cpufreq: amd-pstate: remove global header file (git-fixes).\n- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).\n- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).\n- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).\n- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).\n- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).\n- cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock (git-fixes).\n- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).\n- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).\n- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).\n- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).\n- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).\n- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).\n- cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing (git-fixes).\n- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).\n- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).\n- cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back (git-fixes).\n- cpuidle: Avoid potential overflow in integer multiplication (git-fixes).\n- cpupower: fix TSC MHz calculation (git-fixes).\n- crypto: caam - use JobR\u0027s space to access page 0 regs (git-fixes).\n- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).\n- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).\n- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).\n- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).\n- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).\n- crypto: iaa - Fix IAA disabling that occurs when sync_mode is set to \u0027async\u0027 (git-fixes).\n- crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto() (git-fixes).\n- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).\n- crypto: qce - fix goto jump in error path (git-fixes).\n- crypto: qce - fix priority to be less than ARMv8 CE (git-fixes).\n- crypto: qce - unregister previously registered algos in error path (git-fixes).\n- crypto: x86/sha256 - Add parentheses around macros\u0027 single arguments (stable-fixes).\n- cyrpto/b128ops: Remove struct u128 (bsc#1220773).\n- devcoredump: cleanup some comments (git-fixes).\n- devlink: Fix length of eswitch inline-mode (git-fixes).\n- dlm: fix possible lkb_resource null dereference (git-fixes).\n- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).\n- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).\n- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).\n- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).\n- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).\n- dmaengine: tegra: Return correct DMA status when paused (git-fixes).\n- dmaengine: ti: edma: fix OF node reference leaks in edma_driver (git-fixes).\n- docs: media: update location of the media patches (stable-fixes).\n- docs: power: Fix footnote reference for Toshiba Satellite P10-554 (git-fixes).\n- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).\n- driver core: class: Fix wild pointer dereferences in API class_dev_iter_next() (git-fixes).\n- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).\n- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).\n- drivers/card_reader/rtsx_usb: Restore interrupt based detection (git-fixes).\n- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).\n- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).\n- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).\n- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).\n- drm/amd/display: Fix DSC-re-computing (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).\n- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).\n- drm/amd/display: Use HW lock mgr for PSR1 (stable-fixes).\n- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).\n- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).\n- drm/amd/pm: Fix an error handling path in vega10_enable_se_edc_force_stall_config() (git-fixes).\n- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).\n- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).\n- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).\n- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).\n- drm/amdgpu/pm: Remove gpu_od if it\u0027s an empty directory (stable-fixes).\n- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).\n- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).\n- drm/amdgpu/vcn: reset fw_shared under SRIOV (git-fixes).\n- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).\n- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).\n- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).\n- drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table (git-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).\n- drm/amdgpu: always sync the GFX pipe on ctx switch (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).\n- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: do not access invalid sched (git-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: fix usage slab after free (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).\n- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).\n- drm/amdgpu: simplify return statement in amdgpu_ras_eeprom_init (git-fixes).\n- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).\n- drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini() (git-fixes).\n- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/amdkfd: Use device based logging for errors (stable-fixes).\n- drm/amdkfd: Use the correct wptr size (stable-fixes).\n- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).\n- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).\n- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).\n- drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE (git-fixes).\n- drm/bridge: it6505: Enable module autoloading (stable-fixes).\n- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).\n- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).\n- drm/display: Fix building with GCC 15 (stable-fixes).\n- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).\n- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).\n- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).\n- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).\n- drm/etnaviv: Fix page property being used for non writecombine buffers (git-fixes).\n- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).\n- drm/i915/dg1: Fix power gate sequence (git-fixes).\n- drm/i915/fb: Relax clear color alignment to 64 bytes (stable-fixes).\n- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).\n- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).\n- drm/mcde: Enable module autoloading (stable-fixes).\n- drm/mediatek: Add return value check when reading DPCD (git-fixes).\n- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).\n- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).\n- drm/mediatek: Fix mode valid issue for dp (git-fixes).\n- drm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err (git-fixes).\n- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).\n- drm/mediatek: stop selecting foreign drivers (git-fixes).\n- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).\n- drm/msm/dp: set safe_to_exit_level before printing it (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8150 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8250 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8350 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8550 (git-fixes).\n- drm/msm: Check return value of of_dma_configure() (git-fixes).\n- drm/msm: do not clean up priv-\u003ekms prematurely (git-fixes).\n- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).\n- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).\n- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).\n- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).\n- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).\n- drm/radeon: change rdev-\u003eddev to rdev_to_drm(rdev) (stable-fixes).\n- drm/rcar-du: dsi: Fix PHY lock bit check (git-fixes).\n- drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event() (git-fixes).\n- drm/rockchip: vop2: Check linear format for Cluster windows on rk3566/8 (git-fixes).\n- drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters offset (git-fixes).\n- drm/rockchip: vop2: Fix the mixer alpha setup for layer 0 (git-fixes).\n- drm/sched: memset() \u0027job\u0027 in drm_sched_job_init() (stable-fixes).\n- drm/tidss: Clear the interrupt status for interrupts being disabled (git-fixes).\n- drm/tidss: Fix issue in irq handling causing irq-flood issue (git-fixes).\n- drm/v3d: Assign job pointer to NULL before signaling the fence (git-fixes).\n- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).\n- drm/v3d: Stop active perfmon if it is being destroyed (git-fixes).\n- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).\n- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).\n- drm/vmwgfx: Add new keep_resv BO param (git-fixes).\n- drm: adv7511: Drop dsi single lane support (git-fixes).\n- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).\n- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- erofs: avoid debugging output for (de)compressed data (git-fixes).\n- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).\n- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).\n- exfat: fix the infinite loop in exfat_readdir() (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- ext4: add a new helper to check if es must be kept (bsc#1234170).\n- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).\n- ext4: add missed brelse in update_backups (bsc#1234171).\n- ext4: allow for the last group to be marked as trimmed (bsc#1234278).\n- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).\n- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).\n- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).\n- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).\n- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).\n- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).\n- ext4: check the extent status again before inserting delalloc block (bsc#1234186).\n- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).\n- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).\n- ext4: correct best extent lstart adjustment logic (bsc#1234179).\n- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).\n- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).\n- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).\n- ext4: correct the start block of counting reserved clusters (bsc#1234169).\n- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).\n- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).\n- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).\n- ext4: factor out a common helper to query extent map (bsc#1234186).\n- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).\n- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).\n- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).\n- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).\n- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).\n- ext4: fix potential unnitialized variable (bsc#1234183).\n- ext4: fix race between writepages and remount (bsc#1234168).\n- ext4: fix rec_len verify error (bsc#1234167).\n- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).\n- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).\n- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).\n- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).\n- ext4: make ext4_es_insert_extent() return void (bsc#1234170).\n- ext4: make ext4_es_remove_extent() return void (bsc#1234170).\n- ext4: make ext4_zeroout_es() return void (bsc#1234170).\n- ext4: make sure allocate pending entry not fail (bsc#1234170).\n- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).\n- ext4: move \u0027ix\u0027 sanity check to corrent position (bsc#1234174).\n- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).\n- ext4: nested locking for xattr inode (bsc#1234189).\n- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).\n- ext4: refactor ext4_da_map_blocks() (bsc#1234178).\n- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).\n- ext4: remove the redundant folio_wait_stable() (bsc#1234184).\n- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).\n- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).\n- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).\n- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).\n- fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device() (git-fixes).\n- filemap: Fix bounds checking in filemap_read() (bsc#1234209).\n- filemap: add a per-mapping stable writes flag (bsc#1234141).\n- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).\n- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).\n- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).\n- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).\n- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).\n- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).\n- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).\n- genirq: Make handle_enforce_irqctx() unconditionally available (git-fixes).\n- genksyms: fix memory leak when the same symbol is added from source (git-fixes).\n- genksyms: fix memory leak when the same symbol is read from *.symref file (git-fixes).\n- gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (git-fixes).\n- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).\n- gpio: grgpio: use a helper variable to store the address of ofdev-\u003edev (stable-fixes).\n- gpio: mxc: remove dead code after switch to DT-only (git-fixes).\n- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- hvc/xen: fix console unplug (git-fixes).\n- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).\n- hvc/xen: fix event channel handling for secondary consoles (git-fixes).\n- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).\n- hwmon: (drivetemp) Set scsi command timeout to 10s (stable-fixes).\n- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).\n- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).\n- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).\n- hwmon: (tmp513) Do not use \"proxy\" headers (stable-fixes).\n- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).\n- hwmon: (tmp513) Fix division of negative numbers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).\n- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).\n- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).\n- hyperv: Do not overlap the hvcall IO areas in get_vtl() (git-fixes).\n- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).\n- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).\n- i2c: i801: Add support for Intel Panther Lake (stable-fixes).\n- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).\n- i2c: microchip-core: actually use repeated sends (git-fixes).\n- i2c: microchip-core: fix \"ghost\" detections (git-fixes).\n- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).\n- i2c: pnx: Fix timeout in wait functions (git-fixes).\n- i2c: rcar: fix NACK handling when being a target (git-fixes).\n- i2c: riic: Always round-up when calculating bus period (git-fixes).\n- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).\n- i40e: Fix handling changed priv flags (git-fixes).\n- i915/guc: Accumulate active runtime on gt reset (git-fixes).\n- i915/guc: Ensure busyness counter increases motonically (git-fixes).\n- i915/guc: Reset engine utilization buffer before registration (git-fixes).\n- ibmvnic: Free any outstanding tx skbs during scrq reset (bsc#1226980).\n- ice: Unbind the workqueue (bsc#1234989)\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).\n- ice: fix PHY Clock Recovery availability check (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).\n- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).\n- iio: adc: ad7124: Disable all channels at probe time (git-fixes).\n- iio: adc: ad_sigma_delta: Handle CS assertion as intended in ad_sd_read_reg_raw() (git-fixes).\n- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).\n- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).\n- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).\n- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).\n- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).\n- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).\n- iio: iio-mux: kzalloc instead of devm_kzalloc to ensure page alignment (git-fixes).\n- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).\n- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).\n- iio: light: as73211: fix channel handling in only-color triggered buffer (git-fixes).\n- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).\n- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).\n- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).\n- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).\n- instrumentation: Wire up cmpxchg128() (bsc#1220773).\n- intel_th: core: fix kernel-doc warnings (git-fixes).\n- io_uring/rw: avoid punting to io-wq directly (git-fixes).\n- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).\n- io_uring: Fix registered ring file refcount leak (git-fixes).\n- io_uring: always lock __io_cqring_overflow_flush (git-fixes).\n- io_uring: check if iowq is killed before queuing (git-fixes).\n- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).\n- ipmi: ipmb: Add check devm_kasprintf() returned value (git-fixes).\n- ipmi: ssif_bmc: Fix new request loss when bmc ready for a response (git-fixes).\n- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).\n- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).\n- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).\n- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).\n- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).\n- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kABI workaround for struct auto_pin_cfg_item change (git-fixes).\n- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).\n- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)\n- kasan: make report_lock a raw spinlock (git-fixes).\n- kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST (git-fixes).\n- kdb: Fix buffer overflow during tab-complete (bsc#1234652).\n- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).\n- kdb: Merge identical case statements in kdb_read() (bsc#1234657).\n- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).\n- kdb: Use format-strings rather than \u0027\\0\u0027 injection in kdb_read() (bsc#1234654).\n- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).\n- kdb: address -Wformat-security warnings (bsc#1234659).\n- kgdb: Flush console before entering kgdb on panic (bsc#1234651).\n- kheaders: Ignore silly-rename files (stable-fixes).\n- ktest.pl: Avoid false positives with grub2 skip regex (stable-fixes).\n- ktest.pl: Check kernelrelease return in get_version (git-fixes).\n- ktest.pl: Fix typo \"accesing\" (git-fixes).\n- ktest.pl: Fix typo in comment (git-fixes).\n- ktest.pl: Remove unused declarations in run_bisect_test function (git-fixes).\n- ktest: force $buildonly = 1 for \u0027make_warnings_file\u0027 test type (stable-fixes).\n- landlock: Handle weird files (git-fixes).\n- latencytop: use correct kernel-doc format for func params (git-fixes).\n- leds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex (stable-fixes).\n- leds: lp8860: Write full EEPROM, not only half of it (git-fixes).\n- leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata() (git-fixes).\n- lib/inflate.c: remove dead code (git-fixes).\n- lib/stackdepot: print disabled message only if truly disabled (git-fixes).\n- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).\n- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).\n- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).\n- mac80211: fix user-power when emulating chanctx (stable-fixes).\n- mac802154: check local interfaces before deleting sdata list (stable-fixes).\n- mailbox: pcc: Add support for platform notification handling (stable-fixes).\n- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).\n- mailbox: tegra-hsp: Clear mailbox before using message (git-fixes).\n- maple_tree: simplify split calculation (git-fixes).\n- media: camif-core: Add check for clk_enable() (git-fixes).\n- media: ccs: Clean up parsed CCS static data on parse failure (git-fixes).\n- media: ccs: Fix CCS static data parsing for large block sizes (git-fixes).\n- media: ccs: Fix cleanup order in ccs_probe() (git-fixes).\n- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).\n- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).\n- media: dvb-usb-v2: af9035: fix ISO C90 compilation error on af9035_i2c_master_xfer (git-fixes).\n- media: i2c: imx412: Add missing newline to prints (git-fixes).\n- media: i2c: ov9282: Correct the exposure offset (git-fixes).\n- media: imx-jpeg: Fix potential error pointer dereference in detach_pm() (git-fixes).\n- media: imx296: Add standby delay during probe (git-fixes).\n- media: lmedm04: Handle errors for lme2510_int_read (git-fixes).\n- media: marvell: Add check for clk_enable() (git-fixes).\n- media: mc: fix endpoint iteration (git-fixes).\n- media: mipi-csis: Add check for clk_enable() (git-fixes).\n- media: nxp: imx8-isi: fix v4l2-compliance test errors (git-fixes).\n- media: ov5640: fix get_light_freq on auto (git-fixes).\n- media: rc: iguanair: handle timeouts (git-fixes).\n- media: rkisp1: Fix unused value issue (git-fixes).\n- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).\n- media: uvcvideo: Fix crash during unbind if gpio unit is in use (git-fixes).\n- media: uvcvideo: Fix double free in error path (git-fixes).\n- media: uvcvideo: Fix event flags in uvc_ctrl_send_events (git-fixes).\n- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).\n- media: uvcvideo: Only save async fh if success (git-fixes).\n- media: uvcvideo: Propagate buf-\u003eerror to userspace (git-fixes).\n- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).\n- media: uvcvideo: Remove dangling pointers (git-fixes).\n- media: uvcvideo: Remove redundant NULL assignment (git-fixes).\n- media: uvcvideo: Support partial control reads (git-fixes).\n- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).\n- memory-failure: use a folio in me_huge_page() (git-fixes).\n- memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code() (git-fixes).\n- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).\n- misc: fastrpc: Deregister device nodes properly in error scenarios (git-fixes).\n- misc: fastrpc: Fix copy buffer page size (git-fixes).\n- misc: fastrpc: Fix registered buffer page address (git-fixes).\n- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).\n- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).\n- misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors (git-fixes).\n- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).\n- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).\n- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).\n- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).\n- mm/memory-failure: check the mapcount of the precise page (git-fixes).\n- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).\n- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).\n- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).\n- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).\n- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).\n- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).\n- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).\n- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).\n- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).\n- mm/migrate: putback split folios when numa hint migration fails (git-fixes).\n- mm/migrate: split source folio if it is on deferred split list (git-fixes).\n- mm/page_owner: remove free_ts from page_owner output (git-fixes).\n- mm/readahead: do not allow order-1 folio (bsc#1234205).\n- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).\n- mm/rodata_test: use READ_ONCE() to read const variable (git-fixes).\n- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).\n- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).\n- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).\n- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).\n- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).\n- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).\n- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).\n- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).\n- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).\n- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).\n- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).\n- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).\n- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).\n- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).\n- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).\n- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).\n- mtd: onenand: Fix uninitialized retlen in do_otp_read() (git-fixes).\n- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).\n- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).\n- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).\n- mtd: spinand: Remove write_enable_op() in markbad() (git-fixes).\n- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).\n- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).\n- net/qed: allow old cards not supporting \"num_images\" to work (git-fixes).\n- net/rose: prevent integer overflows in rose_setsockopt() (git-fixes).\n- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset (git-fixes).\n- net: rose: fix timer races against user threads (git-fixes).\n- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).\n- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).\n- net: usb: rtl8150: enable basic endpoint checking (git-fixes).\n- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).\n- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).\n- netfilter: nf_tables: validate family when identifying table via handle (bsc#1233778 ZDI-24-1454).\n- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).\n- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).\n- nilfs2: fix possible int overflows in nilfs_fiemap() (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).\n- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).\n- nvme-tcp: Fix I/O queue cpu spreading for multiple controllers (git-fixes).\n- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).\n- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).\n- nvme: Add error check for xa_store in nvme_get_effects_log (git-fixes).\n- nvme: Add error path for xa_store in nvme_init_effects (git-fixes).\n- nvme: apple: fix device reference counting (git-fixes).\n- nvme: fix bogus kzalloc() return check in nvme_init_effects_log() (git-fixes).\n- nvme: fix metadata handling in nvme-passthrough (git-fixes).\n- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).\n- nvmet: propagate npwg topology (git-fixes).\n- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).\n- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).\n- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).\n- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).\n- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).\n- of: address: Report error on resource bounds overflow (stable-fixes).\n- padata: add pd get/put refcnt helper (git-fixes).\n- padata: avoid UAF for reorder_work (git-fixes).\n- padata: fix UAF in padata_reorder (git-fixes).\n- parisc: Raise minimal GCC version (bsc#1220773).\n- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).\n- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).\n- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).\n- percpu: Wire up cmpxchg128 (bsc#1220773).\n- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).\n- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).\n- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).\n- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).\n- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).\n- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).\n- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).\n- phy: usb: Toggle the PHY power during init (git-fixes).\n- pinctrl: amd: Take suspend type into consideration which pins are non-wake (git-fixes).\n- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).\n- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).\n- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).\n- pinctrl: samsung: fix fwnode refcount cleanup if platform_get_irq_optional() fails (git-fixes).\n- pinmux: Use sequential access to access desc-\u003epinmux data (stable-fixes).\n- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).\n- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).\n- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).\n- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).\n- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).\n- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).\n- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).\n- platform/x86: thinkpad_acpi: Fix for ThinkPad\u0027s with ECFW showing incorrect fan speed (stable-fixes).\n- pm:cpupower: Add missing powercap_set_enabled() stub function (git-fixes).\n- power: ip5xxx_power: Fix return value on ADC read errors (git-fixes).\n- power: supply: gpio-charger: Fix set charge current limits (git-fixes).\n- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).\n- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).\n- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).\n- powerpc/pseries/eeh: Fix get PE state translation (bsc#1215199).\n- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).\n- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).\n- pps: add an error check in parport_attach (git-fixes).\n- pps: remove usage of the deprecated ida_simple_xx() API (stable-fixes).\n- printk: Add is_printk_legacy_deferred() (bsc#1236733).\n- printk: Defer legacy printing when holding printk_cpu_sync (bsc#1236733).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- pwm: stm32-lp: Add check for clk_enable() (git-fixes).\n- pwm: stm32: Add check for clk_enable() (git-fixes).\n- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).\n- quota: explicitly forbid quota files from being encrypted (bsc#1234196).\n- quota: flush quota_release_work upon quota writeback (bsc#1234195).\n- quota: simplify drop_dquot_ref() (bsc#1234197).\n- rcu-tasks: Pull sampling of -\u003epercpu_dequeue_lim out of loop (git-fixes)\n- rcu/tree: Defer setting of jiffies during stall reset (git-fixes)\n- rcu: Dump memory object info if callback function is invalid (git-fixes)\n- rcu: Eliminate rcu_gp_slow_unregister() false positive (git-fixes)\n- rcuscale: Move rcu_scale_writer() (git-fixes)\n- rdma/cxgb4: Prevent potential integer overflow on 32bit (git-fixes)\n- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).\n- regmap: Use correct format specifier for logging range errors (stable-fixes).\n- regulator: core: Add missing newline character (git-fixes).\n- regulator: of: Implement the unwind path of of_regulator_match() (git-fixes).\n- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).\n- remoteproc: core: Fix ida_free call while not allocated (git-fixes).\n- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).\n- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read (git-fixes).\n- rtc: zynqmp: Fix optional clock name property (git-fixes).\n- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).\n- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).\n- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).\n- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).\n- s390/facility: Disable compile time optimization for decompressor code (git-fixes).\n- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).\n- s390/pageattr: Implement missing kernel_page_present() (git-fixes).\n- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)\n- samples/landlock: Fix possible NULL dereference in parse_path() (git-fixes).\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat (bsc#1235865).\n- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat -kabi (bsc#1235865).\n- sched/numa: fix memory leak due to the overwritten vma-\u003enumab_state (git fixes (sched/numa)).\n- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).\n- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).\n- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).\n- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).\n- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).\n- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).\n- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).\n- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).\n- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).\n- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).\n- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).\n- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).\n- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).\n- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).\n- scsi: qla2xxx: Remove the unused \u0027del_list_entry\u0027 field in struct fc_port (bsc#1235406).\n- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).\n- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (git-fixes).\n- seccomp: Stub for !CONFIG_SECCOMP (stable-fixes).\n- selftest: media_tests: fix trivial UAF typo (git-fixes).\n- selftests/alsa: Fix circular dependency involving global-timer (stable-fixes).\n- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).\n- selftests/landlock: Fix error message (git-fixes).\n- selftests/mm/cow: modify the incorrect checking parameters (git-fixes).\n- selftests/powerpc: Fix argument order to timer_sub() (git-fixes).\n- selftests: harness: fix printing of mismatch values in __EXPECT() (git-fixes).\n- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).\n- selftests: tc-testing: reduce rshift value (stable-fixes).\n- selftests: timers: clocksource-switch: Adapt progress to kselftest framework (git-fixes).\n- selinux: Fix SCTP error inconsistency in selinux_socket_bind() (git-fixes).\n- serial: 8250: Adjust the timeout for FIFO mode (git-fixes).\n- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).\n- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).\n- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).\n- serial: 8250_fintek: Add support for F81216E (stable-fixes).\n- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).\n- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).\n- serial: amba-pl011: Use port lock wrappers (stable-fixes).\n- serial: amba-pl011: fix build regression (git-fixes).\n- serial: do not use uninitialized value in uart_poll_init() (git-fixes).\n- serial: imx: only set receiver level if it is zero (git-fixes).\n- serial: imx: set receiver level before starting uart (git-fixes).\n- serial: qcom-geni: Do not cancel/abort if we can\u0027t get the port lock (git-fixes).\n- serial: qcom-geni: disable interrupts during console writes (git-fixes).\n- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).\n- serial: qcom-geni: fix console corruption (git-fixes).\n- serial: qcom-geni: fix dma rx cancellation (git-fixes).\n- serial: qcom-geni: fix false console tx restart (git-fixes).\n- serial: qcom-geni: fix fifo polling timeout (git-fixes).\n- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).\n- serial: qcom-geni: fix polled console corruption (git-fixes).\n- serial: qcom-geni: fix polled console initialisation (git-fixes).\n- serial: qcom-geni: fix receiver enable (git-fixes).\n- serial: qcom-geni: fix shutdown race (git-fixes).\n- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).\n- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).\n- serial: qcom-geni: revert broken hibernation support (git-fixes).\n- serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use (git-fixes).\n- serial: sh-sci: Drop __initdata macro for port_cfg (git-fixes).\n- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).\n- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).\n- series.conf: temporarily disable upstream patch patches.suse/ocfs2-fix-UBSAN-warning-in-ocfs2_verify_volume.patch (bsc#1236138)\n- slub: Replace cmpxchg_double() (bsc#1220773).\n- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]\n- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).\n- soc: atmel: fix device_node release in atmel_soc_device_init() (git-fixes).\n- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).\n- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).\n- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).\n- soc: mediatek: mtk-devapc: Fix leaking IO map on error paths (git-fixes).\n- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).\n- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).\n- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).\n- soc: qcom: smem_state: fix missing of_node_put in error path (git-fixes).\n- soc: qcom: socinfo: Avoid out of bounds read of serial number (git-fixes).\n- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).\n- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).\n- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).\n- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).\n- spi: zynq-qspi: Add check for clk_enable() (git-fixes).\n- srcu: Fix srcu_struct node grpmask overflow on 64-bit systems (git-fixes)\n- srcu: Only accelerate on enqueue time (git-fixes)\n- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).\n- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).\n- staging: iio: ad9832: Correct phase range check (git-fixes).\n- staging: iio: ad9834: Correct phase range check (git-fixes).\n- staging: media: imx: fix OF node leak in imx_media_add_of_subdevs() (git-fixes).\n- staging: media: max96712: fix kernel oops when removing module (git-fixes).\n- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).\n- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).\n- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).\n- supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).\n- swiotlb: Reinstate page-alignment for mappings \u003e= PAGE_SIZE (git-fixes).\n- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).\n- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).\n- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).\n- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).\n- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).\n- tools: Sync if_xdp.h uapi tooling header (git-fixes).\n- tools: hv: change permissions of NetworkManager configuration file (git-fixes).\n- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).\n- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).\n- types: Introduce [us]128 (bsc#1220773).\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- ubifs: skip dumping tnc tree when zroot is null (git-fixes).\n- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).\n- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).\n- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).\n- udf: refactor inode_bmap() to handle error (bsc#1234242).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).\n- uio: Fix return value of poll (git-fixes).\n- uio: uio_dmem_genirq: check the return value of devm_kasprintf() (git-fixes).\n- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).\n- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).\n- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).\n- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).\n- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).\n- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).\n- usb: dwc2: Fix HCD port connection race (git-fixes).\n- usb: dwc2: Fix HCD resume (git-fixes).\n- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).\n- usb: dwc2: hcd: Fix GetPortStatus \u0026 SetPortFeature (git-fixes).\n- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).\n- usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk() (git-fixes).\n- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).\n- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).\n- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).\n- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).\n- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).\n- usb: fix reference leak in usb_new_device() (git-fixes).\n- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).\n- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).\n- usb: gadget: f_tcm: Decrement command ref count on cleanup (git-fixes).\n- usb: gadget: f_tcm: Do not free command immediately (git-fixes).\n- usb: gadget: f_tcm: Do not prepare BOT write request twice (git-fixes).\n- usb: gadget: f_tcm: Fix Get/SetInterface return value (git-fixes).\n- usb: gadget: f_tcm: Translate error to sense (git-fixes).\n- usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint (git-fixes).\n- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).\n- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).\n- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).\n- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).\n- usb: host: xhci-plat: Assign shared_hcd-\u003ersrc_start (git-fixes).\n- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).\n- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).\n- usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control() (bsc#1235001)\n- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).\n- usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE (git-fixes).\n- usb: typec: use cleanup facility for \u0027altmodes_node\u0027 (stable-fixes).\n- usbnet: ipheth: break up NCM header size computation (git-fixes).\n- usbnet: ipheth: check that DPE points past NCM header (git-fixes).\n- usbnet: ipheth: fix DPE OoB read (git-fixes).\n- usbnet: ipheth: fix possible overflow in DPE length check (git-fixes).\n- usbnet: ipheth: refactor NCM datagram loop (git-fixes).\n- usbnet: ipheth: use static NDP16 location in URB (git-fixes).\n- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).\n- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).\n- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).\n- vdpa: solidrun: Fix UB bug with devres (git-fixes).\n- vfs: fix readahead(2) on block devices (bsc#1234201).\n- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).\n- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).\n- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).\n- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).\n- wifi: ath11k: Fix unexpected return buffer manager error for WCN6750/WCN6855 (git-fixes).\n- wifi: ath11k: cleanup struct ath11k_mon_data (git-fixes).\n- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).\n- wifi: ath12k: fix tx power, max reg power update to firmware (git-fixes).\n- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).\n- wifi: ath5k: add PCI ID for SX76X (git-fixes).\n- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).\n- wifi: brcmfmac: add missing header include for brcmf_dbg (git-fixes).\n- wifi: cfg80211: adjust allocation of colocated AP data (git-fixes).\n- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).\n- wifi: cw1200: Fix potential NULL dereference (git-fixes).\n- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).\n- wifi: iwlwifi: fw: read STEP table from correct UEFI var (git-fixes).\n- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).\n- wifi: mac80211: Add non-atomic station iterator (stable-fixes).\n- wifi: mac80211: Fix common size calculation for ML element (git-fixes).\n- wifi: mac80211: clean up \u0027ret\u0027 in sta_link_apply_parameters() (stable-fixes).\n- wifi: mac80211: do not flush non-uploaded STAs (git-fixes).\n- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).\n- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).\n- wifi: mac80211: fix station NSS capability initialization order (git-fixes).\n- wifi: mac80211: fix tid removal during mesh forwarding (git-fixes).\n- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).\n- wifi: mac80211: prohibit deactivating all links (git-fixes).\n- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).\n- wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO (git-fixes).\n- wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC (git-fixes).\n- wifi: mt76: mt7915: add module param to select 5 GHz or 6 GHz on MT7916 (git-fixes).\n- wifi: mt76: mt7915: firmware restart on devices with a second pcie link (git-fixes).\n- wifi: mt76: mt7915: fix overflows seen when writing limit attributes (git-fixes).\n- wifi: mt76: mt7915: fix register mapping (git-fixes).\n- wifi: mt76: mt7921: fix using incorrect group cipher after disconnection (git-fixes).\n- wifi: mt76: mt7925: fix off by one in mt7925_load_clc() (git-fixes).\n- wifi: mt76: mt7996: add max mpdu len capability (git-fixes).\n- wifi: mt76: mt7996: fix HE Phy capability (git-fixes).\n- wifi: mt76: mt7996: fix definition of tx descriptor (git-fixes).\n- wifi: mt76: mt7996: fix incorrect indexing of MIB FW event (git-fixes).\n- wifi: mt76: mt7996: fix ldpc setting (git-fixes).\n- wifi: mt76: mt7996: fix overflows seen when writing limit attributes (git-fixes).\n- wifi: mt76: mt7996: fix register mapping (git-fixes).\n- wifi: mt76: mt7996: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU (git-fixes).\n- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).\n- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).\n- wifi: rtlwifi: destroy workqueue at rtl_deinit_core (git-fixes).\n- wifi: rtlwifi: do not complete firmware loading needlessly (git-fixes).\n- wifi: rtlwifi: fix init_sw_vars leak when probe fails (git-fixes).\n- wifi: rtlwifi: fix memory leaks and invalid access at probe error path (git-fixes).\n- wifi: rtlwifi: pci: wait for firmware loading before releasing memory (git-fixes).\n- wifi: rtlwifi: remove unused check_buddy_priv (git-fixes).\n- wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step (git-fixes).\n- wifi: rtlwifi: rtl8821ae: Fix media status report (git-fixes).\n- wifi: rtlwifi: rtl8821ae: phy: restore removed code to fix infinite loop (git-fixes).\n- wifi: rtlwifi: usb: fix workqueue leak when probe fails (git-fixes).\n- wifi: rtlwifi: wait for firmware loading before releasing memory (git-fixes).\n- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).\n- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).\n- wifi: rtw89: mcc: consider time limits not divisible by 1024 (git-fixes).\n- wifi: wcn36xx: fix channel survey memory allocation size (git-fixes).\n- wifi: wlcore: fix unbalanced pm_runtime calls (git-fixes).\n- workqueue: Add rcu lock check at the end of work item execution (bsc#1236732).\n- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).\n- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).\n- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).\n- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).\n- xfs: Add error handling for xfs_reflink_cancel_cow_range (git-fixes).\n- xfs: Propagate errors from xfs_reflink_cancel_cow_range in xfs_dax_write_iomap_end (git-fixes).\n- xfs: do not allocate COW extents when unsharing a hole (git-fixes).\n- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).\n- xfs: remove unknown compat feature check in superblock write validation (git-fixes).\n- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).\n- xfs: sb_spino_align is not verified (git-fixes).\n- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).\n- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).\n- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-kernel-4",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20166-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20166-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520166-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20166-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021176.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1065729",
"url": "https://bugzilla.suse.com/1065729"
},
{
"category": "self",
"summary": "SUSE Bug 1181674",
"url": "https://bugzilla.suse.com/1181674"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1207948",
"url": "https://bugzilla.suse.com/1207948"
},
{
"category": "self",
"summary": "SUSE Bug 1214954",
"url": "https://bugzilla.suse.com/1214954"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216702",
"url": "https://bugzilla.suse.com/1216702"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1218470",
"url": "https://bugzilla.suse.com/1218470"
},
{
"category": "self",
"summary": "SUSE Bug 1219170",
"url": "https://bugzilla.suse.com/1219170"
},
{
"category": "self",
"summary": "SUSE Bug 1219596",
"url": "https://bugzilla.suse.com/1219596"
},
{
"category": "self",
"summary": "SUSE Bug 1220021",
"url": "https://bugzilla.suse.com/1220021"
},
{
"category": "self",
"summary": "SUSE Bug 1220328",
"url": "https://bugzilla.suse.com/1220328"
},
{
"category": "self",
"summary": "SUSE Bug 1220430",
"url": "https://bugzilla.suse.com/1220430"
},
{
"category": "self",
"summary": "SUSE Bug 1220711",
"url": "https://bugzilla.suse.com/1220711"
},
{
"category": "self",
"summary": "SUSE Bug 1220773",
"url": "https://bugzilla.suse.com/1220773"
},
{
"category": "self",
"summary": "SUSE Bug 1221044",
"url": "https://bugzilla.suse.com/1221044"
},
{
"category": "self",
"summary": "SUSE Bug 1221303",
"url": "https://bugzilla.suse.com/1221303"
},
{
"category": "self",
"summary": "SUSE Bug 1221858",
"url": "https://bugzilla.suse.com/1221858"
},
{
"category": "self",
"summary": "SUSE Bug 1222426",
"url": "https://bugzilla.suse.com/1222426"
},
{
"category": "self",
"summary": "SUSE Bug 1222608",
"url": "https://bugzilla.suse.com/1222608"
},
{
"category": "self",
"summary": "SUSE Bug 1222721",
"url": "https://bugzilla.suse.com/1222721"
},
{
"category": "self",
"summary": "SUSE Bug 1222775",
"url": "https://bugzilla.suse.com/1222775"
},
{
"category": "self",
"summary": "SUSE Bug 1222780",
"url": "https://bugzilla.suse.com/1222780"
},
{
"category": "self",
"summary": "SUSE Bug 1223020",
"url": "https://bugzilla.suse.com/1223020"
},
{
"category": "self",
"summary": "SUSE Bug 1223023",
"url": "https://bugzilla.suse.com/1223023"
},
{
"category": "self",
"summary": "SUSE Bug 1223024",
"url": "https://bugzilla.suse.com/1223024"
},
{
"category": "self",
"summary": "SUSE Bug 1223038",
"url": "https://bugzilla.suse.com/1223038"
},
{
"category": "self",
"summary": "SUSE Bug 1223039",
"url": "https://bugzilla.suse.com/1223039"
},
{
"category": "self",
"summary": "SUSE Bug 1223041",
"url": "https://bugzilla.suse.com/1223041"
},
{
"category": "self",
"summary": "SUSE Bug 1223046",
"url": "https://bugzilla.suse.com/1223046"
},
{
"category": "self",
"summary": "SUSE Bug 1223051",
"url": "https://bugzilla.suse.com/1223051"
},
{
"category": "self",
"summary": "SUSE Bug 1223052",
"url": "https://bugzilla.suse.com/1223052"
},
{
"category": "self",
"summary": "SUSE Bug 1223058",
"url": "https://bugzilla.suse.com/1223058"
},
{
"category": "self",
"summary": "SUSE Bug 1223061",
"url": "https://bugzilla.suse.com/1223061"
},
{
"category": "self",
"summary": "SUSE Bug 1223076",
"url": "https://bugzilla.suse.com/1223076"
},
{
"category": "self",
"summary": "SUSE Bug 1223113",
"url": "https://bugzilla.suse.com/1223113"
},
{
"category": "self",
"summary": "SUSE Bug 1223187",
"url": "https://bugzilla.suse.com/1223187"
},
{
"category": "self",
"summary": "SUSE Bug 1223285",
"url": "https://bugzilla.suse.com/1223285"
},
{
"category": "self",
"summary": "SUSE Bug 1223315",
"url": "https://bugzilla.suse.com/1223315"
},
{
"category": "self",
"summary": "SUSE Bug 1223591",
"url": "https://bugzilla.suse.com/1223591"
},
{
"category": "self",
"summary": "SUSE Bug 1223592",
"url": "https://bugzilla.suse.com/1223592"
},
{
"category": "self",
"summary": "SUSE Bug 1223633",
"url": "https://bugzilla.suse.com/1223633"
},
{
"category": "self",
"summary": "SUSE Bug 1223637",
"url": "https://bugzilla.suse.com/1223637"
},
{
"category": "self",
"summary": "SUSE Bug 1223641",
"url": "https://bugzilla.suse.com/1223641"
},
{
"category": "self",
"summary": "SUSE Bug 1223649",
"url": "https://bugzilla.suse.com/1223649"
},
{
"category": "self",
"summary": "SUSE Bug 1223650",
"url": "https://bugzilla.suse.com/1223650"
},
{
"category": "self",
"summary": "SUSE Bug 1223651",
"url": "https://bugzilla.suse.com/1223651"
},
{
"category": "self",
"summary": "SUSE Bug 1223652",
"url": "https://bugzilla.suse.com/1223652"
},
{
"category": "self",
"summary": "SUSE Bug 1223654",
"url": "https://bugzilla.suse.com/1223654"
},
{
"category": "self",
"summary": "SUSE Bug 1223660",
"url": "https://bugzilla.suse.com/1223660"
},
{
"category": "self",
"summary": "SUSE Bug 1223661",
"url": "https://bugzilla.suse.com/1223661"
},
{
"category": "self",
"summary": "SUSE Bug 1223665",
"url": "https://bugzilla.suse.com/1223665"
},
{
"category": "self",
"summary": "SUSE Bug 1223666",
"url": "https://bugzilla.suse.com/1223666"
},
{
"category": "self",
"summary": "SUSE Bug 1223671",
"url": "https://bugzilla.suse.com/1223671"
},
{
"category": "self",
"summary": "SUSE Bug 1223675",
"url": "https://bugzilla.suse.com/1223675"
},
{
"category": "self",
"summary": "SUSE Bug 1223677",
"url": "https://bugzilla.suse.com/1223677"
},
{
"category": "self",
"summary": "SUSE Bug 1223678",
"url": "https://bugzilla.suse.com/1223678"
},
{
"category": "self",
"summary": "SUSE Bug 1223696",
"url": "https://bugzilla.suse.com/1223696"
},
{
"category": "self",
"summary": "SUSE Bug 1223698",
"url": "https://bugzilla.suse.com/1223698"
},
{
"category": "self",
"summary": "SUSE Bug 1223705",
"url": "https://bugzilla.suse.com/1223705"
},
{
"category": "self",
"summary": "SUSE Bug 1223712",
"url": "https://bugzilla.suse.com/1223712"
},
{
"category": "self",
"summary": "SUSE Bug 1223718",
"url": "https://bugzilla.suse.com/1223718"
},
{
"category": "self",
"summary": "SUSE Bug 1223728",
"url": "https://bugzilla.suse.com/1223728"
},
{
"category": "self",
"summary": "SUSE Bug 1223739",
"url": "https://bugzilla.suse.com/1223739"
},
{
"category": "self",
"summary": "SUSE Bug 1223741",
"url": "https://bugzilla.suse.com/1223741"
},
{
"category": "self",
"summary": "SUSE Bug 1223744",
"url": "https://bugzilla.suse.com/1223744"
},
{
"category": "self",
"summary": "SUSE Bug 1223747",
"url": "https://bugzilla.suse.com/1223747"
},
{
"category": "self",
"summary": "SUSE Bug 1223748",
"url": "https://bugzilla.suse.com/1223748"
},
{
"category": "self",
"summary": "SUSE Bug 1223750",
"url": "https://bugzilla.suse.com/1223750"
},
{
"category": "self",
"summary": "SUSE Bug 1223752",
"url": "https://bugzilla.suse.com/1223752"
},
{
"category": "self",
"summary": "SUSE Bug 1223754",
"url": "https://bugzilla.suse.com/1223754"
},
{
"category": "self",
"summary": "SUSE Bug 1223757",
"url": "https://bugzilla.suse.com/1223757"
},
{
"category": "self",
"summary": "SUSE Bug 1223759",
"url": "https://bugzilla.suse.com/1223759"
},
{
"category": "self",
"summary": "SUSE Bug 1223761",
"url": "https://bugzilla.suse.com/1223761"
},
{
"category": "self",
"summary": "SUSE Bug 1223762",
"url": "https://bugzilla.suse.com/1223762"
},
{
"category": "self",
"summary": "SUSE Bug 1223782",
"url": "https://bugzilla.suse.com/1223782"
},
{
"category": "self",
"summary": "SUSE Bug 1223787",
"url": "https://bugzilla.suse.com/1223787"
},
{
"category": "self",
"summary": "SUSE Bug 1223788",
"url": "https://bugzilla.suse.com/1223788"
},
{
"category": "self",
"summary": "SUSE Bug 1223789",
"url": "https://bugzilla.suse.com/1223789"
},
{
"category": "self",
"summary": "SUSE Bug 1223790",
"url": "https://bugzilla.suse.com/1223790"
},
{
"category": "self",
"summary": "SUSE Bug 1223802",
"url": "https://bugzilla.suse.com/1223802"
},
{
"category": "self",
"summary": "SUSE Bug 1223805",
"url": "https://bugzilla.suse.com/1223805"
},
{
"category": "self",
"summary": "SUSE Bug 1223827",
"url": "https://bugzilla.suse.com/1223827"
},
{
"category": "self",
"summary": "SUSE Bug 1223831",
"url": "https://bugzilla.suse.com/1223831"
},
{
"category": "self",
"summary": "SUSE Bug 1223834",
"url": "https://bugzilla.suse.com/1223834"
},
{
"category": "self",
"summary": "SUSE Bug 1223869",
"url": "https://bugzilla.suse.com/1223869"
},
{
"category": "self",
"summary": "SUSE Bug 1223874",
"url": "https://bugzilla.suse.com/1223874"
},
{
"category": "self",
"summary": "SUSE Bug 1224095",
"url": "https://bugzilla.suse.com/1224095"
},
{
"category": "self",
"summary": "SUSE Bug 1224174",
"url": "https://bugzilla.suse.com/1224174"
},
{
"category": "self",
"summary": "SUSE Bug 1224177",
"url": "https://bugzilla.suse.com/1224177"
},
{
"category": "self",
"summary": "SUSE Bug 1224180",
"url": "https://bugzilla.suse.com/1224180"
},
{
"category": "self",
"summary": "SUSE Bug 1224423",
"url": "https://bugzilla.suse.com/1224423"
},
{
"category": "self",
"summary": "SUSE Bug 1224432",
"url": "https://bugzilla.suse.com/1224432"
},
{
"category": "self",
"summary": "SUSE Bug 1224433",
"url": "https://bugzilla.suse.com/1224433"
},
{
"category": "self",
"summary": "SUSE Bug 1224437",
"url": "https://bugzilla.suse.com/1224437"
},
{
"category": "self",
"summary": "SUSE Bug 1224438",
"url": "https://bugzilla.suse.com/1224438"
},
{
"category": "self",
"summary": "SUSE Bug 1224443",
"url": "https://bugzilla.suse.com/1224443"
},
{
"category": "self",
"summary": "SUSE Bug 1224445",
"url": "https://bugzilla.suse.com/1224445"
},
{
"category": "self",
"summary": "SUSE Bug 1224449",
"url": "https://bugzilla.suse.com/1224449"
},
{
"category": "self",
"summary": "SUSE Bug 1224479",
"url": "https://bugzilla.suse.com/1224479"
},
{
"category": "self",
"summary": "SUSE Bug 1224480",
"url": "https://bugzilla.suse.com/1224480"
},
{
"category": "self",
"summary": "SUSE Bug 1224482",
"url": "https://bugzilla.suse.com/1224482"
},
{
"category": "self",
"summary": "SUSE Bug 1224486",
"url": "https://bugzilla.suse.com/1224486"
},
{
"category": "self",
"summary": "SUSE Bug 1224487",
"url": "https://bugzilla.suse.com/1224487"
},
{
"category": "self",
"summary": "SUSE Bug 1224491",
"url": "https://bugzilla.suse.com/1224491"
},
{
"category": "self",
"summary": "SUSE Bug 1224492",
"url": "https://bugzilla.suse.com/1224492"
},
{
"category": "self",
"summary": "SUSE Bug 1224494",
"url": "https://bugzilla.suse.com/1224494"
},
{
"category": "self",
"summary": "SUSE Bug 1224495",
"url": "https://bugzilla.suse.com/1224495"
},
{
"category": "self",
"summary": "SUSE Bug 1224500",
"url": "https://bugzilla.suse.com/1224500"
},
{
"category": "self",
"summary": "SUSE Bug 1224501",
"url": "https://bugzilla.suse.com/1224501"
},
{
"category": "self",
"summary": "SUSE Bug 1224504",
"url": "https://bugzilla.suse.com/1224504"
},
{
"category": "self",
"summary": "SUSE Bug 1224505",
"url": "https://bugzilla.suse.com/1224505"
},
{
"category": "self",
"summary": "SUSE Bug 1224506",
"url": "https://bugzilla.suse.com/1224506"
},
{
"category": "self",
"summary": "SUSE Bug 1224507",
"url": "https://bugzilla.suse.com/1224507"
},
{
"category": "self",
"summary": "SUSE Bug 1224508",
"url": "https://bugzilla.suse.com/1224508"
},
{
"category": "self",
"summary": "SUSE Bug 1224509",
"url": "https://bugzilla.suse.com/1224509"
},
{
"category": "self",
"summary": "SUSE Bug 1224513",
"url": "https://bugzilla.suse.com/1224513"
},
{
"category": "self",
"summary": "SUSE Bug 1224517",
"url": "https://bugzilla.suse.com/1224517"
},
{
"category": "self",
"summary": "SUSE Bug 1224519",
"url": "https://bugzilla.suse.com/1224519"
},
{
"category": "self",
"summary": "SUSE Bug 1224521",
"url": "https://bugzilla.suse.com/1224521"
},
{
"category": "self",
"summary": "SUSE Bug 1224524",
"url": "https://bugzilla.suse.com/1224524"
},
{
"category": "self",
"summary": "SUSE Bug 1224526",
"url": "https://bugzilla.suse.com/1224526"
},
{
"category": "self",
"summary": "SUSE Bug 1224537",
"url": "https://bugzilla.suse.com/1224537"
},
{
"category": "self",
"summary": "SUSE Bug 1224542",
"url": "https://bugzilla.suse.com/1224542"
},
{
"category": "self",
"summary": "SUSE Bug 1224546",
"url": "https://bugzilla.suse.com/1224546"
},
{
"category": "self",
"summary": "SUSE Bug 1224552",
"url": "https://bugzilla.suse.com/1224552"
},
{
"category": "self",
"summary": "SUSE Bug 1224555",
"url": "https://bugzilla.suse.com/1224555"
},
{
"category": "self",
"summary": "SUSE Bug 1224557",
"url": "https://bugzilla.suse.com/1224557"
},
{
"category": "self",
"summary": "SUSE Bug 1224558",
"url": "https://bugzilla.suse.com/1224558"
},
{
"category": "self",
"summary": "SUSE Bug 1224559",
"url": "https://bugzilla.suse.com/1224559"
},
{
"category": "self",
"summary": "SUSE Bug 1224562",
"url": "https://bugzilla.suse.com/1224562"
},
{
"category": "self",
"summary": "SUSE Bug 1224566",
"url": "https://bugzilla.suse.com/1224566"
},
{
"category": "self",
"summary": "SUSE Bug 1224567",
"url": "https://bugzilla.suse.com/1224567"
},
{
"category": "self",
"summary": "SUSE Bug 1224568",
"url": "https://bugzilla.suse.com/1224568"
},
{
"category": "self",
"summary": "SUSE Bug 1224569",
"url": "https://bugzilla.suse.com/1224569"
},
{
"category": "self",
"summary": "SUSE Bug 1224571",
"url": "https://bugzilla.suse.com/1224571"
},
{
"category": "self",
"summary": "SUSE Bug 1224573",
"url": "https://bugzilla.suse.com/1224573"
},
{
"category": "self",
"summary": "SUSE Bug 1224576",
"url": "https://bugzilla.suse.com/1224576"
},
{
"category": "self",
"summary": "SUSE Bug 1224577",
"url": "https://bugzilla.suse.com/1224577"
},
{
"category": "self",
"summary": "SUSE Bug 1224578",
"url": "https://bugzilla.suse.com/1224578"
},
{
"category": "self",
"summary": "SUSE Bug 1224579",
"url": "https://bugzilla.suse.com/1224579"
},
{
"category": "self",
"summary": "SUSE Bug 1224582",
"url": "https://bugzilla.suse.com/1224582"
},
{
"category": "self",
"summary": "SUSE Bug 1224585",
"url": "https://bugzilla.suse.com/1224585"
},
{
"category": "self",
"summary": "SUSE Bug 1224586",
"url": "https://bugzilla.suse.com/1224586"
},
{
"category": "self",
"summary": "SUSE Bug 1224587",
"url": "https://bugzilla.suse.com/1224587"
},
{
"category": "self",
"summary": "SUSE Bug 1224588",
"url": "https://bugzilla.suse.com/1224588"
},
{
"category": "self",
"summary": "SUSE Bug 1224592",
"url": "https://bugzilla.suse.com/1224592"
},
{
"category": "self",
"summary": "SUSE Bug 1224596",
"url": "https://bugzilla.suse.com/1224596"
},
{
"category": "self",
"summary": "SUSE Bug 1224598",
"url": "https://bugzilla.suse.com/1224598"
},
{
"category": "self",
"summary": "SUSE Bug 1224600",
"url": "https://bugzilla.suse.com/1224600"
},
{
"category": "self",
"summary": "SUSE Bug 1224601",
"url": "https://bugzilla.suse.com/1224601"
},
{
"category": "self",
"summary": "SUSE Bug 1224603",
"url": "https://bugzilla.suse.com/1224603"
},
{
"category": "self",
"summary": "SUSE Bug 1224605",
"url": "https://bugzilla.suse.com/1224605"
},
{
"category": "self",
"summary": "SUSE Bug 1224607",
"url": "https://bugzilla.suse.com/1224607"
},
{
"category": "self",
"summary": "SUSE Bug 1224609",
"url": "https://bugzilla.suse.com/1224609"
},
{
"category": "self",
"summary": "SUSE Bug 1224611",
"url": "https://bugzilla.suse.com/1224611"
},
{
"category": "self",
"summary": "SUSE Bug 1224613",
"url": "https://bugzilla.suse.com/1224613"
},
{
"category": "self",
"summary": "SUSE Bug 1224615",
"url": "https://bugzilla.suse.com/1224615"
},
{
"category": "self",
"summary": "SUSE Bug 1224617",
"url": "https://bugzilla.suse.com/1224617"
},
{
"category": "self",
"summary": "SUSE Bug 1224618",
"url": "https://bugzilla.suse.com/1224618"
},
{
"category": "self",
"summary": "SUSE Bug 1224620",
"url": "https://bugzilla.suse.com/1224620"
},
{
"category": "self",
"summary": "SUSE Bug 1224622",
"url": "https://bugzilla.suse.com/1224622"
},
{
"category": "self",
"summary": "SUSE Bug 1224623",
"url": "https://bugzilla.suse.com/1224623"
},
{
"category": "self",
"summary": "SUSE Bug 1224624",
"url": "https://bugzilla.suse.com/1224624"
},
{
"category": "self",
"summary": "SUSE Bug 1224626",
"url": "https://bugzilla.suse.com/1224626"
},
{
"category": "self",
"summary": "SUSE Bug 1224627",
"url": "https://bugzilla.suse.com/1224627"
},
{
"category": "self",
"summary": "SUSE Bug 1224629",
"url": "https://bugzilla.suse.com/1224629"
},
{
"category": "self",
"summary": "SUSE Bug 1224630",
"url": "https://bugzilla.suse.com/1224630"
},
{
"category": "self",
"summary": "SUSE Bug 1224632",
"url": "https://bugzilla.suse.com/1224632"
},
{
"category": "self",
"summary": "SUSE Bug 1224633",
"url": "https://bugzilla.suse.com/1224633"
},
{
"category": "self",
"summary": "SUSE Bug 1224634",
"url": "https://bugzilla.suse.com/1224634"
},
{
"category": "self",
"summary": "SUSE Bug 1224637",
"url": "https://bugzilla.suse.com/1224637"
},
{
"category": "self",
"summary": "SUSE Bug 1224639",
"url": "https://bugzilla.suse.com/1224639"
},
{
"category": "self",
"summary": "SUSE Bug 1224640",
"url": "https://bugzilla.suse.com/1224640"
},
{
"category": "self",
"summary": "SUSE Bug 1224643",
"url": "https://bugzilla.suse.com/1224643"
},
{
"category": "self",
"summary": "SUSE Bug 1224644",
"url": "https://bugzilla.suse.com/1224644"
},
{
"category": "self",
"summary": "SUSE Bug 1224646",
"url": "https://bugzilla.suse.com/1224646"
},
{
"category": "self",
"summary": "SUSE Bug 1224647",
"url": "https://bugzilla.suse.com/1224647"
},
{
"category": "self",
"summary": "SUSE Bug 1224650",
"url": "https://bugzilla.suse.com/1224650"
},
{
"category": "self",
"summary": "SUSE Bug 1224651",
"url": "https://bugzilla.suse.com/1224651"
},
{
"category": "self",
"summary": "SUSE Bug 1224653",
"url": "https://bugzilla.suse.com/1224653"
},
{
"category": "self",
"summary": "SUSE Bug 1224654",
"url": "https://bugzilla.suse.com/1224654"
},
{
"category": "self",
"summary": "SUSE Bug 1224657",
"url": "https://bugzilla.suse.com/1224657"
},
{
"category": "self",
"summary": "SUSE Bug 1224660",
"url": "https://bugzilla.suse.com/1224660"
},
{
"category": "self",
"summary": "SUSE Bug 1224663",
"url": "https://bugzilla.suse.com/1224663"
},
{
"category": "self",
"summary": "SUSE Bug 1224665",
"url": "https://bugzilla.suse.com/1224665"
},
{
"category": "self",
"summary": "SUSE Bug 1224666",
"url": "https://bugzilla.suse.com/1224666"
},
{
"category": "self",
"summary": "SUSE Bug 1224671",
"url": "https://bugzilla.suse.com/1224671"
},
{
"category": "self",
"summary": "SUSE Bug 1224675",
"url": "https://bugzilla.suse.com/1224675"
},
{
"category": "self",
"summary": "SUSE Bug 1224676",
"url": "https://bugzilla.suse.com/1224676"
},
{
"category": "self",
"summary": "SUSE Bug 1224677",
"url": "https://bugzilla.suse.com/1224677"
},
{
"category": "self",
"summary": "SUSE Bug 1224680",
"url": "https://bugzilla.suse.com/1224680"
},
{
"category": "self",
"summary": "SUSE Bug 1224681",
"url": "https://bugzilla.suse.com/1224681"
},
{
"category": "self",
"summary": "SUSE Bug 1224682",
"url": "https://bugzilla.suse.com/1224682"
},
{
"category": "self",
"summary": "SUSE Bug 1224683",
"url": "https://bugzilla.suse.com/1224683"
},
{
"category": "self",
"summary": "SUSE Bug 1224685",
"url": "https://bugzilla.suse.com/1224685"
},
{
"category": "self",
"summary": "SUSE Bug 1224686",
"url": "https://bugzilla.suse.com/1224686"
},
{
"category": "self",
"summary": "SUSE Bug 1224687",
"url": "https://bugzilla.suse.com/1224687"
},
{
"category": "self",
"summary": "SUSE Bug 1224688",
"url": "https://bugzilla.suse.com/1224688"
},
{
"category": "self",
"summary": "SUSE Bug 1224692",
"url": "https://bugzilla.suse.com/1224692"
},
{
"category": "self",
"summary": "SUSE Bug 1224696",
"url": "https://bugzilla.suse.com/1224696"
},
{
"category": "self",
"summary": "SUSE Bug 1224697",
"url": "https://bugzilla.suse.com/1224697"
},
{
"category": "self",
"summary": "SUSE Bug 1224699",
"url": "https://bugzilla.suse.com/1224699"
},
{
"category": "self",
"summary": "SUSE Bug 1224701",
"url": "https://bugzilla.suse.com/1224701"
},
{
"category": "self",
"summary": "SUSE Bug 1224703",
"url": "https://bugzilla.suse.com/1224703"
},
{
"category": "self",
"summary": "SUSE Bug 1224704",
"url": "https://bugzilla.suse.com/1224704"
},
{
"category": "self",
"summary": "SUSE Bug 1224705",
"url": "https://bugzilla.suse.com/1224705"
},
{
"category": "self",
"summary": "SUSE Bug 1224706",
"url": "https://bugzilla.suse.com/1224706"
},
{
"category": "self",
"summary": "SUSE Bug 1224707",
"url": "https://bugzilla.suse.com/1224707"
},
{
"category": "self",
"summary": "SUSE Bug 1224709",
"url": "https://bugzilla.suse.com/1224709"
},
{
"category": "self",
"summary": "SUSE Bug 1224710",
"url": "https://bugzilla.suse.com/1224710"
},
{
"category": "self",
"summary": "SUSE Bug 1224712",
"url": "https://bugzilla.suse.com/1224712"
},
{
"category": "self",
"summary": "SUSE Bug 1224714",
"url": "https://bugzilla.suse.com/1224714"
},
{
"category": "self",
"summary": "SUSE Bug 1224716",
"url": "https://bugzilla.suse.com/1224716"
},
{
"category": "self",
"summary": "SUSE Bug 1224717",
"url": "https://bugzilla.suse.com/1224717"
},
{
"category": "self",
"summary": "SUSE Bug 1224719",
"url": "https://bugzilla.suse.com/1224719"
},
{
"category": "self",
"summary": "SUSE Bug 1224722",
"url": "https://bugzilla.suse.com/1224722"
},
{
"category": "self",
"summary": "SUSE Bug 1224723",
"url": "https://bugzilla.suse.com/1224723"
},
{
"category": "self",
"summary": "SUSE Bug 1224726",
"url": "https://bugzilla.suse.com/1224726"
},
{
"category": "self",
"summary": "SUSE Bug 1224728",
"url": "https://bugzilla.suse.com/1224728"
},
{
"category": "self",
"summary": "SUSE Bug 1224729",
"url": "https://bugzilla.suse.com/1224729"
},
{
"category": "self",
"summary": "SUSE Bug 1224730",
"url": "https://bugzilla.suse.com/1224730"
},
{
"category": "self",
"summary": "SUSE Bug 1224731",
"url": "https://bugzilla.suse.com/1224731"
},
{
"category": "self",
"summary": "SUSE Bug 1224732",
"url": "https://bugzilla.suse.com/1224732"
},
{
"category": "self",
"summary": "SUSE Bug 1224733",
"url": "https://bugzilla.suse.com/1224733"
},
{
"category": "self",
"summary": "SUSE Bug 1224736",
"url": "https://bugzilla.suse.com/1224736"
},
{
"category": "self",
"summary": "SUSE Bug 1224738",
"url": "https://bugzilla.suse.com/1224738"
},
{
"category": "self",
"summary": "SUSE Bug 1224739",
"url": "https://bugzilla.suse.com/1224739"
},
{
"category": "self",
"summary": "SUSE Bug 1224740",
"url": "https://bugzilla.suse.com/1224740"
},
{
"category": "self",
"summary": "SUSE Bug 1224741",
"url": "https://bugzilla.suse.com/1224741"
},
{
"category": "self",
"summary": "SUSE Bug 1224747",
"url": "https://bugzilla.suse.com/1224747"
},
{
"category": "self",
"summary": "SUSE Bug 1224749",
"url": "https://bugzilla.suse.com/1224749"
},
{
"category": "self",
"summary": "SUSE Bug 1224803",
"url": "https://bugzilla.suse.com/1224803"
},
{
"category": "self",
"summary": "SUSE Bug 1224804",
"url": "https://bugzilla.suse.com/1224804"
},
{
"category": "self",
"summary": "SUSE Bug 1225502",
"url": "https://bugzilla.suse.com/1225502"
},
{
"category": "self",
"summary": "SUSE Bug 1225579",
"url": "https://bugzilla.suse.com/1225579"
},
{
"category": "self",
"summary": "SUSE Bug 1225593",
"url": "https://bugzilla.suse.com/1225593"
},
{
"category": "self",
"summary": "SUSE Bug 1225692",
"url": "https://bugzilla.suse.com/1225692"
},
{
"category": "self",
"summary": "SUSE Bug 1225694",
"url": "https://bugzilla.suse.com/1225694"
},
{
"category": "self",
"summary": "SUSE Bug 1225695",
"url": "https://bugzilla.suse.com/1225695"
},
{
"category": "self",
"summary": "SUSE Bug 1225698",
"url": "https://bugzilla.suse.com/1225698"
},
{
"category": "self",
"summary": "SUSE Bug 1225699",
"url": "https://bugzilla.suse.com/1225699"
},
{
"category": "self",
"summary": "SUSE Bug 1225704",
"url": "https://bugzilla.suse.com/1225704"
},
{
"category": "self",
"summary": "SUSE Bug 1225705",
"url": "https://bugzilla.suse.com/1225705"
},
{
"category": "self",
"summary": "SUSE Bug 1225708",
"url": "https://bugzilla.suse.com/1225708"
},
{
"category": "self",
"summary": "SUSE Bug 1225710",
"url": "https://bugzilla.suse.com/1225710"
},
{
"category": "self",
"summary": "SUSE Bug 1225715",
"url": "https://bugzilla.suse.com/1225715"
},
{
"category": "self",
"summary": "SUSE Bug 1225720",
"url": "https://bugzilla.suse.com/1225720"
},
{
"category": "self",
"summary": "SUSE Bug 1225722",
"url": "https://bugzilla.suse.com/1225722"
},
{
"category": "self",
"summary": "SUSE Bug 1225728",
"url": "https://bugzilla.suse.com/1225728"
},
{
"category": "self",
"summary": "SUSE Bug 1225734",
"url": "https://bugzilla.suse.com/1225734"
},
{
"category": "self",
"summary": "SUSE Bug 1225735",
"url": "https://bugzilla.suse.com/1225735"
},
{
"category": "self",
"summary": "SUSE Bug 1225736",
"url": "https://bugzilla.suse.com/1225736"
},
{
"category": "self",
"summary": "SUSE Bug 1225743",
"url": "https://bugzilla.suse.com/1225743"
},
{
"category": "self",
"summary": "SUSE Bug 1225747",
"url": "https://bugzilla.suse.com/1225747"
},
{
"category": "self",
"summary": "SUSE Bug 1225748",
"url": "https://bugzilla.suse.com/1225748"
},
{
"category": "self",
"summary": "SUSE Bug 1225749",
"url": "https://bugzilla.suse.com/1225749"
},
{
"category": "self",
"summary": "SUSE Bug 1225750",
"url": "https://bugzilla.suse.com/1225750"
},
{
"category": "self",
"summary": "SUSE Bug 1225769",
"url": "https://bugzilla.suse.com/1225769"
},
{
"category": "self",
"summary": "SUSE Bug 1225775",
"url": "https://bugzilla.suse.com/1225775"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1225897",
"url": "https://bugzilla.suse.com/1225897"
},
{
"category": "self",
"summary": "SUSE Bug 1226980",
"url": "https://bugzilla.suse.com/1226980"
},
{
"category": "self",
"summary": "SUSE Bug 1227445",
"url": "https://bugzilla.suse.com/1227445"
},
{
"category": "self",
"summary": "SUSE Bug 1228526",
"url": "https://bugzilla.suse.com/1228526"
},
{
"category": "self",
"summary": "SUSE Bug 1228592",
"url": "https://bugzilla.suse.com/1228592"
},
{
"category": "self",
"summary": "SUSE Bug 1229025",
"url": "https://bugzilla.suse.com/1229025"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1229833",
"url": "https://bugzilla.suse.com/1229833"
},
{
"category": "self",
"summary": "SUSE Bug 1230205",
"url": "https://bugzilla.suse.com/1230205"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231016",
"url": "https://bugzilla.suse.com/1231016"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1231909",
"url": "https://bugzilla.suse.com/1231909"
},
{
"category": "self",
"summary": "SUSE Bug 1231963",
"url": "https://bugzilla.suse.com/1231963"
},
{
"category": "self",
"summary": "SUSE Bug 1232087",
"url": "https://bugzilla.suse.com/1232087"
},
{
"category": "self",
"summary": "SUSE Bug 1232101",
"url": "https://bugzilla.suse.com/1232101"
},
{
"category": "self",
"summary": "SUSE Bug 1232158",
"url": "https://bugzilla.suse.com/1232158"
},
{
"category": "self",
"summary": "SUSE Bug 1232161",
"url": "https://bugzilla.suse.com/1232161"
},
{
"category": "self",
"summary": "SUSE Bug 1232193",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232418",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232420",
"url": "https://bugzilla.suse.com/1232420"
},
{
"category": "self",
"summary": "SUSE Bug 1232421",
"url": "https://bugzilla.suse.com/1232421"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232882",
"url": "https://bugzilla.suse.com/1232882"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233055",
"url": "https://bugzilla.suse.com/1233055"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233112",
"url": "https://bugzilla.suse.com/1233112"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233204",
"url": "https://bugzilla.suse.com/1233204"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233259",
"url": "https://bugzilla.suse.com/1233259"
},
{
"category": "self",
"summary": "SUSE Bug 1233260",
"url": "https://bugzilla.suse.com/1233260"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233328",
"url": "https://bugzilla.suse.com/1233328"
},
{
"category": "self",
"summary": "SUSE Bug 1233461",
"url": "https://bugzilla.suse.com/1233461"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233488",
"url": "https://bugzilla.suse.com/1233488"
},
{
"category": "self",
"summary": "SUSE Bug 1233546",
"url": "https://bugzilla.suse.com/1233546"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233638",
"url": "https://bugzilla.suse.com/1233638"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233772",
"url": "https://bugzilla.suse.com/1233772"
},
{
"category": "self",
"summary": "SUSE Bug 1233778",
"url": "https://bugzilla.suse.com/1233778"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234024",
"url": "https://bugzilla.suse.com/1234024"
},
{
"category": "self",
"summary": "SUSE Bug 1234069",
"url": "https://bugzilla.suse.com/1234069"
},
{
"category": "self",
"summary": "SUSE Bug 1234071",
"url": "https://bugzilla.suse.com/1234071"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234079",
"url": "https://bugzilla.suse.com/1234079"
},
{
"category": "self",
"summary": "SUSE Bug 1234086",
"url": "https://bugzilla.suse.com/1234086"
},
{
"category": "self",
"summary": "SUSE Bug 1234139",
"url": "https://bugzilla.suse.com/1234139"
},
{
"category": "self",
"summary": "SUSE Bug 1234140",
"url": "https://bugzilla.suse.com/1234140"
},
{
"category": "self",
"summary": "SUSE Bug 1234141",
"url": "https://bugzilla.suse.com/1234141"
},
{
"category": "self",
"summary": "SUSE Bug 1234142",
"url": "https://bugzilla.suse.com/1234142"
},
{
"category": "self",
"summary": "SUSE Bug 1234143",
"url": "https://bugzilla.suse.com/1234143"
},
{
"category": "self",
"summary": "SUSE Bug 1234144",
"url": "https://bugzilla.suse.com/1234144"
},
{
"category": "self",
"summary": "SUSE Bug 1234145",
"url": "https://bugzilla.suse.com/1234145"
},
{
"category": "self",
"summary": "SUSE Bug 1234146",
"url": "https://bugzilla.suse.com/1234146"
},
{
"category": "self",
"summary": "SUSE Bug 1234147",
"url": "https://bugzilla.suse.com/1234147"
},
{
"category": "self",
"summary": "SUSE Bug 1234148",
"url": "https://bugzilla.suse.com/1234148"
},
{
"category": "self",
"summary": "SUSE Bug 1234149",
"url": "https://bugzilla.suse.com/1234149"
},
{
"category": "self",
"summary": "SUSE Bug 1234150",
"url": "https://bugzilla.suse.com/1234150"
},
{
"category": "self",
"summary": "SUSE Bug 1234153",
"url": "https://bugzilla.suse.com/1234153"
},
{
"category": "self",
"summary": "SUSE Bug 1234155",
"url": "https://bugzilla.suse.com/1234155"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234158",
"url": "https://bugzilla.suse.com/1234158"
},
{
"category": "self",
"summary": "SUSE Bug 1234159",
"url": "https://bugzilla.suse.com/1234159"
},
{
"category": "self",
"summary": "SUSE Bug 1234160",
"url": "https://bugzilla.suse.com/1234160"
},
{
"category": "self",
"summary": "SUSE Bug 1234161",
"url": "https://bugzilla.suse.com/1234161"
},
{
"category": "self",
"summary": "SUSE Bug 1234162",
"url": "https://bugzilla.suse.com/1234162"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234164",
"url": "https://bugzilla.suse.com/1234164"
},
{
"category": "self",
"summary": "SUSE Bug 1234165",
"url": "https://bugzilla.suse.com/1234165"
},
{
"category": "self",
"summary": "SUSE Bug 1234166",
"url": "https://bugzilla.suse.com/1234166"
},
{
"category": "self",
"summary": "SUSE Bug 1234167",
"url": "https://bugzilla.suse.com/1234167"
},
{
"category": "self",
"summary": "SUSE Bug 1234168",
"url": "https://bugzilla.suse.com/1234168"
},
{
"category": "self",
"summary": "SUSE Bug 1234169",
"url": "https://bugzilla.suse.com/1234169"
},
{
"category": "self",
"summary": "SUSE Bug 1234170",
"url": "https://bugzilla.suse.com/1234170"
},
{
"category": "self",
"summary": "SUSE Bug 1234171",
"url": "https://bugzilla.suse.com/1234171"
},
{
"category": "self",
"summary": "SUSE Bug 1234172",
"url": "https://bugzilla.suse.com/1234172"
},
{
"category": "self",
"summary": "SUSE Bug 1234173",
"url": "https://bugzilla.suse.com/1234173"
},
{
"category": "self",
"summary": "SUSE Bug 1234174",
"url": "https://bugzilla.suse.com/1234174"
},
{
"category": "self",
"summary": "SUSE Bug 1234175",
"url": "https://bugzilla.suse.com/1234175"
},
{
"category": "self",
"summary": "SUSE Bug 1234176",
"url": "https://bugzilla.suse.com/1234176"
},
{
"category": "self",
"summary": "SUSE Bug 1234177",
"url": "https://bugzilla.suse.com/1234177"
},
{
"category": "self",
"summary": "SUSE Bug 1234178",
"url": "https://bugzilla.suse.com/1234178"
},
{
"category": "self",
"summary": "SUSE Bug 1234179",
"url": "https://bugzilla.suse.com/1234179"
},
{
"category": "self",
"summary": "SUSE Bug 1234180",
"url": "https://bugzilla.suse.com/1234180"
},
{
"category": "self",
"summary": "SUSE Bug 1234181",
"url": "https://bugzilla.suse.com/1234181"
},
{
"category": "self",
"summary": "SUSE Bug 1234182",
"url": "https://bugzilla.suse.com/1234182"
},
{
"category": "self",
"summary": "SUSE Bug 1234183",
"url": "https://bugzilla.suse.com/1234183"
},
{
"category": "self",
"summary": "SUSE Bug 1234184",
"url": "https://bugzilla.suse.com/1234184"
},
{
"category": "self",
"summary": "SUSE Bug 1234185",
"url": "https://bugzilla.suse.com/1234185"
},
{
"category": "self",
"summary": "SUSE Bug 1234186",
"url": "https://bugzilla.suse.com/1234186"
},
{
"category": "self",
"summary": "SUSE Bug 1234187",
"url": "https://bugzilla.suse.com/1234187"
},
{
"category": "self",
"summary": "SUSE Bug 1234188",
"url": "https://bugzilla.suse.com/1234188"
},
{
"category": "self",
"summary": "SUSE Bug 1234189",
"url": "https://bugzilla.suse.com/1234189"
},
{
"category": "self",
"summary": "SUSE Bug 1234190",
"url": "https://bugzilla.suse.com/1234190"
},
{
"category": "self",
"summary": "SUSE Bug 1234191",
"url": "https://bugzilla.suse.com/1234191"
},
{
"category": "self",
"summary": "SUSE Bug 1234192",
"url": "https://bugzilla.suse.com/1234192"
},
{
"category": "self",
"summary": "SUSE Bug 1234193",
"url": "https://bugzilla.suse.com/1234193"
},
{
"category": "self",
"summary": "SUSE Bug 1234194",
"url": "https://bugzilla.suse.com/1234194"
},
{
"category": "self",
"summary": "SUSE Bug 1234195",
"url": "https://bugzilla.suse.com/1234195"
},
{
"category": "self",
"summary": "SUSE Bug 1234196",
"url": "https://bugzilla.suse.com/1234196"
},
{
"category": "self",
"summary": "SUSE Bug 1234197",
"url": "https://bugzilla.suse.com/1234197"
},
{
"category": "self",
"summary": "SUSE Bug 1234198",
"url": "https://bugzilla.suse.com/1234198"
},
{
"category": "self",
"summary": "SUSE Bug 1234199",
"url": "https://bugzilla.suse.com/1234199"
},
{
"category": "self",
"summary": "SUSE Bug 1234200",
"url": "https://bugzilla.suse.com/1234200"
},
{
"category": "self",
"summary": "SUSE Bug 1234201",
"url": "https://bugzilla.suse.com/1234201"
},
{
"category": "self",
"summary": "SUSE Bug 1234203",
"url": "https://bugzilla.suse.com/1234203"
},
{
"category": "self",
"summary": "SUSE Bug 1234204",
"url": "https://bugzilla.suse.com/1234204"
},
{
"category": "self",
"summary": "SUSE Bug 1234205",
"url": "https://bugzilla.suse.com/1234205"
},
{
"category": "self",
"summary": "SUSE Bug 1234207",
"url": "https://bugzilla.suse.com/1234207"
},
{
"category": "self",
"summary": "SUSE Bug 1234208",
"url": "https://bugzilla.suse.com/1234208"
},
{
"category": "self",
"summary": "SUSE Bug 1234209",
"url": "https://bugzilla.suse.com/1234209"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234221",
"url": "https://bugzilla.suse.com/1234221"
},
{
"category": "self",
"summary": "SUSE Bug 1234237",
"url": "https://bugzilla.suse.com/1234237"
},
{
"category": "self",
"summary": "SUSE Bug 1234238",
"url": "https://bugzilla.suse.com/1234238"
},
{
"category": "self",
"summary": "SUSE Bug 1234239",
"url": "https://bugzilla.suse.com/1234239"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234242",
"url": "https://bugzilla.suse.com/1234242"
},
{
"category": "self",
"summary": "SUSE Bug 1234243",
"url": "https://bugzilla.suse.com/1234243"
},
{
"category": "self",
"summary": "SUSE Bug 1234278",
"url": "https://bugzilla.suse.com/1234278"
},
{
"category": "self",
"summary": "SUSE Bug 1234279",
"url": "https://bugzilla.suse.com/1234279"
},
{
"category": "self",
"summary": "SUSE Bug 1234280",
"url": "https://bugzilla.suse.com/1234280"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234381",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "self",
"summary": "SUSE Bug 1234454",
"url": "https://bugzilla.suse.com/1234454"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234619",
"url": "https://bugzilla.suse.com/1234619"
},
{
"category": "self",
"summary": "SUSE Bug 1234635",
"url": "https://bugzilla.suse.com/1234635"
},
{
"category": "self",
"summary": "SUSE Bug 1234651",
"url": "https://bugzilla.suse.com/1234651"
},
{
"category": "self",
"summary": "SUSE Bug 1234652",
"url": "https://bugzilla.suse.com/1234652"
},
{
"category": "self",
"summary": "SUSE Bug 1234654",
"url": "https://bugzilla.suse.com/1234654"
},
{
"category": "self",
"summary": "SUSE Bug 1234655",
"url": "https://bugzilla.suse.com/1234655"
},
{
"category": "self",
"summary": "SUSE Bug 1234657",
"url": "https://bugzilla.suse.com/1234657"
},
{
"category": "self",
"summary": "SUSE Bug 1234658",
"url": "https://bugzilla.suse.com/1234658"
},
{
"category": "self",
"summary": "SUSE Bug 1234659",
"url": "https://bugzilla.suse.com/1234659"
},
{
"category": "self",
"summary": "SUSE Bug 1234668",
"url": "https://bugzilla.suse.com/1234668"
},
{
"category": "self",
"summary": "SUSE Bug 1234683",
"url": "https://bugzilla.suse.com/1234683"
},
{
"category": "self",
"summary": "SUSE Bug 1234690",
"url": "https://bugzilla.suse.com/1234690"
},
{
"category": "self",
"summary": "SUSE Bug 1234693",
"url": "https://bugzilla.suse.com/1234693"
},
{
"category": "self",
"summary": "SUSE Bug 1234725",
"url": "https://bugzilla.suse.com/1234725"
},
{
"category": "self",
"summary": "SUSE Bug 1234726",
"url": "https://bugzilla.suse.com/1234726"
},
{
"category": "self",
"summary": "SUSE Bug 1234810",
"url": "https://bugzilla.suse.com/1234810"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234825",
"url": "https://bugzilla.suse.com/1234825"
},
{
"category": "self",
"summary": "SUSE Bug 1234826",
"url": "https://bugzilla.suse.com/1234826"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234829",
"url": "https://bugzilla.suse.com/1234829"
},
{
"category": "self",
"summary": "SUSE Bug 1234832",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234848",
"url": "https://bugzilla.suse.com/1234848"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234855",
"url": "https://bugzilla.suse.com/1234855"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234863",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "self",
"summary": "SUSE Bug 1234884",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "self",
"summary": "SUSE Bug 1234887",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "self",
"summary": "SUSE Bug 1234888",
"url": "https://bugzilla.suse.com/1234888"
},
{
"category": "self",
"summary": "SUSE Bug 1234889",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234893",
"url": "https://bugzilla.suse.com/1234893"
},
{
"category": "self",
"summary": "SUSE Bug 1234898",
"url": "https://bugzilla.suse.com/1234898"
},
{
"category": "self",
"summary": "SUSE Bug 1234899",
"url": "https://bugzilla.suse.com/1234899"
},
{
"category": "self",
"summary": "SUSE Bug 1234900",
"url": "https://bugzilla.suse.com/1234900"
},
{
"category": "self",
"summary": "SUSE Bug 1234901",
"url": "https://bugzilla.suse.com/1234901"
},
{
"category": "self",
"summary": "SUSE Bug 1234905",
"url": "https://bugzilla.suse.com/1234905"
},
{
"category": "self",
"summary": "SUSE Bug 1234906",
"url": "https://bugzilla.suse.com/1234906"
},
{
"category": "self",
"summary": "SUSE Bug 1234907",
"url": "https://bugzilla.suse.com/1234907"
},
{
"category": "self",
"summary": "SUSE Bug 1234909",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "self",
"summary": "SUSE Bug 1234911",
"url": "https://bugzilla.suse.com/1234911"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234916",
"url": "https://bugzilla.suse.com/1234916"
},
{
"category": "self",
"summary": "SUSE Bug 1234918",
"url": "https://bugzilla.suse.com/1234918"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234922",
"url": "https://bugzilla.suse.com/1234922"
},
{
"category": "self",
"summary": "SUSE Bug 1234923",
"url": "https://bugzilla.suse.com/1234923"
},
{
"category": "self",
"summary": "SUSE Bug 1234929",
"url": "https://bugzilla.suse.com/1234929"
},
{
"category": "self",
"summary": "SUSE Bug 1234930",
"url": "https://bugzilla.suse.com/1234930"
},
{
"category": "self",
"summary": "SUSE Bug 1234931",
"url": "https://bugzilla.suse.com/1234931"
},
{
"category": "self",
"summary": "SUSE Bug 1234934",
"url": "https://bugzilla.suse.com/1234934"
},
{
"category": "self",
"summary": "SUSE Bug 1234937",
"url": "https://bugzilla.suse.com/1234937"
},
{
"category": "self",
"summary": "SUSE Bug 1234947",
"url": "https://bugzilla.suse.com/1234947"
},
{
"category": "self",
"summary": "SUSE Bug 1234948",
"url": "https://bugzilla.suse.com/1234948"
},
{
"category": "self",
"summary": "SUSE Bug 1234950",
"url": "https://bugzilla.suse.com/1234950"
},
{
"category": "self",
"summary": "SUSE Bug 1234952",
"url": "https://bugzilla.suse.com/1234952"
},
{
"category": "self",
"summary": "SUSE Bug 1234957",
"url": "https://bugzilla.suse.com/1234957"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234962",
"url": "https://bugzilla.suse.com/1234962"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234968",
"url": "https://bugzilla.suse.com/1234968"
},
{
"category": "self",
"summary": "SUSE Bug 1234969",
"url": "https://bugzilla.suse.com/1234969"
},
{
"category": "self",
"summary": "SUSE Bug 1234970",
"url": "https://bugzilla.suse.com/1234970"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1234974",
"url": "https://bugzilla.suse.com/1234974"
},
{
"category": "self",
"summary": "SUSE Bug 1234989",
"url": "https://bugzilla.suse.com/1234989"
},
{
"category": "self",
"summary": "SUSE Bug 1234999",
"url": "https://bugzilla.suse.com/1234999"
},
{
"category": "self",
"summary": "SUSE Bug 1235000",
"url": "https://bugzilla.suse.com/1235000"
},
{
"category": "self",
"summary": "SUSE Bug 1235001",
"url": "https://bugzilla.suse.com/1235001"
},
{
"category": "self",
"summary": "SUSE Bug 1235002",
"url": "https://bugzilla.suse.com/1235002"
},
{
"category": "self",
"summary": "SUSE Bug 1235003",
"url": "https://bugzilla.suse.com/1235003"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235007",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "self",
"summary": "SUSE Bug 1235009",
"url": "https://bugzilla.suse.com/1235009"
},
{
"category": "self",
"summary": "SUSE Bug 1235011",
"url": "https://bugzilla.suse.com/1235011"
},
{
"category": "self",
"summary": "SUSE Bug 1235016",
"url": "https://bugzilla.suse.com/1235016"
},
{
"category": "self",
"summary": "SUSE Bug 1235019",
"url": "https://bugzilla.suse.com/1235019"
},
{
"category": "self",
"summary": "SUSE Bug 1235031",
"url": "https://bugzilla.suse.com/1235031"
},
{
"category": "self",
"summary": "SUSE Bug 1235032",
"url": "https://bugzilla.suse.com/1235032"
},
{
"category": "self",
"summary": "SUSE Bug 1235033",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "self",
"summary": "SUSE Bug 1235035",
"url": "https://bugzilla.suse.com/1235035"
},
{
"category": "self",
"summary": "SUSE Bug 1235037",
"url": "https://bugzilla.suse.com/1235037"
},
{
"category": "self",
"summary": "SUSE Bug 1235038",
"url": "https://bugzilla.suse.com/1235038"
},
{
"category": "self",
"summary": "SUSE Bug 1235039",
"url": "https://bugzilla.suse.com/1235039"
},
{
"category": "self",
"summary": "SUSE Bug 1235040",
"url": "https://bugzilla.suse.com/1235040"
},
{
"category": "self",
"summary": "SUSE Bug 1235042",
"url": "https://bugzilla.suse.com/1235042"
},
{
"category": "self",
"summary": "SUSE Bug 1235043",
"url": "https://bugzilla.suse.com/1235043"
},
{
"category": "self",
"summary": "SUSE Bug 1235045",
"url": "https://bugzilla.suse.com/1235045"
},
{
"category": "self",
"summary": "SUSE Bug 1235046",
"url": "https://bugzilla.suse.com/1235046"
},
{
"category": "self",
"summary": "SUSE Bug 1235050",
"url": "https://bugzilla.suse.com/1235050"
},
{
"category": "self",
"summary": "SUSE Bug 1235051",
"url": "https://bugzilla.suse.com/1235051"
},
{
"category": "self",
"summary": "SUSE Bug 1235053",
"url": "https://bugzilla.suse.com/1235053"
},
{
"category": "self",
"summary": "SUSE Bug 1235054",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235057",
"url": "https://bugzilla.suse.com/1235057"
},
{
"category": "self",
"summary": "SUSE Bug 1235059",
"url": "https://bugzilla.suse.com/1235059"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235065",
"url": "https://bugzilla.suse.com/1235065"
},
{
"category": "self",
"summary": "SUSE Bug 1235070",
"url": "https://bugzilla.suse.com/1235070"
},
{
"category": "self",
"summary": "SUSE Bug 1235073",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "self",
"summary": "SUSE Bug 1235075",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "self",
"summary": "SUSE Bug 1235100",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "self",
"summary": "SUSE Bug 1235108",
"url": "https://bugzilla.suse.com/1235108"
},
{
"category": "self",
"summary": "SUSE Bug 1235112",
"url": "https://bugzilla.suse.com/1235112"
},
{
"category": "self",
"summary": "SUSE Bug 1235115",
"url": "https://bugzilla.suse.com/1235115"
},
{
"category": "self",
"summary": "SUSE Bug 1235117",
"url": "https://bugzilla.suse.com/1235117"
},
{
"category": "self",
"summary": "SUSE Bug 1235122",
"url": "https://bugzilla.suse.com/1235122"
},
{
"category": "self",
"summary": "SUSE Bug 1235123",
"url": "https://bugzilla.suse.com/1235123"
},
{
"category": "self",
"summary": "SUSE Bug 1235125",
"url": "https://bugzilla.suse.com/1235125"
},
{
"category": "self",
"summary": "SUSE Bug 1235128",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "self",
"summary": "SUSE Bug 1235132",
"url": "https://bugzilla.suse.com/1235132"
},
{
"category": "self",
"summary": "SUSE Bug 1235133",
"url": "https://bugzilla.suse.com/1235133"
},
{
"category": "self",
"summary": "SUSE Bug 1235134",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "self",
"summary": "SUSE Bug 1235138",
"url": "https://bugzilla.suse.com/1235138"
},
{
"category": "self",
"summary": "SUSE Bug 1235155",
"url": "https://bugzilla.suse.com/1235155"
},
{
"category": "self",
"summary": "SUSE Bug 1235160",
"url": "https://bugzilla.suse.com/1235160"
},
{
"category": "self",
"summary": "SUSE Bug 1235217",
"url": "https://bugzilla.suse.com/1235217"
},
{
"category": "self",
"summary": "SUSE Bug 1235219",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "self",
"summary": "SUSE Bug 1235220",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "self",
"summary": "SUSE Bug 1235222",
"url": "https://bugzilla.suse.com/1235222"
},
{
"category": "self",
"summary": "SUSE Bug 1235223",
"url": "https://bugzilla.suse.com/1235223"
},
{
"category": "self",
"summary": "SUSE Bug 1235224",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "self",
"summary": "SUSE Bug 1235227",
"url": "https://bugzilla.suse.com/1235227"
},
{
"category": "self",
"summary": "SUSE Bug 1235230",
"url": "https://bugzilla.suse.com/1235230"
},
{
"category": "self",
"summary": "SUSE Bug 1235241",
"url": "https://bugzilla.suse.com/1235241"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235249",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "self",
"summary": "SUSE Bug 1235251",
"url": "https://bugzilla.suse.com/1235251"
},
{
"category": "self",
"summary": "SUSE Bug 1235252",
"url": "https://bugzilla.suse.com/1235252"
},
{
"category": "self",
"summary": "SUSE Bug 1235389",
"url": "https://bugzilla.suse.com/1235389"
},
{
"category": "self",
"summary": "SUSE Bug 1235390",
"url": "https://bugzilla.suse.com/1235390"
},
{
"category": "self",
"summary": "SUSE Bug 1235391",
"url": "https://bugzilla.suse.com/1235391"
},
{
"category": "self",
"summary": "SUSE Bug 1235406",
"url": "https://bugzilla.suse.com/1235406"
},
{
"category": "self",
"summary": "SUSE Bug 1235409",
"url": "https://bugzilla.suse.com/1235409"
},
{
"category": "self",
"summary": "SUSE Bug 1235410",
"url": "https://bugzilla.suse.com/1235410"
},
{
"category": "self",
"summary": "SUSE Bug 1235412",
"url": "https://bugzilla.suse.com/1235412"
},
{
"category": "self",
"summary": "SUSE Bug 1235413",
"url": "https://bugzilla.suse.com/1235413"
},
{
"category": "self",
"summary": "SUSE Bug 1235415",
"url": "https://bugzilla.suse.com/1235415"
},
{
"category": "self",
"summary": "SUSE Bug 1235416",
"url": "https://bugzilla.suse.com/1235416"
},
{
"category": "self",
"summary": "SUSE Bug 1235417",
"url": "https://bugzilla.suse.com/1235417"
},
{
"category": "self",
"summary": "SUSE Bug 1235418",
"url": "https://bugzilla.suse.com/1235418"
},
{
"category": "self",
"summary": "SUSE Bug 1235423",
"url": "https://bugzilla.suse.com/1235423"
},
{
"category": "self",
"summary": "SUSE Bug 1235424",
"url": "https://bugzilla.suse.com/1235424"
},
{
"category": "self",
"summary": "SUSE Bug 1235425",
"url": "https://bugzilla.suse.com/1235425"
},
{
"category": "self",
"summary": "SUSE Bug 1235426",
"url": "https://bugzilla.suse.com/1235426"
},
{
"category": "self",
"summary": "SUSE Bug 1235427",
"url": "https://bugzilla.suse.com/1235427"
},
{
"category": "self",
"summary": "SUSE Bug 1235428",
"url": "https://bugzilla.suse.com/1235428"
},
{
"category": "self",
"summary": "SUSE Bug 1235429",
"url": "https://bugzilla.suse.com/1235429"
},
{
"category": "self",
"summary": "SUSE Bug 1235430",
"url": "https://bugzilla.suse.com/1235430"
},
{
"category": "self",
"summary": "SUSE Bug 1235433",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "self",
"summary": "SUSE Bug 1235437",
"url": "https://bugzilla.suse.com/1235437"
},
{
"category": "self",
"summary": "SUSE Bug 1235439",
"url": "https://bugzilla.suse.com/1235439"
},
{
"category": "self",
"summary": "SUSE Bug 1235444",
"url": "https://bugzilla.suse.com/1235444"
},
{
"category": "self",
"summary": "SUSE Bug 1235445",
"url": "https://bugzilla.suse.com/1235445"
},
{
"category": "self",
"summary": "SUSE Bug 1235449",
"url": "https://bugzilla.suse.com/1235449"
},
{
"category": "self",
"summary": "SUSE Bug 1235451",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "self",
"summary": "SUSE Bug 1235454",
"url": "https://bugzilla.suse.com/1235454"
},
{
"category": "self",
"summary": "SUSE Bug 1235458",
"url": "https://bugzilla.suse.com/1235458"
},
{
"category": "self",
"summary": "SUSE Bug 1235459",
"url": "https://bugzilla.suse.com/1235459"
},
{
"category": "self",
"summary": "SUSE Bug 1235464",
"url": "https://bugzilla.suse.com/1235464"
},
{
"category": "self",
"summary": "SUSE Bug 1235466",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "self",
"summary": "SUSE Bug 1235473",
"url": "https://bugzilla.suse.com/1235473"
},
{
"category": "self",
"summary": "SUSE Bug 1235479",
"url": "https://bugzilla.suse.com/1235479"
},
{
"category": "self",
"summary": "SUSE Bug 1235480",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "self",
"summary": "SUSE Bug 1235483",
"url": "https://bugzilla.suse.com/1235483"
},
{
"category": "self",
"summary": "SUSE Bug 1235486",
"url": "https://bugzilla.suse.com/1235486"
},
{
"category": "self",
"summary": "SUSE Bug 1235487",
"url": "https://bugzilla.suse.com/1235487"
},
{
"category": "self",
"summary": "SUSE Bug 1235488",
"url": "https://bugzilla.suse.com/1235488"
},
{
"category": "self",
"summary": "SUSE Bug 1235489",
"url": "https://bugzilla.suse.com/1235489"
},
{
"category": "self",
"summary": "SUSE Bug 1235491",
"url": "https://bugzilla.suse.com/1235491"
},
{
"category": "self",
"summary": "SUSE Bug 1235494",
"url": "https://bugzilla.suse.com/1235494"
},
{
"category": "self",
"summary": "SUSE Bug 1235495",
"url": "https://bugzilla.suse.com/1235495"
},
{
"category": "self",
"summary": "SUSE Bug 1235496",
"url": "https://bugzilla.suse.com/1235496"
},
{
"category": "self",
"summary": "SUSE Bug 1235497",
"url": "https://bugzilla.suse.com/1235497"
},
{
"category": "self",
"summary": "SUSE Bug 1235498",
"url": "https://bugzilla.suse.com/1235498"
},
{
"category": "self",
"summary": "SUSE Bug 1235500",
"url": "https://bugzilla.suse.com/1235500"
},
{
"category": "self",
"summary": "SUSE Bug 1235502",
"url": "https://bugzilla.suse.com/1235502"
},
{
"category": "self",
"summary": "SUSE Bug 1235503",
"url": "https://bugzilla.suse.com/1235503"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE Bug 1235519",
"url": "https://bugzilla.suse.com/1235519"
},
{
"category": "self",
"summary": "SUSE Bug 1235520",
"url": "https://bugzilla.suse.com/1235520"
},
{
"category": "self",
"summary": "SUSE Bug 1235521",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "self",
"summary": "SUSE Bug 1235523",
"url": "https://bugzilla.suse.com/1235523"
},
{
"category": "self",
"summary": "SUSE Bug 1235526",
"url": "https://bugzilla.suse.com/1235526"
},
{
"category": "self",
"summary": "SUSE Bug 1235528",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "self",
"summary": "SUSE Bug 1235532",
"url": "https://bugzilla.suse.com/1235532"
},
{
"category": "self",
"summary": "SUSE Bug 1235533",
"url": "https://bugzilla.suse.com/1235533"
},
{
"category": "self",
"summary": "SUSE Bug 1235534",
"url": "https://bugzilla.suse.com/1235534"
},
{
"category": "self",
"summary": "SUSE Bug 1235537",
"url": "https://bugzilla.suse.com/1235537"
},
{
"category": "self",
"summary": "SUSE Bug 1235538",
"url": "https://bugzilla.suse.com/1235538"
},
{
"category": "self",
"summary": "SUSE Bug 1235545",
"url": "https://bugzilla.suse.com/1235545"
},
{
"category": "self",
"summary": "SUSE Bug 1235550",
"url": "https://bugzilla.suse.com/1235550"
},
{
"category": "self",
"summary": "SUSE Bug 1235552",
"url": "https://bugzilla.suse.com/1235552"
},
{
"category": "self",
"summary": "SUSE Bug 1235555",
"url": "https://bugzilla.suse.com/1235555"
},
{
"category": "self",
"summary": "SUSE Bug 1235557",
"url": "https://bugzilla.suse.com/1235557"
},
{
"category": "self",
"summary": "SUSE Bug 1235563",
"url": "https://bugzilla.suse.com/1235563"
},
{
"category": "self",
"summary": "SUSE Bug 1235564",
"url": "https://bugzilla.suse.com/1235564"
},
{
"category": "self",
"summary": "SUSE Bug 1235565",
"url": "https://bugzilla.suse.com/1235565"
},
{
"category": "self",
"summary": "SUSE Bug 1235568",
"url": "https://bugzilla.suse.com/1235568"
},
{
"category": "self",
"summary": "SUSE Bug 1235570",
"url": "https://bugzilla.suse.com/1235570"
},
{
"category": "self",
"summary": "SUSE Bug 1235571",
"url": "https://bugzilla.suse.com/1235571"
},
{
"category": "self",
"summary": "SUSE Bug 1235577",
"url": "https://bugzilla.suse.com/1235577"
},
{
"category": "self",
"summary": "SUSE Bug 1235578",
"url": "https://bugzilla.suse.com/1235578"
},
{
"category": "self",
"summary": "SUSE Bug 1235582",
"url": "https://bugzilla.suse.com/1235582"
},
{
"category": "self",
"summary": "SUSE Bug 1235583",
"url": "https://bugzilla.suse.com/1235583"
},
{
"category": "self",
"summary": "SUSE Bug 1235584",
"url": "https://bugzilla.suse.com/1235584"
},
{
"category": "self",
"summary": "SUSE Bug 1235587",
"url": "https://bugzilla.suse.com/1235587"
},
{
"category": "self",
"summary": "SUSE Bug 1235611",
"url": "https://bugzilla.suse.com/1235611"
},
{
"category": "self",
"summary": "SUSE Bug 1235612",
"url": "https://bugzilla.suse.com/1235612"
},
{
"category": "self",
"summary": "SUSE Bug 1235616",
"url": "https://bugzilla.suse.com/1235616"
},
{
"category": "self",
"summary": "SUSE Bug 1235622",
"url": "https://bugzilla.suse.com/1235622"
},
{
"category": "self",
"summary": "SUSE Bug 1235627",
"url": "https://bugzilla.suse.com/1235627"
},
{
"category": "self",
"summary": "SUSE Bug 1235632",
"url": "https://bugzilla.suse.com/1235632"
},
{
"category": "self",
"summary": "SUSE Bug 1235635",
"url": "https://bugzilla.suse.com/1235635"
},
{
"category": "self",
"summary": "SUSE Bug 1235638",
"url": "https://bugzilla.suse.com/1235638"
},
{
"category": "self",
"summary": "SUSE Bug 1235641",
"url": "https://bugzilla.suse.com/1235641"
},
{
"category": "self",
"summary": "SUSE Bug 1235643",
"url": "https://bugzilla.suse.com/1235643"
},
{
"category": "self",
"summary": "SUSE Bug 1235645",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "self",
"summary": "SUSE Bug 1235646",
"url": "https://bugzilla.suse.com/1235646"
},
{
"category": "self",
"summary": "SUSE Bug 1235647",
"url": "https://bugzilla.suse.com/1235647"
},
{
"category": "self",
"summary": "SUSE Bug 1235650",
"url": "https://bugzilla.suse.com/1235650"
},
{
"category": "self",
"summary": "SUSE Bug 1235653",
"url": "https://bugzilla.suse.com/1235653"
},
{
"category": "self",
"summary": "SUSE Bug 1235656",
"url": "https://bugzilla.suse.com/1235656"
},
{
"category": "self",
"summary": "SUSE Bug 1235657",
"url": "https://bugzilla.suse.com/1235657"
},
{
"category": "self",
"summary": "SUSE Bug 1235663",
"url": "https://bugzilla.suse.com/1235663"
},
{
"category": "self",
"summary": "SUSE Bug 1235686",
"url": "https://bugzilla.suse.com/1235686"
},
{
"category": "self",
"summary": "SUSE Bug 1235700",
"url": "https://bugzilla.suse.com/1235700"
},
{
"category": "self",
"summary": "SUSE Bug 1235705",
"url": "https://bugzilla.suse.com/1235705"
},
{
"category": "self",
"summary": "SUSE Bug 1235707",
"url": "https://bugzilla.suse.com/1235707"
},
{
"category": "self",
"summary": "SUSE Bug 1235708",
"url": "https://bugzilla.suse.com/1235708"
},
{
"category": "self",
"summary": "SUSE Bug 1235710",
"url": "https://bugzilla.suse.com/1235710"
},
{
"category": "self",
"summary": "SUSE Bug 1235714",
"url": "https://bugzilla.suse.com/1235714"
},
{
"category": "self",
"summary": "SUSE Bug 1235716",
"url": "https://bugzilla.suse.com/1235716"
},
{
"category": "self",
"summary": "SUSE Bug 1235720",
"url": "https://bugzilla.suse.com/1235720"
},
{
"category": "self",
"summary": "SUSE Bug 1235723",
"url": "https://bugzilla.suse.com/1235723"
},
{
"category": "self",
"summary": "SUSE Bug 1235727",
"url": "https://bugzilla.suse.com/1235727"
},
{
"category": "self",
"summary": "SUSE Bug 1235730",
"url": "https://bugzilla.suse.com/1235730"
},
{
"category": "self",
"summary": "SUSE Bug 1235737",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "self",
"summary": "SUSE Bug 1235739",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "self",
"summary": "SUSE Bug 1235745",
"url": "https://bugzilla.suse.com/1235745"
},
{
"category": "self",
"summary": "SUSE Bug 1235747",
"url": "https://bugzilla.suse.com/1235747"
},
{
"category": "self",
"summary": "SUSE Bug 1235750",
"url": "https://bugzilla.suse.com/1235750"
},
{
"category": "self",
"summary": "SUSE Bug 1235753",
"url": "https://bugzilla.suse.com/1235753"
},
{
"category": "self",
"summary": "SUSE Bug 1235759",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "self",
"summary": "SUSE Bug 1235764",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "self",
"summary": "SUSE Bug 1235768",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "self",
"summary": "SUSE Bug 1235776",
"url": "https://bugzilla.suse.com/1235776"
},
{
"category": "self",
"summary": "SUSE Bug 1235777",
"url": "https://bugzilla.suse.com/1235777"
},
{
"category": "self",
"summary": "SUSE Bug 1235778",
"url": "https://bugzilla.suse.com/1235778"
},
{
"category": "self",
"summary": "SUSE Bug 1235779",
"url": "https://bugzilla.suse.com/1235779"
},
{
"category": "self",
"summary": "SUSE Bug 1235793",
"url": "https://bugzilla.suse.com/1235793"
},
{
"category": "self",
"summary": "SUSE Bug 1235798",
"url": "https://bugzilla.suse.com/1235798"
},
{
"category": "self",
"summary": "SUSE Bug 1235806",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "self",
"summary": "SUSE Bug 1235808",
"url": "https://bugzilla.suse.com/1235808"
},
{
"category": "self",
"summary": "SUSE Bug 1235812",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "self",
"summary": "SUSE Bug 1235814",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "self",
"summary": "SUSE Bug 1235818",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "self",
"summary": "SUSE Bug 1235842",
"url": "https://bugzilla.suse.com/1235842"
},
{
"category": "self",
"summary": "SUSE Bug 1235865",
"url": "https://bugzilla.suse.com/1235865"
},
{
"category": "self",
"summary": "SUSE Bug 1235894",
"url": "https://bugzilla.suse.com/1235894"
},
{
"category": "self",
"summary": "SUSE Bug 1235902",
"url": "https://bugzilla.suse.com/1235902"
},
{
"category": "self",
"summary": "SUSE Bug 1235903",
"url": "https://bugzilla.suse.com/1235903"
},
{
"category": "self",
"summary": "SUSE Bug 1235906",
"url": "https://bugzilla.suse.com/1235906"
},
{
"category": "self",
"summary": "SUSE Bug 1235918",
"url": "https://bugzilla.suse.com/1235918"
},
{
"category": "self",
"summary": "SUSE Bug 1235919",
"url": "https://bugzilla.suse.com/1235919"
},
{
"category": "self",
"summary": "SUSE Bug 1235920",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "self",
"summary": "SUSE Bug 1235924",
"url": "https://bugzilla.suse.com/1235924"
},
{
"category": "self",
"summary": "SUSE Bug 1235940",
"url": "https://bugzilla.suse.com/1235940"
},
{
"category": "self",
"summary": "SUSE Bug 1235941",
"url": "https://bugzilla.suse.com/1235941"
},
{
"category": "self",
"summary": "SUSE Bug 1235946",
"url": "https://bugzilla.suse.com/1235946"
},
{
"category": "self",
"summary": "SUSE Bug 1235948",
"url": "https://bugzilla.suse.com/1235948"
},
{
"category": "self",
"summary": "SUSE Bug 1235952",
"url": "https://bugzilla.suse.com/1235952"
},
{
"category": "self",
"summary": "SUSE Bug 1235964",
"url": "https://bugzilla.suse.com/1235964"
},
{
"category": "self",
"summary": "SUSE Bug 1235965",
"url": "https://bugzilla.suse.com/1235965"
},
{
"category": "self",
"summary": "SUSE Bug 1235967",
"url": "https://bugzilla.suse.com/1235967"
},
{
"category": "self",
"summary": "SUSE Bug 1235969",
"url": "https://bugzilla.suse.com/1235969"
},
{
"category": "self",
"summary": "SUSE Bug 1235976",
"url": "https://bugzilla.suse.com/1235976"
},
{
"category": "self",
"summary": "SUSE Bug 1235977",
"url": "https://bugzilla.suse.com/1235977"
},
{
"category": "self",
"summary": "SUSE Bug 1236078",
"url": "https://bugzilla.suse.com/1236078"
},
{
"category": "self",
"summary": "SUSE Bug 1236080",
"url": "https://bugzilla.suse.com/1236080"
},
{
"category": "self",
"summary": "SUSE Bug 1236082",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "self",
"summary": "SUSE Bug 1236088",
"url": "https://bugzilla.suse.com/1236088"
},
{
"category": "self",
"summary": "SUSE Bug 1236090",
"url": "https://bugzilla.suse.com/1236090"
},
{
"category": "self",
"summary": "SUSE Bug 1236091",
"url": "https://bugzilla.suse.com/1236091"
},
{
"category": "self",
"summary": "SUSE Bug 1236096",
"url": "https://bugzilla.suse.com/1236096"
},
{
"category": "self",
"summary": "SUSE Bug 1236097",
"url": "https://bugzilla.suse.com/1236097"
},
{
"category": "self",
"summary": "SUSE Bug 1236098",
"url": "https://bugzilla.suse.com/1236098"
},
{
"category": "self",
"summary": "SUSE Bug 1236101",
"url": "https://bugzilla.suse.com/1236101"
},
{
"category": "self",
"summary": "SUSE Bug 1236102",
"url": "https://bugzilla.suse.com/1236102"
},
{
"category": "self",
"summary": "SUSE Bug 1236104",
"url": "https://bugzilla.suse.com/1236104"
},
{
"category": "self",
"summary": "SUSE Bug 1236106",
"url": "https://bugzilla.suse.com/1236106"
},
{
"category": "self",
"summary": "SUSE Bug 1236120",
"url": "https://bugzilla.suse.com/1236120"
},
{
"category": "self",
"summary": "SUSE Bug 1236125",
"url": "https://bugzilla.suse.com/1236125"
},
{
"category": "self",
"summary": "SUSE Bug 1236127",
"url": "https://bugzilla.suse.com/1236127"
},
{
"category": "self",
"summary": "SUSE Bug 1236131",
"url": "https://bugzilla.suse.com/1236131"
},
{
"category": "self",
"summary": "SUSE Bug 1236138",
"url": "https://bugzilla.suse.com/1236138"
},
{
"category": "self",
"summary": "SUSE Bug 1236143",
"url": "https://bugzilla.suse.com/1236143"
},
{
"category": "self",
"summary": "SUSE Bug 1236144",
"url": "https://bugzilla.suse.com/1236144"
},
{
"category": "self",
"summary": "SUSE Bug 1236145",
"url": "https://bugzilla.suse.com/1236145"
},
{
"category": "self",
"summary": "SUSE Bug 1236160",
"url": "https://bugzilla.suse.com/1236160"
},
{
"category": "self",
"summary": "SUSE Bug 1236161",
"url": "https://bugzilla.suse.com/1236161"
},
{
"category": "self",
"summary": "SUSE Bug 1236163",
"url": "https://bugzilla.suse.com/1236163"
},
{
"category": "self",
"summary": "SUSE Bug 1236168",
"url": "https://bugzilla.suse.com/1236168"
},
{
"category": "self",
"summary": "SUSE Bug 1236178",
"url": "https://bugzilla.suse.com/1236178"
},
{
"category": "self",
"summary": "SUSE Bug 1236180",
"url": "https://bugzilla.suse.com/1236180"
},
{
"category": "self",
"summary": "SUSE Bug 1236181",
"url": "https://bugzilla.suse.com/1236181"
},
{
"category": "self",
"summary": "SUSE Bug 1236182",
"url": "https://bugzilla.suse.com/1236182"
},
{
"category": "self",
"summary": "SUSE Bug 1236190",
"url": "https://bugzilla.suse.com/1236190"
},
{
"category": "self",
"summary": "SUSE Bug 1236192",
"url": "https://bugzilla.suse.com/1236192"
},
{
"category": "self",
"summary": "SUSE Bug 1236198",
"url": "https://bugzilla.suse.com/1236198"
},
{
"category": "self",
"summary": "SUSE Bug 1236227",
"url": "https://bugzilla.suse.com/1236227"
},
{
"category": "self",
"summary": "SUSE Bug 1236245",
"url": "https://bugzilla.suse.com/1236245"
},
{
"category": "self",
"summary": "SUSE Bug 1236247",
"url": "https://bugzilla.suse.com/1236247"
},
{
"category": "self",
"summary": "SUSE Bug 1236248",
"url": "https://bugzilla.suse.com/1236248"
},
{
"category": "self",
"summary": "SUSE Bug 1236260",
"url": "https://bugzilla.suse.com/1236260"
},
{
"category": "self",
"summary": "SUSE Bug 1236262",
"url": "https://bugzilla.suse.com/1236262"
},
{
"category": "self",
"summary": "SUSE Bug 1236628",
"url": "https://bugzilla.suse.com/1236628"
},
{
"category": "self",
"summary": "SUSE Bug 1236688",
"url": "https://bugzilla.suse.com/1236688"
},
{
"category": "self",
"summary": "SUSE Bug 1236696",
"url": "https://bugzilla.suse.com/1236696"
},
{
"category": "self",
"summary": "SUSE Bug 1236703",
"url": "https://bugzilla.suse.com/1236703"
},
{
"category": "self",
"summary": "SUSE Bug 1236732",
"url": "https://bugzilla.suse.com/1236732"
},
{
"category": "self",
"summary": "SUSE Bug 1236733",
"url": "https://bugzilla.suse.com/1236733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-47233 page",
"url": "https://www.suse.com/security/cve/CVE-2023-47233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52463 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52463/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52472 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52472/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52591 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52591/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52653 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52653/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52657 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52657/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52658 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52660 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52661 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52662 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52663 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52664 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52667 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52669 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52669/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52670 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52671 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52671/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52673 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52675 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52676 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52678 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52679 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52681 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52683 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52685 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52686 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52687 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52690 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52691 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52693 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52694 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52695 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52696 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52696/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52697 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52697/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52882 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52882/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52923 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-22099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-22099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26611 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26611/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26742 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26761 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26764 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26846 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26853 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26855 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26856 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26858 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26858/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26861 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26866 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26868 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26900 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26943 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26943/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26949 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26949/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26957 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26963 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26963/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26964 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26994 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26994/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26995 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27027 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27046 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27046/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27057 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27057/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27062 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27062/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27067 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27080 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27388 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27388/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27389 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27389/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27397 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27397/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27398 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27398/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27399 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27399/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27400 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27400/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27405 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27405/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27410 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27410/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27411 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27411/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27412 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27412/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27413 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27413/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27416 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27416/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27432 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27432/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27434 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27434/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27435 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27435/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27436 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27436/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35784 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35788 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35789 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35790 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35795 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35796 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35796/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35799 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35800 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35801 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35806 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35808 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35810 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35811 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35812 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35813 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35815 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35817 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35819 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35821 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35822 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35823 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35824 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35824/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35825 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35829 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35830 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35833 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35834 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35836 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35837 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35837/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35838 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35839 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35841 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35842 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35845 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35847 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35849 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35851 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35875 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35878 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35878/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35879 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35883 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35885 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35885/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35889 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35889/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35891 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35901 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35909 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35909/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35927 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35928 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35930 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35930/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35933 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35936 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35945 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35945/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35955 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35958 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35959 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35963 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35963/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35966 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35966/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35972 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35972/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35974 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35974/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35975 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35975/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35978 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35992 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35995 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36009 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36009/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36014 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36025 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36032 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36476 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36476/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36880 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36885 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36885/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36891 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36894 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36894/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36895 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36895/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36921 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36928 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36930 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36930/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36931 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36941 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36942 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36949 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36949/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36955 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36959 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39282 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39480 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39480/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48873 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49978 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50051 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50106 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50199 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50199/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50272 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50299 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52332 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53050 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53091 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53164 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53168 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53169 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53170 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53172 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53175 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53175/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53185 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53187 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53194 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53195 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53196 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53197 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53227 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53230 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53231 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53233 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53236 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-54680 page",
"url": "https://www.suse.com/security/cve/CVE-2024-54680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55639 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55639/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56369 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56372 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56531 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56531/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56532 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56532/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56533 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56533/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56536 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56543 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56546 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56546/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56557 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56557/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56558 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56562 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56566 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56568 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56571 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56572 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56573 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56573/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56574 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56574/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56575 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56576 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56577 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56578 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56578/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56582 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56584 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56584/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56587 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56587/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56588 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56589 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56590 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56593 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56593/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56594 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56595 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56597 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-5660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-5660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56600 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56600/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56601 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56601/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56602 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56603 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56606 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56607 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56608 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56608/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56609 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56609/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56610 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56611 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56611/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56614 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56615 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56616 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56617 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56617/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56620 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56622 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56622/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56623 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56625 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56625/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56629 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56629/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56630 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56630/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56631 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56631/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56634 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56634/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56635 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56635/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56636 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56636/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56637 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56637/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56641 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56642 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56642/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56643 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56643/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56644 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56645 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56648 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56648/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56649 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56650 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56650/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56651 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56654 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56654/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56656 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56662 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56663 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56664 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56665 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56665/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56670 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56681 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56683 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56688 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56698 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56700 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56700/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56701 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56704 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56705 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56708 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56712 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56748 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56763 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56763/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56765 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56766 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56769 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56769/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56775 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56777 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56779 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57792 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57793 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57795 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57801 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57802 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57838 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57849 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57874 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57876 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57892 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57899 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57910 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57910/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57917 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57926 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57926/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57929 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57931 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57933 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57936 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21632 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21645 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21646 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21646/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21649 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21650 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21650/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21651 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21652 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21653 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21653/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21655 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21655/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21656 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21662 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21663 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21664 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21674 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21676 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21682 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21682/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-03-28T07:51:47Z",
"generator": {
"date": "2025-03-28T07:51:47Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20166-1",
"initial_release_date": "2025-03-28T07:51:47Z",
"revision_history": [
{
"date": "2025-03-28T07:51:47Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-6.4.0-25.1.noarch",
"product": {
"name": "kernel-devel-rt-6.4.0-25.1.noarch",
"product_id": "kernel-devel-rt-6.4.0-25.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-6.4.0-25.1.noarch",
"product": {
"name": "kernel-source-rt-6.4.0-25.1.noarch",
"product_id": "kernel-source-rt-6.4.0-25.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"product_id": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-rt-6.4.0-25.1.x86_64",
"product_id": "kernel-rt-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-6.4.0-25.1.x86_64",
"product_id": "kernel-rt-livepatch-6.4.0-25.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch"
},
"product_reference": "kernel-devel-rt-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-rt-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
},
"product_reference": "kernel-source-rt-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-47233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-47233"
}
],
"notes": [
{
"category": "general",
"text": "The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, this \"could be exploited in a real world scenario.\" This is related to brcmf_cfg80211_escan_timeout_worker in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-47233",
"url": "https://www.suse.com/security/cve/CVE-2023-47233"
},
{
"category": "external",
"summary": "SUSE Bug 1216702 for CVE-2023-47233",
"url": "https://bugzilla.suse.com/1216702"
},
{
"category": "external",
"summary": "SUSE Bug 1224592 for CVE-2023-47233",
"url": "https://bugzilla.suse.com/1224592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-47233"
},
{
"cve": "CVE-2023-52463",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52463"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: force RO when remounting if SetVariable is not supported\n\nIf SetVariable at runtime is not supported by the firmware we never assign\na callback for that function. At the same time mount the efivarfs as\nRO so no one can call that. However, we never check the permission flags\nwhen someone remounts the filesystem as RW. As a result this leads to a\ncrash looking like this:\n\n$ mount -o remount,rw /sys/firmware/efi/efivars\n$ efi-updatevar -f PK.auth PK\n\n[ 303.279166] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n[ 303.280482] Mem abort info:\n[ 303.280854] ESR = 0x0000000086000004\n[ 303.281338] EC = 0x21: IABT (current EL), IL = 32 bits\n[ 303.282016] SET = 0, FnV = 0\n[ 303.282414] EA = 0, S1PTW = 0\n[ 303.282821] FSC = 0x04: level 0 translation fault\n[ 303.283771] user pgtable: 4k pages, 48-bit VAs, pgdp=000000004258c000\n[ 303.284913] [0000000000000000] pgd=0000000000000000, p4d=0000000000000000\n[ 303.286076] Internal error: Oops: 0000000086000004 [#1] PREEMPT SMP\n[ 303.286936] Modules linked in: qrtr tpm_tis tpm_tis_core crct10dif_ce arm_smccc_trng rng_core drm fuse ip_tables x_tables ipv6\n[ 303.288586] CPU: 1 PID: 755 Comm: efi-updatevar Not tainted 6.3.0-rc1-00108-gc7d0c4695c68 #1\n[ 303.289748] Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.04-00627-g88336918701d 04/01/2023\n[ 303.291150] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 303.292123] pc : 0x0\n[ 303.292443] lr : efivar_set_variable_locked+0x74/0xec\n[ 303.293156] sp : ffff800008673c10\n[ 303.293619] x29: ffff800008673c10 x28: ffff0000037e8000 x27: 0000000000000000\n[ 303.294592] x26: 0000000000000800 x25: ffff000002467400 x24: 0000000000000027\n[ 303.295572] x23: ffffd49ea9832000 x22: ffff0000020c9800 x21: ffff000002467000\n[ 303.296566] x20: 0000000000000001 x19: 00000000000007fc x18: 0000000000000000\n[ 303.297531] x17: 0000000000000000 x16: 0000000000000000 x15: 0000aaaac807ab54\n[ 303.298495] x14: ed37489f673633c0 x13: 71c45c606de13f80 x12: 47464259e219acf4\n[ 303.299453] x11: ffff000002af7b01 x10: 0000000000000003 x9 : 0000000000000002\n[ 303.300431] x8 : 0000000000000010 x7 : ffffd49ea8973230 x6 : 0000000000a85201\n[ 303.301412] x5 : 0000000000000000 x4 : ffff0000020c9800 x3 : 00000000000007fc\n[ 303.302370] x2 : 0000000000000027 x1 : ffff000002467400 x0 : ffff000002467000\n[ 303.303341] Call trace:\n[ 303.303679] 0x0\n[ 303.303938] efivar_entry_set_get_size+0x98/0x16c\n[ 303.304585] efivarfs_file_write+0xd0/0x1a4\n[ 303.305148] vfs_write+0xc4/0x2e4\n[ 303.305601] ksys_write+0x70/0x104\n[ 303.306073] __arm64_sys_write+0x1c/0x28\n[ 303.306622] invoke_syscall+0x48/0x114\n[ 303.307156] el0_svc_common.constprop.0+0x44/0xec\n[ 303.307803] do_el0_svc+0x38/0x98\n[ 303.308268] el0_svc+0x2c/0x84\n[ 303.308702] el0t_64_sync_handler+0xf4/0x120\n[ 303.309293] el0t_64_sync+0x190/0x194\n[ 303.309794] Code: ???????? ???????? ???????? ???????? (????????)\n[ 303.310612] ---[ end trace 0000000000000000 ]---\n\nFix this by adding a .reconfigure() function to the fs operations which\nwe can use to check the requested flags and deny anything that\u0027s not RO\nif the firmware doesn\u0027t implement SetVariable at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52463",
"url": "https://www.suse.com/security/cve/CVE-2023-52463"
},
{
"category": "external",
"summary": "SUSE Bug 1220328 for CVE-2023-52463",
"url": "https://bugzilla.suse.com/1220328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52463"
},
{
"cve": "CVE-2023-52472",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52472"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: rsa - add a check for allocation failure\n\nStatic checkers insist that the mpi_alloc() allocation can fail so add\na check to prevent a NULL dereference. Small allocations like this\ncan\u0027t actually fail in current kernels, but adding a check is very\nsimple and makes the static checkers happy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52472",
"url": "https://www.suse.com/security/cve/CVE-2023-52472"
},
{
"category": "external",
"summary": "SUSE Bug 1220427 for CVE-2023-52472",
"url": "https://bugzilla.suse.com/1220427"
},
{
"category": "external",
"summary": "SUSE Bug 1220430 for CVE-2023-52472",
"url": "https://bugzilla.suse.com/1220430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2023-52472"
},
{
"cve": "CVE-2023-52591",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52591"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nreiserfs: Avoid touching renamed directory if parent does not change\n\nThe VFS will not be locking moved directory if its parent does not\nchange. Change reiserfs rename code to avoid touching renamed directory\nif its parent does not change as without locking that can corrupt the\nfilesystem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52591",
"url": "https://www.suse.com/security/cve/CVE-2023-52591"
},
{
"category": "external",
"summary": "SUSE Bug 1221044 for CVE-2023-52591",
"url": "https://bugzilla.suse.com/1221044"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-52591",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-52591",
"url": "https://bugzilla.suse.com/1221598"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2023-52591"
},
{
"cve": "CVE-2023-52653",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52653"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: fix a memleak in gss_import_v2_context\n\nThe ctx-\u003emech_used.data allocated by kmemdup is not freed in neither\ngss_import_v2_context nor it only caller gss_krb5_import_sec_context,\nwhich frees ctx on error.\n\nThus, this patch reform the last call of gss_import_v2_context to the\ngss_krb5_import_ctx_v2, preventing the memleak while keepping the return\nformation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52653",
"url": "https://www.suse.com/security/cve/CVE-2023-52653"
},
{
"category": "external",
"summary": "SUSE Bug 1223712 for CVE-2023-52653",
"url": "https://bugzilla.suse.com/1223712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52653"
},
{
"cve": "CVE-2023-52657",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52657"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"drm/amd/pm: resolve reboot exception for si oland\"\n\nThis reverts commit e490d60a2f76bff636c68ce4fe34c1b6c34bbd86.\n\nThis causes hangs on SI when DC is enabled and errors on driver\nreboot and power off cycles.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52657",
"url": "https://www.suse.com/security/cve/CVE-2023-52657"
},
{
"category": "external",
"summary": "SUSE Bug 1224722 for CVE-2023-52657",
"url": "https://bugzilla.suse.com/1224722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52657"
},
{
"cve": "CVE-2023-52658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52658"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"net/mlx5: Block entering switchdev mode with ns inconsistency\"\n\nThis reverts commit 662404b24a4c4d839839ed25e3097571f5938b9b.\nThe revert is required due to the suspicion it is not good for anything\nand cause crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52658",
"url": "https://www.suse.com/security/cve/CVE-2023-52658"
},
{
"category": "external",
"summary": "SUSE Bug 1224719 for CVE-2023-52658",
"url": "https://bugzilla.suse.com/1224719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52658"
},
{
"cve": "CVE-2023-52660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52660"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: rkisp1: Fix IRQ handling due to shared interrupts\n\nThe driver requests the interrupts as IRQF_SHARED, so the interrupt\nhandlers can be called at any time. If such a call happens while the ISP\nis powered down, the SoC will hang as the driver tries to access the\nISP registers.\n\nThis can be reproduced even without the platform sharing the IRQ line:\nEnable CONFIG_DEBUG_SHIRQ and unload the driver, and the board will\nhang.\n\nFix this by adding a new field, \u0027irqs_enabled\u0027, which is used to bail\nout from the interrupt handler when the ISP is not operational.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52660",
"url": "https://www.suse.com/security/cve/CVE-2023-52660"
},
{
"category": "external",
"summary": "SUSE Bug 1224443 for CVE-2023-52660",
"url": "https://bugzilla.suse.com/1224443"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52660"
},
{
"cve": "CVE-2023-52661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52661"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: rgb: Fix missing clk_put() in the error handling paths of tegra_dc_rgb_probe()\n\nIf clk_get_sys(..., \"pll_d2_out0\") fails, the clk_get_sys() call must be\nundone.\n\nAdd the missing clk_put and a new \u0027put_pll_d_out0\u0027 label in the error\nhandling path, and use it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52661",
"url": "https://www.suse.com/security/cve/CVE-2023-52661"
},
{
"category": "external",
"summary": "SUSE Bug 1224445 for CVE-2023-52661",
"url": "https://bugzilla.suse.com/1224445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2023-52661"
},
{
"cve": "CVE-2023-52662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node\n\nWhen ida_alloc_max fails, resources allocated before should be freed,\nincluding *res allocated by kmalloc and ttm_resource_init.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52662",
"url": "https://www.suse.com/security/cve/CVE-2023-52662"
},
{
"category": "external",
"summary": "SUSE Bug 1224449 for CVE-2023-52662",
"url": "https://bugzilla.suse.com/1224449"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52662"
},
{
"cve": "CVE-2023-52663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: SOF: amd: Fix memory leak in amd_sof_acp_probe()\n\nDriver uses kasprintf() to initialize fw_{code,data}_bin members of\nstruct acp_dev_data, but kfree() is never called to deallocate the\nmemory, which results in a memory leak.\n\nFix the issue by switching to devm_kasprintf(). Additionally, ensure the\nallocation was successful by checking the pointer validity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52663",
"url": "https://www.suse.com/security/cve/CVE-2023-52663"
},
{
"category": "external",
"summary": "SUSE Bug 1224630 for CVE-2023-52663",
"url": "https://bugzilla.suse.com/1224630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52663"
},
{
"cve": "CVE-2023-52664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: atlantic: eliminate double free in error handling logic\n\nDriver has a logic leak in ring data allocation/free,\nwhere aq_ring_free could be called multiple times on same ring,\nif system is under stress and got memory allocation error.\n\nRing pointer was used as an indicator of failure, but this is\nnot correct since only ring data is allocated/deallocated.\nRing itself is an array member.\n\nChanging ring allocation functions to return error code directly.\nThis simplifies error handling and eliminates aq_ring_free\non higher layer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52664",
"url": "https://www.suse.com/security/cve/CVE-2023-52664"
},
{
"category": "external",
"summary": "SUSE Bug 1224747 for CVE-2023-52664",
"url": "https://bugzilla.suse.com/1224747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52664"
},
{
"cve": "CVE-2023-52667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: fix a potential double-free in fs_any_create_groups\n\nWhen kcalloc() for ft-\u003eg succeeds but kvzalloc() for in fails,\nfs_any_create_groups() will free ft-\u003eg. However, its caller\nfs_any_create_table() will free ft-\u003eg again through calling\nmlx5e_destroy_flow_table(), which will lead to a double-free.\nFix this by setting ft-\u003eg to NULL in fs_any_create_groups().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52667",
"url": "https://www.suse.com/security/cve/CVE-2023-52667"
},
{
"category": "external",
"summary": "SUSE Bug 1224603 for CVE-2023-52667",
"url": "https://bugzilla.suse.com/1224603"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52667"
},
{
"cve": "CVE-2023-52669",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52669"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: s390/aes - Fix buffer overread in CTR mode\n\nWhen processing the last block, the s390 ctr code will always read\na whole block, even if there isn\u0027t a whole block of data left. Fix\nthis by using the actual length left and copy it into a buffer first\nfor processing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52669",
"url": "https://www.suse.com/security/cve/CVE-2023-52669"
},
{
"category": "external",
"summary": "SUSE Bug 1224637 for CVE-2023-52669",
"url": "https://bugzilla.suse.com/1224637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52669"
},
{
"cve": "CVE-2023-52670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52670"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrpmsg: virtio: Free driver_override when rpmsg_remove()\n\nFree driver_override when rpmsg_remove(), otherwise\nthe following memory leak will occur:\n\nunreferenced object 0xffff0000d55d7080 (size 128):\n comm \"kworker/u8:2\", pid 56, jiffies 4294893188 (age 214.272s)\n hex dump (first 32 bytes):\n 72 70 6d 73 67 5f 6e 73 00 00 00 00 00 00 00 00 rpmsg_ns........\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace:\n [\u003c000000009c94c9c1\u003e] __kmem_cache_alloc_node+0x1f8/0x320\n [\u003c000000002300d89b\u003e] __kmalloc_node_track_caller+0x44/0x70\n [\u003c00000000228a60c3\u003e] kstrndup+0x4c/0x90\n [\u003c0000000077158695\u003e] driver_set_override+0xd0/0x164\n [\u003c000000003e9c4ea5\u003e] rpmsg_register_device_override+0x98/0x170\n [\u003c000000001c0c89a8\u003e] rpmsg_ns_register_device+0x24/0x30\n [\u003c000000008bbf8fa2\u003e] rpmsg_probe+0x2e0/0x3ec\n [\u003c00000000e65a68df\u003e] virtio_dev_probe+0x1c0/0x280\n [\u003c00000000443331cc\u003e] really_probe+0xbc/0x2dc\n [\u003c00000000391064b1\u003e] __driver_probe_device+0x78/0xe0\n [\u003c00000000a41c9a5b\u003e] driver_probe_device+0xd8/0x160\n [\u003c000000009c3bd5df\u003e] __device_attach_driver+0xb8/0x140\n [\u003c0000000043cd7614\u003e] bus_for_each_drv+0x7c/0xd4\n [\u003c000000003b929a36\u003e] __device_attach+0x9c/0x19c\n [\u003c00000000a94e0ba8\u003e] device_initial_probe+0x14/0x20\n [\u003c000000003c999637\u003e] bus_probe_device+0xa0/0xac",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52670",
"url": "https://www.suse.com/security/cve/CVE-2023-52670"
},
{
"category": "external",
"summary": "SUSE Bug 1224696 for CVE-2023-52670",
"url": "https://bugzilla.suse.com/1224696"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52670"
},
{
"cve": "CVE-2023-52671",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52671"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix hang/underflow when transitioning to ODM4:1\n\n[Why]\nUnder some circumstances, disabling an OPTC and attempting to reclaim\nits OPP(s) for a different OPTC could cause a hang/underflow due to OPPs\nnot being properly disconnected from the disabled OPTC.\n\n[How]\nEnsure that all OPPs are unassigned from an OPTC when it gets disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52671",
"url": "https://www.suse.com/security/cve/CVE-2023-52671"
},
{
"category": "external",
"summary": "SUSE Bug 1224729 for CVE-2023-52671",
"url": "https://bugzilla.suse.com/1224729"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52671"
},
{
"cve": "CVE-2023-52673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52673"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix a debugfs null pointer error\n\n[WHY \u0026 HOW]\nCheck whether get_subvp_en() callback exists before calling it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52673",
"url": "https://www.suse.com/security/cve/CVE-2023-52673"
},
{
"category": "external",
"summary": "SUSE Bug 1224741 for CVE-2023-52673",
"url": "https://bugzilla.suse.com/1224741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52673"
},
{
"cve": "CVE-2023-52675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/imc-pmu: Add a null pointer check in update_events_in_group()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52675",
"url": "https://www.suse.com/security/cve/CVE-2023-52675"
},
{
"category": "external",
"summary": "SUSE Bug 1224504 for CVE-2023-52675",
"url": "https://bugzilla.suse.com/1224504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52675"
},
{
"cve": "CVE-2023-52676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Guard stack limits against 32bit overflow\n\nThis patch promotes the arithmetic around checking stack bounds to be\ndone in the 64-bit domain, instead of the current 32bit. The arithmetic\nimplies adding together a 64-bit register with a int offset. The\nregister was checked to be below 1\u003c\u003c29 when it was variable, but not\nwhen it was fixed. The offset either comes from an instruction (in which\ncase it is 16 bit), from another register (in which case the caller\nchecked it to be below 1\u003c\u003c29 [1]), or from the size of an argument to a\nkfunc (in which case it can be a u32 [2]). Between the register being\ninconsistently checked to be below 1\u003c\u003c29, and the offset being up to an\nu32, it appears that we were open to overflowing the `int`s which were\ncurrently used for arithmetic.\n\n[1] https://github.com/torvalds/linux/blob/815fb87b753055df2d9e50f6cd80eb10235fe3e9/kernel/bpf/verifier.c#L7494-L7498\n[2] https://github.com/torvalds/linux/blob/815fb87b753055df2d9e50f6cd80eb10235fe3e9/kernel/bpf/verifier.c#L11904",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52676",
"url": "https://www.suse.com/security/cve/CVE-2023-52676"
},
{
"category": "external",
"summary": "SUSE Bug 1224730 for CVE-2023-52676",
"url": "https://bugzilla.suse.com/1224730"
},
{
"category": "external",
"summary": "SUSE Bug 1226336 for CVE-2023-52676",
"url": "https://bugzilla.suse.com/1226336"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2023-52676"
},
{
"cve": "CVE-2023-52678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Confirm list is non-empty before utilizing list_first_entry in kfd_topology.c\n\nBefore using list_first_entry, make sure to check that list is not\nempty, if list is empty return -ENODATA.\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../amdkfd/kfd_topology.c:1347 kfd_create_indirect_link_prop() warn: can \u0027gpu_link\u0027 even be NULL?\ndrivers/gpu/drm/amd/amdgpu/../amdkfd/kfd_topology.c:1428 kfd_add_peer_prop() warn: can \u0027iolink1\u0027 even be NULL?\ndrivers/gpu/drm/amd/amdgpu/../amdkfd/kfd_topology.c:1433 kfd_add_peer_prop() warn: can \u0027iolink2\u0027 even be NULL?",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52678",
"url": "https://www.suse.com/security/cve/CVE-2023-52678"
},
{
"category": "external",
"summary": "SUSE Bug 1224617 for CVE-2023-52678",
"url": "https://bugzilla.suse.com/1224617"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52678"
},
{
"cve": "CVE-2023-52679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: Fix double free in of_parse_phandle_with_args_map\n\nIn of_parse_phandle_with_args_map() the inner loop that\niterates through the map entries calls of_node_put(new)\nto free the reference acquired by the previous iteration\nof the inner loop. This assumes that the value of \"new\" is\nNULL on the first iteration of the inner loop.\n\nMake sure that this is true in all iterations of the outer\nloop by setting \"new\" to NULL after its value is assigned to \"cur\".\n\nExtend the unittest to detect the double free and add an additional\ntest case that actually triggers this path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52679",
"url": "https://www.suse.com/security/cve/CVE-2023-52679"
},
{
"category": "external",
"summary": "SUSE Bug 1224508 for CVE-2023-52679",
"url": "https://bugzilla.suse.com/1224508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52679"
},
{
"cve": "CVE-2023-52681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: Free s_fs_info on unmount\n\nNow that we allocate a s_fs_info struct on fs context creation, we\nshould ensure that we free it again when the superblock goes away.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52681",
"url": "https://www.suse.com/security/cve/CVE-2023-52681"
},
{
"category": "external",
"summary": "SUSE Bug 1224505 for CVE-2023-52681",
"url": "https://bugzilla.suse.com/1224505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52681"
},
{
"cve": "CVE-2023-52683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52683"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: LPIT: Avoid u32 multiplication overflow\n\nIn lpit_update_residency() there is a possibility of overflow\nin multiplication, if tsc_khz is large enough (\u003e UINT_MAX/1000).\n\nChange multiplication to mul_u32_u32().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52683",
"url": "https://www.suse.com/security/cve/CVE-2023-52683"
},
{
"category": "external",
"summary": "SUSE Bug 1224627 for CVE-2023-52683",
"url": "https://bugzilla.suse.com/1224627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52683"
},
{
"cve": "CVE-2023-52685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52685"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52685",
"url": "https://www.suse.com/security/cve/CVE-2023-52685"
},
{
"category": "external",
"summary": "SUSE Bug 1224728 for CVE-2023-52685",
"url": "https://bugzilla.suse.com/1224728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52685"
},
{
"cve": "CVE-2023-52686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv: Add a null pointer check in opal_event_init()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52686",
"url": "https://www.suse.com/security/cve/CVE-2023-52686"
},
{
"category": "external",
"summary": "SUSE Bug 1224682 for CVE-2023-52686",
"url": "https://bugzilla.suse.com/1224682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52686"
},
{
"cve": "CVE-2023-52687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: safexcel - Add error handling for dma_map_sg() calls\n\nMacro dma_map_sg() may return 0 on error. This patch enables\nchecks in case of the macro failure and ensures unmapping of\npreviously mapped buffers with dma_unmap_sg().\n\nFound by Linux Verification Center (linuxtesting.org) with static\nanalysis tool SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52687",
"url": "https://www.suse.com/security/cve/CVE-2023-52687"
},
{
"category": "external",
"summary": "SUSE Bug 1224501 for CVE-2023-52687",
"url": "https://bugzilla.suse.com/1224501"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52687"
},
{
"cve": "CVE-2023-52690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv: Add a null pointer check to scom_debug_init_one()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.\nAdd a null pointer check, and release \u0027ent\u0027 to avoid memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52690",
"url": "https://www.suse.com/security/cve/CVE-2023-52690"
},
{
"category": "external",
"summary": "SUSE Bug 1224611 for CVE-2023-52690",
"url": "https://bugzilla.suse.com/1224611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52690"
},
{
"cve": "CVE-2023-52691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fix a double-free in si_dpm_init\n\nWhen the allocation of\nadev-\u003epm.dpm.dyn_state.vddc_dependency_on_dispclk.entries fails,\namdgpu_free_extended_power_table is called to free some fields of adev.\nHowever, when the control flow returns to si_dpm_sw_init, it goes to\nlabel dpm_failed and calls si_dpm_fini, which calls\namdgpu_free_extended_power_table again and free those fields again. Thus\na double-free is triggered.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52691",
"url": "https://www.suse.com/security/cve/CVE-2023-52691"
},
{
"category": "external",
"summary": "SUSE Bug 1224607 for CVE-2023-52691",
"url": "https://bugzilla.suse.com/1224607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52691"
},
{
"cve": "CVE-2023-52693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: video: check for error while searching for backlight device parent\n\nIf acpi_get_parent() called in acpi_video_dev_register_backlight()\nfails, for example, because acpi_ut_acquire_mutex() fails inside\nacpi_get_parent), this can lead to incorrect (uninitialized)\nacpi_parent handle being passed to acpi_get_pci_dev() for detecting\nthe parent pci device.\n\nCheck acpi_get_parent() result and set parent device only in case of success.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52693",
"url": "https://www.suse.com/security/cve/CVE-2023-52693"
},
{
"category": "external",
"summary": "SUSE Bug 1224686 for CVE-2023-52693",
"url": "https://bugzilla.suse.com/1224686"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52693"
},
{
"cve": "CVE-2023-52694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: tpd12s015: Drop buggy __exit annotation for remove function\n\nWith tpd12s015_remove() marked with __exit this function is discarded\nwhen the driver is compiled as a built-in. The result is that when the\ndriver unbinds there is no cleanup done which results in resource\nleakage or worse.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52694",
"url": "https://www.suse.com/security/cve/CVE-2023-52694"
},
{
"category": "external",
"summary": "SUSE Bug 1224598 for CVE-2023-52694",
"url": "https://bugzilla.suse.com/1224598"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52694"
},
{
"cve": "CVE-2023-52695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check writeback connectors in create_validate_stream_for_sink\n\n[WHY \u0026 HOW]\nThis is to check connector type to avoid\nunhandled null pointer for writeback connectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52695",
"url": "https://www.suse.com/security/cve/CVE-2023-52695"
},
{
"category": "external",
"summary": "SUSE Bug 1224506 for CVE-2023-52695",
"url": "https://bugzilla.suse.com/1224506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52695"
},
{
"cve": "CVE-2023-52696",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52696"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv: Add a null pointer check in opal_powercap_init()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52696",
"url": "https://www.suse.com/security/cve/CVE-2023-52696"
},
{
"category": "external",
"summary": "SUSE Bug 1224601 for CVE-2023-52696",
"url": "https://bugzilla.suse.com/1224601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52696"
},
{
"cve": "CVE-2023-52697",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52697"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: sof_sdw_rt_sdca_jack_common: ctx-\u003eheadset_codec_dev = NULL\n\nsof_sdw_rt_sdca_jack_exit() are used by different codecs, and some of\nthem use the same dai name.\nFor example, rt712 and rt713 both use \"rt712-sdca-aif1\" and\nsof_sdw_rt_sdca_jack_exit().\nAs a result, sof_sdw_rt_sdca_jack_exit() will be called twice by\nmc_dailink_exit_loop(). Set ctx-\u003eheadset_codec_dev = NULL; after\nput_device(ctx-\u003eheadset_codec_dev); to avoid ctx-\u003eheadset_codec_dev\nbeing put twice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52697",
"url": "https://www.suse.com/security/cve/CVE-2023-52697"
},
{
"category": "external",
"summary": "SUSE Bug 1224596 for CVE-2023-52697",
"url": "https://bugzilla.suse.com/1224596"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52697"
},
{
"cve": "CVE-2023-52882",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52882"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change\n\nWhile PLL CPUX clock rate change when CPU is running from it works in\nvast majority of cases, now and then it causes instability. This leads\nto system crashes and other undefined behaviour. After a lot of testing\n(30+ hours) while also doing a lot of frequency switches, we can\u0027t\nobserve any instability issues anymore when doing reparenting to stable\nclock like 24 MHz oscillator.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52882",
"url": "https://www.suse.com/security/cve/CVE-2023-52882"
},
{
"category": "external",
"summary": "SUSE Bug 1225692 for CVE-2023-52882",
"url": "https://bugzilla.suse.com/1225692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52882"
},
{
"cve": "CVE-2023-52923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: adapt set backend to use GC transaction API\n\nUse the GC transaction API to replace the old and buggy gc API and the\nbusy mark approach.\n\nNo set elements are removed from async garbage collection anymore,\ninstead the _DEAD bit is set on so the set element is not visible from\nlookup path anymore. Async GC enqueues transaction work that might be\naborted and retried later.\n\nrbtree and pipapo set backends does not set on the _DEAD bit from the\nsync GC path since this runs in control plane path where mutex is held.\nIn this case, set elements are deactivated, removed and then released\nvia RCU callback, sync GC never fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52923",
"url": "https://www.suse.com/security/cve/CVE-2023-52923"
},
{
"category": "external",
"summary": "SUSE Bug 1236104 for CVE-2023-52923",
"url": "https://bugzilla.suse.com/1236104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-52923"
},
{
"cve": "CVE-2024-22099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-22099"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C.\n\nThis issue affects Linux kernel: v2.6.12-rc2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-22099",
"url": "https://www.suse.com/security/cve/CVE-2024-22099"
},
{
"category": "external",
"summary": "SUSE Bug 1219170 for CVE-2024-22099",
"url": "https://bugzilla.suse.com/1219170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-22099"
},
{
"cve": "CVE-2024-26611",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26611"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: fix usage of multi-buffer BPF helpers for ZC XDP\n\nCurrently when packet is shrunk via bpf_xdp_adjust_tail() and memory\ntype is set to MEM_TYPE_XSK_BUFF_POOL, null ptr dereference happens:\n\n[1136314.192256] BUG: kernel NULL pointer dereference, address:\n0000000000000034\n[1136314.203943] #PF: supervisor read access in kernel mode\n[1136314.213768] #PF: error_code(0x0000) - not-present page\n[1136314.223550] PGD 0 P4D 0\n[1136314.230684] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[1136314.239621] CPU: 8 PID: 54203 Comm: xdpsock Not tainted 6.6.0+ #257\n[1136314.250469] Hardware name: Intel Corporation S2600WFT/S2600WFT,\nBIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[1136314.265615] RIP: 0010:__xdp_return+0x6c/0x210\n[1136314.274653] Code: ad 00 48 8b 47 08 49 89 f8 a8 01 0f 85 9b 01 00 00 0f 1f 44 00 00 f0 41 ff 48 34 75 32 4c 89 c7 e9 79 cd 80 ff 83 fe 03 75 17 \u003cf6\u003e 41 34 01 0f 85 02 01 00 00 48 89 cf e9 22 cc 1e 00 e9 3d d2 86\n[1136314.302907] RSP: 0018:ffffc900089f8db0 EFLAGS: 00010246\n[1136314.312967] RAX: ffffc9003168aed0 RBX: ffff8881c3300000 RCX:\n0000000000000000\n[1136314.324953] RDX: 0000000000000000 RSI: 0000000000000003 RDI:\nffffc9003168c000\n[1136314.336929] RBP: 0000000000000ae0 R08: 0000000000000002 R09:\n0000000000010000\n[1136314.348844] R10: ffffc9000e495000 R11: 0000000000000040 R12:\n0000000000000001\n[1136314.360706] R13: 0000000000000524 R14: ffffc9003168aec0 R15:\n0000000000000001\n[1136314.373298] FS: 00007f8df8bbcb80(0000) GS:ffff8897e0e00000(0000)\nknlGS:0000000000000000\n[1136314.386105] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[1136314.396532] CR2: 0000000000000034 CR3: 00000001aa912002 CR4:\n00000000007706f0\n[1136314.408377] DR0: 0000000000000000 DR1: 0000000000000000 DR2:\n0000000000000000\n[1136314.420173] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:\n0000000000000400\n[1136314.431890] PKRU: 55555554\n[1136314.439143] Call Trace:\n[1136314.446058] \u003cIRQ\u003e\n[1136314.452465] ? __die+0x20/0x70\n[1136314.459881] ? page_fault_oops+0x15b/0x440\n[1136314.468305] ? exc_page_fault+0x6a/0x150\n[1136314.476491] ? asm_exc_page_fault+0x22/0x30\n[1136314.484927] ? __xdp_return+0x6c/0x210\n[1136314.492863] bpf_xdp_adjust_tail+0x155/0x1d0\n[1136314.501269] bpf_prog_ccc47ae29d3b6570_xdp_sock_prog+0x15/0x60\n[1136314.511263] ice_clean_rx_irq_zc+0x206/0xc60 [ice]\n[1136314.520222] ? ice_xmit_zc+0x6e/0x150 [ice]\n[1136314.528506] ice_napi_poll+0x467/0x670 [ice]\n[1136314.536858] ? ttwu_do_activate.constprop.0+0x8f/0x1a0\n[1136314.546010] __napi_poll+0x29/0x1b0\n[1136314.553462] net_rx_action+0x133/0x270\n[1136314.561619] __do_softirq+0xbe/0x28e\n[1136314.569303] do_softirq+0x3f/0x60\n\nThis comes from __xdp_return() call with xdp_buff argument passed as\nNULL which is supposed to be consumed by xsk_buff_free() call.\n\nTo address this properly, in ZC case, a node that represents the frag\nbeing removed has to be pulled out of xskb_list. Introduce\nappropriate xsk helpers to do such node operation and use them\naccordingly within bpf_xdp_adjust_tail().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26611",
"url": "https://www.suse.com/security/cve/CVE-2024-26611"
},
{
"category": "external",
"summary": "SUSE Bug 1221303 for CVE-2024-26611",
"url": "https://bugzilla.suse.com/1221303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26611"
},
{
"cve": "CVE-2024-26742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: smartpqi: Fix disable_managed_interrupts\n\nCorrect blk-mq registration issue with module parameter\ndisable_managed_interrupts enabled.\n\nWhen we turn off the default PCI_IRQ_AFFINITY flag, the driver needs to\nregister with blk-mq using blk_mq_map_queues(). The driver is currently\ncalling blk_mq_pci_map_queues() which results in a stack trace and possibly\nundefined behavior.\n\nStack Trace:\n[ 7.860089] scsi host2: smartpqi\n[ 7.871934] WARNING: CPU: 0 PID: 238 at block/blk-mq-pci.c:52 blk_mq_pci_map_queues+0xca/0xd0\n[ 7.889231] Modules linked in: sd_mod t10_pi sg uas smartpqi(+) crc32c_intel scsi_transport_sas usb_storage dm_mirror dm_region_hash dm_log dm_mod ipmi_devintf ipmi_msghandler fuse\n[ 7.924755] CPU: 0 PID: 238 Comm: kworker/0:3 Not tainted 4.18.0-372.88.1.el8_6_smartpqi_test.x86_64 #1\n[ 7.944336] Hardware name: HPE ProLiant DL380 Gen10/ProLiant DL380 Gen10, BIOS U30 03/08/2022\n[ 7.963026] Workqueue: events work_for_cpu_fn\n[ 7.978275] RIP: 0010:blk_mq_pci_map_queues+0xca/0xd0\n[ 7.978278] Code: 48 89 de 89 c7 e8 f6 0f 4f 00 3b 05 c4 b7 8e 01 72 e1 5b 31 c0 5d 41 5c 41 5d 41 5e 41 5f e9 7d df 73 00 31 c0 e9 76 df 73 00 \u003c0f\u003e 0b eb bc 90 90 0f 1f 44 00 00 41 57 49 89 ff 41 56 41 55 41 54\n[ 7.978280] RSP: 0018:ffffa95fc3707d50 EFLAGS: 00010216\n[ 7.978283] RAX: 00000000ffffffff RBX: 0000000000000000 RCX: 0000000000000010\n[ 7.978284] RDX: 0000000000000004 RSI: 0000000000000000 RDI: ffff9190c32d4310\n[ 7.978286] RBP: 0000000000000000 R08: ffffa95fc3707d38 R09: ffff91929b81ac00\n[ 7.978287] R10: 0000000000000001 R11: ffffa95fc3707ac0 R12: 0000000000000000\n[ 7.978288] R13: ffff9190c32d4000 R14: 00000000ffffffff R15: ffff9190c4c950a8\n[ 7.978290] FS: 0000000000000000(0000) GS:ffff9193efc00000(0000) knlGS:0000000000000000\n[ 7.978292] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 8.172814] CR2: 000055d11166c000 CR3: 00000002dae10002 CR4: 00000000007706f0\n[ 8.172816] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 8.172817] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 8.172818] PKRU: 55555554\n[ 8.172819] Call Trace:\n[ 8.172823] blk_mq_alloc_tag_set+0x12e/0x310\n[ 8.264339] scsi_add_host_with_dma.cold.9+0x30/0x245\n[ 8.279302] pqi_ctrl_init+0xacf/0xc8e [smartpqi]\n[ 8.294085] ? pqi_pci_probe+0x480/0x4c8 [smartpqi]\n[ 8.309015] pqi_pci_probe+0x480/0x4c8 [smartpqi]\n[ 8.323286] local_pci_probe+0x42/0x80\n[ 8.337855] work_for_cpu_fn+0x16/0x20\n[ 8.351193] process_one_work+0x1a7/0x360\n[ 8.364462] ? create_worker+0x1a0/0x1a0\n[ 8.379252] worker_thread+0x1ce/0x390\n[ 8.392623] ? create_worker+0x1a0/0x1a0\n[ 8.406295] kthread+0x10a/0x120\n[ 8.418428] ? set_kthread_struct+0x50/0x50\n[ 8.431532] ret_from_fork+0x1f/0x40\n[ 8.444137] ---[ end trace 1bf0173d39354506 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26742",
"url": "https://www.suse.com/security/cve/CVE-2024-26742"
},
{
"category": "external",
"summary": "SUSE Bug 1222608 for CVE-2024-26742",
"url": "https://bugzilla.suse.com/1222608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26742"
},
{
"cve": "CVE-2024-26761",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26761"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS window\n\nThe Linux CXL subsystem is built on the assumption that HPA == SPA.\nThat is, the host physical address (HPA) the HDM decoder registers are\nprogrammed with are system physical addresses (SPA).\n\nDuring HDM decoder setup, the DVSEC CXL range registers (cxl-3.1,\n8.1.3.8) are checked if the memory is enabled and the CXL range is in\na HPA window that is described in a CFMWS structure of the CXL host\nbridge (cxl-3.1, 9.18.1.3).\n\nNow, if the HPA is not an SPA, the CXL range does not match a CFMWS\nwindow and the CXL memory range will be disabled then. The HDM decoder\nstops working which causes system memory being disabled and further a\nsystem hang during HDM decoder initialization, typically when a CXL\nenabled kernel boots.\n\nPrevent a system hang and do not disable the HDM decoder if the\ndecoder\u0027s CXL range is not found in a CFMWS window.\n\nNote the change only fixes a hardware hang, but does not implement\nHPA/SPA translation. Support for this can be added in a follow on\npatch series.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26761",
"url": "https://www.suse.com/security/cve/CVE-2024-26761"
},
{
"category": "external",
"summary": "SUSE Bug 1230375 for CVE-2024-26761",
"url": "https://bugzilla.suse.com/1230375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26761"
},
{
"cve": "CVE-2024-26764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio\n\nIf kiocb_set_cancel_fn() is called for I/O submitted via io_uring, the\nfollowing kernel warning appears:\n\nWARNING: CPU: 3 PID: 368 at fs/aio.c:598 kiocb_set_cancel_fn+0x9c/0xa8\nCall trace:\n kiocb_set_cancel_fn+0x9c/0xa8\n ffs_epfile_read_iter+0x144/0x1d0\n io_read+0x19c/0x498\n io_issue_sqe+0x118/0x27c\n io_submit_sqes+0x25c/0x5fc\n __arm64_sys_io_uring_enter+0x104/0xab0\n invoke_syscall+0x58/0x11c\n el0_svc_common+0xb4/0xf4\n do_el0_svc+0x2c/0xb0\n el0_svc+0x2c/0xa4\n el0t_64_sync_handler+0x68/0xb4\n el0t_64_sync+0x1a4/0x1a8\n\nFix this by setting the IOCB_AIO_RW flag for read and write I/O that is\nsubmitted by libaio.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26764",
"url": "https://www.suse.com/security/cve/CVE-2024-26764"
},
{
"category": "external",
"summary": "SUSE Bug 1222721 for CVE-2024-26764",
"url": "https://bugzilla.suse.com/1222721"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26764"
},
{
"cve": "CVE-2024-26786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Fix iopt_access_list_id overwrite bug\n\nSyzkaller reported the following WARN_ON:\n WARNING: CPU: 1 PID: 4738 at drivers/iommu/iommufd/io_pagetable.c:1360\n\n Call Trace:\n iommufd_access_change_ioas+0x2fe/0x4e0\n iommufd_access_destroy_object+0x50/0xb0\n iommufd_object_remove+0x2a3/0x490\n iommufd_object_destroy_user\n iommufd_access_destroy+0x71/0xb0\n iommufd_test_staccess_release+0x89/0xd0\n __fput+0x272/0xb50\n __fput_sync+0x4b/0x60\n __do_sys_close\n __se_sys_close\n __x64_sys_close+0x8b/0x110\n do_syscall_x64\n\nThe mismatch between the access pointer in the list and the passed-in\npointer is resulting from an overwrite of access-\u003eiopt_access_list_id, in\niopt_add_access(). Called from iommufd_access_change_ioas() when\nxa_alloc() succeeds but iopt_calculate_iova_alignment() fails.\n\nAdd a new_id in iopt_add_access() and only update iopt_access_list_id when\nreturning successfully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26786",
"url": "https://www.suse.com/security/cve/CVE-2024-26786"
},
{
"category": "external",
"summary": "SUSE Bug 1222780 for CVE-2024-26786",
"url": "https://bugzilla.suse.com/1222780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26786"
},
{
"cve": "CVE-2024-26794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26794"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26794",
"url": "https://www.suse.com/security/cve/CVE-2024-26794"
},
{
"category": "external",
"summary": "SUSE Bug 1222426 for CVE-2024-26794",
"url": "https://bugzilla.suse.com/1222426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26794"
},
{
"cve": "CVE-2024-26846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26846"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fc: do not wait in vain when unloading module\n\nThe module exit path has race between deleting all controllers and\nfreeing \u0027left over IDs\u0027. To prevent double free a synchronization\nbetween nvme_delete_ctrl and ida_destroy has been added by the initial\ncommit.\n\nThere is some logic around trying to prevent from hanging forever in\nwait_for_completion, though it does not handling all cases. E.g.\nblktests is able to reproduce the situation where the module unload\nhangs forever.\n\nIf we completely rely on the cleanup code executed from the\nnvme_delete_ctrl path, all IDs will be freed eventually. This makes\ncalling ida_destroy unnecessary. We only have to ensure that all\nnvme_delete_ctrl code has been executed before we leave\nnvme_fc_exit_module. This is done by flushing the nvme_delete_wq\nworkqueue.\n\nWhile at it, remove the unused nvme_fc_wq workqueue too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26846",
"url": "https://www.suse.com/security/cve/CVE-2024-26846"
},
{
"category": "external",
"summary": "SUSE Bug 1223023 for CVE-2024-26846",
"url": "https://bugzilla.suse.com/1223023"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26846"
},
{
"cve": "CVE-2024-26853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26853"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigc: avoid returning frame twice in XDP_REDIRECT\n\nWhen a frame can not be transmitted in XDP_REDIRECT\n(e.g. due to a full queue), it is necessary to free\nit by calling xdp_return_frame_rx_napi.\n\nHowever, this is the responsibility of the caller of\nthe ndo_xdp_xmit (see for example bq_xmit_all in\nkernel/bpf/devmap.c) and thus calling it inside\nigc_xdp_xmit (which is the ndo_xdp_xmit of the igc\ndriver) as well will lead to memory corruption.\n\nIn fact, bq_xmit_all expects that it can return all\nframes after the last successfully transmitted one.\nTherefore, break for the first not transmitted frame,\nbut do not call xdp_return_frame_rx_napi in igc_xdp_xmit.\nThis is equally implemented in other Intel drivers\nsuch as the igb.\n\nThere are two alternatives to this that were rejected:\n1. Return num_frames as all the frames would have been\n transmitted and release them inside igc_xdp_xmit.\n While it might work technically, it is not what\n the return value is meant to represent (i.e. the\n number of SUCCESSFULLY transmitted packets).\n2. Rework kernel/bpf/devmap.c and all drivers to\n support non-consecutively dropped packets.\n Besides being complex, it likely has a negative\n performance impact without a significant gain\n since it is anyway unlikely that the next frame\n can be transmitted if the previous one was dropped.\n\nThe memory corruption can be reproduced with\nthe following script which leads to a kernel panic\nafter a few seconds. It basically generates more\ntraffic than a i225 NIC can transmit and pushes it\nvia XDP_REDIRECT from a virtual interface to the\nphysical interface where frames get dropped.\n\n #!/bin/bash\n INTERFACE=enp4s0\n INTERFACE_IDX=`cat /sys/class/net/$INTERFACE/ifindex`\n\n sudo ip link add dev veth1 type veth peer name veth2\n sudo ip link set up $INTERFACE\n sudo ip link set up veth1\n sudo ip link set up veth2\n\n cat \u003c\u003c EOF \u003e redirect.bpf.c\n\n SEC(\"prog\")\n int redirect(struct xdp_md *ctx)\n {\n return bpf_redirect($INTERFACE_IDX, 0);\n }\n\n char _license[] SEC(\"license\") = \"GPL\";\n EOF\n clang -O2 -g -Wall -target bpf -c redirect.bpf.c -o redirect.bpf.o\n sudo ip link set veth2 xdp obj redirect.bpf.o\n\n cat \u003c\u003c EOF \u003e pass.bpf.c\n\n SEC(\"prog\")\n int pass(struct xdp_md *ctx)\n {\n return XDP_PASS;\n }\n\n char _license[] SEC(\"license\") = \"GPL\";\n EOF\n clang -O2 -g -Wall -target bpf -c pass.bpf.c -o pass.bpf.o\n sudo ip link set $INTERFACE xdp obj pass.bpf.o\n\n cat \u003c\u003c EOF \u003e trafgen.cfg\n\n {\n /* Ethernet Header */\n 0xe8, 0x6a, 0x64, 0x41, 0xbf, 0x46,\n 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,\n const16(ETH_P_IP),\n\n /* IPv4 Header */\n 0b01000101, 0, # IPv4 version, IHL, TOS\n const16(1028), # IPv4 total length (UDP length + 20 bytes (IP header))\n const16(2), # IPv4 ident\n 0b01000000, 0, # IPv4 flags, fragmentation off\n 64, # IPv4 TTL\n 17, # Protocol UDP\n csumip(14, 33), # IPv4 checksum\n\n /* UDP Header */\n 10, 0, 1, 1, # IP Src - adapt as needed\n 10, 0, 1, 2, # IP Dest - adapt as needed\n const16(6666), # UDP Src Port\n const16(6666), # UDP Dest Port\n const16(1008), # UDP length (UDP header 8 bytes + payload length)\n csumudp(14, 34), # UDP checksum\n\n /* Payload */\n fill(\u0027W\u0027, 1000),\n }\n EOF\n\n sudo trafgen -i trafgen.cfg -b3000MB -o veth1 --cpp",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26853",
"url": "https://www.suse.com/security/cve/CVE-2024-26853"
},
{
"category": "external",
"summary": "SUSE Bug 1223061 for CVE-2024-26853",
"url": "https://bugzilla.suse.com/1223061"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26853"
},
{
"cve": "CVE-2024-26854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix uninitialized dplls mutex usage\n\nThe pf-\u003edplls.lock mutex is initialized too late, after its first use.\nMove it to the top of ice_dpll_init.\nNote that the \"err_exit\" error path destroys the mutex. And the mutex is\nthe last thing destroyed in ice_dpll_deinit.\nThis fixes the following warning with CONFIG_DEBUG_MUTEXES:\n\n ice 0000:10:00.0: The DDP package was successfully loaded: ICE OS Default Package version 1.3.36.0\n ice 0000:10:00.0: 252.048 Gb/s available PCIe bandwidth (16.0 GT/s PCIe x16 link)\n ice 0000:10:00.0: PTP init successful\n ------------[ cut here ]------------\n DEBUG_LOCKS_WARN_ON(lock-\u003emagic != lock)\n WARNING: CPU: 0 PID: 410 at kernel/locking/mutex.c:587 __mutex_lock+0x773/0xd40\n Modules linked in: crct10dif_pclmul crc32_pclmul crc32c_intel polyval_clmulni polyval_generic ice(+) nvme nvme_c\u003e\n CPU: 0 PID: 410 Comm: kworker/0:4 Not tainted 6.8.0-rc5+ #3\n Hardware name: HPE ProLiant DL110 Gen10 Plus/ProLiant DL110 Gen10 Plus, BIOS U56 10/19/2023\n Workqueue: events work_for_cpu_fn\n RIP: 0010:__mutex_lock+0x773/0xd40\n Code: c0 0f 84 1d f9 ff ff 44 8b 35 0d 9c 69 01 45 85 f6 0f 85 0d f9 ff ff 48 c7 c6 12 a2 a9 85 48 c7 c7 12 f1 a\u003e\n RSP: 0018:ff7eb1a3417a7ae0 EFLAGS: 00010286\n RAX: 0000000000000000 RBX: 0000000000000002 RCX: 0000000000000000\n RDX: 0000000000000002 RSI: ffffffff85ac2bff RDI: 00000000ffffffff\n RBP: ff7eb1a3417a7b80 R08: 0000000000000000 R09: 00000000ffffbfff\n R10: ff7eb1a3417a7978 R11: ff32b80f7fd2e568 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: ff32b7f02c50e0d8\n FS: 0000000000000000(0000) GS:ff32b80efe800000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 000055b5852cc000 CR3: 000000003c43a004 CR4: 0000000000771ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x84/0x170\n ? __mutex_lock+0x773/0xd40\n ? report_bug+0x1c7/0x1d0\n ? prb_read_valid+0x1b/0x30\n ? handle_bug+0x42/0x70\n ? exc_invalid_op+0x18/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? __mutex_lock+0x773/0xd40\n ? rcu_is_watching+0x11/0x50\n ? __kmalloc_node_track_caller+0x346/0x490\n ? ice_dpll_lock_status_get+0x28/0x50 [ice]\n ? __pfx_ice_dpll_lock_status_get+0x10/0x10 [ice]\n ? ice_dpll_lock_status_get+0x28/0x50 [ice]\n ice_dpll_lock_status_get+0x28/0x50 [ice]\n dpll_device_get_one+0x14f/0x2e0\n dpll_device_event_send+0x7d/0x150\n dpll_device_register+0x124/0x180\n ice_dpll_init_dpll+0x7b/0xd0 [ice]\n ice_dpll_init+0x224/0xa40 [ice]\n ? _dev_info+0x70/0x90\n ice_load+0x468/0x690 [ice]\n ice_probe+0x75b/0xa10 [ice]\n ? _raw_spin_unlock_irqrestore+0x4f/0x80\n ? process_one_work+0x1a3/0x500\n local_pci_probe+0x47/0xa0\n work_for_cpu_fn+0x17/0x30\n process_one_work+0x20d/0x500\n worker_thread+0x1df/0x3e0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x103/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n irq event stamp: 125197\n hardirqs last enabled at (125197): [\u003cffffffff8416409d\u003e] finish_task_switch.isra.0+0x12d/0x3d0\n hardirqs last disabled at (125196): [\u003cffffffff85134044\u003e] __schedule+0xea4/0x19f0\n softirqs last enabled at (105334): [\u003cffffffff84e1e65a\u003e] napi_get_frags_check+0x1a/0x60\n softirqs last disabled at (105332): [\u003cffffffff84e1e65a\u003e] napi_get_frags_check+0x1a/0x60\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26854",
"url": "https://www.suse.com/security/cve/CVE-2024-26854"
},
{
"category": "external",
"summary": "SUSE Bug 1223039 for CVE-2024-26854",
"url": "https://bugzilla.suse.com/1223039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26854"
},
{
"cve": "CVE-2024-26855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()\n\nThe function ice_bridge_setlink() may encounter a NULL pointer dereference\nif nlmsg_find_attr() returns NULL and br_spec is dereferenced subsequently\nin nla_for_each_nested(). To address this issue, add a check to ensure that\nbr_spec is not NULL before proceeding with the nested attribute iteration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26855",
"url": "https://www.suse.com/security/cve/CVE-2024-26855"
},
{
"category": "external",
"summary": "SUSE Bug 1223051 for CVE-2024-26855",
"url": "https://bugzilla.suse.com/1223051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26855"
},
{
"cve": "CVE-2024-26856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26856"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sparx5: Fix use after free inside sparx5_del_mact_entry\n\nBased on the static analyzis of the code it looks like when an entry\nfrom the MAC table was removed, the entry was still used after being\nfreed. More precise the vid of the mac_entry was used after calling\ndevm_kfree on the mac_entry.\nThe fix consists in first using the vid of the mac_entry to delete the\nentry from the HW and after that to free it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26856",
"url": "https://www.suse.com/security/cve/CVE-2024-26856"
},
{
"category": "external",
"summary": "SUSE Bug 1223052 for CVE-2024-26856",
"url": "https://bugzilla.suse.com/1223052"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26856"
},
{
"cve": "CVE-2024-26857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: make sure to pull inner header in geneve_rx()\n\nsyzbot triggered a bug in geneve_rx() [1]\n\nIssue is similar to the one I fixed in commit 8d975c15c0cd\n(\"ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()\")\n\nWe have to save skb-\u003enetwork_header in a temporary variable\nin order to be able to recompute the network_header pointer\nafter a pskb_inet_may_pull() call.\n\npskb_inet_may_pull() makes sure the needed headers are in skb-\u003ehead.\n\n[1]\nBUG: KMSAN: uninit-value in IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n BUG: KMSAN: uninit-value in geneve_rx drivers/net/geneve.c:279 [inline]\n BUG: KMSAN: uninit-value in geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391\n IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n geneve_rx drivers/net/geneve.c:279 [inline]\n geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391\n udp_queue_rcv_one_skb+0x1d39/0x1f20 net/ipv4/udp.c:2108\n udp_queue_rcv_skb+0x6ae/0x6e0 net/ipv4/udp.c:2186\n udp_unicast_rcv_skb+0x184/0x4b0 net/ipv4/udp.c:2346\n __udp4_lib_rcv+0x1c6b/0x3010 net/ipv4/udp.c:2422\n udp_rcv+0x7d/0xa0 net/ipv4/udp.c:2604\n ip_protocol_deliver_rcu+0x264/0x1300 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x2b8/0x440 net/ipv4/ip_input.c:233\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip_local_deliver+0x21f/0x490 net/ipv4/ip_input.c:254\n dst_input include/net/dst.h:461 [inline]\n ip_rcv_finish net/ipv4/ip_input.c:449 [inline]\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip_rcv+0x46f/0x760 net/ipv4/ip_input.c:569\n __netif_receive_skb_one_core net/core/dev.c:5534 [inline]\n __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5648\n process_backlog+0x480/0x8b0 net/core/dev.c:5976\n __napi_poll+0xe3/0x980 net/core/dev.c:6576\n napi_poll net/core/dev.c:6645 [inline]\n net_rx_action+0x8b8/0x1870 net/core/dev.c:6778\n __do_softirq+0x1b7/0x7c5 kernel/softirq.c:553\n do_softirq+0x9a/0xf0 kernel/softirq.c:454\n __local_bh_enable_ip+0x9b/0xa0 kernel/softirq.c:381\n local_bh_enable include/linux/bottom_half.h:33 [inline]\n rcu_read_unlock_bh include/linux/rcupdate.h:820 [inline]\n __dev_queue_xmit+0x2768/0x51c0 net/core/dev.c:4378\n dev_queue_xmit include/linux/netdevice.h:3171 [inline]\n packet_xmit+0x9c/0x6b0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3081 [inline]\n packet_sendmsg+0x8aef/0x9f10 net/packet/af_packet.c:3113\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x735/0xa10 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3819 [inline]\n slab_alloc_node mm/slub.c:3860 [inline]\n kmem_cache_alloc_node+0x5cb/0xbc0 mm/slub.c:3903\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x352/0x790 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1296 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6394\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2783\n packet_alloc_skb net/packet/af_packet.c:2930 [inline]\n packet_snd net/packet/af_packet.c:3024 [inline]\n packet_sendmsg+0x70c2/0x9f10 net/packet/af_packet.c:3113\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x735/0xa10 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26857",
"url": "https://www.suse.com/security/cve/CVE-2024-26857"
},
{
"category": "external",
"summary": "SUSE Bug 1223058 for CVE-2024-26857",
"url": "https://bugzilla.suse.com/1223058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26857"
},
{
"cve": "CVE-2024-26858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26858"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map\n\nJust simply reordering the functions mlx5e_ptp_metadata_map_put and\nmlx5e_ptpsq_track_metadata in the mlx5e_txwqe_complete context is not good\nenough since both the compiler and CPU are free to reorder these two\nfunctions. If reordering does occur, the issue that was supposedly fixed by\n7e3f3ba97e6c (\"net/mlx5e: Track xmit submission to PTP WQ after populating\nmetadata map\") will be seen. This will lead to NULL pointer dereferences in\nmlx5e_ptpsq_mark_ts_cqes_undelivered in the NAPI polling context due to the\ntracking list being populated before the metadata map.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26858",
"url": "https://www.suse.com/security/cve/CVE-2024-26858"
},
{
"category": "external",
"summary": "SUSE Bug 1223020 for CVE-2024-26858",
"url": "https://bugzilla.suse.com/1223020"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26858"
},
{
"cve": "CVE-2024-26861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: receive: annotate data-race around receiving_counter.counter\n\nSyzkaller with KCSAN identified a data-race issue when accessing\nkeypair-\u003ereceiving_counter.counter. Use READ_ONCE() and WRITE_ONCE()\nannotations to mark the data race as intentional.\n\n BUG: KCSAN: data-race in wg_packet_decrypt_worker / wg_packet_rx_poll\n\n write to 0xffff888107765888 of 8 bytes by interrupt on cpu 0:\n counter_validate drivers/net/wireguard/receive.c:321 [inline]\n wg_packet_rx_poll+0x3ac/0xf00 drivers/net/wireguard/receive.c:461\n __napi_poll+0x60/0x3b0 net/core/dev.c:6536\n napi_poll net/core/dev.c:6605 [inline]\n net_rx_action+0x32b/0x750 net/core/dev.c:6738\n __do_softirq+0xc4/0x279 kernel/softirq.c:553\n do_softirq+0x5e/0x90 kernel/softirq.c:454\n __local_bh_enable_ip+0x64/0x70 kernel/softirq.c:381\n __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline]\n _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210\n spin_unlock_bh include/linux/spinlock.h:396 [inline]\n ptr_ring_consume_bh include/linux/ptr_ring.h:367 [inline]\n wg_packet_decrypt_worker+0x6c5/0x700 drivers/net/wireguard/receive.c:499\n process_one_work kernel/workqueue.c:2633 [inline]\n ...\n\n read to 0xffff888107765888 of 8 bytes by task 3196 on cpu 1:\n decrypt_packet drivers/net/wireguard/receive.c:252 [inline]\n wg_packet_decrypt_worker+0x220/0x700 drivers/net/wireguard/receive.c:501\n process_one_work kernel/workqueue.c:2633 [inline]\n process_scheduled_works+0x5b8/0xa30 kernel/workqueue.c:2706\n worker_thread+0x525/0x730 kernel/workqueue.c:2787\n ...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26861",
"url": "https://www.suse.com/security/cve/CVE-2024-26861"
},
{
"category": "external",
"summary": "SUSE Bug 1223076 for CVE-2024-26861",
"url": "https://bugzilla.suse.com/1223076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26861"
},
{
"cve": "CVE-2024-26866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26866"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: lpspi: Avoid potential use-after-free in probe()\n\nfsl_lpspi_probe() is allocating/disposing memory manually with\nspi_alloc_host()/spi_alloc_target(), but uses\ndevm_spi_register_controller(). In case of error after the latter call the\nmemory will be explicitly freed in the probe function by\nspi_controller_put() call, but used afterwards by \"devm\" management outside\nprobe() (spi_unregister_controller() \u003c- devm_spi_unregister() below).\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000070\n...\nCall trace:\n kernfs_find_ns\n kernfs_find_and_get_ns\n sysfs_remove_group\n sysfs_remove_groups\n device_remove_attrs\n device_del\n spi_unregister_controller\n devm_spi_unregister\n release_nodes\n devres_release_all\n really_probe\n driver_probe_device\n __device_attach_driver\n bus_for_each_drv\n __device_attach\n device_initial_probe\n bus_probe_device\n deferred_probe_work_func\n process_one_work\n worker_thread\n kthread\n ret_from_fork",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26866",
"url": "https://www.suse.com/security/cve/CVE-2024-26866"
},
{
"category": "external",
"summary": "SUSE Bug 1223024 for CVE-2024-26866",
"url": "https://bugzilla.suse.com/1223024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26866"
},
{
"cve": "CVE-2024-26868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26868"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs: fix panic when nfs4_ff_layout_prepare_ds() fails\n\nWe\u0027ve been seeing the following panic in production\n\nBUG: kernel NULL pointer dereference, address: 0000000000000065\nPGD 2f485f067 P4D 2f485f067 PUD 2cc5d8067 PMD 0\nRIP: 0010:ff_layout_cancel_io+0x3a/0x90 [nfs_layout_flexfiles]\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x78/0xc0\n ? page_fault_oops+0x286/0x380\n ? __rpc_execute+0x2c3/0x470 [sunrpc]\n ? rpc_new_task+0x42/0x1c0 [sunrpc]\n ? exc_page_fault+0x5d/0x110\n ? asm_exc_page_fault+0x22/0x30\n ? ff_layout_free_layoutreturn+0x110/0x110 [nfs_layout_flexfiles]\n ? ff_layout_cancel_io+0x3a/0x90 [nfs_layout_flexfiles]\n ? ff_layout_cancel_io+0x6f/0x90 [nfs_layout_flexfiles]\n pnfs_mark_matching_lsegs_return+0x1b0/0x360 [nfsv4]\n pnfs_error_mark_layout_for_return+0x9e/0x110 [nfsv4]\n ? ff_layout_send_layouterror+0x50/0x160 [nfs_layout_flexfiles]\n nfs4_ff_layout_prepare_ds+0x11f/0x290 [nfs_layout_flexfiles]\n ff_layout_pg_init_write+0xf0/0x1f0 [nfs_layout_flexfiles]\n __nfs_pageio_add_request+0x154/0x6c0 [nfs]\n nfs_pageio_add_request+0x26b/0x380 [nfs]\n nfs_do_writepage+0x111/0x1e0 [nfs]\n nfs_writepages_callback+0xf/0x30 [nfs]\n write_cache_pages+0x17f/0x380\n ? nfs_pageio_init_write+0x50/0x50 [nfs]\n ? nfs_writepages+0x6d/0x210 [nfs]\n ? nfs_writepages+0x6d/0x210 [nfs]\n nfs_writepages+0x125/0x210 [nfs]\n do_writepages+0x67/0x220\n ? generic_perform_write+0x14b/0x210\n filemap_fdatawrite_wbc+0x5b/0x80\n file_write_and_wait_range+0x6d/0xc0\n nfs_file_fsync+0x81/0x170 [nfs]\n ? nfs_file_mmap+0x60/0x60 [nfs]\n __x64_sys_fsync+0x53/0x90\n do_syscall_64+0x3d/0x90\n entry_SYSCALL_64_after_hwframe+0x46/0xb0\n\nInspecting the core with drgn I was able to pull this\n\n \u003e\u003e\u003e prog.crashed_thread().stack_trace()[0]\n #0 at 0xffffffffa079657a (ff_layout_cancel_io+0x3a/0x84) in ff_layout_cancel_io at fs/nfs/flexfilelayout/flexfilelayout.c:2021:27\n \u003e\u003e\u003e prog.crashed_thread().stack_trace()[0][\u0027idx\u0027]\n (u32)1\n \u003e\u003e\u003e prog.crashed_thread().stack_trace()[0][\u0027flseg\u0027].mirror_array[1].mirror_ds\n (struct nfs4_ff_layout_ds *)0xffffffffffffffed\n\nThis is clear from the stack trace, we call nfs4_ff_layout_prepare_ds()\nwhich could error out initializing the mirror_ds, and then we go to\nclean it all up and our check is only for if (!mirror-\u003emirror_ds). This\nis inconsistent with the rest of the users of mirror_ds, which have\n\n if (IS_ERR_OR_NULL(mirror_ds))\n\nto keep from tripping over this exact scenario. Fix this up in\nff_layout_cancel_io() to make sure we don\u0027t panic when we get an error.\nI also spot checked all the other instances of checking mirror_ds and we\nappear to be doing the correct checks everywhere, only unconditionally\ndereferencing mirror_ds when we know it would be valid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26868",
"url": "https://www.suse.com/security/cve/CVE-2024-26868"
},
{
"category": "external",
"summary": "SUSE Bug 1223038 for CVE-2024-26868",
"url": "https://bugzilla.suse.com/1223038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26868"
},
{
"cve": "CVE-2024-26870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102\n\nA call to listxattr() with a buffer size = 0 returns the actual\nsize of the buffer needed for a subsequent call. When size \u003e 0,\nnfs4_listxattr() does not return an error because either\ngeneric_listxattr() or nfs4_listxattr_nfs4_label() consumes\nexactly all the bytes then size is 0 when calling\nnfs4_listxattr_nfs4_user() which then triggers the following\nkernel BUG:\n\n [ 99.403778] kernel BUG at mm/usercopy.c:102!\n [ 99.404063] Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n [ 99.408463] CPU: 0 PID: 3310 Comm: python3 Not tainted 6.6.0-61.fc40.aarch64 #1\n [ 99.415827] Call trace:\n [ 99.415985] usercopy_abort+0x70/0xa0\n [ 99.416227] __check_heap_object+0x134/0x158\n [ 99.416505] check_heap_object+0x150/0x188\n [ 99.416696] __check_object_size.part.0+0x78/0x168\n [ 99.416886] __check_object_size+0x28/0x40\n [ 99.417078] listxattr+0x8c/0x120\n [ 99.417252] path_listxattr+0x78/0xe0\n [ 99.417476] __arm64_sys_listxattr+0x28/0x40\n [ 99.417723] invoke_syscall+0x78/0x100\n [ 99.417929] el0_svc_common.constprop.0+0x48/0xf0\n [ 99.418186] do_el0_svc+0x24/0x38\n [ 99.418376] el0_svc+0x3c/0x110\n [ 99.418554] el0t_64_sync_handler+0x120/0x130\n [ 99.418788] el0t_64_sync+0x194/0x198\n [ 99.418994] Code: aa0003e3 d000a3e0 91310000 97f49bdb (d4210000)\n\nIssue is reproduced when generic_listxattr() returns \u0027system.nfs4_acl\u0027,\nthus calling lisxattr() with size = 16 will trigger the bug.\n\nAdd check on nfs4_listxattr() to return ERANGE error when it is\ncalled with size \u003e 0 and the return value is greater than size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26870",
"url": "https://www.suse.com/security/cve/CVE-2024-26870"
},
{
"category": "external",
"summary": "SUSE Bug 1223113 for CVE-2024-26870",
"url": "https://bugzilla.suse.com/1223113"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26870"
},
{
"cve": "CVE-2024-26881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when 1588 is received on HIP08 devices\n\nThe HIP08 devices does not register the ptp devices, so the\nhdev-\u003eptp is NULL, but the hardware can receive 1588 messages,\nand set the HNS3_RXD_TS_VLD_B bit, so, if match this case, the\naccess of hdev-\u003eptp-\u003eflags will cause a kernel crash:\n\n[ 5888.946472] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n[ 5888.946475] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n...\n[ 5889.266118] pc : hclge_ptp_get_rx_hwts+0x40/0x170 [hclge]\n[ 5889.272612] lr : hclge_ptp_get_rx_hwts+0x34/0x170 [hclge]\n[ 5889.279101] sp : ffff800012c3bc50\n[ 5889.283516] x29: ffff800012c3bc50 x28: ffff2040002be040\n[ 5889.289927] x27: ffff800009116484 x26: 0000000080007500\n[ 5889.296333] x25: 0000000000000000 x24: ffff204001c6f000\n[ 5889.302738] x23: ffff204144f53c00 x22: 0000000000000000\n[ 5889.309134] x21: 0000000000000000 x20: ffff204004220080\n[ 5889.315520] x19: ffff204144f53c00 x18: 0000000000000000\n[ 5889.321897] x17: 0000000000000000 x16: 0000000000000000\n[ 5889.328263] x15: 0000004000140ec8 x14: 0000000000000000\n[ 5889.334617] x13: 0000000000000000 x12: 00000000010011df\n[ 5889.340965] x11: bbfeff4d22000000 x10: 0000000000000000\n[ 5889.347303] x9 : ffff800009402124 x8 : 0200f78811dfbb4d\n[ 5889.353637] x7 : 2200000000191b01 x6 : ffff208002a7d480\n[ 5889.359959] x5 : 0000000000000000 x4 : 0000000000000000\n[ 5889.366271] x3 : 0000000000000000 x2 : 0000000000000000\n[ 5889.372567] x1 : 0000000000000000 x0 : ffff20400095c080\n[ 5889.378857] Call trace:\n[ 5889.382285] hclge_ptp_get_rx_hwts+0x40/0x170 [hclge]\n[ 5889.388304] hns3_handle_bdinfo+0x324/0x410 [hns3]\n[ 5889.394055] hns3_handle_rx_bd+0x60/0x150 [hns3]\n[ 5889.399624] hns3_clean_rx_ring+0x84/0x170 [hns3]\n[ 5889.405270] hns3_nic_common_poll+0xa8/0x220 [hns3]\n[ 5889.411084] napi_poll+0xcc/0x264\n[ 5889.415329] net_rx_action+0xd4/0x21c\n[ 5889.419911] __do_softirq+0x130/0x358\n[ 5889.424484] irq_exit+0x134/0x154\n[ 5889.428700] __handle_domain_irq+0x88/0xf0\n[ 5889.433684] gic_handle_irq+0x78/0x2c0\n[ 5889.438319] el1_irq+0xb8/0x140\n[ 5889.442354] arch_cpu_idle+0x18/0x40\n[ 5889.446816] default_idle_call+0x5c/0x1c0\n[ 5889.451714] cpuidle_idle_call+0x174/0x1b0\n[ 5889.456692] do_idle+0xc8/0x160\n[ 5889.460717] cpu_startup_entry+0x30/0xfc\n[ 5889.465523] secondary_start_kernel+0x158/0x1ec\n[ 5889.470936] Code: 97ffab78 f9411c14 91408294 f9457284 (f9400c80)\n[ 5889.477950] SMP: stopping secondary CPUs\n[ 5890.514626] SMP: failed to stop secondary CPUs 0-69,71-95\n[ 5890.522951] Starting crashdump kernel...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26881",
"url": "https://www.suse.com/security/cve/CVE-2024-26881"
},
{
"category": "external",
"summary": "SUSE Bug 1223041 for CVE-2024-26881",
"url": "https://bugzilla.suse.com/1223041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26881"
},
{
"cve": "CVE-2024-26900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26900"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix kmemleak of rdev-\u003eserial\n\nIf kobject_add() is fail in bind_rdev_to_array(), \u0027rdev-\u003eserial\u0027 will be\nalloc not be freed, and kmemleak occurs.\n\nunreferenced object 0xffff88815a350000 (size 49152):\n comm \"mdadm\", pid 789, jiffies 4294716910\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace (crc f773277a):\n [\u003c0000000058b0a453\u003e] kmemleak_alloc+0x61/0xe0\n [\u003c00000000366adf14\u003e] __kmalloc_large_node+0x15e/0x270\n [\u003c000000002e82961b\u003e] __kmalloc_node.cold+0x11/0x7f\n [\u003c00000000f206d60a\u003e] kvmalloc_node+0x74/0x150\n [\u003c0000000034bf3363\u003e] rdev_init_serial+0x67/0x170\n [\u003c0000000010e08fe9\u003e] mddev_create_serial_pool+0x62/0x220\n [\u003c00000000c3837bf0\u003e] bind_rdev_to_array+0x2af/0x630\n [\u003c0000000073c28560\u003e] md_add_new_disk+0x400/0x9f0\n [\u003c00000000770e30ff\u003e] md_ioctl+0x15bf/0x1c10\n [\u003c000000006cfab718\u003e] blkdev_ioctl+0x191/0x3f0\n [\u003c0000000085086a11\u003e] vfs_ioctl+0x22/0x60\n [\u003c0000000018b656fe\u003e] __x64_sys_ioctl+0xba/0xe0\n [\u003c00000000e54e675e\u003e] do_syscall_64+0x71/0x150\n [\u003c000000008b0ad622\u003e] entry_SYSCALL_64_after_hwframe+0x6c/0x74",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26900",
"url": "https://www.suse.com/security/cve/CVE-2024-26900"
},
{
"category": "external",
"summary": "SUSE Bug 1223046 for CVE-2024-26900",
"url": "https://bugzilla.suse.com/1223046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26900"
},
{
"cve": "CVE-2024-26903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security\n\nDuring our fuzz testing of the connection and disconnection process at the\nRFCOMM layer, we discovered this bug. By comparing the packets from a\nnormal connection and disconnection process with the testcase that\ntriggered a KASAN report. We analyzed the cause of this bug as follows:\n\n1. In the packets captured during a normal connection, the host sends a\n`Read Encryption Key Size` type of `HCI_CMD` packet\n(Command Opcode: 0x1408) to the controller to inquire the length of\nencryption key.After receiving this packet, the controller immediately\nreplies with a Command Completepacket (Event Code: 0x0e) to return the\nEncryption Key Size.\n\n2. In our fuzz test case, the timing of the controller\u0027s response to this\npacket was delayed to an unexpected point: after the RFCOMM and L2CAP\nlayers had disconnected but before the HCI layer had disconnected.\n\n3. After receiving the Encryption Key Size Response at the time described\nin point 2, the host still called the rfcomm_check_security function.\nHowever, by this time `struct l2cap_conn *conn = l2cap_pi(sk)-\u003echan-\u003econn;`\nhad already been released, and when the function executed\n`return hci_conn_security(conn-\u003ehcon, d-\u003esec_level, auth_type, d-\u003eout);`,\nspecifically when accessing `conn-\u003ehcon`, a null-ptr-deref error occurred.\n\nTo fix this bug, check if `sk-\u003esk_state` is BT_CLOSED before calling\nrfcomm_recv_frame in rfcomm_process_rx.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26903",
"url": "https://www.suse.com/security/cve/CVE-2024-26903"
},
{
"category": "external",
"summary": "SUSE Bug 1223187 for CVE-2024-26903",
"url": "https://bugzilla.suse.com/1223187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26903"
},
{
"cve": "CVE-2024-26922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: validate the parameters of bo mapping operations more clearly\n\nVerify the parameters of\namdgpu_vm_bo_(map/replace_map/clearing_mappings) in one common place.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26922",
"url": "https://www.suse.com/security/cve/CVE-2024-26922"
},
{
"category": "external",
"summary": "SUSE Bug 1223315 for CVE-2024-26922",
"url": "https://bugzilla.suse.com/1223315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26922"
},
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-26932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tcpm: fix double-free issue in tcpm_port_unregister_pd()\n\nWhen unregister pd capabilitie in tcpm, KASAN will capture below double\n-free issue. The root cause is the same capabilitiy will be kfreed twice,\nthe first time is kfreed by pd_capabilities_release() and the second time\nis explicitly kfreed by tcpm_port_unregister_pd().\n\n[ 3.988059] BUG: KASAN: double-free in tcpm_port_unregister_pd+0x1a4/0x3dc\n[ 3.995001] Free of addr ffff0008164d3000 by task kworker/u16:0/10\n[ 4.001206]\n[ 4.002712] CPU: 2 PID: 10 Comm: kworker/u16:0 Not tainted 6.8.0-rc5-next-20240220-05616-g52728c567a55 #53\n[ 4.012402] Hardware name: Freescale i.MX8QXP MEK (DT)\n[ 4.017569] Workqueue: events_unbound deferred_probe_work_func\n[ 4.023456] Call trace:\n[ 4.025920] dump_backtrace+0x94/0xec\n[ 4.029629] show_stack+0x18/0x24\n[ 4.032974] dump_stack_lvl+0x78/0x90\n[ 4.036675] print_report+0xfc/0x5c0\n[ 4.040289] kasan_report_invalid_free+0xa0/0xc0\n[ 4.044937] __kasan_slab_free+0x124/0x154\n[ 4.049072] kfree+0xb4/0x1e8\n[ 4.052069] tcpm_port_unregister_pd+0x1a4/0x3dc\n[ 4.056725] tcpm_register_port+0x1dd0/0x2558\n[ 4.061121] tcpci_register_port+0x420/0x71c\n[ 4.065430] tcpci_probe+0x118/0x2e0\n\nTo fix the issue, this will remove kree() from tcpm_port_unregister_pd().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26932",
"url": "https://www.suse.com/security/cve/CVE-2024-26932"
},
{
"category": "external",
"summary": "SUSE Bug 1223649 for CVE-2024-26932",
"url": "https://bugzilla.suse.com/1223649"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26932"
},
{
"cve": "CVE-2024-26934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: core: Fix deadlock in usb_deauthorize_interface()\n\nAmong the attribute file callback routines in\ndrivers/usb/core/sysfs.c, the interface_authorized_store() function is\nthe only one which acquires a device lock on an ancestor device: It\ncalls usb_deauthorize_interface(), which locks the interface\u0027s parent\nUSB device.\n\nThe will lead to deadlock if another process already owns that lock\nand tries to remove the interface, whether through a configuration\nchange or because the device has been disconnected. As part of the\nremoval procedure, device_del() waits for all ongoing sysfs attribute\ncallbacks to complete. But usb_deauthorize_interface() can\u0027t complete\nuntil the device lock has been released, and the lock won\u0027t be\nreleased until the removal has finished.\n\nThe mechanism provided by sysfs to prevent this kind of deadlock is\nto use the sysfs_break_active_protection() function, which tells sysfs\nnot to wait for the attribute callback.\n\nReported-and-tested by: Yue Sun \u003csamsun1006219@gmail.com\u003e\nReported by: xingwei lee \u003cxrivendell7@gmail.com\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26934",
"url": "https://www.suse.com/security/cve/CVE-2024-26934"
},
{
"category": "external",
"summary": "SUSE Bug 1223671 for CVE-2024-26934",
"url": "https://bugzilla.suse.com/1223671"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26934"
},
{
"cve": "CVE-2024-26935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: core: Fix unremoved procfs host directory regression\n\nCommit fc663711b944 (\"scsi: core: Remove the /proc/scsi/${proc_name}\ndirectory earlier\") fixed a bug related to modules loading/unloading, by\nadding a call to scsi_proc_hostdir_rm() on scsi_remove_host(). But that led\nto a potential duplicate call to the hostdir_rm() routine, since it\u0027s also\ncalled from scsi_host_dev_release(). That triggered a regression report,\nwhich was then fixed by commit be03df3d4bfe (\"scsi: core: Fix a procfs host\ndirectory removal regression\"). The fix just dropped the hostdir_rm() call\nfrom dev_release().\n\nBut it happens that this proc directory is created on scsi_host_alloc(),\nand that function \"pairs\" with scsi_host_dev_release(), while\nscsi_remove_host() pairs with scsi_add_host(). In other words, it seems the\nreason for removing the proc directory on dev_release() was meant to cover\ncases in which a SCSI host structure was allocated, but the call to\nscsi_add_host() didn\u0027t happen. And that pattern happens to exist in some\nerror paths, for example.\n\nSyzkaller causes that by using USB raw gadget device, error\u0027ing on\nusb-storage driver, at usb_stor_probe2(). By checking that path, we can see\nthat the BadDevice label leads to a scsi_host_put() after a SCSI host\nallocation, but there\u0027s no call to scsi_add_host() in such path. That leads\nto messages like this in dmesg (and a leak of the SCSI host proc\nstructure):\n\nusb-storage 4-1:87.51: USB Mass Storage device detected\nproc_dir_entry \u0027scsi/usb-storage\u0027 already registered\nWARNING: CPU: 1 PID: 3519 at fs/proc/generic.c:377 proc_register+0x347/0x4e0 fs/proc/generic.c:376\n\nThe proper fix seems to still call scsi_proc_hostdir_rm() on dev_release(),\nbut guard that with the state check for SHOST_CREATED; there is even a\ncomment in scsi_host_dev_release() detailing that: such conditional is\nmeant for cases where the SCSI host was allocated but there was no calls to\n{add,remove}_host(), like the usb-storage case.\n\nThis is what we propose here and with that, the error path of usb-storage\ndoes not trigger the warning anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26935",
"url": "https://www.suse.com/security/cve/CVE-2024-26935"
},
{
"category": "external",
"summary": "SUSE Bug 1223675 for CVE-2024-26935",
"url": "https://bugzilla.suse.com/1223675"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26935"
},
{
"cve": "CVE-2024-26937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26937"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gt: Reset queue_priority_hint on parking\n\nOriginally, with strict in order execution, we could complete execution\nonly when the queue was empty. Preempt-to-busy allows replacement of an\nactive request that may complete before the preemption is processed by\nHW. If that happens, the request is retired from the queue, but the\nqueue_priority_hint remains set, preventing direct submission until\nafter the next CS interrupt is processed.\n\nThis preempt-to-busy race can be triggered by the heartbeat, which will\nalso act as the power-management barrier and upon completion allow us to\nidle the HW. We may process the completion of the heartbeat, and begin\nparking the engine before the CS event that restores the\nqueue_priority_hint, causing us to fail the assertion that it is MIN.\n\n\u003c3\u003e[ 166.210729] __engine_park:283 GEM_BUG_ON(engine-\u003esched_engine-\u003equeue_priority_hint != (-((int)(~0U \u003e\u003e 1)) - 1))\n\u003c0\u003e[ 166.210781] Dumping ftrace buffer:\n\u003c0\u003e[ 166.210795] ---------------------------------\n...\n\u003c0\u003e[ 167.302811] drm_fdin-1097 2..s1. 165741070us : trace_ports: 0000:00:02.0 rcs0: promote { ccid:20 1217:2 prio 0 }\n\u003c0\u003e[ 167.302861] drm_fdin-1097 2d.s2. 165741072us : execlists_submission_tasklet: 0000:00:02.0 rcs0: preempting last=1217:2, prio=0, hint=2147483646\n\u003c0\u003e[ 167.302928] drm_fdin-1097 2d.s2. 165741072us : __i915_request_unsubmit: 0000:00:02.0 rcs0: fence 1217:2, current 0\n\u003c0\u003e[ 167.302992] drm_fdin-1097 2d.s2. 165741073us : __i915_request_submit: 0000:00:02.0 rcs0: fence 3:4660, current 4659\n\u003c0\u003e[ 167.303044] drm_fdin-1097 2d.s1. 165741076us : execlists_submission_tasklet: 0000:00:02.0 rcs0: context:3 schedule-in, ccid:40\n\u003c0\u003e[ 167.303095] drm_fdin-1097 2d.s1. 165741077us : trace_ports: 0000:00:02.0 rcs0: submit { ccid:40 3:4660* prio 2147483646 }\n\u003c0\u003e[ 167.303159] kworker/-89 11..... 165741139us : i915_request_retire.part.0: 0000:00:02.0 rcs0: fence c90:2, current 2\n\u003c0\u003e[ 167.303208] kworker/-89 11..... 165741148us : __intel_context_do_unpin: 0000:00:02.0 rcs0: context:c90 unpin\n\u003c0\u003e[ 167.303272] kworker/-89 11..... 165741159us : i915_request_retire.part.0: 0000:00:02.0 rcs0: fence 1217:2, current 2\n\u003c0\u003e[ 167.303321] kworker/-89 11..... 165741166us : __intel_context_do_unpin: 0000:00:02.0 rcs0: context:1217 unpin\n\u003c0\u003e[ 167.303384] kworker/-89 11..... 165741170us : i915_request_retire.part.0: 0000:00:02.0 rcs0: fence 3:4660, current 4660\n\u003c0\u003e[ 167.303434] kworker/-89 11d..1. 165741172us : __intel_context_retire: 0000:00:02.0 rcs0: context:1216 retire runtime: { total:56028ns, avg:56028ns }\n\u003c0\u003e[ 167.303484] kworker/-89 11..... 165741198us : __engine_park: 0000:00:02.0 rcs0: parked\n\u003c0\u003e[ 167.303534] \u003cidle\u003e-0 5d.H3. 165741207us : execlists_irq_handler: 0000:00:02.0 rcs0: semaphore yield: 00000040\n\u003c0\u003e[ 167.303583] kworker/-89 11..... 165741397us : __intel_context_retire: 0000:00:02.0 rcs0: context:1217 retire runtime: { total:325575ns, avg:0ns }\n\u003c0\u003e[ 167.303756] kworker/-89 11..... 165741777us : __intel_context_retire: 0000:00:02.0 rcs0: context:c90 retire runtime: { total:0ns, avg:0ns }\n\u003c0\u003e[ 167.303806] kworker/-89 11..... 165742017us : __engine_park: __engine_park:283 GEM_BUG_ON(engine-\u003esched_engine-\u003equeue_priority_hint != (-((int)(~0U \u003e\u003e 1)) - 1))\n\u003c0\u003e[ 167.303811] ---------------------------------\n\u003c4\u003e[ 167.304722] ------------[ cut here ]------------\n\u003c2\u003e[ 167.304725] kernel BUG at drivers/gpu/drm/i915/gt/intel_engine_pm.c:283!\n\u003c4\u003e[ 167.304731] invalid opcode: 0000 [#1] PREEMPT SMP NOPTI\n\u003c4\u003e[ 167.304734] CPU: 11 PID: 89 Comm: kworker/11:1 Tainted: G W 6.8.0-rc2-CI_DRM_14193-gc655e0fd2804+ #1\n\u003c4\u003e[ 167.304736] Hardware name: Intel Corporation Rocket Lake Client Platform/RocketLake S UDIMM 6L RVP, BIOS RKLSFWI1.R00.3173.A03.2204210138 04/21/2022\n\u003c4\u003e[ 167.304738] Workqueue: i915-unordered retire_work_handler [i915]\n\u003c4\u003e[ 16\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26937",
"url": "https://www.suse.com/security/cve/CVE-2024-26937"
},
{
"category": "external",
"summary": "SUSE Bug 1223677 for CVE-2024-26937",
"url": "https://bugzilla.suse.com/1223677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26937"
},
{
"cve": "CVE-2024-26938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/bios: Tolerate devdata==NULL in intel_bios_encoder_supports_dp_dual_mode()\n\nIf we have no VBT, or the VBT didn\u0027t declare the encoder\nin question, we won\u0027t have the \u0027devdata\u0027 for the encoder.\nInstead of oopsing just bail early.\n\nWe won\u0027t be able to tell whether the port is DP++ or not,\nbut so be it.\n\n(cherry picked from commit 26410896206342c8a80d2b027923e9ee7d33b733)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26938",
"url": "https://www.suse.com/security/cve/CVE-2024-26938"
},
{
"category": "external",
"summary": "SUSE Bug 1223678 for CVE-2024-26938",
"url": "https://bugzilla.suse.com/1223678"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26938"
},
{
"cve": "CVE-2024-26940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed\n\nThe driver creates /sys/kernel/debug/dri/0/mob_ttm even when the\ncorresponding ttm_resource_manager is not allocated.\nThis leads to a crash when trying to read from this file.\n\nAdd a check to create mob_ttm, system_mob_ttm, and gmr_ttm debug file\nonly when the corresponding ttm_resource_manager is allocated.\n\ncrash\u003e bt\nPID: 3133409 TASK: ffff8fe4834a5000 CPU: 3 COMMAND: \"grep\"\n #0 [ffffb954506b3b20] machine_kexec at ffffffffb2a6bec3\n #1 [ffffb954506b3b78] __crash_kexec at ffffffffb2bb598a\n #2 [ffffb954506b3c38] crash_kexec at ffffffffb2bb68c1\n #3 [ffffb954506b3c50] oops_end at ffffffffb2a2a9b1\n #4 [ffffb954506b3c70] no_context at ffffffffb2a7e913\n #5 [ffffb954506b3cc8] __bad_area_nosemaphore at ffffffffb2a7ec8c\n #6 [ffffb954506b3d10] do_page_fault at ffffffffb2a7f887\n #7 [ffffb954506b3d40] page_fault at ffffffffb360116e\n [exception RIP: ttm_resource_manager_debug+0x11]\n RIP: ffffffffc04afd11 RSP: ffffb954506b3df0 RFLAGS: 00010246\n RAX: ffff8fe41a6d1200 RBX: 0000000000000000 RCX: 0000000000000940\n RDX: 0000000000000000 RSI: ffffffffc04b4338 RDI: 0000000000000000\n RBP: ffffb954506b3e08 R8: ffff8fee3ffad000 R9: 0000000000000000\n R10: ffff8fe41a76a000 R11: 0000000000000001 R12: 00000000ffffffff\n R13: 0000000000000001 R14: ffff8fe5bb6f3900 R15: ffff8fe41a6d1200\n ORIG_RAX: ffffffffffffffff CS: 0010 SS: 0018\n #8 [ffffb954506b3e00] ttm_resource_manager_show at ffffffffc04afde7 [ttm]\n #9 [ffffb954506b3e30] seq_read at ffffffffb2d8f9f3\n RIP: 00007f4c4eda8985 RSP: 00007ffdbba9e9f8 RFLAGS: 00000246\n RAX: ffffffffffffffda RBX: 000000000037e000 RCX: 00007f4c4eda8985\n RDX: 000000000037e000 RSI: 00007f4c41573000 RDI: 0000000000000003\n RBP: 000000000037e000 R8: 0000000000000000 R9: 000000000037fe30\n R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4c41573000\n R13: 0000000000000003 R14: 00007f4c41572010 R15: 0000000000000003\n ORIG_RAX: 0000000000000000 CS: 0033 SS: 002b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26940",
"url": "https://www.suse.com/security/cve/CVE-2024-26940"
},
{
"category": "external",
"summary": "SUSE Bug 1223718 for CVE-2024-26940",
"url": "https://bugzilla.suse.com/1223718"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26940"
},
{
"cve": "CVE-2024-26943",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26943"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/dmem: handle kcalloc() allocation failure\n\nThe kcalloc() in nouveau_dmem_evict_chunk() will return null if\nthe physical memory has run out. As a result, if we dereference\nsrc_pfns, dst_pfns or dma_addrs, the null pointer dereference bugs\nwill happen.\n\nMoreover, the GPU is going away. If the kcalloc() fails, we could not\nevict all pages mapping a chunk. So this patch adds a __GFP_NOFAIL\nflag in kcalloc().\n\nFinally, as there is no need to have physically contiguous memory,\nthis patch switches kcalloc() to kvcalloc() in order to avoid\nfailing allocations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26943",
"url": "https://www.suse.com/security/cve/CVE-2024-26943"
},
{
"category": "external",
"summary": "SUSE Bug 1230527 for CVE-2024-26943",
"url": "https://bugzilla.suse.com/1230527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26943"
},
{
"cve": "CVE-2024-26949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26949"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu/pm: Fix NULL pointer dereference when get power limit\n\nBecause powerplay_table initialization is skipped under\nsriov case, We check and set default lower and upper OD\nvalue if powerplay_table is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26949",
"url": "https://www.suse.com/security/cve/CVE-2024-26949"
},
{
"category": "external",
"summary": "SUSE Bug 1223665 for CVE-2024-26949",
"url": "https://bugzilla.suse.com/1223665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26949"
},
{
"cve": "CVE-2024-26950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: netlink: access device through ctx instead of peer\n\nThe previous commit fixed a bug that led to a NULL peer-\u003edevice being\ndereferenced. It\u0027s actually easier and faster performance-wise to\ninstead get the device from ctx-\u003ewg. This semantically makes more sense\ntoo, since ctx-\u003ewg-\u003epeer_allowedips.seq is compared with\nctx-\u003eallowedips_seq, basing them both in ctx. This also acts as a\ndefence in depth provision against freed peers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26950",
"url": "https://www.suse.com/security/cve/CVE-2024-26950"
},
{
"category": "external",
"summary": "SUSE Bug 1223661 for CVE-2024-26950",
"url": "https://bugzilla.suse.com/1223661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26950"
},
{
"cve": "CVE-2024-26951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: netlink: check for dangling peer via is_dead instead of empty list\n\nIf all peers are removed via wg_peer_remove_all(), rather than setting\npeer_list to empty, the peer is added to a temporary list with a head on\nthe stack of wg_peer_remove_all(). If a netlink dump is resumed and the\ncursored peer is one that has been removed via wg_peer_remove_all(), it\nwill iterate from that peer and then attempt to dump freed peers.\n\nFix this by instead checking peer-\u003eis_dead, which was explictly created\nfor this purpose. Also move up the device_update_lock lockdep assertion,\nsince reading is_dead relies on that.\n\nIt can be reproduced by a small script like:\n\n echo \"Setting config...\"\n ip link add dev wg0 type wireguard\n wg setconf wg0 /big-config\n (\n while true; do\n echo \"Showing config...\"\n wg showconf wg0 \u003e /dev/null\n done\n ) \u0026\n sleep 4\n wg setconf wg0 \u003c(printf \"[Peer]\\nPublicKey=$(wg genkey)\\n\")\n\nResulting in:\n\n BUG: KASAN: slab-use-after-free in __lock_acquire+0x182a/0x1b20\n Read of size 8 at addr ffff88811956ec70 by task wg/59\n CPU: 2 PID: 59 Comm: wg Not tainted 6.8.0-rc2-debug+ #5\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n print_address_description.constprop.0+0x2c/0x380\n print_report+0xab/0x250\n kasan_report+0xba/0xf0\n __lock_acquire+0x182a/0x1b20\n lock_acquire+0x191/0x4b0\n down_read+0x80/0x440\n get_peer+0x140/0xcb0\n wg_get_device_dump+0x471/0x1130",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26951",
"url": "https://www.suse.com/security/cve/CVE-2024-26951"
},
{
"category": "external",
"summary": "SUSE Bug 1223660 for CVE-2024-26951",
"url": "https://bugzilla.suse.com/1223660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26951"
},
{
"cve": "CVE-2024-26957",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26957"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/zcrypt: fix reference counting on zcrypt card objects\n\nTests with hot-plugging crytpo cards on KVM guests with debug\nkernel build revealed an use after free for the load field of\nthe struct zcrypt_card. The reason was an incorrect reference\nhandling of the zcrypt card object which could lead to a free\nof the zcrypt card object while it was still in use.\n\nThis is an example of the slab message:\n\n kernel: 0x00000000885a7512-0x00000000885a7513 @offset=1298. First byte 0x68 instead of 0x6b\n kernel: Allocated in zcrypt_card_alloc+0x36/0x70 [zcrypt] age=18046 cpu=3 pid=43\n kernel: kmalloc_trace+0x3f2/0x470\n kernel: zcrypt_card_alloc+0x36/0x70 [zcrypt]\n kernel: zcrypt_cex4_card_probe+0x26/0x380 [zcrypt_cex4]\n kernel: ap_device_probe+0x15c/0x290\n kernel: really_probe+0xd2/0x468\n kernel: driver_probe_device+0x40/0xf0\n kernel: __device_attach_driver+0xc0/0x140\n kernel: bus_for_each_drv+0x8c/0xd0\n kernel: __device_attach+0x114/0x198\n kernel: bus_probe_device+0xb4/0xc8\n kernel: device_add+0x4d2/0x6e0\n kernel: ap_scan_adapter+0x3d0/0x7c0\n kernel: ap_scan_bus+0x5a/0x3b0\n kernel: ap_scan_bus_wq_callback+0x40/0x60\n kernel: process_one_work+0x26e/0x620\n kernel: worker_thread+0x21c/0x440\n kernel: Freed in zcrypt_card_put+0x54/0x80 [zcrypt] age=9024 cpu=3 pid=43\n kernel: kfree+0x37e/0x418\n kernel: zcrypt_card_put+0x54/0x80 [zcrypt]\n kernel: ap_device_remove+0x4c/0xe0\n kernel: device_release_driver_internal+0x1c4/0x270\n kernel: bus_remove_device+0x100/0x188\n kernel: device_del+0x164/0x3c0\n kernel: device_unregister+0x30/0x90\n kernel: ap_scan_adapter+0xc8/0x7c0\n kernel: ap_scan_bus+0x5a/0x3b0\n kernel: ap_scan_bus_wq_callback+0x40/0x60\n kernel: process_one_work+0x26e/0x620\n kernel: worker_thread+0x21c/0x440\n kernel: kthread+0x150/0x168\n kernel: __ret_from_fork+0x3c/0x58\n kernel: ret_from_fork+0xa/0x30\n kernel: Slab 0x00000372022169c0 objects=20 used=18 fp=0x00000000885a7c88 flags=0x3ffff00000000a00(workingset|slab|node=0|zone=1|lastcpupid=0x1ffff)\n kernel: Object 0x00000000885a74b8 @offset=1208 fp=0x00000000885a7c88\n kernel: Redzone 00000000885a74b0: bb bb bb bb bb bb bb bb ........\n kernel: Object 00000000885a74b8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a74c8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a74d8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a74e8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a74f8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b kkkkkkkkkkkkkkkk\n kernel: Object 00000000885a7508: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 68 4b 6b 6b 6b a5 kkkkkkkkkkhKkkk.\n kernel: Redzone 00000000885a7518: bb bb bb bb bb bb bb bb ........\n kernel: Padding 00000000885a756c: 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a ZZZZZZZZZZZZ\n kernel: CPU: 0 PID: 387 Comm: systemd-udevd Not tainted 6.8.0-HF #2\n kernel: Hardware name: IBM 3931 A01 704 (KVM/Linux)\n kernel: Call Trace:\n kernel: [\u003c00000000ca5ab5b8\u003e] dump_stack_lvl+0x90/0x120\n kernel: [\u003c00000000c99d78bc\u003e] check_bytes_and_report+0x114/0x140\n kernel: [\u003c00000000c99d53cc\u003e] check_object+0x334/0x3f8\n kernel: [\u003c00000000c99d820c\u003e] alloc_debug_processing+0xc4/0x1f8\n kernel: [\u003c00000000c99d852e\u003e] get_partial_node.part.0+0x1ee/0x3e0\n kernel: [\u003c00000000c99d94ec\u003e] ___slab_alloc+0xaf4/0x13c8\n kernel: [\u003c00000000c99d9e38\u003e] __slab_alloc.constprop.0+0x78/0xb8\n kernel: [\u003c00000000c99dc8dc\u003e] __kmalloc+0x434/0x590\n kernel: [\u003c00000000c9b4c0ce\u003e] ext4_htree_store_dirent+0x4e/0x1c0\n kernel: [\u003c00000000c9b908a2\u003e] htree_dirblock_to_tree+0x17a/0x3f0\n kernel: \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26957",
"url": "https://www.suse.com/security/cve/CVE-2024-26957"
},
{
"category": "external",
"summary": "SUSE Bug 1223666 for CVE-2024-26957",
"url": "https://bugzilla.suse.com/1223666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26957"
},
{
"cve": "CVE-2024-26961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmac802154: fix llsec key resources release in mac802154_llsec_key_del\n\nmac802154_llsec_key_del() can free resources of a key directly without\nfollowing the RCU rules for waiting before the end of a grace period. This\nmay lead to use-after-free in case llsec_lookup_key() is traversing the\nlist of keys in parallel with a key deletion:\n\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 4 PID: 16000 at lib/refcount.c:25 refcount_warn_saturate+0x162/0x2a0\nModules linked in:\nCPU: 4 PID: 16000 Comm: wpan-ping Not tainted 6.7.0 #19\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x162/0x2a0\nCall Trace:\n \u003cTASK\u003e\n llsec_lookup_key.isra.0+0x890/0x9e0\n mac802154_llsec_encrypt+0x30c/0x9c0\n ieee802154_subif_start_xmit+0x24/0x1e0\n dev_hard_start_xmit+0x13e/0x690\n sch_direct_xmit+0x2ae/0xbc0\n __dev_queue_xmit+0x11dd/0x3c20\n dgram_sendmsg+0x90b/0xd60\n __sys_sendto+0x466/0x4c0\n __x64_sys_sendto+0xe0/0x1c0\n do_syscall_64+0x45/0xf0\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nAlso, ieee802154_llsec_key_entry structures are not freed by\nmac802154_llsec_key_del():\n\nunreferenced object 0xffff8880613b6980 (size 64):\n comm \"iwpan\", pid 2176, jiffies 4294761134 (age 60.475s)\n hex dump (first 32 bytes):\n 78 0d 8f 18 80 88 ff ff 22 01 00 00 00 00 ad de x.......\".......\n 00 00 00 00 00 00 00 00 03 00 cd ab 00 00 00 00 ................\n backtrace:\n [\u003cffffffff81dcfa62\u003e] __kmem_cache_alloc_node+0x1e2/0x2d0\n [\u003cffffffff81c43865\u003e] kmalloc_trace+0x25/0xc0\n [\u003cffffffff88968b09\u003e] mac802154_llsec_key_add+0xac9/0xcf0\n [\u003cffffffff8896e41a\u003e] ieee802154_add_llsec_key+0x5a/0x80\n [\u003cffffffff8892adc6\u003e] nl802154_add_llsec_key+0x426/0x5b0\n [\u003cffffffff86ff293e\u003e] genl_family_rcv_msg_doit+0x1fe/0x2f0\n [\u003cffffffff86ff46d1\u003e] genl_rcv_msg+0x531/0x7d0\n [\u003cffffffff86fee7a9\u003e] netlink_rcv_skb+0x169/0x440\n [\u003cffffffff86ff1d88\u003e] genl_rcv+0x28/0x40\n [\u003cffffffff86fec15c\u003e] netlink_unicast+0x53c/0x820\n [\u003cffffffff86fecd8b\u003e] netlink_sendmsg+0x93b/0xe60\n [\u003cffffffff86b91b35\u003e] ____sys_sendmsg+0xac5/0xca0\n [\u003cffffffff86b9c3dd\u003e] ___sys_sendmsg+0x11d/0x1c0\n [\u003cffffffff86b9c65a\u003e] __sys_sendmsg+0xfa/0x1d0\n [\u003cffffffff88eadbf5\u003e] do_syscall_64+0x45/0xf0\n [\u003cffffffff890000ea\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nHandle the proper resource release in the RCU callback function\nmac802154_llsec_key_del_rcu().\n\nNote that if llsec_lookup_key() finds a key, it gets a refcount via\nllsec_key_get() and locally copies key id from key_entry (which is a\nlist element). So it\u0027s safe to call llsec_key_put() and free the list\nentry after the RCU grace period elapses.\n\nFound by Linux Verification Center (linuxtesting.org).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26961",
"url": "https://www.suse.com/security/cve/CVE-2024-26961"
},
{
"category": "external",
"summary": "SUSE Bug 1223652 for CVE-2024-26961",
"url": "https://bugzilla.suse.com/1223652"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26961"
},
{
"cve": "CVE-2024-26962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm-raid456, md/raid456: fix a deadlock for dm-raid456 while io concurrent with reshape\n\nFor raid456, if reshape is still in progress, then IO across reshape\nposition will wait for reshape to make progress. However, for dm-raid,\nin following cases reshape will never make progress hence IO will hang:\n\n1) the array is read-only;\n2) MD_RECOVERY_WAIT is set;\n3) MD_RECOVERY_FROZEN is set;\n\nAfter commit c467e97f079f (\"md/raid6: use valid sector values to determine\nif an I/O should wait on the reshape\") fix the problem that IO across\nreshape position doesn\u0027t wait for reshape, the dm-raid test\nshell/lvconvert-raid-reshape.sh start to hang:\n\n[root@fedora ~]# cat /proc/979/stack\n[\u003c0\u003e] wait_woken+0x7d/0x90\n[\u003c0\u003e] raid5_make_request+0x929/0x1d70 [raid456]\n[\u003c0\u003e] md_handle_request+0xc2/0x3b0 [md_mod]\n[\u003c0\u003e] raid_map+0x2c/0x50 [dm_raid]\n[\u003c0\u003e] __map_bio+0x251/0x380 [dm_mod]\n[\u003c0\u003e] dm_submit_bio+0x1f0/0x760 [dm_mod]\n[\u003c0\u003e] __submit_bio+0xc2/0x1c0\n[\u003c0\u003e] submit_bio_noacct_nocheck+0x17f/0x450\n[\u003c0\u003e] submit_bio_noacct+0x2bc/0x780\n[\u003c0\u003e] submit_bio+0x70/0xc0\n[\u003c0\u003e] mpage_readahead+0x169/0x1f0\n[\u003c0\u003e] blkdev_readahead+0x18/0x30\n[\u003c0\u003e] read_pages+0x7c/0x3b0\n[\u003c0\u003e] page_cache_ra_unbounded+0x1ab/0x280\n[\u003c0\u003e] force_page_cache_ra+0x9e/0x130\n[\u003c0\u003e] page_cache_sync_ra+0x3b/0x110\n[\u003c0\u003e] filemap_get_pages+0x143/0xa30\n[\u003c0\u003e] filemap_read+0xdc/0x4b0\n[\u003c0\u003e] blkdev_read_iter+0x75/0x200\n[\u003c0\u003e] vfs_read+0x272/0x460\n[\u003c0\u003e] ksys_read+0x7a/0x170\n[\u003c0\u003e] __x64_sys_read+0x1c/0x30\n[\u003c0\u003e] do_syscall_64+0xc6/0x230\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x6c/0x74\n\nThis is because reshape can\u0027t make progress.\n\nFor md/raid, the problem doesn\u0027t exist because register new sync_thread\ndoesn\u0027t rely on the IO to be done any more:\n\n1) If array is read-only, it can switch to read-write by ioctl/sysfs;\n2) md/raid never set MD_RECOVERY_WAIT;\n3) If MD_RECOVERY_FROZEN is set, mddev_suspend() doesn\u0027t hold\n \u0027reconfig_mutex\u0027, hence it can be cleared and reshape can continue by\n sysfs api \u0027sync_action\u0027.\n\nHowever, I\u0027m not sure yet how to avoid the problem in dm-raid yet. This\npatch on the one hand make sure raid_message() can\u0027t change\nsync_thread() through raid_message() after presuspend(), on the other\nhand detect the above 3 cases before wait for IO do be done in\ndm_suspend(), and let dm-raid requeue those IO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26962",
"url": "https://www.suse.com/security/cve/CVE-2024-26962"
},
{
"category": "external",
"summary": "SUSE Bug 1223654 for CVE-2024-26962",
"url": "https://bugzilla.suse.com/1223654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26962"
},
{
"cve": "CVE-2024-26963",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26963"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3-am62: fix module unload/reload behavior\n\nAs runtime PM is enabled, the module can be runtime\nsuspended when .remove() is called.\n\nDo a pm_runtime_get_sync() to make sure module is active\nbefore doing any register operations.\n\nDoing a pm_runtime_put_sync() should disable the refclk\nso no need to disable it again.\n\nFixes the below warning at module removel.\n\n[ 39.705310] ------------[ cut here ]------------\n[ 39.710004] clk:162:3 already disabled\n[ 39.713941] WARNING: CPU: 0 PID: 921 at drivers/clk/clk.c:1090 clk_core_disable+0xb0/0xb8\n\nWe called of_platform_populate() in .probe() so call the\ncleanup function of_platform_depopulate() in .remove().\nGet rid of the now unnnecessary dwc3_ti_remove_core().\nWithout this, module re-load doesn\u0027t work properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26963",
"url": "https://www.suse.com/security/cve/CVE-2024-26963"
},
{
"category": "external",
"summary": "SUSE Bug 1223651 for CVE-2024-26963",
"url": "https://bugzilla.suse.com/1223651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26963"
},
{
"cve": "CVE-2024-26964",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26964"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: xhci: Add error handling in xhci_map_urb_for_dma\n\nCurrently xhci_map_urb_for_dma() creates a temporary buffer and copies\nthe SG list to the new linear buffer. But if the kzalloc_node() fails,\nthen the following sg_pcopy_to_buffer() can lead to crash since it\ntries to memcpy to NULL pointer.\n\nSo return -ENOMEM if kzalloc returns null pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26964",
"url": "https://www.suse.com/security/cve/CVE-2024-26964"
},
{
"category": "external",
"summary": "SUSE Bug 1223650 for CVE-2024-26964",
"url": "https://bugzilla.suse.com/1223650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26964"
},
{
"cve": "CVE-2024-26973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfat: fix uninitialized field in nostale filehandles\n\nWhen fat_encode_fh_nostale() encodes file handle without a parent it\nstores only first 10 bytes of the file handle. However the length of the\nfile handle must be a multiple of 4 so the file handle is actually 12\nbytes long and the last two bytes remain uninitialized. This is not\ngreat at we potentially leak uninitialized information with the handle\nto userspace. Properly initialize the full handle length.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26973",
"url": "https://www.suse.com/security/cve/CVE-2024-26973"
},
{
"category": "external",
"summary": "SUSE Bug 1223641 for CVE-2024-26973",
"url": "https://bugzilla.suse.com/1223641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26973"
},
{
"cve": "CVE-2024-26983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbootconfig: use memblock_free_late to free xbc memory to buddy\n\nOn the time to free xbc memory in xbc_exit(), memblock may has handed\nover memory to buddy allocator. So it doesn\u0027t make sense to free memory\nback to memblock. memblock_free() called by xbc_exit() even causes UAF bugs\non architectures with CONFIG_ARCH_KEEP_MEMBLOCK disabled like x86.\nFollowing KASAN logs shows this case.\n\nThis patch fixes the xbc memory free problem by calling memblock_free()\nin early xbc init error rewind path and calling memblock_free_late() in\nxbc exit path to free memory to buddy allocator.\n\n[ 9.410890] ==================================================================\n[ 9.418962] BUG: KASAN: use-after-free in memblock_isolate_range+0x12d/0x260\n[ 9.426850] Read of size 8 at addr ffff88845dd30000 by task swapper/0/1\n\n[ 9.435901] CPU: 9 PID: 1 Comm: swapper/0 Tainted: G U 6.9.0-rc3-00208-g586b5dfb51b9 #5\n[ 9.446403] Hardware name: Intel Corporation RPLP LP5 (CPU:RaptorLake)/RPLP LP5 (ID:13), BIOS IRPPN02.01.01.00.00.19.015.D-00000000 Dec 28 2023\n[ 9.460789] Call Trace:\n[ 9.463518] \u003cTASK\u003e\n[ 9.465859] dump_stack_lvl+0x53/0x70\n[ 9.469949] print_report+0xce/0x610\n[ 9.473944] ? __virt_addr_valid+0xf5/0x1b0\n[ 9.478619] ? memblock_isolate_range+0x12d/0x260\n[ 9.483877] kasan_report+0xc6/0x100\n[ 9.487870] ? memblock_isolate_range+0x12d/0x260\n[ 9.493125] memblock_isolate_range+0x12d/0x260\n[ 9.498187] memblock_phys_free+0xb4/0x160\n[ 9.502762] ? __pfx_memblock_phys_free+0x10/0x10\n[ 9.508021] ? mutex_unlock+0x7e/0xd0\n[ 9.512111] ? __pfx_mutex_unlock+0x10/0x10\n[ 9.516786] ? kernel_init_freeable+0x2d4/0x430\n[ 9.521850] ? __pfx_kernel_init+0x10/0x10\n[ 9.526426] xbc_exit+0x17/0x70\n[ 9.529935] kernel_init+0x38/0x1e0\n[ 9.533829] ? _raw_spin_unlock_irq+0xd/0x30\n[ 9.538601] ret_from_fork+0x2c/0x50\n[ 9.542596] ? __pfx_kernel_init+0x10/0x10\n[ 9.547170] ret_from_fork_asm+0x1a/0x30\n[ 9.551552] \u003c/TASK\u003e\n\n[ 9.555649] The buggy address belongs to the physical page:\n[ 9.561875] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x45dd30\n[ 9.570821] flags: 0x200000000000000(node=0|zone=2)\n[ 9.576271] page_type: 0xffffffff()\n[ 9.580167] raw: 0200000000000000 ffffea0011774c48 ffffea0012ba1848 0000000000000000\n[ 9.588823] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000\n[ 9.597476] page dumped because: kasan: bad access detected\n\n[ 9.605362] Memory state around the buggy address:\n[ 9.610714] ffff88845dd2ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 9.618786] ffff88845dd2ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 9.626857] \u003effff88845dd30000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 9.634930] ^\n[ 9.638534] ffff88845dd30080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 9.646605] ffff88845dd30100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 9.654675] ==================================================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26983",
"url": "https://www.suse.com/security/cve/CVE-2024-26983"
},
{
"category": "external",
"summary": "SUSE Bug 1223637 for CVE-2024-26983",
"url": "https://bugzilla.suse.com/1223637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26983"
},
{
"cve": "CVE-2024-26984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau: fix instmem race condition around ptr stores\n\nRunning a lot of VK CTS in parallel against nouveau, once every\nfew hours you might see something like this crash.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\nPGD 8000000114e6e067 P4D 8000000114e6e067 PUD 109046067 PMD 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 7 PID: 53891 Comm: deqp-vk Not tainted 6.8.0-rc6+ #27\nHardware name: Gigabyte Technology Co., Ltd. Z390 I AORUS PRO WIFI/Z390 I AORUS PRO WIFI-CF, BIOS F8 11/05/2021\nRIP: 0010:gp100_vmm_pgt_mem+0xe3/0x180 [nouveau]\nCode: c7 48 01 c8 49 89 45 58 85 d2 0f 84 95 00 00 00 41 0f b7 46 12 49 8b 7e 08 89 da 42 8d 2c f8 48 8b 47 08 41 83 c7 01 48 89 ee \u003c48\u003e 8b 40 08 ff d0 0f 1f 00 49 8b 7e 08 48 89 d9 48 8d 75 04 48 c1\nRSP: 0000:ffffac20c5857838 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: 00000000004d8001 RCX: 0000000000000001\nRDX: 00000000004d8001 RSI: 00000000000006d8 RDI: ffffa07afe332180\nRBP: 00000000000006d8 R08: ffffac20c5857ad0 R09: 0000000000ffff10\nR10: 0000000000000001 R11: ffffa07af27e2de0 R12: 000000000000001c\nR13: ffffac20c5857ad0 R14: ffffa07a96fe9040 R15: 000000000000001c\nFS: 00007fe395eed7c0(0000) GS:ffffa07e2c980000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000008 CR3: 000000011febe001 CR4: 00000000003706f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\n...\n\n ? gp100_vmm_pgt_mem+0xe3/0x180 [nouveau]\n ? gp100_vmm_pgt_mem+0x37/0x180 [nouveau]\n nvkm_vmm_iter+0x351/0xa20 [nouveau]\n ? __pfx_nvkm_vmm_ref_ptes+0x10/0x10 [nouveau]\n ? __pfx_gp100_vmm_pgt_mem+0x10/0x10 [nouveau]\n ? __pfx_gp100_vmm_pgt_mem+0x10/0x10 [nouveau]\n ? __lock_acquire+0x3ed/0x2170\n ? __pfx_gp100_vmm_pgt_mem+0x10/0x10 [nouveau]\n nvkm_vmm_ptes_get_map+0xc2/0x100 [nouveau]\n ? __pfx_nvkm_vmm_ref_ptes+0x10/0x10 [nouveau]\n ? __pfx_gp100_vmm_pgt_mem+0x10/0x10 [nouveau]\n nvkm_vmm_map_locked+0x224/0x3a0 [nouveau]\n\nAdding any sort of useful debug usually makes it go away, so I hand\nwrote the function in a line, and debugged the asm.\n\nEvery so often pt-\u003ememory-\u003eptrs is NULL. This ptrs ptr is set in\nthe nv50_instobj_acquire called from nvkm_kmap.\n\nIf Thread A and Thread B both get to nv50_instobj_acquire around\nthe same time, and Thread A hits the refcount_set line, and in\nlockstep thread B succeeds at refcount_inc_not_zero, there is a\nchance the ptrs value won\u0027t have been stored since refcount_set\nis unordered. Force a memory barrier here, I picked smp_mb, since\nwe want it on all CPUs and it\u0027s write followed by a read.\n\nv2: use paired smp_rmb/smp_wmb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26984",
"url": "https://www.suse.com/security/cve/CVE-2024-26984"
},
{
"category": "external",
"summary": "SUSE Bug 1223633 for CVE-2024-26984",
"url": "https://bugzilla.suse.com/1223633"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26984"
},
{
"cve": "CVE-2024-26986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Fix memory leak in create_process failure\n\nFix memory leak due to a leaked mmget reference on an error handling\ncode path that is triggered when attempting to create KFD processes\nwhile a GPU reset is in progress.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26986",
"url": "https://www.suse.com/security/cve/CVE-2024-26986"
},
{
"category": "external",
"summary": "SUSE Bug 1223728 for CVE-2024-26986",
"url": "https://bugzilla.suse.com/1223728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26986"
},
{
"cve": "CVE-2024-26988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninit/main.c: Fix potential static_command_line memory overflow\n\nWe allocate memory of size \u0027xlen + strlen(boot_command_line) + 1\u0027 for\nstatic_command_line, but the strings copied into static_command_line are\nextra_command_line and command_line, rather than extra_command_line and\nboot_command_line.\n\nWhen strlen(command_line) \u003e strlen(boot_command_line), static_command_line\nwill overflow.\n\nThis patch just recovers strlen(command_line) which was miss-consolidated\nwith strlen(boot_command_line) in the commit f5c7310ac73e (\"init/main: add\nchecks for the return value of memblock_alloc*()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26988",
"url": "https://www.suse.com/security/cve/CVE-2024-26988"
},
{
"category": "external",
"summary": "SUSE Bug 1223747 for CVE-2024-26988",
"url": "https://bugzilla.suse.com/1223747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26988"
},
{
"cve": "CVE-2024-26989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: hibernate: Fix level3 translation fault in swsusp_save()\n\nOn arm64 machines, swsusp_save() faults if it attempts to access\nMEMBLOCK_NOMAP memory ranges. This can be reproduced in QEMU using UEFI\nwhen booting with rodata=off debug_pagealloc=off and CONFIG_KFENCE=n:\n\n Unable to handle kernel paging request at virtual address ffffff8000000000\n Mem abort info:\n ESR = 0x0000000096000007\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x07: level 3 translation fault\n Data abort info:\n ISV = 0, ISS = 0x00000007, ISS2 = 0x00000000\n CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n swapper pgtable: 4k pages, 39-bit VAs, pgdp=00000000eeb0b000\n [ffffff8000000000] pgd=180000217fff9803, p4d=180000217fff9803, pud=180000217fff9803, pmd=180000217fff8803, pte=0000000000000000\n Internal error: Oops: 0000000096000007 [#1] SMP\n Internal error: Oops: 0000000096000007 [#1] SMP\n Modules linked in: xt_multiport ipt_REJECT nf_reject_ipv4 xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c iptable_filter bpfilter rfkill at803x snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg dwmac_generic stmmac_platform snd_hda_codec stmmac joydev pcs_xpcs snd_hda_core phylink ppdev lp parport ramoops reed_solomon ip_tables x_tables nls_iso8859_1 vfat multipath linear amdgpu amdxcp drm_exec gpu_sched drm_buddy hid_generic usbhid hid radeon video drm_suballoc_helper drm_ttm_helper ttm i2c_algo_bit drm_display_helper cec drm_kms_helper drm\n CPU: 0 PID: 3663 Comm: systemd-sleep Not tainted 6.6.2+ #76\n Source Version: 4e22ed63a0a48e7a7cff9b98b7806d8d4add7dc0\n Hardware name: Greatwall GW-XXXXXX-XXX/GW-XXXXXX-XXX, BIOS KunLun BIOS V4.0 01/19/2021\n pstate: 600003c5 (nZCv DAIF -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : swsusp_save+0x280/0x538\n lr : swsusp_save+0x280/0x538\n sp : ffffffa034a3fa40\n x29: ffffffa034a3fa40 x28: ffffff8000001000 x27: 0000000000000000\n x26: ffffff8001400000 x25: ffffffc08113e248 x24: 0000000000000000\n x23: 0000000000080000 x22: ffffffc08113e280 x21: 00000000000c69f2\n x20: ffffff8000000000 x19: ffffffc081ae2500 x18: 0000000000000000\n x17: 6666662074736420 x16: 3030303030303030 x15: 3038666666666666\n x14: 0000000000000b69 x13: ffffff9f89088530 x12: 00000000ffffffea\n x11: 00000000ffff7fff x10: 00000000ffff7fff x9 : ffffffc08193f0d0\n x8 : 00000000000bffe8 x7 : c0000000ffff7fff x6 : 0000000000000001\n x5 : ffffffa0fff09dc8 x4 : 0000000000000000 x3 : 0000000000000027\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : 000000000000004e\n Call trace:\n swsusp_save+0x280/0x538\n swsusp_arch_suspend+0x148/0x190\n hibernation_snapshot+0x240/0x39c\n hibernate+0xc4/0x378\n state_store+0xf0/0x10c\n kobj_attr_store+0x14/0x24\n\nThe reason is swsusp_save() -\u003e copy_data_pages() -\u003e page_is_saveable()\n-\u003e kernel_page_present() assuming that a page is always present when\ncan_set_direct_map() is false (all of rodata_full,\ndebug_pagealloc_enabled() and arm64_kfence_can_set_direct_map() false),\nirrespective of the MEMBLOCK_NOMAP ranges. Such MEMBLOCK_NOMAP regions\nshould not be saved during hibernation.\n\nThis problem was introduced by changes to the pfn_valid() logic in\ncommit a7d9f306ba70 (\"arm64: drop pfn_valid_within() and simplify\npfn_valid()\").\n\nSimilar to other architectures, drop the !can_set_direct_map() check in\nkernel_page_present() so that page_is_savable() skips such pages.\n\n[catalin.marinas@arm.com: rework commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26989",
"url": "https://www.suse.com/security/cve/CVE-2024-26989"
},
{
"category": "external",
"summary": "SUSE Bug 1223748 for CVE-2024-26989",
"url": "https://bugzilla.suse.com/1223748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26989"
},
{
"cve": "CVE-2024-26994",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26994"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspeakup: Avoid crash on very long word\n\nIn case a console is set up really large and contains a really long word\n(\u003e 256 characters), we have to stop before the length of the word buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26994",
"url": "https://www.suse.com/security/cve/CVE-2024-26994"
},
{
"category": "external",
"summary": "SUSE Bug 1223750 for CVE-2024-26994",
"url": "https://bugzilla.suse.com/1223750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26994"
},
{
"cve": "CVE-2024-26995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tcpm: Correct the PDO counting in pd_set\n\nOff-by-one errors happen because nr_snk_pdo and nr_src_pdo are\nincorrectly added one. The index of the loop is equal to the number of\nPDOs to be updated when leaving the loop and it doesn\u0027t need to be added\none.\n\nWhen doing the power negotiation, TCPM relies on the \"nr_snk_pdo\" as\nthe size of the local sink PDO array to match the Source capabilities\nof the partner port. If the off-by-one overflow occurs, a wrong RDO\nmight be sent and unexpected power transfer might happen such as over\nvoltage or over current (than expected).\n\n\"nr_src_pdo\" is used to set the Rp level when the port is in Source\nrole. It is also the array size of the local Source capabilities when\nfilling up the buffer which will be sent as the Source PDOs (such as\nin Power Negotiation). If the off-by-one overflow occurs, a wrong Rp\nlevel might be set and wrong Source PDOs will be sent to the partner\nport. This could potentially cause over current or port resets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26995",
"url": "https://www.suse.com/security/cve/CVE-2024-26995"
},
{
"category": "external",
"summary": "SUSE Bug 1223696 for CVE-2024-26995",
"url": "https://bugzilla.suse.com/1223696"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26995"
},
{
"cve": "CVE-2024-26996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error\n\nWhen ncm function is working and then stop usb0 interface for link down,\neth_stop() is called. At this piont, accidentally if usb transport error\nshould happen in usb_ep_enable(), \u0027in_ep\u0027 and/or \u0027out_ep\u0027 may not be enabled.\n\nAfter that, ncm_disable() is called to disable for ncm unbind\nbut gether_disconnect() is never called since \u0027in_ep\u0027 is not enabled.\n\nAs the result, ncm object is released in ncm unbind\nbut \u0027dev-\u003eport_usb\u0027 associated to \u0027ncm-\u003eport\u0027 is not NULL.\n\nAnd when ncm bind again to recover netdev, ncm object is reallocated\nbut usb0 interface is already associated to previous released ncm object.\n\nTherefore, once usb0 interface is up and eth_start_xmit() is called,\nreleased ncm object is dereferrenced and it might cause use-after-free memory.\n\n[function unlink via configfs]\n usb0: eth_stop dev-\u003eport_usb=ffffff9b179c3200\n --\u003e error happens in usb_ep_enable().\n NCM: ncm_disable: ncm=ffffff9b179c3200\n --\u003e no gether_disconnect() since ncm-\u003eport.in_ep-\u003eenabled is false.\n NCM: ncm_unbind: ncm unbind ncm=ffffff9b179c3200\n NCM: ncm_free: ncm free ncm=ffffff9b179c3200 \u003c-- released ncm\n\n[function link via configfs]\n NCM: ncm_alloc: ncm alloc ncm=ffffff9ac4f8a000\n NCM: ncm_bind: ncm bind ncm=ffffff9ac4f8a000\n NCM: ncm_set_alt: ncm=ffffff9ac4f8a000 alt=0\n usb0: eth_open dev-\u003eport_usb=ffffff9b179c3200 \u003c-- previous released ncm\n usb0: eth_start dev-\u003eport_usb=ffffff9b179c3200 \u003c--\n eth_start_xmit()\n --\u003e dev-\u003ewrap()\n Unable to handle kernel paging request at virtual address dead00000000014f\n\nThis patch addresses the issue by checking if \u0027ncm-\u003enetdev\u0027 is not NULL at\nncm_disable() to call gether_disconnect() to deassociate \u0027dev-\u003eport_usb\u0027.\nIt\u0027s more reasonable to check \u0027ncm-\u003enetdev\u0027 to call gether_connect/disconnect\nrather than check \u0027ncm-\u003eport.in_ep-\u003eenabled\u0027 since it might not be enabled\nbut the gether connection might be established.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26996",
"url": "https://www.suse.com/security/cve/CVE-2024-26996"
},
{
"category": "external",
"summary": "SUSE Bug 1223752 for CVE-2024-26996",
"url": "https://bugzilla.suse.com/1223752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26996"
},
{
"cve": "CVE-2024-26997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc2: host: Fix dereference issue in DDMA completion flow.\n\nFixed variable dereference issue in DDMA completion flow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26997",
"url": "https://www.suse.com/security/cve/CVE-2024-26997"
},
{
"category": "external",
"summary": "SUSE Bug 1223741 for CVE-2024-26997",
"url": "https://bugzilla.suse.com/1223741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26997"
},
{
"cve": "CVE-2024-26999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial/pmac_zilog: Remove flawed mitigation for rx irq flood\n\nThe mitigation was intended to stop the irq completely. That may be\nbetter than a hard lock-up but it turns out that you get a crash anyway\nif you\u0027re using pmac_zilog as a serial console:\n\nttyPZ0: pmz: rx irq flood !\nBUG: spinlock recursion on CPU#0, swapper/0\n\nThat\u0027s because the pr_err() call in pmz_receive_chars() results in\npmz_console_write() attempting to lock a spinlock already locked in\npmz_interrupt(). With CONFIG_DEBUG_SPINLOCK=y, this produces a fatal\nBUG splat. The spinlock in question is the one in struct uart_port.\n\nEven when it\u0027s not fatal, the serial port rx function ceases to work.\nAlso, the iteration limit doesn\u0027t play nicely with QEMU, as can be\nseen in the bug report linked below.\n\nA web search for other reports of the error message \"pmz: rx irq flood\"\ndidn\u0027t produce anything. So I don\u0027t think this code is needed any more.\nRemove it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26999",
"url": "https://www.suse.com/security/cve/CVE-2024-26999"
},
{
"category": "external",
"summary": "SUSE Bug 1223754 for CVE-2024-26999",
"url": "https://bugzilla.suse.com/1223754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-26999"
},
{
"cve": "CVE-2024-27000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: mxs-auart: add spinlock around changing cts state\n\nThe uart_handle_cts_change() function in serial_core expects the caller\nto hold uport-\u003elock. For example, I have seen the below kernel splat,\nwhen the Bluetooth driver is loaded on an i.MX28 board.\n\n [ 85.119255] ------------[ cut here ]------------\n [ 85.124413] WARNING: CPU: 0 PID: 27 at /drivers/tty/serial/serial_core.c:3453 uart_handle_cts_change+0xb4/0xec\n [ 85.134694] Modules linked in: hci_uart bluetooth ecdh_generic ecc wlcore_sdio configfs\n [ 85.143314] CPU: 0 PID: 27 Comm: kworker/u3:0 Not tainted 6.6.3-00021-gd62a2f068f92 #1\n [ 85.151396] Hardware name: Freescale MXS (Device Tree)\n [ 85.156679] Workqueue: hci0 hci_power_on [bluetooth]\n (...)\n [ 85.191765] uart_handle_cts_change from mxs_auart_irq_handle+0x380/0x3f4\n [ 85.198787] mxs_auart_irq_handle from __handle_irq_event_percpu+0x88/0x210\n (...)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27000",
"url": "https://www.suse.com/security/cve/CVE-2024-27000"
},
{
"category": "external",
"summary": "SUSE Bug 1223757 for CVE-2024-27000",
"url": "https://bugzilla.suse.com/1223757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27000"
},
{
"cve": "CVE-2024-27001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: vmk80xx: fix incomplete endpoint checking\n\nWhile vmk80xx does have endpoint checking implemented, some things\ncan fall through the cracks. Depending on the hardware model,\nURBs can have either bulk or interrupt type, and current version\nof vmk80xx_find_usb_endpoints() function does not take that fully\ninto account. While this warning does not seem to be too harmful,\nat the very least it will crash systems with \u0027panic_on_warn\u0027 set on\nthem.\n\nFix the issue found by Syzkaller [1] by somewhat simplifying the\nendpoint checking process with usb_find_common_endpoints() and\nensuring that only expected endpoint types are present.\n\nThis patch has not been tested on real hardware.\n\n[1] Syzkaller report:\nusb 1-1: BOGUS urb xfer, pipe 1 != type 3\nWARNING: CPU: 0 PID: 781 at drivers/usb/core/urb.c:504 usb_submit_urb+0xc4e/0x18c0 drivers/usb/core/urb.c:503\n...\nCall Trace:\n \u003cTASK\u003e\n usb_start_wait_urb+0x113/0x520 drivers/usb/core/message.c:59\n vmk80xx_reset_device drivers/comedi/drivers/vmk80xx.c:227 [inline]\n vmk80xx_auto_attach+0xa1c/0x1a40 drivers/comedi/drivers/vmk80xx.c:818\n comedi_auto_config+0x238/0x380 drivers/comedi/drivers.c:1067\n usb_probe_interface+0x5cd/0xb00 drivers/usb/core/driver.c:399\n...\n\nSimilar issue also found by Syzkaller:",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27001",
"url": "https://www.suse.com/security/cve/CVE-2024-27001"
},
{
"category": "external",
"summary": "SUSE Bug 1223698 for CVE-2024-27001",
"url": "https://bugzilla.suse.com/1223698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27001"
},
{
"cve": "CVE-2024-27002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: mediatek: Do a runtime PM get on controllers during probe\n\nmt8183-mfgcfg has a mutual dependency with genpd during the probing\nstage, which leads to a deadlock in the following call stack:\n\nCPU0: genpd_lock --\u003e clk_prepare_lock\ngenpd_power_off_work_fn()\n genpd_lock()\n generic_pm_domain::power_off()\n clk_unprepare()\n clk_prepare_lock()\n\nCPU1: clk_prepare_lock --\u003e genpd_lock\nclk_register()\n __clk_core_init()\n clk_prepare_lock()\n clk_pm_runtime_get()\n genpd_lock()\n\nDo a runtime PM get at the probe function to make sure clk_register()\nwon\u0027t acquire the genpd lock. Instead of only modifying mt8183-mfgcfg,\ndo this on all mediatek clock controller probings because we don\u0027t\nbelieve this would cause any regression.\n\nVerified on MT8183 and MT8192 Chromebooks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27002",
"url": "https://www.suse.com/security/cve/CVE-2024-27002"
},
{
"category": "external",
"summary": "SUSE Bug 1223759 for CVE-2024-27002",
"url": "https://bugzilla.suse.com/1223759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27002"
},
{
"cve": "CVE-2024-27003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: Get runtime PM before walking tree for clk_summary\n\nSimilar to the previous commit, we should make sure that all devices are\nruntime resumed before printing the clk_summary through debugfs. Failure\nto do so would result in a deadlock if the thread is resuming a device\nto print clk state and that device is also runtime resuming in another\nthread, e.g the screen is turning on and the display driver is starting\nup. We remove the calls to clk_pm_runtime_{get,put}() in this path\nbecause they\u0027re superfluous now that we know the devices are runtime\nresumed. This also squashes a bug where the return value of\nclk_pm_runtime_get() wasn\u0027t checked, leading to an RPM count underflow\non error paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27003",
"url": "https://www.suse.com/security/cve/CVE-2024-27003"
},
{
"category": "external",
"summary": "SUSE Bug 1223761 for CVE-2024-27003",
"url": "https://bugzilla.suse.com/1223761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27003"
},
{
"cve": "CVE-2024-27004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27004"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: Get runtime PM before walking tree during disable_unused\n\nDoug reported [1] the following hung task:\n\n INFO: task swapper/0:1 blocked for more than 122 seconds.\n Not tainted 5.15.149-21875-gf795ebc40eb8 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:swapper/0 state:D stack: 0 pid: 1 ppid: 0 flags:0x00000008\n Call trace:\n __switch_to+0xf4/0x1f4\n __schedule+0x418/0xb80\n schedule+0x5c/0x10c\n rpm_resume+0xe0/0x52c\n rpm_resume+0x178/0x52c\n __pm_runtime_resume+0x58/0x98\n clk_pm_runtime_get+0x30/0xb0\n clk_disable_unused_subtree+0x58/0x208\n clk_disable_unused_subtree+0x38/0x208\n clk_disable_unused_subtree+0x38/0x208\n clk_disable_unused_subtree+0x38/0x208\n clk_disable_unused_subtree+0x38/0x208\n clk_disable_unused+0x4c/0xe4\n do_one_initcall+0xcc/0x2d8\n do_initcall_level+0xa4/0x148\n do_initcalls+0x5c/0x9c\n do_basic_setup+0x24/0x30\n kernel_init_freeable+0xec/0x164\n kernel_init+0x28/0x120\n ret_from_fork+0x10/0x20\n INFO: task kworker/u16:0:9 blocked for more than 122 seconds.\n Not tainted 5.15.149-21875-gf795ebc40eb8 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u16:0 state:D stack: 0 pid: 9 ppid: 2 flags:0x00000008\n Workqueue: events_unbound deferred_probe_work_func\n Call trace:\n __switch_to+0xf4/0x1f4\n __schedule+0x418/0xb80\n schedule+0x5c/0x10c\n schedule_preempt_disabled+0x2c/0x48\n __mutex_lock+0x238/0x488\n __mutex_lock_slowpath+0x1c/0x28\n mutex_lock+0x50/0x74\n clk_prepare_lock+0x7c/0x9c\n clk_core_prepare_lock+0x20/0x44\n clk_prepare+0x24/0x30\n clk_bulk_prepare+0x40/0xb0\n mdss_runtime_resume+0x54/0x1c8\n pm_generic_runtime_resume+0x30/0x44\n __genpd_runtime_resume+0x68/0x7c\n genpd_runtime_resume+0x108/0x1f4\n __rpm_callback+0x84/0x144\n rpm_callback+0x30/0x88\n rpm_resume+0x1f4/0x52c\n rpm_resume+0x178/0x52c\n __pm_runtime_resume+0x58/0x98\n __device_attach+0xe0/0x170\n device_initial_probe+0x1c/0x28\n bus_probe_device+0x3c/0x9c\n device_add+0x644/0x814\n mipi_dsi_device_register_full+0xe4/0x170\n devm_mipi_dsi_device_register_full+0x28/0x70\n ti_sn_bridge_probe+0x1dc/0x2c0\n auxiliary_bus_probe+0x4c/0x94\n really_probe+0xcc/0x2c8\n __driver_probe_device+0xa8/0x130\n driver_probe_device+0x48/0x110\n __device_attach_driver+0xa4/0xcc\n bus_for_each_drv+0x8c/0xd8\n __device_attach+0xf8/0x170\n device_initial_probe+0x1c/0x28\n bus_probe_device+0x3c/0x9c\n deferred_probe_work_func+0x9c/0xd8\n process_one_work+0x148/0x518\n worker_thread+0x138/0x350\n kthread+0x138/0x1e0\n ret_from_fork+0x10/0x20\n\nThe first thread is walking the clk tree and calling\nclk_pm_runtime_get() to power on devices required to read the clk\nhardware via struct clk_ops::is_enabled(). This thread holds the clk\nprepare_lock, and is trying to runtime PM resume a device, when it finds\nthat the device is in the process of resuming so the thread schedule()s\naway waiting for the device to finish resuming before continuing. The\nsecond thread is runtime PM resuming the same device, but the runtime\nresume callback is calling clk_prepare(), trying to grab the\nprepare_lock waiting on the first thread.\n\nThis is a classic ABBA deadlock. To properly fix the deadlock, we must\nnever runtime PM resume or suspend a device with the clk prepare_lock\nheld. Actually doing that is near impossible today because the global\nprepare_lock would have to be dropped in the middle of the tree, the\ndevice runtime PM resumed/suspended, and then the prepare_lock grabbed\nagain to ensure consistency of the clk tree topology. If anything\nchanges with the clk tree in the meantime, we\u0027ve lost and will need to\nstart the operation all over again.\n\nLuckily, most of the time we\u0027re simply incrementing or decrementing the\nruntime PM count on an active device, so we don\u0027t have the chance to\nschedule away with the prepare_lock held. Let\u0027s fix this immediate\nproblem that can be\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27004",
"url": "https://www.suse.com/security/cve/CVE-2024-27004"
},
{
"category": "external",
"summary": "SUSE Bug 1223762 for CVE-2024-27004",
"url": "https://bugzilla.suse.com/1223762"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27004"
},
{
"cve": "CVE-2024-27008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: nv04: Fix out of bounds access\n\nWhen Output Resource (dcb-\u003eor) value is assigned in\nfabricate_dcb_output(), there may be out of bounds access to\ndac_users array in case dcb-\u003eor is zero because ffs(dcb-\u003eor) is\nused as index there.\nThe \u0027or\u0027 argument of fabricate_dcb_output() must be interpreted as a\nnumber of bit to set, not value.\n\nUtilize macros from \u0027enum nouveau_or\u0027 in calls instead of hardcoding.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27008",
"url": "https://www.suse.com/security/cve/CVE-2024-27008"
},
{
"category": "external",
"summary": "SUSE Bug 1223802 for CVE-2024-27008",
"url": "https://bugzilla.suse.com/1223802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27008"
},
{
"cve": "CVE-2024-27027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27027"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndpll: fix dpll_xa_ref_*_del() for multiple registrations\n\nCurrently, if there are multiple registrations of the same pin on the\nsame dpll device, following warnings are observed:\nWARNING: CPU: 5 PID: 2212 at drivers/dpll/dpll_core.c:143 dpll_xa_ref_pin_del.isra.0+0x21e/0x230\nWARNING: CPU: 5 PID: 2212 at drivers/dpll/dpll_core.c:223 __dpll_pin_unregister+0x2b3/0x2c0\n\nThe problem is, that in both dpll_xa_ref_dpll_del() and\ndpll_xa_ref_pin_del() registration is only removed from list in case the\nreference count drops to zero. That is wrong, the registration has to\nbe removed always.\n\nTo fix this, remove the registration from the list and free\nit unconditionally, instead of doing it only when the ref reference\ncounter reaches zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27027",
"url": "https://www.suse.com/security/cve/CVE-2024-27027"
},
{
"category": "external",
"summary": "SUSE Bug 1223787 for CVE-2024-27027",
"url": "https://bugzilla.suse.com/1223787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27027"
},
{
"cve": "CVE-2024-27028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: spi-mt65xx: Fix NULL pointer access in interrupt handler\n\nThe TX buffer in spi_transfer can be a NULL pointer, so the interrupt\nhandler may end up writing to the invalid memory and cause crashes.\n\nAdd a check to trans-\u003etx_buf before using it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27028",
"url": "https://www.suse.com/security/cve/CVE-2024-27028"
},
{
"category": "external",
"summary": "SUSE Bug 1223788 for CVE-2024-27028",
"url": "https://bugzilla.suse.com/1223788"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27028"
},
{
"cve": "CVE-2024-27029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix mmhub client id out-of-bounds access\n\nProperly handle cid 0x140.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27029",
"url": "https://www.suse.com/security/cve/CVE-2024-27029"
},
{
"category": "external",
"summary": "SUSE Bug 1223789 for CVE-2024-27029",
"url": "https://bugzilla.suse.com/1223789"
},
{
"category": "external",
"summary": "SUSE Bug 1226184 for CVE-2024-27029",
"url": "https://bugzilla.suse.com/1226184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-27029"
},
{
"cve": "CVE-2024-27030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: Use separate handlers for interrupts\n\nFor PF to AF interrupt vector and VF to AF vector same\ninterrupt handler is registered which is causing race condition.\nWhen two interrupts are raised to two CPUs at same time\nthen two cores serve same event corrupting the data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27030",
"url": "https://www.suse.com/security/cve/CVE-2024-27030"
},
{
"category": "external",
"summary": "SUSE Bug 1223790 for CVE-2024-27030",
"url": "https://bugzilla.suse.com/1223790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27030"
},
{
"cve": "CVE-2024-27031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Fix nfs_netfs_issue_read() xarray locking for writeback interrupt\n\nThe loop inside nfs_netfs_issue_read() currently does not disable\ninterrupts while iterating through pages in the xarray to submit\nfor NFS read. This is not safe though since after taking xa_lock,\nanother page in the mapping could be processed for writeback inside\nan interrupt, and deadlock can occur. The fix is simple and clean\nif we use xa_for_each_range(), which handles the iteration with RCU\nwhile reducing code complexity.\n\nThe problem is easily reproduced with the following test:\n mount -o vers=3,fsc 127.0.0.1:/export /mnt/nfs\n dd if=/dev/zero of=/mnt/nfs/file1.bin bs=4096 count=1\n echo 3 \u003e /proc/sys/vm/drop_caches\n dd if=/mnt/nfs/file1.bin of=/dev/null\n umount /mnt/nfs\n\nOn the console with a lockdep-enabled kernel a message similar to\nthe following will be seen:\n\n ================================\n WARNING: inconsistent lock state\n 6.7.0-lockdbg+ #10 Not tainted\n --------------------------------\n inconsistent {IN-SOFTIRQ-W} -\u003e {SOFTIRQ-ON-W} usage.\n test5/1708 [HC0[0]:SC0[0]:HE1:SE1] takes:\n ffff888127baa598 (\u0026xa-\u003exa_lock#4){+.?.}-{3:3}, at:\nnfs_netfs_issue_read+0x1b2/0x4b0 [nfs]\n {IN-SOFTIRQ-W} state was registered at:\n lock_acquire+0x144/0x380\n _raw_spin_lock_irqsave+0x4e/0xa0\n __folio_end_writeback+0x17e/0x5c0\n folio_end_writeback+0x93/0x1b0\n iomap_finish_ioend+0xeb/0x6a0\n blk_update_request+0x204/0x7f0\n blk_mq_end_request+0x30/0x1c0\n blk_complete_reqs+0x7e/0xa0\n __do_softirq+0x113/0x544\n __irq_exit_rcu+0xfe/0x120\n irq_exit_rcu+0xe/0x20\n sysvec_call_function_single+0x6f/0x90\n asm_sysvec_call_function_single+0x1a/0x20\n pv_native_safe_halt+0xf/0x20\n default_idle+0x9/0x20\n default_idle_call+0x67/0xa0\n do_idle+0x2b5/0x300\n cpu_startup_entry+0x34/0x40\n start_secondary+0x19d/0x1c0\n secondary_startup_64_no_verify+0x18f/0x19b\n irq event stamp: 176891\n hardirqs last enabled at (176891): [\u003cffffffffa67a0be4\u003e]\n_raw_spin_unlock_irqrestore+0x44/0x60\n hardirqs last disabled at (176890): [\u003cffffffffa67a0899\u003e]\n_raw_spin_lock_irqsave+0x79/0xa0\n softirqs last enabled at (176646): [\u003cffffffffa515d91e\u003e]\n__irq_exit_rcu+0xfe/0x120\n softirqs last disabled at (176633): [\u003cffffffffa515d91e\u003e]\n__irq_exit_rcu+0xfe/0x120\n\n other info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026xa-\u003exa_lock#4);\n \u003cInterrupt\u003e\n lock(\u0026xa-\u003exa_lock#4);\n\n *** DEADLOCK ***\n\n 2 locks held by test5/1708:\n #0: ffff888127baa498 (\u0026sb-\u003es_type-\u003ei_mutex_key#22){++++}-{4:4}, at:\n nfs_start_io_read+0x28/0x90 [nfs]\n #1: ffff888127baa650 (mapping.invalidate_lock#3){.+.+}-{4:4}, at:\n page_cache_ra_unbounded+0xa4/0x280\n\n stack backtrace:\n CPU: 6 PID: 1708 Comm: test5 Kdump: loaded Not tainted 6.7.0-lockdbg+\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-1.fc39\n04/01/2014\n Call Trace:\n dump_stack_lvl+0x5b/0x90\n mark_lock+0xb3f/0xd20\n __lock_acquire+0x77b/0x3360\n _raw_spin_lock+0x34/0x80\n nfs_netfs_issue_read+0x1b2/0x4b0 [nfs]\n netfs_begin_read+0x77f/0x980 [netfs]\n nfs_netfs_readahead+0x45/0x60 [nfs]\n nfs_readahead+0x323/0x5a0 [nfs]\n read_pages+0xf3/0x5c0\n page_cache_ra_unbounded+0x1c8/0x280\n filemap_get_pages+0x38c/0xae0\n filemap_read+0x206/0x5e0\n nfs_file_read+0xb7/0x140 [nfs]\n vfs_read+0x2a9/0x460\n ksys_read+0xb7/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27031",
"url": "https://www.suse.com/security/cve/CVE-2024-27031"
},
{
"category": "external",
"summary": "SUSE Bug 1223805 for CVE-2024-27031",
"url": "https://bugzilla.suse.com/1223805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27031"
},
{
"cve": "CVE-2024-27046",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27046"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfp: flower: handle acti_netdevs allocation failure\n\nThe kmalloc_array() in nfp_fl_lag_do_work() will return null, if\nthe physical memory has run out. As a result, if we dereference\nthe acti_netdevs, the null pointer dereference bugs will happen.\n\nThis patch adds a check to judge whether allocation failure occurs.\nIf it happens, the delayed work will be rescheduled and try again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27046",
"url": "https://www.suse.com/security/cve/CVE-2024-27046"
},
{
"category": "external",
"summary": "SUSE Bug 1223827 for CVE-2024-27046",
"url": "https://bugzilla.suse.com/1223827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27046"
},
{
"cve": "CVE-2024-27057",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27057"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: SOF: ipc4-pcm: Workaround for crashed firmware on system suspend\n\nWhen the system is suspended while audio is active, the\nsof_ipc4_pcm_hw_free() is invoked to reset the pipelines since during\nsuspend the DSP is turned off, streams will be re-started after resume.\n\nIf the firmware crashes during while audio is running (or when we reset\nthe stream before suspend) then the sof_ipc4_set_multi_pipeline_state()\nwill fail with IPC error and the state change is interrupted.\nThis will cause misalignment between the kernel and firmware state on next\nDSP boot resulting errors returned by firmware for IPC messages, eventually\nfailing the audio resume.\nOn stream close the errors are ignored so the kernel state will be\ncorrected on the next DSP boot, so the second boot after the DSP panic.\n\nIf sof_ipc4_trigger_pipelines() is called from sof_ipc4_pcm_hw_free() then\nstate parameter is SOF_IPC4_PIPE_RESET and only in this case.\n\nTreat a forced pipeline reset similarly to how we treat a pcm_free by\nignoring error on state sending to allow the kernel\u0027s state to be\nconsistent with the state the firmware will have after the next boot.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27057",
"url": "https://www.suse.com/security/cve/CVE-2024-27057"
},
{
"category": "external",
"summary": "SUSE Bug 1223831 for CVE-2024-27057",
"url": "https://bugzilla.suse.com/1223831"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27057"
},
{
"cve": "CVE-2024-27062",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27062"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau: lock the client object tree.\n\nIt appears the client object tree has no locking unless I\u0027ve missed\nsomething else. Fix races around adding/removing client objects,\nmostly vram bar mappings.\n\n 4562.099306] general protection fault, probably for non-canonical address 0x6677ed422bceb80c: 0000 [#1] PREEMPT SMP PTI\n[ 4562.099314] CPU: 2 PID: 23171 Comm: deqp-vk Not tainted 6.8.0-rc6+ #27\n[ 4562.099324] Hardware name: Gigabyte Technology Co., Ltd. Z390 I AORUS PRO WIFI/Z390 I AORUS PRO WIFI-CF, BIOS F8 11/05/2021\n[ 4562.099330] RIP: 0010:nvkm_object_search+0x1d/0x70 [nouveau]\n[ 4562.099503] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 0f 1f 44 00 00 48 89 f8 48 85 f6 74 39 48 8b 87 a0 00 00 00 48 85 c0 74 12 \u003c48\u003e 8b 48 f8 48 39 ce 73 15 48 8b 40 10 48 85 c0 75 ee 48 c7 c0 fe\n[ 4562.099506] RSP: 0000:ffffa94cc420bbf8 EFLAGS: 00010206\n[ 4562.099512] RAX: 6677ed422bceb814 RBX: ffff98108791f400 RCX: ffff9810f26b8f58\n[ 4562.099517] RDX: 0000000000000000 RSI: ffff9810f26b9158 RDI: ffff98108791f400\n[ 4562.099519] RBP: ffff9810f26b9158 R08: 0000000000000000 R09: 0000000000000000\n[ 4562.099521] R10: ffffa94cc420bc48 R11: 0000000000000001 R12: ffff9810f02a7cc0\n[ 4562.099526] R13: 0000000000000000 R14: 00000000000000ff R15: 0000000000000007\n[ 4562.099528] FS: 00007f629c5017c0(0000) GS:ffff98142c700000(0000) knlGS:0000000000000000\n[ 4562.099534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4562.099536] CR2: 00007f629a882000 CR3: 000000017019e004 CR4: 00000000003706f0\n[ 4562.099541] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4562.099542] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4562.099544] Call Trace:\n[ 4562.099555] \u003cTASK\u003e\n[ 4562.099573] ? die_addr+0x36/0x90\n[ 4562.099583] ? exc_general_protection+0x246/0x4a0\n[ 4562.099593] ? asm_exc_general_protection+0x26/0x30\n[ 4562.099600] ? nvkm_object_search+0x1d/0x70 [nouveau]\n[ 4562.099730] nvkm_ioctl+0xa1/0x250 [nouveau]\n[ 4562.099861] nvif_object_map_handle+0xc8/0x180 [nouveau]\n[ 4562.099986] nouveau_ttm_io_mem_reserve+0x122/0x270 [nouveau]\n[ 4562.100156] ? dma_resv_test_signaled+0x26/0xb0\n[ 4562.100163] ttm_bo_vm_fault_reserved+0x97/0x3c0 [ttm]\n[ 4562.100182] ? __mutex_unlock_slowpath+0x2a/0x270\n[ 4562.100189] nouveau_ttm_fault+0x69/0xb0 [nouveau]\n[ 4562.100356] __do_fault+0x32/0x150\n[ 4562.100362] do_fault+0x7c/0x560\n[ 4562.100369] __handle_mm_fault+0x800/0xc10\n[ 4562.100382] handle_mm_fault+0x17c/0x3e0\n[ 4562.100388] do_user_addr_fault+0x208/0x860\n[ 4562.100395] exc_page_fault+0x7f/0x200\n[ 4562.100402] asm_exc_page_fault+0x26/0x30\n[ 4562.100412] RIP: 0033:0x9b9870\n[ 4562.100419] Code: 85 a8 f7 ff ff 8b 8d 80 f7 ff ff 89 08 e9 18 f2 ff ff 0f 1f 84 00 00 00 00 00 44 89 32 e9 90 fa ff ff 0f 1f 84 00 00 00 00 00 \u003c44\u003e 89 32 e9 f8 f1 ff ff 0f 1f 84 00 00 00 00 00 66 44 89 32 e9 e7\n[ 4562.100422] RSP: 002b:00007fff9ba2dc70 EFLAGS: 00010246\n[ 4562.100426] RAX: 0000000000000004 RBX: 000000000dd65e10 RCX: 000000fff0000000\n[ 4562.100428] RDX: 00007f629a882000 RSI: 00007f629a882000 RDI: 0000000000000066\n[ 4562.100432] RBP: 00007fff9ba2e570 R08: 0000000000000000 R09: 0000000123ddf000\n[ 4562.100434] R10: 0000000000000001 R11: 0000000000000246 R12: 000000007fffffff\n[ 4562.100436] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n[ 4562.100446] \u003c/TASK\u003e\n[ 4562.100448] Modules linked in: nf_conntrack_netbios_ns nf_conntrack_broadcast nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables libcrc32c nfnetlink cmac bnep sunrpc iwlmvm intel_rapl_msr intel_rapl_common snd_sof_pci_intel_cnl x86_pkg_temp_thermal intel_powerclamp snd_sof_intel_hda_common mac80211 coretemp snd_soc_acpi_intel_match kvm_intel snd_soc_acpi snd_soc_hdac_hda snd_sof_pci snd_sof_xtensa_dsp snd_sof_intel_hda_mlink \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27062",
"url": "https://www.suse.com/security/cve/CVE-2024-27062"
},
{
"category": "external",
"summary": "SUSE Bug 1223834 for CVE-2024-27062",
"url": "https://bugzilla.suse.com/1223834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27062"
},
{
"cve": "CVE-2024-27067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27067"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/evtchn: avoid WARN() when unbinding an event channel\n\nWhen unbinding a user event channel, the related handler might be\ncalled a last time in case the kernel was built with\nCONFIG_DEBUG_SHIRQ. This might cause a WARN() in the handler.\n\nAvoid that by adding an \"unbinding\" flag to struct user_event which\nwill short circuit the handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27067",
"url": "https://www.suse.com/security/cve/CVE-2024-27067"
},
{
"category": "external",
"summary": "SUSE Bug 1223739 for CVE-2024-27067",
"url": "https://bugzilla.suse.com/1223739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27067"
},
{
"cve": "CVE-2024-27080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race when detecting delalloc ranges during fiemap\n\nFor fiemap we recently stopped locking the target extent range for the\nwhole duration of the fiemap call, in order to avoid a deadlock in a\nscenario where the fiemap buffer happens to be a memory mapped range of\nthe same file. This use case is very unlikely to be useful in practice but\nit may be triggered by fuzz testing (syzbot, etc).\n\nThis however introduced a race that makes us miss delalloc ranges for\nfile regions that are currently holes, so the caller of fiemap will not\nbe aware that there\u0027s data for some file regions. This can be quite\nserious for some use cases - for example in coreutils versions before 9.0,\nthe cp program used fiemap to detect holes and data in the source file,\ncopying only regions with data (extents or delalloc) from the source file\nto the destination file in order to preserve holes (see the documentation\nfor its --sparse command line option). This means that if cp was used\nwith a source file that had delalloc in a hole, the destination file could\nend up without that data, which is effectively a data loss issue, if it\nhappened to hit the race described below.\n\nThe race happens like this:\n\n1) Fiemap is called, without the FIEMAP_FLAG_SYNC flag, for a file that\n has delalloc in the file range [64M, 65M[, which is currently a hole;\n\n2) Fiemap locks the inode in shared mode, then starts iterating the\n inode\u0027s subvolume tree searching for file extent items, without having\n the whole fiemap target range locked in the inode\u0027s io tree - the\n change introduced recently by commit b0ad381fa769 (\"btrfs: fix\n deadlock with fiemap and extent locking\"). It only locks ranges in\n the io tree when it finds a hole or prealloc extent since that\n commit;\n\n3) Note that fiemap clones each leaf before using it, and this is to\n avoid deadlocks when locking a file range in the inode\u0027s io tree and\n the fiemap buffer is memory mapped to some file, because writing\n to the page with btrfs_page_mkwrite() will wait on any ordered extent\n for the page\u0027s range and the ordered extent needs to lock the range\n and may need to modify the same leaf, therefore leading to a deadlock\n on the leaf;\n\n4) While iterating the file extent items in the cloned leaf before\n finding the hole in the range [64M, 65M[, the delalloc in that range\n is flushed and its ordered extent completes - meaning the corresponding\n file extent item is in the inode\u0027s subvolume tree, but not present in\n the cloned leaf that fiemap is iterating over;\n\n5) When fiemap finds the hole in the [64M, 65M[ range by seeing the gap in\n the cloned leaf (or a file extent item with disk_bytenr == 0 in case\n the NO_HOLES feature is not enabled), it will lock that file range in\n the inode\u0027s io tree and then search for delalloc by checking for the\n EXTENT_DELALLOC bit in the io tree for that range and ordered extents\n (with btrfs_find_delalloc_in_range()). But it finds nothing since the\n delalloc in that range was already flushed and the ordered extent\n completed and is gone - as a result fiemap will not report that there\u0027s\n delalloc or an extent for the range [64M, 65M[, so user space will be\n mislead into thinking that there\u0027s a hole in that range.\n\nThis could actually be sporadically triggered with test case generic/094\nfrom fstests, which reports a missing extent/delalloc range like this:\n\n generic/094 2s ... - output mismatch (see /home/fdmanana/git/hub/xfstests/results//generic/094.out.bad)\n --- tests/generic/094.out\t2020-06-10 19:29:03.830519425 +0100\n +++ /home/fdmanana/git/hub/xfstests/results//generic/094.out.bad\t2024-02-28 11:00:00.381071525 +0000\n @@ -1,3 +1,9 @@\n QA output created by 094\n fiemap run with sync\n fiemap run without sync\n +ERROR: couldn\u0027t find extent at 7\n +map is \u0027HHDDHPPDPHPH\u0027\n +logical: [ 5.. 6] phys:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27080",
"url": "https://www.suse.com/security/cve/CVE-2024-27080"
},
{
"category": "external",
"summary": "SUSE Bug 1223782 for CVE-2024-27080",
"url": "https://bugzilla.suse.com/1223782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27080"
},
{
"cve": "CVE-2024-27388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27388"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: fix some memleaks in gssx_dec_option_array\n\nThe creds and oa-\u003edata need to be freed in the error-handling paths after\ntheir allocation. So this patch add these deallocations in the\ncorresponding paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27388",
"url": "https://www.suse.com/security/cve/CVE-2024-27388"
},
{
"category": "external",
"summary": "SUSE Bug 1223744 for CVE-2024-27388",
"url": "https://bugzilla.suse.com/1223744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27388"
},
{
"cve": "CVE-2024-27389",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27389"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore: inode: Only d_invalidate() is needed\n\nUnloading a modular pstore backend with records in pstorefs would\ntrigger the dput() double-drop warning:\n\n WARNING: CPU: 0 PID: 2569 at fs/dcache.c:762 dput.part.0+0x3f3/0x410\n\nUsing the combo of d_drop()/dput() (as mentioned in\nDocumentation/filesystems/vfs.rst) isn\u0027t the right approach here, and\nleads to the reference counting problem seen above. Use d_invalidate()\nand update the code to not bother checking for error codes that can\nnever happen.\n\n---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27389",
"url": "https://www.suse.com/security/cve/CVE-2024-27389"
},
{
"category": "external",
"summary": "SUSE Bug 1223705 for CVE-2024-27389",
"url": "https://bugzilla.suse.com/1223705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27389"
},
{
"cve": "CVE-2024-27397",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27397"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: use timestamp to check for set element timeout\n\nAdd a timestamp field at the beginning of the transaction, store it\nin the nftables per-netns area.\n\nUpdate set backend .insert, .deactivate and sync gc path to use the\ntimestamp, this avoids that an element expires while control plane\ntransaction is still unfinished.\n\n.lookup and .update, which are used from packet path, still use the\ncurrent time to check if the element has expired. And .get path and dump\nalso since this runs lockless under rcu read size lock. Then, there is\nasync gc which also needs to check the current time since it runs\nasynchronously from a workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27397",
"url": "https://www.suse.com/security/cve/CVE-2024-27397"
},
{
"category": "external",
"summary": "SUSE Bug 1224095 for CVE-2024-27397",
"url": "https://bugzilla.suse.com/1224095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27397"
},
{
"cve": "CVE-2024-27398",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27398"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Fix use-after-free bugs caused by sco_sock_timeout\n\nWhen the sco connection is established and then, the sco socket\nis releasing, timeout_work will be scheduled to judge whether\nthe sco disconnection is timeout. The sock will be deallocated\nlater, but it is dereferenced again in sco_sock_timeout. As a\nresult, the use-after-free bugs will happen. The root cause is\nshown below:\n\n Cleanup Thread | Worker Thread\nsco_sock_release |\n sco_sock_close |\n __sco_sock_close |\n sco_sock_set_timer |\n schedule_delayed_work |\n sco_sock_kill | (wait a time)\n sock_put(sk) //FREE | sco_sock_timeout\n | sock_hold(sk) //USE\n\nThe KASAN report triggered by POC is shown below:\n\n[ 95.890016] ==================================================================\n[ 95.890496] BUG: KASAN: slab-use-after-free in sco_sock_timeout+0x5e/0x1c0\n[ 95.890755] Write of size 4 at addr ffff88800c388080 by task kworker/0:0/7\n...\n[ 95.890755] Workqueue: events sco_sock_timeout\n[ 95.890755] Call Trace:\n[ 95.890755] \u003cTASK\u003e\n[ 95.890755] dump_stack_lvl+0x45/0x110\n[ 95.890755] print_address_description+0x78/0x390\n[ 95.890755] print_report+0x11b/0x250\n[ 95.890755] ? __virt_addr_valid+0xbe/0xf0\n[ 95.890755] ? sco_sock_timeout+0x5e/0x1c0\n[ 95.890755] kasan_report+0x139/0x170\n[ 95.890755] ? update_load_avg+0xe5/0x9f0\n[ 95.890755] ? sco_sock_timeout+0x5e/0x1c0\n[ 95.890755] kasan_check_range+0x2c3/0x2e0\n[ 95.890755] sco_sock_timeout+0x5e/0x1c0\n[ 95.890755] process_one_work+0x561/0xc50\n[ 95.890755] worker_thread+0xab2/0x13c0\n[ 95.890755] ? pr_cont_work+0x490/0x490\n[ 95.890755] kthread+0x279/0x300\n[ 95.890755] ? pr_cont_work+0x490/0x490\n[ 95.890755] ? kthread_blkcg+0xa0/0xa0\n[ 95.890755] ret_from_fork+0x34/0x60\n[ 95.890755] ? kthread_blkcg+0xa0/0xa0\n[ 95.890755] ret_from_fork_asm+0x11/0x20\n[ 95.890755] \u003c/TASK\u003e\n[ 95.890755]\n[ 95.890755] Allocated by task 506:\n[ 95.890755] kasan_save_track+0x3f/0x70\n[ 95.890755] __kasan_kmalloc+0x86/0x90\n[ 95.890755] __kmalloc+0x17f/0x360\n[ 95.890755] sk_prot_alloc+0xe1/0x1a0\n[ 95.890755] sk_alloc+0x31/0x4e0\n[ 95.890755] bt_sock_alloc+0x2b/0x2a0\n[ 95.890755] sco_sock_create+0xad/0x320\n[ 95.890755] bt_sock_create+0x145/0x320\n[ 95.890755] __sock_create+0x2e1/0x650\n[ 95.890755] __sys_socket+0xd0/0x280\n[ 95.890755] __x64_sys_socket+0x75/0x80\n[ 95.890755] do_syscall_64+0xc4/0x1b0\n[ 95.890755] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n[ 95.890755]\n[ 95.890755] Freed by task 506:\n[ 95.890755] kasan_save_track+0x3f/0x70\n[ 95.890755] kasan_save_free_info+0x40/0x50\n[ 95.890755] poison_slab_object+0x118/0x180\n[ 95.890755] __kasan_slab_free+0x12/0x30\n[ 95.890755] kfree+0xb2/0x240\n[ 95.890755] __sk_destruct+0x317/0x410\n[ 95.890755] sco_sock_release+0x232/0x280\n[ 95.890755] sock_close+0xb2/0x210\n[ 95.890755] __fput+0x37f/0x770\n[ 95.890755] task_work_run+0x1ae/0x210\n[ 95.890755] get_signal+0xe17/0xf70\n[ 95.890755] arch_do_signal_or_restart+0x3f/0x520\n[ 95.890755] syscall_exit_to_user_mode+0x55/0x120\n[ 95.890755] do_syscall_64+0xd1/0x1b0\n[ 95.890755] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n[ 95.890755]\n[ 95.890755] The buggy address belongs to the object at ffff88800c388000\n[ 95.890755] which belongs to the cache kmalloc-1k of size 1024\n[ 95.890755] The buggy address is located 128 bytes inside of\n[ 95.890755] freed 1024-byte region [ffff88800c388000, ffff88800c388400)\n[ 95.890755]\n[ 95.890755] The buggy address belongs to the physical page:\n[ 95.890755] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88800c38a800 pfn:0xc388\n[ 95.890755] head: order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n[ 95.890755] ano\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27398",
"url": "https://www.suse.com/security/cve/CVE-2024-27398"
},
{
"category": "external",
"summary": "SUSE Bug 1224174 for CVE-2024-27398",
"url": "https://bugzilla.suse.com/1224174"
},
{
"category": "external",
"summary": "SUSE Bug 1225013 for CVE-2024-27398",
"url": "https://bugzilla.suse.com/1225013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-27398"
},
{
"cve": "CVE-2024-27399",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27399"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout\n\nThere is a race condition between l2cap_chan_timeout() and\nl2cap_chan_del(). When we use l2cap_chan_del() to delete the\nchannel, the chan-\u003econn will be set to null. But the conn could\nbe dereferenced again in the mutex_lock() of l2cap_chan_timeout().\nAs a result the null pointer dereference bug will happen. The\nKASAN report triggered by POC is shown below:\n\n[ 472.074580] ==================================================================\n[ 472.075284] BUG: KASAN: null-ptr-deref in mutex_lock+0x68/0xc0\n[ 472.075308] Write of size 8 at addr 0000000000000158 by task kworker/0:0/7\n[ 472.075308]\n[ 472.075308] CPU: 0 PID: 7 Comm: kworker/0:0 Not tainted 6.9.0-rc5-00356-g78c0094a146b #36\n[ 472.075308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu4\n[ 472.075308] Workqueue: events l2cap_chan_timeout\n[ 472.075308] Call Trace:\n[ 472.075308] \u003cTASK\u003e\n[ 472.075308] dump_stack_lvl+0x137/0x1a0\n[ 472.075308] print_report+0x101/0x250\n[ 472.075308] ? __virt_addr_valid+0x77/0x160\n[ 472.075308] ? mutex_lock+0x68/0xc0\n[ 472.075308] kasan_report+0x139/0x170\n[ 472.075308] ? mutex_lock+0x68/0xc0\n[ 472.075308] kasan_check_range+0x2c3/0x2e0\n[ 472.075308] mutex_lock+0x68/0xc0\n[ 472.075308] l2cap_chan_timeout+0x181/0x300\n[ 472.075308] process_one_work+0x5d2/0xe00\n[ 472.075308] worker_thread+0xe1d/0x1660\n[ 472.075308] ? pr_cont_work+0x5e0/0x5e0\n[ 472.075308] kthread+0x2b7/0x350\n[ 472.075308] ? pr_cont_work+0x5e0/0x5e0\n[ 472.075308] ? kthread_blkcg+0xd0/0xd0\n[ 472.075308] ret_from_fork+0x4d/0x80\n[ 472.075308] ? kthread_blkcg+0xd0/0xd0\n[ 472.075308] ret_from_fork_asm+0x11/0x20\n[ 472.075308] \u003c/TASK\u003e\n[ 472.075308] ==================================================================\n[ 472.094860] Disabling lock debugging due to kernel taint\n[ 472.096136] BUG: kernel NULL pointer dereference, address: 0000000000000158\n[ 472.096136] #PF: supervisor write access in kernel mode\n[ 472.096136] #PF: error_code(0x0002) - not-present page\n[ 472.096136] PGD 0 P4D 0\n[ 472.096136] Oops: 0002 [#1] PREEMPT SMP KASAN NOPTI\n[ 472.096136] CPU: 0 PID: 7 Comm: kworker/0:0 Tainted: G B 6.9.0-rc5-00356-g78c0094a146b #36\n[ 472.096136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu4\n[ 472.096136] Workqueue: events l2cap_chan_timeout\n[ 472.096136] RIP: 0010:mutex_lock+0x88/0xc0\n[ 472.096136] Code: be 08 00 00 00 e8 f8 23 1f fd 4c 89 f7 be 08 00 00 00 e8 eb 23 1f fd 42 80 3c 23 00 74 08 48 88\n[ 472.096136] RSP: 0018:ffff88800744fc78 EFLAGS: 00000246\n[ 472.096136] RAX: 0000000000000000 RBX: 1ffff11000e89f8f RCX: ffffffff8457c865\n[ 472.096136] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff88800744fc78\n[ 472.096136] RBP: 0000000000000158 R08: ffff88800744fc7f R09: 1ffff11000e89f8f\n[ 472.096136] R10: dffffc0000000000 R11: ffffed1000e89f90 R12: dffffc0000000000\n[ 472.096136] R13: 0000000000000158 R14: ffff88800744fc78 R15: ffff888007405a00\n[ 472.096136] FS: 0000000000000000(0000) GS:ffff88806d200000(0000) knlGS:0000000000000000\n[ 472.096136] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 472.096136] CR2: 0000000000000158 CR3: 000000000da32000 CR4: 00000000000006f0\n[ 472.096136] Call Trace:\n[ 472.096136] \u003cTASK\u003e\n[ 472.096136] ? __die_body+0x8d/0xe0\n[ 472.096136] ? page_fault_oops+0x6b8/0x9a0\n[ 472.096136] ? kernelmode_fixup_or_oops+0x20c/0x2a0\n[ 472.096136] ? do_user_addr_fault+0x1027/0x1340\n[ 472.096136] ? _printk+0x7a/0xa0\n[ 472.096136] ? mutex_lock+0x68/0xc0\n[ 472.096136] ? add_taint+0x42/0xd0\n[ 472.096136] ? exc_page_fault+0x6a/0x1b0\n[ 472.096136] ? asm_exc_page_fault+0x26/0x30\n[ 472.096136] ? mutex_lock+0x75/0xc0\n[ 472.096136] ? mutex_lock+0x88/0xc0\n[ 472.096136] ? mutex_lock+0x75/0xc0\n[ 472.096136] l2cap_chan_timeo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27399",
"url": "https://www.suse.com/security/cve/CVE-2024-27399"
},
{
"category": "external",
"summary": "SUSE Bug 1224177 for CVE-2024-27399",
"url": "https://bugzilla.suse.com/1224177"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27399"
},
{
"cve": "CVE-2024-27400",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27400"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2\n\nThis reverts drm/amdgpu: fix ftrace event amdgpu_bo_move always move\non same heap. The basic problem here is that after the move the old\nlocation is simply not available any more.\n\nSome fixes were suggested, but essentially we should call the move\nnotification before actually moving things because only this way we have\nthe correct order for DMA-buf and VM move notifications as well.\n\nAlso rework the statistic handling so that we don\u0027t update the eviction\ncounter before the move.\n\nv2: add missing NULL check",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27400",
"url": "https://www.suse.com/security/cve/CVE-2024-27400"
},
{
"category": "external",
"summary": "SUSE Bug 1224180 for CVE-2024-27400",
"url": "https://bugzilla.suse.com/1224180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27400"
},
{
"cve": "CVE-2024-27405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27405"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs\n\nIt is observed sometimes when tethering is used over NCM with Windows 11\nas host, at some instances, the gadget_giveback has one byte appended at\nthe end of a proper NTB. When the NTB is parsed, unwrap call looks for\nany leftover bytes in SKB provided by u_ether and if there are any pending\nbytes, it treats them as a separate NTB and parses it. But in case the\nsecond NTB (as per unwrap call) is faulty/corrupt, all the datagrams that\nwere parsed properly in the first NTB and saved in rx_list are dropped.\n\nAdding a few custom traces showed the following:\n[002] d..1 7828.532866: dwc3_gadget_giveback: ep1out:\nreq 000000003868811a length 1025/16384 zsI ==\u003e 0\n[002] d..1 7828.532867: ncm_unwrap_ntb: K: ncm_unwrap_ntb toprocess: 1025\n[002] d..1 7828.532867: ncm_unwrap_ntb: K: ncm_unwrap_ntb nth: 1751999342\n[002] d..1 7828.532868: ncm_unwrap_ntb: K: ncm_unwrap_ntb seq: 0xce67\n[002] d..1 7828.532868: ncm_unwrap_ntb: K: ncm_unwrap_ntb blk_len: 0x400\n[002] d..1 7828.532868: ncm_unwrap_ntb: K: ncm_unwrap_ntb ndp_len: 0x10\n[002] d..1 7828.532869: ncm_unwrap_ntb: K: Parsed NTB with 1 frames\n\nIn this case, the giveback is of 1025 bytes and block length is 1024.\nThe rest 1 byte (which is 0x00) won\u0027t be parsed resulting in drop of\nall datagrams in rx_list.\n\nSame is case with packets of size 2048:\n[002] d..1 7828.557948: dwc3_gadget_giveback: ep1out:\nreq 0000000011dfd96e length 2049/16384 zsI ==\u003e 0\n[002] d..1 7828.557949: ncm_unwrap_ntb: K: ncm_unwrap_ntb nth: 1751999342\n[002] d..1 7828.557950: ncm_unwrap_ntb: K: ncm_unwrap_ntb blk_len: 0x800\n\nLecroy shows one byte coming in extra confirming that the byte is coming\nin from PC:\n\n Transfer 2959 - Bytes Transferred(1025) Timestamp((18.524 843 590)\n - Transaction 8391 - Data(1025 bytes) Timestamp(18.524 843 590)\n --- Packet 4063861\n Data(1024 bytes)\n Duration(2.117us) Idle(14.700ns) Timestamp(18.524 843 590)\n --- Packet 4063863\n Data(1 byte)\n Duration(66.160ns) Time(282.000ns) Timestamp(18.524 845 722)\n\nAccording to Windows driver, no ZLP is needed if wBlockLength is non-zero,\nbecause the non-zero wBlockLength has already told the function side the\nsize of transfer to be expected. However, there are in-market NCM devices\nthat rely on ZLP as long as the wBlockLength is multiple of wMaxPacketSize.\nTo deal with such devices, it pads an extra 0 at end so the transfer is no\nlonger multiple of wMaxPacketSize.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27405",
"url": "https://www.suse.com/security/cve/CVE-2024-27405"
},
{
"category": "external",
"summary": "SUSE Bug 1224423 for CVE-2024-27405",
"url": "https://bugzilla.suse.com/1224423"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27405"
},
{
"cve": "CVE-2024-27410",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27410"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: reject iftype change with mesh ID change\n\nIt\u0027s currently possible to change the mesh ID when the\ninterface isn\u0027t yet in mesh mode, at the same time as\nchanging it into mesh mode. This leads to an overwrite\nof data in the wdev-\u003eu union for the interface type it\ncurrently has, causing cfg80211_change_iface() to do\nwrong things when switching.\n\nWe could probably allow setting an interface to mesh\nwhile setting the mesh ID at the same time by doing a\ndifferent order of operations here, but realistically\nthere\u0027s no userspace that\u0027s going to do this, so just\ndisallow changes in iftype when setting mesh ID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27410",
"url": "https://www.suse.com/security/cve/CVE-2024-27410"
},
{
"category": "external",
"summary": "SUSE Bug 1224432 for CVE-2024-27410",
"url": "https://bugzilla.suse.com/1224432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27410"
},
{
"cve": "CVE-2024-27411",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27411"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau: keep DMA buffers required for suspend/resume\n\nNouveau deallocates a few buffers post GPU init which are required for GPU suspend/resume to function correctly.\nThis is likely not as big an issue on systems where the NVGPU is the only GPU, but on multi-GPU set ups it leads to a regression where the kernel module errors and results in a system-wide rendering freeze.\n\nThis commit addresses that regression by moving the two buffers required for suspend and resume to be deallocated at driver unload instead of post init.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27411",
"url": "https://www.suse.com/security/cve/CVE-2024-27411"
},
{
"category": "external",
"summary": "SUSE Bug 1224433 for CVE-2024-27411",
"url": "https://bugzilla.suse.com/1224433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27411"
},
{
"cve": "CVE-2024-27412",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27412"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: bq27xxx-i2c: Do not free non existing IRQ\n\nThe bq27xxx i2c-client may not have an IRQ, in which case\nclient-\u003eirq will be 0. bq27xxx_battery_i2c_probe() already has\nan if (client-\u003eirq) check wrapping the request_threaded_irq().\n\nBut bq27xxx_battery_i2c_remove() unconditionally calls\nfree_irq(client-\u003eirq) leading to:\n\n[ 190.310742] ------------[ cut here ]------------\n[ 190.310843] Trying to free already-free IRQ 0\n[ 190.310861] WARNING: CPU: 2 PID: 1304 at kernel/irq/manage.c:1893 free_irq+0x1b8/0x310\n\nFollowed by a backtrace when unbinding the driver. Add\nan if (client-\u003eirq) to bq27xxx_battery_i2c_remove() mirroring\nprobe() to fix this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27412",
"url": "https://www.suse.com/security/cve/CVE-2024-27412"
},
{
"category": "external",
"summary": "SUSE Bug 1224437 for CVE-2024-27412",
"url": "https://bugzilla.suse.com/1224437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27412"
},
{
"cve": "CVE-2024-27413",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27413"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi/capsule-loader: fix incorrect allocation size\n\ngcc-14 notices that the allocation with sizeof(void) on 32-bit architectures\nis not enough for a 64-bit phys_addr_t:\n\ndrivers/firmware/efi/capsule-loader.c: In function \u0027efi_capsule_open\u0027:\ndrivers/firmware/efi/capsule-loader.c:295:24: error: allocation of insufficient size \u00274\u0027 for type \u0027phys_addr_t\u0027 {aka \u0027long long unsigned int\u0027} with size \u00278\u0027 [-Werror=alloc-size]\n 295 | cap_info-\u003ephys = kzalloc(sizeof(void *), GFP_KERNEL);\n | ^\n\nUse the correct type instead here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27413",
"url": "https://www.suse.com/security/cve/CVE-2024-27413"
},
{
"category": "external",
"summary": "SUSE Bug 1224438 for CVE-2024-27413",
"url": "https://bugzilla.suse.com/1224438"
},
{
"category": "external",
"summary": "SUSE Bug 1225315 for CVE-2024-27413",
"url": "https://bugzilla.suse.com/1225315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-27413"
},
{
"cve": "CVE-2024-27416",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27416"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST\n\nIf we received HCI_EV_IO_CAPA_REQUEST while\nHCI_OP_READ_REMOTE_EXT_FEATURES is yet to be responded assume the remote\ndoes support SSP since otherwise this event shouldn\u0027t be generated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27416",
"url": "https://www.suse.com/security/cve/CVE-2024-27416"
},
{
"category": "external",
"summary": "SUSE Bug 1224723 for CVE-2024-27416",
"url": "https://bugzilla.suse.com/1224723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27416"
},
{
"cve": "CVE-2024-27432",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27432"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_eth_soc: fix PPE hanging issue\n\nA patch to resolve an issue was found in MediaTek\u0027s GPL-licensed SDK:\nIn the mtk_ppe_stop() function, the PPE scan mode is not disabled before\ndisabling the PPE. This can potentially lead to a hang during the process\nof disabling the PPE.\n\nWithout this patch, the PPE may experience a hang during the reboot test.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27432",
"url": "https://www.suse.com/security/cve/CVE-2024-27432"
},
{
"category": "external",
"summary": "SUSE Bug 1224716 for CVE-2024-27432",
"url": "https://bugzilla.suse.com/1224716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27432"
},
{
"cve": "CVE-2024-27434",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27434"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: don\u0027t set the MFP flag for the GTK\n\nThe firmware doesn\u0027t need the MFP flag for the GTK, it can even make the\nfirmware crash. in case the AP is configured with: group cipher TKIP and\nMFPC. We would send the GTK with cipher = TKIP and MFP which is of course\nnot possible.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27434",
"url": "https://www.suse.com/security/cve/CVE-2024-27434"
},
{
"category": "external",
"summary": "SUSE Bug 1224710 for CVE-2024-27434",
"url": "https://bugzilla.suse.com/1224710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27434"
},
{
"cve": "CVE-2024-27435",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27435"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: fix reconnection fail due to reserved tag allocation\n\nWe found a issue on production environment while using NVMe over RDMA,\nadmin_q reconnect failed forever while remote target and network is ok.\nAfter dig into it, we found it may caused by a ABBA deadlock due to tag\nallocation. In my case, the tag was hold by a keep alive request\nwaiting inside admin_q, as we quiesced admin_q while reset ctrl, so the\nrequest maked as idle and will not process before reset success. As\nfabric_q shares tagset with admin_q, while reconnect remote target, we\nneed a tag for connect command, but the only one reserved tag was held\nby keep alive command which waiting inside admin_q. As a result, we\nfailed to reconnect admin_q forever. In order to fix this issue, I\nthink we should keep two reserved tags for admin queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27435",
"url": "https://www.suse.com/security/cve/CVE-2024-27435"
},
{
"category": "external",
"summary": "SUSE Bug 1224717 for CVE-2024-27435",
"url": "https://bugzilla.suse.com/1224717"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27435"
},
{
"cve": "CVE-2024-27436",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27436"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Stop parsing channels bits when all channels are found.\n\nIf a usb audio device sets more bits than the amount of channels\nit could write outside of the map array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27436",
"url": "https://www.suse.com/security/cve/CVE-2024-27436"
},
{
"category": "external",
"summary": "SUSE Bug 1224803 for CVE-2024-27436",
"url": "https://bugzilla.suse.com/1224803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-27436"
},
{
"cve": "CVE-2024-35784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix deadlock with fiemap and extent locking\n\nWhile working on the patchset to remove extent locking I got a lockdep\nsplat with fiemap and pagefaulting with my new extent lock replacement\nlock.\n\nThis deadlock exists with our normal code, we just don\u0027t have lockdep\nannotations with the extent locking so we\u0027ve never noticed it.\n\nSince we\u0027re copying the fiemap extent to user space on every iteration\nwe have the chance of pagefaulting. Because we hold the extent lock for\nthe entire range we could mkwrite into a range in the file that we have\nmmap\u0027ed. This would deadlock with the following stack trace\n\n[\u003c0\u003e] lock_extent+0x28d/0x2f0\n[\u003c0\u003e] btrfs_page_mkwrite+0x273/0x8a0\n[\u003c0\u003e] do_page_mkwrite+0x50/0xb0\n[\u003c0\u003e] do_fault+0xc1/0x7b0\n[\u003c0\u003e] __handle_mm_fault+0x2fa/0x460\n[\u003c0\u003e] handle_mm_fault+0xa4/0x330\n[\u003c0\u003e] do_user_addr_fault+0x1f4/0x800\n[\u003c0\u003e] exc_page_fault+0x7c/0x1e0\n[\u003c0\u003e] asm_exc_page_fault+0x26/0x30\n[\u003c0\u003e] rep_movs_alternative+0x33/0x70\n[\u003c0\u003e] _copy_to_user+0x49/0x70\n[\u003c0\u003e] fiemap_fill_next_extent+0xc8/0x120\n[\u003c0\u003e] emit_fiemap_extent+0x4d/0xa0\n[\u003c0\u003e] extent_fiemap+0x7f8/0xad0\n[\u003c0\u003e] btrfs_fiemap+0x49/0x80\n[\u003c0\u003e] __x64_sys_ioctl+0x3e1/0xb50\n[\u003c0\u003e] do_syscall_64+0x94/0x1a0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nI wrote an fstest to reproduce this deadlock without my replacement lock\nand verified that the deadlock exists with our existing locking.\n\nTo fix this simply don\u0027t take the extent lock for the entire duration of\nthe fiemap. This is safe in general because we keep track of where we\nare when we\u0027re searching the tree, so if an ordered extent updates in\nthe middle of our fiemap call we\u0027ll still emit the correct extents\nbecause we know what offset we were on before.\n\nThe only place we maintain the lock is searching delalloc. Since the\ndelalloc stuff can change during writeback we want to lock the extent\nrange so we have a consistent view of delalloc at the time we\u0027re\nchecking to see if we need to set the delalloc flag.\n\nWith this patch applied we no longer deadlock with my testcase.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35784",
"url": "https://www.suse.com/security/cve/CVE-2024-35784"
},
{
"category": "external",
"summary": "SUSE Bug 1224804 for CVE-2024-35784",
"url": "https://bugzilla.suse.com/1224804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35784"
},
{
"cve": "CVE-2024-35786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau: fix stale locked mutex in nouveau_gem_ioctl_pushbuf\n\nIf VM_BIND is enabled on the client the legacy submission ioctl can\u0027t be\nused, however if a client tries to do so regardless it will return an\nerror. In this case the clients mutex remained unlocked leading to a\ndeadlock inside nouveau_drm_postclose or any other nouveau ioctl call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35786",
"url": "https://www.suse.com/security/cve/CVE-2024-35786"
},
{
"category": "external",
"summary": "SUSE Bug 1224714 for CVE-2024-35786",
"url": "https://bugzilla.suse.com/1224714"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35786"
},
{
"cve": "CVE-2024-35788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35788"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35788",
"url": "https://www.suse.com/security/cve/CVE-2024-35788"
},
{
"category": "external",
"summary": "SUSE Bug 1224709 for CVE-2024-35788",
"url": "https://bugzilla.suse.com/1224709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35788"
},
{
"cve": "CVE-2024-35789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35789"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes\n\nWhen moving a station out of a VLAN and deleting the VLAN afterwards, the\nfast_rx entry still holds a pointer to the VLAN\u0027s netdev, which can cause\nuse-after-free bugs. Fix this by immediately calling ieee80211_check_fast_rx\nafter the VLAN change.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35789",
"url": "https://www.suse.com/security/cve/CVE-2024-35789"
},
{
"category": "external",
"summary": "SUSE Bug 1224749 for CVE-2024-35789",
"url": "https://bugzilla.suse.com/1224749"
},
{
"category": "external",
"summary": "SUSE Bug 1227320 for CVE-2024-35789",
"url": "https://bugzilla.suse.com/1227320"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-35789"
},
{
"cve": "CVE-2024-35790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35790"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: altmodes/displayport: create sysfs nodes as driver\u0027s default device attribute group\n\nThe DisplayPort driver\u0027s sysfs nodes may be present to the userspace before\ntypec_altmode_set_drvdata() completes in dp_altmode_probe. This means that\na sysfs read can trigger a NULL pointer error by deferencing dp-\u003ehpd in\nhpd_show or dp-\u003elock in pin_assignment_show, as dev_get_drvdata() returns\nNULL in those cases.\n\nRemove manual sysfs node creation in favor of adding attribute group as\ndefault for devices bound to the driver. The ATTRIBUTE_GROUPS() macro is\nnot used here otherwise the path to the sysfs nodes is no longer compliant\nwith the ABI.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35790",
"url": "https://www.suse.com/security/cve/CVE-2024-35790"
},
{
"category": "external",
"summary": "SUSE Bug 1224712 for CVE-2024-35790",
"url": "https://bugzilla.suse.com/1224712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35790"
},
{
"cve": "CVE-2024-35794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm-raid: really frozen sync_thread during suspend\n\n1) commit f52f5c71f3d4 (\"md: fix stopping sync thread\") remove\n MD_RECOVERY_FROZEN from __md_stop_writes() and doesn\u0027t realize that\n dm-raid relies on __md_stop_writes() to frozen sync_thread\n indirectly. Fix this problem by adding MD_RECOVERY_FROZEN in\n md_stop_writes(), and since stop_sync_thread() is only used for\n dm-raid in this case, also move stop_sync_thread() to\n md_stop_writes().\n2) The flag MD_RECOVERY_FROZEN doesn\u0027t mean that sync thread is frozen,\n it only prevent new sync_thread to start, and it can\u0027t stop the\n running sync thread; In order to frozen sync_thread, after seting the\n flag, stop_sync_thread() should be used.\n3) The flag MD_RECOVERY_FROZEN doesn\u0027t mean that writes are stopped, use\n it as condition for md_stop_writes() in raid_postsuspend() doesn\u0027t\n look correct. Consider that reentrant stop_sync_thread() do nothing,\n always call md_stop_writes() in raid_postsuspend().\n4) raid_message can set/clear the flag MD_RECOVERY_FROZEN at anytime,\n and if MD_RECOVERY_FROZEN is cleared while the array is suspended,\n new sync_thread can start unexpected. Fix this by disallow\n raid_message() to change sync_thread status during suspend.\n\nNote that after commit f52f5c71f3d4 (\"md: fix stopping sync thread\"), the\ntest shell/lvconvert-raid-reshape.sh start to hang in stop_sync_thread(),\nand with previous fixes, the test won\u0027t hang there anymore, however, the\ntest will still fail and complain that ext4 is corrupted. And with this\npatch, the test won\u0027t hang due to stop_sync_thread() or fail due to ext4\nis corrupted anymore. However, there is still a deadlock related to\ndm-raid456 that will be fixed in following patches.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35794",
"url": "https://www.suse.com/security/cve/CVE-2024-35794"
},
{
"category": "external",
"summary": "SUSE Bug 1224706 for CVE-2024-35794",
"url": "https://bugzilla.suse.com/1224706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35794"
},
{
"cve": "CVE-2024-35795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix deadlock while reading mqd from debugfs\n\nAn errant disk backup on my desktop got into debugfs and triggered the\nfollowing deadlock scenario in the amdgpu debugfs files. The machine\nalso hard-resets immediately after those lines are printed (although I\nwasn\u0027t able to reproduce that part when reading by hand):\n\n[ 1318.016074][ T1082] ======================================================\n[ 1318.016607][ T1082] WARNING: possible circular locking dependency detected\n[ 1318.017107][ T1082] 6.8.0-rc7-00015-ge0c8221b72c0 #17 Not tainted\n[ 1318.017598][ T1082] ------------------------------------------------------\n[ 1318.018096][ T1082] tar/1082 is trying to acquire lock:\n[ 1318.018585][ T1082] ffff98c44175d6a0 (\u0026mm-\u003emmap_lock){++++}-{3:3}, at: __might_fault+0x40/0x80\n[ 1318.019084][ T1082]\n[ 1318.019084][ T1082] but task is already holding lock:\n[ 1318.020052][ T1082] ffff98c4c13f55f8 (reservation_ww_class_mutex){+.+.}-{3:3}, at: amdgpu_debugfs_mqd_read+0x6a/0x250 [amdgpu]\n[ 1318.020607][ T1082]\n[ 1318.020607][ T1082] which lock already depends on the new lock.\n[ 1318.020607][ T1082]\n[ 1318.022081][ T1082]\n[ 1318.022081][ T1082] the existing dependency chain (in reverse order) is:\n[ 1318.023083][ T1082]\n[ 1318.023083][ T1082] -\u003e #2 (reservation_ww_class_mutex){+.+.}-{3:3}:\n[ 1318.024114][ T1082] __ww_mutex_lock.constprop.0+0xe0/0x12f0\n[ 1318.024639][ T1082] ww_mutex_lock+0x32/0x90\n[ 1318.025161][ T1082] dma_resv_lockdep+0x18a/0x330\n[ 1318.025683][ T1082] do_one_initcall+0x6a/0x350\n[ 1318.026210][ T1082] kernel_init_freeable+0x1a3/0x310\n[ 1318.026728][ T1082] kernel_init+0x15/0x1a0\n[ 1318.027242][ T1082] ret_from_fork+0x2c/0x40\n[ 1318.027759][ T1082] ret_from_fork_asm+0x11/0x20\n[ 1318.028281][ T1082]\n[ 1318.028281][ T1082] -\u003e #1 (reservation_ww_class_acquire){+.+.}-{0:0}:\n[ 1318.029297][ T1082] dma_resv_lockdep+0x16c/0x330\n[ 1318.029790][ T1082] do_one_initcall+0x6a/0x350\n[ 1318.030263][ T1082] kernel_init_freeable+0x1a3/0x310\n[ 1318.030722][ T1082] kernel_init+0x15/0x1a0\n[ 1318.031168][ T1082] ret_from_fork+0x2c/0x40\n[ 1318.031598][ T1082] ret_from_fork_asm+0x11/0x20\n[ 1318.032011][ T1082]\n[ 1318.032011][ T1082] -\u003e #0 (\u0026mm-\u003emmap_lock){++++}-{3:3}:\n[ 1318.032778][ T1082] __lock_acquire+0x14bf/0x2680\n[ 1318.033141][ T1082] lock_acquire+0xcd/0x2c0\n[ 1318.033487][ T1082] __might_fault+0x58/0x80\n[ 1318.033814][ T1082] amdgpu_debugfs_mqd_read+0x103/0x250 [amdgpu]\n[ 1318.034181][ T1082] full_proxy_read+0x55/0x80\n[ 1318.034487][ T1082] vfs_read+0xa7/0x360\n[ 1318.034788][ T1082] ksys_read+0x70/0xf0\n[ 1318.035085][ T1082] do_syscall_64+0x94/0x180\n[ 1318.035375][ T1082] entry_SYSCALL_64_after_hwframe+0x46/0x4e\n[ 1318.035664][ T1082]\n[ 1318.035664][ T1082] other info that might help us debug this:\n[ 1318.035664][ T1082]\n[ 1318.036487][ T1082] Chain exists of:\n[ 1318.036487][ T1082] \u0026mm-\u003emmap_lock --\u003e reservation_ww_class_acquire --\u003e reservation_ww_class_mutex\n[ 1318.036487][ T1082]\n[ 1318.037310][ T1082] Possible unsafe locking scenario:\n[ 1318.037310][ T1082]\n[ 1318.037838][ T1082] CPU0 CPU1\n[ 1318.038101][ T1082] ---- ----\n[ 1318.038350][ T1082] lock(reservation_ww_class_mutex);\n[ 1318.038590][ T1082] lock(reservation_ww_class_acquire);\n[ 1318.038839][ T1082] lock(reservation_ww_class_mutex);\n[ 1318.039083][ T1082] rlock(\u0026mm-\u003emmap_lock);\n[ 1318.039328][ T1082]\n[ 1318.039328][ T1082] *** DEADLOCK ***\n[ 1318.039328][ T1082]\n[ 1318.040029][ T1082] 1 lock held by tar/1082:\n[ 1318.040259][ T1082] #0: ffff98c4c13f55f8 (reservation_ww_class_mutex){+.+.}-{3:3}, at: amdgpu_debugfs_mqd_read+0x6a/0x250 [amdgpu]\n[ 1318.040560][ T1082]\n[ 1318.040560][ T1082] stack backtrace:\n[\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35795",
"url": "https://www.suse.com/security/cve/CVE-2024-35795"
},
{
"category": "external",
"summary": "SUSE Bug 1224634 for CVE-2024-35795",
"url": "https://bugzilla.suse.com/1224634"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35795"
},
{
"cve": "CVE-2024-35796",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35796"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ll_temac: platform_get_resource replaced by wrong function\n\nThe function platform_get_resource was replaced with\ndevm_platform_ioremap_resource_byname and is called using 0 as name.\n\nThis eventually ends up in platform_get_resource_byname in the call\nstack, where it causes a null pointer in strcmp.\n\n\tif (type == resource_type(r) \u0026\u0026 !strcmp(r-\u003ename, name))\n\nIt should have been replaced with devm_platform_ioremap_resource.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35796",
"url": "https://www.suse.com/security/cve/CVE-2024-35796"
},
{
"category": "external",
"summary": "SUSE Bug 1224615 for CVE-2024-35796",
"url": "https://bugzilla.suse.com/1224615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35796"
},
{
"cve": "CVE-2024-35799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Prevent crash when disable stream\n\n[Why]\nDisabling stream encoder invokes a function that no longer exists.\n\n[How]\nCheck if the function declaration is NULL in disable stream encoder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35799",
"url": "https://www.suse.com/security/cve/CVE-2024-35799"
},
{
"category": "external",
"summary": "SUSE Bug 1224740 for CVE-2024-35799",
"url": "https://bugzilla.suse.com/1224740"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35799"
},
{
"cve": "CVE-2024-35800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: fix panic in kdump kernel\n\nCheck if get_next_variable() is actually valid pointer before\ncalling it. In kdump kernel this method is set to NULL that causes\npanic during the kexec-ed kernel boot.\n\nTested with QEMU and OVMF firmware.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35800",
"url": "https://www.suse.com/security/cve/CVE-2024-35800"
},
{
"category": "external",
"summary": "SUSE Bug 1224507 for CVE-2024-35800",
"url": "https://bugzilla.suse.com/1224507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35800"
},
{
"cve": "CVE-2024-35801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Keep xfd_state in sync with MSR_IA32_XFD\n\nCommit 672365477ae8 (\"x86/fpu: Update XFD state where required\") and\ncommit 8bf26758ca96 (\"x86/fpu: Add XFD state to fpstate\") introduced a\nper CPU variable xfd_state to keep the MSR_IA32_XFD value cached, in\norder to avoid unnecessary writes to the MSR.\n\nOn CPU hotplug MSR_IA32_XFD is reset to the init_fpstate.xfd, which\nwipes out any stale state. But the per CPU cached xfd value is not\nreset, which brings them out of sync.\n\nAs a consequence a subsequent xfd_update_state() might fail to update\nthe MSR which in turn can result in XRSTOR raising a #NM in kernel\nspace, which crashes the kernel.\n\nTo fix this, introduce xfd_set_state() to write xfd_state together\nwith MSR_IA32_XFD, and use it in all places that set MSR_IA32_XFD.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35801",
"url": "https://www.suse.com/security/cve/CVE-2024-35801"
},
{
"category": "external",
"summary": "SUSE Bug 1224732 for CVE-2024-35801",
"url": "https://bugzilla.suse.com/1224732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35801"
},
{
"cve": "CVE-2024-35806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35806"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: fsl: qbman: Always disable interrupts when taking cgr_lock\n\nsmp_call_function_single disables IRQs when executing the callback. To\nprevent deadlocks, we must disable IRQs when taking cgr_lock elsewhere.\nThis is already done by qman_update_cgr and qman_delete_cgr; fix the\nother lockers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35806",
"url": "https://www.suse.com/security/cve/CVE-2024-35806"
},
{
"category": "external",
"summary": "SUSE Bug 1224699 for CVE-2024-35806",
"url": "https://bugzilla.suse.com/1224699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35806"
},
{
"cve": "CVE-2024-35808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/dm-raid: don\u0027t call md_reap_sync_thread() directly\n\nCurrently md_reap_sync_thread() is called from raid_message() directly\nwithout holding \u0027reconfig_mutex\u0027, this is definitely unsafe because\nmd_reap_sync_thread() can change many fields that is protected by\n\u0027reconfig_mutex\u0027.\n\nHowever, hold \u0027reconfig_mutex\u0027 here is still problematic because this\nwill cause deadlock, for example, commit 130443d60b1b (\"md: refactor\nidle/frozen_sync_thread() to fix deadlock\").\n\nFix this problem by using stop_sync_thread() to unregister sync_thread,\nlike md/raid did.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35808",
"url": "https://www.suse.com/security/cve/CVE-2024-35808"
},
{
"category": "external",
"summary": "SUSE Bug 1224623 for CVE-2024-35808",
"url": "https://bugzilla.suse.com/1224623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35808"
},
{
"cve": "CVE-2024-35809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/PM: Drain runtime-idle callbacks before driver removal\n\nA race condition between the .runtime_idle() callback and the .remove()\ncallback in the rtsx_pcr PCI driver leads to a kernel crash due to an\nunhandled page fault [1].\n\nThe problem is that rtsx_pci_runtime_idle() is not expected to be running\nafter pm_runtime_get_sync() has been called, but the latter doesn\u0027t really\nguarantee that. It only guarantees that the suspend and resume callbacks\nwill not be running when it returns.\n\nHowever, if a .runtime_idle() callback is already running when\npm_runtime_get_sync() is called, the latter will notice that the runtime PM\nstatus of the device is RPM_ACTIVE and it will return right away without\nwaiting for the former to complete. In fact, it cannot wait for\n.runtime_idle() to complete because it may be called from that callback (it\narguably does not make much sense to do that, but it is not strictly\nprohibited).\n\nThus in general, whoever is providing a .runtime_idle() callback needs\nto protect it from running in parallel with whatever code runs after\npm_runtime_get_sync(). [Note that .runtime_idle() will not start after\npm_runtime_get_sync() has returned, but it may continue running then if it\nhas started earlier.]\n\nOne way to address that race condition is to call pm_runtime_barrier()\nafter pm_runtime_get_sync() (not before it, because a nonzero value of the\nruntime PM usage counter is necessary to prevent runtime PM callbacks from\nbeing invoked) to wait for the .runtime_idle() callback to complete should\nit be running at that point. A suitable place for doing that is in\npci_device_remove() which calls pm_runtime_get_sync() before removing the\ndriver, so it may as well call pm_runtime_barrier() subsequently, which\nwill prevent the race in question from occurring, not just in the rtsx_pcr\ndriver, but in any PCI drivers providing .runtime_idle() callbacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35809",
"url": "https://www.suse.com/security/cve/CVE-2024-35809"
},
{
"category": "external",
"summary": "SUSE Bug 1224738 for CVE-2024-35809",
"url": "https://bugzilla.suse.com/1224738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35809"
},
{
"cve": "CVE-2024-35810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35810"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix the lifetime of the bo cursor memory\n\nThe cleanup can be dispatched while the atomic update is still active,\nwhich means that the memory acquired in the atomic update needs to\nnot be invalidated by the cleanup. The buffer objects in vmw_plane_state\ninstead of using the builtin map_and_cache were trying to handle\nthe lifetime of the mapped memory themselves, leading to crashes.\n\nUse the map_and_cache instead of trying to manage the lifetime of the\nbuffer objects held by the vmw_plane_state.\n\nFixes kernel oops\u0027es in IGT\u0027s kms_cursor_legacy forked-bo.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35810",
"url": "https://www.suse.com/security/cve/CVE-2024-35810"
},
{
"category": "external",
"summary": "SUSE Bug 1224626 for CVE-2024-35810",
"url": "https://bugzilla.suse.com/1224626"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35810"
},
{
"cve": "CVE-2024-35811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35811"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach\n\nThis is the candidate patch of CVE-2023-47233 :\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-47233\n\nIn brcm80211 driver,it starts with the following invoking chain\nto start init a timeout worker:\n\n-\u003ebrcmf_usb_probe\n -\u003ebrcmf_usb_probe_cb\n -\u003ebrcmf_attach\n -\u003ebrcmf_bus_started\n -\u003ebrcmf_cfg80211_attach\n -\u003ewl_init_priv\n -\u003ebrcmf_init_escan\n -\u003eINIT_WORK(\u0026cfg-\u003eescan_timeout_work,\n\t\t brcmf_cfg80211_escan_timeout_worker);\n\nIf we disconnect the USB by hotplug, it will call\nbrcmf_usb_disconnect to make cleanup. The invoking chain is :\n\nbrcmf_usb_disconnect\n -\u003ebrcmf_usb_disconnect_cb\n -\u003ebrcmf_detach\n -\u003ebrcmf_cfg80211_detach\n -\u003ekfree(cfg);\n\nWhile the timeout woker may still be running. This will cause\na use-after-free bug on cfg in brcmf_cfg80211_escan_timeout_worker.\n\nFix it by deleting the timer and canceling the worker in\nbrcmf_cfg80211_detach.\n\n[arend.vanspriel@broadcom.com: keep timer delete as is and cancel work just before free]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35811",
"url": "https://www.suse.com/security/cve/CVE-2024-35811"
},
{
"category": "external",
"summary": "SUSE Bug 1224592 for CVE-2024-35811",
"url": "https://bugzilla.suse.com/1224592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35811"
},
{
"cve": "CVE-2024-35812",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35812"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35812",
"url": "https://www.suse.com/security/cve/CVE-2024-35812"
},
{
"category": "external",
"summary": "SUSE Bug 1224624 for CVE-2024-35812",
"url": "https://bugzilla.suse.com/1224624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35812"
},
{
"cve": "CVE-2024-35813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: core: Avoid negative index with array access\n\nCommit 4d0c8d0aef63 (\"mmc: core: Use mrq.sbc in close-ended ffu\") assigns\nprev_idata = idatas[i - 1], but doesn\u0027t check that the iterator i is\ngreater than zero. Let\u0027s fix this by adding a check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35813",
"url": "https://www.suse.com/security/cve/CVE-2024-35813"
},
{
"category": "external",
"summary": "SUSE Bug 1224618 for CVE-2024-35813",
"url": "https://bugzilla.suse.com/1224618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35813"
},
{
"cve": "CVE-2024-35815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion\n\nThe first kiocb_set_cancel_fn() argument may point at a struct kiocb\nthat is not embedded inside struct aio_kiocb. With the current code,\ndepending on the compiler, the req-\u003eki_ctx read happens either before\nthe IOCB_AIO_RW test or after that test. Move the req-\u003eki_ctx read such\nthat it is guaranteed that the IOCB_AIO_RW test happens first.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35815",
"url": "https://www.suse.com/security/cve/CVE-2024-35815"
},
{
"category": "external",
"summary": "SUSE Bug 1224685 for CVE-2024-35815",
"url": "https://bugzilla.suse.com/1224685"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35815"
},
{
"cve": "CVE-2024-35817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag\n\nOtherwise after the GTT bo is released, the GTT and gart space is freed\nbut amdgpu_ttm_backend_unbind will not clear the gart page table entry\nand leave valid mapping entry pointing to the stale system page. Then\nif GPU access the gart address mistakely, it will read undefined value\ninstead page fault, harder to debug and reproduce the real issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35817",
"url": "https://www.suse.com/security/cve/CVE-2024-35817"
},
{
"category": "external",
"summary": "SUSE Bug 1224736 for CVE-2024-35817",
"url": "https://bugzilla.suse.com/1224736"
},
{
"category": "external",
"summary": "SUSE Bug 1225313 for CVE-2024-35817",
"url": "https://bugzilla.suse.com/1225313"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-35817"
},
{
"cve": "CVE-2024-35819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: fsl: qbman: Use raw spinlock for cgr_lock\n\nsmp_call_function always runs its callback in hard IRQ context, even on\nPREEMPT_RT, where spinlocks can sleep. So we need to use a raw spinlock\nfor cgr_lock to ensure we aren\u0027t waiting on a sleeping task.\n\nAlthough this bug has existed for a while, it was not apparent until\ncommit ef2a8d5478b9 (\"net: dpaa: Adjust queue depth on rate change\")\nwhich invokes smp_call_function_single via qman_update_cgr_safe every\ntime a link goes up or down.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35819",
"url": "https://www.suse.com/security/cve/CVE-2024-35819"
},
{
"category": "external",
"summary": "SUSE Bug 1224683 for CVE-2024-35819",
"url": "https://bugzilla.suse.com/1224683"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35819"
},
{
"cve": "CVE-2024-35821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: Set page uptodate in the correct place\n\nPage cache reads are lockless, so setting the freshly allocated page\nuptodate before we\u0027ve overwritten it with the data it\u0027s supposed to have\nin it will allow a simultaneous reader to see old data. Move the call\nto SetPageUptodate into ubifs_write_end(), which is after we copied the\nnew data into the page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35821",
"url": "https://www.suse.com/security/cve/CVE-2024-35821"
},
{
"category": "external",
"summary": "SUSE Bug 1224629 for CVE-2024-35821",
"url": "https://bugzilla.suse.com/1224629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35821"
},
{
"cve": "CVE-2024-35822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: udc: remove warning when queue disabled ep\n\nIt is possible trigger below warning message from mass storage function,\n\nWARNING: CPU: 6 PID: 3839 at drivers/usb/gadget/udc/core.c:294 usb_ep_queue+0x7c/0x104\npc : usb_ep_queue+0x7c/0x104\nlr : fsg_main_thread+0x494/0x1b3c\n\nRoot cause is mass storage function try to queue request from main thread,\nbut other thread may already disable ep when function disable.\n\nAs there is no function failure in the driver, in order to avoid effort\nto fix warning, change WARN_ON_ONCE() in usb_ep_queue() to pr_debug().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35822",
"url": "https://www.suse.com/security/cve/CVE-2024-35822"
},
{
"category": "external",
"summary": "SUSE Bug 1224739 for CVE-2024-35822",
"url": "https://bugzilla.suse.com/1224739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35822"
},
{
"cve": "CVE-2024-35823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35823"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvt: fix unicode buffer corruption when deleting characters\n\nThis is the same issue that was fixed for the VGA text buffer in commit\n39cdb68c64d8 (\"vt: fix memory overlapping when deleting chars in the\nbuffer\"). The cure is also the same i.e. replace memcpy() with memmove()\ndue to the overlaping buffers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35823",
"url": "https://www.suse.com/security/cve/CVE-2024-35823"
},
{
"category": "external",
"summary": "SUSE Bug 1224692 for CVE-2024-35823",
"url": "https://bugzilla.suse.com/1224692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35823"
},
{
"cve": "CVE-2024-35824",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35824"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on suspend/resume\n\nWhen not configured for wakeup lis3lv02d_i2c_suspend() will call\nlis3lv02d_poweroff() even if the device has already been turned off\nby the runtime-suspend handler and if configured for wakeup and\nthe device is runtime-suspended at this point then it is not turned\nback on to serve as a wakeup source.\n\nBefore commit b1b9f7a49440 (\"misc: lis3lv02d_i2c: Add missing setting\nof the reg_ctrl callback\"), lis3lv02d_poweroff() failed to disable\nthe regulators which as a side effect made calling poweroff() twice ok.\n\nNow that poweroff() correctly disables the regulators, doing this twice\ntriggers a WARN() in the regulator core:\n\nunbalanced disables for regulator-dummy\nWARNING: CPU: 1 PID: 92 at drivers/regulator/core.c:2999 _regulator_disable\n...\n\nFix lis3lv02d_i2c_suspend() to not call poweroff() a second time if\nalready runtime-suspended and add a poweron() call when necessary to\nmake wakeup work.\n\nlis3lv02d_i2c_resume() has similar issues, with an added weirness that\nit always powers on the device if it is runtime suspended, after which\nthe first runtime-resume will call poweron() again, causing the enabled\ncount for the regulator to increase by 1 every suspend/resume. These\nunbalanced regulator_enable() calls cause the regulator to never\nbe turned off and trigger the following WARN() on driver unbind:\n\nWARNING: CPU: 1 PID: 1724 at drivers/regulator/core.c:2396 _regulator_put\n\nFix this by making lis3lv02d_i2c_resume() mirror the new suspend().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35824",
"url": "https://www.suse.com/security/cve/CVE-2024-35824"
},
{
"category": "external",
"summary": "SUSE Bug 1224609 for CVE-2024-35824",
"url": "https://bugzilla.suse.com/1224609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35824"
},
{
"cve": "CVE-2024-35825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35825"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: ncm: Fix handling of zero block length packets\n\nWhile connecting to a Linux host with CDC_NCM_NTB_DEF_SIZE_TX\nset to 65536, it has been observed that we receive short packets,\nwhich come at interval of 5-10 seconds sometimes and have block\nlength zero but still contain 1-2 valid datagrams present.\n\nAccording to the NCM spec:\n\n\"If wBlockLength = 0x0000, the block is terminated by a\nshort packet. In this case, the USB transfer must still\nbe shorter than dwNtbInMaxSize or dwNtbOutMaxSize. If\nexactly dwNtbInMaxSize or dwNtbOutMaxSize bytes are sent,\nand the size is a multiple of wMaxPacketSize for the\ngiven pipe, then no ZLP shall be sent.\n\nwBlockLength= 0x0000 must be used with extreme care, because\nof the possibility that the host and device may get out of\nsync, and because of test issues.\n\nwBlockLength = 0x0000 allows the sender to reduce latency by\nstarting to send a very large NTB, and then shortening it when\nthe sender discovers that there\u0027s not sufficient data to justify\nsending a large NTB\"\n\nHowever, there is a potential issue with the current implementation,\nas it checks for the occurrence of multiple NTBs in a single\ngiveback by verifying if the leftover bytes to be processed is zero\nor not. If the block length reads zero, we would process the same\nNTB infintely because the leftover bytes is never zero and it leads\nto a crash. Fix this by bailing out if block length reads zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35825",
"url": "https://www.suse.com/security/cve/CVE-2024-35825"
},
{
"category": "external",
"summary": "SUSE Bug 1224681 for CVE-2024-35825",
"url": "https://bugzilla.suse.com/1224681"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35825"
},
{
"cve": "CVE-2024-35828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer()\n\nIn the for statement of lbs_allocate_cmd_buffer(), if the allocation of\ncmdarray[i].cmdbuf fails, both cmdarray and cmdarray[i].cmdbuf needs to\nbe freed. Otherwise, there will be memleaks in lbs_allocate_cmd_buffer().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35828",
"url": "https://www.suse.com/security/cve/CVE-2024-35828"
},
{
"category": "external",
"summary": "SUSE Bug 1224622 for CVE-2024-35828",
"url": "https://bugzilla.suse.com/1224622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35828"
},
{
"cve": "CVE-2024-35829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/lima: fix a memleak in lima_heap_alloc\n\nWhen lima_vm_map_bo fails, the resources need to be deallocated, or\nthere will be memleaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35829",
"url": "https://www.suse.com/security/cve/CVE-2024-35829"
},
{
"category": "external",
"summary": "SUSE Bug 1224707 for CVE-2024-35829",
"url": "https://bugzilla.suse.com/1224707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35829"
},
{
"cve": "CVE-2024-35830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35830"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: tc358743: register v4l2 async device only after successful setup\n\nEnsure the device has been setup correctly before registering the v4l2\nasync device, thus allowing userspace to access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35830",
"url": "https://www.suse.com/security/cve/CVE-2024-35830"
},
{
"category": "external",
"summary": "SUSE Bug 1224680 for CVE-2024-35830",
"url": "https://bugzilla.suse.com/1224680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35830"
},
{
"cve": "CVE-2024-35833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35833"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: fsl-qdma: Fix a memory leak related to the queue command DMA\n\nThis dma_alloc_coherent() is undone neither in the remove function, nor in\nthe error handling path of fsl_qdma_probe().\n\nSwitch to the managed version to fix both issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35833",
"url": "https://www.suse.com/security/cve/CVE-2024-35833"
},
{
"category": "external",
"summary": "SUSE Bug 1224632 for CVE-2024-35833",
"url": "https://bugzilla.suse.com/1224632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35833"
},
{
"cve": "CVE-2024-35834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35834"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: recycle buffer in case Rx queue was full\n\nAdd missing xsk_buff_free() call when __xsk_rcv_zc() failed to produce\ndescriptor to XSK Rx queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35834",
"url": "https://www.suse.com/security/cve/CVE-2024-35834"
},
{
"category": "external",
"summary": "SUSE Bug 1224620 for CVE-2024-35834",
"url": "https://bugzilla.suse.com/1224620"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35834"
},
{
"cve": "CVE-2024-35835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: fix a double-free in arfs_create_groups\n\nWhen `in` allocated by kvzalloc fails, arfs_create_groups will free\nft-\u003eg and return an error. However, arfs_create_table, the only caller of\narfs_create_groups, will hold this error and call to\nmlx5e_destroy_flow_table, in which the ft-\u003eg will be freed again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35835",
"url": "https://www.suse.com/security/cve/CVE-2024-35835"
},
{
"category": "external",
"summary": "SUSE Bug 1224605 for CVE-2024-35835",
"url": "https://bugzilla.suse.com/1224605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35835"
},
{
"cve": "CVE-2024-35836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35836"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndpll: fix pin dump crash for rebound module\n\nWhen a kernel module is unbound but the pin resources were not entirely\nfreed (other kernel module instance of the same PCI device have had kept\nthe reference to that pin), and kernel module is again bound, the pin\nproperties would not be updated (the properties are only assigned when\nmemory for the pin is allocated), prop pointer still points to the\nkernel module memory of the kernel module which was deallocated on the\nunbind.\n\nIf the pin dump is invoked in this state, the result is a kernel crash.\nPrevent the crash by storing persistent pin properties in dpll subsystem,\ncopy the content from the kernel module when pin is allocated, instead of\nusing memory of the kernel module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35836",
"url": "https://www.suse.com/security/cve/CVE-2024-35836"
},
{
"category": "external",
"summary": "SUSE Bug 1224633 for CVE-2024-35836",
"url": "https://bugzilla.suse.com/1224633"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35836"
},
{
"cve": "CVE-2024-35837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35837"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mvpp2: clear BM pool before initialization\n\nRegister value persist after booting the kernel using\nkexec which results in kernel panic. Thus clear the\nBM pool registers before initialisation to fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35837",
"url": "https://www.suse.com/security/cve/CVE-2024-35837"
},
{
"category": "external",
"summary": "SUSE Bug 1224500 for CVE-2024-35837",
"url": "https://bugzilla.suse.com/1224500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35837"
},
{
"cve": "CVE-2024-35838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35838"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: fix potential sta-link leak\n\nWhen a station is allocated, links are added but not\nset to valid yet (e.g. during connection to an AP MLD),\nwe might remove the station without ever marking links\nvalid, and leak them. Fix that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35838",
"url": "https://www.suse.com/security/cve/CVE-2024-35838"
},
{
"category": "external",
"summary": "SUSE Bug 1224613 for CVE-2024-35838",
"url": "https://bugzilla.suse.com/1224613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35838"
},
{
"cve": "CVE-2024-35839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bridge: replace physindev with physinif in nf_bridge_info\n\nAn skb can be added to a neigh-\u003earp_queue while waiting for an arp\nreply. Where original skb\u0027s skb-\u003edev can be different to neigh\u0027s\nneigh-\u003edev. For instance in case of bridging dnated skb from one veth to\nanother, the skb would be added to a neigh-\u003earp_queue of the bridge.\n\nAs skb-\u003edev can be reset back to nf_bridge-\u003ephysindev and used, and as\nthere is no explicit mechanism that prevents this physindev from been\nfreed under us (for instance neigh_flush_dev doesn\u0027t cleanup skbs from\ndifferent device\u0027s neigh queue) we can crash on e.g. this stack:\n\narp_process\n neigh_update\n skb = __skb_dequeue(\u0026neigh-\u003earp_queue)\n neigh_resolve_output(..., skb)\n ...\n br_nf_dev_xmit\n br_nf_pre_routing_finish_bridge_slow\n skb-\u003edev = nf_bridge-\u003ephysindev\n br_handle_frame_finish\n\nLet\u0027s use plain ifindex instead of net_device link. To peek into the\noriginal net_device we will use dev_get_by_index_rcu(). Thus either we\nget device and are safe to use it or we don\u0027t get it and drop skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35839",
"url": "https://www.suse.com/security/cve/CVE-2024-35839"
},
{
"category": "external",
"summary": "SUSE Bug 1224726 for CVE-2024-35839",
"url": "https://bugzilla.suse.com/1224726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35839"
},
{
"cve": "CVE-2024-35841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tls, fix WARNIING in __sk_msg_free\n\nA splice with MSG_SPLICE_PAGES will cause tls code to use the\ntls_sw_sendmsg_splice path in the TLS sendmsg code to move the user\nprovided pages from the msg into the msg_pl. This will loop over the\nmsg until msg_pl is full, checked by sk_msg_full(msg_pl). The user\ncan also set the MORE flag to hint stack to delay sending until receiving\nmore pages and ideally a full buffer.\n\nIf the user adds more pages to the msg than can fit in the msg_pl\nscatterlist (MAX_MSG_FRAGS) we should ignore the MORE flag and send\nthe buffer anyways.\n\nWhat actually happens though is we abort the msg to msg_pl scatterlist\nsetup and then because we forget to set \u0027full record\u0027 indicating we\ncan no longer consume data without a send we fallthrough to the \u0027continue\u0027\npath which will check if msg_data_left(msg) has more bytes to send and\nthen attempts to fit them in the already full msg_pl. Then next\niteration of sender doing send will encounter a full msg_pl and throw\nthe warning in the syzbot report.\n\nTo fix simply check if we have a full_record in splice code path and\nif not send the msg regardless of MORE flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35841",
"url": "https://www.suse.com/security/cve/CVE-2024-35841"
},
{
"category": "external",
"summary": "SUSE Bug 1224687 for CVE-2024-35841",
"url": "https://bugzilla.suse.com/1224687"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35841"
},
{
"cve": "CVE-2024-35842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35842"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: mediatek: sof-common: Add NULL check for normal_link string\n\nIt\u0027s not granted that all entries of struct sof_conn_stream declare\na `normal_link` (a non-SOF, direct link) string, and this is the case\nfor SoCs that support only SOF paths (hence do not support both direct\nand SOF usecases).\n\nFor example, in the case of MT8188 there is no normal_link string in\nany of the sof_conn_stream entries and there will be more drivers\ndoing that in the future.\n\nTo avoid possible NULL pointer KPs, add a NULL check for `normal_link`.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35842",
"url": "https://www.suse.com/security/cve/CVE-2024-35842"
},
{
"category": "external",
"summary": "SUSE Bug 1224688 for CVE-2024-35842",
"url": "https://bugzilla.suse.com/1224688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35842"
},
{
"cve": "CVE-2024-35845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: dbg-tlv: ensure NUL termination\n\nThe iwl_fw_ini_debug_info_tlv is used as a string, so we must\nensure the string is terminated correctly before using it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35845",
"url": "https://www.suse.com/security/cve/CVE-2024-35845"
},
{
"category": "external",
"summary": "SUSE Bug 1224731 for CVE-2024-35845",
"url": "https://bugzilla.suse.com/1224731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35845"
},
{
"cve": "CVE-2024-35847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35847"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/gic-v3-its: Prevent double free on error\n\nThe error handling path in its_vpe_irq_domain_alloc() causes a double free\nwhen its_vpe_init() fails after successfully allocating at least one\ninterrupt. This happens because its_vpe_irq_domain_free() frees the\ninterrupts along with the area bitmap and the vprop_page and\nits_vpe_irq_domain_alloc() subsequently frees the area bitmap and the\nvprop_page again.\n\nFix this by unconditionally invoking its_vpe_irq_domain_free() which\nhandles all cases correctly and by removing the bitmap/vprop_page freeing\nfrom its_vpe_irq_domain_alloc().\n\n[ tglx: Massaged change log ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35847",
"url": "https://www.suse.com/security/cve/CVE-2024-35847"
},
{
"category": "external",
"summary": "SUSE Bug 1224697 for CVE-2024-35847",
"url": "https://bugzilla.suse.com/1224697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35847"
},
{
"cve": "CVE-2024-35849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35849"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix information leak in btrfs_ioctl_logical_to_ino()\n\nSyzbot reported the following information leak for in\nbtrfs_ioctl_logical_to_ino():\n\n BUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline]\n BUG: KMSAN: kernel-infoleak in _copy_to_user+0xbc/0x110 lib/usercopy.c:40\n instrument_copy_to_user include/linux/instrumented.h:114 [inline]\n _copy_to_user+0xbc/0x110 lib/usercopy.c:40\n copy_to_user include/linux/uaccess.h:191 [inline]\n btrfs_ioctl_logical_to_ino+0x440/0x750 fs/btrfs/ioctl.c:3499\n btrfs_ioctl+0x714/0x1260\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0x261/0x450 fs/ioctl.c:890\n __x64_sys_ioctl+0x96/0xe0 fs/ioctl.c:890\n x64_sys_call+0x1883/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:17\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n Uninit was created at:\n __kmalloc_large_node+0x231/0x370 mm/slub.c:3921\n __do_kmalloc_node mm/slub.c:3954 [inline]\n __kmalloc_node+0xb07/0x1060 mm/slub.c:3973\n kmalloc_node include/linux/slab.h:648 [inline]\n kvmalloc_node+0xc0/0x2d0 mm/util.c:634\n kvmalloc include/linux/slab.h:766 [inline]\n init_data_container+0x49/0x1e0 fs/btrfs/backref.c:2779\n btrfs_ioctl_logical_to_ino+0x17c/0x750 fs/btrfs/ioctl.c:3480\n btrfs_ioctl+0x714/0x1260\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0x261/0x450 fs/ioctl.c:890\n __x64_sys_ioctl+0x96/0xe0 fs/ioctl.c:890\n x64_sys_call+0x1883/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:17\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n Bytes 40-65535 of 65536 are uninitialized\n Memory access of size 65536 starts at ffff888045a40000\n\nThis happens, because we\u0027re copying a \u0027struct btrfs_data_container\u0027 back\nto user-space. This btrfs_data_container is allocated in\n\u0027init_data_container()\u0027 via kvmalloc(), which does not zero-fill the\nmemory.\n\nFix this by using kvzalloc() which zeroes out the memory on allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35849",
"url": "https://www.suse.com/security/cve/CVE-2024-35849"
},
{
"category": "external",
"summary": "SUSE Bug 1224733 for CVE-2024-35849",
"url": "https://bugzilla.suse.com/1224733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35849"
},
{
"cve": "CVE-2024-35850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix NULL-deref on non-serdev setup\n\nQualcomm ROME controllers can be registered from the Bluetooth line\ndiscipline and in this case the HCI UART serdev pointer is NULL.\n\nAdd the missing sanity check to prevent a NULL-pointer dereference when\nsetup() is called for a non-serdev controller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35850",
"url": "https://www.suse.com/security/cve/CVE-2024-35850"
},
{
"category": "external",
"summary": "SUSE Bug 1224600 for CVE-2024-35850",
"url": "https://bugzilla.suse.com/1224600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35850"
},
{
"cve": "CVE-2024-35851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix NULL-deref on non-serdev suspend\n\nQualcomm ROME controllers can be registered from the Bluetooth line\ndiscipline and in this case the HCI UART serdev pointer is NULL.\n\nAdd the missing sanity check to prevent a NULL-pointer dereference when\nwakeup() is called for a non-serdev controller during suspend.\n\nJust return true for now to restore the original behaviour and address\nthe crash with pre-6.2 kernels, which do not have commit e9b3e5b8c657\n(\"Bluetooth: hci_qca: only assign wakeup with serial port support\") that\ncauses the crash to happen already at setup() time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35851",
"url": "https://www.suse.com/security/cve/CVE-2024-35851"
},
{
"category": "external",
"summary": "SUSE Bug 1224509 for CVE-2024-35851",
"url": "https://bugzilla.suse.com/1224509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35851"
},
{
"cve": "CVE-2024-35875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35875"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/coco: Require seeding RNG with RDRAND on CoCo systems\n\nThere are few uses of CoCo that don\u0027t rely on working cryptography and\nhence a working RNG. Unfortunately, the CoCo threat model means that the\nVM host cannot be trusted and may actively work against guests to\nextract secrets or manipulate computation. Since a malicious host can\nmodify or observe nearly all inputs to guests, the only remaining source\nof entropy for CoCo guests is RDRAND.\n\nIf RDRAND is broken -- due to CPU hardware fault -- the RNG as a whole\nis meant to gracefully continue on gathering entropy from other sources,\nbut since there aren\u0027t other sources on CoCo, this is catastrophic.\nThis is mostly a concern at boot time when initially seeding the RNG, as\nafter that the consequences of a broken RDRAND are much more\ntheoretical.\n\nSo, try at boot to seed the RNG using 256 bits of RDRAND output. If this\nfails, panic(). This will also trigger if the system is booted without\nRDRAND, as RDRAND is essential for a safe CoCo boot.\n\nAdd this deliberately to be \"just a CoCo x86 driver feature\" and not\npart of the RNG itself. Many device drivers and platforms have some\ndesire to contribute something to the RNG, and add_device_randomness()\nis specifically meant for this purpose.\n\nAny driver can call it with seed data of any quality, or even garbage\nquality, and it can only possibly make the quality of the RNG better or\nhave no effect, but can never make it worse.\n\nRather than trying to build something into the core of the RNG, consider\nthe particular CoCo issue just a CoCo issue, and therefore separate it\nall out into driver (well, arch/platform) code.\n\n [ bp: Massage commit message. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35875",
"url": "https://www.suse.com/security/cve/CVE-2024-35875"
},
{
"category": "external",
"summary": "SUSE Bug 1224665 for CVE-2024-35875",
"url": "https://bugzilla.suse.com/1224665"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35875"
},
{
"cve": "CVE-2024-35878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35878"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: module: prevent NULL pointer dereference in vsnprintf()\n\nIn of_modalias(), we can get passed the str and len parameters which would\ncause a kernel oops in vsnprintf() since it only allows passing a NULL ptr\nwhen the length is also 0. Also, we need to filter out the negative values\nof the len parameter as these will result in a really huge buffer since\nsnprintf() takes size_t parameter while ours is ssize_t...\n\nFound by Linux Verification Center (linuxtesting.org) with the Svace static\nanalysis tool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35878",
"url": "https://www.suse.com/security/cve/CVE-2024-35878"
},
{
"category": "external",
"summary": "SUSE Bug 1224671 for CVE-2024-35878",
"url": "https://bugzilla.suse.com/1224671"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35878"
},
{
"cve": "CVE-2024-35879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35879"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: dynamic: Synchronize of_changeset_destroy() with the devlink removals\n\nIn the following sequence:\n 1) of_platform_depopulate()\n 2) of_overlay_remove()\n\nDuring the step 1, devices are destroyed and devlinks are removed.\nDuring the step 2, OF nodes are destroyed but\n__of_changeset_entry_destroy() can raise warnings related to missing\nof_node_put():\n ERROR: memory leak, expected refcount 1 instead of 2 ...\n\nIndeed, during the devlink removals performed at step 1, the removal\nitself releasing the device (and the attached of_node) is done by a job\nqueued in a workqueue and so, it is done asynchronously with respect to\nfunction calls.\nWhen the warning is present, of_node_put() will be called but wrongly\ntoo late from the workqueue job.\n\nIn order to be sure that any ongoing devlink removals are done before\nthe of_node destruction, synchronize the of_changeset_destroy() with the\ndevlink removals.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35879",
"url": "https://www.suse.com/security/cve/CVE-2024-35879"
},
{
"category": "external",
"summary": "SUSE Bug 1224524 for CVE-2024-35879",
"url": "https://bugzilla.suse.com/1224524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35879"
},
{
"cve": "CVE-2024-35883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35883"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: mchp-pci1xxx: Fix a possible null pointer dereference in pci1xxx_spi_probe\n\nIn function pci1xxxx_spi_probe, there is a potential null pointer that\nmay be caused by a failed memory allocation by the function devm_kzalloc.\nHence, a null pointer check needs to be added to prevent null pointer\ndereferencing later in the code.\n\nTo fix this issue, spi_bus-\u003espi_int[iter] should be checked. The memory\nallocated by devm_kzalloc will be automatically released, so just directly\nreturn -ENOMEM without worrying about memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35883",
"url": "https://www.suse.com/security/cve/CVE-2024-35883"
},
{
"category": "external",
"summary": "SUSE Bug 1224521 for CVE-2024-35883",
"url": "https://bugzilla.suse.com/1224521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35883"
},
{
"cve": "CVE-2024-35885",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35885"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxbf_gige: stop interface during shutdown\n\nThe mlxbf_gige driver intermittantly encounters a NULL pointer\nexception while the system is shutting down via \"reboot\" command.\nThe mlxbf_driver will experience an exception right after executing\nits shutdown() method. One example of this exception is:\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000070\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\nuser pgtable: 4k pages, 48-bit VAs, pgdp=000000011d373000\n[0000000000000070] pgd=0000000000000000, p4d=0000000000000000\nInternal error: Oops: 96000004 [#1] SMP\nCPU: 0 PID: 13 Comm: ksoftirqd/0 Tainted: G S OE 5.15.0-bf.6.gef6992a #1\nHardware name: https://www.mellanox.com BlueField SoC/BlueField SoC, BIOS 4.0.2.12669 Apr 21 2023\npstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : mlxbf_gige_handle_tx_complete+0xc8/0x170 [mlxbf_gige]\nlr : mlxbf_gige_poll+0x54/0x160 [mlxbf_gige]\nsp : ffff8000080d3c10\nx29: ffff8000080d3c10 x28: ffffcce72cbb7000 x27: ffff8000080d3d58\nx26: ffff0000814e7340 x25: ffff331cd1a05000 x24: ffffcce72c4ea008\nx23: ffff0000814e4b40 x22: ffff0000814e4d10 x21: ffff0000814e4128\nx20: 0000000000000000 x19: ffff0000814e4a80 x18: ffffffffffffffff\nx17: 000000000000001c x16: ffffcce72b4553f4 x15: ffff80008805b8a7\nx14: 0000000000000000 x13: 0000000000000030 x12: 0101010101010101\nx11: 7f7f7f7f7f7f7f7f x10: c2ac898b17576267 x9 : ffffcce720fa5404\nx8 : ffff000080812138 x7 : 0000000000002e9a x6 : 0000000000000080\nx5 : ffff00008de3b000 x4 : 0000000000000000 x3 : 0000000000000001\nx2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000\nCall trace:\n mlxbf_gige_handle_tx_complete+0xc8/0x170 [mlxbf_gige]\n mlxbf_gige_poll+0x54/0x160 [mlxbf_gige]\n __napi_poll+0x40/0x1c8\n net_rx_action+0x314/0x3a0\n __do_softirq+0x128/0x334\n run_ksoftirqd+0x54/0x6c\n smpboot_thread_fn+0x14c/0x190\n kthread+0x10c/0x110\n ret_from_fork+0x10/0x20\nCode: 8b070000 f9000ea0 f95056c0 f86178a1 (b9407002)\n---[ end trace 7cc3941aa0d8e6a4 ]---\nKernel panic - not syncing: Oops: Fatal exception in interrupt\nKernel Offset: 0x4ce722520000 from 0xffff800008000000\nPHYS_OFFSET: 0x80000000\nCPU features: 0x000005c1,a3330e5a\nMemory Limit: none\n---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---\n\nDuring system shutdown, the mlxbf_gige driver\u0027s shutdown() is always executed.\nHowever, the driver\u0027s stop() method will only execute if networking interface\nconfiguration logic within the Linux distribution has been setup to do so.\n\nIf shutdown() executes but stop() does not execute, NAPI remains enabled\nand this can lead to an exception if NAPI is scheduled while the hardware\ninterface has only been partially deinitialized.\n\nThe networking interface managed by the mlxbf_gige driver must be properly\nstopped during system shutdown so that IFF_UP is cleared, the hardware\ninterface is put into a clean state, and NAPI is fully deinitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35885",
"url": "https://www.suse.com/security/cve/CVE-2024-35885"
},
{
"category": "external",
"summary": "SUSE Bug 1224519 for CVE-2024-35885",
"url": "https://bugzilla.suse.com/1224519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35885"
},
{
"cve": "CVE-2024-35887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nax25: fix use-after-free bugs caused by ax25_ds_del_timer\n\nWhen the ax25 device is detaching, the ax25_dev_device_down()\ncalls ax25_ds_del_timer() to cleanup the slave_timer. When\nthe timer handler is running, the ax25_ds_del_timer() that\ncalls del_timer() in it will return directly. As a result,\nthe use-after-free bugs could happen, one of the scenarios\nis shown below:\n\n (Thread 1) | (Thread 2)\n | ax25_ds_timeout()\nax25_dev_device_down() |\n ax25_ds_del_timer() |\n del_timer() |\n ax25_dev_put() //FREE |\n | ax25_dev-\u003e //USE\n\nIn order to mitigate bugs, when the device is detaching, use\ntimer_shutdown_sync() to stop the timer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35887",
"url": "https://www.suse.com/security/cve/CVE-2024-35887"
},
{
"category": "external",
"summary": "SUSE Bug 1224663 for CVE-2024-35887",
"url": "https://bugzilla.suse.com/1224663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35887"
},
{
"cve": "CVE-2024-35889",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35889"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix kernel panic on unknown packet types\n\nIn the very rare case where a packet type is unknown to the driver,\nidpf_rx_process_skb_fields would return early without calling\neth_type_trans to set the skb protocol / the network layer handler.\nThis is especially problematic if tcpdump is running when such a\npacket is received, i.e. it would cause a kernel panic.\n\nInstead, call eth_type_trans for every single packet, even when\nthe packet type is unknown.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35889",
"url": "https://www.suse.com/security/cve/CVE-2024-35889"
},
{
"category": "external",
"summary": "SUSE Bug 1224517 for CVE-2024-35889",
"url": "https://bugzilla.suse.com/1224517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35889"
},
{
"cve": "CVE-2024-35891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35891"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: micrel: Fix potential null pointer dereference\n\nIn lan8814_get_sig_rx() and lan8814_get_sig_tx() ptp_parse_header() may\nreturn NULL as ptp_header due to abnormal packet type or corrupted packet.\nFix this bug by adding ptp_header check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35891",
"url": "https://www.suse.com/security/cve/CVE-2024-35891"
},
{
"category": "external",
"summary": "SUSE Bug 1224513 for CVE-2024-35891",
"url": "https://bugzilla.suse.com/1224513"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35891"
},
{
"cve": "CVE-2024-35901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35901"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix Rx DMA datasize and skb_over_panic\n\nmana_get_rxbuf_cfg() aligns the RX buffer\u0027s DMA datasize to be\nmultiple of 64. So a packet slightly bigger than mtu+14, say 1536,\ncan be received and cause skb_over_panic.\n\nSample dmesg:\n[ 5325.237162] skbuff: skb_over_panic: text:ffffffffc043277a len:1536 put:1536 head:ff1100018b517000 data:ff1100018b517100 tail:0x700 end:0x6ea dev:\u003cNULL\u003e\n[ 5325.243689] ------------[ cut here ]------------\n[ 5325.245748] kernel BUG at net/core/skbuff.c:192!\n[ 5325.247838] invalid opcode: 0000 [#1] PREEMPT SMP NOPTI\n[ 5325.258374] RIP: 0010:skb_panic+0x4f/0x60\n[ 5325.302941] Call Trace:\n[ 5325.304389] \u003cIRQ\u003e\n[ 5325.315794] ? skb_panic+0x4f/0x60\n[ 5325.317457] ? asm_exc_invalid_op+0x1f/0x30\n[ 5325.319490] ? skb_panic+0x4f/0x60\n[ 5325.321161] skb_put+0x4e/0x50\n[ 5325.322670] mana_poll+0x6fa/0xb50 [mana]\n[ 5325.324578] __napi_poll+0x33/0x1e0\n[ 5325.326328] net_rx_action+0x12e/0x280\n\nAs discussed internally, this alignment is not necessary. To fix\nthis bug, remove it from the code. So oversized packets will be\nmarked as CQE_RX_TRUNCATED by NIC, and dropped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35901",
"url": "https://www.suse.com/security/cve/CVE-2024-35901"
},
{
"category": "external",
"summary": "SUSE Bug 1224495 for CVE-2024-35901",
"url": "https://bugzilla.suse.com/1224495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35901"
},
{
"cve": "CVE-2024-35904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: avoid dereference of garbage after mount failure\n\nIn case kern_mount() fails and returns an error pointer return in the\nerror branch instead of continuing and dereferencing the error pointer.\n\nWhile on it drop the never read static variable selinuxfs_mount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35904",
"url": "https://www.suse.com/security/cve/CVE-2024-35904"
},
{
"category": "external",
"summary": "SUSE Bug 1224494 for CVE-2024-35904",
"url": "https://bugzilla.suse.com/1224494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35904"
},
{
"cve": "CVE-2024-35907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxbf_gige: call request_irq() after NAPI initialized\n\nThe mlxbf_gige driver encounters a NULL pointer exception in\nmlxbf_gige_open() when kdump is enabled. The sequence to reproduce\nthe exception is as follows:\na) enable kdump\nb) trigger kdump via \"echo c \u003e /proc/sysrq-trigger\"\nc) kdump kernel executes\nd) kdump kernel loads mlxbf_gige module\ne) the mlxbf_gige module runs its open() as the\n the \"oob_net0\" interface is brought up\nf) mlxbf_gige module will experience an exception\n during its open(), something like:\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n Mem abort info:\n ESR = 0x0000000086000004\n EC = 0x21: IABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\n user pgtable: 4k pages, 48-bit VAs, pgdp=00000000e29a4000\n [0000000000000000] pgd=0000000000000000, p4d=0000000000000000\n Internal error: Oops: 0000000086000004 [#1] SMP\n CPU: 0 PID: 812 Comm: NetworkManager Tainted: G OE 5.15.0-1035-bluefield #37-Ubuntu\n Hardware name: https://www.mellanox.com BlueField-3 SmartNIC Main Card/BlueField-3 SmartNIC Main Card, BIOS 4.6.0.13024 Jan 19 2024\n pstate: 80400009 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : 0x0\n lr : __napi_poll+0x40/0x230\n sp : ffff800008003e00\n x29: ffff800008003e00 x28: 0000000000000000 x27: 00000000ffffffff\n x26: ffff000066027238 x25: ffff00007cedec00 x24: ffff800008003ec8\n x23: 000000000000012c x22: ffff800008003eb7 x21: 0000000000000000\n x20: 0000000000000001 x19: ffff000066027238 x18: 0000000000000000\n x17: ffff578fcb450000 x16: ffffa870b083c7c0 x15: 0000aaab010441d0\n x14: 0000000000000001 x13: 00726f7272655f65 x12: 6769675f6662786c\n x11: 0000000000000000 x10: 0000000000000000 x9 : ffffa870b0842398\n x8 : 0000000000000004 x7 : fe5a48b9069706ea x6 : 17fdb11fc84ae0d2\n x5 : d94a82549d594f35 x4 : 0000000000000000 x3 : 0000000000400100\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff000066027238\n Call trace:\n 0x0\n net_rx_action+0x178/0x360\n __do_softirq+0x15c/0x428\n __irq_exit_rcu+0xac/0xec\n irq_exit+0x18/0x2c\n handle_domain_irq+0x6c/0xa0\n gic_handle_irq+0xec/0x1b0\n call_on_irq_stack+0x20/0x2c\n do_interrupt_handler+0x5c/0x70\n el1_interrupt+0x30/0x50\n el1h_64_irq_handler+0x18/0x2c\n el1h_64_irq+0x7c/0x80\n __setup_irq+0x4c0/0x950\n request_threaded_irq+0xf4/0x1bc\n mlxbf_gige_request_irqs+0x68/0x110 [mlxbf_gige]\n mlxbf_gige_open+0x5c/0x170 [mlxbf_gige]\n __dev_open+0x100/0x220\n __dev_change_flags+0x16c/0x1f0\n dev_change_flags+0x2c/0x70\n do_setlink+0x220/0xa40\n __rtnl_newlink+0x56c/0x8a0\n rtnl_newlink+0x58/0x84\n rtnetlink_rcv_msg+0x138/0x3c4\n netlink_rcv_skb+0x64/0x130\n rtnetlink_rcv+0x20/0x30\n netlink_unicast+0x2ec/0x360\n netlink_sendmsg+0x278/0x490\n __sock_sendmsg+0x5c/0x6c\n ____sys_sendmsg+0x290/0x2d4\n ___sys_sendmsg+0x84/0xd0\n __sys_sendmsg+0x70/0xd0\n __arm64_sys_sendmsg+0x2c/0x40\n invoke_syscall+0x78/0x100\n el0_svc_common.constprop.0+0x54/0x184\n do_el0_svc+0x30/0xac\n el0_svc+0x48/0x160\n el0t_64_sync_handler+0xa4/0x12c\n el0t_64_sync+0x1a4/0x1a8\n Code: bad PC value\n ---[ end trace 7d1c3f3bf9d81885 ]---\n Kernel panic - not syncing: Oops: Fatal exception in interrupt\n Kernel Offset: 0x2870a7a00000 from 0xffff800008000000\n PHYS_OFFSET: 0x80000000\n CPU features: 0x0,000005c1,a3332a5a\n Memory Limit: none\n ---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---\n\nThe exception happens because there is a pending RX interrupt before the\ncall to request_irq(RX IRQ) executes. Then, the RX IRQ handler fires\nimmediately after this request_irq() completes. The\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35907",
"url": "https://www.suse.com/security/cve/CVE-2024-35907"
},
{
"category": "external",
"summary": "SUSE Bug 1224492 for CVE-2024-35907",
"url": "https://bugzilla.suse.com/1224492"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35907"
},
{
"cve": "CVE-2024-35909",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35909"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: t7xx: Split 64bit accesses to fix alignment issues\n\nSome of the registers are aligned on a 32bit boundary, causing\nalignment faults on 64bit platforms.\n\n Unable to handle kernel paging request at virtual address ffffffc084a1d004\n Mem abort info:\n ESR = 0x0000000096000061\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x21: alignment fault\n Data abort info:\n ISV = 0, ISS = 0x00000061, ISS2 = 0x00000000\n CM = 0, WnR = 1, TnD = 0, TagAccess = 0\n GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n swapper pgtable: 4k pages, 39-bit VAs, pgdp=0000000046ad6000\n [ffffffc084a1d004] pgd=100000013ffff003, p4d=100000013ffff003, pud=100000013ffff003, pmd=0068000020a00711\n Internal error: Oops: 0000000096000061 [#1] SMP\n Modules linked in: mtk_t7xx(+) qcserial pppoe ppp_async option nft_fib_inet nf_flow_table_inet mt7921u(O) mt7921s(O) mt7921e(O) mt7921_common(O) iwlmvm(O) iwldvm(O) usb_wwan rndis_host qmi_wwan pppox ppp_generic nft_reject_ipv6 nft_reject_ipv4 nft_reject_inet nft_reject nft_redir nft_quota nft_numgen nft_nat nft_masq nft_log nft_limit nft_hash nft_flow_offload nft_fib_ipv6 nft_fib_ipv4 nft_fib nft_ct nft_chain_nat nf_tables nf_nat nf_flow_table nf_conntrack mt7996e(O) mt792x_usb(O) mt792x_lib(O) mt7915e(O) mt76_usb(O) mt76_sdio(O) mt76_connac_lib(O) mt76(O) mac80211(O) iwlwifi(O) huawei_cdc_ncm cfg80211(O) cdc_ncm cdc_ether wwan usbserial usbnet slhc sfp rtc_pcf8563 nfnetlink nf_reject_ipv6 nf_reject_ipv4 nf_log_syslog nf_defrag_ipv6 nf_defrag_ipv4 mt6577_auxadc mdio_i2c libcrc32c compat(O) cdc_wdm cdc_acm at24 crypto_safexcel pwm_fan i2c_gpio i2c_smbus industrialio i2c_algo_bit i2c_mux_reg i2c_mux_pca954x i2c_mux_pca9541 i2c_mux_gpio i2c_mux dummy oid_registry tun sha512_arm64 sha1_ce sha1_generic seqiv\n md5 geniv des_generic libdes cbc authencesn authenc leds_gpio xhci_plat_hcd xhci_pci xhci_mtk_hcd xhci_hcd nvme nvme_core gpio_button_hotplug(O) dm_mirror dm_region_hash dm_log dm_crypt dm_mod dax usbcore usb_common ptp aquantia pps_core mii tpm encrypted_keys trusted\n CPU: 3 PID: 5266 Comm: kworker/u9:1 Tainted: G O 6.6.22 #0\n Hardware name: Bananapi BPI-R4 (DT)\n Workqueue: md_hk_wq t7xx_fsm_uninit [mtk_t7xx]\n pstate: 804000c5 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : t7xx_cldma_hw_set_start_addr+0x1c/0x3c [mtk_t7xx]\n lr : t7xx_cldma_start+0xac/0x13c [mtk_t7xx]\n sp : ffffffc085d63d30\n x29: ffffffc085d63d30 x28: 0000000000000000 x27: 0000000000000000\n x26: 0000000000000000 x25: ffffff80c804f2c0 x24: ffffff80ca196c05\n x23: 0000000000000000 x22: ffffff80c814b9b8 x21: ffffff80c814b128\n x20: 0000000000000001 x19: ffffff80c814b080 x18: 0000000000000014\n x17: 0000000055c9806b x16: 000000007c5296d0 x15: 000000000f6bca68\n x14: 00000000dbdbdce4 x13: 000000001aeaf72a x12: 0000000000000001\n x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000\n x8 : ffffff80ca1ef6b4 x7 : ffffff80c814b818 x6 : 0000000000000018\n x5 : 0000000000000870 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 000000010a947000 x1 : ffffffc084a1d004 x0 : ffffffc084a1d004\n Call trace:\n t7xx_cldma_hw_set_start_addr+0x1c/0x3c [mtk_t7xx]\n t7xx_fsm_uninit+0x578/0x5ec [mtk_t7xx]\n process_one_work+0x154/0x2a0\n worker_thread+0x2ac/0x488\n kthread+0xe0/0xec\n ret_from_fork+0x10/0x20\n Code: f9400800 91001000 8b214001 d50332bf (f9000022)\n ---[ end trace 0000000000000000 ]---\n\nThe inclusion of io-64-nonatomic-lo-hi.h indicates that all 64bit\naccesses can be replaced by pairs of nonatomic 32bit access. Fix\nalignment by forcing all accesses to be 32bit on 64bit platforms.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35909",
"url": "https://www.suse.com/security/cve/CVE-2024-35909"
},
{
"category": "external",
"summary": "SUSE Bug 1224491 for CVE-2024-35909",
"url": "https://bugzilla.suse.com/1224491"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35909"
},
{
"cve": "CVE-2024-35911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix memory corruption bug with suspend and rebuild\n\nThe ice driver would previously panic after suspend. This is caused\nfrom the driver *only* calling the ice_vsi_free_q_vectors() function by\nitself, when it is suspending. Since commit b3e7b3a6ee92 (\"ice: prevent\nNULL pointer deref during reload\") the driver has zeroed out\nnum_q_vectors, and only restored it in ice_vsi_cfg_def().\n\nThis further causes the ice_rebuild() function to allocate a zero length\nbuffer, after which num_q_vectors is updated, and then the new value of\nnum_q_vectors is used to index into the zero length buffer, which\ncorrupts memory.\n\nThe fix entails making sure all the code referencing num_q_vectors only\ndoes so after it has been reset via ice_vsi_cfg_def().\n\nI didn\u0027t perform a full bisect, but I was able to test against 6.1.77\nkernel and that ice driver works fine for suspend/resume with no panic,\nso sometime since then, this problem was introduced.\n\nAlso clean up an un-needed init of a local variable in the function\nbeing modified.\n\nPANIC from 6.8.0-rc1:\n\n[1026674.915596] PM: suspend exit\n[1026675.664697] ice 0000:17:00.1: PTP reset successful\n[1026675.664707] ice 0000:17:00.1: 2755 msecs passed between update to cached PHC time\n[1026675.667660] ice 0000:b1:00.0: PTP reset successful\n[1026675.675944] ice 0000:b1:00.0: 2832 msecs passed between update to cached PHC time\n[1026677.137733] ixgbe 0000:31:00.0 ens787: NIC Link is Up 1 Gbps, Flow Control: None\n[1026677.190201] BUG: kernel NULL pointer dereference, address: 0000000000000010\n[1026677.192753] ice 0000:17:00.0: PTP reset successful\n[1026677.192764] ice 0000:17:00.0: 4548 msecs passed between update to cached PHC time\n[1026677.197928] #PF: supervisor read access in kernel mode\n[1026677.197933] #PF: error_code(0x0000) - not-present page\n[1026677.197937] PGD 1557a7067 P4D 0\n[1026677.212133] ice 0000:b1:00.1: PTP reset successful\n[1026677.212143] ice 0000:b1:00.1: 4344 msecs passed between update to cached PHC time\n[1026677.212575]\n[1026677.243142] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[1026677.247918] CPU: 23 PID: 42790 Comm: kworker/23:0 Kdump: loaded Tainted: G W 6.8.0-rc1+ #1\n[1026677.257989] Hardware name: Intel Corporation M50CYP2SBSTD/M50CYP2SBSTD, BIOS SE5C620.86B.01.01.0005.2202160810 02/16/2022\n[1026677.269367] Workqueue: ice ice_service_task [ice]\n[1026677.274592] RIP: 0010:ice_vsi_rebuild_set_coalesce+0x130/0x1e0 [ice]\n[1026677.281421] Code: 0f 84 3a ff ff ff 41 0f b7 74 ec 02 66 89 b0 22 02 00 00 81 e6 ff 1f 00 00 e8 ec fd ff ff e9 35 ff ff ff 48 8b 43 30 49 63 ed \u003c41\u003e 0f b7 34 24 41 83 c5 01 48 8b 3c e8 66 89 b7 aa 02 00 00 81 e6\n[1026677.300877] RSP: 0018:ff3be62a6399bcc0 EFLAGS: 00010202\n[1026677.306556] RAX: ff28691e28980828 RBX: ff28691e41099828 RCX: 0000000000188000\n[1026677.314148] RDX: 0000000000000000 RSI: 0000000000000010 RDI: ff28691e41099828\n[1026677.321730] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\n[1026677.329311] R10: 0000000000000007 R11: ffffffffffffffc0 R12: 0000000000000010\n[1026677.336896] R13: 0000000000000000 R14: 0000000000000000 R15: ff28691e0eaa81a0\n[1026677.344472] FS: 0000000000000000(0000) GS:ff28693cbffc0000(0000) knlGS:0000000000000000\n[1026677.353000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[1026677.359195] CR2: 0000000000000010 CR3: 0000000128df4001 CR4: 0000000000771ef0\n[1026677.366779] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[1026677.374369] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[1026677.381952] PKRU: 55555554\n[1026677.385116] Call Trace:\n[1026677.388023] \u003cTASK\u003e\n[1026677.390589] ? __die+0x20/0x70\n[1026677.394105] ? page_fault_oops+0x82/0x160\n[1026677.398576] ? do_user_addr_fault+0x65/0x6a0\n[1026677.403307] ? exc_page_fault+0x6a/0x150\n[1026677.407694] ? asm_exc_page_fault+0x22/0x30\n[1026677.412349] ? ice_vsi_rebuild_set_coalesce+0x130/0x1e0 [ice]\n[1026677.4186\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35911",
"url": "https://www.suse.com/security/cve/CVE-2024-35911"
},
{
"category": "external",
"summary": "SUSE Bug 1224486 for CVE-2024-35911",
"url": "https://bugzilla.suse.com/1224486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35911"
},
{
"cve": "CVE-2024-35912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: rfi: fix potential response leaks\n\nIf the rx payload length check fails, or if kmemdup() fails,\nwe still need to free the command response. Fix that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35912",
"url": "https://www.suse.com/security/cve/CVE-2024-35912"
},
{
"category": "external",
"summary": "SUSE Bug 1224487 for CVE-2024-35912",
"url": "https://bugzilla.suse.com/1224487"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35912"
},
{
"cve": "CVE-2024-35914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: Fix error cleanup path in nfsd_rename()\n\nCommit a8b0026847b8 (\"rename(): avoid a deadlock in the case of parents\nhaving no common ancestor\") added an error bail out path. However this\npath does not drop the remount protection that has been acquired. Fix\nthe cleanup path to properly drop the remount protection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35914",
"url": "https://www.suse.com/security/cve/CVE-2024-35914"
},
{
"category": "external",
"summary": "SUSE Bug 1224482 for CVE-2024-35914",
"url": "https://bugzilla.suse.com/1224482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35914"
},
{
"cve": "CVE-2024-35915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet\n\nsyzbot reported the following uninit-value access issue [1][2]:\n\nnci_rx_work() parses and processes received packet. When the payload\nlength is zero, each message type handler reads uninitialized payload\nand KMSAN detects this issue. The receipt of a packet with a zero-size\npayload is considered unexpected, and therefore, such packets should be\nsilently discarded.\n\nThis patch resolved this issue by checking payload size before calling\neach message type handler codes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35915",
"url": "https://www.suse.com/security/cve/CVE-2024-35915"
},
{
"category": "external",
"summary": "SUSE Bug 1224479 for CVE-2024-35915",
"url": "https://bugzilla.suse.com/1224479"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35915"
},
{
"cve": "CVE-2024-35916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-buf: Fix NULL pointer dereference in sanitycheck()\n\nIf due to a memory allocation failure mock_chain() returns NULL, it is\npassed to dma_fence_enable_sw_signaling() resulting in NULL pointer\ndereference there.\n\nCall dma_fence_enable_sw_signaling() only if mock_chain() succeeds.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35916",
"url": "https://www.suse.com/security/cve/CVE-2024-35916"
},
{
"category": "external",
"summary": "SUSE Bug 1224480 for CVE-2024-35916",
"url": "https://bugzilla.suse.com/1224480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35916"
},
{
"cve": "CVE-2024-35922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbmon: prevent division by zero in fb_videomode_from_videomode()\n\nThe expression htotal * vtotal can have a zero value on\noverflow. It is necessary to prevent division by zero like in\nfb_var_to_videomode().\n\nFound by Linux Verification Center (linuxtesting.org) with Svace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35922",
"url": "https://www.suse.com/security/cve/CVE-2024-35922"
},
{
"category": "external",
"summary": "SUSE Bug 1224660 for CVE-2024-35922",
"url": "https://bugzilla.suse.com/1224660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35922"
},
{
"cve": "CVE-2024-35924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Limit read size on v1.2\n\nBetween UCSI 1.2 and UCSI 2.0, the size of the MESSAGE_IN region was\nincreased from 16 to 256. In order to avoid overflowing reads for older\nsystems, add a mechanism to use the read UCSI version to truncate read\nsizes on UCSI v1.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35924",
"url": "https://www.suse.com/security/cve/CVE-2024-35924"
},
{
"category": "external",
"summary": "SUSE Bug 1224657 for CVE-2024-35924",
"url": "https://bugzilla.suse.com/1224657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35924"
},
{
"cve": "CVE-2024-35927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35927"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: Check output polling initialized before disabling\n\nIn drm_kms_helper_poll_disable() check if output polling\nsupport is initialized before disabling polling. If not flag\nthis as a warning.\nAdditionally in drm_mode_config_helper_suspend() and\ndrm_mode_config_helper_resume() calls, that re the callers of these\nfunctions, avoid invoking them if polling is not initialized.\nFor drivers like hyperv-drm, that do not initialize connector\npolling, if suspend is called without this check, it leads to\nsuspend failure with following stack\n[ 770.719392] Freezing remaining freezable tasks ... (elapsed 0.001 seconds) done.\n[ 770.720592] printk: Suspending console(s) (use no_console_suspend to debug)\n[ 770.948823] ------------[ cut here ]------------\n[ 770.948824] WARNING: CPU: 1 PID: 17197 at kernel/workqueue.c:3162 __flush_work.isra.0+0x212/0x230\n[ 770.948831] Modules linked in: rfkill nft_counter xt_conntrack xt_owner udf nft_compat crc_itu_t nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables nfnetlink vfat fat mlx5_ib ib_uverbs ib_core mlx5_core intel_rapl_msr intel_rapl_common kvm_amd ccp mlxfw kvm psample hyperv_drm tls drm_shmem_helper drm_kms_helper irqbypass pcspkr syscopyarea sysfillrect sysimgblt hv_balloon hv_utils joydev drm fuse xfs libcrc32c pci_hyperv pci_hyperv_intf sr_mod sd_mod cdrom t10_pi sg hv_storvsc scsi_transport_fc hv_netvsc serio_raw hyperv_keyboard hid_hyperv crct10dif_pclmul crc32_pclmul crc32c_intel hv_vmbus ghash_clmulni_intel dm_mirror dm_region_hash dm_log dm_mod\n[ 770.948863] CPU: 1 PID: 17197 Comm: systemd-sleep Not tainted 5.14.0-362.2.1.el9_3.x86_64 #1\n[ 770.948865] Hardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS Hyper-V UEFI Release v4.1 05/09/2022\n[ 770.948866] RIP: 0010:__flush_work.isra.0+0x212/0x230\n[ 770.948869] Code: 8b 4d 00 4c 8b 45 08 89 ca 48 c1 e9 04 83 e2 08 83 e1 0f 83 ca 02 89 c8 48 0f ba 6d 00 03 e9 25 ff ff ff 0f 0b e9 4e ff ff ff \u003c0f\u003e 0b 45 31 ed e9 44 ff ff ff e8 8f 89 b2 00 66 66 2e 0f 1f 84 00\n[ 770.948870] RSP: 0018:ffffaf4ac213fb10 EFLAGS: 00010246\n[ 770.948871] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8c992857\n[ 770.948872] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff9aad82b00330\n[ 770.948873] RBP: ffff9aad82b00330 R08: 0000000000000000 R09: ffff9aad87ee3d10\n[ 770.948874] R10: 0000000000000200 R11: 0000000000000000 R12: ffff9aad82b00330\n[ 770.948874] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001\n[ 770.948875] FS: 00007ff1b2f6bb40(0000) GS:ffff9aaf37d00000(0000) knlGS:0000000000000000\n[ 770.948878] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 770.948878] CR2: 0000555f345cb666 CR3: 00000001462dc005 CR4: 0000000000370ee0\n[ 770.948879] Call Trace:\n[ 770.948880] \u003cTASK\u003e\n[ 770.948881] ? show_trace_log_lvl+0x1c4/0x2df\n[ 770.948884] ? show_trace_log_lvl+0x1c4/0x2df\n[ 770.948886] ? __cancel_work_timer+0x103/0x190\n[ 770.948887] ? __flush_work.isra.0+0x212/0x230\n[ 770.948889] ? __warn+0x81/0x110\n[ 770.948891] ? __flush_work.isra.0+0x212/0x230\n[ 770.948892] ? report_bug+0x10a/0x140\n[ 770.948895] ? handle_bug+0x3c/0x70\n[ 770.948898] ? exc_invalid_op+0x14/0x70\n[ 770.948899] ? asm_exc_invalid_op+0x16/0x20\n[ 770.948903] ? __flush_work.isra.0+0x212/0x230\n[ 770.948905] __cancel_work_timer+0x103/0x190\n[ 770.948907] ? _raw_spin_unlock_irqrestore+0xa/0x30\n[ 770.948910] drm_kms_helper_poll_disable+0x1e/0x40 [drm_kms_helper]\n[ 770.948923] drm_mode_config_helper_suspend+0x1c/0x80 [drm_kms_helper]\n[ 770.948933] ? __pfx_vmbus_suspend+0x10/0x10 [hv_vmbus]\n[ 770.948942] hyperv_vmbus_suspend+0x17/0x40 [hyperv_drm]\n[ 770.948944] ? __pfx_vmbus_suspend+0x10/0x10 [hv_vmbus]\n[ 770.948951] dpm_run_callback+0x4c/0x140\n[ 770.948954] __device_suspend_noir\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35927",
"url": "https://www.suse.com/security/cve/CVE-2024-35927"
},
{
"category": "external",
"summary": "SUSE Bug 1224654 for CVE-2024-35927",
"url": "https://bugzilla.suse.com/1224654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35927"
},
{
"cve": "CVE-2024-35928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35928"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35928",
"url": "https://www.suse.com/security/cve/CVE-2024-35928"
},
{
"category": "external",
"summary": "SUSE Bug 1224653 for CVE-2024-35928",
"url": "https://bugzilla.suse.com/1224653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35928"
},
{
"cve": "CVE-2024-35930",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35930"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc()\n\nThe call to lpfc_sli4_resume_rpi() in lpfc_rcv_padisc() may return an\nunsuccessful status. In such cases, the elsiocb is not issued, the\ncompletion is not called, and thus the elsiocb resource is leaked.\n\nCheck return value after calling lpfc_sli4_resume_rpi() and conditionally\nrelease the elsiocb resource.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35930",
"url": "https://www.suse.com/security/cve/CVE-2024-35930"
},
{
"category": "external",
"summary": "SUSE Bug 1224651 for CVE-2024-35930",
"url": "https://bugzilla.suse.com/1224651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35930"
},
{
"cve": "CVE-2024-35932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: don\u0027t check if plane-\u003estate-\u003efb == state-\u003efb\n\nCurrently, when using non-blocking commits, we can see the following\nkernel warning:\n\n[ 110.908514] ------------[ cut here ]------------\n[ 110.908529] refcount_t: underflow; use-after-free.\n[ 110.908620] WARNING: CPU: 0 PID: 1866 at lib/refcount.c:87 refcount_dec_not_one+0xb8/0xc0\n[ 110.908664] Modules linked in: rfcomm snd_seq_dummy snd_hrtimer snd_seq snd_seq_device cmac algif_hash aes_arm64 aes_generic algif_skcipher af_alg bnep hid_logitech_hidpp vc4 brcmfmac hci_uart btbcm brcmutil bluetooth snd_soc_hdmi_codec cfg80211 cec drm_display_helper drm_dma_helper drm_kms_helper snd_soc_core snd_compress snd_pcm_dmaengine fb_sys_fops sysimgblt syscopyarea sysfillrect raspberrypi_hwmon ecdh_generic ecc rfkill libaes i2c_bcm2835 binfmt_misc joydev snd_bcm2835(C) bcm2835_codec(C) bcm2835_isp(C) v4l2_mem2mem videobuf2_dma_contig snd_pcm bcm2835_v4l2(C) raspberrypi_gpiomem bcm2835_mmal_vchiq(C) videobuf2_v4l2 snd_timer videobuf2_vmalloc videobuf2_memops videobuf2_common snd videodev vc_sm_cma(C) mc hid_logitech_dj uio_pdrv_genirq uio i2c_dev drm fuse dm_mod drm_panel_orientation_quirks backlight ip_tables x_tables ipv6\n[ 110.909086] CPU: 0 PID: 1866 Comm: kodi.bin Tainted: G C 6.1.66-v8+ #32\n[ 110.909104] Hardware name: Raspberry Pi 3 Model B Rev 1.2 (DT)\n[ 110.909114] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 110.909132] pc : refcount_dec_not_one+0xb8/0xc0\n[ 110.909152] lr : refcount_dec_not_one+0xb4/0xc0\n[ 110.909170] sp : ffffffc00913b9c0\n[ 110.909177] x29: ffffffc00913b9c0 x28: 000000556969bbb0 x27: 000000556990df60\n[ 110.909205] x26: 0000000000000002 x25: 0000000000000004 x24: ffffff8004448480\n[ 110.909230] x23: ffffff800570b500 x22: ffffff802e03a7bc x21: ffffffecfca68c78\n[ 110.909257] x20: ffffff8002b42000 x19: ffffff802e03a600 x18: 0000000000000000\n[ 110.909283] x17: 0000000000000011 x16: ffffffffffffffff x15: 0000000000000004\n[ 110.909308] x14: 0000000000000fff x13: ffffffed577e47e0 x12: 0000000000000003\n[ 110.909333] x11: 0000000000000000 x10: 0000000000000027 x9 : c912d0d083728c00\n[ 110.909359] x8 : c912d0d083728c00 x7 : 65646e75203a745f x6 : 746e756f63666572\n[ 110.909384] x5 : ffffffed579f62ee x4 : ffffffed579eb01e x3 : 0000000000000000\n[ 110.909409] x2 : 0000000000000000 x1 : ffffffc00913b750 x0 : 0000000000000001\n[ 110.909434] Call trace:\n[ 110.909441] refcount_dec_not_one+0xb8/0xc0\n[ 110.909461] vc4_bo_dec_usecnt+0x4c/0x1b0 [vc4]\n[ 110.909903] vc4_cleanup_fb+0x44/0x50 [vc4]\n[ 110.910315] drm_atomic_helper_cleanup_planes+0x88/0xa4 [drm_kms_helper]\n[ 110.910669] vc4_atomic_commit_tail+0x390/0x9dc [vc4]\n[ 110.911079] commit_tail+0xb0/0x164 [drm_kms_helper]\n[ 110.911397] drm_atomic_helper_commit+0x1d0/0x1f0 [drm_kms_helper]\n[ 110.911716] drm_atomic_commit+0xb0/0xdc [drm]\n[ 110.912569] drm_mode_atomic_ioctl+0x348/0x4b8 [drm]\n[ 110.913330] drm_ioctl_kernel+0xec/0x15c [drm]\n[ 110.914091] drm_ioctl+0x24c/0x3b0 [drm]\n[ 110.914850] __arm64_sys_ioctl+0x9c/0xd4\n[ 110.914873] invoke_syscall+0x4c/0x114\n[ 110.914897] el0_svc_common+0xd0/0x118\n[ 110.914917] do_el0_svc+0x38/0xd0\n[ 110.914936] el0_svc+0x30/0x8c\n[ 110.914958] el0t_64_sync_handler+0x84/0xf0\n[ 110.914979] el0t_64_sync+0x18c/0x190\n[ 110.914996] ---[ end trace 0000000000000000 ]---\n\nThis happens because, although `prepare_fb` and `cleanup_fb` are\nperfectly balanced, we cannot guarantee consistency in the check\nplane-\u003estate-\u003efb == state-\u003efb. This means that sometimes we can increase\nthe refcount in `prepare_fb` and don\u0027t decrease it in `cleanup_fb`. The\nopposite can also be true.\n\nIn fact, the struct drm_plane .state shouldn\u0027t be accessed directly\nbut instead, the `drm_atomic_get_new_plane_state()` helper function should\nbe used. So, we could stick to this check, but using\n`drm_atomic_get_new_plane_state()`. But actually, this check is not re\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35932",
"url": "https://www.suse.com/security/cve/CVE-2024-35932"
},
{
"category": "external",
"summary": "SUSE Bug 1224650 for CVE-2024-35932",
"url": "https://bugzilla.suse.com/1224650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35932"
},
{
"cve": "CVE-2024-35933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35933"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btintel: Fix null ptr deref in btintel_read_version\n\nIf hci_cmd_sync_complete() is triggered and skb is NULL, then\nhdev-\u003ereq_skb is NULL, which will cause this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35933",
"url": "https://www.suse.com/security/cve/CVE-2024-35933"
},
{
"category": "external",
"summary": "SUSE Bug 1224640 for CVE-2024-35933",
"url": "https://bugzilla.suse.com/1224640"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35933"
},
{
"cve": "CVE-2024-35936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35936"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks()\n\nThe unhandled case in btrfs_relocate_sys_chunks() loop is a corruption,\nas it could be caused only by two impossible conditions:\n\n- at first the search key is set up to look for a chunk tree item, with\n offset -1, this is an inexact search and the key-\u003eoffset will contain\n the correct offset upon a successful search, a valid chunk tree item\n cannot have an offset -1\n\n- after first successful search, the found_key corresponds to a chunk\n item, the offset is decremented by 1 before the next loop, it\u0027s\n impossible to find a chunk item there due to alignment and size\n constraints",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35936",
"url": "https://www.suse.com/security/cve/CVE-2024-35936"
},
{
"category": "external",
"summary": "SUSE Bug 1224644 for CVE-2024-35936",
"url": "https://bugzilla.suse.com/1224644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35936"
},
{
"cve": "CVE-2024-35937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35937"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: check A-MSDU format more carefully\n\nIf it looks like there\u0027s another subframe in the A-MSDU\nbut the header isn\u0027t fully there, we can end up reading\ndata out of bounds, only to discard later. Make this a\nbit more careful and check if the subframe header can\neven be present.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35937",
"url": "https://www.suse.com/security/cve/CVE-2024-35937"
},
{
"category": "external",
"summary": "SUSE Bug 1224526 for CVE-2024-35937",
"url": "https://bugzilla.suse.com/1224526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35937"
},
{
"cve": "CVE-2024-35938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: decrease MHI channel buffer length to 8KB\n\nCurrently buf_len field of ath11k_mhi_config_qca6390 is assigned\nwith 0, making MHI use a default size, 64KB, to allocate channel\nbuffers. This is likely to fail in some scenarios where system\nmemory is highly fragmented and memory compaction or reclaim is\nnot allowed.\n\nThere is a fail report which is caused by it:\nkworker/u32:45: page allocation failure: order:4, mode:0x40c00(GFP_NOIO|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0\nCPU: 0 PID: 19318 Comm: kworker/u32:45 Not tainted 6.8.0-rc3-1.gae4495f-default #1 openSUSE Tumbleweed (unreleased) 493b6d5b382c603654d7a81fc3c144d59a1dfceb\nWorkqueue: events_unbound async_run_entry_fn\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x60\n warn_alloc+0x13a/0x1b0\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? __alloc_pages_direct_compact+0xab/0x210\n __alloc_pages_slowpath.constprop.0+0xd3e/0xda0\n __alloc_pages+0x32d/0x350\n ? mhi_prepare_channel+0x127/0x2d0 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n __kmalloc_large_node+0x72/0x110\n __kmalloc+0x37c/0x480\n ? mhi_map_single_no_bb+0x77/0xf0 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n ? mhi_prepare_channel+0x127/0x2d0 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n mhi_prepare_channel+0x127/0x2d0 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n __mhi_prepare_for_transfer+0x44/0x80 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n ? __pfx_____mhi_prepare_for_transfer+0x10/0x10 [mhi 40df44e07c05479f7a6e7b90fba9f0e0031a7814]\n device_for_each_child+0x5c/0xa0\n ? __pfx_pci_pm_resume+0x10/0x10\n ath11k_core_resume+0x65/0x100 [ath11k a5094e22d7223135c40d93c8f5321cf09fd85e4e]\n ? srso_alias_return_thunk+0x5/0xfbef5\n ath11k_pci_pm_resume+0x32/0x60 [ath11k_pci 830b7bfc3ea80ebef32e563cafe2cb55e9cc73ec]\n ? srso_alias_return_thunk+0x5/0xfbef5\n dpm_run_callback+0x8c/0x1e0\n device_resume+0x104/0x340\n ? __pfx_dpm_watchdog_handler+0x10/0x10\n async_resume+0x1d/0x30\n async_run_entry_fn+0x32/0x120\n process_one_work+0x168/0x330\n worker_thread+0x2f5/0x410\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xe8/0x120\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x34/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nActually those buffers are used only by QMI target -\u003e host communication.\nAnd for WCN6855 and QCA6390, the largest packet size for that is less\nthan 6KB. So change buf_len field to 8KB, which results in order 1\nallocation if page size is 4KB. In this way, we can at least save some\nmemory, and as well as decrease the possibility of allocation failure\nin those scenarios.\n\nTested-on: WCN6855 hw2.0 PCI WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35938",
"url": "https://www.suse.com/security/cve/CVE-2024-35938"
},
{
"category": "external",
"summary": "SUSE Bug 1224643 for CVE-2024-35938",
"url": "https://bugzilla.suse.com/1224643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35938"
},
{
"cve": "CVE-2024-35940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore/zone: Add a null pointer check to the psz_kmsg_read\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure. Ensure the allocation was successful\nby checking the pointer validity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35940",
"url": "https://www.suse.com/security/cve/CVE-2024-35940"
},
{
"category": "external",
"summary": "SUSE Bug 1224537 for CVE-2024-35940",
"url": "https://bugzilla.suse.com/1224537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35940"
},
{
"cve": "CVE-2024-35945",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35945"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: phy_device: Prevent nullptr exceptions on ISR\n\nIf phydev-\u003eirq is set unconditionally, check\nfor valid interrupt handler or fall back to polling mode to prevent\nnullptr exceptions in interrupt service routine.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35945",
"url": "https://www.suse.com/security/cve/CVE-2024-35945"
},
{
"category": "external",
"summary": "SUSE Bug 1224639 for CVE-2024-35945",
"url": "https://bugzilla.suse.com/1224639"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35945"
},
{
"cve": "CVE-2024-35946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: fix null pointer access when abort scan\n\nDuring cancel scan we might use vif that weren\u0027t scanning.\nFix this by using the actual scanning vif.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35946",
"url": "https://www.suse.com/security/cve/CVE-2024-35946"
},
{
"category": "external",
"summary": "SUSE Bug 1224646 for CVE-2024-35946",
"url": "https://bugzilla.suse.com/1224646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35946"
},
{
"cve": "CVE-2024-35947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndyndbg: fix old BUG_ON in \u003econtrol parser\n\nFix a BUG_ON from 2009. Even if it looks \"unreachable\" (I didn\u0027t\nreally look), lets make sure by removing it, doing pr_err and return\n-EINVAL instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35947",
"url": "https://www.suse.com/security/cve/CVE-2024-35947"
},
{
"category": "external",
"summary": "SUSE Bug 1224647 for CVE-2024-35947",
"url": "https://bugzilla.suse.com/1224647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35947"
},
{
"cve": "CVE-2024-35950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/client: Fully protect modes[] with dev-\u003emode_config.mutex\n\nThe modes[] array contains pointers to modes on the connectors\u0027\nmode lists, which are protected by dev-\u003emode_config.mutex.\nThus we need to extend modes[] the same protection or by the\ntime we use it the elements may already be pointing to\nfreed/reused memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35950",
"url": "https://www.suse.com/security/cve/CVE-2024-35950"
},
{
"category": "external",
"summary": "SUSE Bug 1224703 for CVE-2024-35950",
"url": "https://bugzilla.suse.com/1224703"
},
{
"category": "external",
"summary": "SUSE Bug 1225310 for CVE-2024-35950",
"url": "https://bugzilla.suse.com/1225310"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-35950"
},
{
"cve": "CVE-2024-35951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panfrost: Fix the error path in panfrost_mmu_map_fault_addr()\n\nSubject: [PATCH] drm/panfrost: Fix the error path in\n panfrost_mmu_map_fault_addr()\n\nIf some the pages or sgt allocation failed, we shouldn\u0027t release the\npages ref we got earlier, otherwise we will end up with unbalanced\nget/put_pages() calls. We should instead leave everything in place\nand let the BO release function deal with extra cleanup when the object\nis destroyed, or let the fault handler try again next time it\u0027s called.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35951",
"url": "https://www.suse.com/security/cve/CVE-2024-35951"
},
{
"category": "external",
"summary": "SUSE Bug 1224701 for CVE-2024-35951",
"url": "https://bugzilla.suse.com/1224701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35951"
},
{
"cve": "CVE-2024-35952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35952"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ast: Fix soft lockup\n\nThere is a while-loop in ast_dp_set_on_off() that could lead to\ninfinite-loop. This is because the register, VGACRI-Dx, checked in\nthis API is a scratch register actually controlled by a MCU, named\nDPMCU, in BMC.\n\nThese scratch registers are protected by scu-lock. If suc-lock is not\noff, DPMCU can not update these registers and then host will have soft\nlockup due to never updated status.\n\nDPMCU is used to control DP and relative registers to handshake with\nhost\u0027s VGA driver. Even the most time-consuming task, DP\u0027s link\ntraining, is less than 100ms. 200ms should be enough.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35952",
"url": "https://www.suse.com/security/cve/CVE-2024-35952"
},
{
"category": "external",
"summary": "SUSE Bug 1224705 for CVE-2024-35952",
"url": "https://bugzilla.suse.com/1224705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35952"
},
{
"cve": "CVE-2024-35953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/ivpu: Fix deadlock in context_xa\n\nivpu_device-\u003econtext_xa is locked both in kernel thread and IRQ context.\nIt requires XA_FLAGS_LOCK_IRQ flag to be passed during initialization\notherwise the lock could be acquired from a thread and interrupted by\nan IRQ that locks it for the second time causing the deadlock.\n\nThis deadlock was reported by lockdep and observed in internal tests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35953",
"url": "https://www.suse.com/security/cve/CVE-2024-35953"
},
{
"category": "external",
"summary": "SUSE Bug 1224704 for CVE-2024-35953",
"url": "https://bugzilla.suse.com/1224704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35953"
},
{
"cve": "CVE-2024-35954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Avoid sg device teardown race\n\nsg_remove_sfp_usercontext() must not use sg_device_destroy() after calling\nscsi_device_put().\n\nsg_device_destroy() is accessing the parent scsi_device request_queue which\nwill already be set to NULL when the preceding call to scsi_device_put()\nremoved the last reference to the parent scsi_device.\n\nThe resulting NULL pointer exception will then crash the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35954",
"url": "https://www.suse.com/security/cve/CVE-2024-35954"
},
{
"category": "external",
"summary": "SUSE Bug 1224675 for CVE-2024-35954",
"url": "https://bugzilla.suse.com/1224675"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35954"
},
{
"cve": "CVE-2024-35955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkprobes: Fix possible use-after-free issue on kprobe registration\n\nWhen unloading a module, its state is changing MODULE_STATE_LIVE -\u003e\n MODULE_STATE_GOING -\u003e MODULE_STATE_UNFORMED. Each change will take\na time. `is_module_text_address()` and `__module_text_address()`\nworks with MODULE_STATE_LIVE and MODULE_STATE_GOING.\nIf we use `is_module_text_address()` and `__module_text_address()`\nseparately, there is a chance that the first one is succeeded but the\nnext one is failed because module-\u003estate becomes MODULE_STATE_UNFORMED\nbetween those operations.\n\nIn `check_kprobe_address_safe()`, if the second `__module_text_address()`\nis failed, that is ignored because it expected a kernel_text address.\nBut it may have failed simply because module-\u003estate has been changed\nto MODULE_STATE_UNFORMED. In this case, arm_kprobe() will try to modify\nnon-exist module text address (use-after-free).\n\nTo fix this problem, we should not use separated `is_module_text_address()`\nand `__module_text_address()`, but use only `__module_text_address()`\nonce and do `try_module_get(module)` which is only available with\nMODULE_STATE_LIVE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35955",
"url": "https://www.suse.com/security/cve/CVE-2024-35955"
},
{
"category": "external",
"summary": "SUSE Bug 1224676 for CVE-2024-35955",
"url": "https://bugzilla.suse.com/1224676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35955"
},
{
"cve": "CVE-2024-35958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35958"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ena: Fix incorrect descriptor free behavior\n\nENA has two types of TX queues:\n- queues which only process TX packets arriving from the network stack\n- queues which only process TX packets forwarded to it by XDP_REDIRECT\n or XDP_TX instructions\n\nThe ena_free_tx_bufs() cycles through all descriptors in a TX queue\nand unmaps + frees every descriptor that hasn\u0027t been acknowledged yet\nby the device (uncompleted TX transactions).\nThe function assumes that the processed TX queue is necessarily from\nthe first category listed above and ends up using napi_consume_skb()\nfor descriptors belonging to an XDP specific queue.\n\nThis patch solves a bug in which, in case of a VF reset, the\ndescriptors aren\u0027t freed correctly, leading to crashes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35958",
"url": "https://www.suse.com/security/cve/CVE-2024-35958"
},
{
"category": "external",
"summary": "SUSE Bug 1224677 for CVE-2024-35958",
"url": "https://bugzilla.suse.com/1224677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35958"
},
{
"cve": "CVE-2024-35959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35959"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix mlx5e_priv_init() cleanup flow\n\nWhen mlx5e_priv_init() fails, the cleanup flow calls mlx5e_selq_cleanup which\ncalls mlx5e_selq_apply() that assures that the `priv-\u003estate_lock` is held using\nlockdep_is_held().\n\nAcquire the state_lock in mlx5e_selq_cleanup().\n\nKernel log:\n=============================\nWARNING: suspicious RCU usage\n6.8.0-rc3_net_next_841a9b5 #1 Not tainted\n-----------------------------\ndrivers/net/ethernet/mellanox/mlx5/core/en/selq.c:124 suspicious rcu_dereference_protected() usage!\n\nother info that might help us debug this:\n\nrcu_scheduler_active = 2, debug_locks = 1\n2 locks held by systemd-modules/293:\n #0: ffffffffa05067b0 (devices_rwsem){++++}-{3:3}, at: ib_register_client+0x109/0x1b0 [ib_core]\n #1: ffff8881096c65c0 (\u0026device-\u003eclient_data_rwsem){++++}-{3:3}, at: add_client_context+0x104/0x1c0 [ib_core]\n\nstack backtrace:\nCPU: 4 PID: 293 Comm: systemd-modules Not tainted 6.8.0-rc3_net_next_841a9b5 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x8a/0xa0\n lockdep_rcu_suspicious+0x154/0x1a0\n mlx5e_selq_apply+0x94/0xa0 [mlx5_core]\n mlx5e_selq_cleanup+0x3a/0x60 [mlx5_core]\n mlx5e_priv_init+0x2be/0x2f0 [mlx5_core]\n mlx5_rdma_setup_rn+0x7c/0x1a0 [mlx5_core]\n rdma_init_netdev+0x4e/0x80 [ib_core]\n ? mlx5_rdma_netdev_free+0x70/0x70 [mlx5_core]\n ipoib_intf_init+0x64/0x550 [ib_ipoib]\n ipoib_intf_alloc+0x4e/0xc0 [ib_ipoib]\n ipoib_add_one+0xb0/0x360 [ib_ipoib]\n add_client_context+0x112/0x1c0 [ib_core]\n ib_register_client+0x166/0x1b0 [ib_core]\n ? 0xffffffffa0573000\n ipoib_init_module+0xeb/0x1a0 [ib_ipoib]\n do_one_initcall+0x61/0x250\n do_init_module+0x8a/0x270\n init_module_from_file+0x8b/0xd0\n idempotent_init_module+0x17d/0x230\n __x64_sys_finit_module+0x61/0xb0\n do_syscall_64+0x71/0x140\n entry_SYSCALL_64_after_hwframe+0x46/0x4e\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35959",
"url": "https://www.suse.com/security/cve/CVE-2024-35959"
},
{
"category": "external",
"summary": "SUSE Bug 1224666 for CVE-2024-35959",
"url": "https://bugzilla.suse.com/1224666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35959"
},
{
"cve": "CVE-2024-35960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Properly link new fs rules into the tree\n\nPreviously, add_rule_fg would only add newly created rules from the\nhandle into the tree when they had a refcount of 1. On the other hand,\ncreate_flow_handle tries hard to find and reference already existing\nidentical rules instead of creating new ones.\n\nThese two behaviors can result in a situation where create_flow_handle\n1) creates a new rule and references it, then\n2) in a subsequent step during the same handle creation references it\n again,\nresulting in a rule with a refcount of 2 that is not linked into the\ntree, will have a NULL parent and root and will result in a crash when\nthe flow group is deleted because del_sw_hw_rule, invoked on rule\ndeletion, assumes node-\u003eparent is != NULL.\n\nThis happened in the wild, due to another bug related to incorrect\nhandling of duplicate pkt_reformat ids, which lead to the code in\ncreate_flow_handle incorrectly referencing a just-added rule in the same\nflow handle, resulting in the problem described above. Full details are\nat [1].\n\nThis patch changes add_rule_fg to add new rules without parents into\nthe tree, properly initializing them and avoiding the crash. This makes\nit more consistent with how rules are added to an FTE in\ncreate_flow_handle.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35960",
"url": "https://www.suse.com/security/cve/CVE-2024-35960"
},
{
"category": "external",
"summary": "SUSE Bug 1224588 for CVE-2024-35960",
"url": "https://bugzilla.suse.com/1224588"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35960"
},
{
"cve": "CVE-2024-35961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Register devlink first under devlink lock\n\nIn case device is having a non fatal FW error during probe, the\ndriver will report the error to user via devlink. This will trigger\na WARN_ON, since mlx5 is calling devlink_register() last.\nIn order to avoid the WARN_ON[1], change mlx5 to invoke devl_register()\nfirst under devlink lock.\n\n[1]\nWARNING: CPU: 5 PID: 227 at net/devlink/health.c:483 devlink_recover_notify.constprop.0+0xb8/0xc0\nCPU: 5 PID: 227 Comm: kworker/u16:3 Not tainted 6.4.0-rc5_for_upstream_min_debug_2023_06_12_12_38 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nWorkqueue: mlx5_health0000:08:00.0 mlx5_fw_reporter_err_work [mlx5_core]\nRIP: 0010:devlink_recover_notify.constprop.0+0xb8/0xc0\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x79/0x120\n ? devlink_recover_notify.constprop.0+0xb8/0xc0\n ? report_bug+0x17c/0x190\n ? handle_bug+0x3c/0x60\n ? exc_invalid_op+0x14/0x70\n ? asm_exc_invalid_op+0x16/0x20\n ? devlink_recover_notify.constprop.0+0xb8/0xc0\n devlink_health_report+0x4a/0x1c0\n mlx5_fw_reporter_err_work+0xa4/0xd0 [mlx5_core]\n process_one_work+0x1bb/0x3c0\n ? process_one_work+0x3c0/0x3c0\n worker_thread+0x4d/0x3c0\n ? process_one_work+0x3c0/0x3c0\n kthread+0xc6/0xf0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x1f/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35961",
"url": "https://www.suse.com/security/cve/CVE-2024-35961"
},
{
"category": "external",
"summary": "SUSE Bug 1224585 for CVE-2024-35961",
"url": "https://bugzilla.suse.com/1224585"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35961"
},
{
"cve": "CVE-2024-35963",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35963"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sock: Fix not validating setsockopt user input\n\nCheck user input length before copying data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35963",
"url": "https://www.suse.com/security/cve/CVE-2024-35963"
},
{
"category": "external",
"summary": "SUSE Bug 1224582 for CVE-2024-35963",
"url": "https://bugzilla.suse.com/1224582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35963"
},
{
"cve": "CVE-2024-35965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix not validating setsockopt user input\n\nCheck user input length before copying data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35965",
"url": "https://www.suse.com/security/cve/CVE-2024-35965"
},
{
"category": "external",
"summary": "SUSE Bug 1224579 for CVE-2024-35965",
"url": "https://bugzilla.suse.com/1224579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35965"
},
{
"cve": "CVE-2024-35966",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35966"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: Fix not validating setsockopt user input\n\nsyzbot reported rfcomm_sock_setsockopt_old() is copying data without\nchecking user input length.\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset\ninclude/linux/sockptr.h:49 [inline]\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr\ninclude/linux/sockptr.h:55 [inline]\nBUG: KASAN: slab-out-of-bounds in rfcomm_sock_setsockopt_old\nnet/bluetooth/rfcomm/sock.c:632 [inline]\nBUG: KASAN: slab-out-of-bounds in rfcomm_sock_setsockopt+0x893/0xa70\nnet/bluetooth/rfcomm/sock.c:673\nRead of size 4 at addr ffff8880209a8bc3 by task syz-executor632/5064",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35966",
"url": "https://www.suse.com/security/cve/CVE-2024-35966"
},
{
"category": "external",
"summary": "SUSE Bug 1224576 for CVE-2024-35966",
"url": "https://bugzilla.suse.com/1224576"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35966"
},
{
"cve": "CVE-2024-35967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35967"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix not validating setsockopt user input\n\nsyzbot reported sco_sock_setsockopt() is copying data without\nchecking user input length.\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset\ninclude/linux/sockptr.h:49 [inline]\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr\ninclude/linux/sockptr.h:55 [inline]\nBUG: KASAN: slab-out-of-bounds in sco_sock_setsockopt+0xc0b/0xf90\nnet/bluetooth/sco.c:893\nRead of size 4 at addr ffff88805f7b15a3 by task syz-executor.5/12578",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35967",
"url": "https://www.suse.com/security/cve/CVE-2024-35967"
},
{
"category": "external",
"summary": "SUSE Bug 1224587 for CVE-2024-35967",
"url": "https://bugzilla.suse.com/1224587"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35967"
},
{
"cve": "CVE-2024-35971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ks8851: Handle softirqs at the end of IRQ thread to fix hang\n\nThe ks8851_irq() thread may call ks8851_rx_pkts() in case there are\nany packets in the MAC FIFO, which calls netif_rx(). This netif_rx()\nimplementation is guarded by local_bh_disable() and local_bh_enable().\nThe local_bh_enable() may call do_softirq() to run softirqs in case\nany are pending. One of the softirqs is net_rx_action, which ultimately\nreaches the driver .start_xmit callback. If that happens, the system\nhangs. The entire call chain is below:\n\nks8851_start_xmit_par from netdev_start_xmit\nnetdev_start_xmit from dev_hard_start_xmit\ndev_hard_start_xmit from sch_direct_xmit\nsch_direct_xmit from __dev_queue_xmit\n__dev_queue_xmit from __neigh_update\n__neigh_update from neigh_update\nneigh_update from arp_process.constprop.0\narp_process.constprop.0 from __netif_receive_skb_one_core\n__netif_receive_skb_one_core from process_backlog\nprocess_backlog from __napi_poll.constprop.0\n__napi_poll.constprop.0 from net_rx_action\nnet_rx_action from __do_softirq\n__do_softirq from call_with_stack\ncall_with_stack from do_softirq\ndo_softirq from __local_bh_enable_ip\n__local_bh_enable_ip from netif_rx\nnetif_rx from ks8851_irq\nks8851_irq from irq_thread_fn\nirq_thread_fn from irq_thread\nirq_thread from kthread\nkthread from ret_from_fork\n\nThe hang happens because ks8851_irq() first locks a spinlock in\nks8851_par.c ks8851_lock_par() spin_lock_irqsave(\u0026ksp-\u003elock, ...)\nand with that spinlock locked, calls netif_rx(). Once the execution\nreaches ks8851_start_xmit_par(), it calls ks8851_lock_par() again\nwhich attempts to claim the already locked spinlock again, and the\nhang happens.\n\nMove the do_softirq() call outside of the spinlock protected section\nof ks8851_irq() by disabling BHs around the entire spinlock protected\nsection of ks8851_irq() handler. Place local_bh_enable() outside of\nthe spinlock protected section, so that it can trigger do_softirq()\nwithout the ks8851_par.c ks8851_lock_par() spinlock being held, and\nsafely call ks8851_start_xmit_par() without attempting to lock the\nalready locked spinlock.\n\nSince ks8851_irq() is protected by local_bh_disable()/local_bh_enable()\nnow, replace netif_rx() with __netif_rx() which is not duplicating the\nlocal_bh_disable()/local_bh_enable() calls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35971",
"url": "https://www.suse.com/security/cve/CVE-2024-35971"
},
{
"category": "external",
"summary": "SUSE Bug 1224578 for CVE-2024-35971",
"url": "https://bugzilla.suse.com/1224578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35971"
},
{
"cve": "CVE-2024-35972",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35972"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix possible memory leak in bnxt_rdma_aux_device_init()\n\nIf ulp = kzalloc() fails, the allocated edev will leak because it is\nnot properly assigned and the cleanup path will not be able to free it.\nFix it by assigning it properly immediately after allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35972",
"url": "https://www.suse.com/security/cve/CVE-2024-35972"
},
{
"category": "external",
"summary": "SUSE Bug 1224577 for CVE-2024-35972",
"url": "https://bugzilla.suse.com/1224577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35972"
},
{
"cve": "CVE-2024-35973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: fix header validation in geneve[6]_xmit_skb\n\nsyzbot is able to trigger an uninit-value in geneve_xmit() [1]\n\nProblem : While most ip tunnel helpers (like ip_tunnel_get_dsfield())\nuses skb_protocol(skb, true), pskb_inet_may_pull() is only using\nskb-\u003eprotocol.\n\nIf anything else than ETH_P_IPV6 or ETH_P_IP is found in skb-\u003eprotocol,\npskb_inet_may_pull() does nothing at all.\n\nIf a vlan tag was provided by the caller (af_packet in the syzbot case),\nthe network header might not point to the correct location, and skb\nlinear part could be smaller than expected.\n\nAdd skb_vlan_inet_prepare() to perform a complete mac validation.\n\nUse this in geneve for the moment, I suspect we need to adopt this\nmore broadly.\n\nv4 - Jakub reported v3 broke l2_tos_ttl_inherit.sh selftest\n - Only call __vlan_get_protocol() for vlan types.\n\nv2,v3 - Addressed Sabrina comments on v1 and v2\n\n[1]\n\nBUG: KMSAN: uninit-value in geneve_xmit_skb drivers/net/geneve.c:910 [inline]\n BUG: KMSAN: uninit-value in geneve_xmit+0x302d/0x5420 drivers/net/geneve.c:1030\n geneve_xmit_skb drivers/net/geneve.c:910 [inline]\n geneve_xmit+0x302d/0x5420 drivers/net/geneve.c:1030\n __netdev_start_xmit include/linux/netdevice.h:4903 [inline]\n netdev_start_xmit include/linux/netdevice.h:4917 [inline]\n xmit_one net/core/dev.c:3531 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3547\n __dev_queue_xmit+0x348d/0x52c0 net/core/dev.c:4335\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3081 [inline]\n packet_sendmsg+0x8bb0/0x9ef0 net/packet/af_packet.c:3113\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2199\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3804 [inline]\n slab_alloc_node mm/slub.c:3845 [inline]\n kmem_cache_alloc_node+0x613/0xc50 mm/slub.c:3888\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:577\n __alloc_skb+0x35b/0x7a0 net/core/skbuff.c:668\n alloc_skb include/linux/skbuff.h:1318 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6504\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2795\n packet_alloc_skb net/packet/af_packet.c:2930 [inline]\n packet_snd net/packet/af_packet.c:3024 [inline]\n packet_sendmsg+0x722d/0x9ef0 net/packet/af_packet.c:3113\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2199\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nCPU: 0 PID: 5033 Comm: syz-executor346 Not tainted 6.9.0-rc1-syzkaller-00005-g928a87efa423 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35973",
"url": "https://www.suse.com/security/cve/CVE-2024-35973"
},
{
"category": "external",
"summary": "SUSE Bug 1224586 for CVE-2024-35973",
"url": "https://bugzilla.suse.com/1224586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35973"
},
{
"cve": "CVE-2024-35974",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35974"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix q-\u003eblkg_list corruption during disk rebind\n\nMultiple gendisk instances can allocated/added for single request queue\nin case of disk rebind. blkg may still stay in q-\u003eblkg_list when calling\nblkcg_init_disk() for rebind, then q-\u003eblkg_list becomes corrupted.\n\nFix the list corruption issue by:\n\n- add blkg_init_queue() to initialize q-\u003eblkg_list \u0026 q-\u003eblkcg_mutex only\n- move calling blkg_init_queue() into blk_alloc_queue()\n\nThe list corruption should be started since commit f1c006f1c685 (\"blk-cgroup:\nsynchronize pd_free_fn() from blkg_free_workfn() and blkcg_deactivate_policy()\")\nwhich delays removing blkg from q-\u003eblkg_list into blkg_free_workfn().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35974",
"url": "https://www.suse.com/security/cve/CVE-2024-35974"
},
{
"category": "external",
"summary": "SUSE Bug 1224573 for CVE-2024-35974",
"url": "https://bugzilla.suse.com/1224573"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35974"
},
{
"cve": "CVE-2024-35975",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35975"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: Fix transmit scheduler resource leak\n\nInorder to support shaping and scheduling, Upon class creation\nNetdev driver allocates trasmit schedulers.\n\nThe previous patch which added support for Round robin scheduling has\na bug due to which driver is not freeing transmit schedulers post\nclass deletion.\n\nThis patch fixes the same.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35975",
"url": "https://www.suse.com/security/cve/CVE-2024-35975"
},
{
"category": "external",
"summary": "SUSE Bug 1224569 for CVE-2024-35975",
"url": "https://bugzilla.suse.com/1224569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35975"
},
{
"cve": "CVE-2024-35977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_uart: properly fix race condition\n\nThe cros_ec_uart_probe() function calls devm_serdev_device_open() before\nit calls serdev_device_set_client_ops(). This can trigger a NULL pointer\ndereference:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n ...\n Call Trace:\n \u003cTASK\u003e\n ...\n ? ttyport_receive_buf\n\nA simplified version of crashing code is as follows:\n\n static inline size_t serdev_controller_receive_buf(struct serdev_controller *ctrl,\n const u8 *data,\n size_t count)\n {\n struct serdev_device *serdev = ctrl-\u003eserdev;\n\n if (!serdev || !serdev-\u003eops-\u003ereceive_buf) // CRASH!\n return 0;\n\n return serdev-\u003eops-\u003ereceive_buf(serdev, data, count);\n }\n\nIt assumes that if SERPORT_ACTIVE is set and serdev exists, serdev-\u003eops\nwill also exist. This conflicts with the existing cros_ec_uart_probe()\nlogic, as it first calls devm_serdev_device_open() (which sets\nSERPORT_ACTIVE), and only later sets serdev-\u003eops via\nserdev_device_set_client_ops().\n\nCommit 01f95d42b8f4 (\"platform/chrome: cros_ec_uart: fix race\ncondition\") attempted to fix a similar race condition, but while doing\nso, made the window of error for this race condition to happen much\nwider.\n\nAttempt to fix the race condition again, making sure we fully setup\nbefore calling devm_serdev_device_open().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35977",
"url": "https://www.suse.com/security/cve/CVE-2024-35977"
},
{
"category": "external",
"summary": "SUSE Bug 1224568 for CVE-2024-35977",
"url": "https://bugzilla.suse.com/1224568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35977"
},
{
"cve": "CVE-2024-35978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Fix memory leak in hci_req_sync_complete()\n\nIn \u0027hci_req_sync_complete()\u0027, always free the previous sync\nrequest state before assigning reference to a new one.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35978",
"url": "https://www.suse.com/security/cve/CVE-2024-35978"
},
{
"category": "external",
"summary": "SUSE Bug 1224571 for CVE-2024-35978",
"url": "https://bugzilla.suse.com/1224571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35978"
},
{
"cve": "CVE-2024-35982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbatman-adv: Avoid infinite loop trying to resize local TT\n\nIf the MTU of one of an attached interface becomes too small to transmit\nthe local translation table then it must be resized to fit inside all\nfragments (when enabled) or a single packet.\n\nBut if the MTU becomes too low to transmit even the header + the VLAN\nspecific part then the resizing of the local TT will never succeed. This\ncan for example happen when the usable space is 110 bytes and 11 VLANs are\non top of batman-adv. In this case, at least 116 byte would be needed.\nThere will just be an endless spam of\n\n batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (110)\n\nin the log but the function will never finish. Problem here is that the\ntimeout will be halved all the time and will then stagnate at 0 and\ntherefore never be able to reduce the table even more.\n\nThere are other scenarios possible with a similar result. The number of\nBATADV_TT_CLIENT_NOPURGE entries in the local TT can for example be too\nhigh to fit inside a packet. Such a scenario can therefore happen also with\nonly a single VLAN + 7 non-purgable addresses - requiring at least 120\nbytes.\n\nWhile this should be handled proactively when:\n\n* interface with too low MTU is added\n* VLAN is added\n* non-purgeable local mac is added\n* MTU of an attached interface is reduced\n* fragmentation setting gets disabled (which most likely requires dropping\n attached interfaces)\n\nnot all of these scenarios can be prevented because batman-adv is only\nconsuming events without the the possibility to prevent these actions\n(non-purgable MAC address added, MTU of an attached interface is reduced).\nIt is therefore necessary to also make sure that the code is able to handle\nalso the situations when there were already incompatible system\nconfiguration are present.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35982",
"url": "https://www.suse.com/security/cve/CVE-2024-35982"
},
{
"category": "external",
"summary": "SUSE Bug 1224566 for CVE-2024-35982",
"url": "https://bugzilla.suse.com/1224566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35982"
},
{
"cve": "CVE-2024-35984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: smbus: fix NULL function pointer dereference\n\nBaruch reported an OOPS when using the designware controller as target\nonly. Target-only modes break the assumption of one transfer function\nalways being available. Fix this by always checking the pointer in\n__i2c_transfer.\n\n[wsa: dropped the simplification in core-smbus to avoid theoretical regressions]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35984",
"url": "https://www.suse.com/security/cve/CVE-2024-35984"
},
{
"category": "external",
"summary": "SUSE Bug 1224567 for CVE-2024-35984",
"url": "https://bugzilla.suse.com/1224567"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35984"
},
{
"cve": "CVE-2024-35986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: ti: tusb1210: Resolve charger-det crash if charger psy is unregistered\n\nThe power_supply frame-work is not really designed for there to be\nlong living in kernel references to power_supply devices.\n\nSpecifically unregistering a power_supply while some other code has\na reference to it triggers a WARN in power_supply_unregister():\n\n\tWARN_ON(atomic_dec_return(\u0026psy-\u003euse_cnt));\n\nFolllowed by the power_supply still getting removed and the\nbacking data freed anyway, leaving the tusb1210 charger-detect code\nwith a dangling reference, resulting in a crash the next time\ntusb1210_get_online() is called.\n\nFix this by only holding the reference in tusb1210_get_online()\nfreeing it at the end of the function. Note this still leaves\na theoretical race window, but it avoids the issue when manually\nrmmod-ing the charger chip driver during development.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35986",
"url": "https://www.suse.com/security/cve/CVE-2024-35986"
},
{
"category": "external",
"summary": "SUSE Bug 1224562 for CVE-2024-35986",
"url": "https://bugzilla.suse.com/1224562"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35986"
},
{
"cve": "CVE-2024-35989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: Fix oops during rmmod on single-CPU platforms\n\nDuring the removal of the idxd driver, registered offline callback is\ninvoked as part of the clean up process. However, on systems with only\none CPU online, no valid target is available to migrate the\nperf context, resulting in a kernel oops:\n\n BUG: unable to handle page fault for address: 000000000002a2b8\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0002) - not-present page\n PGD 1470e1067 P4D 0\n Oops: 0002 [#1] PREEMPT SMP NOPTI\n CPU: 0 PID: 20 Comm: cpuhp/0 Not tainted 6.8.0-rc6-dsa+ #57\n Hardware name: Intel Corporation AvenueCity/AvenueCity, BIOS BHSDCRB1.86B.2492.D03.2307181620 07/18/2023\n RIP: 0010:mutex_lock+0x2e/0x50\n ...\n Call Trace:\n \u003cTASK\u003e\n __die+0x24/0x70\n page_fault_oops+0x82/0x160\n do_user_addr_fault+0x65/0x6b0\n __pfx___rdmsr_safe_on_cpu+0x10/0x10\n exc_page_fault+0x7d/0x170\n asm_exc_page_fault+0x26/0x30\n mutex_lock+0x2e/0x50\n mutex_lock+0x1e/0x50\n perf_pmu_migrate_context+0x87/0x1f0\n perf_event_cpu_offline+0x76/0x90 [idxd]\n cpuhp_invoke_callback+0xa2/0x4f0\n __pfx_perf_event_cpu_offline+0x10/0x10 [idxd]\n cpuhp_thread_fun+0x98/0x150\n smpboot_thread_fn+0x27/0x260\n smpboot_thread_fn+0x1af/0x260\n __pfx_smpboot_thread_fn+0x10/0x10\n kthread+0x103/0x140\n __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x50\n __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003cTASK\u003e\n\nFix the issue by preventing the migration of the perf context to an\ninvalid target.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35989",
"url": "https://www.suse.com/security/cve/CVE-2024-35989"
},
{
"category": "external",
"summary": "SUSE Bug 1224558 for CVE-2024-35989",
"url": "https://bugzilla.suse.com/1224558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35989"
},
{
"cve": "CVE-2024-35990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma: xilinx_dpdma: Fix locking\n\nThere are several places where either chan-\u003elock or chan-\u003evchan.lock was\nnot held. Add appropriate locking. This fixes lockdep warnings like\n\n[ 31.077578] ------------[ cut here ]------------\n[ 31.077831] WARNING: CPU: 2 PID: 40 at drivers/dma/xilinx/xilinx_dpdma.c:834 xilinx_dpdma_chan_queue_transfer+0x274/0x5e0\n[ 31.077953] Modules linked in:\n[ 31.078019] CPU: 2 PID: 40 Comm: kworker/u12:1 Not tainted 6.6.20+ #98\n[ 31.078102] Hardware name: xlnx,zynqmp (DT)\n[ 31.078169] Workqueue: events_unbound deferred_probe_work_func\n[ 31.078272] pstate: 600000c5 (nZCv daIF -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 31.078377] pc : xilinx_dpdma_chan_queue_transfer+0x274/0x5e0\n[ 31.078473] lr : xilinx_dpdma_chan_queue_transfer+0x270/0x5e0\n[ 31.078550] sp : ffffffc083bb2e10\n[ 31.078590] x29: ffffffc083bb2e10 x28: 0000000000000000 x27: ffffff880165a168\n[ 31.078754] x26: ffffff880164e920 x25: ffffff880164eab8 x24: ffffff880164d480\n[ 31.078920] x23: ffffff880165a148 x22: ffffff880164e988 x21: 0000000000000000\n[ 31.079132] x20: ffffffc082aa3000 x19: ffffff880164e880 x18: 0000000000000000\n[ 31.079295] x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n[ 31.079453] x14: 0000000000000000 x13: ffffff8802263dc0 x12: 0000000000000001\n[ 31.079613] x11: 0001ffc083bb2e34 x10: 0001ff880164e98f x9 : 0001ffc082aa3def\n[ 31.079824] x8 : 0001ffc082aa3dec x7 : 0000000000000000 x6 : 0000000000000516\n[ 31.079982] x5 : ffffffc7f8d43000 x4 : ffffff88003c9c40 x3 : ffffffffffffffff\n[ 31.080147] x2 : ffffffc7f8d43000 x1 : 00000000000000c0 x0 : 0000000000000000\n[ 31.080307] Call trace:\n[ 31.080340] xilinx_dpdma_chan_queue_transfer+0x274/0x5e0\n[ 31.080518] xilinx_dpdma_issue_pending+0x11c/0x120\n[ 31.080595] zynqmp_disp_layer_update+0x180/0x3ac\n[ 31.080712] zynqmp_dpsub_plane_atomic_update+0x11c/0x21c\n[ 31.080825] drm_atomic_helper_commit_planes+0x20c/0x684\n[ 31.080951] drm_atomic_helper_commit_tail+0x5c/0xb0\n[ 31.081139] commit_tail+0x234/0x294\n[ 31.081246] drm_atomic_helper_commit+0x1f8/0x210\n[ 31.081363] drm_atomic_commit+0x100/0x140\n[ 31.081477] drm_client_modeset_commit_atomic+0x318/0x384\n[ 31.081634] drm_client_modeset_commit_locked+0x8c/0x24c\n[ 31.081725] drm_client_modeset_commit+0x34/0x5c\n[ 31.081812] __drm_fb_helper_restore_fbdev_mode_unlocked+0x104/0x168\n[ 31.081899] drm_fb_helper_set_par+0x50/0x70\n[ 31.081971] fbcon_init+0x538/0xc48\n[ 31.082047] visual_init+0x16c/0x23c\n[ 31.082207] do_bind_con_driver.isra.0+0x2d0/0x634\n[ 31.082320] do_take_over_console+0x24c/0x33c\n[ 31.082429] do_fbcon_takeover+0xbc/0x1b0\n[ 31.082503] fbcon_fb_registered+0x2d0/0x34c\n[ 31.082663] register_framebuffer+0x27c/0x38c\n[ 31.082767] __drm_fb_helper_initial_config_and_unlock+0x5c0/0x91c\n[ 31.082939] drm_fb_helper_initial_config+0x50/0x74\n[ 31.083012] drm_fbdev_dma_client_hotplug+0xb8/0x108\n[ 31.083115] drm_client_register+0xa0/0xf4\n[ 31.083195] drm_fbdev_dma_setup+0xb0/0x1cc\n[ 31.083293] zynqmp_dpsub_drm_init+0x45c/0x4e0\n[ 31.083431] zynqmp_dpsub_probe+0x444/0x5e0\n[ 31.083616] platform_probe+0x8c/0x13c\n[ 31.083713] really_probe+0x258/0x59c\n[ 31.083793] __driver_probe_device+0xc4/0x224\n[ 31.083878] driver_probe_device+0x70/0x1c0\n[ 31.083961] __device_attach_driver+0x108/0x1e0\n[ 31.084052] bus_for_each_drv+0x9c/0x100\n[ 31.084125] __device_attach+0x100/0x298\n[ 31.084207] device_initial_probe+0x14/0x20\n[ 31.084292] bus_probe_device+0xd8/0xdc\n[ 31.084368] deferred_probe_work_func+0x11c/0x180\n[ 31.084451] process_one_work+0x3ac/0x988\n[ 31.084643] worker_thread+0x398/0x694\n[ 31.084752] kthread+0x1bc/0x1c0\n[ 31.084848] ret_from_fork+0x10/0x20\n[ 31.084932] irq event stamp: 64549\n[ 31.084970] hardirqs last enabled at (64548): [\u003cffffffc081adf35c\u003e] _raw_spin_unlock_irqrestore+0x80/0x90\n[ 31.085157]\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35990",
"url": "https://www.suse.com/security/cve/CVE-2024-35990"
},
{
"category": "external",
"summary": "SUSE Bug 1224559 for CVE-2024-35990",
"url": "https://bugzilla.suse.com/1224559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35990"
},
{
"cve": "CVE-2024-35992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: marvell: a3700-comphy: Fix out of bounds read\n\nThere is an out of bounds read access of \u0027gbe_phy_init_fix[fix_idx].addr\u0027\nevery iteration after \u0027fix_idx\u0027 reaches \u0027ARRAY_SIZE(gbe_phy_init_fix)\u0027.\n\nMake sure \u0027gbe_phy_init[addr]\u0027 is used when all elements of\n\u0027gbe_phy_init_fix\u0027 array are handled.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35992",
"url": "https://www.suse.com/security/cve/CVE-2024-35992"
},
{
"category": "external",
"summary": "SUSE Bug 1224555 for CVE-2024-35992",
"url": "https://bugzilla.suse.com/1224555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35992"
},
{
"cve": "CVE-2024-35995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: CPPC: Use access_width over bit_width for system memory accesses\n\nTo align with ACPI 6.3+, since bit_width can be any 8-bit value, it\ncannot be depended on to be always on a clean 8b boundary. This was\nuncovered on the Cobalt 100 platform.\n\nSError Interrupt on CPU26, code 0xbe000011 -- SError\n CPU: 26 PID: 1510 Comm: systemd-udevd Not tainted 5.15.2.1-13 #1\n Hardware name: MICROSOFT CORPORATION, BIOS MICROSOFT CORPORATION\n pstate: 62400009 (nZCv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--)\n pc : cppc_get_perf_caps+0xec/0x410\n lr : cppc_get_perf_caps+0xe8/0x410\n sp : ffff8000155ab730\n x29: ffff8000155ab730 x28: ffff0080139d0038 x27: ffff0080139d0078\n x26: 0000000000000000 x25: ffff0080139d0058 x24: 00000000ffffffff\n x23: ffff0080139d0298 x22: ffff0080139d0278 x21: 0000000000000000\n x20: ffff00802b251910 x19: ffff0080139d0000 x18: ffffffffffffffff\n x17: 0000000000000000 x16: ffffdc7e111bad04 x15: ffff00802b251008\n x14: ffffffffffffffff x13: ffff013f1fd63300 x12: 0000000000000006\n x11: ffffdc7e128f4420 x10: 0000000000000000 x9 : ffffdc7e111badec\n x8 : ffff00802b251980 x7 : 0000000000000000 x6 : ffff0080139d0028\n x5 : 0000000000000000 x4 : ffff0080139d0018 x3 : 00000000ffffffff\n x2 : 0000000000000008 x1 : ffff8000155ab7a0 x0 : 0000000000000000\n Kernel panic - not syncing: Asynchronous SError Interrupt\n CPU: 26 PID: 1510 Comm: systemd-udevd Not tainted\n5.15.2.1-13 #1\n Hardware name: MICROSOFT CORPORATION, BIOS MICROSOFT CORPORATION\n Call trace:\n dump_backtrace+0x0/0x1e0\n show_stack+0x24/0x30\n dump_stack_lvl+0x8c/0xb8\n dump_stack+0x18/0x34\n panic+0x16c/0x384\n add_taint+0x0/0xc0\n arm64_serror_panic+0x7c/0x90\n arm64_is_fatal_ras_serror+0x34/0xa4\n do_serror+0x50/0x6c\n el1h_64_error_handler+0x40/0x74\n el1h_64_error+0x7c/0x80\n cppc_get_perf_caps+0xec/0x410\n cppc_cpufreq_cpu_init+0x74/0x400 [cppc_cpufreq]\n cpufreq_online+0x2dc/0xa30\n cpufreq_add_dev+0xc0/0xd4\n subsys_interface_register+0x134/0x14c\n cpufreq_register_driver+0x1b0/0x354\n cppc_cpufreq_init+0x1a8/0x1000 [cppc_cpufreq]\n do_one_initcall+0x50/0x250\n do_init_module+0x60/0x27c\n load_module+0x2300/0x2570\n __do_sys_finit_module+0xa8/0x114\n __arm64_sys_finit_module+0x2c/0x3c\n invoke_syscall+0x78/0x100\n el0_svc_common.constprop.0+0x180/0x1a0\n do_el0_svc+0x84/0xa0\n el0_svc+0x2c/0xc0\n el0t_64_sync_handler+0xa4/0x12c\n el0t_64_sync+0x1a4/0x1a8\n\nInstead, use access_width to determine the size and use the offset and\nwidth to shift and mask the bits to read/write out. Make sure to add a\ncheck for system memory since pcc redefines the access_width to\nsubspace id.\n\nIf access_width is not set, then fall back to using bit_width.\n\n[ rjw: Subject and changelog edits, comment adjustments ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35995",
"url": "https://www.suse.com/security/cve/CVE-2024-35995"
},
{
"category": "external",
"summary": "SUSE Bug 1224557 for CVE-2024-35995",
"url": "https://bugzilla.suse.com/1224557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35995"
},
{
"cve": "CVE-2024-35997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up\n\nThe flag I2C_HID_READ_PENDING is used to serialize I2C operations.\nHowever, this is not necessary, because I2C core already has its own\nlocking for that.\n\nMore importantly, this flag can cause a lock-up: if the flag is set in\ni2c_hid_xfer() and an interrupt happens, the interrupt handler\n(i2c_hid_irq) will check this flag and return immediately without doing\nanything, then the interrupt handler will be invoked again in an\ninfinite loop.\n\nSince interrupt handler is an RT task, it takes over the CPU and the\nflag-clearing task never gets scheduled, thus we have a lock-up.\n\nDelete this unnecessary flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35997",
"url": "https://www.suse.com/security/cve/CVE-2024-35997"
},
{
"category": "external",
"summary": "SUSE Bug 1224552 for CVE-2024-35997",
"url": "https://bugzilla.suse.com/1224552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-35997"
},
{
"cve": "CVE-2024-36002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndpll: fix dpll_pin_on_pin_register() for multiple parent pins\n\nIn scenario where pin is registered with multiple parent pins via\ndpll_pin_on_pin_register(..), all belonging to the same dpll device.\nA second call to dpll_pin_on_pin_unregister(..) would cause a call trace,\nas it tries to use already released registration resources (due to fix\nintroduced in b446631f355e). In this scenario pin was registered twice,\nso resources are not yet expected to be release until each registered\npin/pin pair is unregistered.\n\nCurrently, the following crash/call trace is produced when ice driver is\nremoved on the system with installed E810T NIC which includes dpll device:\n\nWARNING: CPU: 51 PID: 9155 at drivers/dpll/dpll_core.c:809 dpll_pin_ops+0x20/0x30\nRIP: 0010:dpll_pin_ops+0x20/0x30\nCall Trace:\n ? __warn+0x7f/0x130\n ? dpll_pin_ops+0x20/0x30\n dpll_msg_add_pin_freq+0x37/0x1d0\n dpll_cmd_pin_get_one+0x1c0/0x400\n ? __nlmsg_put+0x63/0x80\n dpll_pin_event_send+0x93/0x140\n dpll_pin_on_pin_unregister+0x3f/0x100\n ice_dpll_deinit_pins+0xa1/0x230 [ice]\n ice_remove+0xf1/0x210 [ice]\n\nFix by adding a parent pointer as a cookie when creating a registration,\nalso when searching for it. For the regular pins pass NULL, this allows to\ncreate separated registration for each parent the pin is registered with.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36002",
"url": "https://www.suse.com/security/cve/CVE-2024-36002"
},
{
"category": "external",
"summary": "SUSE Bug 1224546 for CVE-2024-36002",
"url": "https://bugzilla.suse.com/1224546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36002"
},
{
"cve": "CVE-2024-36009",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36009"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nax25: Fix netdev refcount issue\n\nThe dev_tracker is added to ax25_cb in ax25_bind(). When the\nax25 device is detaching, the dev_tracker of ax25_cb should be\ndeallocated in ax25_kill_by_device() instead of the dev_tracker\nof ax25_dev. The log reported by ref_tracker is shown below:\n\n[ 80.884935] ref_tracker: reference already released.\n[ 80.885150] ref_tracker: allocated in:\n[ 80.885349] ax25_dev_device_up+0x105/0x540\n[ 80.885730] ax25_device_event+0xa4/0x420\n[ 80.885730] notifier_call_chain+0xc9/0x1e0\n[ 80.885730] __dev_notify_flags+0x138/0x280\n[ 80.885730] dev_change_flags+0xd7/0x180\n[ 80.885730] dev_ifsioc+0x6a9/0xa30\n[ 80.885730] dev_ioctl+0x4d8/0xd90\n[ 80.885730] sock_do_ioctl+0x1c2/0x2d0\n[ 80.885730] sock_ioctl+0x38b/0x4f0\n[ 80.885730] __se_sys_ioctl+0xad/0xf0\n[ 80.885730] do_syscall_64+0xc4/0x1b0\n[ 80.885730] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n[ 80.885730] ref_tracker: freed in:\n[ 80.885730] ax25_device_event+0x272/0x420\n[ 80.885730] notifier_call_chain+0xc9/0x1e0\n[ 80.885730] dev_close_many+0x272/0x370\n[ 80.885730] unregister_netdevice_many_notify+0x3b5/0x1180\n[ 80.885730] unregister_netdev+0xcf/0x120\n[ 80.885730] sixpack_close+0x11f/0x1b0\n[ 80.885730] tty_ldisc_kill+0xcb/0x190\n[ 80.885730] tty_ldisc_hangup+0x338/0x3d0\n[ 80.885730] __tty_hangup+0x504/0x740\n[ 80.885730] tty_release+0x46e/0xd80\n[ 80.885730] __fput+0x37f/0x770\n[ 80.885730] __x64_sys_close+0x7b/0xb0\n[ 80.885730] do_syscall_64+0xc4/0x1b0\n[ 80.885730] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n[ 80.893739] ------------[ cut here ]------------\n[ 80.894030] WARNING: CPU: 2 PID: 140 at lib/ref_tracker.c:255 ref_tracker_free+0x47b/0x6b0\n[ 80.894297] Modules linked in:\n[ 80.894929] CPU: 2 PID: 140 Comm: ax25_conn_rel_6 Not tainted 6.9.0-rc4-g8cd26fd90c1a #11\n[ 80.895190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qem4\n[ 80.895514] RIP: 0010:ref_tracker_free+0x47b/0x6b0\n[ 80.895808] Code: 83 c5 18 4c 89 eb 48 c1 eb 03 8a 04 13 84 c0 0f 85 df 01 00 00 41 83 7d 00 00 75 4b 4c 89 ff 9\n[ 80.896171] RSP: 0018:ffff888009edf8c0 EFLAGS: 00000286\n[ 80.896339] RAX: 1ffff1100141ac00 RBX: 1ffff1100149463b RCX: dffffc0000000000\n[ 80.896502] RDX: 0000000000000001 RSI: 0000000000000246 RDI: ffff88800a0d6518\n[ 80.896925] RBP: ffff888009edf9b0 R08: ffff88806d3288d3 R09: 1ffff1100da6511a\n[ 80.897212] R10: dffffc0000000000 R11: ffffed100da6511b R12: ffff88800a4a31d4\n[ 80.897859] R13: ffff88800a4a31d8 R14: dffffc0000000000 R15: ffff88800a0d6518\n[ 80.898279] FS: 00007fd88b7fe700(0000) GS:ffff88806d300000(0000) knlGS:0000000000000000\n[ 80.899436] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 80.900181] CR2: 00007fd88c001d48 CR3: 000000000993e000 CR4: 00000000000006f0\n...\n[ 80.935774] ref_tracker: sp%d@000000000bb9df3d has 1/1 users at\n[ 80.935774] ax25_bind+0x424/0x4e0\n[ 80.935774] __sys_bind+0x1d9/0x270\n[ 80.935774] __x64_sys_bind+0x75/0x80\n[ 80.935774] do_syscall_64+0xc4/0x1b0\n[ 80.935774] entry_SYSCALL_64_after_hwframe+0x67/0x6f\n\nChange ax25_dev-\u003edev_tracker to the dev_tracker of ax25_cb\nin order to mitigate the bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36009",
"url": "https://www.suse.com/security/cve/CVE-2024-36009"
},
{
"category": "external",
"summary": "SUSE Bug 1224542 for CVE-2024-36009",
"url": "https://bugzilla.suse.com/1224542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36009"
},
{
"cve": "CVE-2024-36011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: HCI: Fix potential null-ptr-deref\n\nFix potential null-ptr-deref in hci_le_big_sync_established_evt().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36011",
"url": "https://www.suse.com/security/cve/CVE-2024-36011"
},
{
"category": "external",
"summary": "SUSE Bug 1225579 for CVE-2024-36011",
"url": "https://bugzilla.suse.com/1225579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36011"
},
{
"cve": "CVE-2024-36012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: msft: fix slab-use-after-free in msft_do_close()\n\nTying the msft-\u003edata lifetime to hdev by freeing it in\nhci_release_dev() to fix the following case:\n\n[use]\nmsft_do_close()\n msft = hdev-\u003emsft_data;\n if (!msft) ...(1) \u003c- passed.\n return;\n mutex_lock(\u0026msft-\u003efilter_lock); ...(4) \u003c- used after freed.\n\n[free]\nmsft_unregister()\n msft = hdev-\u003emsft_data;\n hdev-\u003emsft_data = NULL; ...(2)\n kfree(msft); ...(3) \u003c- msft is freed.\n\n==================================================================\nBUG: KASAN: slab-use-after-free in __mutex_lock_common\nkernel/locking/mutex.c:587 [inline]\nBUG: KASAN: slab-use-after-free in __mutex_lock+0x8f/0xc30\nkernel/locking/mutex.c:752\nRead of size 8 at addr ffff888106cbbca8 by task kworker/u5:2/309",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36012",
"url": "https://www.suse.com/security/cve/CVE-2024-36012"
},
{
"category": "external",
"summary": "SUSE Bug 1225502 for CVE-2024-36012",
"url": "https://bugzilla.suse.com/1225502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36012"
},
{
"cve": "CVE-2024-36014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36014"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/arm/malidp: fix a possible null pointer dereference\n\nIn malidp_mw_connector_reset, new memory is allocated with kzalloc, but\nno check is performed. In order to prevent null pointer dereferencing,\nensure that mw_state is checked before calling\n__drm_atomic_helper_connector_reset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36014",
"url": "https://www.suse.com/security/cve/CVE-2024-36014"
},
{
"category": "external",
"summary": "SUSE Bug 1225593 for CVE-2024-36014",
"url": "https://bugzilla.suse.com/1225593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36014"
},
{
"cve": "CVE-2024-36018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36018"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/uvmm: fix addr/range calcs for remap operations\n\ndEQP-VK.sparse_resources.image_rebind.2d_array.r64i.128_128_8\nwas causing a remap operation like the below.\n\nop_remap: prev: 0000003fffed0000 00000000000f0000 00000000a5abd18a 0000000000000000\nop_remap: next:\nop_remap: unmap: 0000003fffed0000 0000000000100000 0\nop_map: map: 0000003ffffc0000 0000000000010000 000000005b1ba33c 00000000000e0000\n\nThis was resulting in an unmap operation from 0x3fffed0000+0xf0000, 0x100000\nwhich was corrupting the pagetables and oopsing the kernel.\n\nFixes the prev + unmap range calcs to use start/end and map back to addr/range.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36018",
"url": "https://www.suse.com/security/cve/CVE-2024-36018"
},
{
"category": "external",
"summary": "SUSE Bug 1225694 for CVE-2024-36018",
"url": "https://bugzilla.suse.com/1225694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36018"
},
{
"cve": "CVE-2024-36019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap: maple: Fix cache corruption in regcache_maple_drop()\n\nWhen keeping the upper end of a cache block entry, the entry[] array\nmust be indexed by the offset from the base register of the block,\ni.e. max - mas.index.\n\nThe code was indexing entry[] by only the register address, leading\nto an out-of-bounds access that copied some part of the kernel\nmemory over the cache contents.\n\nThis bug was not detected by the regmap KUnit test because it only\ntests with a block of registers starting at 0, so mas.index == 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36019",
"url": "https://www.suse.com/security/cve/CVE-2024-36019"
},
{
"category": "external",
"summary": "SUSE Bug 1225695 for CVE-2024-36019",
"url": "https://bugzilla.suse.com/1225695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36019"
},
{
"cve": "CVE-2024-36020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: fix vf may be used uninitialized in this function warning\n\nTo fix the regression introduced by commit 52424f974bc5, which causes\nservers hang in very hard to reproduce conditions with resets races.\nUsing two sources for the information is the root cause.\nIn this function before the fix bumping v didn\u0027t mean bumping vf\npointer. But the code used this variables interchangeably, so stale vf\ncould point to different/not intended vf.\n\nRemove redundant \"v\" variable and iterate via single VF pointer across\nwhole function instead to guarantee VF pointer validity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36020",
"url": "https://www.suse.com/security/cve/CVE-2024-36020"
},
{
"category": "external",
"summary": "SUSE Bug 1225698 for CVE-2024-36020",
"url": "https://bugzilla.suse.com/1225698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36020"
},
{
"cve": "CVE-2024-36021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when devlink reload during pf initialization\n\nThe devlink reload process will access the hardware resources,\nbut the register operation is done before the hardware is initialized.\nSo, processing the devlink reload during initialization may lead to kernel\ncrash. This patch fixes this by taking devl_lock during initialization.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36021",
"url": "https://www.suse.com/security/cve/CVE-2024-36021"
},
{
"category": "external",
"summary": "SUSE Bug 1225699 for CVE-2024-36021",
"url": "https://bugzilla.suse.com/1225699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36021"
},
{
"cve": "CVE-2024-36025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix off by one in qla_edif_app_getstats()\n\nThe app_reply-\u003eelem[] array is allocated earlier in this function and it\nhas app_req.num_ports elements. Thus this \u003e comparison needs to be \u003e= to\nprevent memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36025",
"url": "https://www.suse.com/security/cve/CVE-2024-36025"
},
{
"category": "external",
"summary": "SUSE Bug 1225704 for CVE-2024-36025",
"url": "https://bugzilla.suse.com/1225704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36025"
},
{
"cve": "CVE-2024-36026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11\n\nWhile doing multiple S4 stress tests, GC/RLC/PMFW get into\nan invalid state resulting into hard hangs.\n\nAdding a GFX reset as workaround just before sending the\nMP1_UNLOAD message avoids this failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36026",
"url": "https://www.suse.com/security/cve/CVE-2024-36026"
},
{
"category": "external",
"summary": "SUSE Bug 1225705 for CVE-2024-36026",
"url": "https://bugzilla.suse.com/1225705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36026"
},
{
"cve": "CVE-2024-36029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: sdhci-msm: pervent access to suspended controller\n\nGeneric sdhci code registers LED device and uses host-\u003eruntime_suspended\nflag to protect access to it. The sdhci-msm driver doesn\u0027t set this flag,\nwhich causes a crash when LED is accessed while controller is runtime\nsuspended. Fix this by setting the flag correctly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36029",
"url": "https://www.suse.com/security/cve/CVE-2024-36029"
},
{
"category": "external",
"summary": "SUSE Bug 1225708 for CVE-2024-36029",
"url": "https://bugzilla.suse.com/1225708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36029"
},
{
"cve": "CVE-2024-36032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36032"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix info leak when fetching fw build id\n\nAdd the missing sanity checks and move the 255-byte build-id buffer off\nthe stack to avoid leaking stack data through debugfs in case the\nbuild-info reply is malformed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36032",
"url": "https://www.suse.com/security/cve/CVE-2024-36032"
},
{
"category": "external",
"summary": "SUSE Bug 1225720 for CVE-2024-36032",
"url": "https://bugzilla.suse.com/1225720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-36032"
},
{
"cve": "CVE-2024-36476",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36476"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible\n\nMove the declaration of the \u0027ib_sge list\u0027 variable outside the\n\u0027always_invalidate\u0027 block to ensure it remains accessible for use\nthroughout the function.\n\nPreviously, \u0027ib_sge list\u0027 was declared within the \u0027always_invalidate\u0027\nblock, limiting its accessibility, then caused a\n\u0027BUG: kernel NULL pointer dereference\u0027[1].\n ? __die_body.cold+0x19/0x27\n ? page_fault_oops+0x15a/0x2d0\n ? search_module_extables+0x19/0x60\n ? search_bpf_extables+0x5f/0x80\n ? exc_page_fault+0x7e/0x180\n ? asm_exc_page_fault+0x26/0x30\n ? memcpy_orig+0xd5/0x140\n rxe_mr_copy+0x1c3/0x200 [rdma_rxe]\n ? rxe_pool_get_index+0x4b/0x80 [rdma_rxe]\n copy_data+0xa5/0x230 [rdma_rxe]\n rxe_requester+0xd9b/0xf70 [rdma_rxe]\n ? finish_task_switch.isra.0+0x99/0x2e0\n rxe_sender+0x13/0x40 [rdma_rxe]\n do_task+0x68/0x1e0 [rdma_rxe]\n process_one_work+0x177/0x330\n worker_thread+0x252/0x390\n ? __pfx_worker_thread+0x10/0x10\n\nThis change ensures the variable is available for subsequent operations\nthat require it.\n\n[1] https://lore.kernel.org/linux-rdma/6a1f3e8f-deb0-49f9-bc69-a9b03ecfcda7@fujitsu.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36476",
"url": "https://www.suse.com/security/cve/CVE-2024-36476"
},
{
"category": "external",
"summary": "SUSE Bug 1235902 for CVE-2024-36476",
"url": "https://bugzilla.suse.com/1235902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36476"
},
{
"cve": "CVE-2024-36880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: add missing firmware sanity checks\n\nAdd the missing sanity checks when parsing the firmware files before\ndownloading them to avoid accessing and corrupting memory beyond the\nvmalloced buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36880",
"url": "https://www.suse.com/security/cve/CVE-2024-36880"
},
{
"category": "external",
"summary": "SUSE Bug 1225722 for CVE-2024-36880",
"url": "https://bugzilla.suse.com/1225722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36880"
},
{
"cve": "CVE-2024-36885",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36885"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36885",
"url": "https://www.suse.com/security/cve/CVE-2024-36885"
},
{
"category": "external",
"summary": "SUSE Bug 1225728 for CVE-2024-36885",
"url": "https://bugzilla.suse.com/1225728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36885"
},
{
"cve": "CVE-2024-36891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36891"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmaple_tree: fix mas_empty_area_rev() null pointer dereference\n\nCurrently the code calls mas_start() followed by mas_data_end() if the\nmaple state is MA_START, but mas_start() may return with the maple state\nnode == NULL. This will lead to a null pointer dereference when checking\ninformation in the NULL node, which is done in mas_data_end().\n\nAvoid setting the offset if there is no node by waiting until after the\nmaple state is checked for an empty or single entry state.\n\nA user could trigger the events to cause a kernel oops by unmapping all\nvmas to produce an empty maple tree, then mapping a vma that would cause\nthe scenario described above.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36891",
"url": "https://www.suse.com/security/cve/CVE-2024-36891"
},
{
"category": "external",
"summary": "SUSE Bug 1225710 for CVE-2024-36891",
"url": "https://bugzilla.suse.com/1225710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36891"
},
{
"cve": "CVE-2024-36893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tcpm: Check for port partner validity before consuming it\n\ntypec_register_partner() does not guarantee partner registration\nto always succeed. In the event of failure, port-\u003epartner is set\nto the error value or NULL. Given that port-\u003epartner validity is\nnot checked, this results in the following crash:\n\nUnable to handle kernel NULL pointer dereference at virtual address xx\n pc : run_state_machine+0x1bc8/0x1c08\n lr : run_state_machine+0x1b90/0x1c08\n..\n Call trace:\n run_state_machine+0x1bc8/0x1c08\n tcpm_state_machine_work+0x94/0xe4\n kthread_worker_fn+0x118/0x328\n kthread+0x1d0/0x23c\n ret_from_fork+0x10/0x20\n\nTo prevent the crash, check for port-\u003epartner validity before\nderefencing it in all the call sites.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36893",
"url": "https://www.suse.com/security/cve/CVE-2024-36893"
},
{
"category": "external",
"summary": "SUSE Bug 1225748 for CVE-2024-36893",
"url": "https://bugzilla.suse.com/1225748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36893"
},
{
"cve": "CVE-2024-36894",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36894"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete\n\nFFS based applications can utilize the aio_cancel() callback to dequeue\npending USB requests submitted to the UDC. There is a scenario where the\nFFS application issues an AIO cancel call, while the UDC is handling a\nsoft disconnect. For a DWC3 based implementation, the callstack looks\nlike the following:\n\n DWC3 Gadget FFS Application\ndwc3_gadget_soft_disconnect() ...\n --\u003e dwc3_stop_active_transfers()\n --\u003e dwc3_gadget_giveback(-ESHUTDOWN)\n --\u003e ffs_epfile_async_io_complete() ffs_aio_cancel()\n --\u003e usb_ep_free_request() --\u003e usb_ep_dequeue()\n\nThere is currently no locking implemented between the AIO completion\nhandler and AIO cancel, so the issue occurs if the completion routine is\nrunning in parallel to an AIO cancel call coming from the FFS application.\nAs the completion call frees the USB request (io_data-\u003ereq) the FFS\napplication is also referencing it for the usb_ep_dequeue() call. This can\nlead to accessing a stale/hanging pointer.\n\ncommit b566d38857fc (\"usb: gadget: f_fs: use io_data-\u003estatus consistently\")\nrelocated the usb_ep_free_request() into ffs_epfile_async_io_complete().\nHowever, in order to properly implement locking to mitigate this issue, the\nspinlock can\u0027t be added to ffs_epfile_async_io_complete(), as\nusb_ep_dequeue() (if successfully dequeuing a USB request) will call the\nfunction driver\u0027s completion handler in the same context. Hence, leading\ninto a deadlock.\n\nFix this issue by moving the usb_ep_free_request() back to\nffs_user_copy_worker(), and ensuring that it explicitly sets io_data-\u003ereq\nto NULL after freeing it within the ffs-\u003eeps_lock. This resolves the race\ncondition above, as the ffs_aio_cancel() routine will not continue\nattempting to dequeue a request that has already been freed, or the\nffs_user_copy_work() not freeing the USB request until the AIO cancel is\ndone referencing it.\n\nThis fix depends on\n commit b566d38857fc (\"usb: gadget: f_fs: use io_data-\u003estatus\n consistently\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36894",
"url": "https://www.suse.com/security/cve/CVE-2024-36894"
},
{
"category": "external",
"summary": "SUSE Bug 1225749 for CVE-2024-36894",
"url": "https://bugzilla.suse.com/1225749"
},
{
"category": "external",
"summary": "SUSE Bug 1226139 for CVE-2024-36894",
"url": "https://bugzilla.suse.com/1226139"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-36894"
},
{
"cve": "CVE-2024-36895",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36895"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: uvc: use correct buffer size when parsing configfs lists\n\nThis commit fixes uvc gadget support on 32-bit platforms.\n\nCommit 0df28607c5cb (\"usb: gadget: uvc: Generalise helper functions for\nreuse\") introduced a helper function __uvcg_iter_item_entries() to aid\nwith parsing lists of items on configfs attributes stores. This function\nis a generalization of another very similar function, which used a\nstack-allocated temporary buffer of fixed size for each item in the list\nand used the sizeof() operator to check for potential buffer overruns.\nThe new function was changed to allocate the now variably sized temp\nbuffer on heap, but wasn\u0027t properly updated to also check for max buffer\nsize using the computed size instead of sizeof() operator.\n\nAs a result, the maximum item size was 7 (plus null terminator) on\n64-bit platforms, and 3 on 32-bit ones. While 7 is accidentally just\nbarely enough, 3 is definitely too small for some of UVC configfs\nattributes. For example, dwFrameInteval, specified in 100ns units,\nusually has 6-digit item values, e.g. 166666 for 60fps.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36895",
"url": "https://www.suse.com/security/cve/CVE-2024-36895"
},
{
"category": "external",
"summary": "SUSE Bug 1225750 for CVE-2024-36895",
"url": "https://bugzilla.suse.com/1225750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-36895"
},
{
"cve": "CVE-2024-36896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: core: Fix access violation during port device removal\n\nTesting with KASAN and syzkaller revealed a bug in port.c:disable_store():\nusb_hub_to_struct_hub() can return NULL if the hub that the port belongs to\nis concurrently removed, but the function does not check for this\npossibility before dereferencing the returned value.\n\nIt turns out that the first dereference is unnecessary, since hub-\u003eintfdev\nis the parent of the port device, so it can be changed easily. Adding a\ncheck for hub == NULL prevents further problems.\n\nThe same bug exists in the disable_show() routine, and it can be fixed the\nsame way.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36896",
"url": "https://www.suse.com/security/cve/CVE-2024-36896"
},
{
"category": "external",
"summary": "SUSE Bug 1225734 for CVE-2024-36896",
"url": "https://bugzilla.suse.com/1225734"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36896"
},
{
"cve": "CVE-2024-36897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Atom Integrated System Info v2_2 for DCN35\n\nNew request from KMD/VBIOS in order to support new UMA carveout\nmodel. This fixes a null dereference from accessing\nCtx-\u003edc_bios-\u003eintegrated_info while it was NULL.\n\nDAL parses through the BIOS and extracts the necessary\nintegrated_info but was missing a case for the new BIOS\nversion 2.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36897",
"url": "https://www.suse.com/security/cve/CVE-2024-36897"
},
{
"category": "external",
"summary": "SUSE Bug 1225735 for CVE-2024-36897",
"url": "https://bugzilla.suse.com/1225735"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36897"
},
{
"cve": "CVE-2024-36898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36898"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: cdev: fix uninitialised kfifo\n\nIf a line is requested with debounce, and that results in debouncing\nin software, and the line is subsequently reconfigured to enable edge\ndetection then the allocation of the kfifo to contain edge events is\noverlooked. This results in events being written to and read from an\nuninitialised kfifo. Read events are returned to userspace.\n\nInitialise the kfifo in the case where the software debounce is\nalready active.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36898",
"url": "https://www.suse.com/security/cve/CVE-2024-36898"
},
{
"category": "external",
"summary": "SUSE Bug 1225736 for CVE-2024-36898",
"url": "https://bugzilla.suse.com/1225736"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36898"
},
{
"cve": "CVE-2024-36906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nARM: 9381/1: kasan: clear stale stack poison\n\nWe found below OOB crash:\n\n[ 33.452494] ==================================================================\n[ 33.453513] BUG: KASAN: stack-out-of-bounds in refresh_cpu_vm_stats.constprop.0+0xcc/0x2ec\n[ 33.454660] Write of size 164 at addr c1d03d30 by task swapper/0/0\n[ 33.455515]\n[ 33.455767] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G O 6.1.25-mainline #1\n[ 33.456880] Hardware name: Generic DT based system\n[ 33.457555] unwind_backtrace from show_stack+0x18/0x1c\n[ 33.458326] show_stack from dump_stack_lvl+0x40/0x4c\n[ 33.459072] dump_stack_lvl from print_report+0x158/0x4a4\n[ 33.459863] print_report from kasan_report+0x9c/0x148\n[ 33.460616] kasan_report from kasan_check_range+0x94/0x1a0\n[ 33.461424] kasan_check_range from memset+0x20/0x3c\n[ 33.462157] memset from refresh_cpu_vm_stats.constprop.0+0xcc/0x2ec\n[ 33.463064] refresh_cpu_vm_stats.constprop.0 from tick_nohz_idle_stop_tick+0x180/0x53c\n[ 33.464181] tick_nohz_idle_stop_tick from do_idle+0x264/0x354\n[ 33.465029] do_idle from cpu_startup_entry+0x20/0x24\n[ 33.465769] cpu_startup_entry from rest_init+0xf0/0xf4\n[ 33.466528] rest_init from arch_post_acpi_subsys_init+0x0/0x18\n[ 33.467397]\n[ 33.467644] The buggy address belongs to stack of task swapper/0/0\n[ 33.468493] and is located at offset 112 in frame:\n[ 33.469172] refresh_cpu_vm_stats.constprop.0+0x0/0x2ec\n[ 33.469917]\n[ 33.470165] This frame has 2 objects:\n[ 33.470696] [32, 76) \u0027global_zone_diff\u0027\n[ 33.470729] [112, 276) \u0027global_node_diff\u0027\n[ 33.471294]\n[ 33.472095] The buggy address belongs to the physical page:\n[ 33.472862] page:3cd72da8 refcount:1 mapcount:0 mapping:00000000 index:0x0 pfn:0x41d03\n[ 33.473944] flags: 0x1000(reserved|zone=0)\n[ 33.474565] raw: 00001000 ed741470 ed741470 00000000 00000000 00000000 ffffffff 00000001\n[ 33.475656] raw: 00000000\n[ 33.476050] page dumped because: kasan: bad access detected\n[ 33.476816]\n[ 33.477061] Memory state around the buggy address:\n[ 33.477732] c1d03c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 33.478630] c1d03c80: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 00\n[ 33.479526] \u003ec1d03d00: 00 04 f2 f2 f2 f2 00 00 00 00 00 00 f1 f1 f1 f1\n[ 33.480415] ^\n[ 33.481195] c1d03d80: 00 00 00 00 00 00 00 00 00 00 04 f3 f3 f3 f3 f3\n[ 33.482088] c1d03e00: f3 f3 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00\n[ 33.482978] ==================================================================\n\nWe find the root cause of this OOB is that arm does not clear stale stack\npoison in the case of cpuidle.\n\nThis patch refer to arch/arm64/kernel/sleep.S to resolve this issue.\n\nFrom cited commit [1] that explain the problem\n\nFunctions which the compiler has instrumented for KASAN place poison on\nthe stack shadow upon entry and remove this poison prior to returning.\n\nIn the case of cpuidle, CPUs exit the kernel a number of levels deep in\nC code. Any instrumented functions on this critical path will leave\nportions of the stack shadow poisoned.\n\nIf CPUs lose context and return to the kernel via a cold path, we\nrestore a prior context saved in __cpu_suspend_enter are forgotten, and\nwe never remove the poison they placed in the stack shadow area by\nfunctions calls between this and the actual exit of the kernel.\n\nThus, (depending on stackframe layout) subsequent calls to instrumented\nfunctions may hit this stale poison, resulting in (spurious) KASAN\nsplats to the console.\n\nTo avoid this, clear any stale poison from the idle thread for a CPU\nprior to bringing a CPU online.\n\nFrom cited commit [2]\n\nExtend to check for CONFIG_KASAN_STACK\n\n[1] commit 0d97e6d8024c (\"arm64: kasan: clear stale stack poison\")\n[2] commit d56a9ef84bd0 (\"kasan, arm64: unpoison stack only with CONFIG_KASAN_STACK\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36906",
"url": "https://www.suse.com/security/cve/CVE-2024-36906"
},
{
"category": "external",
"summary": "SUSE Bug 1225715 for CVE-2024-36906",
"url": "https://bugzilla.suse.com/1225715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36906"
},
{
"cve": "CVE-2024-36908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-iocost: do not WARN if iocg was already offlined\n\nIn iocg_pay_debt(), warn is triggered if \u0027active_list\u0027 is empty, which\nis intended to confirm iocg is active when it has debt. However, warn\ncan be triggered during a blkcg or disk removal, if iocg_waitq_timer_fn()\nis run at that time:\n\n WARNING: CPU: 0 PID: 2344971 at block/blk-iocost.c:1402 iocg_pay_debt+0x14c/0x190\n Call trace:\n iocg_pay_debt+0x14c/0x190\n iocg_kick_waitq+0x438/0x4c0\n iocg_waitq_timer_fn+0xd8/0x130\n __run_hrtimer+0x144/0x45c\n __hrtimer_run_queues+0x16c/0x244\n hrtimer_interrupt+0x2cc/0x7b0\n\nThe warn in this situation is meaningless. Since this iocg is being\nremoved, the state of the \u0027active_list\u0027 is irrelevant, and \u0027waitq_timer\u0027\nis canceled after removing \u0027active_list\u0027 in ioc_pd_free(), which ensures\niocg is freed after iocg_waitq_timer_fn() returns.\n\nTherefore, add the check if iocg was already offlined to avoid warn\nwhen removing a blkcg or disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36908",
"url": "https://www.suse.com/security/cve/CVE-2024-36908"
},
{
"category": "external",
"summary": "SUSE Bug 1225743 for CVE-2024-36908",
"url": "https://bugzilla.suse.com/1225743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36908"
},
{
"cve": "CVE-2024-36921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36921"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: guard against invalid STA ID on removal\n\nGuard against invalid station IDs in iwl_mvm_mld_rm_sta_id as that would\nresult in out-of-bounds array accesses. This prevents issues should the\ndriver get into a bad state during error handling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36921",
"url": "https://www.suse.com/security/cve/CVE-2024-36921"
},
{
"category": "external",
"summary": "SUSE Bug 1225769 for CVE-2024-36921",
"url": "https://bugzilla.suse.com/1225769"
},
{
"category": "external",
"summary": "SUSE Bug 1225850 for CVE-2024-36921",
"url": "https://bugzilla.suse.com/1225850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-36921"
},
{
"cve": "CVE-2024-36922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: read txq-\u003eread_ptr under lock\n\nIf we read txq-\u003eread_ptr without lock, we can read the same\nvalue twice, then obtain the lock, and reclaim from there\nto two different places, but crucially reclaim the same\nentry twice, resulting in the WARN_ONCE() a little later.\nFix that by reading txq-\u003eread_ptr under lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36922",
"url": "https://www.suse.com/security/cve/CVE-2024-36922"
},
{
"category": "external",
"summary": "SUSE Bug 1225805 for CVE-2024-36922",
"url": "https://bugzilla.suse.com/1225805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36922"
},
{
"cve": "CVE-2024-36928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36928"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/qeth: Fix kernel panic after setting hsuid\n\nSymptom:\nWhen the hsuid attribute is set for the first time on an IQD Layer3\ndevice while the corresponding network interface is already UP,\nthe kernel will try to execute a napi function pointer that is NULL.\n\nExample:\n---------------------------------------------------------------------------\n[ 2057.572696] illegal operation: 0001 ilc:1 [#1] SMP\n[ 2057.572702] Modules linked in: af_iucv qeth_l3 zfcp scsi_transport_fc sunrpc nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6\nnft_reject nft_ct nf_tables_set nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables libcrc32c nfnetlink ghash_s390 prng xts aes_s390 des_s390 de\ns_generic sha3_512_s390 sha3_256_s390 sha512_s390 vfio_ccw vfio_mdev mdev vfio_iommu_type1 eadm_sch vfio ext4 mbcache jbd2 qeth_l2 bridge stp llc dasd_eckd_mod qeth dasd_mod\n qdio ccwgroup pkey zcrypt\n[ 2057.572739] CPU: 6 PID: 60182 Comm: stress_client Kdump: loaded Not tainted 4.18.0-541.el8.s390x #1\n[ 2057.572742] Hardware name: IBM 3931 A01 704 (LPAR)\n[ 2057.572744] Krnl PSW : 0704f00180000000 0000000000000002 (0x2)\n[ 2057.572748] R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:3 PM:0 RI:0 EA:3\n[ 2057.572751] Krnl GPRS: 0000000000000004 0000000000000000 00000000a3b008d8 0000000000000000\n[ 2057.572754] 00000000a3b008d8 cb923a29c779abc5 0000000000000000 00000000814cfd80\n[ 2057.572756] 000000000000012c 0000000000000000 00000000a3b008d8 00000000a3b008d8\n[ 2057.572758] 00000000bab6d500 00000000814cfd80 0000000091317e46 00000000814cfc68\n[ 2057.572762] Krnl Code:#0000000000000000: 0000 illegal\n \u003e0000000000000002: 0000 illegal\n 0000000000000004: 0000 illegal\n 0000000000000006: 0000 illegal\n 0000000000000008: 0000 illegal\n 000000000000000a: 0000 illegal\n 000000000000000c: 0000 illegal\n 000000000000000e: 0000 illegal\n[ 2057.572800] Call Trace:\n[ 2057.572801] ([\u003c00000000ec639700\u003e] 0xec639700)\n[ 2057.572803] [\u003c00000000913183e2\u003e] net_rx_action+0x2ba/0x398\n[ 2057.572809] [\u003c0000000091515f76\u003e] __do_softirq+0x11e/0x3a0\n[ 2057.572813] [\u003c0000000090ce160c\u003e] do_softirq_own_stack+0x3c/0x58\n[ 2057.572817] ([\u003c0000000090d2cbd6\u003e] do_softirq.part.1+0x56/0x60)\n[ 2057.572822] [\u003c0000000090d2cc60\u003e] __local_bh_enable_ip+0x80/0x98\n[ 2057.572825] [\u003c0000000091314706\u003e] __dev_queue_xmit+0x2be/0xd70\n[ 2057.572827] [\u003c000003ff803dd6d6\u003e] afiucv_hs_send+0x24e/0x300 [af_iucv]\n[ 2057.572830] [\u003c000003ff803dd88a\u003e] iucv_send_ctrl+0x102/0x138 [af_iucv]\n[ 2057.572833] [\u003c000003ff803de72a\u003e] iucv_sock_connect+0x37a/0x468 [af_iucv]\n[ 2057.572835] [\u003c00000000912e7e90\u003e] __sys_connect+0xa0/0xd8\n[ 2057.572839] [\u003c00000000912e9580\u003e] sys_socketcall+0x228/0x348\n[ 2057.572841] [\u003c0000000091514e1a\u003e] system_call+0x2a6/0x2c8\n[ 2057.572843] Last Breaking-Event-Address:\n[ 2057.572844] [\u003c0000000091317e44\u003e] __napi_poll+0x4c/0x1d8\n[ 2057.572846]\n[ 2057.572847] Kernel panic - not syncing: Fatal exception in interrupt\n-------------------------------------------------------------------------------------------\n\nAnalysis:\nThere is one napi structure per out_q: card-\u003eqdio.out_qs[i].napi\nThe napi.poll functions are set during qeth_open().\n\nSince\ncommit 1cfef80d4c2b (\"s390/qeth: Don\u0027t call dev_close/dev_open (DOWN/UP)\")\nqeth_set_offline()/qeth_set_online() no longer call dev_close()/\ndev_open(). So if qeth_free_qdio_queues() cleared\ncard-\u003eqdio.out_qs[i].napi.poll while the network interface was UP and the\ncard was offline, they are not set again.\n\nReproduction:\nchzdev -e $devno layer2=0\nip link set dev $network_interface up\necho 0 \u003e /sys/bus/ccw\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36928",
"url": "https://www.suse.com/security/cve/CVE-2024-36928"
},
{
"category": "external",
"summary": "SUSE Bug 1225775 for CVE-2024-36928",
"url": "https://bugzilla.suse.com/1225775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36928"
},
{
"cve": "CVE-2024-36930",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36930"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fix null pointer dereference within spi_sync\n\nIf spi_sync() is called with the non-empty queue and the same spi_message\nis then reused, the complete callback for the message remains set while\nthe context is cleared, leading to a null pointer dereference when the\ncallback is invoked from spi_finalize_current_message().\n\nWith function inlining disabled, the call stack might look like this:\n\n _raw_spin_lock_irqsave from complete_with_flags+0x18/0x58\n complete_with_flags from spi_complete+0x8/0xc\n spi_complete from spi_finalize_current_message+0xec/0x184\n spi_finalize_current_message from spi_transfer_one_message+0x2a8/0x474\n spi_transfer_one_message from __spi_pump_transfer_message+0x104/0x230\n __spi_pump_transfer_message from __spi_transfer_message_noqueue+0x30/0xc4\n __spi_transfer_message_noqueue from __spi_sync+0x204/0x248\n __spi_sync from spi_sync+0x24/0x3c\n spi_sync from mcp251xfd_regmap_crc_read+0x124/0x28c [mcp251xfd]\n mcp251xfd_regmap_crc_read [mcp251xfd] from _regmap_raw_read+0xf8/0x154\n _regmap_raw_read from _regmap_bus_read+0x44/0x70\n _regmap_bus_read from _regmap_read+0x60/0xd8\n _regmap_read from regmap_read+0x3c/0x5c\n regmap_read from mcp251xfd_alloc_can_err_skb+0x1c/0x54 [mcp251xfd]\n mcp251xfd_alloc_can_err_skb [mcp251xfd] from mcp251xfd_irq+0x194/0xe70 [mcp251xfd]\n mcp251xfd_irq [mcp251xfd] from irq_thread_fn+0x1c/0x78\n irq_thread_fn from irq_thread+0x118/0x1f4\n irq_thread from kthread+0xd8/0xf4\n kthread from ret_from_fork+0x14/0x28\n\nFix this by also setting message-\u003ecomplete to NULL when the transfer is\ncomplete.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36930",
"url": "https://www.suse.com/security/cve/CVE-2024-36930"
},
{
"category": "external",
"summary": "SUSE Bug 1225830 for CVE-2024-36930",
"url": "https://bugzilla.suse.com/1225830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36930"
},
{
"cve": "CVE-2024-36931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36931"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/cio: Ensure the copied buf is NUL terminated\n\nCurrently, we allocate a lbuf-sized kernel buffer and copy lbuf from\nuserspace to that buffer. Later, we use scanf on this buffer but we don\u0027t\nensure that the string is terminated inside the buffer, this can lead to\nOOB read when using scanf. Fix this issue by using memdup_user_nul instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36931",
"url": "https://www.suse.com/security/cve/CVE-2024-36931"
},
{
"category": "external",
"summary": "SUSE Bug 1225747 for CVE-2024-36931",
"url": "https://bugzilla.suse.com/1225747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36931"
},
{
"cve": "CVE-2024-36940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: core: delete incorrect free in pinctrl_enable()\n\nThe \"pctldev\" struct is allocated in devm_pinctrl_register_and_init().\nIt\u0027s a devm_ managed pointer that is freed by devm_pinctrl_dev_release(),\nso freeing it in pinctrl_enable() will lead to a double free.\n\nThe devm_pinctrl_dev_release() function frees the pindescs and destroys\nthe mutex as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36940",
"url": "https://www.suse.com/security/cve/CVE-2024-36940"
},
{
"category": "external",
"summary": "SUSE Bug 1225840 for CVE-2024-36940",
"url": "https://bugzilla.suse.com/1225840"
},
{
"category": "external",
"summary": "SUSE Bug 1225841 for CVE-2024-36940",
"url": "https://bugzilla.suse.com/1225841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-36940"
},
{
"cve": "CVE-2024-36941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36941"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: don\u0027t free NULL coalescing rule\n\nIf the parsing fails, we can dereference a NULL pointer here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36941",
"url": "https://www.suse.com/security/cve/CVE-2024-36941"
},
{
"category": "external",
"summary": "SUSE Bug 1225835 for CVE-2024-36941",
"url": "https://bugzilla.suse.com/1225835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36941"
},
{
"cve": "CVE-2024-36942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36942"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36942",
"url": "https://www.suse.com/security/cve/CVE-2024-36942"
},
{
"category": "external",
"summary": "SUSE Bug 1225843 for CVE-2024-36942",
"url": "https://bugzilla.suse.com/1225843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36942"
},
{
"cve": "CVE-2024-36944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nReapply \"drm/qxl: simplify qxl_fence_wait\"\n\nThis reverts commit 07ed11afb68d94eadd4ffc082b97c2331307c5ea.\n\nStephen Rostedt reports:\n \"I went to run my tests on my VMs and the tests hung on boot up.\n Unfortunately, the most I ever got out was:\n\n [ 93.607888] Testing event system initcall: OK\n [ 93.667730] Running tests on all trace events:\n [ 93.669757] Testing all events: OK\n [ 95.631064] ------------[ cut here ]------------\n Timed out after 60 seconds\"\n\nand further debugging points to a possible circular locking dependency\nbetween the console_owner locking and the worker pool locking.\n\nReverting the commit allows Steve\u0027s VM to boot to completion again.\n\n[ This may obviously result in the \"[TTM] Buffer eviction failed\"\n messages again, which was the reason for that original revert. But at\n this point this seems preferable to a non-booting system... ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36944",
"url": "https://www.suse.com/security/cve/CVE-2024-36944"
},
{
"category": "external",
"summary": "SUSE Bug 1225847 for CVE-2024-36944",
"url": "https://bugzilla.suse.com/1225847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36944"
},
{
"cve": "CVE-2024-36949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36949"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: sync all devices to wait all processes being evicted\n\nIf there are more than one device doing reset in parallel, the first\ndevice will call kfd_suspend_all_processes() to evict all processes\non all devices, this call takes time to finish. other device will\nstart reset and recover without waiting. if the process has not been\nevicted before doing recover, it will be restored, then caused page\nfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36949",
"url": "https://www.suse.com/security/cve/CVE-2024-36949"
},
{
"category": "external",
"summary": "SUSE Bug 1225894 for CVE-2024-36949",
"url": "https://bugzilla.suse.com/1225894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36949"
},
{
"cve": "CVE-2024-36950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirewire: ohci: mask bus reset interrupts between ISR and bottom half\n\nIn the FireWire OHCI interrupt handler, if a bus reset interrupt has\noccurred, mask bus reset interrupts until bus_reset_work has serviced and\ncleared the interrupt.\n\nNormally, we always leave bus reset interrupts masked. We infer the bus\nreset from the self-ID interrupt that happens shortly thereafter. A\nscenario where we unmask bus reset interrupts was introduced in 2008 in\na007bb857e0b26f5d8b73c2ff90782d9c0972620: If\nOHCI_PARAM_DEBUG_BUSRESETS (8) is set in the debug parameter bitmask, we\nwill unmask bus reset interrupts so we can log them.\n\nirq_handler logs the bus reset interrupt. However, we can\u0027t clear the bus\nreset event flag in irq_handler, because we won\u0027t service the event until\nlater. irq_handler exits with the event flag still set. If the\ncorresponding interrupt is still unmasked, the first bus reset will\nusually freeze the system due to irq_handler being called again each\ntime it exits. This freeze can be reproduced by loading firewire_ohci\nwith \"modprobe firewire_ohci debug=-1\" (to enable all debugging output).\nApparently there are also some cases where bus_reset_work will get called\nsoon enough to clear the event, and operation will continue normally.\n\nThis freeze was first reported a few months after a007bb85 was committed,\nbut until now it was never fixed. The debug level could safely be set\nto -1 through sysfs after the module was loaded, but this would be\nineffectual in logging bus reset interrupts since they were only\nunmasked during initialization.\n\nirq_handler will now leave the event flag set but mask bus reset\ninterrupts, so irq_handler won\u0027t be called again and there will be no\nfreeze. If OHCI_PARAM_DEBUG_BUSRESETS is enabled, bus_reset_work will\nunmask the interrupt after servicing the event, so future interrupts\nwill be caught as desired.\n\nAs a side effect to this change, OHCI_PARAM_DEBUG_BUSRESETS can now be\nenabled through sysfs in addition to during initial module loading.\nHowever, when enabled through sysfs, logging of bus reset interrupts will\nbe effective only starting with the second bus reset, after\nbus_reset_work has executed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36950",
"url": "https://www.suse.com/security/cve/CVE-2024-36950"
},
{
"category": "external",
"summary": "SUSE Bug 1225895 for CVE-2024-36950",
"url": "https://bugzilla.suse.com/1225895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36950"
},
{
"cve": "CVE-2024-36951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: range check cp bad op exception interrupts\n\nDue to a CP interrupt bug, bad packet garbage exception codes are raised.\nDo a range check so that the debugger and runtime do not receive garbage\ncodes.\nUpdate the user api to guard exception code type checking as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36951",
"url": "https://www.suse.com/security/cve/CVE-2024-36951"
},
{
"category": "external",
"summary": "SUSE Bug 1225896 for CVE-2024-36951",
"url": "https://bugzilla.suse.com/1225896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36951"
},
{
"cve": "CVE-2024-36955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()\n\nThe documentation for device_get_named_child_node() mentions this\nimportant point:\n\n\"\nThe caller is responsible for calling fwnode_handle_put() on the\nreturned fwnode pointer.\n\"\n\nAdd fwnode_handle_put() to avoid a leaked reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36955",
"url": "https://www.suse.com/security/cve/CVE-2024-36955"
},
{
"category": "external",
"summary": "SUSE Bug 1225810 for CVE-2024-36955",
"url": "https://bugzilla.suse.com/1225810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-36955"
},
{
"cve": "CVE-2024-36959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36959"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()\n\nIf we fail to allocate propname buffer, we need to drop the reference\ncount we just took. Because the pinctrl_dt_free_maps() includes the\ndroping operation, here we call it directly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36959",
"url": "https://www.suse.com/security/cve/CVE-2024-36959"
},
{
"category": "external",
"summary": "SUSE Bug 1225839 for CVE-2024-36959",
"url": "https://bugzilla.suse.com/1225839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-36959"
},
{
"cve": "CVE-2024-39282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: t7xx: Fix FSM command timeout issue\n\nWhen driver processes the internal state change command, it use an\nasynchronous thread to process the command operation. If the main\nthread detects that the task has timed out, the asynchronous thread\nwill panic when executing the completion notification because the\nmain thread completion object has been released.\n\nBUG: unable to handle page fault for address: fffffffffffffff8\nPGD 1f283a067 P4D 1f283a067 PUD 1f283c067 PMD 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nRIP: 0010:complete_all+0x3e/0xa0\n[...]\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x68/0xb0\n ? page_fault_oops+0x379/0x3e0\n ? exc_page_fault+0x69/0xa0\n ? asm_exc_page_fault+0x22/0x30\n ? complete_all+0x3e/0xa0\n fsm_main_thread+0xa3/0x9c0 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_autoremove_wake_function+0x10/0x10\n kthread+0xd8/0x110\n ? __pfx_fsm_main_thread+0x10/0x10 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x38/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n[...]\nCR2: fffffffffffffff8\n---[ end trace 0000000000000000 ]---\n\nUse the reference counter to ensure safe release as Sergey suggests:\nhttps://lore.kernel.org/all/da90f64c-260a-4329-87bf-1f9ff20a5951@gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39282",
"url": "https://www.suse.com/security/cve/CVE-2024-39282"
},
{
"category": "external",
"summary": "SUSE Bug 1235903 for CVE-2024-39282",
"url": "https://bugzilla.suse.com/1235903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-39282"
},
{
"cve": "CVE-2024-39480",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39480"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkdb: Fix buffer overflow during tab-complete\n\nCurrently, when the user attempts symbol completion with the Tab key, kdb\nwill use strncpy() to insert the completed symbol into the command buffer.\nUnfortunately it passes the size of the source buffer rather than the\ndestination to strncpy() with predictably horrible results. Most obviously\nif the command buffer is already full but cp, the cursor position, is in\nthe middle of the buffer, then we will write past the end of the supplied\nbuffer.\n\nFix this by replacing the dubious strncpy() calls with memmove()/memcpy()\ncalls plus explicit boundary checks to make sure we have enough space\nbefore we start moving characters around.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39480",
"url": "https://www.suse.com/security/cve/CVE-2024-39480"
},
{
"category": "external",
"summary": "SUSE Bug 1227445 for CVE-2024-39480",
"url": "https://bugzilla.suse.com/1227445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-39480"
},
{
"cve": "CVE-2024-41042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prefer nft_chain_validate\n\nnft_chain_validate already performs loop detection because a cycle will\nresult in a call stack overflow (ctx-\u003elevel \u003e= NFT_JUMP_STACK_SIZE).\n\nIt also follows maps via -\u003evalidate callback in nft_lookup, so there\nappears no reason to iterate the maps again.\n\nnf_tables_check_loops() and all its helper functions can be removed.\nThis improves ruleset load time significantly, from 23s down to 12s.\n\nThis also fixes a crash bug. Old loop detection code can result in\nunbounded recursion:\n\nBUG: TASK stack guard page was hit at ....\nOops: stack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 4 PID: 1539 Comm: nft Not tainted 6.10.0-rc5+ #1\n[..]\n\nwith a suitable ruleset during validation of register stores.\n\nI can\u0027t see any actual reason to attempt to check for this from\nnft_validate_register_store(), at this point the transaction is still in\nprogress, so we don\u0027t have a full picture of the rule graph.\n\nFor nf-next it might make sense to either remove it or make this depend\non table-\u003evalidate_state in case we could catch an error earlier\n(for improved error reporting to userspace).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41042",
"url": "https://www.suse.com/security/cve/CVE-2024-41042"
},
{
"category": "external",
"summary": "SUSE Bug 1228526 for CVE-2024-41042",
"url": "https://bugzilla.suse.com/1228526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-41042"
},
{
"cve": "CVE-2024-43913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: apple: fix device reference counting\n\nDrivers must call nvme_uninit_ctrl after a successful nvme_init_ctrl.\nSplit the allocation side out to make the error handling boundary easier\nto navigate. The apple driver had been doing this wrong, leaking the\ncontroller device memory on a tagset failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43913",
"url": "https://www.suse.com/security/cve/CVE-2024-43913"
},
{
"category": "external",
"summary": "SUSE Bug 1229833 for CVE-2024-43913",
"url": "https://bugzilla.suse.com/1229833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-43913"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-44996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix recursive -\u003erecvmsg calls\n\nAfter a vsock socket has been added to a BPF sockmap, its prot-\u003erecvmsg\nhas been replaced with vsock_bpf_recvmsg(). Thus the following\nrecursiion could happen:\n\nvsock_bpf_recvmsg()\n -\u003e __vsock_recvmsg()\n -\u003e vsock_connectible_recvmsg()\n -\u003e prot-\u003erecvmsg()\n -\u003e vsock_bpf_recvmsg() again\n\nWe need to fix it by calling the original -\u003erecvmsg() without any BPF\nsockmap logic in __vsock_recvmsg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44996",
"url": "https://www.suse.com/security/cve/CVE-2024-44996"
},
{
"category": "external",
"summary": "SUSE Bug 1230205 for CVE-2024-44996",
"url": "https://bugzilla.suse.com/1230205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-44996"
},
{
"cve": "CVE-2024-45828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Mask ring interrupts before ring stop request\n\nBus cleanup path in DMA mode may trigger a RING_OP_STAT interrupt when\nthe ring is being stopped. Depending on timing between ring stop request\ncompletion, interrupt handler removal and code execution this may lead\nto a NULL pointer dereference in hci_dma_irq_handler() if it gets to run\nafter the io_data pointer is set to NULL in hci_dma_cleanup().\n\nPrevent this my masking the ring interrupts before ring stop request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45828",
"url": "https://www.suse.com/security/cve/CVE-2024-45828"
},
{
"category": "external",
"summary": "SUSE Bug 1235705 for CVE-2024-45828",
"url": "https://bugzilla.suse.com/1235705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-45828"
},
{
"cve": "CVE-2024-46896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: don\u0027t access invalid sched\n\nSince 2320c9e6a768 (\"drm/sched: memset() \u0027job\u0027 in drm_sched_job_init()\")\naccessing job-\u003ebase.sched can produce unexpected results as the initialisation\nof (*job)-\u003ebase.sched done in amdgpu_job_alloc is overwritten by the\nmemset.\n\nThis commit fixes an issue when a CS would fail validation and would\nbe rejected after job-\u003enum_ibs is incremented. In this case,\namdgpu_ib_free(ring-\u003eadev, ...) will be called, which would crash the\nmachine because the ring value is bogus.\n\nTo fix this, pass a NULL pointer to amdgpu_ib_free(): we can do this\nbecause the device is actually not used in this function.\n\nThe next commit will remove the ring argument completely.\n\n(cherry picked from commit 2ae520cb12831d264ceb97c61f72c59d33c0dbd7)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46896",
"url": "https://www.suse.com/security/cve/CVE-2024-46896"
},
{
"category": "external",
"summary": "SUSE Bug 1235707 for CVE-2024-46896",
"url": "https://bugzilla.suse.com/1235707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-46896"
},
{
"cve": "CVE-2024-47141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinmux: Use sequential access to access desc-\u003epinmux data\n\nWhen two client of the same gpio call pinctrl_select_state() for the\nsame functionality, we are seeing NULL pointer issue while accessing\ndesc-\u003emux_owner.\n\nLet\u0027s say two processes A, B executing in pin_request() for the same pin\nand process A updates the desc-\u003emux_usecount but not yet updated the\ndesc-\u003emux_owner while process B see the desc-\u003emux_usecount which got\nupdated by A path and further executes strcmp and while accessing\ndesc-\u003emux_owner it crashes with NULL pointer.\n\nSerialize the access to mux related setting with a mutex lock.\n\n\tcpu0 (process A)\t\t\tcpu1(process B)\n\npinctrl_select_state() {\t\t pinctrl_select_state() {\n pin_request() {\t\t\t\tpin_request() {\n ...\n\t\t\t\t\t\t ....\n } else {\n desc-\u003emux_usecount++;\n \t\t\t\t\t\tdesc-\u003emux_usecount \u0026\u0026 strcmp(desc-\u003emux_owner, owner)) {\n\n if (desc-\u003emux_usecount \u003e 1)\n return 0;\n desc-\u003emux_owner = owner;\n\n }\t\t\t\t\t\t}",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47141",
"url": "https://www.suse.com/security/cve/CVE-2024-47141"
},
{
"category": "external",
"summary": "SUSE Bug 1235708 for CVE-2024-47141",
"url": "https://bugzilla.suse.com/1235708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-47141"
},
{
"cve": "CVE-2024-47143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-debug: fix a possible deadlock on radix_lock\n\nradix_lock() shouldn\u0027t be held while holding dma_hash_entry[idx].lock\notherwise, there\u0027s a possible deadlock scenario when\ndma debug API is called holding rq_lock():\n\nCPU0 CPU1 CPU2\ndma_free_attrs()\ncheck_unmap() add_dma_entry() __schedule() //out\n (A) rq_lock()\nget_hash_bucket()\n(A) dma_entry_hash\n check_sync()\n (A) radix_lock() (W) dma_entry_hash\ndma_entry_free()\n(W) radix_lock()\n // CPU2\u0027s one\n (W) rq_lock()\n\nCPU1 situation can happen when it extending radix tree and\nit tries to wake up kswapd via wake_all_kswapd().\n\nCPU2 situation can happen while perf_event_task_sched_out()\n(i.e. dma sync operation is called while deleting perf_event using\n etm and etr tmc which are Arm Coresight hwtracing driver backends).\n\nTo remove this possible situation, call dma_entry_free() after\nput_hash_bucket() in check_unmap().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47143",
"url": "https://www.suse.com/security/cve/CVE-2024-47143"
},
{
"category": "external",
"summary": "SUSE Bug 1235710 for CVE-2024-47143",
"url": "https://bugzilla.suse.com/1235710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-47143"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-47809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndlm: fix possible lkb_resource null dereference\n\nThis patch fixes a possible null pointer dereference when this function is\ncalled from request_lock() as lkb-\u003elkb_resource is not assigned yet,\nonly after validate_lock_args() by calling attach_lkb(). Another issue\nis that a resource name could be a non printable bytearray and we cannot\nassume to be ASCII coded.\n\nThe log functionality is probably never being hit when DLM is used in\nnormal way and no debug logging is enabled. The null pointer dereference\ncan only occur on a new created lkb that does not have the resource\nassigned yet, it probably never hits the null pointer dereference but we\nshould be sure that other changes might not change this behaviour and we\nactually can hit the mentioned null pointer dereference.\n\nIn this patch we just drop the printout of the resource name, the lkb id\nis enough to make a possible connection to a resource name if this\nexists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47809",
"url": "https://www.suse.com/security/cve/CVE-2024-47809"
},
{
"category": "external",
"summary": "SUSE Bug 1235714 for CVE-2024-47809",
"url": "https://bugzilla.suse.com/1235714"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-47809"
},
{
"cve": "CVE-2024-48873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48873"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: check return value of ieee80211_probereq_get() for RNR\n\nThe return value of ieee80211_probereq_get() might be NULL, so check it\nbefore using to avoid NULL pointer access.\n\nAddresses-Coverity-ID: 1529805 (\"Dereference null return value\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48873",
"url": "https://www.suse.com/security/cve/CVE-2024-48873"
},
{
"category": "external",
"summary": "SUSE Bug 1235716 for CVE-2024-48873",
"url": "https://bugzilla.suse.com/1235716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-48873"
},
{
"cve": "CVE-2024-48881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbcache: revert replacing IS_ERR_OR_NULL with IS_ERR again\n\nCommit 028ddcac477b (\"bcache: Remove unnecessary NULL point check in\nnode allocations\") leads a NULL pointer deference in cache_set_flush().\n\n1721 if (!IS_ERR_OR_NULL(c-\u003eroot))\n1722 list_add(\u0026c-\u003eroot-\u003elist, \u0026c-\u003ebtree_cache);\n\n\u003eFrom the above code in cache_set_flush(), if previous registration code\nfails before allocating c-\u003eroot, it is possible c-\u003eroot is NULL as what\nit is initialized. __bch_btree_node_alloc() never returns NULL but\nc-\u003eroot is possible to be NULL at above line 1721.\n\nThis patch replaces IS_ERR() by IS_ERR_OR_NULL() to fix this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48881",
"url": "https://www.suse.com/security/cve/CVE-2024-48881"
},
{
"category": "external",
"summary": "SUSE Bug 1235727 for CVE-2024-48881",
"url": "https://bugzilla.suse.com/1235727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-48881"
},
{
"cve": "CVE-2024-49569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-rdma: unquiesce admin_q before destroy it\n\nKernel will hang on destroy admin_q while we create ctrl failed, such\nas following calltrace:\n\nPID: 23644 TASK: ff2d52b40f439fc0 CPU: 2 COMMAND: \"nvme\"\n #0 [ff61d23de260fb78] __schedule at ffffffff8323bc15\n #1 [ff61d23de260fc08] schedule at ffffffff8323c014\n #2 [ff61d23de260fc28] blk_mq_freeze_queue_wait at ffffffff82a3dba1\n #3 [ff61d23de260fc78] blk_freeze_queue at ffffffff82a4113a\n #4 [ff61d23de260fc90] blk_cleanup_queue at ffffffff82a33006\n #5 [ff61d23de260fcb0] nvme_rdma_destroy_admin_queue at ffffffffc12686ce\n #6 [ff61d23de260fcc8] nvme_rdma_setup_ctrl at ffffffffc1268ced\n #7 [ff61d23de260fd28] nvme_rdma_create_ctrl at ffffffffc126919b\n #8 [ff61d23de260fd68] nvmf_dev_write at ffffffffc024f362\n #9 [ff61d23de260fe38] vfs_write at ffffffff827d5f25\n RIP: 00007fda7891d574 RSP: 00007ffe2ef06958 RFLAGS: 00000202\n RAX: ffffffffffffffda RBX: 000055e8122a4d90 RCX: 00007fda7891d574\n RDX: 000000000000012b RSI: 000055e8122a4d90 RDI: 0000000000000004\n RBP: 00007ffe2ef079c0 R8: 000000000000012b R9: 000055e8122a4d90\n R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000004\n R13: 000055e8122923c0 R14: 000000000000012b R15: 00007fda78a54500\n ORIG_RAX: 0000000000000001 CS: 0033 SS: 002b\n\nThis due to we have quiesced admi_q before cancel requests, but forgot\nto unquiesce before destroy it, as a result we fail to drain the\npending requests, and hang on blk_mq_freeze_queue_wait() forever. Here\ntry to reuse nvme_rdma_teardown_admin_queue() to fix this issue and\nsimplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49569",
"url": "https://www.suse.com/security/cve/CVE-2024-49569"
},
{
"category": "external",
"summary": "SUSE Bug 1235730 for CVE-2024-49569",
"url": "https://bugzilla.suse.com/1235730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49569"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix uaf for accessing waker_bfqq after splitting\n\nAfter commit 42c306ed7233 (\"block, bfq: don\u0027t break merge chain in\nbfq_split_bfqq()\"), if the current procress is the last holder of bfqq,\nthe bfqq can be freed after bfq_split_bfqq(). Hence recored the bfqq and\nthen access bfqq-\u003ewaker_bfqq may trigger UAF. What\u0027s more, the waker_bfqq\nmay in the merge chain of bfqq, hence just recored waker_bfqq is still\nnot safe.\n\nFix the problem by adding a helper bfq_waker_bfqq() to check if\nbfqq-\u003ewaker_bfqq is in the merge chain, and current procress is the only\nholder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-49948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: add more sanity checks to qdisc_pkt_len_init()\n\nOne path takes care of SKB_GSO_DODGY, assuming\nskb-\u003elen is bigger than hdr_len.\n\nvirtio_net_hdr_to_skb() does not fully dissect TCP headers,\nit only make sure it is at least 20 bytes.\n\nIt is possible for an user to provide a malicious \u0027GSO\u0027 packet,\ntotal length of 80 bytes.\n\n- 20 bytes of IPv4 header\n- 60 bytes TCP header\n- a small gso_size like 8\n\nvirtio_net_hdr_to_skb() would declare this packet as a normal\nGSO packet, because it would see 40 bytes of payload,\nbigger than gso_size.\n\nWe need to make detect this case to not underflow\nqdisc_skb_cb(skb)-\u003epkt_len.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49948",
"url": "https://www.suse.com/security/cve/CVE-2024-49948"
},
{
"category": "external",
"summary": "SUSE Bug 1232161 for CVE-2024-49948",
"url": "https://bugzilla.suse.com/1232161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49948"
},
{
"cve": "CVE-2024-49951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible crash on mgmt_index_removed\n\nIf mgmt_index_removed is called while there are commands queued on\ncmd_sync it could lead to crashes like the bellow trace:\n\n0x0000053D: __list_del_entry_valid_or_report+0x98/0xdc\n0x0000053D: mgmt_pending_remove+0x18/0x58 [bluetooth]\n0x0000053E: mgmt_remove_adv_monitor_complete+0x80/0x108 [bluetooth]\n0x0000053E: hci_cmd_sync_work+0xbc/0x164 [bluetooth]\n\nSo while handling mgmt_index_removed this attempts to dequeue\ncommands passed as user_data to cmd_sync.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49951",
"url": "https://www.suse.com/security/cve/CVE-2024-49951"
},
{
"category": "external",
"summary": "SUSE Bug 1232158 for CVE-2024-49951",
"url": "https://bugzilla.suse.com/1232158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49951"
},
{
"cve": "CVE-2024-49978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngso: fix udp gso fraglist segmentation after pull from frag_list\n\nDetect gso fraglist skbs with corrupted geometry (see below) and\npass these to skb_segment instead of skb_segment_list, as the first\ncan segment them correctly.\n\nValid SKB_GSO_FRAGLIST skbs\n- consist of two or more segments\n- the head_skb holds the protocol headers plus first gso_size\n- one or more frag_list skbs hold exactly one segment\n- all but the last must be gso_size\n\nOptional datapath hooks such as NAT and BPF (bpf_skb_pull_data) can\nmodify these skbs, breaking these invariants.\n\nIn extreme cases they pull all data into skb linear. For UDP, this\ncauses a NULL ptr deref in __udpv4_gso_segment_list_csum at\nudp_hdr(seg-\u003enext)-\u003edest.\n\nDetect invalid geometry due to pull, by checking head_skb size.\nDon\u0027t just drop, as this may blackhole a destination. Convert to be\nable to pass to regular skb_segment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49978",
"url": "https://www.suse.com/security/cve/CVE-2024-49978"
},
{
"category": "external",
"summary": "SUSE Bug 1232101 for CVE-2024-49978",
"url": "https://bugzilla.suse.com/1232101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49978"
},
{
"cve": "CVE-2024-49998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: improve shutdown sequence\n\nAlexander Sverdlin presents 2 problems during shutdown with the\nlan9303 driver. One is specific to lan9303 and the other just happens\nto reproduce there.\n\nThe first problem is that lan9303 is unique among DSA drivers in that it\ncalls dev_get_drvdata() at \"arbitrary runtime\" (not probe, not shutdown,\nnot remove):\n\nphy_state_machine()\n-\u003e ...\n -\u003e dsa_user_phy_read()\n -\u003e ds-\u003eops-\u003ephy_read()\n -\u003e lan9303_phy_read()\n -\u003e chip-\u003eops-\u003ephy_read()\n -\u003e lan9303_mdio_phy_read()\n -\u003e dev_get_drvdata()\n\nBut we never stop the phy_state_machine(), so it may continue to run\nafter dsa_switch_shutdown(). Our common pattern in all DSA drivers is\nto set drvdata to NULL to suppress the remove() method that may come\nafterwards. But in this case it will result in an NPD.\n\nThe second problem is that the way in which we set\ndp-\u003econduit-\u003edsa_ptr = NULL; is concurrent with receive packet\nprocessing. dsa_switch_rcv() checks once whether dev-\u003edsa_ptr is NULL,\nbut afterwards, rather than continuing to use that non-NULL value,\ndev-\u003edsa_ptr is dereferenced again and again without NULL checks:\ndsa_conduit_find_user() and many other places. In between dereferences,\nthere is no locking to ensure that what was valid once continues to be\nvalid.\n\nBoth problems have the common aspect that closing the conduit interface\nsolves them.\n\nIn the first case, dev_close(conduit) triggers the NETDEV_GOING_DOWN\nevent in dsa_user_netdevice_event() which closes user ports as well.\ndsa_port_disable_rt() calls phylink_stop(), which synchronously stops\nthe phylink state machine, and ds-\u003eops-\u003ephy_read() will thus no longer\ncall into the driver after this point.\n\nIn the second case, dev_close(conduit) should do this, as per\nDocumentation/networking/driver.rst:\n\n| Quiescence\n| ----------\n|\n| After the ndo_stop routine has been called, the hardware must\n| not receive or transmit any data. All in flight packets must\n| be aborted. If necessary, poll or wait for completion of\n| any reset commands.\n\nSo it should be sufficient to ensure that later, when we zeroize\nconduit-\u003edsa_ptr, there will be no concurrent dsa_switch_rcv() call\non this conduit.\n\nThe addition of the netif_device_detach() function is to ensure that\nioctls, rtnetlinks and ethtool requests on the user ports no longer\npropagate down to the driver - we\u0027re no longer prepared to handle them.\n\nThe race condition actually did not exist when commit 0650bf52b31f\n(\"net: dsa: be compatible with masters which unregister on shutdown\")\nfirst introduced dsa_switch_shutdown(). It was created later, when we\nstopped unregistering the user interfaces from a bad spot, and we just\nreplaced that sequence with a racy zeroization of conduit-\u003edsa_ptr\n(one which doesn\u0027t ensure that the interfaces aren\u0027t up).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49998",
"url": "https://www.suse.com/security/cve/CVE-2024-49998"
},
{
"category": "external",
"summary": "SUSE Bug 1232087 for CVE-2024-49998",
"url": "https://bugzilla.suse.com/1232087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-49998"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: mpc52xx: Add cancel_work_sync before module remove\n\nIf we remove the module which will call mpc52xx_spi_remove\nit will free \u0027ms\u0027 through spi_unregister_controller.\nwhile the work ms-\u003ework will be used. The sequence of operations\nthat may lead to a UAF bug.\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in mpc52xx_spi_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50051",
"url": "https://www.suse.com/security/cve/CVE-2024-50051"
},
{
"category": "external",
"summary": "SUSE Bug 1235739 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "external",
"summary": "SUSE Bug 1239156 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1239156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-50051"
},
{
"cve": "CVE-2024-50106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix race between laundromat and free_stateid\n\nThere is a race between laundromat handling of revoked delegations\nand a client sending free_stateid operation. Laundromat thread\nfinds that delegation has expired and needs to be revoked so it\nmarks the delegation stid revoked and it puts it on a reaper list\nbut then it unlock the state lock and the actual delegation revocation\nhappens without the lock. Once the stid is marked revoked a racing\nfree_stateid processing thread does the following (1) it calls\nlist_del_init() which removes it from the reaper list and (2) frees\nthe delegation stid structure. The laundromat thread ends up not\ncalling the revoke_delegation() function for this particular delegation\nbut that means it will no release the lock lease that exists on\nthe file.\n\nNow, a new open for this file comes in and ends up finding that\nlease list isn\u0027t empty and calls nfsd_breaker_owns_lease() which ends\nup trying to derefence a freed delegation stateid. Leading to the\nfollowint use-after-free KASAN warning:\n\nkernel: ==================================================================\nkernel: BUG: KASAN: slab-use-after-free in nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: Read of size 8 at addr ffff0000e73cd0c8 by task nfsd/6205\nkernel:\nkernel: CPU: 2 UID: 0 PID: 6205 Comm: nfsd Kdump: loaded Not tainted 6.11.0-rc7+ #9\nkernel: Hardware name: Apple Inc. Apple Virtualization Generic Platform, BIOS 2069.0.0.0.0 08/03/2024\nkernel: Call trace:\nkernel: dump_backtrace+0x98/0x120\nkernel: show_stack+0x1c/0x30\nkernel: dump_stack_lvl+0x80/0xe8\nkernel: print_address_description.constprop.0+0x84/0x390\nkernel: print_report+0xa4/0x268\nkernel: kasan_report+0xb4/0xf8\nkernel: __asan_report_load8_noabort+0x1c/0x28\nkernel: nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: nfsd_file_do_acquire+0xb3c/0x11d0 [nfsd]\nkernel: nfsd_file_acquire_opened+0x84/0x110 [nfsd]\nkernel: nfs4_get_vfs_file+0x634/0x958 [nfsd]\nkernel: nfsd4_process_open2+0xa40/0x1a40 [nfsd]\nkernel: nfsd4_open+0xa08/0xe80 [nfsd]\nkernel: nfsd4_proc_compound+0xb8c/0x2130 [nfsd]\nkernel: nfsd_dispatch+0x22c/0x718 [nfsd]\nkernel: svc_process_common+0x8e8/0x1960 [sunrpc]\nkernel: svc_process+0x3d4/0x7e0 [sunrpc]\nkernel: svc_handle_xprt+0x828/0xe10 [sunrpc]\nkernel: svc_recv+0x2cc/0x6a8 [sunrpc]\nkernel: nfsd+0x270/0x400 [nfsd]\nkernel: kthread+0x288/0x310\nkernel: ret_from_fork+0x10/0x20\n\nThis patch proposes a fixed that\u0027s based on adding 2 new additional\nstid\u0027s sc_status values that help coordinate between the laundromat\nand other operations (nfsd4_free_stateid() and nfsd4_delegreturn()).\n\nFirst to make sure, that once the stid is marked revoked, it is not\nremoved by the nfsd4_free_stateid(), the laundromat take a reference\non the stateid. Then, coordinating whether the stid has been put\non the cl_revoked list or we are processing FREE_STATEID and need to\nmake sure to remove it from the list, each check that state and act\naccordingly. If laundromat has added to the cl_revoke list before\nthe arrival of FREE_STATEID, then nfsd4_free_stateid() knows to remove\nit from the list. If nfsd4_free_stateid() finds that operations arrived\nbefore laundromat has placed it on cl_revoke list, it marks the state\nfreed and then laundromat will no longer add it to the list.\n\nAlso, for nfsd4_delegreturn() when looking for the specified stid,\nwe need to access stid that are marked removed or freeable, it means\nthe laundromat has started processing it but hasn\u0027t finished and this\ndelegreturn needs to return nfserr_deleg_revoked and not\nnfserr_bad_stateid. The latter will not trigger a FREE_STATEID and the\nlack of it will leave this stid on the cl_revoked list indefinitely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50106",
"url": "https://www.suse.com/security/cve/CVE-2024-50106"
},
{
"category": "external",
"summary": "SUSE Bug 1232882 for CVE-2024-50106",
"url": "https://bugzilla.suse.com/1232882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50106"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix OOBs when building SMB2_IOCTL request\n\nWhen using encryption, either enforced by the server or when using\n\u0027seal\u0027 mount option, the client will squash all compound request buffers\ndown for encryption into a single iov in smb2_set_next_command().\n\nSMB2_ioctl_init() allocates a small buffer (448 bytes) to hold the\nSMB2_IOCTL request in the first iov, and if the user passes an input\nbuffer that is greater than 328 bytes, smb2_set_next_command() will\nend up writing off the end of @rqst-\u003eiov[0].iov_base as shown below:\n\n mount.cifs //srv/share /mnt -o ...,seal\n ln -s $(perl -e \"print(\u0027a\u0027)for 1..1024\") /mnt/link\n\n BUG: KASAN: slab-out-of-bounds in\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n Write of size 4116 at addr ffff8881148fcab8 by task ln/859\n\n CPU: 1 UID: 0 PID: 859 Comm: ln Not tainted 6.12.0-rc3 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n 1.16.3-2.fc40 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n print_report+0x156/0x4d9\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n ? __virt_addr_valid+0x145/0x310\n ? __phys_addr+0x46/0x90\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_report+0xda/0x110\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_check_range+0x10f/0x1f0\n __asan_memcpy+0x3c/0x60\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n smb2_compound_op+0x238c/0x3840 [cifs]\n ? kasan_save_track+0x14/0x30\n ? kasan_save_free_info+0x3b/0x70\n ? vfs_symlink+0x1a1/0x2c0\n ? do_symlinkat+0x108/0x1c0\n ? __pfx_smb2_compound_op+0x10/0x10 [cifs]\n ? kmem_cache_free+0x118/0x3e0\n ? cifs_get_writable_path+0xeb/0x1a0 [cifs]\n smb2_get_reparse_inode+0x423/0x540 [cifs]\n ? __pfx_smb2_get_reparse_inode+0x10/0x10 [cifs]\n ? rcu_is_watching+0x20/0x50\n ? __kmalloc_noprof+0x37c/0x480\n ? smb2_create_reparse_symlink+0x257/0x490 [cifs]\n ? smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n ? __pfx_smb2_create_reparse_symlink+0x10/0x10 [cifs]\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? __build_path_from_dentry_optional_prefix+0x19d/0x2e0 [cifs]\n cifs_symlink+0x24f/0x960 [cifs]\n ? __pfx_make_vfsuid+0x10/0x10\n ? __pfx_cifs_symlink+0x10/0x10 [cifs]\n ? make_vfsgid+0x6b/0xc0\n ? generic_permission+0x96/0x2d0\n vfs_symlink+0x1a1/0x2c0\n do_symlinkat+0x108/0x1c0\n ? __pfx_do_symlinkat+0x10/0x10\n ? strncpy_from_user+0xaa/0x160\n __x64_sys_symlinkat+0xb9/0xf0\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7f08d75c13bb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50151",
"url": "https://www.suse.com/security/cve/CVE-2024-50151"
},
{
"category": "external",
"summary": "SUSE Bug 1233055 for CVE-2024-50151",
"url": "https://bugzilla.suse.com/1233055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50151"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50199",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50199"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swapfile: skip HugeTLB pages for unuse_vma\n\nI got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The\nproblem can be reproduced by the following steps:\n\n 1. Allocate an anonymous 1GB HugeTLB and some other anonymous memory.\n 2. Swapout the above anonymous memory.\n 3. run swapoff and we will get a bad pud error in kernel message:\n\n mm/pgtable-generic.c:42: bad pud 00000000743d215d(84000001400000e7)\n\nWe can tell that pud_clear_bad is called by pud_none_or_clear_bad in\nunuse_pud_range() by ftrace. And therefore the HugeTLB pages will never\nbe freed because we lost it from page table. We can skip HugeTLB pages\nfor unuse_vma to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50199",
"url": "https://www.suse.com/security/cve/CVE-2024-50199"
},
{
"category": "external",
"summary": "SUSE Bug 1233112 for CVE-2024-50199",
"url": "https://bugzilla.suse.com/1233112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50199"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix address emission with tag-based KASAN enabled\n\nWhen BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_image\nstruct on the stack is passed during the size calculation pass and\nan address on the heap is passed during code generation. This may\ncause a heap buffer overflow if the heap address is tagged because\nemit_a64_mov_i64() will emit longer code than it did during the size\ncalculation pass. The same problem could occur without tag-based\nKASAN if one of the 16-bit words of the stack address happened to\nbe all-ones during the size calculation pass. Fix the problem by\nassuming the worst case (4 instructions) when calculating the size\nof the bpf_tramp_image address emission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50203",
"url": "https://www.suse.com/security/cve/CVE-2024-50203"
},
{
"category": "external",
"summary": "SUSE Bug 1233328 for CVE-2024-50203",
"url": "https://bugzilla.suse.com/1233328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50203"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilemap: Fix bounds checking in filemap_read()\n\nIf the caller supplies an iocb-\u003eki_pos value that is close to the\nfilesystem upper limit, and an iterator with a count that causes us to\noverflow that limit, then filemap_read() enters an infinite loop.\n\nThis behaviour was discovered when testing xfstests generic/525 with the\n\"localio\" optimisation for loopback NFS mounts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50272",
"url": "https://www.suse.com/security/cve/CVE-2024-50272"
},
{
"category": "external",
"summary": "SUSE Bug 1233461 for CVE-2024-50272",
"url": "https://bugzilla.suse.com/1233461"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50272"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-50299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50299"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: properly validate chunk size in sctp_sf_ootb()\n\nA size validation fix similar to that in Commit 50619dbf8db7 (\"sctp: add\nsize validation when walking chunks\") is also required in sctp_sf_ootb()\nto address a crash reported by syzbot:\n\n BUG: KMSAN: uninit-value in sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_do_sm+0x181/0x93d0 net/sctp/sm_sideeffect.c:1166\n sctp_endpoint_bh_rcv+0xc38/0xf90 net/sctp/endpointola.c:407\n sctp_inq_push+0x2ef/0x380 net/sctp/inqueue.c:88\n sctp_rcv+0x3831/0x3b20 net/sctp/input.c:243\n sctp4_rcv+0x42/0x50 net/sctp/protocol.c:1159\n ip_protocol_deliver_rcu+0xb51/0x13d0 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x336/0x500 net/ipv4/ip_input.c:233",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50299",
"url": "https://www.suse.com/security/cve/CVE-2024-50299"
},
{
"category": "external",
"summary": "SUSE Bug 1233488 for CVE-2024-50299",
"url": "https://bugzilla.suse.com/1233488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-50299"
},
{
"cve": "CVE-2024-52332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Fix potential invalid memory access in igb_init_module()\n\nThe pci_register_driver() can fail and when this happened, the dca_notifier\nneeds to be unregistered, otherwise the dca_notifier can be called when\nigb fails to install, resulting to invalid memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52332",
"url": "https://www.suse.com/security/cve/CVE-2024-52332"
},
{
"category": "external",
"summary": "SUSE Bug 1235700 for CVE-2024-52332",
"url": "https://bugzilla.suse.com/1235700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-52332"
},
{
"cve": "CVE-2024-53050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53050"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in hdcp2_get_capability\n\nAdd encoder check in intel_hdcp2_get_capability to avoid\nnull pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53050",
"url": "https://www.suse.com/security/cve/CVE-2024-53050"
},
{
"category": "external",
"summary": "SUSE Bug 1233546 for CVE-2024-53050",
"url": "https://bugzilla.suse.com/1233546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53050"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx\n\nAs the introduction of the support for vsock and unix sockets in sockmap,\ntls_sw_has_ctx_tx/rx cannot presume the socket passed in must be IS_ICSK.\nvsock and af_unix sockets have vsock_sock and unix_sock instead of\ninet_connection_sock. For these sockets, tls_get_ctx may return an invalid\npointer and cause page fault in function tls_sw_ctx_rx.\n\nBUG: unable to handle page fault for address: 0000000000040030\nWorkqueue: vsock-loopback vsock_loopback_work\nRIP: 0010:sk_psock_strp_data_ready+0x23/0x60\nCall Trace:\n ? __die+0x81/0xc3\n ? no_context+0x194/0x350\n ? do_page_fault+0x30/0x110\n ? async_page_fault+0x3e/0x50\n ? sk_psock_strp_data_ready+0x23/0x60\n virtio_transport_recv_pkt+0x750/0x800\n ? update_load_avg+0x7e/0x620\n vsock_loopback_work+0xd0/0x100\n process_one_work+0x1a7/0x360\n worker_thread+0x30/0x390\n ? create_worker+0x1a0/0x1a0\n kthread+0x112/0x130\n ? __kthread_cancel_work+0x40/0x40\n ret_from_fork+0x1f/0x40\n\nv2:\n - Add IS_ICSK check\nv3:\n - Update the commits in Fixes",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53091",
"url": "https://www.suse.com/security/cve/CVE-2024-53091"
},
{
"category": "external",
"summary": "SUSE Bug 1233638 for CVE-2024-53091",
"url": "https://bugzilla.suse.com/1233638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53091"
},
{
"cve": "CVE-2024-53095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Fix use-after-free of network namespace.\n\nRecently, we got a customer report that CIFS triggers oops while\nreconnecting to a server. [0]\n\nThe workload runs on Kubernetes, and some pods mount CIFS servers\nin non-root network namespaces. The problem rarely happened, but\nit was always while the pod was dying.\n\nThe root cause is wrong reference counting for network namespace.\n\nCIFS uses kernel sockets, which do not hold refcnt of the netns that\nthe socket belongs to. That means CIFS must ensure the socket is\nalways freed before its netns; otherwise, use-after-free happens.\n\nThe repro steps are roughly:\n\n 1. mount CIFS in a non-root netns\n 2. drop packets from the netns\n 3. destroy the netns\n 4. unmount CIFS\n\nWe can reproduce the issue quickly with the script [1] below and see\nthe splat [2] if CONFIG_NET_NS_REFCNT_TRACKER is enabled.\n\nWhen the socket is TCP, it is hard to guarantee the netns lifetime\nwithout holding refcnt due to async timers.\n\nLet\u0027s hold netns refcnt for each socket as done for SMC in commit\n9744d2bf1976 (\"smc: Fix use-after-free in tcp_write_timer_handler().\").\n\nNote that we need to move put_net() from cifs_put_tcp_session() to\nclean_demultiplex_info(); otherwise, __sock_create() still could touch a\nfreed netns while cifsd tries to reconnect from cifs_demultiplex_thread().\n\nAlso, maybe_get_net() cannot be put just before __sock_create() because\nthe code is not under RCU and there is a small chance that the same\naddress happened to be reallocated to another netns.\n\n[0]:\nCIFS: VFS: \\\\XXXXXXXXXXX has not responded in 15 seconds. Reconnecting...\nCIFS: Serverclose failed 4 times, giving up\nUnable to handle kernel paging request at virtual address 14de99e461f84a07\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\n[14de99e461f84a07] address between user and kernel address ranges\nInternal error: Oops: 0000000096000004 [#1] SMP\nModules linked in: cls_bpf sch_ingress nls_utf8 cifs cifs_arc4 cifs_md4 dns_resolver tcp_diag inet_diag veth xt_state xt_connmark nf_conntrack_netlink xt_nat xt_statistic xt_MASQUERADE xt_mark xt_addrtype ipt_REJECT nf_reject_ipv4 nft_chain_nat nf_nat xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment nft_compat nf_tables nfnetlink overlay nls_ascii nls_cp437 sunrpc vfat fat aes_ce_blk aes_ce_cipher ghash_ce sm4_ce_cipher sm4 sm3_ce sm3 sha3_ce sha512_ce sha512_arm64 sha1_ce ena button sch_fq_codel loop fuse configfs dmi_sysfs sha2_ce sha256_arm64 dm_mirror dm_region_hash dm_log dm_mod dax efivarfs\nCPU: 5 PID: 2690970 Comm: cifsd Not tainted 6.1.103-109.184.amzn2023.aarch64 #1\nHardware name: Amazon EC2 r7g.4xlarge/, BIOS 1.0 11/1/2018\npstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : fib_rules_lookup+0x44/0x238\nlr : __fib_lookup+0x64/0xbc\nsp : ffff8000265db790\nx29: ffff8000265db790 x28: 0000000000000000 x27: 000000000000bd01\nx26: 0000000000000000 x25: ffff000b4baf8000 x24: ffff00047b5e4580\nx23: ffff8000265db7e0 x22: 0000000000000000 x21: ffff00047b5e4500\nx20: ffff0010e3f694f8 x19: 14de99e461f849f7 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 3f92800abd010002\nx11: 0000000000000001 x10: ffff0010e3f69420 x9 : ffff800008a6f294\nx8 : 0000000000000000 x7 : 0000000000000006 x6 : 0000000000000000\nx5 : 0000000000000001 x4 : ffff001924354280 x3 : ffff8000265db7e0\nx2 : 0000000000000000 x1 : ffff0010e3f694f8 x0 : ffff00047b5e4500\nCall trace:\n fib_rules_lookup+0x44/0x238\n __fib_lookup+0x64/0xbc\n ip_route_output_key_hash_rcu+0x2c4/0x398\n ip_route_output_key_hash+0x60/0x8c\n tcp_v4_connect+0x290/0x488\n __inet_stream_connect+0x108/0x3d0\n inet_stream_connect+0x50/0x78\n kernel_connect+0x6c/0xac\n generic_ip_conne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53095",
"url": "https://www.suse.com/security/cve/CVE-2024-53095"
},
{
"category": "external",
"summary": "SUSE Bug 1233642 for CVE-2024-53095",
"url": "https://bugzilla.suse.com/1233642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53095"
},
{
"cve": "CVE-2024-53099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()\n\nIf a newly-added link type doesn\u0027t invoke BPF_LINK_TYPE(), accessing\nbpf_link_type_strs[link-\u003etype] may result in an out-of-bounds access.\n\nTo spot such missed invocations early in the future, checking the\nvalidity of link-\u003etype in bpf_link_show_fdinfo() and emitting a warning\nwhen such invocations are missed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53099",
"url": "https://www.suse.com/security/cve/CVE-2024-53099"
},
{
"category": "external",
"summary": "SUSE Bug 1233772 for CVE-2024-53099",
"url": "https://bugzilla.suse.com/1233772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53099"
},
{
"cve": "CVE-2024-53103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer\n\nWhen hvs is released, there is a possibility that vsk-\u003etrans may not\nbe initialized to NULL, which could lead to a dangling pointer.\nThis issue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53103",
"url": "https://www.suse.com/security/cve/CVE-2024-53103"
},
{
"category": "external",
"summary": "SUSE Bug 1234024 for CVE-2024-53103",
"url": "https://bugzilla.suse.com/1234024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53103"
},
{
"cve": "CVE-2024-53105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: page_alloc: move mlocked flag clearance into free_pages_prepare()\n\nSyzbot reported a bad page state problem caused by a page being freed\nusing free_page() still having a mlocked flag at free_pages_prepare()\nstage:\n\n BUG: Bad page state in process syz.5.504 pfn:61f45\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61f45\n flags: 0xfff00000080204(referenced|workingset|mlocked|node=0|zone=1|lastcpupid=0x7ff)\n raw: 00fff00000080204 0000000000000000 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\n page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set\n page_owner tracks the page as allocated\n page last allocated via order 0, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 8443, tgid 8442 (syz.5.504), ts 201884660643, free_ts 201499827394\n set_page_owner include/linux/page_owner.h:32 [inline]\n post_alloc_hook+0x1f3/0x230 mm/page_alloc.c:1537\n prep_new_page mm/page_alloc.c:1545 [inline]\n get_page_from_freelist+0x303f/0x3190 mm/page_alloc.c:3457\n __alloc_pages_noprof+0x292/0x710 mm/page_alloc.c:4733\n alloc_pages_mpol_noprof+0x3e8/0x680 mm/mempolicy.c:2265\n kvm_coalesced_mmio_init+0x1f/0xf0 virt/kvm/coalesced_mmio.c:99\n kvm_create_vm virt/kvm/kvm_main.c:1235 [inline]\n kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5488 [inline]\n kvm_dev_ioctl+0x12dc/0x2240 virt/kvm/kvm_main.c:5530\n __do_compat_sys_ioctl fs/ioctl.c:1007 [inline]\n __se_compat_sys_ioctl+0x510/0xc90 fs/ioctl.c:950\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0xb4/0x110 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x34/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n page last free pid 8399 tgid 8399 stack trace:\n reset_page_owner include/linux/page_owner.h:25 [inline]\n free_pages_prepare mm/page_alloc.c:1108 [inline]\n free_unref_folios+0xf12/0x18d0 mm/page_alloc.c:2686\n folios_put_refs+0x76c/0x860 mm/swap.c:1007\n free_pages_and_swap_cache+0x5c8/0x690 mm/swap_state.c:335\n __tlb_batch_free_encoded_pages mm/mmu_gather.c:136 [inline]\n tlb_batch_pages_flush mm/mmu_gather.c:149 [inline]\n tlb_flush_mmu_free mm/mmu_gather.c:366 [inline]\n tlb_flush_mmu+0x3a3/0x680 mm/mmu_gather.c:373\n tlb_finish_mmu+0xd4/0x200 mm/mmu_gather.c:465\n exit_mmap+0x496/0xc40 mm/mmap.c:1926\n __mmput+0x115/0x390 kernel/fork.c:1348\n exit_mm+0x220/0x310 kernel/exit.c:571\n do_exit+0x9b2/0x28e0 kernel/exit.c:926\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [inline]\n __se_sys_exit_group kernel/exit.c:1097 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1097\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n Modules linked in:\n CPU: 0 UID: 0 PID: 8442 Comm: syz.5.504 Not tainted 6.12.0-rc6-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n bad_page+0x176/0x1d0 mm/page_alloc.c:501\n free_page_is_bad mm/page_alloc.c:918 [inline]\n free_pages_prepare mm/page_alloc.c:1100 [inline]\n free_unref_page+0xed0/0xf20 mm/page_alloc.c:2638\n kvm_destroy_vm virt/kvm/kvm_main.c:1327 [inline]\n kvm_put_kvm+0xc75/0x1350 virt/kvm/kvm_main.c:1386\n kvm_vcpu_release+0x54/0x60 virt/kvm/kvm_main.c:4143\n __fput+0x23f/0x880 fs/file_table.c:431\n task_work_run+0x24f/0x310 kernel/task_work.c:239\n exit_task_work include/linux/task_work.h:43 [inline]\n do_exit+0xa2f/0x28e0 kernel/exit.c:939\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53105",
"url": "https://www.suse.com/security/cve/CVE-2024-53105"
},
{
"category": "external",
"summary": "SUSE Bug 1234069 for CVE-2024-53105",
"url": "https://bugzilla.suse.com/1234069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53105"
},
{
"cve": "CVE-2024-53111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix address wraparound in move_page_tables()\n\nOn 32-bit platforms, it is possible for the expression `len + old_addr \u003c\nold_end` to be false-positive if `len + old_addr` wraps around. \n`old_addr` is the cursor in the old range up to which page table entries\nhave been moved; so if the operation succeeded, `old_addr` is the *end* of\nthe old region, and adding `len` to it can wrap.\n\nThe overflow causes mremap() to mistakenly believe that PTEs have been\ncopied; the consequence is that mremap() bails out, but doesn\u0027t move the\nPTEs back before the new VMA is unmapped, causing anonymous pages in the\nregion to be lost. So basically if userspace tries to mremap() a\nprivate-anon region and hits this bug, mremap() will return an error and\nthe private-anon region\u0027s contents appear to have been zeroed.\n\nThe idea of this check is that `old_end - len` is the original start\naddress, and writing the check that way also makes it easier to read; so\nfix the check by rearranging the comparison accordingly.\n\n(An alternate fix would be to refactor this function by introducing an\n\"orig_old_start\" variable or such.)\n\n\nTested in a VM with a 32-bit X86 kernel; without the patch:\n\n```\nuser@horn:~/big_mremap$ cat test.c\n#define _GNU_SOURCE\n#include \u003cstdlib.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003cerr.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define ADDR1 ((void*)0x60000000)\n#define ADDR2 ((void*)0x10000000)\n#define SIZE 0x50000000uL\n\nint main(void) {\n unsigned char *p1 = mmap(ADDR1, SIZE, PROT_READ|PROT_WRITE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p1 == MAP_FAILED)\n err(1, \"mmap 1\");\n unsigned char *p2 = mmap(ADDR2, SIZE, PROT_NONE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p2 == MAP_FAILED)\n err(1, \"mmap 2\");\n *p1 = 0x41;\n printf(\"first char is 0x%02hhx\\n\", *p1);\n unsigned char *p3 = mremap(p1, SIZE, SIZE,\n MREMAP_MAYMOVE|MREMAP_FIXED, p2);\n if (p3 == MAP_FAILED) {\n printf(\"mremap() failed; first char is 0x%02hhx\\n\", *p1);\n } else {\n printf(\"mremap() succeeded; first char is 0x%02hhx\\n\", *p3);\n }\n}\nuser@horn:~/big_mremap$ gcc -static -o test test.c\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() failed; first char is 0x00\n```\n\nWith the patch:\n\n```\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() succeeded; first char is 0x41\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53111",
"url": "https://www.suse.com/security/cve/CVE-2024-53111"
},
{
"category": "external",
"summary": "SUSE Bug 1234086 for CVE-2024-53111",
"url": "https://bugzilla.suse.com/1234086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53111"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Improve MSG_ZEROCOPY error handling\n\nAdd a missing kfree_skb() to prevent memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53117",
"url": "https://www.suse.com/security/cve/CVE-2024-53117"
},
{
"category": "external",
"summary": "SUSE Bug 1234079 for CVE-2024-53117",
"url": "https://bugzilla.suse.com/1234079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53117"
},
{
"cve": "CVE-2024-53118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Fix sk_error_queue memory leak\n\nKernel queues MSG_ZEROCOPY completion notifications on the error queue.\nWhere they remain, until explicitly recv()ed. To prevent memory leaks,\nclean up the queue when the socket is destroyed.\n\nunreferenced object 0xffff8881028beb00 (size 224):\n comm \"vsock_test\", pid 1218, jiffies 4294694897\n hex dump (first 32 bytes):\n 90 b0 21 17 81 88 ff ff 90 b0 21 17 81 88 ff ff ..!.......!.....\n 00 00 00 00 00 00 00 00 00 b0 21 17 81 88 ff ff ..........!.....\n backtrace (crc 6c7031ca):\n [\u003cffffffff81418ef7\u003e] kmem_cache_alloc_node_noprof+0x2f7/0x370\n [\u003cffffffff81d35882\u003e] __alloc_skb+0x132/0x180\n [\u003cffffffff81d2d32b\u003e] sock_omalloc+0x4b/0x80\n [\u003cffffffff81d3a8ae\u003e] msg_zerocopy_realloc+0x9e/0x240\n [\u003cffffffff81fe5cb2\u003e] virtio_transport_send_pkt_info+0x412/0x4c0\n [\u003cffffffff81fe6183\u003e] virtio_transport_stream_enqueue+0x43/0x50\n [\u003cffffffff81fe0813\u003e] vsock_connectible_sendmsg+0x373/0x450\n [\u003cffffffff81d233d5\u003e] ____sys_sendmsg+0x365/0x3a0\n [\u003cffffffff81d246f4\u003e] ___sys_sendmsg+0x84/0xd0\n [\u003cffffffff81d26f47\u003e] __sys_sendmsg+0x47/0x80\n [\u003cffffffff820d3df3\u003e] do_syscall_64+0x93/0x180\n [\u003cffffffff8220012b\u003e] entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53118",
"url": "https://www.suse.com/security/cve/CVE-2024-53118"
},
{
"category": "external",
"summary": "SUSE Bug 1234071 for CVE-2024-53118",
"url": "https://bugzilla.suse.com/1234071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53118"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: solidrun: Fix UB bug with devres\n\nIn psnet_open_pf_bar() and snet_open_vf_bar() a string later passed to\npcim_iomap_regions() is placed on the stack. Neither\npcim_iomap_regions() nor the functions it calls copy that string.\n\nShould the string later ever be used, this, consequently, causes\nundefined behavior since the stack frame will by then have disappeared.\n\nFix the bug by allocating the strings on the heap through\ndevm_kasprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53126",
"url": "https://www.suse.com/security/cve/CVE-2024-53126"
},
{
"category": "external",
"summary": "SUSE Bug 1234158 for CVE-2024-53126",
"url": "https://bugzilla.suse.com/1234158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53126"
},
{
"cve": "CVE-2024-53127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\"\n\nThe commit 8396c793ffdf (\"mmc: dw_mmc: Fix IDMAC operation with pages\nbigger than 4K\") increased the max_req_size, even for 4K pages, causing\nvarious issues:\n- Panic booting the kernel/rootfs from an SD card on Rockchip RK3566\n- Panic booting the kernel/rootfs from an SD card on StarFive JH7100\n- \"swiotlb buffer is full\" and data corruption on StarFive JH7110\n\nAt this stage no fix have been found, so it\u0027s probably better to just\nrevert the change.\n\nThis reverts commit 8396c793ffdf28bb8aee7cfe0891080f8cab7890.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53127",
"url": "https://www.suse.com/security/cve/CVE-2024-53127"
},
{
"category": "external",
"summary": "SUSE Bug 1234153 for CVE-2024-53127",
"url": "https://bugzilla.suse.com/1234153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53127"
},
{
"cve": "CVE-2024-53129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/rockchip: vop: Fix a dereferenced before check warning\n\nThe \u0027state\u0027 can\u0027t be NULL, we should check crtc_state.\n\nFix warning:\ndrivers/gpu/drm/rockchip/rockchip_drm_vop.c:1096\nvop_plane_atomic_async_check() warn: variable dereferenced before check\n\u0027state\u0027 (see line 1077)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53129",
"url": "https://www.suse.com/security/cve/CVE-2024-53129"
},
{
"category": "external",
"summary": "SUSE Bug 1234155 for CVE-2024-53129",
"url": "https://bugzilla.suse.com/1234155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53129"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle dml allocation failure to avoid crash\n\n[Why]\nIn the case where a dml allocation fails for any reason, the\ncurrent state\u0027s dml contexts would no longer be valid. Then\nsubsequent calls dc_state_copy_internal would shallow copy\ninvalid memory and if the new state was released, a double\nfree would occur.\n\n[How]\nReset dml pointers in new_state to NULL and avoid invalid\npointer\n\n(cherry picked from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53133",
"url": "https://www.suse.com/security/cve/CVE-2024-53133"
},
{
"category": "external",
"summary": "SUSE Bug 1234221 for CVE-2024-53133",
"url": "https://bugzilla.suse.com/1234221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53133"
},
{
"cve": "CVE-2024-53134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx93-blk-ctrl: correct remove path\n\nThe check condition should be \u0027i \u003c bc-\u003eonecell_data.num_domains\u0027, not\n\u0027bc-\u003eonecell_data.num_domains\u0027 which will make the look never finish\nand cause kernel panic.\n\nAlso disable runtime to address\n\"imx93-blk-ctrl 4ac10000.system-controller: Unbalanced pm_runtime_enable!\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53134",
"url": "https://www.suse.com/security/cve/CVE-2024-53134"
},
{
"category": "external",
"summary": "SUSE Bug 1234159 for CVE-2024-53134",
"url": "https://bugzilla.suse.com/1234159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53134"
},
{
"cve": "CVE-2024-53136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: revert \"mm: shmem: fix data-race in shmem_getattr()\"\n\nRevert d949d1d14fa2 (\"mm: shmem: fix data-race in shmem_getattr()\") as\nsuggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over\nNFS.\n\nAs Hugh commented, \"added just to silence a syzbot sanitizer splat: added\nwhere there has never been any practical problem\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53136",
"url": "https://www.suse.com/security/cve/CVE-2024-53136"
},
{
"category": "external",
"summary": "SUSE Bug 1234161 for CVE-2024-53136",
"url": "https://bugzilla.suse.com/1234161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53136"
},
{
"cve": "CVE-2024-53141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: add missing range check in bitmap_ip_uadt\n\nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,\nthe values of ip and ip_to are slightly swapped. Therefore, the range check\nfor ip should be done later, but this part is missing and it seems that the\nvulnerability occurs.\n\nSo we should add missing range checks and remove unnecessary range checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53141",
"url": "https://www.suse.com/security/cve/CVE-2024-53141"
},
{
"category": "external",
"summary": "SUSE Bug 1234381 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "external",
"summary": "SUSE Bug 1245778 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1245778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53141"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE\n\nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4\n(\"Bluetooth: Always request for user confirmation for Just Works\")\nalways request user confirmation with confirm_hint set since the\nlikes of bluetoothd have dedicated policy around JUST_WORKS method\n(e.g. main.conf:JustWorksRepairing).\n\nCVE: CVE-2024-8805",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53144",
"url": "https://www.suse.com/security/cve/CVE-2024-53144"
},
{
"category": "external",
"summary": "SUSE Bug 1234690 for CVE-2024-53144",
"url": "https://bugzilla.suse.com/1234690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53144"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: Flush partial mappings in error case\n\nIf some remap_pfn_range() calls succeeded before one failed, we still have\nbuffer pages mapped into the userspace page tables when we drop the buffer\nreference with comedi_buf_map_put(bm). The userspace mappings are only\ncleaned up later in the mmap error path.\n\nFix it by explicitly flushing all mappings in our VMA on the error path.\n\nSee commit 79a61cc3fc04 (\"mm: avoid leaving partial pfn mappings around in\nerror case\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53148",
"url": "https://www.suse.com/security/cve/CVE-2024-53148"
},
{
"category": "external",
"summary": "SUSE Bug 1234832 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "external",
"summary": "SUSE Bug 1234833 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53148"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: Address an integer overflow\n\nDan Carpenter reports:\n\u003e Commit 78147ca8b4a9 (\"svcrdma: Add a \"parsed chunk list\" data\n\u003e structure\") from Jun 22, 2020 (linux-next), leads to the following\n\u003e Smatch static checker warning:\n\u003e\n\u003e\tnet/sunrpc/xprtrdma/svc_rdma_recvfrom.c:498 xdr_check_write_chunk()\n\u003e\twarn: potential user controlled sizeof overflow \u0027segcount * 4 * 4\u0027\n\u003e\n\u003e net/sunrpc/xprtrdma/svc_rdma_recvfrom.c\n\u003e 488 static bool xdr_check_write_chunk(struct svc_rdma_recv_ctxt *rctxt)\n\u003e 489 {\n\u003e 490 u32 segcount;\n\u003e 491 __be32 *p;\n\u003e 492\n\u003e 493 if (xdr_stream_decode_u32(\u0026rctxt-\u003erc_stream, \u0026segcount))\n\u003e ^^^^^^^^\n\u003e\n\u003e 494 return false;\n\u003e 495\n\u003e 496 /* A bogus segcount causes this buffer overflow check to fail. */\n\u003e 497 p = xdr_inline_decode(\u0026rctxt-\u003erc_stream,\n\u003e --\u003e 498 segcount * rpcrdma_segment_maxsz * sizeof(*p));\n\u003e\n\u003e\n\u003e segcount is an untrusted u32. On 32bit systems anything \u003e= SIZE_MAX / 16 will\n\u003e have an integer overflow and some those values will be accepted by\n\u003e xdr_inline_decode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53151",
"url": "https://www.suse.com/security/cve/CVE-2024-53151"
},
{
"category": "external",
"summary": "SUSE Bug 1234829 for CVE-2024-53151",
"url": "https://bugzilla.suse.com/1234829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53151"
},
{
"cve": "CVE-2024-53154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clk-apple-nco: Add NULL check in applnco_probe\n\nAdd NULL check in applnco_probe, to handle kernel NULL pointer\ndereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53154",
"url": "https://www.suse.com/security/cve/CVE-2024-53154"
},
{
"category": "external",
"summary": "SUSE Bug 1234826 for CVE-2024-53154",
"url": "https://bugzilla.suse.com/1234826"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53154"
},
{
"cve": "CVE-2024-53155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix uninitialized value in ocfs2_file_read_iter()\n\nSyzbot has reported the following KMSAN splat:\n\nBUG: KMSAN: uninit-value in ocfs2_file_read_iter+0x9a4/0xf80\n ocfs2_file_read_iter+0x9a4/0xf80\n __io_read+0x8d4/0x20f0\n io_read+0x3e/0xf0\n io_issue_sqe+0x42b/0x22c0\n io_wq_submit_work+0xaf9/0xdc0\n io_worker_handle_work+0xd13/0x2110\n io_wq_worker+0x447/0x1410\n ret_from_fork+0x6f/0x90\n ret_from_fork_asm+0x1a/0x30\n\nUninit was created at:\n __alloc_pages_noprof+0x9a7/0xe00\n alloc_pages_mpol_noprof+0x299/0x990\n alloc_pages_noprof+0x1bf/0x1e0\n allocate_slab+0x33a/0x1250\n ___slab_alloc+0x12ef/0x35e0\n kmem_cache_alloc_bulk_noprof+0x486/0x1330\n __io_alloc_req_refill+0x84/0x560\n io_submit_sqes+0x172f/0x2f30\n __se_sys_io_uring_enter+0x406/0x41c0\n __x64_sys_io_uring_enter+0x11f/0x1a0\n x64_sys_call+0x2b54/0x3ba0\n do_syscall_64+0xcd/0x1e0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nSince an instance of \u0027struct kiocb\u0027 may be passed from the block layer\nwith \u0027private\u0027 field uninitialized, introduce \u0027ocfs2_iocb_init_rw_locked()\u0027\nand use it from where \u0027ocfs2_dio_end_io()\u0027 might take care, i.e. in\n\u0027ocfs2_file_read_iter()\u0027 and \u0027ocfs2_file_write_iter()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53155",
"url": "https://www.suse.com/security/cve/CVE-2024-53155"
},
{
"category": "external",
"summary": "SUSE Bug 1234855 for CVE-2024-53155",
"url": "https://bugzilla.suse.com/1234855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53155"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53159"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53159",
"url": "https://www.suse.com/security/cve/CVE-2024-53159"
},
{
"category": "external",
"summary": "SUSE Bug 1234848 for CVE-2024-53159",
"url": "https://bugzilla.suse.com/1234848"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53159"
},
{
"cve": "CVE-2024-53160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu\n\nKCSAN reports a data race when access the krcp-\u003emonitor_work.timer.expires\nvariable in the schedule_delayed_monitor_work() function:\n\n\u003csnip\u003e\nBUG: KCSAN: data-race in __mod_timer / kvfree_call_rcu\n\nread to 0xffff888237d1cce8 of 8 bytes by task 10149 on cpu 1:\n schedule_delayed_monitor_work kernel/rcu/tree.c:3520 [inline]\n kvfree_call_rcu+0x3b8/0x510 kernel/rcu/tree.c:3839\n trie_update_elem+0x47c/0x620 kernel/bpf/lpm_trie.c:441\n bpf_map_update_value+0x324/0x350 kernel/bpf/syscall.c:203\n generic_map_update_batch+0x401/0x520 kernel/bpf/syscall.c:1849\n bpf_map_do_batch+0x28c/0x3f0 kernel/bpf/syscall.c:5143\n __sys_bpf+0x2e5/0x7a0\n __do_sys_bpf kernel/bpf/syscall.c:5741 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5739 [inline]\n __x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5739\n x64_sys_call+0x2625/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nwrite to 0xffff888237d1cce8 of 8 bytes by task 56 on cpu 0:\n __mod_timer+0x578/0x7f0 kernel/time/timer.c:1173\n add_timer_global+0x51/0x70 kernel/time/timer.c:1330\n __queue_delayed_work+0x127/0x1a0 kernel/workqueue.c:2523\n queue_delayed_work_on+0xdf/0x190 kernel/workqueue.c:2552\n queue_delayed_work include/linux/workqueue.h:677 [inline]\n schedule_delayed_monitor_work kernel/rcu/tree.c:3525 [inline]\n kfree_rcu_monitor+0x5e8/0x660 kernel/rcu/tree.c:3643\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0x483/0x9a0 kernel/workqueue.c:3310\n worker_thread+0x51d/0x6f0 kernel/workqueue.c:3391\n kthread+0x1d1/0x210 kernel/kthread.c:389\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 UID: 0 PID: 56 Comm: kworker/u8:4 Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events_unbound kfree_rcu_monitor\n\u003csnip\u003e\n\nkfree_rcu_monitor() rearms the work if a \"krcp\" has to be still\noffloaded and this is done without holding krcp-\u003elock, whereas\nthe kvfree_call_rcu() holds it.\n\nFix it by acquiring the \"krcp-\u003elock\" for kfree_rcu_monitor() so\nboth functions do not race anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53160",
"url": "https://www.suse.com/security/cve/CVE-2024-53160"
},
{
"category": "external",
"summary": "SUSE Bug 1234810 for CVE-2024-53160",
"url": "https://bugzilla.suse.com/1234810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53160"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix ordering of qlen adjustment\n\nChanges to sch-\u003eq.qlen around qdisc_tree_reduce_backlog() need to happen\n_before_ a call to said function because otherwise it may fail to notify\nparent qdiscs when the child is about to become empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53164",
"url": "https://www.suse.com/security/cve/CVE-2024-53164"
},
{
"category": "external",
"summary": "SUSE Bug 1234863 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "external",
"summary": "SUSE Bug 1246019 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1246019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53164"
},
{
"cve": "CVE-2024-53166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix bfqq uaf in bfq_limit_depth()\n\nSet new allocated bfqq to bic or remove freed bfqq from bic are both\nprotected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq\nfrom bic without the lock, this can lead to UAF if the io_context is\nshared by multiple tasks.\n\nFor example, test bfq with io_uring can trigger following UAF in v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfqq_group+0x15/0x50\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x80\n print_address_description.constprop.0+0x66/0x300\n print_report+0x3e/0x70\n kasan_report+0xb4/0xf0\n bfqq_group+0x15/0x50\n bfqq_request_over_limit+0x130/0x9a0\n bfq_limit_depth+0x1b5/0x480\n __blk_mq_alloc_requests+0x2b5/0xa00\n blk_mq_get_new_requests+0x11d/0x1d0\n blk_mq_submit_bio+0x286/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __block_write_full_folio+0x3d0/0x640\n writepage_cb+0x3b/0xc0\n write_cache_pages+0x254/0x6c0\n write_cache_pages+0x254/0x6c0\n do_writepages+0x192/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nAllocated by task 808602:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_slab_alloc+0x83/0x90\n kmem_cache_alloc_node+0x1b1/0x6d0\n bfq_get_queue+0x138/0xfa0\n bfq_get_bfqq_handle_split+0xe3/0x2c0\n bfq_init_rq+0x196/0xbb0\n bfq_insert_request.isra.0+0xb5/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_insert_request+0x15d/0x440\n blk_mq_submit_bio+0x8a4/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __blkdev_direct_IO_async+0x2dd/0x330\n blkdev_write_iter+0x39a/0x450\n io_write+0x22a/0x840\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFreed by task 808589:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n __kasan_slab_free+0x126/0x1b0\n kmem_cache_free+0x10c/0x750\n bfq_put_queue+0x2dd/0x770\n __bfq_insert_request.isra.0+0x155/0x7a0\n bfq_insert_request.isra.0+0x122/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_dispatch_plug_list+0x528/0x7e0\n blk_mq_flush_plug_list.part.0+0xe5/0x590\n __blk_flush_plug+0x3b/0x90\n blk_finish_plug+0x40/0x60\n do_writepages+0x19d/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFix the problem by protecting bic_to_bfqq() with bfqd-\u003elock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53166",
"url": "https://www.suse.com/security/cve/CVE-2024-53166"
},
{
"category": "external",
"summary": "SUSE Bug 1234884 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "external",
"summary": "SUSE Bug 1234885 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-53168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: fix one UAF issue caused by sunrpc kernel tcp socket\n\nBUG: KASAN: slab-use-after-free in tcp_write_timer_handler+0x156/0x3e0\nRead of size 1 at addr ffff888111f322cd by task swapper/0/0\n\nCPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc4-dirty #7\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x68/0xa0\n print_address_description.constprop.0+0x2c/0x3d0\n print_report+0xb4/0x270\n kasan_report+0xbd/0xf0\n tcp_write_timer_handler+0x156/0x3e0\n tcp_write_timer+0x66/0x170\n call_timer_fn+0xfb/0x1d0\n __run_timers+0x3f8/0x480\n run_timer_softirq+0x9b/0x100\n handle_softirqs+0x153/0x390\n __irq_exit_rcu+0x103/0x120\n irq_exit_rcu+0xe/0x20\n sysvec_apic_timer_interrupt+0x76/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\nCode: 4c 01 c7 4c 29 c2 e9 72 ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90\n 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 f8 25 00 fb f4 \u003cfa\u003e c3 cc cc cc\n cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90\nRSP: 0018:ffffffffa2007e28 EFLAGS: 00000242\nRAX: 00000000000f3b31 RBX: 1ffffffff4400fc7 RCX: ffffffffa09c3196\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9f00590f\nRBP: 0000000000000000 R08: 0000000000000001 R09: ffffed102360835d\nR10: ffff88811b041aeb R11: 0000000000000001 R12: 0000000000000000\nR13: ffffffffa202d7c0 R14: 0000000000000000 R15: 00000000000147d0\n default_idle_call+0x6b/0xa0\n cpuidle_idle_call+0x1af/0x1f0\n do_idle+0xbc/0x130\n cpu_startup_entry+0x33/0x40\n rest_init+0x11f/0x210\n start_kernel+0x39a/0x420\n x86_64_start_reservations+0x18/0x30\n x86_64_start_kernel+0x97/0xa0\n common_startup_64+0x13e/0x141\n \u003c/TASK\u003e\n\nAllocated by task 595:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_slab_alloc+0x87/0x90\n kmem_cache_alloc_noprof+0x12b/0x3f0\n copy_net_ns+0x94/0x380\n create_new_namespaces+0x24c/0x500\n unshare_nsproxy_namespaces+0x75/0xf0\n ksys_unshare+0x24e/0x4f0\n __x64_sys_unshare+0x1f/0x30\n do_syscall_64+0x70/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 100:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x54/0x70\n kmem_cache_free+0x156/0x5d0\n cleanup_net+0x5d3/0x670\n process_one_work+0x776/0xa90\n worker_thread+0x2e2/0x560\n kthread+0x1a8/0x1f0\n ret_from_fork+0x34/0x60\n ret_from_fork_asm+0x1a/0x30\n\nReproduction script:\n\nmkdir -p /mnt/nfsshare\nmkdir -p /mnt/nfs/netns_1\nmkfs.ext4 /dev/sdb\nmount /dev/sdb /mnt/nfsshare\nsystemctl restart nfs-server\nchmod 777 /mnt/nfsshare\nexportfs -i -o rw,no_root_squash *:/mnt/nfsshare\n\nip netns add netns_1\nip link add name veth_1_peer type veth peer veth_1\nifconfig veth_1_peer 11.11.0.254 up\nip link set veth_1 netns netns_1\nip netns exec netns_1 ifconfig veth_1 11.11.0.1\n\nip netns exec netns_1 /root/iptables -A OUTPUT -d 11.11.0.254 -p tcp \\\n\t--tcp-flags FIN FIN -j DROP\n\n(note: In my environment, a DESTROY_CLIENTID operation is always sent\n immediately, breaking the nfs tcp connection.)\nip netns exec netns_1 timeout -s 9 300 mount -t nfs -o proto=tcp,vers=4.1 \\\n\t11.11.0.254:/mnt/nfsshare /mnt/nfs/netns_1\n\nip netns del netns_1\n\nThe reason here is that the tcp socket in netns_1 (nfs side) has been\nshutdown and closed (done in xs_destroy), but the FIN message (with ack)\nis discarded, and the nfsd side keeps sending retransmission messages.\nAs a result, when the tcp sock in netns_1 processes the received message,\nit sends the message (FIN message) in the sending queue, and the tcp timer\nis re-established. When the network namespace is deleted, the net structure\naccessed by tcp\u0027s timer handler function causes problems.\n\nTo fix this problem, let\u0027s hold netns refcnt for the tcp kernel socket as\ndone in other modules. This is an ugly hack which can easily be backported\nto earlier kernels. A proper fix which cleans up the interfaces will\nfollow, but may not be so easy to backport.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53168",
"url": "https://www.suse.com/security/cve/CVE-2024-53168"
},
{
"category": "external",
"summary": "SUSE Bug 1234887 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "external",
"summary": "SUSE Bug 1243650 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1243650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53168"
},
{
"cve": "CVE-2024-53169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fabrics: fix kernel crash while shutting down controller\n\nThe nvme keep-alive operation, which executes at a periodic interval,\ncould potentially sneak in while shutting down a fabric controller.\nThis may lead to a race between the fabric controller admin queue\ndestroy code path (invoked while shutting down controller) and hw/hctx\nqueue dispatcher called from the nvme keep-alive async request queuing\noperation. This race could lead to the kernel crash shown below:\n\nCall Trace:\n autoremove_wake_function+0x0/0xbc (unreliable)\n __blk_mq_sched_dispatch_requests+0x114/0x24c\n blk_mq_sched_dispatch_requests+0x44/0x84\n blk_mq_run_hw_queue+0x140/0x220\n nvme_keep_alive_work+0xc8/0x19c [nvme_core]\n process_one_work+0x200/0x4e0\n worker_thread+0x340/0x504\n kthread+0x138/0x140\n start_kernel_thread+0x14/0x18\n\nWhile shutting down fabric controller, if nvme keep-alive request sneaks\nin then it would be flushed off. The nvme_keep_alive_end_io function is\nthen invoked to handle the end of the keep-alive operation which\ndecrements the admin-\u003eq_usage_counter and assuming this is the last/only\nrequest in the admin queue then the admin-\u003eq_usage_counter becomes zero.\nIf that happens then blk-mq destroy queue operation (blk_mq_destroy_\nqueue()) which could be potentially running simultaneously on another\ncpu (as this is the controller shutdown code path) would forward\nprogress and deletes the admin queue. So, now from this point onward\nwe are not supposed to access the admin queue resources. However the\nissue here\u0027s that the nvme keep-alive thread running hw/hctx queue\ndispatch operation hasn\u0027t yet finished its work and so it could still\npotentially access the admin queue resource while the admin queue had\nbeen already deleted and that causes the above crash.\n\nThe above kernel crash is regression caused due to changes implemented\nin commit a54a93d0e359 (\"nvme: move stopping keep-alive into\nnvme_uninit_ctrl()\"). Ideally we should stop keep-alive before destroyin\ng the admin queue and freeing the admin tagset so that it wouldn\u0027t sneak\nin during the shutdown operation. However we removed the keep alive stop\noperation from the beginning of the controller shutdown code path in commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\")\nand added it under nvme_uninit_ctrl() which executes very late in the\nshutdown code path after the admin queue is destroyed and its tagset is\nremoved. So this change created the possibility of keep-alive sneaking in\nand interfering with the shutdown operation and causing observed kernel\ncrash.\n\nTo fix the observed crash, we decided to move nvme_stop_keep_alive() from\nnvme_uninit_ctrl() to nvme_remove_admin_tag_set(). This change would ensure\nthat we don\u0027t forward progress and delete the admin queue until the keep-\nalive operation is finished (if it\u0027s in-flight) or cancelled and that would\nhelp contain the race condition explained above and hence avoid the crash.\n\nMoving nvme_stop_keep_alive() to nvme_remove_admin_tag_set() instead of\nadding nvme_stop_keep_alive() to the beginning of the controller shutdown\ncode path in nvme_stop_ctrl(), as was the case earlier before commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\"),\nwould help save one callsite of nvme_stop_keep_alive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53169",
"url": "https://www.suse.com/security/cve/CVE-2024-53169"
},
{
"category": "external",
"summary": "SUSE Bug 1234900 for CVE-2024-53169",
"url": "https://bugzilla.suse.com/1234900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53169"
},
{
"cve": "CVE-2024-53170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix uaf for flush rq while iterating tags\n\nblk_mq_clear_flush_rq_mapping() is not called during scsi probe, by\nchecking blk_queue_init_done(). However, QUEUE_FLAG_INIT_DONE is cleared\nin del_gendisk by commit aec89dc5d421 (\"block: keep q_usage_counter in\natomic mode after del_gendisk\"), hence for disk like scsi, following\nblk_mq_destroy_queue() will not clear flush rq from tags-\u003erqs[] as well,\ncause following uaf that is found by our syzkaller for v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in blk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nRead of size 4 at addr ffff88811c969c20 by task kworker/1:2H/224909\n\nCPU: 1 PID: 224909 Comm: kworker/1:2H Not tainted 6.6.0-ga836a5060850 #32\nWorkqueue: kblockd blk_mq_timeout_work\nCall Trace:\n\n__dump_stack lib/dump_stack.c:88 [inline]\ndump_stack_lvl+0x91/0xf0 lib/dump_stack.c:106\nprint_address_description.constprop.0+0x66/0x300 mm/kasan/report.c:364\nprint_report+0x3e/0x70 mm/kasan/report.c:475\nkasan_report+0xb8/0xf0 mm/kasan/report.c:588\nblk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nbt_iter block/blk-mq-tag.c:288 [inline]\n__sbitmap_for_each_set include/linux/sbitmap.h:295 [inline]\nsbitmap_for_each_set include/linux/sbitmap.h:316 [inline]\nbt_for_each+0x455/0x790 block/blk-mq-tag.c:325\nblk_mq_queue_tag_busy_iter+0x320/0x740 block/blk-mq-tag.c:534\nblk_mq_timeout_work+0x1a3/0x7b0 block/blk-mq.c:1673\nprocess_one_work+0x7c4/0x1450 kernel/workqueue.c:2631\nprocess_scheduled_works kernel/workqueue.c:2704 [inline]\nworker_thread+0x804/0xe40 kernel/workqueue.c:2785\nkthread+0x346/0x450 kernel/kthread.c:388\nret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\nret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:293\n\nAllocated by task 942:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\n____kasan_kmalloc mm/kasan/common.c:374 [inline]\n__kasan_kmalloc mm/kasan/common.c:383 [inline]\n__kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:380\nkasan_kmalloc include/linux/kasan.h:198 [inline]\n__do_kmalloc_node mm/slab_common.c:1007 [inline]\n__kmalloc_node+0x69/0x170 mm/slab_common.c:1014\nkmalloc_node include/linux/slab.h:620 [inline]\nkzalloc_node include/linux/slab.h:732 [inline]\nblk_alloc_flush_queue+0x144/0x2f0 block/blk-flush.c:499\nblk_mq_alloc_hctx+0x601/0x940 block/blk-mq.c:3788\nblk_mq_alloc_and_init_hctx+0x27f/0x330 block/blk-mq.c:4261\nblk_mq_realloc_hw_ctxs+0x488/0x5e0 block/blk-mq.c:4294\nblk_mq_init_allocated_queue+0x188/0x860 block/blk-mq.c:4350\nblk_mq_init_queue_data block/blk-mq.c:4166 [inline]\nblk_mq_init_queue+0x8d/0x100 block/blk-mq.c:4176\nscsi_alloc_sdev+0x843/0xd50 drivers/scsi/scsi_scan.c:335\nscsi_probe_and_add_lun+0x77c/0xde0 drivers/scsi/scsi_scan.c:1189\n__scsi_scan_target+0x1fc/0x5a0 drivers/scsi/scsi_scan.c:1727\nscsi_scan_channel drivers/scsi/scsi_scan.c:1815 [inline]\nscsi_scan_channel+0x14b/0x1e0 drivers/scsi/scsi_scan.c:1791\nscsi_scan_host_selected+0x2fe/0x400 drivers/scsi/scsi_scan.c:1844\nscsi_scan+0x3a0/0x3f0 drivers/scsi/scsi_sysfs.c:151\nstore_scan+0x2a/0x60 drivers/scsi/scsi_sysfs.c:191\ndev_attr_store+0x5c/0x90 drivers/base/core.c:2388\nsysfs_kf_write+0x11c/0x170 fs/sysfs/file.c:136\nkernfs_fop_write_iter+0x3fc/0x610 fs/kernfs/file.c:338\ncall_write_iter include/linux/fs.h:2083 [inline]\nnew_sync_write+0x1b4/0x2d0 fs/read_write.c:493\nvfs_write+0x76c/0xb00 fs/read_write.c:586\nksys_write+0x127/0x250 fs/read_write.c:639\ndo_syscall_x64 arch/x86/entry/common.c:51 [inline]\ndo_syscall_64+0x70/0x120 arch/x86/entry/common.c:81\nentry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nFreed by task 244687:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\nkasan_save_free_info+0x2b/0x50 mm/kasan/generic.c:522\n____kasan_slab_free mm/kasan/common.c:236 [inline]\n__kasan_slab_free+0x12a/0x1b0 mm/kasan/common.c:244\nkasan_slab_free include/linux/kasan.h:164 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53170",
"url": "https://www.suse.com/security/cve/CVE-2024-53170"
},
{
"category": "external",
"summary": "SUSE Bug 1234888 for CVE-2024-53170",
"url": "https://bugzilla.suse.com/1234888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53170"
},
{
"cve": "CVE-2024-53171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit\n\nAfter an insertion in TNC, the tree might split and cause a node to\nchange its `znode-\u003eparent`. A further deletion of other nodes in the\ntree (which also could free the nodes), the aforementioned node\u0027s\n`znode-\u003ecparent` could still point to a freed node. This\n`znode-\u003ecparent` may not be updated when getting nodes to commit in\n`ubifs_tnc_start_commit()`. This could then trigger a use-after-free\nwhen accessing the `znode-\u003ecparent` in `write_index()` in\n`ubifs_tnc_end_commit()`.\n\nThis can be triggered by running\n\n rm -f /etc/test-file.bin\n dd if=/dev/urandom of=/etc/test-file.bin bs=1M count=60 conv=fsync\n\nin a loop, and with `CONFIG_UBIFS_FS_AUTHENTICATION`. KASAN then\nreports:\n\n BUG: KASAN: use-after-free in ubifs_tnc_end_commit+0xa5c/0x1950\n Write of size 32 at addr ffffff800a3af86c by task ubifs_bgt0_20/153\n\n Call trace:\n dump_backtrace+0x0/0x340\n show_stack+0x18/0x24\n dump_stack_lvl+0x9c/0xbc\n print_address_description.constprop.0+0x74/0x2b0\n kasan_report+0x1d8/0x1f0\n kasan_check_range+0xf8/0x1a0\n memcpy+0x84/0xf4\n ubifs_tnc_end_commit+0xa5c/0x1950\n do_commit+0x4e0/0x1340\n ubifs_bg_thread+0x234/0x2e0\n kthread+0x36c/0x410\n ret_from_fork+0x10/0x20\n\n Allocated by task 401:\n kasan_save_stack+0x38/0x70\n __kasan_kmalloc+0x8c/0xd0\n __kmalloc+0x34c/0x5bc\n tnc_insert+0x140/0x16a4\n ubifs_tnc_add+0x370/0x52c\n ubifs_jnl_write_data+0x5d8/0x870\n do_writepage+0x36c/0x510\n ubifs_writepage+0x190/0x4dc\n __writepage+0x58/0x154\n write_cache_pages+0x394/0x830\n do_writepages+0x1f0/0x5b0\n filemap_fdatawrite_wbc+0x170/0x25c\n file_write_and_wait_range+0x140/0x190\n ubifs_fsync+0xe8/0x290\n vfs_fsync_range+0xc0/0x1e4\n do_fsync+0x40/0x90\n __arm64_sys_fsync+0x34/0x50\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\n Freed by task 403:\n kasan_save_stack+0x38/0x70\n kasan_set_track+0x28/0x40\n kasan_set_free_info+0x28/0x4c\n __kasan_slab_free+0xd4/0x13c\n kfree+0xc4/0x3a0\n tnc_delete+0x3f4/0xe40\n ubifs_tnc_remove_range+0x368/0x73c\n ubifs_tnc_remove_ino+0x29c/0x2e0\n ubifs_jnl_delete_inode+0x150/0x260\n ubifs_evict_inode+0x1d4/0x2e4\n evict+0x1c8/0x450\n iput+0x2a0/0x3c4\n do_unlinkat+0x2cc/0x490\n __arm64_sys_unlinkat+0x90/0x100\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\nThe offending `memcpy()` in `ubifs_copy_hash()` has a use-after-free\nwhen a node becomes root in TNC but still has a `cparent` to an already\nfreed node. More specifically, consider the following TNC:\n\n zroot\n /\n /\n zp1\n /\n /\n zn\n\nInserting a new node `zn_new` with a key smaller then `zn` will trigger\na split in `tnc_insert()` if `zp1` is full:\n\n zroot\n / \\\n / \\\n zp1 zp2\n / \\\n / \\\n zn_new zn\n\n`zn-\u003eparent` has now been moved to `zp2`, *but* `zn-\u003ecparent` still\npoints to `zp1`.\n\nNow, consider a removal of all the nodes _except_ `zn`. Just when\n`tnc_delete()` is about to delete `zroot` and `zp2`:\n\n zroot\n \\\n \\\n zp2\n \\\n \\\n zn\n\n`zroot` and `zp2` get freed and the tree collapses:\n\n zn\n\n`zn` now becomes the new `zroot`.\n\n`get_znodes_to_commit()` will now only find `zn`, the new `zroot`, and\n`write_index()` will check its `znode-\u003ecparent` that wrongly points to\nthe already freed `zp1`. `ubifs_copy_hash()` thus gets wrongly called\nwith `znode-\u003ecparent-\u003ezbranch[znode-\u003eiip].hash` that triggers the\nuse-after-free!\n\nFix this by explicitly setting `znode-\u003ecparent` to `NULL` in\n`get_znodes_to_commit()` for the root node. The search for the dirty\nnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53171",
"url": "https://www.suse.com/security/cve/CVE-2024-53171"
},
{
"category": "external",
"summary": "SUSE Bug 1234889 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "external",
"summary": "SUSE Bug 1236234 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1236234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53171"
},
{
"cve": "CVE-2024-53172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubi: fastmap: Fix duplicate slab cache names while attaching\n\nSince commit 4c39529663b9 (\"slab: Warn on duplicate cache names when\nDEBUG_VM=y\"), the duplicate slab cache names can be detected and a\nkernel WARNING is thrown out.\nIn UBI fast attaching process, alloc_ai() could be invoked twice\nwith the same slab cache name \u0027ubi_aeb_slab_cache\u0027, which will trigger\nfollowing warning messages:\n kmem_cache of name \u0027ubi_aeb_slab_cache\u0027 already exists\n WARNING: CPU: 0 PID: 7519 at mm/slab_common.c:107\n __kmem_cache_create_args+0x100/0x5f0\n Modules linked in: ubi(+) nandsim [last unloaded: nandsim]\n CPU: 0 UID: 0 PID: 7519 Comm: modprobe Tainted: G 6.12.0-rc2\n RIP: 0010:__kmem_cache_create_args+0x100/0x5f0\n Call Trace:\n __kmem_cache_create_args+0x100/0x5f0\n alloc_ai+0x295/0x3f0 [ubi]\n ubi_attach+0x3c3/0xcc0 [ubi]\n ubi_attach_mtd_dev+0x17cf/0x3fa0 [ubi]\n ubi_init+0x3fb/0x800 [ubi]\n do_init_module+0x265/0x7d0\n __x64_sys_finit_module+0x7a/0xc0\n\nThe problem could be easily reproduced by loading UBI device by fastmap\nwith CONFIG_DEBUG_VM=y.\nFix it by using different slab names for alloc_ai() callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53172",
"url": "https://www.suse.com/security/cve/CVE-2024-53172"
},
{
"category": "external",
"summary": "SUSE Bug 1234898 for CVE-2024-53172",
"url": "https://bugzilla.suse.com/1234898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53172"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: make sure cache entry active before cache_show\n\nThe function `c_show` was called with protection from RCU. This only\nensures that `cp` will not be freed. Therefore, the reference count for\n`cp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `cache_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `cp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 7 PID: 822 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 7 UID: 0 PID: 822 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n\nCall Trace:\n \u003cTASK\u003e\n c_show+0x2fc/0x380 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53174",
"url": "https://www.suse.com/security/cve/CVE-2024-53174"
},
{
"category": "external",
"summary": "SUSE Bug 1234899 for CVE-2024-53174",
"url": "https://bugzilla.suse.com/1234899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53174"
},
{
"cve": "CVE-2024-53175",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53175"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipc: fix memleak if msg_init_ns failed in create_ipc_ns\n\nPercpu memory allocation may failed during create_ipc_ns however this\nfail is not handled properly since ipc sysctls and mq sysctls is not\nreleased properly. Fix this by release these two resource when failure.\n\nHere is the kmemleak stack when percpu failed:\n\nunreferenced object 0xffff88819de2a600 (size 512):\n comm \"shmem_2nstest\", pid 120711, jiffies 4300542254\n hex dump (first 32 bytes):\n 60 aa 9d 84 ff ff ff ff fc 18 48 b2 84 88 ff ff `.........H.....\n 04 00 00 00 a4 01 00 00 20 e4 56 81 ff ff ff ff ........ .V.....\n backtrace (crc be7cba35):\n [\u003cffffffff81b43f83\u003e] __kmalloc_node_track_caller_noprof+0x333/0x420\n [\u003cffffffff81a52e56\u003e] kmemdup_noprof+0x26/0x50\n [\u003cffffffff821b2f37\u003e] setup_mq_sysctls+0x57/0x1d0\n [\u003cffffffff821b29cc\u003e] copy_ipcs+0x29c/0x3b0\n [\u003cffffffff815d6a10\u003e] create_new_namespaces+0x1d0/0x920\n [\u003cffffffff815d7449\u003e] copy_namespaces+0x2e9/0x3e0\n [\u003cffffffff815458f3\u003e] copy_process+0x29f3/0x7ff0\n [\u003cffffffff8154b080\u003e] kernel_clone+0xc0/0x650\n [\u003cffffffff8154b6b1\u003e] __do_sys_clone+0xa1/0xe0\n [\u003cffffffff843df8ff\u003e] do_syscall_64+0xbf/0x1c0\n [\u003cffffffff846000b0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53175",
"url": "https://www.suse.com/security/cve/CVE-2024-53175"
},
{
"category": "external",
"summary": "SUSE Bug 1234893 for CVE-2024-53175",
"url": "https://bugzilla.suse.com/1234893"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53175"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Add sanity NULL check for the default mmap fault handler\n\nA driver might allow the mmap access before initializing its\nruntime-\u003edma_area properly. Add a proper NULL check before passing to\nvirt_to_page() for avoiding a panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53180",
"url": "https://www.suse.com/security/cve/CVE-2024-53180"
},
{
"category": "external",
"summary": "SUSE Bug 1234929 for CVE-2024-53180",
"url": "https://bugzilla.suse.com/1234929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53180"
},
{
"cve": "CVE-2024-53185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix NULL ptr deref in crypto_aead_setkey()\n\nNeither SMB3.0 or SMB3.02 supports encryption negotiate context, so\nwhen SMB2_GLOBAL_CAP_ENCRYPTION flag is set in the negotiate response,\nthe client uses AES-128-CCM as the default cipher. See MS-SMB2\n3.3.5.4.\n\nCommit b0abcd65ec54 (\"smb: client: fix UAF in async decryption\") added\na @server-\u003ecipher_type check to conditionally call\nsmb3_crypto_aead_allocate(), but that check would always be false as\n@server-\u003ecipher_type is unset for SMB3.02.\n\nFix the following KASAN splat by setting @server-\u003ecipher_type for\nSMB3.02 as well.\n\nmount.cifs //srv/share /mnt -o vers=3.02,seal,...\n\nBUG: KASAN: null-ptr-deref in crypto_aead_setkey+0x2c/0x130\nRead of size 8 at addr 0000000000000020 by task mount.cifs/1095\nCPU: 1 UID: 0 PID: 1095 Comm: mount.cifs Not tainted 6.12.0 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-3.fc41\n04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? crypto_aead_setkey+0x2c/0x130\n kasan_report+0xda/0x110\n ? crypto_aead_setkey+0x2c/0x130\n crypto_aead_setkey+0x2c/0x130\n crypt_message+0x258/0xec0 [cifs]\n ? __asan_memset+0x23/0x50\n ? __pfx_crypt_message+0x10/0x10 [cifs]\n ? mark_lock+0xb0/0x6a0\n ? hlock_class+0x32/0xb0\n ? mark_lock+0xb0/0x6a0\n smb3_init_transform_rq+0x352/0x3f0 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n smb_send_rqst+0x144/0x230 [cifs]\n ? __pfx_smb_send_rqst+0x10/0x10 [cifs]\n ? hlock_class+0x32/0xb0\n ? smb2_setup_request+0x225/0x3a0 [cifs]\n ? __pfx_cifs_compound_last_callback+0x10/0x10 [cifs]\n compound_send_recv+0x59b/0x1140 [cifs]\n ? __pfx_compound_send_recv+0x10/0x10 [cifs]\n ? __create_object+0x5e/0x90\n ? hlock_class+0x32/0xb0\n ? do_raw_spin_unlock+0x9a/0xf0\n cifs_send_recv+0x23/0x30 [cifs]\n SMB2_tcon+0x3ec/0xb30 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? __pfx_lock_release+0x10/0x10\n ? do_raw_spin_trylock+0xc6/0x120\n ? lock_acquire+0x3f/0x90\n ? _get_xid+0x16/0xd0 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n ? __pfx_cifs_get_smb_ses+0x10/0x10 [cifs]\n ? cifs_get_tcp_session+0xaa0/0xca0 [cifs]\n cifs_mount_get_session+0x8a/0x210 [cifs]\n dfs_mount_share+0x1b0/0x11d0 [cifs]\n ? __pfx___lock_acquire+0x10/0x10\n ? __pfx_dfs_mount_share+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? lock_release+0x203/0x5d0\n cifs_mount+0xb3/0x3d0 [cifs]\n ? do_raw_spin_trylock+0xc6/0x120\n ? __pfx_cifs_mount+0x10/0x10 [cifs]\n ? lock_acquire+0x3f/0x90\n ? find_nls+0x16/0xa0\n ? smb3_update_mnt_flags+0x372/0x3b0 [cifs]\n cifs_smb3_do_mount+0x1e2/0xc80 [cifs]\n ? __pfx_vfs_parse_fs_string+0x10/0x10\n ? __pfx_cifs_smb3_do_mount+0x10/0x10 [cifs]\n smb3_get_tree+0x1bf/0x330 [cifs]\n vfs_get_tree+0x4a/0x160\n path_mount+0x3c1/0xfb0\n ? kasan_quarantine_put+0xc7/0x1d0\n ? __pfx_path_mount+0x10/0x10\n ? kmem_cache_free+0x118/0x3e0\n ? user_path_at+0x74/0xa0\n __x64_sys_mount+0x1a6/0x1e0\n ? __pfx___x64_sys_mount+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53185",
"url": "https://www.suse.com/security/cve/CVE-2024-53185"
},
{
"category": "external",
"summary": "SUSE Bug 1234901 for CVE-2024-53185",
"url": "https://bugzilla.suse.com/1234901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53185"
},
{
"cve": "CVE-2024-53187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check for overflows in io_pin_pages\n\nWARNING: CPU: 0 PID: 5834 at io_uring/memmap.c:144 io_pin_pages+0x149/0x180 io_uring/memmap.c:144\nCPU: 0 UID: 0 PID: 5834 Comm: syz-executor825 Not tainted 6.12.0-next-20241118-syzkaller #0\nCall Trace:\n \u003cTASK\u003e\n __io_uaddr_map+0xfb/0x2d0 io_uring/memmap.c:183\n io_rings_map io_uring/io_uring.c:2611 [inline]\n io_allocate_scq_urings+0x1c0/0x650 io_uring/io_uring.c:3470\n io_uring_create+0x5b5/0xc00 io_uring/io_uring.c:3692\n io_uring_setup io_uring/io_uring.c:3781 [inline]\n ...\n \u003c/TASK\u003e\n\nio_pin_pages()\u0027s uaddr parameter came directly from the user and can be\ngarbage. Don\u0027t just add size to it as it can overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53187",
"url": "https://www.suse.com/security/cve/CVE-2024-53187"
},
{
"category": "external",
"summary": "SUSE Bug 1234947 for CVE-2024-53187",
"url": "https://bugzilla.suse.com/1234947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53187"
},
{
"cve": "CVE-2024-53188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix crash when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe function ath12k_dp_cc_cleanup is called to release resources.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nat RIP: 0010:ath12k_dp_cc_cleanup.part.0+0xb6/0x500 [ath12k]\nCall Trace:\nath12k_dp_cc_cleanup\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set to NULL the released structure in\nath12k_dp_cc_cleanup at the end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53188",
"url": "https://www.suse.com/security/cve/CVE-2024-53188"
},
{
"category": "external",
"summary": "SUSE Bug 1234948 for CVE-2024-53188",
"url": "https://bugzilla.suse.com/1234948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53188"
},
{
"cve": "CVE-2024-53190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures\n\nSyzkaller reported a hung task with uevent_show() on stack trace. That\nspecific issue was addressed by another commit [0], but even with that\nfix applied (for example, running v6.12-rc5) we face another type of hung\ntask that comes from the same reproducer [1]. By investigating that, we\ncould narrow it to the following path:\n\n(a) Syzkaller emulates a Realtek USB WiFi adapter using raw-gadget and\ndummy_hcd infrastructure.\n\n(b) During the probe of rtl8192cu, the driver ends-up performing an efuse\nread procedure (which is related to EEPROM load IIUC), and here lies the\nissue: the function read_efuse() calls read_efuse_byte() many times, as\nloop iterations depending on the efuse size (in our example, 512 in total).\n\nThis procedure for reading efuse bytes relies in a loop that performs an\nI/O read up to *10k* times in case of failures. We measured the time of\nthe loop inside read_efuse_byte() alone, and in this reproducer (which\ninvolves the dummy_hcd emulation layer), it takes 15 seconds each. As a\nconsequence, we have the driver stuck in its probe routine for big time,\nexposing a stack trace like below if we attempt to reboot the system, for\nexample:\n\ntask:kworker/0:3 state:D stack:0 pid:662 tgid:662 ppid:2 flags:0x00004000\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n __schedule+0xe22/0xeb6\n schedule_timeout+0xe7/0x132\n __wait_for_common+0xb5/0x12e\n usb_start_wait_urb+0xc5/0x1ef\n ? usb_alloc_urb+0x95/0xa4\n usb_control_msg+0xff/0x184\n _usbctrl_vendorreq_sync+0xa0/0x161\n _usb_read_sync+0xb3/0xc5\n read_efuse_byte+0x13c/0x146\n read_efuse+0x351/0x5f0\n efuse_read_all_map+0x42/0x52\n rtl_efuse_shadow_map_update+0x60/0xef\n rtl_get_hwinfo+0x5d/0x1c2\n rtl92cu_read_eeprom_info+0x10a/0x8d5\n ? rtl92c_read_chip_version+0x14f/0x17e\n rtl_usb_probe+0x323/0x851\n usb_probe_interface+0x278/0x34b\n really_probe+0x202/0x4a4\n __driver_probe_device+0x166/0x1b2\n driver_probe_device+0x2f/0xd8\n [...]\n\nWe propose hereby to drastically reduce the attempts of doing the I/O\nreads in case of failures, restricted to USB devices (given that\nthey\u0027re inherently slower than PCIe ones). By retrying up to 10 times\n(instead of 10000), we got reponsiveness in the reproducer, while seems\nreasonable to believe that there\u0027s no sane USB device implementation in\nthe field requiring this amount of retries at every I/O read in order\nto properly work. Based on that assumption, it\u0027d be good to have it\nbackported to stable but maybe not since driver implementation (the 10k\nnumber comes from day 0), perhaps up to 6.x series makes sense.\n\n[0] Commit 15fffc6a5624 (\"driver core: Fix uevent_show() vs driver detach race\")\n\n[1] A note about that: this syzkaller report presents multiple reproducers\nthat differs by the type of emulated USB device. For this specific case,\ncheck the entry from 2024/08/08 06:23 in the list of crashes; the C repro\nis available at https://syzkaller.appspot.com/text?tag=ReproC\u0026x=1521fc83980000.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53190",
"url": "https://www.suse.com/security/cve/CVE-2024-53190"
},
{
"category": "external",
"summary": "SUSE Bug 1234950 for CVE-2024-53190",
"url": "https://bugzilla.suse.com/1234950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-53190"
},
{
"cve": "CVE-2024-53191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix warning when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe buffers dp-\u003etx_ring[i].tx_status are released.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nWARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80\nCall Trace:\nfree_large_kmalloc\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set the buffers to NULL after releasing in\norder to avoid the double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53191",
"url": "https://www.suse.com/security/cve/CVE-2024-53191"
},
{
"category": "external",
"summary": "SUSE Bug 1234952 for CVE-2024-53191",
"url": "https://bugzilla.suse.com/1234952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53191"
},
{
"cve": "CVE-2024-53194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix use-after-free of slot-\u003ebus on hot remove\n\nDennis reports a boot crash on recent Lenovo laptops with a USB4 dock.\n\nSince commit 0fc70886569c (\"thunderbolt: Reset USB4 v2 host router\") and\ncommit 59a54c5f3dbd (\"thunderbolt: Reset topology created by the boot\nfirmware\"), USB4 v2 and v1 Host Routers are reset on probe of the\nthunderbolt driver.\n\nThe reset clears the Presence Detect State and Data Link Layer Link Active\nbits at the USB4 Host Router\u0027s Root Port and thus causes hot removal of the\ndock.\n\nThe crash occurs when pciehp is unbound from one of the dock\u0027s Downstream\nPorts: pciehp creates a pci_slot on bind and destroys it on unbind. The\npci_slot contains a pointer to the pci_bus below the Downstream Port, but\na reference on that pci_bus is never acquired. The pci_bus is destroyed\nbefore the pci_slot, so a use-after-free ensues when pci_slot_release()\naccesses slot-\u003ebus.\n\nIn principle this should not happen because pci_stop_bus_device() unbinds\npciehp (and therefore destroys the pci_slot) before the pci_bus is\ndestroyed by pci_remove_bus_device().\n\nHowever the stacktrace provided by Dennis shows that pciehp is unbound from\npci_remove_bus_device() instead of pci_stop_bus_device(). To understand\nthe significance of this, one needs to know that the PCI core uses a two\nstep process to remove a portion of the hierarchy: It first unbinds all\ndrivers in the sub-hierarchy in pci_stop_bus_device() and then actually\nremoves the devices in pci_remove_bus_device(). There is no precaution to\nprevent driver binding in-between pci_stop_bus_device() and\npci_remove_bus_device().\n\nIn Dennis\u0027 case, it seems removal of the hierarchy by pciehp races with\ndriver binding by pci_bus_add_devices(). pciehp is bound to the\nDownstream Port after pci_stop_bus_device() has run, so it is unbound by\npci_remove_bus_device() instead of pci_stop_bus_device(). Because the\npci_bus has already been destroyed at that point, accesses to it result in\na use-after-free.\n\nOne might conclude that driver binding needs to be prevented after\npci_stop_bus_device() has run. However it seems risky that pci_slot points\nto pci_bus without holding a reference. Solely relying on correct ordering\nof driver unbind versus pci_bus destruction is certainly not defensive\nprogramming.\n\nIf pci_slot has a need to access data in pci_bus, it ought to acquire a\nreference. Amend pci_create_slot() accordingly. Dennis reports that the\ncrash is not reproducible with this change.\n\nAbridged stacktrace:\n\n pcieport 0000:00:07.0: PME: Signaling with IRQ 156\n pcieport 0000:00:07.0: pciehp: Slot #12 AttnBtn- PwrCtrl- MRL- AttnInd- PwrInd- HotPlug+ Surprise+ Interlock- NoCompl+ IbPresDis- LLActRep+\n pci_bus 0000:20: dev 00, created physical slot 12\n pcieport 0000:00:07.0: pciehp: Slot(12): Card not present\n ...\n pcieport 0000:21:02.0: pciehp: pcie_disable_notification: SLOTCTRL d8 write cmd 0\n Oops: general protection fault, probably for non-canonical address 0x6b6b6b6b6b6b6b6b: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 13 UID: 0 PID: 134 Comm: irq/156-pciehp Not tainted 6.11.0-devel+ #1\n RIP: 0010:dev_driver_string+0x12/0x40\n pci_destroy_slot\n pciehp_remove\n pcie_port_remove_service\n device_release_driver_internal\n bus_remove_device\n device_del\n device_unregister\n remove_iter\n device_for_each_child\n pcie_portdrv_remove\n pci_device_remove\n device_release_driver_internal\n bus_remove_device\n device_del\n pci_remove_bus_device (recursive invocation)\n pci_remove_bus_device\n pciehp_unconfigure_device\n pciehp_disable_slot\n pciehp_handle_presence_or_link_change\n pciehp_ist",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53194",
"url": "https://www.suse.com/security/cve/CVE-2024-53194"
},
{
"category": "external",
"summary": "SUSE Bug 1235459 for CVE-2024-53194",
"url": "https://bugzilla.suse.com/1235459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53194"
},
{
"cve": "CVE-2024-53195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Get rid of userspace_irqchip_in_use\n\nImproper use of userspace_irqchip_in_use led to syzbot hitting the\nfollowing WARN_ON() in kvm_timer_update_irq():\n\nWARNING: CPU: 0 PID: 3281 at arch/arm64/kvm/arch_timer.c:459\nkvm_timer_update_irq+0x21c/0x394\nCall trace:\n kvm_timer_update_irq+0x21c/0x394 arch/arm64/kvm/arch_timer.c:459\n kvm_timer_vcpu_reset+0x158/0x684 arch/arm64/kvm/arch_timer.c:968\n kvm_reset_vcpu+0x3b4/0x560 arch/arm64/kvm/reset.c:264\n kvm_vcpu_set_target arch/arm64/kvm/arm.c:1553 [inline]\n kvm_arch_vcpu_ioctl_vcpu_init arch/arm64/kvm/arm.c:1573 [inline]\n kvm_arch_vcpu_ioctl+0x112c/0x1b3c arch/arm64/kvm/arm.c:1695\n kvm_vcpu_ioctl+0x4ec/0xf74 virt/kvm/kvm_main.c:4658\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x108/0x184 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x78/0x1b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0xe8/0x1b0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x40/0x50 arch/arm64/kernel/syscall.c:151\n el0_svc+0x54/0x14c arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe following sequence led to the scenario:\n - Userspace creates a VM and a vCPU.\n - The vCPU is initialized with KVM_ARM_VCPU_PMU_V3 during\n KVM_ARM_VCPU_INIT.\n - Without any other setup, such as vGIC or vPMU, userspace issues\n KVM_RUN on the vCPU. Since the vPMU is requested, but not setup,\n kvm_arm_pmu_v3_enable() fails in kvm_arch_vcpu_run_pid_change().\n As a result, KVM_RUN returns after enabling the timer, but before\n incrementing \u0027userspace_irqchip_in_use\u0027:\n kvm_arch_vcpu_run_pid_change()\n ret = kvm_arm_pmu_v3_enable()\n if (!vcpu-\u003earch.pmu.created)\n return -EINVAL;\n if (ret)\n return ret;\n [...]\n if (!irqchip_in_kernel(kvm))\n static_branch_inc(\u0026userspace_irqchip_in_use);\n - Userspace ignores the error and issues KVM_ARM_VCPU_INIT again.\n Since the timer is already enabled, control moves through the\n following flow, ultimately hitting the WARN_ON():\n kvm_timer_vcpu_reset()\n if (timer-\u003eenabled)\n kvm_timer_update_irq()\n if (!userspace_irqchip())\n ret = kvm_vgic_inject_irq()\n ret = vgic_lazy_init()\n if (unlikely(!vgic_initialized(kvm)))\n if (kvm-\u003earch.vgic.vgic_model !=\n KVM_DEV_TYPE_ARM_VGIC_V2)\n return -EBUSY;\n WARN_ON(ret);\n\nTheoretically, since userspace_irqchip_in_use\u0027s functionality can be\nsimply replaced by \u0027!irqchip_in_kernel()\u0027, get rid of the static key\nto avoid the mismanagement, which also helps with the syzbot issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53195",
"url": "https://www.suse.com/security/cve/CVE-2024-53195"
},
{
"category": "external",
"summary": "SUSE Bug 1234957 for CVE-2024-53195",
"url": "https://bugzilla.suse.com/1234957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53195"
},
{
"cve": "CVE-2024-53196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Don\u0027t retire aborted MMIO instruction\n\nReturning an abort to the guest for an unsupported MMIO access is a\ndocumented feature of the KVM UAPI. Nevertheless, it\u0027s clear that this\nplumbing has seen limited testing, since userspace can trivially cause a\nWARN in the MMIO return:\n\n WARNING: CPU: 0 PID: 30558 at arch/arm64/include/asm/kvm_emulate.h:536 kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n Call trace:\n kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n kvm_arch_vcpu_ioctl_run+0x98/0x15b4 arch/arm64/kvm/arm.c:1133\n kvm_vcpu_ioctl+0x75c/0xa78 virt/kvm/kvm_main.c:4487\n __do_sys_ioctl fs/ioctl.c:51 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x1e0/0x23c arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n el0_svc+0x38/0x68 arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x90/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe splat is complaining that KVM is advancing PC while an exception is\npending, i.e. that KVM is retiring the MMIO instruction despite a\npending synchronous external abort. Womp womp.\n\nFix the glaring UAPI bug by skipping over all the MMIO emulation in\ncase there is a pending synchronous exception. Note that while userspace\nis capable of pending an asynchronous exception (SError, IRQ, or FIQ),\nit is still safe to retire the MMIO instruction in this case as (1) they\nare by definition asynchronous, and (2) KVM relies on hardware support\nfor pending/delivering these exceptions instead of the software state\nmachine for advancing PC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53196",
"url": "https://www.suse.com/security/cve/CVE-2024-53196"
},
{
"category": "external",
"summary": "SUSE Bug 1234906 for CVE-2024-53196",
"url": "https://bugzilla.suse.com/1234906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53196"
},
{
"cve": "CVE-2024-53197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53197"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices\n\nA bogus device can provide a bNumConfigurations value that exceeds the\ninitial value used in usb_get_configuration for allocating dev-\u003econfig.\n\nThis can lead to out-of-bounds accesses later, e.g. in\nusb_destroy_configuration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53197",
"url": "https://www.suse.com/security/cve/CVE-2024-53197"
},
{
"category": "external",
"summary": "SUSE Bug 1235464 for CVE-2024-53197",
"url": "https://bugzilla.suse.com/1235464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53197"
},
{
"cve": "CVE-2024-53198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen: Fix the issue of resource not being properly released in xenbus_dev_probe()\n\nThis patch fixes an issue in the function xenbus_dev_probe(). In the\nxenbus_dev_probe() function, within the if (err) branch at line 313, the\nprogram incorrectly returns err directly without releasing the resources\nallocated by err = drv-\u003eprobe(dev, id). As the return value is non-zero,\nthe upper layers assume the processing logic has failed. However, the probe\noperation was performed earlier without a corresponding remove operation.\nSince the probe actually allocates resources, failing to perform the remove\noperation could lead to problems.\n\nTo fix this issue, we followed the resource release logic of the\nxenbus_dev_remove() function by adding a new block fail_remove before the\nfail_put block. After entering the branch if (err) at line 313, the\nfunction will use a goto statement to jump to the fail_remove block,\nensuring that the previously acquired resources are correctly released,\nthus preventing the reference count leak.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand detecting potential issues where resources are not properly managed.\nIn this case, the tool flagged the missing release operation as a\npotential problem, which led to the development of this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53198",
"url": "https://www.suse.com/security/cve/CVE-2024-53198"
},
{
"category": "external",
"summary": "SUSE Bug 1234923 for CVE-2024-53198",
"url": "https://bugzilla.suse.com/1234923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53198"
},
{
"cve": "CVE-2024-53200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in hwss_setup_dpp\n\nThis commit addresses a null pointer dereference issue in\nhwss_setup_dpp(). The issue could occur when pipe_ctx-\u003eplane_state is\nnull. The fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53200",
"url": "https://www.suse.com/security/cve/CVE-2024-53200"
},
{
"category": "external",
"summary": "SUSE Bug 1234968 for CVE-2024-53200",
"url": "https://bugzilla.suse.com/1234968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53200"
},
{
"cve": "CVE-2024-53201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in\ndcn20_program_pipe(). Previously, commit 8e4ed3cf1642 (\"drm/amd/display:\nAdd null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\")\npartially fixed the null pointer dereference issue. However, in\ndcn20_update_dchubp_dpp(), the variable pipe_ctx is passed in, and\nplane_state is accessed again through pipe_ctx. Multiple if statements\ndirectly call attributes of plane_state, leading to potential null\npointer dereference issues. This patch adds necessary null checks to\nensure stability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53201",
"url": "https://www.suse.com/security/cve/CVE-2024-53201"
},
{
"category": "external",
"summary": "SUSE Bug 1234969 for CVE-2024-53201",
"url": "https://bugzilla.suse.com/1234969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53201"
},
{
"cve": "CVE-2024-53202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Fix possible resource leak in fw_log_firmware_info()\n\nThe alg instance should be released under the exception path, otherwise\nthere may be resource leak here.\n\nTo mitigate this, free the alg instance with crypto_free_shash when kmalloc\nfails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53202",
"url": "https://www.suse.com/security/cve/CVE-2024-53202"
},
{
"category": "external",
"summary": "SUSE Bug 1234970 for CVE-2024-53202",
"url": "https://bugzilla.suse.com/1234970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53202"
},
{
"cve": "CVE-2024-53203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: fix potential array underflow in ucsi_ccg_sync_control()\n\nThe \"command\" variable can be controlled by the user via debugfs. The\nworry is that if con_index is zero then \"\u0026uc-\u003eucsi-\u003econnector[con_index\n- 1]\" would be an array underflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53203",
"url": "https://www.suse.com/security/cve/CVE-2024-53203"
},
{
"category": "external",
"summary": "SUSE Bug 1235001 for CVE-2024-53203",
"url": "https://bugzilla.suse.com/1235001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53203"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible deadlocks\n\nThis fixes possible deadlocks like the following caused by\nhci_cmd_sync_dequeue causing the destroy function to run:\n\n INFO: task kworker/u19:0:143 blocked for more than 120 seconds.\n Tainted: G W O 6.8.0-2024-03-19-intel-next-iLS-24ww14 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u19:0 state:D stack:0 pid:143 tgid:143 ppid:2 flags:0x00004000\n Workqueue: hci0 hci_cmd_sync_work [bluetooth]\n Call Trace:\n \u003cTASK\u003e\n __schedule+0x374/0xaf0\n schedule+0x3c/0xf0\n schedule_preempt_disabled+0x1c/0x30\n __mutex_lock.constprop.0+0x3ef/0x7a0\n __mutex_lock_slowpath+0x13/0x20\n mutex_lock+0x3c/0x50\n mgmt_set_connectable_complete+0xa4/0x150 [bluetooth]\n ? kfree+0x211/0x2a0\n hci_cmd_sync_dequeue+0xae/0x130 [bluetooth]\n ? __pfx_cmd_complete_rsp+0x10/0x10 [bluetooth]\n cmd_complete_rsp+0x26/0x80 [bluetooth]\n mgmt_pending_foreach+0x4d/0x70 [bluetooth]\n __mgmt_power_off+0x8d/0x180 [bluetooth]\n ? _raw_spin_unlock_irq+0x23/0x40\n hci_dev_close_sync+0x445/0x5b0 [bluetooth]\n hci_set_powered_sync+0x149/0x250 [bluetooth]\n set_powered_sync+0x24/0x60 [bluetooth]\n hci_cmd_sync_work+0x90/0x150 [bluetooth]\n process_one_work+0x13e/0x300\n worker_thread+0x2f7/0x420\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x107/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x3d/0x60\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53207",
"url": "https://www.suse.com/security/cve/CVE-2024-53207"
},
{
"category": "external",
"summary": "SUSE Bug 1234907 for CVE-2024-53207",
"url": "https://bugzilla.suse.com/1234907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53207"
},
{
"cve": "CVE-2024-53208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync\n\nThis fixes the following crash:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\nRead of size 8 at addr ffff888029b4dd18 by task kworker/u9:0/54\n\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-01155-gf723224742fc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\nq kasan_report+0x143/0x180 mm/kasan/report.c:601\n set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\n hci_cmd_sync_work+0x22b/0x400 net/bluetooth/hci_sync.c:328\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd10 kernel/workqueue.c:3389\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\nAllocated by task 5247:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __kmalloc_cache_noprof+0x19c/0x2c0 mm/slub.c:4193\n kmalloc_noprof include/linux/slab.h:681 [inline]\n kzalloc_noprof include/linux/slab.h:807 [inline]\n mgmt_pending_new+0x65/0x250 net/bluetooth/mgmt_util.c:269\n mgmt_pending_add+0x36/0x120 net/bluetooth/mgmt_util.c:296\n set_powered+0x3cd/0x5e0 net/bluetooth/mgmt.c:1394\n hci_mgmt_cmd+0xc47/0x11d0 net/bluetooth/hci_sock.c:1712\n hci_sock_sendmsg+0x7b8/0x11c0 net/bluetooth/hci_sock.c:1832\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xa72/0xc90 fs/read_write.c:590\n ksys_write+0x1a0/0x2c0 fs/read_write.c:643\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5246:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x149/0x360 mm/slub.c:4598\n settings_rsp+0x2bc/0x390 net/bluetooth/mgmt.c:1443\n mgmt_pending_foreach+0xd1/0x130 net/bluetooth/mgmt_util.c:259\n __mgmt_power_off+0x112/0x420 net/bluetooth/mgmt.c:9455\n hci_dev_close_sync+0x665/0x11a0 net/bluetooth/hci_sync.c:5191\n hci_dev_do_close net/bluetooth/hci_core.c:483 [inline]\n hci_dev_close+0x112/0x210 net/bluetooth/hci_core.c:508\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83gv\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53208",
"url": "https://www.suse.com/security/cve/CVE-2024-53208"
},
{
"category": "external",
"summary": "SUSE Bug 1234909 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "external",
"summary": "SUSE Bug 1236244 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1236244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53208"
},
{
"cve": "CVE-2024-53209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix receive ring space parameters when XDP is active\n\nThe MTU setting at the time an XDP multi-buffer is attached\ndetermines whether the aggregation ring will be used and the\nrx_skb_func handler. This is done in bnxt_set_rx_skb_mode().\n\nIf the MTU is later changed, the aggregation ring setting may need\nto be changed and it may become out-of-sync with the settings\ninitially done in bnxt_set_rx_skb_mode(). This may result in\nrandom memory corruption and crashes as the HW may DMA data larger\nthan the allocated buffer size, such as:\n\nBUG: kernel NULL pointer dereference, address: 00000000000003c0\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 17 PID: 0 Comm: swapper/17 Kdump: loaded Tainted: G S OE 6.1.0-226bf9805506 #1\nHardware name: Wiwynn Delta Lake PVT BZA.02601.0150/Delta Lake-Class1, BIOS F0E_3A12 08/26/2021\nRIP: 0010:bnxt_rx_pkt+0xe97/0x1ae0 [bnxt_en]\nCode: 8b 95 70 ff ff ff 4c 8b 9d 48 ff ff ff 66 41 89 87 b4 00 00 00 e9 0b f7 ff ff 0f b7 43 0a 49 8b 95 a8 04 00 00 25 ff 0f 00 00 \u003c0f\u003e b7 14 42 48 c1 e2 06 49 03 95 a0 04 00 00 0f b6 42 33f\nRSP: 0018:ffffa19f40cc0d18 EFLAGS: 00010202\nRAX: 00000000000001e0 RBX: ffff8e2c805c6100 RCX: 00000000000007ff\nRDX: 0000000000000000 RSI: ffff8e2c271ab990 RDI: ffff8e2c84f12380\nRBP: ffffa19f40cc0e48 R08: 000000000001000d R09: 974ea2fcddfa4cbf\nR10: 0000000000000000 R11: ffffa19f40cc0ff8 R12: ffff8e2c94b58980\nR13: ffff8e2c952d6600 R14: 0000000000000016 R15: ffff8e2c271ab990\nFS: 0000000000000000(0000) GS:ffff8e3b3f840000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000000003c0 CR3: 0000000e8580a004 CR4: 00000000007706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n __bnxt_poll_work+0x1c2/0x3e0 [bnxt_en]\n\nTo address the issue, we now call bnxt_set_rx_skb_mode() within\nbnxt_change_mtu() to properly set the AGG rings configuration and\nupdate rx_skb_func based on the new MTU value.\nAdditionally, BNXT_FLAG_NO_AGG_RINGS is cleared at the beginning of\nbnxt_set_rx_skb_mode() to make sure it gets set or cleared based on\nthe current MTU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53209",
"url": "https://www.suse.com/security/cve/CVE-2024-53209"
},
{
"category": "external",
"summary": "SUSE Bug 1235002 for CVE-2024-53209",
"url": "https://bugzilla.suse.com/1235002"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53209"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()\n\nThere\u0027s issue as follows:\nRPC: Registered rdma transport module.\nRPC: Registered rdma backchannel transport module.\nRPC: Unregistered rdma transport module.\nRPC: Unregistered rdma backchannel transport module.\nBUG: unable to handle page fault for address: fffffbfff80c609a\nPGD 123fee067 P4D 123fee067 PUD 123fea067 PMD 10c624067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nRIP: 0010:percpu_counter_destroy_many+0xf7/0x2a0\nCall Trace:\n \u003cTASK\u003e\n __die+0x1f/0x70\n page_fault_oops+0x2cd/0x860\n spurious_kernel_fault+0x36/0x450\n do_kern_addr_fault+0xca/0x100\n exc_page_fault+0x128/0x150\n asm_exc_page_fault+0x26/0x30\n percpu_counter_destroy_many+0xf7/0x2a0\n mmdrop+0x209/0x350\n finish_task_switch.isra.0+0x481/0x840\n schedule_tail+0xe/0xd0\n ret_from_fork+0x23/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nIf register_sysctl() return NULL, then svc_rdma_proc_cleanup() will not\ndestroy the percpu counters which init in svc_rdma_proc_init().\nIf CONFIG_HOTPLUG_CPU is enabled, residual nodes may be in the\n\u0027percpu_counters\u0027 list. The above issue may occur once the module is\nremoved. If the CONFIG_HOTPLUG_CPU configuration is not enabled, memory\nleakage occurs.\nTo solve above issue just destroy all percpu counters when\nregister_sysctl() return NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53215",
"url": "https://www.suse.com/security/cve/CVE-2024-53215"
},
{
"category": "external",
"summary": "SUSE Bug 1234962 for CVE-2024-53215",
"url": "https://bugzilla.suse.com/1234962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53215"
},
{
"cve": "CVE-2024-53216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: release svc_expkey/svc_export with rcu_work\n\nThe last reference for `cache_head` can be reduced to zero in `c_show`\nand `e_show`(using `rcu_read_lock` and `rcu_read_unlock`). Consequently,\n`svc_export_put` and `expkey_put` will be invoked, leading to two\nissues:\n\n1. The `svc_export_put` will directly free ex_uuid. However,\n `e_show`/`c_show` will access `ex_uuid` after `cache_put`, which can\n trigger a use-after-free issue, shown below.\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in svc_export_show+0x362/0x430 [nfsd]\n Read of size 1 at addr ff11000010fdc120 by task cat/870\n\n CPU: 1 UID: 0 PID: 870 Comm: cat Not tainted 6.12.0-rc3+ #1\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n 1.16.1-2.fc37 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x53/0x70\n print_address_description.constprop.0+0x2c/0x3a0\n print_report+0xb9/0x280\n kasan_report+0xae/0xe0\n svc_export_show+0x362/0x430 [nfsd]\n c_show+0x161/0x390 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Allocated by task 830:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __kmalloc_node_track_caller_noprof+0x1bc/0x400\n kmemdup_noprof+0x22/0x50\n svc_export_parse+0x8a9/0xb80 [nfsd]\n cache_do_downcall+0x71/0xa0 [sunrpc]\n cache_write_procfs+0x8e/0xd0 [sunrpc]\n proc_reg_write+0xe1/0x140\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 868:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x37/0x50\n kfree+0xf3/0x3e0\n svc_export_put+0x87/0xb0 [nfsd]\n cache_purge+0x17f/0x1f0 [sunrpc]\n nfsd_destroy_serv+0x226/0x2d0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n2. We cannot sleep while using `rcu_read_lock`/`rcu_read_unlock`.\n However, `svc_export_put`/`expkey_put` will call path_put, which\n subsequently triggers a sleeping operation due to the following\n `dput`.\n\n =============================\n WARNING: suspicious RCU usage\n 5.10.0-dirty #141 Not tainted\n -----------------------------\n ...\n Call Trace:\n dump_stack+0x9a/0xd0\n ___might_sleep+0x231/0x240\n dput+0x39/0x600\n path_put+0x1b/0x30\n svc_export_put+0x17/0x80\n e_show+0x1c9/0x200\n seq_read_iter+0x63f/0x7c0\n seq_read+0x226/0x2d0\n vfs_read+0x113/0x2c0\n ksys_read+0xc9/0x170\n do_syscall_64+0x33/0x40\n entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nFix these issues by using `rcu_work` to help release\n`svc_expkey`/`svc_export`. This approach allows for an asynchronous\ncontext to invoke `path_put` and also facilitates the freeing of\n`uuid/exp/key` after an RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53216",
"url": "https://www.suse.com/security/cve/CVE-2024-53216"
},
{
"category": "external",
"summary": "SUSE Bug 1235003 for CVE-2024-53216",
"url": "https://bugzilla.suse.com/1235003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53216"
},
{
"cve": "CVE-2024-53217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent NULL dereference in nfsd4_process_cb_update()\n\n@ses is initialized to NULL. If __nfsd4_find_backchannel() finds no\navailable backchannel session, setup_callback_client() will try to\ndereference @ses and segfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53217",
"url": "https://www.suse.com/security/cve/CVE-2024-53217"
},
{
"category": "external",
"summary": "SUSE Bug 1234999 for CVE-2024-53217",
"url": "https://bugzilla.suse.com/1234999"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53217"
},
{
"cve": "CVE-2024-53222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram-\u003ecomp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram-\u003einit_lock in other places and no such problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53222",
"url": "https://www.suse.com/security/cve/CVE-2024-53222"
},
{
"category": "external",
"summary": "SUSE Bug 1234974 for CVE-2024-53222",
"url": "https://bugzilla.suse.com/1234974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53222"
},
{
"cve": "CVE-2024-53224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Move events notifier registration to be after device registration\n\nMove pkey change work initialization and cleanup from device resources\nstage to notifier stage, since this is the stage which handles this work\nevents.\n\nFix a race between the device deregistration and pkey change work by moving\nMLX5_IB_STAGE_DEVICE_NOTIFIER to be after MLX5_IB_STAGE_IB_REG in order to\nensure that the notifier is deregistered before the device during cleanup.\nWhich ensures there are no works that are being executed after the\ndevice has already unregistered which can cause the panic below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 1 PID: 630071 Comm: kworker/1:2 Kdump: loaded Tainted: G W OE --------- --- 5.14.0-162.6.1.el9_1.x86_64 #1\nHardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 02/27/2023\nWorkqueue: events pkey_change_handler [mlx5_ib]\nRIP: 0010:setup_qp+0x38/0x1f0 [mlx5_ib]\nCode: ee 41 54 45 31 e4 55 89 f5 53 48 89 fb 48 83 ec 20 8b 77 08 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 48 8b 07 48 8d 4c 24 16 \u003c4c\u003e 8b 38 49 8b 87 80 0b 00 00 4c 89 ff 48 8b 80 08 05 00 00 8b 40\nRSP: 0018:ffffbcc54068be20 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff954054494128 RCX: ffffbcc54068be36\nRDX: ffff954004934000 RSI: 0000000000000001 RDI: ffff954054494128\nRBP: 0000000000000023 R08: ffff954001be2c20 R09: 0000000000000001\nR10: ffff954001be2c20 R11: ffff9540260133c0 R12: 0000000000000000\nR13: 0000000000000023 R14: 0000000000000000 R15: ffff9540ffcb0905\nFS: 0000000000000000(0000) GS:ffff9540ffc80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000010625c001 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\nmlx5_ib_gsi_pkey_change+0x20/0x40 [mlx5_ib]\nprocess_one_work+0x1e8/0x3c0\nworker_thread+0x50/0x3b0\n? rescuer_thread+0x380/0x380\nkthread+0x149/0x170\n? set_kthread_struct+0x50/0x50\nret_from_fork+0x22/0x30\nModules linked in: rdma_ucm(OE) rdma_cm(OE) iw_cm(OE) ib_ipoib(OE) ib_cm(OE) ib_umad(OE) mlx5_ib(OE) mlx5_fwctl(OE) fwctl(OE) ib_uverbs(OE) mlx5_core(OE) mlxdevm(OE) ib_core(OE) mlx_compat(OE) psample mlxfw(OE) tls knem(OE) netconsole nfsv3 nfs_acl nfs lockd grace fscache netfs qrtr rfkill sunrpc intel_rapl_msr intel_rapl_common rapl hv_balloon hv_utils i2c_piix4 pcspkr joydev fuse ext4 mbcache jbd2 sr_mod sd_mod cdrom t10_pi sg ata_generic pci_hyperv pci_hyperv_intf hyperv_drm drm_shmem_helper drm_kms_helper hv_storvsc syscopyarea hv_netvsc sysfillrect sysimgblt hid_hyperv fb_sys_fops scsi_transport_fc hyperv_keyboard drm ata_piix crct10dif_pclmul crc32_pclmul crc32c_intel libata ghash_clmulni_intel hv_vmbus serio_raw [last unloaded: ib_core]\nCR2: 0000000000000000\n---[ end trace f6f8be4eae12f7bc ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53224",
"url": "https://www.suse.com/security/cve/CVE-2024-53224"
},
{
"category": "external",
"summary": "SUSE Bug 1235009 for CVE-2024-53224",
"url": "https://bugzilla.suse.com/1235009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53224"
},
{
"cve": "CVE-2024-53227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bfa: Fix use-after-free in bfad_im_module_exit()\n\nBUG: KASAN: slab-use-after-free in __lock_acquire+0x2aca/0x3a20\nRead of size 8 at addr ffff8881082d80c8 by task modprobe/25303\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x95/0xe0\n print_report+0xcb/0x620\n kasan_report+0xbd/0xf0\n __lock_acquire+0x2aca/0x3a20\n lock_acquire+0x19b/0x520\n _raw_spin_lock+0x2b/0x40\n attribute_container_unregister+0x30/0x160\n fc_release_transport+0x19/0x90 [scsi_transport_fc]\n bfad_im_module_exit+0x23/0x60 [bfa]\n bfad_init+0xdb/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\nAllocated by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n fc_attach_transport+0x4f/0x4740 [scsi_transport_fc]\n bfad_im_module_init+0x17/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x38/0x50\n kfree+0x212/0x480\n bfad_im_module_init+0x7e/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nAbove issue happens as follows:\n\nbfad_init\n error = bfad_im_module_init()\n fc_release_transport(bfad_im_scsi_transport_template);\n if (error)\n goto ext;\n\next:\n bfad_im_module_exit();\n fc_release_transport(bfad_im_scsi_transport_template);\n --\u003e Trigger double release\n\nDon\u0027t call bfad_im_module_exit() if bfad_im_module_init() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53227",
"url": "https://www.suse.com/security/cve/CVE-2024-53227"
},
{
"category": "external",
"summary": "SUSE Bug 1235011 for CVE-2024-53227",
"url": "https://bugzilla.suse.com/1235011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53227"
},
{
"cve": "CVE-2024-53229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix the qp flush warnings in req\n\nWhen the qp is in error state, the status of WQEs in the queue should be\nset to error. Or else the following will appear.\n\n[ 920.617269] WARNING: CPU: 1 PID: 21 at drivers/infiniband/sw/rxe/rxe_comp.c:756 rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.617744] Modules linked in: rnbd_client(O) rtrs_client(O) rtrs_core(O) rdma_ucm rdma_cm iw_cm ib_cm crc32_generic rdma_rxe ip6_udp_tunnel udp_tunnel ib_uverbs ib_core loop brd null_blk ipv6\n[ 920.618516] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G O 6.1.113-storage+ #65\n[ 920.618986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n[ 920.619396] RIP: 0010:rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.619658] Code: 0f b6 84 24 3a 02 00 00 41 89 84 24 44 04 00 00 e9 2a f7 ff ff 39 ca bb 03 00 00 00 b8 0e 00 00 00 48 0f 45 d8 e9 15 f7 ff ff \u003c0f\u003e 0b e9 cb f8 ff ff 41 bf f5 ff ff ff e9 08 f8 ff ff 49 8d bc 24\n[ 920.620482] RSP: 0018:ffff97b7c00bbc38 EFLAGS: 00010246\n[ 920.620817] RAX: 0000000000000000 RBX: 000000000000000c RCX: 0000000000000008\n[ 920.621183] RDX: ffff960dc396ebc0 RSI: 0000000000005400 RDI: ffff960dc4e2fbac\n[ 920.621548] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffffac406450\n[ 920.621884] R10: ffffffffac4060c0 R11: 0000000000000001 R12: ffff960dc4e2f800\n[ 920.622254] R13: ffff960dc4e2f928 R14: ffff97b7c029c580 R15: 0000000000000000\n[ 920.622609] FS: 0000000000000000(0000) GS:ffff960ef7d00000(0000) knlGS:0000000000000000\n[ 920.622979] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 920.623245] CR2: 00007fa056965e90 CR3: 00000001107f1000 CR4: 00000000000006e0\n[ 920.623680] Call Trace:\n[ 920.623815] \u003cTASK\u003e\n[ 920.623933] ? __warn+0x79/0xc0\n[ 920.624116] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.624356] ? report_bug+0xfb/0x150\n[ 920.624594] ? handle_bug+0x3c/0x60\n[ 920.624796] ? exc_invalid_op+0x14/0x70\n[ 920.624976] ? asm_exc_invalid_op+0x16/0x20\n[ 920.625203] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.625474] ? rxe_completer+0x329/0xcc0 [rdma_rxe]\n[ 920.625749] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.626037] rxe_requester+0x625/0xde0 [rdma_rxe]\n[ 920.626310] ? rxe_cq_post+0xe2/0x180 [rdma_rxe]\n[ 920.626583] ? do_complete+0x18d/0x220 [rdma_rxe]\n[ 920.626812] ? rxe_completer+0x1a3/0xcc0 [rdma_rxe]\n[ 920.627050] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.627285] tasklet_action_common.constprop.0+0xa4/0x120\n[ 920.627522] handle_softirqs+0xc2/0x250\n[ 920.627728] ? sort_range+0x20/0x20\n[ 920.627942] run_ksoftirqd+0x1f/0x30\n[ 920.628158] smpboot_thread_fn+0xc7/0x1b0\n[ 920.628334] kthread+0xd6/0x100\n[ 920.628504] ? kthread_complete_and_exit+0x20/0x20\n[ 920.628709] ret_from_fork+0x1f/0x30\n[ 920.628892] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53229",
"url": "https://www.suse.com/security/cve/CVE-2024-53229"
},
{
"category": "external",
"summary": "SUSE Bug 1234905 for CVE-2024-53229",
"url": "https://bugzilla.suse.com/1234905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53229"
},
{
"cve": "CVE-2024-53230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference,\nso check NULL for cppc_get_cpu_cost().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53230",
"url": "https://www.suse.com/security/cve/CVE-2024-53230"
},
{
"category": "external",
"summary": "SUSE Bug 1235976 for CVE-2024-53230",
"url": "https://bugzilla.suse.com/1235976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53230"
},
{
"cve": "CVE-2024-53231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53231",
"url": "https://www.suse.com/security/cve/CVE-2024-53231"
},
{
"category": "external",
"summary": "SUSE Bug 1235977 for CVE-2024-53231",
"url": "https://bugzilla.suse.com/1235977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53231"
},
{
"cve": "CVE-2024-53232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/s390: Implement blocking domain\n\nThis fixes a crash when surprise hot-unplugging a PCI device. This crash\nhappens because during hot-unplug __iommu_group_set_domain_nofail()\nattaching the default domain fails when the platform no longer\nrecognizes the device as it has already been removed and we end up with\na NULL domain pointer and UAF. This is exactly the case referred to in\nthe second comment in __iommu_device_set_domain() and just as stated\nthere if we can instead attach the blocking domain the UAF is prevented\nas this can handle the already removed device. Implement the blocking\ndomain to use this handling. With this change, the crash is fixed but\nwe still hit a warning attempting to change DMA ownership on a blocked\ndevice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53232",
"url": "https://www.suse.com/security/cve/CVE-2024-53232"
},
{
"category": "external",
"summary": "SUSE Bug 1235050 for CVE-2024-53232",
"url": "https://bugzilla.suse.com/1235050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53232"
},
{
"cve": "CVE-2024-53233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nunicode: Fix utf8_load() error path\n\nutf8_load() requests the symbol \"utf8_data_table\" and then checks if the\nrequested UTF-8 version is supported. If it\u0027s unsupported, it tries to\nput the data table using symbol_put(). If an unsupported version is\nrequested, symbol_put() fails like this:\n\n kernel BUG at kernel/module/main.c:786!\n RIP: 0010:__symbol_put+0x93/0xb0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x19/0x27\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x65/0x80\n ? __symbol_put+0x93/0xb0\n ? exc_invalid_op+0x51/0x70\n ? __symbol_put+0x93/0xb0\n ? asm_exc_invalid_op+0x1a/0x20\n ? __pfx_cmp_name+0x10/0x10\n ? __symbol_put+0x93/0xb0\n ? __symbol_put+0x62/0xb0\n utf8_load+0xf8/0x150\n\nThat happens because symbol_put() expects the unique string that\nidentify the symbol, instead of a pointer to the loaded symbol. Fix that\nby using such string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53233",
"url": "https://www.suse.com/security/cve/CVE-2024-53233"
},
{
"category": "external",
"summary": "SUSE Bug 1235046 for CVE-2024-53233",
"url": "https://bugzilla.suse.com/1235046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53233"
},
{
"cve": "CVE-2024-53234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle NONHEAD !delta[1] lclusters gracefully\n\nsyzbot reported a WARNING in iomap_iter_done:\n iomap_fiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80\n ioctl_fiemap fs/ioctl.c:220 [inline]\n\nGenerally, NONHEAD lclusters won\u0027t have delta[1]==0, except for crafted\nimages and filesystems created by pre-1.0 mkfs versions.\n\nPreviously, it would immediately bail out if delta[1]==0, which led to\ninadequate decompressed lengths (thus FIEMAP is impacted). Treat it as\ndelta[1]=1 to work around these legacy mkfs versions.\n\n`lclusterbits \u003e 14` is illegal for compact indexes, error out too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53234",
"url": "https://www.suse.com/security/cve/CVE-2024-53234"
},
{
"category": "external",
"summary": "SUSE Bug 1235045 for CVE-2024-53234",
"url": "https://bugzilla.suse.com/1235045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53234"
},
{
"cve": "CVE-2024-53236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: Free skb when TX metadata options are invalid\n\nWhen a new skb is allocated for transmitting an xsk descriptor, i.e., for\nevery non-multibuf descriptor or the first frag of a multibuf descriptor,\nbut the descriptor is later found to have invalid options set for the TX\nmetadata, the new skb is never freed. This can leak skbs until the send\nbuffer is full which makes sending more packets impossible.\n\nFix this by freeing the skb in the error path if we are currently dealing\nwith the first frag, i.e., an skb allocated in this iteration of\nxsk_build_skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53236",
"url": "https://www.suse.com/security/cve/CVE-2024-53236"
},
{
"category": "external",
"summary": "SUSE Bug 1235000 for CVE-2024-53236",
"url": "https://bugzilla.suse.com/1235000"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53236"
},
{
"cve": "CVE-2024-53237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: fix use-after-free in device_for_each_child()\n\nSyzbot has reported the following KASAN splat:\n\nBUG: KASAN: slab-use-after-free in device_for_each_child+0x18f/0x1a0\nRead of size 8 at addr ffff88801f605308 by task kbnepd bnep0/4980\n\nCPU: 0 UID: 0 PID: 4980 Comm: kbnepd bnep0 Not tainted 6.12.0-rc4-00161-gae90f6a6170d #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x100/0x190\n ? device_for_each_child+0x18f/0x1a0\n print_report+0x13a/0x4cb\n ? __virt_addr_valid+0x5e/0x590\n ? __phys_addr+0xc6/0x150\n ? device_for_each_child+0x18f/0x1a0\n kasan_report+0xda/0x110\n ? device_for_each_child+0x18f/0x1a0\n ? __pfx_dev_memalloc_noio+0x10/0x10\n device_for_each_child+0x18f/0x1a0\n ? __pfx_device_for_each_child+0x10/0x10\n pm_runtime_set_memalloc_noio+0xf2/0x180\n netdev_unregister_kobject+0x1ed/0x270\n unregister_netdevice_many_notify+0x123c/0x1d80\n ? __mutex_trylock_common+0xde/0x250\n ? __pfx_unregister_netdevice_many_notify+0x10/0x10\n ? trace_contention_end+0xe6/0x140\n ? __mutex_lock+0x4e7/0x8f0\n ? __pfx_lock_acquire.part.0+0x10/0x10\n ? rcu_is_watching+0x12/0xc0\n ? unregister_netdev+0x12/0x30\n unregister_netdevice_queue+0x30d/0x3f0\n ? __pfx_unregister_netdevice_queue+0x10/0x10\n ? __pfx_down_write+0x10/0x10\n unregister_netdev+0x1c/0x30\n bnep_session+0x1fb3/0x2ab0\n ? __pfx_bnep_session+0x10/0x10\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_woken_wake_function+0x10/0x10\n ? __kthread_parkme+0x132/0x200\n ? __pfx_bnep_session+0x10/0x10\n ? kthread+0x13a/0x370\n ? __pfx_bnep_session+0x10/0x10\n kthread+0x2b7/0x370\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x48/0x80\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 4974:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n __kmalloc_noprof+0x1d1/0x440\n hci_alloc_dev_priv+0x1d/0x2820\n __vhci_create_device+0xef/0x7d0\n vhci_write+0x2c7/0x480\n vfs_write+0x6a0/0xfc0\n ksys_write+0x12f/0x260\n do_syscall_64+0xc7/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 4979:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x4f/0x70\n kfree+0x141/0x490\n hci_release_dev+0x4d9/0x600\n bt_host_release+0x6a/0xb0\n device_release+0xa4/0x240\n kobject_put+0x1ec/0x5a0\n put_device+0x1f/0x30\n vhci_release+0x81/0xf0\n __fput+0x3f6/0xb30\n task_work_run+0x151/0x250\n do_exit+0xa79/0x2c30\n do_group_exit+0xd5/0x2a0\n get_signal+0x1fcd/0x2210\n arch_do_signal_or_restart+0x93/0x780\n syscall_exit_to_user_mode+0x140/0x290\n do_syscall_64+0xd4/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nIn \u0027hci_conn_del_sysfs()\u0027, \u0027device_unregister()\u0027 may be called when\nan underlying (kobject) reference counter is greater than 1. This\nmeans that reparenting (happened when the device is actually freed)\nis delayed and, during that delay, parent controller device (hciX)\nmay be deleted. Since the latter may create a dangling pointer to\nfreed parent, avoid that scenario by reparenting to NULL explicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53237",
"url": "https://www.suse.com/security/cve/CVE-2024-53237"
},
{
"category": "external",
"summary": "SUSE Bug 1235007 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "external",
"summary": "SUSE Bug 1235008 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235008"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53237"
},
{
"cve": "CVE-2024-53239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: 6fire: Release resources at card release\n\nThe current 6fire code tries to release the resources right after the\ncall of usb6fire_chip_abort(). But at this moment, the card object\nmight be still in use (as we\u0027re calling snd_card_free_when_closed()).\n\nFor avoid potential UAFs, move the release of resources to the card\u0027s\nprivate_free instead of the manual call of usb6fire_chip_destroy() at\nthe USB disconnect callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53239",
"url": "https://www.suse.com/security/cve/CVE-2024-53239"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235054 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "external",
"summary": "SUSE Bug 1235055 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-53239"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-53685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: give up on paths longer than PATH_MAX\n\nIf the full path to be built by ceph_mdsc_build_path() happens to be\nlonger than PATH_MAX, then this function will enter an endless (retry)\nloop, effectively blocking the whole task. Most of the machine\nbecomes unusable, making this a very simple and effective DoS\nvulnerability.\n\nI cannot imagine why this retry was ever implemented, but it seems\nrather useless and harmful to me. Let\u0027s remove it and fail with\nENAMETOOLONG instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53685",
"url": "https://www.suse.com/security/cve/CVE-2024-53685"
},
{
"category": "external",
"summary": "SUSE Bug 1235720 for CVE-2024-53685",
"url": "https://bugzilla.suse.com/1235720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53685"
},
{
"cve": "CVE-2024-53690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: prevent use of deleted inode\n\nsyzbot reported a WARNING in nilfs_rmdir. [1]\n\nBecause the inode bitmap is corrupted, an inode with an inode number that\nshould exist as a \".nilfs\" file was reassigned by nilfs_mkdir for \"file0\",\ncausing an inode duplication during execution. And this causes an\nunderflow of i_nlink in rmdir operations.\n\nThe inode is used twice by the same task to unmount and remove directories\n\".nilfs\" and \"file0\", it trigger warning in nilfs_rmdir.\n\nAvoid to this issue, check i_nlink in nilfs_iget(), if it is 0, it means\nthat this inode has been deleted, and iput is executed to reclaim it.\n\n[1]\nWARNING: CPU: 1 PID: 5824 at fs/inode.c:407 drop_nlink+0xc4/0x110 fs/inode.c:407\n...\nCall Trace:\n \u003cTASK\u003e\n nilfs_rmdir+0x1b0/0x250 fs/nilfs2/namei.c:342\n vfs_rmdir+0x3a3/0x510 fs/namei.c:4394\n do_rmdir+0x3b5/0x580 fs/namei.c:4453\n __do_sys_rmdir fs/namei.c:4472 [inline]\n __se_sys_rmdir fs/namei.c:4470 [inline]\n __x64_sys_rmdir+0x47/0x50 fs/namei.c:4470\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53690",
"url": "https://www.suse.com/security/cve/CVE-2024-53690"
},
{
"category": "external",
"summary": "SUSE Bug 1235842 for CVE-2024-53690",
"url": "https://bugzilla.suse.com/1235842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-53690"
},
{
"cve": "CVE-2024-54680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-54680"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-54680",
"url": "https://www.suse.com/security/cve/CVE-2024-54680"
},
{
"category": "external",
"summary": "SUSE Bug 1235723 for CVE-2024-54680",
"url": "https://bugzilla.suse.com/1235723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-54680"
},
{
"cve": "CVE-2024-55639",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55639"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: renesas: rswitch: avoid use-after-put for a device tree node\n\nThe device tree node saved in the rswitch_device structure is used at\nseveral driver locations. So passing this node to of_node_put() after\nthe first use is wrong.\n\nMove of_node_put() for this node to exit paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55639",
"url": "https://www.suse.com/security/cve/CVE-2024-55639"
},
{
"category": "external",
"summary": "SUSE Bug 1235737 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "external",
"summary": "SUSE Bug 1235738 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-55639"
},
{
"cve": "CVE-2024-55881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: x86: Play nice with protected guests in complete_hypercall_exit()\n\nUse is_64_bit_hypercall() instead of is_64_bit_mode() to detect a 64-bit\nhypercall when completing said hypercall. For guests with protected state,\ne.g. SEV-ES and SEV-SNP, KVM must assume the hypercall was made in 64-bit\nmode as the vCPU state needed to detect 64-bit mode is unavailable.\n\nHacking the sev_smoke_test selftest to generate a KVM_HC_MAP_GPA_RANGE\nhypercall via VMGEXIT trips the WARN:\n\n ------------[ cut here ]------------\n WARNING: CPU: 273 PID: 326626 at arch/x86/kvm/x86.h:180 complete_hypercall_exit+0x44/0xe0 [kvm]\n Modules linked in: kvm_amd kvm ... [last unloaded: kvm]\n CPU: 273 UID: 0 PID: 326626 Comm: sev_smoke_test Not tainted 6.12.0-smp--392e932fa0f3-feat #470\n Hardware name: Google Astoria/astoria, BIOS 0.20240617.0-0 06/17/2024\n RIP: 0010:complete_hypercall_exit+0x44/0xe0 [kvm]\n Call Trace:\n \u003cTASK\u003e\n kvm_arch_vcpu_ioctl_run+0x2400/0x2720 [kvm]\n kvm_vcpu_ioctl+0x54f/0x630 [kvm]\n __se_sys_ioctl+0x6b/0xc0\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55881",
"url": "https://www.suse.com/security/cve/CVE-2024-55881"
},
{
"category": "external",
"summary": "SUSE Bug 1235745 for CVE-2024-55881",
"url": "https://bugzilla.suse.com/1235745"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-55881"
},
{
"cve": "CVE-2024-55916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nDrivers: hv: util: Avoid accessing a ringbuffer not initialized yet\n\nIf the KVP (or VSS) daemon starts before the VMBus channel\u0027s ringbuffer is\nfully initialized, we can hit the panic below:\n\nhv_utils: Registering HyperV Utility Driver\nhv_vmbus: registering driver hv_utils\n...\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nCPU: 44 UID: 0 PID: 2552 Comm: hv_kvp_daemon Tainted: G E 6.11.0-rc3+ #1\nRIP: 0010:hv_pkt_iter_first+0x12/0xd0\nCall Trace:\n...\n vmbus_recvpacket\n hv_kvp_onchannelcallback\n vmbus_on_event\n tasklet_action_common\n tasklet_action\n handle_softirqs\n irq_exit_rcu\n sysvec_hyperv_stimer0\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_hyperv_stimer0\n...\n kvp_register_done\n hvt_op_read\n vfs_read\n ksys_read\n __x64_sys_read\n\nThis can happen because the KVP/VSS channel callback can be invoked\neven before the channel is fully opened:\n1) as soon as hv_kvp_init() -\u003e hvutil_transport_init() creates\n/dev/vmbus/hv_kvp, the kvp daemon can open the device file immediately and\nregister itself to the driver by writing a message KVP_OP_REGISTER1 to the\nfile (which is handled by kvp_on_msg() -\u003ekvp_handle_handshake()) and\nreading the file for the driver\u0027s response, which is handled by\nhvt_op_read(), which calls hvt-\u003eon_read(), i.e. kvp_register_done().\n\n2) the problem with kvp_register_done() is that it can cause the\nchannel callback to be called even before the channel is fully opened,\nand when the channel callback is starting to run, util_probe()-\u003e\nvmbus_open() may have not initialized the ringbuffer yet, so the\ncallback can hit the panic of NULL pointer dereference.\n\nTo reproduce the panic consistently, we can add a \"ssleep(10)\" for KVP in\n__vmbus_open(), just before the first hv_ringbuffer_init(), and then we\nunload and reload the driver hv_utils, and run the daemon manually within\nthe 10 seconds.\n\nFix the panic by reordering the steps in util_probe() so the char dev\nentry used by the KVP or VSS daemon is not created until after\nvmbus_open() has completed. This reordering prevents the race condition\nfrom happening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55916",
"url": "https://www.suse.com/security/cve/CVE-2024-55916"
},
{
"category": "external",
"summary": "SUSE Bug 1235747 for CVE-2024-55916",
"url": "https://bugzilla.suse.com/1235747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-55916"
},
{
"cve": "CVE-2024-56369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56369"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/modes: Avoid divide by zero harder in drm_mode_vrefresh()\n\ndrm_mode_vrefresh() is trying to avoid divide by zero\nby checking whether htotal or vtotal are zero. But we may\nstill end up with a div-by-zero of vtotal*htotal*...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56369",
"url": "https://www.suse.com/security/cve/CVE-2024-56369"
},
{
"category": "external",
"summary": "SUSE Bug 1235750 for CVE-2024-56369",
"url": "https://bugzilla.suse.com/1235750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56369"
},
{
"cve": "CVE-2024-56372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tun: fix tun_napi_alloc_frags()\n\nsyzbot reported the following crash [1]\n\nIssue came with the blamed commit. Instead of going through\nall the iov components, we keep using the first one\nand end up with a malformed skb.\n\n[1]\n\nkernel BUG at net/core/skbuff.c:2849 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 6230 Comm: syz-executor132 Not tainted 6.13.0-rc1-syzkaller-00407-g96b6fcc0ee41 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024\n RIP: 0010:__pskb_pull_tail+0x1568/0x1570 net/core/skbuff.c:2848\nCode: 38 c1 0f 8c 32 f1 ff ff 4c 89 f7 e8 92 96 74 f8 e9 25 f1 ff ff e8 e8 ae 09 f8 48 8b 5c 24 08 e9 eb fb ff ff e8 d9 ae 09 f8 90 \u003c0f\u003e 0b 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90\nRSP: 0018:ffffc90004cbef30 EFLAGS: 00010293\nRAX: ffffffff8995c347 RBX: 00000000fffffff2 RCX: ffff88802cf45a00\nRDX: 0000000000000000 RSI: 00000000fffffff2 RDI: 0000000000000000\nRBP: ffff88807df0c06a R08: ffffffff8995b084 R09: 1ffff1100fbe185c\nR10: dffffc0000000000 R11: ffffed100fbe185d R12: ffff888076e85d50\nR13: ffff888076e85c80 R14: ffff888076e85cf4 R15: ffff888076e85c80\nFS: 00007f0dca6ea6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f0dca6ead58 CR3: 00000000119da000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_cow_data+0x2da/0xcb0 net/core/skbuff.c:5284\n tipc_aead_decrypt net/tipc/crypto.c:894 [inline]\n tipc_crypto_rcv+0x402/0x24e0 net/tipc/crypto.c:1844\n tipc_rcv+0x57e/0x12a0 net/tipc/node.c:2109\n tipc_l2_rcv_msg+0x2bd/0x450 net/tipc/bearer.c:668\n __netif_receive_skb_list_ptype net/core/dev.c:5720 [inline]\n __netif_receive_skb_list_core+0x8b7/0x980 net/core/dev.c:5762\n __netif_receive_skb_list net/core/dev.c:5814 [inline]\n netif_receive_skb_list_internal+0xa51/0xe30 net/core/dev.c:5905\n gro_normal_list include/net/gro.h:515 [inline]\n napi_complete_done+0x2b5/0x870 net/core/dev.c:6256\n napi_complete include/linux/netdevice.h:567 [inline]\n tun_get_user+0x2ea0/0x4890 drivers/net/tun.c:1982\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2057\n do_iter_readv_writev+0x600/0x880\n vfs_writev+0x376/0xba0 fs/read_write.c:1050\n do_writev+0x1b6/0x360 fs/read_write.c:1096\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56372",
"url": "https://www.suse.com/security/cve/CVE-2024-56372"
},
{
"category": "external",
"summary": "SUSE Bug 1235753 for CVE-2024-56372",
"url": "https://bugzilla.suse.com/1235753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56372"
},
{
"cve": "CVE-2024-56531",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56531"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: caiaq: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThis patch also splits the code to the disconnect and the free phases;\nthe former is called immediately at the USB disconnect callback while\nthe latter is called from the card destructor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56531",
"url": "https://www.suse.com/security/cve/CVE-2024-56531"
},
{
"category": "external",
"summary": "SUSE Bug 1235057 for CVE-2024-56531",
"url": "https://bugzilla.suse.com/1235057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56531"
},
{
"cve": "CVE-2024-56532",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56532"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: us122l: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThe loop of us122l-\u003emmap_count check is dropped as well. The check is\nuseless for the asynchronous operation with *_when_closed().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56532",
"url": "https://www.suse.com/security/cve/CVE-2024-56532"
},
{
"category": "external",
"summary": "SUSE Bug 1235059 for CVE-2024-56532",
"url": "https://bugzilla.suse.com/1235059"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56532"
},
{
"cve": "CVE-2024-56533",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56533"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usx2y: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56533",
"url": "https://www.suse.com/security/cve/CVE-2024-56533"
},
{
"category": "external",
"summary": "SUSE Bug 1235053 for CVE-2024-56533",
"url": "https://bugzilla.suse.com/1235053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56533"
},
{
"cve": "CVE-2024-56536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56536"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cw1200: Fix potential NULL dereference\n\nA recent refactoring was identified by static analysis to\ncause a potential NULL dereference, fix this!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56536",
"url": "https://www.suse.com/security/cve/CVE-2024-56536"
},
{
"category": "external",
"summary": "SUSE Bug 1234911 for CVE-2024-56536",
"url": "https://bugzilla.suse.com/1234911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56536"
},
{
"cve": "CVE-2024-56538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: zynqmp_kms: Unplug DRM device before removal\n\nPrevent userspace accesses to the DRM device from causing\nuse-after-frees by unplugging the device before we remove it. This\ncauses any further userspace accesses to result in an error without\nfurther calls into this driver\u0027s internals.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56538",
"url": "https://www.suse.com/security/cve/CVE-2024-56538"
},
{
"category": "external",
"summary": "SUSE Bug 1235051 for CVE-2024-56538",
"url": "https://bugzilla.suse.com/1235051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56538"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: Skip Rx TID cleanup for self peer\n\nDuring peer create, dp setup for the peer is done where Rx TID is\nupdated for all the TIDs. Peer object for self peer will not go through\ndp setup.\n\nWhen core halts, dp cleanup is done for all the peers. While cleanup,\nrx_tid::ab is accessed which causes below stack trace for self peer.\n\nWARNING: CPU: 6 PID: 12297 at drivers/net/wireless/ath/ath12k/dp_rx.c:851\nCall Trace:\n__warn+0x7b/0x1a0\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nreport_bug+0x10b/0x200\nhandle_bug+0x3f/0x70\nexc_invalid_op+0x13/0x60\nasm_exc_invalid_op+0x16/0x20\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nath12k_dp_rx_frags_cleanup+0xca/0xe0 [ath12k]\nath12k_dp_rx_peer_tid_cleanup+0x39/0xa0 [ath12k]\nath12k_mac_peer_cleanup_all+0x61/0x100 [ath12k]\nath12k_core_halt+0x3b/0x100 [ath12k]\nath12k_core_reset+0x494/0x4c0 [ath12k]\n\nsta object in peer will be updated when remote peer is created. Hence\nuse peer::sta to detect the self peer and skip the cleanup.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.1.0.c5-00481-QCAHMTSWPL_V1.0_V2.0_SILICONZ-3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56543",
"url": "https://www.suse.com/security/cve/CVE-2024-56543"
},
{
"category": "external",
"summary": "SUSE Bug 1235065 for CVE-2024-56543",
"url": "https://bugzilla.suse.com/1235065"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56543"
},
{
"cve": "CVE-2024-56546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56546"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()\n\nIf we fail to allocate memory for cb_data by kmalloc, the memory\nallocation for eve_data is never freed, add the missing kfree()\nin the error handling path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56546",
"url": "https://www.suse.com/security/cve/CVE-2024-56546"
},
{
"category": "external",
"summary": "SUSE Bug 1235070 for CVE-2024-56546",
"url": "https://bugzilla.suse.com/1235070"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56546"
},
{
"cve": "CVE-2024-56548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: don\u0027t query the device logical block size multiple times\n\nDevices block sizes may change. One of these cases is a loop device by\nusing ioctl LOOP_SET_BLOCK_SIZE.\n\nWhile this may cause other issues like IO being rejected, in the case of\nhfsplus, it will allocate a block by using that size and potentially write\nout-of-bounds when hfsplus_read_wrapper calls hfsplus_submit_bio and the\nlatter function reads a different io_size.\n\nUsing a new min_io_size initally set to sb_min_blocksize works for the\npurposes of the original fix, since it will be set to the max between\nHFSPLUS_SECTOR_SIZE and the first seen logical block size. We still use the\nmax between HFSPLUS_SECTOR_SIZE and min_io_size in case the latter is not\ninitialized.\n\nTested by mounting an hfsplus filesystem with loop block sizes 512, 1024\nand 4096.\n\nThe produced KASAN report before the fix looks like this:\n\n[ 419.944641] ==================================================================\n[ 419.945655] BUG: KASAN: slab-use-after-free in hfsplus_read_wrapper+0x659/0xa0a\n[ 419.946703] Read of size 2 at addr ffff88800721fc00 by task repro/10678\n[ 419.947612]\n[ 419.947846] CPU: 0 UID: 0 PID: 10678 Comm: repro Not tainted 6.12.0-rc5-00008-gdf56e0f2f3ca #84\n[ 419.949007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 419.950035] Call Trace:\n[ 419.950384] \u003cTASK\u003e\n[ 419.950676] dump_stack_lvl+0x57/0x78\n[ 419.951212] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.951830] print_report+0x14c/0x49e\n[ 419.952361] ? __virt_addr_valid+0x267/0x278\n[ 419.952979] ? kmem_cache_debug_flags+0xc/0x1d\n[ 419.953561] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.954231] kasan_report+0x89/0xb0\n[ 419.954748] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955367] hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955948] ? __pfx_hfsplus_read_wrapper+0x10/0x10\n[ 419.956618] ? do_raw_spin_unlock+0x59/0x1a9\n[ 419.957214] ? _raw_spin_unlock+0x1a/0x2e\n[ 419.957772] hfsplus_fill_super+0x348/0x1590\n[ 419.958355] ? hlock_class+0x4c/0x109\n[ 419.958867] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.959499] ? __pfx_string+0x10/0x10\n[ 419.960006] ? lock_acquire+0x3e2/0x454\n[ 419.960532] ? bdev_name.constprop.0+0xce/0x243\n[ 419.961129] ? __pfx_bdev_name.constprop.0+0x10/0x10\n[ 419.961799] ? pointer+0x3f0/0x62f\n[ 419.962277] ? __pfx_pointer+0x10/0x10\n[ 419.962761] ? vsnprintf+0x6c4/0xfba\n[ 419.963178] ? __pfx_vsnprintf+0x10/0x10\n[ 419.963621] ? setup_bdev_super+0x376/0x3b3\n[ 419.964029] ? snprintf+0x9d/0xd2\n[ 419.964344] ? __pfx_snprintf+0x10/0x10\n[ 419.964675] ? lock_acquired+0x45c/0x5e9\n[ 419.965016] ? set_blocksize+0x139/0x1c1\n[ 419.965381] ? sb_set_blocksize+0x6d/0xae\n[ 419.965742] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.966179] mount_bdev+0x12f/0x1bf\n[ 419.966512] ? __pfx_mount_bdev+0x10/0x10\n[ 419.966886] ? vfs_parse_fs_string+0xce/0x111\n[ 419.967293] ? __pfx_vfs_parse_fs_string+0x10/0x10\n[ 419.967702] ? __pfx_hfsplus_mount+0x10/0x10\n[ 419.968073] legacy_get_tree+0x104/0x178\n[ 419.968414] vfs_get_tree+0x86/0x296\n[ 419.968751] path_mount+0xba3/0xd0b\n[ 419.969157] ? __pfx_path_mount+0x10/0x10\n[ 419.969594] ? kmem_cache_free+0x1e2/0x260\n[ 419.970311] do_mount+0x99/0xe0\n[ 419.970630] ? __pfx_do_mount+0x10/0x10\n[ 419.971008] __do_sys_mount+0x199/0x1c9\n[ 419.971397] do_syscall_64+0xd0/0x135\n[ 419.971761] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 419.972233] RIP: 0033:0x7c3cb812972e\n[ 419.972564] Code: 48 8b 0d f5 46 0d 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 a5 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d c2 46 0d 00 f7 d8 64 89 01 48\n[ 419.974371] RSP: 002b:00007ffe30632548 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5\n[ 419.975048] RAX: ffffffffffffffda RBX: 00007ffe306328d8 RCX: 00007c3cb812972e\n[ 419.975701] RDX: 0000000020000000 RSI: 0000000020000c80 RDI:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56548",
"url": "https://www.suse.com/security/cve/CVE-2024-56548"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235073 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "external",
"summary": "SUSE Bug 1235074 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56548"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix usage slab after free\n\n[ +0.000021] BUG: KASAN: slab-use-after-free in drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000027] Read of size 8 at addr ffff8881b8605f88 by task amd_pci_unplug/2147\n\n[ +0.000023] CPU: 6 PID: 2147 Comm: amd_pci_unplug Not tainted 6.10.0+ #1\n[ +0.000016] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[ +0.000016] Call Trace:\n[ +0.000008] \u003cTASK\u003e\n[ +0.000009] dump_stack_lvl+0x76/0xa0\n[ +0.000017] print_report+0xce/0x5f0\n[ +0.000017] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] ? srso_return_thunk+0x5/0x5f\n[ +0.000015] ? kasan_complete_mode_report_info+0x72/0x200\n[ +0.000016] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] kasan_report+0xbe/0x110\n[ +0.000015] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000023] __asan_report_load8_noabort+0x14/0x30\n[ +0.000014] drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000016] ? __pfx_drm_sched_entity_flush+0x10/0x10 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? enable_work+0x124/0x220\n[ +0.000015] ? __pfx_enable_work+0x10/0x10\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? free_large_kmalloc+0x85/0xf0\n[ +0.000016] drm_sched_entity_destroy+0x18/0x30 [gpu_sched]\n[ +0.000020] amdgpu_vce_sw_fini+0x55/0x170 [amdgpu]\n[ +0.000735] ? __kasan_check_read+0x11/0x20\n[ +0.000016] vce_v4_0_sw_fini+0x80/0x110 [amdgpu]\n[ +0.000726] amdgpu_device_fini_sw+0x331/0xfc0 [amdgpu]\n[ +0.000679] ? mutex_unlock+0x80/0xe0\n[ +0.000017] ? __pfx_amdgpu_device_fini_sw+0x10/0x10 [amdgpu]\n[ +0.000662] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? mutex_unlock+0x80/0xe0\n[ +0.000016] amdgpu_driver_release_kms+0x16/0x80 [amdgpu]\n[ +0.000663] drm_minor_release+0xc9/0x140 [drm]\n[ +0.000081] drm_release+0x1fd/0x390 [drm]\n[ +0.000082] __fput+0x36c/0xad0\n[ +0.000018] __fput_sync+0x3c/0x50\n[ +0.000014] __x64_sys_close+0x7d/0xe0\n[ +0.000014] x64_sys_call+0x1bc6/0x2680\n[ +0.000014] do_syscall_64+0x70/0x130\n[ +0.000014] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit_to_user_mode+0x60/0x190\n[ +0.000015] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit+0x43/0x50\n[ +0.000012] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? exc_page_fault+0x7c/0x110\n[ +0.000015] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ +0.000014] RIP: 0033:0x7ffff7b14f67\n[ +0.000013] Code: ff e8 0d 16 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 03 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 41 c3 48 83 ec 18 89 7c 24 0c e8 73 ba f7 ff\n[ +0.000026] RSP: 002b:00007fffffffe378 EFLAGS: 00000246 ORIG_RAX: 0000000000000003\n[ +0.000019] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffff7b14f67\n[ +0.000014] RDX: 0000000000000000 RSI: 00007ffff7f6f47a RDI: 0000000000000003\n[ +0.000014] RBP: 00007fffffffe3a0 R08: 0000555555569890 R09: 0000000000000000\n[ +0.000014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffffe5c8\n[ +0.000013] R13: 00005555555552a9 R14: 0000555555557d48 R15: 00007ffff7ffd040\n[ +0.000020] \u003c/TASK\u003e\n\n[ +0.000016] Allocated by task 383 on cpu 7 at 26.880319s:\n[ +0.000014] kasan_save_stack+0x28/0x60\n[ +0.000008] kasan_save_track+0x18/0x70\n[ +0.000007] kasan_save_alloc_info+0x38/0x60\n[ +0.000007] __kasan_kmalloc+0xc1/0xd0\n[ +0.000007] kmalloc_trace_noprof+0x180/0x380\n[ +0.000007] drm_sched_init+0x411/0xec0 [gpu_sched]\n[ +0.000012] amdgpu_device_init+0x695f/0xa610 [amdgpu]\n[ +0.000658] amdgpu_driver_load_kms+0x1a/0x120 [amdgpu]\n[ +0.000662] amdgpu_pci_p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56551",
"url": "https://www.suse.com/security/cve/CVE-2024-56551"
},
{
"category": "external",
"summary": "SUSE Bug 1235075 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "external",
"summary": "SUSE Bug 1235102 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56551"
},
{
"cve": "CVE-2024-56557",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56557"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer\n\nThe AD7923 was updated to support devices with 8 channels, but the size\nof tx_buf and ring_xfer was not increased accordingly, leading to a\npotential buffer overflow in ad7923_update_scan_mode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56557",
"url": "https://www.suse.com/security/cve/CVE-2024-56557"
},
{
"category": "external",
"summary": "SUSE Bug 1235122 for CVE-2024-56557",
"url": "https://bugzilla.suse.com/1235122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56557"
},
{
"cve": "CVE-2024-56558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56558"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: make sure exp active before svc_export_show\n\nThe function `e_show` was called with protection from RCU. This only\nensures that `exp` will not be freed. Therefore, the reference count for\n`exp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `exp_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `exp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 3 PID: 819 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 3 UID: 0 PID: 819 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n...\nCall Trace:\n \u003cTASK\u003e\n e_show+0x20b/0x230 [nfsd]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56558",
"url": "https://www.suse.com/security/cve/CVE-2024-56558"
},
{
"category": "external",
"summary": "SUSE Bug 1235100 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "external",
"summary": "SUSE Bug 1243648 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1243648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56558"
},
{
"cve": "CVE-2024-56562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56562"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()\n\nif (dev-\u003eboardinfo \u0026\u0026 dev-\u003eboardinfo-\u003einit_dyn_addr)\n ^^^ here check \"init_dyn_addr\"\n\ti3c_bus_set_addr_slot_status(\u0026master-\u003ebus, dev-\u003einfo.dyn_addr, ...)\n\t\t\t\t\t\t ^^^^\n\t\t\t\t\t\t\tfree \"dyn_addr\"\nFix copy/paste error \"dyn_addr\" by replacing it with \"init_dyn_addr\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56562",
"url": "https://www.suse.com/security/cve/CVE-2024-56562"
},
{
"category": "external",
"summary": "SUSE Bug 1234930 for CVE-2024-56562",
"url": "https://bugzilla.suse.com/1234930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56562"
},
{
"cve": "CVE-2024-56566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: Avoid list corruption when removing a slab from the full list\n\nBoot with slub_debug=UFPZ.\n\nIf allocated object failed in alloc_consistency_checks, all objects of\nthe slab will be marked as used, and then the slab will be removed from\nthe partial list.\n\nWhen an object belonging to the slab got freed later, the remove_full()\nfunction is called. Because the slab is neither on the partial list nor\non the full list, it eventually lead to a list corruption (actually a\nlist poison being detected).\n\nSo we need to mark and isolate the slab page with metadata corruption,\ndo not put it back in circulation.\n\nBecause the debug caches avoid all the fastpaths, reusing the frozen bit\nto mark slab page with metadata corruption seems to be fine.\n\n[ 4277.385669] list_del corruption, ffffea00044b3e50-\u003enext is LIST_POISON1 (dead000000000100)\n[ 4277.387023] ------------[ cut here ]------------\n[ 4277.387880] kernel BUG at lib/list_debug.c:56!\n[ 4277.388680] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 4277.389562] CPU: 5 PID: 90 Comm: kworker/5:1 Kdump: loaded Tainted: G OE 6.6.1-1 #1\n[ 4277.392113] Workqueue: xfs-inodegc/vda1 xfs_inodegc_worker [xfs]\n[ 4277.393551] RIP: 0010:__list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.394518] Code: 48 91 82 e8 37 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 28 49 91 82 e8 26 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 58 49 91\n[ 4277.397292] RSP: 0018:ffffc90000333b38 EFLAGS: 00010082\n[ 4277.398202] RAX: 000000000000004e RBX: ffffea00044b3e50 RCX: 0000000000000000\n[ 4277.399340] RDX: 0000000000000002 RSI: ffffffff828f8715 RDI: 00000000ffffffff\n[ 4277.400545] RBP: ffffea00044b3e40 R08: 0000000000000000 R09: ffffc900003339f0\n[ 4277.401710] R10: 0000000000000003 R11: ffffffff82d44088 R12: ffff888112cf9910\n[ 4277.402887] R13: 0000000000000001 R14: 0000000000000001 R15: ffff8881000424c0\n[ 4277.404049] FS: 0000000000000000(0000) GS:ffff88842fd40000(0000) knlGS:0000000000000000\n[ 4277.405357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4277.406389] CR2: 00007f2ad0b24000 CR3: 0000000102a3a006 CR4: 00000000007706e0\n[ 4277.407589] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4277.408780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4277.410000] PKRU: 55555554\n[ 4277.410645] Call Trace:\n[ 4277.411234] \u003cTASK\u003e\n[ 4277.411777] ? die+0x32/0x80\n[ 4277.412439] ? do_trap+0xd6/0x100\n[ 4277.413150] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.414158] ? do_error_trap+0x6a/0x90\n[ 4277.414948] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.415915] ? exc_invalid_op+0x4c/0x60\n[ 4277.416710] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.417675] ? asm_exc_invalid_op+0x16/0x20\n[ 4277.418482] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.419466] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.420410] free_to_partial_list+0x515/0x5e0\n[ 4277.421242] ? xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.422298] xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.423316] ? xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.424383] xfs_bmap_del_extent_delay+0x4fe/0x7d0 [xfs]\n[ 4277.425490] __xfs_bunmapi+0x50d/0x840 [xfs]\n[ 4277.426445] xfs_itruncate_extents_flags+0x13a/0x490 [xfs]\n[ 4277.427553] xfs_inactive_truncate+0xa3/0x120 [xfs]\n[ 4277.428567] xfs_inactive+0x22d/0x290 [xfs]\n[ 4277.429500] xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.430479] process_one_work+0x171/0x340\n[ 4277.431227] worker_thread+0x277/0x390\n[ 4277.431962] ? __pfx_worker_thread+0x10/0x10\n[ 4277.432752] kthread+0xf0/0x120\n[ 4277.433382] ? __pfx_kthread+0x10/0x10\n[ 4277.434134] ret_from_fork+0x2d/0x50\n[ 4277.434837] ? __pfx_kthread+0x10/0x10\n[ 4277.435566] ret_from_fork_asm+0x1b/0x30\n[ 4277.436280] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56566",
"url": "https://www.suse.com/security/cve/CVE-2024-56566"
},
{
"category": "external",
"summary": "SUSE Bug 1235033 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "external",
"summary": "SUSE Bug 1235034 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56566"
},
{
"cve": "CVE-2024-56567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nad7780: fix division by zero in ad7780_write_raw()\n\nIn the ad7780_write_raw() , val2 can be zero, which might lead to a\ndivision by zero error in DIV_ROUND_CLOSEST(). The ad7780_write_raw()\nis based on iio_info\u0027s write_raw. While val is explicitly declared that\ncan be zero (in read mode), val2 is not specified to be non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56567",
"url": "https://www.suse.com/security/cve/CVE-2024-56567"
},
{
"category": "external",
"summary": "SUSE Bug 1234916 for CVE-2024-56567",
"url": "https://bugzilla.suse.com/1234916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56567"
},
{
"cve": "CVE-2024-56568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56568"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/arm-smmu: Defer probe of clients after smmu device bound\n\nNull pointer dereference occurs due to a race between smmu\ndriver probe and client driver probe, when of_dma_configure()\nfor client is called after the iommu_device_register() for smmu driver\nprobe has executed but before the driver_bound() for smmu driver\nhas been called.\n\nFollowing is how the race occurs:\n\nT1:Smmu device probe\t\tT2: Client device probe\n\nreally_probe()\narm_smmu_device_probe()\niommu_device_register()\n\t\t\t\t\treally_probe()\n\t\t\t\t\tplatform_dma_configure()\n\t\t\t\t\tof_dma_configure()\n\t\t\t\t\tof_dma_configure_id()\n\t\t\t\t\tof_iommu_configure()\n\t\t\t\t\tiommu_probe_device()\n\t\t\t\t\tiommu_init_device()\n\t\t\t\t\tarm_smmu_probe_device()\n\t\t\t\t\tarm_smmu_get_by_fwnode()\n\t\t\t\t\t\tdriver_find_device_by_fwnode()\n\t\t\t\t\t\tdriver_find_device()\n\t\t\t\t\t\tnext_device()\n\t\t\t\t\t\tklist_next()\n\t\t\t\t\t\t /* null ptr\n\t\t\t\t\t\t assigned to smmu */\n\t\t\t\t\t/* null ptr dereference\n\t\t\t\t\t while smmu-\u003estreamid_mask */\ndriver_bound()\n\tklist_add_tail()\n\nWhen this null smmu pointer is dereferenced later in\narm_smmu_probe_device, the device crashes.\n\nFix this by deferring the probe of the client device\nuntil the smmu device has bound to the arm smmu driver.\n\n[will: Add comment]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56568",
"url": "https://www.suse.com/security/cve/CVE-2024-56568"
},
{
"category": "external",
"summary": "SUSE Bug 1235032 for CVE-2024-56568",
"url": "https://bugzilla.suse.com/1235032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56568"
},
{
"cve": "CVE-2024-56569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix regression with module command in stack_trace_filter\n\nWhen executing the following command:\n\n # echo \"write*:mod:ext3\" \u003e /sys/kernel/tracing/stack_trace_filter\n\nThe current mod command causes a null pointer dereference. While commit\n0f17976568b3f (\"ftrace: Fix regression with module command in stack_trace_filter\")\nhas addressed part of the issue, it left a corner case unhandled, which still\nresults in a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56569",
"url": "https://www.suse.com/security/cve/CVE-2024-56569"
},
{
"category": "external",
"summary": "SUSE Bug 1235031 for CVE-2024-56569",
"url": "https://bugzilla.suse.com/1235031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56569"
},
{
"cve": "CVE-2024-56570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Filter invalid inodes with missing lookup function\n\nAdd a check to the ovl_dentry_weird() function to prevent the\nprocessing of directory inodes that lack the lookup function.\nThis is important because such inodes can cause errors in overlayfs\nwhen passed to the lowerstack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56570",
"url": "https://www.suse.com/security/cve/CVE-2024-56570"
},
{
"category": "external",
"summary": "SUSE Bug 1235035 for CVE-2024-56570",
"url": "https://bugzilla.suse.com/1235035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56570"
},
{
"cve": "CVE-2024-56571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56571"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56571",
"url": "https://www.suse.com/security/cve/CVE-2024-56571"
},
{
"category": "external",
"summary": "SUSE Bug 1235037 for CVE-2024-56571",
"url": "https://bugzilla.suse.com/1235037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56571"
},
{
"cve": "CVE-2024-56572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56572"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal()\n\nThe buffer in the loop should be released under the exception path,\notherwise there may be a memory leak here.\n\nTo mitigate this, free the buffer when allegro_alloc_buffer fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56572",
"url": "https://www.suse.com/security/cve/CVE-2024-56572"
},
{
"category": "external",
"summary": "SUSE Bug 1235043 for CVE-2024-56572",
"url": "https://bugzilla.suse.com/1235043"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56572"
},
{
"cve": "CVE-2024-56573",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56573"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi/libstub: Free correct pointer on failure\n\ncmdline_ptr is an out parameter, which is not allocated by the function\nitself, and likely points into the caller\u0027s stack.\n\ncmdline refers to the pool allocation that should be freed when cleaning\nup after a failure, so pass this instead to free_pool().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56573",
"url": "https://www.suse.com/security/cve/CVE-2024-56573"
},
{
"category": "external",
"summary": "SUSE Bug 1235042 for CVE-2024-56573",
"url": "https://bugzilla.suse.com/1235042"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56573"
},
{
"cve": "CVE-2024-56574",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56574"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: ts2020: fix null-ptr-deref in ts2020_probe()\n\nKASAN reported a null-ptr-deref issue when executing the following\ncommand:\n\n # echo ts2020 0x20 \u003e /sys/bus/i2c/devices/i2c-0/new_device\n KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\n CPU: 53 UID: 0 PID: 970 Comm: systemd-udevd Not tainted 6.12.0-rc2+ #24\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)\n RIP: 0010:ts2020_probe+0xad/0xe10 [ts2020]\n RSP: 0018:ffffc9000abbf598 EFLAGS: 00010202\n RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffffc0714809\n RDX: 0000000000000002 RSI: ffff88811550be00 RDI: 0000000000000010\n RBP: ffff888109868800 R08: 0000000000000001 R09: fffff52001577eb6\n R10: 0000000000000000 R11: ffffc9000abbff50 R12: ffffffffc0714790\n R13: 1ffff92001577eb8 R14: ffffffffc07190d0 R15: 0000000000000001\n FS: 00007f95f13b98c0(0000) GS:ffff888149280000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000555d2634b000 CR3: 0000000152236000 CR4: 00000000000006f0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ts2020_probe+0xad/0xe10 [ts2020]\n i2c_device_probe+0x421/0xb40\n really_probe+0x266/0x850\n ...\n\nThe cause of the problem is that when using sysfs to dynamically register\nan i2c device, there is no platform data, but the probe process of ts2020\nneeds to use platform data, resulting in a null pointer being accessed.\n\nSolve this problem by adding checks to platform data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56574",
"url": "https://www.suse.com/security/cve/CVE-2024-56574"
},
{
"category": "external",
"summary": "SUSE Bug 1235040 for CVE-2024-56574",
"url": "https://bugzilla.suse.com/1235040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56574"
},
{
"cve": "CVE-2024-56575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56575"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Ensure power suppliers be suspended before detach them\n\nThe power suppliers are always requested to suspend asynchronously,\ndev_pm_domain_detach() requires the caller to ensure proper\nsynchronization of this function with power management callbacks.\notherwise the detach may led to kernel panic, like below:\n\n[ 1457.107934] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000040\n[ 1457.116777] Mem abort info:\n[ 1457.119589] ESR = 0x0000000096000004\n[ 1457.123358] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 1457.128692] SET = 0, FnV = 0\n[ 1457.131764] EA = 0, S1PTW = 0\n[ 1457.134920] FSC = 0x04: level 0 translation fault\n[ 1457.139812] Data abort info:\n[ 1457.142707] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 1457.148196] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 1457.153256] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 1457.158563] user pgtable: 4k pages, 48-bit VAs, pgdp=00000001138b6000\n[ 1457.165000] [0000000000000040] pgd=0000000000000000, p4d=0000000000000000\n[ 1457.171792] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 1457.178045] Modules linked in: v4l2_jpeg wave6_vpu_ctrl(-) [last unloaded: mxc_jpeg_encdec]\n[ 1457.186383] CPU: 0 PID: 51938 Comm: kworker/0:3 Not tainted 6.6.36-gd23d64eea511 #66\n[ 1457.194112] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 1457.199236] Workqueue: pm pm_runtime_work\n[ 1457.203247] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1457.210188] pc : genpd_runtime_suspend+0x20/0x290\n[ 1457.214886] lr : __rpm_callback+0x48/0x1d8\n[ 1457.218968] sp : ffff80008250bc50\n[ 1457.222270] x29: ffff80008250bc50 x28: 0000000000000000 x27: 0000000000000000\n[ 1457.229394] x26: 0000000000000000 x25: 0000000000000008 x24: 00000000000f4240\n[ 1457.236518] x23: 0000000000000000 x22: ffff00008590f0e4 x21: 0000000000000008\n[ 1457.243642] x20: ffff80008099c434 x19: ffff00008590f000 x18: ffffffffffffffff\n[ 1457.250766] x17: 5300326563697665 x16: 645f676e696c6f6f x15: 63343a6d726f6674\n[ 1457.257890] x14: 0000000000000004 x13: 00000000000003a4 x12: 0000000000000002\n[ 1457.265014] x11: 0000000000000000 x10: 0000000000000a60 x9 : ffff80008250bbb0\n[ 1457.272138] x8 : ffff000092937200 x7 : ffff0003fdf6af80 x6 : 0000000000000000\n[ 1457.279262] x5 : 00000000410fd050 x4 : 0000000000200000 x3 : 0000000000000000\n[ 1457.286386] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff00008590f000\n[ 1457.293510] Call trace:\n[ 1457.295946] genpd_runtime_suspend+0x20/0x290\n[ 1457.300296] __rpm_callback+0x48/0x1d8\n[ 1457.304038] rpm_callback+0x6c/0x78\n[ 1457.307515] rpm_suspend+0x10c/0x570\n[ 1457.311077] pm_runtime_work+0xc4/0xc8\n[ 1457.314813] process_one_work+0x138/0x248\n[ 1457.318816] worker_thread+0x320/0x438\n[ 1457.322552] kthread+0x110/0x114\n[ 1457.325767] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56575",
"url": "https://www.suse.com/security/cve/CVE-2024-56575"
},
{
"category": "external",
"summary": "SUSE Bug 1235039 for CVE-2024-56575",
"url": "https://bugzilla.suse.com/1235039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56575"
},
{
"cve": "CVE-2024-56576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56576"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: tc358743: Fix crash in the probe error path when using polling\n\nIf an error occurs in the probe() function, we should remove the polling\ntimer that was alarmed earlier, otherwise the timer is called with\narguments that are already freed, which results in a crash.\n\n------------[ cut here ]------------\nWARNING: CPU: 3 PID: 0 at kernel/time/timer.c:1830 __run_timers+0x244/0x268\nModules linked in:\nCPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted 6.11.0 #226\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\npstate: 804000c9 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : __run_timers+0x244/0x268\nlr : __run_timers+0x1d4/0x268\nsp : ffffff80eff2baf0\nx29: ffffff80eff2bb50 x28: 7fffffffffffffff x27: ffffff80eff2bb00\nx26: ffffffc080f669c0 x25: ffffff80efef6bf0 x24: ffffff80eff2bb00\nx23: 0000000000000000 x22: dead000000000122 x21: 0000000000000000\nx20: ffffff80efef6b80 x19: ffffff80041c8bf8 x18: ffffffffffffffff\nx17: ffffffc06f146000 x16: ffffff80eff27dc0 x15: 000000000000003e\nx14: 0000000000000000 x13: 00000000000054da x12: 0000000000000000\nx11: 00000000000639c0 x10: 000000000000000c x9 : 0000000000000009\nx8 : ffffff80eff2cb40 x7 : ffffff80eff2cb40 x6 : ffffff8002bee480\nx5 : ffffffc080cb2220 x4 : ffffffc080cb2150 x3 : 00000000000f4240\nx2 : 0000000000000102 x1 : ffffff80eff2bb00 x0 : ffffff80041c8bf0\nCall trace:\n __run_timers+0x244/0x268\n timer_expire_remote+0x50/0x68\n tmigr_handle_remote+0x388/0x39c\n run_timer_softirq+0x38/0x44\n handle_softirqs+0x138/0x298\n __do_softirq+0x14/0x20\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0x9c/0xcc\n el1_interrupt+0x48/0xc0\n el1h_64_irq_handler+0x18/0x24\n el1h_64_irq+0x7c/0x80\n default_idle_call+0x34/0x68\n do_idle+0x23c/0x294\n cpu_startup_entry+0x38/0x3c\n secondary_start_kernel+0x128/0x160\n __secondary_switched+0xb8/0xbc\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56576",
"url": "https://www.suse.com/security/cve/CVE-2024-56576"
},
{
"category": "external",
"summary": "SUSE Bug 1235019 for CVE-2024-56576",
"url": "https://bugzilla.suse.com/1235019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56576"
},
{
"cve": "CVE-2024-56577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56577"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-jpeg: Fix null-ptr-deref during unload module\n\nThe workqueue should be destroyed in mtk_jpeg_core.c since commit\n09aea13ecf6f (\"media: mtk-jpeg: refactor some variables\"), otherwise\nthe below calltrace can be easily triggered.\n\n[ 677.862514] Unable to handle kernel paging request at virtual address dfff800000000023\n[ 677.863633] KASAN: null-ptr-deref in range [0x0000000000000118-0x000000000000011f]\n...\n[ 677.879654] CPU: 6 PID: 1071 Comm: modprobe Tainted: G O 6.8.12-mtk+gfa1a78e5d24b+ #17\n...\n[ 677.882838] pc : destroy_workqueue+0x3c/0x770\n[ 677.883413] lr : mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.884314] sp : ffff80008ad974f0\n[ 677.884744] x29: ffff80008ad974f0 x28: ffff0000d7115580 x27: ffff0000dd691070\n[ 677.885669] x26: ffff0000dd691408 x25: ffff8000844af3e0 x24: ffff80008ad97690\n[ 677.886592] x23: ffff0000e051d400 x22: ffff0000dd691010 x21: dfff800000000000\n[ 677.887515] x20: 0000000000000000 x19: 0000000000000000 x18: ffff800085397ac0\n[ 677.888438] x17: 0000000000000000 x16: ffff8000801b87c8 x15: 1ffff000115b2e10\n[ 677.889361] x14: 00000000f1f1f1f1 x13: 0000000000000000 x12: ffff7000115b2e4d\n[ 677.890285] x11: 1ffff000115b2e4c x10: ffff7000115b2e4c x9 : ffff80000aa43e90\n[ 677.891208] x8 : 00008fffeea4d1b4 x7 : ffff80008ad97267 x6 : 0000000000000001\n[ 677.892131] x5 : ffff80008ad97260 x4 : ffff7000115b2e4d x3 : 0000000000000000\n[ 677.893054] x2 : 0000000000000023 x1 : dfff800000000000 x0 : 0000000000000118\n[ 677.893977] Call trace:\n[ 677.894297] destroy_workqueue+0x3c/0x770\n[ 677.894826] mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.895677] devm_action_release+0x50/0x90\n[ 677.896211] release_nodes+0xe8/0x170\n[ 677.896688] devres_release_all+0xf8/0x178\n[ 677.897219] device_unbind_cleanup+0x24/0x170\n[ 677.897785] device_release_driver_internal+0x35c/0x480\n[ 677.898461] device_release_driver+0x20/0x38\n...\n[ 677.912665] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56577",
"url": "https://www.suse.com/security/cve/CVE-2024-56577"
},
{
"category": "external",
"summary": "SUSE Bug 1235112 for CVE-2024-56577",
"url": "https://bugzilla.suse.com/1235112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56577"
},
{
"cve": "CVE-2024-56578",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56578"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Set video drvdata before register video device\n\nThe video drvdata should be set before the video device is registered,\notherwise video_drvdata() may return NULL in the open() file ops, and led\nto oops.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56578",
"url": "https://www.suse.com/security/cve/CVE-2024-56578"
},
{
"category": "external",
"summary": "SUSE Bug 1235115 for CVE-2024-56578",
"url": "https://bugzilla.suse.com/1235115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56578"
},
{
"cve": "CVE-2024-56582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56582"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free in btrfs_encoded_read_endio()\n\nShinichiro reported the following use-after free that sometimes is\nhappening in our CI system when running fstests\u0027 btrfs/284 on a TCMU\nrunner device:\n\n BUG: KASAN: slab-use-after-free in lock_release+0x708/0x780\n Read of size 8 at addr ffff888106a83f18 by task kworker/u80:6/219\n\n CPU: 8 UID: 0 PID: 219 Comm: kworker/u80:6 Not tainted 6.12.0-rc6-kts+ #15\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6e/0xa0\n ? lock_release+0x708/0x780\n print_report+0x174/0x505\n ? lock_release+0x708/0x780\n ? __virt_addr_valid+0x224/0x410\n ? lock_release+0x708/0x780\n kasan_report+0xda/0x1b0\n ? lock_release+0x708/0x780\n ? __wake_up+0x44/0x60\n lock_release+0x708/0x780\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? lock_is_held_type+0x9a/0x110\n _raw_spin_unlock_irqrestore+0x1f/0x60\n __wake_up+0x44/0x60\n btrfs_encoded_read_endio+0x14b/0x190 [btrfs]\n btrfs_check_read_bio+0x8d9/0x1360 [btrfs]\n ? lock_release+0x1b0/0x780\n ? trace_lock_acquire+0x12f/0x1a0\n ? __pfx_btrfs_check_read_bio+0x10/0x10 [btrfs]\n ? process_one_work+0x7e3/0x1460\n ? lock_acquire+0x31/0xc0\n ? process_one_work+0x7e3/0x1460\n process_one_work+0x85c/0x1460\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x16c/0x240\n worker_thread+0x5e6/0xfc0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2c3/0x3a0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_encoded_read_regular_fill_pages+0x16c/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x4f/0x70\n kfree+0x143/0x490\n btrfs_encoded_read_regular_fill_pages+0x531/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n The buggy address belongs to the object at ffff888106a83f00\n which belongs to the cache kmalloc-rnd-07-96 of size 96\n The buggy address is located 24 bytes inside of\n freed 96-byte region [ffff888106a83f00, ffff888106a83f60)\n\n The buggy address belongs to the physical page:\n page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888106a83800 pfn:0x106a83\n flags: 0x17ffffc0000000(node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f5(slab)\n raw: 0017ffffc0000000 ffff888100053680 ffffea0004917200 0000000000000004\n raw: ffff888106a83800 0000000080200019 00000001f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888106a83e00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a83e80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n \u003effff888106a83f00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ^\n ffff888106a83f80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a84000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ==================================================================\n\nFurther analyzing the trace and \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56582",
"url": "https://www.suse.com/security/cve/CVE-2024-56582"
},
{
"category": "external",
"summary": "SUSE Bug 1235128 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "external",
"summary": "SUSE Bug 1235129 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56582"
},
{
"cve": "CVE-2024-56584",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56584"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/tctx: work around xa_store() allocation error issue\n\nsyzbot triggered the following WARN_ON:\n\nWARNING: CPU: 0 PID: 16 at io_uring/tctx.c:51 __io_uring_free+0xfa/0x140 io_uring/tctx.c:51\n\nwhich is the\n\nWARN_ON_ONCE(!xa_empty(\u0026tctx-\u003exa));\n\nsanity check in __io_uring_free() when a io_uring_task is going through\nits final put. The syzbot test case includes injecting memory allocation\nfailures, and it very much looks like xa_store() can fail one of its\nmemory allocations and end up with -\u003ehead being non-NULL even though no\nentries exist in the xarray.\n\nUntil this issue gets sorted out, work around it by attempting to\niterate entries in our xarray, and WARN_ON_ONCE() if one is found.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56584",
"url": "https://www.suse.com/security/cve/CVE-2024-56584"
},
{
"category": "external",
"summary": "SUSE Bug 1235117 for CVE-2024-56584",
"url": "https://bugzilla.suse.com/1235117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56584"
},
{
"cve": "CVE-2024-56587",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56587"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nleds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex\n\nThere is NULL pointer issue observed if from Process A where hid device\nbeing added which results in adding a led_cdev addition and later a\nanother call to access of led_cdev attribute from Process B can result\nin NULL pointer issue.\n\nUse mutex led_cdev-\u003eled_access to protect access to led-\u003ecdev and its\nattribute inside brightness_show() and max_brightness_show() and also\nupdate the comment for mutex that it should be used to protect the led\nclass device fields.\n\n\tProcess A \t\t\t\tProcess B\n\n kthread+0x114\n worker_thread+0x244\n process_scheduled_works+0x248\n uhid_device_add_worker+0x24\n hid_add_device+0x120\n device_add+0x268\n bus_probe_device+0x94\n device_initial_probe+0x14\n __device_attach+0xfc\n bus_for_each_drv+0x10c\n __device_attach_driver+0x14c\n driver_probe_device+0x3c\n __driver_probe_device+0xa0\n really_probe+0x190\n hid_device_probe+0x130\n ps_probe+0x990\n ps_led_register+0x94\n devm_led_classdev_register_ext+0x58\n led_classdev_register_ext+0x1f8\n device_create_with_groups+0x48\n device_create_groups_vargs+0xc8\n device_add+0x244\n kobject_uevent+0x14\n kobject_uevent_env[jt]+0x224\n mutex_unlock[jt]+0xc4\n __mutex_unlock_slowpath+0xd4\n wake_up_q+0x70\n try_to_wake_up[jt]+0x48c\n preempt_schedule_common+0x28\n __schedule+0x628\n __switch_to+0x174\n\t\t\t\t\t\tel0t_64_sync+0x1a8/0x1ac\n\t\t\t\t\t\tel0t_64_sync_handler+0x68/0xbc\n\t\t\t\t\t\tel0_svc+0x38/0x68\n\t\t\t\t\t\tdo_el0_svc+0x1c/0x28\n\t\t\t\t\t\tel0_svc_common+0x80/0xe0\n\t\t\t\t\t\tinvoke_syscall+0x58/0x114\n\t\t\t\t\t\t__arm64_sys_read+0x1c/0x2c\n\t\t\t\t\t\tksys_read+0x78/0xe8\n\t\t\t\t\t\tvfs_read+0x1e0/0x2c8\n\t\t\t\t\t\tkernfs_fop_read_iter+0x68/0x1b4\n\t\t\t\t\t\tseq_read_iter+0x158/0x4ec\n\t\t\t\t\t\tkernfs_seq_show+0x44/0x54\n\t\t\t\t\t\tsysfs_kf_seq_show+0xb4/0x130\n\t\t\t\t\t\tdev_attr_show+0x38/0x74\n\t\t\t\t\t\tbrightness_show+0x20/0x4c\n\t\t\t\t\t\tdualshock4_led_get_brightness+0xc/0x74\n\n[ 3313.874295][ T4013] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000060\n[ 3313.874301][ T4013] Mem abort info:\n[ 3313.874303][ T4013] ESR = 0x0000000096000006\n[ 3313.874305][ T4013] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 3313.874307][ T4013] SET = 0, FnV = 0\n[ 3313.874309][ T4013] EA = 0, S1PTW = 0\n[ 3313.874311][ T4013] FSC = 0x06: level 2 translation fault\n[ 3313.874313][ T4013] Data abort info:\n[ 3313.874314][ T4013] ISV = 0, ISS = 0x00000006, ISS2 = 0x00000000\n[ 3313.874316][ T4013] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 3313.874318][ T4013] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 3313.874320][ T4013] user pgtable: 4k pages, 39-bit VAs, pgdp=00000008f2b0a000\n..\n\n[ 3313.874332][ T4013] Dumping ftrace buffer:\n[ 3313.874334][ T4013] (ftrace buffer empty)\n..\n..\n[ dd3313.874639][ T4013] CPU: 6 PID: 4013 Comm: InputReader\n[ 3313.874648][ T4013] pc : dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874653][ T4013] lr : led_update_brightness+0x38/0x60\n[ 3313.874656][ T4013] sp : ffffffc0b910bbd0\n..\n..\n[ 3313.874685][ T4013] Call trace:\n[ 3313.874687][ T4013] dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874690][ T4013] brightness_show+0x20/0x4c\n[ 3313.874692][ T4013] dev_attr_show+0x38/0x74\n[ 3313.874696][ T4013] sysfs_kf_seq_show+0xb4/0x130\n[ 3313.874700][ T4013] kernfs_seq_show+0x44/0x54\n[ 3313.874703][ T4013] seq_read_iter+0x158/0x4ec\n[ 3313.874705][ T4013] kernfs_fop_read_iter+0x68/0x1b4\n[ 3313.874708][ T4013] vfs_read+0x1e0/0x2c8\n[ 3313.874711][ T4013] ksys_read+0x78/0xe8\n[ 3313.874714][ T4013] __arm64_sys_read+0x1c/0x2c\n[ 3313.874718][ T4013] invoke_syscall+0x58/0x114\n[ 3313.874721][ T4013] el0_svc_common+0x80/0xe0\n[ 3313.874724][ T4013] do_el0_svc+0x1c/0x28\n[ 3313.874727][ T4013] el0_svc+0x38/0x68\n[ 3313.874730][ T4013] el0t_64_sync_handler+0x68/0xbc\n[ 3313.874732][ T4013] el0t_64_sync+0x1a8/0x1ac",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56587",
"url": "https://www.suse.com/security/cve/CVE-2024-56587"
},
{
"category": "external",
"summary": "SUSE Bug 1235125 for CVE-2024-56587",
"url": "https://bugzilla.suse.com/1235125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56587"
},
{
"cve": "CVE-2024-56588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56588"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Create all dump files during debugfs initialization\n\nFor the current debugfs of hisi_sas, after user triggers dump, the\ndriver allocate memory space to save the register information and create\ndebugfs files to display the saved information. In this process, the\ndebugfs files created after each dump.\n\nTherefore, when the dump is triggered while the driver is unbind, the\nfollowing hang occurs:\n\n[67840.853907] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000a0\n[67840.862947] Mem abort info:\n[67840.865855] ESR = 0x0000000096000004\n[67840.869713] EC = 0x25: DABT (current EL), IL = 32 bits\n[67840.875125] SET = 0, FnV = 0\n[67840.878291] EA = 0, S1PTW = 0\n[67840.881545] FSC = 0x04: level 0 translation fault\n[67840.886528] Data abort info:\n[67840.889524] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[67840.895117] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[67840.900284] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[67840.905709] user pgtable: 4k pages, 48-bit VAs, pgdp=0000002803a1f000\n[67840.912263] [00000000000000a0] pgd=0000000000000000, p4d=0000000000000000\n[67840.919177] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[67840.996435] pstate: 80400009 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[67841.003628] pc : down_write+0x30/0x98\n[67841.007546] lr : start_creating.part.0+0x60/0x198\n[67841.012495] sp : ffff8000b979ba20\n[67841.016046] x29: ffff8000b979ba20 x28: 0000000000000010 x27: 0000000000024b40\n[67841.023412] x26: 0000000000000012 x25: ffff20202b355ae8 x24: ffff20202b35a8c8\n[67841.030779] x23: ffffa36877928208 x22: ffffa368b4972240 x21: ffff8000b979bb18\n[67841.038147] x20: ffff00281dc1e3c0 x19: fffffffffffffffe x18: 0000000000000020\n[67841.045515] x17: 0000000000000000 x16: ffffa368b128a530 x15: ffffffffffffffff\n[67841.052888] x14: ffff8000b979bc18 x13: ffffffffffffffff x12: ffff8000b979bb18\n[67841.060263] x11: 0000000000000000 x10: 0000000000000000 x9 : ffffa368b1289b18\n[67841.067640] x8 : 0000000000000012 x7 : 0000000000000000 x6 : 00000000000003a9\n[67841.075014] x5 : 0000000000000000 x4 : ffff002818c5cb00 x3 : 0000000000000001\n[67841.082388] x2 : 0000000000000000 x1 : ffff002818c5cb00 x0 : 00000000000000a0\n[67841.089759] Call trace:\n[67841.092456] down_write+0x30/0x98\n[67841.096017] start_creating.part.0+0x60/0x198\n[67841.100613] debugfs_create_dir+0x48/0x1f8\n[67841.104950] debugfs_create_files_v3_hw+0x88/0x348 [hisi_sas_v3_hw]\n[67841.111447] debugfs_snapshot_regs_v3_hw+0x708/0x798 [hisi_sas_v3_hw]\n[67841.118111] debugfs_trigger_dump_v3_hw_write+0x9c/0x120 [hisi_sas_v3_hw]\n[67841.125115] full_proxy_write+0x68/0xc8\n[67841.129175] vfs_write+0xd8/0x3f0\n[67841.132708] ksys_write+0x70/0x108\n[67841.136317] __arm64_sys_write+0x24/0x38\n[67841.140440] invoke_syscall+0x50/0x128\n[67841.144385] el0_svc_common.constprop.0+0xc8/0xf0\n[67841.149273] do_el0_svc+0x24/0x38\n[67841.152773] el0_svc+0x38/0xd8\n[67841.156009] el0t_64_sync_handler+0xc0/0xc8\n[67841.160361] el0t_64_sync+0x1a4/0x1a8\n[67841.164189] Code: b9000882 d2800002 d2800023 f9800011 (c85ffc05)\n[67841.170443] ---[ end trace 0000000000000000 ]---\n\nTo fix this issue, create all directories and files during debugfs\ninitialization. In this way, the driver only needs to allocate memory\nspace to save information each time the user triggers dumping.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56588",
"url": "https://www.suse.com/security/cve/CVE-2024-56588"
},
{
"category": "external",
"summary": "SUSE Bug 1235123 for CVE-2024-56588",
"url": "https://bugzilla.suse.com/1235123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56588"
},
{
"cve": "CVE-2024-56589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Add cond_resched() for no forced preemption model\n\nFor no forced preemption model kernel, in the scenario where the\nexpander is connected to 12 high performance SAS SSDs, the following\ncall trace may occur:\n\n[ 214.409199][ C240] watchdog: BUG: soft lockup - CPU#240 stuck for 22s! [irq/149-hisi_sa:3211]\n[ 214.568533][ C240] pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--)\n[ 214.575224][ C240] pc : fput_many+0x8c/0xdc\n[ 214.579480][ C240] lr : fput+0x1c/0xf0\n[ 214.583302][ C240] sp : ffff80002de2b900\n[ 214.587298][ C240] x29: ffff80002de2b900 x28: ffff1082aa412000\n[ 214.593291][ C240] x27: ffff3062a0348c08 x26: ffff80003a9f6000\n[ 214.599284][ C240] x25: ffff1062bbac5c40 x24: 0000000000001000\n[ 214.605277][ C240] x23: 000000000000000a x22: 0000000000000001\n[ 214.611270][ C240] x21: 0000000000001000 x20: 0000000000000000\n[ 214.617262][ C240] x19: ffff3062a41ae580 x18: 0000000000010000\n[ 214.623255][ C240] x17: 0000000000000001 x16: ffffdb3a6efe5fc0\n[ 214.629248][ C240] x15: ffffffffffffffff x14: 0000000003ffffff\n[ 214.635241][ C240] x13: 000000000000ffff x12: 000000000000029c\n[ 214.641234][ C240] x11: 0000000000000006 x10: ffff80003a9f7fd0\n[ 214.647226][ C240] x9 : ffffdb3a6f0482fc x8 : 0000000000000001\n[ 214.653219][ C240] x7 : 0000000000000002 x6 : 0000000000000080\n[ 214.659212][ C240] x5 : ffff55480ee9b000 x4 : fffffde7f94c6554\n[ 214.665205][ C240] x3 : 0000000000000002 x2 : 0000000000000020\n[ 214.671198][ C240] x1 : 0000000000000021 x0 : ffff3062a41ae5b8\n[ 214.677191][ C240] Call trace:\n[ 214.680320][ C240] fput_many+0x8c/0xdc\n[ 214.684230][ C240] fput+0x1c/0xf0\n[ 214.687707][ C240] aio_complete_rw+0xd8/0x1fc\n[ 214.692225][ C240] blkdev_bio_end_io+0x98/0x140\n[ 214.696917][ C240] bio_endio+0x160/0x1bc\n[ 214.701001][ C240] blk_update_request+0x1c8/0x3bc\n[ 214.705867][ C240] scsi_end_request+0x3c/0x1f0\n[ 214.710471][ C240] scsi_io_completion+0x7c/0x1a0\n[ 214.715249][ C240] scsi_finish_command+0x104/0x140\n[ 214.720200][ C240] scsi_softirq_done+0x90/0x180\n[ 214.724892][ C240] blk_mq_complete_request+0x5c/0x70\n[ 214.730016][ C240] scsi_mq_done+0x48/0xac\n[ 214.734194][ C240] sas_scsi_task_done+0xbc/0x16c [libsas]\n[ 214.739758][ C240] slot_complete_v3_hw+0x260/0x760 [hisi_sas_v3_hw]\n[ 214.746185][ C240] cq_thread_v3_hw+0xbc/0x190 [hisi_sas_v3_hw]\n[ 214.752179][ C240] irq_thread_fn+0x34/0xa4\n[ 214.756435][ C240] irq_thread+0xc4/0x130\n[ 214.760520][ C240] kthread+0x108/0x13c\n[ 214.764430][ C240] ret_from_fork+0x10/0x18\n\nThis is because in the hisi_sas driver, both the hardware interrupt\nhandler and the interrupt thread are executed on the same CPU. In the\nperformance test scenario, function irq_wait_for_interrupt() will always\nreturn 0 if lots of interrupts occurs and the CPU will be continuously\nconsumed. As a result, the CPU cannot run the watchdog thread. When the\nwatchdog time exceeds the specified time, call trace occurs.\n\nTo fix it, add cond_resched() to execute the watchdog thread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56589",
"url": "https://www.suse.com/security/cve/CVE-2024-56589"
},
{
"category": "external",
"summary": "SUSE Bug 1235241 for CVE-2024-56589",
"url": "https://bugzilla.suse.com/1235241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56589"
},
{
"cve": "CVE-2024-56590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56590"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_core: Fix not checking skb length on hci_acldata_packet\n\nThis fixes not checking if skb really contains an ACL header otherwise\nthe code may attempt to access some uninitilized/invalid memory past the\nvalid skb-\u003edata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56590",
"url": "https://www.suse.com/security/cve/CVE-2024-56590"
},
{
"category": "external",
"summary": "SUSE Bug 1235038 for CVE-2024-56590",
"url": "https://bugzilla.suse.com/1235038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56590"
},
{
"cve": "CVE-2024-56593",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56593"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw()\n\nThis patch fixes a NULL pointer dereference bug in brcmfmac that occurs\nwhen a high \u0027sd_sgentry_align\u0027 value applies (e.g. 512) and a lot of queued SKBs\nare sent from the pkt queue.\n\nThe problem is the number of entries in the pre-allocated sgtable, it is\nnents = max(rxglom_size, txglom_size) + max(rxglom_size, txglom_size) \u003e\u003e 4 + 1.\nGiven the default [rt]xglom_size=32 it\u0027s actually 35 which is too small.\nWorst case, the pkt queue can end up with 64 SKBs. This occurs when a new SKB\nis added for each original SKB if tailroom isn\u0027t enough to hold tail_pad.\nAt least one sg entry is needed for each SKB. So, eventually the \"skb_queue_walk loop\"\nin brcmf_sdiod_sglist_rw may run out of sg entries. This makes sg_next return\nNULL and this causes the oops.\n\nThe patch sets nents to max(rxglom_size, txglom_size) * 2 to be able handle\nthe worst-case.\nBtw. this requires only 64-35=29 * 16 (or 20 if CONFIG_NEED_SG_DMA_LENGTH) = 464\nadditional bytes of memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56593",
"url": "https://www.suse.com/security/cve/CVE-2024-56593"
},
{
"category": "external",
"summary": "SUSE Bug 1235252 for CVE-2024-56593",
"url": "https://bugzilla.suse.com/1235252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56593"
},
{
"cve": "CVE-2024-56594",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56594"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: set the right AMDGPU sg segment limitation\n\nThe driver needs to set the correct max_segment_size;\notherwise debug_dma_map_sg() will complain about the\nover-mapping of the AMDGPU sg length as following:\n\nWARNING: CPU: 6 PID: 1964 at kernel/dma/debug.c:1178 debug_dma_map_sg+0x2dc/0x370\n[ 364.049444] Modules linked in: veth amdgpu(OE) amdxcp drm_exec gpu_sched drm_buddy drm_ttm_helper ttm(OE) drm_suballoc_helper drm_display_helper drm_kms_helper i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc amd_atl intel_rapl_msr intel_rapl_common sunrpc sch_fq_codel snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd binfmt_misc snd_hda_codec snd_pci_acp6x snd_hda_core snd_acp_config snd_hwdep snd_soc_acpi kvm_amd snd_pcm kvm snd_seq_midi snd_seq_midi_event crct10dif_pclmul ghash_clmulni_intel sha512_ssse3 snd_rawmidi sha256_ssse3 sha1_ssse3 aesni_intel snd_seq nls_iso8859_1 crypto_simd snd_seq_device cryptd snd_timer rapl input_leds snd\n[ 364.049532] ipmi_devintf wmi_bmof ccp serio_raw k10temp sp5100_tco soundcore ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport drm efi_pstore ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 364.049576] CPU: 6 PID: 1964 Comm: rocminfo Tainted: G OE 6.10.0-custom #492\n[ 364.049579] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 364.049582] RIP: 0010:debug_dma_map_sg+0x2dc/0x370\n[ 364.049585] Code: 89 4d b8 e8 36 b1 86 00 8b 4d b8 48 8b 55 b0 44 8b 45 a8 4c 8b 4d a0 48 89 c6 48 c7 c7 00 4b 74 bc 4c 89 4d b8 e8 b4 73 f3 ff \u003c0f\u003e 0b 4c 8b 4d b8 8b 15 c8 2c b8 01 85 d2 0f 85 ee fd ff ff 8b 05\n[ 364.049588] RSP: 0018:ffff9ca600b57ac0 EFLAGS: 00010286\n[ 364.049590] RAX: 0000000000000000 RBX: ffff88b7c132b0c8 RCX: 0000000000000027\n[ 364.049592] RDX: ffff88bb0f521688 RSI: 0000000000000001 RDI: ffff88bb0f521680\n[ 364.049594] RBP: ffff9ca600b57b20 R08: 000000000000006f R09: ffff9ca600b57930\n[ 364.049596] R10: ffff9ca600b57928 R11: ffffffffbcb46328 R12: 0000000000000000\n[ 364.049597] R13: 0000000000000001 R14: ffff88b7c19c0700 R15: ffff88b7c9059800\n[ 364.049599] FS: 00007fb2d3516e80(0000) GS:ffff88bb0f500000(0000) knlGS:0000000000000000\n[ 364.049601] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 364.049603] CR2: 000055610bd03598 CR3: 00000001049f6000 CR4: 0000000000350ef0\n[ 364.049605] Call Trace:\n[ 364.049607] \u003cTASK\u003e\n[ 364.049609] ? show_regs+0x6d/0x80\n[ 364.049614] ? __warn+0x8c/0x140\n[ 364.049618] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049621] ? report_bug+0x193/0x1a0\n[ 364.049627] ? handle_bug+0x46/0x80\n[ 364.049631] ? exc_invalid_op+0x1d/0x80\n[ 364.049635] ? asm_exc_invalid_op+0x1f/0x30\n[ 364.049642] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049647] __dma_map_sg_attrs+0x90/0xe0\n[ 364.049651] dma_map_sgtable+0x25/0x40\n[ 364.049654] amdgpu_bo_move+0x59a/0x850 [amdgpu]\n[ 364.049935] ? srso_return_thunk+0x5/0x5f\n[ 364.049939] ? amdgpu_ttm_tt_populate+0x5d/0xc0 [amdgpu]\n[ 364.050095] ttm_bo_handle_move_mem+0xc3/0x180 [ttm]\n[ 364.050103] ttm_bo_validate+0xc1/0x160 [ttm]\n[ 364.050108] ? amdgpu_ttm_tt_get_user_pages+0xe5/0x1b0 [amdgpu]\n[ 364.050263] amdgpu_amdkfd_gpuvm_alloc_memory_of_gpu+0xa12/0xc90 [amdgpu]\n[ 364.050473] kfd_ioctl_alloc_memory_of_gpu+0x16b/0x3b0 [amdgpu]\n[ 364.050680] kfd_ioctl+0x3c2/0x530 [amdgpu]\n[ 364.050866] ? __pfx_kfd_ioctl_alloc_memory_of_gpu+0x10/0x10 [amdgpu]\n[ 364.05105\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56594",
"url": "https://www.suse.com/security/cve/CVE-2024-56594"
},
{
"category": "external",
"summary": "SUSE Bug 1235413 for CVE-2024-56594",
"url": "https://bugzilla.suse.com/1235413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56594"
},
{
"cve": "CVE-2024-56595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56595"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: add a check to prevent array-index-out-of-bounds in dbAdjTree\n\nWhen the value of lp is 0 at the beginning of the for loop, it will\nbecome negative in the next assignment and we should bail out.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56595",
"url": "https://www.suse.com/security/cve/CVE-2024-56595"
},
{
"category": "external",
"summary": "SUSE Bug 1235410 for CVE-2024-56595",
"url": "https://bugzilla.suse.com/1235410"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56595"
},
{
"cve": "CVE-2024-56596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix array-index-out-of-bounds in jfs_readdir\n\nThe stbl might contain some invalid values. Added a check to\nreturn error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56596",
"url": "https://www.suse.com/security/cve/CVE-2024-56596"
},
{
"category": "external",
"summary": "SUSE Bug 1235458 for CVE-2024-56596",
"url": "https://bugzilla.suse.com/1235458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56596"
},
{
"cve": "CVE-2024-56597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56597"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix shift-out-of-bounds in dbSplit\n\nWhen dmt_budmin is less than zero, it causes errors\nin the later stages. Added a check to return an error beforehand\nin dbAllocCtl itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56597",
"url": "https://www.suse.com/security/cve/CVE-2024-56597"
},
{
"category": "external",
"summary": "SUSE Bug 1235222 for CVE-2024-56597",
"url": "https://bugzilla.suse.com/1235222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56597"
},
{
"cve": "CVE-2024-56598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56598"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: array-index-out-of-bounds fix in dtReadFirst\n\nThe value of stbl can be sometimes out of bounds due\nto a bad filesystem. Added a check with appopriate return\nof error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56598",
"url": "https://www.suse.com/security/cve/CVE-2024-56598"
},
{
"category": "external",
"summary": "SUSE Bug 1235220 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "external",
"summary": "SUSE Bug 1235221 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56598"
},
{
"cve": "CVE-2024-56599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56599"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: avoid NULL pointer error during sdio remove\n\nWhen running \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will free sdio\nworkqueue by destroy_workqueue(). But if CONFIG_INIT_ON_FREE_DEFAULT_ON\nis set to yes, kernel panic will happen:\nCall trace:\n destroy_workqueue+0x1c/0x258\n ath10k_sdio_remove+0x84/0x94\n sdio_bus_remove+0x50/0x16c\n device_release_driver_internal+0x188/0x25c\n device_driver_detach+0x20/0x2c\n\nThis is because during \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will call\nath10k_core_destroy() before destroy_workqueue(). wiphy_dev_release()\nwill finally be called in ath10k_core_destroy(). This function will free\nstruct cfg80211_registered_device *rdev and all its members, including\nwiphy, dev and the pointer of sdio workqueue. Then the pointer of sdio\nworkqueue will be set to NULL due to CONFIG_INIT_ON_FREE_DEFAULT_ON.\n\nAfter device release, destroy_workqueue() will use NULL pointer then the\nkernel panic happen.\n\nCall trace:\nath10k_sdio_remove\n -\u003eath10k_core_unregister\n \u2026\u2026\n -\u003eath10k_core_stop\n -\u003eath10k_hif_stop\n -\u003eath10k_sdio_irq_disable\n -\u003eath10k_hif_power_down\n -\u003edel_timer_sync(\u0026ar_sdio-\u003esleep_timer)\n -\u003eath10k_core_destroy\n -\u003eath10k_mac_destroy\n -\u003eieee80211_free_hw\n -\u003ewiphy_free\n \u2026\u2026\n -\u003ewiphy_dev_release\n -\u003edestroy_workqueue\n\nNeed to call destroy_workqueue() before ath10k_core_destroy(), free\nthe work queue buffer first and then free pointer of work queue by\nath10k_core_destroy(). This order matches the error path order in\nath10k_sdio_probe().\n\nNo work will be queued on sdio workqueue between it is destroyed and\nath10k_core_destroy() is called. Based on the call_stack above, the\nreason is:\nOnly ath10k_sdio_sleep_timer_handler(), ath10k_sdio_hif_tx_sg() and\nath10k_sdio_irq_disable() will queue work on sdio workqueue.\nSleep timer will be deleted before ath10k_core_destroy() in\nath10k_hif_power_down().\nath10k_sdio_irq_disable() only be called in ath10k_hif_stop().\nath10k_core_unregister() will call ath10k_hif_power_down() to stop hif\nbus, so ath10k_sdio_hif_tx_sg() won\u0027t be called anymore.\n\nTested-on: QCA6174 hw3.2 SDIO WLAN.RMH.4.4.1-00189",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56599",
"url": "https://www.suse.com/security/cve/CVE-2024-56599"
},
{
"category": "external",
"summary": "SUSE Bug 1235138 for CVE-2024-56599",
"url": "https://bugzilla.suse.com/1235138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56599"
},
{
"cve": "CVE-2024-5660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-5660"
}
],
"notes": [
{
"category": "general",
"text": "Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 may permit bypass of Stage-2 translation and/or GPT protection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-5660",
"url": "https://www.suse.com/security/cve/CVE-2024-5660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "critical"
}
],
"title": "CVE-2024-5660"
},
{
"cve": "CVE-2024-56600",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56600"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: inet6: do not leave a dangling sk pointer in inet6_create()\n\nsock_init_data() attaches the allocated sk pointer to the provided sock\nobject. If inet6_create() fails later, the sk object is released, but the\nsock object retains the dangling sk pointer, which may cause use-after-free\nlater.\n\nClear the sock sk pointer on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56600",
"url": "https://www.suse.com/security/cve/CVE-2024-56600"
},
{
"category": "external",
"summary": "SUSE Bug 1235217 for CVE-2024-56600",
"url": "https://bugzilla.suse.com/1235217"
},
{
"category": "external",
"summary": "SUSE Bug 1235218 for CVE-2024-56600",
"url": "https://bugzilla.suse.com/1235218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56600"
},
{
"cve": "CVE-2024-56601",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56601"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: inet: do not leave a dangling sk pointer in inet_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If inet_create() fails later, the sk object is freed, but the\nsock object retains the dangling pointer, which may create use-after-free\nlater.\n\nClear the sk pointer in the sock object on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56601",
"url": "https://www.suse.com/security/cve/CVE-2024-56601"
},
{
"category": "external",
"summary": "SUSE Bug 1235230 for CVE-2024-56601",
"url": "https://bugzilla.suse.com/1235230"
},
{
"category": "external",
"summary": "SUSE Bug 1235231 for CVE-2024-56601",
"url": "https://bugzilla.suse.com/1235231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56601"
},
{
"cve": "CVE-2024-56602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56602"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ieee802154: do not leave a dangling sk pointer in ieee802154_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If ieee802154_create() fails later, the allocated sk object is\nfreed, but the dangling pointer remains in the provided sock object, which\nmay allow use-after-free.\n\nClear the sk pointer in the sock object on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56602",
"url": "https://www.suse.com/security/cve/CVE-2024-56602"
},
{
"category": "external",
"summary": "SUSE Bug 1235521 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "external",
"summary": "SUSE Bug 1235522 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235522"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56602"
},
{
"cve": "CVE-2024-56603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56603"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: af_can: do not leave a dangling sk pointer in can_create()\n\nOn error can_create() frees the allocated sk object, but sock_init_data()\nhas already attached it to the provided sock object. This will leave a\ndangling sk pointer in the sock object and may cause use-after-free later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56603",
"url": "https://www.suse.com/security/cve/CVE-2024-56603"
},
{
"category": "external",
"summary": "SUSE Bug 1235415 for CVE-2024-56603",
"url": "https://bugzilla.suse.com/1235415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56603"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56606"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_packet: avoid erroring out after sock_init_data() in packet_create()\n\nAfter sock_init_data() the allocated sk object is attached to the provided\nsock object. On error, packet_create() frees the sk object leaving the\ndangling pointer in the sock object on return. Some other code may try\nto use this pointer and cause use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56606",
"url": "https://www.suse.com/security/cve/CVE-2024-56606"
},
{
"category": "external",
"summary": "SUSE Bug 1235417 for CVE-2024-56606",
"url": "https://bugzilla.suse.com/1235417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56606"
},
{
"cve": "CVE-2024-56607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56607"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask()\n\nWhen I try to manually set bitrates:\n\niw wlan0 set bitrates legacy-2.4 1\n\nI get sleeping from invalid context error, see below. Fix that by switching to\nuse recently introduced ieee80211_iterate_stations_mtx().\n\nDo note that WCN6855 firmware is still crashing, I\u0027m not sure if that firmware\neven supports bitrate WMI commands and should we consider disabling\nath12k_mac_op_set_bitrate_mask() for WCN6855? But that\u0027s for another patch.\n\nBUG: sleeping function called from invalid context at drivers/net/wireless/ath/ath12k/wmi.c:420\nin_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 2236, name: iw\npreempt_count: 0, expected: 0\nRCU nest depth: 1, expected: 0\n3 locks held by iw/2236:\n #0: ffffffffabc6f1d8 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40\n #1: ffff888138410810 (\u0026rdev-\u003ewiphy.mtx){+.+.}-{3:3}, at: nl80211_pre_doit+0x54d/0x800 [cfg80211]\n #2: ffffffffab2cfaa0 (rcu_read_lock){....}-{1:2}, at: ieee80211_iterate_stations_atomic+0x2f/0x200 [mac80211]\nCPU: 3 UID: 0 PID: 2236 Comm: iw Not tainted 6.11.0-rc7-wt-ath+ #1772\nHardware name: Intel(R) Client Systems NUC8i7HVK/NUC8i7HVB, BIOS HNKBLi70.86A.0067.2021.0528.1339 05/28/2021\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xa4/0xe0\n dump_stack+0x10/0x20\n __might_resched+0x363/0x5a0\n ? __alloc_skb+0x165/0x340\n __might_sleep+0xad/0x160\n ath12k_wmi_cmd_send+0xb1/0x3d0 [ath12k]\n ? ath12k_wmi_init_wcn7850+0xa40/0xa40 [ath12k]\n ? __netdev_alloc_skb+0x45/0x7b0\n ? __asan_memset+0x39/0x40\n ? ath12k_wmi_alloc_skb+0xf0/0x150 [ath12k]\n ? reacquire_held_locks+0x4d0/0x4d0\n ath12k_wmi_set_peer_param+0x340/0x5b0 [ath12k]\n ath12k_mac_disable_peer_fixed_rate+0xa3/0x110 [ath12k]\n ? ath12k_mac_vdev_stop+0x4f0/0x4f0 [ath12k]\n ieee80211_iterate_stations_atomic+0xd4/0x200 [mac80211]\n ath12k_mac_op_set_bitrate_mask+0x5d2/0x1080 [ath12k]\n ? ath12k_mac_vif_chan+0x320/0x320 [ath12k]\n drv_set_bitrate_mask+0x267/0x470 [mac80211]\n ieee80211_set_bitrate_mask+0x4cc/0x8a0 [mac80211]\n ? __this_cpu_preempt_check+0x13/0x20\n nl80211_set_tx_bitrate_mask+0x2bc/0x530 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? trace_contention_end+0xef/0x140\n ? rtnl_unlock+0x9/0x10\n ? nl80211_pre_doit+0x557/0x800 [cfg80211]\n genl_family_rcv_msg_doit+0x1f0/0x2e0\n ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250\n ? ns_capable+0x57/0xd0\n genl_family_rcv_msg+0x34c/0x600\n ? genl_family_rcv_msg_dumpit+0x310/0x310\n ? __lock_acquire+0xc62/0x1de0\n ? he_set_mcs_mask.isra.0+0x8d0/0x8d0 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? cfg80211_external_auth_request+0x690/0x690 [cfg80211]\n genl_rcv_msg+0xa0/0x130\n netlink_rcv_skb+0x14c/0x400\n ? genl_family_rcv_msg+0x600/0x600\n ? netlink_ack+0xd70/0xd70\n ? rwsem_optimistic_spin+0x4f0/0x4f0\n ? genl_rcv+0x14/0x40\n ? down_read_killable+0x580/0x580\n ? netlink_deliver_tap+0x13e/0x350\n ? __this_cpu_preempt_check+0x13/0x20\n genl_rcv+0x23/0x40\n netlink_unicast+0x45e/0x790\n ? netlink_attachskb+0x7f0/0x7f0\n netlink_sendmsg+0x7eb/0xdb0\n ? netlink_unicast+0x790/0x790\n ? __this_cpu_preempt_check+0x13/0x20\n ? selinux_socket_sendmsg+0x31/0x40\n ? netlink_unicast+0x790/0x790\n __sock_sendmsg+0xc9/0x160\n ____sys_sendmsg+0x620/0x990\n ? kernel_sendmsg+0x30/0x30\n ? __copy_msghdr+0x410/0x410\n ? __kasan_check_read+0x11/0x20\n ? mark_lock+0xe6/0x1470\n ___sys_sendmsg+0xe9/0x170\n ? copy_msghdr_from_user+0x120/0x120\n ? __lock_acquire+0xc62/0x1de0\n ? do_fault_around+0x2c6/0x4e0\n ? do_user_addr_fault+0x8c1/0xde0\n ? reacquire_held_locks+0x220/0x4d0\n ? do_user_addr_fault+0x8c1/0xde0\n ? __kasan_check_read+0x11/0x20\n ? __fdget+0x4e/0x1d0\n ? sockfd_lookup_light+0x1a/0x170\n __sys_sendmsg+0xd2/0x180\n ? __sys_sendmsg_sock+0x20/0x20\n ? reacquire_held_locks+0x4d0/0x4d0\n ? debug_smp_processor_id+0x17/0x20\n __x64_sys_sendmsg+0x72/0xb0\n ? lockdep_hardirqs_on+0x7d/0x100\n x64_sys_call+0x894/0x9f0\n do_syscall_64+0x64/0x130\n entry_SYSCALL_64_after_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56607",
"url": "https://www.suse.com/security/cve/CVE-2024-56607"
},
{
"category": "external",
"summary": "SUSE Bug 1235423 for CVE-2024-56607",
"url": "https://bugzilla.suse.com/1235423"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56607"
},
{
"cve": "CVE-2024-56608",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56608"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix out-of-bounds access in \u0027dcn21_link_encoder_create\u0027\n\nAn issue was identified in the dcn21_link_encoder_create function where\nan out-of-bounds access could occur when the hpd_source index was used\nto reference the link_enc_hpd_regs array. This array has a fixed size\nand the index was not being checked against the array\u0027s bounds before\naccessing it.\n\nThis fix adds a conditional check to ensure that the hpd_source index is\nwithin the valid range of the link_enc_hpd_regs array. If the index is\nout of bounds, the function now returns NULL to prevent undefined\nbehavior.\n\nReferences:\n\n[ 65.920507] ------------[ cut here ]------------\n[ 65.920510] UBSAN: array-index-out-of-bounds in drivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn21/dcn21_resource.c:1312:29\n[ 65.920519] index 7 is out of range for type \u0027dcn10_link_enc_hpd_registers [5]\u0027\n[ 65.920523] CPU: 3 PID: 1178 Comm: modprobe Tainted: G OE 6.8.0-cleanershaderfeatureresetasdntipmi200nv2132 #13\n[ 65.920525] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS WMJ0429N_Weekly_20_04_2 04/29/2020\n[ 65.920527] Call Trace:\n[ 65.920529] \u003cTASK\u003e\n[ 65.920532] dump_stack_lvl+0x48/0x70\n[ 65.920541] dump_stack+0x10/0x20\n[ 65.920543] __ubsan_handle_out_of_bounds+0xa2/0xe0\n[ 65.920549] dcn21_link_encoder_create+0xd9/0x140 [amdgpu]\n[ 65.921009] link_create+0x6d3/0xed0 [amdgpu]\n[ 65.921355] create_links+0x18a/0x4e0 [amdgpu]\n[ 65.921679] dc_create+0x360/0x720 [amdgpu]\n[ 65.921999] ? dmi_matches+0xa0/0x220\n[ 65.922004] amdgpu_dm_init+0x2b6/0x2c90 [amdgpu]\n[ 65.922342] ? console_unlock+0x77/0x120\n[ 65.922348] ? dev_printk_emit+0x86/0xb0\n[ 65.922354] dm_hw_init+0x15/0x40 [amdgpu]\n[ 65.922686] amdgpu_device_init+0x26a8/0x33a0 [amdgpu]\n[ 65.922921] amdgpu_driver_load_kms+0x1b/0xa0 [amdgpu]\n[ 65.923087] amdgpu_pci_probe+0x1b7/0x630 [amdgpu]\n[ 65.923087] local_pci_probe+0x4b/0xb0\n[ 65.923087] pci_device_probe+0xc8/0x280\n[ 65.923087] really_probe+0x187/0x300\n[ 65.923087] __driver_probe_device+0x85/0x130\n[ 65.923087] driver_probe_device+0x24/0x110\n[ 65.923087] __driver_attach+0xac/0x1d0\n[ 65.923087] ? __pfx___driver_attach+0x10/0x10\n[ 65.923087] bus_for_each_dev+0x7d/0xd0\n[ 65.923087] driver_attach+0x1e/0x30\n[ 65.923087] bus_add_driver+0xf2/0x200\n[ 65.923087] driver_register+0x64/0x130\n[ 65.923087] ? __pfx_amdgpu_init+0x10/0x10 [amdgpu]\n[ 65.923087] __pci_register_driver+0x61/0x70\n[ 65.923087] amdgpu_init+0x7d/0xff0 [amdgpu]\n[ 65.923087] do_one_initcall+0x49/0x310\n[ 65.923087] ? kmalloc_trace+0x136/0x360\n[ 65.923087] do_init_module+0x6a/0x270\n[ 65.923087] load_module+0x1fce/0x23a0\n[ 65.923087] init_module_from_file+0x9c/0xe0\n[ 65.923087] ? init_module_from_file+0x9c/0xe0\n[ 65.923087] idempotent_init_module+0x179/0x230\n[ 65.923087] __x64_sys_finit_module+0x5d/0xa0\n[ 65.923087] do_syscall_64+0x76/0x120\n[ 65.923087] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n[ 65.923087] RIP: 0033:0x7f2d80f1e88d\n[ 65.923087] Code: 5b 41 5c c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 b5 0f 00 f7 d8 64 89 01 48\n[ 65.923087] RSP: 002b:00007ffc7bc1aa78 EFLAGS: 00000246 ORIG_RAX: 0000000000000139\n[ 65.923087] RAX: ffffffffffffffda RBX: 0000564c9c1db130 RCX: 00007f2d80f1e88d\n[ 65.923087] RDX: 0000000000000000 RSI: 0000564c9c1e5480 RDI: 000000000000000f\n[ 65.923087] RBP: 0000000000040000 R08: 0000000000000000 R09: 0000000000000002\n[ 65.923087] R10: 000000000000000f R11: 0000000000000246 R12: 0000564c9c1e5480\n[ 65.923087] R13: 0000564c9c1db260 R14: 0000000000000000 R15: 0000564c9c1e54b0\n[ 65.923087] \u003c/TASK\u003e\n[ 65.923927] ---[ end trace ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56608",
"url": "https://www.suse.com/security/cve/CVE-2024-56608"
},
{
"category": "external",
"summary": "SUSE Bug 1235487 for CVE-2024-56608",
"url": "https://bugzilla.suse.com/1235487"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56608"
},
{
"cve": "CVE-2024-56609",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56609"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb\n\nWhen removing kernel modules by:\n rmmod rtw88_8723cs rtw88_8703b rtw88_8723x rtw88_sdio rtw88_core\n\nDriver uses skb_queue_purge() to purge TX skb, but not report tx status\ncausing \"Have pending ack frames!\" warning. Use ieee80211_purge_tx_queue()\nto correct this.\n\nSince ieee80211_purge_tx_queue() doesn\u0027t take locks, to prevent racing\nbetween TX work and purge TX queue, flush and destroy TX work in advance.\n\n wlan0: deauthenticating from aa:f5:fd:60:4c:a8 by local\n choice (Reason: 3=DEAUTH_LEAVING)\n ------------[ cut here ]------------\n Have pending ack frames!\n WARNING: CPU: 3 PID: 9232 at net/mac80211/main.c:1691\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n CPU: 3 PID: 9232 Comm: rmmod Tainted: G C\n 6.10.1-200.fc40.aarch64 #1\n Hardware name: pine64 Pine64 PinePhone Braveheart\n (1.1)/Pine64 PinePhone Braveheart (1.1), BIOS 2024.01 01/01/2024\n pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n lr : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n sp : ffff80008c1b37b0\n x29: ffff80008c1b37b0 x28: ffff000003be8000 x27: 0000000000000000\n x26: 0000000000000000 x25: ffff000003dc14b8 x24: ffff80008c1b37d0\n x23: ffff000000ff9f80 x22: 0000000000000000 x21: 000000007fffffff\n x20: ffff80007c7e93d8 x19: ffff00006e66f400 x18: 0000000000000000\n x17: ffff7ffffd2b3000 x16: ffff800083fc0000 x15: 0000000000000000\n x14: 0000000000000000 x13: 2173656d61726620 x12: 6b636120676e6964\n x11: 0000000000000000 x10: 000000000000005d x9 : ffff8000802af2b0\n x8 : ffff80008c1b3430 x7 : 0000000000000001 x6 : 0000000000000001\n x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff000003be8000\n Call trace:\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n idr_for_each+0x74/0x110\n ieee80211_free_hw+0x44/0xe8 [mac80211]\n rtw_sdio_remove+0x9c/0xc0 [rtw88_sdio]\n sdio_bus_remove+0x44/0x180\n device_remove+0x54/0x90\n device_release_driver_internal+0x1d4/0x238\n driver_detach+0x54/0xc0\n bus_remove_driver+0x78/0x108\n driver_unregister+0x38/0x78\n sdio_unregister_driver+0x2c/0x40\n rtw_8723cs_driver_exit+0x18/0x1000 [rtw88_8723cs]\n __do_sys_delete_module.isra.0+0x190/0x338\n __arm64_sys_delete_module+0x1c/0x30\n invoke_syscall+0x74/0x100\n el0_svc_common.constprop.0+0x48/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x3c/0x158\n el0t_64_sync_handler+0x120/0x138\n el0t_64_sync+0x194/0x198\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56609",
"url": "https://www.suse.com/security/cve/CVE-2024-56609"
},
{
"category": "external",
"summary": "SUSE Bug 1235389 for CVE-2024-56609",
"url": "https://bugzilla.suse.com/1235389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56609"
},
{
"cve": "CVE-2024-56610",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56610"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcsan: Turn report_filterlist_lock into a raw_spinlock\n\nRan Xiaokai reports that with a KCSAN-enabled PREEMPT_RT kernel, we can see\nsplats like:\n\n| BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\n| in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 0, name: swapper/1\n| preempt_count: 10002, expected: 0\n| RCU nest depth: 0, expected: 0\n| no locks held by swapper/1/0.\n| irq event stamp: 156674\n| hardirqs last enabled at (156673): [\u003cffffffff81130bd9\u003e] do_idle+0x1f9/0x240\n| hardirqs last disabled at (156674): [\u003cffffffff82254f84\u003e] sysvec_apic_timer_interrupt+0x14/0xc0\n| softirqs last enabled at (0): [\u003cffffffff81099f47\u003e] copy_process+0xfc7/0x4b60\n| softirqs last disabled at (0): [\u003c0000000000000000\u003e] 0x0\n| Preemption disabled at:\n| [\u003cffffffff814a3e2a\u003e] paint_ptr+0x2a/0x90\n| CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.11.0+ #3\n| Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-0-ga698c8995f-prebuilt.qemu.org 04/01/2014\n| Call Trace:\n| \u003cIRQ\u003e\n| dump_stack_lvl+0x7e/0xc0\n| dump_stack+0x1d/0x30\n| __might_resched+0x1a2/0x270\n| rt_spin_lock+0x68/0x170\n| kcsan_skip_report_debugfs+0x43/0xe0\n| print_report+0xb5/0x590\n| kcsan_report_known_origin+0x1b1/0x1d0\n| kcsan_setup_watchpoint+0x348/0x650\n| __tsan_unaligned_write1+0x16d/0x1d0\n| hrtimer_interrupt+0x3d6/0x430\n| __sysvec_apic_timer_interrupt+0xe8/0x3a0\n| sysvec_apic_timer_interrupt+0x97/0xc0\n| \u003c/IRQ\u003e\n\nOn a detected data race, KCSAN\u0027s reporting logic checks if it should\nfilter the report. That list is protected by the report_filterlist_lock\n*non-raw* spinlock which may sleep on RT kernels.\n\nSince KCSAN may report data races in any context, convert it to a\nraw_spinlock.\n\nThis requires being careful about when to allocate memory for the filter\nlist itself which can be done via KCSAN\u0027s debugfs interface. Concurrent\nmodification of the filter list via debugfs should be rare: the chosen\nstrategy is to optimistically pre-allocate memory before the critical\nsection and discard if unused.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56610",
"url": "https://www.suse.com/security/cve/CVE-2024-56610"
},
{
"category": "external",
"summary": "SUSE Bug 1235390 for CVE-2024-56610",
"url": "https://bugzilla.suse.com/1235390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56610"
},
{
"cve": "CVE-2024-56611",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56611"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM\n\nWe currently assume that there is at least one VMA in a MM, which isn\u0027t\ntrue.\n\nSo we might end up having find_vma() return NULL, to then de-reference\nNULL. So properly handle find_vma() returning NULL.\n\nThis fixes the report:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 UID: 0 PID: 6021 Comm: syz-executor284 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\nRIP: 0010:migrate_to_node mm/mempolicy.c:1090 [inline]\nRIP: 0010:do_migrate_pages+0x403/0x6f0 mm/mempolicy.c:1194\nCode: ...\nRSP: 0018:ffffc9000375fd08 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffc9000375fd78 RCX: 0000000000000000\nRDX: ffff88807e171300 RSI: dffffc0000000000 RDI: ffff88803390c044\nRBP: ffff88807e171428 R08: 0000000000000014 R09: fffffbfff2039ef1\nR10: ffffffff901cf78f R11: 0000000000000000 R12: 0000000000000003\nR13: ffffc9000375fe90 R14: ffffc9000375fe98 R15: ffffc9000375fdf8\nFS: 00005555919e1380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555919e1ca8 CR3: 000000007f12a000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n kernel_migrate_pages+0x5b2/0x750 mm/mempolicy.c:1709\n __do_sys_migrate_pages mm/mempolicy.c:1727 [inline]\n __se_sys_migrate_pages mm/mempolicy.c:1723 [inline]\n __x64_sys_migrate_pages+0x96/0x100 mm/mempolicy.c:1723\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[akpm@linux-foundation.org: add unlikely()]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56611",
"url": "https://www.suse.com/security/cve/CVE-2024-56611"
},
{
"category": "external",
"summary": "SUSE Bug 1235391 for CVE-2024-56611",
"url": "https://bugzilla.suse.com/1235391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56611"
},
{
"cve": "CVE-2024-56614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56614"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: fix OOB map writes when deleting elements\n\nJordy says:\n\n\"\nIn the xsk_map_delete_elem function an unsigned integer\n(map-\u003emax_entries) is compared with a user-controlled signed integer\n(k). Due to implicit type conversion, a large unsigned value for\nmap-\u003emax_entries can bypass the intended bounds check:\n\n\tif (k \u003e= map-\u003emax_entries)\n\t\treturn -EINVAL;\n\nThis allows k to hold a negative value (between -2147483648 and -2),\nwhich is then used as an array index in m-\u003exsk_map[k], which results\nin an out-of-bounds access.\n\n\tspin_lock_bh(\u0026m-\u003elock);\n\tmap_entry = \u0026m-\u003exsk_map[k]; // Out-of-bounds map_entry\n\told_xs = unrcu_pointer(xchg(map_entry, NULL)); // Oob write\n\tif (old_xs)\n\t\txsk_map_sock_delete(old_xs, map_entry);\n\tspin_unlock_bh(\u0026m-\u003elock);\n\nThe xchg operation can then be used to cause an out-of-bounds write.\nMoreover, the invalid map_entry passed to xsk_map_sock_delete can lead\nto further memory corruption.\n\"\n\nIt indeed results in following splat:\n\n[76612.897343] BUG: unable to handle page fault for address: ffffc8fc2e461108\n[76612.904330] #PF: supervisor write access in kernel mode\n[76612.909639] #PF: error_code(0x0002) - not-present page\n[76612.914855] PGD 0 P4D 0\n[76612.917431] Oops: Oops: 0002 [#1] PREEMPT SMP\n[76612.921859] CPU: 11 UID: 0 PID: 10318 Comm: a.out Not tainted 6.12.0-rc1+ #470\n[76612.929189] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[76612.939781] RIP: 0010:xsk_map_delete_elem+0x2d/0x60\n[76612.944738] Code: 00 00 41 54 55 53 48 63 2e 3b 6f 24 73 38 4c 8d a7 f8 00 00 00 48 89 fb 4c 89 e7 e8 2d bf 05 00 48 8d b4 eb 00 01 00 00 31 ff \u003c48\u003e 87 3e 48 85 ff 74 05 e8 16 ff ff ff 4c 89 e7 e8 3e bc 05 00 31\n[76612.963774] RSP: 0018:ffffc9002e407df8 EFLAGS: 00010246\n[76612.969079] RAX: 0000000000000000 RBX: ffffc9002e461000 RCX: 0000000000000000\n[76612.976323] RDX: 0000000000000001 RSI: ffffc8fc2e461108 RDI: 0000000000000000\n[76612.983569] RBP: ffffffff80000001 R08: 0000000000000000 R09: 0000000000000007\n[76612.990812] R10: ffffc9002e407e18 R11: ffff888108a38858 R12: ffffc9002e4610f8\n[76612.998060] R13: ffff888108a38858 R14: 00007ffd1ae0ac78 R15: ffffc9002e4610c0\n[76613.005303] FS: 00007f80b6f59740(0000) GS:ffff8897e0ec0000(0000) knlGS:0000000000000000\n[76613.013517] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[76613.019349] CR2: ffffc8fc2e461108 CR3: 000000011e3ef001 CR4: 00000000007726f0\n[76613.026595] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[76613.033841] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[76613.041086] PKRU: 55555554\n[76613.043842] Call Trace:\n[76613.046331] \u003cTASK\u003e\n[76613.048468] ? __die+0x20/0x60\n[76613.051581] ? page_fault_oops+0x15a/0x450\n[76613.055747] ? search_extable+0x22/0x30\n[76613.059649] ? search_bpf_extables+0x5f/0x80\n[76613.063988] ? exc_page_fault+0xa9/0x140\n[76613.067975] ? asm_exc_page_fault+0x22/0x30\n[76613.072229] ? xsk_map_delete_elem+0x2d/0x60\n[76613.076573] ? xsk_map_delete_elem+0x23/0x60\n[76613.080914] __sys_bpf+0x19b7/0x23c0\n[76613.084555] __x64_sys_bpf+0x1a/0x20\n[76613.088194] do_syscall_64+0x37/0xb0\n[76613.091832] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[76613.096962] RIP: 0033:0x7f80b6d1e88d\n[76613.100592] Code: 5b 41 5c c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 b5 0f 00 f7 d8 64 89 01 48\n[76613.119631] RSP: 002b:00007ffd1ae0ac68 EFLAGS: 00000206 ORIG_RAX: 0000000000000141\n[76613.131330] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f80b6d1e88d\n[76613.142632] RDX: 0000000000000098 RSI: 00007ffd1ae0ad20 RDI: 0000000000000003\n[76613.153967] RBP: 00007ffd1ae0adc0 R08: 0000000000000000 R09: 0000000000000000\n[76613.166030] R10: 00007f80b6f77040 R11: 0000000000000206 R12: 00007ffd1ae0aed8\n[76613.177130] R13: 000055ddf42ce1e9 R14: 000055ddf42d0d98 R15: 00\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56614",
"url": "https://www.suse.com/security/cve/CVE-2024-56614"
},
{
"category": "external",
"summary": "SUSE Bug 1235424 for CVE-2024-56614",
"url": "https://bugzilla.suse.com/1235424"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56614"
},
{
"cve": "CVE-2024-56615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56615"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix OOB devmap writes when deleting elements\n\nJordy reported issue against XSKMAP which also applies to DEVMAP - the\nindex used for accessing map entry, due to being a signed integer,\ncauses the OOB writes. Fix is simple as changing the type from int to\nu32, however, when compared to XSKMAP case, one more thing needs to be\naddressed.\n\nWhen map is released from system via dev_map_free(), we iterate through\nall of the entries and an iterator variable is also an int, which\nimplies OOB accesses. Again, change it to be u32.\n\nExample splat below:\n\n[ 160.724676] BUG: unable to handle page fault for address: ffffc8fc2c001000\n[ 160.731662] #PF: supervisor read access in kernel mode\n[ 160.736876] #PF: error_code(0x0000) - not-present page\n[ 160.742095] PGD 0 P4D 0\n[ 160.744678] Oops: Oops: 0000 [#1] PREEMPT SMP\n[ 160.749106] CPU: 1 UID: 0 PID: 520 Comm: kworker/u145:12 Not tainted 6.12.0-rc1+ #487\n[ 160.757050] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[ 160.767642] Workqueue: events_unbound bpf_map_free_deferred\n[ 160.773308] RIP: 0010:dev_map_free+0x77/0x170\n[ 160.777735] Code: 00 e8 fd 91 ed ff e8 b8 73 ed ff 41 83 7d 18 19 74 6e 41 8b 45 24 49 8b bd f8 00 00 00 31 db 85 c0 74 48 48 63 c3 48 8d 04 c7 \u003c48\u003e 8b 28 48 85 ed 74 30 48 8b 7d 18 48 85 ff 74 05 e8 b3 52 fa ff\n[ 160.796777] RSP: 0018:ffffc9000ee1fe38 EFLAGS: 00010202\n[ 160.802086] RAX: ffffc8fc2c001000 RBX: 0000000080000000 RCX: 0000000000000024\n[ 160.809331] RDX: 0000000000000000 RSI: 0000000000000024 RDI: ffffc9002c001000\n[ 160.816576] RBP: 0000000000000000 R08: 0000000000000023 R09: 0000000000000001\n[ 160.823823] R10: 0000000000000001 R11: 00000000000ee6b2 R12: dead000000000122\n[ 160.831066] R13: ffff88810c928e00 R14: ffff8881002df405 R15: 0000000000000000\n[ 160.838310] FS: 0000000000000000(0000) GS:ffff8897e0c40000(0000) knlGS:0000000000000000\n[ 160.846528] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 160.852357] CR2: ffffc8fc2c001000 CR3: 0000000005c32006 CR4: 00000000007726f0\n[ 160.859604] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 160.866847] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 160.874092] PKRU: 55555554\n[ 160.876847] Call Trace:\n[ 160.879338] \u003cTASK\u003e\n[ 160.881477] ? __die+0x20/0x60\n[ 160.884586] ? page_fault_oops+0x15a/0x450\n[ 160.888746] ? search_extable+0x22/0x30\n[ 160.892647] ? search_bpf_extables+0x5f/0x80\n[ 160.896988] ? exc_page_fault+0xa9/0x140\n[ 160.900973] ? asm_exc_page_fault+0x22/0x30\n[ 160.905232] ? dev_map_free+0x77/0x170\n[ 160.909043] ? dev_map_free+0x58/0x170\n[ 160.912857] bpf_map_free_deferred+0x51/0x90\n[ 160.917196] process_one_work+0x142/0x370\n[ 160.921272] worker_thread+0x29e/0x3b0\n[ 160.925082] ? rescuer_thread+0x4b0/0x4b0\n[ 160.929157] kthread+0xd4/0x110\n[ 160.932355] ? kthread_park+0x80/0x80\n[ 160.936079] ret_from_fork+0x2d/0x50\n[ 160.943396] ? kthread_park+0x80/0x80\n[ 160.950803] ret_from_fork_asm+0x11/0x20\n[ 160.958482] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56615",
"url": "https://www.suse.com/security/cve/CVE-2024-56615"
},
{
"category": "external",
"summary": "SUSE Bug 1235426 for CVE-2024-56615",
"url": "https://bugzilla.suse.com/1235426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56615"
},
{
"cve": "CVE-2024-56616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56616"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix MST sideband message body length check\n\nFix the MST sideband message body length check, which must be at least 1\nbyte accounting for the message body CRC (aka message data CRC) at the\nend of the message.\n\nThis fixes a case where an MST branch device returns a header with a\ncorrect header CRC (indicating a correctly received body length), with\nthe body length being incorrectly set to 0. This will later lead to a\nmemory corruption in drm_dp_sideband_append_payload() and the following\nerrors in dmesg:\n\n UBSAN: array-index-out-of-bounds in drivers/gpu/drm/display/drm_dp_mst_topology.c:786:25\n index -1 is out of range for type \u0027u8 [48]\u0027\n Call Trace:\n drm_dp_sideband_append_payload+0x33d/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]\n\n memcpy: detected field-spanning write (size 18446744073709551615) of single field \"\u0026msg-\u003emsg[msg-\u003ecurlen]\" at drivers/gpu/drm/display/drm_dp_mst_topology.c:791 (size 256)\n Call Trace:\n drm_dp_sideband_append_payload+0x324/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56616",
"url": "https://www.suse.com/security/cve/CVE-2024-56616"
},
{
"category": "external",
"summary": "SUSE Bug 1235427 for CVE-2024-56616",
"url": "https://bugzilla.suse.com/1235427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56616"
},
{
"cve": "CVE-2024-56617",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56617"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU\n\nCommit\n\n 5944ce092b97 (\"arch_topology: Build cacheinfo from primary CPU\")\n\nadds functionality that architectures can use to optionally allocate and\nbuild cacheinfo early during boot. Commit\n\n 6539cffa9495 (\"cacheinfo: Add arch specific early level initializer\")\n\nlets secondary CPUs correct (and reallocate memory) cacheinfo data if\nneeded.\n\nIf the early build functionality is not used and cacheinfo does not need\ncorrection, memory for cacheinfo is never allocated. x86 does not use\nthe early build functionality. Consequently, during the cacheinfo CPU\nhotplug callback, last_level_cache_is_valid() attempts to dereference\na NULL pointer:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000100\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not present page\n PGD 0 P4D 0\n Oops: 0000 [#1] PREEPMT SMP NOPTI\n CPU: 0 PID 19 Comm: cpuhp/0 Not tainted 6.4.0-rc2 #1\n RIP: 0010: last_level_cache_is_valid+0x95/0xe0a\n\nAllocate memory for cacheinfo during the cacheinfo CPU hotplug callback\nif not done earlier.\n\nMoreover, before determining the validity of the last-level cache info,\nensure that it has been allocated. Simply checking for non-zero\ncache_leaves() is not sufficient, as some architectures (e.g., Intel\nprocessors) have non-zero cache_leaves() before allocation.\n\nDereferencing NULL cacheinfo can occur in update_per_cpu_data_slice_size().\nThis function iterates over all online CPUs. However, a CPU may have come\nonline recently, but its cacheinfo may not have been allocated yet.\n\nWhile here, remove an unnecessary indentation in allocate_cache_info().\n\n [ bp: Massage. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56617",
"url": "https://www.suse.com/security/cve/CVE-2024-56617"
},
{
"category": "external",
"summary": "SUSE Bug 1235429 for CVE-2024-56617",
"url": "https://bugzilla.suse.com/1235429"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56617"
},
{
"cve": "CVE-2024-56619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56619"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()\n\nSyzbot reported that when searching for records in a directory where the\ninode\u0027s i_size is corrupted and has a large value, memory access outside\nthe folio/page range may occur, or a use-after-free bug may be detected if\nKASAN is enabled.\n\nThis is because nilfs_last_byte(), which is called by nilfs_find_entry()\nand others to calculate the number of valid bytes of directory data in a\npage from i_size and the page index, loses the upper 32 bits of the 64-bit\nsize information due to an inappropriate type of local variable to which\nthe i_size value is assigned.\n\nThis caused a large byte offset value due to underflow in the end address\ncalculation in the calling nilfs_find_entry(), resulting in memory access\nthat exceeds the folio/page size.\n\nFix this issue by changing the type of the local variable causing the bit\nloss from \"unsigned int\" to \"u64\". The return value of nilfs_last_byte()\nis also of type \"unsigned int\", but it is truncated so as not to exceed\nPAGE_SIZE and no bit loss occurs, so no change is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56619",
"url": "https://www.suse.com/security/cve/CVE-2024-56619"
},
{
"category": "external",
"summary": "SUSE Bug 1235224 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "external",
"summary": "SUSE Bug 1235225 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56619"
},
{
"cve": "CVE-2024-56620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56620"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: qcom: Only free platform MSIs when ESI is enabled\n\nOtherwise, it will result in a NULL pointer dereference as below:\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000008\nCall trace:\n mutex_lock+0xc/0x54\n platform_device_msi_free_irqs_all+0x14/0x20\n ufs_qcom_remove+0x34/0x48 [ufs_qcom]\n platform_remove+0x28/0x44\n device_remove+0x4c/0x80\n device_release_driver_internal+0xd8/0x178\n driver_detach+0x50/0x9c\n bus_remove_driver+0x6c/0xbc\n driver_unregister+0x30/0x60\n platform_driver_unregister+0x14/0x20\n ufs_qcom_pltform_exit+0x18/0xb94 [ufs_qcom]\n __arm64_sys_delete_module+0x180/0x260\n invoke_syscall+0x44/0x100\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xdc\n el0t_64_sync_handler+0xc0/0xc4\n el0t_64_sync+0x190/0x194",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56620",
"url": "https://www.suse.com/security/cve/CVE-2024-56620"
},
{
"category": "external",
"summary": "SUSE Bug 1235227 for CVE-2024-56620",
"url": "https://bugzilla.suse.com/1235227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56620"
},
{
"cve": "CVE-2024-56622",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56622"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: sysfs: Prevent div by zero\n\nPrevent a division by 0 when monitoring is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56622",
"url": "https://www.suse.com/security/cve/CVE-2024-56622"
},
{
"category": "external",
"summary": "SUSE Bug 1235251 for CVE-2024-56622",
"url": "https://bugzilla.suse.com/1235251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56622"
},
{
"cve": "CVE-2024-56623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56623"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix use after free on unload\n\nSystem crash is observed with stack trace warning of use after\nfree. There are 2 signals to tell dpc_thread to terminate (UNLOADING\nflag and kthread_stop).\n\nOn setting the UNLOADING flag when dpc_thread happens to run at the time\nand sees the flag, this causes dpc_thread to exit and clean up\nitself. When kthread_stop is called for final cleanup, this causes use\nafter free.\n\nRemove UNLOADING signal to terminate dpc_thread. Use the kthread_stop\nas the main signal to exit dpc_thread.\n\n[596663.812935] kernel BUG at mm/slub.c:294!\n[596663.812950] invalid opcode: 0000 [#1] SMP PTI\n[596663.812957] CPU: 13 PID: 1475935 Comm: rmmod Kdump: loaded Tainted: G IOE --------- - - 4.18.0-240.el8.x86_64 #1\n[596663.812960] Hardware name: HP ProLiant DL380p Gen8, BIOS P70 08/20/2012\n[596663.812974] RIP: 0010:__slab_free+0x17d/0x360\n\n...\n[596663.813008] Call Trace:\n[596663.813022] ? __dentry_kill+0x121/0x170\n[596663.813030] ? _cond_resched+0x15/0x30\n[596663.813034] ? _cond_resched+0x15/0x30\n[596663.813039] ? wait_for_completion+0x35/0x190\n[596663.813048] ? try_to_wake_up+0x63/0x540\n[596663.813055] free_task+0x5a/0x60\n[596663.813061] kthread_stop+0xf3/0x100\n[596663.813103] qla2x00_remove_one+0x284/0x440 [qla2xxx]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56623",
"url": "https://www.suse.com/security/cve/CVE-2024-56623"
},
{
"category": "external",
"summary": "SUSE Bug 1235466 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "external",
"summary": "SUSE Bug 1235468 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56623"
},
{
"cve": "CVE-2024-56625",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56625"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: dev: can_set_termination(): allow sleeping GPIOs\n\nIn commit 6e86a1543c37 (\"can: dev: provide optional GPIO based\ntermination support\") GPIO based termination support was added.\n\nFor no particular reason that patch uses gpiod_set_value() to set the\nGPIO. This leads to the following warning, if the systems uses a\nsleeping GPIO, i.e. behind an I2C port expander:\n\n| WARNING: CPU: 0 PID: 379 at /drivers/gpio/gpiolib.c:3496 gpiod_set_value+0x50/0x6c\n| CPU: 0 UID: 0 PID: 379 Comm: ip Not tainted 6.11.0-20241016-1 #1 823affae360cc91126e4d316d7a614a8bf86236c\n\nReplace gpiod_set_value() by gpiod_set_value_cansleep() to allow the\nuse of sleeping GPIOs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56625",
"url": "https://www.suse.com/security/cve/CVE-2024-56625"
},
{
"category": "external",
"summary": "SUSE Bug 1235223 for CVE-2024-56625",
"url": "https://bugzilla.suse.com/1235223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56625"
},
{
"cve": "CVE-2024-56629",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56629"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: wacom: fix when get product name maybe null pointer\n\nDue to incorrect dev-\u003eproduct reporting by certain devices, null\npointer dereferences occur when dev-\u003eproduct is empty, leading to\npotential system crashes.\n\nThis issue was found on EXCELSIOR DL37-D05 device with\nLoongson-LS3A6000-7A2000-DL37 motherboard.\n\nKernel logs:\n[ 56.470885] usb 4-3: new full-speed USB device number 4 using ohci-pci\n[ 56.671638] usb 4-3: string descriptor 0 read error: -22\n[ 56.671644] usb 4-3: New USB device found, idVendor=056a, idProduct=0374, bcdDevice= 1.07\n[ 56.671647] usb 4-3: New USB device strings: Mfr=1, Product=2, SerialNumber=3\n[ 56.678839] hid-generic 0003:056A:0374.0004: hiddev0,hidraw3: USB HID v1.10 Device [HID 056a:0374] on usb-0000:00:05.0-3/input0\n[ 56.697719] CPU 2 Unable to handle kernel paging request at virtual address 0000000000000000, era == 90000000066e35c8, ra == ffff800004f98a80\n[ 56.697732] Oops[#1]:\n[ 56.697734] CPU: 2 PID: 2742 Comm: (udev-worker) Tainted: G OE 6.6.0-loong64-desktop #25.00.2000.015\n[ 56.697737] Hardware name: Inspur CE520L2/C09901N000000000, BIOS 2.09.00 10/11/2024\n[ 56.697739] pc 90000000066e35c8 ra ffff800004f98a80 tp 9000000125478000 sp 900000012547b8a0\n[ 56.697741] a0 0000000000000000 a1 ffff800004818b28 a2 0000000000000000 a3 0000000000000000\n[ 56.697743] a4 900000012547b8f0 a5 0000000000000000 a6 0000000000000000 a7 0000000000000000\n[ 56.697745] t0 ffff800004818b2d t1 0000000000000000 t2 0000000000000003 t3 0000000000000005\n[ 56.697747] t4 0000000000000000 t5 0000000000000000 t6 0000000000000000 t7 0000000000000000\n[ 56.697748] t8 0000000000000000 u0 0000000000000000 s9 0000000000000000 s0 900000011aa48028\n[ 56.697750] s1 0000000000000000 s2 0000000000000000 s3 ffff800004818e80 s4 ffff800004810000\n[ 56.697751] s5 90000001000b98d0 s6 ffff800004811f88 s7 ffff800005470440 s8 0000000000000000\n[ 56.697753] ra: ffff800004f98a80 wacom_update_name+0xe0/0x300 [wacom]\n[ 56.697802] ERA: 90000000066e35c8 strstr+0x28/0x120\n[ 56.697806] CRMD: 000000b0 (PLV0 -IE -DA +PG DACF=CC DACM=CC -WE)\n[ 56.697816] PRMD: 0000000c (PPLV0 +PIE +PWE)\n[ 56.697821] EUEN: 00000000 (-FPE -SXE -ASXE -BTE)\n[ 56.697827] ECFG: 00071c1d (LIE=0,2-4,10-12 VS=7)\n[ 56.697831] ESTAT: 00010000 [PIL] (IS= ECode=1 EsubCode=0)\n[ 56.697835] BADV: 0000000000000000\n[ 56.697836] PRID: 0014d000 (Loongson-64bit, Loongson-3A6000)\n[ 56.697838] Modules linked in: wacom(+) bnep bluetooth rfkill qrtr nls_iso8859_1 nls_cp437 snd_hda_codec_conexant snd_hda_codec_generic ledtrig_audio snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd soundcore input_leds mousedev led_class joydev deepin_netmonitor(OE) fuse nfnetlink dmi_sysfs ip_tables x_tables overlay amdgpu amdxcp drm_exec gpu_sched drm_buddy radeon drm_suballoc_helper i2c_algo_bit drm_ttm_helper r8169 ttm drm_display_helper spi_loongson_pci xhci_pci cec xhci_pci_renesas spi_loongson_core hid_generic realtek gpio_loongson_64bit\n[ 56.697887] Process (udev-worker) (pid: 2742, threadinfo=00000000aee0d8b4, task=00000000a9eff1f3)\n[ 56.697890] Stack : 0000000000000000 ffff800004817e00 0000000000000000 0000251c00000000\n[ 56.697896] 0000000000000000 00000011fffffffd 0000000000000000 0000000000000000\n[ 56.697901] 0000000000000000 1b67a968695184b9 0000000000000000 90000001000b98d0\n[ 56.697906] 90000001000bb8d0 900000011aa48028 0000000000000000 ffff800004f9d74c\n[ 56.697911] 90000001000ba000 ffff800004f9ce58 0000000000000000 ffff800005470440\n[ 56.697916] ffff800004811f88 90000001000b98d0 9000000100da2aa8 90000001000bb8d0\n[ 56.697921] 0000000000000000 90000001000ba000 900000011aa48028 ffff800004f9d74c\n[ 56.697926] ffff8000054704e8 90000001000bb8b8 90000001000ba000 0000000000000000\n[ 56.697931] 90000001000bb8d0 \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56629",
"url": "https://www.suse.com/security/cve/CVE-2024-56629"
},
{
"category": "external",
"summary": "SUSE Bug 1235473 for CVE-2024-56629",
"url": "https://bugzilla.suse.com/1235473"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56629"
},
{
"cve": "CVE-2024-56630",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56630"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: free inode when ocfs2_get_init_inode() fails\n\nsyzbot is reporting busy inodes after unmount, for commit 9c89fe0af826\n(\"ocfs2: Handle error from dquot_initialize()\") forgot to call iput() when\nnew_inode() succeeded and dquot_initialize() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56630",
"url": "https://www.suse.com/security/cve/CVE-2024-56630"
},
{
"category": "external",
"summary": "SUSE Bug 1235479 for CVE-2024-56630",
"url": "https://bugzilla.suse.com/1235479"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56630"
},
{
"cve": "CVE-2024-56631",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56631"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Fix slab-use-after-free read in sg_release()\n\nFix a use-after-free bug in sg_release(), detected by syzbot with KASAN:\n\nBUG: KASAN: slab-use-after-free in lock_release+0x151/0xa30\nkernel/locking/lockdep.c:5838\n__mutex_unlock_slowpath+0xe2/0x750 kernel/locking/mutex.c:912\nsg_release+0x1f4/0x2e0 drivers/scsi/sg.c:407\n\nIn sg_release(), the function kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) is\ncalled before releasing the open_rel_lock mutex. The kref_put() call may\ndecrement the reference count of sfp to zero, triggering its cleanup\nthrough sg_remove_sfp(). This cleanup includes scheduling deferred work\nvia sg_remove_sfp_usercontext(), which ultimately frees sfp.\n\nAfter kref_put(), sg_release() continues to unlock open_rel_lock and may\nreference sfp or sdp. If sfp has already been freed, this results in a\nslab-use-after-free error.\n\nMove the kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) call after unlocking the\nopen_rel_lock mutex. This ensures:\n\n - No references to sfp or sdp occur after the reference count is\n decremented.\n\n - Cleanup functions such as sg_remove_sfp() and\n sg_remove_sfp_usercontext() can safely execute without impacting the\n mutex handling in sg_release().\n\nThe fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures proper\nsequencing of resource cleanup and mutex operations, eliminating the\nrisk of use-after-free errors in sg_release().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56631",
"url": "https://www.suse.com/security/cve/CVE-2024-56631"
},
{
"category": "external",
"summary": "SUSE Bug 1235480 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "external",
"summary": "SUSE Bug 1235482 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56631"
},
{
"cve": "CVE-2024-56632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: fix the memleak while create new ctrl failed\n\nNow while we create new ctrl failed, we have not free the\ntagset occupied by admin_q, here try to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56632",
"url": "https://www.suse.com/security/cve/CVE-2024-56632"
},
{
"category": "external",
"summary": "SUSE Bug 1235483 for CVE-2024-56632",
"url": "https://bugzilla.suse.com/1235483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56632"
},
{
"cve": "CVE-2024-56634",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56634"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: grgpio: Add NULL check in grgpio_probe\n\ndevm_kasprintf() can return a NULL pointer on failure,but this\nreturned value in grgpio_probe is not checked.\nAdd NULL check in grgpio_probe, to handle kernel NULL\npointer dereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56634",
"url": "https://www.suse.com/security/cve/CVE-2024-56634"
},
{
"category": "external",
"summary": "SUSE Bug 1235486 for CVE-2024-56634",
"url": "https://bugzilla.suse.com/1235486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56634"
},
{
"cve": "CVE-2024-56635",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56635"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: avoid potential UAF in default_operstate()\n\nsyzbot reported an UAF in default_operstate() [1]\n\nIssue is a race between device and netns dismantles.\n\nAfter calling __rtnl_unlock() from netdev_run_todo(),\nwe can not assume the netns of each device is still alive.\n\nMake sure the device is not in NETREG_UNREGISTERED state,\nand add an ASSERT_RTNL() before the call to\n__dev_get_by_index().\n\nWe might move this ASSERT_RTNL() in __dev_get_by_index()\nin the future.\n\n[1]\n\nBUG: KASAN: slab-use-after-free in __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\nRead of size 8 at addr ffff888043eba1b0 by task syz.0.0/5339\n\nCPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\n default_operstate net/core/link_watch.c:51 [inline]\n rfc2863_policy+0x224/0x300 net/core/link_watch.c:67\n linkwatch_do_dev+0x3e/0x170 net/core/link_watch.c:170\n netdev_run_todo+0x461/0x1000 net/core/dev.c:10894\n rtnl_unlock net/core/rtnetlink.c:152 [inline]\n rtnl_net_unlock include/linux/rtnetlink.h:133 [inline]\n rtnl_dellink+0x760/0x8d0 net/core/rtnetlink.c:3520\n rtnetlink_rcv_msg+0x791/0xcf0 net/core/rtnetlink.c:6911\n netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2541\n netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]\n netlink_unicast+0x7f6/0x990 net/netlink/af_netlink.c:1347\n netlink_sendmsg+0x8e4/0xcb0 net/netlink/af_netlink.c:1891\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:726\n ____sys_sendmsg+0x52a/0x7e0 net/socket.c:2583\n ___sys_sendmsg net/socket.c:2637 [inline]\n __sys_sendmsg+0x269/0x350 net/socket.c:2669\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f2a3cb80809\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f2a3d9cd058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f2a3cd45fa0 RCX: 00007f2a3cb80809\nRDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000008\nRBP: 00007f2a3cbf393e R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f2a3cd45fa0 R15: 00007ffd03bc65c8\n \u003c/TASK\u003e\n\nAllocated by task 5339:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:394\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __kmalloc_cache_noprof+0x243/0x390 mm/slub.c:4314\n kmalloc_noprof include/linux/slab.h:901 [inline]\n kmalloc_array_noprof include/linux/slab.h:945 [inline]\n netdev_create_hash net/core/dev.c:11870 [inline]\n netdev_init+0x10c/0x250 net/core/dev.c:11890\n ops_init+0x31e/0x590 net/core/net_namespace.c:138\n setup_net+0x287/0x9e0 net/core/net_namespace.c:362\n copy_net_ns+0x33f/0x570 net/core/net_namespace.c:500\n create_new_namespaces+0x425/0x7b0 kernel/nsproxy.c:110\n unshare_nsproxy_namespaces+0x124/0x180 kernel/nsproxy.c:228\n ksys_unshare+0x57d/0xa70 kernel/fork.c:3314\n __do_sys_unshare kernel/fork.c:3385 [inline]\n __se_sys_unshare kernel/fork.c:3383 [inline]\n __x64_sys_unshare+0x38/0x40 kernel/fork.c:3383\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x8\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56635",
"url": "https://www.suse.com/security/cve/CVE-2024-56635"
},
{
"category": "external",
"summary": "SUSE Bug 1235519 for CVE-2024-56635",
"url": "https://bugzilla.suse.com/1235519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56635"
},
{
"cve": "CVE-2024-56636",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56636"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: do not assume mac header is set in geneve_xmit_skb()\n\nWe should not assume mac header is set in output path.\n\nUse skb_eth_hdr() instead of eth_hdr() to fix the issue.\n\nsysbot reported the following :\n\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 skb_mac_header include/linux/skbuff.h:3052 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 eth_hdr include/linux/if_ether.h:24 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nModules linked in:\nCPU: 0 UID: 0 PID: 11635 Comm: syz.4.1423 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_mac_header include/linux/skbuff.h:3052 [inline]\n RIP: 0010:eth_hdr include/linux/if_ether.h:24 [inline]\n RIP: 0010:geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n RIP: 0010:geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nCode: 21 c6 02 e9 35 d4 ff ff e8 a5 48 4c fb 90 0f 0b 90 e9 fd f5 ff ff e8 97 48 4c fb 90 0f 0b 90 e9 d8 f5 ff ff e8 89 48 4c fb 90 \u003c0f\u003e 0b 90 e9 41 e4 ff ff e8 7b 48 4c fb 90 0f 0b 90 e9 cd e7 ff ff\nRSP: 0018:ffffc90003b2f870 EFLAGS: 00010283\nRAX: 000000000000037a RBX: 000000000000ffff RCX: ffffc9000dc3d000\nRDX: 0000000000080000 RSI: ffffffff86428417 RDI: 0000000000000003\nRBP: ffffc90003b2f9f0 R08: 0000000000000003 R09: 000000000000ffff\nR10: 000000000000ffff R11: 0000000000000002 R12: ffff88806603c000\nR13: 0000000000000000 R14: ffff8880685b2780 R15: 0000000000000e23\nFS: 00007fdc2deed6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000001b30a1dff8 CR3: 0000000056b8c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n __dev_direct_xmit+0x58a/0x720 net/core/dev.c:4490\n dev_direct_xmit include/linux/netdevice.h:3181 [inline]\n packet_xmit+0x1e4/0x360 net/packet/af_packet.c:285\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x2700/0x5660 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg net/socket.c:726 [inline]\n __sys_sendto+0x488/0x4f0 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2200\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56636",
"url": "https://www.suse.com/security/cve/CVE-2024-56636"
},
{
"category": "external",
"summary": "SUSE Bug 1235520 for CVE-2024-56636",
"url": "https://bugzilla.suse.com/1235520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56636"
},
{
"cve": "CVE-2024-56637",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56637"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: Hold module reference while requesting a module\n\nUser space may unload ip_set.ko while it is itself requesting a set type\nbackend module, leading to a kernel crash. The race condition may be\nprovoked by inserting an mdelay() right after the nfnl_unlock() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56637",
"url": "https://www.suse.com/security/cve/CVE-2024-56637"
},
{
"category": "external",
"summary": "SUSE Bug 1235523 for CVE-2024-56637",
"url": "https://bugzilla.suse.com/1235523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56637"
},
{
"cve": "CVE-2024-56641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56641"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: initialize close_work early to avoid warning\n\nWe encountered a warning that close_work was canceled before\ninitialization.\n\n WARNING: CPU: 7 PID: 111103 at kernel/workqueue.c:3047 __flush_work+0x19e/0x1b0\n Workqueue: events smc_lgr_terminate_work [smc]\n RIP: 0010:__flush_work+0x19e/0x1b0\n Call Trace:\n ? __wake_up_common+0x7a/0x190\n ? work_busy+0x80/0x80\n __cancel_work_timer+0xe3/0x160\n smc_close_cancel_work+0x1a/0x70 [smc]\n smc_close_active_abort+0x207/0x360 [smc]\n __smc_lgr_terminate.part.38+0xc8/0x180 [smc]\n process_one_work+0x19e/0x340\n worker_thread+0x30/0x370\n ? process_one_work+0x340/0x340\n kthread+0x117/0x130\n ? __kthread_cancel_work+0x50/0x50\n ret_from_fork+0x22/0x30\n\nThis is because when smc_close_cancel_work is triggered, e.g. the RDMA\ndriver is rmmod and the LGR is terminated, the conn-\u003eclose_work is\nflushed before initialization, resulting in WARN_ON(!work-\u003efunc).\n\n__smc_lgr_terminate | smc_connect_{rdma|ism}\n-------------------------------------------------------------\n | smc_conn_create\n\t\t\t\t| \\- smc_lgr_register_conn\nfor conn in lgr-\u003econns_all |\n\\- smc_conn_kill |\n \\- smc_close_active_abort |\n \\- smc_close_cancel_work |\n \\- cancel_work_sync |\n \\- __flush_work |\n\t (close_work) |\n\t | smc_close_init\n\t | \\- INIT_WORK(\u0026close_work)\n\nSo fix this by initializing close_work before establishing the\nconnection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56641",
"url": "https://www.suse.com/security/cve/CVE-2024-56641"
},
{
"category": "external",
"summary": "SUSE Bug 1235526 for CVE-2024-56641",
"url": "https://bugzilla.suse.com/1235526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56641"
},
{
"cve": "CVE-2024-56642",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56642"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free of kernel socket in cleanup_bearer().\n\nsyzkaller reported a use-after-free of UDP kernel socket\nin cleanup_bearer() without repro. [0][1]\n\nWhen bearer_disable() calls tipc_udp_disable(), cleanup\nof the UDP kernel socket is deferred by work calling\ncleanup_bearer().\n\ntipc_exit_net() waits for such works to finish by checking\ntipc_net(net)-\u003ewq_count. However, the work decrements the\ncount too early before releasing the kernel socket,\nunblocking cleanup_net() and resulting in use-after-free.\n\nLet\u0027s move the decrement after releasing the socket in\ncleanup_bearer().\n\n[0]:\nref_tracker: net notrefcnt@000000009b3d1faf has 1/1 users at\n sk_alloc+0x438/0x608\n inet_create+0x4c8/0xcb0\n __sock_create+0x350/0x6b8\n sock_create_kern+0x58/0x78\n udp_sock_create4+0x68/0x398\n udp_sock_create+0x88/0xc8\n tipc_udp_enable+0x5e8/0x848\n __tipc_nl_bearer_enable+0x84c/0xed8\n tipc_nl_bearer_enable+0x38/0x60\n genl_family_rcv_msg_doit+0x170/0x248\n genl_rcv_msg+0x400/0x5b0\n netlink_rcv_skb+0x1dc/0x398\n genl_rcv+0x44/0x68\n netlink_unicast+0x678/0x8b0\n netlink_sendmsg+0x5e4/0x898\n ____sys_sendmsg+0x500/0x830\n\n[1]:\nBUG: KMSAN: use-after-free in udp_hashslot include/net/udp.h:85 [inline]\nBUG: KMSAN: use-after-free in udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n udp_hashslot include/net/udp.h:85 [inline]\n udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n sk_common_release+0xaf/0x3f0 net/core/sock.c:3820\n inet_release+0x1e0/0x260 net/ipv4/af_inet.c:437\n inet6_release+0x6f/0xd0 net/ipv6/af_inet6.c:489\n __sock_release net/socket.c:658 [inline]\n sock_release+0xa0/0x210 net/socket.c:686\n cleanup_bearer+0x42d/0x4c0 net/tipc/udp_media.c:819\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nUninit was created at:\n slab_free_hook mm/slub.c:2269 [inline]\n slab_free mm/slub.c:4580 [inline]\n kmem_cache_free+0x207/0xc40 mm/slub.c:4682\n net_free net/core/net_namespace.c:454 [inline]\n cleanup_net+0x16f2/0x19d0 net/core/net_namespace.c:647\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/0:2 Not tainted 6.12.0-rc1-00131-gf66ebf37d69c #7 91723d6f74857f70725e1583cba3cf4adc716cfa\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nWorkqueue: events cleanup_bearer",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56642",
"url": "https://www.suse.com/security/cve/CVE-2024-56642"
},
{
"category": "external",
"summary": "SUSE Bug 1235433 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "external",
"summary": "SUSE Bug 1235434 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56642"
},
{
"cve": "CVE-2024-56643",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56643"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: Fix memory leak in dccp_feat_change_recv\n\nIf dccp_feat_push_confirm() fails after new value for SP feature was accepted\nwithout reconciliation (\u0027entry == NULL\u0027 branch), memory allocated for that value\nwith dccp_feat_clone_sp_val() is never freed.\n\nHere is the kmemleak stack for this:\n\nunreferenced object 0xffff88801d4ab488 (size 8):\n comm \"syz-executor310\", pid 1127, jiffies 4295085598 (age 41.666s)\n hex dump (first 8 bytes):\n 01 b4 4a 1d 80 88 ff ff ..J.....\n backtrace:\n [\u003c00000000db7cabfe\u003e] kmemdup+0x23/0x50 mm/util.c:128\n [\u003c0000000019b38405\u003e] kmemdup include/linux/string.h:465 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:371 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:367 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_change_recv net/dccp/feat.c:1145 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_parse_options+0x1196/0x2180 net/dccp/feat.c:1416\n [\u003c00000000b1f6d94a\u003e] dccp_parse_options+0xa2a/0x1260 net/dccp/options.c:125\n [\u003c0000000030d7b621\u003e] dccp_rcv_state_process+0x197/0x13d0 net/dccp/input.c:650\n [\u003c000000001f74c72e\u003e] dccp_v4_do_rcv+0xf9/0x1a0 net/dccp/ipv4.c:688\n [\u003c00000000a6c24128\u003e] sk_backlog_rcv include/net/sock.h:1041 [inline]\n [\u003c00000000a6c24128\u003e] __release_sock+0x139/0x3b0 net/core/sock.c:2570\n [\u003c00000000cf1f3a53\u003e] release_sock+0x54/0x1b0 net/core/sock.c:3111\n [\u003c000000008422fa23\u003e] inet_wait_for_connect net/ipv4/af_inet.c:603 [inline]\n [\u003c000000008422fa23\u003e] __inet_stream_connect+0x5d0/0xf70 net/ipv4/af_inet.c:696\n [\u003c0000000015b6f64d\u003e] inet_stream_connect+0x53/0xa0 net/ipv4/af_inet.c:735\n [\u003c0000000010122488\u003e] __sys_connect_file+0x15c/0x1a0 net/socket.c:1865\n [\u003c00000000b4b70023\u003e] __sys_connect+0x165/0x1a0 net/socket.c:1882\n [\u003c00000000f4cb3815\u003e] __do_sys_connect net/socket.c:1892 [inline]\n [\u003c00000000f4cb3815\u003e] __se_sys_connect net/socket.c:1889 [inline]\n [\u003c00000000f4cb3815\u003e] __x64_sys_connect+0x6e/0xb0 net/socket.c:1889\n [\u003c00000000e7b1e839\u003e] do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46\n [\u003c0000000055e91434\u003e] entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nClean up the allocated memory in case of dccp_feat_push_confirm() failure\nand bail out with an error reset code.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56643",
"url": "https://www.suse.com/security/cve/CVE-2024-56643"
},
{
"category": "external",
"summary": "SUSE Bug 1235132 for CVE-2024-56643",
"url": "https://bugzilla.suse.com/1235132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56643"
},
{
"cve": "CVE-2024-56644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56644"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ipv6: release expired exception dst cached in socket\n\nDst objects get leaked in ip6_negative_advice() when this function is\nexecuted for an expired IPv6 route located in the exception table. There\nare several conditions that must be fulfilled for the leak to occur:\n* an ICMPv6 packet indicating a change of the MTU for the path is received,\n resulting in an exception dst being created\n* a TCP connection that uses the exception dst for routing packets must\n start timing out so that TCP begins retransmissions\n* after the exception dst expires, the FIB6 garbage collector must not run\n before TCP executes ip6_negative_advice() for the expired exception dst\n\nWhen TCP executes ip6_negative_advice() for an exception dst that has\nexpired and if no other socket holds a reference to the exception dst, the\nrefcount of the exception dst is 2, which corresponds to the increment\nmade by dst_init() and the increment made by the TCP socket for which the\nconnection is timing out. The refcount made by the socket is never\nreleased. The refcount of the dst is decremented in sk_dst_reset() but\nthat decrement is counteracted by a dst_hold() intentionally placed just\nbefore the sk_dst_reset() in ip6_negative_advice(). After\nip6_negative_advice() has finished, there is no other object tied to the\ndst. The socket lost its reference stored in sk_dst_cache and the dst is\nno longer in the exception table. The exception dst becomes a leaked\nobject.\n\nAs a result of this dst leak, an unbalanced refcount is reported for the\nloopback device of a net namespace being destroyed under kernels that do\nnot contain e5f80fcf869a (\"ipv6: give an IPv6 dev to blackhole_netdev\"):\nunregister_netdevice: waiting for lo to become free. Usage count = 2\n\nFix the dst leak by removing the dst_hold() in ip6_negative_advice(). The\npatch that introduced the dst_hold() in ip6_negative_advice() was\n92f1655aa2b22 (\"net: fix __dst_negative_advice() race\"). But 92f1655aa2b22\nmerely refactored the code with regards to the dst refcount so the issue\nwas present even before 92f1655aa2b22. The bug was introduced in\n54c1a859efd9f (\"ipv6: Don\u0027t drop cache route entry unless timer actually\nexpired.\") where the expired cached route is deleted and the sk_dst_cache\nmember of the socket is set to NULL by calling dst_negative_advice() but\nthe refcount belonging to the socket is left unbalanced.\n\nThe IPv4 version - ipv4_negative_advice() - is not affected by this bug.\nWhen the TCP connection times out ipv4_negative_advice() merely resets the\nsk_dst_cache of the socket while decrementing the refcount of the\nexception dst.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56644",
"url": "https://www.suse.com/security/cve/CVE-2024-56644"
},
{
"category": "external",
"summary": "SUSE Bug 1235133 for CVE-2024-56644",
"url": "https://bugzilla.suse.com/1235133"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56644"
},
{
"cve": "CVE-2024-56645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: j1939: j1939_session_new(): fix skb reference counting\n\nSince j1939_session_skb_queue() does an extra skb_get() for each new\nskb, do the same for the initial one in j1939_session_new() to avoid\nrefcount underflow.\n\n[mkl: clean up commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56645",
"url": "https://www.suse.com/security/cve/CVE-2024-56645"
},
{
"category": "external",
"summary": "SUSE Bug 1235134 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "external",
"summary": "SUSE Bug 1235135 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56645"
},
{
"cve": "CVE-2024-56648",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56648"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hsr: avoid potential out-of-bound access in fill_frame_info()\n\nsyzbot is able to feed a packet with 14 bytes, pretending\nit is a vlan one.\n\nSince fill_frame_info() is relying on skb-\u003emac_len already,\nextend the check to cover this case.\n\nBUG: KMSAN: uninit-value in fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n BUG: KMSAN: uninit-value in hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n hsr_dev_xmit+0x2f0/0x350 net/hsr/hsr_device.c:235\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n xmit_one net/core/dev.c:3590 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3606\n __dev_queue_xmit+0x366a/0x57d0 net/core/dev.c:4434\n dev_queue_xmit include/linux/netdevice.h:3168 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x91ae/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4091 [inline]\n slab_alloc_node mm/slub.c:4134 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4186\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n alloc_skb include/linux/skbuff.h:1323 [inline]\n alloc_skb_with_frags+0xc8/0xd00 net/core/skbuff.c:6612\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2881\n packet_alloc_skb net/packet/af_packet.c:2995 [inline]\n packet_snd net/packet/af_packet.c:3089 [inline]\n packet_sendmsg+0x74c6/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56648",
"url": "https://www.suse.com/security/cve/CVE-2024-56648"
},
{
"category": "external",
"summary": "SUSE Bug 1235451 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "external",
"summary": "SUSE Bug 1235452 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56648"
},
{
"cve": "CVE-2024-56649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: Do not configure preemptible TCs if SIs do not support\n\nBoth ENETC PF and VF drivers share enetc_setup_tc_mqprio() to configure\nMQPRIO. And enetc_setup_tc_mqprio() calls enetc_change_preemptible_tcs()\nto configure preemptible TCs. However, only PF is able to configure\npreemptible TCs. Because only PF has related registers, while VF does not\nhave these registers. So for VF, its hw-\u003eport pointer is NULL. Therefore,\nVF will access an invalid pointer when accessing a non-existent register,\nwhich will cause a crash issue. The simplified log is as follows.\n\nroot@ls1028ardb:~# tc qdisc add dev eno0vf0 parent root handle 100: \\\nmqprio num_tc 4 map 0 0 1 1 2 2 3 3 queues 1@0 1@1 1@2 1@3 hw 1\n[ 187.290775] Unable to handle kernel paging request at virtual address 0000000000001f00\n[ 187.424831] pc : enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.430518] lr : enetc_mm_commit_preemptible_tcs+0x30c/0x400\n[ 187.511140] Call trace:\n[ 187.513588] enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.518918] enetc_setup_tc_mqprio+0x180/0x214\n[ 187.523374] enetc_vf_setup_tc+0x1c/0x30\n[ 187.527306] mqprio_enable_offload+0x144/0x178\n[ 187.531766] mqprio_init+0x3ec/0x668\n[ 187.535351] qdisc_create+0x15c/0x488\n[ 187.539023] tc_modify_qdisc+0x398/0x73c\n[ 187.542958] rtnetlink_rcv_msg+0x128/0x378\n[ 187.547064] netlink_rcv_skb+0x60/0x130\n[ 187.550910] rtnetlink_rcv+0x18/0x24\n[ 187.554492] netlink_unicast+0x300/0x36c\n[ 187.558425] netlink_sendmsg+0x1a8/0x420\n[ 187.606759] ---[ end trace 0000000000000000 ]---\n\nIn addition, some PFs also do not support configuring preemptible TCs,\nsuch as eno1 and eno3 on LS1028A. It won\u0027t crash like it does for VFs,\nbut we should prevent these PFs from accessing these unimplemented\nregisters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56649",
"url": "https://www.suse.com/security/cve/CVE-2024-56649"
},
{
"category": "external",
"summary": "SUSE Bug 1235449 for CVE-2024-56649",
"url": "https://bugzilla.suse.com/1235449"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56649"
},
{
"cve": "CVE-2024-56650",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56650"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: x_tables: fix LED ID check in led_tg_check()\n\nSyzbot has reported the following BUG detected by KASAN:\n\nBUG: KASAN: slab-out-of-bounds in strlen+0x58/0x70\nRead of size 1 at addr ffff8881022da0c8 by task repro/5879\n...\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x241/0x360\n ? __pfx_dump_stack_lvl+0x10/0x10\n ? __pfx__printk+0x10/0x10\n ? _printk+0xd5/0x120\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x183/0x530\n print_report+0x169/0x550\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x45f/0x530\n ? __phys_addr+0xba/0x170\n ? strlen+0x58/0x70\n kasan_report+0x143/0x180\n ? strlen+0x58/0x70\n strlen+0x58/0x70\n kstrdup+0x20/0x80\n led_tg_check+0x18b/0x3c0\n xt_check_target+0x3bb/0xa40\n ? __pfx_xt_check_target+0x10/0x10\n ? stack_depot_save_flags+0x6e4/0x830\n ? nft_target_init+0x174/0xc30\n nft_target_init+0x82d/0xc30\n ? __pfx_nft_target_init+0x10/0x10\n ? nf_tables_newrule+0x1609/0x2980\n ? nf_tables_newrule+0x1609/0x2980\n ? rcu_is_watching+0x15/0xb0\n ? nf_tables_newrule+0x1609/0x2980\n ? nf_tables_newrule+0x1609/0x2980\n ? __kmalloc_noprof+0x21a/0x400\n nf_tables_newrule+0x1860/0x2980\n ? __pfx_nf_tables_newrule+0x10/0x10\n ? __nla_parse+0x40/0x60\n nfnetlink_rcv+0x14e5/0x2ab0\n ? __pfx_validate_chain+0x10/0x10\n ? __pfx_nfnetlink_rcv+0x10/0x10\n ? __lock_acquire+0x1384/0x2050\n ? netlink_deliver_tap+0x2e/0x1b0\n ? __pfx_lock_release+0x10/0x10\n ? netlink_deliver_tap+0x2e/0x1b0\n netlink_unicast+0x7f8/0x990\n ? __pfx_netlink_unicast+0x10/0x10\n ? __virt_addr_valid+0x183/0x530\n ? __check_object_size+0x48e/0x900\n netlink_sendmsg+0x8e4/0xcb0\n ? __pfx_netlink_sendmsg+0x10/0x10\n ? aa_sock_msg_perm+0x91/0x160\n ? __pfx_netlink_sendmsg+0x10/0x10\n __sock_sendmsg+0x223/0x270\n ____sys_sendmsg+0x52a/0x7e0\n ? __pfx_____sys_sendmsg+0x10/0x10\n __sys_sendmsg+0x292/0x380\n ? __pfx___sys_sendmsg+0x10/0x10\n ? lockdep_hardirqs_on_prepare+0x43d/0x780\n ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10\n ? exc_page_fault+0x590/0x8c0\n ? do_syscall_64+0xb6/0x230\n do_syscall_64+0xf3/0x230\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n \u003c/TASK\u003e\n\nSince an invalid (without \u0027\\0\u0027 byte at all) byte sequence may be passed\nfrom userspace, add an extra check to ensure that such a sequence is\nrejected as possible ID and so never passed to \u0027kstrdup()\u0027 and further.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56650",
"url": "https://www.suse.com/security/cve/CVE-2024-56650"
},
{
"category": "external",
"summary": "SUSE Bug 1235430 for CVE-2024-56650",
"url": "https://bugzilla.suse.com/1235430"
},
{
"category": "external",
"summary": "SUSE Bug 1235431 for CVE-2024-56650",
"url": "https://bugzilla.suse.com/1235431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56650"
},
{
"cve": "CVE-2024-56651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: hi311x: hi3110_can_ist(): fix potential use-after-free\n\nThe commit a22bd630cfff (\"can: hi311x: do not report txerr and rxerr\nduring bus-off\") removed the reporting of rxerr and txerr even in case\nof correct operation (i. e. not bus-off).\n\nThe error count information added to the CAN frame after netif_rx() is\na potential use after free, since there is no guarantee that the skb\nis in the same state. It might be freed or reused.\n\nFix the issue by postponing the netif_rx() call in case of txerr and\nrxerr reporting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56651",
"url": "https://www.suse.com/security/cve/CVE-2024-56651"
},
{
"category": "external",
"summary": "SUSE Bug 1235528 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "external",
"summary": "SUSE Bug 1236570 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1236570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56651"
},
{
"cve": "CVE-2024-56654",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56654"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Fix using rcu_read_(un)lock while iterating\n\nThe usage of rcu_read_(un)lock while inside list_for_each_entry_rcu is\nnot safe since for the most part entries fetched this way shall be\ntreated as rcu_dereference:\n\n\tNote that the value returned by rcu_dereference() is valid\n\tonly within the enclosing RCU read-side critical section [1]_.\n\tFor example, the following is **not** legal::\n\n\t\trcu_read_lock();\n\t\tp = rcu_dereference(head.next);\n\t\trcu_read_unlock();\n\t\tx = p-\u003eaddress;\t/* BUG!!! */\n\t\trcu_read_lock();\n\t\ty = p-\u003edata;\t/* BUG!!! */\n\t\trcu_read_unlock();",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56654",
"url": "https://www.suse.com/security/cve/CVE-2024-56654"
},
{
"category": "external",
"summary": "SUSE Bug 1235532 for CVE-2024-56654",
"url": "https://bugzilla.suse.com/1235532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56654"
},
{
"cve": "CVE-2024-56656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips\n\nThe 5760X (P7) chip\u0027s HW GRO/LRO interface is very similar to that of\nthe previous generation (5750X or P5). However, the aggregation ID\nfields in the completion structures on P7 have been redefined from\n16 bits to 12 bits. The freed up 4 bits are redefined for part of the\nmetadata such as the VLAN ID. The aggregation ID mask was not modified\nwhen adding support for P7 chips. Including the extra 4 bits for the\naggregation ID can potentially cause the driver to store or fetch the\npacket header of GRO/LRO packets in the wrong TPA buffer. It may hit\nthe BUG() condition in __skb_pull() because the SKB contains no valid\npacket header:\n\nkernel BUG at include/linux/skbuff.h:2766!\nOops: invalid opcode: 0000 1 PREEMPT SMP NOPTI\nCPU: 4 UID: 0 PID: 0 Comm: swapper/4 Kdump: loaded Tainted: G OE 6.12.0-rc2+ #7\nTainted: [O]=OOT_MODULE, [E]=UNSIGNED_MODULE\nHardware name: Dell Inc. PowerEdge R760/0VRV9X, BIOS 1.0.1 12/27/2022\nRIP: 0010:eth_type_trans+0xda/0x140\nCode: 80 00 00 00 eb c1 8b 47 70 2b 47 74 48 8b 97 d0 00 00 00 83 f8 01 7e 1b 48 85 d2 74 06 66 83 3a ff 74 09 b8 00 04 00 00 eb a5 \u003c0f\u003e 0b b8 00 01 00 00 eb 9c 48 85 ff 74 eb 31 f6 b9 02 00 00 00 48\nRSP: 0018:ff615003803fcc28 EFLAGS: 00010283\nRAX: 00000000000022d2 RBX: 0000000000000003 RCX: ff2e8c25da334040\nRDX: 0000000000000040 RSI: ff2e8c25c1ce8000 RDI: ff2e8c25869f9000\nRBP: ff2e8c258c31c000 R08: ff2e8c25da334000 R09: 0000000000000001\nR10: ff2e8c25da3342c0 R11: ff2e8c25c1ce89c0 R12: ff2e8c258e0990b0\nR13: ff2e8c25bb120000 R14: ff2e8c25c1ce89c0 R15: ff2e8c25869f9000\nFS: 0000000000000000(0000) GS:ff2e8c34be300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055f05317e4c8 CR3: 000000108bac6006 CR4: 0000000000773ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n ? die+0x33/0x90\n ? do_trap+0xd9/0x100\n ? eth_type_trans+0xda/0x140\n ? do_error_trap+0x65/0x80\n ? eth_type_trans+0xda/0x140\n ? exc_invalid_op+0x4e/0x70\n ? eth_type_trans+0xda/0x140\n ? asm_exc_invalid_op+0x16/0x20\n ? eth_type_trans+0xda/0x140\n bnxt_tpa_end+0x10b/0x6b0 [bnxt_en]\n ? bnxt_tpa_start+0x195/0x320 [bnxt_en]\n bnxt_rx_pkt+0x902/0xd90 [bnxt_en]\n ? __bnxt_tx_int.constprop.0+0x89/0x300 [bnxt_en]\n ? kmem_cache_free+0x343/0x440\n ? __bnxt_tx_int.constprop.0+0x24f/0x300 [bnxt_en]\n __bnxt_poll_work+0x193/0x370 [bnxt_en]\n bnxt_poll_p5+0x9a/0x300 [bnxt_en]\n ? try_to_wake_up+0x209/0x670\n __napi_poll+0x29/0x1b0\n\nFix it by redefining the aggregation ID mask for P5_PLUS chips to be\n12 bits. This will work because the maximum aggregation ID is less\nthan 4096 on all P5_PLUS chips.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56656",
"url": "https://www.suse.com/security/cve/CVE-2024-56656"
},
{
"category": "external",
"summary": "SUSE Bug 1235444 for CVE-2024-56656",
"url": "https://bugzilla.suse.com/1235444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56656"
},
{
"cve": "CVE-2024-56659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56659"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: lapb: increase LAPB_HEADER_LEN\n\nIt is unclear if net/lapb code is supposed to be ready for 8021q.\n\nWe can at least avoid crashes like the following :\n\nskbuff: skb_under_panic: text:ffffffff8aabe1f6 len:24 put:20 head:ffff88802824a400 data:ffff88802824a3fe tail:0x16 end:0x140 dev:nr0.2\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 5508 Comm: dhcpcd Not tainted 6.12.0-rc7-syzkaller-00144-g66418447d27b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 2e 9e 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 1a 6f 37 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc90002ddf638 EFLAGS: 00010282\nRAX: 0000000000000086 RBX: dffffc0000000000 RCX: 7a24750e538ff600\nRDX: 0000000000000000 RSI: 0000000000000201 RDI: 0000000000000000\nRBP: ffff888034a86650 R08: ffffffff8174b13c R09: 1ffff920005bbe60\nR10: dffffc0000000000 R11: fffff520005bbe61 R12: 0000000000000140\nR13: ffff88802824a400 R14: ffff88802824a3fe R15: 0000000000000016\nFS: 00007f2a5990d740(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c2631fd CR3: 0000000029504000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n nr_header+0x36/0x320 net/netrom/nr_dev.c:69\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n vlan_dev_hard_header+0x359/0x480 net/8021q/vlan_dev.c:83\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n lapbeth_data_transmit+0x1f6/0x2a0 drivers/net/wan/lapbether.c:257\n lapb_data_transmit+0x91/0xb0 net/lapb/lapb_iface.c:447\n lapb_transmit_buffer+0x168/0x1f0 net/lapb/lapb_out.c:149\n lapb_establish_data_link+0x84/0xd0\n lapb_device_event+0x4e0/0x670\n notifier_call_chain+0x19f/0x3e0 kernel/notifier.c:93\n __dev_notify_flags+0x207/0x400\n dev_change_flags+0xf0/0x1a0 net/core/dev.c:8922\n devinet_ioctl+0xa4e/0x1aa0 net/ipv4/devinet.c:1188\n inet_ioctl+0x3d7/0x4f0 net/ipv4/af_inet.c:1003\n sock_do_ioctl+0x158/0x460 net/socket.c:1227\n sock_ioctl+0x626/0x8e0 net/socket.c:1346\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xf9/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56659",
"url": "https://www.suse.com/security/cve/CVE-2024-56659"
},
{
"category": "external",
"summary": "SUSE Bug 1235439 for CVE-2024-56659",
"url": "https://bugzilla.suse.com/1235439"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56659"
},
{
"cve": "CVE-2024-56660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56660"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: DR, prevent potential error pointer dereference\n\nThe dr_domain_add_vport_cap() function generally returns NULL on error\nbut sometimes we want it to return ERR_PTR(-EBUSY) so the caller can\nretry. The problem here is that \"ret\" can be either -EBUSY or -ENOMEM\nand if it\u0027s and -ENOMEM then the error pointer is propogated back and\neventually dereferenced in dr_ste_v0_build_src_gvmi_qpn_tag().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56660",
"url": "https://www.suse.com/security/cve/CVE-2024-56660"
},
{
"category": "external",
"summary": "SUSE Bug 1235437 for CVE-2024-56660",
"url": "https://bugzilla.suse.com/1235437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56660"
},
{
"cve": "CVE-2024-56661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56661"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix NULL deref in cleanup_bearer()\n\nsyzbot found [1] that after blamed commit, ub-\u003eubsock-\u003esk\nwas NULL when attempting the atomic_dec() :\n\natomic_dec(\u0026tipc_net(sock_net(ub-\u003eubsock-\u003esk))-\u003ewq_count);\n\nFix this by caching the tipc_net pointer.\n\n[1]\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]\nCPU: 0 UID: 0 PID: 5896 Comm: kworker/0:3 Not tainted 6.13.0-rc1-next-20241203-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events cleanup_bearer\n RIP: 0010:read_pnet include/net/net_namespace.h:387 [inline]\n RIP: 0010:sock_net include/net/sock.h:655 [inline]\n RIP: 0010:cleanup_bearer+0x1f7/0x280 net/tipc/udp_media.c:820\nCode: 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 3c f7 99 f6 48 8b 1b 48 83 c3 30 e8 f0 e4 60 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 28 00 74 08 48 89 df e8 1a f7 99 f6 49 83 c7 e8 48 8b 1b\nRSP: 0018:ffffc9000410fb70 EFLAGS: 00010206\nRAX: 0000000000000006 RBX: 0000000000000030 RCX: ffff88802fe45a00\nRDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc9000410f900\nRBP: ffff88807e1f0908 R08: ffffc9000410f907 R09: 1ffff92000821f20\nR10: dffffc0000000000 R11: fffff52000821f21 R12: ffff888031d19980\nR13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88807e1f0918\nFS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000556ca050b000 CR3: 0000000031c0c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56661",
"url": "https://www.suse.com/security/cve/CVE-2024-56661"
},
{
"category": "external",
"summary": "SUSE Bug 1234931 for CVE-2024-56661",
"url": "https://bugzilla.suse.com/1234931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56661"
},
{
"cve": "CVE-2024-56662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nacpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl\n\nFix an issue detected by syzbot with KASAN:\n\nBUG: KASAN: vmalloc-out-of-bounds in cmd_to_func drivers/acpi/nfit/\ncore.c:416 [inline]\nBUG: KASAN: vmalloc-out-of-bounds in acpi_nfit_ctl+0x20e8/0x24a0\ndrivers/acpi/nfit/core.c:459\n\nThe issue occurs in cmd_to_func when the call_pkg-\u003end_reserved2\narray is accessed without verifying that call_pkg points to a buffer\nthat is appropriately sized as a struct nd_cmd_pkg. This can lead\nto out-of-bounds access and undefined behavior if the buffer does not\nhave sufficient space.\n\nTo address this, a check was added in acpi_nfit_ctl() to ensure that\nbuf is not NULL and that buf_len is less than sizeof(*call_pkg)\nbefore accessing it. This ensures safe access to the members of\ncall_pkg, including the nd_reserved2 array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56662",
"url": "https://www.suse.com/security/cve/CVE-2024-56662"
},
{
"category": "external",
"summary": "SUSE Bug 1235533 for CVE-2024-56662",
"url": "https://bugzilla.suse.com/1235533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56662"
},
{
"cve": "CVE-2024-56663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one\n\nSince the netlink attribute range validation provides inclusive\nchecking, the *max* of attribute NL80211_ATTR_MLO_LINK_ID should be\nIEEE80211_MLD_MAX_NUM_LINKS - 1 otherwise causing an off-by-one.\n\nOne crash stack for demonstration:\n==================================================================\nBUG: KASAN: wild-memory-access in ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\nRead of size 6 at addr 001102080000000c by task fuzzer.386/9508\n\nCPU: 1 PID: 9508 Comm: syz.1.386 Not tainted 6.1.70 #2\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x177/0x231 lib/dump_stack.c:106\n print_report+0xe0/0x750 mm/kasan/report.c:398\n kasan_report+0x139/0x170 mm/kasan/report.c:495\n kasan_check_range+0x287/0x290 mm/kasan/generic.c:189\n memcpy+0x25/0x60 mm/kasan/shadow.c:65\n ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\n rdev_tx_control_port net/wireless/rdev-ops.h:761 [inline]\n nl80211_tx_control_port+0x7b3/0xc40 net/wireless/nl80211.c:15453\n genl_family_rcv_msg_doit+0x22e/0x320 net/netlink/genetlink.c:756\n genl_family_rcv_msg net/netlink/genetlink.c:833 [inline]\n genl_rcv_msg+0x539/0x740 net/netlink/genetlink.c:850\n netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2508\n genl_rcv+0x24/0x40 net/netlink/genetlink.c:861\n netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]\n netlink_unicast+0x74b/0x8c0 net/netlink/af_netlink.c:1352\n netlink_sendmsg+0x882/0xb90 net/netlink/af_netlink.c:1874\n sock_sendmsg_nosec net/socket.c:716 [inline]\n __sock_sendmsg net/socket.c:728 [inline]\n ____sys_sendmsg+0x5cc/0x8f0 net/socket.c:2499\n ___sys_sendmsg+0x21c/0x290 net/socket.c:2553\n __sys_sendmsg net/socket.c:2582 [inline]\n __do_sys_sendmsg net/socket.c:2591 [inline]\n __se_sys_sendmsg+0x19e/0x270 net/socket.c:2589\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x45/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUpdate the policy to ensure correct validation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56663",
"url": "https://www.suse.com/security/cve/CVE-2024-56663"
},
{
"category": "external",
"summary": "SUSE Bug 1235454 for CVE-2024-56663",
"url": "https://bugzilla.suse.com/1235454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56663"
},
{
"cve": "CVE-2024-56664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Fix race between element replace and close()\n\nElement replace (with a socket different from the one stored) may race\nwith socket\u0027s close() link popping \u0026 unlinking. __sock_map_delete()\nunconditionally unrefs the (wrong) element:\n\n// set map[0] = s0\nmap_update_elem(map, 0, s0)\n\n// drop fd of s0\nclose(s0)\n sock_map_close()\n lock_sock(sk) (s0!)\n sock_map_remove_links(sk)\n link = sk_psock_link_pop()\n sock_map_unlink(sk, link)\n sock_map_delete_from_link\n // replace map[0] with s1\n map_update_elem(map, 0, s1)\n sock_map_update_elem\n (s1!) lock_sock(sk)\n sock_map_update_common\n psock = sk_psock(sk)\n spin_lock(\u0026stab-\u003elock)\n osk = stab-\u003esks[idx]\n sock_map_add_link(..., \u0026stab-\u003esks[idx])\n sock_map_unref(osk, \u0026stab-\u003esks[idx])\n psock = sk_psock(osk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test(\u0026psock))\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n unlock_sock(sk)\n __sock_map_delete\n spin_lock(\u0026stab-\u003elock)\n sk = *psk // s1 replaced s0; sk == s1\n if (!sk_test || sk_test == sk) // sk_test (s0) != sk (s1); no branch\n sk = xchg(psk, NULL)\n if (sk)\n sock_map_unref(sk, psk) // unref s1; sks[idx] will dangle\n psock = sk_psock(sk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test())\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n release_sock(sk)\n\nThen close(map) enqueues bpf_map_free_deferred, which finally calls\nsock_map_free(). This results in some refcount_t warnings along with\na KASAN splat [1].\n\nFix __sock_map_delete(), do not allow sock_map_unref() on elements that\nmay have been replaced.\n\n[1]:\nBUG: KASAN: slab-use-after-free in sock_map_free+0x10e/0x330\nWrite of size 4 at addr ffff88811f5b9100 by task kworker/u64:12/1063\n\nCPU: 14 UID: 0 PID: 1063 Comm: kworker/u64:12 Not tainted 6.12.0+ #125\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Arch Linux 1.16.3-1-1 04/01/2014\nWorkqueue: events_unbound bpf_map_free_deferred\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x68/0x90\n print_report+0x174/0x4f6\n kasan_report+0xb9/0x190\n kasan_check_range+0x10f/0x1e0\n sock_map_free+0x10e/0x330\n bpf_map_free_deferred+0x173/0x320\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 1202:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x85/0x90\n kmem_cache_alloc_noprof+0x131/0x450\n sk_prot_alloc+0x5b/0x220\n sk_alloc+0x2c/0x870\n unix_create1+0x88/0x8a0\n unix_create+0xc5/0x180\n __sock_create+0x241/0x650\n __sys_socketpair+0x1ce/0x420\n __x64_sys_socketpair+0x92/0x100\n do_syscall_64+0x93/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 46:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x60\n __kasan_slab_free+0x4b/0x70\n kmem_cache_free+0x1a1/0x590\n __sk_destruct+0x388/0x5a0\n sk_psock_destroy+0x73e/0xa50\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n\nThe bu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56664",
"url": "https://www.suse.com/security/cve/CVE-2024-56664"
},
{
"category": "external",
"summary": "SUSE Bug 1235249 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "external",
"summary": "SUSE Bug 1235250 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56664"
},
{
"cve": "CVE-2024-56665",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56665"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog\n\nSyzbot reported [1] crash that happens for following tracing scenario:\n\n - create tracepoint perf event with attr.inherit=1, attach it to the\n process and set bpf program to it\n - attached process forks -\u003e chid creates inherited event\n\n the new child event shares the parent\u0027s bpf program and tp_event\n (hence prog_array) which is global for tracepoint\n\n - exit both process and its child -\u003e release both events\n - first perf_event_detach_bpf_prog call will release tp_event-\u003eprog_array\n and second perf_event_detach_bpf_prog will crash, because\n tp_event-\u003eprog_array is NULL\n\nThe fix makes sure the perf_event_detach_bpf_prog checks prog_array\nis valid before it tries to remove the bpf program from it.\n\n[1] https://lore.kernel.org/bpf/Z1MR6dCIKajNS6nU@krava/T/#m91dbf0688221ec7a7fc95e896a7ef9ff93b0b8ad",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56665",
"url": "https://www.suse.com/security/cve/CVE-2024-56665"
},
{
"category": "external",
"summary": "SUSE Bug 1235489 for CVE-2024-56665",
"url": "https://bugzilla.suse.com/1235489"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56665"
},
{
"cve": "CVE-2024-56667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Fix NULL pointer dereference in capture_engine\n\nWhen the intel_context structure contains NULL,\nit raises a NULL pointer dereference error in drm_info().\n\n(cherry picked from commit 754302a5bc1bd8fd3b7d85c168b0a1af6d4bba4d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56667",
"url": "https://www.suse.com/security/cve/CVE-2024-56667"
},
{
"category": "external",
"summary": "SUSE Bug 1235016 for CVE-2024-56667",
"url": "https://bugzilla.suse.com/1235016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56667"
},
{
"cve": "CVE-2024-56670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56670"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer\n\nConsidering that in some extreme cases,\nwhen u_serial driver is accessed by multiple threads,\nThread A is executing the open operation and calling the gs_open,\nThread B is executing the disconnect operation and calling the\ngserial_disconnect function,The port-\u003eport_usb pointer will be set to NULL.\n\nE.g.\n Thread A Thread B\n gs_open() gadget_unbind_driver()\n gs_start_io() composite_disconnect()\n gs_start_rx() gserial_disconnect()\n ... ...\n spin_unlock(\u0026port-\u003eport_lock)\n status = usb_ep_queue() spin_lock(\u0026port-\u003eport_lock)\n spin_lock(\u0026port-\u003eport_lock) port-\u003eport_usb = NULL\n gs_free_requests(port-\u003eport_usb-\u003ein) spin_unlock(\u0026port-\u003eport_lock)\n Crash\n\nThis causes thread A to access a null pointer (port-\u003eport_usb is null)\nwhen calling the gs_free_requests function, causing a crash.\n\nIf port_usb is NULL, the release request will be skipped as it\nwill be done by gserial_disconnect.\n\nSo add a null pointer check to gs_start_io before attempting\nto access the value of the pointer port-\u003eport_usb.\n\nCall trace:\n gs_start_io+0x164/0x25c\n gs_open+0x108/0x13c\n tty_open+0x314/0x638\n chrdev_open+0x1b8/0x258\n do_dentry_open+0x2c4/0x700\n vfs_open+0x2c/0x3c\n path_openat+0xa64/0xc60\n do_filp_open+0xb8/0x164\n do_sys_openat2+0x84/0xf0\n __arm64_sys_openat+0x70/0x9c\n invoke_syscall+0x58/0x114\n el0_svc_common+0x80/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x38/0x68",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56670",
"url": "https://www.suse.com/security/cve/CVE-2024-56670"
},
{
"category": "external",
"summary": "SUSE Bug 1235488 for CVE-2024-56670",
"url": "https://bugzilla.suse.com/1235488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56670"
},
{
"cve": "CVE-2024-56672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: Fix UAF in blkcg_unpin_online()\n\nblkcg_unpin_online() walks up the blkcg hierarchy putting the online pin. To\nwalk up, it uses blkcg_parent(blkcg) but it was calling that after\nblkcg_destroy_blkgs(blkcg) which could free the blkcg, leading to the\nfollowing UAF:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in blkcg_unpin_online+0x15a/0x270\n Read of size 8 at addr ffff8881057678c0 by task kworker/9:1/117\n\n CPU: 9 UID: 0 PID: 117 Comm: kworker/9:1 Not tainted 6.13.0-rc1-work-00182-gb8f52214c61a-dirty #48\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS unknown 02/02/2022\n Workqueue: cgwb_release cgwb_release_workfn\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x27/0x80\n print_report+0x151/0x710\n kasan_report+0xc0/0x100\n blkcg_unpin_online+0x15a/0x270\n cgwb_release_workfn+0x194/0x480\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n ...\n Freed by task 1944:\n kasan_save_track+0x2b/0x70\n kasan_save_free_info+0x3c/0x50\n __kasan_slab_free+0x33/0x50\n kfree+0x10c/0x330\n css_free_rwork_fn+0xe6/0xb30\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n\nNote that the UAF is not easy to trigger as the free path is indirected\nbehind a couple RCU grace periods and a work item execution. I could only\ntrigger it with artifical msleep() injected in blkcg_unpin_online().\n\nFix it by reading the parent pointer before destroying the blkcg\u0027s blkg\u0027s.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56672",
"url": "https://www.suse.com/security/cve/CVE-2024-56672"
},
{
"category": "external",
"summary": "SUSE Bug 1235534 for CVE-2024-56672",
"url": "https://bugzilla.suse.com/1235534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56672"
},
{
"cve": "CVE-2024-56675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors\n\nUprobes always use bpf_prog_run_array_uprobe() under tasks-trace-RCU\nprotection. But it is possible to attach a non-sleepable BPF program to a\nuprobe, and non-sleepable BPF programs are freed via normal RCU (see\n__bpf_prog_put_noref()). This leads to UAF of the bpf_prog because a normal\nRCU grace period does not imply a tasks-trace-RCU grace period.\n\nFix it by explicitly waiting for a tasks-trace-RCU grace period after\nremoving the attachment of a bpf_prog to a perf_event.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56675",
"url": "https://www.suse.com/security/cve/CVE-2024-56675"
},
{
"category": "external",
"summary": "SUSE Bug 1235555 for CVE-2024-56675",
"url": "https://bugzilla.suse.com/1235555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56675"
},
{
"cve": "CVE-2024-56677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init()\n\nDuring early init CMA_MIN_ALIGNMENT_BYTES can be PAGE_SIZE,\nsince pageblock_order is still zero and it gets initialized\nlater during initmem_init() e.g.\nsetup_arch() -\u003e initmem_init() -\u003e sparse_init() -\u003e set_pageblock_order()\n\nOne such use case where this causes issue is -\nearly_setup() -\u003e early_init_devtree() -\u003e fadump_reserve_mem() -\u003e fadump_cma_init()\n\nThis causes CMA memory alignment check to be bypassed in\ncma_init_reserved_mem(). Then later cma_activate_area() can hit\na VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1)) if the reserved memory\narea was not pageblock_order aligned.\n\nFix it by moving the fadump_cma_init() after initmem_init(),\nwhere other such cma reservations also gets called.\n\n\u003cstack trace\u003e\n==============\npage: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10010\nflags: 0x13ffff800000000(node=1|zone=0|lastcpupid=0x7ffff) CMA\nraw: 013ffff800000000 5deadbeef0000100 5deadbeef0000122 0000000000000000\nraw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\npage dumped because: VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1))\n------------[ cut here ]------------\nkernel BUG at mm/page_alloc.c:778!\n\nCall Trace:\n__free_one_page+0x57c/0x7b0 (unreliable)\nfree_pcppages_bulk+0x1a8/0x2c8\nfree_unref_page_commit+0x3d4/0x4e4\nfree_unref_page+0x458/0x6d0\ninit_cma_reserved_pageblock+0x114/0x198\ncma_init_reserved_areas+0x270/0x3e0\ndo_one_initcall+0x80/0x2f8\nkernel_init_freeable+0x33c/0x530\nkernel_init+0x34/0x26c\nret_from_kernel_user_thread+0x14/0x1c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56677",
"url": "https://www.suse.com/security/cve/CVE-2024-56677"
},
{
"category": "external",
"summary": "SUSE Bug 1235494 for CVE-2024-56677",
"url": "https://bugzilla.suse.com/1235494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56677"
},
{
"cve": "CVE-2024-56678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/mm/fault: Fix kfence page fault reporting\n\ncopy_from_kernel_nofault() can be called when doing read of /proc/kcore.\n/proc/kcore can have some unmapped kfence objects which when read via\ncopy_from_kernel_nofault() can cause page faults. Since *_nofault()\nfunctions define their own fixup table for handling fault, use that\ninstead of asking kfence to handle such faults.\n\nHence we search the exception tables for the nip which generated the\nfault. If there is an entry then we let the fixup table handler handle the\npage fault by returning an error from within ___do_page_fault().\n\nThis can be easily triggered if someone tries to do dd from /proc/kcore.\neg. dd if=/proc/kcore of=/dev/null bs=1M\n\nSome example false negatives:\n\n ===============================\n BUG: KFENCE: invalid read in copy_from_kernel_nofault+0x9c/0x1a0\n Invalid read at 0xc0000000fdff0000:\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec\n\n BUG: KFENCE: use-after-free read in copy_from_kernel_nofault+0x9c/0x1a0\n Use-after-free read at 0xc0000000fe050000 (in kfence-#2):\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56678",
"url": "https://www.suse.com/security/cve/CVE-2024-56678"
},
{
"category": "external",
"summary": "SUSE Bug 1235495 for CVE-2024-56678",
"url": "https://bugzilla.suse.com/1235495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56678"
},
{
"cve": "CVE-2024-56679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56679",
"url": "https://www.suse.com/security/cve/CVE-2024-56679"
},
{
"category": "external",
"summary": "SUSE Bug 1235498 for CVE-2024-56679",
"url": "https://bugzilla.suse.com/1235498"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56679"
},
{
"cve": "CVE-2024-56681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: bcm - add error check in the ahash_hmac_init function\n\nThe ahash_init functions may return fails. The ahash_hmac_init should\nnot return ok when ahash_init returns error. For an example, ahash_init\nwill return -ENOMEM when allocation memory is error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56681",
"url": "https://www.suse.com/security/cve/CVE-2024-56681"
},
{
"category": "external",
"summary": "SUSE Bug 1235557 for CVE-2024-56681",
"url": "https://bugzilla.suse.com/1235557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56681"
},
{
"cve": "CVE-2024-56683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56683"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: hdmi: Avoid hang with debug registers when suspended\n\nTrying to read /sys/kernel/debug/dri/1/hdmi1_regs\nwhen the hdmi is disconnected results in a fatal system hang.\n\nThis is due to the pm suspend code disabling the dvp clock.\nThat is just a gate of the 108MHz clock in DVP_HT_RPI_MISC_CONFIG,\nwhich results in accesses hanging AXI bus.\n\nProtect against this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56683",
"url": "https://www.suse.com/security/cve/CVE-2024-56683"
},
{
"category": "external",
"summary": "SUSE Bug 1235497 for CVE-2024-56683",
"url": "https://bugzilla.suse.com/1235497"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56683"
},
{
"cve": "CVE-2024-56687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: musb: Fix hardware lockup on first Rx endpoint request\n\nThere is a possibility that a request\u0027s callback could be invoked from\nusb_ep_queue() (call trace below, supplemented with missing calls):\n\nreq-\u003ecomplete from usb_gadget_giveback_request\n\t(drivers/usb/gadget/udc/core.c:999)\nusb_gadget_giveback_request from musb_g_giveback\n\t(drivers/usb/musb/musb_gadget.c:147)\nmusb_g_giveback from rxstate\n\t(drivers/usb/musb/musb_gadget.c:784)\nrxstate from musb_ep_restart\n\t(drivers/usb/musb/musb_gadget.c:1169)\nmusb_ep_restart from musb_ep_restart_resume_work\n\t(drivers/usb/musb/musb_gadget.c:1176)\nmusb_ep_restart_resume_work from musb_queue_resume_work\n\t(drivers/usb/musb/musb_core.c:2279)\nmusb_queue_resume_work from musb_gadget_queue\n\t(drivers/usb/musb/musb_gadget.c:1241)\nmusb_gadget_queue from usb_ep_queue\n\t(drivers/usb/gadget/udc/core.c:300)\n\nAccording to the docstring of usb_ep_queue(), this should not happen:\n\n\"Note that @req\u0027s -\u003ecomplete() callback must never be called from within\nusb_ep_queue() as that can create deadlock situations.\"\n\nIn fact, a hardware lockup might occur in the following sequence:\n\n1. The gadget is initialized using musb_gadget_enable().\n2. Meanwhile, a packet arrives, and the RXPKTRDY flag is set, raising an\n interrupt.\n3. If IRQs are enabled, the interrupt is handled, but musb_g_rx() finds an\n empty queue (next_request() returns NULL). The interrupt flag has\n already been cleared by the glue layer handler, but the RXPKTRDY flag\n remains set.\n4. The first request is enqueued using usb_ep_queue(), leading to the call\n of req-\u003ecomplete(), as shown in the call trace above.\n5. If the callback enables IRQs and another packet is waiting, step (3)\n repeats. The request queue is empty because usb_g_giveback() removes the\n request before invoking the callback.\n6. The endpoint remains locked up, as the interrupt triggered by hardware\n setting the RXPKTRDY flag has been handled, but the flag itself remains\n set.\n\nFor this scenario to occur, it is only necessary for IRQs to be enabled at\nsome point during the complete callback. This happens with the USB Ethernet\ngadget, whose rx_complete() callback calls netif_rx(). If called in the\ntask context, netif_rx() disables the bottom halves (BHs). When the BHs are\nre-enabled, IRQs are also enabled to allow soft IRQs to be processed. The\ngadget itself is initialized at module load (or at boot if built-in), but\nthe first request is enqueued when the network interface is brought up,\ntriggering rx_complete() in the task context via ioctl(). If a packet\narrives while the interface is down, it can prevent the interface from\nreceiving any further packets from the USB host.\n\nThe situation is quite complicated with many parties involved. This\nparticular issue can be resolved in several possible ways:\n\n1. Ensure that callbacks never enable IRQs. This would be difficult to\n enforce, as discovering how netif_rx() interacts with interrupts was\n already quite challenging and u_ether is not the only function driver.\n Similar \"bugs\" could be hidden in other drivers as well.\n2. Disable MUSB interrupts in musb_g_giveback() before calling the callback\n and re-enable them afterwars (by calling musb_{dis,en}able_interrupts(),\n for example). This would ensure that MUSB interrupts are not handled\n during the callback, even if IRQs are enabled. In fact, it would allow\n IRQs to be enabled when releasing the lock. However, this feels like an\n inelegant hack.\n3. Modify the interrupt handler to clear the RXPKTRDY flag if the request\n queue is empty. While this approach also feels like a hack, it wastes\n CPU time by attempting to handle incoming packets when the software is\n not ready to process them.\n4. Flush the Rx FIFO instead of calling rxstate() in musb_ep_restart().\n This ensures that the hardware can receive packets when there is at\n least one request in the queue. Once I\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56687",
"url": "https://www.suse.com/security/cve/CVE-2024-56687"
},
{
"category": "external",
"summary": "SUSE Bug 1235537 for CVE-2024-56687",
"url": "https://bugzilla.suse.com/1235537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56687"
},
{
"cve": "CVE-2024-56688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56688"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport\n\nSince transport-\u003esock has been set to NULL during reset transport,\nXPRT_SOCK_UPD_TIMEOUT also needs to be cleared. Otherwise, the\nxs_tcp_set_socket_timeouts() may be triggered in xs_tcp_send_request()\nto dereference the transport-\u003esock that has been set to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56688",
"url": "https://www.suse.com/security/cve/CVE-2024-56688"
},
{
"category": "external",
"summary": "SUSE Bug 1235538 for CVE-2024-56688",
"url": "https://bugzilla.suse.com/1235538"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56688"
},
{
"cve": "CVE-2024-56690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY\n\nSince commit 8f4f68e788c3 (\"crypto: pcrypt - Fix hungtask for\nPADATA_RESET\"), the pcrypt encryption and decryption operations return\n-EAGAIN when the CPU goes online or offline. In alg_test(), a WARN is\ngenerated when pcrypt_aead_decrypt() or pcrypt_aead_encrypt() returns\n-EAGAIN, the unnecessary panic will occur when panic_on_warn set 1.\nFix this issue by calling crypto layer directly without parallelization\nin that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56690",
"url": "https://www.suse.com/security/cve/CVE-2024-56690"
},
{
"category": "external",
"summary": "SUSE Bug 1235428 for CVE-2024-56690",
"url": "https://bugzilla.suse.com/1235428"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56690"
},
{
"cve": "CVE-2024-56691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56691",
"url": "https://www.suse.com/security/cve/CVE-2024-56691"
},
{
"category": "external",
"summary": "SUSE Bug 1235425 for CVE-2024-56691",
"url": "https://bugzilla.suse.com/1235425"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56691"
},
{
"cve": "CVE-2024-56693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbrd: defer automatic disk creation until module initialization succeeds\n\nMy colleague Wupeng found the following problems during fault injection:\n\nBUG: unable to handle page fault for address: fffffbfff809d073\nPGD 6e648067 P4D 123ec8067 PUD 123ec4067 PMD 100e38067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nCPU: 5 UID: 0 PID: 755 Comm: modprobe Not tainted 6.12.0-rc3+ #17\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:__asan_load8+0x4c/0xa0\n...\nCall Trace:\n \u003cTASK\u003e\n blkdev_put_whole+0x41/0x70\n bdev_release+0x1a3/0x250\n blkdev_release+0x11/0x20\n __fput+0x1d7/0x4a0\n task_work_run+0xfc/0x180\n syscall_exit_to_user_mode+0x1de/0x1f0\n do_syscall_64+0x6b/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nloop_init() is calling loop_add() after __register_blkdev() succeeds and\nis ignoring disk_add() failure from loop_add(), for loop_add() failure\nis not fatal and successfully created disks are already visible to\nbdev_open().\n\nbrd_init() is currently calling brd_alloc() before __register_blkdev()\nsucceeds and is releasing successfully created disks when brd_init()\nreturns an error. This can cause UAF for the latter two case:\n\ncase 1:\n T1:\nmodprobe brd\n brd_init\n brd_alloc(0) // success\n add_disk\n disk_scan_partitions\n bdev_file_open_by_dev // alloc file\n fput // won\u0027t free until back to userspace\n brd_alloc(1) // failed since mem alloc error inject\n // error path for modprobe will release code segment\n // back to userspace\n __fput\n blkdev_release\n bdev_release\n blkdev_put_whole\n bdev-\u003ebd_disk-\u003efops-\u003erelease // fops is freed now, UAF!\n\ncase 2:\n T1: T2:\nmodprobe brd\n brd_init\n brd_alloc(0) // success\n open(/dev/ram0)\n brd_alloc(1) // fail\n // error path for modprobe\n\n close(/dev/ram0)\n ...\n /* UAF! */\n bdev-\u003ebd_disk-\u003efops-\u003erelease\n\nFix this problem by following what loop_init() does. Besides,\nreintroduce brd_devices_mutex to help serialize modifications to\nbrd_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56693",
"url": "https://www.suse.com/security/cve/CVE-2024-56693"
},
{
"category": "external",
"summary": "SUSE Bug 1235418 for CVE-2024-56693",
"url": "https://bugzilla.suse.com/1235418"
},
{
"category": "external",
"summary": "SUSE Bug 1235419 for CVE-2024-56693",
"url": "https://bugzilla.suse.com/1235419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56693"
},
{
"cve": "CVE-2024-56694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix recursive lock when verdict program return SK_PASS\n\nWhen the stream_verdict program returns SK_PASS, it places the received skb\ninto its own receive queue, but a recursive lock eventually occurs, leading\nto an operating system deadlock. This issue has been present since v6.9.\n\n\u0027\u0027\u0027\nsk_psock_strp_data_ready\n write_lock_bh(\u0026sk-\u003esk_callback_lock)\n strp_data_ready\n strp_read_sock\n read_sock -\u003e tcp_read_sock\n strp_recv\n cb.rcv_msg -\u003e sk_psock_strp_read\n # now stream_verdict return SK_PASS without peer sock assign\n __SK_PASS = sk_psock_map_verd(SK_PASS, NULL)\n sk_psock_verdict_apply\n sk_psock_skb_ingress_self\n sk_psock_skb_ingress_enqueue\n sk_psock_data_ready\n read_lock_bh(\u0026sk-\u003esk_callback_lock) \u003c= dead lock\n\n\u0027\u0027\u0027\n\nThis topic has been discussed before, but it has not been fixed.\nPrevious discussion:\nhttps://lore.kernel.org/all/6684a5864ec86_403d20898@john.notmuch",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56694",
"url": "https://www.suse.com/security/cve/CVE-2024-56694"
},
{
"category": "external",
"summary": "SUSE Bug 1235412 for CVE-2024-56694",
"url": "https://bugzilla.suse.com/1235412"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56694"
},
{
"cve": "CVE-2024-56698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56698"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: gadget: Fix looping of queued SG entries\n\nThe dwc3_request-\u003enum_queued_sgs is decremented on completion. If a\npartially completed request is handled, then the\ndwc3_request-\u003enum_queued_sgs no longer reflects the total number of\nnum_queued_sgs (it would be cleared).\n\nCorrectly check the number of request SG entries remained to be prepare\nand queued. Failure to do this may cause null pointer dereference when\naccessing non-existent SG entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56698",
"url": "https://www.suse.com/security/cve/CVE-2024-56698"
},
{
"category": "external",
"summary": "SUSE Bug 1235491 for CVE-2024-56698",
"url": "https://bugzilla.suse.com/1235491"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56698"
},
{
"cve": "CVE-2024-56700",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56700"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: wl128x: Fix atomicity violation in fmc_send_cmd()\n\nAtomicity violation occurs when the fmc_send_cmd() function is executed\nsimultaneously with the modification of the fmdev-\u003eresp_skb value.\nConsider a scenario where, after passing the validity check within the\nfunction, a non-null fmdev-\u003eresp_skb variable is assigned a null value.\nThis results in an invalid fmdev-\u003eresp_skb variable passing the validity\ncheck. As seen in the later part of the function, skb = fmdev-\u003eresp_skb;\nwhen the invalid fmdev-\u003eresp_skb passes the check, a null pointer\ndereference error may occur at line 478, evt_hdr = (void *)skb-\u003edata;\n\nTo address this issue, it is recommended to include the validity check of\nfmdev-\u003eresp_skb within the locked section of the function. This\nmodification ensures that the value of fmdev-\u003eresp_skb does not change\nduring the validation process, thereby maintaining its validity.\n\nThis possible bug is found by an experimental static analysis tool\ndeveloped by our team. This tool analyzes the locking APIs\nto extract function pairs that can be concurrently executed, and then\nanalyzes the instructions in the paired functions to identify possible\nconcurrency bugs including data races and atomicity violations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56700",
"url": "https://www.suse.com/security/cve/CVE-2024-56700"
},
{
"category": "external",
"summary": "SUSE Bug 1235500 for CVE-2024-56700",
"url": "https://bugzilla.suse.com/1235500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56700"
},
{
"cve": "CVE-2024-56701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56701"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: Fix dtl_access_lock to be a rw_semaphore\n\nThe dtl_access_lock needs to be a rw_sempahore, a sleeping lock, because\nthe code calls kmalloc() while holding it, which can sleep:\n\n # echo 1 \u003e /proc/powerpc/vcpudispatch_stats\n BUG: sleeping function called from invalid context at include/linux/sched/mm.h:337\n in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 199, name: sh\n preempt_count: 1, expected: 0\n 3 locks held by sh/199:\n #0: c00000000a0743f8 (sb_writers#3){.+.+}-{0:0}, at: vfs_write+0x324/0x438\n #1: c0000000028c7058 (dtl_enable_mutex){+.+.}-{3:3}, at: vcpudispatch_stats_write+0xd4/0x5f4\n #2: c0000000028c70b8 (dtl_access_lock){+.+.}-{2:2}, at: vcpudispatch_stats_write+0x220/0x5f4\n CPU: 0 PID: 199 Comm: sh Not tainted 6.10.0-rc4 #152\n Hardware name: IBM pSeries (emulated by qemu) POWER9 (raw) 0x4e1202 0xf000005 of:SLOF,HEAD hv:linux,kvm pSeries\n Call Trace:\n dump_stack_lvl+0x130/0x148 (unreliable)\n __might_resched+0x174/0x410\n kmem_cache_alloc_noprof+0x340/0x3d0\n alloc_dtl_buffers+0x124/0x1ac\n vcpudispatch_stats_write+0x2a8/0x5f4\n proc_reg_write+0xf4/0x150\n vfs_write+0xfc/0x438\n ksys_write+0x88/0x148\n system_call_exception+0x1c4/0x5a0\n system_call_common+0xf4/0x258",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56701",
"url": "https://www.suse.com/security/cve/CVE-2024-56701"
},
{
"category": "external",
"summary": "SUSE Bug 1235496 for CVE-2024-56701",
"url": "https://bugzilla.suse.com/1235496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56701"
},
{
"cve": "CVE-2024-56704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56704"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\n9p/xen: fix release of IRQ\n\nKernel logs indicate an IRQ was double-freed.\n\nPass correct device ID during IRQ release.\n\n[Dominique: remove confusing variable reset to 0]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56704",
"url": "https://www.suse.com/security/cve/CVE-2024-56704"
},
{
"category": "external",
"summary": "SUSE Bug 1235584 for CVE-2024-56704",
"url": "https://bugzilla.suse.com/1235584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56704"
},
{
"cve": "CVE-2024-56705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56705"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: atomisp: Add check for rgby_data memory allocation failure\n\nIn ia_css_3a_statistics_allocate(), there is no check on the allocation\nresult of the rgby_data memory. If rgby_data is not successfully\nallocated, it may trigger the assert(host_stats-\u003ergby_data) assertion in\nia_css_s3a_hmem_decode(). Adding a check to fix this potential issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56705",
"url": "https://www.suse.com/security/cve/CVE-2024-56705"
},
{
"category": "external",
"summary": "SUSE Bug 1235568 for CVE-2024-56705",
"url": "https://bugzilla.suse.com/1235568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56705"
},
{
"cve": "CVE-2024-56707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c\n\nAdd error pointer checks after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56707",
"url": "https://www.suse.com/security/cve/CVE-2024-56707"
},
{
"category": "external",
"summary": "SUSE Bug 1235545 for CVE-2024-56707",
"url": "https://bugzilla.suse.com/1235545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56707"
},
{
"cve": "CVE-2024-56708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56708"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/igen6: Avoid segmentation fault on module unload\n\nThe segmentation fault happens because:\n\nDuring modprobe:\n1. In igen6_probe(), igen6_pvt will be allocated with kzalloc()\n2. In igen6_register_mci(), mci-\u003epvt_info will point to\n \u0026igen6_pvt-\u003eimc[mc]\n\nDuring rmmod:\n1. In mci_release() in edac_mc.c, it will kfree(mci-\u003epvt_info)\n2. In igen6_remove(), it will kfree(igen6_pvt);\n\nFix this issue by setting mci-\u003epvt_info to NULL to avoid the double\nkfree.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56708",
"url": "https://www.suse.com/security/cve/CVE-2024-56708"
},
{
"category": "external",
"summary": "SUSE Bug 1235564 for CVE-2024-56708",
"url": "https://bugzilla.suse.com/1235564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56708"
},
{
"cve": "CVE-2024-56709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check if iowq is killed before queuing\n\ntask work can be executed after the task has gone through io_uring\ntermination, whether it\u0027s the final task_work run or the fallback path.\nIn this case, task work will find -\u003eio_wq being already killed and\nnull\u0027ed, which is a problem if it then tries to forward the request to\nio_queue_iowq(). Make io_queue_iowq() fail requests in this case.\n\nNote that it also checks PF_KTHREAD, because the user can first close\na DEFER_TASKRUN ring and shortly after kill the task, in which case\n-\u003eiowq check would race.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56709",
"url": "https://www.suse.com/security/cve/CVE-2024-56709"
},
{
"category": "external",
"summary": "SUSE Bug 1235552 for CVE-2024-56709",
"url": "https://bugzilla.suse.com/1235552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56709"
},
{
"cve": "CVE-2024-56712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56712"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudmabuf: fix memory leak on last export_udmabuf() error path\n\nIn export_udmabuf(), if dma_buf_fd() fails because the FD table is full, a\ndma_buf owning the udmabuf has already been created; but the error handling\nin udmabuf_create() will tear down the udmabuf without doing anything about\nthe containing dma_buf.\n\nThis leaves a dma_buf in memory that contains a dangling pointer; though\nthat doesn\u0027t seem to lead to anything bad except a memory leak.\n\nFix it by moving the dma_buf_fd() call out of export_udmabuf() so that we\ncan give it different error handling.\n\nNote that the shape of this code changed a lot in commit 5e72b2b41a21\n(\"udmabuf: convert udmabuf driver to use folios\"); but the memory leak\nseems to have existed since the introduction of udmabuf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56712",
"url": "https://www.suse.com/security/cve/CVE-2024-56712"
},
{
"category": "external",
"summary": "SUSE Bug 1235565 for CVE-2024-56712",
"url": "https://bugzilla.suse.com/1235565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56712"
},
{
"cve": "CVE-2024-56715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nionic: Fix netdev notifier unregister on failure\n\nIf register_netdev() fails, then the driver leaks the netdev notifier.\nFix this by calling ionic_lif_unregister() on register_netdev()\nfailure. This will also call ionic_lif_unregister_phc() if it has\nalready been registered.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56715",
"url": "https://www.suse.com/security/cve/CVE-2024-56715"
},
{
"category": "external",
"summary": "SUSE Bug 1235612 for CVE-2024-56715",
"url": "https://bugzilla.suse.com/1235612"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56715"
},
{
"cve": "CVE-2024-56716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: prevent bad user input in nsim_dev_health_break_write()\n\nIf either a zero count or a large one is provided, kernel can crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56716",
"url": "https://www.suse.com/security/cve/CVE-2024-56716"
},
{
"category": "external",
"summary": "SUSE Bug 1235587 for CVE-2024-56716",
"url": "https://bugzilla.suse.com/1235587"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56716"
},
{
"cve": "CVE-2024-56722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix cpu stuck caused by printings during reset\n\nDuring reset, cmd to destroy resources such as qp, cq, and mr may fail,\nand error logs will be printed. When a large number of resources are\ndestroyed, there will be lots of printings, and it may lead to a cpu\nstuck.\n\nDelete some unnecessary printings and replace other printing functions\nin these paths with the ratelimited version.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56722",
"url": "https://www.suse.com/security/cve/CVE-2024-56722"
},
{
"category": "external",
"summary": "SUSE Bug 1235570 for CVE-2024-56722",
"url": "https://bugzilla.suse.com/1235570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56722"
},
{
"cve": "CVE-2024-56723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56723",
"url": "https://www.suse.com/security/cve/CVE-2024-56723"
},
{
"category": "external",
"summary": "SUSE Bug 1235571 for CVE-2024-56723",
"url": "https://bugzilla.suse.com/1235571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56723"
},
{
"cve": "CVE-2024-56724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56724",
"url": "https://www.suse.com/security/cve/CVE-2024-56724"
},
{
"category": "external",
"summary": "SUSE Bug 1235577 for CVE-2024-56724",
"url": "https://bugzilla.suse.com/1235577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56724"
},
{
"cve": "CVE-2024-56725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56725",
"url": "https://www.suse.com/security/cve/CVE-2024-56725"
},
{
"category": "external",
"summary": "SUSE Bug 1235578 for CVE-2024-56725",
"url": "https://bugzilla.suse.com/1235578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56725"
},
{
"cve": "CVE-2024-56726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56726",
"url": "https://www.suse.com/security/cve/CVE-2024-56726"
},
{
"category": "external",
"summary": "SUSE Bug 1235582 for CVE-2024-56726",
"url": "https://bugzilla.suse.com/1235582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56726"
},
{
"cve": "CVE-2024-56727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c\n\nAdding error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56727",
"url": "https://www.suse.com/security/cve/CVE-2024-56727"
},
{
"category": "external",
"summary": "SUSE Bug 1235583 for CVE-2024-56727",
"url": "https://bugzilla.suse.com/1235583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56727"
},
{
"cve": "CVE-2024-56728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56728",
"url": "https://www.suse.com/security/cve/CVE-2024-56728"
},
{
"category": "external",
"summary": "SUSE Bug 1235656 for CVE-2024-56728",
"url": "https://bugzilla.suse.com/1235656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56728"
},
{
"cve": "CVE-2024-56729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: Initialize cfid-\u003etcon before performing network ops\n\nAvoid leaking a tcon ref when a lease break races with opening the\ncached directory. Processing the leak break might take a reference to\nthe tcon in cached_dir_lease_break() and then fail to release the ref in\ncached_dir_offload_close, since cfid-\u003etcon is still NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56729",
"url": "https://www.suse.com/security/cve/CVE-2024-56729"
},
{
"category": "external",
"summary": "SUSE Bug 1235503 for CVE-2024-56729",
"url": "https://bugzilla.suse.com/1235503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56729"
},
{
"cve": "CVE-2024-56739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtc: check if __rtc_read_time was successful in rtc_timer_do_work()\n\nIf the __rtc_read_time call fails,, the struct rtc_time tm; may contain\nuninitialized data, or an illegal date/time read from the RTC hardware.\n\nWhen calling rtc_tm_to_ktime later, the result may be a very large value\n(possibly KTIME_MAX). If there are periodic timers in rtc-\u003etimerqueue,\nthey will continually expire, may causing kernel softlockup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56739",
"url": "https://www.suse.com/security/cve/CVE-2024-56739"
},
{
"category": "external",
"summary": "SUSE Bug 1235611 for CVE-2024-56739",
"url": "https://bugzilla.suse.com/1235611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56739"
},
{
"cve": "CVE-2024-56741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56741"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56741",
"url": "https://www.suse.com/security/cve/CVE-2024-56741"
},
{
"category": "external",
"summary": "SUSE Bug 1235502 for CVE-2024-56741",
"url": "https://bugzilla.suse.com/1235502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56741"
},
{
"cve": "CVE-2024-56745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix reset_method_store() memory leak\n\nIn reset_method_store(), a string is allocated via kstrndup() and assigned\nto the local \"options\". options is then used in with strsep() to find\nspaces:\n\n while ((name = strsep(\u0026options, \" \")) != NULL) {\n\nIf there are no remaining spaces, then options is set to NULL by strsep(),\nso the subsequent kfree(options) doesn\u0027t free the memory allocated via\nkstrndup().\n\nFix by using a separate tmp_options to iterate with strsep() so options is\npreserved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56745",
"url": "https://www.suse.com/security/cve/CVE-2024-56745"
},
{
"category": "external",
"summary": "SUSE Bug 1235563 for CVE-2024-56745",
"url": "https://bugzilla.suse.com/1235563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56745"
},
{
"cve": "CVE-2024-56746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()\n\nWhen information such as info-\u003escreen_base is not ready, calling\nsh7760fb_free_mem() does not release memory correctly. Call\ndma_free_coherent() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56746",
"url": "https://www.suse.com/security/cve/CVE-2024-56746"
},
{
"category": "external",
"summary": "SUSE Bug 1235622 for CVE-2024-56746",
"url": "https://bugzilla.suse.com/1235622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56746"
},
{
"cve": "CVE-2024-56747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()\n\nHook \"qedi_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56747",
"url": "https://www.suse.com/security/cve/CVE-2024-56747"
},
{
"category": "external",
"summary": "SUSE Bug 1234934 for CVE-2024-56747",
"url": "https://bugzilla.suse.com/1234934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56747"
},
{
"cve": "CVE-2024-56748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56748"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()\n\nHook \"qed_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56748",
"url": "https://www.suse.com/security/cve/CVE-2024-56748"
},
{
"category": "external",
"summary": "SUSE Bug 1235627 for CVE-2024-56748",
"url": "https://bugzilla.suse.com/1235627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56748"
},
{
"cve": "CVE-2024-56752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()\n\nWhen the call to gf100_grctx_generate() fails, unlock gr-\u003efecs.mutex\nbefore returning the error.\n\nFixes smatch warning:\n\ndrivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480 gf100_gr_chan_new() warn: inconsistent returns \u0027\u0026gr-\u003efecs.mutex\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56752",
"url": "https://www.suse.com/security/cve/CVE-2024-56752"
},
{
"category": "external",
"summary": "SUSE Bug 1234937 for CVE-2024-56752",
"url": "https://bugzilla.suse.com/1234937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56752"
},
{
"cve": "CVE-2024-56754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: caam - Fix the pointer passed to caam_qi_shutdown()\n\nThe type of the last parameter given to devm_add_action_or_reset() is\n\"struct caam_drv_private *\", but in caam_qi_shutdown(), it is casted to\n\"struct device *\".\n\nPass the correct parameter to devm_add_action_or_reset() so that the\nresources are released as expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56754",
"url": "https://www.suse.com/security/cve/CVE-2024-56754"
},
{
"category": "external",
"summary": "SUSE Bug 1234918 for CVE-2024-56754",
"url": "https://bugzilla.suse.com/1234918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56754"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-56756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix freeing of the HMB descriptor table\n\nThe HMB descriptor table is sized to the maximum number of descriptors\nthat could be used for a given device, but __nvme_alloc_host_mem could\nbreak out of the loop earlier on memory allocation failure and end up\nusing less descriptors than planned for, which leads to an incorrect\nsize passed to dma_free_coherent.\n\nIn practice this was not showing up because the number of descriptors\ntends to be low and the dma coherent allocator always allocates and\nfrees at least a page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56756",
"url": "https://www.suse.com/security/cve/CVE-2024-56756"
},
{
"category": "external",
"summary": "SUSE Bug 1234922 for CVE-2024-56756",
"url": "https://bugzilla.suse.com/1234922"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56756"
},
{
"cve": "CVE-2024-56759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free when COWing tree bock and tracing is enabled\n\nWhen a COWing a tree block, at btrfs_cow_block(), and we have the\ntracepoint trace_btrfs_cow_block() enabled and preemption is also enabled\n(CONFIG_PREEMPT=y), we can trigger a use-after-free in the COWed extent\nbuffer while inside the tracepoint code. This is because in some paths\nthat call btrfs_cow_block(), such as btrfs_search_slot(), we are holding\nthe last reference on the extent buffer @buf so btrfs_force_cow_block()\ndrops the last reference on the @buf extent buffer when it calls\nfree_extent_buffer_stale(buf), which schedules the release of the extent\nbuffer with RCU. This means that if we are on a kernel with preemption,\nthe current task may be preempted before calling trace_btrfs_cow_block()\nand the extent buffer already released by the time trace_btrfs_cow_block()\nis called, resulting in a use-after-free.\n\nFix this by moving the trace_btrfs_cow_block() from btrfs_cow_block() to\nbtrfs_force_cow_block() before the COWed extent buffer is freed.\nThis also has a side effect of invoking the tracepoint in the tree defrag\ncode, at defrag.c:btrfs_realloc_node(), since btrfs_force_cow_block() is\ncalled there, but this is fine and it was actually missing there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56759",
"url": "https://www.suse.com/security/cve/CVE-2024-56759"
},
{
"category": "external",
"summary": "SUSE Bug 1235645 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "external",
"summary": "SUSE Bug 1236569 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1236569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56759"
},
{
"cve": "CVE-2024-56760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/MSI: Handle lack of irqdomain gracefully\n\nAlexandre observed a warning emitted from pci_msi_setup_msi_irqs() on a\nRISCV platform which does not provide PCI/MSI support:\n\n WARNING: CPU: 1 PID: 1 at drivers/pci/msi/msi.h:121 pci_msi_setup_msi_irqs+0x2c/0x32\n __pci_enable_msix_range+0x30c/0x596\n pci_msi_setup_msi_irqs+0x2c/0x32\n pci_alloc_irq_vectors_affinity+0xb8/0xe2\n\nRISCV uses hierarchical interrupt domains and correctly does not implement\nthe legacy fallback. The warning triggers from the legacy fallback stub.\n\nThat warning is bogus as the PCI/MSI layer knows whether a PCI/MSI parent\ndomain is associated with the device or not. There is a check for MSI-X,\nwhich has a legacy assumption. But that legacy fallback assumption is only\nvalid when legacy support is enabled, but otherwise the check should simply\nreturn -ENOTSUPP.\n\nLoongarch tripped over the same problem and blindly enabled legacy support\nwithout implementing the legacy fallbacks. There are weak implementations\nwhich return an error, so the problem was papered over.\n\nCorrect pci_msi_domain_supports() to evaluate the legacy mode and add\nthe missing supported check into the MSI enable path to complete it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56760",
"url": "https://www.suse.com/security/cve/CVE-2024-56760"
},
{
"category": "external",
"summary": "SUSE Bug 1235616 for CVE-2024-56760",
"url": "https://bugzilla.suse.com/1235616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56760"
},
{
"cve": "CVE-2024-56763",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56763"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Prevent bad count for tracing_cpumask_write\n\nIf a large count is provided, it will trigger a warning in bitmap_parse_user.\nAlso check zero for it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56763",
"url": "https://www.suse.com/security/cve/CVE-2024-56763"
},
{
"category": "external",
"summary": "SUSE Bug 1235638 for CVE-2024-56763",
"url": "https://bugzilla.suse.com/1235638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56763"
},
{
"cve": "CVE-2024-56765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries/vas: Add close() callback in vas_vm_ops struct\n\nThe mapping VMA address is saved in VAS window struct when the\npaste address is mapped. This VMA address is used during migration\nto unmap the paste address if the window is active. The paste\naddress mapping will be removed when the window is closed or with\nthe munmap(). But the VMA address in the VAS window is not updated\nwith munmap() which is causing invalid access during migration.\n\nThe KASAN report shows:\n[16386.254991] BUG: KASAN: slab-use-after-free in reconfig_close_windows+0x1a0/0x4e8\n[16386.255043] Read of size 8 at addr c00000014a819670 by task drmgr/696928\n\n[16386.255096] CPU: 29 UID: 0 PID: 696928 Comm: drmgr Kdump: loaded Tainted: G B 6.11.0-rc5-nxgzip #2\n[16386.255128] Tainted: [B]=BAD_PAGE\n[16386.255148] Hardware name: IBM,9080-HEX Power11 (architected) 0x820200 0xf000007 of:IBM,FW1110.00 (NH1110_016) hv:phyp pSeries\n[16386.255181] Call Trace:\n[16386.255202] [c00000016b297660] [c0000000018ad0ac] dump_stack_lvl+0x84/0xe8 (unreliable)\n[16386.255246] [c00000016b297690] [c0000000006e8a90] print_report+0x19c/0x764\n[16386.255285] [c00000016b297760] [c0000000006e9490] kasan_report+0x128/0x1f8\n[16386.255309] [c00000016b297880] [c0000000006eb5c8] __asan_load8+0xac/0xe0\n[16386.255326] [c00000016b2978a0] [c00000000013f898] reconfig_close_windows+0x1a0/0x4e8\n[16386.255343] [c00000016b297990] [c000000000140e58] vas_migration_handler+0x3a4/0x3fc\n[16386.255368] [c00000016b297a90] [c000000000128848] pseries_migrate_partition+0x4c/0x4c4\n...\n\n[16386.256136] Allocated by task 696554 on cpu 31 at 16377.277618s:\n[16386.256149] kasan_save_stack+0x34/0x68\n[16386.256163] kasan_save_track+0x34/0x80\n[16386.256175] kasan_save_alloc_info+0x58/0x74\n[16386.256196] __kasan_slab_alloc+0xb8/0xdc\n[16386.256209] kmem_cache_alloc_noprof+0x200/0x3d0\n[16386.256225] vm_area_alloc+0x44/0x150\n[16386.256245] mmap_region+0x214/0x10c4\n[16386.256265] do_mmap+0x5fc/0x750\n[16386.256277] vm_mmap_pgoff+0x14c/0x24c\n[16386.256292] ksys_mmap_pgoff+0x20c/0x348\n[16386.256303] sys_mmap+0xd0/0x160\n...\n\n[16386.256350] Freed by task 0 on cpu 31 at 16386.204848s:\n[16386.256363] kasan_save_stack+0x34/0x68\n[16386.256374] kasan_save_track+0x34/0x80\n[16386.256384] kasan_save_free_info+0x64/0x10c\n[16386.256396] __kasan_slab_free+0x120/0x204\n[16386.256415] kmem_cache_free+0x128/0x450\n[16386.256428] vm_area_free_rcu_cb+0xa8/0xd8\n[16386.256441] rcu_do_batch+0x2c8/0xcf0\n[16386.256458] rcu_core+0x378/0x3c4\n[16386.256473] handle_softirqs+0x20c/0x60c\n[16386.256495] do_softirq_own_stack+0x6c/0x88\n[16386.256509] do_softirq_own_stack+0x58/0x88\n[16386.256521] __irq_exit_rcu+0x1a4/0x20c\n[16386.256533] irq_exit+0x20/0x38\n[16386.256544] interrupt_async_exit_prepare.constprop.0+0x18/0x2c\n...\n\n[16386.256717] Last potentially related work creation:\n[16386.256729] kasan_save_stack+0x34/0x68\n[16386.256741] __kasan_record_aux_stack+0xcc/0x12c\n[16386.256753] __call_rcu_common.constprop.0+0x94/0xd04\n[16386.256766] vm_area_free+0x28/0x3c\n[16386.256778] remove_vma+0xf4/0x114\n[16386.256797] do_vmi_align_munmap.constprop.0+0x684/0x870\n[16386.256811] __vm_munmap+0xe0/0x1f8\n[16386.256821] sys_munmap+0x54/0x6c\n[16386.256830] system_call_exception+0x1a0/0x4a0\n[16386.256841] system_call_vectored_common+0x15c/0x2ec\n\n[16386.256868] The buggy address belongs to the object at c00000014a819670\n which belongs to the cache vm_area_struct of size 168\n[16386.256887] The buggy address is located 0 bytes inside of\n freed 168-byte region [c00000014a819670, c00000014a819718)\n\n[16386.256915] The buggy address belongs to the physical page:\n[16386.256928] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14a81\n[16386.256950] memcg:c0000000ba430001\n[16386.256961] anon flags: 0x43ffff800000000(node=4|zone=0|lastcpupid=0x7ffff)\n[16386.256975] page_type: 0xfdffffff(slab)\n[16386\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56765",
"url": "https://www.suse.com/security/cve/CVE-2024-56765"
},
{
"category": "external",
"summary": "SUSE Bug 1235643 for CVE-2024-56765",
"url": "https://bugzilla.suse.com/1235643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56765"
},
{
"cve": "CVE-2024-56766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: fix double free in atmel_pmecc_create_user()\n\nThe \"user\" pointer was converted from being allocated with kzalloc() to\nbeing allocated by devm_kzalloc(). Calling kfree(user) will lead to a\ndouble free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56766",
"url": "https://www.suse.com/security/cve/CVE-2024-56766"
},
{
"category": "external",
"summary": "SUSE Bug 1235219 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "external",
"summary": "SUSE Bug 1240426 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1240426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-56766"
},
{
"cve": "CVE-2024-56767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset\n\nThe at_xdmac_memset_create_desc may return NULL, which will lead to a\nnull pointer dereference. For example, the len input is error, or the\natchan-\u003efree_descs_list is empty and memory is exhausted. Therefore, add\ncheck to avoid this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56767",
"url": "https://www.suse.com/security/cve/CVE-2024-56767"
},
{
"category": "external",
"summary": "SUSE Bug 1235160 for CVE-2024-56767",
"url": "https://bugzilla.suse.com/1235160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56767"
},
{
"cve": "CVE-2024-56769",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56769"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg\n\nSyzbot reports [1] an uninitialized value issue found by KMSAN in\ndib3000_read_reg().\n\nLocal u8 rb[2] is used in i2c_transfer() as a read buffer; in case\nthat call fails, the buffer may end up with some undefined values.\n\nSince no elaborate error handling is expected in dib3000_write_reg(),\nsimply zero out rb buffer to mitigate the problem.\n\n[1] Syzkaller report\ndvb-usb: bulk message failed: -22 (6/0)\n=====================================================\nBUG: KMSAN: uninit-value in dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dibusb_dib3000mb_frontend_attach+0x155/0x2f0 drivers/media/usb/dvb-usb/dibusb-mb.c:31\n dvb_usb_adapter_frontend_init+0xed/0x9a0 drivers/media/usb/dvb-usb/dvb-usb-dvb.c:290\n dvb_usb_adapter_init drivers/media/usb/dvb-usb/dvb-usb-init.c:90 [inline]\n dvb_usb_init drivers/media/usb/dvb-usb/dvb-usb-init.c:186 [inline]\n dvb_usb_device_init+0x25a8/0x3760 drivers/media/usb/dvb-usb/dvb-usb-init.c:310\n dibusb_probe+0x46/0x250 drivers/media/usb/dvb-usb/dibusb-mb.c:110\n...\nLocal variable rb created at:\n dib3000_read_reg+0x86/0x4e0 drivers/media/dvb-frontends/dib3000mb.c:54\n dib3000mb_attach+0x123/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56769",
"url": "https://www.suse.com/security/cve/CVE-2024-56769"
},
{
"category": "external",
"summary": "SUSE Bug 1235155 for CVE-2024-56769",
"url": "https://bugzilla.suse.com/1235155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56769"
},
{
"cve": "CVE-2024-56774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: add a sanity check for btrfs root in btrfs_search_slot()\n\nSyzbot reports a null-ptr-deref in btrfs_search_slot().\n\nThe reproducer is using rescue=ibadroots, and the extent tree root is\ncorrupted thus the extent tree is NULL.\n\nWhen scrub tries to search the extent tree to gather the needed extent\ninfo, btrfs_search_slot() doesn\u0027t check if the target root is NULL or\nnot, resulting the null-ptr-deref.\n\nAdd sanity check for btrfs root before using it in btrfs_search_slot().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56774",
"url": "https://www.suse.com/security/cve/CVE-2024-56774"
},
{
"category": "external",
"summary": "SUSE Bug 1235653 for CVE-2024-56774",
"url": "https://bugzilla.suse.com/1235653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56774"
},
{
"cve": "CVE-2024-56775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix handling of plane refcount\n\n[Why]\nThe mechanism to backup and restore plane states doesn\u0027t maintain\nrefcount, which can cause issues if the refcount of the plane changes\nin between backup and restore operations, such as memory leaks if the\nrefcount was supposed to go down, or double frees / invalid memory\naccesses if the refcount was supposed to go up.\n\n[How]\nCache and re-apply current refcount when restoring plane states.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56775",
"url": "https://www.suse.com/security/cve/CVE-2024-56775"
},
{
"category": "external",
"summary": "SUSE Bug 1235657 for CVE-2024-56775",
"url": "https://bugzilla.suse.com/1235657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56775"
},
{
"cve": "CVE-2024-56776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56776",
"url": "https://www.suse.com/security/cve/CVE-2024-56776"
},
{
"category": "external",
"summary": "SUSE Bug 1235647 for CVE-2024-56776",
"url": "https://bugzilla.suse.com/1235647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56776"
},
{
"cve": "CVE-2024-56777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56777",
"url": "https://www.suse.com/security/cve/CVE-2024-56777"
},
{
"category": "external",
"summary": "SUSE Bug 1235641 for CVE-2024-56777",
"url": "https://bugzilla.suse.com/1235641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56777"
},
{
"cve": "CVE-2024-56778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56778",
"url": "https://www.suse.com/security/cve/CVE-2024-56778"
},
{
"category": "external",
"summary": "SUSE Bug 1235635 for CVE-2024-56778",
"url": "https://bugzilla.suse.com/1235635"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56778"
},
{
"cve": "CVE-2024-56779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56779"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur\n\nThe action force umount(umount -f) will attempt to kill all rpc_task even\numount operation may ultimately fail if some files remain open.\nConsequently, if an action attempts to open a file, it can potentially\nsend two rpc_task to nfs server.\n\n NFS CLIENT\nthread1 thread2\nopen(\"file\")\n...\nnfs4_do_open\n _nfs4_do_open\n _nfs4_open_and_get_state\n _nfs4_proc_open\n nfs4_run_open_task\n /* rpc_task1 */\n rpc_run_task\n rpc_wait_for_completion_task\n\n umount -f\n nfs_umount_begin\n rpc_killall_tasks\n rpc_signal_task\n rpc_task1 been wakeup\n and return -512\n _nfs4_do_open // while loop\n ...\n nfs4_run_open_task\n /* rpc_task2 */\n rpc_run_task\n rpc_wait_for_completion_task\n\nWhile processing an open request, nfsd will first attempt to find or\nallocate an nfs4_openowner. If it finds an nfs4_openowner that is not\nmarked as NFS4_OO_CONFIRMED, this nfs4_openowner will released. Since\ntwo rpc_task can attempt to open the same file simultaneously from the\nclient to server, and because two instances of nfsd can run\nconcurrently, this situation can lead to lots of memory leak.\nAdditionally, when we echo 0 to /proc/fs/nfsd/threads, warning will be\ntriggered.\n\n NFS SERVER\nnfsd1 nfsd2 echo 0 \u003e /proc/fs/nfsd/threads\n\nnfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // alloc oo1, stateid1\n nfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // find oo1, without NFS4_OO_CONFIRMED\n release_openowner\n unhash_openowner_locked\n list_del_init(\u0026oo-\u003eoo_perclient)\n // cannot find this oo\n // from client, LEAK!!!\n alloc_stateowner // alloc oo2\n\n nfsd4_process_open2\n init_open_stateid\n // associate oo1\n // with stateid1, stateid1 LEAK!!!\n nfs4_get_vfs_file\n // alloc nfsd_file1 and nfsd_file_mark1\n // all LEAK!!!\n\n nfsd4_process_open2\n ...\n\n write_threads\n ...\n nfsd_destroy_serv\n nfsd_shutdown_net\n nfs4_state_shutdown_net\n nfs4_state_destroy_net\n destroy_client\n __destroy_client\n // won\u0027t find oo1!!!\n nfsd_shutdown_generic\n nfsd_file_cache_shutdown\n kmem_cache_destroy\n for nfsd_file_slab\n and nfsd_file_mark_slab\n // bark since nfsd_file1\n // and nfsd_file_mark1\n // still alive\n\n=======================================================================\nBUG nfsd_file (Not tainted): Objects remaining in nfsd_file on\n__kmem_cache_shutdown()\n-----------------------------------------------------------------------\n\nSlab 0xffd4000004438a80 objects=34 used=1 fp=0xff11000110e2ad28\nflags=0x17ffffc0000240(workingset|head|node=0|zone=2|lastcpupid=0x1fffff)\nCPU: 4 UID: 0 PID: 757 Comm: sh Not tainted 6.12.0-rc6+ #19\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dum\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56779",
"url": "https://www.suse.com/security/cve/CVE-2024-56779"
},
{
"category": "external",
"summary": "SUSE Bug 1235632 for CVE-2024-56779",
"url": "https://bugzilla.suse.com/1235632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56779"
},
{
"cve": "CVE-2024-56780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: flush quota_release_work upon quota writeback\n\nOne of the paths quota writeback is called from is:\n\nfreeze_super()\n sync_filesystem()\n ext4_sync_fs()\n dquot_writeback_dquots()\n\nSince we currently don\u0027t always flush the quota_release_work queue in\nthis path, we can end up with the following race:\n\n 1. dquot are added to releasing_dquots list during regular operations.\n 2. FS Freeze starts, however, this does not flush the quota_release_work queue.\n 3. Freeze completes.\n 4. Kernel eventually tries to flush the workqueue while FS is frozen which\n hits a WARN_ON since transaction gets started during frozen state:\n\n ext4_journal_check_start+0x28/0x110 [ext4] (unreliable)\n __ext4_journal_start_sb+0x64/0x1c0 [ext4]\n ext4_release_dquot+0x90/0x1d0 [ext4]\n quota_release_workfn+0x43c/0x4d0\n\nWhich is the following line:\n\n WARN_ON(sb-\u003es_writers.frozen == SB_FREEZE_COMPLETE);\n\nWhich ultimately results in generic/390 failing due to dmesg\nnoise. This was detected on powerpc machine 15 cores.\n\nTo avoid this, make sure to flush the workqueue during\ndquot_writeback_dquots() so we dont have any pending workitems after\nfreeze.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56780",
"url": "https://www.suse.com/security/cve/CVE-2024-56780"
},
{
"category": "external",
"summary": "SUSE Bug 1235650 for CVE-2024-56780",
"url": "https://bugzilla.suse.com/1235650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56780"
},
{
"cve": "CVE-2024-56787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: imx8m: Probe the SoC driver as platform driver\n\nWith driver_async_probe=* on kernel command line, the following trace is\nproduced because on i.MX8M Plus hardware because the soc-imx8m.c driver\ncalls of_clk_get_by_name() which returns -EPROBE_DEFER because the clock\ndriver is not yet probed. This was not detected during regular testing\nwithout driver_async_probe.\n\nConvert the SoC code to platform driver and instantiate a platform device\nin its current device_initcall() to probe the platform driver. Rework\n.soc_revision callback to always return valid error code and return SoC\nrevision via parameter. This way, if anything in the .soc_revision callback\nreturn -EPROBE_DEFER, it gets propagated to .probe and the .probe will get\nretried later.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 1 at drivers/soc/imx/soc-imx8m.c:115 imx8mm_soc_revision+0xdc/0x180\nCPU: 1 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.11.0-next-20240924-00002-g2062bb554dea #603\nHardware name: DH electronics i.MX8M Plus DHCOM Premium Developer Kit (3) (DT)\npstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : imx8mm_soc_revision+0xdc/0x180\nlr : imx8mm_soc_revision+0xd0/0x180\nsp : ffff8000821fbcc0\nx29: ffff8000821fbce0 x28: 0000000000000000 x27: ffff800081810120\nx26: ffff8000818a9970 x25: 0000000000000006 x24: 0000000000824311\nx23: ffff8000817f42c8 x22: ffff0000df8be210 x21: fffffffffffffdfb\nx20: ffff800082780000 x19: 0000000000000001 x18: ffffffffffffffff\nx17: ffff800081fff418 x16: ffff8000823e1000 x15: ffff0000c03b65e8\nx14: ffff0000c00051b0 x13: ffff800082790000 x12: 0000000000000801\nx11: ffff80008278ffff x10: ffff80008209d3a6 x9 : ffff80008062e95c\nx8 : ffff8000821fb9a0 x7 : 0000000000000000 x6 : 00000000000080e3\nx5 : ffff0000df8c03d8 x4 : 0000000000000000 x3 : 0000000000000000\nx2 : 0000000000000000 x1 : fffffffffffffdfb x0 : fffffffffffffdfb\nCall trace:\n imx8mm_soc_revision+0xdc/0x180\n imx8_soc_init+0xb0/0x1e0\n do_one_initcall+0x94/0x1a8\n kernel_init_freeable+0x240/0x2a8\n kernel_init+0x28/0x140\n ret_from_fork+0x10/0x20\n---[ end trace 0000000000000000 ]---\nSoC: i.MX8MP revision 1.1\n\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56787",
"url": "https://www.suse.com/security/cve/CVE-2024-56787"
},
{
"category": "external",
"summary": "SUSE Bug 1235663 for CVE-2024-56787",
"url": "https://bugzilla.suse.com/1235663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-56787"
},
{
"cve": "CVE-2024-57791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: check return value of sock_recvmsg when draining clc data\n\nWhen receiving clc msg, the field length in smc_clc_msg_hdr indicates the\nlength of msg should be received from network and the value should not be\nfully trusted as it is from the network. Once the value of length exceeds\nthe value of buflen in function smc_clc_wait_msg it may run into deadloop\nwhen trying to drain the remaining data exceeding buflen.\n\nThis patch checks the return value of sock_recvmsg when draining data in\ncase of deadloop in draining.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57791",
"url": "https://www.suse.com/security/cve/CVE-2024-57791"
},
{
"category": "external",
"summary": "SUSE Bug 1235759 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "external",
"summary": "SUSE Bug 1235760 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57791"
},
{
"cve": "CVE-2024-57792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: gpio-charger: Fix set charge current limits\n\nFix set charge current limits for devices which allow to set the lowest\ncharge current limit to be greater zero. If requested charge current limit\nis below lowest limit, the index equals current_limit_map_size which leads\nto accessing memory beyond allocated memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57792",
"url": "https://www.suse.com/security/cve/CVE-2024-57792"
},
{
"category": "external",
"summary": "SUSE Bug 1235764 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "external",
"summary": "SUSE Bug 1236568 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1236568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57792"
},
{
"cve": "CVE-2024-57793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57793"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirt: tdx-guest: Just leak decrypted memory on unrecoverable errors\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_decrypted() to fail such that an error is returned\nand the resulting memory is shared. Callers need to take care\nto handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional\nor security issues.\n\nLeak the decrypted memory when set_memory_decrypted() fails,\nand don\u0027t need to print an error since set_memory_decrypted()\nwill call WARN_ONCE().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57793",
"url": "https://www.suse.com/security/cve/CVE-2024-57793"
},
{
"category": "external",
"summary": "SUSE Bug 1235768 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "external",
"summary": "SUSE Bug 1235769 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57793"
},
{
"cve": "CVE-2024-57795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Remove the direct link to net_device\n\nThe similar patch in siw is in the link:\nhttps://git.kernel.org/rdma/rdma/c/16b87037b48889\n\nThis problem also occurred in RXE. The following analyze this problem.\nIn the following Call Traces:\n\"\nBUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\nRead of size 4 at addr ffff8880554640b0 by task kworker/1:4/5295\n\nCPU: 1 UID: 0 PID: 5295 Comm: kworker/1:4 Not tainted\n6.12.0-rc3-syzkaller-00399-g9197b73fd7bb #0\nHardware name: Google Compute Engine/Google Compute Engine,\nBIOS Google 09/13/2024\nWorkqueue: infiniband ib_cache_event_task\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\n rxe_query_port+0x12d/0x260 drivers/infiniband/sw/rxe/rxe_verbs.c:60\n __ib_query_port drivers/infiniband/core/device.c:2111 [inline]\n ib_query_port+0x168/0x7d0 drivers/infiniband/core/device.c:2143\n ib_cache_update+0x1a9/0xb80 drivers/infiniband/core/cache.c:1494\n ib_cache_event_task+0xf3/0x1e0 drivers/infiniband/core/cache.c:1568\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa65/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f2/0x390 kernel/kthread.c:389\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\"\n\n1). In the link [1],\n\n\"\n infiniband syz2: set down\n\"\n\nThis means that on 839.350575, the event ib_cache_event_task was sent andi\nqueued in ib_wq.\n\n2). In the link [1],\n\n\"\n team0 (unregistering): Port device team_slave_0 removed\n\"\n\nIt indicates that before 843.251853, the net device should be freed.\n\n3). In the link [1],\n\n\"\n BUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0\n\"\n\nThis means that on 850.559070, this slab-use-after-free problem occurred.\n\nIn all, on 839.350575, the event ib_cache_event_task was sent and queued\nin ib_wq,\n\nbefore 843.251853, the net device veth was freed.\n\non 850.559070, this event was executed, and the mentioned freed net device\nwas called. Thus, the above call trace occurred.\n\n[1] https://syzkaller.appspot.com/x/log.txt?x=12e7025f980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57795",
"url": "https://www.suse.com/security/cve/CVE-2024-57795"
},
{
"category": "external",
"summary": "SUSE Bug 1235906 for CVE-2024-57795",
"url": "https://bugzilla.suse.com/1235906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57795"
},
{
"cve": "CVE-2024-57798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()\n\nWhile receiving an MST up request message from one thread in\ndrm_dp_mst_handle_up_req(), the MST topology could be removed from\nanother thread via drm_dp_mst_topology_mgr_set_mst(false), freeing\nmst_primary and setting drm_dp_mst_topology_mgr::mst_primary to NULL.\nThis could lead to a NULL deref/use-after-free of mst_primary in\ndrm_dp_mst_handle_up_req().\n\nAvoid the above by holding a reference for mst_primary in\ndrm_dp_mst_handle_up_req() while it\u0027s used.\n\nv2: Fix kfreeing the request if getting an mst_primary reference fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57798",
"url": "https://www.suse.com/security/cve/CVE-2024-57798"
},
{
"category": "external",
"summary": "SUSE Bug 1235818 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "external",
"summary": "SUSE Bug 1235819 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57798"
},
{
"cve": "CVE-2024-57801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Skip restore TC rules for vport rep without loaded flag\n\nDuring driver unload, unregister_netdev is called after unloading\nvport rep. So, the mlx5e_rep_priv is already freed while trying to get\nrpriv-\u003enetdev, or walk rpriv-\u003etc_ht, which results in use-after-free.\nSo add the checking to make sure access the data of vport rep which is\nstill loaded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57801",
"url": "https://www.suse.com/security/cve/CVE-2024-57801"
},
{
"category": "external",
"summary": "SUSE Bug 1235940 for CVE-2024-57801",
"url": "https://bugzilla.suse.com/1235940"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57801"
},
{
"cve": "CVE-2024-57802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetrom: check buffer length before accessing it\n\nSyzkaller reports an uninit value read from ax25cmp when sending raw message\nthrough ieee802154 implementation.\n\n=====================================================\nBUG: KMSAN: uninit-value in ax25cmp+0x3a5/0x460 net/ax25/ax25_addr.c:119\n ax25cmp+0x3a5/0x460 net/ax25/ax25_addr.c:119\n nr_dev_get+0x20e/0x450 net/netrom/nr_route.c:601\n nr_route_frame+0x1a2/0xfc0 net/netrom/nr_route.c:774\n nr_xmit+0x5a/0x1c0 net/netrom/nr_dev.c:144\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n __dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n raw_sendmsg+0x654/0xc10 net/ieee802154/socket.c:299\n ieee802154_sock_sendmsg+0x91/0xc0 net/ieee802154/socket.c:96\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n __sys_sendmsg net/socket.c:2667 [inline]\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x5e9/0xb10 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x318/0x740 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1286 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6334\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2780\n sock_alloc_send_skb include/net/sock.h:1884 [inline]\n raw_sendmsg+0x36d/0xc10 net/ieee802154/socket.c:282\n ieee802154_sock_sendmsg+0x91/0xc0 net/ieee802154/socket.c:96\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n __sys_sendmsg net/socket.c:2667 [inline]\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nCPU: 0 PID: 5037 Comm: syz-executor166 Not tainted 6.7.0-rc7-syzkaller-00003-gfbafc3e621c3 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023\n=====================================================\n\nThis issue occurs because the skb buffer is too small, and it\u0027s actual\nallocation is aligned. This hides an actual issue, which is that nr_route_frame\ndoes not validate the buffer size before using it.\n\nFix this issue by checking skb-\u003elen before accessing any fields in skb-\u003edata.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57802",
"url": "https://www.suse.com/security/cve/CVE-2024-57802"
},
{
"category": "external",
"summary": "SUSE Bug 1235941 for CVE-2024-57802",
"url": "https://bugzilla.suse.com/1235941"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57802"
},
{
"cve": "CVE-2024-57804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs\n\nThe driver, through the SAS transport, exposes a sysfs interface to\nenable/disable PHYs in a controller/expander setup. When multiple PHYs\nare disabled and enabled in rapid succession, the persistent and current\nconfig pages related to SAS IO unit/SAS Expander pages could get\ncorrupted.\n\nUse separate memory for each config request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57804",
"url": "https://www.suse.com/security/cve/CVE-2024-57804"
},
{
"category": "external",
"summary": "SUSE Bug 1235779 for CVE-2024-57804",
"url": "https://bugzilla.suse.com/1235779"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57804"
},
{
"cve": "CVE-2024-57809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: imx6: Fix suspend/resume support on i.MX6QDL\n\nThe suspend/resume functionality is currently broken on the i.MX6QDL\nplatform, as documented in the NXP errata (ERR005723):\n\n https://www.nxp.com/docs/en/errata/IMX6DQCE.pdf\n\nThis patch addresses the issue by sharing most of the suspend/resume\nsequences used by other i.MX devices, while avoiding modifications to\ncritical registers that disrupt the PCIe functionality. It targets the\nsame problem as the following downstream commit:\n\n https://github.com/nxp-imx/linux-imx/commit/4e92355e1f79d225ea842511fcfd42b343b32995\n\nUnlike the downstream commit, this patch also resets the connected PCIe\ndevice if possible. Without this reset, certain drivers, such as ath10k\nor iwlwifi, will crash on resume. The device reset is also done by the\ndriver on other i.MX platforms, making this patch consistent with\nexisting practices.\n\nUpon resuming, the kernel will hang and display an error. Here\u0027s an\nexample of the error encountered with the ath10k driver:\n\n ath10k_pci 0000:01:00.0: Unable to change power state from D3hot to D0, device inaccessible\n Unhandled fault: imprecise external abort (0x1406) at 0x0106f944\n\nWithout this patch, suspend/resume will fail on i.MX6QDL devices if a\nPCIe device is connected.\n\n[kwilczynski: commit log, added tag for stable releases]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57809",
"url": "https://www.suse.com/security/cve/CVE-2024-57809"
},
{
"category": "external",
"summary": "SUSE Bug 1235793 for CVE-2024-57809",
"url": "https://bugzilla.suse.com/1235793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57809"
},
{
"cve": "CVE-2024-57838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57838"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/entry: Mark IRQ entries to fix stack depot warnings\n\nThe stack depot filters out everything outside of the top interrupt\ncontext as an uninteresting or irrelevant part of the stack traces. This\nhelps with stack trace de-duplication, avoiding an explosion of saved\nstack traces that share the same IRQ context code path but originate\nfrom different randomly interrupted points, eventually exhausting the\nstack depot.\n\nFiltering uses in_irqentry_text() to identify functions within the\n.irqentry.text and .softirqentry.text sections, which then become the\nlast stack trace entries being saved.\n\nWhile __do_softirq() is placed into the .softirqentry.text section by\ncommon code, populating .irqentry.text is architecture-specific.\n\nCurrently, the .irqentry.text section on s390 is empty, which prevents\nstack depot filtering and de-duplication and could result in warnings\nlike:\n\nStack depot reached limit capacity\nWARNING: CPU: 0 PID: 286113 at lib/stackdepot.c:252 depot_alloc_stack+0x39a/0x3c8\n\nwith PREEMPT and KASAN enabled.\n\nFix this by moving the IO/EXT interrupt handlers from .kprobes.text into\nthe .irqentry.text section and updating the kprobes blacklist to include\nthe .irqentry.text section.\n\nThis is done only for asynchronous interrupts and explicitly not for\nprogram checks, which are synchronous and where the context beyond the\nprogram check is important to preserve. Despite machine checks being\nsomewhat in between, they are extremely rare, and preserving context\nwhen possible is also of value.\n\nSVCs and Restart Interrupts are not relevant, one being always at the\nboundary to user space and the other being a one-time thing.\n\nIRQ entries filtering is also optionally used in ftrace function graph,\nwhere the same logic applies.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57838",
"url": "https://www.suse.com/security/cve/CVE-2024-57838"
},
{
"category": "external",
"summary": "SUSE Bug 1235798 for CVE-2024-57838",
"url": "https://bugzilla.suse.com/1235798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57838"
},
{
"cve": "CVE-2024-57849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57849"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/cpum_sf: Handle CPU hotplug remove during sampling\n\nCPU hotplug remove handling triggers the following function\ncall sequence:\n\n CPUHP_AP_PERF_S390_SF_ONLINE --\u003e s390_pmu_sf_offline_cpu()\n ...\n CPUHP_AP_PERF_ONLINE --\u003e perf_event_exit_cpu()\n\nThe s390 CPUMF sampling CPU hotplug handler invokes:\n\n s390_pmu_sf_offline_cpu()\n +--\u003e cpusf_pmu_setup()\n +--\u003e setup_pmc_cpu()\n +--\u003e deallocate_buffers()\n\nThis function de-allocates all sampling data buffers (SDBs) allocated\nfor that CPU at event initialization. It also clears the\nPMU_F_RESERVED bit. The CPU is gone and can not be sampled.\n\nWith the event still being active on the removed CPU, the CPU event\nhotplug support in kernel performance subsystem triggers the\nfollowing function calls on the removed CPU:\n\n perf_event_exit_cpu()\n +--\u003e perf_event_exit_cpu_context()\n +--\u003e __perf_event_exit_context()\n\t +--\u003e __perf_remove_from_context()\n\t +--\u003e event_sched_out()\n\t +--\u003e cpumsf_pmu_del()\n\t +--\u003e cpumsf_pmu_stop()\n +--\u003e hw_perf_event_update()\n\nto stop and remove the event. During removal of the event, the\nsampling device driver tries to read out the remaining samples from\nthe sample data buffers (SDBs). But they have already been freed\n(and may have been re-assigned). This may lead to a use after free\nsituation in which case the samples are most likely invalid. In the\nbest case the memory has not been reassigned and still contains\nvalid data.\n\nRemedy this situation and check if the CPU is still in reserved\nstate (bit PMU_F_RESERVED set). In this case the SDBs have not been\nreleased an contain valid data. This is always the case when\nthe event is removed (and no CPU hotplug off occured).\nIf the PMU_F_RESERVED bit is not set, the SDB buffers are gone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57849",
"url": "https://www.suse.com/security/cve/CVE-2024-57849"
},
{
"category": "external",
"summary": "SUSE Bug 1235814 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "external",
"summary": "SUSE Bug 1235815 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57849"
},
{
"cve": "CVE-2024-57850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njffs2: Prevent rtime decompress memory corruption\n\nThe rtime decompression routine does not fully check bounds during the\nentirety of the decompression pass and can corrupt memory outside the\ndecompression buffer if the compressed data is corrupted. This adds the\nrequired check to prevent this failure mode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57850",
"url": "https://www.suse.com/security/cve/CVE-2024-57850"
},
{
"category": "external",
"summary": "SUSE Bug 1235812 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "external",
"summary": "SUSE Bug 1235813 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57850"
},
{
"cve": "CVE-2024-57857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/siw: Remove direct link to net_device\n\nDo not manage a per device direct link to net_device. Rely\non associated ib_devices net_device management, not doubling\nthe effort locally. A badly managed local link to net_device\nwas causing a \u0027KASAN: slab-use-after-free\u0027 exception during\nsiw_query_port() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57857",
"url": "https://www.suse.com/security/cve/CVE-2024-57857"
},
{
"category": "external",
"summary": "SUSE Bug 1235946 for CVE-2024-57857",
"url": "https://bugzilla.suse.com/1235946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57857"
},
{
"cve": "CVE-2024-57874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57874"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL\n\nCurrently tagged_addr_ctrl_set() doesn\u0027t initialize the temporary \u0027ctrl\u0027\nvariable, and a SETREGSET call with a length of zero will leave this\nuninitialized. Consequently tagged_addr_ctrl_set() will consume an\narbitrary value, potentially leaking up to 64 bits of memory from the\nkernel stack. The read is limited to a specific slot on the stack, and\nthe issue does not provide a write mechanism.\n\nAs set_tagged_addr_ctrl() only accepts values where bits [63:4] zero and\nrejects other values, a partial SETREGSET attempt will randomly succeed\nor fail depending on the value of the uninitialized value, and the\nexposure is significantly limited.\n\nFix this by initializing the temporary value before copying the regset\nfrom userspace, as for other regsets (e.g. NT_PRSTATUS, NT_PRFPREG,\nNT_ARM_SYSTEM_CALL). In the case of a zero-length write, the existing\nvalue of the tagged address ctrl will be retained.\n\nThe NT_ARM_TAGGED_ADDR_CTRL regset is only visible in the\nuser_aarch64_view used by a native AArch64 task to manipulate another\nnative AArch64 task. As get_tagged_addr_ctrl() only returns an error\nvalue when called for a compat task, tagged_addr_ctrl_get() and\ntagged_addr_ctrl_set() should never observe an error value from\nget_tagged_addr_ctrl(). Add a WARN_ON_ONCE() to both to indicate that\nsuch an error would be unexpected, and error handlnig is not missing in\neither case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57874",
"url": "https://www.suse.com/security/cve/CVE-2024-57874"
},
{
"category": "external",
"summary": "SUSE Bug 1235808 for CVE-2024-57874",
"url": "https://bugzilla.suse.com/1235808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-57874"
},
{
"cve": "CVE-2024-57876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57876"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix resetting msg rx state after topology removal\n\nIf the MST topology is removed during the reception of an MST down reply\nor MST up request sideband message, the\ndrm_dp_mst_topology_mgr::up_req_recv/down_rep_recv states could be reset\nfrom one thread via drm_dp_mst_topology_mgr_set_mst(false), racing with\nthe reading/parsing of the message from another thread via\ndrm_dp_mst_handle_down_rep() or drm_dp_mst_handle_up_req(). The race is\npossible since the reader/parser doesn\u0027t hold any lock while accessing\nthe reception state. This in turn can lead to a memory corruption in the\nreader/parser as described by commit bd2fccac61b4 (\"drm/dp_mst: Fix MST\nsideband message body length check\").\n\nFix the above by resetting the message reception state if needed before\nreading/parsing a message. Another solution would be to hold the\ndrm_dp_mst_topology_mgr::lock for the whole duration of the message\nreception/parsing in drm_dp_mst_handle_down_rep() and\ndrm_dp_mst_handle_up_req(), however this would require a bigger change.\nSince the fix is also needed for stable, opting for the simpler solution\nin this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57876",
"url": "https://www.suse.com/security/cve/CVE-2024-57876"
},
{
"category": "external",
"summary": "SUSE Bug 1235806 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "external",
"summary": "SUSE Bug 1235807 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57876"
},
{
"cve": "CVE-2024-57884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim()\n\nThe task sometimes continues looping in throttle_direct_reclaim() because\nallow_direct_reclaim(pgdat) keeps returning false. \n\n #0 [ffff80002cb6f8d0] __switch_to at ffff8000080095ac\n #1 [ffff80002cb6f900] __schedule at ffff800008abbd1c\n #2 [ffff80002cb6f990] schedule at ffff800008abc50c\n #3 [ffff80002cb6f9b0] throttle_direct_reclaim at ffff800008273550\n #4 [ffff80002cb6fa20] try_to_free_pages at ffff800008277b68\n #5 [ffff80002cb6fae0] __alloc_pages_nodemask at ffff8000082c4660\n #6 [ffff80002cb6fc50] alloc_pages_vma at ffff8000082e4a98\n #7 [ffff80002cb6fca0] do_anonymous_page at ffff80000829f5a8\n #8 [ffff80002cb6fce0] __handle_mm_fault at ffff8000082a5974\n #9 [ffff80002cb6fd90] handle_mm_fault at ffff8000082a5bd4\n\nAt this point, the pgdat contains the following two zones:\n\n NODE: 4 ZONE: 0 ADDR: ffff00817fffe540 NAME: \"DMA32\"\n SIZE: 20480 MIN/LOW/HIGH: 11/28/45\n VM_STAT:\n NR_FREE_PAGES: 359\n NR_ZONE_INACTIVE_ANON: 18813\n NR_ZONE_ACTIVE_ANON: 0\n NR_ZONE_INACTIVE_FILE: 50\n NR_ZONE_ACTIVE_FILE: 0\n NR_ZONE_UNEVICTABLE: 0\n NR_ZONE_WRITE_PENDING: 0\n NR_MLOCK: 0\n NR_BOUNCE: 0\n NR_ZSPAGES: 0\n NR_FREE_CMA_PAGES: 0\n\n NODE: 4 ZONE: 1 ADDR: ffff00817fffec00 NAME: \"Normal\"\n SIZE: 8454144 PRESENT: 98304 MIN/LOW/HIGH: 68/166/264\n VM_STAT:\n NR_FREE_PAGES: 146\n NR_ZONE_INACTIVE_ANON: 94668\n NR_ZONE_ACTIVE_ANON: 3\n NR_ZONE_INACTIVE_FILE: 735\n NR_ZONE_ACTIVE_FILE: 78\n NR_ZONE_UNEVICTABLE: 0\n NR_ZONE_WRITE_PENDING: 0\n NR_MLOCK: 0\n NR_BOUNCE: 0\n NR_ZSPAGES: 0\n NR_FREE_CMA_PAGES: 0\n\nIn allow_direct_reclaim(), while processing ZONE_DMA32, the sum of\ninactive/active file-backed pages calculated in zone_reclaimable_pages()\nbased on the result of zone_page_state_snapshot() is zero. \n\nAdditionally, since this system lacks swap, the calculation of inactive/\nactive anonymous pages is skipped.\n\n crash\u003e p nr_swap_pages\n nr_swap_pages = $1937 = {\n counter = 0\n }\n\nAs a result, ZONE_DMA32 is deemed unreclaimable and skipped, moving on to\nthe processing of the next zone, ZONE_NORMAL, despite ZONE_DMA32 having\nfree pages significantly exceeding the high watermark.\n\nThe problem is that the pgdat-\u003ekswapd_failures hasn\u0027t been incremented.\n\n crash\u003e px ((struct pglist_data *) 0xffff00817fffe540)-\u003ekswapd_failures\n $1935 = 0x0\n\nThis is because the node deemed balanced. The node balancing logic in\nbalance_pgdat() evaluates all zones collectively. If one or more zones\n(e.g., ZONE_DMA32) have enough free pages to meet their watermarks, the\nentire node is deemed balanced. This causes balance_pgdat() to exit early\nbefore incrementing the kswapd_failures, as it considers the overall\nmemory state acceptable, even though some zones (like ZONE_NORMAL) remain\nunder significant pressure.\n\n\nThe patch ensures that zone_reclaimable_pages() includes free pages\n(NR_FREE_PAGES) in its calculation when no other reclaimable pages are\navailable (e.g., file-backed or anonymous pages). This change prevents\nzones like ZONE_DMA32, which have sufficient free pages, from being\nmistakenly deemed unreclaimable. By doing so, the patch ensures proper\nnode balancing, avoids masking pressure on other zones like ZONE_NORMAL,\nand prevents infinite loops in throttle_direct_reclaim() caused by\nallow_direct_reclaim(pgdat) repeatedly returning false.\n\n\nThe kernel hangs due to a task stuck in throttle_direct_reclaim(), caused\nby a node being incorrectly deemed balanced despite pressure in certain\nzones, such as ZONE_NORMAL. This issue arises from\nzone_reclaimable_pages\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57884",
"url": "https://www.suse.com/security/cve/CVE-2024-57884"
},
{
"category": "external",
"summary": "SUSE Bug 1235948 for CVE-2024-57884",
"url": "https://bugzilla.suse.com/1235948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57884"
},
{
"cve": "CVE-2024-57887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: adv7511: Fix use-after-free in adv7533_attach_dsi()\n\nThe host_node pointer was assigned and freed in adv7533_parse_dt(), and\nlater, adv7533_attach_dsi() uses the same. Fix this use-after-free issue\nby dropping of_node_put() in adv7533_parse_dt() and calling of_node_put()\nin error path of probe() and also in the remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57887",
"url": "https://www.suse.com/security/cve/CVE-2024-57887"
},
{
"category": "external",
"summary": "SUSE Bug 1235952 for CVE-2024-57887",
"url": "https://bugzilla.suse.com/1235952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57887"
},
{
"cve": "CVE-2024-57888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nworkqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker\n\nAfter commit\n746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")\namdgpu started seeing the following warning:\n\n [ ] workqueue: WQ_MEM_RECLAIM sdma0:drm_sched_run_job_work [gpu_sched] is flushing !WQ_MEM_RECLAIM events:amdgpu_device_delay_enable_gfx_off [amdgpu]\n...\n [ ] Workqueue: sdma0 drm_sched_run_job_work [gpu_sched]\n...\n [ ] Call Trace:\n [ ] \u003cTASK\u003e\n...\n [ ] ? check_flush_dependency+0xf5/0x110\n...\n [ ] cancel_delayed_work_sync+0x6e/0x80\n [ ] amdgpu_gfx_off_ctrl+0xab/0x140 [amdgpu]\n [ ] amdgpu_ring_alloc+0x40/0x50 [amdgpu]\n [ ] amdgpu_ib_schedule+0xf4/0x810 [amdgpu]\n [ ] ? drm_sched_run_job_work+0x22c/0x430 [gpu_sched]\n [ ] amdgpu_job_run+0xaa/0x1f0 [amdgpu]\n [ ] drm_sched_run_job_work+0x257/0x430 [gpu_sched]\n [ ] process_one_work+0x217/0x720\n...\n [ ] \u003c/TASK\u003e\n\nThe intent of the verifcation done in check_flush_depedency is to ensure\nforward progress during memory reclaim, by flagging cases when either a\nmemory reclaim process, or a memory reclaim work item is flushed from a\ncontext not marked as memory reclaim safe.\n\nThis is correct when flushing, but when called from the\ncancel(_delayed)_work_sync() paths it is a false positive because work is\neither already running, or will not be running at all. Therefore\ncancelling it is safe and we can relax the warning criteria by letting the\nhelper know of the calling context.\n\nReferences: 746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57888",
"url": "https://www.suse.com/security/cve/CVE-2024-57888"
},
{
"category": "external",
"summary": "SUSE Bug 1235918 for CVE-2024-57888",
"url": "https://bugzilla.suse.com/1235918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57888"
},
{
"cve": "CVE-2024-57890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/uverbs: Prevent integer overflow issue\n\nIn the expression \"cmd.wqe_size * cmd.wr_count\", both variables are u32\nvalues that come from the user so the multiplication can lead to integer\nwrapping. Then we pass the result to uverbs_request_next_ptr() which also\ncould potentially wrap. The \"cmd.sge_count * sizeof(struct ib_uverbs_sge)\"\nmultiplication can also overflow on 32bit systems although it\u0027s fine on\n64bit systems.\n\nThis patch does two things. First, I\u0027ve re-arranged the condition in\nuverbs_request_next_ptr() so that the use controlled variable \"len\" is on\none side of the comparison by itself without any math. Then I\u0027ve modified\nall the callers to use size_mul() for the multiplications.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57890",
"url": "https://www.suse.com/security/cve/CVE-2024-57890"
},
{
"category": "external",
"summary": "SUSE Bug 1235919 for CVE-2024-57890",
"url": "https://bugzilla.suse.com/1235919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57890"
},
{
"cve": "CVE-2024-57892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57892"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix slab-use-after-free due to dangling pointer dqi_priv\n\nWhen mounting ocfs2 and then remounting it as read-only, a\nslab-use-after-free occurs after the user uses a syscall to\nquota_getnextquota. Specifically, sb_dqinfo(sb, type)-\u003edqi_priv is the\ndangling pointer.\n\nDuring the remounting process, the pointer dqi_priv is freed but is never\nset as null leaving it to be accessed. Additionally, the read-only option\nfor remounting sets the DQUOT_SUSPENDED flag instead of setting the\nDQUOT_USAGE_ENABLED flags. Moreover, later in the process of getting the\nnext quota, the function ocfs2_get_next_id is called and only checks the\nquota usage flags and not the quota suspended flags.\n\nTo fix this, I set dqi_priv to null when it is freed after remounting with\nread-only and put a check for DQUOT_SUSPENDED in ocfs2_get_next_id.\n\n[akpm@linux-foundation.org: coding-style cleanups]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57892",
"url": "https://www.suse.com/security/cve/CVE-2024-57892"
},
{
"category": "external",
"summary": "SUSE Bug 1235964 for CVE-2024-57892",
"url": "https://bugzilla.suse.com/1235964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57892"
},
{
"cve": "CVE-2024-57893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: oss: Fix races at processing SysEx messages\n\nOSS sequencer handles the SysEx messages split in 6 bytes packets, and\nALSA sequencer OSS layer tries to combine those. It stores the data\nin the internal buffer and this access is racy as of now, which may\nlead to the out-of-bounds access.\n\nAs a temporary band-aid fix, introduce a mutex for serializing the\nprocess of the SysEx message packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57893",
"url": "https://www.suse.com/security/cve/CVE-2024-57893"
},
{
"category": "external",
"summary": "SUSE Bug 1235920 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "external",
"summary": "SUSE Bug 1235921 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57893"
},
{
"cve": "CVE-2024-57896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: flush delalloc workers queue before stopping cleaner kthread during unmount\n\nDuring the unmount path, at close_ctree(), we first stop the cleaner\nkthread, using kthread_stop() which frees the associated task_struct, and\nthen stop and destroy all the work queues. However after we stopped the\ncleaner we may still have a worker from the delalloc_workers queue running\ninode.c:submit_compressed_extents(), which calls btrfs_add_delayed_iput(),\nwhich in turn tries to wake up the cleaner kthread - which was already\ndestroyed before, resulting in a use-after-free on the task_struct.\n\nSyzbot reported this with the following stack traces:\n\n BUG: KASAN: slab-use-after-free in __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n Read of size 8 at addr ffff8880259d2818 by task kworker/u8:3/52\n\n CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Workqueue: btrfs-delalloc btrfs_work_helper\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5849\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xd5/0x120 kernel/locking/spinlock.c:162\n class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:551 [inline]\n try_to_wake_up+0xc2/0x1470 kernel/sched/core.c:4205\n submit_compressed_extents+0xdf/0x16e0 fs/btrfs/inode.c:1615\n run_ordered_work fs/btrfs/async-thread.c:288 [inline]\n btrfs_work_helper+0x96f/0xc40 fs/btrfs/async-thread.c:324\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa66/0x1840 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\n Allocated by task 2:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:319 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:345\n kasan_slab_alloc include/linux/kasan.h:250 [inline]\n slab_post_alloc_hook mm/slub.c:4104 [inline]\n slab_alloc_node mm/slub.c:4153 [inline]\n kmem_cache_alloc_node_noprof+0x1d9/0x380 mm/slub.c:4205\n alloc_task_struct_node kernel/fork.c:180 [inline]\n dup_task_struct+0x57/0x8c0 kernel/fork.c:1113\n copy_process+0x5d1/0x3d50 kernel/fork.c:2225\n kernel_clone+0x223/0x870 kernel/fork.c:2807\n kernel_thread+0x1bc/0x240 kernel/fork.c:2869\n create_kthread kernel/kthread.c:412 [inline]\n kthreadd+0x60d/0x810 kernel/kthread.c:767\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\n Freed by task 24:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:582\n poison_slab_object mm/kasan/common.c:247 [inline]\n __kasan_slab_free+0x59/0x70 mm/kasan/common.c:264\n kasan_slab_free include/linux/kasan.h:233 [inline]\n slab_free_hook mm/slub.c:2338 [inline]\n slab_free mm/slub.c:4598 [inline]\n kmem_cache_free+0x195/0x410 mm/slub.c:4700\n put_task_struct include/linux/sched/task.h:144 [inline]\n delayed_put_task_struct+0x125/0x300 kernel/exit.c:227\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:554\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:943\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57896",
"url": "https://www.suse.com/security/cve/CVE-2024-57896"
},
{
"category": "external",
"summary": "SUSE Bug 1235965 for CVE-2024-57896",
"url": "https://bugzilla.suse.com/1235965"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57896"
},
{
"cve": "CVE-2024-57897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Correct the migration DMA map direction\n\nThe SVM DMA device map direction should be set the same as\nthe DMA unmap setting, otherwise the DMA core will report\nthe following warning.\n\nBefore finialize this solution, there\u0027re some discussion on\nthe DMA mapping type(stream-based or coherent) in this KFD\nmigration case, followed by https://lore.kernel.org/all/04d4ab32\n-45a1-4b88-86ee-fb0f35a0ca40@amd.com/T/.\n\nAs there\u0027s no dma_sync_single_for_*() in the DMA buffer accessed\nthat because this migration operation should be sync properly and\nautomatically. Give that there\u0027s might not be a performance problem\nin various cache sync policy of DMA sync. Therefore, in order to\nsimplify the DMA direction setting alignment, let\u0027s set the DMA map\ndirection as BIDIRECTIONAL.\n\n[ 150.834218] WARNING: CPU: 8 PID: 1812 at kernel/dma/debug.c:1028 check_unmap+0x1cc/0x930\n[ 150.834225] Modules linked in: amdgpu(OE) amdxcp drm_exec(OE) gpu_sched drm_buddy(OE) drm_ttm_helper(OE) ttm(OE) drm_suballoc_helper(OE) drm_display_helper(OE) drm_kms_helper(OE) i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc sch_fq_codel intel_rapl_msr amd_atl intel_rapl_common snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd snd_pci_acp6x snd_hda_codec snd_acp_config snd_hda_core snd_hwdep snd_soc_acpi kvm_amd sunrpc snd_pcm kvm binfmt_misc snd_seq_midi crct10dif_pclmul snd_seq_midi_event ghash_clmulni_intel sha512_ssse3 snd_rawmidi nls_iso8859_1 sha256_ssse3 sha1_ssse3 snd_seq aesni_intel snd_seq_device crypto_simd snd_timer cryptd input_leds\n[ 150.834310] wmi_bmof serio_raw k10temp rapl snd sp5100_tco ipmi_devintf soundcore ccp ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport efi_pstore drm(OE) ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 150.834354] CPU: 8 PID: 1812 Comm: rocrtst64 Tainted: G OE 6.10.0-custom #492\n[ 150.834358] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 150.834360] RIP: 0010:check_unmap+0x1cc/0x930\n[ 150.834363] Code: c0 4c 89 4d c8 e8 34 bf 86 00 4c 8b 4d c8 4c 8b 45 c0 48 8b 4d b8 48 89 c6 41 57 4c 89 ea 48 c7 c7 80 49 b4 84 e8 b4 81 f3 ff \u003c0f\u003e 0b 48 c7 c7 04 83 ac 84 e8 76 ba fc ff 41 8b 76 4c 49 8d 7e 50\n[ 150.834365] RSP: 0018:ffffaac5023739e0 EFLAGS: 00010086\n[ 150.834368] RAX: 0000000000000000 RBX: ffffffff8566a2e0 RCX: 0000000000000027\n[ 150.834370] RDX: ffff8f6a8f621688 RSI: 0000000000000001 RDI: ffff8f6a8f621680\n[ 150.834372] RBP: ffffaac502373a30 R08: 00000000000000c9 R09: ffffaac502373850\n[ 150.834373] R10: ffffaac502373848 R11: ffffffff84f46328 R12: ffffaac502373a40\n[ 150.834375] R13: ffff8f6741045330 R14: ffff8f6741a77700 R15: ffffffff84ac831b\n[ 150.834377] FS: 00007faf0fc94c00(0000) GS:ffff8f6a8f600000(0000) knlGS:0000000000000000\n[ 150.834379] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 150.834381] CR2: 00007faf0b600020 CR3: 000000010a52e000 CR4: 0000000000350ef0\n[ 150.834383] Call Trace:\n[ 150.834385] \u003cTASK\u003e\n[ 150.834387] ? show_regs+0x6d/0x80\n[ 150.834393] ? __warn+0x8c/0x140\n[ 150.834397] ? check_unmap+0x1cc/0x930\n[ 150.834400] ? report_bug+0x193/0x1a0\n[ 150.834406] ? handle_bug+0x46/0x80\n[ 150.834410] ? exc_invalid_op+0x1d/0x80\n[ 150.834413] ? asm_exc_invalid_op+0x1f/0x30\n[ 150.834420] ? check_unmap+0x1cc/0x930\n[ 150.834425] debug_dma_unmap_page+0x86/0x90\n[ 150.834431] ? srso_return_thunk+0x5/0x5f\n[ 150.834435] \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57897",
"url": "https://www.suse.com/security/cve/CVE-2024-57897"
},
{
"category": "external",
"summary": "SUSE Bug 1235969 for CVE-2024-57897",
"url": "https://bugzilla.suse.com/1235969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57897"
},
{
"cve": "CVE-2024-57899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57899"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: fix mbss changed flags corruption on 32 bit systems\n\nOn 32-bit systems, the size of an unsigned long is 4 bytes,\nwhile a u64 is 8 bytes. Therefore, when using\nor_each_set_bit(bit, \u0026bits, sizeof(changed) * BITS_PER_BYTE),\nthe code is incorrectly searching for a bit in a 32-bit\nvariable that is expected to be 64 bits in size,\nleading to incorrect bit finding.\n\nSolution: Ensure that the size of the bits variable is correctly\nadjusted for each architecture.\n\n Call Trace:\n ? show_regs+0x54/0x58\n ? __warn+0x6b/0xd4\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? report_bug+0x113/0x150\n ? exc_overflow+0x30/0x30\n ? handle_bug+0x27/0x44\n ? exc_invalid_op+0x18/0x50\n ? handle_exception+0xf6/0xf6\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? ieee80211_mesh_work+0xff/0x260 [mac80211]\n ? cfg80211_wiphy_work+0x72/0x98 [cfg80211]\n ? process_one_work+0xf1/0x1fc\n ? worker_thread+0x2c0/0x3b4\n ? kthread+0xc7/0xf0\n ? mod_delayed_work_on+0x4c/0x4c\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork+0x24/0x38\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork_asm+0xf/0x14\n ? entry_INT80_32+0xf0/0xf0\n\n[restore no-op path for no changes]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57899",
"url": "https://www.suse.com/security/cve/CVE-2024-57899"
},
{
"category": "external",
"summary": "SUSE Bug 1235924 for CVE-2024-57899",
"url": "https://bugzilla.suse.com/1235924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57899"
},
{
"cve": "CVE-2024-57903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: restrict SO_REUSEPORT to inet sockets\n\nAfter blamed commit, crypto sockets could accidentally be destroyed\nfrom RCU call back, as spotted by zyzbot [1].\n\nTrying to acquire a mutex in RCU callback is not allowed.\n\nRestrict SO_REUSEPORT socket option to inet sockets.\n\nv1 of this patch supported TCP, UDP and SCTP sockets,\nbut fcnal-test.sh test needed RAW and ICMP support.\n\n[1]\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:562\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 24, name: ksoftirqd/1\npreempt_count: 100, expected: 0\nRCU nest depth: 0, expected: 0\n1 lock held by ksoftirqd/1/24:\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_lock_acquire include/linux/rcupdate.h:337 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_do_batch kernel/rcu/tree.c:2561 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_core+0xa37/0x17a0 kernel/rcu/tree.c:2823\nPreemption disabled at:\n [\u003cffffffff8161c8c8\u003e] softirq_handle_begin kernel/softirq.c:402 [inline]\n [\u003cffffffff8161c8c8\u003e] handle_softirqs+0x128/0x9b0 kernel/softirq.c:537\nCPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.13.0-rc3-syzkaller-00174-ga024e377efed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n __might_resched+0x5d4/0x780 kernel/sched/core.c:8758\n __mutex_lock_common kernel/locking/mutex.c:562 [inline]\n __mutex_lock+0x131/0xee0 kernel/locking/mutex.c:735\n crypto_put_default_null_skcipher+0x18/0x70 crypto/crypto_null.c:179\n aead_release+0x3d/0x50 crypto/algif_aead.c:489\n alg_do_release crypto/af_alg.c:118 [inline]\n alg_sock_destruct+0x86/0xc0 crypto/af_alg.c:502\n __sk_destruct+0x58/0x5f0 net/core/sock.c:2260\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:561\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:950\n smpboot_thread_fn+0x544/0xa30 kernel/smpboot.c:164\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57903",
"url": "https://www.suse.com/security/cve/CVE-2024-57903"
},
{
"category": "external",
"summary": "SUSE Bug 1235967 for CVE-2024-57903",
"url": "https://bugzilla.suse.com/1235967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57903"
},
{
"cve": "CVE-2024-57904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: at91: call input_free_device() on allocated iio_dev\n\nCurrent implementation of at91_ts_register() calls input_free_deivce()\non st-\u003ets_input, however, the err label can be reached before the\nallocated iio_dev is stored to st-\u003ets_input. Thus call\ninput_free_device() on input instead of st-\u003ets_input.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57904",
"url": "https://www.suse.com/security/cve/CVE-2024-57904"
},
{
"category": "external",
"summary": "SUSE Bug 1236078 for CVE-2024-57904",
"url": "https://bugzilla.suse.com/1236078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57904"
},
{
"cve": "CVE-2024-57906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ti-ads8688: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57906",
"url": "https://www.suse.com/security/cve/CVE-2024-57906"
},
{
"category": "external",
"summary": "SUSE Bug 1236088 for CVE-2024-57906",
"url": "https://bugzilla.suse.com/1236088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-57906"
},
{
"cve": "CVE-2024-57907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: rockchip_saradc: fix information leak in triggered buffer\n\nThe \u0027data\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57907",
"url": "https://www.suse.com/security/cve/CVE-2024-57907"
},
{
"category": "external",
"summary": "SUSE Bug 1236090 for CVE-2024-57907",
"url": "https://bugzilla.suse.com/1236090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2024-57907"
},
{
"cve": "CVE-2024-57908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: imu: kmx61: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57908",
"url": "https://www.suse.com/security/cve/CVE-2024-57908"
},
{
"category": "external",
"summary": "SUSE Bug 1236091 for CVE-2024-57908",
"url": "https://bugzilla.suse.com/1236091"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57908"
},
{
"cve": "CVE-2024-57910",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57910"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: vcnl4035: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to userspace from a\ntriggered buffer, but it does not set an initial value for the single\ndata element, which is an u16 aligned to 8 bytes. That leaves at least\n4 bytes uninitialized even after writing an integer value with\nregmap_read().\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57910",
"url": "https://www.suse.com/security/cve/CVE-2024-57910"
},
{
"category": "external",
"summary": "SUSE Bug 1236097 for CVE-2024-57910",
"url": "https://bugzilla.suse.com/1236097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57910"
},
{
"cve": "CVE-2024-57911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer\n\nThe \u0027data\u0027 array is allocated via kmalloc() and it is used to push data\nto user space from a triggered buffer, but it does not set values for\ninactive channels, as it only uses iio_for_each_active_channel()\nto assign new values.\n\nUse kzalloc for the memory allocation to avoid pushing uninitialized\ninformation to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57911",
"url": "https://www.suse.com/security/cve/CVE-2024-57911"
},
{
"category": "external",
"summary": "SUSE Bug 1236098 for CVE-2024-57911",
"url": "https://bugzilla.suse.com/1236098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57911"
},
{
"cve": "CVE-2024-57912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: pressure: zpa2326: fix information leak in triggered buffer\n\nThe \u0027sample\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it has a hole between the temperature and the\ntimestamp (u32 pressure, u16 temperature, GAP, u64 timestamp).\nThis hole is never initialized.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57912",
"url": "https://www.suse.com/security/cve/CVE-2024-57912"
},
{
"category": "external",
"summary": "SUSE Bug 1236101 for CVE-2024-57912",
"url": "https://bugzilla.suse.com/1236101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57912"
},
{
"cve": "CVE-2024-57913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Remove WARN_ON in functionfs_bind\n\nThis commit addresses an issue related to below kernel panic where\npanic_on_warn is enabled. It is caused by the unnecessary use of WARN_ON\nin functionsfs_bind, which easily leads to the following scenarios.\n\n1.adb_write in adbd 2. UDC write via configfs\n =================\t =====================\n\n-\u003eusb_ffs_open_thread() -\u003eUDC write\n -\u003eopen_functionfs() -\u003econfigfs_write_iter()\n -\u003eadb_open() -\u003egadget_dev_desc_UDC_store()\n -\u003eadb_write() -\u003eusb_gadget_register_driver_owner\n -\u003edriver_register()\n-\u003eStartMonitor() -\u003ebus_add_driver()\n -\u003eadb_read() -\u003egadget_bind_driver()\n\u003ctimes-out without BIND event\u003e -\u003econfigfs_composite_bind()\n -\u003eusb_add_function()\n-\u003eopen_functionfs() -\u003effs_func_bind()\n -\u003eadb_open() -\u003efunctionfs_bind()\n \u003cffs-\u003estate !=FFS_ACTIVE\u003e\n\nThe adb_open, adb_read, and adb_write operations are invoked from the\ndaemon, but trying to bind the function is a process that is invoked by\nUDC write through configfs, which opens up the possibility of a race\ncondition between the two paths. In this race scenario, the kernel panic\noccurs due to the WARN_ON from functionfs_bind when panic_on_warn is\nenabled. This commit fixes the kernel panic by removing the unnecessary\nWARN_ON.\n\nKernel panic - not syncing: kernel: panic_on_warn set ...\n[ 14.542395] Call trace:\n[ 14.542464] ffs_func_bind+0x1c8/0x14a8\n[ 14.542468] usb_add_function+0xcc/0x1f0\n[ 14.542473] configfs_composite_bind+0x468/0x588\n[ 14.542478] gadget_bind_driver+0x108/0x27c\n[ 14.542483] really_probe+0x190/0x374\n[ 14.542488] __driver_probe_device+0xa0/0x12c\n[ 14.542492] driver_probe_device+0x3c/0x220\n[ 14.542498] __driver_attach+0x11c/0x1fc\n[ 14.542502] bus_for_each_dev+0x104/0x160\n[ 14.542506] driver_attach+0x24/0x34\n[ 14.542510] bus_add_driver+0x154/0x270\n[ 14.542514] driver_register+0x68/0x104\n[ 14.542518] usb_gadget_register_driver_owner+0x48/0xf4\n[ 14.542523] gadget_dev_desc_UDC_store+0xf8/0x144\n[ 14.542526] configfs_write_iter+0xf0/0x138",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57913",
"url": "https://www.suse.com/security/cve/CVE-2024-57913"
},
{
"category": "external",
"summary": "SUSE Bug 1236102 for CVE-2024-57913",
"url": "https://bugzilla.suse.com/1236102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57913"
},
{
"cve": "CVE-2024-57915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57915"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57915",
"url": "https://www.suse.com/security/cve/CVE-2024-57915"
},
{
"category": "external",
"summary": "SUSE Bug 1236120 for CVE-2024-57915",
"url": "https://bugzilla.suse.com/1236120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57915"
},
{
"cve": "CVE-2024-57916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling\n\nResolve kernel panic caused by improper handling of IRQs while\naccessing GPIO values. This is done by replacing generic_handle_irq with\nhandle_nested_irq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57916",
"url": "https://www.suse.com/security/cve/CVE-2024-57916"
},
{
"category": "external",
"summary": "SUSE Bug 1236125 for CVE-2024-57916",
"url": "https://bugzilla.suse.com/1236125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57916"
},
{
"cve": "CVE-2024-57917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57917"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntopology: Keep the cpumask unchanged when printing cpumap\n\nDuring fuzz testing, the following warning was discovered:\n\n different return values (15 and 11) from vsnprintf(\"%*pbl\n \", ...)\n\n test:keyward is WARNING in kvasprintf\n WARNING: CPU: 55 PID: 1168477 at lib/kasprintf.c:30 kvasprintf+0x121/0x130\n Call Trace:\n kvasprintf+0x121/0x130\n kasprintf+0xa6/0xe0\n bitmap_print_to_buf+0x89/0x100\n core_siblings_list_read+0x7e/0xb0\n kernfs_file_read_iter+0x15b/0x270\n new_sync_read+0x153/0x260\n vfs_read+0x215/0x290\n ksys_read+0xb9/0x160\n do_syscall_64+0x56/0x100\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe call trace shows that kvasprintf() reported this warning during the\nprinting of core_siblings_list. kvasprintf() has several steps:\n\n (1) First, calculate the length of the resulting formatted string.\n\n (2) Allocate a buffer based on the returned length.\n\n (3) Then, perform the actual string formatting.\n\n (4) Check whether the lengths of the formatted strings returned in\n steps (1) and (2) are consistent.\n\nIf the core_cpumask is modified between steps (1) and (3), the lengths\nobtained in these two steps may not match. Indeed our test includes cpu\nhotplugging, which should modify core_cpumask while printing.\n\nTo fix this issue, cache the cpumask into a temporary variable before\ncalling cpumap_print_{list, cpumask}_to_buf(), to keep it unchanged\nduring the printing process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57917",
"url": "https://www.suse.com/security/cve/CVE-2024-57917"
},
{
"category": "external",
"summary": "SUSE Bug 1236127 for CVE-2024-57917",
"url": "https://bugzilla.suse.com/1236127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57917"
},
{
"cve": "CVE-2024-57922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add check for granularity in dml ceil/floor helpers\n\n[Why]\nWrapper functions for dcn_bw_ceil2() and dcn_bw_floor2()\nshould check for granularity is non zero to avoid assert and\ndivide-by-zero error in dcn_bw_ functions.\n\n[How]\nAdd check for granularity 0.\n\n(cherry picked from commit f6e09701c3eb2ccb8cb0518e0b67f1c69742a4ec)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57922",
"url": "https://www.suse.com/security/cve/CVE-2024-57922"
},
{
"category": "external",
"summary": "SUSE Bug 1236080 for CVE-2024-57922",
"url": "https://bugzilla.suse.com/1236080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57922"
},
{
"cve": "CVE-2024-57926",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57926"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err\n\nThe pointer need to be set to NULL, otherwise KASAN complains about\nuse-after-free. Because in mtk_drm_bind, all private\u0027s drm are set\nas follows.\n\nprivate-\u003eall_drm_private[i]-\u003edrm = drm;\n\nAnd drm will be released by drm_dev_put in case mtk_drm_kms_init returns\nfailure. However, the shutdown path still accesses the previous allocated\nmemory in drm_atomic_helper_shutdown.\n\n[ 84.874820] watchdog: watchdog0: watchdog did not stop!\n[ 86.512054] ==================================================================\n[ 86.513162] BUG: KASAN: use-after-free in drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.514258] Read of size 8 at addr ffff0000d46fc068 by task shutdown/1\n[ 86.515213]\n[ 86.515455] CPU: 1 UID: 0 PID: 1 Comm: shutdown Not tainted 6.13.0-rc1-mtk+gfa1a78e5d24b-dirty #55\n[ 86.516752] Hardware name: Unknown Product/Unknown Product, BIOS 2022.10 10/01/2022\n[ 86.517960] Call trace:\n[ 86.518333] show_stack+0x20/0x38 (C)\n[ 86.518891] dump_stack_lvl+0x90/0xd0\n[ 86.519443] print_report+0xf8/0x5b0\n[ 86.519985] kasan_report+0xb4/0x100\n[ 86.520526] __asan_report_load8_noabort+0x20/0x30\n[ 86.521240] drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.521966] mtk_drm_shutdown+0x54/0x80\n[ 86.522546] platform_shutdown+0x64/0x90\n[ 86.523137] device_shutdown+0x260/0x5b8\n[ 86.523728] kernel_restart+0x78/0xf0\n[ 86.524282] __do_sys_reboot+0x258/0x2f0\n[ 86.524871] __arm64_sys_reboot+0x90/0xd8\n[ 86.525473] invoke_syscall+0x74/0x268\n[ 86.526041] el0_svc_common.constprop.0+0xb0/0x240\n[ 86.526751] do_el0_svc+0x4c/0x70\n[ 86.527251] el0_svc+0x4c/0xc0\n[ 86.527719] el0t_64_sync_handler+0x144/0x168\n[ 86.528367] el0t_64_sync+0x198/0x1a0\n[ 86.528920]\n[ 86.529157] The buggy address belongs to the physical page:\n[ 86.529972] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff0000d46fd4d0 pfn:0x1146fc\n[ 86.531319] flags: 0xbfffc0000000000(node=0|zone=2|lastcpupid=0xffff)\n[ 86.532267] raw: 0bfffc0000000000 0000000000000000 dead000000000122 0000000000000000\n[ 86.533390] raw: ffff0000d46fd4d0 0000000000000000 00000000ffffffff 0000000000000000\n[ 86.534511] page dumped because: kasan: bad access detected\n[ 86.535323]\n[ 86.535559] Memory state around the buggy address:\n[ 86.536265] ffff0000d46fbf00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.537314] ffff0000d46fbf80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.538363] \u003effff0000d46fc000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.544733] ^\n[ 86.551057] ffff0000d46fc080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.557510] ffff0000d46fc100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.563928] ==================================================================\n[ 86.571093] Disabling lock debugging due to kernel taint\n[ 86.577642] Unable to handle kernel paging request at virtual address e0e9c0920000000b\n[ 86.581834] KASAN: maybe wild-memory-access in range [0x0752049000000058-0x075204900000005f]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57926",
"url": "https://www.suse.com/security/cve/CVE-2024-57926"
},
{
"category": "external",
"summary": "SUSE Bug 1236082 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "external",
"summary": "SUSE Bug 1236084 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-57926"
},
{
"cve": "CVE-2024-57929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57929"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm array: fix releasing a faulty array block twice in dm_array_cursor_end\n\nWhen dm_bm_read_lock() fails due to locking or checksum errors, it\nreleases the faulty block implicitly while leaving an invalid output\npointer behind. The caller of dm_bm_read_lock() should not operate on\nthis invalid dm_block pointer, or it will lead to undefined result.\nFor example, the dm_array_cursor incorrectly caches the invalid pointer\non reading a faulty array block, causing a double release in\ndm_array_cursor_end(), then hitting the BUG_ON in dm-bufio cache_put().\n\nReproduce steps:\n\n1. initialize a cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. wipe the second array block offline\n\ndmsteup remove cache cmeta cdata corig\nmapping_root=$(dd if=/dev/sdc bs=1c count=8 skip=192 \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\nablock=$(dd if=/dev/sdc bs=1c count=8 skip=$((4096*mapping_root+2056)) \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\ndd if=/dev/zero of=/dev/sdc bs=4k count=1 seek=$ablock\n\n3. try reopen the cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\ndevice-mapper: array: array_block_check failed: blocknr 0 != wanted 10\ndevice-mapper: block manager: array validator check failed for block 10\ndevice-mapper: array: get_ablock failed\ndevice-mapper: cache metadata: dm_array_cursor_next for mapping failed\n------------[ cut here ]------------\nkernel BUG at drivers/md/dm-bufio.c:638!\n\nFix by setting the cached block pointer to NULL on errors.\n\nIn addition to the reproducer described above, this fix can be\nverified using the \"array_cursor/damaged\" test in dm-unit:\n dm-unit run /pdata/array_cursor/damaged --kernel-dir \u003cKERNEL_DIR\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57929",
"url": "https://www.suse.com/security/cve/CVE-2024-57929"
},
{
"category": "external",
"summary": "SUSE Bug 1236096 for CVE-2024-57929",
"url": "https://bugzilla.suse.com/1236096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57929"
},
{
"cve": "CVE-2024-57931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57931"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: ignore unknown extended permissions\n\nWhen evaluating extended permissions, ignore unknown permissions instead\nof calling BUG(). This commit ensures that future permissions can be\nadded without interfering with older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57931",
"url": "https://www.suse.com/security/cve/CVE-2024-57931"
},
{
"category": "external",
"summary": "SUSE Bug 1236192 for CVE-2024-57931",
"url": "https://bugzilla.suse.com/1236192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57931"
},
{
"cve": "CVE-2024-57932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XDP xmit NDO on existence of xdp queues\n\nIn GVE, dedicated XDP queues only exist when an XDP program is installed\nand the interface is up. As such, the NDO XDP XMIT callback should\nreturn early if either of these conditions are false.\n\nIn the case of no loaded XDP program, priv-\u003enum_xdp_queues=0 which can\ncause a divide-by-zero error, and in the case of interface down,\nnum_xdp_queues remains untouched to persist XDP queue count for the next\ninterface up, but the TX pointer itself would be NULL.\n\nThe XDP xmit callback also needs to synchronize with a device\ntransitioning from open to close. This synchronization will happen via\nthe GVE_PRIV_FLAGS_NAPI_ENABLED bit along with a synchronize_net() call,\nwhich waits for any RCU critical sections at call-time to complete.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57932",
"url": "https://www.suse.com/security/cve/CVE-2024-57932"
},
{
"category": "external",
"summary": "SUSE Bug 1236190 for CVE-2024-57932",
"url": "https://bugzilla.suse.com/1236190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57932"
},
{
"cve": "CVE-2024-57933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57933"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XSK operations on the existence of queues\n\nThis patch predicates the enabling and disabling of XSK pools on the\nexistence of queues. As it stands, if the interface is down, disabling\nor enabling XSK pools would result in a crash, as the RX queue pointer\nwould be NULL. XSK pool registration will occur as part of the next\ninterface up.\n\nSimilarly, xsk_wakeup needs be guarded against queues disappearing\nwhile the function is executing, so a check against the\nGVE_PRIV_FLAGS_NAPI_ENABLED flag is added to synchronize with the\ndisabling of the bit and the synchronize_net() in gve_turndown.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57933",
"url": "https://www.suse.com/security/cve/CVE-2024-57933"
},
{
"category": "external",
"summary": "SUSE Bug 1236178 for CVE-2024-57933",
"url": "https://bugzilla.suse.com/1236178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57933"
},
{
"cve": "CVE-2024-57935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix accessing invalid dip_ctx during destroying QP\n\nIf it fails to modify QP to RTR, dip_ctx will not be attached. And\nduring detroying QP, the invalid dip_ctx pointer will be accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57935",
"url": "https://www.suse.com/security/cve/CVE-2024-57935"
},
{
"category": "external",
"summary": "SUSE Bug 1236180 for CVE-2024-57935",
"url": "https://bugzilla.suse.com/1236180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57935"
},
{
"cve": "CVE-2024-57936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57936"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix max SGEs for the Work Request\n\nGen P7 supports up to 13 SGEs for now. WQE software structure\ncan hold only 6 now. Since the max send sge is reported as\n13, the stack can give requests up to 13 SGEs. This is causing\ntraffic failures and system crashes.\n\nUse the define for max SGE supported for variable size. This\nwill work for both static and variable WQEs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57936",
"url": "https://www.suse.com/security/cve/CVE-2024-57936"
},
{
"category": "external",
"summary": "SUSE Bug 1236181 for CVE-2024-57936",
"url": "https://bugzilla.suse.com/1236181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57936"
},
{
"cve": "CVE-2024-57938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sctp: Prevent autoclose integer overflow in sctp_association_init()\n\nWhile by default max_autoclose equals to INT_MAX / HZ, one may set\nnet.sctp.max_autoclose to UINT_MAX. There is code in\nsctp_association_init() that can consequently trigger overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57938",
"url": "https://www.suse.com/security/cve/CVE-2024-57938"
},
{
"category": "external",
"summary": "SUSE Bug 1236182 for CVE-2024-57938",
"url": "https://bugzilla.suse.com/1236182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57938"
},
{
"cve": "CVE-2024-57940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix the infinite loop in exfat_readdir()\n\nIf the file system is corrupted so that a cluster is linked to\nitself in the cluster chain, and there is an unused directory\nentry in the cluster, \u0027dentry\u0027 will not be incremented, causing\ncondition \u0027dentry \u003c max_dentries\u0027 unable to prevent an infinite\nloop.\n\nThis infinite loop causes s_lock not to be released, and other\ntasks will hang, such as exfat_sync_fs().\n\nThis commit stops traversing the cluster chain when there is unused\ndirectory entry in the cluster to avoid this infinite loop.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57940",
"url": "https://www.suse.com/security/cve/CVE-2024-57940"
},
{
"category": "external",
"summary": "SUSE Bug 1236227 for CVE-2024-57940",
"url": "https://bugzilla.suse.com/1236227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57940"
},
{
"cve": "CVE-2024-57946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-blk: don\u0027t keep queue frozen during system suspend\n\nCommit 4ce6e2db00de (\"virtio-blk: Ensure no requests in virtqueues before\ndeleting vqs.\") replaces queue quiesce with queue freeze in virtio-blk\u0027s\nPM callbacks. And the motivation is to drain inflight IOs before suspending.\n\nblock layer\u0027s queue freeze looks very handy, but it is also easy to cause\ndeadlock, such as, any attempt to call into bio_queue_enter() may run into\ndeadlock if the queue is frozen in current context. There are all kinds\nof -\u003esuspend() called in suspend context, so keeping queue frozen in the\nwhole suspend context isn\u0027t one good idea. And Marek reported lockdep\nwarning[1] caused by virtio-blk\u0027s freeze queue in virtblk_freeze().\n\n[1] https://lore.kernel.org/linux-block/ca16370e-d646-4eee-b9cc-87277c89c43c@samsung.com/\n\nGiven the motivation is to drain in-flight IOs, it can be done by calling\nfreeze \u0026 unfreeze, meantime restore to previous behavior by keeping queue\nquiesced during suspend.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57946",
"url": "https://www.suse.com/security/cve/CVE-2024-57946"
},
{
"category": "external",
"summary": "SUSE Bug 1236247 for CVE-2024-57946",
"url": "https://bugzilla.suse.com/1236247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-57946"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
},
{
"cve": "CVE-2025-21632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure shadow stack is active before \"getting\" registers\n\nThe x86 shadow stack support has its own set of registers. Those registers\nare XSAVE-managed, but they are \"supervisor state components\" which means\nthat userspace can not touch them with XSAVE/XRSTOR. It also means that\nthey are not accessible from the existing ptrace ABI for XSAVE state.\nThus, there is a new ptrace get/set interface for it.\n\nThe regset code that ptrace uses provides an -\u003eactive() handler in\naddition to the get/set ones. For shadow stack this -\u003eactive() handler\nverifies that shadow stack is enabled via the ARCH_SHSTK_SHSTK bit in the\nthread struct. The -\u003eactive() handler is checked from some call sites of\nthe regset get/set handlers, but not the ptrace ones. This was not\nunderstood when shadow stack support was put in place.\n\nAs a result, both the set/get handlers can be called with\nXFEATURE_CET_USER in its init state, which would cause get_xsave_addr() to\nreturn NULL and trigger a WARN_ON(). The ssp_set() handler luckily has an\nssp_active() check to avoid surprising the kernel with shadow stack\nbehavior when the kernel is not ready for it (ARCH_SHSTK_SHSTK==0). That\ncheck just happened to avoid the warning.\n\nBut the -\u003eget() side wasn\u0027t so lucky. It can be called with shadow stacks\ndisabled, triggering the warning in practice, as reported by Christina\nSchimpe:\n\nWARNING: CPU: 5 PID: 1773 at arch/x86/kernel/fpu/regset.c:198 ssp_get+0x89/0xa0\n[...]\nCall Trace:\n\u003cTASK\u003e\n? show_regs+0x6e/0x80\n? ssp_get+0x89/0xa0\n? __warn+0x91/0x150\n? ssp_get+0x89/0xa0\n? report_bug+0x19d/0x1b0\n? handle_bug+0x46/0x80\n? exc_invalid_op+0x1d/0x80\n? asm_exc_invalid_op+0x1f/0x30\n? __pfx_ssp_get+0x10/0x10\n? ssp_get+0x89/0xa0\n? ssp_get+0x52/0xa0\n__regset_get+0xad/0xf0\ncopy_regset_to_user+0x52/0xc0\nptrace_regset+0x119/0x140\nptrace_request+0x13c/0x850\n? wait_task_inactive+0x142/0x1d0\n? do_syscall_64+0x6d/0x90\narch_ptrace+0x102/0x300\n[...]\n\nEnsure that shadow stacks are active in a thread before looking them up\nin the XSAVE buffer. Since ARCH_SHSTK_SHSTK and user_ssp[SHSTK_EN] are\nset at the same time, the active check ensures that there will be\nsomething to find in the XSAVE buffer.\n\n[ dhansen: changelog/subject tweaks ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21632",
"url": "https://www.suse.com/security/cve/CVE-2025-21632"
},
{
"category": "external",
"summary": "SUSE Bug 1236106 for CVE-2025-21632",
"url": "https://bugzilla.suse.com/1236106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21632"
},
{
"cve": "CVE-2025-21645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it\n\nWakeup for IRQ1 should be disabled only in cases where i8042 had\nactually enabled it, otherwise \"wake_depth\" for this IRQ will try to\ndrop below zero and there will be an unpleasant WARN() logged:\n\nkernel: atkbd serio0: Disabling IRQ1 wakeup source to avoid platform firmware bug\nkernel: ------------[ cut here ]------------\nkernel: Unbalanced IRQ 1 wake disable\nkernel: WARNING: CPU: 10 PID: 6431 at kernel/irq/manage.c:920 irq_set_irq_wake+0x147/0x1a0\n\nThe PMC driver uses DEFINE_SIMPLE_DEV_PM_OPS() to define its dev_pm_ops\nwhich sets amd_pmc_suspend_handler() to the .suspend, .freeze, and\n.poweroff handlers. i8042_pm_suspend(), however, is only set as\nthe .suspend handler.\n\nFix the issue by call PMC suspend handler only from the same set of\ndev_pm_ops handlers as i8042_pm_suspend(), which currently means just\nthe .suspend handler.\n\nTo reproduce this issue try hibernating (S4) the machine after a fresh boot\nwithout putting it into s2idle first.\n\n[ij: edited the commit message.]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21645",
"url": "https://www.suse.com/security/cve/CVE-2025-21645"
},
{
"category": "external",
"summary": "SUSE Bug 1236131 for CVE-2025-21645",
"url": "https://bugzilla.suse.com/1236131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21645"
},
{
"cve": "CVE-2025-21646",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21646"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix the maximum cell name length\n\nThe kafs filesystem limits the maximum length of a cell to 256 bytes, but a\nproblem occurs if someone actually does that: kafs tries to create a\ndirectory under /proc/net/afs/ with the name of the cell, but that fails\nwith a warning:\n\n WARNING: CPU: 0 PID: 9 at fs/proc/generic.c:405\n\nbecause procfs limits the maximum filename length to 255.\n\nHowever, the DNS limits the maximum lookup length and, by extension, the\nmaximum cell name, to 255 less two (length count and trailing NUL).\n\nFix this by limiting the maximum acceptable cellname length to 253. This\nalso allows us to be sure we can create the \"/afs/.\u003ccell\u003e/\" mountpoint too.\n\nFurther, split the YFS VL record cell name maximum to be the 256 allowed by\nthe protocol and ignore the record retrieved by YFSVL.GetCellName if it\nexceeds 253.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21646",
"url": "https://www.suse.com/security/cve/CVE-2025-21646"
},
{
"category": "external",
"summary": "SUSE Bug 1236168 for CVE-2025-21646",
"url": "https://bugzilla.suse.com/1236168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21646"
},
{
"cve": "CVE-2025-21649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when 1588 is sent on HIP08 devices\n\nCurrently, HIP08 devices does not register the ptp devices, so the\nhdev-\u003eptp is NULL. But the tx process would still try to set hardware time\nstamp info with SKBTX_HW_TSTAMP flag and cause a kernel crash.\n\n[ 128.087798] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n...\n[ 128.280251] pc : hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.286600] lr : hclge_ptp_set_tx_info+0x20/0x140 [hclge]\n[ 128.292938] sp : ffff800059b93140\n[ 128.297200] x29: ffff800059b93140 x28: 0000000000003280\n[ 128.303455] x27: ffff800020d48280 x26: ffff0cb9dc814080\n[ 128.309715] x25: ffff0cb9cde93fa0 x24: 0000000000000001\n[ 128.315969] x23: 0000000000000000 x22: 0000000000000194\n[ 128.322219] x21: ffff0cd94f986000 x20: 0000000000000000\n[ 128.328462] x19: ffff0cb9d2a166c0 x18: 0000000000000000\n[ 128.334698] x17: 0000000000000000 x16: ffffcf1fc523ed24\n[ 128.340934] x15: 0000ffffd530a518 x14: 0000000000000000\n[ 128.347162] x13: ffff0cd6bdb31310 x12: 0000000000000368\n[ 128.353388] x11: ffff0cb9cfbc7070 x10: ffff2cf55dd11e02\n[ 128.359606] x9 : ffffcf1f85a212b4 x8 : ffff0cd7cf27dab0\n[ 128.365831] x7 : 0000000000000a20 x6 : ffff0cd7cf27d000\n[ 128.372040] x5 : 0000000000000000 x4 : 000000000000ffff\n[ 128.378243] x3 : 0000000000000400 x2 : ffffcf1f85a21294\n[ 128.384437] x1 : ffff0cb9db520080 x0 : ffff0cb9db500080\n[ 128.390626] Call trace:\n[ 128.393964] hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.399893] hns3_nic_net_xmit+0x39c/0x4c4 [hns3]\n[ 128.405468] xmit_one.constprop.0+0xc4/0x200\n[ 128.410600] dev_hard_start_xmit+0x54/0xf0\n[ 128.415556] sch_direct_xmit+0xe8/0x634\n[ 128.420246] __dev_queue_xmit+0x224/0xc70\n[ 128.425101] dev_queue_xmit+0x1c/0x40\n[ 128.429608] ovs_vport_send+0xac/0x1a0 [openvswitch]\n[ 128.435409] do_output+0x60/0x17c [openvswitch]\n[ 128.440770] do_execute_actions+0x898/0x8c4 [openvswitch]\n[ 128.446993] ovs_execute_actions+0x64/0xf0 [openvswitch]\n[ 128.453129] ovs_dp_process_packet+0xa0/0x224 [openvswitch]\n[ 128.459530] ovs_vport_receive+0x7c/0xfc [openvswitch]\n[ 128.465497] internal_dev_xmit+0x34/0xb0 [openvswitch]\n[ 128.471460] xmit_one.constprop.0+0xc4/0x200\n[ 128.476561] dev_hard_start_xmit+0x54/0xf0\n[ 128.481489] __dev_queue_xmit+0x968/0xc70\n[ 128.486330] dev_queue_xmit+0x1c/0x40\n[ 128.490856] ip_finish_output2+0x250/0x570\n[ 128.495810] __ip_finish_output+0x170/0x1e0\n[ 128.500832] ip_finish_output+0x3c/0xf0\n[ 128.505504] ip_output+0xbc/0x160\n[ 128.509654] ip_send_skb+0x58/0xd4\n[ 128.513892] udp_send_skb+0x12c/0x354\n[ 128.518387] udp_sendmsg+0x7a8/0x9c0\n[ 128.522793] inet_sendmsg+0x4c/0x8c\n[ 128.527116] __sock_sendmsg+0x48/0x80\n[ 128.531609] __sys_sendto+0x124/0x164\n[ 128.536099] __arm64_sys_sendto+0x30/0x5c\n[ 128.540935] invoke_syscall+0x50/0x130\n[ 128.545508] el0_svc_common.constprop.0+0x10c/0x124\n[ 128.551205] do_el0_svc+0x34/0xdc\n[ 128.555347] el0_svc+0x20/0x30\n[ 128.559227] el0_sync_handler+0xb8/0xc0\n[ 128.563883] el0_sync+0x160/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21649",
"url": "https://www.suse.com/security/cve/CVE-2025-21649"
},
{
"category": "external",
"summary": "SUSE Bug 1236143 for CVE-2025-21649",
"url": "https://bugzilla.suse.com/1236143"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21649"
},
{
"cve": "CVE-2025-21650",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21650"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue\n\nThe TQP BAR space is divided into two segments. TQPs 0-1023 and TQPs\n1024-1279 are in different BAR space addresses. However,\nhclge_fetch_pf_reg does not distinguish the tqp space information when\nreading the tqp space information. When the number of TQPs is greater\nthan 1024, access bar space overwriting occurs.\nThe problem of different segments has been considered during the\ninitialization of tqp.io_base. Therefore, tqp.io_base is directly used\nwhen the queue is read in hclge_fetch_pf_reg.\n\nThe error message:\n\nUnable to handle kernel paging request at virtual address ffff800037200000\npc : hclge_fetch_pf_reg+0x138/0x250 [hclge]\nlr : hclge_get_regs+0x84/0x1d0 [hclge]\nCall trace:\n hclge_fetch_pf_reg+0x138/0x250 [hclge]\n hclge_get_regs+0x84/0x1d0 [hclge]\n hns3_get_regs+0x2c/0x50 [hns3]\n ethtool_get_regs+0xf4/0x270\n dev_ethtool+0x674/0x8a0\n dev_ioctl+0x270/0x36c\n sock_do_ioctl+0x110/0x2a0\n sock_ioctl+0x2ac/0x530\n __arm64_sys_ioctl+0xa8/0x100\n invoke_syscall+0x4c/0x124\n el0_svc_common.constprop.0+0x140/0x15c\n do_el0_svc+0x30/0xd0\n el0_svc+0x1c/0x2c\n el0_sync_handler+0xb0/0xb4\n el0_sync+0x168/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21650",
"url": "https://www.suse.com/security/cve/CVE-2025-21650"
},
{
"category": "external",
"summary": "SUSE Bug 1236144 for CVE-2025-21650",
"url": "https://bugzilla.suse.com/1236144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21650"
},
{
"cve": "CVE-2025-21651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: don\u0027t auto enable misc vector\n\nCurrently, there is a time window between misc irq enabled\nand service task inited. If an interrupte is reported at\nthis time, it will cause warning like below:\n\n[ 16.324639] Call trace:\n[ 16.324641] __queue_delayed_work+0xb8/0xe0\n[ 16.324643] mod_delayed_work_on+0x78/0xd0\n[ 16.324655] hclge_errhand_task_schedule+0x58/0x90 [hclge]\n[ 16.324662] hclge_misc_irq_handle+0x168/0x240 [hclge]\n[ 16.324666] __handle_irq_event_percpu+0x64/0x1e0\n[ 16.324667] handle_irq_event+0x80/0x170\n[ 16.324670] handle_fasteoi_edge_irq+0x110/0x2bc\n[ 16.324671] __handle_domain_irq+0x84/0xfc\n[ 16.324673] gic_handle_irq+0x88/0x2c0\n[ 16.324674] el1_irq+0xb8/0x140\n[ 16.324677] arch_cpu_idle+0x18/0x40\n[ 16.324679] default_idle_call+0x5c/0x1bc\n[ 16.324682] cpuidle_idle_call+0x18c/0x1c4\n[ 16.324684] do_idle+0x174/0x17c\n[ 16.324685] cpu_startup_entry+0x30/0x6c\n[ 16.324687] secondary_start_kernel+0x1a4/0x280\n[ 16.324688] ---[ end trace 6aa0bff672a964aa ]---\n\nSo don\u0027t auto enable misc vector when request irq..",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21651",
"url": "https://www.suse.com/security/cve/CVE-2025-21651"
},
{
"category": "external",
"summary": "SUSE Bug 1236145 for CVE-2025-21651",
"url": "https://bugzilla.suse.com/1236145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21651"
},
{
"cve": "CVE-2025-21652",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21652"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvlan: Fix use-after-free in ipvlan_get_iflink().\n\nsyzbot presented an use-after-free report [0] regarding ipvlan and\nlinkwatch.\n\nipvlan does not hold a refcnt of the lower device unlike vlan and\nmacvlan.\n\nIf the linkwatch work is triggered for the ipvlan dev, the lower dev\nmight have already been freed, resulting in UAF of ipvlan-\u003ephy_dev in\nipvlan_get_iflink().\n\nWe can delay the lower dev unregistration like vlan and macvlan by\nholding the lower dev\u0027s refcnt in dev-\u003enetdev_ops-\u003endo_init() and\nreleasing it in dev-\u003epriv_destructor().\n\nJakub pointed out calling .ndo_XXX after unregister_netdevice() has\nreturned is error prone and suggested [1] addressing this UAF in the\ncore by taking commit 750e51603395 (\"net: avoid potential UAF in\ndefault_operstate()\") further.\n\nLet\u0027s assume unregistering devices DOWN and use RCU protection in\ndefault_operstate() not to race with the device unregistration.\n\n[0]:\nBUG: KASAN: slab-use-after-free in ipvlan_get_iflink+0x84/0x88 drivers/net/ipvlan/ipvlan_main.c:353\nRead of size 4 at addr ffff0000d768c0e0 by task kworker/u8:35/6944\n\nCPU: 0 UID: 0 PID: 6944 Comm: kworker/u8:35 Not tainted 6.13.0-rc2-g9bc5c9515b48 #12 4c3cb9e8b4565456f6a355f312ff91f4f29b3c47\nHardware name: linux,dummy-virt (DT)\nWorkqueue: events_unbound linkwatch_event\nCall trace:\n show_stack+0x38/0x50 arch/arm64/kernel/stacktrace.c:484 (C)\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0xbc/0x108 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x16c/0x6f0 mm/kasan/report.c:489\n kasan_report+0xc0/0x120 mm/kasan/report.c:602\n __asan_report_load4_noabort+0x20/0x30 mm/kasan/report_generic.c:380\n ipvlan_get_iflink+0x84/0x88 drivers/net/ipvlan/ipvlan_main.c:353\n dev_get_iflink+0x7c/0xd8 net/core/dev.c:674\n default_operstate net/core/link_watch.c:45 [inline]\n rfc2863_policy+0x144/0x360 net/core/link_watch.c:72\n linkwatch_do_dev+0x60/0x228 net/core/link_watch.c:175\n __linkwatch_run_queue+0x2f4/0x5b8 net/core/link_watch.c:239\n linkwatch_event+0x64/0xa8 net/core/link_watch.c:282\n process_one_work+0x700/0x1398 kernel/workqueue.c:3229\n process_scheduled_works kernel/workqueue.c:3310 [inline]\n worker_thread+0x8c4/0xe10 kernel/workqueue.c:3391\n kthread+0x2b0/0x360 kernel/kthread.c:389\n ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862\n\nAllocated by task 9303:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x68 mm/kasan/common.c:68\n kasan_save_alloc_info+0x44/0x58 mm/kasan/generic.c:568\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0x84/0xa0 mm/kasan/common.c:394\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __do_kmalloc_node mm/slub.c:4283 [inline]\n __kmalloc_node_noprof+0x2a0/0x560 mm/slub.c:4289\n __kvmalloc_node_noprof+0x9c/0x230 mm/util.c:650\n alloc_netdev_mqs+0xb4/0x1118 net/core/dev.c:11209\n rtnl_create_link+0x2b8/0xb60 net/core/rtnetlink.c:3595\n rtnl_newlink_create+0x19c/0x868 net/core/rtnetlink.c:3771\n __rtnl_newlink net/core/rtnetlink.c:3896 [inline]\n rtnl_newlink+0x122c/0x15c0 net/core/rtnetlink.c:4011\n rtnetlink_rcv_msg+0x61c/0x918 net/core/rtnetlink.c:6901\n netlink_rcv_skb+0x1dc/0x398 net/netlink/af_netlink.c:2542\n rtnetlink_rcv+0x34/0x50 net/core/rtnetlink.c:6928\n netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]\n netlink_unicast+0x618/0x838 net/netlink/af_netlink.c:1347\n netlink_sendmsg+0x5fc/0x8b0 net/netlink/af_netlink.c:1891\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg net/socket.c:726 [inline]\n __sys_sendto+0x2ec/0x438 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __arm64_sys_sendto+0xe4/0x110 net/socket.c:2200\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x90/0x278 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x13c/0x250 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x54/0x70 arch/arm64/kernel/syscall.c:151\n el\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21652",
"url": "https://www.suse.com/security/cve/CVE-2025-21652"
},
{
"category": "external",
"summary": "SUSE Bug 1236160 for CVE-2025-21652",
"url": "https://bugzilla.suse.com/1236160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21652"
},
{
"cve": "CVE-2025-21653",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21653"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute\n\nsyzbot found that TCA_FLOW_RSHIFT attribute was not validated.\nRight shitfing a 32bit integer is undefined for large shift values.\n\nUBSAN: shift-out-of-bounds in net/sched/cls_flow.c:329:23\nshift exponent 9445 is too large for 32-bit type \u0027u32\u0027 (aka \u0027unsigned int\u0027)\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u8:3 Not tainted 6.13.0-rc3-syzkaller-00180-g4f619d518db9 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: ipv6_addrconf addrconf_dad_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n ubsan_epilogue lib/ubsan.c:231 [inline]\n __ubsan_handle_shift_out_of_bounds+0x3c8/0x420 lib/ubsan.c:468\n flow_classify+0x24d5/0x25b0 net/sched/cls_flow.c:329\n tc_classify include/net/tc_wrapper.h:197 [inline]\n __tcf_classify net/sched/cls_api.c:1771 [inline]\n tcf_classify+0x420/0x1160 net/sched/cls_api.c:1867\n sfb_classify net/sched/sch_sfb.c:260 [inline]\n sfb_enqueue+0x3ad/0x18b0 net/sched/sch_sfb.c:318\n dev_qdisc_enqueue+0x4b/0x290 net/core/dev.c:3793\n __dev_xmit_skb net/core/dev.c:3889 [inline]\n __dev_queue_xmit+0xf0e/0x3f50 net/core/dev.c:4400\n dev_queue_xmit include/linux/netdevice.h:3168 [inline]\n neigh_hh_output include/net/neighbour.h:523 [inline]\n neigh_output include/net/neighbour.h:537 [inline]\n ip_finish_output2+0xd41/0x1390 net/ipv4/ip_output.c:236\n iptunnel_xmit+0x55d/0x9b0 net/ipv4/ip_tunnel_core.c:82\n udp_tunnel_xmit_skb+0x262/0x3b0 net/ipv4/udp_tunnel_core.c:173\n geneve_xmit_skb drivers/net/geneve.c:916 [inline]\n geneve_xmit+0x21dc/0x2d00 drivers/net/geneve.c:1039\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n xmit_one net/core/dev.c:3590 [inline]\n dev_hard_start_xmit+0x27a/0x7d0 net/core/dev.c:3606\n __dev_queue_xmit+0x1b73/0x3f50 net/core/dev.c:4434",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21653",
"url": "https://www.suse.com/security/cve/CVE-2025-21653"
},
{
"category": "external",
"summary": "SUSE Bug 1236161 for CVE-2025-21653",
"url": "https://bugzilla.suse.com/1236161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21653"
},
{
"cve": "CVE-2025-21655",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21655"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/eventfd: ensure io_eventfd_signal() defers another RCU period\n\nio_eventfd_do_signal() is invoked from an RCU callback, but when\ndropping the reference to the io_ev_fd, it calls io_eventfd_free()\ndirectly if the refcount drops to zero. This isn\u0027t correct, as any\npotential freeing of the io_ev_fd should be deferred another RCU grace\nperiod.\n\nJust call io_eventfd_put() rather than open-code the dec-and-test and\nfree, which will correctly defer it another RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21655",
"url": "https://www.suse.com/security/cve/CVE-2025-21655"
},
{
"category": "external",
"summary": "SUSE Bug 1236163 for CVE-2025-21655",
"url": "https://bugzilla.suse.com/1236163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21655"
},
{
"cve": "CVE-2025-21656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur\n\nscsi_execute_cmd() function can return both negative (linux codes) and\npositive (scsi_cmnd result field) error codes.\n\nCurrently the driver just passes error codes of scsi_execute_cmd() to\nhwmon core, which is incorrect because hwmon only checks for negative\nerror codes. This leads to hwmon reporting uninitialized data to\nuserspace in case of SCSI errors (for example if the disk drive was\ndisconnected).\n\nThis patch checks scsi_execute_cmd() output and returns -EIO if it\u0027s\nerror code is positive.\n\n[groeck: Avoid inline variable declaration for portability]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21656",
"url": "https://www.suse.com/security/cve/CVE-2025-21656"
},
{
"category": "external",
"summary": "SUSE Bug 1236248 for CVE-2025-21656",
"url": "https://bugzilla.suse.com/1236248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "low"
}
],
"title": "CVE-2025-21656"
},
{
"cve": "CVE-2025-21662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix variable not being completed when function returns\n\nWhen cmd_alloc_index(), fails cmd_work_handler() needs\nto complete ent-\u003eslotted before returning early.\nOtherwise the task which issued the command may hang:\n\n mlx5_core 0000:01:00.0: cmd_work_handler:877:(pid 3880418): failed to allocate command entry\n INFO: task kworker/13:2:4055883 blocked for more than 120 seconds.\n Not tainted 4.19.90-25.44.v2101.ky10.aarch64 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n kworker/13:2 D 0 4055883 2 0x00000228\n Workqueue: events mlx5e_tx_dim_work [mlx5_core]\n Call trace:\n __switch_to+0xe8/0x150\n __schedule+0x2a8/0x9b8\n schedule+0x2c/0x88\n schedule_timeout+0x204/0x478\n wait_for_common+0x154/0x250\n wait_for_completion+0x28/0x38\n cmd_exec+0x7a0/0xa00 [mlx5_core]\n mlx5_cmd_exec+0x54/0x80 [mlx5_core]\n mlx5_core_modify_cq+0x6c/0x80 [mlx5_core]\n mlx5_core_modify_cq_moderation+0xa0/0xb8 [mlx5_core]\n mlx5e_tx_dim_work+0x54/0x68 [mlx5_core]\n process_one_work+0x1b0/0x448\n worker_thread+0x54/0x468\n kthread+0x134/0x138\n ret_from_fork+0x10/0x18",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21662",
"url": "https://www.suse.com/security/cve/CVE-2025-21662"
},
{
"category": "external",
"summary": "SUSE Bug 1236198 for CVE-2025-21662",
"url": "https://bugzilla.suse.com/1236198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21662"
},
{
"cve": "CVE-2025-21663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: dwmac-tegra: Read iommu stream id from device tree\n\nNvidia\u0027s Tegra MGBE controllers require the IOMMU \"Stream ID\" (SID) to be\nwritten to the MGBE_WRAP_AXI_ASID0_CTRL register.\n\nThe current driver is hard coded to use MGBE0\u0027s SID for all controllers.\nThis causes softirq time outs and kernel panics when using controllers\nother than MGBE0.\n\nExample dmesg errors when an ethernet cable is connected to MGBE1:\n\n[ 116.133290] tegra-mgbe 6910000.ethernet eth1: Link is Up - 1Gbps/Full - flow control rx/tx\n[ 121.851283] tegra-mgbe 6910000.ethernet eth1: NETDEV WATCHDOG: CPU: 5: transmit queue 0 timed out 5690 ms\n[ 121.851782] tegra-mgbe 6910000.ethernet eth1: Reset adapter.\n[ 121.892464] tegra-mgbe 6910000.ethernet eth1: Register MEM_TYPE_PAGE_POOL RxQ-0\n[ 121.905920] tegra-mgbe 6910000.ethernet eth1: PHY [stmmac-1:00] driver [Aquantia AQR113] (irq=171)\n[ 121.907356] tegra-mgbe 6910000.ethernet eth1: Enabling Safety Features\n[ 121.907578] tegra-mgbe 6910000.ethernet eth1: IEEE 1588-2008 Advanced Timestamp supported\n[ 121.908399] tegra-mgbe 6910000.ethernet eth1: registered PTP clock\n[ 121.908582] tegra-mgbe 6910000.ethernet eth1: configuring for phy/10gbase-r link mode\n[ 125.961292] tegra-mgbe 6910000.ethernet eth1: Link is Up - 1Gbps/Full - flow control rx/tx\n[ 181.921198] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:\n[ 181.921404] rcu: \t7-....: (1 GPs behind) idle=540c/1/0x4000000000000002 softirq=1748/1749 fqs=2337\n[ 181.921684] rcu: \t(detected by 4, t=6002 jiffies, g=1357, q=1254 ncpus=8)\n[ 181.921878] Sending NMI from CPU 4 to CPUs 7:\n[ 181.921886] NMI backtrace for cpu 7\n[ 181.922131] CPU: 7 UID: 0 PID: 0 Comm: swapper/7 Kdump: loaded Not tainted 6.13.0-rc3+ #6\n[ 181.922390] Hardware name: NVIDIA CTI Forge + Orin AGX/Jetson, BIOS 202402.1-Unknown 10/28/2024\n[ 181.922658] pstate: 40400009 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 181.922847] pc : handle_softirqs+0x98/0x368\n[ 181.922978] lr : __do_softirq+0x18/0x20\n[ 181.923095] sp : ffff80008003bf50\n[ 181.923189] x29: ffff80008003bf50 x28: 0000000000000008 x27: 0000000000000000\n[ 181.923379] x26: ffffce78ea277000 x25: 0000000000000000 x24: 0000001c61befda0\n[ 181.924486] x23: 0000000060400009 x22: ffffce78e99918bc x21: ffff80008018bd70\n[ 181.925568] x20: ffffce78e8bb00d8 x19: ffff80008018bc20 x18: 0000000000000000\n[ 181.926655] x17: ffff318ebe7d3000 x16: ffff800080038000 x15: 0000000000000000\n[ 181.931455] x14: ffff000080816680 x13: ffff318ebe7d3000 x12: 000000003464d91d\n[ 181.938628] x11: 0000000000000040 x10: ffff000080165a70 x9 : ffffce78e8bb0160\n[ 181.945804] x8 : ffff8000827b3160 x7 : f9157b241586f343 x6 : eeb6502a01c81c74\n[ 181.953068] x5 : a4acfcdd2e8096bb x4 : ffffce78ea277340 x3 : 00000000ffffd1e1\n[ 181.960329] x2 : 0000000000000101 x1 : ffffce78ea277340 x0 : ffff318ebe7d3000\n[ 181.967591] Call trace:\n[ 181.970043] handle_softirqs+0x98/0x368 (P)\n[ 181.974240] __do_softirq+0x18/0x20\n[ 181.977743] ____do_softirq+0x14/0x28\n[ 181.981415] call_on_irq_stack+0x24/0x30\n[ 181.985180] do_softirq_own_stack+0x20/0x30\n[ 181.989379] __irq_exit_rcu+0x114/0x140\n[ 181.993142] irq_exit_rcu+0x14/0x28\n[ 181.996816] el1_interrupt+0x44/0xb8\n[ 182.000316] el1h_64_irq_handler+0x14/0x20\n[ 182.004343] el1h_64_irq+0x80/0x88\n[ 182.007755] cpuidle_enter_state+0xc4/0x4a8 (P)\n[ 182.012305] cpuidle_enter+0x3c/0x58\n[ 182.015980] cpuidle_idle_call+0x128/0x1c0\n[ 182.020005] do_idle+0xe0/0xf0\n[ 182.023155] cpu_startup_entry+0x3c/0x48\n[ 182.026917] secondary_start_kernel+0xdc/0x120\n[ 182.031379] __secondary_switched+0x74/0x78\n[ 212.971162] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 7-.... } 6103 jiffies s: 417 root: 0x80/.\n[ 212.985935] rcu: blocking rcu_node structures (internal RCU debug):\n[ 212.992758] Sending NMI from CPU 0 to CPUs 7:\n[ 212.998539] NMI backtrace for cpu 7\n[ 213.004304] CPU: 7 UID: 0 PI\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21663",
"url": "https://www.suse.com/security/cve/CVE-2025-21663"
},
{
"category": "external",
"summary": "SUSE Bug 1236260 for CVE-2025-21663",
"url": "https://bugzilla.suse.com/1236260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21663"
},
{
"cve": "CVE-2025-21664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm thin: make get_first_thin use rcu-safe list first function\n\nThe documentation in rculist.h explains the absence of list_empty_rcu()\nand cautions programmers against relying on a list_empty() -\u003e\nlist_first() sequence in RCU safe code. This is because each of these\nfunctions performs its own READ_ONCE() of the list head. This can lead\nto a situation where the list_empty() sees a valid list entry, but the\nsubsequent list_first() sees a different view of list head state after a\nmodification.\n\nIn the case of dm-thin, this author had a production box crash from a GP\nfault in the process_deferred_bios path. This function saw a valid list\nhead in get_first_thin() but when it subsequently dereferenced that and\nturned it into a thin_c, it got the inside of the struct pool, since the\nlist was now empty and referring to itself. The kernel on which this\noccurred printed both a warning about a refcount_t being saturated, and\na UBSAN error for an out-of-bounds cpuid access in the queued spinlock,\nprior to the fault itself. When the resulting kdump was examined, it\nwas possible to see another thread patiently waiting in thin_dtr\u0027s\nsynchronize_rcu.\n\nThe thin_dtr call managed to pull the thin_c out of the active thins\nlist (and have it be the last entry in the active_thins list) at just\nthe wrong moment which lead to this crash.\n\nFortunately, the fix here is straight forward. Switch get_first_thin()\nfunction to use list_first_or_null_rcu() which performs just a single\nREAD_ONCE() and returns NULL if the list is already empty.\n\nThis was run against the devicemapper test suite\u0027s thin-provisioning\nsuites for delete and suspend and no regressions were observed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21664",
"url": "https://www.suse.com/security/cve/CVE-2025-21664"
},
{
"category": "external",
"summary": "SUSE Bug 1236262 for CVE-2025-21664",
"url": "https://bugzilla.suse.com/1236262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21664"
},
{
"cve": "CVE-2025-21674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel\n\nAttempt to enable IPsec packet offload in tunnel mode in debug kernel\ngenerates the following kernel panic, which is happening due to two\nissues:\n1. In SA add section, the should be _bh() variant when marking SA mode.\n2. There is not needed flush_workqueue in SA delete routine. It is not\nneeded as at this stage as it is removed from SADB and the running work\nwill be canceled later in SA free.\n\n =====================================================\n WARNING: SOFTIRQ-safe -\u003e SOFTIRQ-unsafe lock order detected\n 6.12.0+ #4 Not tainted\n -----------------------------------------------------\n charon/1337 [HC0[0]:SC0[4]:HE1:SE0] is trying to acquire:\n ffff88810f365020 (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}, at: mlx5e_xfrm_del_state+0xca/0x1e0 [mlx5_core]\n\n and this task is already holding:\n ffff88813e0f0d48 (\u0026x-\u003elock){+.-.}-{3:3}, at: xfrm_state_delete+0x16/0x30\n which would create a new lock dependency:\n (\u0026x-\u003elock){+.-.}-{3:3} -\u003e (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}\n\n but this new dependency connects a SOFTIRQ-irq-safe lock:\n (\u0026x-\u003elock){+.-.}-{3:3}\n\n ... which became SOFTIRQ-irq-safe at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_timer_handler+0x91/0xd70\n __hrtimer_run_queues+0x1dd/0xa60\n hrtimer_run_softirq+0x146/0x2e0\n handle_softirqs+0x266/0x860\n irq_exit_rcu+0x115/0x1a0\n sysvec_apic_timer_interrupt+0x6e/0x90\n asm_sysvec_apic_timer_interrupt+0x16/0x20\n default_idle+0x13/0x20\n default_idle_call+0x67/0xa0\n do_idle+0x2da/0x320\n cpu_startup_entry+0x50/0x60\n start_secondary+0x213/0x2a0\n common_startup_64+0x129/0x138\n\n to a SOFTIRQ-irq-unsafe lock:\n (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}\n\n ... which became SOFTIRQ-irq-unsafe at:\n ...\n lock_acquire+0x1be/0x520\n _raw_spin_lock+0x2c/0x40\n xa_set_mark+0x70/0x110\n mlx5e_xfrm_add_state+0xe48/0x2290 [mlx5_core]\n xfrm_dev_state_add+0x3bb/0xd70\n xfrm_add_sa+0x2451/0x4a90\n xfrm_user_rcv_msg+0x493/0x880\n netlink_rcv_skb+0x12e/0x380\n xfrm_netlink_rcv+0x6d/0x90\n netlink_unicast+0x42f/0x740\n netlink_sendmsg+0x745/0xbe0\n __sock_sendmsg+0xc5/0x190\n __sys_sendto+0x1fe/0x2c0\n __x64_sys_sendto+0xdc/0x1b0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n other info that might help us debug this:\n\n Possible interrupt unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026xa-\u003exa_lock#24);\n local_irq_disable();\n lock(\u0026x-\u003elock);\n lock(\u0026xa-\u003exa_lock#24);\n \u003cInterrupt\u003e\n lock(\u0026x-\u003elock);\n\n *** DEADLOCK ***\n\n 2 locks held by charon/1337:\n #0: ffffffff87f8f858 (\u0026net-\u003exfrm.xfrm_cfg_mutex){+.+.}-{4:4}, at: xfrm_netlink_rcv+0x5e/0x90\n #1: ffff88813e0f0d48 (\u0026x-\u003elock){+.-.}-{3:3}, at: xfrm_state_delete+0x16/0x30\n\n the dependencies between SOFTIRQ-irq-safe lock and the holding lock:\n -\u003e (\u0026x-\u003elock){+.-.}-{3:3} ops: 29 {\n HARDIRQ-ON-W at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_alloc_spi+0xc0/0xe60\n xfrm_alloc_userspi+0x5f6/0xbc0\n xfrm_user_rcv_msg+0x493/0x880\n netlink_rcv_skb+0x12e/0x380\n xfrm_netlink_rcv+0x6d/0x90\n netlink_unicast+0x42f/0x740\n netlink_sendmsg+0x745/0xbe0\n __sock_sendmsg+0xc5/0x190\n __sys_sendto+0x1fe/0x2c0\n __x64_sys_sendto+0xdc/0x1b0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n IN-SOFTIRQ-W at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_timer_handler+0x91/0xd70\n __hrtimer_run_queues+0x1dd/0xa60\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21674",
"url": "https://www.suse.com/security/cve/CVE-2025-21674"
},
{
"category": "external",
"summary": "SUSE Bug 1236688 for CVE-2025-21674",
"url": "https://bugzilla.suse.com/1236688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21674"
},
{
"cve": "CVE-2025-21676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fec: handle page_pool_dev_alloc_pages error\n\nThe fec_enet_update_cbd function calls page_pool_dev_alloc_pages but did\nnot handle the case when it returned NULL. There was a WARN_ON(!new_page)\nbut it would still proceed to use the NULL pointer and then crash.\n\nThis case does seem somewhat rare but when the system is under memory\npressure it can happen. One case where I can duplicate this with some\nfrequency is when writing over a smbd share to a SATA HDD attached to an\nimx6q.\n\nSetting /proc/sys/vm/min_free_kbytes to higher values also seems to solve\nthe problem for my test case. But it still seems wrong that the fec driver\nignores the memory allocation error and can crash.\n\nThis commit handles the allocation error by dropping the current packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21676",
"url": "https://www.suse.com/security/cve/CVE-2025-21676"
},
{
"category": "external",
"summary": "SUSE Bug 1236696 for CVE-2025-21676",
"url": "https://bugzilla.suse.com/1236696"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21676"
},
{
"cve": "CVE-2025-21682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21682"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\neth: bnxt: always recalculate features after XDP clearing, fix null-deref\n\nRecalculate features when XDP is detached.\n\nBefore:\n # ip li set dev eth0 xdp obj xdp_dummy.bpf.o sec xdp\n # ip li set dev eth0 xdp off\n # ethtool -k eth0 | grep gro\n rx-gro-hw: off [requested on]\n\nAfter:\n # ip li set dev eth0 xdp obj xdp_dummy.bpf.o sec xdp\n # ip li set dev eth0 xdp off\n # ethtool -k eth0 | grep gro\n rx-gro-hw: on\n\nThe fact that HW-GRO doesn\u0027t get re-enabled automatically is just\na minor annoyance. The real issue is that the features will randomly\ncome back during another reconfiguration which just happens to invoke\nnetdev_update_features(). The driver doesn\u0027t handle reconfiguring\ntwo things at a time very robustly.\n\nStarting with commit 98ba1d931f61 (\"bnxt_en: Fix RSS logic in\n__bnxt_reserve_rings()\") we only reconfigure the RSS hash table\nif the \"effective\" number of Rx rings has changed. If HW-GRO is\nenabled \"effective\" number of rings is 2x what user sees.\nSo if we are in the bad state, with HW-GRO re-enablement \"pending\"\nafter XDP off, and we lower the rings by / 2 - the HW-GRO rings\ndoing 2x and the ethtool -L doing / 2 may cancel each other out,\nand the:\n\n if (old_rx_rings != bp-\u003ehw_resc.resv_rx_rings \u0026\u0026\n\ncondition in __bnxt_reserve_rings() will be false.\nThe RSS map won\u0027t get updated, and we\u0027ll crash with:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000168\n RIP: 0010:__bnxt_hwrm_vnic_set_rss+0x13a/0x1a0\n bnxt_hwrm_vnic_rss_cfg_p5+0x47/0x180\n __bnxt_setup_vnic_p5+0x58/0x110\n bnxt_init_nic+0xb72/0xf50\n __bnxt_open_nic+0x40d/0xab0\n bnxt_open_nic+0x2b/0x60\n ethtool_set_channels+0x18c/0x1d0\n\nAs we try to access a freed ring.\n\nThe issue is present since XDP support was added, really, but\nprior to commit 98ba1d931f61 (\"bnxt_en: Fix RSS logic in\n__bnxt_reserve_rings()\") it wasn\u0027t causing major issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21682",
"url": "https://www.suse.com/security/cve/CVE-2025-21682"
},
{
"category": "external",
"summary": "SUSE Bug 1236703 for CVE-2025-21682",
"url": "https://bugzilla.suse.com/1236703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-25-rt-1-1.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-28T07:51:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-21682"
}
]
}
SUSE-SU-2025:0236-1
Vulnerability from csaf_suse - Published: 2025-01-24 17:02 - Updated: 2025-01-24 17:02Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2022-48742: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() (bsc#1226694).
- CVE-2022-49033: btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit() (bsc#1232045).
- CVE-2022-49035: media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE (bsc#1215304).
- CVE-2023-52434: Fixed potential OOBs in smb2_parse_contexts() (bsc#1220148).
- CVE-2023-52922: can: bcm: Fix UAF in bcm_proc_show() (bsc#1233977).
- CVE-2024-26976: KVM: Always flush async #PF workqueue when vCPU is being destroyed (bsc#1223635).
- CVE-2024-35847: irqchip/gic-v3-its: Prevent double free on error (bsc#1224697).
- CVE-2024-36883: net: fix out-of-bounds access in ops_init (bsc#1225725).
- CVE-2024-36886: tipc: fix UAF in error path (bsc#1225730).
- CVE-2024-38589: netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1226748).
- CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405).
- CVE-2024-47141: pinmux: Use sequential access to access desc->pinmux data (bsc#1235708).
- CVE-2024-47666: scsi: pm80xx: Set phy->enable_completion only when we wait for it (bsc#1231453).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).
- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).
- CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices (bsc#1233050).
- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).
- CVE-2024-50211: udf: refactor inode_bmap() to handle error (bsc#1233096).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50287: media: v4l2-tpg: prevent the risk of a division by zero (bsc#1233476).
- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).
- CVE-2024-53057: net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT (bsc#1233551).
- CVE-2024-53101: fs: Fix uninitialized value issue in from_kuid and from_kgid (bsc#1233769).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).
- CVE-2024-53150: ALSA: usb-audio: Fix out of bounds reads when finding clock sources (bsc#1234834).
- CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846).
- CVE-2024-53157: firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (bsc#1234827).
- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).
- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).
- CVE-2024-53210: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (bsc#1234971).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53224: RDMA/mlx5: Cancel pkey work before destroying device resources (bsc#1235009).
- CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-56531: ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (bsc#1235057).
- CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073).
- CVE-2024-56551: drm/amdgpu: fix usage slab after free (bsc#1235075).
- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).
- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).
- CVE-2024-56587: leds: class: Protect brightness_show() with led_cdev->led_access mutex (bsc#1235125).
- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).
- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).
- CVE-2024-56616: drm/dp_mst: Fix MST sideband message body length check (bsc#1235427).
- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).
- CVE-2024-56642: tipc: Fix use-after-free of kernel socket in cleanup_bearer() (bsc#1235433).
- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).
- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).
- CVE-2024-56724: mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (bsc#1235577).
- CVE-2024-56756: nvme-pci: fix freeing of the HMB descriptor table (bsc#1234922).
- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).
- CVE-2024-57849: s390/cpum_sf: Handle CPU hotplug remove during sampling (bsc#1235814).
- CVE-2024-57887: drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (bsc#1235952).
- CVE-2024-57888: workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416 bsc#1235918).
- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).
- CVE-2024-57893: ALSA: seq: oss: Fix races at processing SysEx messages (bsc#1235920).
The following non-security bugs were fixed:
- SUNRPC: 'Directory with parent 'rpc_clnt' already present!' (bsc#1168202 bsc#1188924).
- SUNRPC: fix use-after-free in rpc_free_client_work() (bsc#1168202 bsc#1188924).
- cifs: fix calc signature on big endian systems (bsc#1235888, bsc#1234921).
- memcg: reduce memcg tree traversals for stats collection (bsc#1231877).
- mm: memory.stat allow preemption (bsc#1231877).
- net: marvell: mvpp2: phylink requires the link interrupt (bsc#1117016).
- smb: client: fix parsing of SMB3.1.1 POSIX create context (git-fixes).
- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).
- udf: Handle error when adding extent to a file (bsc#1234437).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- workqueue: skip lockdep wq dependency in cancel_work_sync() (bsc#1235918).
Patchnames
SUSE-2025-236,SUSE-SLE-HA-12-SP5-2025-236,SUSE-SLE-Live-Patching-12-SP5-2025-236,SUSE-SLE-SERVER-12-SP5-LTSS-2025-236,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-236
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2022-48742: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() (bsc#1226694).\n- CVE-2022-49033: btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit() (bsc#1232045).\n- CVE-2022-49035: media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE (bsc#1215304).\n- CVE-2023-52434: Fixed potential OOBs in smb2_parse_contexts() (bsc#1220148).\n- CVE-2023-52922: can: bcm: Fix UAF in bcm_proc_show() (bsc#1233977).\n- CVE-2024-26976: KVM: Always flush async #PF workqueue when vCPU is being destroyed (bsc#1223635).\n- CVE-2024-35847: irqchip/gic-v3-its: Prevent double free on error (bsc#1224697).\n- CVE-2024-36883: net: fix out-of-bounds access in ops_init (bsc#1225725).\n- CVE-2024-36886: tipc: fix UAF in error path (bsc#1225730).\n- CVE-2024-38589: netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1226748).\n- CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405).\n- CVE-2024-47141: pinmux: Use sequential access to access desc-\u003epinmux data (bsc#1235708).\n- CVE-2024-47666: scsi: pm80xx: Set phy-\u003eenable_completion only when we wait for it (bsc#1231453).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).\n- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).\n- CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices (bsc#1233050).\n- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).\n- CVE-2024-50211: udf: refactor inode_bmap() to handle error (bsc#1233096).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50287: media: v4l2-tpg: prevent the risk of a division by zero (bsc#1233476).\n- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).\n- CVE-2024-53057: net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT (bsc#1233551).\n- CVE-2024-53101: fs: Fix uninitialized value issue in from_kuid and from_kgid (bsc#1233769).\n- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).\n- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).\n- CVE-2024-53150: ALSA: usb-audio: Fix out of bounds reads when finding clock sources (bsc#1234834).\n- CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846).\n- CVE-2024-53157: firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (bsc#1234827).\n- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).\n- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).\n- CVE-2024-53210: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (bsc#1234971).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53224: RDMA/mlx5: Cancel pkey work before destroying device resources (bsc#1235009).\n- CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-56531: ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (bsc#1235057).\n- CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073).\n- CVE-2024-56551: drm/amdgpu: fix usage slab after free (bsc#1235075).\n- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).\n- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).\n- CVE-2024-56587: leds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex (bsc#1235125).\n- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).\n- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).\n- CVE-2024-56616: drm/dp_mst: Fix MST sideband message body length check (bsc#1235427).\n- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).\n- CVE-2024-56642: tipc: Fix use-after-free of kernel socket in cleanup_bearer() (bsc#1235433).\n- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).\n- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).\n- CVE-2024-56724: mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (bsc#1235577).\n- CVE-2024-56756: nvme-pci: fix freeing of the HMB descriptor table (bsc#1234922).\n- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).\n- CVE-2024-57849: s390/cpum_sf: Handle CPU hotplug remove during sampling (bsc#1235814).\n- CVE-2024-57887: drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (bsc#1235952).\n- CVE-2024-57888: workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416 bsc#1235918).\n- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).\n- CVE-2024-57893: ALSA: seq: oss: Fix races at processing SysEx messages (bsc#1235920).\n \nThe following non-security bugs were fixed:\n\n- SUNRPC: \u0027Directory with parent \u0027rpc_clnt\u0027 already present!\u0027 (bsc#1168202 bsc#1188924).\n- SUNRPC: fix use-after-free in rpc_free_client_work() (bsc#1168202 bsc#1188924).\n- cifs: fix calc signature on big endian systems (bsc#1235888, bsc#1234921).\n- memcg: reduce memcg tree traversals for stats collection (bsc#1231877).\n- mm: memory.stat allow preemption (bsc#1231877).\n- net: marvell: mvpp2: phylink requires the link interrupt (bsc#1117016).\n- smb: client: fix parsing of SMB3.1.1 POSIX create context (git-fixes).\n- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).\n- udf: Handle error when adding extent to a file (bsc#1234437).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- workqueue: skip lockdep wq dependency in cancel_work_sync() (bsc#1235918).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-236,SUSE-SLE-HA-12-SP5-2025-236,SUSE-SLE-Live-Patching-12-SP5-2025-236,SUSE-SLE-SERVER-12-SP5-LTSS-2025-236,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-236",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0236-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0236-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250236-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0236-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020196.html"
},
{
"category": "self",
"summary": "SUSE Bug 1117016",
"url": "https://bugzilla.suse.com/1117016"
},
{
"category": "self",
"summary": "SUSE Bug 1168202",
"url": "https://bugzilla.suse.com/1168202"
},
{
"category": "self",
"summary": "SUSE Bug 1188924",
"url": "https://bugzilla.suse.com/1188924"
},
{
"category": "self",
"summary": "SUSE Bug 1215304",
"url": "https://bugzilla.suse.com/1215304"
},
{
"category": "self",
"summary": "SUSE Bug 1220148",
"url": "https://bugzilla.suse.com/1220148"
},
{
"category": "self",
"summary": "SUSE Bug 1223635",
"url": "https://bugzilla.suse.com/1223635"
},
{
"category": "self",
"summary": "SUSE Bug 1224697",
"url": "https://bugzilla.suse.com/1224697"
},
{
"category": "self",
"summary": "SUSE Bug 1225725",
"url": "https://bugzilla.suse.com/1225725"
},
{
"category": "self",
"summary": "SUSE Bug 1225730",
"url": "https://bugzilla.suse.com/1225730"
},
{
"category": "self",
"summary": "SUSE Bug 1226694",
"url": "https://bugzilla.suse.com/1226694"
},
{
"category": "self",
"summary": "SUSE Bug 1226748",
"url": "https://bugzilla.suse.com/1226748"
},
{
"category": "self",
"summary": "SUSE Bug 1226872",
"url": "https://bugzilla.suse.com/1226872"
},
{
"category": "self",
"summary": "SUSE Bug 1228405",
"url": "https://bugzilla.suse.com/1228405"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1230766",
"url": "https://bugzilla.suse.com/1230766"
},
{
"category": "self",
"summary": "SUSE Bug 1231453",
"url": "https://bugzilla.suse.com/1231453"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1231877",
"url": "https://bugzilla.suse.com/1231877"
},
{
"category": "self",
"summary": "SUSE Bug 1231909",
"url": "https://bugzilla.suse.com/1231909"
},
{
"category": "self",
"summary": "SUSE Bug 1232045",
"url": "https://bugzilla.suse.com/1232045"
},
{
"category": "self",
"summary": "SUSE Bug 1232048",
"url": "https://bugzilla.suse.com/1232048"
},
{
"category": "self",
"summary": "SUSE Bug 1232166",
"url": "https://bugzilla.suse.com/1232166"
},
{
"category": "self",
"summary": "SUSE Bug 1232224",
"url": "https://bugzilla.suse.com/1232224"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233050",
"url": "https://bugzilla.suse.com/1233050"
},
{
"category": "self",
"summary": "SUSE Bug 1233055",
"url": "https://bugzilla.suse.com/1233055"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233112",
"url": "https://bugzilla.suse.com/1233112"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233204",
"url": "https://bugzilla.suse.com/1233204"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233476",
"url": "https://bugzilla.suse.com/1233476"
},
{
"category": "self",
"summary": "SUSE Bug 1233488",
"url": "https://bugzilla.suse.com/1233488"
},
{
"category": "self",
"summary": "SUSE Bug 1233551",
"url": "https://bugzilla.suse.com/1233551"
},
{
"category": "self",
"summary": "SUSE Bug 1233769",
"url": "https://bugzilla.suse.com/1233769"
},
{
"category": "self",
"summary": "SUSE Bug 1233977",
"url": "https://bugzilla.suse.com/1233977"
},
{
"category": "self",
"summary": "SUSE Bug 1234087",
"url": "https://bugzilla.suse.com/1234087"
},
{
"category": "self",
"summary": "SUSE Bug 1234161",
"url": "https://bugzilla.suse.com/1234161"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234242",
"url": "https://bugzilla.suse.com/1234242"
},
{
"category": "self",
"summary": "SUSE Bug 1234243",
"url": "https://bugzilla.suse.com/1234243"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234381",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "self",
"summary": "SUSE Bug 1234437",
"url": "https://bugzilla.suse.com/1234437"
},
{
"category": "self",
"summary": "SUSE Bug 1234690",
"url": "https://bugzilla.suse.com/1234690"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234898",
"url": "https://bugzilla.suse.com/1234898"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234922",
"url": "https://bugzilla.suse.com/1234922"
},
{
"category": "self",
"summary": "SUSE Bug 1234923",
"url": "https://bugzilla.suse.com/1234923"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235009",
"url": "https://bugzilla.suse.com/1235009"
},
{
"category": "self",
"summary": "SUSE Bug 1235031",
"url": "https://bugzilla.suse.com/1235031"
},
{
"category": "self",
"summary": "SUSE Bug 1235035",
"url": "https://bugzilla.suse.com/1235035"
},
{
"category": "self",
"summary": "SUSE Bug 1235054",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235057",
"url": "https://bugzilla.suse.com/1235057"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235073",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "self",
"summary": "SUSE Bug 1235075",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "self",
"summary": "SUSE Bug 1235125",
"url": "https://bugzilla.suse.com/1235125"
},
{
"category": "self",
"summary": "SUSE Bug 1235138",
"url": "https://bugzilla.suse.com/1235138"
},
{
"category": "self",
"summary": "SUSE Bug 1235249",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "self",
"summary": "SUSE Bug 1235415",
"url": "https://bugzilla.suse.com/1235415"
},
{
"category": "self",
"summary": "SUSE Bug 1235416",
"url": "https://bugzilla.suse.com/1235416"
},
{
"category": "self",
"summary": "SUSE Bug 1235417",
"url": "https://bugzilla.suse.com/1235417"
},
{
"category": "self",
"summary": "SUSE Bug 1235427",
"url": "https://bugzilla.suse.com/1235427"
},
{
"category": "self",
"summary": "SUSE Bug 1235433",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "self",
"summary": "SUSE Bug 1235480",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "self",
"summary": "SUSE Bug 1235577",
"url": "https://bugzilla.suse.com/1235577"
},
{
"category": "self",
"summary": "SUSE Bug 1235584",
"url": "https://bugzilla.suse.com/1235584"
},
{
"category": "self",
"summary": "SUSE Bug 1235708",
"url": "https://bugzilla.suse.com/1235708"
},
{
"category": "self",
"summary": "SUSE Bug 1235759",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "self",
"summary": "SUSE Bug 1235814",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "self",
"summary": "SUSE Bug 1235888",
"url": "https://bugzilla.suse.com/1235888"
},
{
"category": "self",
"summary": "SUSE Bug 1235918",
"url": "https://bugzilla.suse.com/1235918"
},
{
"category": "self",
"summary": "SUSE Bug 1235920",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "self",
"summary": "SUSE Bug 1235952",
"url": "https://bugzilla.suse.com/1235952"
},
{
"category": "self",
"summary": "SUSE Bug 1235964",
"url": "https://bugzilla.suse.com/1235964"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48742 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-49033 page",
"url": "https://www.suse.com/security/cve/CVE-2022-49033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-49035 page",
"url": "https://www.suse.com/security/cve/CVE-2022-49035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52434 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52434/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52922 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26976 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35847 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36484 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36484/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36883 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38589 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46771 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47666 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47666/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49925 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49925/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50199 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50199/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50287 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50299 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53057 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53057/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53101 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53112 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53172 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56531 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56531/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56587 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56587/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-5660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-5660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56603 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56606 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56616 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56631 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56631/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56642 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56642/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56664 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56704 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57849 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57892 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-01-24T17:02:35Z",
"generator": {
"date": "2025-01-24T17:02:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0236-1",
"initial_release_date": "2025-01-24T17:02:35Z",
"revision_history": [
{
"date": "2025-01-24T17:02:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"product_id": "cluster-md-kmp-default-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-122.244.1.aarch64",
"product": {
"name": "dlm-kmp-default-4.12.14-122.244.1.aarch64",
"product_id": "dlm-kmp-default-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"product": {
"name": "gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"product_id": "gfs2-kmp-default-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-default-4.12.14-122.244.1.aarch64",
"product_id": "kernel-default-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-default-base-4.12.14-122.244.1.aarch64",
"product_id": "kernel-default-base-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-default-devel-4.12.14-122.244.1.aarch64",
"product_id": "kernel-default-devel-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-default-extra-4.12.14-122.244.1.aarch64",
"product_id": "kernel-default-extra-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-default-kgraft-4.12.14-122.244.1.aarch64",
"product_id": "kernel-default-kgraft-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-obs-build-4.12.14-122.244.1.aarch64",
"product_id": "kernel-obs-build-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-obs-qa-4.12.14-122.244.1.aarch64",
"product_id": "kernel-obs-qa-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-syms-4.12.14-122.244.1.aarch64",
"product_id": "kernel-syms-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-vanilla-4.12.14-122.244.1.aarch64",
"product_id": "kernel-vanilla-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-vanilla-base-4.12.14-122.244.1.aarch64",
"product_id": "kernel-vanilla-base-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-122.244.1.aarch64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-122.244.1.aarch64",
"product_id": "kernel-vanilla-devel-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-4.12.14-122.244.1.aarch64",
"product": {
"name": "kselftests-kmp-default-4.12.14-122.244.1.aarch64",
"product_id": "kselftests-kmp-default-4.12.14-122.244.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"product_id": "ocfs2-kmp-default-4.12.14-122.244.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-4.12.14-122.244.1.noarch",
"product": {
"name": "kernel-devel-4.12.14-122.244.1.noarch",
"product_id": "kernel-devel-4.12.14-122.244.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-4.12.14-122.244.1.noarch",
"product": {
"name": "kernel-docs-4.12.14-122.244.1.noarch",
"product_id": "kernel-docs-4.12.14-122.244.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-4.12.14-122.244.1.noarch",
"product": {
"name": "kernel-docs-html-4.12.14-122.244.1.noarch",
"product_id": "kernel-docs-html-4.12.14-122.244.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-4.12.14-122.244.1.noarch",
"product": {
"name": "kernel-macros-4.12.14-122.244.1.noarch",
"product_id": "kernel-macros-4.12.14-122.244.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-4.12.14-122.244.1.noarch",
"product": {
"name": "kernel-source-4.12.14-122.244.1.noarch",
"product_id": "kernel-source-4.12.14-122.244.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-4.12.14-122.244.1.noarch",
"product": {
"name": "kernel-source-vanilla-4.12.14-122.244.1.noarch",
"product_id": "kernel-source-vanilla-4.12.14-122.244.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"product_id": "cluster-md-kmp-default-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"product": {
"name": "dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"product_id": "dlm-kmp-default-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"product_id": "gfs2-kmp-default-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-debug-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-debug-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-base-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-debug-base-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-debug-base-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-debug-devel-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-debug-devel-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-default-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-default-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-default-base-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-default-base-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-default-devel-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-default-devel-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-default-extra-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-default-extra-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-default-kgraft-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-obs-build-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-obs-build-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-obs-qa-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-obs-qa-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-syms-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-syms-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-vanilla-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-vanilla-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-vanilla-base-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-vanilla-base-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kernel-vanilla-devel-4.12.14-122.244.1.ppc64le",
"product_id": "kernel-vanilla-devel-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"product": {
"name": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"product_id": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-4.12.14-122.244.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-4.12.14-122.244.1.ppc64le",
"product_id": "kselftests-kmp-default-4.12.14-122.244.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"product_id": "ocfs2-kmp-default-4.12.14-122.244.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"product": {
"name": "cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"product_id": "cluster-md-kmp-default-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-122.244.1.s390x",
"product": {
"name": "dlm-kmp-default-4.12.14-122.244.1.s390x",
"product_id": "dlm-kmp-default-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-122.244.1.s390x",
"product": {
"name": "gfs2-kmp-default-4.12.14-122.244.1.s390x",
"product_id": "gfs2-kmp-default-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-default-4.12.14-122.244.1.s390x",
"product_id": "kernel-default-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-default-base-4.12.14-122.244.1.s390x",
"product_id": "kernel-default-base-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-default-devel-4.12.14-122.244.1.s390x",
"product_id": "kernel-default-devel-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-default-extra-4.12.14-122.244.1.s390x",
"product_id": "kernel-default-extra-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-default-kgraft-4.12.14-122.244.1.s390x",
"product_id": "kernel-default-kgraft-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"product_id": "kernel-default-kgraft-devel-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-man-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-default-man-4.12.14-122.244.1.s390x",
"product_id": "kernel-default-man-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-obs-build-4.12.14-122.244.1.s390x",
"product_id": "kernel-obs-build-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-obs-qa-4.12.14-122.244.1.s390x",
"product_id": "kernel-obs-qa-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-syms-4.12.14-122.244.1.s390x",
"product_id": "kernel-syms-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-vanilla-4.12.14-122.244.1.s390x",
"product_id": "kernel-vanilla-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-vanilla-base-4.12.14-122.244.1.s390x",
"product_id": "kernel-vanilla-base-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-vanilla-devel-4.12.14-122.244.1.s390x",
"product_id": "kernel-vanilla-devel-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-zfcpdump-4.12.14-122.244.1.s390x",
"product_id": "kernel-zfcpdump-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-man-4.12.14-122.244.1.s390x",
"product": {
"name": "kernel-zfcpdump-man-4.12.14-122.244.1.s390x",
"product_id": "kernel-zfcpdump-man-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"product": {
"name": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"product_id": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-4.12.14-122.244.1.s390x",
"product": {
"name": "kselftests-kmp-default-4.12.14-122.244.1.s390x",
"product_id": "kselftests-kmp-default-4.12.14-122.244.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"product": {
"name": "ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"product_id": "ocfs2-kmp-default-4.12.14-122.244.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"product_id": "cluster-md-kmp-default-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-122.244.1.x86_64",
"product": {
"name": "dlm-kmp-default-4.12.14-122.244.1.x86_64",
"product_id": "dlm-kmp-default-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"product": {
"name": "gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"product_id": "gfs2-kmp-default-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-debug-4.12.14-122.244.1.x86_64",
"product_id": "kernel-debug-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-base-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-debug-base-4.12.14-122.244.1.x86_64",
"product_id": "kernel-debug-base-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-debug-devel-4.12.14-122.244.1.x86_64",
"product_id": "kernel-debug-devel-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-default-4.12.14-122.244.1.x86_64",
"product_id": "kernel-default-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-default-base-4.12.14-122.244.1.x86_64",
"product_id": "kernel-default-base-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-default-devel-4.12.14-122.244.1.x86_64",
"product_id": "kernel-default-devel-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-default-extra-4.12.14-122.244.1.x86_64",
"product_id": "kernel-default-extra-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"product_id": "kernel-default-kgraft-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"product_id": "kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-kvmsmall-4.12.14-122.244.1.x86_64",
"product_id": "kernel-kvmsmall-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-base-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-kvmsmall-base-4.12.14-122.244.1.x86_64",
"product_id": "kernel-kvmsmall-base-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-4.12.14-122.244.1.x86_64",
"product_id": "kernel-kvmsmall-devel-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-obs-build-4.12.14-122.244.1.x86_64",
"product_id": "kernel-obs-build-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-obs-qa-4.12.14-122.244.1.x86_64",
"product_id": "kernel-obs-qa-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-syms-4.12.14-122.244.1.x86_64",
"product_id": "kernel-syms-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-vanilla-4.12.14-122.244.1.x86_64",
"product_id": "kernel-vanilla-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-vanilla-base-4.12.14-122.244.1.x86_64",
"product_id": "kernel-vanilla-base-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-122.244.1.x86_64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-122.244.1.x86_64",
"product_id": "kernel-vanilla-devel-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"product": {
"name": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"product_id": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-4.12.14-122.244.1.x86_64",
"product": {
"name": "kselftests-kmp-default-4.12.14-122.244.1.x86_64",
"product_id": "kselftests-kmp-default-4.12.14-122.244.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"product_id": "ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le"
},
"product_reference": "kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x"
},
"product_reference": "kernel-default-kgraft-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le"
},
"product_reference": "kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-devel-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x"
},
"product_reference": "kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le"
},
"product_reference": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x"
},
"product_reference": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64"
},
"product_reference": "kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.12.14-122.244.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x"
},
"product_reference": "cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.12.14-122.244.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64"
},
"product_reference": "dlm-kmp-default-4.12.14-122.244.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le"
},
"product_reference": "dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x"
},
"product_reference": "dlm-kmp-default-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "dlm-kmp-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.12.14-122.244.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64"
},
"product_reference": "gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x"
},
"product_reference": "gfs2-kmp-default-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-122.244.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64"
},
"product_reference": "kernel-default-4.12.14-122.244.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le"
},
"product_reference": "kernel-default-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x"
},
"product_reference": "kernel-default-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.12.14-122.244.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64"
},
"product_reference": "kernel-default-base-4.12.14-122.244.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le"
},
"product_reference": "kernel-default-base-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x"
},
"product_reference": "kernel-default-base-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-default-base-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-122.244.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64"
},
"product_reference": "kernel-default-devel-4.12.14-122.244.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le"
},
"product_reference": "kernel-default-devel-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x"
},
"product_reference": "kernel-default-devel-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-default-devel-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-man-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x"
},
"product_reference": "kernel-default-man-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-4.12.14-122.244.1.noarch as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch"
},
"product_reference": "kernel-devel-4.12.14-122.244.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-4.12.14-122.244.1.noarch as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch"
},
"product_reference": "kernel-macros-4.12.14-122.244.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-4.12.14-122.244.1.noarch as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch"
},
"product_reference": "kernel-source-4.12.14-122.244.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-122.244.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64"
},
"product_reference": "kernel-syms-4.12.14-122.244.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le"
},
"product_reference": "kernel-syms-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x"
},
"product_reference": "kernel-syms-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-syms-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.12.14-122.244.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.12.14-122.244.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.12.14-122.244.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x"
},
"product_reference": "ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "dlm-kmp-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-default-base-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-default-devel-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-4.12.14-122.244.1.noarch as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch"
},
"product_reference": "kernel-devel-4.12.14-122.244.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-4.12.14-122.244.1.noarch as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch"
},
"product_reference": "kernel-macros-4.12.14-122.244.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-4.12.14-122.244.1.noarch as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch"
},
"product_reference": "kernel-source-4.12.14-122.244.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64"
},
"product_reference": "kernel-syms-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.12.14-122.244.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-48742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink()\n\nWhile looking at one unrelated syzbot bug, I found the replay logic\nin __rtnl_newlink() to potentially trigger use-after-free.\n\nIt is better to clear master_dev and m_ops inside the loop,\nin case we have to replay it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48742",
"url": "https://www.suse.com/security/cve/CVE-2022-48742"
},
{
"category": "external",
"summary": "SUSE Bug 1226694 for CVE-2022-48742",
"url": "https://bugzilla.suse.com/1226694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2022-48742"
},
{
"cve": "CVE-2022-49033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-49033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit()\n\nSyzkaller reported BUG as follows:\n\n BUG: sleeping function called from invalid context at\n include/linux/sched/mm.h:274\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xcd/0x134\n __might_resched.cold+0x222/0x26b\n kmem_cache_alloc+0x2e7/0x3c0\n update_qgroup_limit_item+0xe1/0x390\n btrfs_qgroup_inherit+0x147b/0x1ee0\n create_subvol+0x4eb/0x1710\n btrfs_mksubvol+0xfe5/0x13f0\n __btrfs_ioctl_snap_create+0x2b0/0x430\n btrfs_ioctl_snap_create_v2+0x25a/0x520\n btrfs_ioctl+0x2a1c/0x5ce0\n __x64_sys_ioctl+0x193/0x200\n do_syscall_64+0x35/0x80\n\nFix this by calling qgroup_dirty() on @dstqgroup, and update limit item in\nbtrfs_run_qgroups() later outside of the spinlock context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-49033",
"url": "https://www.suse.com/security/cve/CVE-2022-49033"
},
{
"category": "external",
"summary": "SUSE Bug 1232045 for CVE-2022-49033",
"url": "https://bugzilla.suse.com/1232045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2022-49033"
},
{
"cve": "CVE-2022-49035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-49035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE\n\nI expect that the hardware will have limited this to 16, but just in\ncase it hasn\u0027t, check for this corner case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-49035",
"url": "https://www.suse.com/security/cve/CVE-2022-49035"
},
{
"category": "external",
"summary": "SUSE Bug 1215304 for CVE-2022-49035",
"url": "https://bugzilla.suse.com/1215304"
},
{
"category": "external",
"summary": "SUSE Bug 1235013 for CVE-2022-49035",
"url": "https://bugzilla.suse.com/1235013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2022-49035"
},
{
"cve": "CVE-2023-52434",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52434"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential OOBs in smb2_parse_contexts()\n\nValidate offsets and lengths before dereferencing create contexts in\nsmb2_parse_contexts().\n\nThis fixes following oops when accessing invalid create contexts from\nserver:\n\n BUG: unable to handle page fault for address: ffff8881178d8cc3\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 4a01067 P4D 4a01067 PUD 0\n Oops: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 3 PID: 1736 Comm: mount.cifs Not tainted 6.7.0-rc4 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\n RIP: 0010:smb2_parse_contexts+0xa0/0x3a0 [cifs]\n Code: f8 10 75 13 48 b8 93 ad 25 50 9c b4 11 e7 49 39 06 0f 84 d2 00\n 00 00 8b 45 00 85 c0 74 61 41 29 c5 48 01 c5 41 83 fd 0f 76 55 \u003c0f\u003e b7\n 7d 04 0f b7 45 06 4c 8d 74 3d 00 66 83 f8 04 75 bc ba 04 00\n RSP: 0018:ffffc900007939e0 EFLAGS: 00010216\n RAX: ffffc90000793c78 RBX: ffff8880180cc000 RCX: ffffc90000793c90\n RDX: ffffc90000793cc0 RSI: ffff8880178d8cc0 RDI: ffff8880180cc000\n RBP: ffff8881178d8cbf R08: ffffc90000793c22 R09: 0000000000000000\n R10: ffff8880180cc000 R11: 0000000000000024 R12: 0000000000000000\n R13: 0000000000000020 R14: 0000000000000000 R15: ffffc90000793c22\n FS: 00007f873753cbc0(0000) GS:ffff88806bc00000(0000)\n knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffff8881178d8cc3 CR3: 00000000181ca000 CR4: 0000000000750ef0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x23/0x70\n ? page_fault_oops+0x181/0x480\n ? search_module_extables+0x19/0x60\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? exc_page_fault+0x1b6/0x1c0\n ? asm_exc_page_fault+0x26/0x30\n ? smb2_parse_contexts+0xa0/0x3a0 [cifs]\n SMB2_open+0x38d/0x5f0 [cifs]\n ? smb2_is_path_accessible+0x138/0x260 [cifs]\n smb2_is_path_accessible+0x138/0x260 [cifs]\n cifs_is_path_remote+0x8d/0x230 [cifs]\n cifs_mount+0x7e/0x350 [cifs]\n cifs_smb3_do_mount+0x128/0x780 [cifs]\n smb3_get_tree+0xd9/0x290 [cifs]\n vfs_get_tree+0x2c/0x100\n ? capable+0x37/0x70\n path_mount+0x2d7/0xb80\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? _raw_spin_unlock_irqrestore+0x44/0x60\n __x64_sys_mount+0x11a/0x150\n do_syscall_64+0x47/0xf0\n entry_SYSCALL_64_after_hwframe+0x6f/0x77\n RIP: 0033:0x7f8737657b1e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52434",
"url": "https://www.suse.com/security/cve/CVE-2023-52434"
},
{
"category": "external",
"summary": "SUSE Bug 1220148 for CVE-2023-52434",
"url": "https://bugzilla.suse.com/1220148"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2023-52434"
},
{
"cve": "CVE-2023-52922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Fix UAF in bcm_proc_show()\n\nBUG: KASAN: slab-use-after-free in bcm_proc_show+0x969/0xa80\nRead of size 8 at addr ffff888155846230 by task cat/7862\n\nCPU: 1 PID: 7862 Comm: cat Not tainted 6.5.0-rc1-00153-gc8746099c197 #230\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xd5/0x150\n print_report+0xc1/0x5e0\n kasan_report+0xba/0xf0\n bcm_proc_show+0x969/0xa80\n seq_read_iter+0x4f6/0x1260\n seq_read+0x165/0x210\n proc_reg_read+0x227/0x300\n vfs_read+0x1d5/0x8d0\n ksys_read+0x11e/0x240\n do_syscall_64+0x35/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nAllocated by task 7846:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_kmalloc+0x9e/0xa0\n bcm_sendmsg+0x264b/0x44e0\n sock_sendmsg+0xda/0x180\n ____sys_sendmsg+0x735/0x920\n ___sys_sendmsg+0x11d/0x1b0\n __sys_sendmsg+0xfa/0x1d0\n do_syscall_64+0x35/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nFreed by task 7846:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n ____kasan_slab_free+0x161/0x1c0\n slab_free_freelist_hook+0x119/0x220\n __kmem_cache_free+0xb4/0x2e0\n rcu_core+0x809/0x1bd0\n\nbcm_op is freed before procfs entry be removed in bcm_release(),\nthis lead to bcm_proc_show() may read the freed bcm_op.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52922",
"url": "https://www.suse.com/security/cve/CVE-2023-52922"
},
{
"category": "external",
"summary": "SUSE Bug 1233977 for CVE-2023-52922",
"url": "https://bugzilla.suse.com/1233977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2023-52922"
},
{
"cve": "CVE-2024-26976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: Always flush async #PF workqueue when vCPU is being destroyed\n\nAlways flush the per-vCPU async #PF workqueue when a vCPU is clearing its\ncompletion queue, e.g. when a VM and all its vCPUs is being destroyed.\nKVM must ensure that none of its workqueue callbacks is running when the\nlast reference to the KVM _module_ is put. Gifting a reference to the\nassociated VM prevents the workqueue callback from dereferencing freed\nvCPU/VM memory, but does not prevent the KVM module from being unloaded\nbefore the callback completes.\n\nDrop the misguided VM refcount gifting, as calling kvm_put_kvm() from\nasync_pf_execute() if kvm_put_kvm() flushes the async #PF workqueue will\nresult in deadlock. async_pf_execute() can\u0027t return until kvm_put_kvm()\nfinishes, and kvm_put_kvm() can\u0027t return until async_pf_execute() finishes:\n\n WARNING: CPU: 8 PID: 251 at virt/kvm/kvm_main.c:1435 kvm_put_kvm+0x2d/0x320 [kvm]\n Modules linked in: vhost_net vhost vhost_iotlb tap kvm_intel kvm irqbypass\n CPU: 8 PID: 251 Comm: kworker/8:1 Tainted: G W 6.6.0-rc1-e7af8d17224a-x86/gmem-vm #119\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n Workqueue: events async_pf_execute [kvm]\n RIP: 0010:kvm_put_kvm+0x2d/0x320 [kvm]\n Call Trace:\n \u003cTASK\u003e\n async_pf_execute+0x198/0x260 [kvm]\n process_one_work+0x145/0x2d0\n worker_thread+0x27e/0x3a0\n kthread+0xba/0xe0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n INFO: task kworker/8:1:251 blocked for more than 120 seconds.\n Tainted: G W 6.6.0-rc1-e7af8d17224a-x86/gmem-vm #119\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/8:1 state:D stack:0 pid:251 ppid:2 flags:0x00004000\n Workqueue: events async_pf_execute [kvm]\n Call Trace:\n \u003cTASK\u003e\n __schedule+0x33f/0xa40\n schedule+0x53/0xc0\n schedule_timeout+0x12a/0x140\n __wait_for_common+0x8d/0x1d0\n __flush_work.isra.0+0x19f/0x2c0\n kvm_clear_async_pf_completion_queue+0x129/0x190 [kvm]\n kvm_arch_destroy_vm+0x78/0x1b0 [kvm]\n kvm_put_kvm+0x1c1/0x320 [kvm]\n async_pf_execute+0x198/0x260 [kvm]\n process_one_work+0x145/0x2d0\n worker_thread+0x27e/0x3a0\n kthread+0xba/0xe0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\n\nIf kvm_clear_async_pf_completion_queue() actually flushes the workqueue,\nthen there\u0027s no need to gift async_pf_execute() a reference because all\ninvocations of async_pf_execute() will be forced to complete before the\nvCPU and its VM are destroyed/freed. And that in turn fixes the module\nunloading bug as __fput() won\u0027t do module_put() on the last vCPU reference\nuntil the vCPU has been freed, e.g. if closing the vCPU file also puts the\nlast reference to the KVM module.\n\nNote that kvm_check_async_pf_completion() may also take the work item off\nthe completion queue and so also needs to flush the work queue, as the\nwork will not be seen by kvm_clear_async_pf_completion_queue(). Waiting\non the workqueue could theoretically delay a vCPU due to waiting for the\nwork to complete, but that\u0027s a very, very small chance, and likely a very\nsmall delay. kvm_arch_async_page_present_queued() unconditionally makes a\nnew request, i.e. will effectively delay entering the guest, so the\nremaining work is really just:\n\n trace_kvm_async_pf_completed(addr, cr2_or_gpa);\n\n __kvm_vcpu_wake_up(vcpu);\n\n mmput(mm);\n\nand mmput() can\u0027t drop the last reference to the page tables if the vCPU is\nstill alive, i.e. the vCPU won\u0027t get stuck tearing down page tables.\n\nAdd a helper to do the flushing, specifically to deal with \"wakeup all\"\nwork items, as they aren\u0027t actually work items, i.e. are never placed in a\nworkqueue. Trying to flush a bogus workqueue entry rightly makes\n__flush_work() complain (kudos to whoever added that sanity check).\n\nNote, commit 5f6de5cbebee (\"KVM: Prevent module exit until al\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26976",
"url": "https://www.suse.com/security/cve/CVE-2024-26976"
},
{
"category": "external",
"summary": "SUSE Bug 1223635 for CVE-2024-26976",
"url": "https://bugzilla.suse.com/1223635"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-26976"
},
{
"cve": "CVE-2024-35847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35847"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/gic-v3-its: Prevent double free on error\n\nThe error handling path in its_vpe_irq_domain_alloc() causes a double free\nwhen its_vpe_init() fails after successfully allocating at least one\ninterrupt. This happens because its_vpe_irq_domain_free() frees the\ninterrupts along with the area bitmap and the vprop_page and\nits_vpe_irq_domain_alloc() subsequently frees the area bitmap and the\nvprop_page again.\n\nFix this by unconditionally invoking its_vpe_irq_domain_free() which\nhandles all cases correctly and by removing the bitmap/vprop_page freeing\nfrom its_vpe_irq_domain_alloc().\n\n[ tglx: Massaged change log ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35847",
"url": "https://www.suse.com/security/cve/CVE-2024-35847"
},
{
"category": "external",
"summary": "SUSE Bug 1224697 for CVE-2024-35847",
"url": "https://bugzilla.suse.com/1224697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-35847"
},
{
"cve": "CVE-2024-36484",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36484"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: relax socket state check at accept time.\n\nChristoph reported the following splat:\n\nWARNING: CPU: 1 PID: 772 at net/ipv4/af_inet.c:761 __inet_accept+0x1f4/0x4a0\nModules linked in:\nCPU: 1 PID: 772 Comm: syz-executor510 Not tainted 6.9.0-rc7-g7da7119fe22b #56\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.11.0-2.el7 04/01/2014\nRIP: 0010:__inet_accept+0x1f4/0x4a0 net/ipv4/af_inet.c:759\nCode: 04 38 84 c0 0f 85 87 00 00 00 41 c7 04 24 03 00 00 00 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 ec b7 da fd \u003c0f\u003e 0b e9 7f fe ff ff e8 e0 b7 da fd 0f 0b e9 fe fe ff ff 89 d9 80\nRSP: 0018:ffffc90000c2fc58 EFLAGS: 00010293\nRAX: ffffffff836bdd14 RBX: 0000000000000000 RCX: ffff888104668000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: dffffc0000000000 R08: ffffffff836bdb89 R09: fffff52000185f64\nR10: dffffc0000000000 R11: fffff52000185f64 R12: dffffc0000000000\nR13: 1ffff92000185f98 R14: ffff88810754d880 R15: ffff8881007b7800\nFS: 000000001c772880(0000) GS:ffff88811b280000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fb9fcf2e178 CR3: 00000001045d2002 CR4: 0000000000770ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n inet_accept+0x138/0x1d0 net/ipv4/af_inet.c:786\n do_accept+0x435/0x620 net/socket.c:1929\n __sys_accept4_file net/socket.c:1969 [inline]\n __sys_accept4+0x9b/0x110 net/socket.c:1999\n __do_sys_accept net/socket.c:2016 [inline]\n __se_sys_accept net/socket.c:2013 [inline]\n __x64_sys_accept+0x7d/0x90 net/socket.c:2013\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x58/0x100 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x4315f9\nCode: fd ff 48 81 c4 80 00 00 00 e9 f1 fe ff ff 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 0f 83 ab b4 fd ff c3 66 2e 0f 1f 84 00 00 00 00\nRSP: 002b:00007ffdb26d9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002b\nRAX: ffffffffffffffda RBX: 0000000000400300 RCX: 00000000004315f9\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004\nRBP: 00000000006e1018 R08: 0000000000400300 R09: 0000000000400300\nR10: 0000000000400300 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000040cdf0 R14: 000000000040ce80 R15: 0000000000000055\n \u003c/TASK\u003e\n\nThe reproducer invokes shutdown() before entering the listener status.\nAfter commit 94062790aedb (\"tcp: defer shutdown(SEND_SHUTDOWN) for\nTCP_SYN_RECV sockets\"), the above causes the child to reach the accept\nsyscall in FIN_WAIT1 status.\n\nEric noted we can relax the existing assertion in __inet_accept()",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36484",
"url": "https://www.suse.com/security/cve/CVE-2024-36484"
},
{
"category": "external",
"summary": "SUSE Bug 1226872 for CVE-2024-36484",
"url": "https://bugzilla.suse.com/1226872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-36484"
},
{
"cve": "CVE-2024-36883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36883"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fix out-of-bounds access in ops_init\n\nnet_alloc_generic is called by net_alloc, which is called without any\nlocking. It reads max_gen_ptrs, which is changed under pernet_ops_rwsem. It\nis read twice, first to allocate an array, then to set s.len, which is\nlater used to limit the bounds of the array access.\n\nIt is possible that the array is allocated and another thread is\nregistering a new pernet ops, increments max_gen_ptrs, which is then used\nto set s.len with a larger than allocated length for the variable array.\n\nFix it by reading max_gen_ptrs only once in net_alloc_generic. If\nmax_gen_ptrs is later incremented, it will be caught in net_assign_generic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36883",
"url": "https://www.suse.com/security/cve/CVE-2024-36883"
},
{
"category": "external",
"summary": "SUSE Bug 1225725 for CVE-2024-36883",
"url": "https://bugzilla.suse.com/1225725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-36883"
},
{
"cve": "CVE-2024-36886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix UAF in error path\n\nSam Page (sam4k) working with Trend Micro Zero Day Initiative reported\na UAF in the tipc_buf_append() error path:\n\nBUG: KASAN: slab-use-after-free in kfree_skb_list_reason+0x47e/0x4c0\nlinux/net/core/skbuff.c:1183\nRead of size 8 at addr ffff88804d2a7c80 by task poc/8034\n\nCPU: 1 PID: 8034 Comm: poc Not tainted 6.8.2 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.0-debian-1.16.0-5 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n __dump_stack linux/lib/dump_stack.c:88\n dump_stack_lvl+0xd9/0x1b0 linux/lib/dump_stack.c:106\n print_address_description linux/mm/kasan/report.c:377\n print_report+0xc4/0x620 linux/mm/kasan/report.c:488\n kasan_report+0xda/0x110 linux/mm/kasan/report.c:601\n kfree_skb_list_reason+0x47e/0x4c0 linux/net/core/skbuff.c:1183\n skb_release_data+0x5af/0x880 linux/net/core/skbuff.c:1026\n skb_release_all linux/net/core/skbuff.c:1094\n __kfree_skb linux/net/core/skbuff.c:1108\n kfree_skb_reason+0x12d/0x210 linux/net/core/skbuff.c:1144\n kfree_skb linux/./include/linux/skbuff.h:1244\n tipc_buf_append+0x425/0xb50 linux/net/tipc/msg.c:186\n tipc_link_input+0x224/0x7c0 linux/net/tipc/link.c:1324\n tipc_link_rcv+0x76e/0x2d70 linux/net/tipc/link.c:1824\n tipc_rcv+0x45f/0x10f0 linux/net/tipc/node.c:2159\n tipc_udp_recv+0x73b/0x8f0 linux/net/tipc/udp_media.c:390\n udp_queue_rcv_one_skb+0xad2/0x1850 linux/net/ipv4/udp.c:2108\n udp_queue_rcv_skb+0x131/0xb00 linux/net/ipv4/udp.c:2186\n udp_unicast_rcv_skb+0x165/0x3b0 linux/net/ipv4/udp.c:2346\n __udp4_lib_rcv+0x2594/0x3400 linux/net/ipv4/udp.c:2422\n ip_protocol_deliver_rcu+0x30c/0x4e0 linux/net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x2e4/0x520 linux/net/ipv4/ip_input.c:233\n NF_HOOK linux/./include/linux/netfilter.h:314\n NF_HOOK linux/./include/linux/netfilter.h:308\n ip_local_deliver+0x18e/0x1f0 linux/net/ipv4/ip_input.c:254\n dst_input linux/./include/net/dst.h:461\n ip_rcv_finish linux/net/ipv4/ip_input.c:449\n NF_HOOK linux/./include/linux/netfilter.h:314\n NF_HOOK linux/./include/linux/netfilter.h:308\n ip_rcv+0x2c5/0x5d0 linux/net/ipv4/ip_input.c:569\n __netif_receive_skb_one_core+0x199/0x1e0 linux/net/core/dev.c:5534\n __netif_receive_skb+0x1f/0x1c0 linux/net/core/dev.c:5648\n process_backlog+0x101/0x6b0 linux/net/core/dev.c:5976\n __napi_poll.constprop.0+0xba/0x550 linux/net/core/dev.c:6576\n napi_poll linux/net/core/dev.c:6645\n net_rx_action+0x95a/0xe90 linux/net/core/dev.c:6781\n __do_softirq+0x21f/0x8e7 linux/kernel/softirq.c:553\n do_softirq linux/kernel/softirq.c:454\n do_softirq+0xb2/0xf0 linux/kernel/softirq.c:441\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x100/0x120 linux/kernel/softirq.c:381\n local_bh_enable linux/./include/linux/bottom_half.h:33\n rcu_read_unlock_bh linux/./include/linux/rcupdate.h:851\n __dev_queue_xmit+0x871/0x3ee0 linux/net/core/dev.c:4378\n dev_queue_xmit linux/./include/linux/netdevice.h:3169\n neigh_hh_output linux/./include/net/neighbour.h:526\n neigh_output linux/./include/net/neighbour.h:540\n ip_finish_output2+0x169f/0x2550 linux/net/ipv4/ip_output.c:235\n __ip_finish_output linux/net/ipv4/ip_output.c:313\n __ip_finish_output+0x49e/0x950 linux/net/ipv4/ip_output.c:295\n ip_finish_output+0x31/0x310 linux/net/ipv4/ip_output.c:323\n NF_HOOK_COND linux/./include/linux/netfilter.h:303\n ip_output+0x13b/0x2a0 linux/net/ipv4/ip_output.c:433\n dst_output linux/./include/net/dst.h:451\n ip_local_out linux/net/ipv4/ip_output.c:129\n ip_send_skb+0x3e5/0x560 linux/net/ipv4/ip_output.c:1492\n udp_send_skb+0x73f/0x1530 linux/net/ipv4/udp.c:963\n udp_sendmsg+0x1a36/0x2b40 linux/net/ipv4/udp.c:1250\n inet_sendmsg+0x105/0x140 linux/net/ipv4/af_inet.c:850\n sock_sendmsg_nosec linux/net/socket.c:730\n __sock_sendmsg linux/net/socket.c:745\n __sys_sendto+0x42c/0x4e0 linux/net/socket.c:2191\n __do_sys_sendto linux/net/socket.c:2203\n __se_sys_sendto linux/net/socket.c:2199\n __x64_sys_sendto+0xe0/0x1c0 linux/net/socket.c:2199\n do_syscall_x64 linux/arch/x86/entry/common.c:52\n do_syscall_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36886",
"url": "https://www.suse.com/security/cve/CVE-2024-36886"
},
{
"category": "external",
"summary": "SUSE Bug 1225730 for CVE-2024-36886",
"url": "https://bugzilla.suse.com/1225730"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-36886",
"url": "https://bugzilla.suse.com/1225742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-36886"
},
{
"cve": "CVE-2024-38589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetrom: fix possible dead-lock in nr_rt_ioctl()\n\nsyzbot loves netrom, and found a possible deadlock in nr_rt_ioctl [1]\n\nMake sure we always acquire nr_node_list_lock before nr_node_lock(nr_node)\n\n[1]\nWARNING: possible circular locking dependency detected\n6.9.0-rc7-syzkaller-02147-g654de42f3fc6 #0 Not tainted\n------------------------------------------------------\nsyz-executor350/5129 is trying to acquire lock:\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:356 [inline]\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: nr_node_lock include/net/netrom.h:152 [inline]\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: nr_dec_obs net/netrom/nr_route.c:464 [inline]\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: nr_rt_ioctl+0x1bb/0x1090 net/netrom/nr_route.c:697\n\nbut task is already holding lock:\n ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:356 [inline]\n ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: nr_dec_obs net/netrom/nr_route.c:462 [inline]\n ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: nr_rt_ioctl+0x10a/0x1090 net/netrom/nr_route.c:697\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #1 (nr_node_list_lock){+...}-{2:2}:\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5754\n __raw_spin_lock_bh include/linux/spinlock_api_smp.h:126 [inline]\n _raw_spin_lock_bh+0x35/0x50 kernel/locking/spinlock.c:178\n spin_lock_bh include/linux/spinlock.h:356 [inline]\n nr_remove_node net/netrom/nr_route.c:299 [inline]\n nr_del_node+0x4b4/0x820 net/netrom/nr_route.c:355\n nr_rt_ioctl+0xa95/0x1090 net/netrom/nr_route.c:683\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:890\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n-\u003e #0 (\u0026nr_node-\u003enode_lock){+...}-{2:2}:\n check_prev_add kernel/locking/lockdep.c:3134 [inline]\n check_prevs_add kernel/locking/lockdep.c:3253 [inline]\n validate_chain+0x18cb/0x58e0 kernel/locking/lockdep.c:3869\n __lock_acquire+0x1346/0x1fd0 kernel/locking/lockdep.c:5137\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5754\n __raw_spin_lock_bh include/linux/spinlock_api_smp.h:126 [inline]\n _raw_spin_lock_bh+0x35/0x50 kernel/locking/spinlock.c:178\n spin_lock_bh include/linux/spinlock.h:356 [inline]\n nr_node_lock include/net/netrom.h:152 [inline]\n nr_dec_obs net/netrom/nr_route.c:464 [inline]\n nr_rt_ioctl+0x1bb/0x1090 net/netrom/nr_route.c:697\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:890\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nother info that might help us debug this:\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(nr_node_list_lock);\n lock(\u0026nr_node-\u003enode_lock);\n lock(nr_node_list_lock);\n lock(\u0026nr_node-\u003enode_lock);\n\n *** DEADLOCK ***\n\n1 lock held by syz-executor350/5129:\n #0: ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:356 [inline]\n #0: ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: nr_dec_obs net/netrom/nr_route.c:462 [inline]\n #0: ffffffff8f70\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38589",
"url": "https://www.suse.com/security/cve/CVE-2024-38589"
},
{
"category": "external",
"summary": "SUSE Bug 1226748 for CVE-2024-38589",
"url": "https://bugzilla.suse.com/1226748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-38589"
},
{
"cve": "CVE-2024-41013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: don\u0027t walk off the end of a directory data block\n\nThis adds sanity checks for xfs_dir2_data_unused and xfs_dir2_data_entry\nto make sure don\u0027t stray beyond valid memory region. Before patching, the\nloop simply checks that the start offset of the dup and dep is within the\nrange. So in a crafted image, if last entry is xfs_dir2_data_unused, we\ncan change dup-\u003elength to dup-\u003elength-1 and leave 1 byte of space. In the\nnext traversal, this space will be considered as dup or dep. We may\nencounter an out of bound read when accessing the fixed members.\n\nIn the patch, we make sure that the remaining bytes large enough to hold\nan unused entry before accessing xfs_dir2_data_unused and\nxfs_dir2_data_unused is XFS_DIR2_DATA_ALIGN byte aligned. We also make\nsure that the remaining bytes large enough to hold a dirent with a\nsingle-byte name before accessing xfs_dir2_data_entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41013",
"url": "https://www.suse.com/security/cve/CVE-2024-41013"
},
{
"category": "external",
"summary": "SUSE Bug 1228405 for CVE-2024-41013",
"url": "https://bugzilla.suse.com/1228405"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-41013"
},
{
"cve": "CVE-2024-46771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Remove proc entry when dev is unregistered.\n\nsyzkaller reported a warning in bcm_connect() below. [0]\n\nThe repro calls connect() to vxcan1, removes vxcan1, and calls\nconnect() with ifindex == 0.\n\nCalling connect() for a BCM socket allocates a proc entry.\nThen, bcm_sk(sk)-\u003ebound is set to 1 to prevent further connect().\n\nHowever, removing the bound device resets bcm_sk(sk)-\u003ebound to 0\nin bcm_notify().\n\nThe 2nd connect() tries to allocate a proc entry with the same\nname and sets NULL to bcm_sk(sk)-\u003ebcm_proc_read, leaking the\noriginal proc entry.\n\nSince the proc entry is available only for connect()ed sockets,\nlet\u0027s clean up the entry when the bound netdev is unregistered.\n\n[0]:\nproc_dir_entry \u0027can-bcm/2456\u0027 already registered\nWARNING: CPU: 1 PID: 394 at fs/proc/generic.c:376 proc_register+0x645/0x8f0 fs/proc/generic.c:375\nModules linked in:\nCPU: 1 PID: 394 Comm: syz-executor403 Not tainted 6.10.0-rc7-g852e42cc2dd4\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:proc_register+0x645/0x8f0 fs/proc/generic.c:375\nCode: 00 00 00 00 00 48 85 ed 0f 85 97 02 00 00 4d 85 f6 0f 85 9f 02 00 00 48 c7 c7 9b cb cf 87 48 89 de 4c 89 fa e8 1c 6f eb fe 90 \u003c0f\u003e 0b 90 90 48 c7 c7 98 37 99 89 e8 cb 7e 22 05 bb 00 00 00 10 48\nRSP: 0018:ffa0000000cd7c30 EFLAGS: 00010246\nRAX: 9e129be1950f0200 RBX: ff1100011b51582c RCX: ff1100011857cd80\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002\nRBP: 0000000000000000 R08: ffd400000000000f R09: ff1100013e78cac0\nR10: ffac800000cd7980 R11: ff1100013e12b1f0 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: ff1100011a99a2ec\nFS: 00007fbd7086f740(0000) GS:ff1100013fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200071c0 CR3: 0000000118556004 CR4: 0000000000771ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n proc_create_net_single+0x144/0x210 fs/proc/proc_net.c:220\n bcm_connect+0x472/0x840 net/can/bcm.c:1673\n __sys_connect_file net/socket.c:2049 [inline]\n __sys_connect+0x5d2/0x690 net/socket.c:2066\n __do_sys_connect net/socket.c:2076 [inline]\n __se_sys_connect net/socket.c:2073 [inline]\n __x64_sys_connect+0x8f/0x100 net/socket.c:2073\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xd9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7fbd708b0e5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff8cd33f08 EFLAGS: 00000246 ORIG_RAX: 000000000000002a\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbd708b0e5d\nRDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000003\nRBP: 0000000000000000 R08: 0000000000000040 R09: 0000000000000040\nR10: 0000000000000040 R11: 0000000000000246 R12: 00007fff8cd34098\nR13: 0000000000401280 R14: 0000000000406de8 R15: 00007fbd70ab9000\n \u003c/TASK\u003e\nremove_proc_entry: removing non-empty directory \u0027net/can-bcm\u0027, leaking at least \u00272456\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46771",
"url": "https://www.suse.com/security/cve/CVE-2024-46771"
},
{
"category": "external",
"summary": "SUSE Bug 1230766 for CVE-2024-46771",
"url": "https://bugzilla.suse.com/1230766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-46771"
},
{
"cve": "CVE-2024-47141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinmux: Use sequential access to access desc-\u003epinmux data\n\nWhen two client of the same gpio call pinctrl_select_state() for the\nsame functionality, we are seeing NULL pointer issue while accessing\ndesc-\u003emux_owner.\n\nLet\u0027s say two processes A, B executing in pin_request() for the same pin\nand process A updates the desc-\u003emux_usecount but not yet updated the\ndesc-\u003emux_owner while process B see the desc-\u003emux_usecount which got\nupdated by A path and further executes strcmp and while accessing\ndesc-\u003emux_owner it crashes with NULL pointer.\n\nSerialize the access to mux related setting with a mutex lock.\n\n\tcpu0 (process A)\t\t\tcpu1(process B)\n\npinctrl_select_state() {\t\t pinctrl_select_state() {\n pin_request() {\t\t\t\tpin_request() {\n ...\n\t\t\t\t\t\t ....\n } else {\n desc-\u003emux_usecount++;\n \t\t\t\t\t\tdesc-\u003emux_usecount \u0026\u0026 strcmp(desc-\u003emux_owner, owner)) {\n\n if (desc-\u003emux_usecount \u003e 1)\n return 0;\n desc-\u003emux_owner = owner;\n\n }\t\t\t\t\t\t}",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47141",
"url": "https://www.suse.com/security/cve/CVE-2024-47141"
},
{
"category": "external",
"summary": "SUSE Bug 1235708 for CVE-2024-47141",
"url": "https://bugzilla.suse.com/1235708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-47141"
},
{
"cve": "CVE-2024-47666",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47666"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: pm80xx: Set phy-\u003eenable_completion only when we wait for it\n\npm8001_phy_control() populates the enable_completion pointer with a stack\naddress, sends a PHY_LINK_RESET / PHY_HARD_RESET, waits 300 ms, and\nreturns. The problem arises when a phy control response comes late. After\n300 ms the pm8001_phy_control() function returns and the passed\nenable_completion stack address is no longer valid. Late phy control\nresponse invokes complete() on a dangling enable_completion pointer which\nleads to a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47666",
"url": "https://www.suse.com/security/cve/CVE-2024-47666"
},
{
"category": "external",
"summary": "SUSE Bug 1231453 for CVE-2024-47666",
"url": "https://bugzilla.suse.com/1231453"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-47666"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-47709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry().\n\nsyzbot reported a warning in bcm_release(). [0]\n\nThe blamed change fixed another warning that is triggered when\nconnect() is issued again for a socket whose connect()ed device has\nbeen unregistered.\n\nHowever, if the socket is just close()d without the 2nd connect(), the\nremaining bo-\u003ebcm_proc_read triggers unnecessary remove_proc_entry()\nin bcm_release().\n\nLet\u0027s clear bo-\u003ebcm_proc_read after remove_proc_entry() in bcm_notify().\n\n[0]\nname \u00274986\u0027\nWARNING: CPU: 0 PID: 5234 at fs/proc/generic.c:711 remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nModules linked in:\nCPU: 0 UID: 0 PID: 5234 Comm: syz-executor606 Not tainted 6.11.0-rc5-syzkaller-00178-g5517ae241919 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nRIP: 0010:remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nCode: ff eb 05 e8 cb 1e 5e ff 48 8b 5c 24 10 48 c7 c7 e0 f7 aa 8e e8 2a 38 8e 09 90 48 c7 c7 60 3a 1b 8c 48 89 de e8 da 42 20 ff 90 \u003c0f\u003e 0b 90 90 48 8b 44 24 18 48 c7 44 24 40 0e 36 e0 45 49 c7 04 07\nRSP: 0018:ffffc9000345fa20 EFLAGS: 00010246\nRAX: 2a2d0aee2eb64600 RBX: ffff888032f1f548 RCX: ffff888029431e00\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffc9000345fb08 R08: ffffffff8155b2f2 R09: 1ffff1101710519a\nR10: dffffc0000000000 R11: ffffed101710519b R12: ffff888011d38640\nR13: 0000000000000004 R14: 0000000000000000 R15: dffffc0000000000\nFS: 0000000000000000(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fcfb52722f0 CR3: 000000000e734000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n bcm_release+0x250/0x880 net/can/bcm.c:1578\n __sock_release net/socket.c:659 [inline]\n sock_close+0xbc/0x240 net/socket.c:1421\n __fput+0x24a/0x8a0 fs/file_table.c:422\n task_work_run+0x24f/0x310 kernel/task_work.c:228\n exit_task_work include/linux/task_work.h:40 [inline]\n do_exit+0xa2f/0x27f0 kernel/exit.c:882\n do_group_exit+0x207/0x2c0 kernel/exit.c:1031\n __do_sys_exit_group kernel/exit.c:1042 [inline]\n __se_sys_exit_group kernel/exit.c:1040 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1040\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fcfb51ee969\nCode: Unable to access opcode bytes at 0x7fcfb51ee93f.\nRSP: 002b:00007ffce0109ca8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fcfb51ee969\nRDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001\nRBP: 00007fcfb526f3b0 R08: ffffffffffffffb8 R09: 0000555500000000\nR10: 0000555500000000 R11: 0000000000000246 R12: 00007fcfb526f3b0\nR13: 0000000000000000 R14: 00007fcfb5271ee0 R15: 00007fcfb51bf160\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47709",
"url": "https://www.suse.com/security/cve/CVE-2024-47709"
},
{
"category": "external",
"summary": "SUSE Bug 1232048 for CVE-2024-47709",
"url": "https://bugzilla.suse.com/1232048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-47709"
},
{
"cve": "CVE-2024-49925",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49925"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: efifb: Register sysfs groups through driver core\n\nThe driver core can register and cleanup sysfs groups already.\nMake use of that functionality to simplify the error handling and\ncleanup.\n\nAlso avoid a UAF race during unregistering where the sysctl attributes\nwere usable after the info struct was freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49925",
"url": "https://www.suse.com/security/cve/CVE-2024-49925"
},
{
"category": "external",
"summary": "SUSE Bug 1232224 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232224"
},
{
"category": "external",
"summary": "SUSE Bug 1232225 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-49925"
},
{
"cve": "CVE-2024-49944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start\n\nIn sctp_listen_start() invoked by sctp_inet_listen(), it should set the\nsk_state back to CLOSED if sctp_autobind() fails due to whatever reason.\n\nOtherwise, next time when calling sctp_inet_listen(), if sctp_sk(sk)-\u003ereuse\nis already set via setsockopt(SCTP_REUSE_PORT), sctp_sk(sk)-\u003ebind_hash will\nbe dereferenced as sk_state is LISTENING, which causes a crash as bind_hash\nis NULL.\n\n KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n RIP: 0010:sctp_inet_listen+0x7f0/0xa20 net/sctp/socket.c:8617\n Call Trace:\n \u003cTASK\u003e\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49944",
"url": "https://www.suse.com/security/cve/CVE-2024-49944"
},
{
"category": "external",
"summary": "SUSE Bug 1232166 for CVE-2024-49944",
"url": "https://bugzilla.suse.com/1232166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-49944"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix OOBs when building SMB2_IOCTL request\n\nWhen using encryption, either enforced by the server or when using\n\u0027seal\u0027 mount option, the client will squash all compound request buffers\ndown for encryption into a single iov in smb2_set_next_command().\n\nSMB2_ioctl_init() allocates a small buffer (448 bytes) to hold the\nSMB2_IOCTL request in the first iov, and if the user passes an input\nbuffer that is greater than 328 bytes, smb2_set_next_command() will\nend up writing off the end of @rqst-\u003eiov[0].iov_base as shown below:\n\n mount.cifs //srv/share /mnt -o ...,seal\n ln -s $(perl -e \"print(\u0027a\u0027)for 1..1024\") /mnt/link\n\n BUG: KASAN: slab-out-of-bounds in\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n Write of size 4116 at addr ffff8881148fcab8 by task ln/859\n\n CPU: 1 UID: 0 PID: 859 Comm: ln Not tainted 6.12.0-rc3 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n 1.16.3-2.fc40 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n print_report+0x156/0x4d9\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n ? __virt_addr_valid+0x145/0x310\n ? __phys_addr+0x46/0x90\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_report+0xda/0x110\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_check_range+0x10f/0x1f0\n __asan_memcpy+0x3c/0x60\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n smb2_compound_op+0x238c/0x3840 [cifs]\n ? kasan_save_track+0x14/0x30\n ? kasan_save_free_info+0x3b/0x70\n ? vfs_symlink+0x1a1/0x2c0\n ? do_symlinkat+0x108/0x1c0\n ? __pfx_smb2_compound_op+0x10/0x10 [cifs]\n ? kmem_cache_free+0x118/0x3e0\n ? cifs_get_writable_path+0xeb/0x1a0 [cifs]\n smb2_get_reparse_inode+0x423/0x540 [cifs]\n ? __pfx_smb2_get_reparse_inode+0x10/0x10 [cifs]\n ? rcu_is_watching+0x20/0x50\n ? __kmalloc_noprof+0x37c/0x480\n ? smb2_create_reparse_symlink+0x257/0x490 [cifs]\n ? smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n ? __pfx_smb2_create_reparse_symlink+0x10/0x10 [cifs]\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? __build_path_from_dentry_optional_prefix+0x19d/0x2e0 [cifs]\n cifs_symlink+0x24f/0x960 [cifs]\n ? __pfx_make_vfsuid+0x10/0x10\n ? __pfx_cifs_symlink+0x10/0x10 [cifs]\n ? make_vfsgid+0x6b/0xc0\n ? generic_permission+0x96/0x2d0\n vfs_symlink+0x1a1/0x2c0\n do_symlinkat+0x108/0x1c0\n ? __pfx_do_symlinkat+0x10/0x10\n ? strncpy_from_user+0xaa/0x160\n __x64_sys_symlinkat+0xb9/0xf0\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7f08d75c13bb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50151",
"url": "https://www.suse.com/security/cve/CVE-2024-50151"
},
{
"category": "external",
"summary": "SUSE Bug 1233055 for CVE-2024-50151",
"url": "https://bugzilla.suse.com/1233055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50151"
},
{
"cve": "CVE-2024-50166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsl/fman: Fix refcount handling of fman-related devices\n\nIn mac_probe() there are multiple calls to of_find_device_by_node(),\nfman_bind() and fman_port_bind() which takes references to of_dev-\u003edev.\nNot all references taken by these calls are released later on error path\nin mac_probe() and in mac_remove() which lead to reference leaks.\n\nAdd references release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50166",
"url": "https://www.suse.com/security/cve/CVE-2024-50166"
},
{
"category": "external",
"summary": "SUSE Bug 1233050 for CVE-2024-50166",
"url": "https://bugzilla.suse.com/1233050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50166"
},
{
"cve": "CVE-2024-50199",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50199"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swapfile: skip HugeTLB pages for unuse_vma\n\nI got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The\nproblem can be reproduced by the following steps:\n\n 1. Allocate an anonymous 1GB HugeTLB and some other anonymous memory.\n 2. Swapout the above anonymous memory.\n 3. run swapoff and we will get a bad pud error in kernel message:\n\n mm/pgtable-generic.c:42: bad pud 00000000743d215d(84000001400000e7)\n\nWe can tell that pud_clear_bad is called by pud_none_or_clear_bad in\nunuse_pud_range() by ftrace. And therefore the HugeTLB pages will never\nbe freed because we lost it from page table. We can skip HugeTLB pages\nfor unuse_vma to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50199",
"url": "https://www.suse.com/security/cve/CVE-2024-50199"
},
{
"category": "external",
"summary": "SUSE Bug 1233112 for CVE-2024-50199",
"url": "https://bugzilla.suse.com/1233112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50199"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-50287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: v4l2-tpg: prevent the risk of a division by zero\n\nAs reported by Coverity, the logic at tpg_precalculate_line()\nblindly rescales the buffer even when scaled_witdh is equal to\nzero. If this ever happens, this will cause a division by zero.\n\nInstead, add a WARN_ON_ONCE() to trigger such cases and return\nwithout doing any precalculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50287",
"url": "https://www.suse.com/security/cve/CVE-2024-50287"
},
{
"category": "external",
"summary": "SUSE Bug 1233476 for CVE-2024-50287",
"url": "https://bugzilla.suse.com/1233476"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50287"
},
{
"cve": "CVE-2024-50299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50299"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: properly validate chunk size in sctp_sf_ootb()\n\nA size validation fix similar to that in Commit 50619dbf8db7 (\"sctp: add\nsize validation when walking chunks\") is also required in sctp_sf_ootb()\nto address a crash reported by syzbot:\n\n BUG: KMSAN: uninit-value in sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_do_sm+0x181/0x93d0 net/sctp/sm_sideeffect.c:1166\n sctp_endpoint_bh_rcv+0xc38/0xf90 net/sctp/endpointola.c:407\n sctp_inq_push+0x2ef/0x380 net/sctp/inqueue.c:88\n sctp_rcv+0x3831/0x3b20 net/sctp/input.c:243\n sctp4_rcv+0x42/0x50 net/sctp/protocol.c:1159\n ip_protocol_deliver_rcu+0xb51/0x13d0 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x336/0x500 net/ipv4/ip_input.c:233",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50299",
"url": "https://www.suse.com/security/cve/CVE-2024-50299"
},
{
"category": "external",
"summary": "SUSE Bug 1233488 for CVE-2024-50299",
"url": "https://bugzilla.suse.com/1233488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50299"
},
{
"cve": "CVE-2024-53057",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53057"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT\n\nIn qdisc_tree_reduce_backlog, Qdiscs with major handle ffff: are assumed\nto be either root or ingress. This assumption is bogus since it\u0027s valid\nto create egress qdiscs with major handle ffff:\nBudimir Markovic found that for qdiscs like DRR that maintain an active\nclass list, it will cause a UAF with a dangling class pointer.\n\nIn 066a3b5b2346, the concern was to avoid iterating over the ingress\nqdisc since its parent is itself. The proper fix is to stop when parent\nTC_H_ROOT is reached because the only way to retrieve ingress is when a\nhierarchy which does not contain a ffff: major handle call into\nqdisc_lookup with TC_H_MAJ(TC_H_ROOT).\n\nIn the scenario where major ffff: is an egress qdisc in any of the tree\nlevels, the updates will also propagate to TC_H_ROOT, which then the\niteration must stop.\n\n\n net/sched/sch_api.c | 2 +-\n 1 file changed, 1 insertion(+), 1 deletion(-)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53057",
"url": "https://www.suse.com/security/cve/CVE-2024-53057"
},
{
"category": "external",
"summary": "SUSE Bug 1233551 for CVE-2024-53057",
"url": "https://bugzilla.suse.com/1233551"
},
{
"category": "external",
"summary": "SUSE Bug 1245816 for CVE-2024-53057",
"url": "https://bugzilla.suse.com/1245816"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-53057"
},
{
"cve": "CVE-2024-53101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs: Fix uninitialized value issue in from_kuid and from_kgid\n\nocfs2_setattr() uses attr-\u003eia_mode, attr-\u003eia_uid and attr-\u003eia_gid in\na trace point even though ATTR_MODE, ATTR_UID and ATTR_GID aren\u0027t set.\n\nInitialize all fields of newattrs to avoid uninitialized variables, by\nchecking if ATTR_MODE, ATTR_UID, ATTR_GID are initialized, otherwise 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53101",
"url": "https://www.suse.com/security/cve/CVE-2024-53101"
},
{
"category": "external",
"summary": "SUSE Bug 1233769 for CVE-2024-53101",
"url": "https://bugzilla.suse.com/1233769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53101"
},
{
"cve": "CVE-2024-53112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: uncache inode which has failed entering the group\n\nSyzbot has reported the following BUG:\n\nkernel BUG at fs/ocfs2/uptodate.c:509!\n...\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x5f/0xb0\n ? die+0x9e/0xc0\n ? do_trap+0x15a/0x3a0\n ? ocfs2_set_new_buffer_uptodate+0x145/0x160\n ? do_error_trap+0x1dc/0x2c0\n ? ocfs2_set_new_buffer_uptodate+0x145/0x160\n ? __pfx_do_error_trap+0x10/0x10\n ? handle_invalid_op+0x34/0x40\n ? ocfs2_set_new_buffer_uptodate+0x145/0x160\n ? exc_invalid_op+0x38/0x50\n ? asm_exc_invalid_op+0x1a/0x20\n ? ocfs2_set_new_buffer_uptodate+0x2e/0x160\n ? ocfs2_set_new_buffer_uptodate+0x144/0x160\n ? ocfs2_set_new_buffer_uptodate+0x145/0x160\n ocfs2_group_add+0x39f/0x15a0\n ? __pfx_ocfs2_group_add+0x10/0x10\n ? __pfx_lock_acquire+0x10/0x10\n ? mnt_get_write_access+0x68/0x2b0\n ? __pfx_lock_release+0x10/0x10\n ? rcu_read_lock_any_held+0xb7/0x160\n ? __pfx_rcu_read_lock_any_held+0x10/0x10\n ? smack_log+0x123/0x540\n ? mnt_get_write_access+0x68/0x2b0\n ? mnt_get_write_access+0x68/0x2b0\n ? mnt_get_write_access+0x226/0x2b0\n ocfs2_ioctl+0x65e/0x7d0\n ? __pfx_ocfs2_ioctl+0x10/0x10\n ? smack_file_ioctl+0x29e/0x3a0\n ? __pfx_smack_file_ioctl+0x10/0x10\n ? lockdep_hardirqs_on_prepare+0x43d/0x780\n ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10\n ? __pfx_ocfs2_ioctl+0x10/0x10\n __se_sys_ioctl+0xfb/0x170\n do_syscall_64+0xf3/0x230\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n \u003c/TASK\u003e\n\nWhen \u0027ioctl(OCFS2_IOC_GROUP_ADD, ...)\u0027 has failed for the particular\ninode in \u0027ocfs2_verify_group_and_input()\u0027, corresponding buffer head\nremains cached and subsequent call to the same \u0027ioctl()\u0027 for the same\ninode issues the BUG() in \u0027ocfs2_set_new_buffer_uptodate()\u0027 (trying\nto cache the same buffer head of that inode). Fix this by uncaching\nthe buffer head with \u0027ocfs2_remove_from_cache()\u0027 on error path in\n\u0027ocfs2_group_add()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53112",
"url": "https://www.suse.com/security/cve/CVE-2024-53112"
},
{
"category": "external",
"summary": "SUSE Bug 1234087 for CVE-2024-53112",
"url": "https://bugzilla.suse.com/1234087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53112"
},
{
"cve": "CVE-2024-53136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: revert \"mm: shmem: fix data-race in shmem_getattr()\"\n\nRevert d949d1d14fa2 (\"mm: shmem: fix data-race in shmem_getattr()\") as\nsuggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over\nNFS.\n\nAs Hugh commented, \"added just to silence a syzbot sanitizer splat: added\nwhere there has never been any practical problem\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53136",
"url": "https://www.suse.com/security/cve/CVE-2024-53136"
},
{
"category": "external",
"summary": "SUSE Bug 1234161 for CVE-2024-53136",
"url": "https://bugzilla.suse.com/1234161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53136"
},
{
"cve": "CVE-2024-53141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: add missing range check in bitmap_ip_uadt\n\nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,\nthe values of ip and ip_to are slightly swapped. Therefore, the range check\nfor ip should be done later, but this part is missing and it seems that the\nvulnerability occurs.\n\nSo we should add missing range checks and remove unnecessary range checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53141",
"url": "https://www.suse.com/security/cve/CVE-2024-53141"
},
{
"category": "external",
"summary": "SUSE Bug 1234381 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "external",
"summary": "SUSE Bug 1245778 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1245778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-53141"
},
{
"cve": "CVE-2024-53144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE\n\nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4\n(\"Bluetooth: Always request for user confirmation for Just Works\")\nalways request user confirmation with confirm_hint set since the\nlikes of bluetoothd have dedicated policy around JUST_WORKS method\n(e.g. main.conf:JustWorksRepairing).\n\nCVE: CVE-2024-8805",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53144",
"url": "https://www.suse.com/security/cve/CVE-2024-53144"
},
{
"category": "external",
"summary": "SUSE Bug 1234690 for CVE-2024-53144",
"url": "https://bugzilla.suse.com/1234690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53144"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubi: fastmap: Fix duplicate slab cache names while attaching\n\nSince commit 4c39529663b9 (\"slab: Warn on duplicate cache names when\nDEBUG_VM=y\"), the duplicate slab cache names can be detected and a\nkernel WARNING is thrown out.\nIn UBI fast attaching process, alloc_ai() could be invoked twice\nwith the same slab cache name \u0027ubi_aeb_slab_cache\u0027, which will trigger\nfollowing warning messages:\n kmem_cache of name \u0027ubi_aeb_slab_cache\u0027 already exists\n WARNING: CPU: 0 PID: 7519 at mm/slab_common.c:107\n __kmem_cache_create_args+0x100/0x5f0\n Modules linked in: ubi(+) nandsim [last unloaded: nandsim]\n CPU: 0 UID: 0 PID: 7519 Comm: modprobe Tainted: G 6.12.0-rc2\n RIP: 0010:__kmem_cache_create_args+0x100/0x5f0\n Call Trace:\n __kmem_cache_create_args+0x100/0x5f0\n alloc_ai+0x295/0x3f0 [ubi]\n ubi_attach+0x3c3/0xcc0 [ubi]\n ubi_attach_mtd_dev+0x17cf/0x3fa0 [ubi]\n ubi_init+0x3fb/0x800 [ubi]\n do_init_module+0x265/0x7d0\n __x64_sys_finit_module+0x7a/0xc0\n\nThe problem could be easily reproduced by loading UBI device by fastmap\nwith CONFIG_DEBUG_VM=y.\nFix it by using different slab names for alloc_ai() callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53172",
"url": "https://www.suse.com/security/cve/CVE-2024-53172"
},
{
"category": "external",
"summary": "SUSE Bug 1234898 for CVE-2024-53172",
"url": "https://bugzilla.suse.com/1234898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53172"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen: Fix the issue of resource not being properly released in xenbus_dev_probe()\n\nThis patch fixes an issue in the function xenbus_dev_probe(). In the\nxenbus_dev_probe() function, within the if (err) branch at line 313, the\nprogram incorrectly returns err directly without releasing the resources\nallocated by err = drv-\u003eprobe(dev, id). As the return value is non-zero,\nthe upper layers assume the processing logic has failed. However, the probe\noperation was performed earlier without a corresponding remove operation.\nSince the probe actually allocates resources, failing to perform the remove\noperation could lead to problems.\n\nTo fix this issue, we followed the resource release logic of the\nxenbus_dev_remove() function by adding a new block fail_remove before the\nfail_put block. After entering the branch if (err) at line 313, the\nfunction will use a goto statement to jump to the fail_remove block,\nensuring that the previously acquired resources are correctly released,\nthus preventing the reference count leak.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand detecting potential issues where resources are not properly managed.\nIn this case, the tool flagged the missing release operation as a\npotential problem, which led to the development of this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53198",
"url": "https://www.suse.com/security/cve/CVE-2024-53198"
},
{
"category": "external",
"summary": "SUSE Bug 1234923 for CVE-2024-53198",
"url": "https://bugzilla.suse.com/1234923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53198"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Move events notifier registration to be after device registration\n\nMove pkey change work initialization and cleanup from device resources\nstage to notifier stage, since this is the stage which handles this work\nevents.\n\nFix a race between the device deregistration and pkey change work by moving\nMLX5_IB_STAGE_DEVICE_NOTIFIER to be after MLX5_IB_STAGE_IB_REG in order to\nensure that the notifier is deregistered before the device during cleanup.\nWhich ensures there are no works that are being executed after the\ndevice has already unregistered which can cause the panic below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 1 PID: 630071 Comm: kworker/1:2 Kdump: loaded Tainted: G W OE --------- --- 5.14.0-162.6.1.el9_1.x86_64 #1\nHardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 02/27/2023\nWorkqueue: events pkey_change_handler [mlx5_ib]\nRIP: 0010:setup_qp+0x38/0x1f0 [mlx5_ib]\nCode: ee 41 54 45 31 e4 55 89 f5 53 48 89 fb 48 83 ec 20 8b 77 08 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 48 8b 07 48 8d 4c 24 16 \u003c4c\u003e 8b 38 49 8b 87 80 0b 00 00 4c 89 ff 48 8b 80 08 05 00 00 8b 40\nRSP: 0018:ffffbcc54068be20 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff954054494128 RCX: ffffbcc54068be36\nRDX: ffff954004934000 RSI: 0000000000000001 RDI: ffff954054494128\nRBP: 0000000000000023 R08: ffff954001be2c20 R09: 0000000000000001\nR10: ffff954001be2c20 R11: ffff9540260133c0 R12: 0000000000000000\nR13: 0000000000000023 R14: 0000000000000000 R15: ffff9540ffcb0905\nFS: 0000000000000000(0000) GS:ffff9540ffc80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000010625c001 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\nmlx5_ib_gsi_pkey_change+0x20/0x40 [mlx5_ib]\nprocess_one_work+0x1e8/0x3c0\nworker_thread+0x50/0x3b0\n? rescuer_thread+0x380/0x380\nkthread+0x149/0x170\n? set_kthread_struct+0x50/0x50\nret_from_fork+0x22/0x30\nModules linked in: rdma_ucm(OE) rdma_cm(OE) iw_cm(OE) ib_ipoib(OE) ib_cm(OE) ib_umad(OE) mlx5_ib(OE) mlx5_fwctl(OE) fwctl(OE) ib_uverbs(OE) mlx5_core(OE) mlxdevm(OE) ib_core(OE) mlx_compat(OE) psample mlxfw(OE) tls knem(OE) netconsole nfsv3 nfs_acl nfs lockd grace fscache netfs qrtr rfkill sunrpc intel_rapl_msr intel_rapl_common rapl hv_balloon hv_utils i2c_piix4 pcspkr joydev fuse ext4 mbcache jbd2 sr_mod sd_mod cdrom t10_pi sg ata_generic pci_hyperv pci_hyperv_intf hyperv_drm drm_shmem_helper drm_kms_helper hv_storvsc syscopyarea hv_netvsc sysfillrect sysimgblt hid_hyperv fb_sys_fops scsi_transport_fc hyperv_keyboard drm ata_piix crct10dif_pclmul crc32_pclmul crc32c_intel libata ghash_clmulni_intel hv_vmbus serio_raw [last unloaded: ib_core]\nCR2: 0000000000000000\n---[ end trace f6f8be4eae12f7bc ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53224",
"url": "https://www.suse.com/security/cve/CVE-2024-53224"
},
{
"category": "external",
"summary": "SUSE Bug 1235009 for CVE-2024-53224",
"url": "https://bugzilla.suse.com/1235009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53224"
},
{
"cve": "CVE-2024-53239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: 6fire: Release resources at card release\n\nThe current 6fire code tries to release the resources right after the\ncall of usb6fire_chip_abort(). But at this moment, the card object\nmight be still in use (as we\u0027re calling snd_card_free_when_closed()).\n\nFor avoid potential UAFs, move the release of resources to the card\u0027s\nprivate_free instead of the manual call of usb6fire_chip_destroy() at\nthe USB disconnect callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53239",
"url": "https://www.suse.com/security/cve/CVE-2024-53239"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235054 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "external",
"summary": "SUSE Bug 1235055 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-53239"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-56531",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56531"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: caiaq: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThis patch also splits the code to the disconnect and the free phases;\nthe former is called immediately at the USB disconnect callback while\nthe latter is called from the card destructor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56531",
"url": "https://www.suse.com/security/cve/CVE-2024-56531"
},
{
"category": "external",
"summary": "SUSE Bug 1235057 for CVE-2024-56531",
"url": "https://bugzilla.suse.com/1235057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "low"
}
],
"title": "CVE-2024-56531"
},
{
"cve": "CVE-2024-56548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: don\u0027t query the device logical block size multiple times\n\nDevices block sizes may change. One of these cases is a loop device by\nusing ioctl LOOP_SET_BLOCK_SIZE.\n\nWhile this may cause other issues like IO being rejected, in the case of\nhfsplus, it will allocate a block by using that size and potentially write\nout-of-bounds when hfsplus_read_wrapper calls hfsplus_submit_bio and the\nlatter function reads a different io_size.\n\nUsing a new min_io_size initally set to sb_min_blocksize works for the\npurposes of the original fix, since it will be set to the max between\nHFSPLUS_SECTOR_SIZE and the first seen logical block size. We still use the\nmax between HFSPLUS_SECTOR_SIZE and min_io_size in case the latter is not\ninitialized.\n\nTested by mounting an hfsplus filesystem with loop block sizes 512, 1024\nand 4096.\n\nThe produced KASAN report before the fix looks like this:\n\n[ 419.944641] ==================================================================\n[ 419.945655] BUG: KASAN: slab-use-after-free in hfsplus_read_wrapper+0x659/0xa0a\n[ 419.946703] Read of size 2 at addr ffff88800721fc00 by task repro/10678\n[ 419.947612]\n[ 419.947846] CPU: 0 UID: 0 PID: 10678 Comm: repro Not tainted 6.12.0-rc5-00008-gdf56e0f2f3ca #84\n[ 419.949007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 419.950035] Call Trace:\n[ 419.950384] \u003cTASK\u003e\n[ 419.950676] dump_stack_lvl+0x57/0x78\n[ 419.951212] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.951830] print_report+0x14c/0x49e\n[ 419.952361] ? __virt_addr_valid+0x267/0x278\n[ 419.952979] ? kmem_cache_debug_flags+0xc/0x1d\n[ 419.953561] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.954231] kasan_report+0x89/0xb0\n[ 419.954748] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955367] hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955948] ? __pfx_hfsplus_read_wrapper+0x10/0x10\n[ 419.956618] ? do_raw_spin_unlock+0x59/0x1a9\n[ 419.957214] ? _raw_spin_unlock+0x1a/0x2e\n[ 419.957772] hfsplus_fill_super+0x348/0x1590\n[ 419.958355] ? hlock_class+0x4c/0x109\n[ 419.958867] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.959499] ? __pfx_string+0x10/0x10\n[ 419.960006] ? lock_acquire+0x3e2/0x454\n[ 419.960532] ? bdev_name.constprop.0+0xce/0x243\n[ 419.961129] ? __pfx_bdev_name.constprop.0+0x10/0x10\n[ 419.961799] ? pointer+0x3f0/0x62f\n[ 419.962277] ? __pfx_pointer+0x10/0x10\n[ 419.962761] ? vsnprintf+0x6c4/0xfba\n[ 419.963178] ? __pfx_vsnprintf+0x10/0x10\n[ 419.963621] ? setup_bdev_super+0x376/0x3b3\n[ 419.964029] ? snprintf+0x9d/0xd2\n[ 419.964344] ? __pfx_snprintf+0x10/0x10\n[ 419.964675] ? lock_acquired+0x45c/0x5e9\n[ 419.965016] ? set_blocksize+0x139/0x1c1\n[ 419.965381] ? sb_set_blocksize+0x6d/0xae\n[ 419.965742] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.966179] mount_bdev+0x12f/0x1bf\n[ 419.966512] ? __pfx_mount_bdev+0x10/0x10\n[ 419.966886] ? vfs_parse_fs_string+0xce/0x111\n[ 419.967293] ? __pfx_vfs_parse_fs_string+0x10/0x10\n[ 419.967702] ? __pfx_hfsplus_mount+0x10/0x10\n[ 419.968073] legacy_get_tree+0x104/0x178\n[ 419.968414] vfs_get_tree+0x86/0x296\n[ 419.968751] path_mount+0xba3/0xd0b\n[ 419.969157] ? __pfx_path_mount+0x10/0x10\n[ 419.969594] ? kmem_cache_free+0x1e2/0x260\n[ 419.970311] do_mount+0x99/0xe0\n[ 419.970630] ? __pfx_do_mount+0x10/0x10\n[ 419.971008] __do_sys_mount+0x199/0x1c9\n[ 419.971397] do_syscall_64+0xd0/0x135\n[ 419.971761] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 419.972233] RIP: 0033:0x7c3cb812972e\n[ 419.972564] Code: 48 8b 0d f5 46 0d 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 a5 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d c2 46 0d 00 f7 d8 64 89 01 48\n[ 419.974371] RSP: 002b:00007ffe30632548 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5\n[ 419.975048] RAX: ffffffffffffffda RBX: 00007ffe306328d8 RCX: 00007c3cb812972e\n[ 419.975701] RDX: 0000000020000000 RSI: 0000000020000c80 RDI:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56548",
"url": "https://www.suse.com/security/cve/CVE-2024-56548"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235073 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "external",
"summary": "SUSE Bug 1235074 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-56548"
},
{
"cve": "CVE-2024-56551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix usage slab after free\n\n[ +0.000021] BUG: KASAN: slab-use-after-free in drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000027] Read of size 8 at addr ffff8881b8605f88 by task amd_pci_unplug/2147\n\n[ +0.000023] CPU: 6 PID: 2147 Comm: amd_pci_unplug Not tainted 6.10.0+ #1\n[ +0.000016] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[ +0.000016] Call Trace:\n[ +0.000008] \u003cTASK\u003e\n[ +0.000009] dump_stack_lvl+0x76/0xa0\n[ +0.000017] print_report+0xce/0x5f0\n[ +0.000017] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] ? srso_return_thunk+0x5/0x5f\n[ +0.000015] ? kasan_complete_mode_report_info+0x72/0x200\n[ +0.000016] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] kasan_report+0xbe/0x110\n[ +0.000015] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000023] __asan_report_load8_noabort+0x14/0x30\n[ +0.000014] drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000016] ? __pfx_drm_sched_entity_flush+0x10/0x10 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? enable_work+0x124/0x220\n[ +0.000015] ? __pfx_enable_work+0x10/0x10\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? free_large_kmalloc+0x85/0xf0\n[ +0.000016] drm_sched_entity_destroy+0x18/0x30 [gpu_sched]\n[ +0.000020] amdgpu_vce_sw_fini+0x55/0x170 [amdgpu]\n[ +0.000735] ? __kasan_check_read+0x11/0x20\n[ +0.000016] vce_v4_0_sw_fini+0x80/0x110 [amdgpu]\n[ +0.000726] amdgpu_device_fini_sw+0x331/0xfc0 [amdgpu]\n[ +0.000679] ? mutex_unlock+0x80/0xe0\n[ +0.000017] ? __pfx_amdgpu_device_fini_sw+0x10/0x10 [amdgpu]\n[ +0.000662] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? mutex_unlock+0x80/0xe0\n[ +0.000016] amdgpu_driver_release_kms+0x16/0x80 [amdgpu]\n[ +0.000663] drm_minor_release+0xc9/0x140 [drm]\n[ +0.000081] drm_release+0x1fd/0x390 [drm]\n[ +0.000082] __fput+0x36c/0xad0\n[ +0.000018] __fput_sync+0x3c/0x50\n[ +0.000014] __x64_sys_close+0x7d/0xe0\n[ +0.000014] x64_sys_call+0x1bc6/0x2680\n[ +0.000014] do_syscall_64+0x70/0x130\n[ +0.000014] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit_to_user_mode+0x60/0x190\n[ +0.000015] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit+0x43/0x50\n[ +0.000012] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? exc_page_fault+0x7c/0x110\n[ +0.000015] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ +0.000014] RIP: 0033:0x7ffff7b14f67\n[ +0.000013] Code: ff e8 0d 16 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 03 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 41 c3 48 83 ec 18 89 7c 24 0c e8 73 ba f7 ff\n[ +0.000026] RSP: 002b:00007fffffffe378 EFLAGS: 00000246 ORIG_RAX: 0000000000000003\n[ +0.000019] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffff7b14f67\n[ +0.000014] RDX: 0000000000000000 RSI: 00007ffff7f6f47a RDI: 0000000000000003\n[ +0.000014] RBP: 00007fffffffe3a0 R08: 0000555555569890 R09: 0000000000000000\n[ +0.000014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffffe5c8\n[ +0.000013] R13: 00005555555552a9 R14: 0000555555557d48 R15: 00007ffff7ffd040\n[ +0.000020] \u003c/TASK\u003e\n\n[ +0.000016] Allocated by task 383 on cpu 7 at 26.880319s:\n[ +0.000014] kasan_save_stack+0x28/0x60\n[ +0.000008] kasan_save_track+0x18/0x70\n[ +0.000007] kasan_save_alloc_info+0x38/0x60\n[ +0.000007] __kasan_kmalloc+0xc1/0xd0\n[ +0.000007] kmalloc_trace_noprof+0x180/0x380\n[ +0.000007] drm_sched_init+0x411/0xec0 [gpu_sched]\n[ +0.000012] amdgpu_device_init+0x695f/0xa610 [amdgpu]\n[ +0.000658] amdgpu_driver_load_kms+0x1a/0x120 [amdgpu]\n[ +0.000662] amdgpu_pci_p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56551",
"url": "https://www.suse.com/security/cve/CVE-2024-56551"
},
{
"category": "external",
"summary": "SUSE Bug 1235075 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "external",
"summary": "SUSE Bug 1235102 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56551"
},
{
"cve": "CVE-2024-56569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix regression with module command in stack_trace_filter\n\nWhen executing the following command:\n\n # echo \"write*:mod:ext3\" \u003e /sys/kernel/tracing/stack_trace_filter\n\nThe current mod command causes a null pointer dereference. While commit\n0f17976568b3f (\"ftrace: Fix regression with module command in stack_trace_filter\")\nhas addressed part of the issue, it left a corner case unhandled, which still\nresults in a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56569",
"url": "https://www.suse.com/security/cve/CVE-2024-56569"
},
{
"category": "external",
"summary": "SUSE Bug 1235031 for CVE-2024-56569",
"url": "https://bugzilla.suse.com/1235031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56569"
},
{
"cve": "CVE-2024-56570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Filter invalid inodes with missing lookup function\n\nAdd a check to the ovl_dentry_weird() function to prevent the\nprocessing of directory inodes that lack the lookup function.\nThis is important because such inodes can cause errors in overlayfs\nwhen passed to the lowerstack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56570",
"url": "https://www.suse.com/security/cve/CVE-2024-56570"
},
{
"category": "external",
"summary": "SUSE Bug 1235035 for CVE-2024-56570",
"url": "https://bugzilla.suse.com/1235035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56570"
},
{
"cve": "CVE-2024-56587",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56587"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nleds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex\n\nThere is NULL pointer issue observed if from Process A where hid device\nbeing added which results in adding a led_cdev addition and later a\nanother call to access of led_cdev attribute from Process B can result\nin NULL pointer issue.\n\nUse mutex led_cdev-\u003eled_access to protect access to led-\u003ecdev and its\nattribute inside brightness_show() and max_brightness_show() and also\nupdate the comment for mutex that it should be used to protect the led\nclass device fields.\n\n\tProcess A \t\t\t\tProcess B\n\n kthread+0x114\n worker_thread+0x244\n process_scheduled_works+0x248\n uhid_device_add_worker+0x24\n hid_add_device+0x120\n device_add+0x268\n bus_probe_device+0x94\n device_initial_probe+0x14\n __device_attach+0xfc\n bus_for_each_drv+0x10c\n __device_attach_driver+0x14c\n driver_probe_device+0x3c\n __driver_probe_device+0xa0\n really_probe+0x190\n hid_device_probe+0x130\n ps_probe+0x990\n ps_led_register+0x94\n devm_led_classdev_register_ext+0x58\n led_classdev_register_ext+0x1f8\n device_create_with_groups+0x48\n device_create_groups_vargs+0xc8\n device_add+0x244\n kobject_uevent+0x14\n kobject_uevent_env[jt]+0x224\n mutex_unlock[jt]+0xc4\n __mutex_unlock_slowpath+0xd4\n wake_up_q+0x70\n try_to_wake_up[jt]+0x48c\n preempt_schedule_common+0x28\n __schedule+0x628\n __switch_to+0x174\n\t\t\t\t\t\tel0t_64_sync+0x1a8/0x1ac\n\t\t\t\t\t\tel0t_64_sync_handler+0x68/0xbc\n\t\t\t\t\t\tel0_svc+0x38/0x68\n\t\t\t\t\t\tdo_el0_svc+0x1c/0x28\n\t\t\t\t\t\tel0_svc_common+0x80/0xe0\n\t\t\t\t\t\tinvoke_syscall+0x58/0x114\n\t\t\t\t\t\t__arm64_sys_read+0x1c/0x2c\n\t\t\t\t\t\tksys_read+0x78/0xe8\n\t\t\t\t\t\tvfs_read+0x1e0/0x2c8\n\t\t\t\t\t\tkernfs_fop_read_iter+0x68/0x1b4\n\t\t\t\t\t\tseq_read_iter+0x158/0x4ec\n\t\t\t\t\t\tkernfs_seq_show+0x44/0x54\n\t\t\t\t\t\tsysfs_kf_seq_show+0xb4/0x130\n\t\t\t\t\t\tdev_attr_show+0x38/0x74\n\t\t\t\t\t\tbrightness_show+0x20/0x4c\n\t\t\t\t\t\tdualshock4_led_get_brightness+0xc/0x74\n\n[ 3313.874295][ T4013] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000060\n[ 3313.874301][ T4013] Mem abort info:\n[ 3313.874303][ T4013] ESR = 0x0000000096000006\n[ 3313.874305][ T4013] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 3313.874307][ T4013] SET = 0, FnV = 0\n[ 3313.874309][ T4013] EA = 0, S1PTW = 0\n[ 3313.874311][ T4013] FSC = 0x06: level 2 translation fault\n[ 3313.874313][ T4013] Data abort info:\n[ 3313.874314][ T4013] ISV = 0, ISS = 0x00000006, ISS2 = 0x00000000\n[ 3313.874316][ T4013] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 3313.874318][ T4013] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 3313.874320][ T4013] user pgtable: 4k pages, 39-bit VAs, pgdp=00000008f2b0a000\n..\n\n[ 3313.874332][ T4013] Dumping ftrace buffer:\n[ 3313.874334][ T4013] (ftrace buffer empty)\n..\n..\n[ dd3313.874639][ T4013] CPU: 6 PID: 4013 Comm: InputReader\n[ 3313.874648][ T4013] pc : dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874653][ T4013] lr : led_update_brightness+0x38/0x60\n[ 3313.874656][ T4013] sp : ffffffc0b910bbd0\n..\n..\n[ 3313.874685][ T4013] Call trace:\n[ 3313.874687][ T4013] dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874690][ T4013] brightness_show+0x20/0x4c\n[ 3313.874692][ T4013] dev_attr_show+0x38/0x74\n[ 3313.874696][ T4013] sysfs_kf_seq_show+0xb4/0x130\n[ 3313.874700][ T4013] kernfs_seq_show+0x44/0x54\n[ 3313.874703][ T4013] seq_read_iter+0x158/0x4ec\n[ 3313.874705][ T4013] kernfs_fop_read_iter+0x68/0x1b4\n[ 3313.874708][ T4013] vfs_read+0x1e0/0x2c8\n[ 3313.874711][ T4013] ksys_read+0x78/0xe8\n[ 3313.874714][ T4013] __arm64_sys_read+0x1c/0x2c\n[ 3313.874718][ T4013] invoke_syscall+0x58/0x114\n[ 3313.874721][ T4013] el0_svc_common+0x80/0xe0\n[ 3313.874724][ T4013] do_el0_svc+0x1c/0x28\n[ 3313.874727][ T4013] el0_svc+0x38/0x68\n[ 3313.874730][ T4013] el0t_64_sync_handler+0x68/0xbc\n[ 3313.874732][ T4013] el0t_64_sync+0x1a8/0x1ac",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56587",
"url": "https://www.suse.com/security/cve/CVE-2024-56587"
},
{
"category": "external",
"summary": "SUSE Bug 1235125 for CVE-2024-56587",
"url": "https://bugzilla.suse.com/1235125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56587"
},
{
"cve": "CVE-2024-56599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56599"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: avoid NULL pointer error during sdio remove\n\nWhen running \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will free sdio\nworkqueue by destroy_workqueue(). But if CONFIG_INIT_ON_FREE_DEFAULT_ON\nis set to yes, kernel panic will happen:\nCall trace:\n destroy_workqueue+0x1c/0x258\n ath10k_sdio_remove+0x84/0x94\n sdio_bus_remove+0x50/0x16c\n device_release_driver_internal+0x188/0x25c\n device_driver_detach+0x20/0x2c\n\nThis is because during \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will call\nath10k_core_destroy() before destroy_workqueue(). wiphy_dev_release()\nwill finally be called in ath10k_core_destroy(). This function will free\nstruct cfg80211_registered_device *rdev and all its members, including\nwiphy, dev and the pointer of sdio workqueue. Then the pointer of sdio\nworkqueue will be set to NULL due to CONFIG_INIT_ON_FREE_DEFAULT_ON.\n\nAfter device release, destroy_workqueue() will use NULL pointer then the\nkernel panic happen.\n\nCall trace:\nath10k_sdio_remove\n -\u003eath10k_core_unregister\n \u2026\u2026\n -\u003eath10k_core_stop\n -\u003eath10k_hif_stop\n -\u003eath10k_sdio_irq_disable\n -\u003eath10k_hif_power_down\n -\u003edel_timer_sync(\u0026ar_sdio-\u003esleep_timer)\n -\u003eath10k_core_destroy\n -\u003eath10k_mac_destroy\n -\u003eieee80211_free_hw\n -\u003ewiphy_free\n \u2026\u2026\n -\u003ewiphy_dev_release\n -\u003edestroy_workqueue\n\nNeed to call destroy_workqueue() before ath10k_core_destroy(), free\nthe work queue buffer first and then free pointer of work queue by\nath10k_core_destroy(). This order matches the error path order in\nath10k_sdio_probe().\n\nNo work will be queued on sdio workqueue between it is destroyed and\nath10k_core_destroy() is called. Based on the call_stack above, the\nreason is:\nOnly ath10k_sdio_sleep_timer_handler(), ath10k_sdio_hif_tx_sg() and\nath10k_sdio_irq_disable() will queue work on sdio workqueue.\nSleep timer will be deleted before ath10k_core_destroy() in\nath10k_hif_power_down().\nath10k_sdio_irq_disable() only be called in ath10k_hif_stop().\nath10k_core_unregister() will call ath10k_hif_power_down() to stop hif\nbus, so ath10k_sdio_hif_tx_sg() won\u0027t be called anymore.\n\nTested-on: QCA6174 hw3.2 SDIO WLAN.RMH.4.4.1-00189",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56599",
"url": "https://www.suse.com/security/cve/CVE-2024-56599"
},
{
"category": "external",
"summary": "SUSE Bug 1235138 for CVE-2024-56599",
"url": "https://bugzilla.suse.com/1235138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56599"
},
{
"cve": "CVE-2024-5660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-5660"
}
],
"notes": [
{
"category": "general",
"text": "Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 may permit bypass of Stage-2 translation and/or GPT protection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-5660",
"url": "https://www.suse.com/security/cve/CVE-2024-5660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "critical"
}
],
"title": "CVE-2024-5660"
},
{
"cve": "CVE-2024-56603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56603"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: af_can: do not leave a dangling sk pointer in can_create()\n\nOn error can_create() frees the allocated sk object, but sock_init_data()\nhas already attached it to the provided sock object. This will leave a\ndangling sk pointer in the sock object and may cause use-after-free later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56603",
"url": "https://www.suse.com/security/cve/CVE-2024-56603"
},
{
"category": "external",
"summary": "SUSE Bug 1235415 for CVE-2024-56603",
"url": "https://bugzilla.suse.com/1235415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56603"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56606"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_packet: avoid erroring out after sock_init_data() in packet_create()\n\nAfter sock_init_data() the allocated sk object is attached to the provided\nsock object. On error, packet_create() frees the sk object leaving the\ndangling pointer in the sock object on return. Some other code may try\nto use this pointer and cause use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56606",
"url": "https://www.suse.com/security/cve/CVE-2024-56606"
},
{
"category": "external",
"summary": "SUSE Bug 1235417 for CVE-2024-56606",
"url": "https://bugzilla.suse.com/1235417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56606"
},
{
"cve": "CVE-2024-56616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56616"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix MST sideband message body length check\n\nFix the MST sideband message body length check, which must be at least 1\nbyte accounting for the message body CRC (aka message data CRC) at the\nend of the message.\n\nThis fixes a case where an MST branch device returns a header with a\ncorrect header CRC (indicating a correctly received body length), with\nthe body length being incorrectly set to 0. This will later lead to a\nmemory corruption in drm_dp_sideband_append_payload() and the following\nerrors in dmesg:\n\n UBSAN: array-index-out-of-bounds in drivers/gpu/drm/display/drm_dp_mst_topology.c:786:25\n index -1 is out of range for type \u0027u8 [48]\u0027\n Call Trace:\n drm_dp_sideband_append_payload+0x33d/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]\n\n memcpy: detected field-spanning write (size 18446744073709551615) of single field \"\u0026msg-\u003emsg[msg-\u003ecurlen]\" at drivers/gpu/drm/display/drm_dp_mst_topology.c:791 (size 256)\n Call Trace:\n drm_dp_sideband_append_payload+0x324/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56616",
"url": "https://www.suse.com/security/cve/CVE-2024-56616"
},
{
"category": "external",
"summary": "SUSE Bug 1235427 for CVE-2024-56616",
"url": "https://bugzilla.suse.com/1235427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56616"
},
{
"cve": "CVE-2024-56631",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56631"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Fix slab-use-after-free read in sg_release()\n\nFix a use-after-free bug in sg_release(), detected by syzbot with KASAN:\n\nBUG: KASAN: slab-use-after-free in lock_release+0x151/0xa30\nkernel/locking/lockdep.c:5838\n__mutex_unlock_slowpath+0xe2/0x750 kernel/locking/mutex.c:912\nsg_release+0x1f4/0x2e0 drivers/scsi/sg.c:407\n\nIn sg_release(), the function kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) is\ncalled before releasing the open_rel_lock mutex. The kref_put() call may\ndecrement the reference count of sfp to zero, triggering its cleanup\nthrough sg_remove_sfp(). This cleanup includes scheduling deferred work\nvia sg_remove_sfp_usercontext(), which ultimately frees sfp.\n\nAfter kref_put(), sg_release() continues to unlock open_rel_lock and may\nreference sfp or sdp. If sfp has already been freed, this results in a\nslab-use-after-free error.\n\nMove the kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) call after unlocking the\nopen_rel_lock mutex. This ensures:\n\n - No references to sfp or sdp occur after the reference count is\n decremented.\n\n - Cleanup functions such as sg_remove_sfp() and\n sg_remove_sfp_usercontext() can safely execute without impacting the\n mutex handling in sg_release().\n\nThe fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures proper\nsequencing of resource cleanup and mutex operations, eliminating the\nrisk of use-after-free errors in sg_release().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56631",
"url": "https://www.suse.com/security/cve/CVE-2024-56631"
},
{
"category": "external",
"summary": "SUSE Bug 1235480 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "external",
"summary": "SUSE Bug 1235482 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-56631"
},
{
"cve": "CVE-2024-56642",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56642"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free of kernel socket in cleanup_bearer().\n\nsyzkaller reported a use-after-free of UDP kernel socket\nin cleanup_bearer() without repro. [0][1]\n\nWhen bearer_disable() calls tipc_udp_disable(), cleanup\nof the UDP kernel socket is deferred by work calling\ncleanup_bearer().\n\ntipc_exit_net() waits for such works to finish by checking\ntipc_net(net)-\u003ewq_count. However, the work decrements the\ncount too early before releasing the kernel socket,\nunblocking cleanup_net() and resulting in use-after-free.\n\nLet\u0027s move the decrement after releasing the socket in\ncleanup_bearer().\n\n[0]:\nref_tracker: net notrefcnt@000000009b3d1faf has 1/1 users at\n sk_alloc+0x438/0x608\n inet_create+0x4c8/0xcb0\n __sock_create+0x350/0x6b8\n sock_create_kern+0x58/0x78\n udp_sock_create4+0x68/0x398\n udp_sock_create+0x88/0xc8\n tipc_udp_enable+0x5e8/0x848\n __tipc_nl_bearer_enable+0x84c/0xed8\n tipc_nl_bearer_enable+0x38/0x60\n genl_family_rcv_msg_doit+0x170/0x248\n genl_rcv_msg+0x400/0x5b0\n netlink_rcv_skb+0x1dc/0x398\n genl_rcv+0x44/0x68\n netlink_unicast+0x678/0x8b0\n netlink_sendmsg+0x5e4/0x898\n ____sys_sendmsg+0x500/0x830\n\n[1]:\nBUG: KMSAN: use-after-free in udp_hashslot include/net/udp.h:85 [inline]\nBUG: KMSAN: use-after-free in udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n udp_hashslot include/net/udp.h:85 [inline]\n udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n sk_common_release+0xaf/0x3f0 net/core/sock.c:3820\n inet_release+0x1e0/0x260 net/ipv4/af_inet.c:437\n inet6_release+0x6f/0xd0 net/ipv6/af_inet6.c:489\n __sock_release net/socket.c:658 [inline]\n sock_release+0xa0/0x210 net/socket.c:686\n cleanup_bearer+0x42d/0x4c0 net/tipc/udp_media.c:819\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nUninit was created at:\n slab_free_hook mm/slub.c:2269 [inline]\n slab_free mm/slub.c:4580 [inline]\n kmem_cache_free+0x207/0xc40 mm/slub.c:4682\n net_free net/core/net_namespace.c:454 [inline]\n cleanup_net+0x16f2/0x19d0 net/core/net_namespace.c:647\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/0:2 Not tainted 6.12.0-rc1-00131-gf66ebf37d69c #7 91723d6f74857f70725e1583cba3cf4adc716cfa\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nWorkqueue: events cleanup_bearer",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56642",
"url": "https://www.suse.com/security/cve/CVE-2024-56642"
},
{
"category": "external",
"summary": "SUSE Bug 1235433 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "external",
"summary": "SUSE Bug 1235434 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-56642"
},
{
"cve": "CVE-2024-56664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Fix race between element replace and close()\n\nElement replace (with a socket different from the one stored) may race\nwith socket\u0027s close() link popping \u0026 unlinking. __sock_map_delete()\nunconditionally unrefs the (wrong) element:\n\n// set map[0] = s0\nmap_update_elem(map, 0, s0)\n\n// drop fd of s0\nclose(s0)\n sock_map_close()\n lock_sock(sk) (s0!)\n sock_map_remove_links(sk)\n link = sk_psock_link_pop()\n sock_map_unlink(sk, link)\n sock_map_delete_from_link\n // replace map[0] with s1\n map_update_elem(map, 0, s1)\n sock_map_update_elem\n (s1!) lock_sock(sk)\n sock_map_update_common\n psock = sk_psock(sk)\n spin_lock(\u0026stab-\u003elock)\n osk = stab-\u003esks[idx]\n sock_map_add_link(..., \u0026stab-\u003esks[idx])\n sock_map_unref(osk, \u0026stab-\u003esks[idx])\n psock = sk_psock(osk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test(\u0026psock))\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n unlock_sock(sk)\n __sock_map_delete\n spin_lock(\u0026stab-\u003elock)\n sk = *psk // s1 replaced s0; sk == s1\n if (!sk_test || sk_test == sk) // sk_test (s0) != sk (s1); no branch\n sk = xchg(psk, NULL)\n if (sk)\n sock_map_unref(sk, psk) // unref s1; sks[idx] will dangle\n psock = sk_psock(sk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test())\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n release_sock(sk)\n\nThen close(map) enqueues bpf_map_free_deferred, which finally calls\nsock_map_free(). This results in some refcount_t warnings along with\na KASAN splat [1].\n\nFix __sock_map_delete(), do not allow sock_map_unref() on elements that\nmay have been replaced.\n\n[1]:\nBUG: KASAN: slab-use-after-free in sock_map_free+0x10e/0x330\nWrite of size 4 at addr ffff88811f5b9100 by task kworker/u64:12/1063\n\nCPU: 14 UID: 0 PID: 1063 Comm: kworker/u64:12 Not tainted 6.12.0+ #125\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Arch Linux 1.16.3-1-1 04/01/2014\nWorkqueue: events_unbound bpf_map_free_deferred\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x68/0x90\n print_report+0x174/0x4f6\n kasan_report+0xb9/0x190\n kasan_check_range+0x10f/0x1e0\n sock_map_free+0x10e/0x330\n bpf_map_free_deferred+0x173/0x320\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 1202:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x85/0x90\n kmem_cache_alloc_noprof+0x131/0x450\n sk_prot_alloc+0x5b/0x220\n sk_alloc+0x2c/0x870\n unix_create1+0x88/0x8a0\n unix_create+0xc5/0x180\n __sock_create+0x241/0x650\n __sys_socketpair+0x1ce/0x420\n __x64_sys_socketpair+0x92/0x100\n do_syscall_64+0x93/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 46:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x60\n __kasan_slab_free+0x4b/0x70\n kmem_cache_free+0x1a1/0x590\n __sk_destruct+0x388/0x5a0\n sk_psock_destroy+0x73e/0xa50\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n\nThe bu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56664",
"url": "https://www.suse.com/security/cve/CVE-2024-56664"
},
{
"category": "external",
"summary": "SUSE Bug 1235249 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "external",
"summary": "SUSE Bug 1235250 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-56664"
},
{
"cve": "CVE-2024-56704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56704"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\n9p/xen: fix release of IRQ\n\nKernel logs indicate an IRQ was double-freed.\n\nPass correct device ID during IRQ release.\n\n[Dominique: remove confusing variable reset to 0]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56704",
"url": "https://www.suse.com/security/cve/CVE-2024-56704"
},
{
"category": "external",
"summary": "SUSE Bug 1235584 for CVE-2024-56704",
"url": "https://bugzilla.suse.com/1235584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56704"
},
{
"cve": "CVE-2024-56724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56724",
"url": "https://www.suse.com/security/cve/CVE-2024-56724"
},
{
"category": "external",
"summary": "SUSE Bug 1235577 for CVE-2024-56724",
"url": "https://bugzilla.suse.com/1235577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56724"
},
{
"cve": "CVE-2024-56756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix freeing of the HMB descriptor table\n\nThe HMB descriptor table is sized to the maximum number of descriptors\nthat could be used for a given device, but __nvme_alloc_host_mem could\nbreak out of the loop earlier on memory allocation failure and end up\nusing less descriptors than planned for, which leads to an incorrect\nsize passed to dma_free_coherent.\n\nIn practice this was not showing up because the number of descriptors\ntends to be low and the dma coherent allocator always allocates and\nfrees at least a page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56756",
"url": "https://www.suse.com/security/cve/CVE-2024-56756"
},
{
"category": "external",
"summary": "SUSE Bug 1234922 for CVE-2024-56756",
"url": "https://bugzilla.suse.com/1234922"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-56756"
},
{
"cve": "CVE-2024-57791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: check return value of sock_recvmsg when draining clc data\n\nWhen receiving clc msg, the field length in smc_clc_msg_hdr indicates the\nlength of msg should be received from network and the value should not be\nfully trusted as it is from the network. Once the value of length exceeds\nthe value of buflen in function smc_clc_wait_msg it may run into deadloop\nwhen trying to drain the remaining data exceeding buflen.\n\nThis patch checks the return value of sock_recvmsg when draining data in\ncase of deadloop in draining.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57791",
"url": "https://www.suse.com/security/cve/CVE-2024-57791"
},
{
"category": "external",
"summary": "SUSE Bug 1235759 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "external",
"summary": "SUSE Bug 1235760 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-57791"
},
{
"cve": "CVE-2024-57849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57849"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/cpum_sf: Handle CPU hotplug remove during sampling\n\nCPU hotplug remove handling triggers the following function\ncall sequence:\n\n CPUHP_AP_PERF_S390_SF_ONLINE --\u003e s390_pmu_sf_offline_cpu()\n ...\n CPUHP_AP_PERF_ONLINE --\u003e perf_event_exit_cpu()\n\nThe s390 CPUMF sampling CPU hotplug handler invokes:\n\n s390_pmu_sf_offline_cpu()\n +--\u003e cpusf_pmu_setup()\n +--\u003e setup_pmc_cpu()\n +--\u003e deallocate_buffers()\n\nThis function de-allocates all sampling data buffers (SDBs) allocated\nfor that CPU at event initialization. It also clears the\nPMU_F_RESERVED bit. The CPU is gone and can not be sampled.\n\nWith the event still being active on the removed CPU, the CPU event\nhotplug support in kernel performance subsystem triggers the\nfollowing function calls on the removed CPU:\n\n perf_event_exit_cpu()\n +--\u003e perf_event_exit_cpu_context()\n +--\u003e __perf_event_exit_context()\n\t +--\u003e __perf_remove_from_context()\n\t +--\u003e event_sched_out()\n\t +--\u003e cpumsf_pmu_del()\n\t +--\u003e cpumsf_pmu_stop()\n +--\u003e hw_perf_event_update()\n\nto stop and remove the event. During removal of the event, the\nsampling device driver tries to read out the remaining samples from\nthe sample data buffers (SDBs). But they have already been freed\n(and may have been re-assigned). This may lead to a use after free\nsituation in which case the samples are most likely invalid. In the\nbest case the memory has not been reassigned and still contains\nvalid data.\n\nRemedy this situation and check if the CPU is still in reserved\nstate (bit PMU_F_RESERVED set). In this case the SDBs have not been\nreleased an contain valid data. This is always the case when\nthe event is removed (and no CPU hotplug off occured).\nIf the PMU_F_RESERVED bit is not set, the SDB buffers are gone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57849",
"url": "https://www.suse.com/security/cve/CVE-2024-57849"
},
{
"category": "external",
"summary": "SUSE Bug 1235814 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "external",
"summary": "SUSE Bug 1235815 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-57849"
},
{
"cve": "CVE-2024-57887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: adv7511: Fix use-after-free in adv7533_attach_dsi()\n\nThe host_node pointer was assigned and freed in adv7533_parse_dt(), and\nlater, adv7533_attach_dsi() uses the same. Fix this use-after-free issue\nby dropping of_node_put() in adv7533_parse_dt() and calling of_node_put()\nin error path of probe() and also in the remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57887",
"url": "https://www.suse.com/security/cve/CVE-2024-57887"
},
{
"category": "external",
"summary": "SUSE Bug 1235952 for CVE-2024-57887",
"url": "https://bugzilla.suse.com/1235952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-57887"
},
{
"cve": "CVE-2024-57888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nworkqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker\n\nAfter commit\n746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")\namdgpu started seeing the following warning:\n\n [ ] workqueue: WQ_MEM_RECLAIM sdma0:drm_sched_run_job_work [gpu_sched] is flushing !WQ_MEM_RECLAIM events:amdgpu_device_delay_enable_gfx_off [amdgpu]\n...\n [ ] Workqueue: sdma0 drm_sched_run_job_work [gpu_sched]\n...\n [ ] Call Trace:\n [ ] \u003cTASK\u003e\n...\n [ ] ? check_flush_dependency+0xf5/0x110\n...\n [ ] cancel_delayed_work_sync+0x6e/0x80\n [ ] amdgpu_gfx_off_ctrl+0xab/0x140 [amdgpu]\n [ ] amdgpu_ring_alloc+0x40/0x50 [amdgpu]\n [ ] amdgpu_ib_schedule+0xf4/0x810 [amdgpu]\n [ ] ? drm_sched_run_job_work+0x22c/0x430 [gpu_sched]\n [ ] amdgpu_job_run+0xaa/0x1f0 [amdgpu]\n [ ] drm_sched_run_job_work+0x257/0x430 [gpu_sched]\n [ ] process_one_work+0x217/0x720\n...\n [ ] \u003c/TASK\u003e\n\nThe intent of the verifcation done in check_flush_depedency is to ensure\nforward progress during memory reclaim, by flagging cases when either a\nmemory reclaim process, or a memory reclaim work item is flushed from a\ncontext not marked as memory reclaim safe.\n\nThis is correct when flushing, but when called from the\ncancel(_delayed)_work_sync() paths it is a false positive because work is\neither already running, or will not be running at all. Therefore\ncancelling it is safe and we can relax the warning criteria by letting the\nhelper know of the calling context.\n\nReferences: 746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57888",
"url": "https://www.suse.com/security/cve/CVE-2024-57888"
},
{
"category": "external",
"summary": "SUSE Bug 1235918 for CVE-2024-57888",
"url": "https://bugzilla.suse.com/1235918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-57888"
},
{
"cve": "CVE-2024-57892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57892"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix slab-use-after-free due to dangling pointer dqi_priv\n\nWhen mounting ocfs2 and then remounting it as read-only, a\nslab-use-after-free occurs after the user uses a syscall to\nquota_getnextquota. Specifically, sb_dqinfo(sb, type)-\u003edqi_priv is the\ndangling pointer.\n\nDuring the remounting process, the pointer dqi_priv is freed but is never\nset as null leaving it to be accessed. Additionally, the read-only option\nfor remounting sets the DQUOT_SUSPENDED flag instead of setting the\nDQUOT_USAGE_ENABLED flags. Moreover, later in the process of getting the\nnext quota, the function ocfs2_get_next_id is called and only checks the\nquota usage flags and not the quota suspended flags.\n\nTo fix this, I set dqi_priv to null when it is freed after remounting with\nread-only and put a check for DQUOT_SUSPENDED in ocfs2_get_next_id.\n\n[akpm@linux-foundation.org: coding-style cleanups]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57892",
"url": "https://www.suse.com/security/cve/CVE-2024-57892"
},
{
"category": "external",
"summary": "SUSE Bug 1235964 for CVE-2024-57892",
"url": "https://bugzilla.suse.com/1235964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-57892"
},
{
"cve": "CVE-2024-57893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: oss: Fix races at processing SysEx messages\n\nOSS sequencer handles the SysEx messages split in 6 bytes packets, and\nALSA sequencer OSS layer tries to combine those. It stores the data\nin the internal buffer and this access is racy as of now, which may\nlead to the out-of-bounds access.\n\nAs a temporary band-aid fix, introduce a mutex for serializing the\nprocess of the SysEx message packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57893",
"url": "https://www.suse.com/security/cve/CVE-2024-57893"
},
{
"category": "external",
"summary": "SUSE Bug 1235920 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "external",
"summary": "SUSE Bug 1235921 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-57893"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_244-default-1-8.5.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-default-man-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:ocfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:cluster-md-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:dlm-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gfs2-kmp-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-base-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-default-devel-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-devel-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-macros-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-source-4.12.14-122.244.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:kernel-syms-4.12.14-122.244.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ocfs2-kmp-default-4.12.14-122.244.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T17:02:35Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
}
]
}
SUSE-SU-2025:0289-1
Vulnerability from csaf_suse - Published: 2025-01-29 16:11 - Updated: 2025-01-29 16:11Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP6 Confidential Computing kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-52489: mm/sparsemem: fix race in accessing memory_section->usage (bsc#1221326).
- CVE-2024-26596: net: dsa: fix netdev_priv() dereference before check on non-DSA netdevice events (bsc#1220355).
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).
- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).
- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).
- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-44996: vsock: fix recursive ->recvmsg calls (bsc#1230205).
- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).
- CVE-2024-46680: Bluetooth: btnxpuart: Fix random crash seen while removing driver (bsc#1230557).
- CVE-2024-46765: ice: protect XDP configuration with a mutex (bsc#1230807).
- CVE-2024-46800: sch/netem: fix use after free in netem_dequeue (bsc#1230827).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).
- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).
- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).
- CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption (bsc#1232157).
- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).
- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50252: mlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address (bsc#1233201).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).
- CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver (bsc#1233485).
- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).
- CVE-2024-53043: mctp i2c: handle NULL header address (bsc#1233523).
- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).
- CVE-2024-53051: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability (bsc#1233547).
- CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction (bsc#1233550).
- CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() (bsc#1233568).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).
- CVE-2024-53099: bpf: Check validity of link->type in bpf_link_show_fdinfo() (bsc#1233772).
- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).
- CVE-2024-53110: vp_vdpa: fix id_table array not null terminated error (bsc#1234085).
- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).
- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53121: net/mlx5: fs, lock FTE when checking if active (bsc#1234078).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)
- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).
- CVE-2024-53138: net/mlx5e: kTLS, Fix incorrect page refcounting (bsc#1234223).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).
- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).
- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).
- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).
- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).
- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).
- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).
- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).
- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).
- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).
- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).
- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).
- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).
- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).
- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).
- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).
- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).
- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).
- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).
- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).
- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).
- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).
- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).
- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).
- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).
- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).
- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).
- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).
- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).
- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).
- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).
- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).
- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).
- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).
- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).
- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).
- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).
- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).
- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).
- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).
- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).
- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).
- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).
- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).
- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).
- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).
- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).
- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).
- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).
- CVE-2024-56729: smb: Initialize cfid->tcon before performing network ops (bsc#1235503).
- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).
- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).
- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).
- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).
- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).
- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).
- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).
- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).
- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).
- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).
- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).
- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).
- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).
- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).
- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).
- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).
- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).
- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).
- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before 'getting' registers (bsc#1236106).
- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).
- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).
- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).
- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).
The following non-security bugs were fixed:
- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).
- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).
- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).
- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).
- ACPI: resource: Fix memory resource type union access (git-fixes).
- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).
- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).
- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).
- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).
- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).
- ALSA: hda/conexant: fix Z60MR100 startup pop issue (stable-fixes).
- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).
- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).
- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).
- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).
- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).
- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).
- ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG) (stable-fixes).
- ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8 (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).
- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).
- ALSA: line6: Fix racy access to midibuf (stable-fixes).
- ALSA: seq: Check UMP support for midi_version change (git-fixes).
- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).
- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).
- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).
- ALSA: seq: ump: Use guard() for locking (stable-fixes).
- ALSA: ump: Use guard() for locking (stable-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).
- ALSA: usb-audio: Fix a DMA to stack memory bug (git-fixes).
- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).
- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).
- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).
- ALSA: usb-audio: add mixer mapping for Corsair HS80 (stable-fixes).
- ASoC: Intel: avs: da7219: Remove suspend_pre() and resume_post() (stable-fixes).
- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).
- ASoC: SOF: Remove libraries from topology lookups (git-fixes).
- ASoC: SOF: ipc3-topology: fix resource leaks in sof_ipc3_widget_setup_comp_dai() (git-fixes).
- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).
- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).
- ASoC: amd: yc: Fix the wrong return value (git-fixes).
- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).
- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).
- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).
- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).
- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).
- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).
- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).
- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).
- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).
- ASoC: mediatek: mt8188-mt6359: Remove hardcoded dmic codec (git-fixes).
- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).
- ASoC: nau8822: Lower debug print priority (stable-fixes).
- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).
- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).
- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).
- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).
- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).
- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).
- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).
- Bluetooth: btnxpuart: Resolve TX timeout error in power save stress test (bsc#1230557)
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).
- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).
- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).
- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).
- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).
- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).
- Bluetooth: iso: Fix recursive locking warning (git-fixes).
- Disable ceph (jsc#PED-7242)
- Documentation/virt/kvm: Document on Trust Domain Extensions(TDX) (jsc#PED-6143).
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- Drop uvcvideo fix due to regression (bsc#1235894)
- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).
- HID: wacom: fix when get product name maybe null pointer (git-fixes).
- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).
- KVM: Fix conflict of IOCTL definition of KVM_MEMORY_MAPPING (jsc#PED-6143).
- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).
- KVM: TDX: Add KVM Exit for TDX TDG.VP.VMCALL (jsc#PED-6143).
- KVM: TDX: Add TSX_CTRL msr into uret_msrs list (jsc#PED-6143).
- KVM: TDX: Add a method to ignore dirty logging (jsc#PED-6143).
- KVM: TDX: Add a method to ignore for TDX to ignore hypercall patch (jsc#PED-6143).
- KVM: TDX: Add a place holder for handler of TDX hypercalls (TDG.VP.VMCALL) (jsc#PED-6143).
- KVM: TDX: Add a place holder to handle TDX VM exit (jsc#PED-6143).
- KVM: TDX: Add accessors VMX VMCS helpers (jsc#PED-6143).
- KVM: TDX: Add helper function to read TDX metadata in array (jsc#PED-6143).
- KVM: TDX: Add helper functions to allocate/free TDX private host key id (jsc#PED-6143).
- KVM: TDX: Add is_private check for mmu_alloc_root (jsc#PED-6143).
- KVM: TDX: Add load_mmu_pgd method for TDX (jsc#PED-6143).
- KVM: TDX: Add methods to ignore VMX preemption timer (jsc#PED-6143).
- KVM: TDX: Add methods to ignore accesses to TSC (jsc#PED-6143).
- KVM: TDX: Add methods to ignore guest instruction emulation (jsc#PED-6143).
- KVM: TDX: Add methods to ignore virtual apic related operation (jsc#PED-6143).
- KVM: TDX: Add support for find pending IRQ in a protected local APIC (jsc#PED-6143).
- KVM: TDX: Complete interrupts after tdexit (jsc#PED-6143).
- KVM: TDX: Create initial guest memory (jsc#PED-6143).
- KVM: TDX: Do TDX specific vcpu initialization (jsc#PED-6143).
- KVM: TDX: Do not use NO_RBP_MOD for backward compatibility (jsc#PED-6143).
- KVM: TDX: Emulate Xen MTRR disablement (jsc#PED-6143).
- KVM: TDX: Extend memory measurement with initial guest memory (jsc#PED-6143).
- KVM: TDX: Finalize VM initialization (jsc#PED-6143).
- KVM: TDX: Fix incompatibility with QEMU definition (jsc#PED-6143).
- KVM: TDX: Fix is_private for page fault handler (jsc#PED-6143).
- KVM: TDX: Get system-wide info about TDX module on initialization (jsc#PED-6143).
- KVM: TDX: Handle EXIT_REASON_OTHER_SMI with MSMI (jsc#PED-6143).
- KVM: TDX: Handle MSR IA32_FEAT_CTL MSR and IA32_MCG_EXT_CTL (jsc#PED-6143).
- KVM: TDX: Handle MSR MTRRCap and MTRRDefType access (jsc#PED-6143).
- KVM: TDX: Handle TDG.VP.VMCALL<GetTdVmCallInfo> hypercall (jsc#PED-6143).
- KVM: TDX: Handle TDX PV CPUID hypercall (jsc#PED-6143).
- KVM: TDX: Handle TDX PV HLT hypercall (jsc#PED-6143).
- KVM: TDX: Handle TDX PV MMIO hypercall (jsc#PED-6143).
- KVM: TDX: Handle TDX PV port io hypercall (jsc#PED-6143).
- KVM: TDX: Handle TDX PV rdmsr/wrmsr hypercall (jsc#PED-6143).
- KVM: TDX: Handle vmentry failure for INTEL TD guest (jsc#PED-6143).
- KVM: TDX: Ignore setting up mce (jsc#PED-6143).
- KVM: TDX: Implement TDX vcpu enter/exit path (jsc#PED-6143).
- KVM: TDX: Implement callbacks for MSR operations for TDX (jsc#PED-6143).
- KVM: TDX: Implement interrupt injection (jsc#PED-6143).
- KVM: TDX: Implement methods to inject NMI (jsc#PED-6143).
- KVM: TDX: Inhibit APICv for TDX guest (jsc#PED-6143).
- KVM: TDX: MTRR: implement get_mt_mask() for TDX (jsc#PED-6143).
- KVM: TDX: Make KVM_CAP_MAX_VCPUS backend specific (jsc#PED-6143).
- KVM: TDX: Make pmu_intel.c ignore guest TD case (jsc#PED-6143).
- KVM: TDX: Refuse to unplug the last cpu on the package (jsc#PED-6143).
- KVM: TDX: Require TDP MMU and mmio caching for TDX (jsc#PED-6143).
- KVM: TDX: Retry seamcall when TDX_OPERAND_BUSY with operand SEPT (jsc#PED-6143).
- KVM: TDX: Return -EINTR for KVM_MEMORY_MAPPING when signal pending (jsc#PED-6143).
- KVM: TDX: Silently discard SMI request (jsc#PED-6143).
- KVM: TDX: Silently ignore INIT/SIPI (jsc#PED-6143).
- KVM: TDX: TDP MMU TDX support (jsc#PED-6143).
- KVM: TDX: create/destroy VM structure (jsc#PED-6143).
- KVM: TDX: create/free TDX vcpu structure (jsc#PED-6143).
- KVM: TDX: handle EXCEPTION_NMI and EXTERNAL_INTERRUPT (jsc#PED-6143).
- KVM: TDX: handle EXIT_REASON_OTHER_SMI (jsc#PED-6143).
- KVM: TDX: handle KVM hypercall with TDG.VP.VMCALL (jsc#PED-6143).
- KVM: TDX: handle ept violation/misconfig exit (jsc#PED-6143).
- KVM: TDX: handle vcpu migration over logical processor (jsc#PED-6143).
- KVM: TDX: initialize VM with TDX specific parameters (jsc#PED-6143).
- KVM: TDX: remove use of struct vcpu_vmx from posted_interrupt.c (jsc#PED-6143).
- KVM: TDX: restore debug store when TD exit (jsc#PED-6143).
- KVM: TDX: restore host xsave state when exit from the guest TD (jsc#PED-6143).
- KVM: TDX: restore user ret MSRs (jsc#PED-6143).
- KVM: TDX: vcpu_run: save/restore host state(host kernel gs) (jsc#PED-6143).
- KVM: TDX: x86: Add ioctl to get TDX systemwide parameters (jsc#PED-6143).
- KVM: VMX: Move NMI/exception handler to common helper (jsc#PED-6143).
- KVM: VMX: Split out guts of EPT violation to common/exposed function (jsc#PED-6143).
- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).
- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).
- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).
- KVM: x86/mmu: Add a new is_private member for union kvm_mmu_page_role (jsc#PED-6143).
- KVM: x86/mmu: Add a private pointer to struct kvm_mmu_page (jsc#PED-6143).
- KVM: x86/mmu: Add address conversion functions for TDX shared bit of GPA (jsc#PED-6143).
- KVM: x86/mmu: Alloc TDP MMU roots while holding mmu_lock for read (jsc#PED-6143).
- KVM: x86/mmu: Allow passing '-1' for 'all' as_id for TDP MMU iterators (jsc#PED-6143).
- KVM: x86/mmu: Check for usable TDP MMU root while holding mmu_lock for read (jsc#PED-6143).
- KVM: x86/mmu: Disallow fast page fault on private GPA (jsc#PED-6143).
- KVM: x86/mmu: Do not do TLB flush when zappings SPTEs in invalid roots (jsc#PED-6143).
- KVM: x86/mmu: Do not enable page track for TD guest (jsc#PED-6143).
- KVM: x86/mmu: Free TDP MMU roots while holding mmy_lock for read (jsc#PED-6143).
- KVM: x86/mmu: Precisely invalidate MMU root_role during CPUID update (git-fixes).
- KVM: x86/mmu: Skip invalid TDP MMU roots when write-protecting SPTEs (jsc#PED-6143).
- KVM: x86/mmu: Skip invalid roots when zapping leaf SPTEs for GFN range (jsc#PED-6143).
- KVM: x86/mmu: Zap invalidated TDP MMU roots at 4KiB granularity (jsc#PED-6143).
- KVM: x86/tdp_mmu: Apply mmu notifier callback to only shared GPA (jsc#PED-6143).
- KVM: x86/tdp_mmu: Do not zap private pages for unsupported cases (jsc#PED-6143).
- KVM: x86/tdp_mmu: Fix to return original flush on unsupported cases (jsc#PED-6143).
- KVM: x86/tdp_mmu: Init role member of struct kvm_mmu_page at allocation (jsc#PED-6143).
- KVM: x86/tdp_mmu: Support TDX private mapping for TDP MMU (jsc#PED-6143).
- KVM: x86: Add a switch_db_regs flag to handle TDX's auto-switched behavior (jsc#PED-6143).
- KVM: x86: Add hooks in kvm_arch_vcpu_memory_mapping() (jsc#PED-6143).
- KVM: x86: Allow to update cached values in kvm_user_return_msrs w/o wrmsr (jsc#PED-6143).
- KVM: x86: Assume timer IRQ was injected if APIC state is proteced (jsc#PED-6143).
- KVM: x86: Split core of hypercall emulation to helper function (jsc#PED-6143).
- KVM: x86: design documentation on TDX support of x86 KVM TDP MMU (jsc#PED-6143).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Async COPY result needs to return a write verifier (git-fixes).
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: Remove a never-true comparison (git-fixes).
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (git-fixes).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).
- PCI/AER: Disable AER service on suspend (stable-fixes).
- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (stable-fixes).
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).
- PCI: Add T_PERST_CLK_US macro (git-fixes).
- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).
- PCI: Fix use-after-free of slot->bus on hot remove (stable-fixes).
- PCI: Use preserve_config in place of pci_flags (stable-fixes).
- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).
- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).
- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).
- PCI: j721e: Add per platform maximum lane settings (stable-fixes).
- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).
- PCI: j721e: Add suspend and resume support (git-fixes).
- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).
- PCI: qcom: Add support for IPQ9574 (stable-fixes).
- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).
- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).
- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)
- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)
- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)
- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)
- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)
- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)
- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)
- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)
- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)
- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)
- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)
- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)
- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)
- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)
- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (git-fixes)
- RDMA/uverbs: Prevent integer overflow issue (git-fixes)
- RFC: KVM: x86, TDX: Add check for KVM_SET_CPUID2 (jsc#PED-6143).
- RFC: KVM: x86: Add x86 callback to check cpuid (jsc#PED-6143).
- Revert 'block/mq-deadline: use correct way to throttling write requests' (bsc#1234146).
- Revert 'btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)'
- Revert 'igb: Disable threaded IRQ for igb_msix_other' (git-fixes).
- Revert 'mm, kmsan: fix infinite recursion due to RCU critical section' (bsc#1230413)
- Revert 'mm/sparsemem: fix race in accessing memory_section->usage' (bsc#1230413)
- Revert 'mm: prevent derefencing NULL ptr in pfn_section_valid()' (bsc#1230413)
- Revert 'mtd: spi-nor: core: replace dummy buswidth from addr to data' (git-fixes).
- Revert 'unicode: Do not special case ignorable code points' (stable-fixes).
- Revert 'arm64: Kconfig: Make SME depend on BROKEN for now'
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).
- USB: core: Disable LPM only for non-suspended ports (git-fixes).
- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).
- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).
- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).
- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).
- USB: serial: option: add Neoway N723-EA support (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).
- USB: serial: option: add TCL IK512 MBIM & ECM (stable-fixes).
- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).
- USB: usblp: return error when setting unsupported protocol (git-fixes).
- VM: TDX: Add place holder for TDX VM specific mem_enc_op ioctl (jsc#PED-6143).
- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).
- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).
- accel/habanalabs: fix debugfs files permissions (stable-fixes).
- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).
- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).
- afs: Automatically generate trace tag enums (git-fixes).
- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).
- afs: Fix the maximum cell name length (git-fixes).
- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).
- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).
- arch: Remove cmpxchg_double (bsc#1220773).
- arch: consolidate arch_irq_work_raise prototypes (git-fixes).
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: Force position-independent veneers (git-fixes).
- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes).
- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-fixes)
- arm64: dts: freescale: imx8mm-verdin: Fix SD regulator startup delay (git-fixes)
- arm64: dts: freescale: imx8mp-verdin: Fix SD regulator startup delay (git-fixes)
- arm64: dts: imx8-ss-vpu: Fix imx8qm VPU IRQs (git-fixes)
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- arm64: dts: imx8qxp: Add VPU subsystem file (git-fixes)
- arm64: dts: imx93: add nvmem property for eqos (git-fixes)
- arm64: dts: imx93: add nvmem property for fec1 (git-fixes)
- arm64: dts: imx93: add ocotp node (git-fixes)
- arm64: dts: rockchip: Add DTS for FriendlyARM NanoPi R2S Plus (git-fixes)
- arm64: dts: rockchip: Correct GPIO polarity on brcm BT nodes (git-fixes)
- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes)
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-fixes)
- arm64: dts: rockchip: Fix bluetooth properties on rk3566 box demo (git-fixes)
- arm64: dts: rockchip: Fix reset-gpios property on brcm BT nodes (git-fixes)
- arm64: dts: rockchip: Fix rt5651 compatible value on (git-fixes)
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610 (git-fixes)
- arm64: dts: rockchip: Fix wakeup prop names on PineNote BT node (git-fixes)
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma (git-fixes)
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (git-fixes)
- arm64: dts: rockchip: Remove undocumented supports-emmc property (git-fixes)
- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).
- arm64: dts: rockchip: fix i2c2 pinctrl-names property on (git-fixes)
- arm64: dts: rockchip: remove num-slots property from (git-fixes)
- arm64: dts: rockchip: remove orphaned pinctrl-names from pinephone (git-fixes)
- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (git-fixes)
- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).
- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (git-fixes)
- arm64: smccc: replace custom COUNT_ARGS() & CONCATENATE() (git-fixes)
- arm64: tegra: Move AGX Orin nodes to correct location (git-fixes)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (git-fixes)
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).
- batman-adv: Do not send uninitialized TT changes (git-fixes).
- batman-adv: Remove uninitialized data in full table TT response (git-fixes).
- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).
- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).
- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).
- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).
- blk-throttle: fix lockdep warning of 'cgroup_mutex or RCU read lock required!' (bsc#1234140).
- blk-wbt-Fix-detection-of-dirty-throttled-tasks.patch: Update tags
- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).
- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).
- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).
- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).
- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).
- block/mq-deadline: Fix the tag reservation code (bsc#1234148).
- block: Call .limit_depth() after .hctx has been set (bsc#1234148).
- block: Fix where bio IO priority gets set (bsc#1234145).
- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).
- block: update the stable_writes flag in bdev_add (bsc#1234141).
- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)
- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).
- bpf, arm64: Fix address emission with tag-based KASAN enabled (git-fixes)
- bpf, arm64: Remove garbage frame for struct_ops trampoline (git-fixes)
- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).
- bpf: verifier: prevent userspace memory access (git-fixes).
- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).
- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (git-fixes).
- can: dev: can_set_termination(): allow sleeping GPIOs (git-fixes).
- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).
- can: hi311x: hi3110_can_ist(): fix potential use-after-free (git-fixes).
- can: hi311x: hi3110_can_ist(): fix {rx,tx}_errors statistics (git-fixes).
- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: j1939: fix error in J1939 documentation (stable-fixes).
- can: j1939: j1939_session_new(): fix skb reference counting (git-fixes).
- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: mcp251xfd: mcp251xfd_get_tef_len(): work around erratum DS80000789E 6 (git-fixes).
- can: sja1000: sja1000_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (git-fixes).
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (git-fixes).
- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).
- cleanup: Add conditional guard support (stable-fixes).
- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).
- cleanup: Remove address space of returned pointer (git-fixes).
- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).
- clocksource/drivers:sp804: Make user selectable (git-fixes).
- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).
- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).
- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).
- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).
- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).
- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).
- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).
- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).
- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).
- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).
- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).
- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).
- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).
- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).
- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).
- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).
- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).
- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).
- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).
- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).
- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).
- crypto: x86/sha256 - Add parentheses around macros' single arguments (stable-fixes).
- cyrpto/b128ops: Remove struct u128 (bsc#1220773).
- devlink: Fix length of eswitch inline-mode (git-fixes).
- dlm: fix possible lkb_resource null dereference (git-fixes).
- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).
- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).
- dma-fence: Fix reference leak on fence merge failure path (git-fixes).
- dma-fence: Use kernel's sort for merging fences (git-fixes).
- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).
- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).
- dmaengine: tegra: Return correct DMA status when paused (git-fixes).
- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).
- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).
- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).
- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).
- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).
- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).
- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).
- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).
- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).
- drm/amd/display: Fix DSC-re-computing (stable-fixes).
- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).
- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).
- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).
- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).
- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).
- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).
- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).
- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).
- drm/amdgpu/pm: Remove gpu_od if it's an empty directory (stable-fixes).
- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).
- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).
- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).
- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).
- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).
- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).
- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).
- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
- drm/amdgpu: do not access invalid sched (git-fixes).
- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
- drm/amdgpu: fix usage slab after free (stable-fixes).
- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).
- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).
- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).
- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
- drm/amdkfd: Use device based logging for errors (stable-fixes).
- drm/amdkfd: Use the correct wptr size (stable-fixes).
- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).
- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).
- drm/bridge: it6505: Enable module autoloading (stable-fixes).
- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).
- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).
- drm/display: Fix building with GCC 15 (stable-fixes).
- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).
- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).
- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).
- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).
- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).
- drm/i915/dg1: Fix power gate sequence (git-fixes).
- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).
- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).
- drm/mcde: Enable module autoloading (stable-fixes).
- drm/mediatek: Add return value check when reading DPCD (git-fixes).
- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).
- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).
- drm/mediatek: Fix mode valid issue for dp (git-fixes).
- drm/mediatek: Set private->all_drm_private[i]->drm to NULL if mtk_drm_bind returns err (git-fixes).
- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).
- drm/mediatek: stop selecting foreign drivers (git-fixes).
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).
- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).
- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).
- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).
- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).
- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).
- drm/radeon: change rdev->ddev to rdev_to_drm(rdev) (stable-fixes).
- drm/sched: memset() 'job' in drm_sched_job_init() (stable-fixes).
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (git-fixes).
- drm/v3d: Enable Performance Counters before clearing them (git-fixes).
- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).
- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).
- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).
- drm/vmwgfx: Add new keep_resv BO param (git-fixes).
- drm: adv7511: Drop dsi single lane support (git-fixes).
- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).
- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- erofs: avoid debugging output for (de)compressed data (git-fixes).
- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).
- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).
- exfat: fix the infinite loop in exfat_readdir() (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- ext4: add a new helper to check if es must be kept (bsc#1234170).
- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).
- ext4: add missed brelse in update_backups (bsc#1234171).
- ext4: allow for the last group to be marked as trimmed (bsc#1234278).
- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).
- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).
- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).
- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).
- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).
- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).
- ext4: check the extent status again before inserting delalloc block (bsc#1234186).
- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).
- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).
- ext4: correct best extent lstart adjustment logic (bsc#1234179).
- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).
- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).
- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).
- ext4: correct the start block of counting reserved clusters (bsc#1234169).
- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).
- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).
- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).
- ext4: factor out a common helper to query extent map (bsc#1234186).
- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).
- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).
- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).
- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).
- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).
- ext4: fix potential unnitialized variable (bsc#1234183).
- ext4: fix race between writepages and remount (bsc#1234168).
- ext4: fix rec_len verify error (bsc#1234167).
- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).
- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).
- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).
- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).
- ext4: make ext4_es_insert_extent() return void (bsc#1234170).
- ext4: make ext4_es_remove_extent() return void (bsc#1234170).
- ext4: make ext4_zeroout_es() return void (bsc#1234170).
- ext4: make sure allocate pending entry not fail (bsc#1234170).
- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).
- ext4: move 'ix' sanity check to corrent position (bsc#1234174).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).
- ext4: nested locking for xattr inode (bsc#1234189).
- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).
- ext4: refactor ext4_da_map_blocks() (bsc#1234178).
- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).
- ext4: remove the redundant folio_wait_stable() (bsc#1234184).
- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).
- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).
- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).
- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).
- filemap: Fix bounds checking in filemap_read() (bsc#1234209).
- filemap: add a per-mapping stable writes flag (bsc#1234141).
- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).
- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).
- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).
- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).
- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).
- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).
- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).
- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (stable-fixes).
- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- hvc/xen: fix console unplug (git-fixes).
- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).
- hvc/xen: fix event channel handling for secondary consoles (git-fixes).
- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).
- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).
- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).
- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).
- hwmon: (tmp513) Do not use 'proxy' headers (stable-fixes).
- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).
- hwmon: (tmp513) Fix division of negative numbers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).
- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).
- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).
- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).
- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).
- i2c: i801: Add support for Intel Panther Lake (stable-fixes).
- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).
- i2c: microchip-core: actually use repeated sends (git-fixes).
- i2c: microchip-core: fix 'ghost' detections (git-fixes).
- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).
- i2c: pnx: Fix timeout in wait functions (git-fixes).
- i2c: rcar: fix NACK handling when being a target (git-fixes).
- i2c: riic: Always round-up when calculating bus period (git-fixes).
- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).
- i40e: Fix handling changed priv flags (git-fixes).
- i915/guc: Accumulate active runtime on gt reset (git-fixes).
- i915/guc: Ensure busyness counter increases motonically (git-fixes).
- i915/guc: Reset engine utilization buffer before registration (git-fixes).
- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (git-fixes).
- ice: Unbind the workqueue (bsc#1234989)
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).
- ice: fix PHY Clock Recovery availability check (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).
- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).
- iio: adc: ad7124: Disable all channels at probe time (git-fixes).
- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).
- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).
- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).
- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).
- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).
- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).
- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).
- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).
- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).
- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).
- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).
- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).
- instrumentation: Wire up cmpxchg128() (bsc#1220773).
- io_uring/rw: avoid punting to io-wq directly (git-fixes).
- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).
- io_uring: Fix registered ring file refcount leak (git-fixes).
- io_uring: always lock __io_cqring_overflow_flush (git-fixes).
- io_uring: check if iowq is killed before queuing (git-fixes).
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).
- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).
- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).
- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).
- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).
- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).
- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).
- kABI: Fix kABI after TDX KVM backports (jsc#PED-6143).
- kABI: Restore exported __arm_smccc_sve_check (git-fixes)
- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)
- kasan: make report_lock a raw spinlock (git-fixes).
- kdb: Fix buffer overflow during tab-complete (bsc#1234652).
- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).
- kdb: Merge identical case statements in kdb_read() (bsc#1234657).
- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).
- kdb: Use format-strings rather than '\0' injection in kdb_read() (bsc#1234654).
- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).
- kdb: address -Wformat-security warnings (bsc#1234659).
- kgdb: Flush console before entering kgdb on panic (bsc#1234651).
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (stable-fixes).
- lib/stackdepot: print disabled message only if truly disabled (git-fixes).
- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).
- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).
- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).
- mac80211: fix user-power when emulating chanctx (stable-fixes).
- mailbox: pcc: Add support for platform notification handling (stable-fixes).
- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).
- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).
- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).
- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).
- memory-failure: use a folio in me_huge_page() (git-fixes).
- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).
- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).
- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).
- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).
- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).
- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).
- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).
- mm/memory-failure: check the mapcount of the precise page (git-fixes).
- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).
- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).
- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).
- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).
- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).
- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).
- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).
- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).
- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).
- mm/migrate: putback split folios when numa hint migration fails (git-fixes).
- mm/migrate: split source folio if it is on deferred split list (git-fixes).
- mm/page_owner: remove free_ts from page_owner output (git-fixes).
- mm/readahead: do not allow order-1 folio (bsc#1234205).
- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).
- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).
- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).
- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).
- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).
- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).
- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).
- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).
- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).
- mmc: core: Further prevent card detect during shutdown (git-fixes).
- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).
- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).
- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).
- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).
- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).
- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).
- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).
- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).
- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).
- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).
- net/qed: allow old cards not supporting 'num_images' to work (git-fixes).
- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).
- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).
- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).
- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).
- netdevsim: copy addresses for both in and out paths (git-fixes).
- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).
- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).
- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).
- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).
- nvme: apple: fix device reference counting (git-fixes).
- nvme: fix metadata handling in nvme-passthrough (git-fixes).
- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).
- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).
- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).
- of: address: Report error on resource bounds overflow (stable-fixes).
- parisc: Raise minimal GCC version (bsc#1220773).
- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).
- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).
- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).
- percpu: Wire up cmpxchg128 (bsc#1220773).
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).
- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).
- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).
- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).
- phy: usb: Toggle the PHY power during init (git-fixes).
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).
- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).
- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).
- pinmux: Use sequential access to access desc->pinmux data (stable-fixes).
- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).
- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).
- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).
- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).
- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).
- platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing incorrect fan speed (stable-fixes).
- power: supply: gpio-charger: Fix set charge current limits (git-fixes).
- powerpc/64s: Fix unnecessary copy to 0 when kernel is booted at address 0 (bsc#1215199).
- powerpc/atomic: Use YZ constraints for DS-form instructions (bsc#1194869).
- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).
- powerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init() (bsc#1215199).
- powerpc/fadump: Refactor and prepare fadump_cma_init for late init (bsc#1215199).
- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).
- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).
- powerpc/kexec: Fix return of uninitialized variable (bsc#1194869).
- powerpc/mm/fault: Fix kfence page fault reporting (bsc#1194869).
- powerpc/mm: Fix boot crash with FLATMEM (bsc#1194869).
- powerpc/mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL (bsc#1194869).
- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).
- powerpc/powernv: Free name on error in opal_event_init() (bsc#1194869).
- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).
- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).
- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (bsc#1194869).
- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (bsc#1194869).
- powerpc/pseries: Use correct data types from pseries_hp_errorlog struct (bsc#1215199).
- powerpc/vdso: Inconditionally use CFUNC macro (bsc#1215199).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).
- quota: explicitly forbid quota files from being encrypted (bsc#1234196).
- quota: flush quota_release_work upon quota writeback (bsc#1234195).
- quota: simplify drop_dquot_ref() (bsc#1234197).
- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).
- regmap: Use correct format specifier for logging range errors (stable-fixes).
- regmap: detach regmap from dev on regmap_exit (git-fixes).
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).
- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).
- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).
- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).
- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).
- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).
- s390/facility: Disable compile time optimization for decompressor code (git-fixes).
- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).
- s390/pageattr: Implement missing kernel_page_present() (git-fixes).
- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- sched/numa: fix memory leak due to the overwritten vma->numab_state (git fixes (sched/numa)).
- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).
- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).
- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).
- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).
- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).
- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).
- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).
- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).
- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).
- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).
- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).
- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).
- scsi: qla2xxx: Remove the unused 'del_list_entry' field in struct fc_port (bsc#1235406).
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).
- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).
- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).
- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).
- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).
- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).
- serial: 8250_fintek: Add support for F81216E (stable-fixes).
- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).
- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).
- serial: amba-pl011: Use port lock wrappers (stable-fixes).
- serial: amba-pl011: fix build regression (git-fixes).
- serial: do not use uninitialized value in uart_poll_init() (git-fixes).
- serial: imx: only set receiver level if it is zero (git-fixes).
- serial: imx: set receiver level before starting uart (git-fixes).
- serial: qcom-geni: Do not cancel/abort if we can't get the port lock (git-fixes).
- serial: qcom-geni: disable interrupts during console writes (git-fixes).
- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).
- serial: qcom-geni: fix console corruption (git-fixes).
- serial: qcom-geni: fix dma rx cancellation (git-fixes).
- serial: qcom-geni: fix false console tx restart (git-fixes).
- serial: qcom-geni: fix fifo polling timeout (git-fixes).
- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).
- serial: qcom-geni: fix polled console corruption (git-fixes).
- serial: qcom-geni: fix polled console initialisation (git-fixes).
- serial: qcom-geni: fix receiver enable (git-fixes).
- serial: qcom-geni: fix shutdown race (git-fixes).
- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).
- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).
- serial: qcom-geni: revert broken hibernation support (git-fixes).
- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).
- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).
- slub: Replace cmpxchg_double() (bsc#1220773).
- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]
- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).
- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).
- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).
- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).
- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).
- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).
- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).
- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).
- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).
- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).
- spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes).
- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).
- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).
- staging: iio: ad9832: Correct phase range check (git-fixes).
- staging: iio: ad9834: Correct phase range check (git-fixes).
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).
- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).
- swiotlb: Reinstate page-alignment for mappings >= PAGE_SIZE (git-fixes).
- tdx: following fixup for mapping_level porting conflict (jsc#PED-6143).
- tdx: init has_private_mem during tdx init (jsc#PED-6143).
- the end of (the first phase of) TDX KVM patch series (jsc#PED-6143).
- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).
- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).
- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).
- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).
- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).
- tools: hv: change permissions of NetworkManager configuration file (git-fixes).
- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).
- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).
- types: Introduce [us]128 (bsc#1220773).
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).
- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).
- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).
- udf: refactor inode_bmap() to handle error (bsc#1234242).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).
- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).
- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).
- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).
- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).
- usb: dwc2: Fix HCD port connection race (git-fixes).
- usb: dwc2: Fix HCD resume (git-fixes).
- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (git-fixes).
- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).
- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).
- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).
- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).
- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).
- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).
- usb: fix reference leak in usb_new_device() (git-fixes).
- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).
- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).
- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).
- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).
- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).
- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).
- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).
- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).
- usb: typec: use cleanup facility for 'altmodes_node' (stable-fixes).
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).
- vdpa: solidrun: Fix UB bug with devres (git-fixes).
- vfs: fix readahead(2) on block devices (bsc#1234201).
- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).
- watchdog: apple: Actually flush writes after requesting watchdog restart (git-fixes).
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (git-fixes).
- watchdog: rti: of: honor timeout-sec property (git-fixes).
- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).
- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).
- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).
- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).
- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).
- wifi: ath5k: add PCI ID for SX76X (git-fixes).
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).
- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).
- wifi: cw1200: Fix potential NULL dereference (git-fixes).
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).
- wifi: mac80211: Add non-atomic station iterator (stable-fixes).
- wifi: mac80211: clean up 'ret' in sta_link_apply_parameters() (stable-fixes).
- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).
- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).
- wifi: mac80211: fix station NSS capability initialization order (git-fixes).
- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).
- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).
- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).
- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).
- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).
- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).
- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).
- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).
- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).
- x86/kexec: Reset TDX private memory on platforms with TDX erratum (jsc#PED-6143).
- x86/kexec: do unconditional WBINVD for bare-metal in relocate_kernel() (jsc#PED-6143).
- x86/kexec: do unconditional WBINVD for bare-metal in stop_this_cpu() (jsc#PED-6143).
- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).
- x86/virt/tdx: Add TDX memory reset notifier to reset other private pages (jsc#PED-6143).
- x86/virt/tdx: Exclude memory region hole within CMR as TDMR's reserved area (jsc#PED-6143).
- x86/virt/tdx: Explicitly save/restore RBP for seamcall_saved_ret() (jsc#PED-6143).
- x86/virt/tdx: Get information about TDX module and TDX-capable memory (jsc#PED-6143).
- xfs: do not allocate COW extents when unsharing a hole (git-fixes).
- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).
- xfs: remove unknown compat feature check in superblock write validation (git-fixes).
- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).
- xfs: sb_spino_align is not verified (git-fixes).
- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).
- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).
- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).
Patchnames
SUSE-2025-289,SUSE-SLE-Module-Confidential-Computing-15-SP6-2025-289
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP6 Confidential Computing kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2023-52489: mm/sparsemem: fix race in accessing memory_section-\u003eusage (bsc#1221326).\n- CVE-2024-26596: net: dsa: fix netdev_priv() dereference before check on non-DSA netdevice events (bsc#1220355).\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).\n- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).\n- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).\n- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-44996: vsock: fix recursive -\u003erecvmsg calls (bsc#1230205).\n- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).\n- CVE-2024-46680: Bluetooth: btnxpuart: Fix random crash seen while removing driver (bsc#1230557).\n- CVE-2024-46765: ice: protect XDP configuration with a mutex (bsc#1230807).\n- CVE-2024-46800: sch/netem: fix use after free in netem_dequeue (bsc#1230827).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).\n- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).\n- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).\n- CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption (bsc#1232157).\n- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).\n- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50252: mlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address (bsc#1233201).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).\n- CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver (bsc#1233485).\n- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).\n- CVE-2024-53043: mctp i2c: handle NULL header address (bsc#1233523).\n- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).\n- CVE-2024-53051: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability (bsc#1233547).\n- CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction (bsc#1233550).\n- CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() (bsc#1233568).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).\n- CVE-2024-53099: bpf: Check validity of link-\u003etype in bpf_link_show_fdinfo() (bsc#1233772).\n- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).\n- CVE-2024-53110: vp_vdpa: fix id_table array not null terminated error (bsc#1234085).\n- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).\n- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53121: net/mlx5: fs, lock FTE when checking if active (bsc#1234078).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)\n- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).\n- CVE-2024-53138: net/mlx5e: kTLS, Fix incorrect page refcounting (bsc#1234223).\n- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).\n- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).\n- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).\n- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).\n- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).\n- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).\n- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).\n- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).\n- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).\n- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).\n- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).\n- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).\n- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).\n- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).\n- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).\n- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).\n- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).\n- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).\n- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).\n- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).\n- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).\n- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).\n- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).\n- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).\n- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).\n- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).\n- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).\n- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).\n- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).\n- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).\n- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).\n- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).\n- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).\n- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).\n- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).\n- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).\n- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).\n- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).\n- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).\n- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).\n- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).\n- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).\n- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).\n- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).\n- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).\n- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).\n- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).\n- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).\n- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).\n- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).\n- CVE-2024-56729: smb: Initialize cfid-\u003etcon before performing network ops (bsc#1235503).\n- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).\n- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).\n- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).\n- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).\n- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).\n- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).\n- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).\n- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).\n- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).\n- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).\n- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).\n- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).\n- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).\n- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).\n- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).\n- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).\n- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).\n- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).\n- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before \u0027getting\u0027 registers (bsc#1236106).\n- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).\n- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).\n- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).\n- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).\n\nThe following non-security bugs were fixed:\n\n- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).\n- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).\n- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).\n- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).\n- ACPI: resource: Fix memory resource type union access (git-fixes).\n- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).\n- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).\n- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).\n- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).\n- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).\n- ALSA: hda/conexant: fix Z60MR100 startup pop issue (stable-fixes).\n- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).\n- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).\n- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).\n- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).\n- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).\n- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).\n- ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG) (stable-fixes).\n- ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8 (stable-fixes).\n- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).\n- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).\n- ALSA: line6: Fix racy access to midibuf (stable-fixes).\n- ALSA: seq: Check UMP support for midi_version change (git-fixes).\n- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).\n- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).\n- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).\n- ALSA: seq: ump: Use guard() for locking (stable-fixes).\n- ALSA: ump: Use guard() for locking (stable-fixes).\n- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).\n- ALSA: usb-audio: Fix a DMA to stack memory bug (git-fixes).\n- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).\n- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).\n- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).\n- ALSA: usb-audio: add mixer mapping for Corsair HS80 (stable-fixes).\n- ASoC: Intel: avs: da7219: Remove suspend_pre() and resume_post() (stable-fixes).\n- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).\n- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).\n- ASoC: SOF: Remove libraries from topology lookups (git-fixes).\n- ASoC: SOF: ipc3-topology: fix resource leaks in sof_ipc3_widget_setup_comp_dai() (git-fixes).\n- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).\n- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).\n- ASoC: amd: yc: Fix the wrong return value (git-fixes).\n- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).\n- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).\n- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).\n- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).\n- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).\n- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).\n- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).\n- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).\n- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).\n- ASoC: mediatek: mt8188-mt6359: Remove hardcoded dmic codec (git-fixes).\n- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).\n- ASoC: nau8822: Lower debug print priority (stable-fixes).\n- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).\n- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).\n- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).\n- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).\n- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).\n- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).\n- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).\n- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).\n- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).\n- Bluetooth: btnxpuart: Resolve TX timeout error in power save stress test (bsc#1230557)\n- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).\n- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).\n- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).\n- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).\n- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).\n- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).\n- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).\n- Bluetooth: iso: Fix recursive locking warning (git-fixes).\n- Disable ceph (jsc#PED-7242)\n- Documentation/virt/kvm: Document on Trust Domain Extensions(TDX) (jsc#PED-6143).\n- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- Drop uvcvideo fix due to regression (bsc#1235894)\n- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).\n- HID: wacom: fix when get product name maybe null pointer (git-fixes).\n- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).\n- KVM: Fix conflict of IOCTL definition of KVM_MEMORY_MAPPING (jsc#PED-6143).\n- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).\n- KVM: TDX: Add KVM Exit for TDX TDG.VP.VMCALL (jsc#PED-6143).\n- KVM: TDX: Add TSX_CTRL msr into uret_msrs list (jsc#PED-6143).\n- KVM: TDX: Add a method to ignore dirty logging (jsc#PED-6143).\n- KVM: TDX: Add a method to ignore for TDX to ignore hypercall patch (jsc#PED-6143).\n- KVM: TDX: Add a place holder for handler of TDX hypercalls (TDG.VP.VMCALL) (jsc#PED-6143).\n- KVM: TDX: Add a place holder to handle TDX VM exit (jsc#PED-6143).\n- KVM: TDX: Add accessors VMX VMCS helpers (jsc#PED-6143).\n- KVM: TDX: Add helper function to read TDX metadata in array (jsc#PED-6143).\n- KVM: TDX: Add helper functions to allocate/free TDX private host key id (jsc#PED-6143).\n- KVM: TDX: Add is_private check for mmu_alloc_root (jsc#PED-6143).\n- KVM: TDX: Add load_mmu_pgd method for TDX (jsc#PED-6143).\n- KVM: TDX: Add methods to ignore VMX preemption timer (jsc#PED-6143).\n- KVM: TDX: Add methods to ignore accesses to TSC (jsc#PED-6143).\n- KVM: TDX: Add methods to ignore guest instruction emulation (jsc#PED-6143).\n- KVM: TDX: Add methods to ignore virtual apic related operation (jsc#PED-6143).\n- KVM: TDX: Add support for find pending IRQ in a protected local APIC (jsc#PED-6143).\n- KVM: TDX: Complete interrupts after tdexit (jsc#PED-6143).\n- KVM: TDX: Create initial guest memory (jsc#PED-6143).\n- KVM: TDX: Do TDX specific vcpu initialization (jsc#PED-6143).\n- KVM: TDX: Do not use NO_RBP_MOD for backward compatibility (jsc#PED-6143).\n- KVM: TDX: Emulate Xen MTRR disablement (jsc#PED-6143).\n- KVM: TDX: Extend memory measurement with initial guest memory (jsc#PED-6143).\n- KVM: TDX: Finalize VM initialization (jsc#PED-6143).\n- KVM: TDX: Fix incompatibility with QEMU definition (jsc#PED-6143).\n- KVM: TDX: Fix is_private for page fault handler (jsc#PED-6143).\n- KVM: TDX: Get system-wide info about TDX module on initialization (jsc#PED-6143).\n- KVM: TDX: Handle EXIT_REASON_OTHER_SMI with MSMI (jsc#PED-6143).\n- KVM: TDX: Handle MSR IA32_FEAT_CTL MSR and IA32_MCG_EXT_CTL (jsc#PED-6143).\n- KVM: TDX: Handle MSR MTRRCap and MTRRDefType access (jsc#PED-6143).\n- KVM: TDX: Handle TDG.VP.VMCALL\u0026lt;GetTdVmCallInfo\u003e hypercall (jsc#PED-6143).\n- KVM: TDX: Handle TDX PV CPUID hypercall (jsc#PED-6143).\n- KVM: TDX: Handle TDX PV HLT hypercall (jsc#PED-6143).\n- KVM: TDX: Handle TDX PV MMIO hypercall (jsc#PED-6143).\n- KVM: TDX: Handle TDX PV port io hypercall (jsc#PED-6143).\n- KVM: TDX: Handle TDX PV rdmsr/wrmsr hypercall (jsc#PED-6143).\n- KVM: TDX: Handle vmentry failure for INTEL TD guest (jsc#PED-6143).\n- KVM: TDX: Ignore setting up mce (jsc#PED-6143).\n- KVM: TDX: Implement TDX vcpu enter/exit path (jsc#PED-6143).\n- KVM: TDX: Implement callbacks for MSR operations for TDX (jsc#PED-6143).\n- KVM: TDX: Implement interrupt injection (jsc#PED-6143).\n- KVM: TDX: Implement methods to inject NMI (jsc#PED-6143).\n- KVM: TDX: Inhibit APICv for TDX guest (jsc#PED-6143).\n- KVM: TDX: MTRR: implement get_mt_mask() for TDX (jsc#PED-6143).\n- KVM: TDX: Make KVM_CAP_MAX_VCPUS backend specific (jsc#PED-6143).\n- KVM: TDX: Make pmu_intel.c ignore guest TD case (jsc#PED-6143).\n- KVM: TDX: Refuse to unplug the last cpu on the package (jsc#PED-6143).\n- KVM: TDX: Require TDP MMU and mmio caching for TDX (jsc#PED-6143).\n- KVM: TDX: Retry seamcall when TDX_OPERAND_BUSY with operand SEPT (jsc#PED-6143).\n- KVM: TDX: Return -EINTR for KVM_MEMORY_MAPPING when signal pending (jsc#PED-6143).\n- KVM: TDX: Silently discard SMI request (jsc#PED-6143).\n- KVM: TDX: Silently ignore INIT/SIPI (jsc#PED-6143).\n- KVM: TDX: TDP MMU TDX support (jsc#PED-6143).\n- KVM: TDX: create/destroy VM structure (jsc#PED-6143).\n- KVM: TDX: create/free TDX vcpu structure (jsc#PED-6143).\n- KVM: TDX: handle EXCEPTION_NMI and EXTERNAL_INTERRUPT (jsc#PED-6143).\n- KVM: TDX: handle EXIT_REASON_OTHER_SMI (jsc#PED-6143).\n- KVM: TDX: handle KVM hypercall with TDG.VP.VMCALL (jsc#PED-6143).\n- KVM: TDX: handle ept violation/misconfig exit (jsc#PED-6143).\n- KVM: TDX: handle vcpu migration over logical processor (jsc#PED-6143).\n- KVM: TDX: initialize VM with TDX specific parameters (jsc#PED-6143).\n- KVM: TDX: remove use of struct vcpu_vmx from posted_interrupt.c (jsc#PED-6143).\n- KVM: TDX: restore debug store when TD exit (jsc#PED-6143).\n- KVM: TDX: restore host xsave state when exit from the guest TD (jsc#PED-6143).\n- KVM: TDX: restore user ret MSRs (jsc#PED-6143).\n- KVM: TDX: vcpu_run: save/restore host state(host kernel gs) (jsc#PED-6143).\n- KVM: TDX: x86: Add ioctl to get TDX systemwide parameters (jsc#PED-6143).\n- KVM: VMX: Move NMI/exception handler to common helper (jsc#PED-6143).\n- KVM: VMX: Split out guts of EPT violation to common/exposed function (jsc#PED-6143).\n- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).\n- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).\n- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).\n- KVM: x86/mmu: Add a new is_private member for union kvm_mmu_page_role (jsc#PED-6143).\n- KVM: x86/mmu: Add a private pointer to struct kvm_mmu_page (jsc#PED-6143).\n- KVM: x86/mmu: Add address conversion functions for TDX shared bit of GPA (jsc#PED-6143).\n- KVM: x86/mmu: Alloc TDP MMU roots while holding mmu_lock for read (jsc#PED-6143).\n- KVM: x86/mmu: Allow passing \u0027-1\u0027 for \u0027all\u0027 as_id for TDP MMU iterators (jsc#PED-6143).\n- KVM: x86/mmu: Check for usable TDP MMU root while holding mmu_lock for read (jsc#PED-6143).\n- KVM: x86/mmu: Disallow fast page fault on private GPA (jsc#PED-6143).\n- KVM: x86/mmu: Do not do TLB flush when zappings SPTEs in invalid roots (jsc#PED-6143).\n- KVM: x86/mmu: Do not enable page track for TD guest (jsc#PED-6143).\n- KVM: x86/mmu: Free TDP MMU roots while holding mmy_lock for read (jsc#PED-6143).\n- KVM: x86/mmu: Precisely invalidate MMU root_role during CPUID update (git-fixes).\n- KVM: x86/mmu: Skip invalid TDP MMU roots when write-protecting SPTEs (jsc#PED-6143).\n- KVM: x86/mmu: Skip invalid roots when zapping leaf SPTEs for GFN range (jsc#PED-6143).\n- KVM: x86/mmu: Zap invalidated TDP MMU roots at 4KiB granularity (jsc#PED-6143).\n- KVM: x86/tdp_mmu: Apply mmu notifier callback to only shared GPA (jsc#PED-6143).\n- KVM: x86/tdp_mmu: Do not zap private pages for unsupported cases (jsc#PED-6143).\n- KVM: x86/tdp_mmu: Fix to return original flush on unsupported cases (jsc#PED-6143).\n- KVM: x86/tdp_mmu: Init role member of struct kvm_mmu_page at allocation (jsc#PED-6143).\n- KVM: x86/tdp_mmu: Support TDX private mapping for TDP MMU (jsc#PED-6143).\n- KVM: x86: Add a switch_db_regs flag to handle TDX\u0027s auto-switched behavior (jsc#PED-6143).\n- KVM: x86: Add hooks in kvm_arch_vcpu_memory_mapping() (jsc#PED-6143).\n- KVM: x86: Allow to update cached values in kvm_user_return_msrs w/o wrmsr (jsc#PED-6143).\n- KVM: x86: Assume timer IRQ was injected if APIC state is proteced (jsc#PED-6143).\n- KVM: x86: Split core of hypercall emulation to helper function (jsc#PED-6143).\n- KVM: x86: design documentation on TDX support of x86 KVM TDP MMU (jsc#PED-6143).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Async COPY result needs to return a write verifier (git-fixes).\n- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: Remove a never-true comparison (git-fixes).\n- NFSD: initialize copy-\u003ecp_clp early in nfsd4_copy for use by trace point (git-fixes).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).\n- PCI/AER: Disable AER service on suspend (stable-fixes).\n- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).\n- PCI: Add \u0027reset_subordinate\u0027 to reset hierarchy below bridge (stable-fixes).\n- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).\n- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).\n- PCI: Add T_PERST_CLK_US macro (git-fixes).\n- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).\n- PCI: Fix use-after-free of slot-\u003ebus on hot remove (stable-fixes).\n- PCI: Use preserve_config in place of pci_flags (stable-fixes).\n- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).\n- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).\n- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).\n- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).\n- PCI: j721e: Add per platform maximum lane settings (stable-fixes).\n- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).\n- PCI: j721e: Add suspend and resume support (git-fixes).\n- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).\n- PCI: qcom: Add support for IPQ9574 (stable-fixes).\n- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).\n- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).\n- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)\n- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)\n- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)\n- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)\n- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)\n- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)\n- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)\n- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)\n- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)\n- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)\n- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)\n- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)\n- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)\n- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)\n- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)\n- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)\n- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)\n- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)\n- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)\n- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)\n- RDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible (git-fixes)\n- RDMA/uverbs: Prevent integer overflow issue (git-fixes)\n- RFC: KVM: x86, TDX: Add check for KVM_SET_CPUID2 (jsc#PED-6143).\n- RFC: KVM: x86: Add x86 callback to check cpuid (jsc#PED-6143).\n- Revert \u0027block/mq-deadline: use correct way to throttling write requests\u0027 (bsc#1234146).\n- Revert \u0027btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\u0027\n- Revert \u0027igb: Disable threaded IRQ for igb_msix_other\u0027 (git-fixes).\n- Revert \u0027mm, kmsan: fix infinite recursion due to RCU critical section\u0027 (bsc#1230413)\n- Revert \u0027mm/sparsemem: fix race in accessing memory_section-\u003eusage\u0027 (bsc#1230413)\n- Revert \u0027mm: prevent derefencing NULL ptr in pfn_section_valid()\u0027 (bsc#1230413)\n- Revert \u0027mtd: spi-nor: core: replace dummy buswidth from addr to data\u0027 (git-fixes).\n- Revert \u0027unicode: Do not special case ignorable code points\u0027 (stable-fixes).\n- Revert \u0027arm64: Kconfig: Make SME depend on BROKEN for now\u0027\n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).\n- USB: core: Disable LPM only for non-suspended ports (git-fixes).\n- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).\n- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).\n- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).\n- USB: serial: option: add Neoway N723-EA support (stable-fixes).\n- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).\n- USB: serial: option: add TCL IK512 MBIM \u0026 ECM (stable-fixes).\n- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).\n- USB: usblp: return error when setting unsupported protocol (git-fixes).\n- VM: TDX: Add place holder for TDX VM specific mem_enc_op ioctl (jsc#PED-6143).\n- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).\n- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).\n- accel/habanalabs: fix debugfs files permissions (stable-fixes).\n- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).\n- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).\n- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).\n- afs: Automatically generate trace tag enums (git-fixes).\n- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).\n- afs: Fix the maximum cell name length (git-fixes).\n- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).\n- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).\n- arch: Remove cmpxchg_double (bsc#1220773).\n- arch: consolidate arch_irq_work_raise prototypes (git-fixes).\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: Force position-independent veneers (git-fixes).\n- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes).\n- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-fixes)\n- arm64: dts: freescale: imx8mm-verdin: Fix SD regulator startup delay (git-fixes)\n- arm64: dts: freescale: imx8mp-verdin: Fix SD regulator startup delay (git-fixes)\n- arm64: dts: imx8-ss-vpu: Fix imx8qm VPU IRQs (git-fixes)\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- arm64: dts: imx8qxp: Add VPU subsystem file (git-fixes)\n- arm64: dts: imx93: add nvmem property for eqos (git-fixes)\n- arm64: dts: imx93: add nvmem property for fec1 (git-fixes)\n- arm64: dts: imx93: add ocotp node (git-fixes)\n- arm64: dts: rockchip: Add DTS for FriendlyARM NanoPi R2S Plus (git-fixes)\n- arm64: dts: rockchip: Correct GPIO polarity on brcm BT nodes (git-fixes)\n- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes)\n- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-fixes)\n- arm64: dts: rockchip: Fix bluetooth properties on rk3566 box demo (git-fixes)\n- arm64: dts: rockchip: Fix reset-gpios property on brcm BT nodes (git-fixes)\n- arm64: dts: rockchip: Fix rt5651 compatible value on (git-fixes)\n- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610 (git-fixes)\n- arm64: dts: rockchip: Fix wakeup prop names on PineNote BT node (git-fixes)\n- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma (git-fixes)\n- arm64: dts: rockchip: Remove hdmi\u0027s 2nd interrupt on rk3328 (git-fixes)\n- arm64: dts: rockchip: Remove undocumented supports-emmc property (git-fixes)\n- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).\n- arm64: dts: rockchip: fix i2c2 pinctrl-names property on (git-fixes)\n- arm64: dts: rockchip: remove num-slots property from (git-fixes)\n- arm64: dts: rockchip: remove orphaned pinctrl-names from pinephone (git-fixes)\n- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (git-fixes)\n- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).\n- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (git-fixes)\n- arm64: smccc: replace custom COUNT_ARGS() \u0026 CONCATENATE() (git-fixes)\n- arm64: tegra: Move AGX Orin nodes to correct location (git-fixes)\n- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (git-fixes)\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).\n- batman-adv: Do not send uninitialized TT changes (git-fixes).\n- batman-adv: Remove uninitialized data in full table TT response (git-fixes).\n- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).\n- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).\n- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).\n- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).\n- blk-throttle: fix lockdep warning of \u0027cgroup_mutex or RCU read lock required!\u0027 (bsc#1234140).\n- blk-wbt-Fix-detection-of-dirty-throttled-tasks.patch: Update tags\n- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).\n- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).\n- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).\n- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).\n- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).\n- block/mq-deadline: Fix the tag reservation code (bsc#1234148).\n- block: Call .limit_depth() after .hctx has been set (bsc#1234148).\n- block: Fix where bio IO priority gets set (bsc#1234145).\n- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).\n- block: update the stable_writes flag in bdev_add (bsc#1234141).\n- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)\n- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).\n- bpf, arm64: Fix address emission with tag-based KASAN enabled (git-fixes)\n- bpf, arm64: Remove garbage frame for struct_ops trampoline (git-fixes)\n- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).\n- bpf: verifier: prevent userspace memory access (git-fixes).\n- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).\n- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (git-fixes).\n- can: dev: can_set_termination(): allow sleeping GPIOs (git-fixes).\n- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).\n- can: hi311x: hi3110_can_ist(): fix potential use-after-free (git-fixes).\n- can: hi311x: hi3110_can_ist(): fix {rx,tx}_errors statistics (git-fixes).\n- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: j1939: fix error in J1939 documentation (stable-fixes).\n- can: j1939: j1939_session_new(): fix skb reference counting (git-fixes).\n- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: mcp251xfd: mcp251xfd_get_tef_len(): work around erratum DS80000789E 6 (git-fixes).\n- can: sja1000: sja1000_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (git-fixes).\n- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (git-fixes).\n- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).\n- cleanup: Add conditional guard support (stable-fixes).\n- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).\n- cleanup: Remove address space of returned pointer (git-fixes).\n- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).\n- clocksource/drivers:sp804: Make user selectable (git-fixes).\n- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).\n- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).\n- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).\n- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).\n- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).\n- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).\n- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).\n- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).\n- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).\n- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).\n- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).\n- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).\n- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).\n- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).\n- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).\n- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).\n- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).\n- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).\n- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).\n- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).\n- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).\n- crypto: x86/sha256 - Add parentheses around macros\u0027 single arguments (stable-fixes).\n- cyrpto/b128ops: Remove struct u128 (bsc#1220773).\n- devlink: Fix length of eswitch inline-mode (git-fixes).\n- dlm: fix possible lkb_resource null dereference (git-fixes).\n- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).\n- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).\n- dma-fence: Fix reference leak on fence merge failure path (git-fixes).\n- dma-fence: Use kernel\u0027s sort for merging fences (git-fixes).\n- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).\n- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).\n- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).\n- dmaengine: tegra: Return correct DMA status when paused (git-fixes).\n- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).\n- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).\n- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).\n- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).\n- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).\n- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).\n- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).\n- drm/amd/display: Fix DSC-re-computing (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).\n- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).\n- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).\n- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).\n- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).\n- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).\n- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).\n- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).\n- drm/amdgpu/pm: Remove gpu_od if it\u0027s an empty directory (stable-fixes).\n- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).\n- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).\n- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).\n- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).\n- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).\n- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: do not access invalid sched (git-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: fix usage slab after free (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).\n- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).\n- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).\n- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/amdkfd: Use device based logging for errors (stable-fixes).\n- drm/amdkfd: Use the correct wptr size (stable-fixes).\n- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).\n- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).\n- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).\n- drm/bridge: it6505: Enable module autoloading (stable-fixes).\n- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).\n- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).\n- drm/display: Fix building with GCC 15 (stable-fixes).\n- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).\n- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).\n- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).\n- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).\n- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).\n- drm/i915/dg1: Fix power gate sequence (git-fixes).\n- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).\n- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).\n- drm/mcde: Enable module autoloading (stable-fixes).\n- drm/mediatek: Add return value check when reading DPCD (git-fixes).\n- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).\n- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).\n- drm/mediatek: Fix mode valid issue for dp (git-fixes).\n- drm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err (git-fixes).\n- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).\n- drm/mediatek: stop selecting foreign drivers (git-fixes).\n- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).\n- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).\n- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).\n- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).\n- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).\n- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).\n- drm/radeon: change rdev-\u003eddev to rdev_to_drm(rdev) (stable-fixes).\n- drm/sched: memset() \u0027job\u0027 in drm_sched_job_init() (stable-fixes).\n- drm/sti: Add __iomem for mixer_dbg_mxn\u0027s parameter (git-fixes).\n- drm/v3d: Enable Performance Counters before clearing them (git-fixes).\n- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).\n- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).\n- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).\n- drm/vmwgfx: Add new keep_resv BO param (git-fixes).\n- drm: adv7511: Drop dsi single lane support (git-fixes).\n- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).\n- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- erofs: avoid debugging output for (de)compressed data (git-fixes).\n- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).\n- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).\n- exfat: fix the infinite loop in exfat_readdir() (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- ext4: add a new helper to check if es must be kept (bsc#1234170).\n- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).\n- ext4: add missed brelse in update_backups (bsc#1234171).\n- ext4: allow for the last group to be marked as trimmed (bsc#1234278).\n- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).\n- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).\n- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).\n- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).\n- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).\n- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).\n- ext4: check the extent status again before inserting delalloc block (bsc#1234186).\n- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).\n- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).\n- ext4: correct best extent lstart adjustment logic (bsc#1234179).\n- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).\n- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).\n- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).\n- ext4: correct the start block of counting reserved clusters (bsc#1234169).\n- ext4: do not let fstrim block system suspend (https://bugzilla.kernel.org/show_bug.cgi?id=216322 bsc#1234166).\n- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).\n- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).\n- ext4: factor out a common helper to query extent map (bsc#1234186).\n- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).\n- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).\n- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).\n- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).\n- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).\n- ext4: fix potential unnitialized variable (bsc#1234183).\n- ext4: fix race between writepages and remount (bsc#1234168).\n- ext4: fix rec_len verify error (bsc#1234167).\n- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).\n- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).\n- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).\n- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).\n- ext4: make ext4_es_insert_extent() return void (bsc#1234170).\n- ext4: make ext4_es_remove_extent() return void (bsc#1234170).\n- ext4: make ext4_zeroout_es() return void (bsc#1234170).\n- ext4: make sure allocate pending entry not fail (bsc#1234170).\n- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).\n- ext4: move \u0027ix\u0027 sanity check to corrent position (bsc#1234174).\n- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).\n- ext4: nested locking for xattr inode (bsc#1234189).\n- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).\n- ext4: refactor ext4_da_map_blocks() (bsc#1234178).\n- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).\n- ext4: remove the redundant folio_wait_stable() (bsc#1234184).\n- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).\n- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).\n- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).\n- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).\n- filemap: Fix bounds checking in filemap_read() (bsc#1234209).\n- filemap: add a per-mapping stable writes flag (bsc#1234141).\n- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).\n- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).\n- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).\n- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).\n- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).\n- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).\n- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).\n- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).\n- gpio: grgpio: use a helper variable to store the address of ofdev-\u003edev (stable-fixes).\n- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- hvc/xen: fix console unplug (git-fixes).\n- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).\n- hvc/xen: fix event channel handling for secondary consoles (git-fixes).\n- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).\n- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).\n- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).\n- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).\n- hwmon: (tmp513) Do not use \u0027proxy\u0027 headers (stable-fixes).\n- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).\n- hwmon: (tmp513) Fix division of negative numbers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).\n- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).\n- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).\n- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).\n- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).\n- i2c: i801: Add support for Intel Panther Lake (stable-fixes).\n- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).\n- i2c: microchip-core: actually use repeated sends (git-fixes).\n- i2c: microchip-core: fix \u0027ghost\u0027 detections (git-fixes).\n- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).\n- i2c: pnx: Fix timeout in wait functions (git-fixes).\n- i2c: rcar: fix NACK handling when being a target (git-fixes).\n- i2c: riic: Always round-up when calculating bus period (git-fixes).\n- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).\n- i40e: Fix handling changed priv flags (git-fixes).\n- i915/guc: Accumulate active runtime on gt reset (git-fixes).\n- i915/guc: Ensure busyness counter increases motonically (git-fixes).\n- i915/guc: Reset engine utilization buffer before registration (git-fixes).\n- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (git-fixes).\n- ice: Unbind the workqueue (bsc#1234989)\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).\n- ice: fix PHY Clock Recovery availability check (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).\n- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).\n- iio: adc: ad7124: Disable all channels at probe time (git-fixes).\n- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).\n- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).\n- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).\n- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).\n- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).\n- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).\n- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).\n- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).\n- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).\n- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).\n- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).\n- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).\n- instrumentation: Wire up cmpxchg128() (bsc#1220773).\n- io_uring/rw: avoid punting to io-wq directly (git-fixes).\n- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).\n- io_uring: Fix registered ring file refcount leak (git-fixes).\n- io_uring: always lock __io_cqring_overflow_flush (git-fixes).\n- io_uring: check if iowq is killed before queuing (git-fixes).\n- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).\n- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).\n- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).\n- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).\n- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).\n- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).\n- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).\n- kABI: Fix kABI after TDX KVM backports (jsc#PED-6143).\n- kABI: Restore exported __arm_smccc_sve_check (git-fixes)\n- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)\n- kasan: make report_lock a raw spinlock (git-fixes).\n- kdb: Fix buffer overflow during tab-complete (bsc#1234652).\n- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).\n- kdb: Merge identical case statements in kdb_read() (bsc#1234657).\n- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).\n- kdb: Use format-strings rather than \u0027\\0\u0027 injection in kdb_read() (bsc#1234654).\n- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).\n- kdb: address -Wformat-security warnings (bsc#1234659).\n- kgdb: Flush console before entering kgdb on panic (bsc#1234651).\n- leds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex (stable-fixes).\n- lib/stackdepot: print disabled message only if truly disabled (git-fixes).\n- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).\n- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).\n- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).\n- mac80211: fix user-power when emulating chanctx (stable-fixes).\n- mailbox: pcc: Add support for platform notification handling (stable-fixes).\n- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).\n- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).\n- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).\n- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).\n- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).\n- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).\n- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).\n- memory-failure: use a folio in me_huge_page() (git-fixes).\n- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).\n- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).\n- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).\n- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).\n- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).\n- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).\n- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).\n- mm/memory-failure: check the mapcount of the precise page (git-fixes).\n- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).\n- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).\n- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).\n- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).\n- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).\n- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).\n- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).\n- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).\n- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).\n- mm/migrate: putback split folios when numa hint migration fails (git-fixes).\n- mm/migrate: split source folio if it is on deferred split list (git-fixes).\n- mm/page_owner: remove free_ts from page_owner output (git-fixes).\n- mm/readahead: do not allow order-1 folio (bsc#1234205).\n- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).\n- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).\n- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).\n- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).\n- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).\n- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).\n- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).\n- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).\n- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).\n- mmc: core: Further prevent card detect during shutdown (git-fixes).\n- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).\n- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).\n- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).\n- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).\n- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).\n- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).\n- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).\n- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).\n- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).\n- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).\n- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).\n- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).\n- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).\n- net/qed: allow old cards not supporting \u0027num_images\u0027 to work (git-fixes).\n- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).\n- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).\n- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).\n- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).\n- netdevsim: copy addresses for both in and out paths (git-fixes).\n- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).\n- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).\n- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).\n- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).\n- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).\n- nvme: apple: fix device reference counting (git-fixes).\n- nvme: fix metadata handling in nvme-passthrough (git-fixes).\n- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).\n- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).\n- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).\n- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).\n- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).\n- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).\n- of: address: Report error on resource bounds overflow (stable-fixes).\n- parisc: Raise minimal GCC version (bsc#1220773).\n- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).\n- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).\n- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).\n- percpu: Wire up cmpxchg128 (bsc#1220773).\n- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).\n- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).\n- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).\n- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).\n- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).\n- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).\n- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).\n- phy: usb: Toggle the PHY power during init (git-fixes).\n- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).\n- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).\n- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).\n- pinmux: Use sequential access to access desc-\u003epinmux data (stable-fixes).\n- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).\n- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).\n- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).\n- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).\n- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).\n- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).\n- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).\n- platform/x86: thinkpad_acpi: Fix for ThinkPad\u0027s with ECFW showing incorrect fan speed (stable-fixes).\n- power: supply: gpio-charger: Fix set charge current limits (git-fixes).\n- powerpc/64s: Fix unnecessary copy to 0 when kernel is booted at address 0 (bsc#1215199).\n- powerpc/atomic: Use YZ constraints for DS-form instructions (bsc#1194869).\n- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).\n- powerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init() (bsc#1215199).\n- powerpc/fadump: Refactor and prepare fadump_cma_init for late init (bsc#1215199).\n- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).\n- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).\n- powerpc/kexec: Fix return of uninitialized variable (bsc#1194869).\n- powerpc/mm/fault: Fix kfence page fault reporting (bsc#1194869).\n- powerpc/mm: Fix boot crash with FLATMEM (bsc#1194869).\n- powerpc/mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL (bsc#1194869).\n- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).\n- powerpc/powernv: Free name on error in opal_event_init() (bsc#1194869).\n- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).\n- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).\n- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (bsc#1194869).\n- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (bsc#1194869).\n- powerpc/pseries: Use correct data types from pseries_hp_errorlog struct (bsc#1215199).\n- powerpc/vdso: Inconditionally use CFUNC macro (bsc#1215199).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).\n- quota: explicitly forbid quota files from being encrypted (bsc#1234196).\n- quota: flush quota_release_work upon quota writeback (bsc#1234195).\n- quota: simplify drop_dquot_ref() (bsc#1234197).\n- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).\n- regmap: Use correct format specifier for logging range errors (stable-fixes).\n- regmap: detach regmap from dev on regmap_exit (git-fixes).\n- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).\n- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).\n- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).\n- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).\n- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).\n- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).\n- s390/facility: Disable compile time optimization for decompressor code (git-fixes).\n- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).\n- s390/pageattr: Implement missing kernel_page_present() (git-fixes).\n- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- sched/numa: fix memory leak due to the overwritten vma-\u003enumab_state (git fixes (sched/numa)).\n- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).\n- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).\n- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).\n- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).\n- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).\n- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).\n- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).\n- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).\n- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).\n- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).\n- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).\n- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).\n- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).\n- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).\n- scsi: qla2xxx: Remove the unused \u0027del_list_entry\u0027 field in struct fc_port (bsc#1235406).\n- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).\n- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).\n- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).\n- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).\n- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).\n- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).\n- serial: 8250_fintek: Add support for F81216E (stable-fixes).\n- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).\n- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).\n- serial: amba-pl011: Use port lock wrappers (stable-fixes).\n- serial: amba-pl011: fix build regression (git-fixes).\n- serial: do not use uninitialized value in uart_poll_init() (git-fixes).\n- serial: imx: only set receiver level if it is zero (git-fixes).\n- serial: imx: set receiver level before starting uart (git-fixes).\n- serial: qcom-geni: Do not cancel/abort if we can\u0027t get the port lock (git-fixes).\n- serial: qcom-geni: disable interrupts during console writes (git-fixes).\n- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).\n- serial: qcom-geni: fix console corruption (git-fixes).\n- serial: qcom-geni: fix dma rx cancellation (git-fixes).\n- serial: qcom-geni: fix false console tx restart (git-fixes).\n- serial: qcom-geni: fix fifo polling timeout (git-fixes).\n- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).\n- serial: qcom-geni: fix polled console corruption (git-fixes).\n- serial: qcom-geni: fix polled console initialisation (git-fixes).\n- serial: qcom-geni: fix receiver enable (git-fixes).\n- serial: qcom-geni: fix shutdown race (git-fixes).\n- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).\n- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).\n- serial: qcom-geni: revert broken hibernation support (git-fixes).\n- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).\n- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).\n- slub: Replace cmpxchg_double() (bsc#1220773).\n- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]\n- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).\n- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).\n- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).\n- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).\n- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).\n- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).\n- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).\n- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).\n- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).\n- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).\n- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).\n- spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes).\n- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).\n- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).\n- staging: iio: ad9832: Correct phase range check (git-fixes).\n- staging: iio: ad9834: Correct phase range check (git-fixes).\n- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).\n- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).\n- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).\n- swiotlb: Reinstate page-alignment for mappings \u003e= PAGE_SIZE (git-fixes).\n- tdx: following fixup for mapping_level porting conflict (jsc#PED-6143).\n- tdx: init has_private_mem during tdx init (jsc#PED-6143).\n- the end of (the first phase of) TDX KVM patch series (jsc#PED-6143).\n- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).\n- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).\n- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).\n- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).\n- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).\n- tools: hv: change permissions of NetworkManager configuration file (git-fixes).\n- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).\n- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).\n- types: Introduce [us]128 (bsc#1220773).\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).\n- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).\n- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).\n- udf: refactor inode_bmap() to handle error (bsc#1234242).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).\n- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).\n- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).\n- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).\n- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).\n- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).\n- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).\n- usb: dwc2: Fix HCD port connection race (git-fixes).\n- usb: dwc2: Fix HCD resume (git-fixes).\n- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).\n- usb: dwc2: hcd: Fix GetPortStatus \u0026 SetPortFeature (git-fixes).\n- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).\n- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).\n- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).\n- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).\n- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).\n- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).\n- usb: fix reference leak in usb_new_device() (git-fixes).\n- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).\n- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).\n- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).\n- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).\n- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).\n- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).\n- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).\n- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).\n- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).\n- usb: typec: use cleanup facility for \u0027altmodes_node\u0027 (stable-fixes).\n- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).\n- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).\n- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).\n- vdpa: solidrun: Fix UB bug with devres (git-fixes).\n- vfs: fix readahead(2) on block devices (bsc#1234201).\n- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).\n- watchdog: apple: Actually flush writes after requesting watchdog restart (git-fixes).\n- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (git-fixes).\n- watchdog: rti: of: honor timeout-sec property (git-fixes).\n- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).\n- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).\n- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).\n- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).\n- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).\n- wifi: ath5k: add PCI ID for SX76X (git-fixes).\n- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).\n- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).\n- wifi: cw1200: Fix potential NULL dereference (git-fixes).\n- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).\n- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).\n- wifi: mac80211: Add non-atomic station iterator (stable-fixes).\n- wifi: mac80211: clean up \u0027ret\u0027 in sta_link_apply_parameters() (stable-fixes).\n- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).\n- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).\n- wifi: mac80211: fix station NSS capability initialization order (git-fixes).\n- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).\n- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).\n- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).\n- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).\n- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).\n- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).\n- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).\n- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).\n- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).\n- x86/kexec: Reset TDX private memory on platforms with TDX erratum (jsc#PED-6143).\n- x86/kexec: do unconditional WBINVD for bare-metal in relocate_kernel() (jsc#PED-6143).\n- x86/kexec: do unconditional WBINVD for bare-metal in stop_this_cpu() (jsc#PED-6143).\n- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).\n- x86/virt/tdx: Add TDX memory reset notifier to reset other private pages (jsc#PED-6143).\n- x86/virt/tdx: Exclude memory region hole within CMR as TDMR\u0027s reserved area (jsc#PED-6143).\n- x86/virt/tdx: Explicitly save/restore RBP for seamcall_saved_ret() (jsc#PED-6143).\n- x86/virt/tdx: Get information about TDX module and TDX-capable memory (jsc#PED-6143).\n- xfs: do not allocate COW extents when unsharing a hole (git-fixes).\n- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).\n- xfs: remove unknown compat feature check in superblock write validation (git-fixes).\n- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).\n- xfs: sb_spino_align is not verified (git-fixes).\n- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).\n- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).\n- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-289,SUSE-SLE-Module-Confidential-Computing-15-SP6-2025-289",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0289-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0289-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250289-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0289-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020239.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1214954",
"url": "https://bugzilla.suse.com/1214954"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1218470",
"url": "https://bugzilla.suse.com/1218470"
},
{
"category": "self",
"summary": "SUSE Bug 1220355",
"url": "https://bugzilla.suse.com/1220355"
},
{
"category": "self",
"summary": "SUSE Bug 1220711",
"url": "https://bugzilla.suse.com/1220711"
},
{
"category": "self",
"summary": "SUSE Bug 1220773",
"url": "https://bugzilla.suse.com/1220773"
},
{
"category": "self",
"summary": "SUSE Bug 1221326",
"url": "https://bugzilla.suse.com/1221326"
},
{
"category": "self",
"summary": "SUSE Bug 1224095",
"url": "https://bugzilla.suse.com/1224095"
},
{
"category": "self",
"summary": "SUSE Bug 1224726",
"url": "https://bugzilla.suse.com/1224726"
},
{
"category": "self",
"summary": "SUSE Bug 1225743",
"url": "https://bugzilla.suse.com/1225743"
},
{
"category": "self",
"summary": "SUSE Bug 1225758",
"url": "https://bugzilla.suse.com/1225758"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1225897",
"url": "https://bugzilla.suse.com/1225897"
},
{
"category": "self",
"summary": "SUSE Bug 1227445",
"url": "https://bugzilla.suse.com/1227445"
},
{
"category": "self",
"summary": "SUSE Bug 1228526",
"url": "https://bugzilla.suse.com/1228526"
},
{
"category": "self",
"summary": "SUSE Bug 1228592",
"url": "https://bugzilla.suse.com/1228592"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1229833",
"url": "https://bugzilla.suse.com/1229833"
},
{
"category": "self",
"summary": "SUSE Bug 1230205",
"url": "https://bugzilla.suse.com/1230205"
},
{
"category": "self",
"summary": "SUSE Bug 1230413",
"url": "https://bugzilla.suse.com/1230413"
},
{
"category": "self",
"summary": "SUSE Bug 1230557",
"url": "https://bugzilla.suse.com/1230557"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1230807",
"url": "https://bugzilla.suse.com/1230807"
},
{
"category": "self",
"summary": "SUSE Bug 1230827",
"url": "https://bugzilla.suse.com/1230827"
},
{
"category": "self",
"summary": "SUSE Bug 1231016",
"url": "https://bugzilla.suse.com/1231016"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1231909",
"url": "https://bugzilla.suse.com/1231909"
},
{
"category": "self",
"summary": "SUSE Bug 1231963",
"url": "https://bugzilla.suse.com/1231963"
},
{
"category": "self",
"summary": "SUSE Bug 1232087",
"url": "https://bugzilla.suse.com/1232087"
},
{
"category": "self",
"summary": "SUSE Bug 1232157",
"url": "https://bugzilla.suse.com/1232157"
},
{
"category": "self",
"summary": "SUSE Bug 1232158",
"url": "https://bugzilla.suse.com/1232158"
},
{
"category": "self",
"summary": "SUSE Bug 1232166",
"url": "https://bugzilla.suse.com/1232166"
},
{
"category": "self",
"summary": "SUSE Bug 1232193",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232418",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232420",
"url": "https://bugzilla.suse.com/1232420"
},
{
"category": "self",
"summary": "SUSE Bug 1232421",
"url": "https://bugzilla.suse.com/1232421"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232882",
"url": "https://bugzilla.suse.com/1232882"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233055",
"url": "https://bugzilla.suse.com/1233055"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233112",
"url": "https://bugzilla.suse.com/1233112"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233201",
"url": "https://bugzilla.suse.com/1233201"
},
{
"category": "self",
"summary": "SUSE Bug 1233204",
"url": "https://bugzilla.suse.com/1233204"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233259",
"url": "https://bugzilla.suse.com/1233259"
},
{
"category": "self",
"summary": "SUSE Bug 1233260",
"url": "https://bugzilla.suse.com/1233260"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233328",
"url": "https://bugzilla.suse.com/1233328"
},
{
"category": "self",
"summary": "SUSE Bug 1233461",
"url": "https://bugzilla.suse.com/1233461"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233468",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233485",
"url": "https://bugzilla.suse.com/1233485"
},
{
"category": "self",
"summary": "SUSE Bug 1233488",
"url": "https://bugzilla.suse.com/1233488"
},
{
"category": "self",
"summary": "SUSE Bug 1233523",
"url": "https://bugzilla.suse.com/1233523"
},
{
"category": "self",
"summary": "SUSE Bug 1233546",
"url": "https://bugzilla.suse.com/1233546"
},
{
"category": "self",
"summary": "SUSE Bug 1233547",
"url": "https://bugzilla.suse.com/1233547"
},
{
"category": "self",
"summary": "SUSE Bug 1233550",
"url": "https://bugzilla.suse.com/1233550"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233568",
"url": "https://bugzilla.suse.com/1233568"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233638",
"url": "https://bugzilla.suse.com/1233638"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233772",
"url": "https://bugzilla.suse.com/1233772"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234024",
"url": "https://bugzilla.suse.com/1234024"
},
{
"category": "self",
"summary": "SUSE Bug 1234069",
"url": "https://bugzilla.suse.com/1234069"
},
{
"category": "self",
"summary": "SUSE Bug 1234071",
"url": "https://bugzilla.suse.com/1234071"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234078",
"url": "https://bugzilla.suse.com/1234078"
},
{
"category": "self",
"summary": "SUSE Bug 1234079",
"url": "https://bugzilla.suse.com/1234079"
},
{
"category": "self",
"summary": "SUSE Bug 1234085",
"url": "https://bugzilla.suse.com/1234085"
},
{
"category": "self",
"summary": "SUSE Bug 1234086",
"url": "https://bugzilla.suse.com/1234086"
},
{
"category": "self",
"summary": "SUSE Bug 1234139",
"url": "https://bugzilla.suse.com/1234139"
},
{
"category": "self",
"summary": "SUSE Bug 1234140",
"url": "https://bugzilla.suse.com/1234140"
},
{
"category": "self",
"summary": "SUSE Bug 1234141",
"url": "https://bugzilla.suse.com/1234141"
},
{
"category": "self",
"summary": "SUSE Bug 1234142",
"url": "https://bugzilla.suse.com/1234142"
},
{
"category": "self",
"summary": "SUSE Bug 1234143",
"url": "https://bugzilla.suse.com/1234143"
},
{
"category": "self",
"summary": "SUSE Bug 1234144",
"url": "https://bugzilla.suse.com/1234144"
},
{
"category": "self",
"summary": "SUSE Bug 1234145",
"url": "https://bugzilla.suse.com/1234145"
},
{
"category": "self",
"summary": "SUSE Bug 1234146",
"url": "https://bugzilla.suse.com/1234146"
},
{
"category": "self",
"summary": "SUSE Bug 1234147",
"url": "https://bugzilla.suse.com/1234147"
},
{
"category": "self",
"summary": "SUSE Bug 1234148",
"url": "https://bugzilla.suse.com/1234148"
},
{
"category": "self",
"summary": "SUSE Bug 1234149",
"url": "https://bugzilla.suse.com/1234149"
},
{
"category": "self",
"summary": "SUSE Bug 1234150",
"url": "https://bugzilla.suse.com/1234150"
},
{
"category": "self",
"summary": "SUSE Bug 1234153",
"url": "https://bugzilla.suse.com/1234153"
},
{
"category": "self",
"summary": "SUSE Bug 1234155",
"url": "https://bugzilla.suse.com/1234155"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234158",
"url": "https://bugzilla.suse.com/1234158"
},
{
"category": "self",
"summary": "SUSE Bug 1234159",
"url": "https://bugzilla.suse.com/1234159"
},
{
"category": "self",
"summary": "SUSE Bug 1234160",
"url": "https://bugzilla.suse.com/1234160"
},
{
"category": "self",
"summary": "SUSE Bug 1234161",
"url": "https://bugzilla.suse.com/1234161"
},
{
"category": "self",
"summary": "SUSE Bug 1234162",
"url": "https://bugzilla.suse.com/1234162"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234164",
"url": "https://bugzilla.suse.com/1234164"
},
{
"category": "self",
"summary": "SUSE Bug 1234165",
"url": "https://bugzilla.suse.com/1234165"
},
{
"category": "self",
"summary": "SUSE Bug 1234166",
"url": "https://bugzilla.suse.com/1234166"
},
{
"category": "self",
"summary": "SUSE Bug 1234167",
"url": "https://bugzilla.suse.com/1234167"
},
{
"category": "self",
"summary": "SUSE Bug 1234168",
"url": "https://bugzilla.suse.com/1234168"
},
{
"category": "self",
"summary": "SUSE Bug 1234169",
"url": "https://bugzilla.suse.com/1234169"
},
{
"category": "self",
"summary": "SUSE Bug 1234170",
"url": "https://bugzilla.suse.com/1234170"
},
{
"category": "self",
"summary": "SUSE Bug 1234171",
"url": "https://bugzilla.suse.com/1234171"
},
{
"category": "self",
"summary": "SUSE Bug 1234172",
"url": "https://bugzilla.suse.com/1234172"
},
{
"category": "self",
"summary": "SUSE Bug 1234173",
"url": "https://bugzilla.suse.com/1234173"
},
{
"category": "self",
"summary": "SUSE Bug 1234174",
"url": "https://bugzilla.suse.com/1234174"
},
{
"category": "self",
"summary": "SUSE Bug 1234175",
"url": "https://bugzilla.suse.com/1234175"
},
{
"category": "self",
"summary": "SUSE Bug 1234176",
"url": "https://bugzilla.suse.com/1234176"
},
{
"category": "self",
"summary": "SUSE Bug 1234177",
"url": "https://bugzilla.suse.com/1234177"
},
{
"category": "self",
"summary": "SUSE Bug 1234178",
"url": "https://bugzilla.suse.com/1234178"
},
{
"category": "self",
"summary": "SUSE Bug 1234179",
"url": "https://bugzilla.suse.com/1234179"
},
{
"category": "self",
"summary": "SUSE Bug 1234180",
"url": "https://bugzilla.suse.com/1234180"
},
{
"category": "self",
"summary": "SUSE Bug 1234181",
"url": "https://bugzilla.suse.com/1234181"
},
{
"category": "self",
"summary": "SUSE Bug 1234182",
"url": "https://bugzilla.suse.com/1234182"
},
{
"category": "self",
"summary": "SUSE Bug 1234183",
"url": "https://bugzilla.suse.com/1234183"
},
{
"category": "self",
"summary": "SUSE Bug 1234184",
"url": "https://bugzilla.suse.com/1234184"
},
{
"category": "self",
"summary": "SUSE Bug 1234185",
"url": "https://bugzilla.suse.com/1234185"
},
{
"category": "self",
"summary": "SUSE Bug 1234186",
"url": "https://bugzilla.suse.com/1234186"
},
{
"category": "self",
"summary": "SUSE Bug 1234187",
"url": "https://bugzilla.suse.com/1234187"
},
{
"category": "self",
"summary": "SUSE Bug 1234188",
"url": "https://bugzilla.suse.com/1234188"
},
{
"category": "self",
"summary": "SUSE Bug 1234189",
"url": "https://bugzilla.suse.com/1234189"
},
{
"category": "self",
"summary": "SUSE Bug 1234190",
"url": "https://bugzilla.suse.com/1234190"
},
{
"category": "self",
"summary": "SUSE Bug 1234191",
"url": "https://bugzilla.suse.com/1234191"
},
{
"category": "self",
"summary": "SUSE Bug 1234192",
"url": "https://bugzilla.suse.com/1234192"
},
{
"category": "self",
"summary": "SUSE Bug 1234193",
"url": "https://bugzilla.suse.com/1234193"
},
{
"category": "self",
"summary": "SUSE Bug 1234194",
"url": "https://bugzilla.suse.com/1234194"
},
{
"category": "self",
"summary": "SUSE Bug 1234195",
"url": "https://bugzilla.suse.com/1234195"
},
{
"category": "self",
"summary": "SUSE Bug 1234196",
"url": "https://bugzilla.suse.com/1234196"
},
{
"category": "self",
"summary": "SUSE Bug 1234197",
"url": "https://bugzilla.suse.com/1234197"
},
{
"category": "self",
"summary": "SUSE Bug 1234198",
"url": "https://bugzilla.suse.com/1234198"
},
{
"category": "self",
"summary": "SUSE Bug 1234199",
"url": "https://bugzilla.suse.com/1234199"
},
{
"category": "self",
"summary": "SUSE Bug 1234200",
"url": "https://bugzilla.suse.com/1234200"
},
{
"category": "self",
"summary": "SUSE Bug 1234201",
"url": "https://bugzilla.suse.com/1234201"
},
{
"category": "self",
"summary": "SUSE Bug 1234203",
"url": "https://bugzilla.suse.com/1234203"
},
{
"category": "self",
"summary": "SUSE Bug 1234204",
"url": "https://bugzilla.suse.com/1234204"
},
{
"category": "self",
"summary": "SUSE Bug 1234205",
"url": "https://bugzilla.suse.com/1234205"
},
{
"category": "self",
"summary": "SUSE Bug 1234207",
"url": "https://bugzilla.suse.com/1234207"
},
{
"category": "self",
"summary": "SUSE Bug 1234208",
"url": "https://bugzilla.suse.com/1234208"
},
{
"category": "self",
"summary": "SUSE Bug 1234209",
"url": "https://bugzilla.suse.com/1234209"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234221",
"url": "https://bugzilla.suse.com/1234221"
},
{
"category": "self",
"summary": "SUSE Bug 1234223",
"url": "https://bugzilla.suse.com/1234223"
},
{
"category": "self",
"summary": "SUSE Bug 1234237",
"url": "https://bugzilla.suse.com/1234237"
},
{
"category": "self",
"summary": "SUSE Bug 1234238",
"url": "https://bugzilla.suse.com/1234238"
},
{
"category": "self",
"summary": "SUSE Bug 1234239",
"url": "https://bugzilla.suse.com/1234239"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234242",
"url": "https://bugzilla.suse.com/1234242"
},
{
"category": "self",
"summary": "SUSE Bug 1234243",
"url": "https://bugzilla.suse.com/1234243"
},
{
"category": "self",
"summary": "SUSE Bug 1234278",
"url": "https://bugzilla.suse.com/1234278"
},
{
"category": "self",
"summary": "SUSE Bug 1234279",
"url": "https://bugzilla.suse.com/1234279"
},
{
"category": "self",
"summary": "SUSE Bug 1234280",
"url": "https://bugzilla.suse.com/1234280"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234381",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "self",
"summary": "SUSE Bug 1234454",
"url": "https://bugzilla.suse.com/1234454"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234619",
"url": "https://bugzilla.suse.com/1234619"
},
{
"category": "self",
"summary": "SUSE Bug 1234635",
"url": "https://bugzilla.suse.com/1234635"
},
{
"category": "self",
"summary": "SUSE Bug 1234651",
"url": "https://bugzilla.suse.com/1234651"
},
{
"category": "self",
"summary": "SUSE Bug 1234652",
"url": "https://bugzilla.suse.com/1234652"
},
{
"category": "self",
"summary": "SUSE Bug 1234654",
"url": "https://bugzilla.suse.com/1234654"
},
{
"category": "self",
"summary": "SUSE Bug 1234655",
"url": "https://bugzilla.suse.com/1234655"
},
{
"category": "self",
"summary": "SUSE Bug 1234657",
"url": "https://bugzilla.suse.com/1234657"
},
{
"category": "self",
"summary": "SUSE Bug 1234658",
"url": "https://bugzilla.suse.com/1234658"
},
{
"category": "self",
"summary": "SUSE Bug 1234659",
"url": "https://bugzilla.suse.com/1234659"
},
{
"category": "self",
"summary": "SUSE Bug 1234668",
"url": "https://bugzilla.suse.com/1234668"
},
{
"category": "self",
"summary": "SUSE Bug 1234690",
"url": "https://bugzilla.suse.com/1234690"
},
{
"category": "self",
"summary": "SUSE Bug 1234725",
"url": "https://bugzilla.suse.com/1234725"
},
{
"category": "self",
"summary": "SUSE Bug 1234726",
"url": "https://bugzilla.suse.com/1234726"
},
{
"category": "self",
"summary": "SUSE Bug 1234810",
"url": "https://bugzilla.suse.com/1234810"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234825",
"url": "https://bugzilla.suse.com/1234825"
},
{
"category": "self",
"summary": "SUSE Bug 1234826",
"url": "https://bugzilla.suse.com/1234826"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234829",
"url": "https://bugzilla.suse.com/1234829"
},
{
"category": "self",
"summary": "SUSE Bug 1234832",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234848",
"url": "https://bugzilla.suse.com/1234848"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234855",
"url": "https://bugzilla.suse.com/1234855"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234863",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "self",
"summary": "SUSE Bug 1234884",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "self",
"summary": "SUSE Bug 1234887",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "self",
"summary": "SUSE Bug 1234888",
"url": "https://bugzilla.suse.com/1234888"
},
{
"category": "self",
"summary": "SUSE Bug 1234889",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234893",
"url": "https://bugzilla.suse.com/1234893"
},
{
"category": "self",
"summary": "SUSE Bug 1234898",
"url": "https://bugzilla.suse.com/1234898"
},
{
"category": "self",
"summary": "SUSE Bug 1234899",
"url": "https://bugzilla.suse.com/1234899"
},
{
"category": "self",
"summary": "SUSE Bug 1234900",
"url": "https://bugzilla.suse.com/1234900"
},
{
"category": "self",
"summary": "SUSE Bug 1234901",
"url": "https://bugzilla.suse.com/1234901"
},
{
"category": "self",
"summary": "SUSE Bug 1234905",
"url": "https://bugzilla.suse.com/1234905"
},
{
"category": "self",
"summary": "SUSE Bug 1234906",
"url": "https://bugzilla.suse.com/1234906"
},
{
"category": "self",
"summary": "SUSE Bug 1234907",
"url": "https://bugzilla.suse.com/1234907"
},
{
"category": "self",
"summary": "SUSE Bug 1234909",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "self",
"summary": "SUSE Bug 1234911",
"url": "https://bugzilla.suse.com/1234911"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234916",
"url": "https://bugzilla.suse.com/1234916"
},
{
"category": "self",
"summary": "SUSE Bug 1234918",
"url": "https://bugzilla.suse.com/1234918"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234922",
"url": "https://bugzilla.suse.com/1234922"
},
{
"category": "self",
"summary": "SUSE Bug 1234923",
"url": "https://bugzilla.suse.com/1234923"
},
{
"category": "self",
"summary": "SUSE Bug 1234929",
"url": "https://bugzilla.suse.com/1234929"
},
{
"category": "self",
"summary": "SUSE Bug 1234930",
"url": "https://bugzilla.suse.com/1234930"
},
{
"category": "self",
"summary": "SUSE Bug 1234931",
"url": "https://bugzilla.suse.com/1234931"
},
{
"category": "self",
"summary": "SUSE Bug 1234934",
"url": "https://bugzilla.suse.com/1234934"
},
{
"category": "self",
"summary": "SUSE Bug 1234937",
"url": "https://bugzilla.suse.com/1234937"
},
{
"category": "self",
"summary": "SUSE Bug 1234948",
"url": "https://bugzilla.suse.com/1234948"
},
{
"category": "self",
"summary": "SUSE Bug 1234950",
"url": "https://bugzilla.suse.com/1234950"
},
{
"category": "self",
"summary": "SUSE Bug 1234952",
"url": "https://bugzilla.suse.com/1234952"
},
{
"category": "self",
"summary": "SUSE Bug 1234957",
"url": "https://bugzilla.suse.com/1234957"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234962",
"url": "https://bugzilla.suse.com/1234962"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234968",
"url": "https://bugzilla.suse.com/1234968"
},
{
"category": "self",
"summary": "SUSE Bug 1234969",
"url": "https://bugzilla.suse.com/1234969"
},
{
"category": "self",
"summary": "SUSE Bug 1234970",
"url": "https://bugzilla.suse.com/1234970"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1234974",
"url": "https://bugzilla.suse.com/1234974"
},
{
"category": "self",
"summary": "SUSE Bug 1234989",
"url": "https://bugzilla.suse.com/1234989"
},
{
"category": "self",
"summary": "SUSE Bug 1234999",
"url": "https://bugzilla.suse.com/1234999"
},
{
"category": "self",
"summary": "SUSE Bug 1235000",
"url": "https://bugzilla.suse.com/1235000"
},
{
"category": "self",
"summary": "SUSE Bug 1235002",
"url": "https://bugzilla.suse.com/1235002"
},
{
"category": "self",
"summary": "SUSE Bug 1235003",
"url": "https://bugzilla.suse.com/1235003"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235007",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "self",
"summary": "SUSE Bug 1235009",
"url": "https://bugzilla.suse.com/1235009"
},
{
"category": "self",
"summary": "SUSE Bug 1235011",
"url": "https://bugzilla.suse.com/1235011"
},
{
"category": "self",
"summary": "SUSE Bug 1235016",
"url": "https://bugzilla.suse.com/1235016"
},
{
"category": "self",
"summary": "SUSE Bug 1235019",
"url": "https://bugzilla.suse.com/1235019"
},
{
"category": "self",
"summary": "SUSE Bug 1235031",
"url": "https://bugzilla.suse.com/1235031"
},
{
"category": "self",
"summary": "SUSE Bug 1235032",
"url": "https://bugzilla.suse.com/1235032"
},
{
"category": "self",
"summary": "SUSE Bug 1235033",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "self",
"summary": "SUSE Bug 1235035",
"url": "https://bugzilla.suse.com/1235035"
},
{
"category": "self",
"summary": "SUSE Bug 1235037",
"url": "https://bugzilla.suse.com/1235037"
},
{
"category": "self",
"summary": "SUSE Bug 1235038",
"url": "https://bugzilla.suse.com/1235038"
},
{
"category": "self",
"summary": "SUSE Bug 1235039",
"url": "https://bugzilla.suse.com/1235039"
},
{
"category": "self",
"summary": "SUSE Bug 1235040",
"url": "https://bugzilla.suse.com/1235040"
},
{
"category": "self",
"summary": "SUSE Bug 1235042",
"url": "https://bugzilla.suse.com/1235042"
},
{
"category": "self",
"summary": "SUSE Bug 1235043",
"url": "https://bugzilla.suse.com/1235043"
},
{
"category": "self",
"summary": "SUSE Bug 1235045",
"url": "https://bugzilla.suse.com/1235045"
},
{
"category": "self",
"summary": "SUSE Bug 1235046",
"url": "https://bugzilla.suse.com/1235046"
},
{
"category": "self",
"summary": "SUSE Bug 1235050",
"url": "https://bugzilla.suse.com/1235050"
},
{
"category": "self",
"summary": "SUSE Bug 1235051",
"url": "https://bugzilla.suse.com/1235051"
},
{
"category": "self",
"summary": "SUSE Bug 1235053",
"url": "https://bugzilla.suse.com/1235053"
},
{
"category": "self",
"summary": "SUSE Bug 1235054",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235057",
"url": "https://bugzilla.suse.com/1235057"
},
{
"category": "self",
"summary": "SUSE Bug 1235059",
"url": "https://bugzilla.suse.com/1235059"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235065",
"url": "https://bugzilla.suse.com/1235065"
},
{
"category": "self",
"summary": "SUSE Bug 1235070",
"url": "https://bugzilla.suse.com/1235070"
},
{
"category": "self",
"summary": "SUSE Bug 1235073",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "self",
"summary": "SUSE Bug 1235075",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "self",
"summary": "SUSE Bug 1235100",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "self",
"summary": "SUSE Bug 1235108",
"url": "https://bugzilla.suse.com/1235108"
},
{
"category": "self",
"summary": "SUSE Bug 1235112",
"url": "https://bugzilla.suse.com/1235112"
},
{
"category": "self",
"summary": "SUSE Bug 1235115",
"url": "https://bugzilla.suse.com/1235115"
},
{
"category": "self",
"summary": "SUSE Bug 1235117",
"url": "https://bugzilla.suse.com/1235117"
},
{
"category": "self",
"summary": "SUSE Bug 1235122",
"url": "https://bugzilla.suse.com/1235122"
},
{
"category": "self",
"summary": "SUSE Bug 1235123",
"url": "https://bugzilla.suse.com/1235123"
},
{
"category": "self",
"summary": "SUSE Bug 1235125",
"url": "https://bugzilla.suse.com/1235125"
},
{
"category": "self",
"summary": "SUSE Bug 1235128",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "self",
"summary": "SUSE Bug 1235132",
"url": "https://bugzilla.suse.com/1235132"
},
{
"category": "self",
"summary": "SUSE Bug 1235133",
"url": "https://bugzilla.suse.com/1235133"
},
{
"category": "self",
"summary": "SUSE Bug 1235134",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "self",
"summary": "SUSE Bug 1235138",
"url": "https://bugzilla.suse.com/1235138"
},
{
"category": "self",
"summary": "SUSE Bug 1235155",
"url": "https://bugzilla.suse.com/1235155"
},
{
"category": "self",
"summary": "SUSE Bug 1235160",
"url": "https://bugzilla.suse.com/1235160"
},
{
"category": "self",
"summary": "SUSE Bug 1235219",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "self",
"summary": "SUSE Bug 1235220",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "self",
"summary": "SUSE Bug 1235222",
"url": "https://bugzilla.suse.com/1235222"
},
{
"category": "self",
"summary": "SUSE Bug 1235223",
"url": "https://bugzilla.suse.com/1235223"
},
{
"category": "self",
"summary": "SUSE Bug 1235224",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "self",
"summary": "SUSE Bug 1235227",
"url": "https://bugzilla.suse.com/1235227"
},
{
"category": "self",
"summary": "SUSE Bug 1235241",
"url": "https://bugzilla.suse.com/1235241"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235249",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "self",
"summary": "SUSE Bug 1235251",
"url": "https://bugzilla.suse.com/1235251"
},
{
"category": "self",
"summary": "SUSE Bug 1235252",
"url": "https://bugzilla.suse.com/1235252"
},
{
"category": "self",
"summary": "SUSE Bug 1235389",
"url": "https://bugzilla.suse.com/1235389"
},
{
"category": "self",
"summary": "SUSE Bug 1235391",
"url": "https://bugzilla.suse.com/1235391"
},
{
"category": "self",
"summary": "SUSE Bug 1235406",
"url": "https://bugzilla.suse.com/1235406"
},
{
"category": "self",
"summary": "SUSE Bug 1235409",
"url": "https://bugzilla.suse.com/1235409"
},
{
"category": "self",
"summary": "SUSE Bug 1235410",
"url": "https://bugzilla.suse.com/1235410"
},
{
"category": "self",
"summary": "SUSE Bug 1235412",
"url": "https://bugzilla.suse.com/1235412"
},
{
"category": "self",
"summary": "SUSE Bug 1235413",
"url": "https://bugzilla.suse.com/1235413"
},
{
"category": "self",
"summary": "SUSE Bug 1235415",
"url": "https://bugzilla.suse.com/1235415"
},
{
"category": "self",
"summary": "SUSE Bug 1235416",
"url": "https://bugzilla.suse.com/1235416"
},
{
"category": "self",
"summary": "SUSE Bug 1235417",
"url": "https://bugzilla.suse.com/1235417"
},
{
"category": "self",
"summary": "SUSE Bug 1235423",
"url": "https://bugzilla.suse.com/1235423"
},
{
"category": "self",
"summary": "SUSE Bug 1235424",
"url": "https://bugzilla.suse.com/1235424"
},
{
"category": "self",
"summary": "SUSE Bug 1235425",
"url": "https://bugzilla.suse.com/1235425"
},
{
"category": "self",
"summary": "SUSE Bug 1235426",
"url": "https://bugzilla.suse.com/1235426"
},
{
"category": "self",
"summary": "SUSE Bug 1235427",
"url": "https://bugzilla.suse.com/1235427"
},
{
"category": "self",
"summary": "SUSE Bug 1235428",
"url": "https://bugzilla.suse.com/1235428"
},
{
"category": "self",
"summary": "SUSE Bug 1235429",
"url": "https://bugzilla.suse.com/1235429"
},
{
"category": "self",
"summary": "SUSE Bug 1235433",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "self",
"summary": "SUSE Bug 1235437",
"url": "https://bugzilla.suse.com/1235437"
},
{
"category": "self",
"summary": "SUSE Bug 1235439",
"url": "https://bugzilla.suse.com/1235439"
},
{
"category": "self",
"summary": "SUSE Bug 1235444",
"url": "https://bugzilla.suse.com/1235444"
},
{
"category": "self",
"summary": "SUSE Bug 1235445",
"url": "https://bugzilla.suse.com/1235445"
},
{
"category": "self",
"summary": "SUSE Bug 1235449",
"url": "https://bugzilla.suse.com/1235449"
},
{
"category": "self",
"summary": "SUSE Bug 1235451",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "self",
"summary": "SUSE Bug 1235454",
"url": "https://bugzilla.suse.com/1235454"
},
{
"category": "self",
"summary": "SUSE Bug 1235458",
"url": "https://bugzilla.suse.com/1235458"
},
{
"category": "self",
"summary": "SUSE Bug 1235459",
"url": "https://bugzilla.suse.com/1235459"
},
{
"category": "self",
"summary": "SUSE Bug 1235464",
"url": "https://bugzilla.suse.com/1235464"
},
{
"category": "self",
"summary": "SUSE Bug 1235466",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "self",
"summary": "SUSE Bug 1235473",
"url": "https://bugzilla.suse.com/1235473"
},
{
"category": "self",
"summary": "SUSE Bug 1235479",
"url": "https://bugzilla.suse.com/1235479"
},
{
"category": "self",
"summary": "SUSE Bug 1235480",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "self",
"summary": "SUSE Bug 1235483",
"url": "https://bugzilla.suse.com/1235483"
},
{
"category": "self",
"summary": "SUSE Bug 1235486",
"url": "https://bugzilla.suse.com/1235486"
},
{
"category": "self",
"summary": "SUSE Bug 1235488",
"url": "https://bugzilla.suse.com/1235488"
},
{
"category": "self",
"summary": "SUSE Bug 1235491",
"url": "https://bugzilla.suse.com/1235491"
},
{
"category": "self",
"summary": "SUSE Bug 1235494",
"url": "https://bugzilla.suse.com/1235494"
},
{
"category": "self",
"summary": "SUSE Bug 1235495",
"url": "https://bugzilla.suse.com/1235495"
},
{
"category": "self",
"summary": "SUSE Bug 1235496",
"url": "https://bugzilla.suse.com/1235496"
},
{
"category": "self",
"summary": "SUSE Bug 1235497",
"url": "https://bugzilla.suse.com/1235497"
},
{
"category": "self",
"summary": "SUSE Bug 1235500",
"url": "https://bugzilla.suse.com/1235500"
},
{
"category": "self",
"summary": "SUSE Bug 1235502",
"url": "https://bugzilla.suse.com/1235502"
},
{
"category": "self",
"summary": "SUSE Bug 1235503",
"url": "https://bugzilla.suse.com/1235503"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE Bug 1235519",
"url": "https://bugzilla.suse.com/1235519"
},
{
"category": "self",
"summary": "SUSE Bug 1235520",
"url": "https://bugzilla.suse.com/1235520"
},
{
"category": "self",
"summary": "SUSE Bug 1235521",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "self",
"summary": "SUSE Bug 1235523",
"url": "https://bugzilla.suse.com/1235523"
},
{
"category": "self",
"summary": "SUSE Bug 1235526",
"url": "https://bugzilla.suse.com/1235526"
},
{
"category": "self",
"summary": "SUSE Bug 1235528",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "self",
"summary": "SUSE Bug 1235532",
"url": "https://bugzilla.suse.com/1235532"
},
{
"category": "self",
"summary": "SUSE Bug 1235533",
"url": "https://bugzilla.suse.com/1235533"
},
{
"category": "self",
"summary": "SUSE Bug 1235534",
"url": "https://bugzilla.suse.com/1235534"
},
{
"category": "self",
"summary": "SUSE Bug 1235537",
"url": "https://bugzilla.suse.com/1235537"
},
{
"category": "self",
"summary": "SUSE Bug 1235538",
"url": "https://bugzilla.suse.com/1235538"
},
{
"category": "self",
"summary": "SUSE Bug 1235550",
"url": "https://bugzilla.suse.com/1235550"
},
{
"category": "self",
"summary": "SUSE Bug 1235552",
"url": "https://bugzilla.suse.com/1235552"
},
{
"category": "self",
"summary": "SUSE Bug 1235555",
"url": "https://bugzilla.suse.com/1235555"
},
{
"category": "self",
"summary": "SUSE Bug 1235557",
"url": "https://bugzilla.suse.com/1235557"
},
{
"category": "self",
"summary": "SUSE Bug 1235563",
"url": "https://bugzilla.suse.com/1235563"
},
{
"category": "self",
"summary": "SUSE Bug 1235564",
"url": "https://bugzilla.suse.com/1235564"
},
{
"category": "self",
"summary": "SUSE Bug 1235565",
"url": "https://bugzilla.suse.com/1235565"
},
{
"category": "self",
"summary": "SUSE Bug 1235568",
"url": "https://bugzilla.suse.com/1235568"
},
{
"category": "self",
"summary": "SUSE Bug 1235570",
"url": "https://bugzilla.suse.com/1235570"
},
{
"category": "self",
"summary": "SUSE Bug 1235571",
"url": "https://bugzilla.suse.com/1235571"
},
{
"category": "self",
"summary": "SUSE Bug 1235577",
"url": "https://bugzilla.suse.com/1235577"
},
{
"category": "self",
"summary": "SUSE Bug 1235584",
"url": "https://bugzilla.suse.com/1235584"
},
{
"category": "self",
"summary": "SUSE Bug 1235587",
"url": "https://bugzilla.suse.com/1235587"
},
{
"category": "self",
"summary": "SUSE Bug 1235611",
"url": "https://bugzilla.suse.com/1235611"
},
{
"category": "self",
"summary": "SUSE Bug 1235616",
"url": "https://bugzilla.suse.com/1235616"
},
{
"category": "self",
"summary": "SUSE Bug 1235622",
"url": "https://bugzilla.suse.com/1235622"
},
{
"category": "self",
"summary": "SUSE Bug 1235627",
"url": "https://bugzilla.suse.com/1235627"
},
{
"category": "self",
"summary": "SUSE Bug 1235632",
"url": "https://bugzilla.suse.com/1235632"
},
{
"category": "self",
"summary": "SUSE Bug 1235635",
"url": "https://bugzilla.suse.com/1235635"
},
{
"category": "self",
"summary": "SUSE Bug 1235641",
"url": "https://bugzilla.suse.com/1235641"
},
{
"category": "self",
"summary": "SUSE Bug 1235643",
"url": "https://bugzilla.suse.com/1235643"
},
{
"category": "self",
"summary": "SUSE Bug 1235645",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "self",
"summary": "SUSE Bug 1235646",
"url": "https://bugzilla.suse.com/1235646"
},
{
"category": "self",
"summary": "SUSE Bug 1235647",
"url": "https://bugzilla.suse.com/1235647"
},
{
"category": "self",
"summary": "SUSE Bug 1235650",
"url": "https://bugzilla.suse.com/1235650"
},
{
"category": "self",
"summary": "SUSE Bug 1235653",
"url": "https://bugzilla.suse.com/1235653"
},
{
"category": "self",
"summary": "SUSE Bug 1235657",
"url": "https://bugzilla.suse.com/1235657"
},
{
"category": "self",
"summary": "SUSE Bug 1235663",
"url": "https://bugzilla.suse.com/1235663"
},
{
"category": "self",
"summary": "SUSE Bug 1235700",
"url": "https://bugzilla.suse.com/1235700"
},
{
"category": "self",
"summary": "SUSE Bug 1235705",
"url": "https://bugzilla.suse.com/1235705"
},
{
"category": "self",
"summary": "SUSE Bug 1235707",
"url": "https://bugzilla.suse.com/1235707"
},
{
"category": "self",
"summary": "SUSE Bug 1235708",
"url": "https://bugzilla.suse.com/1235708"
},
{
"category": "self",
"summary": "SUSE Bug 1235710",
"url": "https://bugzilla.suse.com/1235710"
},
{
"category": "self",
"summary": "SUSE Bug 1235714",
"url": "https://bugzilla.suse.com/1235714"
},
{
"category": "self",
"summary": "SUSE Bug 1235716",
"url": "https://bugzilla.suse.com/1235716"
},
{
"category": "self",
"summary": "SUSE Bug 1235720",
"url": "https://bugzilla.suse.com/1235720"
},
{
"category": "self",
"summary": "SUSE Bug 1235723",
"url": "https://bugzilla.suse.com/1235723"
},
{
"category": "self",
"summary": "SUSE Bug 1235727",
"url": "https://bugzilla.suse.com/1235727"
},
{
"category": "self",
"summary": "SUSE Bug 1235730",
"url": "https://bugzilla.suse.com/1235730"
},
{
"category": "self",
"summary": "SUSE Bug 1235737",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "self",
"summary": "SUSE Bug 1235739",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "self",
"summary": "SUSE Bug 1235745",
"url": "https://bugzilla.suse.com/1235745"
},
{
"category": "self",
"summary": "SUSE Bug 1235747",
"url": "https://bugzilla.suse.com/1235747"
},
{
"category": "self",
"summary": "SUSE Bug 1235750",
"url": "https://bugzilla.suse.com/1235750"
},
{
"category": "self",
"summary": "SUSE Bug 1235753",
"url": "https://bugzilla.suse.com/1235753"
},
{
"category": "self",
"summary": "SUSE Bug 1235759",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "self",
"summary": "SUSE Bug 1235764",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "self",
"summary": "SUSE Bug 1235768",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "self",
"summary": "SUSE Bug 1235776",
"url": "https://bugzilla.suse.com/1235776"
},
{
"category": "self",
"summary": "SUSE Bug 1235777",
"url": "https://bugzilla.suse.com/1235777"
},
{
"category": "self",
"summary": "SUSE Bug 1235778",
"url": "https://bugzilla.suse.com/1235778"
},
{
"category": "self",
"summary": "SUSE Bug 1235779",
"url": "https://bugzilla.suse.com/1235779"
},
{
"category": "self",
"summary": "SUSE Bug 1235793",
"url": "https://bugzilla.suse.com/1235793"
},
{
"category": "self",
"summary": "SUSE Bug 1235798",
"url": "https://bugzilla.suse.com/1235798"
},
{
"category": "self",
"summary": "SUSE Bug 1235806",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "self",
"summary": "SUSE Bug 1235808",
"url": "https://bugzilla.suse.com/1235808"
},
{
"category": "self",
"summary": "SUSE Bug 1235812",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "self",
"summary": "SUSE Bug 1235814",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "self",
"summary": "SUSE Bug 1235818",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "self",
"summary": "SUSE Bug 1235842",
"url": "https://bugzilla.suse.com/1235842"
},
{
"category": "self",
"summary": "SUSE Bug 1235894",
"url": "https://bugzilla.suse.com/1235894"
},
{
"category": "self",
"summary": "SUSE Bug 1235902",
"url": "https://bugzilla.suse.com/1235902"
},
{
"category": "self",
"summary": "SUSE Bug 1235903",
"url": "https://bugzilla.suse.com/1235903"
},
{
"category": "self",
"summary": "SUSE Bug 1235906",
"url": "https://bugzilla.suse.com/1235906"
},
{
"category": "self",
"summary": "SUSE Bug 1235918",
"url": "https://bugzilla.suse.com/1235918"
},
{
"category": "self",
"summary": "SUSE Bug 1235919",
"url": "https://bugzilla.suse.com/1235919"
},
{
"category": "self",
"summary": "SUSE Bug 1235920",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "self",
"summary": "SUSE Bug 1235924",
"url": "https://bugzilla.suse.com/1235924"
},
{
"category": "self",
"summary": "SUSE Bug 1235940",
"url": "https://bugzilla.suse.com/1235940"
},
{
"category": "self",
"summary": "SUSE Bug 1235946",
"url": "https://bugzilla.suse.com/1235946"
},
{
"category": "self",
"summary": "SUSE Bug 1235952",
"url": "https://bugzilla.suse.com/1235952"
},
{
"category": "self",
"summary": "SUSE Bug 1235964",
"url": "https://bugzilla.suse.com/1235964"
},
{
"category": "self",
"summary": "SUSE Bug 1235965",
"url": "https://bugzilla.suse.com/1235965"
},
{
"category": "self",
"summary": "SUSE Bug 1235967",
"url": "https://bugzilla.suse.com/1235967"
},
{
"category": "self",
"summary": "SUSE Bug 1235969",
"url": "https://bugzilla.suse.com/1235969"
},
{
"category": "self",
"summary": "SUSE Bug 1235976",
"url": "https://bugzilla.suse.com/1235976"
},
{
"category": "self",
"summary": "SUSE Bug 1235977",
"url": "https://bugzilla.suse.com/1235977"
},
{
"category": "self",
"summary": "SUSE Bug 1236078",
"url": "https://bugzilla.suse.com/1236078"
},
{
"category": "self",
"summary": "SUSE Bug 1236080",
"url": "https://bugzilla.suse.com/1236080"
},
{
"category": "self",
"summary": "SUSE Bug 1236082",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "self",
"summary": "SUSE Bug 1236088",
"url": "https://bugzilla.suse.com/1236088"
},
{
"category": "self",
"summary": "SUSE Bug 1236090",
"url": "https://bugzilla.suse.com/1236090"
},
{
"category": "self",
"summary": "SUSE Bug 1236091",
"url": "https://bugzilla.suse.com/1236091"
},
{
"category": "self",
"summary": "SUSE Bug 1236096",
"url": "https://bugzilla.suse.com/1236096"
},
{
"category": "self",
"summary": "SUSE Bug 1236097",
"url": "https://bugzilla.suse.com/1236097"
},
{
"category": "self",
"summary": "SUSE Bug 1236098",
"url": "https://bugzilla.suse.com/1236098"
},
{
"category": "self",
"summary": "SUSE Bug 1236101",
"url": "https://bugzilla.suse.com/1236101"
},
{
"category": "self",
"summary": "SUSE Bug 1236102",
"url": "https://bugzilla.suse.com/1236102"
},
{
"category": "self",
"summary": "SUSE Bug 1236104",
"url": "https://bugzilla.suse.com/1236104"
},
{
"category": "self",
"summary": "SUSE Bug 1236106",
"url": "https://bugzilla.suse.com/1236106"
},
{
"category": "self",
"summary": "SUSE Bug 1236120",
"url": "https://bugzilla.suse.com/1236120"
},
{
"category": "self",
"summary": "SUSE Bug 1236125",
"url": "https://bugzilla.suse.com/1236125"
},
{
"category": "self",
"summary": "SUSE Bug 1236131",
"url": "https://bugzilla.suse.com/1236131"
},
{
"category": "self",
"summary": "SUSE Bug 1236138",
"url": "https://bugzilla.suse.com/1236138"
},
{
"category": "self",
"summary": "SUSE Bug 1236143",
"url": "https://bugzilla.suse.com/1236143"
},
{
"category": "self",
"summary": "SUSE Bug 1236144",
"url": "https://bugzilla.suse.com/1236144"
},
{
"category": "self",
"summary": "SUSE Bug 1236145",
"url": "https://bugzilla.suse.com/1236145"
},
{
"category": "self",
"summary": "SUSE Bug 1236168",
"url": "https://bugzilla.suse.com/1236168"
},
{
"category": "self",
"summary": "SUSE Bug 1236178",
"url": "https://bugzilla.suse.com/1236178"
},
{
"category": "self",
"summary": "SUSE Bug 1236180",
"url": "https://bugzilla.suse.com/1236180"
},
{
"category": "self",
"summary": "SUSE Bug 1236181",
"url": "https://bugzilla.suse.com/1236181"
},
{
"category": "self",
"summary": "SUSE Bug 1236190",
"url": "https://bugzilla.suse.com/1236190"
},
{
"category": "self",
"summary": "SUSE Bug 1236198",
"url": "https://bugzilla.suse.com/1236198"
},
{
"category": "self",
"summary": "SUSE Bug 1236227",
"url": "https://bugzilla.suse.com/1236227"
},
{
"category": "self",
"summary": "SUSE Bug 1236248",
"url": "https://bugzilla.suse.com/1236248"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52489 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52489/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52923 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27397 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27397/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35839 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36476 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36476/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39282 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39480 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39480/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46680 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46765 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46800 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48873 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50051 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50106 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50199 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50199/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50252 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50272 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50279 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50296 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50299 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52332 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53043 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53043/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53050 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53051 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53055 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53056 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53056/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53091 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53110 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53121 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53138 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53164 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53168 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53169 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53170 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53172 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53175 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53175/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53185 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53194 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53195 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53196 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53197 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53227 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53230 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53231 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53233 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53236 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-54680 page",
"url": "https://www.suse.com/security/cve/CVE-2024-54680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55639 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55639/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56369 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56372 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56531 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56531/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56532 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56532/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56533 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56533/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56536 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56543 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56546 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56546/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56557 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56557/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56558 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56562 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56566 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56568 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56571 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56572 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56573 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56573/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56574 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56574/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56575 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56576 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56577 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56578 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56578/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56582 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56584 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56584/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56587 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56587/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56588 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56589 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56590 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56593 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56593/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56594 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56595 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56597 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-5660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-5660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56602 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56603 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56606 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56607 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56609 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56609/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56611 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56611/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56614 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56615 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56616 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56617 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56617/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56620 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56622 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56622/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56623 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56625 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56625/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56629 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56629/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56630 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56630/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56631 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56631/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56634 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56634/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56635 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56635/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56636 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56636/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56637 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56637/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56641 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56642 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56642/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56643 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56643/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56644 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56645 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56648 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56648/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56649 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56651 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56654 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56654/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56656 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56662 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56663 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56664 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56670 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56681 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56683 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56688 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56698 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56700 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56700/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56701 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56704 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56705 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56708 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56712 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56748 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56765 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56766 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56769 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56769/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56775 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56777 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56779 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57792 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57793 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57795 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57801 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57838 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57849 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57874 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57876 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57892 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57899 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57910 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57910/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57926 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57926/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57929 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57933 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57936 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21632 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21645 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21646 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21646/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21649 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21650 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21650/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21651 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21656 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21662 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21662/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-01-29T16:11:29Z",
"generator": {
"date": "2025-01-29T16:11:29Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0289-1",
"initial_release_date": "2025-01-29T16:11:29Z",
"revision_history": [
{
"date": "2025-01-29T16:11:29Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"product": {
"name": "kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"product_id": "kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"product": {
"name": "kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"product_id": "kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "cluster-md-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "cluster-md-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "dlm-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "dlm-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "gfs2-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "gfs2-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-extra-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-extra-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-coco-extra-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-livepatch-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-livepatch-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-coco-livepatch-devel-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-optional-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-optional-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-coco-optional-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-vdso-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-vdso-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-coco-vdso-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco_debug-vdso-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco_debug-vdso-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-coco_debug-vdso-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "kselftests-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "kselftests-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "ocfs2-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "ocfs2-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product": {
"name": "reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"product_id": "reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-confidential-computing:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
},
"product_reference": "kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64"
},
"product_reference": "kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64"
},
"product_reference": "kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64"
},
"product_reference": "kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch"
},
"product_reference": "kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch"
},
"product_reference": "kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
},
"product_reference": "kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
},
"product_reference": "reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52489",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52489"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/sparsemem: fix race in accessing memory_section-\u003eusage\n\nThe below race is observed on a PFN which falls into the device memory\nregion with the system memory configuration where PFN\u0027s are such that\n[ZONE_NORMAL ZONE_DEVICE ZONE_NORMAL]. Since normal zone start and end\npfn contains the device memory PFN\u0027s as well, the compaction triggered\nwill try on the device memory PFN\u0027s too though they end up in NOP(because\npfn_to_online_page() returns NULL for ZONE_DEVICE memory sections). When\nfrom other core, the section mappings are being removed for the\nZONE_DEVICE region, that the PFN in question belongs to, on which\ncompaction is currently being operated is resulting into the kernel crash\nwith CONFIG_SPASEMEM_VMEMAP enabled. The crash logs can be seen at [1].\n\ncompact_zone()\t\t\tmemunmap_pages\n-------------\t\t\t---------------\n__pageblock_pfn_to_page\n ......\n (a)pfn_valid():\n valid_section()//return true\n\t\t\t (b)__remove_pages()-\u003e\n\t\t\t\t sparse_remove_section()-\u003e\n\t\t\t\t section_deactivate():\n\t\t\t\t [Free the array ms-\u003eusage and set\n\t\t\t\t ms-\u003eusage = NULL]\n pfn_section_valid()\n [Access ms-\u003eusage which\n is NULL]\n\nNOTE: From the above it can be said that the race is reduced to between\nthe pfn_valid()/pfn_section_valid() and the section deactivate with\nSPASEMEM_VMEMAP enabled.\n\nThe commit b943f045a9af(\"mm/sparse: fix kernel crash with\npfn_section_valid check\") tried to address the same problem by clearing\nthe SECTION_HAS_MEM_MAP with the expectation of valid_section() returns\nfalse thus ms-\u003eusage is not accessed.\n\nFix this issue by the below steps:\n\na) Clear SECTION_HAS_MEM_MAP before freeing the -\u003eusage.\n\nb) RCU protected read side critical section will either return NULL\n when SECTION_HAS_MEM_MAP is cleared or can successfully access -\u003eusage.\n\nc) Free the -\u003eusage with kfree_rcu() and set ms-\u003eusage = NULL. No\n attempt will be made to access -\u003eusage after this as the\n SECTION_HAS_MEM_MAP is cleared thus valid_section() return false.\n\nThanks to David/Pavan for their inputs on this patch.\n\n[1] https://lore.kernel.org/linux-mm/994410bb-89aa-d987-1f50-f514903c55aa@quicinc.com/\n\nOn Snapdragon SoC, with the mentioned memory configuration of PFN\u0027s as\n[ZONE_NORMAL ZONE_DEVICE ZONE_NORMAL], we are able to see bunch of\nissues daily while testing on a device farm.\n\nFor this particular issue below is the log. Though the below log is\nnot directly pointing to the pfn_section_valid(){ ms-\u003eusage;}, when we\nloaded this dump on T32 lauterbach tool, it is pointing.\n\n[ 540.578056] Unable to handle kernel NULL pointer dereference at\nvirtual address 0000000000000000\n[ 540.578068] Mem abort info:\n[ 540.578070] ESR = 0x0000000096000005\n[ 540.578073] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 540.578077] SET = 0, FnV = 0\n[ 540.578080] EA = 0, S1PTW = 0\n[ 540.578082] FSC = 0x05: level 1 translation fault\n[ 540.578085] Data abort info:\n[ 540.578086] ISV = 0, ISS = 0x00000005\n[ 540.578088] CM = 0, WnR = 0\n[ 540.579431] pstate: 82400005 (Nzcv daif +PAN -UAO +TCO -DIT -SSBSBTYPE=--)\n[ 540.579436] pc : __pageblock_pfn_to_page+0x6c/0x14c\n[ 540.579454] lr : compact_zone+0x994/0x1058\n[ 540.579460] sp : ffffffc03579b510\n[ 540.579463] x29: ffffffc03579b510 x28: 0000000000235800 x27:000000000000000c\n[ 540.579470] x26: 0000000000235c00 x25: 0000000000000068 x24:ffffffc03579b640\n[ 540.579477] x23: 0000000000000001 x22: ffffffc03579b660 x21:0000000000000000\n[ 540.579483] x20: 0000000000235bff x19: ffffffdebf7e3940 x18:ffffffdebf66d140\n[ 540.579489] x17: 00000000739ba063 x16: 00000000739ba063 x15:00000000009f4bff\n[ 540.579495] x14: 0000008000000000 x13: 0000000000000000 x12:0000000000000001\n[ 540.579501] x11: 0000000000000000 x10: 0000000000000000 x9 :ffffff897d2cd440\n[ 540.579507] x8 : 0000000000000000 x7 : 0000000000000000 x6 :ffffffc03579b5b4\n[ 540.579512] x5 : 0000000000027f25 x4 : ffffffc03579b5b8 x3 :0000000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52489",
"url": "https://www.suse.com/security/cve/CVE-2023-52489"
},
{
"category": "external",
"summary": "SUSE Bug 1221326 for CVE-2023-52489",
"url": "https://bugzilla.suse.com/1221326"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2023-52489"
},
{
"cve": "CVE-2023-52923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: adapt set backend to use GC transaction API\n\nUse the GC transaction API to replace the old and buggy gc API and the\nbusy mark approach.\n\nNo set elements are removed from async garbage collection anymore,\ninstead the _DEAD bit is set on so the set element is not visible from\nlookup path anymore. Async GC enqueues transaction work that might be\naborted and retried later.\n\nrbtree and pipapo set backends does not set on the _DEAD bit from the\nsync GC path since this runs in control plane path where mutex is held.\nIn this case, set elements are deactivated, removed and then released\nvia RCU callback, sync GC never fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52923",
"url": "https://www.suse.com/security/cve/CVE-2023-52923"
},
{
"category": "external",
"summary": "SUSE Bug 1236104 for CVE-2023-52923",
"url": "https://bugzilla.suse.com/1236104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2023-52923"
},
{
"cve": "CVE-2024-26596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: fix netdev_priv() dereference before check on non-DSA netdevice events\n\nAfter the blamed commit, we started doing this dereference for every\nNETDEV_CHANGEUPPER and NETDEV_PRECHANGEUPPER event in the system.\n\nstatic inline struct dsa_port *dsa_user_to_port(const struct net_device *dev)\n{\n\tstruct dsa_user_priv *p = netdev_priv(dev);\n\n\treturn p-\u003edp;\n}\n\nWhich is obviously bogus, because not all net_devices have a netdev_priv()\nof type struct dsa_user_priv. But struct dsa_user_priv is fairly small,\nand p-\u003edp means dereferencing 8 bytes starting with offset 16. Most\ndrivers allocate that much private memory anyway, making our access not\nfault, and we discard the bogus data quickly afterwards, so this wasn\u0027t\ncaught.\n\nBut the dummy interface is somewhat special in that it calls\nalloc_netdev() with a priv size of 0. So every netdev_priv() dereference\nis invalid, and we get this when we emit a NETDEV_PRECHANGEUPPER event\nwith a VLAN as its new upper:\n\n$ ip link add dummy1 type dummy\n$ ip link add link dummy1 name dummy1.100 type vlan id 100\n[ 43.309174] ==================================================================\n[ 43.316456] BUG: KASAN: slab-out-of-bounds in dsa_user_prechangeupper+0x30/0xe8\n[ 43.323835] Read of size 8 at addr ffff3f86481d2990 by task ip/374\n[ 43.330058]\n[ 43.342436] Call trace:\n[ 43.366542] dsa_user_prechangeupper+0x30/0xe8\n[ 43.371024] dsa_user_netdevice_event+0xb38/0xee8\n[ 43.375768] notifier_call_chain+0xa4/0x210\n[ 43.379985] raw_notifier_call_chain+0x24/0x38\n[ 43.384464] __netdev_upper_dev_link+0x3ec/0x5d8\n[ 43.389120] netdev_upper_dev_link+0x70/0xa8\n[ 43.393424] register_vlan_dev+0x1bc/0x310\n[ 43.397554] vlan_newlink+0x210/0x248\n[ 43.401247] rtnl_newlink+0x9fc/0xe30\n[ 43.404942] rtnetlink_rcv_msg+0x378/0x580\n\nAvoid the kernel oops by dereferencing after the type check, as customary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26596",
"url": "https://www.suse.com/security/cve/CVE-2024-26596"
},
{
"category": "external",
"summary": "SUSE Bug 1220355 for CVE-2024-26596",
"url": "https://bugzilla.suse.com/1220355"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-26596"
},
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-27397",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27397"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: use timestamp to check for set element timeout\n\nAdd a timestamp field at the beginning of the transaction, store it\nin the nftables per-netns area.\n\nUpdate set backend .insert, .deactivate and sync gc path to use the\ntimestamp, this avoids that an element expires while control plane\ntransaction is still unfinished.\n\n.lookup and .update, which are used from packet path, still use the\ncurrent time to check if the element has expired. And .get path and dump\nalso since this runs lockless under rcu read size lock. Then, there is\nasync gc which also needs to check the current time since it runs\nasynchronously from a workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27397",
"url": "https://www.suse.com/security/cve/CVE-2024-27397"
},
{
"category": "external",
"summary": "SUSE Bug 1224095 for CVE-2024-27397",
"url": "https://bugzilla.suse.com/1224095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-27397"
},
{
"cve": "CVE-2024-35839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bridge: replace physindev with physinif in nf_bridge_info\n\nAn skb can be added to a neigh-\u003earp_queue while waiting for an arp\nreply. Where original skb\u0027s skb-\u003edev can be different to neigh\u0027s\nneigh-\u003edev. For instance in case of bridging dnated skb from one veth to\nanother, the skb would be added to a neigh-\u003earp_queue of the bridge.\n\nAs skb-\u003edev can be reset back to nf_bridge-\u003ephysindev and used, and as\nthere is no explicit mechanism that prevents this physindev from been\nfreed under us (for instance neigh_flush_dev doesn\u0027t cleanup skbs from\ndifferent device\u0027s neigh queue) we can crash on e.g. this stack:\n\narp_process\n neigh_update\n skb = __skb_dequeue(\u0026neigh-\u003earp_queue)\n neigh_resolve_output(..., skb)\n ...\n br_nf_dev_xmit\n br_nf_pre_routing_finish_bridge_slow\n skb-\u003edev = nf_bridge-\u003ephysindev\n br_handle_frame_finish\n\nLet\u0027s use plain ifindex instead of net_device link. To peek into the\noriginal net_device we will use dev_get_by_index_rcu(). Thus either we\nget device and are safe to use it or we don\u0027t get it and drop skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35839",
"url": "https://www.suse.com/security/cve/CVE-2024-35839"
},
{
"category": "external",
"summary": "SUSE Bug 1224726 for CVE-2024-35839",
"url": "https://bugzilla.suse.com/1224726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-35839"
},
{
"cve": "CVE-2024-36476",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36476"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible\n\nMove the declaration of the \u0027ib_sge list\u0027 variable outside the\n\u0027always_invalidate\u0027 block to ensure it remains accessible for use\nthroughout the function.\n\nPreviously, \u0027ib_sge list\u0027 was declared within the \u0027always_invalidate\u0027\nblock, limiting its accessibility, then caused a\n\u0027BUG: kernel NULL pointer dereference\u0027[1].\n ? __die_body.cold+0x19/0x27\n ? page_fault_oops+0x15a/0x2d0\n ? search_module_extables+0x19/0x60\n ? search_bpf_extables+0x5f/0x80\n ? exc_page_fault+0x7e/0x180\n ? asm_exc_page_fault+0x26/0x30\n ? memcpy_orig+0xd5/0x140\n rxe_mr_copy+0x1c3/0x200 [rdma_rxe]\n ? rxe_pool_get_index+0x4b/0x80 [rdma_rxe]\n copy_data+0xa5/0x230 [rdma_rxe]\n rxe_requester+0xd9b/0xf70 [rdma_rxe]\n ? finish_task_switch.isra.0+0x99/0x2e0\n rxe_sender+0x13/0x40 [rdma_rxe]\n do_task+0x68/0x1e0 [rdma_rxe]\n process_one_work+0x177/0x330\n worker_thread+0x252/0x390\n ? __pfx_worker_thread+0x10/0x10\n\nThis change ensures the variable is available for subsequent operations\nthat require it.\n\n[1] https://lore.kernel.org/linux-rdma/6a1f3e8f-deb0-49f9-bc69-a9b03ecfcda7@fujitsu.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36476",
"url": "https://www.suse.com/security/cve/CVE-2024-36476"
},
{
"category": "external",
"summary": "SUSE Bug 1235902 for CVE-2024-36476",
"url": "https://bugzilla.suse.com/1235902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-36476"
},
{
"cve": "CVE-2024-36908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-iocost: do not WARN if iocg was already offlined\n\nIn iocg_pay_debt(), warn is triggered if \u0027active_list\u0027 is empty, which\nis intended to confirm iocg is active when it has debt. However, warn\ncan be triggered during a blkcg or disk removal, if iocg_waitq_timer_fn()\nis run at that time:\n\n WARNING: CPU: 0 PID: 2344971 at block/blk-iocost.c:1402 iocg_pay_debt+0x14c/0x190\n Call trace:\n iocg_pay_debt+0x14c/0x190\n iocg_kick_waitq+0x438/0x4c0\n iocg_waitq_timer_fn+0xd8/0x130\n __run_hrtimer+0x144/0x45c\n __hrtimer_run_queues+0x16c/0x244\n hrtimer_interrupt+0x2cc/0x7b0\n\nThe warn in this situation is meaningless. Since this iocg is being\nremoved, the state of the \u0027active_list\u0027 is irrelevant, and \u0027waitq_timer\u0027\nis canceled after removing \u0027active_list\u0027 in ioc_pd_free(), which ensures\niocg is freed after iocg_waitq_timer_fn() returns.\n\nTherefore, add the check if iocg was already offlined to avoid warn\nwhen removing a blkcg or disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36908",
"url": "https://www.suse.com/security/cve/CVE-2024-36908"
},
{
"category": "external",
"summary": "SUSE Bug 1225743 for CVE-2024-36908",
"url": "https://bugzilla.suse.com/1225743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-36908"
},
{
"cve": "CVE-2024-36915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: llcp: fix nfc_llcp_setsockopt() unsafe copies\n\nsyzbot reported unsafe calls to copy_from_sockptr() [1]\n\nUse copy_safe_from_sockptr() instead.\n\n[1]\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\nRead of size 4 at addr ffff88801caa1ec3 by task syz-executor459/5078\n\nCPU: 0 PID: 5078 Comm: syz-executor459 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\n do_sock_setsockopt+0x3b1/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfd/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7f7fac07fd89\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff660eb788 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7fac07fd89\nRDX: 0000000000000000 RSI: 0000000000000118 RDI: 0000000000000004\nRBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020000a80 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36915",
"url": "https://www.suse.com/security/cve/CVE-2024-36915"
},
{
"category": "external",
"summary": "SUSE Bug 1225758 for CVE-2024-36915",
"url": "https://bugzilla.suse.com/1225758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-36915"
},
{
"cve": "CVE-2024-39282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: t7xx: Fix FSM command timeout issue\n\nWhen driver processes the internal state change command, it use an\nasynchronous thread to process the command operation. If the main\nthread detects that the task has timed out, the asynchronous thread\nwill panic when executing the completion notification because the\nmain thread completion object has been released.\n\nBUG: unable to handle page fault for address: fffffffffffffff8\nPGD 1f283a067 P4D 1f283a067 PUD 1f283c067 PMD 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nRIP: 0010:complete_all+0x3e/0xa0\n[...]\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x68/0xb0\n ? page_fault_oops+0x379/0x3e0\n ? exc_page_fault+0x69/0xa0\n ? asm_exc_page_fault+0x22/0x30\n ? complete_all+0x3e/0xa0\n fsm_main_thread+0xa3/0x9c0 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_autoremove_wake_function+0x10/0x10\n kthread+0xd8/0x110\n ? __pfx_fsm_main_thread+0x10/0x10 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x38/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n[...]\nCR2: fffffffffffffff8\n---[ end trace 0000000000000000 ]---\n\nUse the reference counter to ensure safe release as Sergey suggests:\nhttps://lore.kernel.org/all/da90f64c-260a-4329-87bf-1f9ff20a5951@gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39282",
"url": "https://www.suse.com/security/cve/CVE-2024-39282"
},
{
"category": "external",
"summary": "SUSE Bug 1235903 for CVE-2024-39282",
"url": "https://bugzilla.suse.com/1235903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-39282"
},
{
"cve": "CVE-2024-39480",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39480"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkdb: Fix buffer overflow during tab-complete\n\nCurrently, when the user attempts symbol completion with the Tab key, kdb\nwill use strncpy() to insert the completed symbol into the command buffer.\nUnfortunately it passes the size of the source buffer rather than the\ndestination to strncpy() with predictably horrible results. Most obviously\nif the command buffer is already full but cp, the cursor position, is in\nthe middle of the buffer, then we will write past the end of the supplied\nbuffer.\n\nFix this by replacing the dubious strncpy() calls with memmove()/memcpy()\ncalls plus explicit boundary checks to make sure we have enough space\nbefore we start moving characters around.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39480",
"url": "https://www.suse.com/security/cve/CVE-2024-39480"
},
{
"category": "external",
"summary": "SUSE Bug 1227445 for CVE-2024-39480",
"url": "https://bugzilla.suse.com/1227445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-39480"
},
{
"cve": "CVE-2024-41042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prefer nft_chain_validate\n\nnft_chain_validate already performs loop detection because a cycle will\nresult in a call stack overflow (ctx-\u003elevel \u003e= NFT_JUMP_STACK_SIZE).\n\nIt also follows maps via -\u003evalidate callback in nft_lookup, so there\nappears no reason to iterate the maps again.\n\nnf_tables_check_loops() and all its helper functions can be removed.\nThis improves ruleset load time significantly, from 23s down to 12s.\n\nThis also fixes a crash bug. Old loop detection code can result in\nunbounded recursion:\n\nBUG: TASK stack guard page was hit at ....\nOops: stack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 4 PID: 1539 Comm: nft Not tainted 6.10.0-rc5+ #1\n[..]\n\nwith a suitable ruleset during validation of register stores.\n\nI can\u0027t see any actual reason to attempt to check for this from\nnft_validate_register_store(), at this point the transaction is still in\nprogress, so we don\u0027t have a full picture of the rule graph.\n\nFor nf-next it might make sense to either remove it or make this depend\non table-\u003evalidate_state in case we could catch an error earlier\n(for improved error reporting to userspace).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41042",
"url": "https://www.suse.com/security/cve/CVE-2024-41042"
},
{
"category": "external",
"summary": "SUSE Bug 1228526 for CVE-2024-41042",
"url": "https://bugzilla.suse.com/1228526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-41042"
},
{
"cve": "CVE-2024-43913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: apple: fix device reference counting\n\nDrivers must call nvme_uninit_ctrl after a successful nvme_init_ctrl.\nSplit the allocation side out to make the error handling boundary easier\nto navigate. The apple driver had been doing this wrong, leaking the\ncontroller device memory on a tagset failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43913",
"url": "https://www.suse.com/security/cve/CVE-2024-43913"
},
{
"category": "external",
"summary": "SUSE Bug 1229833 for CVE-2024-43913",
"url": "https://bugzilla.suse.com/1229833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-43913"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-44996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix recursive -\u003erecvmsg calls\n\nAfter a vsock socket has been added to a BPF sockmap, its prot-\u003erecvmsg\nhas been replaced with vsock_bpf_recvmsg(). Thus the following\nrecursiion could happen:\n\nvsock_bpf_recvmsg()\n -\u003e __vsock_recvmsg()\n -\u003e vsock_connectible_recvmsg()\n -\u003e prot-\u003erecvmsg()\n -\u003e vsock_bpf_recvmsg() again\n\nWe need to fix it by calling the original -\u003erecvmsg() without any BPF\nsockmap logic in __vsock_recvmsg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44996",
"url": "https://www.suse.com/security/cve/CVE-2024-44996"
},
{
"category": "external",
"summary": "SUSE Bug 1230205 for CVE-2024-44996",
"url": "https://bugzilla.suse.com/1230205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-44996"
},
{
"cve": "CVE-2024-45828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Mask ring interrupts before ring stop request\n\nBus cleanup path in DMA mode may trigger a RING_OP_STAT interrupt when\nthe ring is being stopped. Depending on timing between ring stop request\ncompletion, interrupt handler removal and code execution this may lead\nto a NULL pointer dereference in hci_dma_irq_handler() if it gets to run\nafter the io_data pointer is set to NULL in hci_dma_cleanup().\n\nPrevent this my masking the ring interrupts before ring stop request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45828",
"url": "https://www.suse.com/security/cve/CVE-2024-45828"
},
{
"category": "external",
"summary": "SUSE Bug 1235705 for CVE-2024-45828",
"url": "https://bugzilla.suse.com/1235705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-45828"
},
{
"cve": "CVE-2024-46680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46680"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Fix random crash seen while removing driver\n\nThis fixes the random kernel crash seen while removing the driver, when\nrunning the load/unload test over multiple iterations.\n\n1) modprobe btnxpuart\n2) hciconfig hci0 reset\n3) hciconfig (check hci0 interface up with valid BD address)\n4) modprobe -r btnxpuart\nRepeat steps 1 to 4\n\nThe ps_wakeup() call in btnxpuart_close() schedules the psdata-\u003ework(),\nwhich gets scheduled after module is removed, causing a kernel crash.\n\nThis hidden issue got highlighted after enabling Power Save by default\nin 4183a7be7700 (Bluetooth: btnxpuart: Enable Power Save feature on\nstartup)\n\nThe new ps_cleanup() deasserts UART break immediately while closing\nserdev device, cancels any scheduled ps_work and destroys the ps_lock\nmutex.\n\n[ 85.884604] Unable to handle kernel paging request at virtual address ffffd4a61638f258\n[ 85.884624] Mem abort info:\n[ 85.884625] ESR = 0x0000000086000007\n[ 85.884628] EC = 0x21: IABT (current EL), IL = 32 bits\n[ 85.884633] SET = 0, FnV = 0\n[ 85.884636] EA = 0, S1PTW = 0\n[ 85.884638] FSC = 0x07: level 3 translation fault\n[ 85.884642] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000041dd0000\n[ 85.884646] [ffffd4a61638f258] pgd=1000000095fff003, p4d=1000000095fff003, pud=100000004823d003, pmd=100000004823e003, pte=0000000000000000\n[ 85.884662] Internal error: Oops: 0000000086000007 [#1] PREEMPT SMP\n[ 85.890932] Modules linked in: algif_hash algif_skcipher af_alg overlay fsl_jr_uio caam_jr caamkeyblob_desc caamhash_desc caamalg_desc crypto_engine authenc libdes crct10dif_ce polyval_ce polyval_generic snd_soc_imx_spdif snd_soc_imx_card snd_soc_ak5558 snd_soc_ak4458 caam secvio error snd_soc_fsl_spdif snd_soc_fsl_micfil snd_soc_fsl_sai snd_soc_fsl_utils gpio_ir_recv rc_core fuse [last unloaded: btnxpuart(O)]\n[ 85.927297] CPU: 1 PID: 67 Comm: kworker/1:3 Tainted: G O 6.1.36+g937b1be4345a #1\n[ 85.936176] Hardware name: FSL i.MX8MM EVK board (DT)\n[ 85.936182] Workqueue: events 0xffffd4a61638f380\n[ 85.936198] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 85.952817] pc : 0xffffd4a61638f258\n[ 85.952823] lr : 0xffffd4a61638f258\n[ 85.952827] sp : ffff8000084fbd70\n[ 85.952829] x29: ffff8000084fbd70 x28: 0000000000000000 x27: 0000000000000000\n[ 85.963112] x26: ffffd4a69133f000 x25: ffff4bf1c8540990 x24: ffff4bf215b87305\n[ 85.963119] x23: ffff4bf215b87300 x22: ffff4bf1c85409d0 x21: ffff4bf1c8540970\n[ 85.977382] x20: 0000000000000000 x19: ffff4bf1c8540880 x18: 0000000000000000\n[ 85.977391] x17: 0000000000000000 x16: 0000000000000133 x15: 0000ffffe2217090\n[ 85.977399] x14: 0000000000000001 x13: 0000000000000133 x12: 0000000000000139\n[ 85.977407] x11: 0000000000000001 x10: 0000000000000a60 x9 : ffff8000084fbc50\n[ 85.977417] x8 : ffff4bf215b7d000 x7 : ffff4bf215b83b40 x6 : 00000000000003e8\n[ 85.977424] x5 : 00000000410fd030 x4 : 0000000000000000 x3 : 0000000000000000\n[ 85.977432] x2 : 0000000000000000 x1 : ffff4bf1c4265880 x0 : 0000000000000000\n[ 85.977443] Call trace:\n[ 85.977446] 0xffffd4a61638f258\n[ 85.977451] 0xffffd4a61638f3e8\n[ 85.977455] process_one_work+0x1d4/0x330\n[ 85.977464] worker_thread+0x6c/0x430\n[ 85.977471] kthread+0x108/0x10c\n[ 85.977476] ret_from_fork+0x10/0x20\n[ 85.977488] Code: bad PC value\n[ 85.977491] ---[ end trace 0000000000000000 ]---\n\nPreset since v6.9.11",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46680",
"url": "https://www.suse.com/security/cve/CVE-2024-46680"
},
{
"category": "external",
"summary": "SUSE Bug 1230557 for CVE-2024-46680",
"url": "https://bugzilla.suse.com/1230557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-46680"
},
{
"cve": "CVE-2024-46765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: protect XDP configuration with a mutex\n\nThe main threat to data consistency in ice_xdp() is a possible asynchronous\nPF reset. It can be triggered by a user or by TX timeout handler.\n\nXDP setup and PF reset code access the same resources in the following\nsections:\n* ice_vsi_close() in ice_prepare_for_reset() - already rtnl-locked\n* ice_vsi_rebuild() for the PF VSI - not protected\n* ice_vsi_open() - already rtnl-locked\n\nWith an unfortunate timing, such accesses can result in a crash such as the\none below:\n\n[ +1.999878] ice 0000:b1:00.0: Registered XDP mem model MEM_TYPE_XSK_BUFF_POOL on Rx ring 14\n[ +2.002992] ice 0000:b1:00.0: Registered XDP mem model MEM_TYPE_XSK_BUFF_POOL on Rx ring 18\n[Mar15 18:17] ice 0000:b1:00.0 ens801f0np0: NETDEV WATCHDOG: CPU: 38: transmit queue 14 timed out 80692736 ms\n[ +0.000093] ice 0000:b1:00.0 ens801f0np0: tx_timeout: VSI_num: 6, Q 14, NTC: 0x0, HW_HEAD: 0x0, NTU: 0x0, INT: 0x4000001\n[ +0.000012] ice 0000:b1:00.0 ens801f0np0: tx_timeout recovery level 1, txqueue 14\n[ +0.394718] ice 0000:b1:00.0: PTP reset successful\n[ +0.006184] BUG: kernel NULL pointer dereference, address: 0000000000000098\n[ +0.000045] #PF: supervisor read access in kernel mode\n[ +0.000023] #PF: error_code(0x0000) - not-present page\n[ +0.000023] PGD 0 P4D 0\n[ +0.000018] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[ +0.000023] CPU: 38 PID: 7540 Comm: kworker/38:1 Not tainted 6.8.0-rc7 #1\n[ +0.000031] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0014.082620210524 08/26/2021\n[ +0.000036] Workqueue: ice ice_service_task [ice]\n[ +0.000183] RIP: 0010:ice_clean_tx_ring+0xa/0xd0 [ice]\n[...]\n[ +0.000013] Call Trace:\n[ +0.000016] \u003cTASK\u003e\n[ +0.000014] ? __die+0x1f/0x70\n[ +0.000029] ? page_fault_oops+0x171/0x4f0\n[ +0.000029] ? schedule+0x3b/0xd0\n[ +0.000027] ? exc_page_fault+0x7b/0x180\n[ +0.000022] ? asm_exc_page_fault+0x22/0x30\n[ +0.000031] ? ice_clean_tx_ring+0xa/0xd0 [ice]\n[ +0.000194] ice_free_tx_ring+0xe/0x60 [ice]\n[ +0.000186] ice_destroy_xdp_rings+0x157/0x310 [ice]\n[ +0.000151] ice_vsi_decfg+0x53/0xe0 [ice]\n[ +0.000180] ice_vsi_rebuild+0x239/0x540 [ice]\n[ +0.000186] ice_vsi_rebuild_by_type+0x76/0x180 [ice]\n[ +0.000145] ice_rebuild+0x18c/0x840 [ice]\n[ +0.000145] ? delay_tsc+0x4a/0xc0\n[ +0.000022] ? delay_tsc+0x92/0xc0\n[ +0.000020] ice_do_reset+0x140/0x180 [ice]\n[ +0.000886] ice_service_task+0x404/0x1030 [ice]\n[ +0.000824] process_one_work+0x171/0x340\n[ +0.000685] worker_thread+0x277/0x3a0\n[ +0.000675] ? preempt_count_add+0x6a/0xa0\n[ +0.000677] ? _raw_spin_lock_irqsave+0x23/0x50\n[ +0.000679] ? __pfx_worker_thread+0x10/0x10\n[ +0.000653] kthread+0xf0/0x120\n[ +0.000635] ? __pfx_kthread+0x10/0x10\n[ +0.000616] ret_from_fork+0x2d/0x50\n[ +0.000612] ? __pfx_kthread+0x10/0x10\n[ +0.000604] ret_from_fork_asm+0x1b/0x30\n[ +0.000604] \u003c/TASK\u003e\n\nThe previous way of handling this through returning -EBUSY is not viable,\nparticularly when destroying AF_XDP socket, because the kernel proceeds\nwith removal anyway.\n\nThere is plenty of code between those calls and there is no need to create\na large critical section that covers all of them, same as there is no need\nto protect ice_vsi_rebuild() with rtnl_lock().\n\nAdd xdp_state_lock mutex to protect ice_vsi_rebuild() and ice_xdp().\n\nLeaving unprotected sections in between would result in two states that\nhave to be considered:\n1. when the VSI is closed, but not yet rebuild\n2. when VSI is already rebuild, but not yet open\n\nThe latter case is actually already handled through !netif_running() case,\nwe just need to adjust flag checking a little. The former one is not as\ntrivial, because between ice_vsi_close() and ice_vsi_rebuild(), a lot of\nhardware interaction happens, this can make adding/deleting rings exit\nwith an error. Luckily, VSI rebuild is pending and can apply new\nconfiguration for us in a managed fashion.\n\nTherefore, add an additional VSI state flag ICE_VSI_REBUILD_PENDING to\nindicate that ice_x\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46765",
"url": "https://www.suse.com/security/cve/CVE-2024-46765"
},
{
"category": "external",
"summary": "SUSE Bug 1230807 for CVE-2024-46765",
"url": "https://bugzilla.suse.com/1230807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-46765"
},
{
"cve": "CVE-2024-46800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsch/netem: fix use after free in netem_dequeue\n\nIf netem_dequeue() enqueues packet to inner qdisc and that qdisc\nreturns __NET_XMIT_STOLEN. The packet is dropped but\nqdisc_tree_reduce_backlog() is not called to update the parent\u0027s\nq.qlen, leading to the similar use-after-free as Commit\ne04991a48dbaf382 (\"netem: fix return value if duplicate enqueue\nfails\")\n\nCommands to trigger KASAN UaF:\n\nip link add type dummy\nip link set lo up\nip link set dummy0 up\ntc qdisc add dev lo parent root handle 1: drr\ntc filter add dev lo parent 1: basic classid 1:1\ntc class add dev lo classid 1:1 drr\ntc qdisc add dev lo parent 1:1 handle 2: netem\ntc qdisc add dev lo parent 2: handle 3: drr\ntc filter add dev lo parent 3: basic classid 3:1 action mirred egress\nredirect dev dummy0\ntc class add dev lo classid 3:1 drr\nping -c1 -W0.01 localhost # Trigger bug\ntc class del dev lo classid 1:1\ntc class add dev lo classid 1:1 drr\nping -c1 -W0.01 localhost # UaF",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46800",
"url": "https://www.suse.com/security/cve/CVE-2024-46800"
},
{
"category": "external",
"summary": "SUSE Bug 1230827 for CVE-2024-46800",
"url": "https://bugzilla.suse.com/1230827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-46800"
},
{
"cve": "CVE-2024-46896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: don\u0027t access invalid sched\n\nSince 2320c9e6a768 (\"drm/sched: memset() \u0027job\u0027 in drm_sched_job_init()\")\naccessing job-\u003ebase.sched can produce unexpected results as the initialisation\nof (*job)-\u003ebase.sched done in amdgpu_job_alloc is overwritten by the\nmemset.\n\nThis commit fixes an issue when a CS would fail validation and would\nbe rejected after job-\u003enum_ibs is incremented. In this case,\namdgpu_ib_free(ring-\u003eadev, ...) will be called, which would crash the\nmachine because the ring value is bogus.\n\nTo fix this, pass a NULL pointer to amdgpu_ib_free(): we can do this\nbecause the device is actually not used in this function.\n\nThe next commit will remove the ring argument completely.\n\n(cherry picked from commit 2ae520cb12831d264ceb97c61f72c59d33c0dbd7)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46896",
"url": "https://www.suse.com/security/cve/CVE-2024-46896"
},
{
"category": "external",
"summary": "SUSE Bug 1235707 for CVE-2024-46896",
"url": "https://bugzilla.suse.com/1235707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-46896"
},
{
"cve": "CVE-2024-47141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinmux: Use sequential access to access desc-\u003epinmux data\n\nWhen two client of the same gpio call pinctrl_select_state() for the\nsame functionality, we are seeing NULL pointer issue while accessing\ndesc-\u003emux_owner.\n\nLet\u0027s say two processes A, B executing in pin_request() for the same pin\nand process A updates the desc-\u003emux_usecount but not yet updated the\ndesc-\u003emux_owner while process B see the desc-\u003emux_usecount which got\nupdated by A path and further executes strcmp and while accessing\ndesc-\u003emux_owner it crashes with NULL pointer.\n\nSerialize the access to mux related setting with a mutex lock.\n\n\tcpu0 (process A)\t\t\tcpu1(process B)\n\npinctrl_select_state() {\t\t pinctrl_select_state() {\n pin_request() {\t\t\t\tpin_request() {\n ...\n\t\t\t\t\t\t ....\n } else {\n desc-\u003emux_usecount++;\n \t\t\t\t\t\tdesc-\u003emux_usecount \u0026\u0026 strcmp(desc-\u003emux_owner, owner)) {\n\n if (desc-\u003emux_usecount \u003e 1)\n return 0;\n desc-\u003emux_owner = owner;\n\n }\t\t\t\t\t\t}",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47141",
"url": "https://www.suse.com/security/cve/CVE-2024-47141"
},
{
"category": "external",
"summary": "SUSE Bug 1235708 for CVE-2024-47141",
"url": "https://bugzilla.suse.com/1235708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-47141"
},
{
"cve": "CVE-2024-47143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-debug: fix a possible deadlock on radix_lock\n\nradix_lock() shouldn\u0027t be held while holding dma_hash_entry[idx].lock\notherwise, there\u0027s a possible deadlock scenario when\ndma debug API is called holding rq_lock():\n\nCPU0 CPU1 CPU2\ndma_free_attrs()\ncheck_unmap() add_dma_entry() __schedule() //out\n (A) rq_lock()\nget_hash_bucket()\n(A) dma_entry_hash\n check_sync()\n (A) radix_lock() (W) dma_entry_hash\ndma_entry_free()\n(W) radix_lock()\n // CPU2\u0027s one\n (W) rq_lock()\n\nCPU1 situation can happen when it extending radix tree and\nit tries to wake up kswapd via wake_all_kswapd().\n\nCPU2 situation can happen while perf_event_task_sched_out()\n(i.e. dma sync operation is called while deleting perf_event using\n etm and etr tmc which are Arm Coresight hwtracing driver backends).\n\nTo remove this possible situation, call dma_entry_free() after\nput_hash_bucket() in check_unmap().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47143",
"url": "https://www.suse.com/security/cve/CVE-2024-47143"
},
{
"category": "external",
"summary": "SUSE Bug 1235710 for CVE-2024-47143",
"url": "https://bugzilla.suse.com/1235710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-47143"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-47809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndlm: fix possible lkb_resource null dereference\n\nThis patch fixes a possible null pointer dereference when this function is\ncalled from request_lock() as lkb-\u003elkb_resource is not assigned yet,\nonly after validate_lock_args() by calling attach_lkb(). Another issue\nis that a resource name could be a non printable bytearray and we cannot\nassume to be ASCII coded.\n\nThe log functionality is probably never being hit when DLM is used in\nnormal way and no debug logging is enabled. The null pointer dereference\ncan only occur on a new created lkb that does not have the resource\nassigned yet, it probably never hits the null pointer dereference but we\nshould be sure that other changes might not change this behaviour and we\nactually can hit the mentioned null pointer dereference.\n\nIn this patch we just drop the printout of the resource name, the lkb id\nis enough to make a possible connection to a resource name if this\nexists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47809",
"url": "https://www.suse.com/security/cve/CVE-2024-47809"
},
{
"category": "external",
"summary": "SUSE Bug 1235714 for CVE-2024-47809",
"url": "https://bugzilla.suse.com/1235714"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-47809"
},
{
"cve": "CVE-2024-48873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48873"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: check return value of ieee80211_probereq_get() for RNR\n\nThe return value of ieee80211_probereq_get() might be NULL, so check it\nbefore using to avoid NULL pointer access.\n\nAddresses-Coverity-ID: 1529805 (\"Dereference null return value\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48873",
"url": "https://www.suse.com/security/cve/CVE-2024-48873"
},
{
"category": "external",
"summary": "SUSE Bug 1235716 for CVE-2024-48873",
"url": "https://bugzilla.suse.com/1235716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-48873"
},
{
"cve": "CVE-2024-48881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbcache: revert replacing IS_ERR_OR_NULL with IS_ERR again\n\nCommit 028ddcac477b (\"bcache: Remove unnecessary NULL point check in\nnode allocations\") leads a NULL pointer deference in cache_set_flush().\n\n1721 if (!IS_ERR_OR_NULL(c-\u003eroot))\n1722 list_add(\u0026c-\u003eroot-\u003elist, \u0026c-\u003ebtree_cache);\n\n\u003eFrom the above code in cache_set_flush(), if previous registration code\nfails before allocating c-\u003eroot, it is possible c-\u003eroot is NULL as what\nit is initialized. __bch_btree_node_alloc() never returns NULL but\nc-\u003eroot is possible to be NULL at above line 1721.\n\nThis patch replaces IS_ERR() by IS_ERR_OR_NULL() to fix this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48881",
"url": "https://www.suse.com/security/cve/CVE-2024-48881"
},
{
"category": "external",
"summary": "SUSE Bug 1235727 for CVE-2024-48881",
"url": "https://bugzilla.suse.com/1235727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-48881"
},
{
"cve": "CVE-2024-49569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-rdma: unquiesce admin_q before destroy it\n\nKernel will hang on destroy admin_q while we create ctrl failed, such\nas following calltrace:\n\nPID: 23644 TASK: ff2d52b40f439fc0 CPU: 2 COMMAND: \"nvme\"\n #0 [ff61d23de260fb78] __schedule at ffffffff8323bc15\n #1 [ff61d23de260fc08] schedule at ffffffff8323c014\n #2 [ff61d23de260fc28] blk_mq_freeze_queue_wait at ffffffff82a3dba1\n #3 [ff61d23de260fc78] blk_freeze_queue at ffffffff82a4113a\n #4 [ff61d23de260fc90] blk_cleanup_queue at ffffffff82a33006\n #5 [ff61d23de260fcb0] nvme_rdma_destroy_admin_queue at ffffffffc12686ce\n #6 [ff61d23de260fcc8] nvme_rdma_setup_ctrl at ffffffffc1268ced\n #7 [ff61d23de260fd28] nvme_rdma_create_ctrl at ffffffffc126919b\n #8 [ff61d23de260fd68] nvmf_dev_write at ffffffffc024f362\n #9 [ff61d23de260fe38] vfs_write at ffffffff827d5f25\n RIP: 00007fda7891d574 RSP: 00007ffe2ef06958 RFLAGS: 00000202\n RAX: ffffffffffffffda RBX: 000055e8122a4d90 RCX: 00007fda7891d574\n RDX: 000000000000012b RSI: 000055e8122a4d90 RDI: 0000000000000004\n RBP: 00007ffe2ef079c0 R8: 000000000000012b R9: 000055e8122a4d90\n R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000004\n R13: 000055e8122923c0 R14: 000000000000012b R15: 00007fda78a54500\n ORIG_RAX: 0000000000000001 CS: 0033 SS: 002b\n\nThis due to we have quiesced admi_q before cancel requests, but forgot\nto unquiesce before destroy it, as a result we fail to drain the\npending requests, and hang on blk_mq_freeze_queue_wait() forever. Here\ntry to reuse nvme_rdma_teardown_admin_queue() to fix this issue and\nsimplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49569",
"url": "https://www.suse.com/security/cve/CVE-2024-49569"
},
{
"category": "external",
"summary": "SUSE Bug 1235730 for CVE-2024-49569",
"url": "https://bugzilla.suse.com/1235730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-49569"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix uaf for accessing waker_bfqq after splitting\n\nAfter commit 42c306ed7233 (\"block, bfq: don\u0027t break merge chain in\nbfq_split_bfqq()\"), if the current procress is the last holder of bfqq,\nthe bfqq can be freed after bfq_split_bfqq(). Hence recored the bfqq and\nthen access bfqq-\u003ewaker_bfqq may trigger UAF. What\u0027s more, the waker_bfqq\nmay in the merge chain of bfqq, hence just recored waker_bfqq is still\nnot safe.\n\nFix the problem by adding a helper bfq_waker_bfqq() to check if\nbfqq-\u003ewaker_bfqq is in the merge chain, and current procress is the only\nholder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-49944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start\n\nIn sctp_listen_start() invoked by sctp_inet_listen(), it should set the\nsk_state back to CLOSED if sctp_autobind() fails due to whatever reason.\n\nOtherwise, next time when calling sctp_inet_listen(), if sctp_sk(sk)-\u003ereuse\nis already set via setsockopt(SCTP_REUSE_PORT), sctp_sk(sk)-\u003ebind_hash will\nbe dereferenced as sk_state is LISTENING, which causes a crash as bind_hash\nis NULL.\n\n KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n RIP: 0010:sctp_inet_listen+0x7f0/0xa20 net/sctp/socket.c:8617\n Call Trace:\n \u003cTASK\u003e\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49944",
"url": "https://www.suse.com/security/cve/CVE-2024-49944"
},
{
"category": "external",
"summary": "SUSE Bug 1232166 for CVE-2024-49944",
"url": "https://bugzilla.suse.com/1232166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-49944"
},
{
"cve": "CVE-2024-49951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible crash on mgmt_index_removed\n\nIf mgmt_index_removed is called while there are commands queued on\ncmd_sync it could lead to crashes like the bellow trace:\n\n0x0000053D: __list_del_entry_valid_or_report+0x98/0xdc\n0x0000053D: mgmt_pending_remove+0x18/0x58 [bluetooth]\n0x0000053E: mgmt_remove_adv_monitor_complete+0x80/0x108 [bluetooth]\n0x0000053E: hci_cmd_sync_work+0xbc/0x164 [bluetooth]\n\nSo while handling mgmt_index_removed this attempts to dequeue\ncommands passed as user_data to cmd_sync.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49951",
"url": "https://www.suse.com/security/cve/CVE-2024-49951"
},
{
"category": "external",
"summary": "SUSE Bug 1232158 for CVE-2024-49951",
"url": "https://bugzilla.suse.com/1232158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-49951"
},
{
"cve": "CVE-2024-49952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49952"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prevent nf_skb_duplicated corruption\n\nsyzbot found that nf_dup_ipv4() or nf_dup_ipv6() could write\nper-cpu variable nf_skb_duplicated in an unsafe way [1].\n\nDisabling preemption as hinted by the splat is not enough,\nwe have to disable soft interrupts as well.\n\n[1]\nBUG: using __this_cpu_write() in preemptible [00000000] code: syz.4.282/6316\n caller is nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\nCPU: 0 UID: 0 PID: 6316 Comm: syz.4.282 Not tainted 6.11.0-rc7-syzkaller-00104-g7052622fccb1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n check_preemption_disabled+0x10e/0x120 lib/smp_processor_id.c:49\n nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\n nft_dup_ipv4_eval+0x1db/0x300 net/ipv4/netfilter/nft_dup_ipv4.c:30\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_ipv4+0x202/0x320 net/netfilter/nft_chain_filter.c:23\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook+0x2c4/0x450 include/linux/netfilter.h:269\n NF_HOOK_COND include/linux/netfilter.h:302 [inline]\n ip_output+0x185/0x230 net/ipv4/ip_output.c:433\n ip_local_out net/ipv4/ip_output.c:129 [inline]\n ip_send_skb+0x74/0x100 net/ipv4/ip_output.c:1495\n udp_send_skb+0xacf/0x1650 net/ipv4/udp.c:981\n udp_sendmsg+0x1c21/0x2a60 net/ipv4/udp.c:1269\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmmsg+0x3b2/0x740 net/socket.c:2737\n __do_sys_sendmmsg net/socket.c:2766 [inline]\n __se_sys_sendmmsg net/socket.c:2763 [inline]\n __x64_sys_sendmmsg+0xa0/0xb0 net/socket.c:2763\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f4ce4f7def9\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f4ce5d4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133\nRAX: ffffffffffffffda RBX: 00007f4ce5135f80 RCX: 00007f4ce4f7def9\nRDX: 0000000000000001 RSI: 0000000020005d40 RDI: 0000000000000006\nRBP: 00007f4ce4ff0b76 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f4ce5135f80 R15: 00007ffd4cbc6d68\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49952",
"url": "https://www.suse.com/security/cve/CVE-2024-49952"
},
{
"category": "external",
"summary": "SUSE Bug 1232157 for CVE-2024-49952",
"url": "https://bugzilla.suse.com/1232157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-49952"
},
{
"cve": "CVE-2024-49998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: improve shutdown sequence\n\nAlexander Sverdlin presents 2 problems during shutdown with the\nlan9303 driver. One is specific to lan9303 and the other just happens\nto reproduce there.\n\nThe first problem is that lan9303 is unique among DSA drivers in that it\ncalls dev_get_drvdata() at \"arbitrary runtime\" (not probe, not shutdown,\nnot remove):\n\nphy_state_machine()\n-\u003e ...\n -\u003e dsa_user_phy_read()\n -\u003e ds-\u003eops-\u003ephy_read()\n -\u003e lan9303_phy_read()\n -\u003e chip-\u003eops-\u003ephy_read()\n -\u003e lan9303_mdio_phy_read()\n -\u003e dev_get_drvdata()\n\nBut we never stop the phy_state_machine(), so it may continue to run\nafter dsa_switch_shutdown(). Our common pattern in all DSA drivers is\nto set drvdata to NULL to suppress the remove() method that may come\nafterwards. But in this case it will result in an NPD.\n\nThe second problem is that the way in which we set\ndp-\u003econduit-\u003edsa_ptr = NULL; is concurrent with receive packet\nprocessing. dsa_switch_rcv() checks once whether dev-\u003edsa_ptr is NULL,\nbut afterwards, rather than continuing to use that non-NULL value,\ndev-\u003edsa_ptr is dereferenced again and again without NULL checks:\ndsa_conduit_find_user() and many other places. In between dereferences,\nthere is no locking to ensure that what was valid once continues to be\nvalid.\n\nBoth problems have the common aspect that closing the conduit interface\nsolves them.\n\nIn the first case, dev_close(conduit) triggers the NETDEV_GOING_DOWN\nevent in dsa_user_netdevice_event() which closes user ports as well.\ndsa_port_disable_rt() calls phylink_stop(), which synchronously stops\nthe phylink state machine, and ds-\u003eops-\u003ephy_read() will thus no longer\ncall into the driver after this point.\n\nIn the second case, dev_close(conduit) should do this, as per\nDocumentation/networking/driver.rst:\n\n| Quiescence\n| ----------\n|\n| After the ndo_stop routine has been called, the hardware must\n| not receive or transmit any data. All in flight packets must\n| be aborted. If necessary, poll or wait for completion of\n| any reset commands.\n\nSo it should be sufficient to ensure that later, when we zeroize\nconduit-\u003edsa_ptr, there will be no concurrent dsa_switch_rcv() call\non this conduit.\n\nThe addition of the netif_device_detach() function is to ensure that\nioctls, rtnetlinks and ethtool requests on the user ports no longer\npropagate down to the driver - we\u0027re no longer prepared to handle them.\n\nThe race condition actually did not exist when commit 0650bf52b31f\n(\"net: dsa: be compatible with masters which unregister on shutdown\")\nfirst introduced dsa_switch_shutdown(). It was created later, when we\nstopped unregistering the user interfaces from a bad spot, and we just\nreplaced that sequence with a racy zeroization of conduit-\u003edsa_ptr\n(one which doesn\u0027t ensure that the interfaces aren\u0027t up).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49998",
"url": "https://www.suse.com/security/cve/CVE-2024-49998"
},
{
"category": "external",
"summary": "SUSE Bug 1232087 for CVE-2024-49998",
"url": "https://bugzilla.suse.com/1232087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-49998"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: mpc52xx: Add cancel_work_sync before module remove\n\nIf we remove the module which will call mpc52xx_spi_remove\nit will free \u0027ms\u0027 through spi_unregister_controller.\nwhile the work ms-\u003ework will be used. The sequence of operations\nthat may lead to a UAF bug.\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in mpc52xx_spi_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50051",
"url": "https://www.suse.com/security/cve/CVE-2024-50051"
},
{
"category": "external",
"summary": "SUSE Bug 1235739 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "external",
"summary": "SUSE Bug 1239156 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1239156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-50051"
},
{
"cve": "CVE-2024-50106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix race between laundromat and free_stateid\n\nThere is a race between laundromat handling of revoked delegations\nand a client sending free_stateid operation. Laundromat thread\nfinds that delegation has expired and needs to be revoked so it\nmarks the delegation stid revoked and it puts it on a reaper list\nbut then it unlock the state lock and the actual delegation revocation\nhappens without the lock. Once the stid is marked revoked a racing\nfree_stateid processing thread does the following (1) it calls\nlist_del_init() which removes it from the reaper list and (2) frees\nthe delegation stid structure. The laundromat thread ends up not\ncalling the revoke_delegation() function for this particular delegation\nbut that means it will no release the lock lease that exists on\nthe file.\n\nNow, a new open for this file comes in and ends up finding that\nlease list isn\u0027t empty and calls nfsd_breaker_owns_lease() which ends\nup trying to derefence a freed delegation stateid. Leading to the\nfollowint use-after-free KASAN warning:\n\nkernel: ==================================================================\nkernel: BUG: KASAN: slab-use-after-free in nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: Read of size 8 at addr ffff0000e73cd0c8 by task nfsd/6205\nkernel:\nkernel: CPU: 2 UID: 0 PID: 6205 Comm: nfsd Kdump: loaded Not tainted 6.11.0-rc7+ #9\nkernel: Hardware name: Apple Inc. Apple Virtualization Generic Platform, BIOS 2069.0.0.0.0 08/03/2024\nkernel: Call trace:\nkernel: dump_backtrace+0x98/0x120\nkernel: show_stack+0x1c/0x30\nkernel: dump_stack_lvl+0x80/0xe8\nkernel: print_address_description.constprop.0+0x84/0x390\nkernel: print_report+0xa4/0x268\nkernel: kasan_report+0xb4/0xf8\nkernel: __asan_report_load8_noabort+0x1c/0x28\nkernel: nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: nfsd_file_do_acquire+0xb3c/0x11d0 [nfsd]\nkernel: nfsd_file_acquire_opened+0x84/0x110 [nfsd]\nkernel: nfs4_get_vfs_file+0x634/0x958 [nfsd]\nkernel: nfsd4_process_open2+0xa40/0x1a40 [nfsd]\nkernel: nfsd4_open+0xa08/0xe80 [nfsd]\nkernel: nfsd4_proc_compound+0xb8c/0x2130 [nfsd]\nkernel: nfsd_dispatch+0x22c/0x718 [nfsd]\nkernel: svc_process_common+0x8e8/0x1960 [sunrpc]\nkernel: svc_process+0x3d4/0x7e0 [sunrpc]\nkernel: svc_handle_xprt+0x828/0xe10 [sunrpc]\nkernel: svc_recv+0x2cc/0x6a8 [sunrpc]\nkernel: nfsd+0x270/0x400 [nfsd]\nkernel: kthread+0x288/0x310\nkernel: ret_from_fork+0x10/0x20\n\nThis patch proposes a fixed that\u0027s based on adding 2 new additional\nstid\u0027s sc_status values that help coordinate between the laundromat\nand other operations (nfsd4_free_stateid() and nfsd4_delegreturn()).\n\nFirst to make sure, that once the stid is marked revoked, it is not\nremoved by the nfsd4_free_stateid(), the laundromat take a reference\non the stateid. Then, coordinating whether the stid has been put\non the cl_revoked list or we are processing FREE_STATEID and need to\nmake sure to remove it from the list, each check that state and act\naccordingly. If laundromat has added to the cl_revoke list before\nthe arrival of FREE_STATEID, then nfsd4_free_stateid() knows to remove\nit from the list. If nfsd4_free_stateid() finds that operations arrived\nbefore laundromat has placed it on cl_revoke list, it marks the state\nfreed and then laundromat will no longer add it to the list.\n\nAlso, for nfsd4_delegreturn() when looking for the specified stid,\nwe need to access stid that are marked removed or freeable, it means\nthe laundromat has started processing it but hasn\u0027t finished and this\ndelegreturn needs to return nfserr_deleg_revoked and not\nnfserr_bad_stateid. The latter will not trigger a FREE_STATEID and the\nlack of it will leave this stid on the cl_revoked list indefinitely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50106",
"url": "https://www.suse.com/security/cve/CVE-2024-50106"
},
{
"category": "external",
"summary": "SUSE Bug 1232882 for CVE-2024-50106",
"url": "https://bugzilla.suse.com/1232882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50106"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix OOBs when building SMB2_IOCTL request\n\nWhen using encryption, either enforced by the server or when using\n\u0027seal\u0027 mount option, the client will squash all compound request buffers\ndown for encryption into a single iov in smb2_set_next_command().\n\nSMB2_ioctl_init() allocates a small buffer (448 bytes) to hold the\nSMB2_IOCTL request in the first iov, and if the user passes an input\nbuffer that is greater than 328 bytes, smb2_set_next_command() will\nend up writing off the end of @rqst-\u003eiov[0].iov_base as shown below:\n\n mount.cifs //srv/share /mnt -o ...,seal\n ln -s $(perl -e \"print(\u0027a\u0027)for 1..1024\") /mnt/link\n\n BUG: KASAN: slab-out-of-bounds in\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n Write of size 4116 at addr ffff8881148fcab8 by task ln/859\n\n CPU: 1 UID: 0 PID: 859 Comm: ln Not tainted 6.12.0-rc3 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n 1.16.3-2.fc40 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n print_report+0x156/0x4d9\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n ? __virt_addr_valid+0x145/0x310\n ? __phys_addr+0x46/0x90\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_report+0xda/0x110\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_check_range+0x10f/0x1f0\n __asan_memcpy+0x3c/0x60\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n smb2_compound_op+0x238c/0x3840 [cifs]\n ? kasan_save_track+0x14/0x30\n ? kasan_save_free_info+0x3b/0x70\n ? vfs_symlink+0x1a1/0x2c0\n ? do_symlinkat+0x108/0x1c0\n ? __pfx_smb2_compound_op+0x10/0x10 [cifs]\n ? kmem_cache_free+0x118/0x3e0\n ? cifs_get_writable_path+0xeb/0x1a0 [cifs]\n smb2_get_reparse_inode+0x423/0x540 [cifs]\n ? __pfx_smb2_get_reparse_inode+0x10/0x10 [cifs]\n ? rcu_is_watching+0x20/0x50\n ? __kmalloc_noprof+0x37c/0x480\n ? smb2_create_reparse_symlink+0x257/0x490 [cifs]\n ? smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n ? __pfx_smb2_create_reparse_symlink+0x10/0x10 [cifs]\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? __build_path_from_dentry_optional_prefix+0x19d/0x2e0 [cifs]\n cifs_symlink+0x24f/0x960 [cifs]\n ? __pfx_make_vfsuid+0x10/0x10\n ? __pfx_cifs_symlink+0x10/0x10 [cifs]\n ? make_vfsgid+0x6b/0xc0\n ? generic_permission+0x96/0x2d0\n vfs_symlink+0x1a1/0x2c0\n do_symlinkat+0x108/0x1c0\n ? __pfx_do_symlinkat+0x10/0x10\n ? strncpy_from_user+0xaa/0x160\n __x64_sys_symlinkat+0xb9/0xf0\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7f08d75c13bb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50151",
"url": "https://www.suse.com/security/cve/CVE-2024-50151"
},
{
"category": "external",
"summary": "SUSE Bug 1233055 for CVE-2024-50151",
"url": "https://bugzilla.suse.com/1233055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50151"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50199",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50199"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swapfile: skip HugeTLB pages for unuse_vma\n\nI got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The\nproblem can be reproduced by the following steps:\n\n 1. Allocate an anonymous 1GB HugeTLB and some other anonymous memory.\n 2. Swapout the above anonymous memory.\n 3. run swapoff and we will get a bad pud error in kernel message:\n\n mm/pgtable-generic.c:42: bad pud 00000000743d215d(84000001400000e7)\n\nWe can tell that pud_clear_bad is called by pud_none_or_clear_bad in\nunuse_pud_range() by ftrace. And therefore the HugeTLB pages will never\nbe freed because we lost it from page table. We can skip HugeTLB pages\nfor unuse_vma to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50199",
"url": "https://www.suse.com/security/cve/CVE-2024-50199"
},
{
"category": "external",
"summary": "SUSE Bug 1233112 for CVE-2024-50199",
"url": "https://bugzilla.suse.com/1233112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50199"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix address emission with tag-based KASAN enabled\n\nWhen BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_image\nstruct on the stack is passed during the size calculation pass and\nan address on the heap is passed during code generation. This may\ncause a heap buffer overflow if the heap address is tagged because\nemit_a64_mov_i64() will emit longer code than it did during the size\ncalculation pass. The same problem could occur without tag-based\nKASAN if one of the 16-bit words of the stack address happened to\nbe all-ones during the size calculation pass. Fix the problem by\nassuming the worst case (4 instructions) when calculating the size\nof the bpf_tramp_image address emission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50203",
"url": "https://www.suse.com/security/cve/CVE-2024-50203"
},
{
"category": "external",
"summary": "SUSE Bug 1233328 for CVE-2024-50203",
"url": "https://bugzilla.suse.com/1233328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50203"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address\n\nThe device stores IPv6 addresses that are used for encapsulation in\nlinear memory that is managed by the driver.\n\nChanging the remote address of an ip6gre net device never worked\nproperly, but since cited commit the following reproducer [1] would\nresult in a warning [2] and a memory leak [3]. The problem is that the\nnew remote address is never added by the driver to its hash table (and\ntherefore the device) and the old address is never removed from it.\n\nFix by programming the new address when the configuration of the ip6gre\nnet device changes and removing the old one. If the address did not\nchange, then the above would result in increasing the reference count of\nthe address and then decreasing it.\n\n[1]\n # ip link add name bla up type ip6gre local 2001:db8:1::1 remote 2001:db8:2::1 tos inherit ttl inherit\n # ip link set dev bla type ip6gre remote 2001:db8:3::1\n # ip link del dev bla\n # devlink dev reload pci/0000:01:00.0\n\n[2]\nWARNING: CPU: 0 PID: 1682 at drivers/net/ethernet/mellanox/mlxsw/spectrum.c:3002 mlxsw_sp_ipv6_addr_put+0x140/0x1d0\nModules linked in:\nCPU: 0 UID: 0 PID: 1682 Comm: ip Not tainted 6.12.0-rc3-custom-g86b5b55bc835 #151\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nRIP: 0010:mlxsw_sp_ipv6_addr_put+0x140/0x1d0\n[...]\nCall Trace:\n \u003cTASK\u003e\n mlxsw_sp_router_netdevice_event+0x55f/0x1240\n notifier_call_chain+0x5a/0xd0\n call_netdevice_notifiers_info+0x39/0x90\n unregister_netdevice_many_notify+0x63e/0x9d0\n rtnl_dellink+0x16b/0x3a0\n rtnetlink_rcv_msg+0x142/0x3f0\n netlink_rcv_skb+0x50/0x100\n netlink_unicast+0x242/0x390\n netlink_sendmsg+0x1de/0x420\n ____sys_sendmsg+0x2bd/0x320\n ___sys_sendmsg+0x9a/0xe0\n __sys_sendmsg+0x7a/0xd0\n do_syscall_64+0x9e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[3]\nunreferenced object 0xffff898081f597a0 (size 32):\n comm \"ip\", pid 1626, jiffies 4294719324\n hex dump (first 32 bytes):\n 20 01 0d b8 00 02 00 00 00 00 00 00 00 00 00 01 ...............\n 21 49 61 83 80 89 ff ff 00 00 00 00 01 00 00 00 !Ia.............\n backtrace (crc fd9be911):\n [\u003c00000000df89c55d\u003e] __kmalloc_cache_noprof+0x1da/0x260\n [\u003c00000000ff2a1ddb\u003e] mlxsw_sp_ipv6_addr_kvdl_index_get+0x281/0x340\n [\u003c000000009ddd445d\u003e] mlxsw_sp_router_netdevice_event+0x47b/0x1240\n [\u003c00000000743e7757\u003e] notifier_call_chain+0x5a/0xd0\n [\u003c000000007c7b9e13\u003e] call_netdevice_notifiers_info+0x39/0x90\n [\u003c000000002509645d\u003e] register_netdevice+0x5f7/0x7a0\n [\u003c00000000c2e7d2a9\u003e] ip6gre_newlink_common.isra.0+0x65/0x130\n [\u003c0000000087cd6d8d\u003e] ip6gre_newlink+0x72/0x120\n [\u003c000000004df7c7cc\u003e] rtnl_newlink+0x471/0xa20\n [\u003c0000000057ed632a\u003e] rtnetlink_rcv_msg+0x142/0x3f0\n [\u003c0000000032e0d5b5\u003e] netlink_rcv_skb+0x50/0x100\n [\u003c00000000908bca63\u003e] netlink_unicast+0x242/0x390\n [\u003c00000000cdbe1c87\u003e] netlink_sendmsg+0x1de/0x420\n [\u003c0000000011db153e\u003e] ____sys_sendmsg+0x2bd/0x320\n [\u003c000000003b6d53eb\u003e] ___sys_sendmsg+0x9a/0xe0\n [\u003c00000000cae27c62\u003e] __sys_sendmsg+0x7a/0xd0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50252",
"url": "https://www.suse.com/security/cve/CVE-2024-50252"
},
{
"category": "external",
"summary": "SUSE Bug 1233201 for CVE-2024-50252",
"url": "https://bugzilla.suse.com/1233201"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50252"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilemap: Fix bounds checking in filemap_read()\n\nIf the caller supplies an iocb-\u003eki_pos value that is close to the\nfilesystem upper limit, and an iterator with a count that causes us to\noverflow that limit, then filemap_read() enters an infinite loop.\n\nThis behaviour was discovered when testing xfstests generic/525 with the\n\"localio\" optimisation for loopback NFS mounts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50272",
"url": "https://www.suse.com/security/cve/CVE-2024-50272"
},
{
"category": "external",
"summary": "SUSE Bug 1233461 for CVE-2024-50272",
"url": "https://bugzilla.suse.com/1233461"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50272"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix out-of-bounds access to the dirty bitset when resizing\n\ndm-cache checks the dirty bits of the cache blocks to be dropped when\nshrinking the fast device, but an index bug in bitset iteration causes\nout-of-bounds access.\n\nReproduce steps:\n\n1. create a cache device of 1024 cache blocks (128 bytes dirty bitset)\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. shrink the fast device to 512 cache blocks, triggering out-of-bounds\n access to the dirty bitset (offset 0x80)\n\ndmsetup suspend cache\ndmsetup reload cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in cache_preresume+0x269/0x7b0\n Read of size 8 at addr ffffc900000f3080 by task dmsetup/131\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc900000f3000, ffffc900000f5000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc900000f2f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effffc900000f3080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc900000f3100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by making the index post-incremented.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50279",
"url": "https://www.suse.com/security/cve/CVE-2024-50279"
},
{
"category": "external",
"summary": "SUSE Bug 1233468 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "external",
"summary": "SUSE Bug 1233708 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-50279"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-50296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when uninstalling driver\n\nWhen the driver is uninstalled and the VF is disabled concurrently, a\nkernel crash occurs. The reason is that the two actions call function\npci_disable_sriov(). The num_VFs is checked to determine whether to\nrelease the corresponding resources. During the second calling, num_VFs\nis not 0 and the resource release function is called. However, the\ncorresponding resource has been released during the first invoking.\nTherefore, the problem occurs:\n\n[15277.839633][T50670] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n...\n[15278.131557][T50670] Call trace:\n[15278.134686][T50670] klist_put+0x28/0x12c\n[15278.138682][T50670] klist_del+0x14/0x20\n[15278.142592][T50670] device_del+0xbc/0x3c0\n[15278.146676][T50670] pci_remove_bus_device+0x84/0x120\n[15278.151714][T50670] pci_stop_and_remove_bus_device+0x6c/0x80\n[15278.157447][T50670] pci_iov_remove_virtfn+0xb4/0x12c\n[15278.162485][T50670] sriov_disable+0x50/0x11c\n[15278.166829][T50670] pci_disable_sriov+0x24/0x30\n[15278.171433][T50670] hnae3_unregister_ae_algo_prepare+0x60/0x90 [hnae3]\n[15278.178039][T50670] hclge_exit+0x28/0xd0 [hclge]\n[15278.182730][T50670] __se_sys_delete_module.isra.0+0x164/0x230\n[15278.188550][T50670] __arm64_sys_delete_module+0x1c/0x30\n[15278.193848][T50670] invoke_syscall+0x50/0x11c\n[15278.198278][T50670] el0_svc_common.constprop.0+0x158/0x164\n[15278.203837][T50670] do_el0_svc+0x34/0xcc\n[15278.207834][T50670] el0_svc+0x20/0x30\n\nFor details, see the following figure.\n\n rmmod hclge disable VFs\n----------------------------------------------------\nhclge_exit() sriov_numvfs_store()\n ... device_lock()\n pci_disable_sriov() hns3_pci_sriov_configure()\n pci_disable_sriov()\n sriov_disable()\n sriov_disable() if !num_VFs :\n if !num_VFs : return;\n return; sriov_del_vfs()\n sriov_del_vfs() ...\n ... klist_put()\n klist_put() ...\n ... num_VFs = 0;\n num_VFs = 0; device_unlock();\n\nIn this patch, when driver is removing, we get the device_lock()\nto protect num_VFs, just like sriov_numvfs_store().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50296",
"url": "https://www.suse.com/security/cve/CVE-2024-50296"
},
{
"category": "external",
"summary": "SUSE Bug 1233485 for CVE-2024-50296",
"url": "https://bugzilla.suse.com/1233485"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50296"
},
{
"cve": "CVE-2024-50299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50299"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: properly validate chunk size in sctp_sf_ootb()\n\nA size validation fix similar to that in Commit 50619dbf8db7 (\"sctp: add\nsize validation when walking chunks\") is also required in sctp_sf_ootb()\nto address a crash reported by syzbot:\n\n BUG: KMSAN: uninit-value in sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_do_sm+0x181/0x93d0 net/sctp/sm_sideeffect.c:1166\n sctp_endpoint_bh_rcv+0xc38/0xf90 net/sctp/endpointola.c:407\n sctp_inq_push+0x2ef/0x380 net/sctp/inqueue.c:88\n sctp_rcv+0x3831/0x3b20 net/sctp/input.c:243\n sctp4_rcv+0x42/0x50 net/sctp/protocol.c:1159\n ip_protocol_deliver_rcu+0xb51/0x13d0 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x336/0x500 net/ipv4/ip_input.c:233",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50299",
"url": "https://www.suse.com/security/cve/CVE-2024-50299"
},
{
"category": "external",
"summary": "SUSE Bug 1233488 for CVE-2024-50299",
"url": "https://bugzilla.suse.com/1233488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-50299"
},
{
"cve": "CVE-2024-52332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Fix potential invalid memory access in igb_init_module()\n\nThe pci_register_driver() can fail and when this happened, the dca_notifier\nneeds to be unregistered, otherwise the dca_notifier can be called when\nigb fails to install, resulting to invalid memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52332",
"url": "https://www.suse.com/security/cve/CVE-2024-52332"
},
{
"category": "external",
"summary": "SUSE Bug 1235700 for CVE-2024-52332",
"url": "https://bugzilla.suse.com/1235700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-52332"
},
{
"cve": "CVE-2024-53043",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53043"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmctp i2c: handle NULL header address\n\ndaddr can be NULL if there is no neighbour table entry present,\nin that case the tx packet should be dropped.\n\nsaddr will usually be set by MCTP core, but check for NULL in case a\npacket is transmitted by a different protocol.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53043",
"url": "https://www.suse.com/security/cve/CVE-2024-53043"
},
{
"category": "external",
"summary": "SUSE Bug 1233523 for CVE-2024-53043",
"url": "https://bugzilla.suse.com/1233523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53043"
},
{
"cve": "CVE-2024-53050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53050"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in hdcp2_get_capability\n\nAdd encoder check in intel_hdcp2_get_capability to avoid\nnull pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53050",
"url": "https://www.suse.com/security/cve/CVE-2024-53050"
},
{
"category": "external",
"summary": "SUSE Bug 1233546 for CVE-2024-53050",
"url": "https://bugzilla.suse.com/1233546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53050"
},
{
"cve": "CVE-2024-53051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in intel_hdcp_get_capability\n\nSometimes during hotplug scenario or suspend/resume scenario encoder is\nnot always initialized when intel_hdcp_get_capability add\na check to avoid kernel null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53051",
"url": "https://www.suse.com/security/cve/CVE-2024-53051"
},
{
"category": "external",
"summary": "SUSE Bug 1233547 for CVE-2024-53051",
"url": "https://bugzilla.suse.com/1233547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53051"
},
{
"cve": "CVE-2024-53055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53055"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: fix 6 GHz scan construction\n\nIf more than 255 colocated APs exist for the set of all\nAPs found during 2.4/5 GHz scanning, then the 6 GHz scan\nconstruction will loop forever since the loop variable\nhas type u8, which can never reach the number found when\nthat\u0027s bigger than 255, and is stored in a u32 variable.\nAlso move it into the loops to have a smaller scope.\n\nUsing a u32 there is fine, we limit the number of APs in\nthe scan list and each has a limit on the number of RNR\nentries due to the frame size. With a limit of 1000 scan\nresults, a frame size upper bound of 4096 (really it\u0027s\nmore like ~2300) and a TBTT entry size of at least 11,\nwe get an upper bound for the number of ~372k, well in\nthe bounds of a u32.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53055",
"url": "https://www.suse.com/security/cve/CVE-2024-53055"
},
{
"category": "external",
"summary": "SUSE Bug 1233550 for CVE-2024-53055",
"url": "https://bugzilla.suse.com/1233550"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53055"
},
{
"cve": "CVE-2024-53056",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53056"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy()\n\nIn mtk_crtc_create(), if the call to mbox_request_channel() fails then we\nset the \"mtk_crtc-\u003ecmdq_client.chan\" pointer to NULL. In that situation,\nwe do not call cmdq_pkt_create().\n\nDuring the cleanup, we need to check if the \"mtk_crtc-\u003ecmdq_client.chan\"\nis NULL first before calling cmdq_pkt_destroy(). Calling\ncmdq_pkt_destroy() is unnecessary if we didn\u0027t call cmdq_pkt_create() and\nit will result in a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53056",
"url": "https://www.suse.com/security/cve/CVE-2024-53056"
},
{
"category": "external",
"summary": "SUSE Bug 1233568 for CVE-2024-53056",
"url": "https://bugzilla.suse.com/1233568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53056"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx\n\nAs the introduction of the support for vsock and unix sockets in sockmap,\ntls_sw_has_ctx_tx/rx cannot presume the socket passed in must be IS_ICSK.\nvsock and af_unix sockets have vsock_sock and unix_sock instead of\ninet_connection_sock. For these sockets, tls_get_ctx may return an invalid\npointer and cause page fault in function tls_sw_ctx_rx.\n\nBUG: unable to handle page fault for address: 0000000000040030\nWorkqueue: vsock-loopback vsock_loopback_work\nRIP: 0010:sk_psock_strp_data_ready+0x23/0x60\nCall Trace:\n ? __die+0x81/0xc3\n ? no_context+0x194/0x350\n ? do_page_fault+0x30/0x110\n ? async_page_fault+0x3e/0x50\n ? sk_psock_strp_data_ready+0x23/0x60\n virtio_transport_recv_pkt+0x750/0x800\n ? update_load_avg+0x7e/0x620\n vsock_loopback_work+0xd0/0x100\n process_one_work+0x1a7/0x360\n worker_thread+0x30/0x390\n ? create_worker+0x1a0/0x1a0\n kthread+0x112/0x130\n ? __kthread_cancel_work+0x40/0x40\n ret_from_fork+0x1f/0x40\n\nv2:\n - Add IS_ICSK check\nv3:\n - Update the commits in Fixes",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53091",
"url": "https://www.suse.com/security/cve/CVE-2024-53091"
},
{
"category": "external",
"summary": "SUSE Bug 1233638 for CVE-2024-53091",
"url": "https://bugzilla.suse.com/1233638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53091"
},
{
"cve": "CVE-2024-53095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Fix use-after-free of network namespace.\n\nRecently, we got a customer report that CIFS triggers oops while\nreconnecting to a server. [0]\n\nThe workload runs on Kubernetes, and some pods mount CIFS servers\nin non-root network namespaces. The problem rarely happened, but\nit was always while the pod was dying.\n\nThe root cause is wrong reference counting for network namespace.\n\nCIFS uses kernel sockets, which do not hold refcnt of the netns that\nthe socket belongs to. That means CIFS must ensure the socket is\nalways freed before its netns; otherwise, use-after-free happens.\n\nThe repro steps are roughly:\n\n 1. mount CIFS in a non-root netns\n 2. drop packets from the netns\n 3. destroy the netns\n 4. unmount CIFS\n\nWe can reproduce the issue quickly with the script [1] below and see\nthe splat [2] if CONFIG_NET_NS_REFCNT_TRACKER is enabled.\n\nWhen the socket is TCP, it is hard to guarantee the netns lifetime\nwithout holding refcnt due to async timers.\n\nLet\u0027s hold netns refcnt for each socket as done for SMC in commit\n9744d2bf1976 (\"smc: Fix use-after-free in tcp_write_timer_handler().\").\n\nNote that we need to move put_net() from cifs_put_tcp_session() to\nclean_demultiplex_info(); otherwise, __sock_create() still could touch a\nfreed netns while cifsd tries to reconnect from cifs_demultiplex_thread().\n\nAlso, maybe_get_net() cannot be put just before __sock_create() because\nthe code is not under RCU and there is a small chance that the same\naddress happened to be reallocated to another netns.\n\n[0]:\nCIFS: VFS: \\\\XXXXXXXXXXX has not responded in 15 seconds. Reconnecting...\nCIFS: Serverclose failed 4 times, giving up\nUnable to handle kernel paging request at virtual address 14de99e461f84a07\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\n[14de99e461f84a07] address between user and kernel address ranges\nInternal error: Oops: 0000000096000004 [#1] SMP\nModules linked in: cls_bpf sch_ingress nls_utf8 cifs cifs_arc4 cifs_md4 dns_resolver tcp_diag inet_diag veth xt_state xt_connmark nf_conntrack_netlink xt_nat xt_statistic xt_MASQUERADE xt_mark xt_addrtype ipt_REJECT nf_reject_ipv4 nft_chain_nat nf_nat xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment nft_compat nf_tables nfnetlink overlay nls_ascii nls_cp437 sunrpc vfat fat aes_ce_blk aes_ce_cipher ghash_ce sm4_ce_cipher sm4 sm3_ce sm3 sha3_ce sha512_ce sha512_arm64 sha1_ce ena button sch_fq_codel loop fuse configfs dmi_sysfs sha2_ce sha256_arm64 dm_mirror dm_region_hash dm_log dm_mod dax efivarfs\nCPU: 5 PID: 2690970 Comm: cifsd Not tainted 6.1.103-109.184.amzn2023.aarch64 #1\nHardware name: Amazon EC2 r7g.4xlarge/, BIOS 1.0 11/1/2018\npstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : fib_rules_lookup+0x44/0x238\nlr : __fib_lookup+0x64/0xbc\nsp : ffff8000265db790\nx29: ffff8000265db790 x28: 0000000000000000 x27: 000000000000bd01\nx26: 0000000000000000 x25: ffff000b4baf8000 x24: ffff00047b5e4580\nx23: ffff8000265db7e0 x22: 0000000000000000 x21: ffff00047b5e4500\nx20: ffff0010e3f694f8 x19: 14de99e461f849f7 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 3f92800abd010002\nx11: 0000000000000001 x10: ffff0010e3f69420 x9 : ffff800008a6f294\nx8 : 0000000000000000 x7 : 0000000000000006 x6 : 0000000000000000\nx5 : 0000000000000001 x4 : ffff001924354280 x3 : ffff8000265db7e0\nx2 : 0000000000000000 x1 : ffff0010e3f694f8 x0 : ffff00047b5e4500\nCall trace:\n fib_rules_lookup+0x44/0x238\n __fib_lookup+0x64/0xbc\n ip_route_output_key_hash_rcu+0x2c4/0x398\n ip_route_output_key_hash+0x60/0x8c\n tcp_v4_connect+0x290/0x488\n __inet_stream_connect+0x108/0x3d0\n inet_stream_connect+0x50/0x78\n kernel_connect+0x6c/0xac\n generic_ip_conne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53095",
"url": "https://www.suse.com/security/cve/CVE-2024-53095"
},
{
"category": "external",
"summary": "SUSE Bug 1233642 for CVE-2024-53095",
"url": "https://bugzilla.suse.com/1233642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53095"
},
{
"cve": "CVE-2024-53099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()\n\nIf a newly-added link type doesn\u0027t invoke BPF_LINK_TYPE(), accessing\nbpf_link_type_strs[link-\u003etype] may result in an out-of-bounds access.\n\nTo spot such missed invocations early in the future, checking the\nvalidity of link-\u003etype in bpf_link_show_fdinfo() and emitting a warning\nwhen such invocations are missed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53099",
"url": "https://www.suse.com/security/cve/CVE-2024-53099"
},
{
"category": "external",
"summary": "SUSE Bug 1233772 for CVE-2024-53099",
"url": "https://bugzilla.suse.com/1233772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53099"
},
{
"cve": "CVE-2024-53103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer\n\nWhen hvs is released, there is a possibility that vsk-\u003etrans may not\nbe initialized to NULL, which could lead to a dangling pointer.\nThis issue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53103",
"url": "https://www.suse.com/security/cve/CVE-2024-53103"
},
{
"category": "external",
"summary": "SUSE Bug 1234024 for CVE-2024-53103",
"url": "https://bugzilla.suse.com/1234024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53103"
},
{
"cve": "CVE-2024-53105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: page_alloc: move mlocked flag clearance into free_pages_prepare()\n\nSyzbot reported a bad page state problem caused by a page being freed\nusing free_page() still having a mlocked flag at free_pages_prepare()\nstage:\n\n BUG: Bad page state in process syz.5.504 pfn:61f45\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61f45\n flags: 0xfff00000080204(referenced|workingset|mlocked|node=0|zone=1|lastcpupid=0x7ff)\n raw: 00fff00000080204 0000000000000000 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\n page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set\n page_owner tracks the page as allocated\n page last allocated via order 0, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 8443, tgid 8442 (syz.5.504), ts 201884660643, free_ts 201499827394\n set_page_owner include/linux/page_owner.h:32 [inline]\n post_alloc_hook+0x1f3/0x230 mm/page_alloc.c:1537\n prep_new_page mm/page_alloc.c:1545 [inline]\n get_page_from_freelist+0x303f/0x3190 mm/page_alloc.c:3457\n __alloc_pages_noprof+0x292/0x710 mm/page_alloc.c:4733\n alloc_pages_mpol_noprof+0x3e8/0x680 mm/mempolicy.c:2265\n kvm_coalesced_mmio_init+0x1f/0xf0 virt/kvm/coalesced_mmio.c:99\n kvm_create_vm virt/kvm/kvm_main.c:1235 [inline]\n kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5488 [inline]\n kvm_dev_ioctl+0x12dc/0x2240 virt/kvm/kvm_main.c:5530\n __do_compat_sys_ioctl fs/ioctl.c:1007 [inline]\n __se_compat_sys_ioctl+0x510/0xc90 fs/ioctl.c:950\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0xb4/0x110 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x34/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n page last free pid 8399 tgid 8399 stack trace:\n reset_page_owner include/linux/page_owner.h:25 [inline]\n free_pages_prepare mm/page_alloc.c:1108 [inline]\n free_unref_folios+0xf12/0x18d0 mm/page_alloc.c:2686\n folios_put_refs+0x76c/0x860 mm/swap.c:1007\n free_pages_and_swap_cache+0x5c8/0x690 mm/swap_state.c:335\n __tlb_batch_free_encoded_pages mm/mmu_gather.c:136 [inline]\n tlb_batch_pages_flush mm/mmu_gather.c:149 [inline]\n tlb_flush_mmu_free mm/mmu_gather.c:366 [inline]\n tlb_flush_mmu+0x3a3/0x680 mm/mmu_gather.c:373\n tlb_finish_mmu+0xd4/0x200 mm/mmu_gather.c:465\n exit_mmap+0x496/0xc40 mm/mmap.c:1926\n __mmput+0x115/0x390 kernel/fork.c:1348\n exit_mm+0x220/0x310 kernel/exit.c:571\n do_exit+0x9b2/0x28e0 kernel/exit.c:926\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [inline]\n __se_sys_exit_group kernel/exit.c:1097 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1097\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n Modules linked in:\n CPU: 0 UID: 0 PID: 8442 Comm: syz.5.504 Not tainted 6.12.0-rc6-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n bad_page+0x176/0x1d0 mm/page_alloc.c:501\n free_page_is_bad mm/page_alloc.c:918 [inline]\n free_pages_prepare mm/page_alloc.c:1100 [inline]\n free_unref_page+0xed0/0xf20 mm/page_alloc.c:2638\n kvm_destroy_vm virt/kvm/kvm_main.c:1327 [inline]\n kvm_put_kvm+0xc75/0x1350 virt/kvm/kvm_main.c:1386\n kvm_vcpu_release+0x54/0x60 virt/kvm/kvm_main.c:4143\n __fput+0x23f/0x880 fs/file_table.c:431\n task_work_run+0x24f/0x310 kernel/task_work.c:239\n exit_task_work include/linux/task_work.h:43 [inline]\n do_exit+0xa2f/0x28e0 kernel/exit.c:939\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53105",
"url": "https://www.suse.com/security/cve/CVE-2024-53105"
},
{
"category": "external",
"summary": "SUSE Bug 1234069 for CVE-2024-53105",
"url": "https://bugzilla.suse.com/1234069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53105"
},
{
"cve": "CVE-2024-53110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53110"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvp_vdpa: fix id_table array not null terminated error\n\nAllocate one extra virtio_device_id as null terminator, otherwise\nvdpa_mgmtdev_get_classes() may iterate multiple times and visit\nundefined memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53110",
"url": "https://www.suse.com/security/cve/CVE-2024-53110"
},
{
"category": "external",
"summary": "SUSE Bug 1234085 for CVE-2024-53110",
"url": "https://bugzilla.suse.com/1234085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53110"
},
{
"cve": "CVE-2024-53111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix address wraparound in move_page_tables()\n\nOn 32-bit platforms, it is possible for the expression `len + old_addr \u003c\nold_end` to be false-positive if `len + old_addr` wraps around. \n`old_addr` is the cursor in the old range up to which page table entries\nhave been moved; so if the operation succeeded, `old_addr` is the *end* of\nthe old region, and adding `len` to it can wrap.\n\nThe overflow causes mremap() to mistakenly believe that PTEs have been\ncopied; the consequence is that mremap() bails out, but doesn\u0027t move the\nPTEs back before the new VMA is unmapped, causing anonymous pages in the\nregion to be lost. So basically if userspace tries to mremap() a\nprivate-anon region and hits this bug, mremap() will return an error and\nthe private-anon region\u0027s contents appear to have been zeroed.\n\nThe idea of this check is that `old_end - len` is the original start\naddress, and writing the check that way also makes it easier to read; so\nfix the check by rearranging the comparison accordingly.\n\n(An alternate fix would be to refactor this function by introducing an\n\"orig_old_start\" variable or such.)\n\n\nTested in a VM with a 32-bit X86 kernel; without the patch:\n\n```\nuser@horn:~/big_mremap$ cat test.c\n#define _GNU_SOURCE\n#include \u003cstdlib.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003cerr.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define ADDR1 ((void*)0x60000000)\n#define ADDR2 ((void*)0x10000000)\n#define SIZE 0x50000000uL\n\nint main(void) {\n unsigned char *p1 = mmap(ADDR1, SIZE, PROT_READ|PROT_WRITE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p1 == MAP_FAILED)\n err(1, \"mmap 1\");\n unsigned char *p2 = mmap(ADDR2, SIZE, PROT_NONE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p2 == MAP_FAILED)\n err(1, \"mmap 2\");\n *p1 = 0x41;\n printf(\"first char is 0x%02hhx\\n\", *p1);\n unsigned char *p3 = mremap(p1, SIZE, SIZE,\n MREMAP_MAYMOVE|MREMAP_FIXED, p2);\n if (p3 == MAP_FAILED) {\n printf(\"mremap() failed; first char is 0x%02hhx\\n\", *p1);\n } else {\n printf(\"mremap() succeeded; first char is 0x%02hhx\\n\", *p3);\n }\n}\nuser@horn:~/big_mremap$ gcc -static -o test test.c\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() failed; first char is 0x00\n```\n\nWith the patch:\n\n```\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() succeeded; first char is 0x41\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53111",
"url": "https://www.suse.com/security/cve/CVE-2024-53111"
},
{
"category": "external",
"summary": "SUSE Bug 1234086 for CVE-2024-53111",
"url": "https://bugzilla.suse.com/1234086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53111"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Improve MSG_ZEROCOPY error handling\n\nAdd a missing kfree_skb() to prevent memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53117",
"url": "https://www.suse.com/security/cve/CVE-2024-53117"
},
{
"category": "external",
"summary": "SUSE Bug 1234079 for CVE-2024-53117",
"url": "https://bugzilla.suse.com/1234079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53117"
},
{
"cve": "CVE-2024-53118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Fix sk_error_queue memory leak\n\nKernel queues MSG_ZEROCOPY completion notifications on the error queue.\nWhere they remain, until explicitly recv()ed. To prevent memory leaks,\nclean up the queue when the socket is destroyed.\n\nunreferenced object 0xffff8881028beb00 (size 224):\n comm \"vsock_test\", pid 1218, jiffies 4294694897\n hex dump (first 32 bytes):\n 90 b0 21 17 81 88 ff ff 90 b0 21 17 81 88 ff ff ..!.......!.....\n 00 00 00 00 00 00 00 00 00 b0 21 17 81 88 ff ff ..........!.....\n backtrace (crc 6c7031ca):\n [\u003cffffffff81418ef7\u003e] kmem_cache_alloc_node_noprof+0x2f7/0x370\n [\u003cffffffff81d35882\u003e] __alloc_skb+0x132/0x180\n [\u003cffffffff81d2d32b\u003e] sock_omalloc+0x4b/0x80\n [\u003cffffffff81d3a8ae\u003e] msg_zerocopy_realloc+0x9e/0x240\n [\u003cffffffff81fe5cb2\u003e] virtio_transport_send_pkt_info+0x412/0x4c0\n [\u003cffffffff81fe6183\u003e] virtio_transport_stream_enqueue+0x43/0x50\n [\u003cffffffff81fe0813\u003e] vsock_connectible_sendmsg+0x373/0x450\n [\u003cffffffff81d233d5\u003e] ____sys_sendmsg+0x365/0x3a0\n [\u003cffffffff81d246f4\u003e] ___sys_sendmsg+0x84/0xd0\n [\u003cffffffff81d26f47\u003e] __sys_sendmsg+0x47/0x80\n [\u003cffffffff820d3df3\u003e] do_syscall_64+0x93/0x180\n [\u003cffffffff8220012b\u003e] entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53118",
"url": "https://www.suse.com/security/cve/CVE-2024-53118"
},
{
"category": "external",
"summary": "SUSE Bug 1234071 for CVE-2024-53118",
"url": "https://bugzilla.suse.com/1234071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53118"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53121"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fs, lock FTE when checking if active\n\nThe referenced commits introduced a two-step process for deleting FTEs:\n\n- Lock the FTE, delete it from hardware, set the hardware deletion function\n to NULL and unlock the FTE.\n- Lock the parent flow group, delete the software copy of the FTE, and\n remove it from the xarray.\n\nHowever, this approach encounters a race condition if a rule with the same\nmatch value is added simultaneously. In this scenario, fs_core may set the\nhardware deletion function to NULL prematurely, causing a panic during\nsubsequent rule deletions.\n\nTo prevent this, ensure the active flag of the FTE is checked under a lock,\nwhich will prevent the fs_core layer from attaching a new steering rule to\nan FTE that is in the process of deletion.\n\n[ 438.967589] MOSHE: 2496 mlx5_del_flow_rules del_hw_func\n[ 438.968205] ------------[ cut here ]------------\n[ 438.968654] refcount_t: decrement hit 0; leaking memory.\n[ 438.969249] WARNING: CPU: 0 PID: 8957 at lib/refcount.c:31 refcount_warn_saturate+0xfb/0x110\n[ 438.970054] Modules linked in: act_mirred cls_flower act_gact sch_ingress openvswitch nsh mlx5_vdpa vringh vhost_iotlb vdpa mlx5_ib mlx5_core xt_conntrack xt_MASQUERADE nf_conntrack_netlink nfnetlink xt_addrtype iptable_nat nf_nat br_netfilter rpcsec_gss_krb5 auth_rpcgss oid_registry overlay rpcrdma rdma_ucm ib_iser libiscsi scsi_transport_iscsi ib_umad rdma_cm ib_ipoib iw_cm ib_cm ib_uverbs ib_core zram zsmalloc fuse [last unloaded: cls_flower]\n[ 438.973288] CPU: 0 UID: 0 PID: 8957 Comm: tc Not tainted 6.12.0-rc1+ #8\n[ 438.973888] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n[ 438.974874] RIP: 0010:refcount_warn_saturate+0xfb/0x110\n[ 438.975363] Code: 40 66 3b 82 c6 05 16 e9 4d 01 01 e8 1f 7c a0 ff 0f 0b c3 cc cc cc cc 48 c7 c7 10 66 3b 82 c6 05 fd e8 4d 01 01 e8 05 7c a0 ff \u003c0f\u003e 0b c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90\n[ 438.976947] RSP: 0018:ffff888124a53610 EFLAGS: 00010286\n[ 438.977446] RAX: 0000000000000000 RBX: ffff888119d56de0 RCX: 0000000000000000\n[ 438.978090] RDX: ffff88852c828700 RSI: ffff88852c81b3c0 RDI: ffff88852c81b3c0\n[ 438.978721] RBP: ffff888120fa0e88 R08: 0000000000000000 R09: ffff888124a534b0\n[ 438.979353] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888119d56de0\n[ 438.979979] R13: ffff888120fa0ec0 R14: ffff888120fa0ee8 R15: ffff888119d56de0\n[ 438.980607] FS: 00007fe6dcc0f800(0000) GS:ffff88852c800000(0000) knlGS:0000000000000000\n[ 438.983984] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 438.984544] CR2: 00000000004275e0 CR3: 0000000186982001 CR4: 0000000000372eb0\n[ 438.985205] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 438.985842] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 438.986507] Call Trace:\n[ 438.986799] \u003cTASK\u003e\n[ 438.987070] ? __warn+0x7d/0x110\n[ 438.987426] ? refcount_warn_saturate+0xfb/0x110\n[ 438.987877] ? report_bug+0x17d/0x190\n[ 438.988261] ? prb_read_valid+0x17/0x20\n[ 438.988659] ? handle_bug+0x53/0x90\n[ 438.989054] ? exc_invalid_op+0x14/0x70\n[ 438.989458] ? asm_exc_invalid_op+0x16/0x20\n[ 438.989883] ? refcount_warn_saturate+0xfb/0x110\n[ 438.990348] mlx5_del_flow_rules+0x2f7/0x340 [mlx5_core]\n[ 438.990932] __mlx5_eswitch_del_rule+0x49/0x170 [mlx5_core]\n[ 438.991519] ? mlx5_lag_is_sriov+0x3c/0x50 [mlx5_core]\n[ 438.992054] ? xas_load+0x9/0xb0\n[ 438.992407] mlx5e_tc_rule_unoffload+0x45/0xe0 [mlx5_core]\n[ 438.993037] mlx5e_tc_del_fdb_flow+0x2a6/0x2e0 [mlx5_core]\n[ 438.993623] mlx5e_flow_put+0x29/0x60 [mlx5_core]\n[ 438.994161] mlx5e_delete_flower+0x261/0x390 [mlx5_core]\n[ 438.994728] tc_setup_cb_destroy+0xb9/0x190\n[ 438.995150] fl_hw_destroy_filter+0x94/0xc0 [cls_flower]\n[ 438.995650] fl_change+0x11a4/0x13c0 [cls_flower]\n[ 438.996105] tc_new_tfilter+0x347/0xbc0\n[ 438.996503] ? __\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53121",
"url": "https://www.suse.com/security/cve/CVE-2024-53121"
},
{
"category": "external",
"summary": "SUSE Bug 1234078 for CVE-2024-53121",
"url": "https://bugzilla.suse.com/1234078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53121"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: solidrun: Fix UB bug with devres\n\nIn psnet_open_pf_bar() and snet_open_vf_bar() a string later passed to\npcim_iomap_regions() is placed on the stack. Neither\npcim_iomap_regions() nor the functions it calls copy that string.\n\nShould the string later ever be used, this, consequently, causes\nundefined behavior since the stack frame will by then have disappeared.\n\nFix the bug by allocating the strings on the heap through\ndevm_kasprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53126",
"url": "https://www.suse.com/security/cve/CVE-2024-53126"
},
{
"category": "external",
"summary": "SUSE Bug 1234158 for CVE-2024-53126",
"url": "https://bugzilla.suse.com/1234158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53126"
},
{
"cve": "CVE-2024-53127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\"\n\nThe commit 8396c793ffdf (\"mmc: dw_mmc: Fix IDMAC operation with pages\nbigger than 4K\") increased the max_req_size, even for 4K pages, causing\nvarious issues:\n- Panic booting the kernel/rootfs from an SD card on Rockchip RK3566\n- Panic booting the kernel/rootfs from an SD card on StarFive JH7100\n- \"swiotlb buffer is full\" and data corruption on StarFive JH7110\n\nAt this stage no fix have been found, so it\u0027s probably better to just\nrevert the change.\n\nThis reverts commit 8396c793ffdf28bb8aee7cfe0891080f8cab7890.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53127",
"url": "https://www.suse.com/security/cve/CVE-2024-53127"
},
{
"category": "external",
"summary": "SUSE Bug 1234153 for CVE-2024-53127",
"url": "https://bugzilla.suse.com/1234153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53127"
},
{
"cve": "CVE-2024-53129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/rockchip: vop: Fix a dereferenced before check warning\n\nThe \u0027state\u0027 can\u0027t be NULL, we should check crtc_state.\n\nFix warning:\ndrivers/gpu/drm/rockchip/rockchip_drm_vop.c:1096\nvop_plane_atomic_async_check() warn: variable dereferenced before check\n\u0027state\u0027 (see line 1077)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53129",
"url": "https://www.suse.com/security/cve/CVE-2024-53129"
},
{
"category": "external",
"summary": "SUSE Bug 1234155 for CVE-2024-53129",
"url": "https://bugzilla.suse.com/1234155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53129"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle dml allocation failure to avoid crash\n\n[Why]\nIn the case where a dml allocation fails for any reason, the\ncurrent state\u0027s dml contexts would no longer be valid. Then\nsubsequent calls dc_state_copy_internal would shallow copy\ninvalid memory and if the new state was released, a double\nfree would occur.\n\n[How]\nReset dml pointers in new_state to NULL and avoid invalid\npointer\n\n(cherry picked from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53133",
"url": "https://www.suse.com/security/cve/CVE-2024-53133"
},
{
"category": "external",
"summary": "SUSE Bug 1234221 for CVE-2024-53133",
"url": "https://bugzilla.suse.com/1234221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53133"
},
{
"cve": "CVE-2024-53134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx93-blk-ctrl: correct remove path\n\nThe check condition should be \u0027i \u003c bc-\u003eonecell_data.num_domains\u0027, not\n\u0027bc-\u003eonecell_data.num_domains\u0027 which will make the look never finish\nand cause kernel panic.\n\nAlso disable runtime to address\n\"imx93-blk-ctrl 4ac10000.system-controller: Unbalanced pm_runtime_enable!\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53134",
"url": "https://www.suse.com/security/cve/CVE-2024-53134"
},
{
"category": "external",
"summary": "SUSE Bug 1234159 for CVE-2024-53134",
"url": "https://bugzilla.suse.com/1234159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53134"
},
{
"cve": "CVE-2024-53136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: revert \"mm: shmem: fix data-race in shmem_getattr()\"\n\nRevert d949d1d14fa2 (\"mm: shmem: fix data-race in shmem_getattr()\") as\nsuggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over\nNFS.\n\nAs Hugh commented, \"added just to silence a syzbot sanitizer splat: added\nwhere there has never been any practical problem\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53136",
"url": "https://www.suse.com/security/cve/CVE-2024-53136"
},
{
"category": "external",
"summary": "SUSE Bug 1234161 for CVE-2024-53136",
"url": "https://bugzilla.suse.com/1234161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53136"
},
{
"cve": "CVE-2024-53138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: kTLS, Fix incorrect page refcounting\n\nThe kTLS tx handling code is using a mix of get_page() and\npage_ref_inc() APIs to increment the page reference. But on the release\npath (mlx5e_ktls_tx_handle_resync_dump_comp()), only put_page() is used.\n\nThis is an issue when using pages from large folios: the get_page()\nreferences are stored on the folio page while the page_ref_inc()\nreferences are stored directly in the given page. On release the folio\npage will be dereferenced too many times.\n\nThis was found while doing kTLS testing with sendfile() + ZC when the\nserved file was read from NFS on a kernel with NFS large folios support\n(commit 49b29a573da8 (\"nfs: add support for large folios\")).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53138",
"url": "https://www.suse.com/security/cve/CVE-2024-53138"
},
{
"category": "external",
"summary": "SUSE Bug 1234223 for CVE-2024-53138",
"url": "https://bugzilla.suse.com/1234223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53138"
},
{
"cve": "CVE-2024-53141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: add missing range check in bitmap_ip_uadt\n\nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,\nthe values of ip and ip_to are slightly swapped. Therefore, the range check\nfor ip should be done later, but this part is missing and it seems that the\nvulnerability occurs.\n\nSo we should add missing range checks and remove unnecessary range checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53141",
"url": "https://www.suse.com/security/cve/CVE-2024-53141"
},
{
"category": "external",
"summary": "SUSE Bug 1234381 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "external",
"summary": "SUSE Bug 1245778 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1245778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53141"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE\n\nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4\n(\"Bluetooth: Always request for user confirmation for Just Works\")\nalways request user confirmation with confirm_hint set since the\nlikes of bluetoothd have dedicated policy around JUST_WORKS method\n(e.g. main.conf:JustWorksRepairing).\n\nCVE: CVE-2024-8805",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53144",
"url": "https://www.suse.com/security/cve/CVE-2024-53144"
},
{
"category": "external",
"summary": "SUSE Bug 1234690 for CVE-2024-53144",
"url": "https://bugzilla.suse.com/1234690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53144"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: Flush partial mappings in error case\n\nIf some remap_pfn_range() calls succeeded before one failed, we still have\nbuffer pages mapped into the userspace page tables when we drop the buffer\nreference with comedi_buf_map_put(bm). The userspace mappings are only\ncleaned up later in the mmap error path.\n\nFix it by explicitly flushing all mappings in our VMA on the error path.\n\nSee commit 79a61cc3fc04 (\"mm: avoid leaving partial pfn mappings around in\nerror case\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53148",
"url": "https://www.suse.com/security/cve/CVE-2024-53148"
},
{
"category": "external",
"summary": "SUSE Bug 1234832 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "external",
"summary": "SUSE Bug 1234833 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53148"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: Address an integer overflow\n\nDan Carpenter reports:\n\u003e Commit 78147ca8b4a9 (\"svcrdma: Add a \"parsed chunk list\" data\n\u003e structure\") from Jun 22, 2020 (linux-next), leads to the following\n\u003e Smatch static checker warning:\n\u003e\n\u003e\tnet/sunrpc/xprtrdma/svc_rdma_recvfrom.c:498 xdr_check_write_chunk()\n\u003e\twarn: potential user controlled sizeof overflow \u0027segcount * 4 * 4\u0027\n\u003e\n\u003e net/sunrpc/xprtrdma/svc_rdma_recvfrom.c\n\u003e 488 static bool xdr_check_write_chunk(struct svc_rdma_recv_ctxt *rctxt)\n\u003e 489 {\n\u003e 490 u32 segcount;\n\u003e 491 __be32 *p;\n\u003e 492\n\u003e 493 if (xdr_stream_decode_u32(\u0026rctxt-\u003erc_stream, \u0026segcount))\n\u003e ^^^^^^^^\n\u003e\n\u003e 494 return false;\n\u003e 495\n\u003e 496 /* A bogus segcount causes this buffer overflow check to fail. */\n\u003e 497 p = xdr_inline_decode(\u0026rctxt-\u003erc_stream,\n\u003e --\u003e 498 segcount * rpcrdma_segment_maxsz * sizeof(*p));\n\u003e\n\u003e\n\u003e segcount is an untrusted u32. On 32bit systems anything \u003e= SIZE_MAX / 16 will\n\u003e have an integer overflow and some those values will be accepted by\n\u003e xdr_inline_decode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53151",
"url": "https://www.suse.com/security/cve/CVE-2024-53151"
},
{
"category": "external",
"summary": "SUSE Bug 1234829 for CVE-2024-53151",
"url": "https://bugzilla.suse.com/1234829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53151"
},
{
"cve": "CVE-2024-53154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clk-apple-nco: Add NULL check in applnco_probe\n\nAdd NULL check in applnco_probe, to handle kernel NULL pointer\ndereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53154",
"url": "https://www.suse.com/security/cve/CVE-2024-53154"
},
{
"category": "external",
"summary": "SUSE Bug 1234826 for CVE-2024-53154",
"url": "https://bugzilla.suse.com/1234826"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53154"
},
{
"cve": "CVE-2024-53155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix uninitialized value in ocfs2_file_read_iter()\n\nSyzbot has reported the following KMSAN splat:\n\nBUG: KMSAN: uninit-value in ocfs2_file_read_iter+0x9a4/0xf80\n ocfs2_file_read_iter+0x9a4/0xf80\n __io_read+0x8d4/0x20f0\n io_read+0x3e/0xf0\n io_issue_sqe+0x42b/0x22c0\n io_wq_submit_work+0xaf9/0xdc0\n io_worker_handle_work+0xd13/0x2110\n io_wq_worker+0x447/0x1410\n ret_from_fork+0x6f/0x90\n ret_from_fork_asm+0x1a/0x30\n\nUninit was created at:\n __alloc_pages_noprof+0x9a7/0xe00\n alloc_pages_mpol_noprof+0x299/0x990\n alloc_pages_noprof+0x1bf/0x1e0\n allocate_slab+0x33a/0x1250\n ___slab_alloc+0x12ef/0x35e0\n kmem_cache_alloc_bulk_noprof+0x486/0x1330\n __io_alloc_req_refill+0x84/0x560\n io_submit_sqes+0x172f/0x2f30\n __se_sys_io_uring_enter+0x406/0x41c0\n __x64_sys_io_uring_enter+0x11f/0x1a0\n x64_sys_call+0x2b54/0x3ba0\n do_syscall_64+0xcd/0x1e0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nSince an instance of \u0027struct kiocb\u0027 may be passed from the block layer\nwith \u0027private\u0027 field uninitialized, introduce \u0027ocfs2_iocb_init_rw_locked()\u0027\nand use it from where \u0027ocfs2_dio_end_io()\u0027 might take care, i.e. in\n\u0027ocfs2_file_read_iter()\u0027 and \u0027ocfs2_file_write_iter()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53155",
"url": "https://www.suse.com/security/cve/CVE-2024-53155"
},
{
"category": "external",
"summary": "SUSE Bug 1234855 for CVE-2024-53155",
"url": "https://bugzilla.suse.com/1234855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53155"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53159"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53159",
"url": "https://www.suse.com/security/cve/CVE-2024-53159"
},
{
"category": "external",
"summary": "SUSE Bug 1234848 for CVE-2024-53159",
"url": "https://bugzilla.suse.com/1234848"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53159"
},
{
"cve": "CVE-2024-53160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu\n\nKCSAN reports a data race when access the krcp-\u003emonitor_work.timer.expires\nvariable in the schedule_delayed_monitor_work() function:\n\n\u003csnip\u003e\nBUG: KCSAN: data-race in __mod_timer / kvfree_call_rcu\n\nread to 0xffff888237d1cce8 of 8 bytes by task 10149 on cpu 1:\n schedule_delayed_monitor_work kernel/rcu/tree.c:3520 [inline]\n kvfree_call_rcu+0x3b8/0x510 kernel/rcu/tree.c:3839\n trie_update_elem+0x47c/0x620 kernel/bpf/lpm_trie.c:441\n bpf_map_update_value+0x324/0x350 kernel/bpf/syscall.c:203\n generic_map_update_batch+0x401/0x520 kernel/bpf/syscall.c:1849\n bpf_map_do_batch+0x28c/0x3f0 kernel/bpf/syscall.c:5143\n __sys_bpf+0x2e5/0x7a0\n __do_sys_bpf kernel/bpf/syscall.c:5741 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5739 [inline]\n __x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5739\n x64_sys_call+0x2625/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nwrite to 0xffff888237d1cce8 of 8 bytes by task 56 on cpu 0:\n __mod_timer+0x578/0x7f0 kernel/time/timer.c:1173\n add_timer_global+0x51/0x70 kernel/time/timer.c:1330\n __queue_delayed_work+0x127/0x1a0 kernel/workqueue.c:2523\n queue_delayed_work_on+0xdf/0x190 kernel/workqueue.c:2552\n queue_delayed_work include/linux/workqueue.h:677 [inline]\n schedule_delayed_monitor_work kernel/rcu/tree.c:3525 [inline]\n kfree_rcu_monitor+0x5e8/0x660 kernel/rcu/tree.c:3643\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0x483/0x9a0 kernel/workqueue.c:3310\n worker_thread+0x51d/0x6f0 kernel/workqueue.c:3391\n kthread+0x1d1/0x210 kernel/kthread.c:389\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 UID: 0 PID: 56 Comm: kworker/u8:4 Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events_unbound kfree_rcu_monitor\n\u003csnip\u003e\n\nkfree_rcu_monitor() rearms the work if a \"krcp\" has to be still\noffloaded and this is done without holding krcp-\u003elock, whereas\nthe kvfree_call_rcu() holds it.\n\nFix it by acquiring the \"krcp-\u003elock\" for kfree_rcu_monitor() so\nboth functions do not race anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53160",
"url": "https://www.suse.com/security/cve/CVE-2024-53160"
},
{
"category": "external",
"summary": "SUSE Bug 1234810 for CVE-2024-53160",
"url": "https://bugzilla.suse.com/1234810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53160"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix ordering of qlen adjustment\n\nChanges to sch-\u003eq.qlen around qdisc_tree_reduce_backlog() need to happen\n_before_ a call to said function because otherwise it may fail to notify\nparent qdiscs when the child is about to become empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53164",
"url": "https://www.suse.com/security/cve/CVE-2024-53164"
},
{
"category": "external",
"summary": "SUSE Bug 1234863 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "external",
"summary": "SUSE Bug 1246019 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1246019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53164"
},
{
"cve": "CVE-2024-53166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix bfqq uaf in bfq_limit_depth()\n\nSet new allocated bfqq to bic or remove freed bfqq from bic are both\nprotected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq\nfrom bic without the lock, this can lead to UAF if the io_context is\nshared by multiple tasks.\n\nFor example, test bfq with io_uring can trigger following UAF in v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfqq_group+0x15/0x50\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x80\n print_address_description.constprop.0+0x66/0x300\n print_report+0x3e/0x70\n kasan_report+0xb4/0xf0\n bfqq_group+0x15/0x50\n bfqq_request_over_limit+0x130/0x9a0\n bfq_limit_depth+0x1b5/0x480\n __blk_mq_alloc_requests+0x2b5/0xa00\n blk_mq_get_new_requests+0x11d/0x1d0\n blk_mq_submit_bio+0x286/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __block_write_full_folio+0x3d0/0x640\n writepage_cb+0x3b/0xc0\n write_cache_pages+0x254/0x6c0\n write_cache_pages+0x254/0x6c0\n do_writepages+0x192/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nAllocated by task 808602:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_slab_alloc+0x83/0x90\n kmem_cache_alloc_node+0x1b1/0x6d0\n bfq_get_queue+0x138/0xfa0\n bfq_get_bfqq_handle_split+0xe3/0x2c0\n bfq_init_rq+0x196/0xbb0\n bfq_insert_request.isra.0+0xb5/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_insert_request+0x15d/0x440\n blk_mq_submit_bio+0x8a4/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __blkdev_direct_IO_async+0x2dd/0x330\n blkdev_write_iter+0x39a/0x450\n io_write+0x22a/0x840\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFreed by task 808589:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n __kasan_slab_free+0x126/0x1b0\n kmem_cache_free+0x10c/0x750\n bfq_put_queue+0x2dd/0x770\n __bfq_insert_request.isra.0+0x155/0x7a0\n bfq_insert_request.isra.0+0x122/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_dispatch_plug_list+0x528/0x7e0\n blk_mq_flush_plug_list.part.0+0xe5/0x590\n __blk_flush_plug+0x3b/0x90\n blk_finish_plug+0x40/0x60\n do_writepages+0x19d/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFix the problem by protecting bic_to_bfqq() with bfqd-\u003elock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53166",
"url": "https://www.suse.com/security/cve/CVE-2024-53166"
},
{
"category": "external",
"summary": "SUSE Bug 1234884 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "external",
"summary": "SUSE Bug 1234885 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-53168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: fix one UAF issue caused by sunrpc kernel tcp socket\n\nBUG: KASAN: slab-use-after-free in tcp_write_timer_handler+0x156/0x3e0\nRead of size 1 at addr ffff888111f322cd by task swapper/0/0\n\nCPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc4-dirty #7\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x68/0xa0\n print_address_description.constprop.0+0x2c/0x3d0\n print_report+0xb4/0x270\n kasan_report+0xbd/0xf0\n tcp_write_timer_handler+0x156/0x3e0\n tcp_write_timer+0x66/0x170\n call_timer_fn+0xfb/0x1d0\n __run_timers+0x3f8/0x480\n run_timer_softirq+0x9b/0x100\n handle_softirqs+0x153/0x390\n __irq_exit_rcu+0x103/0x120\n irq_exit_rcu+0xe/0x20\n sysvec_apic_timer_interrupt+0x76/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\nCode: 4c 01 c7 4c 29 c2 e9 72 ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90\n 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 f8 25 00 fb f4 \u003cfa\u003e c3 cc cc cc\n cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90\nRSP: 0018:ffffffffa2007e28 EFLAGS: 00000242\nRAX: 00000000000f3b31 RBX: 1ffffffff4400fc7 RCX: ffffffffa09c3196\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9f00590f\nRBP: 0000000000000000 R08: 0000000000000001 R09: ffffed102360835d\nR10: ffff88811b041aeb R11: 0000000000000001 R12: 0000000000000000\nR13: ffffffffa202d7c0 R14: 0000000000000000 R15: 00000000000147d0\n default_idle_call+0x6b/0xa0\n cpuidle_idle_call+0x1af/0x1f0\n do_idle+0xbc/0x130\n cpu_startup_entry+0x33/0x40\n rest_init+0x11f/0x210\n start_kernel+0x39a/0x420\n x86_64_start_reservations+0x18/0x30\n x86_64_start_kernel+0x97/0xa0\n common_startup_64+0x13e/0x141\n \u003c/TASK\u003e\n\nAllocated by task 595:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_slab_alloc+0x87/0x90\n kmem_cache_alloc_noprof+0x12b/0x3f0\n copy_net_ns+0x94/0x380\n create_new_namespaces+0x24c/0x500\n unshare_nsproxy_namespaces+0x75/0xf0\n ksys_unshare+0x24e/0x4f0\n __x64_sys_unshare+0x1f/0x30\n do_syscall_64+0x70/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 100:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x54/0x70\n kmem_cache_free+0x156/0x5d0\n cleanup_net+0x5d3/0x670\n process_one_work+0x776/0xa90\n worker_thread+0x2e2/0x560\n kthread+0x1a8/0x1f0\n ret_from_fork+0x34/0x60\n ret_from_fork_asm+0x1a/0x30\n\nReproduction script:\n\nmkdir -p /mnt/nfsshare\nmkdir -p /mnt/nfs/netns_1\nmkfs.ext4 /dev/sdb\nmount /dev/sdb /mnt/nfsshare\nsystemctl restart nfs-server\nchmod 777 /mnt/nfsshare\nexportfs -i -o rw,no_root_squash *:/mnt/nfsshare\n\nip netns add netns_1\nip link add name veth_1_peer type veth peer veth_1\nifconfig veth_1_peer 11.11.0.254 up\nip link set veth_1 netns netns_1\nip netns exec netns_1 ifconfig veth_1 11.11.0.1\n\nip netns exec netns_1 /root/iptables -A OUTPUT -d 11.11.0.254 -p tcp \\\n\t--tcp-flags FIN FIN -j DROP\n\n(note: In my environment, a DESTROY_CLIENTID operation is always sent\n immediately, breaking the nfs tcp connection.)\nip netns exec netns_1 timeout -s 9 300 mount -t nfs -o proto=tcp,vers=4.1 \\\n\t11.11.0.254:/mnt/nfsshare /mnt/nfs/netns_1\n\nip netns del netns_1\n\nThe reason here is that the tcp socket in netns_1 (nfs side) has been\nshutdown and closed (done in xs_destroy), but the FIN message (with ack)\nis discarded, and the nfsd side keeps sending retransmission messages.\nAs a result, when the tcp sock in netns_1 processes the received message,\nit sends the message (FIN message) in the sending queue, and the tcp timer\nis re-established. When the network namespace is deleted, the net structure\naccessed by tcp\u0027s timer handler function causes problems.\n\nTo fix this problem, let\u0027s hold netns refcnt for the tcp kernel socket as\ndone in other modules. This is an ugly hack which can easily be backported\nto earlier kernels. A proper fix which cleans up the interfaces will\nfollow, but may not be so easy to backport.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53168",
"url": "https://www.suse.com/security/cve/CVE-2024-53168"
},
{
"category": "external",
"summary": "SUSE Bug 1234887 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "external",
"summary": "SUSE Bug 1243650 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1243650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53168"
},
{
"cve": "CVE-2024-53169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fabrics: fix kernel crash while shutting down controller\n\nThe nvme keep-alive operation, which executes at a periodic interval,\ncould potentially sneak in while shutting down a fabric controller.\nThis may lead to a race between the fabric controller admin queue\ndestroy code path (invoked while shutting down controller) and hw/hctx\nqueue dispatcher called from the nvme keep-alive async request queuing\noperation. This race could lead to the kernel crash shown below:\n\nCall Trace:\n autoremove_wake_function+0x0/0xbc (unreliable)\n __blk_mq_sched_dispatch_requests+0x114/0x24c\n blk_mq_sched_dispatch_requests+0x44/0x84\n blk_mq_run_hw_queue+0x140/0x220\n nvme_keep_alive_work+0xc8/0x19c [nvme_core]\n process_one_work+0x200/0x4e0\n worker_thread+0x340/0x504\n kthread+0x138/0x140\n start_kernel_thread+0x14/0x18\n\nWhile shutting down fabric controller, if nvme keep-alive request sneaks\nin then it would be flushed off. The nvme_keep_alive_end_io function is\nthen invoked to handle the end of the keep-alive operation which\ndecrements the admin-\u003eq_usage_counter and assuming this is the last/only\nrequest in the admin queue then the admin-\u003eq_usage_counter becomes zero.\nIf that happens then blk-mq destroy queue operation (blk_mq_destroy_\nqueue()) which could be potentially running simultaneously on another\ncpu (as this is the controller shutdown code path) would forward\nprogress and deletes the admin queue. So, now from this point onward\nwe are not supposed to access the admin queue resources. However the\nissue here\u0027s that the nvme keep-alive thread running hw/hctx queue\ndispatch operation hasn\u0027t yet finished its work and so it could still\npotentially access the admin queue resource while the admin queue had\nbeen already deleted and that causes the above crash.\n\nThe above kernel crash is regression caused due to changes implemented\nin commit a54a93d0e359 (\"nvme: move stopping keep-alive into\nnvme_uninit_ctrl()\"). Ideally we should stop keep-alive before destroyin\ng the admin queue and freeing the admin tagset so that it wouldn\u0027t sneak\nin during the shutdown operation. However we removed the keep alive stop\noperation from the beginning of the controller shutdown code path in commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\")\nand added it under nvme_uninit_ctrl() which executes very late in the\nshutdown code path after the admin queue is destroyed and its tagset is\nremoved. So this change created the possibility of keep-alive sneaking in\nand interfering with the shutdown operation and causing observed kernel\ncrash.\n\nTo fix the observed crash, we decided to move nvme_stop_keep_alive() from\nnvme_uninit_ctrl() to nvme_remove_admin_tag_set(). This change would ensure\nthat we don\u0027t forward progress and delete the admin queue until the keep-\nalive operation is finished (if it\u0027s in-flight) or cancelled and that would\nhelp contain the race condition explained above and hence avoid the crash.\n\nMoving nvme_stop_keep_alive() to nvme_remove_admin_tag_set() instead of\nadding nvme_stop_keep_alive() to the beginning of the controller shutdown\ncode path in nvme_stop_ctrl(), as was the case earlier before commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\"),\nwould help save one callsite of nvme_stop_keep_alive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53169",
"url": "https://www.suse.com/security/cve/CVE-2024-53169"
},
{
"category": "external",
"summary": "SUSE Bug 1234900 for CVE-2024-53169",
"url": "https://bugzilla.suse.com/1234900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53169"
},
{
"cve": "CVE-2024-53170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix uaf for flush rq while iterating tags\n\nblk_mq_clear_flush_rq_mapping() is not called during scsi probe, by\nchecking blk_queue_init_done(). However, QUEUE_FLAG_INIT_DONE is cleared\nin del_gendisk by commit aec89dc5d421 (\"block: keep q_usage_counter in\natomic mode after del_gendisk\"), hence for disk like scsi, following\nblk_mq_destroy_queue() will not clear flush rq from tags-\u003erqs[] as well,\ncause following uaf that is found by our syzkaller for v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in blk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nRead of size 4 at addr ffff88811c969c20 by task kworker/1:2H/224909\n\nCPU: 1 PID: 224909 Comm: kworker/1:2H Not tainted 6.6.0-ga836a5060850 #32\nWorkqueue: kblockd blk_mq_timeout_work\nCall Trace:\n\n__dump_stack lib/dump_stack.c:88 [inline]\ndump_stack_lvl+0x91/0xf0 lib/dump_stack.c:106\nprint_address_description.constprop.0+0x66/0x300 mm/kasan/report.c:364\nprint_report+0x3e/0x70 mm/kasan/report.c:475\nkasan_report+0xb8/0xf0 mm/kasan/report.c:588\nblk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nbt_iter block/blk-mq-tag.c:288 [inline]\n__sbitmap_for_each_set include/linux/sbitmap.h:295 [inline]\nsbitmap_for_each_set include/linux/sbitmap.h:316 [inline]\nbt_for_each+0x455/0x790 block/blk-mq-tag.c:325\nblk_mq_queue_tag_busy_iter+0x320/0x740 block/blk-mq-tag.c:534\nblk_mq_timeout_work+0x1a3/0x7b0 block/blk-mq.c:1673\nprocess_one_work+0x7c4/0x1450 kernel/workqueue.c:2631\nprocess_scheduled_works kernel/workqueue.c:2704 [inline]\nworker_thread+0x804/0xe40 kernel/workqueue.c:2785\nkthread+0x346/0x450 kernel/kthread.c:388\nret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\nret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:293\n\nAllocated by task 942:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\n____kasan_kmalloc mm/kasan/common.c:374 [inline]\n__kasan_kmalloc mm/kasan/common.c:383 [inline]\n__kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:380\nkasan_kmalloc include/linux/kasan.h:198 [inline]\n__do_kmalloc_node mm/slab_common.c:1007 [inline]\n__kmalloc_node+0x69/0x170 mm/slab_common.c:1014\nkmalloc_node include/linux/slab.h:620 [inline]\nkzalloc_node include/linux/slab.h:732 [inline]\nblk_alloc_flush_queue+0x144/0x2f0 block/blk-flush.c:499\nblk_mq_alloc_hctx+0x601/0x940 block/blk-mq.c:3788\nblk_mq_alloc_and_init_hctx+0x27f/0x330 block/blk-mq.c:4261\nblk_mq_realloc_hw_ctxs+0x488/0x5e0 block/blk-mq.c:4294\nblk_mq_init_allocated_queue+0x188/0x860 block/blk-mq.c:4350\nblk_mq_init_queue_data block/blk-mq.c:4166 [inline]\nblk_mq_init_queue+0x8d/0x100 block/blk-mq.c:4176\nscsi_alloc_sdev+0x843/0xd50 drivers/scsi/scsi_scan.c:335\nscsi_probe_and_add_lun+0x77c/0xde0 drivers/scsi/scsi_scan.c:1189\n__scsi_scan_target+0x1fc/0x5a0 drivers/scsi/scsi_scan.c:1727\nscsi_scan_channel drivers/scsi/scsi_scan.c:1815 [inline]\nscsi_scan_channel+0x14b/0x1e0 drivers/scsi/scsi_scan.c:1791\nscsi_scan_host_selected+0x2fe/0x400 drivers/scsi/scsi_scan.c:1844\nscsi_scan+0x3a0/0x3f0 drivers/scsi/scsi_sysfs.c:151\nstore_scan+0x2a/0x60 drivers/scsi/scsi_sysfs.c:191\ndev_attr_store+0x5c/0x90 drivers/base/core.c:2388\nsysfs_kf_write+0x11c/0x170 fs/sysfs/file.c:136\nkernfs_fop_write_iter+0x3fc/0x610 fs/kernfs/file.c:338\ncall_write_iter include/linux/fs.h:2083 [inline]\nnew_sync_write+0x1b4/0x2d0 fs/read_write.c:493\nvfs_write+0x76c/0xb00 fs/read_write.c:586\nksys_write+0x127/0x250 fs/read_write.c:639\ndo_syscall_x64 arch/x86/entry/common.c:51 [inline]\ndo_syscall_64+0x70/0x120 arch/x86/entry/common.c:81\nentry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nFreed by task 244687:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\nkasan_save_free_info+0x2b/0x50 mm/kasan/generic.c:522\n____kasan_slab_free mm/kasan/common.c:236 [inline]\n__kasan_slab_free+0x12a/0x1b0 mm/kasan/common.c:244\nkasan_slab_free include/linux/kasan.h:164 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53170",
"url": "https://www.suse.com/security/cve/CVE-2024-53170"
},
{
"category": "external",
"summary": "SUSE Bug 1234888 for CVE-2024-53170",
"url": "https://bugzilla.suse.com/1234888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53170"
},
{
"cve": "CVE-2024-53171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit\n\nAfter an insertion in TNC, the tree might split and cause a node to\nchange its `znode-\u003eparent`. A further deletion of other nodes in the\ntree (which also could free the nodes), the aforementioned node\u0027s\n`znode-\u003ecparent` could still point to a freed node. This\n`znode-\u003ecparent` may not be updated when getting nodes to commit in\n`ubifs_tnc_start_commit()`. This could then trigger a use-after-free\nwhen accessing the `znode-\u003ecparent` in `write_index()` in\n`ubifs_tnc_end_commit()`.\n\nThis can be triggered by running\n\n rm -f /etc/test-file.bin\n dd if=/dev/urandom of=/etc/test-file.bin bs=1M count=60 conv=fsync\n\nin a loop, and with `CONFIG_UBIFS_FS_AUTHENTICATION`. KASAN then\nreports:\n\n BUG: KASAN: use-after-free in ubifs_tnc_end_commit+0xa5c/0x1950\n Write of size 32 at addr ffffff800a3af86c by task ubifs_bgt0_20/153\n\n Call trace:\n dump_backtrace+0x0/0x340\n show_stack+0x18/0x24\n dump_stack_lvl+0x9c/0xbc\n print_address_description.constprop.0+0x74/0x2b0\n kasan_report+0x1d8/0x1f0\n kasan_check_range+0xf8/0x1a0\n memcpy+0x84/0xf4\n ubifs_tnc_end_commit+0xa5c/0x1950\n do_commit+0x4e0/0x1340\n ubifs_bg_thread+0x234/0x2e0\n kthread+0x36c/0x410\n ret_from_fork+0x10/0x20\n\n Allocated by task 401:\n kasan_save_stack+0x38/0x70\n __kasan_kmalloc+0x8c/0xd0\n __kmalloc+0x34c/0x5bc\n tnc_insert+0x140/0x16a4\n ubifs_tnc_add+0x370/0x52c\n ubifs_jnl_write_data+0x5d8/0x870\n do_writepage+0x36c/0x510\n ubifs_writepage+0x190/0x4dc\n __writepage+0x58/0x154\n write_cache_pages+0x394/0x830\n do_writepages+0x1f0/0x5b0\n filemap_fdatawrite_wbc+0x170/0x25c\n file_write_and_wait_range+0x140/0x190\n ubifs_fsync+0xe8/0x290\n vfs_fsync_range+0xc0/0x1e4\n do_fsync+0x40/0x90\n __arm64_sys_fsync+0x34/0x50\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\n Freed by task 403:\n kasan_save_stack+0x38/0x70\n kasan_set_track+0x28/0x40\n kasan_set_free_info+0x28/0x4c\n __kasan_slab_free+0xd4/0x13c\n kfree+0xc4/0x3a0\n tnc_delete+0x3f4/0xe40\n ubifs_tnc_remove_range+0x368/0x73c\n ubifs_tnc_remove_ino+0x29c/0x2e0\n ubifs_jnl_delete_inode+0x150/0x260\n ubifs_evict_inode+0x1d4/0x2e4\n evict+0x1c8/0x450\n iput+0x2a0/0x3c4\n do_unlinkat+0x2cc/0x490\n __arm64_sys_unlinkat+0x90/0x100\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\nThe offending `memcpy()` in `ubifs_copy_hash()` has a use-after-free\nwhen a node becomes root in TNC but still has a `cparent` to an already\nfreed node. More specifically, consider the following TNC:\n\n zroot\n /\n /\n zp1\n /\n /\n zn\n\nInserting a new node `zn_new` with a key smaller then `zn` will trigger\na split in `tnc_insert()` if `zp1` is full:\n\n zroot\n / \\\n / \\\n zp1 zp2\n / \\\n / \\\n zn_new zn\n\n`zn-\u003eparent` has now been moved to `zp2`, *but* `zn-\u003ecparent` still\npoints to `zp1`.\n\nNow, consider a removal of all the nodes _except_ `zn`. Just when\n`tnc_delete()` is about to delete `zroot` and `zp2`:\n\n zroot\n \\\n \\\n zp2\n \\\n \\\n zn\n\n`zroot` and `zp2` get freed and the tree collapses:\n\n zn\n\n`zn` now becomes the new `zroot`.\n\n`get_znodes_to_commit()` will now only find `zn`, the new `zroot`, and\n`write_index()` will check its `znode-\u003ecparent` that wrongly points to\nthe already freed `zp1`. `ubifs_copy_hash()` thus gets wrongly called\nwith `znode-\u003ecparent-\u003ezbranch[znode-\u003eiip].hash` that triggers the\nuse-after-free!\n\nFix this by explicitly setting `znode-\u003ecparent` to `NULL` in\n`get_znodes_to_commit()` for the root node. The search for the dirty\nnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53171",
"url": "https://www.suse.com/security/cve/CVE-2024-53171"
},
{
"category": "external",
"summary": "SUSE Bug 1234889 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "external",
"summary": "SUSE Bug 1236234 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1236234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53171"
},
{
"cve": "CVE-2024-53172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubi: fastmap: Fix duplicate slab cache names while attaching\n\nSince commit 4c39529663b9 (\"slab: Warn on duplicate cache names when\nDEBUG_VM=y\"), the duplicate slab cache names can be detected and a\nkernel WARNING is thrown out.\nIn UBI fast attaching process, alloc_ai() could be invoked twice\nwith the same slab cache name \u0027ubi_aeb_slab_cache\u0027, which will trigger\nfollowing warning messages:\n kmem_cache of name \u0027ubi_aeb_slab_cache\u0027 already exists\n WARNING: CPU: 0 PID: 7519 at mm/slab_common.c:107\n __kmem_cache_create_args+0x100/0x5f0\n Modules linked in: ubi(+) nandsim [last unloaded: nandsim]\n CPU: 0 UID: 0 PID: 7519 Comm: modprobe Tainted: G 6.12.0-rc2\n RIP: 0010:__kmem_cache_create_args+0x100/0x5f0\n Call Trace:\n __kmem_cache_create_args+0x100/0x5f0\n alloc_ai+0x295/0x3f0 [ubi]\n ubi_attach+0x3c3/0xcc0 [ubi]\n ubi_attach_mtd_dev+0x17cf/0x3fa0 [ubi]\n ubi_init+0x3fb/0x800 [ubi]\n do_init_module+0x265/0x7d0\n __x64_sys_finit_module+0x7a/0xc0\n\nThe problem could be easily reproduced by loading UBI device by fastmap\nwith CONFIG_DEBUG_VM=y.\nFix it by using different slab names for alloc_ai() callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53172",
"url": "https://www.suse.com/security/cve/CVE-2024-53172"
},
{
"category": "external",
"summary": "SUSE Bug 1234898 for CVE-2024-53172",
"url": "https://bugzilla.suse.com/1234898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53172"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: make sure cache entry active before cache_show\n\nThe function `c_show` was called with protection from RCU. This only\nensures that `cp` will not be freed. Therefore, the reference count for\n`cp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `cache_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `cp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 7 PID: 822 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 7 UID: 0 PID: 822 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n\nCall Trace:\n \u003cTASK\u003e\n c_show+0x2fc/0x380 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53174",
"url": "https://www.suse.com/security/cve/CVE-2024-53174"
},
{
"category": "external",
"summary": "SUSE Bug 1234899 for CVE-2024-53174",
"url": "https://bugzilla.suse.com/1234899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53174"
},
{
"cve": "CVE-2024-53175",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53175"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipc: fix memleak if msg_init_ns failed in create_ipc_ns\n\nPercpu memory allocation may failed during create_ipc_ns however this\nfail is not handled properly since ipc sysctls and mq sysctls is not\nreleased properly. Fix this by release these two resource when failure.\n\nHere is the kmemleak stack when percpu failed:\n\nunreferenced object 0xffff88819de2a600 (size 512):\n comm \"shmem_2nstest\", pid 120711, jiffies 4300542254\n hex dump (first 32 bytes):\n 60 aa 9d 84 ff ff ff ff fc 18 48 b2 84 88 ff ff `.........H.....\n 04 00 00 00 a4 01 00 00 20 e4 56 81 ff ff ff ff ........ .V.....\n backtrace (crc be7cba35):\n [\u003cffffffff81b43f83\u003e] __kmalloc_node_track_caller_noprof+0x333/0x420\n [\u003cffffffff81a52e56\u003e] kmemdup_noprof+0x26/0x50\n [\u003cffffffff821b2f37\u003e] setup_mq_sysctls+0x57/0x1d0\n [\u003cffffffff821b29cc\u003e] copy_ipcs+0x29c/0x3b0\n [\u003cffffffff815d6a10\u003e] create_new_namespaces+0x1d0/0x920\n [\u003cffffffff815d7449\u003e] copy_namespaces+0x2e9/0x3e0\n [\u003cffffffff815458f3\u003e] copy_process+0x29f3/0x7ff0\n [\u003cffffffff8154b080\u003e] kernel_clone+0xc0/0x650\n [\u003cffffffff8154b6b1\u003e] __do_sys_clone+0xa1/0xe0\n [\u003cffffffff843df8ff\u003e] do_syscall_64+0xbf/0x1c0\n [\u003cffffffff846000b0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53175",
"url": "https://www.suse.com/security/cve/CVE-2024-53175"
},
{
"category": "external",
"summary": "SUSE Bug 1234893 for CVE-2024-53175",
"url": "https://bugzilla.suse.com/1234893"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53175"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Add sanity NULL check for the default mmap fault handler\n\nA driver might allow the mmap access before initializing its\nruntime-\u003edma_area properly. Add a proper NULL check before passing to\nvirt_to_page() for avoiding a panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53180",
"url": "https://www.suse.com/security/cve/CVE-2024-53180"
},
{
"category": "external",
"summary": "SUSE Bug 1234929 for CVE-2024-53180",
"url": "https://bugzilla.suse.com/1234929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53180"
},
{
"cve": "CVE-2024-53185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix NULL ptr deref in crypto_aead_setkey()\n\nNeither SMB3.0 or SMB3.02 supports encryption negotiate context, so\nwhen SMB2_GLOBAL_CAP_ENCRYPTION flag is set in the negotiate response,\nthe client uses AES-128-CCM as the default cipher. See MS-SMB2\n3.3.5.4.\n\nCommit b0abcd65ec54 (\"smb: client: fix UAF in async decryption\") added\na @server-\u003ecipher_type check to conditionally call\nsmb3_crypto_aead_allocate(), but that check would always be false as\n@server-\u003ecipher_type is unset for SMB3.02.\n\nFix the following KASAN splat by setting @server-\u003ecipher_type for\nSMB3.02 as well.\n\nmount.cifs //srv/share /mnt -o vers=3.02,seal,...\n\nBUG: KASAN: null-ptr-deref in crypto_aead_setkey+0x2c/0x130\nRead of size 8 at addr 0000000000000020 by task mount.cifs/1095\nCPU: 1 UID: 0 PID: 1095 Comm: mount.cifs Not tainted 6.12.0 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-3.fc41\n04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? crypto_aead_setkey+0x2c/0x130\n kasan_report+0xda/0x110\n ? crypto_aead_setkey+0x2c/0x130\n crypto_aead_setkey+0x2c/0x130\n crypt_message+0x258/0xec0 [cifs]\n ? __asan_memset+0x23/0x50\n ? __pfx_crypt_message+0x10/0x10 [cifs]\n ? mark_lock+0xb0/0x6a0\n ? hlock_class+0x32/0xb0\n ? mark_lock+0xb0/0x6a0\n smb3_init_transform_rq+0x352/0x3f0 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n smb_send_rqst+0x144/0x230 [cifs]\n ? __pfx_smb_send_rqst+0x10/0x10 [cifs]\n ? hlock_class+0x32/0xb0\n ? smb2_setup_request+0x225/0x3a0 [cifs]\n ? __pfx_cifs_compound_last_callback+0x10/0x10 [cifs]\n compound_send_recv+0x59b/0x1140 [cifs]\n ? __pfx_compound_send_recv+0x10/0x10 [cifs]\n ? __create_object+0x5e/0x90\n ? hlock_class+0x32/0xb0\n ? do_raw_spin_unlock+0x9a/0xf0\n cifs_send_recv+0x23/0x30 [cifs]\n SMB2_tcon+0x3ec/0xb30 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? __pfx_lock_release+0x10/0x10\n ? do_raw_spin_trylock+0xc6/0x120\n ? lock_acquire+0x3f/0x90\n ? _get_xid+0x16/0xd0 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n ? __pfx_cifs_get_smb_ses+0x10/0x10 [cifs]\n ? cifs_get_tcp_session+0xaa0/0xca0 [cifs]\n cifs_mount_get_session+0x8a/0x210 [cifs]\n dfs_mount_share+0x1b0/0x11d0 [cifs]\n ? __pfx___lock_acquire+0x10/0x10\n ? __pfx_dfs_mount_share+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? lock_release+0x203/0x5d0\n cifs_mount+0xb3/0x3d0 [cifs]\n ? do_raw_spin_trylock+0xc6/0x120\n ? __pfx_cifs_mount+0x10/0x10 [cifs]\n ? lock_acquire+0x3f/0x90\n ? find_nls+0x16/0xa0\n ? smb3_update_mnt_flags+0x372/0x3b0 [cifs]\n cifs_smb3_do_mount+0x1e2/0xc80 [cifs]\n ? __pfx_vfs_parse_fs_string+0x10/0x10\n ? __pfx_cifs_smb3_do_mount+0x10/0x10 [cifs]\n smb3_get_tree+0x1bf/0x330 [cifs]\n vfs_get_tree+0x4a/0x160\n path_mount+0x3c1/0xfb0\n ? kasan_quarantine_put+0xc7/0x1d0\n ? __pfx_path_mount+0x10/0x10\n ? kmem_cache_free+0x118/0x3e0\n ? user_path_at+0x74/0xa0\n __x64_sys_mount+0x1a6/0x1e0\n ? __pfx___x64_sys_mount+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53185",
"url": "https://www.suse.com/security/cve/CVE-2024-53185"
},
{
"category": "external",
"summary": "SUSE Bug 1234901 for CVE-2024-53185",
"url": "https://bugzilla.suse.com/1234901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53185"
},
{
"cve": "CVE-2024-53188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix crash when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe function ath12k_dp_cc_cleanup is called to release resources.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nat RIP: 0010:ath12k_dp_cc_cleanup.part.0+0xb6/0x500 [ath12k]\nCall Trace:\nath12k_dp_cc_cleanup\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set to NULL the released structure in\nath12k_dp_cc_cleanup at the end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53188",
"url": "https://www.suse.com/security/cve/CVE-2024-53188"
},
{
"category": "external",
"summary": "SUSE Bug 1234948 for CVE-2024-53188",
"url": "https://bugzilla.suse.com/1234948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53188"
},
{
"cve": "CVE-2024-53190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures\n\nSyzkaller reported a hung task with uevent_show() on stack trace. That\nspecific issue was addressed by another commit [0], but even with that\nfix applied (for example, running v6.12-rc5) we face another type of hung\ntask that comes from the same reproducer [1]. By investigating that, we\ncould narrow it to the following path:\n\n(a) Syzkaller emulates a Realtek USB WiFi adapter using raw-gadget and\ndummy_hcd infrastructure.\n\n(b) During the probe of rtl8192cu, the driver ends-up performing an efuse\nread procedure (which is related to EEPROM load IIUC), and here lies the\nissue: the function read_efuse() calls read_efuse_byte() many times, as\nloop iterations depending on the efuse size (in our example, 512 in total).\n\nThis procedure for reading efuse bytes relies in a loop that performs an\nI/O read up to *10k* times in case of failures. We measured the time of\nthe loop inside read_efuse_byte() alone, and in this reproducer (which\ninvolves the dummy_hcd emulation layer), it takes 15 seconds each. As a\nconsequence, we have the driver stuck in its probe routine for big time,\nexposing a stack trace like below if we attempt to reboot the system, for\nexample:\n\ntask:kworker/0:3 state:D stack:0 pid:662 tgid:662 ppid:2 flags:0x00004000\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n __schedule+0xe22/0xeb6\n schedule_timeout+0xe7/0x132\n __wait_for_common+0xb5/0x12e\n usb_start_wait_urb+0xc5/0x1ef\n ? usb_alloc_urb+0x95/0xa4\n usb_control_msg+0xff/0x184\n _usbctrl_vendorreq_sync+0xa0/0x161\n _usb_read_sync+0xb3/0xc5\n read_efuse_byte+0x13c/0x146\n read_efuse+0x351/0x5f0\n efuse_read_all_map+0x42/0x52\n rtl_efuse_shadow_map_update+0x60/0xef\n rtl_get_hwinfo+0x5d/0x1c2\n rtl92cu_read_eeprom_info+0x10a/0x8d5\n ? rtl92c_read_chip_version+0x14f/0x17e\n rtl_usb_probe+0x323/0x851\n usb_probe_interface+0x278/0x34b\n really_probe+0x202/0x4a4\n __driver_probe_device+0x166/0x1b2\n driver_probe_device+0x2f/0xd8\n [...]\n\nWe propose hereby to drastically reduce the attempts of doing the I/O\nreads in case of failures, restricted to USB devices (given that\nthey\u0027re inherently slower than PCIe ones). By retrying up to 10 times\n(instead of 10000), we got reponsiveness in the reproducer, while seems\nreasonable to believe that there\u0027s no sane USB device implementation in\nthe field requiring this amount of retries at every I/O read in order\nto properly work. Based on that assumption, it\u0027d be good to have it\nbackported to stable but maybe not since driver implementation (the 10k\nnumber comes from day 0), perhaps up to 6.x series makes sense.\n\n[0] Commit 15fffc6a5624 (\"driver core: Fix uevent_show() vs driver detach race\")\n\n[1] A note about that: this syzkaller report presents multiple reproducers\nthat differs by the type of emulated USB device. For this specific case,\ncheck the entry from 2024/08/08 06:23 in the list of crashes; the C repro\nis available at https://syzkaller.appspot.com/text?tag=ReproC\u0026x=1521fc83980000.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53190",
"url": "https://www.suse.com/security/cve/CVE-2024-53190"
},
{
"category": "external",
"summary": "SUSE Bug 1234950 for CVE-2024-53190",
"url": "https://bugzilla.suse.com/1234950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-53190"
},
{
"cve": "CVE-2024-53191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix warning when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe buffers dp-\u003etx_ring[i].tx_status are released.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nWARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80\nCall Trace:\nfree_large_kmalloc\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set the buffers to NULL after releasing in\norder to avoid the double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53191",
"url": "https://www.suse.com/security/cve/CVE-2024-53191"
},
{
"category": "external",
"summary": "SUSE Bug 1234952 for CVE-2024-53191",
"url": "https://bugzilla.suse.com/1234952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53191"
},
{
"cve": "CVE-2024-53194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix use-after-free of slot-\u003ebus on hot remove\n\nDennis reports a boot crash on recent Lenovo laptops with a USB4 dock.\n\nSince commit 0fc70886569c (\"thunderbolt: Reset USB4 v2 host router\") and\ncommit 59a54c5f3dbd (\"thunderbolt: Reset topology created by the boot\nfirmware\"), USB4 v2 and v1 Host Routers are reset on probe of the\nthunderbolt driver.\n\nThe reset clears the Presence Detect State and Data Link Layer Link Active\nbits at the USB4 Host Router\u0027s Root Port and thus causes hot removal of the\ndock.\n\nThe crash occurs when pciehp is unbound from one of the dock\u0027s Downstream\nPorts: pciehp creates a pci_slot on bind and destroys it on unbind. The\npci_slot contains a pointer to the pci_bus below the Downstream Port, but\na reference on that pci_bus is never acquired. The pci_bus is destroyed\nbefore the pci_slot, so a use-after-free ensues when pci_slot_release()\naccesses slot-\u003ebus.\n\nIn principle this should not happen because pci_stop_bus_device() unbinds\npciehp (and therefore destroys the pci_slot) before the pci_bus is\ndestroyed by pci_remove_bus_device().\n\nHowever the stacktrace provided by Dennis shows that pciehp is unbound from\npci_remove_bus_device() instead of pci_stop_bus_device(). To understand\nthe significance of this, one needs to know that the PCI core uses a two\nstep process to remove a portion of the hierarchy: It first unbinds all\ndrivers in the sub-hierarchy in pci_stop_bus_device() and then actually\nremoves the devices in pci_remove_bus_device(). There is no precaution to\nprevent driver binding in-between pci_stop_bus_device() and\npci_remove_bus_device().\n\nIn Dennis\u0027 case, it seems removal of the hierarchy by pciehp races with\ndriver binding by pci_bus_add_devices(). pciehp is bound to the\nDownstream Port after pci_stop_bus_device() has run, so it is unbound by\npci_remove_bus_device() instead of pci_stop_bus_device(). Because the\npci_bus has already been destroyed at that point, accesses to it result in\na use-after-free.\n\nOne might conclude that driver binding needs to be prevented after\npci_stop_bus_device() has run. However it seems risky that pci_slot points\nto pci_bus without holding a reference. Solely relying on correct ordering\nof driver unbind versus pci_bus destruction is certainly not defensive\nprogramming.\n\nIf pci_slot has a need to access data in pci_bus, it ought to acquire a\nreference. Amend pci_create_slot() accordingly. Dennis reports that the\ncrash is not reproducible with this change.\n\nAbridged stacktrace:\n\n pcieport 0000:00:07.0: PME: Signaling with IRQ 156\n pcieport 0000:00:07.0: pciehp: Slot #12 AttnBtn- PwrCtrl- MRL- AttnInd- PwrInd- HotPlug+ Surprise+ Interlock- NoCompl+ IbPresDis- LLActRep+\n pci_bus 0000:20: dev 00, created physical slot 12\n pcieport 0000:00:07.0: pciehp: Slot(12): Card not present\n ...\n pcieport 0000:21:02.0: pciehp: pcie_disable_notification: SLOTCTRL d8 write cmd 0\n Oops: general protection fault, probably for non-canonical address 0x6b6b6b6b6b6b6b6b: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 13 UID: 0 PID: 134 Comm: irq/156-pciehp Not tainted 6.11.0-devel+ #1\n RIP: 0010:dev_driver_string+0x12/0x40\n pci_destroy_slot\n pciehp_remove\n pcie_port_remove_service\n device_release_driver_internal\n bus_remove_device\n device_del\n device_unregister\n remove_iter\n device_for_each_child\n pcie_portdrv_remove\n pci_device_remove\n device_release_driver_internal\n bus_remove_device\n device_del\n pci_remove_bus_device (recursive invocation)\n pci_remove_bus_device\n pciehp_unconfigure_device\n pciehp_disable_slot\n pciehp_handle_presence_or_link_change\n pciehp_ist",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53194",
"url": "https://www.suse.com/security/cve/CVE-2024-53194"
},
{
"category": "external",
"summary": "SUSE Bug 1235459 for CVE-2024-53194",
"url": "https://bugzilla.suse.com/1235459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53194"
},
{
"cve": "CVE-2024-53195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Get rid of userspace_irqchip_in_use\n\nImproper use of userspace_irqchip_in_use led to syzbot hitting the\nfollowing WARN_ON() in kvm_timer_update_irq():\n\nWARNING: CPU: 0 PID: 3281 at arch/arm64/kvm/arch_timer.c:459\nkvm_timer_update_irq+0x21c/0x394\nCall trace:\n kvm_timer_update_irq+0x21c/0x394 arch/arm64/kvm/arch_timer.c:459\n kvm_timer_vcpu_reset+0x158/0x684 arch/arm64/kvm/arch_timer.c:968\n kvm_reset_vcpu+0x3b4/0x560 arch/arm64/kvm/reset.c:264\n kvm_vcpu_set_target arch/arm64/kvm/arm.c:1553 [inline]\n kvm_arch_vcpu_ioctl_vcpu_init arch/arm64/kvm/arm.c:1573 [inline]\n kvm_arch_vcpu_ioctl+0x112c/0x1b3c arch/arm64/kvm/arm.c:1695\n kvm_vcpu_ioctl+0x4ec/0xf74 virt/kvm/kvm_main.c:4658\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x108/0x184 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x78/0x1b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0xe8/0x1b0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x40/0x50 arch/arm64/kernel/syscall.c:151\n el0_svc+0x54/0x14c arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe following sequence led to the scenario:\n - Userspace creates a VM and a vCPU.\n - The vCPU is initialized with KVM_ARM_VCPU_PMU_V3 during\n KVM_ARM_VCPU_INIT.\n - Without any other setup, such as vGIC or vPMU, userspace issues\n KVM_RUN on the vCPU. Since the vPMU is requested, but not setup,\n kvm_arm_pmu_v3_enable() fails in kvm_arch_vcpu_run_pid_change().\n As a result, KVM_RUN returns after enabling the timer, but before\n incrementing \u0027userspace_irqchip_in_use\u0027:\n kvm_arch_vcpu_run_pid_change()\n ret = kvm_arm_pmu_v3_enable()\n if (!vcpu-\u003earch.pmu.created)\n return -EINVAL;\n if (ret)\n return ret;\n [...]\n if (!irqchip_in_kernel(kvm))\n static_branch_inc(\u0026userspace_irqchip_in_use);\n - Userspace ignores the error and issues KVM_ARM_VCPU_INIT again.\n Since the timer is already enabled, control moves through the\n following flow, ultimately hitting the WARN_ON():\n kvm_timer_vcpu_reset()\n if (timer-\u003eenabled)\n kvm_timer_update_irq()\n if (!userspace_irqchip())\n ret = kvm_vgic_inject_irq()\n ret = vgic_lazy_init()\n if (unlikely(!vgic_initialized(kvm)))\n if (kvm-\u003earch.vgic.vgic_model !=\n KVM_DEV_TYPE_ARM_VGIC_V2)\n return -EBUSY;\n WARN_ON(ret);\n\nTheoretically, since userspace_irqchip_in_use\u0027s functionality can be\nsimply replaced by \u0027!irqchip_in_kernel()\u0027, get rid of the static key\nto avoid the mismanagement, which also helps with the syzbot issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53195",
"url": "https://www.suse.com/security/cve/CVE-2024-53195"
},
{
"category": "external",
"summary": "SUSE Bug 1234957 for CVE-2024-53195",
"url": "https://bugzilla.suse.com/1234957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53195"
},
{
"cve": "CVE-2024-53196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Don\u0027t retire aborted MMIO instruction\n\nReturning an abort to the guest for an unsupported MMIO access is a\ndocumented feature of the KVM UAPI. Nevertheless, it\u0027s clear that this\nplumbing has seen limited testing, since userspace can trivially cause a\nWARN in the MMIO return:\n\n WARNING: CPU: 0 PID: 30558 at arch/arm64/include/asm/kvm_emulate.h:536 kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n Call trace:\n kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n kvm_arch_vcpu_ioctl_run+0x98/0x15b4 arch/arm64/kvm/arm.c:1133\n kvm_vcpu_ioctl+0x75c/0xa78 virt/kvm/kvm_main.c:4487\n __do_sys_ioctl fs/ioctl.c:51 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x1e0/0x23c arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n el0_svc+0x38/0x68 arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x90/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe splat is complaining that KVM is advancing PC while an exception is\npending, i.e. that KVM is retiring the MMIO instruction despite a\npending synchronous external abort. Womp womp.\n\nFix the glaring UAPI bug by skipping over all the MMIO emulation in\ncase there is a pending synchronous exception. Note that while userspace\nis capable of pending an asynchronous exception (SError, IRQ, or FIQ),\nit is still safe to retire the MMIO instruction in this case as (1) they\nare by definition asynchronous, and (2) KVM relies on hardware support\nfor pending/delivering these exceptions instead of the software state\nmachine for advancing PC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53196",
"url": "https://www.suse.com/security/cve/CVE-2024-53196"
},
{
"category": "external",
"summary": "SUSE Bug 1234906 for CVE-2024-53196",
"url": "https://bugzilla.suse.com/1234906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53196"
},
{
"cve": "CVE-2024-53197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53197"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices\n\nA bogus device can provide a bNumConfigurations value that exceeds the\ninitial value used in usb_get_configuration for allocating dev-\u003econfig.\n\nThis can lead to out-of-bounds accesses later, e.g. in\nusb_destroy_configuration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53197",
"url": "https://www.suse.com/security/cve/CVE-2024-53197"
},
{
"category": "external",
"summary": "SUSE Bug 1235464 for CVE-2024-53197",
"url": "https://bugzilla.suse.com/1235464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53197"
},
{
"cve": "CVE-2024-53198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen: Fix the issue of resource not being properly released in xenbus_dev_probe()\n\nThis patch fixes an issue in the function xenbus_dev_probe(). In the\nxenbus_dev_probe() function, within the if (err) branch at line 313, the\nprogram incorrectly returns err directly without releasing the resources\nallocated by err = drv-\u003eprobe(dev, id). As the return value is non-zero,\nthe upper layers assume the processing logic has failed. However, the probe\noperation was performed earlier without a corresponding remove operation.\nSince the probe actually allocates resources, failing to perform the remove\noperation could lead to problems.\n\nTo fix this issue, we followed the resource release logic of the\nxenbus_dev_remove() function by adding a new block fail_remove before the\nfail_put block. After entering the branch if (err) at line 313, the\nfunction will use a goto statement to jump to the fail_remove block,\nensuring that the previously acquired resources are correctly released,\nthus preventing the reference count leak.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand detecting potential issues where resources are not properly managed.\nIn this case, the tool flagged the missing release operation as a\npotential problem, which led to the development of this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53198",
"url": "https://www.suse.com/security/cve/CVE-2024-53198"
},
{
"category": "external",
"summary": "SUSE Bug 1234923 for CVE-2024-53198",
"url": "https://bugzilla.suse.com/1234923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53198"
},
{
"cve": "CVE-2024-53200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in hwss_setup_dpp\n\nThis commit addresses a null pointer dereference issue in\nhwss_setup_dpp(). The issue could occur when pipe_ctx-\u003eplane_state is\nnull. The fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53200",
"url": "https://www.suse.com/security/cve/CVE-2024-53200"
},
{
"category": "external",
"summary": "SUSE Bug 1234968 for CVE-2024-53200",
"url": "https://bugzilla.suse.com/1234968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53200"
},
{
"cve": "CVE-2024-53201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in\ndcn20_program_pipe(). Previously, commit 8e4ed3cf1642 (\"drm/amd/display:\nAdd null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\")\npartially fixed the null pointer dereference issue. However, in\ndcn20_update_dchubp_dpp(), the variable pipe_ctx is passed in, and\nplane_state is accessed again through pipe_ctx. Multiple if statements\ndirectly call attributes of plane_state, leading to potential null\npointer dereference issues. This patch adds necessary null checks to\nensure stability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53201",
"url": "https://www.suse.com/security/cve/CVE-2024-53201"
},
{
"category": "external",
"summary": "SUSE Bug 1234969 for CVE-2024-53201",
"url": "https://bugzilla.suse.com/1234969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53201"
},
{
"cve": "CVE-2024-53202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Fix possible resource leak in fw_log_firmware_info()\n\nThe alg instance should be released under the exception path, otherwise\nthere may be resource leak here.\n\nTo mitigate this, free the alg instance with crypto_free_shash when kmalloc\nfails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53202",
"url": "https://www.suse.com/security/cve/CVE-2024-53202"
},
{
"category": "external",
"summary": "SUSE Bug 1234970 for CVE-2024-53202",
"url": "https://bugzilla.suse.com/1234970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53202"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible deadlocks\n\nThis fixes possible deadlocks like the following caused by\nhci_cmd_sync_dequeue causing the destroy function to run:\n\n INFO: task kworker/u19:0:143 blocked for more than 120 seconds.\n Tainted: G W O 6.8.0-2024-03-19-intel-next-iLS-24ww14 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u19:0 state:D stack:0 pid:143 tgid:143 ppid:2 flags:0x00004000\n Workqueue: hci0 hci_cmd_sync_work [bluetooth]\n Call Trace:\n \u003cTASK\u003e\n __schedule+0x374/0xaf0\n schedule+0x3c/0xf0\n schedule_preempt_disabled+0x1c/0x30\n __mutex_lock.constprop.0+0x3ef/0x7a0\n __mutex_lock_slowpath+0x13/0x20\n mutex_lock+0x3c/0x50\n mgmt_set_connectable_complete+0xa4/0x150 [bluetooth]\n ? kfree+0x211/0x2a0\n hci_cmd_sync_dequeue+0xae/0x130 [bluetooth]\n ? __pfx_cmd_complete_rsp+0x10/0x10 [bluetooth]\n cmd_complete_rsp+0x26/0x80 [bluetooth]\n mgmt_pending_foreach+0x4d/0x70 [bluetooth]\n __mgmt_power_off+0x8d/0x180 [bluetooth]\n ? _raw_spin_unlock_irq+0x23/0x40\n hci_dev_close_sync+0x445/0x5b0 [bluetooth]\n hci_set_powered_sync+0x149/0x250 [bluetooth]\n set_powered_sync+0x24/0x60 [bluetooth]\n hci_cmd_sync_work+0x90/0x150 [bluetooth]\n process_one_work+0x13e/0x300\n worker_thread+0x2f7/0x420\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x107/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x3d/0x60\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53207",
"url": "https://www.suse.com/security/cve/CVE-2024-53207"
},
{
"category": "external",
"summary": "SUSE Bug 1234907 for CVE-2024-53207",
"url": "https://bugzilla.suse.com/1234907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53207"
},
{
"cve": "CVE-2024-53208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync\n\nThis fixes the following crash:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\nRead of size 8 at addr ffff888029b4dd18 by task kworker/u9:0/54\n\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-01155-gf723224742fc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\nq kasan_report+0x143/0x180 mm/kasan/report.c:601\n set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\n hci_cmd_sync_work+0x22b/0x400 net/bluetooth/hci_sync.c:328\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd10 kernel/workqueue.c:3389\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\nAllocated by task 5247:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __kmalloc_cache_noprof+0x19c/0x2c0 mm/slub.c:4193\n kmalloc_noprof include/linux/slab.h:681 [inline]\n kzalloc_noprof include/linux/slab.h:807 [inline]\n mgmt_pending_new+0x65/0x250 net/bluetooth/mgmt_util.c:269\n mgmt_pending_add+0x36/0x120 net/bluetooth/mgmt_util.c:296\n set_powered+0x3cd/0x5e0 net/bluetooth/mgmt.c:1394\n hci_mgmt_cmd+0xc47/0x11d0 net/bluetooth/hci_sock.c:1712\n hci_sock_sendmsg+0x7b8/0x11c0 net/bluetooth/hci_sock.c:1832\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xa72/0xc90 fs/read_write.c:590\n ksys_write+0x1a0/0x2c0 fs/read_write.c:643\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5246:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x149/0x360 mm/slub.c:4598\n settings_rsp+0x2bc/0x390 net/bluetooth/mgmt.c:1443\n mgmt_pending_foreach+0xd1/0x130 net/bluetooth/mgmt_util.c:259\n __mgmt_power_off+0x112/0x420 net/bluetooth/mgmt.c:9455\n hci_dev_close_sync+0x665/0x11a0 net/bluetooth/hci_sync.c:5191\n hci_dev_do_close net/bluetooth/hci_core.c:483 [inline]\n hci_dev_close+0x112/0x210 net/bluetooth/hci_core.c:508\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83gv\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53208",
"url": "https://www.suse.com/security/cve/CVE-2024-53208"
},
{
"category": "external",
"summary": "SUSE Bug 1234909 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "external",
"summary": "SUSE Bug 1236244 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1236244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53208"
},
{
"cve": "CVE-2024-53209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix receive ring space parameters when XDP is active\n\nThe MTU setting at the time an XDP multi-buffer is attached\ndetermines whether the aggregation ring will be used and the\nrx_skb_func handler. This is done in bnxt_set_rx_skb_mode().\n\nIf the MTU is later changed, the aggregation ring setting may need\nto be changed and it may become out-of-sync with the settings\ninitially done in bnxt_set_rx_skb_mode(). This may result in\nrandom memory corruption and crashes as the HW may DMA data larger\nthan the allocated buffer size, such as:\n\nBUG: kernel NULL pointer dereference, address: 00000000000003c0\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 17 PID: 0 Comm: swapper/17 Kdump: loaded Tainted: G S OE 6.1.0-226bf9805506 #1\nHardware name: Wiwynn Delta Lake PVT BZA.02601.0150/Delta Lake-Class1, BIOS F0E_3A12 08/26/2021\nRIP: 0010:bnxt_rx_pkt+0xe97/0x1ae0 [bnxt_en]\nCode: 8b 95 70 ff ff ff 4c 8b 9d 48 ff ff ff 66 41 89 87 b4 00 00 00 e9 0b f7 ff ff 0f b7 43 0a 49 8b 95 a8 04 00 00 25 ff 0f 00 00 \u003c0f\u003e b7 14 42 48 c1 e2 06 49 03 95 a0 04 00 00 0f b6 42 33f\nRSP: 0018:ffffa19f40cc0d18 EFLAGS: 00010202\nRAX: 00000000000001e0 RBX: ffff8e2c805c6100 RCX: 00000000000007ff\nRDX: 0000000000000000 RSI: ffff8e2c271ab990 RDI: ffff8e2c84f12380\nRBP: ffffa19f40cc0e48 R08: 000000000001000d R09: 974ea2fcddfa4cbf\nR10: 0000000000000000 R11: ffffa19f40cc0ff8 R12: ffff8e2c94b58980\nR13: ffff8e2c952d6600 R14: 0000000000000016 R15: ffff8e2c271ab990\nFS: 0000000000000000(0000) GS:ffff8e3b3f840000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000000003c0 CR3: 0000000e8580a004 CR4: 00000000007706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n __bnxt_poll_work+0x1c2/0x3e0 [bnxt_en]\n\nTo address the issue, we now call bnxt_set_rx_skb_mode() within\nbnxt_change_mtu() to properly set the AGG rings configuration and\nupdate rx_skb_func based on the new MTU value.\nAdditionally, BNXT_FLAG_NO_AGG_RINGS is cleared at the beginning of\nbnxt_set_rx_skb_mode() to make sure it gets set or cleared based on\nthe current MTU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53209",
"url": "https://www.suse.com/security/cve/CVE-2024-53209"
},
{
"category": "external",
"summary": "SUSE Bug 1235002 for CVE-2024-53209",
"url": "https://bugzilla.suse.com/1235002"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53209"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()\n\nThere\u0027s issue as follows:\nRPC: Registered rdma transport module.\nRPC: Registered rdma backchannel transport module.\nRPC: Unregistered rdma transport module.\nRPC: Unregistered rdma backchannel transport module.\nBUG: unable to handle page fault for address: fffffbfff80c609a\nPGD 123fee067 P4D 123fee067 PUD 123fea067 PMD 10c624067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nRIP: 0010:percpu_counter_destroy_many+0xf7/0x2a0\nCall Trace:\n \u003cTASK\u003e\n __die+0x1f/0x70\n page_fault_oops+0x2cd/0x860\n spurious_kernel_fault+0x36/0x450\n do_kern_addr_fault+0xca/0x100\n exc_page_fault+0x128/0x150\n asm_exc_page_fault+0x26/0x30\n percpu_counter_destroy_many+0xf7/0x2a0\n mmdrop+0x209/0x350\n finish_task_switch.isra.0+0x481/0x840\n schedule_tail+0xe/0xd0\n ret_from_fork+0x23/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nIf register_sysctl() return NULL, then svc_rdma_proc_cleanup() will not\ndestroy the percpu counters which init in svc_rdma_proc_init().\nIf CONFIG_HOTPLUG_CPU is enabled, residual nodes may be in the\n\u0027percpu_counters\u0027 list. The above issue may occur once the module is\nremoved. If the CONFIG_HOTPLUG_CPU configuration is not enabled, memory\nleakage occurs.\nTo solve above issue just destroy all percpu counters when\nregister_sysctl() return NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53215",
"url": "https://www.suse.com/security/cve/CVE-2024-53215"
},
{
"category": "external",
"summary": "SUSE Bug 1234962 for CVE-2024-53215",
"url": "https://bugzilla.suse.com/1234962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53215"
},
{
"cve": "CVE-2024-53216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: release svc_expkey/svc_export with rcu_work\n\nThe last reference for `cache_head` can be reduced to zero in `c_show`\nand `e_show`(using `rcu_read_lock` and `rcu_read_unlock`). Consequently,\n`svc_export_put` and `expkey_put` will be invoked, leading to two\nissues:\n\n1. The `svc_export_put` will directly free ex_uuid. However,\n `e_show`/`c_show` will access `ex_uuid` after `cache_put`, which can\n trigger a use-after-free issue, shown below.\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in svc_export_show+0x362/0x430 [nfsd]\n Read of size 1 at addr ff11000010fdc120 by task cat/870\n\n CPU: 1 UID: 0 PID: 870 Comm: cat Not tainted 6.12.0-rc3+ #1\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n 1.16.1-2.fc37 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x53/0x70\n print_address_description.constprop.0+0x2c/0x3a0\n print_report+0xb9/0x280\n kasan_report+0xae/0xe0\n svc_export_show+0x362/0x430 [nfsd]\n c_show+0x161/0x390 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Allocated by task 830:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __kmalloc_node_track_caller_noprof+0x1bc/0x400\n kmemdup_noprof+0x22/0x50\n svc_export_parse+0x8a9/0xb80 [nfsd]\n cache_do_downcall+0x71/0xa0 [sunrpc]\n cache_write_procfs+0x8e/0xd0 [sunrpc]\n proc_reg_write+0xe1/0x140\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 868:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x37/0x50\n kfree+0xf3/0x3e0\n svc_export_put+0x87/0xb0 [nfsd]\n cache_purge+0x17f/0x1f0 [sunrpc]\n nfsd_destroy_serv+0x226/0x2d0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n2. We cannot sleep while using `rcu_read_lock`/`rcu_read_unlock`.\n However, `svc_export_put`/`expkey_put` will call path_put, which\n subsequently triggers a sleeping operation due to the following\n `dput`.\n\n =============================\n WARNING: suspicious RCU usage\n 5.10.0-dirty #141 Not tainted\n -----------------------------\n ...\n Call Trace:\n dump_stack+0x9a/0xd0\n ___might_sleep+0x231/0x240\n dput+0x39/0x600\n path_put+0x1b/0x30\n svc_export_put+0x17/0x80\n e_show+0x1c9/0x200\n seq_read_iter+0x63f/0x7c0\n seq_read+0x226/0x2d0\n vfs_read+0x113/0x2c0\n ksys_read+0xc9/0x170\n do_syscall_64+0x33/0x40\n entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nFix these issues by using `rcu_work` to help release\n`svc_expkey`/`svc_export`. This approach allows for an asynchronous\ncontext to invoke `path_put` and also facilitates the freeing of\n`uuid/exp/key` after an RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53216",
"url": "https://www.suse.com/security/cve/CVE-2024-53216"
},
{
"category": "external",
"summary": "SUSE Bug 1235003 for CVE-2024-53216",
"url": "https://bugzilla.suse.com/1235003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53216"
},
{
"cve": "CVE-2024-53217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent NULL dereference in nfsd4_process_cb_update()\n\n@ses is initialized to NULL. If __nfsd4_find_backchannel() finds no\navailable backchannel session, setup_callback_client() will try to\ndereference @ses and segfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53217",
"url": "https://www.suse.com/security/cve/CVE-2024-53217"
},
{
"category": "external",
"summary": "SUSE Bug 1234999 for CVE-2024-53217",
"url": "https://bugzilla.suse.com/1234999"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53217"
},
{
"cve": "CVE-2024-53222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram-\u003ecomp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram-\u003einit_lock in other places and no such problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53222",
"url": "https://www.suse.com/security/cve/CVE-2024-53222"
},
{
"category": "external",
"summary": "SUSE Bug 1234974 for CVE-2024-53222",
"url": "https://bugzilla.suse.com/1234974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53222"
},
{
"cve": "CVE-2024-53224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Move events notifier registration to be after device registration\n\nMove pkey change work initialization and cleanup from device resources\nstage to notifier stage, since this is the stage which handles this work\nevents.\n\nFix a race between the device deregistration and pkey change work by moving\nMLX5_IB_STAGE_DEVICE_NOTIFIER to be after MLX5_IB_STAGE_IB_REG in order to\nensure that the notifier is deregistered before the device during cleanup.\nWhich ensures there are no works that are being executed after the\ndevice has already unregistered which can cause the panic below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 1 PID: 630071 Comm: kworker/1:2 Kdump: loaded Tainted: G W OE --------- --- 5.14.0-162.6.1.el9_1.x86_64 #1\nHardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 02/27/2023\nWorkqueue: events pkey_change_handler [mlx5_ib]\nRIP: 0010:setup_qp+0x38/0x1f0 [mlx5_ib]\nCode: ee 41 54 45 31 e4 55 89 f5 53 48 89 fb 48 83 ec 20 8b 77 08 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 48 8b 07 48 8d 4c 24 16 \u003c4c\u003e 8b 38 49 8b 87 80 0b 00 00 4c 89 ff 48 8b 80 08 05 00 00 8b 40\nRSP: 0018:ffffbcc54068be20 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff954054494128 RCX: ffffbcc54068be36\nRDX: ffff954004934000 RSI: 0000000000000001 RDI: ffff954054494128\nRBP: 0000000000000023 R08: ffff954001be2c20 R09: 0000000000000001\nR10: ffff954001be2c20 R11: ffff9540260133c0 R12: 0000000000000000\nR13: 0000000000000023 R14: 0000000000000000 R15: ffff9540ffcb0905\nFS: 0000000000000000(0000) GS:ffff9540ffc80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000010625c001 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\nmlx5_ib_gsi_pkey_change+0x20/0x40 [mlx5_ib]\nprocess_one_work+0x1e8/0x3c0\nworker_thread+0x50/0x3b0\n? rescuer_thread+0x380/0x380\nkthread+0x149/0x170\n? set_kthread_struct+0x50/0x50\nret_from_fork+0x22/0x30\nModules linked in: rdma_ucm(OE) rdma_cm(OE) iw_cm(OE) ib_ipoib(OE) ib_cm(OE) ib_umad(OE) mlx5_ib(OE) mlx5_fwctl(OE) fwctl(OE) ib_uverbs(OE) mlx5_core(OE) mlxdevm(OE) ib_core(OE) mlx_compat(OE) psample mlxfw(OE) tls knem(OE) netconsole nfsv3 nfs_acl nfs lockd grace fscache netfs qrtr rfkill sunrpc intel_rapl_msr intel_rapl_common rapl hv_balloon hv_utils i2c_piix4 pcspkr joydev fuse ext4 mbcache jbd2 sr_mod sd_mod cdrom t10_pi sg ata_generic pci_hyperv pci_hyperv_intf hyperv_drm drm_shmem_helper drm_kms_helper hv_storvsc syscopyarea hv_netvsc sysfillrect sysimgblt hid_hyperv fb_sys_fops scsi_transport_fc hyperv_keyboard drm ata_piix crct10dif_pclmul crc32_pclmul crc32c_intel libata ghash_clmulni_intel hv_vmbus serio_raw [last unloaded: ib_core]\nCR2: 0000000000000000\n---[ end trace f6f8be4eae12f7bc ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53224",
"url": "https://www.suse.com/security/cve/CVE-2024-53224"
},
{
"category": "external",
"summary": "SUSE Bug 1235009 for CVE-2024-53224",
"url": "https://bugzilla.suse.com/1235009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53224"
},
{
"cve": "CVE-2024-53227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bfa: Fix use-after-free in bfad_im_module_exit()\n\nBUG: KASAN: slab-use-after-free in __lock_acquire+0x2aca/0x3a20\nRead of size 8 at addr ffff8881082d80c8 by task modprobe/25303\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x95/0xe0\n print_report+0xcb/0x620\n kasan_report+0xbd/0xf0\n __lock_acquire+0x2aca/0x3a20\n lock_acquire+0x19b/0x520\n _raw_spin_lock+0x2b/0x40\n attribute_container_unregister+0x30/0x160\n fc_release_transport+0x19/0x90 [scsi_transport_fc]\n bfad_im_module_exit+0x23/0x60 [bfa]\n bfad_init+0xdb/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\nAllocated by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n fc_attach_transport+0x4f/0x4740 [scsi_transport_fc]\n bfad_im_module_init+0x17/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x38/0x50\n kfree+0x212/0x480\n bfad_im_module_init+0x7e/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nAbove issue happens as follows:\n\nbfad_init\n error = bfad_im_module_init()\n fc_release_transport(bfad_im_scsi_transport_template);\n if (error)\n goto ext;\n\next:\n bfad_im_module_exit();\n fc_release_transport(bfad_im_scsi_transport_template);\n --\u003e Trigger double release\n\nDon\u0027t call bfad_im_module_exit() if bfad_im_module_init() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53227",
"url": "https://www.suse.com/security/cve/CVE-2024-53227"
},
{
"category": "external",
"summary": "SUSE Bug 1235011 for CVE-2024-53227",
"url": "https://bugzilla.suse.com/1235011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53227"
},
{
"cve": "CVE-2024-53229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix the qp flush warnings in req\n\nWhen the qp is in error state, the status of WQEs in the queue should be\nset to error. Or else the following will appear.\n\n[ 920.617269] WARNING: CPU: 1 PID: 21 at drivers/infiniband/sw/rxe/rxe_comp.c:756 rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.617744] Modules linked in: rnbd_client(O) rtrs_client(O) rtrs_core(O) rdma_ucm rdma_cm iw_cm ib_cm crc32_generic rdma_rxe ip6_udp_tunnel udp_tunnel ib_uverbs ib_core loop brd null_blk ipv6\n[ 920.618516] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G O 6.1.113-storage+ #65\n[ 920.618986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n[ 920.619396] RIP: 0010:rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.619658] Code: 0f b6 84 24 3a 02 00 00 41 89 84 24 44 04 00 00 e9 2a f7 ff ff 39 ca bb 03 00 00 00 b8 0e 00 00 00 48 0f 45 d8 e9 15 f7 ff ff \u003c0f\u003e 0b e9 cb f8 ff ff 41 bf f5 ff ff ff e9 08 f8 ff ff 49 8d bc 24\n[ 920.620482] RSP: 0018:ffff97b7c00bbc38 EFLAGS: 00010246\n[ 920.620817] RAX: 0000000000000000 RBX: 000000000000000c RCX: 0000000000000008\n[ 920.621183] RDX: ffff960dc396ebc0 RSI: 0000000000005400 RDI: ffff960dc4e2fbac\n[ 920.621548] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffffac406450\n[ 920.621884] R10: ffffffffac4060c0 R11: 0000000000000001 R12: ffff960dc4e2f800\n[ 920.622254] R13: ffff960dc4e2f928 R14: ffff97b7c029c580 R15: 0000000000000000\n[ 920.622609] FS: 0000000000000000(0000) GS:ffff960ef7d00000(0000) knlGS:0000000000000000\n[ 920.622979] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 920.623245] CR2: 00007fa056965e90 CR3: 00000001107f1000 CR4: 00000000000006e0\n[ 920.623680] Call Trace:\n[ 920.623815] \u003cTASK\u003e\n[ 920.623933] ? __warn+0x79/0xc0\n[ 920.624116] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.624356] ? report_bug+0xfb/0x150\n[ 920.624594] ? handle_bug+0x3c/0x60\n[ 920.624796] ? exc_invalid_op+0x14/0x70\n[ 920.624976] ? asm_exc_invalid_op+0x16/0x20\n[ 920.625203] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.625474] ? rxe_completer+0x329/0xcc0 [rdma_rxe]\n[ 920.625749] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.626037] rxe_requester+0x625/0xde0 [rdma_rxe]\n[ 920.626310] ? rxe_cq_post+0xe2/0x180 [rdma_rxe]\n[ 920.626583] ? do_complete+0x18d/0x220 [rdma_rxe]\n[ 920.626812] ? rxe_completer+0x1a3/0xcc0 [rdma_rxe]\n[ 920.627050] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.627285] tasklet_action_common.constprop.0+0xa4/0x120\n[ 920.627522] handle_softirqs+0xc2/0x250\n[ 920.627728] ? sort_range+0x20/0x20\n[ 920.627942] run_ksoftirqd+0x1f/0x30\n[ 920.628158] smpboot_thread_fn+0xc7/0x1b0\n[ 920.628334] kthread+0xd6/0x100\n[ 920.628504] ? kthread_complete_and_exit+0x20/0x20\n[ 920.628709] ret_from_fork+0x1f/0x30\n[ 920.628892] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53229",
"url": "https://www.suse.com/security/cve/CVE-2024-53229"
},
{
"category": "external",
"summary": "SUSE Bug 1234905 for CVE-2024-53229",
"url": "https://bugzilla.suse.com/1234905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53229"
},
{
"cve": "CVE-2024-53230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference,\nso check NULL for cppc_get_cpu_cost().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53230",
"url": "https://www.suse.com/security/cve/CVE-2024-53230"
},
{
"category": "external",
"summary": "SUSE Bug 1235976 for CVE-2024-53230",
"url": "https://bugzilla.suse.com/1235976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53230"
},
{
"cve": "CVE-2024-53231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53231",
"url": "https://www.suse.com/security/cve/CVE-2024-53231"
},
{
"category": "external",
"summary": "SUSE Bug 1235977 for CVE-2024-53231",
"url": "https://bugzilla.suse.com/1235977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53231"
},
{
"cve": "CVE-2024-53232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/s390: Implement blocking domain\n\nThis fixes a crash when surprise hot-unplugging a PCI device. This crash\nhappens because during hot-unplug __iommu_group_set_domain_nofail()\nattaching the default domain fails when the platform no longer\nrecognizes the device as it has already been removed and we end up with\na NULL domain pointer and UAF. This is exactly the case referred to in\nthe second comment in __iommu_device_set_domain() and just as stated\nthere if we can instead attach the blocking domain the UAF is prevented\nas this can handle the already removed device. Implement the blocking\ndomain to use this handling. With this change, the crash is fixed but\nwe still hit a warning attempting to change DMA ownership on a blocked\ndevice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53232",
"url": "https://www.suse.com/security/cve/CVE-2024-53232"
},
{
"category": "external",
"summary": "SUSE Bug 1235050 for CVE-2024-53232",
"url": "https://bugzilla.suse.com/1235050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53232"
},
{
"cve": "CVE-2024-53233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nunicode: Fix utf8_load() error path\n\nutf8_load() requests the symbol \"utf8_data_table\" and then checks if the\nrequested UTF-8 version is supported. If it\u0027s unsupported, it tries to\nput the data table using symbol_put(). If an unsupported version is\nrequested, symbol_put() fails like this:\n\n kernel BUG at kernel/module/main.c:786!\n RIP: 0010:__symbol_put+0x93/0xb0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x19/0x27\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x65/0x80\n ? __symbol_put+0x93/0xb0\n ? exc_invalid_op+0x51/0x70\n ? __symbol_put+0x93/0xb0\n ? asm_exc_invalid_op+0x1a/0x20\n ? __pfx_cmp_name+0x10/0x10\n ? __symbol_put+0x93/0xb0\n ? __symbol_put+0x62/0xb0\n utf8_load+0xf8/0x150\n\nThat happens because symbol_put() expects the unique string that\nidentify the symbol, instead of a pointer to the loaded symbol. Fix that\nby using such string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53233",
"url": "https://www.suse.com/security/cve/CVE-2024-53233"
},
{
"category": "external",
"summary": "SUSE Bug 1235046 for CVE-2024-53233",
"url": "https://bugzilla.suse.com/1235046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53233"
},
{
"cve": "CVE-2024-53234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle NONHEAD !delta[1] lclusters gracefully\n\nsyzbot reported a WARNING in iomap_iter_done:\n iomap_fiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80\n ioctl_fiemap fs/ioctl.c:220 [inline]\n\nGenerally, NONHEAD lclusters won\u0027t have delta[1]==0, except for crafted\nimages and filesystems created by pre-1.0 mkfs versions.\n\nPreviously, it would immediately bail out if delta[1]==0, which led to\ninadequate decompressed lengths (thus FIEMAP is impacted). Treat it as\ndelta[1]=1 to work around these legacy mkfs versions.\n\n`lclusterbits \u003e 14` is illegal for compact indexes, error out too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53234",
"url": "https://www.suse.com/security/cve/CVE-2024-53234"
},
{
"category": "external",
"summary": "SUSE Bug 1235045 for CVE-2024-53234",
"url": "https://bugzilla.suse.com/1235045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53234"
},
{
"cve": "CVE-2024-53236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: Free skb when TX metadata options are invalid\n\nWhen a new skb is allocated for transmitting an xsk descriptor, i.e., for\nevery non-multibuf descriptor or the first frag of a multibuf descriptor,\nbut the descriptor is later found to have invalid options set for the TX\nmetadata, the new skb is never freed. This can leak skbs until the send\nbuffer is full which makes sending more packets impossible.\n\nFix this by freeing the skb in the error path if we are currently dealing\nwith the first frag, i.e., an skb allocated in this iteration of\nxsk_build_skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53236",
"url": "https://www.suse.com/security/cve/CVE-2024-53236"
},
{
"category": "external",
"summary": "SUSE Bug 1235000 for CVE-2024-53236",
"url": "https://bugzilla.suse.com/1235000"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53236"
},
{
"cve": "CVE-2024-53237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: fix use-after-free in device_for_each_child()\n\nSyzbot has reported the following KASAN splat:\n\nBUG: KASAN: slab-use-after-free in device_for_each_child+0x18f/0x1a0\nRead of size 8 at addr ffff88801f605308 by task kbnepd bnep0/4980\n\nCPU: 0 UID: 0 PID: 4980 Comm: kbnepd bnep0 Not tainted 6.12.0-rc4-00161-gae90f6a6170d #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x100/0x190\n ? device_for_each_child+0x18f/0x1a0\n print_report+0x13a/0x4cb\n ? __virt_addr_valid+0x5e/0x590\n ? __phys_addr+0xc6/0x150\n ? device_for_each_child+0x18f/0x1a0\n kasan_report+0xda/0x110\n ? device_for_each_child+0x18f/0x1a0\n ? __pfx_dev_memalloc_noio+0x10/0x10\n device_for_each_child+0x18f/0x1a0\n ? __pfx_device_for_each_child+0x10/0x10\n pm_runtime_set_memalloc_noio+0xf2/0x180\n netdev_unregister_kobject+0x1ed/0x270\n unregister_netdevice_many_notify+0x123c/0x1d80\n ? __mutex_trylock_common+0xde/0x250\n ? __pfx_unregister_netdevice_many_notify+0x10/0x10\n ? trace_contention_end+0xe6/0x140\n ? __mutex_lock+0x4e7/0x8f0\n ? __pfx_lock_acquire.part.0+0x10/0x10\n ? rcu_is_watching+0x12/0xc0\n ? unregister_netdev+0x12/0x30\n unregister_netdevice_queue+0x30d/0x3f0\n ? __pfx_unregister_netdevice_queue+0x10/0x10\n ? __pfx_down_write+0x10/0x10\n unregister_netdev+0x1c/0x30\n bnep_session+0x1fb3/0x2ab0\n ? __pfx_bnep_session+0x10/0x10\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_woken_wake_function+0x10/0x10\n ? __kthread_parkme+0x132/0x200\n ? __pfx_bnep_session+0x10/0x10\n ? kthread+0x13a/0x370\n ? __pfx_bnep_session+0x10/0x10\n kthread+0x2b7/0x370\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x48/0x80\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 4974:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n __kmalloc_noprof+0x1d1/0x440\n hci_alloc_dev_priv+0x1d/0x2820\n __vhci_create_device+0xef/0x7d0\n vhci_write+0x2c7/0x480\n vfs_write+0x6a0/0xfc0\n ksys_write+0x12f/0x260\n do_syscall_64+0xc7/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 4979:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x4f/0x70\n kfree+0x141/0x490\n hci_release_dev+0x4d9/0x600\n bt_host_release+0x6a/0xb0\n device_release+0xa4/0x240\n kobject_put+0x1ec/0x5a0\n put_device+0x1f/0x30\n vhci_release+0x81/0xf0\n __fput+0x3f6/0xb30\n task_work_run+0x151/0x250\n do_exit+0xa79/0x2c30\n do_group_exit+0xd5/0x2a0\n get_signal+0x1fcd/0x2210\n arch_do_signal_or_restart+0x93/0x780\n syscall_exit_to_user_mode+0x140/0x290\n do_syscall_64+0xd4/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nIn \u0027hci_conn_del_sysfs()\u0027, \u0027device_unregister()\u0027 may be called when\nan underlying (kobject) reference counter is greater than 1. This\nmeans that reparenting (happened when the device is actually freed)\nis delayed and, during that delay, parent controller device (hciX)\nmay be deleted. Since the latter may create a dangling pointer to\nfreed parent, avoid that scenario by reparenting to NULL explicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53237",
"url": "https://www.suse.com/security/cve/CVE-2024-53237"
},
{
"category": "external",
"summary": "SUSE Bug 1235007 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "external",
"summary": "SUSE Bug 1235008 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235008"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53237"
},
{
"cve": "CVE-2024-53239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: 6fire: Release resources at card release\n\nThe current 6fire code tries to release the resources right after the\ncall of usb6fire_chip_abort(). But at this moment, the card object\nmight be still in use (as we\u0027re calling snd_card_free_when_closed()).\n\nFor avoid potential UAFs, move the release of resources to the card\u0027s\nprivate_free instead of the manual call of usb6fire_chip_destroy() at\nthe USB disconnect callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53239",
"url": "https://www.suse.com/security/cve/CVE-2024-53239"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235054 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "external",
"summary": "SUSE Bug 1235055 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-53239"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-53685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: give up on paths longer than PATH_MAX\n\nIf the full path to be built by ceph_mdsc_build_path() happens to be\nlonger than PATH_MAX, then this function will enter an endless (retry)\nloop, effectively blocking the whole task. Most of the machine\nbecomes unusable, making this a very simple and effective DoS\nvulnerability.\n\nI cannot imagine why this retry was ever implemented, but it seems\nrather useless and harmful to me. Let\u0027s remove it and fail with\nENAMETOOLONG instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53685",
"url": "https://www.suse.com/security/cve/CVE-2024-53685"
},
{
"category": "external",
"summary": "SUSE Bug 1235720 for CVE-2024-53685",
"url": "https://bugzilla.suse.com/1235720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53685"
},
{
"cve": "CVE-2024-53690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: prevent use of deleted inode\n\nsyzbot reported a WARNING in nilfs_rmdir. [1]\n\nBecause the inode bitmap is corrupted, an inode with an inode number that\nshould exist as a \".nilfs\" file was reassigned by nilfs_mkdir for \"file0\",\ncausing an inode duplication during execution. And this causes an\nunderflow of i_nlink in rmdir operations.\n\nThe inode is used twice by the same task to unmount and remove directories\n\".nilfs\" and \"file0\", it trigger warning in nilfs_rmdir.\n\nAvoid to this issue, check i_nlink in nilfs_iget(), if it is 0, it means\nthat this inode has been deleted, and iput is executed to reclaim it.\n\n[1]\nWARNING: CPU: 1 PID: 5824 at fs/inode.c:407 drop_nlink+0xc4/0x110 fs/inode.c:407\n...\nCall Trace:\n \u003cTASK\u003e\n nilfs_rmdir+0x1b0/0x250 fs/nilfs2/namei.c:342\n vfs_rmdir+0x3a3/0x510 fs/namei.c:4394\n do_rmdir+0x3b5/0x580 fs/namei.c:4453\n __do_sys_rmdir fs/namei.c:4472 [inline]\n __se_sys_rmdir fs/namei.c:4470 [inline]\n __x64_sys_rmdir+0x47/0x50 fs/namei.c:4470\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53690",
"url": "https://www.suse.com/security/cve/CVE-2024-53690"
},
{
"category": "external",
"summary": "SUSE Bug 1235842 for CVE-2024-53690",
"url": "https://bugzilla.suse.com/1235842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-53690"
},
{
"cve": "CVE-2024-54680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-54680"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-54680",
"url": "https://www.suse.com/security/cve/CVE-2024-54680"
},
{
"category": "external",
"summary": "SUSE Bug 1235723 for CVE-2024-54680",
"url": "https://bugzilla.suse.com/1235723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-54680"
},
{
"cve": "CVE-2024-55639",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55639"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: renesas: rswitch: avoid use-after-put for a device tree node\n\nThe device tree node saved in the rswitch_device structure is used at\nseveral driver locations. So passing this node to of_node_put() after\nthe first use is wrong.\n\nMove of_node_put() for this node to exit paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55639",
"url": "https://www.suse.com/security/cve/CVE-2024-55639"
},
{
"category": "external",
"summary": "SUSE Bug 1235737 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "external",
"summary": "SUSE Bug 1235738 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-55639"
},
{
"cve": "CVE-2024-55881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: x86: Play nice with protected guests in complete_hypercall_exit()\n\nUse is_64_bit_hypercall() instead of is_64_bit_mode() to detect a 64-bit\nhypercall when completing said hypercall. For guests with protected state,\ne.g. SEV-ES and SEV-SNP, KVM must assume the hypercall was made in 64-bit\nmode as the vCPU state needed to detect 64-bit mode is unavailable.\n\nHacking the sev_smoke_test selftest to generate a KVM_HC_MAP_GPA_RANGE\nhypercall via VMGEXIT trips the WARN:\n\n ------------[ cut here ]------------\n WARNING: CPU: 273 PID: 326626 at arch/x86/kvm/x86.h:180 complete_hypercall_exit+0x44/0xe0 [kvm]\n Modules linked in: kvm_amd kvm ... [last unloaded: kvm]\n CPU: 273 UID: 0 PID: 326626 Comm: sev_smoke_test Not tainted 6.12.0-smp--392e932fa0f3-feat #470\n Hardware name: Google Astoria/astoria, BIOS 0.20240617.0-0 06/17/2024\n RIP: 0010:complete_hypercall_exit+0x44/0xe0 [kvm]\n Call Trace:\n \u003cTASK\u003e\n kvm_arch_vcpu_ioctl_run+0x2400/0x2720 [kvm]\n kvm_vcpu_ioctl+0x54f/0x630 [kvm]\n __se_sys_ioctl+0x6b/0xc0\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55881",
"url": "https://www.suse.com/security/cve/CVE-2024-55881"
},
{
"category": "external",
"summary": "SUSE Bug 1235745 for CVE-2024-55881",
"url": "https://bugzilla.suse.com/1235745"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-55881"
},
{
"cve": "CVE-2024-55916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nDrivers: hv: util: Avoid accessing a ringbuffer not initialized yet\n\nIf the KVP (or VSS) daemon starts before the VMBus channel\u0027s ringbuffer is\nfully initialized, we can hit the panic below:\n\nhv_utils: Registering HyperV Utility Driver\nhv_vmbus: registering driver hv_utils\n...\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nCPU: 44 UID: 0 PID: 2552 Comm: hv_kvp_daemon Tainted: G E 6.11.0-rc3+ #1\nRIP: 0010:hv_pkt_iter_first+0x12/0xd0\nCall Trace:\n...\n vmbus_recvpacket\n hv_kvp_onchannelcallback\n vmbus_on_event\n tasklet_action_common\n tasklet_action\n handle_softirqs\n irq_exit_rcu\n sysvec_hyperv_stimer0\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_hyperv_stimer0\n...\n kvp_register_done\n hvt_op_read\n vfs_read\n ksys_read\n __x64_sys_read\n\nThis can happen because the KVP/VSS channel callback can be invoked\neven before the channel is fully opened:\n1) as soon as hv_kvp_init() -\u003e hvutil_transport_init() creates\n/dev/vmbus/hv_kvp, the kvp daemon can open the device file immediately and\nregister itself to the driver by writing a message KVP_OP_REGISTER1 to the\nfile (which is handled by kvp_on_msg() -\u003ekvp_handle_handshake()) and\nreading the file for the driver\u0027s response, which is handled by\nhvt_op_read(), which calls hvt-\u003eon_read(), i.e. kvp_register_done().\n\n2) the problem with kvp_register_done() is that it can cause the\nchannel callback to be called even before the channel is fully opened,\nand when the channel callback is starting to run, util_probe()-\u003e\nvmbus_open() may have not initialized the ringbuffer yet, so the\ncallback can hit the panic of NULL pointer dereference.\n\nTo reproduce the panic consistently, we can add a \"ssleep(10)\" for KVP in\n__vmbus_open(), just before the first hv_ringbuffer_init(), and then we\nunload and reload the driver hv_utils, and run the daemon manually within\nthe 10 seconds.\n\nFix the panic by reordering the steps in util_probe() so the char dev\nentry used by the KVP or VSS daemon is not created until after\nvmbus_open() has completed. This reordering prevents the race condition\nfrom happening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55916",
"url": "https://www.suse.com/security/cve/CVE-2024-55916"
},
{
"category": "external",
"summary": "SUSE Bug 1235747 for CVE-2024-55916",
"url": "https://bugzilla.suse.com/1235747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-55916"
},
{
"cve": "CVE-2024-56369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56369"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/modes: Avoid divide by zero harder in drm_mode_vrefresh()\n\ndrm_mode_vrefresh() is trying to avoid divide by zero\nby checking whether htotal or vtotal are zero. But we may\nstill end up with a div-by-zero of vtotal*htotal*...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56369",
"url": "https://www.suse.com/security/cve/CVE-2024-56369"
},
{
"category": "external",
"summary": "SUSE Bug 1235750 for CVE-2024-56369",
"url": "https://bugzilla.suse.com/1235750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56369"
},
{
"cve": "CVE-2024-56372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tun: fix tun_napi_alloc_frags()\n\nsyzbot reported the following crash [1]\n\nIssue came with the blamed commit. Instead of going through\nall the iov components, we keep using the first one\nand end up with a malformed skb.\n\n[1]\n\nkernel BUG at net/core/skbuff.c:2849 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 6230 Comm: syz-executor132 Not tainted 6.13.0-rc1-syzkaller-00407-g96b6fcc0ee41 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024\n RIP: 0010:__pskb_pull_tail+0x1568/0x1570 net/core/skbuff.c:2848\nCode: 38 c1 0f 8c 32 f1 ff ff 4c 89 f7 e8 92 96 74 f8 e9 25 f1 ff ff e8 e8 ae 09 f8 48 8b 5c 24 08 e9 eb fb ff ff e8 d9 ae 09 f8 90 \u003c0f\u003e 0b 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90\nRSP: 0018:ffffc90004cbef30 EFLAGS: 00010293\nRAX: ffffffff8995c347 RBX: 00000000fffffff2 RCX: ffff88802cf45a00\nRDX: 0000000000000000 RSI: 00000000fffffff2 RDI: 0000000000000000\nRBP: ffff88807df0c06a R08: ffffffff8995b084 R09: 1ffff1100fbe185c\nR10: dffffc0000000000 R11: ffffed100fbe185d R12: ffff888076e85d50\nR13: ffff888076e85c80 R14: ffff888076e85cf4 R15: ffff888076e85c80\nFS: 00007f0dca6ea6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f0dca6ead58 CR3: 00000000119da000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_cow_data+0x2da/0xcb0 net/core/skbuff.c:5284\n tipc_aead_decrypt net/tipc/crypto.c:894 [inline]\n tipc_crypto_rcv+0x402/0x24e0 net/tipc/crypto.c:1844\n tipc_rcv+0x57e/0x12a0 net/tipc/node.c:2109\n tipc_l2_rcv_msg+0x2bd/0x450 net/tipc/bearer.c:668\n __netif_receive_skb_list_ptype net/core/dev.c:5720 [inline]\n __netif_receive_skb_list_core+0x8b7/0x980 net/core/dev.c:5762\n __netif_receive_skb_list net/core/dev.c:5814 [inline]\n netif_receive_skb_list_internal+0xa51/0xe30 net/core/dev.c:5905\n gro_normal_list include/net/gro.h:515 [inline]\n napi_complete_done+0x2b5/0x870 net/core/dev.c:6256\n napi_complete include/linux/netdevice.h:567 [inline]\n tun_get_user+0x2ea0/0x4890 drivers/net/tun.c:1982\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2057\n do_iter_readv_writev+0x600/0x880\n vfs_writev+0x376/0xba0 fs/read_write.c:1050\n do_writev+0x1b6/0x360 fs/read_write.c:1096\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56372",
"url": "https://www.suse.com/security/cve/CVE-2024-56372"
},
{
"category": "external",
"summary": "SUSE Bug 1235753 for CVE-2024-56372",
"url": "https://bugzilla.suse.com/1235753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56372"
},
{
"cve": "CVE-2024-56531",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56531"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: caiaq: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThis patch also splits the code to the disconnect and the free phases;\nthe former is called immediately at the USB disconnect callback while\nthe latter is called from the card destructor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56531",
"url": "https://www.suse.com/security/cve/CVE-2024-56531"
},
{
"category": "external",
"summary": "SUSE Bug 1235057 for CVE-2024-56531",
"url": "https://bugzilla.suse.com/1235057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56531"
},
{
"cve": "CVE-2024-56532",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56532"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: us122l: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThe loop of us122l-\u003emmap_count check is dropped as well. The check is\nuseless for the asynchronous operation with *_when_closed().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56532",
"url": "https://www.suse.com/security/cve/CVE-2024-56532"
},
{
"category": "external",
"summary": "SUSE Bug 1235059 for CVE-2024-56532",
"url": "https://bugzilla.suse.com/1235059"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56532"
},
{
"cve": "CVE-2024-56533",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56533"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usx2y: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56533",
"url": "https://www.suse.com/security/cve/CVE-2024-56533"
},
{
"category": "external",
"summary": "SUSE Bug 1235053 for CVE-2024-56533",
"url": "https://bugzilla.suse.com/1235053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56533"
},
{
"cve": "CVE-2024-56536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56536"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cw1200: Fix potential NULL dereference\n\nA recent refactoring was identified by static analysis to\ncause a potential NULL dereference, fix this!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56536",
"url": "https://www.suse.com/security/cve/CVE-2024-56536"
},
{
"category": "external",
"summary": "SUSE Bug 1234911 for CVE-2024-56536",
"url": "https://bugzilla.suse.com/1234911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56536"
},
{
"cve": "CVE-2024-56538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: zynqmp_kms: Unplug DRM device before removal\n\nPrevent userspace accesses to the DRM device from causing\nuse-after-frees by unplugging the device before we remove it. This\ncauses any further userspace accesses to result in an error without\nfurther calls into this driver\u0027s internals.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56538",
"url": "https://www.suse.com/security/cve/CVE-2024-56538"
},
{
"category": "external",
"summary": "SUSE Bug 1235051 for CVE-2024-56538",
"url": "https://bugzilla.suse.com/1235051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56538"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: Skip Rx TID cleanup for self peer\n\nDuring peer create, dp setup for the peer is done where Rx TID is\nupdated for all the TIDs. Peer object for self peer will not go through\ndp setup.\n\nWhen core halts, dp cleanup is done for all the peers. While cleanup,\nrx_tid::ab is accessed which causes below stack trace for self peer.\n\nWARNING: CPU: 6 PID: 12297 at drivers/net/wireless/ath/ath12k/dp_rx.c:851\nCall Trace:\n__warn+0x7b/0x1a0\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nreport_bug+0x10b/0x200\nhandle_bug+0x3f/0x70\nexc_invalid_op+0x13/0x60\nasm_exc_invalid_op+0x16/0x20\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nath12k_dp_rx_frags_cleanup+0xca/0xe0 [ath12k]\nath12k_dp_rx_peer_tid_cleanup+0x39/0xa0 [ath12k]\nath12k_mac_peer_cleanup_all+0x61/0x100 [ath12k]\nath12k_core_halt+0x3b/0x100 [ath12k]\nath12k_core_reset+0x494/0x4c0 [ath12k]\n\nsta object in peer will be updated when remote peer is created. Hence\nuse peer::sta to detect the self peer and skip the cleanup.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.1.0.c5-00481-QCAHMTSWPL_V1.0_V2.0_SILICONZ-3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56543",
"url": "https://www.suse.com/security/cve/CVE-2024-56543"
},
{
"category": "external",
"summary": "SUSE Bug 1235065 for CVE-2024-56543",
"url": "https://bugzilla.suse.com/1235065"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56543"
},
{
"cve": "CVE-2024-56546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56546"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()\n\nIf we fail to allocate memory for cb_data by kmalloc, the memory\nallocation for eve_data is never freed, add the missing kfree()\nin the error handling path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56546",
"url": "https://www.suse.com/security/cve/CVE-2024-56546"
},
{
"category": "external",
"summary": "SUSE Bug 1235070 for CVE-2024-56546",
"url": "https://bugzilla.suse.com/1235070"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56546"
},
{
"cve": "CVE-2024-56548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: don\u0027t query the device logical block size multiple times\n\nDevices block sizes may change. One of these cases is a loop device by\nusing ioctl LOOP_SET_BLOCK_SIZE.\n\nWhile this may cause other issues like IO being rejected, in the case of\nhfsplus, it will allocate a block by using that size and potentially write\nout-of-bounds when hfsplus_read_wrapper calls hfsplus_submit_bio and the\nlatter function reads a different io_size.\n\nUsing a new min_io_size initally set to sb_min_blocksize works for the\npurposes of the original fix, since it will be set to the max between\nHFSPLUS_SECTOR_SIZE and the first seen logical block size. We still use the\nmax between HFSPLUS_SECTOR_SIZE and min_io_size in case the latter is not\ninitialized.\n\nTested by mounting an hfsplus filesystem with loop block sizes 512, 1024\nand 4096.\n\nThe produced KASAN report before the fix looks like this:\n\n[ 419.944641] ==================================================================\n[ 419.945655] BUG: KASAN: slab-use-after-free in hfsplus_read_wrapper+0x659/0xa0a\n[ 419.946703] Read of size 2 at addr ffff88800721fc00 by task repro/10678\n[ 419.947612]\n[ 419.947846] CPU: 0 UID: 0 PID: 10678 Comm: repro Not tainted 6.12.0-rc5-00008-gdf56e0f2f3ca #84\n[ 419.949007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 419.950035] Call Trace:\n[ 419.950384] \u003cTASK\u003e\n[ 419.950676] dump_stack_lvl+0x57/0x78\n[ 419.951212] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.951830] print_report+0x14c/0x49e\n[ 419.952361] ? __virt_addr_valid+0x267/0x278\n[ 419.952979] ? kmem_cache_debug_flags+0xc/0x1d\n[ 419.953561] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.954231] kasan_report+0x89/0xb0\n[ 419.954748] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955367] hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955948] ? __pfx_hfsplus_read_wrapper+0x10/0x10\n[ 419.956618] ? do_raw_spin_unlock+0x59/0x1a9\n[ 419.957214] ? _raw_spin_unlock+0x1a/0x2e\n[ 419.957772] hfsplus_fill_super+0x348/0x1590\n[ 419.958355] ? hlock_class+0x4c/0x109\n[ 419.958867] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.959499] ? __pfx_string+0x10/0x10\n[ 419.960006] ? lock_acquire+0x3e2/0x454\n[ 419.960532] ? bdev_name.constprop.0+0xce/0x243\n[ 419.961129] ? __pfx_bdev_name.constprop.0+0x10/0x10\n[ 419.961799] ? pointer+0x3f0/0x62f\n[ 419.962277] ? __pfx_pointer+0x10/0x10\n[ 419.962761] ? vsnprintf+0x6c4/0xfba\n[ 419.963178] ? __pfx_vsnprintf+0x10/0x10\n[ 419.963621] ? setup_bdev_super+0x376/0x3b3\n[ 419.964029] ? snprintf+0x9d/0xd2\n[ 419.964344] ? __pfx_snprintf+0x10/0x10\n[ 419.964675] ? lock_acquired+0x45c/0x5e9\n[ 419.965016] ? set_blocksize+0x139/0x1c1\n[ 419.965381] ? sb_set_blocksize+0x6d/0xae\n[ 419.965742] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.966179] mount_bdev+0x12f/0x1bf\n[ 419.966512] ? __pfx_mount_bdev+0x10/0x10\n[ 419.966886] ? vfs_parse_fs_string+0xce/0x111\n[ 419.967293] ? __pfx_vfs_parse_fs_string+0x10/0x10\n[ 419.967702] ? __pfx_hfsplus_mount+0x10/0x10\n[ 419.968073] legacy_get_tree+0x104/0x178\n[ 419.968414] vfs_get_tree+0x86/0x296\n[ 419.968751] path_mount+0xba3/0xd0b\n[ 419.969157] ? __pfx_path_mount+0x10/0x10\n[ 419.969594] ? kmem_cache_free+0x1e2/0x260\n[ 419.970311] do_mount+0x99/0xe0\n[ 419.970630] ? __pfx_do_mount+0x10/0x10\n[ 419.971008] __do_sys_mount+0x199/0x1c9\n[ 419.971397] do_syscall_64+0xd0/0x135\n[ 419.971761] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 419.972233] RIP: 0033:0x7c3cb812972e\n[ 419.972564] Code: 48 8b 0d f5 46 0d 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 a5 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d c2 46 0d 00 f7 d8 64 89 01 48\n[ 419.974371] RSP: 002b:00007ffe30632548 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5\n[ 419.975048] RAX: ffffffffffffffda RBX: 00007ffe306328d8 RCX: 00007c3cb812972e\n[ 419.975701] RDX: 0000000020000000 RSI: 0000000020000c80 RDI:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56548",
"url": "https://www.suse.com/security/cve/CVE-2024-56548"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235073 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "external",
"summary": "SUSE Bug 1235074 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56548"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix usage slab after free\n\n[ +0.000021] BUG: KASAN: slab-use-after-free in drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000027] Read of size 8 at addr ffff8881b8605f88 by task amd_pci_unplug/2147\n\n[ +0.000023] CPU: 6 PID: 2147 Comm: amd_pci_unplug Not tainted 6.10.0+ #1\n[ +0.000016] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[ +0.000016] Call Trace:\n[ +0.000008] \u003cTASK\u003e\n[ +0.000009] dump_stack_lvl+0x76/0xa0\n[ +0.000017] print_report+0xce/0x5f0\n[ +0.000017] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] ? srso_return_thunk+0x5/0x5f\n[ +0.000015] ? kasan_complete_mode_report_info+0x72/0x200\n[ +0.000016] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] kasan_report+0xbe/0x110\n[ +0.000015] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000023] __asan_report_load8_noabort+0x14/0x30\n[ +0.000014] drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000016] ? __pfx_drm_sched_entity_flush+0x10/0x10 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? enable_work+0x124/0x220\n[ +0.000015] ? __pfx_enable_work+0x10/0x10\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? free_large_kmalloc+0x85/0xf0\n[ +0.000016] drm_sched_entity_destroy+0x18/0x30 [gpu_sched]\n[ +0.000020] amdgpu_vce_sw_fini+0x55/0x170 [amdgpu]\n[ +0.000735] ? __kasan_check_read+0x11/0x20\n[ +0.000016] vce_v4_0_sw_fini+0x80/0x110 [amdgpu]\n[ +0.000726] amdgpu_device_fini_sw+0x331/0xfc0 [amdgpu]\n[ +0.000679] ? mutex_unlock+0x80/0xe0\n[ +0.000017] ? __pfx_amdgpu_device_fini_sw+0x10/0x10 [amdgpu]\n[ +0.000662] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? mutex_unlock+0x80/0xe0\n[ +0.000016] amdgpu_driver_release_kms+0x16/0x80 [amdgpu]\n[ +0.000663] drm_minor_release+0xc9/0x140 [drm]\n[ +0.000081] drm_release+0x1fd/0x390 [drm]\n[ +0.000082] __fput+0x36c/0xad0\n[ +0.000018] __fput_sync+0x3c/0x50\n[ +0.000014] __x64_sys_close+0x7d/0xe0\n[ +0.000014] x64_sys_call+0x1bc6/0x2680\n[ +0.000014] do_syscall_64+0x70/0x130\n[ +0.000014] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit_to_user_mode+0x60/0x190\n[ +0.000015] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit+0x43/0x50\n[ +0.000012] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? exc_page_fault+0x7c/0x110\n[ +0.000015] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ +0.000014] RIP: 0033:0x7ffff7b14f67\n[ +0.000013] Code: ff e8 0d 16 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 03 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 41 c3 48 83 ec 18 89 7c 24 0c e8 73 ba f7 ff\n[ +0.000026] RSP: 002b:00007fffffffe378 EFLAGS: 00000246 ORIG_RAX: 0000000000000003\n[ +0.000019] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffff7b14f67\n[ +0.000014] RDX: 0000000000000000 RSI: 00007ffff7f6f47a RDI: 0000000000000003\n[ +0.000014] RBP: 00007fffffffe3a0 R08: 0000555555569890 R09: 0000000000000000\n[ +0.000014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffffe5c8\n[ +0.000013] R13: 00005555555552a9 R14: 0000555555557d48 R15: 00007ffff7ffd040\n[ +0.000020] \u003c/TASK\u003e\n\n[ +0.000016] Allocated by task 383 on cpu 7 at 26.880319s:\n[ +0.000014] kasan_save_stack+0x28/0x60\n[ +0.000008] kasan_save_track+0x18/0x70\n[ +0.000007] kasan_save_alloc_info+0x38/0x60\n[ +0.000007] __kasan_kmalloc+0xc1/0xd0\n[ +0.000007] kmalloc_trace_noprof+0x180/0x380\n[ +0.000007] drm_sched_init+0x411/0xec0 [gpu_sched]\n[ +0.000012] amdgpu_device_init+0x695f/0xa610 [amdgpu]\n[ +0.000658] amdgpu_driver_load_kms+0x1a/0x120 [amdgpu]\n[ +0.000662] amdgpu_pci_p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56551",
"url": "https://www.suse.com/security/cve/CVE-2024-56551"
},
{
"category": "external",
"summary": "SUSE Bug 1235075 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "external",
"summary": "SUSE Bug 1235102 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56551"
},
{
"cve": "CVE-2024-56557",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56557"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer\n\nThe AD7923 was updated to support devices with 8 channels, but the size\nof tx_buf and ring_xfer was not increased accordingly, leading to a\npotential buffer overflow in ad7923_update_scan_mode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56557",
"url": "https://www.suse.com/security/cve/CVE-2024-56557"
},
{
"category": "external",
"summary": "SUSE Bug 1235122 for CVE-2024-56557",
"url": "https://bugzilla.suse.com/1235122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56557"
},
{
"cve": "CVE-2024-56558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56558"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: make sure exp active before svc_export_show\n\nThe function `e_show` was called with protection from RCU. This only\nensures that `exp` will not be freed. Therefore, the reference count for\n`exp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `exp_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `exp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 3 PID: 819 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 3 UID: 0 PID: 819 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n...\nCall Trace:\n \u003cTASK\u003e\n e_show+0x20b/0x230 [nfsd]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56558",
"url": "https://www.suse.com/security/cve/CVE-2024-56558"
},
{
"category": "external",
"summary": "SUSE Bug 1235100 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "external",
"summary": "SUSE Bug 1243648 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1243648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56558"
},
{
"cve": "CVE-2024-56562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56562"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()\n\nif (dev-\u003eboardinfo \u0026\u0026 dev-\u003eboardinfo-\u003einit_dyn_addr)\n ^^^ here check \"init_dyn_addr\"\n\ti3c_bus_set_addr_slot_status(\u0026master-\u003ebus, dev-\u003einfo.dyn_addr, ...)\n\t\t\t\t\t\t ^^^^\n\t\t\t\t\t\t\tfree \"dyn_addr\"\nFix copy/paste error \"dyn_addr\" by replacing it with \"init_dyn_addr\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56562",
"url": "https://www.suse.com/security/cve/CVE-2024-56562"
},
{
"category": "external",
"summary": "SUSE Bug 1234930 for CVE-2024-56562",
"url": "https://bugzilla.suse.com/1234930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56562"
},
{
"cve": "CVE-2024-56566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: Avoid list corruption when removing a slab from the full list\n\nBoot with slub_debug=UFPZ.\n\nIf allocated object failed in alloc_consistency_checks, all objects of\nthe slab will be marked as used, and then the slab will be removed from\nthe partial list.\n\nWhen an object belonging to the slab got freed later, the remove_full()\nfunction is called. Because the slab is neither on the partial list nor\non the full list, it eventually lead to a list corruption (actually a\nlist poison being detected).\n\nSo we need to mark and isolate the slab page with metadata corruption,\ndo not put it back in circulation.\n\nBecause the debug caches avoid all the fastpaths, reusing the frozen bit\nto mark slab page with metadata corruption seems to be fine.\n\n[ 4277.385669] list_del corruption, ffffea00044b3e50-\u003enext is LIST_POISON1 (dead000000000100)\n[ 4277.387023] ------------[ cut here ]------------\n[ 4277.387880] kernel BUG at lib/list_debug.c:56!\n[ 4277.388680] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 4277.389562] CPU: 5 PID: 90 Comm: kworker/5:1 Kdump: loaded Tainted: G OE 6.6.1-1 #1\n[ 4277.392113] Workqueue: xfs-inodegc/vda1 xfs_inodegc_worker [xfs]\n[ 4277.393551] RIP: 0010:__list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.394518] Code: 48 91 82 e8 37 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 28 49 91 82 e8 26 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 58 49 91\n[ 4277.397292] RSP: 0018:ffffc90000333b38 EFLAGS: 00010082\n[ 4277.398202] RAX: 000000000000004e RBX: ffffea00044b3e50 RCX: 0000000000000000\n[ 4277.399340] RDX: 0000000000000002 RSI: ffffffff828f8715 RDI: 00000000ffffffff\n[ 4277.400545] RBP: ffffea00044b3e40 R08: 0000000000000000 R09: ffffc900003339f0\n[ 4277.401710] R10: 0000000000000003 R11: ffffffff82d44088 R12: ffff888112cf9910\n[ 4277.402887] R13: 0000000000000001 R14: 0000000000000001 R15: ffff8881000424c0\n[ 4277.404049] FS: 0000000000000000(0000) GS:ffff88842fd40000(0000) knlGS:0000000000000000\n[ 4277.405357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4277.406389] CR2: 00007f2ad0b24000 CR3: 0000000102a3a006 CR4: 00000000007706e0\n[ 4277.407589] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4277.408780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4277.410000] PKRU: 55555554\n[ 4277.410645] Call Trace:\n[ 4277.411234] \u003cTASK\u003e\n[ 4277.411777] ? die+0x32/0x80\n[ 4277.412439] ? do_trap+0xd6/0x100\n[ 4277.413150] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.414158] ? do_error_trap+0x6a/0x90\n[ 4277.414948] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.415915] ? exc_invalid_op+0x4c/0x60\n[ 4277.416710] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.417675] ? asm_exc_invalid_op+0x16/0x20\n[ 4277.418482] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.419466] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.420410] free_to_partial_list+0x515/0x5e0\n[ 4277.421242] ? xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.422298] xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.423316] ? xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.424383] xfs_bmap_del_extent_delay+0x4fe/0x7d0 [xfs]\n[ 4277.425490] __xfs_bunmapi+0x50d/0x840 [xfs]\n[ 4277.426445] xfs_itruncate_extents_flags+0x13a/0x490 [xfs]\n[ 4277.427553] xfs_inactive_truncate+0xa3/0x120 [xfs]\n[ 4277.428567] xfs_inactive+0x22d/0x290 [xfs]\n[ 4277.429500] xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.430479] process_one_work+0x171/0x340\n[ 4277.431227] worker_thread+0x277/0x390\n[ 4277.431962] ? __pfx_worker_thread+0x10/0x10\n[ 4277.432752] kthread+0xf0/0x120\n[ 4277.433382] ? __pfx_kthread+0x10/0x10\n[ 4277.434134] ret_from_fork+0x2d/0x50\n[ 4277.434837] ? __pfx_kthread+0x10/0x10\n[ 4277.435566] ret_from_fork_asm+0x1b/0x30\n[ 4277.436280] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56566",
"url": "https://www.suse.com/security/cve/CVE-2024-56566"
},
{
"category": "external",
"summary": "SUSE Bug 1235033 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "external",
"summary": "SUSE Bug 1235034 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56566"
},
{
"cve": "CVE-2024-56567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nad7780: fix division by zero in ad7780_write_raw()\n\nIn the ad7780_write_raw() , val2 can be zero, which might lead to a\ndivision by zero error in DIV_ROUND_CLOSEST(). The ad7780_write_raw()\nis based on iio_info\u0027s write_raw. While val is explicitly declared that\ncan be zero (in read mode), val2 is not specified to be non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56567",
"url": "https://www.suse.com/security/cve/CVE-2024-56567"
},
{
"category": "external",
"summary": "SUSE Bug 1234916 for CVE-2024-56567",
"url": "https://bugzilla.suse.com/1234916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56567"
},
{
"cve": "CVE-2024-56568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56568"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/arm-smmu: Defer probe of clients after smmu device bound\n\nNull pointer dereference occurs due to a race between smmu\ndriver probe and client driver probe, when of_dma_configure()\nfor client is called after the iommu_device_register() for smmu driver\nprobe has executed but before the driver_bound() for smmu driver\nhas been called.\n\nFollowing is how the race occurs:\n\nT1:Smmu device probe\t\tT2: Client device probe\n\nreally_probe()\narm_smmu_device_probe()\niommu_device_register()\n\t\t\t\t\treally_probe()\n\t\t\t\t\tplatform_dma_configure()\n\t\t\t\t\tof_dma_configure()\n\t\t\t\t\tof_dma_configure_id()\n\t\t\t\t\tof_iommu_configure()\n\t\t\t\t\tiommu_probe_device()\n\t\t\t\t\tiommu_init_device()\n\t\t\t\t\tarm_smmu_probe_device()\n\t\t\t\t\tarm_smmu_get_by_fwnode()\n\t\t\t\t\t\tdriver_find_device_by_fwnode()\n\t\t\t\t\t\tdriver_find_device()\n\t\t\t\t\t\tnext_device()\n\t\t\t\t\t\tklist_next()\n\t\t\t\t\t\t /* null ptr\n\t\t\t\t\t\t assigned to smmu */\n\t\t\t\t\t/* null ptr dereference\n\t\t\t\t\t while smmu-\u003estreamid_mask */\ndriver_bound()\n\tklist_add_tail()\n\nWhen this null smmu pointer is dereferenced later in\narm_smmu_probe_device, the device crashes.\n\nFix this by deferring the probe of the client device\nuntil the smmu device has bound to the arm smmu driver.\n\n[will: Add comment]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56568",
"url": "https://www.suse.com/security/cve/CVE-2024-56568"
},
{
"category": "external",
"summary": "SUSE Bug 1235032 for CVE-2024-56568",
"url": "https://bugzilla.suse.com/1235032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56568"
},
{
"cve": "CVE-2024-56569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix regression with module command in stack_trace_filter\n\nWhen executing the following command:\n\n # echo \"write*:mod:ext3\" \u003e /sys/kernel/tracing/stack_trace_filter\n\nThe current mod command causes a null pointer dereference. While commit\n0f17976568b3f (\"ftrace: Fix regression with module command in stack_trace_filter\")\nhas addressed part of the issue, it left a corner case unhandled, which still\nresults in a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56569",
"url": "https://www.suse.com/security/cve/CVE-2024-56569"
},
{
"category": "external",
"summary": "SUSE Bug 1235031 for CVE-2024-56569",
"url": "https://bugzilla.suse.com/1235031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56569"
},
{
"cve": "CVE-2024-56570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Filter invalid inodes with missing lookup function\n\nAdd a check to the ovl_dentry_weird() function to prevent the\nprocessing of directory inodes that lack the lookup function.\nThis is important because such inodes can cause errors in overlayfs\nwhen passed to the lowerstack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56570",
"url": "https://www.suse.com/security/cve/CVE-2024-56570"
},
{
"category": "external",
"summary": "SUSE Bug 1235035 for CVE-2024-56570",
"url": "https://bugzilla.suse.com/1235035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56570"
},
{
"cve": "CVE-2024-56571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56571"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56571",
"url": "https://www.suse.com/security/cve/CVE-2024-56571"
},
{
"category": "external",
"summary": "SUSE Bug 1235037 for CVE-2024-56571",
"url": "https://bugzilla.suse.com/1235037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56571"
},
{
"cve": "CVE-2024-56572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56572"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal()\n\nThe buffer in the loop should be released under the exception path,\notherwise there may be a memory leak here.\n\nTo mitigate this, free the buffer when allegro_alloc_buffer fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56572",
"url": "https://www.suse.com/security/cve/CVE-2024-56572"
},
{
"category": "external",
"summary": "SUSE Bug 1235043 for CVE-2024-56572",
"url": "https://bugzilla.suse.com/1235043"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56572"
},
{
"cve": "CVE-2024-56573",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56573"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi/libstub: Free correct pointer on failure\n\ncmdline_ptr is an out parameter, which is not allocated by the function\nitself, and likely points into the caller\u0027s stack.\n\ncmdline refers to the pool allocation that should be freed when cleaning\nup after a failure, so pass this instead to free_pool().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56573",
"url": "https://www.suse.com/security/cve/CVE-2024-56573"
},
{
"category": "external",
"summary": "SUSE Bug 1235042 for CVE-2024-56573",
"url": "https://bugzilla.suse.com/1235042"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56573"
},
{
"cve": "CVE-2024-56574",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56574"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: ts2020: fix null-ptr-deref in ts2020_probe()\n\nKASAN reported a null-ptr-deref issue when executing the following\ncommand:\n\n # echo ts2020 0x20 \u003e /sys/bus/i2c/devices/i2c-0/new_device\n KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\n CPU: 53 UID: 0 PID: 970 Comm: systemd-udevd Not tainted 6.12.0-rc2+ #24\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)\n RIP: 0010:ts2020_probe+0xad/0xe10 [ts2020]\n RSP: 0018:ffffc9000abbf598 EFLAGS: 00010202\n RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffffc0714809\n RDX: 0000000000000002 RSI: ffff88811550be00 RDI: 0000000000000010\n RBP: ffff888109868800 R08: 0000000000000001 R09: fffff52001577eb6\n R10: 0000000000000000 R11: ffffc9000abbff50 R12: ffffffffc0714790\n R13: 1ffff92001577eb8 R14: ffffffffc07190d0 R15: 0000000000000001\n FS: 00007f95f13b98c0(0000) GS:ffff888149280000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000555d2634b000 CR3: 0000000152236000 CR4: 00000000000006f0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ts2020_probe+0xad/0xe10 [ts2020]\n i2c_device_probe+0x421/0xb40\n really_probe+0x266/0x850\n ...\n\nThe cause of the problem is that when using sysfs to dynamically register\nan i2c device, there is no platform data, but the probe process of ts2020\nneeds to use platform data, resulting in a null pointer being accessed.\n\nSolve this problem by adding checks to platform data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56574",
"url": "https://www.suse.com/security/cve/CVE-2024-56574"
},
{
"category": "external",
"summary": "SUSE Bug 1235040 for CVE-2024-56574",
"url": "https://bugzilla.suse.com/1235040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56574"
},
{
"cve": "CVE-2024-56575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56575"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Ensure power suppliers be suspended before detach them\n\nThe power suppliers are always requested to suspend asynchronously,\ndev_pm_domain_detach() requires the caller to ensure proper\nsynchronization of this function with power management callbacks.\notherwise the detach may led to kernel panic, like below:\n\n[ 1457.107934] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000040\n[ 1457.116777] Mem abort info:\n[ 1457.119589] ESR = 0x0000000096000004\n[ 1457.123358] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 1457.128692] SET = 0, FnV = 0\n[ 1457.131764] EA = 0, S1PTW = 0\n[ 1457.134920] FSC = 0x04: level 0 translation fault\n[ 1457.139812] Data abort info:\n[ 1457.142707] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 1457.148196] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 1457.153256] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 1457.158563] user pgtable: 4k pages, 48-bit VAs, pgdp=00000001138b6000\n[ 1457.165000] [0000000000000040] pgd=0000000000000000, p4d=0000000000000000\n[ 1457.171792] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 1457.178045] Modules linked in: v4l2_jpeg wave6_vpu_ctrl(-) [last unloaded: mxc_jpeg_encdec]\n[ 1457.186383] CPU: 0 PID: 51938 Comm: kworker/0:3 Not tainted 6.6.36-gd23d64eea511 #66\n[ 1457.194112] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 1457.199236] Workqueue: pm pm_runtime_work\n[ 1457.203247] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1457.210188] pc : genpd_runtime_suspend+0x20/0x290\n[ 1457.214886] lr : __rpm_callback+0x48/0x1d8\n[ 1457.218968] sp : ffff80008250bc50\n[ 1457.222270] x29: ffff80008250bc50 x28: 0000000000000000 x27: 0000000000000000\n[ 1457.229394] x26: 0000000000000000 x25: 0000000000000008 x24: 00000000000f4240\n[ 1457.236518] x23: 0000000000000000 x22: ffff00008590f0e4 x21: 0000000000000008\n[ 1457.243642] x20: ffff80008099c434 x19: ffff00008590f000 x18: ffffffffffffffff\n[ 1457.250766] x17: 5300326563697665 x16: 645f676e696c6f6f x15: 63343a6d726f6674\n[ 1457.257890] x14: 0000000000000004 x13: 00000000000003a4 x12: 0000000000000002\n[ 1457.265014] x11: 0000000000000000 x10: 0000000000000a60 x9 : ffff80008250bbb0\n[ 1457.272138] x8 : ffff000092937200 x7 : ffff0003fdf6af80 x6 : 0000000000000000\n[ 1457.279262] x5 : 00000000410fd050 x4 : 0000000000200000 x3 : 0000000000000000\n[ 1457.286386] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff00008590f000\n[ 1457.293510] Call trace:\n[ 1457.295946] genpd_runtime_suspend+0x20/0x290\n[ 1457.300296] __rpm_callback+0x48/0x1d8\n[ 1457.304038] rpm_callback+0x6c/0x78\n[ 1457.307515] rpm_suspend+0x10c/0x570\n[ 1457.311077] pm_runtime_work+0xc4/0xc8\n[ 1457.314813] process_one_work+0x138/0x248\n[ 1457.318816] worker_thread+0x320/0x438\n[ 1457.322552] kthread+0x110/0x114\n[ 1457.325767] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56575",
"url": "https://www.suse.com/security/cve/CVE-2024-56575"
},
{
"category": "external",
"summary": "SUSE Bug 1235039 for CVE-2024-56575",
"url": "https://bugzilla.suse.com/1235039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56575"
},
{
"cve": "CVE-2024-56576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56576"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: tc358743: Fix crash in the probe error path when using polling\n\nIf an error occurs in the probe() function, we should remove the polling\ntimer that was alarmed earlier, otherwise the timer is called with\narguments that are already freed, which results in a crash.\n\n------------[ cut here ]------------\nWARNING: CPU: 3 PID: 0 at kernel/time/timer.c:1830 __run_timers+0x244/0x268\nModules linked in:\nCPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted 6.11.0 #226\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\npstate: 804000c9 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : __run_timers+0x244/0x268\nlr : __run_timers+0x1d4/0x268\nsp : ffffff80eff2baf0\nx29: ffffff80eff2bb50 x28: 7fffffffffffffff x27: ffffff80eff2bb00\nx26: ffffffc080f669c0 x25: ffffff80efef6bf0 x24: ffffff80eff2bb00\nx23: 0000000000000000 x22: dead000000000122 x21: 0000000000000000\nx20: ffffff80efef6b80 x19: ffffff80041c8bf8 x18: ffffffffffffffff\nx17: ffffffc06f146000 x16: ffffff80eff27dc0 x15: 000000000000003e\nx14: 0000000000000000 x13: 00000000000054da x12: 0000000000000000\nx11: 00000000000639c0 x10: 000000000000000c x9 : 0000000000000009\nx8 : ffffff80eff2cb40 x7 : ffffff80eff2cb40 x6 : ffffff8002bee480\nx5 : ffffffc080cb2220 x4 : ffffffc080cb2150 x3 : 00000000000f4240\nx2 : 0000000000000102 x1 : ffffff80eff2bb00 x0 : ffffff80041c8bf0\nCall trace:\n __run_timers+0x244/0x268\n timer_expire_remote+0x50/0x68\n tmigr_handle_remote+0x388/0x39c\n run_timer_softirq+0x38/0x44\n handle_softirqs+0x138/0x298\n __do_softirq+0x14/0x20\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0x9c/0xcc\n el1_interrupt+0x48/0xc0\n el1h_64_irq_handler+0x18/0x24\n el1h_64_irq+0x7c/0x80\n default_idle_call+0x34/0x68\n do_idle+0x23c/0x294\n cpu_startup_entry+0x38/0x3c\n secondary_start_kernel+0x128/0x160\n __secondary_switched+0xb8/0xbc\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56576",
"url": "https://www.suse.com/security/cve/CVE-2024-56576"
},
{
"category": "external",
"summary": "SUSE Bug 1235019 for CVE-2024-56576",
"url": "https://bugzilla.suse.com/1235019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56576"
},
{
"cve": "CVE-2024-56577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56577"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-jpeg: Fix null-ptr-deref during unload module\n\nThe workqueue should be destroyed in mtk_jpeg_core.c since commit\n09aea13ecf6f (\"media: mtk-jpeg: refactor some variables\"), otherwise\nthe below calltrace can be easily triggered.\n\n[ 677.862514] Unable to handle kernel paging request at virtual address dfff800000000023\n[ 677.863633] KASAN: null-ptr-deref in range [0x0000000000000118-0x000000000000011f]\n...\n[ 677.879654] CPU: 6 PID: 1071 Comm: modprobe Tainted: G O 6.8.12-mtk+gfa1a78e5d24b+ #17\n...\n[ 677.882838] pc : destroy_workqueue+0x3c/0x770\n[ 677.883413] lr : mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.884314] sp : ffff80008ad974f0\n[ 677.884744] x29: ffff80008ad974f0 x28: ffff0000d7115580 x27: ffff0000dd691070\n[ 677.885669] x26: ffff0000dd691408 x25: ffff8000844af3e0 x24: ffff80008ad97690\n[ 677.886592] x23: ffff0000e051d400 x22: ffff0000dd691010 x21: dfff800000000000\n[ 677.887515] x20: 0000000000000000 x19: 0000000000000000 x18: ffff800085397ac0\n[ 677.888438] x17: 0000000000000000 x16: ffff8000801b87c8 x15: 1ffff000115b2e10\n[ 677.889361] x14: 00000000f1f1f1f1 x13: 0000000000000000 x12: ffff7000115b2e4d\n[ 677.890285] x11: 1ffff000115b2e4c x10: ffff7000115b2e4c x9 : ffff80000aa43e90\n[ 677.891208] x8 : 00008fffeea4d1b4 x7 : ffff80008ad97267 x6 : 0000000000000001\n[ 677.892131] x5 : ffff80008ad97260 x4 : ffff7000115b2e4d x3 : 0000000000000000\n[ 677.893054] x2 : 0000000000000023 x1 : dfff800000000000 x0 : 0000000000000118\n[ 677.893977] Call trace:\n[ 677.894297] destroy_workqueue+0x3c/0x770\n[ 677.894826] mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.895677] devm_action_release+0x50/0x90\n[ 677.896211] release_nodes+0xe8/0x170\n[ 677.896688] devres_release_all+0xf8/0x178\n[ 677.897219] device_unbind_cleanup+0x24/0x170\n[ 677.897785] device_release_driver_internal+0x35c/0x480\n[ 677.898461] device_release_driver+0x20/0x38\n...\n[ 677.912665] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56577",
"url": "https://www.suse.com/security/cve/CVE-2024-56577"
},
{
"category": "external",
"summary": "SUSE Bug 1235112 for CVE-2024-56577",
"url": "https://bugzilla.suse.com/1235112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56577"
},
{
"cve": "CVE-2024-56578",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56578"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Set video drvdata before register video device\n\nThe video drvdata should be set before the video device is registered,\notherwise video_drvdata() may return NULL in the open() file ops, and led\nto oops.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56578",
"url": "https://www.suse.com/security/cve/CVE-2024-56578"
},
{
"category": "external",
"summary": "SUSE Bug 1235115 for CVE-2024-56578",
"url": "https://bugzilla.suse.com/1235115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56578"
},
{
"cve": "CVE-2024-56582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56582"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free in btrfs_encoded_read_endio()\n\nShinichiro reported the following use-after free that sometimes is\nhappening in our CI system when running fstests\u0027 btrfs/284 on a TCMU\nrunner device:\n\n BUG: KASAN: slab-use-after-free in lock_release+0x708/0x780\n Read of size 8 at addr ffff888106a83f18 by task kworker/u80:6/219\n\n CPU: 8 UID: 0 PID: 219 Comm: kworker/u80:6 Not tainted 6.12.0-rc6-kts+ #15\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6e/0xa0\n ? lock_release+0x708/0x780\n print_report+0x174/0x505\n ? lock_release+0x708/0x780\n ? __virt_addr_valid+0x224/0x410\n ? lock_release+0x708/0x780\n kasan_report+0xda/0x1b0\n ? lock_release+0x708/0x780\n ? __wake_up+0x44/0x60\n lock_release+0x708/0x780\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? lock_is_held_type+0x9a/0x110\n _raw_spin_unlock_irqrestore+0x1f/0x60\n __wake_up+0x44/0x60\n btrfs_encoded_read_endio+0x14b/0x190 [btrfs]\n btrfs_check_read_bio+0x8d9/0x1360 [btrfs]\n ? lock_release+0x1b0/0x780\n ? trace_lock_acquire+0x12f/0x1a0\n ? __pfx_btrfs_check_read_bio+0x10/0x10 [btrfs]\n ? process_one_work+0x7e3/0x1460\n ? lock_acquire+0x31/0xc0\n ? process_one_work+0x7e3/0x1460\n process_one_work+0x85c/0x1460\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x16c/0x240\n worker_thread+0x5e6/0xfc0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2c3/0x3a0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_encoded_read_regular_fill_pages+0x16c/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x4f/0x70\n kfree+0x143/0x490\n btrfs_encoded_read_regular_fill_pages+0x531/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n The buggy address belongs to the object at ffff888106a83f00\n which belongs to the cache kmalloc-rnd-07-96 of size 96\n The buggy address is located 24 bytes inside of\n freed 96-byte region [ffff888106a83f00, ffff888106a83f60)\n\n The buggy address belongs to the physical page:\n page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888106a83800 pfn:0x106a83\n flags: 0x17ffffc0000000(node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f5(slab)\n raw: 0017ffffc0000000 ffff888100053680 ffffea0004917200 0000000000000004\n raw: ffff888106a83800 0000000080200019 00000001f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888106a83e00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a83e80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n \u003effff888106a83f00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ^\n ffff888106a83f80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a84000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ==================================================================\n\nFurther analyzing the trace and \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56582",
"url": "https://www.suse.com/security/cve/CVE-2024-56582"
},
{
"category": "external",
"summary": "SUSE Bug 1235128 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "external",
"summary": "SUSE Bug 1235129 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56582"
},
{
"cve": "CVE-2024-56584",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56584"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/tctx: work around xa_store() allocation error issue\n\nsyzbot triggered the following WARN_ON:\n\nWARNING: CPU: 0 PID: 16 at io_uring/tctx.c:51 __io_uring_free+0xfa/0x140 io_uring/tctx.c:51\n\nwhich is the\n\nWARN_ON_ONCE(!xa_empty(\u0026tctx-\u003exa));\n\nsanity check in __io_uring_free() when a io_uring_task is going through\nits final put. The syzbot test case includes injecting memory allocation\nfailures, and it very much looks like xa_store() can fail one of its\nmemory allocations and end up with -\u003ehead being non-NULL even though no\nentries exist in the xarray.\n\nUntil this issue gets sorted out, work around it by attempting to\niterate entries in our xarray, and WARN_ON_ONCE() if one is found.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56584",
"url": "https://www.suse.com/security/cve/CVE-2024-56584"
},
{
"category": "external",
"summary": "SUSE Bug 1235117 for CVE-2024-56584",
"url": "https://bugzilla.suse.com/1235117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56584"
},
{
"cve": "CVE-2024-56587",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56587"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nleds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex\n\nThere is NULL pointer issue observed if from Process A where hid device\nbeing added which results in adding a led_cdev addition and later a\nanother call to access of led_cdev attribute from Process B can result\nin NULL pointer issue.\n\nUse mutex led_cdev-\u003eled_access to protect access to led-\u003ecdev and its\nattribute inside brightness_show() and max_brightness_show() and also\nupdate the comment for mutex that it should be used to protect the led\nclass device fields.\n\n\tProcess A \t\t\t\tProcess B\n\n kthread+0x114\n worker_thread+0x244\n process_scheduled_works+0x248\n uhid_device_add_worker+0x24\n hid_add_device+0x120\n device_add+0x268\n bus_probe_device+0x94\n device_initial_probe+0x14\n __device_attach+0xfc\n bus_for_each_drv+0x10c\n __device_attach_driver+0x14c\n driver_probe_device+0x3c\n __driver_probe_device+0xa0\n really_probe+0x190\n hid_device_probe+0x130\n ps_probe+0x990\n ps_led_register+0x94\n devm_led_classdev_register_ext+0x58\n led_classdev_register_ext+0x1f8\n device_create_with_groups+0x48\n device_create_groups_vargs+0xc8\n device_add+0x244\n kobject_uevent+0x14\n kobject_uevent_env[jt]+0x224\n mutex_unlock[jt]+0xc4\n __mutex_unlock_slowpath+0xd4\n wake_up_q+0x70\n try_to_wake_up[jt]+0x48c\n preempt_schedule_common+0x28\n __schedule+0x628\n __switch_to+0x174\n\t\t\t\t\t\tel0t_64_sync+0x1a8/0x1ac\n\t\t\t\t\t\tel0t_64_sync_handler+0x68/0xbc\n\t\t\t\t\t\tel0_svc+0x38/0x68\n\t\t\t\t\t\tdo_el0_svc+0x1c/0x28\n\t\t\t\t\t\tel0_svc_common+0x80/0xe0\n\t\t\t\t\t\tinvoke_syscall+0x58/0x114\n\t\t\t\t\t\t__arm64_sys_read+0x1c/0x2c\n\t\t\t\t\t\tksys_read+0x78/0xe8\n\t\t\t\t\t\tvfs_read+0x1e0/0x2c8\n\t\t\t\t\t\tkernfs_fop_read_iter+0x68/0x1b4\n\t\t\t\t\t\tseq_read_iter+0x158/0x4ec\n\t\t\t\t\t\tkernfs_seq_show+0x44/0x54\n\t\t\t\t\t\tsysfs_kf_seq_show+0xb4/0x130\n\t\t\t\t\t\tdev_attr_show+0x38/0x74\n\t\t\t\t\t\tbrightness_show+0x20/0x4c\n\t\t\t\t\t\tdualshock4_led_get_brightness+0xc/0x74\n\n[ 3313.874295][ T4013] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000060\n[ 3313.874301][ T4013] Mem abort info:\n[ 3313.874303][ T4013] ESR = 0x0000000096000006\n[ 3313.874305][ T4013] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 3313.874307][ T4013] SET = 0, FnV = 0\n[ 3313.874309][ T4013] EA = 0, S1PTW = 0\n[ 3313.874311][ T4013] FSC = 0x06: level 2 translation fault\n[ 3313.874313][ T4013] Data abort info:\n[ 3313.874314][ T4013] ISV = 0, ISS = 0x00000006, ISS2 = 0x00000000\n[ 3313.874316][ T4013] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 3313.874318][ T4013] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 3313.874320][ T4013] user pgtable: 4k pages, 39-bit VAs, pgdp=00000008f2b0a000\n..\n\n[ 3313.874332][ T4013] Dumping ftrace buffer:\n[ 3313.874334][ T4013] (ftrace buffer empty)\n..\n..\n[ dd3313.874639][ T4013] CPU: 6 PID: 4013 Comm: InputReader\n[ 3313.874648][ T4013] pc : dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874653][ T4013] lr : led_update_brightness+0x38/0x60\n[ 3313.874656][ T4013] sp : ffffffc0b910bbd0\n..\n..\n[ 3313.874685][ T4013] Call trace:\n[ 3313.874687][ T4013] dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874690][ T4013] brightness_show+0x20/0x4c\n[ 3313.874692][ T4013] dev_attr_show+0x38/0x74\n[ 3313.874696][ T4013] sysfs_kf_seq_show+0xb4/0x130\n[ 3313.874700][ T4013] kernfs_seq_show+0x44/0x54\n[ 3313.874703][ T4013] seq_read_iter+0x158/0x4ec\n[ 3313.874705][ T4013] kernfs_fop_read_iter+0x68/0x1b4\n[ 3313.874708][ T4013] vfs_read+0x1e0/0x2c8\n[ 3313.874711][ T4013] ksys_read+0x78/0xe8\n[ 3313.874714][ T4013] __arm64_sys_read+0x1c/0x2c\n[ 3313.874718][ T4013] invoke_syscall+0x58/0x114\n[ 3313.874721][ T4013] el0_svc_common+0x80/0xe0\n[ 3313.874724][ T4013] do_el0_svc+0x1c/0x28\n[ 3313.874727][ T4013] el0_svc+0x38/0x68\n[ 3313.874730][ T4013] el0t_64_sync_handler+0x68/0xbc\n[ 3313.874732][ T4013] el0t_64_sync+0x1a8/0x1ac",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56587",
"url": "https://www.suse.com/security/cve/CVE-2024-56587"
},
{
"category": "external",
"summary": "SUSE Bug 1235125 for CVE-2024-56587",
"url": "https://bugzilla.suse.com/1235125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56587"
},
{
"cve": "CVE-2024-56588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56588"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Create all dump files during debugfs initialization\n\nFor the current debugfs of hisi_sas, after user triggers dump, the\ndriver allocate memory space to save the register information and create\ndebugfs files to display the saved information. In this process, the\ndebugfs files created after each dump.\n\nTherefore, when the dump is triggered while the driver is unbind, the\nfollowing hang occurs:\n\n[67840.853907] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000a0\n[67840.862947] Mem abort info:\n[67840.865855] ESR = 0x0000000096000004\n[67840.869713] EC = 0x25: DABT (current EL), IL = 32 bits\n[67840.875125] SET = 0, FnV = 0\n[67840.878291] EA = 0, S1PTW = 0\n[67840.881545] FSC = 0x04: level 0 translation fault\n[67840.886528] Data abort info:\n[67840.889524] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[67840.895117] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[67840.900284] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[67840.905709] user pgtable: 4k pages, 48-bit VAs, pgdp=0000002803a1f000\n[67840.912263] [00000000000000a0] pgd=0000000000000000, p4d=0000000000000000\n[67840.919177] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[67840.996435] pstate: 80400009 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[67841.003628] pc : down_write+0x30/0x98\n[67841.007546] lr : start_creating.part.0+0x60/0x198\n[67841.012495] sp : ffff8000b979ba20\n[67841.016046] x29: ffff8000b979ba20 x28: 0000000000000010 x27: 0000000000024b40\n[67841.023412] x26: 0000000000000012 x25: ffff20202b355ae8 x24: ffff20202b35a8c8\n[67841.030779] x23: ffffa36877928208 x22: ffffa368b4972240 x21: ffff8000b979bb18\n[67841.038147] x20: ffff00281dc1e3c0 x19: fffffffffffffffe x18: 0000000000000020\n[67841.045515] x17: 0000000000000000 x16: ffffa368b128a530 x15: ffffffffffffffff\n[67841.052888] x14: ffff8000b979bc18 x13: ffffffffffffffff x12: ffff8000b979bb18\n[67841.060263] x11: 0000000000000000 x10: 0000000000000000 x9 : ffffa368b1289b18\n[67841.067640] x8 : 0000000000000012 x7 : 0000000000000000 x6 : 00000000000003a9\n[67841.075014] x5 : 0000000000000000 x4 : ffff002818c5cb00 x3 : 0000000000000001\n[67841.082388] x2 : 0000000000000000 x1 : ffff002818c5cb00 x0 : 00000000000000a0\n[67841.089759] Call trace:\n[67841.092456] down_write+0x30/0x98\n[67841.096017] start_creating.part.0+0x60/0x198\n[67841.100613] debugfs_create_dir+0x48/0x1f8\n[67841.104950] debugfs_create_files_v3_hw+0x88/0x348 [hisi_sas_v3_hw]\n[67841.111447] debugfs_snapshot_regs_v3_hw+0x708/0x798 [hisi_sas_v3_hw]\n[67841.118111] debugfs_trigger_dump_v3_hw_write+0x9c/0x120 [hisi_sas_v3_hw]\n[67841.125115] full_proxy_write+0x68/0xc8\n[67841.129175] vfs_write+0xd8/0x3f0\n[67841.132708] ksys_write+0x70/0x108\n[67841.136317] __arm64_sys_write+0x24/0x38\n[67841.140440] invoke_syscall+0x50/0x128\n[67841.144385] el0_svc_common.constprop.0+0xc8/0xf0\n[67841.149273] do_el0_svc+0x24/0x38\n[67841.152773] el0_svc+0x38/0xd8\n[67841.156009] el0t_64_sync_handler+0xc0/0xc8\n[67841.160361] el0t_64_sync+0x1a4/0x1a8\n[67841.164189] Code: b9000882 d2800002 d2800023 f9800011 (c85ffc05)\n[67841.170443] ---[ end trace 0000000000000000 ]---\n\nTo fix this issue, create all directories and files during debugfs\ninitialization. In this way, the driver only needs to allocate memory\nspace to save information each time the user triggers dumping.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56588",
"url": "https://www.suse.com/security/cve/CVE-2024-56588"
},
{
"category": "external",
"summary": "SUSE Bug 1235123 for CVE-2024-56588",
"url": "https://bugzilla.suse.com/1235123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56588"
},
{
"cve": "CVE-2024-56589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Add cond_resched() for no forced preemption model\n\nFor no forced preemption model kernel, in the scenario where the\nexpander is connected to 12 high performance SAS SSDs, the following\ncall trace may occur:\n\n[ 214.409199][ C240] watchdog: BUG: soft lockup - CPU#240 stuck for 22s! [irq/149-hisi_sa:3211]\n[ 214.568533][ C240] pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--)\n[ 214.575224][ C240] pc : fput_many+0x8c/0xdc\n[ 214.579480][ C240] lr : fput+0x1c/0xf0\n[ 214.583302][ C240] sp : ffff80002de2b900\n[ 214.587298][ C240] x29: ffff80002de2b900 x28: ffff1082aa412000\n[ 214.593291][ C240] x27: ffff3062a0348c08 x26: ffff80003a9f6000\n[ 214.599284][ C240] x25: ffff1062bbac5c40 x24: 0000000000001000\n[ 214.605277][ C240] x23: 000000000000000a x22: 0000000000000001\n[ 214.611270][ C240] x21: 0000000000001000 x20: 0000000000000000\n[ 214.617262][ C240] x19: ffff3062a41ae580 x18: 0000000000010000\n[ 214.623255][ C240] x17: 0000000000000001 x16: ffffdb3a6efe5fc0\n[ 214.629248][ C240] x15: ffffffffffffffff x14: 0000000003ffffff\n[ 214.635241][ C240] x13: 000000000000ffff x12: 000000000000029c\n[ 214.641234][ C240] x11: 0000000000000006 x10: ffff80003a9f7fd0\n[ 214.647226][ C240] x9 : ffffdb3a6f0482fc x8 : 0000000000000001\n[ 214.653219][ C240] x7 : 0000000000000002 x6 : 0000000000000080\n[ 214.659212][ C240] x5 : ffff55480ee9b000 x4 : fffffde7f94c6554\n[ 214.665205][ C240] x3 : 0000000000000002 x2 : 0000000000000020\n[ 214.671198][ C240] x1 : 0000000000000021 x0 : ffff3062a41ae5b8\n[ 214.677191][ C240] Call trace:\n[ 214.680320][ C240] fput_many+0x8c/0xdc\n[ 214.684230][ C240] fput+0x1c/0xf0\n[ 214.687707][ C240] aio_complete_rw+0xd8/0x1fc\n[ 214.692225][ C240] blkdev_bio_end_io+0x98/0x140\n[ 214.696917][ C240] bio_endio+0x160/0x1bc\n[ 214.701001][ C240] blk_update_request+0x1c8/0x3bc\n[ 214.705867][ C240] scsi_end_request+0x3c/0x1f0\n[ 214.710471][ C240] scsi_io_completion+0x7c/0x1a0\n[ 214.715249][ C240] scsi_finish_command+0x104/0x140\n[ 214.720200][ C240] scsi_softirq_done+0x90/0x180\n[ 214.724892][ C240] blk_mq_complete_request+0x5c/0x70\n[ 214.730016][ C240] scsi_mq_done+0x48/0xac\n[ 214.734194][ C240] sas_scsi_task_done+0xbc/0x16c [libsas]\n[ 214.739758][ C240] slot_complete_v3_hw+0x260/0x760 [hisi_sas_v3_hw]\n[ 214.746185][ C240] cq_thread_v3_hw+0xbc/0x190 [hisi_sas_v3_hw]\n[ 214.752179][ C240] irq_thread_fn+0x34/0xa4\n[ 214.756435][ C240] irq_thread+0xc4/0x130\n[ 214.760520][ C240] kthread+0x108/0x13c\n[ 214.764430][ C240] ret_from_fork+0x10/0x18\n\nThis is because in the hisi_sas driver, both the hardware interrupt\nhandler and the interrupt thread are executed on the same CPU. In the\nperformance test scenario, function irq_wait_for_interrupt() will always\nreturn 0 if lots of interrupts occurs and the CPU will be continuously\nconsumed. As a result, the CPU cannot run the watchdog thread. When the\nwatchdog time exceeds the specified time, call trace occurs.\n\nTo fix it, add cond_resched() to execute the watchdog thread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56589",
"url": "https://www.suse.com/security/cve/CVE-2024-56589"
},
{
"category": "external",
"summary": "SUSE Bug 1235241 for CVE-2024-56589",
"url": "https://bugzilla.suse.com/1235241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56589"
},
{
"cve": "CVE-2024-56590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56590"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_core: Fix not checking skb length on hci_acldata_packet\n\nThis fixes not checking if skb really contains an ACL header otherwise\nthe code may attempt to access some uninitilized/invalid memory past the\nvalid skb-\u003edata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56590",
"url": "https://www.suse.com/security/cve/CVE-2024-56590"
},
{
"category": "external",
"summary": "SUSE Bug 1235038 for CVE-2024-56590",
"url": "https://bugzilla.suse.com/1235038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56590"
},
{
"cve": "CVE-2024-56593",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56593"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw()\n\nThis patch fixes a NULL pointer dereference bug in brcmfmac that occurs\nwhen a high \u0027sd_sgentry_align\u0027 value applies (e.g. 512) and a lot of queued SKBs\nare sent from the pkt queue.\n\nThe problem is the number of entries in the pre-allocated sgtable, it is\nnents = max(rxglom_size, txglom_size) + max(rxglom_size, txglom_size) \u003e\u003e 4 + 1.\nGiven the default [rt]xglom_size=32 it\u0027s actually 35 which is too small.\nWorst case, the pkt queue can end up with 64 SKBs. This occurs when a new SKB\nis added for each original SKB if tailroom isn\u0027t enough to hold tail_pad.\nAt least one sg entry is needed for each SKB. So, eventually the \"skb_queue_walk loop\"\nin brcmf_sdiod_sglist_rw may run out of sg entries. This makes sg_next return\nNULL and this causes the oops.\n\nThe patch sets nents to max(rxglom_size, txglom_size) * 2 to be able handle\nthe worst-case.\nBtw. this requires only 64-35=29 * 16 (or 20 if CONFIG_NEED_SG_DMA_LENGTH) = 464\nadditional bytes of memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56593",
"url": "https://www.suse.com/security/cve/CVE-2024-56593"
},
{
"category": "external",
"summary": "SUSE Bug 1235252 for CVE-2024-56593",
"url": "https://bugzilla.suse.com/1235252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56593"
},
{
"cve": "CVE-2024-56594",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56594"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: set the right AMDGPU sg segment limitation\n\nThe driver needs to set the correct max_segment_size;\notherwise debug_dma_map_sg() will complain about the\nover-mapping of the AMDGPU sg length as following:\n\nWARNING: CPU: 6 PID: 1964 at kernel/dma/debug.c:1178 debug_dma_map_sg+0x2dc/0x370\n[ 364.049444] Modules linked in: veth amdgpu(OE) amdxcp drm_exec gpu_sched drm_buddy drm_ttm_helper ttm(OE) drm_suballoc_helper drm_display_helper drm_kms_helper i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc amd_atl intel_rapl_msr intel_rapl_common sunrpc sch_fq_codel snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd binfmt_misc snd_hda_codec snd_pci_acp6x snd_hda_core snd_acp_config snd_hwdep snd_soc_acpi kvm_amd snd_pcm kvm snd_seq_midi snd_seq_midi_event crct10dif_pclmul ghash_clmulni_intel sha512_ssse3 snd_rawmidi sha256_ssse3 sha1_ssse3 aesni_intel snd_seq nls_iso8859_1 crypto_simd snd_seq_device cryptd snd_timer rapl input_leds snd\n[ 364.049532] ipmi_devintf wmi_bmof ccp serio_raw k10temp sp5100_tco soundcore ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport drm efi_pstore ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 364.049576] CPU: 6 PID: 1964 Comm: rocminfo Tainted: G OE 6.10.0-custom #492\n[ 364.049579] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 364.049582] RIP: 0010:debug_dma_map_sg+0x2dc/0x370\n[ 364.049585] Code: 89 4d b8 e8 36 b1 86 00 8b 4d b8 48 8b 55 b0 44 8b 45 a8 4c 8b 4d a0 48 89 c6 48 c7 c7 00 4b 74 bc 4c 89 4d b8 e8 b4 73 f3 ff \u003c0f\u003e 0b 4c 8b 4d b8 8b 15 c8 2c b8 01 85 d2 0f 85 ee fd ff ff 8b 05\n[ 364.049588] RSP: 0018:ffff9ca600b57ac0 EFLAGS: 00010286\n[ 364.049590] RAX: 0000000000000000 RBX: ffff88b7c132b0c8 RCX: 0000000000000027\n[ 364.049592] RDX: ffff88bb0f521688 RSI: 0000000000000001 RDI: ffff88bb0f521680\n[ 364.049594] RBP: ffff9ca600b57b20 R08: 000000000000006f R09: ffff9ca600b57930\n[ 364.049596] R10: ffff9ca600b57928 R11: ffffffffbcb46328 R12: 0000000000000000\n[ 364.049597] R13: 0000000000000001 R14: ffff88b7c19c0700 R15: ffff88b7c9059800\n[ 364.049599] FS: 00007fb2d3516e80(0000) GS:ffff88bb0f500000(0000) knlGS:0000000000000000\n[ 364.049601] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 364.049603] CR2: 000055610bd03598 CR3: 00000001049f6000 CR4: 0000000000350ef0\n[ 364.049605] Call Trace:\n[ 364.049607] \u003cTASK\u003e\n[ 364.049609] ? show_regs+0x6d/0x80\n[ 364.049614] ? __warn+0x8c/0x140\n[ 364.049618] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049621] ? report_bug+0x193/0x1a0\n[ 364.049627] ? handle_bug+0x46/0x80\n[ 364.049631] ? exc_invalid_op+0x1d/0x80\n[ 364.049635] ? asm_exc_invalid_op+0x1f/0x30\n[ 364.049642] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049647] __dma_map_sg_attrs+0x90/0xe0\n[ 364.049651] dma_map_sgtable+0x25/0x40\n[ 364.049654] amdgpu_bo_move+0x59a/0x850 [amdgpu]\n[ 364.049935] ? srso_return_thunk+0x5/0x5f\n[ 364.049939] ? amdgpu_ttm_tt_populate+0x5d/0xc0 [amdgpu]\n[ 364.050095] ttm_bo_handle_move_mem+0xc3/0x180 [ttm]\n[ 364.050103] ttm_bo_validate+0xc1/0x160 [ttm]\n[ 364.050108] ? amdgpu_ttm_tt_get_user_pages+0xe5/0x1b0 [amdgpu]\n[ 364.050263] amdgpu_amdkfd_gpuvm_alloc_memory_of_gpu+0xa12/0xc90 [amdgpu]\n[ 364.050473] kfd_ioctl_alloc_memory_of_gpu+0x16b/0x3b0 [amdgpu]\n[ 364.050680] kfd_ioctl+0x3c2/0x530 [amdgpu]\n[ 364.050866] ? __pfx_kfd_ioctl_alloc_memory_of_gpu+0x10/0x10 [amdgpu]\n[ 364.05105\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56594",
"url": "https://www.suse.com/security/cve/CVE-2024-56594"
},
{
"category": "external",
"summary": "SUSE Bug 1235413 for CVE-2024-56594",
"url": "https://bugzilla.suse.com/1235413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56594"
},
{
"cve": "CVE-2024-56595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56595"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: add a check to prevent array-index-out-of-bounds in dbAdjTree\n\nWhen the value of lp is 0 at the beginning of the for loop, it will\nbecome negative in the next assignment and we should bail out.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56595",
"url": "https://www.suse.com/security/cve/CVE-2024-56595"
},
{
"category": "external",
"summary": "SUSE Bug 1235410 for CVE-2024-56595",
"url": "https://bugzilla.suse.com/1235410"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56595"
},
{
"cve": "CVE-2024-56596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix array-index-out-of-bounds in jfs_readdir\n\nThe stbl might contain some invalid values. Added a check to\nreturn error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56596",
"url": "https://www.suse.com/security/cve/CVE-2024-56596"
},
{
"category": "external",
"summary": "SUSE Bug 1235458 for CVE-2024-56596",
"url": "https://bugzilla.suse.com/1235458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56596"
},
{
"cve": "CVE-2024-56597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56597"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix shift-out-of-bounds in dbSplit\n\nWhen dmt_budmin is less than zero, it causes errors\nin the later stages. Added a check to return an error beforehand\nin dbAllocCtl itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56597",
"url": "https://www.suse.com/security/cve/CVE-2024-56597"
},
{
"category": "external",
"summary": "SUSE Bug 1235222 for CVE-2024-56597",
"url": "https://bugzilla.suse.com/1235222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56597"
},
{
"cve": "CVE-2024-56598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56598"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: array-index-out-of-bounds fix in dtReadFirst\n\nThe value of stbl can be sometimes out of bounds due\nto a bad filesystem. Added a check with appopriate return\nof error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56598",
"url": "https://www.suse.com/security/cve/CVE-2024-56598"
},
{
"category": "external",
"summary": "SUSE Bug 1235220 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "external",
"summary": "SUSE Bug 1235221 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56598"
},
{
"cve": "CVE-2024-56599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56599"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: avoid NULL pointer error during sdio remove\n\nWhen running \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will free sdio\nworkqueue by destroy_workqueue(). But if CONFIG_INIT_ON_FREE_DEFAULT_ON\nis set to yes, kernel panic will happen:\nCall trace:\n destroy_workqueue+0x1c/0x258\n ath10k_sdio_remove+0x84/0x94\n sdio_bus_remove+0x50/0x16c\n device_release_driver_internal+0x188/0x25c\n device_driver_detach+0x20/0x2c\n\nThis is because during \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will call\nath10k_core_destroy() before destroy_workqueue(). wiphy_dev_release()\nwill finally be called in ath10k_core_destroy(). This function will free\nstruct cfg80211_registered_device *rdev and all its members, including\nwiphy, dev and the pointer of sdio workqueue. Then the pointer of sdio\nworkqueue will be set to NULL due to CONFIG_INIT_ON_FREE_DEFAULT_ON.\n\nAfter device release, destroy_workqueue() will use NULL pointer then the\nkernel panic happen.\n\nCall trace:\nath10k_sdio_remove\n -\u003eath10k_core_unregister\n \u2026\u2026\n -\u003eath10k_core_stop\n -\u003eath10k_hif_stop\n -\u003eath10k_sdio_irq_disable\n -\u003eath10k_hif_power_down\n -\u003edel_timer_sync(\u0026ar_sdio-\u003esleep_timer)\n -\u003eath10k_core_destroy\n -\u003eath10k_mac_destroy\n -\u003eieee80211_free_hw\n -\u003ewiphy_free\n \u2026\u2026\n -\u003ewiphy_dev_release\n -\u003edestroy_workqueue\n\nNeed to call destroy_workqueue() before ath10k_core_destroy(), free\nthe work queue buffer first and then free pointer of work queue by\nath10k_core_destroy(). This order matches the error path order in\nath10k_sdio_probe().\n\nNo work will be queued on sdio workqueue between it is destroyed and\nath10k_core_destroy() is called. Based on the call_stack above, the\nreason is:\nOnly ath10k_sdio_sleep_timer_handler(), ath10k_sdio_hif_tx_sg() and\nath10k_sdio_irq_disable() will queue work on sdio workqueue.\nSleep timer will be deleted before ath10k_core_destroy() in\nath10k_hif_power_down().\nath10k_sdio_irq_disable() only be called in ath10k_hif_stop().\nath10k_core_unregister() will call ath10k_hif_power_down() to stop hif\nbus, so ath10k_sdio_hif_tx_sg() won\u0027t be called anymore.\n\nTested-on: QCA6174 hw3.2 SDIO WLAN.RMH.4.4.1-00189",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56599",
"url": "https://www.suse.com/security/cve/CVE-2024-56599"
},
{
"category": "external",
"summary": "SUSE Bug 1235138 for CVE-2024-56599",
"url": "https://bugzilla.suse.com/1235138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56599"
},
{
"cve": "CVE-2024-5660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-5660"
}
],
"notes": [
{
"category": "general",
"text": "Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 may permit bypass of Stage-2 translation and/or GPT protection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-5660",
"url": "https://www.suse.com/security/cve/CVE-2024-5660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "critical"
}
],
"title": "CVE-2024-5660"
},
{
"cve": "CVE-2024-56602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56602"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ieee802154: do not leave a dangling sk pointer in ieee802154_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If ieee802154_create() fails later, the allocated sk object is\nfreed, but the dangling pointer remains in the provided sock object, which\nmay allow use-after-free.\n\nClear the sk pointer in the sock object on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56602",
"url": "https://www.suse.com/security/cve/CVE-2024-56602"
},
{
"category": "external",
"summary": "SUSE Bug 1235521 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "external",
"summary": "SUSE Bug 1235522 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235522"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56602"
},
{
"cve": "CVE-2024-56603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56603"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: af_can: do not leave a dangling sk pointer in can_create()\n\nOn error can_create() frees the allocated sk object, but sock_init_data()\nhas already attached it to the provided sock object. This will leave a\ndangling sk pointer in the sock object and may cause use-after-free later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56603",
"url": "https://www.suse.com/security/cve/CVE-2024-56603"
},
{
"category": "external",
"summary": "SUSE Bug 1235415 for CVE-2024-56603",
"url": "https://bugzilla.suse.com/1235415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56603"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56606"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_packet: avoid erroring out after sock_init_data() in packet_create()\n\nAfter sock_init_data() the allocated sk object is attached to the provided\nsock object. On error, packet_create() frees the sk object leaving the\ndangling pointer in the sock object on return. Some other code may try\nto use this pointer and cause use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56606",
"url": "https://www.suse.com/security/cve/CVE-2024-56606"
},
{
"category": "external",
"summary": "SUSE Bug 1235417 for CVE-2024-56606",
"url": "https://bugzilla.suse.com/1235417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56606"
},
{
"cve": "CVE-2024-56607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56607"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask()\n\nWhen I try to manually set bitrates:\n\niw wlan0 set bitrates legacy-2.4 1\n\nI get sleeping from invalid context error, see below. Fix that by switching to\nuse recently introduced ieee80211_iterate_stations_mtx().\n\nDo note that WCN6855 firmware is still crashing, I\u0027m not sure if that firmware\neven supports bitrate WMI commands and should we consider disabling\nath12k_mac_op_set_bitrate_mask() for WCN6855? But that\u0027s for another patch.\n\nBUG: sleeping function called from invalid context at drivers/net/wireless/ath/ath12k/wmi.c:420\nin_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 2236, name: iw\npreempt_count: 0, expected: 0\nRCU nest depth: 1, expected: 0\n3 locks held by iw/2236:\n #0: ffffffffabc6f1d8 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40\n #1: ffff888138410810 (\u0026rdev-\u003ewiphy.mtx){+.+.}-{3:3}, at: nl80211_pre_doit+0x54d/0x800 [cfg80211]\n #2: ffffffffab2cfaa0 (rcu_read_lock){....}-{1:2}, at: ieee80211_iterate_stations_atomic+0x2f/0x200 [mac80211]\nCPU: 3 UID: 0 PID: 2236 Comm: iw Not tainted 6.11.0-rc7-wt-ath+ #1772\nHardware name: Intel(R) Client Systems NUC8i7HVK/NUC8i7HVB, BIOS HNKBLi70.86A.0067.2021.0528.1339 05/28/2021\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xa4/0xe0\n dump_stack+0x10/0x20\n __might_resched+0x363/0x5a0\n ? __alloc_skb+0x165/0x340\n __might_sleep+0xad/0x160\n ath12k_wmi_cmd_send+0xb1/0x3d0 [ath12k]\n ? ath12k_wmi_init_wcn7850+0xa40/0xa40 [ath12k]\n ? __netdev_alloc_skb+0x45/0x7b0\n ? __asan_memset+0x39/0x40\n ? ath12k_wmi_alloc_skb+0xf0/0x150 [ath12k]\n ? reacquire_held_locks+0x4d0/0x4d0\n ath12k_wmi_set_peer_param+0x340/0x5b0 [ath12k]\n ath12k_mac_disable_peer_fixed_rate+0xa3/0x110 [ath12k]\n ? ath12k_mac_vdev_stop+0x4f0/0x4f0 [ath12k]\n ieee80211_iterate_stations_atomic+0xd4/0x200 [mac80211]\n ath12k_mac_op_set_bitrate_mask+0x5d2/0x1080 [ath12k]\n ? ath12k_mac_vif_chan+0x320/0x320 [ath12k]\n drv_set_bitrate_mask+0x267/0x470 [mac80211]\n ieee80211_set_bitrate_mask+0x4cc/0x8a0 [mac80211]\n ? __this_cpu_preempt_check+0x13/0x20\n nl80211_set_tx_bitrate_mask+0x2bc/0x530 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? trace_contention_end+0xef/0x140\n ? rtnl_unlock+0x9/0x10\n ? nl80211_pre_doit+0x557/0x800 [cfg80211]\n genl_family_rcv_msg_doit+0x1f0/0x2e0\n ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250\n ? ns_capable+0x57/0xd0\n genl_family_rcv_msg+0x34c/0x600\n ? genl_family_rcv_msg_dumpit+0x310/0x310\n ? __lock_acquire+0xc62/0x1de0\n ? he_set_mcs_mask.isra.0+0x8d0/0x8d0 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? cfg80211_external_auth_request+0x690/0x690 [cfg80211]\n genl_rcv_msg+0xa0/0x130\n netlink_rcv_skb+0x14c/0x400\n ? genl_family_rcv_msg+0x600/0x600\n ? netlink_ack+0xd70/0xd70\n ? rwsem_optimistic_spin+0x4f0/0x4f0\n ? genl_rcv+0x14/0x40\n ? down_read_killable+0x580/0x580\n ? netlink_deliver_tap+0x13e/0x350\n ? __this_cpu_preempt_check+0x13/0x20\n genl_rcv+0x23/0x40\n netlink_unicast+0x45e/0x790\n ? netlink_attachskb+0x7f0/0x7f0\n netlink_sendmsg+0x7eb/0xdb0\n ? netlink_unicast+0x790/0x790\n ? __this_cpu_preempt_check+0x13/0x20\n ? selinux_socket_sendmsg+0x31/0x40\n ? netlink_unicast+0x790/0x790\n __sock_sendmsg+0xc9/0x160\n ____sys_sendmsg+0x620/0x990\n ? kernel_sendmsg+0x30/0x30\n ? __copy_msghdr+0x410/0x410\n ? __kasan_check_read+0x11/0x20\n ? mark_lock+0xe6/0x1470\n ___sys_sendmsg+0xe9/0x170\n ? copy_msghdr_from_user+0x120/0x120\n ? __lock_acquire+0xc62/0x1de0\n ? do_fault_around+0x2c6/0x4e0\n ? do_user_addr_fault+0x8c1/0xde0\n ? reacquire_held_locks+0x220/0x4d0\n ? do_user_addr_fault+0x8c1/0xde0\n ? __kasan_check_read+0x11/0x20\n ? __fdget+0x4e/0x1d0\n ? sockfd_lookup_light+0x1a/0x170\n __sys_sendmsg+0xd2/0x180\n ? __sys_sendmsg_sock+0x20/0x20\n ? reacquire_held_locks+0x4d0/0x4d0\n ? debug_smp_processor_id+0x17/0x20\n __x64_sys_sendmsg+0x72/0xb0\n ? lockdep_hardirqs_on+0x7d/0x100\n x64_sys_call+0x894/0x9f0\n do_syscall_64+0x64/0x130\n entry_SYSCALL_64_after_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56607",
"url": "https://www.suse.com/security/cve/CVE-2024-56607"
},
{
"category": "external",
"summary": "SUSE Bug 1235423 for CVE-2024-56607",
"url": "https://bugzilla.suse.com/1235423"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56607"
},
{
"cve": "CVE-2024-56609",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56609"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb\n\nWhen removing kernel modules by:\n rmmod rtw88_8723cs rtw88_8703b rtw88_8723x rtw88_sdio rtw88_core\n\nDriver uses skb_queue_purge() to purge TX skb, but not report tx status\ncausing \"Have pending ack frames!\" warning. Use ieee80211_purge_tx_queue()\nto correct this.\n\nSince ieee80211_purge_tx_queue() doesn\u0027t take locks, to prevent racing\nbetween TX work and purge TX queue, flush and destroy TX work in advance.\n\n wlan0: deauthenticating from aa:f5:fd:60:4c:a8 by local\n choice (Reason: 3=DEAUTH_LEAVING)\n ------------[ cut here ]------------\n Have pending ack frames!\n WARNING: CPU: 3 PID: 9232 at net/mac80211/main.c:1691\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n CPU: 3 PID: 9232 Comm: rmmod Tainted: G C\n 6.10.1-200.fc40.aarch64 #1\n Hardware name: pine64 Pine64 PinePhone Braveheart\n (1.1)/Pine64 PinePhone Braveheart (1.1), BIOS 2024.01 01/01/2024\n pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n lr : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n sp : ffff80008c1b37b0\n x29: ffff80008c1b37b0 x28: ffff000003be8000 x27: 0000000000000000\n x26: 0000000000000000 x25: ffff000003dc14b8 x24: ffff80008c1b37d0\n x23: ffff000000ff9f80 x22: 0000000000000000 x21: 000000007fffffff\n x20: ffff80007c7e93d8 x19: ffff00006e66f400 x18: 0000000000000000\n x17: ffff7ffffd2b3000 x16: ffff800083fc0000 x15: 0000000000000000\n x14: 0000000000000000 x13: 2173656d61726620 x12: 6b636120676e6964\n x11: 0000000000000000 x10: 000000000000005d x9 : ffff8000802af2b0\n x8 : ffff80008c1b3430 x7 : 0000000000000001 x6 : 0000000000000001\n x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff000003be8000\n Call trace:\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n idr_for_each+0x74/0x110\n ieee80211_free_hw+0x44/0xe8 [mac80211]\n rtw_sdio_remove+0x9c/0xc0 [rtw88_sdio]\n sdio_bus_remove+0x44/0x180\n device_remove+0x54/0x90\n device_release_driver_internal+0x1d4/0x238\n driver_detach+0x54/0xc0\n bus_remove_driver+0x78/0x108\n driver_unregister+0x38/0x78\n sdio_unregister_driver+0x2c/0x40\n rtw_8723cs_driver_exit+0x18/0x1000 [rtw88_8723cs]\n __do_sys_delete_module.isra.0+0x190/0x338\n __arm64_sys_delete_module+0x1c/0x30\n invoke_syscall+0x74/0x100\n el0_svc_common.constprop.0+0x48/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x3c/0x158\n el0t_64_sync_handler+0x120/0x138\n el0t_64_sync+0x194/0x198\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56609",
"url": "https://www.suse.com/security/cve/CVE-2024-56609"
},
{
"category": "external",
"summary": "SUSE Bug 1235389 for CVE-2024-56609",
"url": "https://bugzilla.suse.com/1235389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56609"
},
{
"cve": "CVE-2024-56611",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56611"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM\n\nWe currently assume that there is at least one VMA in a MM, which isn\u0027t\ntrue.\n\nSo we might end up having find_vma() return NULL, to then de-reference\nNULL. So properly handle find_vma() returning NULL.\n\nThis fixes the report:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 UID: 0 PID: 6021 Comm: syz-executor284 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\nRIP: 0010:migrate_to_node mm/mempolicy.c:1090 [inline]\nRIP: 0010:do_migrate_pages+0x403/0x6f0 mm/mempolicy.c:1194\nCode: ...\nRSP: 0018:ffffc9000375fd08 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffc9000375fd78 RCX: 0000000000000000\nRDX: ffff88807e171300 RSI: dffffc0000000000 RDI: ffff88803390c044\nRBP: ffff88807e171428 R08: 0000000000000014 R09: fffffbfff2039ef1\nR10: ffffffff901cf78f R11: 0000000000000000 R12: 0000000000000003\nR13: ffffc9000375fe90 R14: ffffc9000375fe98 R15: ffffc9000375fdf8\nFS: 00005555919e1380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555919e1ca8 CR3: 000000007f12a000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n kernel_migrate_pages+0x5b2/0x750 mm/mempolicy.c:1709\n __do_sys_migrate_pages mm/mempolicy.c:1727 [inline]\n __se_sys_migrate_pages mm/mempolicy.c:1723 [inline]\n __x64_sys_migrate_pages+0x96/0x100 mm/mempolicy.c:1723\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[akpm@linux-foundation.org: add unlikely()]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56611",
"url": "https://www.suse.com/security/cve/CVE-2024-56611"
},
{
"category": "external",
"summary": "SUSE Bug 1235391 for CVE-2024-56611",
"url": "https://bugzilla.suse.com/1235391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56611"
},
{
"cve": "CVE-2024-56614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56614"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: fix OOB map writes when deleting elements\n\nJordy says:\n\n\"\nIn the xsk_map_delete_elem function an unsigned integer\n(map-\u003emax_entries) is compared with a user-controlled signed integer\n(k). Due to implicit type conversion, a large unsigned value for\nmap-\u003emax_entries can bypass the intended bounds check:\n\n\tif (k \u003e= map-\u003emax_entries)\n\t\treturn -EINVAL;\n\nThis allows k to hold a negative value (between -2147483648 and -2),\nwhich is then used as an array index in m-\u003exsk_map[k], which results\nin an out-of-bounds access.\n\n\tspin_lock_bh(\u0026m-\u003elock);\n\tmap_entry = \u0026m-\u003exsk_map[k]; // Out-of-bounds map_entry\n\told_xs = unrcu_pointer(xchg(map_entry, NULL)); // Oob write\n\tif (old_xs)\n\t\txsk_map_sock_delete(old_xs, map_entry);\n\tspin_unlock_bh(\u0026m-\u003elock);\n\nThe xchg operation can then be used to cause an out-of-bounds write.\nMoreover, the invalid map_entry passed to xsk_map_sock_delete can lead\nto further memory corruption.\n\"\n\nIt indeed results in following splat:\n\n[76612.897343] BUG: unable to handle page fault for address: ffffc8fc2e461108\n[76612.904330] #PF: supervisor write access in kernel mode\n[76612.909639] #PF: error_code(0x0002) - not-present page\n[76612.914855] PGD 0 P4D 0\n[76612.917431] Oops: Oops: 0002 [#1] PREEMPT SMP\n[76612.921859] CPU: 11 UID: 0 PID: 10318 Comm: a.out Not tainted 6.12.0-rc1+ #470\n[76612.929189] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[76612.939781] RIP: 0010:xsk_map_delete_elem+0x2d/0x60\n[76612.944738] Code: 00 00 41 54 55 53 48 63 2e 3b 6f 24 73 38 4c 8d a7 f8 00 00 00 48 89 fb 4c 89 e7 e8 2d bf 05 00 48 8d b4 eb 00 01 00 00 31 ff \u003c48\u003e 87 3e 48 85 ff 74 05 e8 16 ff ff ff 4c 89 e7 e8 3e bc 05 00 31\n[76612.963774] RSP: 0018:ffffc9002e407df8 EFLAGS: 00010246\n[76612.969079] RAX: 0000000000000000 RBX: ffffc9002e461000 RCX: 0000000000000000\n[76612.976323] RDX: 0000000000000001 RSI: ffffc8fc2e461108 RDI: 0000000000000000\n[76612.983569] RBP: ffffffff80000001 R08: 0000000000000000 R09: 0000000000000007\n[76612.990812] R10: ffffc9002e407e18 R11: ffff888108a38858 R12: ffffc9002e4610f8\n[76612.998060] R13: ffff888108a38858 R14: 00007ffd1ae0ac78 R15: ffffc9002e4610c0\n[76613.005303] FS: 00007f80b6f59740(0000) GS:ffff8897e0ec0000(0000) knlGS:0000000000000000\n[76613.013517] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[76613.019349] CR2: ffffc8fc2e461108 CR3: 000000011e3ef001 CR4: 00000000007726f0\n[76613.026595] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[76613.033841] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[76613.041086] PKRU: 55555554\n[76613.043842] Call Trace:\n[76613.046331] \u003cTASK\u003e\n[76613.048468] ? __die+0x20/0x60\n[76613.051581] ? page_fault_oops+0x15a/0x450\n[76613.055747] ? search_extable+0x22/0x30\n[76613.059649] ? search_bpf_extables+0x5f/0x80\n[76613.063988] ? exc_page_fault+0xa9/0x140\n[76613.067975] ? asm_exc_page_fault+0x22/0x30\n[76613.072229] ? xsk_map_delete_elem+0x2d/0x60\n[76613.076573] ? xsk_map_delete_elem+0x23/0x60\n[76613.080914] __sys_bpf+0x19b7/0x23c0\n[76613.084555] __x64_sys_bpf+0x1a/0x20\n[76613.088194] do_syscall_64+0x37/0xb0\n[76613.091832] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[76613.096962] RIP: 0033:0x7f80b6d1e88d\n[76613.100592] Code: 5b 41 5c c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 b5 0f 00 f7 d8 64 89 01 48\n[76613.119631] RSP: 002b:00007ffd1ae0ac68 EFLAGS: 00000206 ORIG_RAX: 0000000000000141\n[76613.131330] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f80b6d1e88d\n[76613.142632] RDX: 0000000000000098 RSI: 00007ffd1ae0ad20 RDI: 0000000000000003\n[76613.153967] RBP: 00007ffd1ae0adc0 R08: 0000000000000000 R09: 0000000000000000\n[76613.166030] R10: 00007f80b6f77040 R11: 0000000000000206 R12: 00007ffd1ae0aed8\n[76613.177130] R13: 000055ddf42ce1e9 R14: 000055ddf42d0d98 R15: 00\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56614",
"url": "https://www.suse.com/security/cve/CVE-2024-56614"
},
{
"category": "external",
"summary": "SUSE Bug 1235424 for CVE-2024-56614",
"url": "https://bugzilla.suse.com/1235424"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56614"
},
{
"cve": "CVE-2024-56615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56615"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix OOB devmap writes when deleting elements\n\nJordy reported issue against XSKMAP which also applies to DEVMAP - the\nindex used for accessing map entry, due to being a signed integer,\ncauses the OOB writes. Fix is simple as changing the type from int to\nu32, however, when compared to XSKMAP case, one more thing needs to be\naddressed.\n\nWhen map is released from system via dev_map_free(), we iterate through\nall of the entries and an iterator variable is also an int, which\nimplies OOB accesses. Again, change it to be u32.\n\nExample splat below:\n\n[ 160.724676] BUG: unable to handle page fault for address: ffffc8fc2c001000\n[ 160.731662] #PF: supervisor read access in kernel mode\n[ 160.736876] #PF: error_code(0x0000) - not-present page\n[ 160.742095] PGD 0 P4D 0\n[ 160.744678] Oops: Oops: 0000 [#1] PREEMPT SMP\n[ 160.749106] CPU: 1 UID: 0 PID: 520 Comm: kworker/u145:12 Not tainted 6.12.0-rc1+ #487\n[ 160.757050] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[ 160.767642] Workqueue: events_unbound bpf_map_free_deferred\n[ 160.773308] RIP: 0010:dev_map_free+0x77/0x170\n[ 160.777735] Code: 00 e8 fd 91 ed ff e8 b8 73 ed ff 41 83 7d 18 19 74 6e 41 8b 45 24 49 8b bd f8 00 00 00 31 db 85 c0 74 48 48 63 c3 48 8d 04 c7 \u003c48\u003e 8b 28 48 85 ed 74 30 48 8b 7d 18 48 85 ff 74 05 e8 b3 52 fa ff\n[ 160.796777] RSP: 0018:ffffc9000ee1fe38 EFLAGS: 00010202\n[ 160.802086] RAX: ffffc8fc2c001000 RBX: 0000000080000000 RCX: 0000000000000024\n[ 160.809331] RDX: 0000000000000000 RSI: 0000000000000024 RDI: ffffc9002c001000\n[ 160.816576] RBP: 0000000000000000 R08: 0000000000000023 R09: 0000000000000001\n[ 160.823823] R10: 0000000000000001 R11: 00000000000ee6b2 R12: dead000000000122\n[ 160.831066] R13: ffff88810c928e00 R14: ffff8881002df405 R15: 0000000000000000\n[ 160.838310] FS: 0000000000000000(0000) GS:ffff8897e0c40000(0000) knlGS:0000000000000000\n[ 160.846528] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 160.852357] CR2: ffffc8fc2c001000 CR3: 0000000005c32006 CR4: 00000000007726f0\n[ 160.859604] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 160.866847] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 160.874092] PKRU: 55555554\n[ 160.876847] Call Trace:\n[ 160.879338] \u003cTASK\u003e\n[ 160.881477] ? __die+0x20/0x60\n[ 160.884586] ? page_fault_oops+0x15a/0x450\n[ 160.888746] ? search_extable+0x22/0x30\n[ 160.892647] ? search_bpf_extables+0x5f/0x80\n[ 160.896988] ? exc_page_fault+0xa9/0x140\n[ 160.900973] ? asm_exc_page_fault+0x22/0x30\n[ 160.905232] ? dev_map_free+0x77/0x170\n[ 160.909043] ? dev_map_free+0x58/0x170\n[ 160.912857] bpf_map_free_deferred+0x51/0x90\n[ 160.917196] process_one_work+0x142/0x370\n[ 160.921272] worker_thread+0x29e/0x3b0\n[ 160.925082] ? rescuer_thread+0x4b0/0x4b0\n[ 160.929157] kthread+0xd4/0x110\n[ 160.932355] ? kthread_park+0x80/0x80\n[ 160.936079] ret_from_fork+0x2d/0x50\n[ 160.943396] ? kthread_park+0x80/0x80\n[ 160.950803] ret_from_fork_asm+0x11/0x20\n[ 160.958482] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56615",
"url": "https://www.suse.com/security/cve/CVE-2024-56615"
},
{
"category": "external",
"summary": "SUSE Bug 1235426 for CVE-2024-56615",
"url": "https://bugzilla.suse.com/1235426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56615"
},
{
"cve": "CVE-2024-56616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56616"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix MST sideband message body length check\n\nFix the MST sideband message body length check, which must be at least 1\nbyte accounting for the message body CRC (aka message data CRC) at the\nend of the message.\n\nThis fixes a case where an MST branch device returns a header with a\ncorrect header CRC (indicating a correctly received body length), with\nthe body length being incorrectly set to 0. This will later lead to a\nmemory corruption in drm_dp_sideband_append_payload() and the following\nerrors in dmesg:\n\n UBSAN: array-index-out-of-bounds in drivers/gpu/drm/display/drm_dp_mst_topology.c:786:25\n index -1 is out of range for type \u0027u8 [48]\u0027\n Call Trace:\n drm_dp_sideband_append_payload+0x33d/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]\n\n memcpy: detected field-spanning write (size 18446744073709551615) of single field \"\u0026msg-\u003emsg[msg-\u003ecurlen]\" at drivers/gpu/drm/display/drm_dp_mst_topology.c:791 (size 256)\n Call Trace:\n drm_dp_sideband_append_payload+0x324/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56616",
"url": "https://www.suse.com/security/cve/CVE-2024-56616"
},
{
"category": "external",
"summary": "SUSE Bug 1235427 for CVE-2024-56616",
"url": "https://bugzilla.suse.com/1235427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56616"
},
{
"cve": "CVE-2024-56617",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56617"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU\n\nCommit\n\n 5944ce092b97 (\"arch_topology: Build cacheinfo from primary CPU\")\n\nadds functionality that architectures can use to optionally allocate and\nbuild cacheinfo early during boot. Commit\n\n 6539cffa9495 (\"cacheinfo: Add arch specific early level initializer\")\n\nlets secondary CPUs correct (and reallocate memory) cacheinfo data if\nneeded.\n\nIf the early build functionality is not used and cacheinfo does not need\ncorrection, memory for cacheinfo is never allocated. x86 does not use\nthe early build functionality. Consequently, during the cacheinfo CPU\nhotplug callback, last_level_cache_is_valid() attempts to dereference\na NULL pointer:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000100\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not present page\n PGD 0 P4D 0\n Oops: 0000 [#1] PREEPMT SMP NOPTI\n CPU: 0 PID 19 Comm: cpuhp/0 Not tainted 6.4.0-rc2 #1\n RIP: 0010: last_level_cache_is_valid+0x95/0xe0a\n\nAllocate memory for cacheinfo during the cacheinfo CPU hotplug callback\nif not done earlier.\n\nMoreover, before determining the validity of the last-level cache info,\nensure that it has been allocated. Simply checking for non-zero\ncache_leaves() is not sufficient, as some architectures (e.g., Intel\nprocessors) have non-zero cache_leaves() before allocation.\n\nDereferencing NULL cacheinfo can occur in update_per_cpu_data_slice_size().\nThis function iterates over all online CPUs. However, a CPU may have come\nonline recently, but its cacheinfo may not have been allocated yet.\n\nWhile here, remove an unnecessary indentation in allocate_cache_info().\n\n [ bp: Massage. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56617",
"url": "https://www.suse.com/security/cve/CVE-2024-56617"
},
{
"category": "external",
"summary": "SUSE Bug 1235429 for CVE-2024-56617",
"url": "https://bugzilla.suse.com/1235429"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56617"
},
{
"cve": "CVE-2024-56619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56619"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()\n\nSyzbot reported that when searching for records in a directory where the\ninode\u0027s i_size is corrupted and has a large value, memory access outside\nthe folio/page range may occur, or a use-after-free bug may be detected if\nKASAN is enabled.\n\nThis is because nilfs_last_byte(), which is called by nilfs_find_entry()\nand others to calculate the number of valid bytes of directory data in a\npage from i_size and the page index, loses the upper 32 bits of the 64-bit\nsize information due to an inappropriate type of local variable to which\nthe i_size value is assigned.\n\nThis caused a large byte offset value due to underflow in the end address\ncalculation in the calling nilfs_find_entry(), resulting in memory access\nthat exceeds the folio/page size.\n\nFix this issue by changing the type of the local variable causing the bit\nloss from \"unsigned int\" to \"u64\". The return value of nilfs_last_byte()\nis also of type \"unsigned int\", but it is truncated so as not to exceed\nPAGE_SIZE and no bit loss occurs, so no change is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56619",
"url": "https://www.suse.com/security/cve/CVE-2024-56619"
},
{
"category": "external",
"summary": "SUSE Bug 1235224 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "external",
"summary": "SUSE Bug 1235225 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56619"
},
{
"cve": "CVE-2024-56620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56620"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: qcom: Only free platform MSIs when ESI is enabled\n\nOtherwise, it will result in a NULL pointer dereference as below:\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000008\nCall trace:\n mutex_lock+0xc/0x54\n platform_device_msi_free_irqs_all+0x14/0x20\n ufs_qcom_remove+0x34/0x48 [ufs_qcom]\n platform_remove+0x28/0x44\n device_remove+0x4c/0x80\n device_release_driver_internal+0xd8/0x178\n driver_detach+0x50/0x9c\n bus_remove_driver+0x6c/0xbc\n driver_unregister+0x30/0x60\n platform_driver_unregister+0x14/0x20\n ufs_qcom_pltform_exit+0x18/0xb94 [ufs_qcom]\n __arm64_sys_delete_module+0x180/0x260\n invoke_syscall+0x44/0x100\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xdc\n el0t_64_sync_handler+0xc0/0xc4\n el0t_64_sync+0x190/0x194",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56620",
"url": "https://www.suse.com/security/cve/CVE-2024-56620"
},
{
"category": "external",
"summary": "SUSE Bug 1235227 for CVE-2024-56620",
"url": "https://bugzilla.suse.com/1235227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56620"
},
{
"cve": "CVE-2024-56622",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56622"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: sysfs: Prevent div by zero\n\nPrevent a division by 0 when monitoring is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56622",
"url": "https://www.suse.com/security/cve/CVE-2024-56622"
},
{
"category": "external",
"summary": "SUSE Bug 1235251 for CVE-2024-56622",
"url": "https://bugzilla.suse.com/1235251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56622"
},
{
"cve": "CVE-2024-56623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56623"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix use after free on unload\n\nSystem crash is observed with stack trace warning of use after\nfree. There are 2 signals to tell dpc_thread to terminate (UNLOADING\nflag and kthread_stop).\n\nOn setting the UNLOADING flag when dpc_thread happens to run at the time\nand sees the flag, this causes dpc_thread to exit and clean up\nitself. When kthread_stop is called for final cleanup, this causes use\nafter free.\n\nRemove UNLOADING signal to terminate dpc_thread. Use the kthread_stop\nas the main signal to exit dpc_thread.\n\n[596663.812935] kernel BUG at mm/slub.c:294!\n[596663.812950] invalid opcode: 0000 [#1] SMP PTI\n[596663.812957] CPU: 13 PID: 1475935 Comm: rmmod Kdump: loaded Tainted: G IOE --------- - - 4.18.0-240.el8.x86_64 #1\n[596663.812960] Hardware name: HP ProLiant DL380p Gen8, BIOS P70 08/20/2012\n[596663.812974] RIP: 0010:__slab_free+0x17d/0x360\n\n...\n[596663.813008] Call Trace:\n[596663.813022] ? __dentry_kill+0x121/0x170\n[596663.813030] ? _cond_resched+0x15/0x30\n[596663.813034] ? _cond_resched+0x15/0x30\n[596663.813039] ? wait_for_completion+0x35/0x190\n[596663.813048] ? try_to_wake_up+0x63/0x540\n[596663.813055] free_task+0x5a/0x60\n[596663.813061] kthread_stop+0xf3/0x100\n[596663.813103] qla2x00_remove_one+0x284/0x440 [qla2xxx]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56623",
"url": "https://www.suse.com/security/cve/CVE-2024-56623"
},
{
"category": "external",
"summary": "SUSE Bug 1235466 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "external",
"summary": "SUSE Bug 1235468 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56623"
},
{
"cve": "CVE-2024-56625",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56625"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: dev: can_set_termination(): allow sleeping GPIOs\n\nIn commit 6e86a1543c37 (\"can: dev: provide optional GPIO based\ntermination support\") GPIO based termination support was added.\n\nFor no particular reason that patch uses gpiod_set_value() to set the\nGPIO. This leads to the following warning, if the systems uses a\nsleeping GPIO, i.e. behind an I2C port expander:\n\n| WARNING: CPU: 0 PID: 379 at /drivers/gpio/gpiolib.c:3496 gpiod_set_value+0x50/0x6c\n| CPU: 0 UID: 0 PID: 379 Comm: ip Not tainted 6.11.0-20241016-1 #1 823affae360cc91126e4d316d7a614a8bf86236c\n\nReplace gpiod_set_value() by gpiod_set_value_cansleep() to allow the\nuse of sleeping GPIOs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56625",
"url": "https://www.suse.com/security/cve/CVE-2024-56625"
},
{
"category": "external",
"summary": "SUSE Bug 1235223 for CVE-2024-56625",
"url": "https://bugzilla.suse.com/1235223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56625"
},
{
"cve": "CVE-2024-56629",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56629"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: wacom: fix when get product name maybe null pointer\n\nDue to incorrect dev-\u003eproduct reporting by certain devices, null\npointer dereferences occur when dev-\u003eproduct is empty, leading to\npotential system crashes.\n\nThis issue was found on EXCELSIOR DL37-D05 device with\nLoongson-LS3A6000-7A2000-DL37 motherboard.\n\nKernel logs:\n[ 56.470885] usb 4-3: new full-speed USB device number 4 using ohci-pci\n[ 56.671638] usb 4-3: string descriptor 0 read error: -22\n[ 56.671644] usb 4-3: New USB device found, idVendor=056a, idProduct=0374, bcdDevice= 1.07\n[ 56.671647] usb 4-3: New USB device strings: Mfr=1, Product=2, SerialNumber=3\n[ 56.678839] hid-generic 0003:056A:0374.0004: hiddev0,hidraw3: USB HID v1.10 Device [HID 056a:0374] on usb-0000:00:05.0-3/input0\n[ 56.697719] CPU 2 Unable to handle kernel paging request at virtual address 0000000000000000, era == 90000000066e35c8, ra == ffff800004f98a80\n[ 56.697732] Oops[#1]:\n[ 56.697734] CPU: 2 PID: 2742 Comm: (udev-worker) Tainted: G OE 6.6.0-loong64-desktop #25.00.2000.015\n[ 56.697737] Hardware name: Inspur CE520L2/C09901N000000000, BIOS 2.09.00 10/11/2024\n[ 56.697739] pc 90000000066e35c8 ra ffff800004f98a80 tp 9000000125478000 sp 900000012547b8a0\n[ 56.697741] a0 0000000000000000 a1 ffff800004818b28 a2 0000000000000000 a3 0000000000000000\n[ 56.697743] a4 900000012547b8f0 a5 0000000000000000 a6 0000000000000000 a7 0000000000000000\n[ 56.697745] t0 ffff800004818b2d t1 0000000000000000 t2 0000000000000003 t3 0000000000000005\n[ 56.697747] t4 0000000000000000 t5 0000000000000000 t6 0000000000000000 t7 0000000000000000\n[ 56.697748] t8 0000000000000000 u0 0000000000000000 s9 0000000000000000 s0 900000011aa48028\n[ 56.697750] s1 0000000000000000 s2 0000000000000000 s3 ffff800004818e80 s4 ffff800004810000\n[ 56.697751] s5 90000001000b98d0 s6 ffff800004811f88 s7 ffff800005470440 s8 0000000000000000\n[ 56.697753] ra: ffff800004f98a80 wacom_update_name+0xe0/0x300 [wacom]\n[ 56.697802] ERA: 90000000066e35c8 strstr+0x28/0x120\n[ 56.697806] CRMD: 000000b0 (PLV0 -IE -DA +PG DACF=CC DACM=CC -WE)\n[ 56.697816] PRMD: 0000000c (PPLV0 +PIE +PWE)\n[ 56.697821] EUEN: 00000000 (-FPE -SXE -ASXE -BTE)\n[ 56.697827] ECFG: 00071c1d (LIE=0,2-4,10-12 VS=7)\n[ 56.697831] ESTAT: 00010000 [PIL] (IS= ECode=1 EsubCode=0)\n[ 56.697835] BADV: 0000000000000000\n[ 56.697836] PRID: 0014d000 (Loongson-64bit, Loongson-3A6000)\n[ 56.697838] Modules linked in: wacom(+) bnep bluetooth rfkill qrtr nls_iso8859_1 nls_cp437 snd_hda_codec_conexant snd_hda_codec_generic ledtrig_audio snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd soundcore input_leds mousedev led_class joydev deepin_netmonitor(OE) fuse nfnetlink dmi_sysfs ip_tables x_tables overlay amdgpu amdxcp drm_exec gpu_sched drm_buddy radeon drm_suballoc_helper i2c_algo_bit drm_ttm_helper r8169 ttm drm_display_helper spi_loongson_pci xhci_pci cec xhci_pci_renesas spi_loongson_core hid_generic realtek gpio_loongson_64bit\n[ 56.697887] Process (udev-worker) (pid: 2742, threadinfo=00000000aee0d8b4, task=00000000a9eff1f3)\n[ 56.697890] Stack : 0000000000000000 ffff800004817e00 0000000000000000 0000251c00000000\n[ 56.697896] 0000000000000000 00000011fffffffd 0000000000000000 0000000000000000\n[ 56.697901] 0000000000000000 1b67a968695184b9 0000000000000000 90000001000b98d0\n[ 56.697906] 90000001000bb8d0 900000011aa48028 0000000000000000 ffff800004f9d74c\n[ 56.697911] 90000001000ba000 ffff800004f9ce58 0000000000000000 ffff800005470440\n[ 56.697916] ffff800004811f88 90000001000b98d0 9000000100da2aa8 90000001000bb8d0\n[ 56.697921] 0000000000000000 90000001000ba000 900000011aa48028 ffff800004f9d74c\n[ 56.697926] ffff8000054704e8 90000001000bb8b8 90000001000ba000 0000000000000000\n[ 56.697931] 90000001000bb8d0 \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56629",
"url": "https://www.suse.com/security/cve/CVE-2024-56629"
},
{
"category": "external",
"summary": "SUSE Bug 1235473 for CVE-2024-56629",
"url": "https://bugzilla.suse.com/1235473"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56629"
},
{
"cve": "CVE-2024-56630",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56630"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: free inode when ocfs2_get_init_inode() fails\n\nsyzbot is reporting busy inodes after unmount, for commit 9c89fe0af826\n(\"ocfs2: Handle error from dquot_initialize()\") forgot to call iput() when\nnew_inode() succeeded and dquot_initialize() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56630",
"url": "https://www.suse.com/security/cve/CVE-2024-56630"
},
{
"category": "external",
"summary": "SUSE Bug 1235479 for CVE-2024-56630",
"url": "https://bugzilla.suse.com/1235479"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56630"
},
{
"cve": "CVE-2024-56631",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56631"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Fix slab-use-after-free read in sg_release()\n\nFix a use-after-free bug in sg_release(), detected by syzbot with KASAN:\n\nBUG: KASAN: slab-use-after-free in lock_release+0x151/0xa30\nkernel/locking/lockdep.c:5838\n__mutex_unlock_slowpath+0xe2/0x750 kernel/locking/mutex.c:912\nsg_release+0x1f4/0x2e0 drivers/scsi/sg.c:407\n\nIn sg_release(), the function kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) is\ncalled before releasing the open_rel_lock mutex. The kref_put() call may\ndecrement the reference count of sfp to zero, triggering its cleanup\nthrough sg_remove_sfp(). This cleanup includes scheduling deferred work\nvia sg_remove_sfp_usercontext(), which ultimately frees sfp.\n\nAfter kref_put(), sg_release() continues to unlock open_rel_lock and may\nreference sfp or sdp. If sfp has already been freed, this results in a\nslab-use-after-free error.\n\nMove the kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) call after unlocking the\nopen_rel_lock mutex. This ensures:\n\n - No references to sfp or sdp occur after the reference count is\n decremented.\n\n - Cleanup functions such as sg_remove_sfp() and\n sg_remove_sfp_usercontext() can safely execute without impacting the\n mutex handling in sg_release().\n\nThe fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures proper\nsequencing of resource cleanup and mutex operations, eliminating the\nrisk of use-after-free errors in sg_release().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56631",
"url": "https://www.suse.com/security/cve/CVE-2024-56631"
},
{
"category": "external",
"summary": "SUSE Bug 1235480 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "external",
"summary": "SUSE Bug 1235482 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56631"
},
{
"cve": "CVE-2024-56632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: fix the memleak while create new ctrl failed\n\nNow while we create new ctrl failed, we have not free the\ntagset occupied by admin_q, here try to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56632",
"url": "https://www.suse.com/security/cve/CVE-2024-56632"
},
{
"category": "external",
"summary": "SUSE Bug 1235483 for CVE-2024-56632",
"url": "https://bugzilla.suse.com/1235483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56632"
},
{
"cve": "CVE-2024-56634",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56634"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: grgpio: Add NULL check in grgpio_probe\n\ndevm_kasprintf() can return a NULL pointer on failure,but this\nreturned value in grgpio_probe is not checked.\nAdd NULL check in grgpio_probe, to handle kernel NULL\npointer dereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56634",
"url": "https://www.suse.com/security/cve/CVE-2024-56634"
},
{
"category": "external",
"summary": "SUSE Bug 1235486 for CVE-2024-56634",
"url": "https://bugzilla.suse.com/1235486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56634"
},
{
"cve": "CVE-2024-56635",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56635"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: avoid potential UAF in default_operstate()\n\nsyzbot reported an UAF in default_operstate() [1]\n\nIssue is a race between device and netns dismantles.\n\nAfter calling __rtnl_unlock() from netdev_run_todo(),\nwe can not assume the netns of each device is still alive.\n\nMake sure the device is not in NETREG_UNREGISTERED state,\nand add an ASSERT_RTNL() before the call to\n__dev_get_by_index().\n\nWe might move this ASSERT_RTNL() in __dev_get_by_index()\nin the future.\n\n[1]\n\nBUG: KASAN: slab-use-after-free in __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\nRead of size 8 at addr ffff888043eba1b0 by task syz.0.0/5339\n\nCPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\n default_operstate net/core/link_watch.c:51 [inline]\n rfc2863_policy+0x224/0x300 net/core/link_watch.c:67\n linkwatch_do_dev+0x3e/0x170 net/core/link_watch.c:170\n netdev_run_todo+0x461/0x1000 net/core/dev.c:10894\n rtnl_unlock net/core/rtnetlink.c:152 [inline]\n rtnl_net_unlock include/linux/rtnetlink.h:133 [inline]\n rtnl_dellink+0x760/0x8d0 net/core/rtnetlink.c:3520\n rtnetlink_rcv_msg+0x791/0xcf0 net/core/rtnetlink.c:6911\n netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2541\n netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]\n netlink_unicast+0x7f6/0x990 net/netlink/af_netlink.c:1347\n netlink_sendmsg+0x8e4/0xcb0 net/netlink/af_netlink.c:1891\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:726\n ____sys_sendmsg+0x52a/0x7e0 net/socket.c:2583\n ___sys_sendmsg net/socket.c:2637 [inline]\n __sys_sendmsg+0x269/0x350 net/socket.c:2669\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f2a3cb80809\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f2a3d9cd058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f2a3cd45fa0 RCX: 00007f2a3cb80809\nRDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000008\nRBP: 00007f2a3cbf393e R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f2a3cd45fa0 R15: 00007ffd03bc65c8\n \u003c/TASK\u003e\n\nAllocated by task 5339:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:394\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __kmalloc_cache_noprof+0x243/0x390 mm/slub.c:4314\n kmalloc_noprof include/linux/slab.h:901 [inline]\n kmalloc_array_noprof include/linux/slab.h:945 [inline]\n netdev_create_hash net/core/dev.c:11870 [inline]\n netdev_init+0x10c/0x250 net/core/dev.c:11890\n ops_init+0x31e/0x590 net/core/net_namespace.c:138\n setup_net+0x287/0x9e0 net/core/net_namespace.c:362\n copy_net_ns+0x33f/0x570 net/core/net_namespace.c:500\n create_new_namespaces+0x425/0x7b0 kernel/nsproxy.c:110\n unshare_nsproxy_namespaces+0x124/0x180 kernel/nsproxy.c:228\n ksys_unshare+0x57d/0xa70 kernel/fork.c:3314\n __do_sys_unshare kernel/fork.c:3385 [inline]\n __se_sys_unshare kernel/fork.c:3383 [inline]\n __x64_sys_unshare+0x38/0x40 kernel/fork.c:3383\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x8\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56635",
"url": "https://www.suse.com/security/cve/CVE-2024-56635"
},
{
"category": "external",
"summary": "SUSE Bug 1235519 for CVE-2024-56635",
"url": "https://bugzilla.suse.com/1235519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56635"
},
{
"cve": "CVE-2024-56636",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56636"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: do not assume mac header is set in geneve_xmit_skb()\n\nWe should not assume mac header is set in output path.\n\nUse skb_eth_hdr() instead of eth_hdr() to fix the issue.\n\nsysbot reported the following :\n\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 skb_mac_header include/linux/skbuff.h:3052 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 eth_hdr include/linux/if_ether.h:24 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nModules linked in:\nCPU: 0 UID: 0 PID: 11635 Comm: syz.4.1423 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_mac_header include/linux/skbuff.h:3052 [inline]\n RIP: 0010:eth_hdr include/linux/if_ether.h:24 [inline]\n RIP: 0010:geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n RIP: 0010:geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nCode: 21 c6 02 e9 35 d4 ff ff e8 a5 48 4c fb 90 0f 0b 90 e9 fd f5 ff ff e8 97 48 4c fb 90 0f 0b 90 e9 d8 f5 ff ff e8 89 48 4c fb 90 \u003c0f\u003e 0b 90 e9 41 e4 ff ff e8 7b 48 4c fb 90 0f 0b 90 e9 cd e7 ff ff\nRSP: 0018:ffffc90003b2f870 EFLAGS: 00010283\nRAX: 000000000000037a RBX: 000000000000ffff RCX: ffffc9000dc3d000\nRDX: 0000000000080000 RSI: ffffffff86428417 RDI: 0000000000000003\nRBP: ffffc90003b2f9f0 R08: 0000000000000003 R09: 000000000000ffff\nR10: 000000000000ffff R11: 0000000000000002 R12: ffff88806603c000\nR13: 0000000000000000 R14: ffff8880685b2780 R15: 0000000000000e23\nFS: 00007fdc2deed6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000001b30a1dff8 CR3: 0000000056b8c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n __dev_direct_xmit+0x58a/0x720 net/core/dev.c:4490\n dev_direct_xmit include/linux/netdevice.h:3181 [inline]\n packet_xmit+0x1e4/0x360 net/packet/af_packet.c:285\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x2700/0x5660 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg net/socket.c:726 [inline]\n __sys_sendto+0x488/0x4f0 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2200\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56636",
"url": "https://www.suse.com/security/cve/CVE-2024-56636"
},
{
"category": "external",
"summary": "SUSE Bug 1235520 for CVE-2024-56636",
"url": "https://bugzilla.suse.com/1235520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56636"
},
{
"cve": "CVE-2024-56637",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56637"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: Hold module reference while requesting a module\n\nUser space may unload ip_set.ko while it is itself requesting a set type\nbackend module, leading to a kernel crash. The race condition may be\nprovoked by inserting an mdelay() right after the nfnl_unlock() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56637",
"url": "https://www.suse.com/security/cve/CVE-2024-56637"
},
{
"category": "external",
"summary": "SUSE Bug 1235523 for CVE-2024-56637",
"url": "https://bugzilla.suse.com/1235523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56637"
},
{
"cve": "CVE-2024-56641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56641"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: initialize close_work early to avoid warning\n\nWe encountered a warning that close_work was canceled before\ninitialization.\n\n WARNING: CPU: 7 PID: 111103 at kernel/workqueue.c:3047 __flush_work+0x19e/0x1b0\n Workqueue: events smc_lgr_terminate_work [smc]\n RIP: 0010:__flush_work+0x19e/0x1b0\n Call Trace:\n ? __wake_up_common+0x7a/0x190\n ? work_busy+0x80/0x80\n __cancel_work_timer+0xe3/0x160\n smc_close_cancel_work+0x1a/0x70 [smc]\n smc_close_active_abort+0x207/0x360 [smc]\n __smc_lgr_terminate.part.38+0xc8/0x180 [smc]\n process_one_work+0x19e/0x340\n worker_thread+0x30/0x370\n ? process_one_work+0x340/0x340\n kthread+0x117/0x130\n ? __kthread_cancel_work+0x50/0x50\n ret_from_fork+0x22/0x30\n\nThis is because when smc_close_cancel_work is triggered, e.g. the RDMA\ndriver is rmmod and the LGR is terminated, the conn-\u003eclose_work is\nflushed before initialization, resulting in WARN_ON(!work-\u003efunc).\n\n__smc_lgr_terminate | smc_connect_{rdma|ism}\n-------------------------------------------------------------\n | smc_conn_create\n\t\t\t\t| \\- smc_lgr_register_conn\nfor conn in lgr-\u003econns_all |\n\\- smc_conn_kill |\n \\- smc_close_active_abort |\n \\- smc_close_cancel_work |\n \\- cancel_work_sync |\n \\- __flush_work |\n\t (close_work) |\n\t | smc_close_init\n\t | \\- INIT_WORK(\u0026close_work)\n\nSo fix this by initializing close_work before establishing the\nconnection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56641",
"url": "https://www.suse.com/security/cve/CVE-2024-56641"
},
{
"category": "external",
"summary": "SUSE Bug 1235526 for CVE-2024-56641",
"url": "https://bugzilla.suse.com/1235526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56641"
},
{
"cve": "CVE-2024-56642",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56642"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free of kernel socket in cleanup_bearer().\n\nsyzkaller reported a use-after-free of UDP kernel socket\nin cleanup_bearer() without repro. [0][1]\n\nWhen bearer_disable() calls tipc_udp_disable(), cleanup\nof the UDP kernel socket is deferred by work calling\ncleanup_bearer().\n\ntipc_exit_net() waits for such works to finish by checking\ntipc_net(net)-\u003ewq_count. However, the work decrements the\ncount too early before releasing the kernel socket,\nunblocking cleanup_net() and resulting in use-after-free.\n\nLet\u0027s move the decrement after releasing the socket in\ncleanup_bearer().\n\n[0]:\nref_tracker: net notrefcnt@000000009b3d1faf has 1/1 users at\n sk_alloc+0x438/0x608\n inet_create+0x4c8/0xcb0\n __sock_create+0x350/0x6b8\n sock_create_kern+0x58/0x78\n udp_sock_create4+0x68/0x398\n udp_sock_create+0x88/0xc8\n tipc_udp_enable+0x5e8/0x848\n __tipc_nl_bearer_enable+0x84c/0xed8\n tipc_nl_bearer_enable+0x38/0x60\n genl_family_rcv_msg_doit+0x170/0x248\n genl_rcv_msg+0x400/0x5b0\n netlink_rcv_skb+0x1dc/0x398\n genl_rcv+0x44/0x68\n netlink_unicast+0x678/0x8b0\n netlink_sendmsg+0x5e4/0x898\n ____sys_sendmsg+0x500/0x830\n\n[1]:\nBUG: KMSAN: use-after-free in udp_hashslot include/net/udp.h:85 [inline]\nBUG: KMSAN: use-after-free in udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n udp_hashslot include/net/udp.h:85 [inline]\n udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n sk_common_release+0xaf/0x3f0 net/core/sock.c:3820\n inet_release+0x1e0/0x260 net/ipv4/af_inet.c:437\n inet6_release+0x6f/0xd0 net/ipv6/af_inet6.c:489\n __sock_release net/socket.c:658 [inline]\n sock_release+0xa0/0x210 net/socket.c:686\n cleanup_bearer+0x42d/0x4c0 net/tipc/udp_media.c:819\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nUninit was created at:\n slab_free_hook mm/slub.c:2269 [inline]\n slab_free mm/slub.c:4580 [inline]\n kmem_cache_free+0x207/0xc40 mm/slub.c:4682\n net_free net/core/net_namespace.c:454 [inline]\n cleanup_net+0x16f2/0x19d0 net/core/net_namespace.c:647\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/0:2 Not tainted 6.12.0-rc1-00131-gf66ebf37d69c #7 91723d6f74857f70725e1583cba3cf4adc716cfa\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nWorkqueue: events cleanup_bearer",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56642",
"url": "https://www.suse.com/security/cve/CVE-2024-56642"
},
{
"category": "external",
"summary": "SUSE Bug 1235433 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "external",
"summary": "SUSE Bug 1235434 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56642"
},
{
"cve": "CVE-2024-56643",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56643"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: Fix memory leak in dccp_feat_change_recv\n\nIf dccp_feat_push_confirm() fails after new value for SP feature was accepted\nwithout reconciliation (\u0027entry == NULL\u0027 branch), memory allocated for that value\nwith dccp_feat_clone_sp_val() is never freed.\n\nHere is the kmemleak stack for this:\n\nunreferenced object 0xffff88801d4ab488 (size 8):\n comm \"syz-executor310\", pid 1127, jiffies 4295085598 (age 41.666s)\n hex dump (first 8 bytes):\n 01 b4 4a 1d 80 88 ff ff ..J.....\n backtrace:\n [\u003c00000000db7cabfe\u003e] kmemdup+0x23/0x50 mm/util.c:128\n [\u003c0000000019b38405\u003e] kmemdup include/linux/string.h:465 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:371 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:367 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_change_recv net/dccp/feat.c:1145 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_parse_options+0x1196/0x2180 net/dccp/feat.c:1416\n [\u003c00000000b1f6d94a\u003e] dccp_parse_options+0xa2a/0x1260 net/dccp/options.c:125\n [\u003c0000000030d7b621\u003e] dccp_rcv_state_process+0x197/0x13d0 net/dccp/input.c:650\n [\u003c000000001f74c72e\u003e] dccp_v4_do_rcv+0xf9/0x1a0 net/dccp/ipv4.c:688\n [\u003c00000000a6c24128\u003e] sk_backlog_rcv include/net/sock.h:1041 [inline]\n [\u003c00000000a6c24128\u003e] __release_sock+0x139/0x3b0 net/core/sock.c:2570\n [\u003c00000000cf1f3a53\u003e] release_sock+0x54/0x1b0 net/core/sock.c:3111\n [\u003c000000008422fa23\u003e] inet_wait_for_connect net/ipv4/af_inet.c:603 [inline]\n [\u003c000000008422fa23\u003e] __inet_stream_connect+0x5d0/0xf70 net/ipv4/af_inet.c:696\n [\u003c0000000015b6f64d\u003e] inet_stream_connect+0x53/0xa0 net/ipv4/af_inet.c:735\n [\u003c0000000010122488\u003e] __sys_connect_file+0x15c/0x1a0 net/socket.c:1865\n [\u003c00000000b4b70023\u003e] __sys_connect+0x165/0x1a0 net/socket.c:1882\n [\u003c00000000f4cb3815\u003e] __do_sys_connect net/socket.c:1892 [inline]\n [\u003c00000000f4cb3815\u003e] __se_sys_connect net/socket.c:1889 [inline]\n [\u003c00000000f4cb3815\u003e] __x64_sys_connect+0x6e/0xb0 net/socket.c:1889\n [\u003c00000000e7b1e839\u003e] do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46\n [\u003c0000000055e91434\u003e] entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nClean up the allocated memory in case of dccp_feat_push_confirm() failure\nand bail out with an error reset code.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56643",
"url": "https://www.suse.com/security/cve/CVE-2024-56643"
},
{
"category": "external",
"summary": "SUSE Bug 1235132 for CVE-2024-56643",
"url": "https://bugzilla.suse.com/1235132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56643"
},
{
"cve": "CVE-2024-56644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56644"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ipv6: release expired exception dst cached in socket\n\nDst objects get leaked in ip6_negative_advice() when this function is\nexecuted for an expired IPv6 route located in the exception table. There\nare several conditions that must be fulfilled for the leak to occur:\n* an ICMPv6 packet indicating a change of the MTU for the path is received,\n resulting in an exception dst being created\n* a TCP connection that uses the exception dst for routing packets must\n start timing out so that TCP begins retransmissions\n* after the exception dst expires, the FIB6 garbage collector must not run\n before TCP executes ip6_negative_advice() for the expired exception dst\n\nWhen TCP executes ip6_negative_advice() for an exception dst that has\nexpired and if no other socket holds a reference to the exception dst, the\nrefcount of the exception dst is 2, which corresponds to the increment\nmade by dst_init() and the increment made by the TCP socket for which the\nconnection is timing out. The refcount made by the socket is never\nreleased. The refcount of the dst is decremented in sk_dst_reset() but\nthat decrement is counteracted by a dst_hold() intentionally placed just\nbefore the sk_dst_reset() in ip6_negative_advice(). After\nip6_negative_advice() has finished, there is no other object tied to the\ndst. The socket lost its reference stored in sk_dst_cache and the dst is\nno longer in the exception table. The exception dst becomes a leaked\nobject.\n\nAs a result of this dst leak, an unbalanced refcount is reported for the\nloopback device of a net namespace being destroyed under kernels that do\nnot contain e5f80fcf869a (\"ipv6: give an IPv6 dev to blackhole_netdev\"):\nunregister_netdevice: waiting for lo to become free. Usage count = 2\n\nFix the dst leak by removing the dst_hold() in ip6_negative_advice(). The\npatch that introduced the dst_hold() in ip6_negative_advice() was\n92f1655aa2b22 (\"net: fix __dst_negative_advice() race\"). But 92f1655aa2b22\nmerely refactored the code with regards to the dst refcount so the issue\nwas present even before 92f1655aa2b22. The bug was introduced in\n54c1a859efd9f (\"ipv6: Don\u0027t drop cache route entry unless timer actually\nexpired.\") where the expired cached route is deleted and the sk_dst_cache\nmember of the socket is set to NULL by calling dst_negative_advice() but\nthe refcount belonging to the socket is left unbalanced.\n\nThe IPv4 version - ipv4_negative_advice() - is not affected by this bug.\nWhen the TCP connection times out ipv4_negative_advice() merely resets the\nsk_dst_cache of the socket while decrementing the refcount of the\nexception dst.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56644",
"url": "https://www.suse.com/security/cve/CVE-2024-56644"
},
{
"category": "external",
"summary": "SUSE Bug 1235133 for CVE-2024-56644",
"url": "https://bugzilla.suse.com/1235133"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56644"
},
{
"cve": "CVE-2024-56645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: j1939: j1939_session_new(): fix skb reference counting\n\nSince j1939_session_skb_queue() does an extra skb_get() for each new\nskb, do the same for the initial one in j1939_session_new() to avoid\nrefcount underflow.\n\n[mkl: clean up commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56645",
"url": "https://www.suse.com/security/cve/CVE-2024-56645"
},
{
"category": "external",
"summary": "SUSE Bug 1235134 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "external",
"summary": "SUSE Bug 1235135 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56645"
},
{
"cve": "CVE-2024-56648",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56648"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hsr: avoid potential out-of-bound access in fill_frame_info()\n\nsyzbot is able to feed a packet with 14 bytes, pretending\nit is a vlan one.\n\nSince fill_frame_info() is relying on skb-\u003emac_len already,\nextend the check to cover this case.\n\nBUG: KMSAN: uninit-value in fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n BUG: KMSAN: uninit-value in hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n hsr_dev_xmit+0x2f0/0x350 net/hsr/hsr_device.c:235\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n xmit_one net/core/dev.c:3590 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3606\n __dev_queue_xmit+0x366a/0x57d0 net/core/dev.c:4434\n dev_queue_xmit include/linux/netdevice.h:3168 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x91ae/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4091 [inline]\n slab_alloc_node mm/slub.c:4134 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4186\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n alloc_skb include/linux/skbuff.h:1323 [inline]\n alloc_skb_with_frags+0xc8/0xd00 net/core/skbuff.c:6612\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2881\n packet_alloc_skb net/packet/af_packet.c:2995 [inline]\n packet_snd net/packet/af_packet.c:3089 [inline]\n packet_sendmsg+0x74c6/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56648",
"url": "https://www.suse.com/security/cve/CVE-2024-56648"
},
{
"category": "external",
"summary": "SUSE Bug 1235451 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "external",
"summary": "SUSE Bug 1235452 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56648"
},
{
"cve": "CVE-2024-56649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: Do not configure preemptible TCs if SIs do not support\n\nBoth ENETC PF and VF drivers share enetc_setup_tc_mqprio() to configure\nMQPRIO. And enetc_setup_tc_mqprio() calls enetc_change_preemptible_tcs()\nto configure preemptible TCs. However, only PF is able to configure\npreemptible TCs. Because only PF has related registers, while VF does not\nhave these registers. So for VF, its hw-\u003eport pointer is NULL. Therefore,\nVF will access an invalid pointer when accessing a non-existent register,\nwhich will cause a crash issue. The simplified log is as follows.\n\nroot@ls1028ardb:~# tc qdisc add dev eno0vf0 parent root handle 100: \\\nmqprio num_tc 4 map 0 0 1 1 2 2 3 3 queues 1@0 1@1 1@2 1@3 hw 1\n[ 187.290775] Unable to handle kernel paging request at virtual address 0000000000001f00\n[ 187.424831] pc : enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.430518] lr : enetc_mm_commit_preemptible_tcs+0x30c/0x400\n[ 187.511140] Call trace:\n[ 187.513588] enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.518918] enetc_setup_tc_mqprio+0x180/0x214\n[ 187.523374] enetc_vf_setup_tc+0x1c/0x30\n[ 187.527306] mqprio_enable_offload+0x144/0x178\n[ 187.531766] mqprio_init+0x3ec/0x668\n[ 187.535351] qdisc_create+0x15c/0x488\n[ 187.539023] tc_modify_qdisc+0x398/0x73c\n[ 187.542958] rtnetlink_rcv_msg+0x128/0x378\n[ 187.547064] netlink_rcv_skb+0x60/0x130\n[ 187.550910] rtnetlink_rcv+0x18/0x24\n[ 187.554492] netlink_unicast+0x300/0x36c\n[ 187.558425] netlink_sendmsg+0x1a8/0x420\n[ 187.606759] ---[ end trace 0000000000000000 ]---\n\nIn addition, some PFs also do not support configuring preemptible TCs,\nsuch as eno1 and eno3 on LS1028A. It won\u0027t crash like it does for VFs,\nbut we should prevent these PFs from accessing these unimplemented\nregisters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56649",
"url": "https://www.suse.com/security/cve/CVE-2024-56649"
},
{
"category": "external",
"summary": "SUSE Bug 1235449 for CVE-2024-56649",
"url": "https://bugzilla.suse.com/1235449"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56649"
},
{
"cve": "CVE-2024-56651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: hi311x: hi3110_can_ist(): fix potential use-after-free\n\nThe commit a22bd630cfff (\"can: hi311x: do not report txerr and rxerr\nduring bus-off\") removed the reporting of rxerr and txerr even in case\nof correct operation (i. e. not bus-off).\n\nThe error count information added to the CAN frame after netif_rx() is\na potential use after free, since there is no guarantee that the skb\nis in the same state. It might be freed or reused.\n\nFix the issue by postponing the netif_rx() call in case of txerr and\nrxerr reporting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56651",
"url": "https://www.suse.com/security/cve/CVE-2024-56651"
},
{
"category": "external",
"summary": "SUSE Bug 1235528 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "external",
"summary": "SUSE Bug 1236570 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1236570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56651"
},
{
"cve": "CVE-2024-56654",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56654"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Fix using rcu_read_(un)lock while iterating\n\nThe usage of rcu_read_(un)lock while inside list_for_each_entry_rcu is\nnot safe since for the most part entries fetched this way shall be\ntreated as rcu_dereference:\n\n\tNote that the value returned by rcu_dereference() is valid\n\tonly within the enclosing RCU read-side critical section [1]_.\n\tFor example, the following is **not** legal::\n\n\t\trcu_read_lock();\n\t\tp = rcu_dereference(head.next);\n\t\trcu_read_unlock();\n\t\tx = p-\u003eaddress;\t/* BUG!!! */\n\t\trcu_read_lock();\n\t\ty = p-\u003edata;\t/* BUG!!! */\n\t\trcu_read_unlock();",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56654",
"url": "https://www.suse.com/security/cve/CVE-2024-56654"
},
{
"category": "external",
"summary": "SUSE Bug 1235532 for CVE-2024-56654",
"url": "https://bugzilla.suse.com/1235532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56654"
},
{
"cve": "CVE-2024-56656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips\n\nThe 5760X (P7) chip\u0027s HW GRO/LRO interface is very similar to that of\nthe previous generation (5750X or P5). However, the aggregation ID\nfields in the completion structures on P7 have been redefined from\n16 bits to 12 bits. The freed up 4 bits are redefined for part of the\nmetadata such as the VLAN ID. The aggregation ID mask was not modified\nwhen adding support for P7 chips. Including the extra 4 bits for the\naggregation ID can potentially cause the driver to store or fetch the\npacket header of GRO/LRO packets in the wrong TPA buffer. It may hit\nthe BUG() condition in __skb_pull() because the SKB contains no valid\npacket header:\n\nkernel BUG at include/linux/skbuff.h:2766!\nOops: invalid opcode: 0000 1 PREEMPT SMP NOPTI\nCPU: 4 UID: 0 PID: 0 Comm: swapper/4 Kdump: loaded Tainted: G OE 6.12.0-rc2+ #7\nTainted: [O]=OOT_MODULE, [E]=UNSIGNED_MODULE\nHardware name: Dell Inc. PowerEdge R760/0VRV9X, BIOS 1.0.1 12/27/2022\nRIP: 0010:eth_type_trans+0xda/0x140\nCode: 80 00 00 00 eb c1 8b 47 70 2b 47 74 48 8b 97 d0 00 00 00 83 f8 01 7e 1b 48 85 d2 74 06 66 83 3a ff 74 09 b8 00 04 00 00 eb a5 \u003c0f\u003e 0b b8 00 01 00 00 eb 9c 48 85 ff 74 eb 31 f6 b9 02 00 00 00 48\nRSP: 0018:ff615003803fcc28 EFLAGS: 00010283\nRAX: 00000000000022d2 RBX: 0000000000000003 RCX: ff2e8c25da334040\nRDX: 0000000000000040 RSI: ff2e8c25c1ce8000 RDI: ff2e8c25869f9000\nRBP: ff2e8c258c31c000 R08: ff2e8c25da334000 R09: 0000000000000001\nR10: ff2e8c25da3342c0 R11: ff2e8c25c1ce89c0 R12: ff2e8c258e0990b0\nR13: ff2e8c25bb120000 R14: ff2e8c25c1ce89c0 R15: ff2e8c25869f9000\nFS: 0000000000000000(0000) GS:ff2e8c34be300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055f05317e4c8 CR3: 000000108bac6006 CR4: 0000000000773ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n ? die+0x33/0x90\n ? do_trap+0xd9/0x100\n ? eth_type_trans+0xda/0x140\n ? do_error_trap+0x65/0x80\n ? eth_type_trans+0xda/0x140\n ? exc_invalid_op+0x4e/0x70\n ? eth_type_trans+0xda/0x140\n ? asm_exc_invalid_op+0x16/0x20\n ? eth_type_trans+0xda/0x140\n bnxt_tpa_end+0x10b/0x6b0 [bnxt_en]\n ? bnxt_tpa_start+0x195/0x320 [bnxt_en]\n bnxt_rx_pkt+0x902/0xd90 [bnxt_en]\n ? __bnxt_tx_int.constprop.0+0x89/0x300 [bnxt_en]\n ? kmem_cache_free+0x343/0x440\n ? __bnxt_tx_int.constprop.0+0x24f/0x300 [bnxt_en]\n __bnxt_poll_work+0x193/0x370 [bnxt_en]\n bnxt_poll_p5+0x9a/0x300 [bnxt_en]\n ? try_to_wake_up+0x209/0x670\n __napi_poll+0x29/0x1b0\n\nFix it by redefining the aggregation ID mask for P5_PLUS chips to be\n12 bits. This will work because the maximum aggregation ID is less\nthan 4096 on all P5_PLUS chips.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56656",
"url": "https://www.suse.com/security/cve/CVE-2024-56656"
},
{
"category": "external",
"summary": "SUSE Bug 1235444 for CVE-2024-56656",
"url": "https://bugzilla.suse.com/1235444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56656"
},
{
"cve": "CVE-2024-56659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56659"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: lapb: increase LAPB_HEADER_LEN\n\nIt is unclear if net/lapb code is supposed to be ready for 8021q.\n\nWe can at least avoid crashes like the following :\n\nskbuff: skb_under_panic: text:ffffffff8aabe1f6 len:24 put:20 head:ffff88802824a400 data:ffff88802824a3fe tail:0x16 end:0x140 dev:nr0.2\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 5508 Comm: dhcpcd Not tainted 6.12.0-rc7-syzkaller-00144-g66418447d27b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 2e 9e 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 1a 6f 37 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc90002ddf638 EFLAGS: 00010282\nRAX: 0000000000000086 RBX: dffffc0000000000 RCX: 7a24750e538ff600\nRDX: 0000000000000000 RSI: 0000000000000201 RDI: 0000000000000000\nRBP: ffff888034a86650 R08: ffffffff8174b13c R09: 1ffff920005bbe60\nR10: dffffc0000000000 R11: fffff520005bbe61 R12: 0000000000000140\nR13: ffff88802824a400 R14: ffff88802824a3fe R15: 0000000000000016\nFS: 00007f2a5990d740(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c2631fd CR3: 0000000029504000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n nr_header+0x36/0x320 net/netrom/nr_dev.c:69\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n vlan_dev_hard_header+0x359/0x480 net/8021q/vlan_dev.c:83\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n lapbeth_data_transmit+0x1f6/0x2a0 drivers/net/wan/lapbether.c:257\n lapb_data_transmit+0x91/0xb0 net/lapb/lapb_iface.c:447\n lapb_transmit_buffer+0x168/0x1f0 net/lapb/lapb_out.c:149\n lapb_establish_data_link+0x84/0xd0\n lapb_device_event+0x4e0/0x670\n notifier_call_chain+0x19f/0x3e0 kernel/notifier.c:93\n __dev_notify_flags+0x207/0x400\n dev_change_flags+0xf0/0x1a0 net/core/dev.c:8922\n devinet_ioctl+0xa4e/0x1aa0 net/ipv4/devinet.c:1188\n inet_ioctl+0x3d7/0x4f0 net/ipv4/af_inet.c:1003\n sock_do_ioctl+0x158/0x460 net/socket.c:1227\n sock_ioctl+0x626/0x8e0 net/socket.c:1346\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xf9/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56659",
"url": "https://www.suse.com/security/cve/CVE-2024-56659"
},
{
"category": "external",
"summary": "SUSE Bug 1235439 for CVE-2024-56659",
"url": "https://bugzilla.suse.com/1235439"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56659"
},
{
"cve": "CVE-2024-56660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56660"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: DR, prevent potential error pointer dereference\n\nThe dr_domain_add_vport_cap() function generally returns NULL on error\nbut sometimes we want it to return ERR_PTR(-EBUSY) so the caller can\nretry. The problem here is that \"ret\" can be either -EBUSY or -ENOMEM\nand if it\u0027s and -ENOMEM then the error pointer is propogated back and\neventually dereferenced in dr_ste_v0_build_src_gvmi_qpn_tag().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56660",
"url": "https://www.suse.com/security/cve/CVE-2024-56660"
},
{
"category": "external",
"summary": "SUSE Bug 1235437 for CVE-2024-56660",
"url": "https://bugzilla.suse.com/1235437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56660"
},
{
"cve": "CVE-2024-56661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56661"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix NULL deref in cleanup_bearer()\n\nsyzbot found [1] that after blamed commit, ub-\u003eubsock-\u003esk\nwas NULL when attempting the atomic_dec() :\n\natomic_dec(\u0026tipc_net(sock_net(ub-\u003eubsock-\u003esk))-\u003ewq_count);\n\nFix this by caching the tipc_net pointer.\n\n[1]\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]\nCPU: 0 UID: 0 PID: 5896 Comm: kworker/0:3 Not tainted 6.13.0-rc1-next-20241203-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events cleanup_bearer\n RIP: 0010:read_pnet include/net/net_namespace.h:387 [inline]\n RIP: 0010:sock_net include/net/sock.h:655 [inline]\n RIP: 0010:cleanup_bearer+0x1f7/0x280 net/tipc/udp_media.c:820\nCode: 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 3c f7 99 f6 48 8b 1b 48 83 c3 30 e8 f0 e4 60 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 28 00 74 08 48 89 df e8 1a f7 99 f6 49 83 c7 e8 48 8b 1b\nRSP: 0018:ffffc9000410fb70 EFLAGS: 00010206\nRAX: 0000000000000006 RBX: 0000000000000030 RCX: ffff88802fe45a00\nRDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc9000410f900\nRBP: ffff88807e1f0908 R08: ffffc9000410f907 R09: 1ffff92000821f20\nR10: dffffc0000000000 R11: fffff52000821f21 R12: ffff888031d19980\nR13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88807e1f0918\nFS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000556ca050b000 CR3: 0000000031c0c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56661",
"url": "https://www.suse.com/security/cve/CVE-2024-56661"
},
{
"category": "external",
"summary": "SUSE Bug 1234931 for CVE-2024-56661",
"url": "https://bugzilla.suse.com/1234931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56661"
},
{
"cve": "CVE-2024-56662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nacpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl\n\nFix an issue detected by syzbot with KASAN:\n\nBUG: KASAN: vmalloc-out-of-bounds in cmd_to_func drivers/acpi/nfit/\ncore.c:416 [inline]\nBUG: KASAN: vmalloc-out-of-bounds in acpi_nfit_ctl+0x20e8/0x24a0\ndrivers/acpi/nfit/core.c:459\n\nThe issue occurs in cmd_to_func when the call_pkg-\u003end_reserved2\narray is accessed without verifying that call_pkg points to a buffer\nthat is appropriately sized as a struct nd_cmd_pkg. This can lead\nto out-of-bounds access and undefined behavior if the buffer does not\nhave sufficient space.\n\nTo address this, a check was added in acpi_nfit_ctl() to ensure that\nbuf is not NULL and that buf_len is less than sizeof(*call_pkg)\nbefore accessing it. This ensures safe access to the members of\ncall_pkg, including the nd_reserved2 array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56662",
"url": "https://www.suse.com/security/cve/CVE-2024-56662"
},
{
"category": "external",
"summary": "SUSE Bug 1235533 for CVE-2024-56662",
"url": "https://bugzilla.suse.com/1235533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56662"
},
{
"cve": "CVE-2024-56663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one\n\nSince the netlink attribute range validation provides inclusive\nchecking, the *max* of attribute NL80211_ATTR_MLO_LINK_ID should be\nIEEE80211_MLD_MAX_NUM_LINKS - 1 otherwise causing an off-by-one.\n\nOne crash stack for demonstration:\n==================================================================\nBUG: KASAN: wild-memory-access in ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\nRead of size 6 at addr 001102080000000c by task fuzzer.386/9508\n\nCPU: 1 PID: 9508 Comm: syz.1.386 Not tainted 6.1.70 #2\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x177/0x231 lib/dump_stack.c:106\n print_report+0xe0/0x750 mm/kasan/report.c:398\n kasan_report+0x139/0x170 mm/kasan/report.c:495\n kasan_check_range+0x287/0x290 mm/kasan/generic.c:189\n memcpy+0x25/0x60 mm/kasan/shadow.c:65\n ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\n rdev_tx_control_port net/wireless/rdev-ops.h:761 [inline]\n nl80211_tx_control_port+0x7b3/0xc40 net/wireless/nl80211.c:15453\n genl_family_rcv_msg_doit+0x22e/0x320 net/netlink/genetlink.c:756\n genl_family_rcv_msg net/netlink/genetlink.c:833 [inline]\n genl_rcv_msg+0x539/0x740 net/netlink/genetlink.c:850\n netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2508\n genl_rcv+0x24/0x40 net/netlink/genetlink.c:861\n netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]\n netlink_unicast+0x74b/0x8c0 net/netlink/af_netlink.c:1352\n netlink_sendmsg+0x882/0xb90 net/netlink/af_netlink.c:1874\n sock_sendmsg_nosec net/socket.c:716 [inline]\n __sock_sendmsg net/socket.c:728 [inline]\n ____sys_sendmsg+0x5cc/0x8f0 net/socket.c:2499\n ___sys_sendmsg+0x21c/0x290 net/socket.c:2553\n __sys_sendmsg net/socket.c:2582 [inline]\n __do_sys_sendmsg net/socket.c:2591 [inline]\n __se_sys_sendmsg+0x19e/0x270 net/socket.c:2589\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x45/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUpdate the policy to ensure correct validation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56663",
"url": "https://www.suse.com/security/cve/CVE-2024-56663"
},
{
"category": "external",
"summary": "SUSE Bug 1235454 for CVE-2024-56663",
"url": "https://bugzilla.suse.com/1235454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56663"
},
{
"cve": "CVE-2024-56664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Fix race between element replace and close()\n\nElement replace (with a socket different from the one stored) may race\nwith socket\u0027s close() link popping \u0026 unlinking. __sock_map_delete()\nunconditionally unrefs the (wrong) element:\n\n// set map[0] = s0\nmap_update_elem(map, 0, s0)\n\n// drop fd of s0\nclose(s0)\n sock_map_close()\n lock_sock(sk) (s0!)\n sock_map_remove_links(sk)\n link = sk_psock_link_pop()\n sock_map_unlink(sk, link)\n sock_map_delete_from_link\n // replace map[0] with s1\n map_update_elem(map, 0, s1)\n sock_map_update_elem\n (s1!) lock_sock(sk)\n sock_map_update_common\n psock = sk_psock(sk)\n spin_lock(\u0026stab-\u003elock)\n osk = stab-\u003esks[idx]\n sock_map_add_link(..., \u0026stab-\u003esks[idx])\n sock_map_unref(osk, \u0026stab-\u003esks[idx])\n psock = sk_psock(osk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test(\u0026psock))\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n unlock_sock(sk)\n __sock_map_delete\n spin_lock(\u0026stab-\u003elock)\n sk = *psk // s1 replaced s0; sk == s1\n if (!sk_test || sk_test == sk) // sk_test (s0) != sk (s1); no branch\n sk = xchg(psk, NULL)\n if (sk)\n sock_map_unref(sk, psk) // unref s1; sks[idx] will dangle\n psock = sk_psock(sk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test())\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n release_sock(sk)\n\nThen close(map) enqueues bpf_map_free_deferred, which finally calls\nsock_map_free(). This results in some refcount_t warnings along with\na KASAN splat [1].\n\nFix __sock_map_delete(), do not allow sock_map_unref() on elements that\nmay have been replaced.\n\n[1]:\nBUG: KASAN: slab-use-after-free in sock_map_free+0x10e/0x330\nWrite of size 4 at addr ffff88811f5b9100 by task kworker/u64:12/1063\n\nCPU: 14 UID: 0 PID: 1063 Comm: kworker/u64:12 Not tainted 6.12.0+ #125\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Arch Linux 1.16.3-1-1 04/01/2014\nWorkqueue: events_unbound bpf_map_free_deferred\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x68/0x90\n print_report+0x174/0x4f6\n kasan_report+0xb9/0x190\n kasan_check_range+0x10f/0x1e0\n sock_map_free+0x10e/0x330\n bpf_map_free_deferred+0x173/0x320\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 1202:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x85/0x90\n kmem_cache_alloc_noprof+0x131/0x450\n sk_prot_alloc+0x5b/0x220\n sk_alloc+0x2c/0x870\n unix_create1+0x88/0x8a0\n unix_create+0xc5/0x180\n __sock_create+0x241/0x650\n __sys_socketpair+0x1ce/0x420\n __x64_sys_socketpair+0x92/0x100\n do_syscall_64+0x93/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 46:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x60\n __kasan_slab_free+0x4b/0x70\n kmem_cache_free+0x1a1/0x590\n __sk_destruct+0x388/0x5a0\n sk_psock_destroy+0x73e/0xa50\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n\nThe bu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56664",
"url": "https://www.suse.com/security/cve/CVE-2024-56664"
},
{
"category": "external",
"summary": "SUSE Bug 1235249 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "external",
"summary": "SUSE Bug 1235250 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56664"
},
{
"cve": "CVE-2024-56667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Fix NULL pointer dereference in capture_engine\n\nWhen the intel_context structure contains NULL,\nit raises a NULL pointer dereference error in drm_info().\n\n(cherry picked from commit 754302a5bc1bd8fd3b7d85c168b0a1af6d4bba4d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56667",
"url": "https://www.suse.com/security/cve/CVE-2024-56667"
},
{
"category": "external",
"summary": "SUSE Bug 1235016 for CVE-2024-56667",
"url": "https://bugzilla.suse.com/1235016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56667"
},
{
"cve": "CVE-2024-56670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56670"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer\n\nConsidering that in some extreme cases,\nwhen u_serial driver is accessed by multiple threads,\nThread A is executing the open operation and calling the gs_open,\nThread B is executing the disconnect operation and calling the\ngserial_disconnect function,The port-\u003eport_usb pointer will be set to NULL.\n\nE.g.\n Thread A Thread B\n gs_open() gadget_unbind_driver()\n gs_start_io() composite_disconnect()\n gs_start_rx() gserial_disconnect()\n ... ...\n spin_unlock(\u0026port-\u003eport_lock)\n status = usb_ep_queue() spin_lock(\u0026port-\u003eport_lock)\n spin_lock(\u0026port-\u003eport_lock) port-\u003eport_usb = NULL\n gs_free_requests(port-\u003eport_usb-\u003ein) spin_unlock(\u0026port-\u003eport_lock)\n Crash\n\nThis causes thread A to access a null pointer (port-\u003eport_usb is null)\nwhen calling the gs_free_requests function, causing a crash.\n\nIf port_usb is NULL, the release request will be skipped as it\nwill be done by gserial_disconnect.\n\nSo add a null pointer check to gs_start_io before attempting\nto access the value of the pointer port-\u003eport_usb.\n\nCall trace:\n gs_start_io+0x164/0x25c\n gs_open+0x108/0x13c\n tty_open+0x314/0x638\n chrdev_open+0x1b8/0x258\n do_dentry_open+0x2c4/0x700\n vfs_open+0x2c/0x3c\n path_openat+0xa64/0xc60\n do_filp_open+0xb8/0x164\n do_sys_openat2+0x84/0xf0\n __arm64_sys_openat+0x70/0x9c\n invoke_syscall+0x58/0x114\n el0_svc_common+0x80/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x38/0x68",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56670",
"url": "https://www.suse.com/security/cve/CVE-2024-56670"
},
{
"category": "external",
"summary": "SUSE Bug 1235488 for CVE-2024-56670",
"url": "https://bugzilla.suse.com/1235488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56670"
},
{
"cve": "CVE-2024-56672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: Fix UAF in blkcg_unpin_online()\n\nblkcg_unpin_online() walks up the blkcg hierarchy putting the online pin. To\nwalk up, it uses blkcg_parent(blkcg) but it was calling that after\nblkcg_destroy_blkgs(blkcg) which could free the blkcg, leading to the\nfollowing UAF:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in blkcg_unpin_online+0x15a/0x270\n Read of size 8 at addr ffff8881057678c0 by task kworker/9:1/117\n\n CPU: 9 UID: 0 PID: 117 Comm: kworker/9:1 Not tainted 6.13.0-rc1-work-00182-gb8f52214c61a-dirty #48\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS unknown 02/02/2022\n Workqueue: cgwb_release cgwb_release_workfn\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x27/0x80\n print_report+0x151/0x710\n kasan_report+0xc0/0x100\n blkcg_unpin_online+0x15a/0x270\n cgwb_release_workfn+0x194/0x480\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n ...\n Freed by task 1944:\n kasan_save_track+0x2b/0x70\n kasan_save_free_info+0x3c/0x50\n __kasan_slab_free+0x33/0x50\n kfree+0x10c/0x330\n css_free_rwork_fn+0xe6/0xb30\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n\nNote that the UAF is not easy to trigger as the free path is indirected\nbehind a couple RCU grace periods and a work item execution. I could only\ntrigger it with artifical msleep() injected in blkcg_unpin_online().\n\nFix it by reading the parent pointer before destroying the blkcg\u0027s blkg\u0027s.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56672",
"url": "https://www.suse.com/security/cve/CVE-2024-56672"
},
{
"category": "external",
"summary": "SUSE Bug 1235534 for CVE-2024-56672",
"url": "https://bugzilla.suse.com/1235534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56672"
},
{
"cve": "CVE-2024-56675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors\n\nUprobes always use bpf_prog_run_array_uprobe() under tasks-trace-RCU\nprotection. But it is possible to attach a non-sleepable BPF program to a\nuprobe, and non-sleepable BPF programs are freed via normal RCU (see\n__bpf_prog_put_noref()). This leads to UAF of the bpf_prog because a normal\nRCU grace period does not imply a tasks-trace-RCU grace period.\n\nFix it by explicitly waiting for a tasks-trace-RCU grace period after\nremoving the attachment of a bpf_prog to a perf_event.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56675",
"url": "https://www.suse.com/security/cve/CVE-2024-56675"
},
{
"category": "external",
"summary": "SUSE Bug 1235555 for CVE-2024-56675",
"url": "https://bugzilla.suse.com/1235555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56675"
},
{
"cve": "CVE-2024-56677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init()\n\nDuring early init CMA_MIN_ALIGNMENT_BYTES can be PAGE_SIZE,\nsince pageblock_order is still zero and it gets initialized\nlater during initmem_init() e.g.\nsetup_arch() -\u003e initmem_init() -\u003e sparse_init() -\u003e set_pageblock_order()\n\nOne such use case where this causes issue is -\nearly_setup() -\u003e early_init_devtree() -\u003e fadump_reserve_mem() -\u003e fadump_cma_init()\n\nThis causes CMA memory alignment check to be bypassed in\ncma_init_reserved_mem(). Then later cma_activate_area() can hit\na VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1)) if the reserved memory\narea was not pageblock_order aligned.\n\nFix it by moving the fadump_cma_init() after initmem_init(),\nwhere other such cma reservations also gets called.\n\n\u003cstack trace\u003e\n==============\npage: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10010\nflags: 0x13ffff800000000(node=1|zone=0|lastcpupid=0x7ffff) CMA\nraw: 013ffff800000000 5deadbeef0000100 5deadbeef0000122 0000000000000000\nraw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\npage dumped because: VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1))\n------------[ cut here ]------------\nkernel BUG at mm/page_alloc.c:778!\n\nCall Trace:\n__free_one_page+0x57c/0x7b0 (unreliable)\nfree_pcppages_bulk+0x1a8/0x2c8\nfree_unref_page_commit+0x3d4/0x4e4\nfree_unref_page+0x458/0x6d0\ninit_cma_reserved_pageblock+0x114/0x198\ncma_init_reserved_areas+0x270/0x3e0\ndo_one_initcall+0x80/0x2f8\nkernel_init_freeable+0x33c/0x530\nkernel_init+0x34/0x26c\nret_from_kernel_user_thread+0x14/0x1c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56677",
"url": "https://www.suse.com/security/cve/CVE-2024-56677"
},
{
"category": "external",
"summary": "SUSE Bug 1235494 for CVE-2024-56677",
"url": "https://bugzilla.suse.com/1235494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56677"
},
{
"cve": "CVE-2024-56678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/mm/fault: Fix kfence page fault reporting\n\ncopy_from_kernel_nofault() can be called when doing read of /proc/kcore.\n/proc/kcore can have some unmapped kfence objects which when read via\ncopy_from_kernel_nofault() can cause page faults. Since *_nofault()\nfunctions define their own fixup table for handling fault, use that\ninstead of asking kfence to handle such faults.\n\nHence we search the exception tables for the nip which generated the\nfault. If there is an entry then we let the fixup table handler handle the\npage fault by returning an error from within ___do_page_fault().\n\nThis can be easily triggered if someone tries to do dd from /proc/kcore.\neg. dd if=/proc/kcore of=/dev/null bs=1M\n\nSome example false negatives:\n\n ===============================\n BUG: KFENCE: invalid read in copy_from_kernel_nofault+0x9c/0x1a0\n Invalid read at 0xc0000000fdff0000:\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec\n\n BUG: KFENCE: use-after-free read in copy_from_kernel_nofault+0x9c/0x1a0\n Use-after-free read at 0xc0000000fe050000 (in kfence-#2):\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56678",
"url": "https://www.suse.com/security/cve/CVE-2024-56678"
},
{
"category": "external",
"summary": "SUSE Bug 1235495 for CVE-2024-56678",
"url": "https://bugzilla.suse.com/1235495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56678"
},
{
"cve": "CVE-2024-56681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: bcm - add error check in the ahash_hmac_init function\n\nThe ahash_init functions may return fails. The ahash_hmac_init should\nnot return ok when ahash_init returns error. For an example, ahash_init\nwill return -ENOMEM when allocation memory is error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56681",
"url": "https://www.suse.com/security/cve/CVE-2024-56681"
},
{
"category": "external",
"summary": "SUSE Bug 1235557 for CVE-2024-56681",
"url": "https://bugzilla.suse.com/1235557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56681"
},
{
"cve": "CVE-2024-56683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56683"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: hdmi: Avoid hang with debug registers when suspended\n\nTrying to read /sys/kernel/debug/dri/1/hdmi1_regs\nwhen the hdmi is disconnected results in a fatal system hang.\n\nThis is due to the pm suspend code disabling the dvp clock.\nThat is just a gate of the 108MHz clock in DVP_HT_RPI_MISC_CONFIG,\nwhich results in accesses hanging AXI bus.\n\nProtect against this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56683",
"url": "https://www.suse.com/security/cve/CVE-2024-56683"
},
{
"category": "external",
"summary": "SUSE Bug 1235497 for CVE-2024-56683",
"url": "https://bugzilla.suse.com/1235497"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56683"
},
{
"cve": "CVE-2024-56687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: musb: Fix hardware lockup on first Rx endpoint request\n\nThere is a possibility that a request\u0027s callback could be invoked from\nusb_ep_queue() (call trace below, supplemented with missing calls):\n\nreq-\u003ecomplete from usb_gadget_giveback_request\n\t(drivers/usb/gadget/udc/core.c:999)\nusb_gadget_giveback_request from musb_g_giveback\n\t(drivers/usb/musb/musb_gadget.c:147)\nmusb_g_giveback from rxstate\n\t(drivers/usb/musb/musb_gadget.c:784)\nrxstate from musb_ep_restart\n\t(drivers/usb/musb/musb_gadget.c:1169)\nmusb_ep_restart from musb_ep_restart_resume_work\n\t(drivers/usb/musb/musb_gadget.c:1176)\nmusb_ep_restart_resume_work from musb_queue_resume_work\n\t(drivers/usb/musb/musb_core.c:2279)\nmusb_queue_resume_work from musb_gadget_queue\n\t(drivers/usb/musb/musb_gadget.c:1241)\nmusb_gadget_queue from usb_ep_queue\n\t(drivers/usb/gadget/udc/core.c:300)\n\nAccording to the docstring of usb_ep_queue(), this should not happen:\n\n\"Note that @req\u0027s -\u003ecomplete() callback must never be called from within\nusb_ep_queue() as that can create deadlock situations.\"\n\nIn fact, a hardware lockup might occur in the following sequence:\n\n1. The gadget is initialized using musb_gadget_enable().\n2. Meanwhile, a packet arrives, and the RXPKTRDY flag is set, raising an\n interrupt.\n3. If IRQs are enabled, the interrupt is handled, but musb_g_rx() finds an\n empty queue (next_request() returns NULL). The interrupt flag has\n already been cleared by the glue layer handler, but the RXPKTRDY flag\n remains set.\n4. The first request is enqueued using usb_ep_queue(), leading to the call\n of req-\u003ecomplete(), as shown in the call trace above.\n5. If the callback enables IRQs and another packet is waiting, step (3)\n repeats. The request queue is empty because usb_g_giveback() removes the\n request before invoking the callback.\n6. The endpoint remains locked up, as the interrupt triggered by hardware\n setting the RXPKTRDY flag has been handled, but the flag itself remains\n set.\n\nFor this scenario to occur, it is only necessary for IRQs to be enabled at\nsome point during the complete callback. This happens with the USB Ethernet\ngadget, whose rx_complete() callback calls netif_rx(). If called in the\ntask context, netif_rx() disables the bottom halves (BHs). When the BHs are\nre-enabled, IRQs are also enabled to allow soft IRQs to be processed. The\ngadget itself is initialized at module load (or at boot if built-in), but\nthe first request is enqueued when the network interface is brought up,\ntriggering rx_complete() in the task context via ioctl(). If a packet\narrives while the interface is down, it can prevent the interface from\nreceiving any further packets from the USB host.\n\nThe situation is quite complicated with many parties involved. This\nparticular issue can be resolved in several possible ways:\n\n1. Ensure that callbacks never enable IRQs. This would be difficult to\n enforce, as discovering how netif_rx() interacts with interrupts was\n already quite challenging and u_ether is not the only function driver.\n Similar \"bugs\" could be hidden in other drivers as well.\n2. Disable MUSB interrupts in musb_g_giveback() before calling the callback\n and re-enable them afterwars (by calling musb_{dis,en}able_interrupts(),\n for example). This would ensure that MUSB interrupts are not handled\n during the callback, even if IRQs are enabled. In fact, it would allow\n IRQs to be enabled when releasing the lock. However, this feels like an\n inelegant hack.\n3. Modify the interrupt handler to clear the RXPKTRDY flag if the request\n queue is empty. While this approach also feels like a hack, it wastes\n CPU time by attempting to handle incoming packets when the software is\n not ready to process them.\n4. Flush the Rx FIFO instead of calling rxstate() in musb_ep_restart().\n This ensures that the hardware can receive packets when there is at\n least one request in the queue. Once I\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56687",
"url": "https://www.suse.com/security/cve/CVE-2024-56687"
},
{
"category": "external",
"summary": "SUSE Bug 1235537 for CVE-2024-56687",
"url": "https://bugzilla.suse.com/1235537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56687"
},
{
"cve": "CVE-2024-56688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56688"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport\n\nSince transport-\u003esock has been set to NULL during reset transport,\nXPRT_SOCK_UPD_TIMEOUT also needs to be cleared. Otherwise, the\nxs_tcp_set_socket_timeouts() may be triggered in xs_tcp_send_request()\nto dereference the transport-\u003esock that has been set to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56688",
"url": "https://www.suse.com/security/cve/CVE-2024-56688"
},
{
"category": "external",
"summary": "SUSE Bug 1235538 for CVE-2024-56688",
"url": "https://bugzilla.suse.com/1235538"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56688"
},
{
"cve": "CVE-2024-56690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY\n\nSince commit 8f4f68e788c3 (\"crypto: pcrypt - Fix hungtask for\nPADATA_RESET\"), the pcrypt encryption and decryption operations return\n-EAGAIN when the CPU goes online or offline. In alg_test(), a WARN is\ngenerated when pcrypt_aead_decrypt() or pcrypt_aead_encrypt() returns\n-EAGAIN, the unnecessary panic will occur when panic_on_warn set 1.\nFix this issue by calling crypto layer directly without parallelization\nin that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56690",
"url": "https://www.suse.com/security/cve/CVE-2024-56690"
},
{
"category": "external",
"summary": "SUSE Bug 1235428 for CVE-2024-56690",
"url": "https://bugzilla.suse.com/1235428"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56690"
},
{
"cve": "CVE-2024-56691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56691",
"url": "https://www.suse.com/security/cve/CVE-2024-56691"
},
{
"category": "external",
"summary": "SUSE Bug 1235425 for CVE-2024-56691",
"url": "https://bugzilla.suse.com/1235425"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56691"
},
{
"cve": "CVE-2024-56694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix recursive lock when verdict program return SK_PASS\n\nWhen the stream_verdict program returns SK_PASS, it places the received skb\ninto its own receive queue, but a recursive lock eventually occurs, leading\nto an operating system deadlock. This issue has been present since v6.9.\n\n\u0027\u0027\u0027\nsk_psock_strp_data_ready\n write_lock_bh(\u0026sk-\u003esk_callback_lock)\n strp_data_ready\n strp_read_sock\n read_sock -\u003e tcp_read_sock\n strp_recv\n cb.rcv_msg -\u003e sk_psock_strp_read\n # now stream_verdict return SK_PASS without peer sock assign\n __SK_PASS = sk_psock_map_verd(SK_PASS, NULL)\n sk_psock_verdict_apply\n sk_psock_skb_ingress_self\n sk_psock_skb_ingress_enqueue\n sk_psock_data_ready\n read_lock_bh(\u0026sk-\u003esk_callback_lock) \u003c= dead lock\n\n\u0027\u0027\u0027\n\nThis topic has been discussed before, but it has not been fixed.\nPrevious discussion:\nhttps://lore.kernel.org/all/6684a5864ec86_403d20898@john.notmuch",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56694",
"url": "https://www.suse.com/security/cve/CVE-2024-56694"
},
{
"category": "external",
"summary": "SUSE Bug 1235412 for CVE-2024-56694",
"url": "https://bugzilla.suse.com/1235412"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56694"
},
{
"cve": "CVE-2024-56698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56698"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: gadget: Fix looping of queued SG entries\n\nThe dwc3_request-\u003enum_queued_sgs is decremented on completion. If a\npartially completed request is handled, then the\ndwc3_request-\u003enum_queued_sgs no longer reflects the total number of\nnum_queued_sgs (it would be cleared).\n\nCorrectly check the number of request SG entries remained to be prepare\nand queued. Failure to do this may cause null pointer dereference when\naccessing non-existent SG entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56698",
"url": "https://www.suse.com/security/cve/CVE-2024-56698"
},
{
"category": "external",
"summary": "SUSE Bug 1235491 for CVE-2024-56698",
"url": "https://bugzilla.suse.com/1235491"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56698"
},
{
"cve": "CVE-2024-56700",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56700"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: wl128x: Fix atomicity violation in fmc_send_cmd()\n\nAtomicity violation occurs when the fmc_send_cmd() function is executed\nsimultaneously with the modification of the fmdev-\u003eresp_skb value.\nConsider a scenario where, after passing the validity check within the\nfunction, a non-null fmdev-\u003eresp_skb variable is assigned a null value.\nThis results in an invalid fmdev-\u003eresp_skb variable passing the validity\ncheck. As seen in the later part of the function, skb = fmdev-\u003eresp_skb;\nwhen the invalid fmdev-\u003eresp_skb passes the check, a null pointer\ndereference error may occur at line 478, evt_hdr = (void *)skb-\u003edata;\n\nTo address this issue, it is recommended to include the validity check of\nfmdev-\u003eresp_skb within the locked section of the function. This\nmodification ensures that the value of fmdev-\u003eresp_skb does not change\nduring the validation process, thereby maintaining its validity.\n\nThis possible bug is found by an experimental static analysis tool\ndeveloped by our team. This tool analyzes the locking APIs\nto extract function pairs that can be concurrently executed, and then\nanalyzes the instructions in the paired functions to identify possible\nconcurrency bugs including data races and atomicity violations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56700",
"url": "https://www.suse.com/security/cve/CVE-2024-56700"
},
{
"category": "external",
"summary": "SUSE Bug 1235500 for CVE-2024-56700",
"url": "https://bugzilla.suse.com/1235500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56700"
},
{
"cve": "CVE-2024-56701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56701"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: Fix dtl_access_lock to be a rw_semaphore\n\nThe dtl_access_lock needs to be a rw_sempahore, a sleeping lock, because\nthe code calls kmalloc() while holding it, which can sleep:\n\n # echo 1 \u003e /proc/powerpc/vcpudispatch_stats\n BUG: sleeping function called from invalid context at include/linux/sched/mm.h:337\n in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 199, name: sh\n preempt_count: 1, expected: 0\n 3 locks held by sh/199:\n #0: c00000000a0743f8 (sb_writers#3){.+.+}-{0:0}, at: vfs_write+0x324/0x438\n #1: c0000000028c7058 (dtl_enable_mutex){+.+.}-{3:3}, at: vcpudispatch_stats_write+0xd4/0x5f4\n #2: c0000000028c70b8 (dtl_access_lock){+.+.}-{2:2}, at: vcpudispatch_stats_write+0x220/0x5f4\n CPU: 0 PID: 199 Comm: sh Not tainted 6.10.0-rc4 #152\n Hardware name: IBM pSeries (emulated by qemu) POWER9 (raw) 0x4e1202 0xf000005 of:SLOF,HEAD hv:linux,kvm pSeries\n Call Trace:\n dump_stack_lvl+0x130/0x148 (unreliable)\n __might_resched+0x174/0x410\n kmem_cache_alloc_noprof+0x340/0x3d0\n alloc_dtl_buffers+0x124/0x1ac\n vcpudispatch_stats_write+0x2a8/0x5f4\n proc_reg_write+0xf4/0x150\n vfs_write+0xfc/0x438\n ksys_write+0x88/0x148\n system_call_exception+0x1c4/0x5a0\n system_call_common+0xf4/0x258",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56701",
"url": "https://www.suse.com/security/cve/CVE-2024-56701"
},
{
"category": "external",
"summary": "SUSE Bug 1235496 for CVE-2024-56701",
"url": "https://bugzilla.suse.com/1235496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56701"
},
{
"cve": "CVE-2024-56704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56704"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\n9p/xen: fix release of IRQ\n\nKernel logs indicate an IRQ was double-freed.\n\nPass correct device ID during IRQ release.\n\n[Dominique: remove confusing variable reset to 0]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56704",
"url": "https://www.suse.com/security/cve/CVE-2024-56704"
},
{
"category": "external",
"summary": "SUSE Bug 1235584 for CVE-2024-56704",
"url": "https://bugzilla.suse.com/1235584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56704"
},
{
"cve": "CVE-2024-56705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56705"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: atomisp: Add check for rgby_data memory allocation failure\n\nIn ia_css_3a_statistics_allocate(), there is no check on the allocation\nresult of the rgby_data memory. If rgby_data is not successfully\nallocated, it may trigger the assert(host_stats-\u003ergby_data) assertion in\nia_css_s3a_hmem_decode(). Adding a check to fix this potential issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56705",
"url": "https://www.suse.com/security/cve/CVE-2024-56705"
},
{
"category": "external",
"summary": "SUSE Bug 1235568 for CVE-2024-56705",
"url": "https://bugzilla.suse.com/1235568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56705"
},
{
"cve": "CVE-2024-56708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56708"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/igen6: Avoid segmentation fault on module unload\n\nThe segmentation fault happens because:\n\nDuring modprobe:\n1. In igen6_probe(), igen6_pvt will be allocated with kzalloc()\n2. In igen6_register_mci(), mci-\u003epvt_info will point to\n \u0026igen6_pvt-\u003eimc[mc]\n\nDuring rmmod:\n1. In mci_release() in edac_mc.c, it will kfree(mci-\u003epvt_info)\n2. In igen6_remove(), it will kfree(igen6_pvt);\n\nFix this issue by setting mci-\u003epvt_info to NULL to avoid the double\nkfree.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56708",
"url": "https://www.suse.com/security/cve/CVE-2024-56708"
},
{
"category": "external",
"summary": "SUSE Bug 1235564 for CVE-2024-56708",
"url": "https://bugzilla.suse.com/1235564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56708"
},
{
"cve": "CVE-2024-56709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check if iowq is killed before queuing\n\ntask work can be executed after the task has gone through io_uring\ntermination, whether it\u0027s the final task_work run or the fallback path.\nIn this case, task work will find -\u003eio_wq being already killed and\nnull\u0027ed, which is a problem if it then tries to forward the request to\nio_queue_iowq(). Make io_queue_iowq() fail requests in this case.\n\nNote that it also checks PF_KTHREAD, because the user can first close\na DEFER_TASKRUN ring and shortly after kill the task, in which case\n-\u003eiowq check would race.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56709",
"url": "https://www.suse.com/security/cve/CVE-2024-56709"
},
{
"category": "external",
"summary": "SUSE Bug 1235552 for CVE-2024-56709",
"url": "https://bugzilla.suse.com/1235552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56709"
},
{
"cve": "CVE-2024-56712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56712"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudmabuf: fix memory leak on last export_udmabuf() error path\n\nIn export_udmabuf(), if dma_buf_fd() fails because the FD table is full, a\ndma_buf owning the udmabuf has already been created; but the error handling\nin udmabuf_create() will tear down the udmabuf without doing anything about\nthe containing dma_buf.\n\nThis leaves a dma_buf in memory that contains a dangling pointer; though\nthat doesn\u0027t seem to lead to anything bad except a memory leak.\n\nFix it by moving the dma_buf_fd() call out of export_udmabuf() so that we\ncan give it different error handling.\n\nNote that the shape of this code changed a lot in commit 5e72b2b41a21\n(\"udmabuf: convert udmabuf driver to use folios\"); but the memory leak\nseems to have existed since the introduction of udmabuf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56712",
"url": "https://www.suse.com/security/cve/CVE-2024-56712"
},
{
"category": "external",
"summary": "SUSE Bug 1235565 for CVE-2024-56712",
"url": "https://bugzilla.suse.com/1235565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56712"
},
{
"cve": "CVE-2024-56716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: prevent bad user input in nsim_dev_health_break_write()\n\nIf either a zero count or a large one is provided, kernel can crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56716",
"url": "https://www.suse.com/security/cve/CVE-2024-56716"
},
{
"category": "external",
"summary": "SUSE Bug 1235587 for CVE-2024-56716",
"url": "https://bugzilla.suse.com/1235587"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56716"
},
{
"cve": "CVE-2024-56722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix cpu stuck caused by printings during reset\n\nDuring reset, cmd to destroy resources such as qp, cq, and mr may fail,\nand error logs will be printed. When a large number of resources are\ndestroyed, there will be lots of printings, and it may lead to a cpu\nstuck.\n\nDelete some unnecessary printings and replace other printing functions\nin these paths with the ratelimited version.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56722",
"url": "https://www.suse.com/security/cve/CVE-2024-56722"
},
{
"category": "external",
"summary": "SUSE Bug 1235570 for CVE-2024-56722",
"url": "https://bugzilla.suse.com/1235570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56722"
},
{
"cve": "CVE-2024-56723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56723",
"url": "https://www.suse.com/security/cve/CVE-2024-56723"
},
{
"category": "external",
"summary": "SUSE Bug 1235571 for CVE-2024-56723",
"url": "https://bugzilla.suse.com/1235571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56723"
},
{
"cve": "CVE-2024-56724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56724",
"url": "https://www.suse.com/security/cve/CVE-2024-56724"
},
{
"category": "external",
"summary": "SUSE Bug 1235577 for CVE-2024-56724",
"url": "https://bugzilla.suse.com/1235577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56724"
},
{
"cve": "CVE-2024-56729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: Initialize cfid-\u003etcon before performing network ops\n\nAvoid leaking a tcon ref when a lease break races with opening the\ncached directory. Processing the leak break might take a reference to\nthe tcon in cached_dir_lease_break() and then fail to release the ref in\ncached_dir_offload_close, since cfid-\u003etcon is still NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56729",
"url": "https://www.suse.com/security/cve/CVE-2024-56729"
},
{
"category": "external",
"summary": "SUSE Bug 1235503 for CVE-2024-56729",
"url": "https://bugzilla.suse.com/1235503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56729"
},
{
"cve": "CVE-2024-56739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtc: check if __rtc_read_time was successful in rtc_timer_do_work()\n\nIf the __rtc_read_time call fails,, the struct rtc_time tm; may contain\nuninitialized data, or an illegal date/time read from the RTC hardware.\n\nWhen calling rtc_tm_to_ktime later, the result may be a very large value\n(possibly KTIME_MAX). If there are periodic timers in rtc-\u003etimerqueue,\nthey will continually expire, may causing kernel softlockup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56739",
"url": "https://www.suse.com/security/cve/CVE-2024-56739"
},
{
"category": "external",
"summary": "SUSE Bug 1235611 for CVE-2024-56739",
"url": "https://bugzilla.suse.com/1235611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56739"
},
{
"cve": "CVE-2024-56741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56741"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56741",
"url": "https://www.suse.com/security/cve/CVE-2024-56741"
},
{
"category": "external",
"summary": "SUSE Bug 1235502 for CVE-2024-56741",
"url": "https://bugzilla.suse.com/1235502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56741"
},
{
"cve": "CVE-2024-56745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix reset_method_store() memory leak\n\nIn reset_method_store(), a string is allocated via kstrndup() and assigned\nto the local \"options\". options is then used in with strsep() to find\nspaces:\n\n while ((name = strsep(\u0026options, \" \")) != NULL) {\n\nIf there are no remaining spaces, then options is set to NULL by strsep(),\nso the subsequent kfree(options) doesn\u0027t free the memory allocated via\nkstrndup().\n\nFix by using a separate tmp_options to iterate with strsep() so options is\npreserved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56745",
"url": "https://www.suse.com/security/cve/CVE-2024-56745"
},
{
"category": "external",
"summary": "SUSE Bug 1235563 for CVE-2024-56745",
"url": "https://bugzilla.suse.com/1235563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56745"
},
{
"cve": "CVE-2024-56746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()\n\nWhen information such as info-\u003escreen_base is not ready, calling\nsh7760fb_free_mem() does not release memory correctly. Call\ndma_free_coherent() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56746",
"url": "https://www.suse.com/security/cve/CVE-2024-56746"
},
{
"category": "external",
"summary": "SUSE Bug 1235622 for CVE-2024-56746",
"url": "https://bugzilla.suse.com/1235622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56746"
},
{
"cve": "CVE-2024-56747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()\n\nHook \"qedi_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56747",
"url": "https://www.suse.com/security/cve/CVE-2024-56747"
},
{
"category": "external",
"summary": "SUSE Bug 1234934 for CVE-2024-56747",
"url": "https://bugzilla.suse.com/1234934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56747"
},
{
"cve": "CVE-2024-56748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56748"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()\n\nHook \"qed_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56748",
"url": "https://www.suse.com/security/cve/CVE-2024-56748"
},
{
"category": "external",
"summary": "SUSE Bug 1235627 for CVE-2024-56748",
"url": "https://bugzilla.suse.com/1235627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56748"
},
{
"cve": "CVE-2024-56752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()\n\nWhen the call to gf100_grctx_generate() fails, unlock gr-\u003efecs.mutex\nbefore returning the error.\n\nFixes smatch warning:\n\ndrivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480 gf100_gr_chan_new() warn: inconsistent returns \u0027\u0026gr-\u003efecs.mutex\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56752",
"url": "https://www.suse.com/security/cve/CVE-2024-56752"
},
{
"category": "external",
"summary": "SUSE Bug 1234937 for CVE-2024-56752",
"url": "https://bugzilla.suse.com/1234937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56752"
},
{
"cve": "CVE-2024-56754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: caam - Fix the pointer passed to caam_qi_shutdown()\n\nThe type of the last parameter given to devm_add_action_or_reset() is\n\"struct caam_drv_private *\", but in caam_qi_shutdown(), it is casted to\n\"struct device *\".\n\nPass the correct parameter to devm_add_action_or_reset() so that the\nresources are released as expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56754",
"url": "https://www.suse.com/security/cve/CVE-2024-56754"
},
{
"category": "external",
"summary": "SUSE Bug 1234918 for CVE-2024-56754",
"url": "https://bugzilla.suse.com/1234918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56754"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-56756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix freeing of the HMB descriptor table\n\nThe HMB descriptor table is sized to the maximum number of descriptors\nthat could be used for a given device, but __nvme_alloc_host_mem could\nbreak out of the loop earlier on memory allocation failure and end up\nusing less descriptors than planned for, which leads to an incorrect\nsize passed to dma_free_coherent.\n\nIn practice this was not showing up because the number of descriptors\ntends to be low and the dma coherent allocator always allocates and\nfrees at least a page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56756",
"url": "https://www.suse.com/security/cve/CVE-2024-56756"
},
{
"category": "external",
"summary": "SUSE Bug 1234922 for CVE-2024-56756",
"url": "https://bugzilla.suse.com/1234922"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56756"
},
{
"cve": "CVE-2024-56759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free when COWing tree bock and tracing is enabled\n\nWhen a COWing a tree block, at btrfs_cow_block(), and we have the\ntracepoint trace_btrfs_cow_block() enabled and preemption is also enabled\n(CONFIG_PREEMPT=y), we can trigger a use-after-free in the COWed extent\nbuffer while inside the tracepoint code. This is because in some paths\nthat call btrfs_cow_block(), such as btrfs_search_slot(), we are holding\nthe last reference on the extent buffer @buf so btrfs_force_cow_block()\ndrops the last reference on the @buf extent buffer when it calls\nfree_extent_buffer_stale(buf), which schedules the release of the extent\nbuffer with RCU. This means that if we are on a kernel with preemption,\nthe current task may be preempted before calling trace_btrfs_cow_block()\nand the extent buffer already released by the time trace_btrfs_cow_block()\nis called, resulting in a use-after-free.\n\nFix this by moving the trace_btrfs_cow_block() from btrfs_cow_block() to\nbtrfs_force_cow_block() before the COWed extent buffer is freed.\nThis also has a side effect of invoking the tracepoint in the tree defrag\ncode, at defrag.c:btrfs_realloc_node(), since btrfs_force_cow_block() is\ncalled there, but this is fine and it was actually missing there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56759",
"url": "https://www.suse.com/security/cve/CVE-2024-56759"
},
{
"category": "external",
"summary": "SUSE Bug 1235645 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "external",
"summary": "SUSE Bug 1236569 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1236569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56759"
},
{
"cve": "CVE-2024-56760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/MSI: Handle lack of irqdomain gracefully\n\nAlexandre observed a warning emitted from pci_msi_setup_msi_irqs() on a\nRISCV platform which does not provide PCI/MSI support:\n\n WARNING: CPU: 1 PID: 1 at drivers/pci/msi/msi.h:121 pci_msi_setup_msi_irqs+0x2c/0x32\n __pci_enable_msix_range+0x30c/0x596\n pci_msi_setup_msi_irqs+0x2c/0x32\n pci_alloc_irq_vectors_affinity+0xb8/0xe2\n\nRISCV uses hierarchical interrupt domains and correctly does not implement\nthe legacy fallback. The warning triggers from the legacy fallback stub.\n\nThat warning is bogus as the PCI/MSI layer knows whether a PCI/MSI parent\ndomain is associated with the device or not. There is a check for MSI-X,\nwhich has a legacy assumption. But that legacy fallback assumption is only\nvalid when legacy support is enabled, but otherwise the check should simply\nreturn -ENOTSUPP.\n\nLoongarch tripped over the same problem and blindly enabled legacy support\nwithout implementing the legacy fallbacks. There are weak implementations\nwhich return an error, so the problem was papered over.\n\nCorrect pci_msi_domain_supports() to evaluate the legacy mode and add\nthe missing supported check into the MSI enable path to complete it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56760",
"url": "https://www.suse.com/security/cve/CVE-2024-56760"
},
{
"category": "external",
"summary": "SUSE Bug 1235616 for CVE-2024-56760",
"url": "https://bugzilla.suse.com/1235616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56760"
},
{
"cve": "CVE-2024-56765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries/vas: Add close() callback in vas_vm_ops struct\n\nThe mapping VMA address is saved in VAS window struct when the\npaste address is mapped. This VMA address is used during migration\nto unmap the paste address if the window is active. The paste\naddress mapping will be removed when the window is closed or with\nthe munmap(). But the VMA address in the VAS window is not updated\nwith munmap() which is causing invalid access during migration.\n\nThe KASAN report shows:\n[16386.254991] BUG: KASAN: slab-use-after-free in reconfig_close_windows+0x1a0/0x4e8\n[16386.255043] Read of size 8 at addr c00000014a819670 by task drmgr/696928\n\n[16386.255096] CPU: 29 UID: 0 PID: 696928 Comm: drmgr Kdump: loaded Tainted: G B 6.11.0-rc5-nxgzip #2\n[16386.255128] Tainted: [B]=BAD_PAGE\n[16386.255148] Hardware name: IBM,9080-HEX Power11 (architected) 0x820200 0xf000007 of:IBM,FW1110.00 (NH1110_016) hv:phyp pSeries\n[16386.255181] Call Trace:\n[16386.255202] [c00000016b297660] [c0000000018ad0ac] dump_stack_lvl+0x84/0xe8 (unreliable)\n[16386.255246] [c00000016b297690] [c0000000006e8a90] print_report+0x19c/0x764\n[16386.255285] [c00000016b297760] [c0000000006e9490] kasan_report+0x128/0x1f8\n[16386.255309] [c00000016b297880] [c0000000006eb5c8] __asan_load8+0xac/0xe0\n[16386.255326] [c00000016b2978a0] [c00000000013f898] reconfig_close_windows+0x1a0/0x4e8\n[16386.255343] [c00000016b297990] [c000000000140e58] vas_migration_handler+0x3a4/0x3fc\n[16386.255368] [c00000016b297a90] [c000000000128848] pseries_migrate_partition+0x4c/0x4c4\n...\n\n[16386.256136] Allocated by task 696554 on cpu 31 at 16377.277618s:\n[16386.256149] kasan_save_stack+0x34/0x68\n[16386.256163] kasan_save_track+0x34/0x80\n[16386.256175] kasan_save_alloc_info+0x58/0x74\n[16386.256196] __kasan_slab_alloc+0xb8/0xdc\n[16386.256209] kmem_cache_alloc_noprof+0x200/0x3d0\n[16386.256225] vm_area_alloc+0x44/0x150\n[16386.256245] mmap_region+0x214/0x10c4\n[16386.256265] do_mmap+0x5fc/0x750\n[16386.256277] vm_mmap_pgoff+0x14c/0x24c\n[16386.256292] ksys_mmap_pgoff+0x20c/0x348\n[16386.256303] sys_mmap+0xd0/0x160\n...\n\n[16386.256350] Freed by task 0 on cpu 31 at 16386.204848s:\n[16386.256363] kasan_save_stack+0x34/0x68\n[16386.256374] kasan_save_track+0x34/0x80\n[16386.256384] kasan_save_free_info+0x64/0x10c\n[16386.256396] __kasan_slab_free+0x120/0x204\n[16386.256415] kmem_cache_free+0x128/0x450\n[16386.256428] vm_area_free_rcu_cb+0xa8/0xd8\n[16386.256441] rcu_do_batch+0x2c8/0xcf0\n[16386.256458] rcu_core+0x378/0x3c4\n[16386.256473] handle_softirqs+0x20c/0x60c\n[16386.256495] do_softirq_own_stack+0x6c/0x88\n[16386.256509] do_softirq_own_stack+0x58/0x88\n[16386.256521] __irq_exit_rcu+0x1a4/0x20c\n[16386.256533] irq_exit+0x20/0x38\n[16386.256544] interrupt_async_exit_prepare.constprop.0+0x18/0x2c\n...\n\n[16386.256717] Last potentially related work creation:\n[16386.256729] kasan_save_stack+0x34/0x68\n[16386.256741] __kasan_record_aux_stack+0xcc/0x12c\n[16386.256753] __call_rcu_common.constprop.0+0x94/0xd04\n[16386.256766] vm_area_free+0x28/0x3c\n[16386.256778] remove_vma+0xf4/0x114\n[16386.256797] do_vmi_align_munmap.constprop.0+0x684/0x870\n[16386.256811] __vm_munmap+0xe0/0x1f8\n[16386.256821] sys_munmap+0x54/0x6c\n[16386.256830] system_call_exception+0x1a0/0x4a0\n[16386.256841] system_call_vectored_common+0x15c/0x2ec\n\n[16386.256868] The buggy address belongs to the object at c00000014a819670\n which belongs to the cache vm_area_struct of size 168\n[16386.256887] The buggy address is located 0 bytes inside of\n freed 168-byte region [c00000014a819670, c00000014a819718)\n\n[16386.256915] The buggy address belongs to the physical page:\n[16386.256928] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14a81\n[16386.256950] memcg:c0000000ba430001\n[16386.256961] anon flags: 0x43ffff800000000(node=4|zone=0|lastcpupid=0x7ffff)\n[16386.256975] page_type: 0xfdffffff(slab)\n[16386\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56765",
"url": "https://www.suse.com/security/cve/CVE-2024-56765"
},
{
"category": "external",
"summary": "SUSE Bug 1235643 for CVE-2024-56765",
"url": "https://bugzilla.suse.com/1235643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56765"
},
{
"cve": "CVE-2024-56766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: fix double free in atmel_pmecc_create_user()\n\nThe \"user\" pointer was converted from being allocated with kzalloc() to\nbeing allocated by devm_kzalloc(). Calling kfree(user) will lead to a\ndouble free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56766",
"url": "https://www.suse.com/security/cve/CVE-2024-56766"
},
{
"category": "external",
"summary": "SUSE Bug 1235219 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "external",
"summary": "SUSE Bug 1240426 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1240426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-56766"
},
{
"cve": "CVE-2024-56767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset\n\nThe at_xdmac_memset_create_desc may return NULL, which will lead to a\nnull pointer dereference. For example, the len input is error, or the\natchan-\u003efree_descs_list is empty and memory is exhausted. Therefore, add\ncheck to avoid this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56767",
"url": "https://www.suse.com/security/cve/CVE-2024-56767"
},
{
"category": "external",
"summary": "SUSE Bug 1235160 for CVE-2024-56767",
"url": "https://bugzilla.suse.com/1235160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56767"
},
{
"cve": "CVE-2024-56769",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56769"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg\n\nSyzbot reports [1] an uninitialized value issue found by KMSAN in\ndib3000_read_reg().\n\nLocal u8 rb[2] is used in i2c_transfer() as a read buffer; in case\nthat call fails, the buffer may end up with some undefined values.\n\nSince no elaborate error handling is expected in dib3000_write_reg(),\nsimply zero out rb buffer to mitigate the problem.\n\n[1] Syzkaller report\ndvb-usb: bulk message failed: -22 (6/0)\n=====================================================\nBUG: KMSAN: uninit-value in dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dibusb_dib3000mb_frontend_attach+0x155/0x2f0 drivers/media/usb/dvb-usb/dibusb-mb.c:31\n dvb_usb_adapter_frontend_init+0xed/0x9a0 drivers/media/usb/dvb-usb/dvb-usb-dvb.c:290\n dvb_usb_adapter_init drivers/media/usb/dvb-usb/dvb-usb-init.c:90 [inline]\n dvb_usb_init drivers/media/usb/dvb-usb/dvb-usb-init.c:186 [inline]\n dvb_usb_device_init+0x25a8/0x3760 drivers/media/usb/dvb-usb/dvb-usb-init.c:310\n dibusb_probe+0x46/0x250 drivers/media/usb/dvb-usb/dibusb-mb.c:110\n...\nLocal variable rb created at:\n dib3000_read_reg+0x86/0x4e0 drivers/media/dvb-frontends/dib3000mb.c:54\n dib3000mb_attach+0x123/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56769",
"url": "https://www.suse.com/security/cve/CVE-2024-56769"
},
{
"category": "external",
"summary": "SUSE Bug 1235155 for CVE-2024-56769",
"url": "https://bugzilla.suse.com/1235155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56769"
},
{
"cve": "CVE-2024-56774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: add a sanity check for btrfs root in btrfs_search_slot()\n\nSyzbot reports a null-ptr-deref in btrfs_search_slot().\n\nThe reproducer is using rescue=ibadroots, and the extent tree root is\ncorrupted thus the extent tree is NULL.\n\nWhen scrub tries to search the extent tree to gather the needed extent\ninfo, btrfs_search_slot() doesn\u0027t check if the target root is NULL or\nnot, resulting the null-ptr-deref.\n\nAdd sanity check for btrfs root before using it in btrfs_search_slot().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56774",
"url": "https://www.suse.com/security/cve/CVE-2024-56774"
},
{
"category": "external",
"summary": "SUSE Bug 1235653 for CVE-2024-56774",
"url": "https://bugzilla.suse.com/1235653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56774"
},
{
"cve": "CVE-2024-56775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix handling of plane refcount\n\n[Why]\nThe mechanism to backup and restore plane states doesn\u0027t maintain\nrefcount, which can cause issues if the refcount of the plane changes\nin between backup and restore operations, such as memory leaks if the\nrefcount was supposed to go down, or double frees / invalid memory\naccesses if the refcount was supposed to go up.\n\n[How]\nCache and re-apply current refcount when restoring plane states.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56775",
"url": "https://www.suse.com/security/cve/CVE-2024-56775"
},
{
"category": "external",
"summary": "SUSE Bug 1235657 for CVE-2024-56775",
"url": "https://bugzilla.suse.com/1235657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56775"
},
{
"cve": "CVE-2024-56776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56776",
"url": "https://www.suse.com/security/cve/CVE-2024-56776"
},
{
"category": "external",
"summary": "SUSE Bug 1235647 for CVE-2024-56776",
"url": "https://bugzilla.suse.com/1235647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56776"
},
{
"cve": "CVE-2024-56777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56777",
"url": "https://www.suse.com/security/cve/CVE-2024-56777"
},
{
"category": "external",
"summary": "SUSE Bug 1235641 for CVE-2024-56777",
"url": "https://bugzilla.suse.com/1235641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56777"
},
{
"cve": "CVE-2024-56778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56778",
"url": "https://www.suse.com/security/cve/CVE-2024-56778"
},
{
"category": "external",
"summary": "SUSE Bug 1235635 for CVE-2024-56778",
"url": "https://bugzilla.suse.com/1235635"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56778"
},
{
"cve": "CVE-2024-56779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56779"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur\n\nThe action force umount(umount -f) will attempt to kill all rpc_task even\numount operation may ultimately fail if some files remain open.\nConsequently, if an action attempts to open a file, it can potentially\nsend two rpc_task to nfs server.\n\n NFS CLIENT\nthread1 thread2\nopen(\"file\")\n...\nnfs4_do_open\n _nfs4_do_open\n _nfs4_open_and_get_state\n _nfs4_proc_open\n nfs4_run_open_task\n /* rpc_task1 */\n rpc_run_task\n rpc_wait_for_completion_task\n\n umount -f\n nfs_umount_begin\n rpc_killall_tasks\n rpc_signal_task\n rpc_task1 been wakeup\n and return -512\n _nfs4_do_open // while loop\n ...\n nfs4_run_open_task\n /* rpc_task2 */\n rpc_run_task\n rpc_wait_for_completion_task\n\nWhile processing an open request, nfsd will first attempt to find or\nallocate an nfs4_openowner. If it finds an nfs4_openowner that is not\nmarked as NFS4_OO_CONFIRMED, this nfs4_openowner will released. Since\ntwo rpc_task can attempt to open the same file simultaneously from the\nclient to server, and because two instances of nfsd can run\nconcurrently, this situation can lead to lots of memory leak.\nAdditionally, when we echo 0 to /proc/fs/nfsd/threads, warning will be\ntriggered.\n\n NFS SERVER\nnfsd1 nfsd2 echo 0 \u003e /proc/fs/nfsd/threads\n\nnfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // alloc oo1, stateid1\n nfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // find oo1, without NFS4_OO_CONFIRMED\n release_openowner\n unhash_openowner_locked\n list_del_init(\u0026oo-\u003eoo_perclient)\n // cannot find this oo\n // from client, LEAK!!!\n alloc_stateowner // alloc oo2\n\n nfsd4_process_open2\n init_open_stateid\n // associate oo1\n // with stateid1, stateid1 LEAK!!!\n nfs4_get_vfs_file\n // alloc nfsd_file1 and nfsd_file_mark1\n // all LEAK!!!\n\n nfsd4_process_open2\n ...\n\n write_threads\n ...\n nfsd_destroy_serv\n nfsd_shutdown_net\n nfs4_state_shutdown_net\n nfs4_state_destroy_net\n destroy_client\n __destroy_client\n // won\u0027t find oo1!!!\n nfsd_shutdown_generic\n nfsd_file_cache_shutdown\n kmem_cache_destroy\n for nfsd_file_slab\n and nfsd_file_mark_slab\n // bark since nfsd_file1\n // and nfsd_file_mark1\n // still alive\n\n=======================================================================\nBUG nfsd_file (Not tainted): Objects remaining in nfsd_file on\n__kmem_cache_shutdown()\n-----------------------------------------------------------------------\n\nSlab 0xffd4000004438a80 objects=34 used=1 fp=0xff11000110e2ad28\nflags=0x17ffffc0000240(workingset|head|node=0|zone=2|lastcpupid=0x1fffff)\nCPU: 4 UID: 0 PID: 757 Comm: sh Not tainted 6.12.0-rc6+ #19\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dum\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56779",
"url": "https://www.suse.com/security/cve/CVE-2024-56779"
},
{
"category": "external",
"summary": "SUSE Bug 1235632 for CVE-2024-56779",
"url": "https://bugzilla.suse.com/1235632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56779"
},
{
"cve": "CVE-2024-56780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: flush quota_release_work upon quota writeback\n\nOne of the paths quota writeback is called from is:\n\nfreeze_super()\n sync_filesystem()\n ext4_sync_fs()\n dquot_writeback_dquots()\n\nSince we currently don\u0027t always flush the quota_release_work queue in\nthis path, we can end up with the following race:\n\n 1. dquot are added to releasing_dquots list during regular operations.\n 2. FS Freeze starts, however, this does not flush the quota_release_work queue.\n 3. Freeze completes.\n 4. Kernel eventually tries to flush the workqueue while FS is frozen which\n hits a WARN_ON since transaction gets started during frozen state:\n\n ext4_journal_check_start+0x28/0x110 [ext4] (unreliable)\n __ext4_journal_start_sb+0x64/0x1c0 [ext4]\n ext4_release_dquot+0x90/0x1d0 [ext4]\n quota_release_workfn+0x43c/0x4d0\n\nWhich is the following line:\n\n WARN_ON(sb-\u003es_writers.frozen == SB_FREEZE_COMPLETE);\n\nWhich ultimately results in generic/390 failing due to dmesg\nnoise. This was detected on powerpc machine 15 cores.\n\nTo avoid this, make sure to flush the workqueue during\ndquot_writeback_dquots() so we dont have any pending workitems after\nfreeze.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56780",
"url": "https://www.suse.com/security/cve/CVE-2024-56780"
},
{
"category": "external",
"summary": "SUSE Bug 1235650 for CVE-2024-56780",
"url": "https://bugzilla.suse.com/1235650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56780"
},
{
"cve": "CVE-2024-56787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: imx8m: Probe the SoC driver as platform driver\n\nWith driver_async_probe=* on kernel command line, the following trace is\nproduced because on i.MX8M Plus hardware because the soc-imx8m.c driver\ncalls of_clk_get_by_name() which returns -EPROBE_DEFER because the clock\ndriver is not yet probed. This was not detected during regular testing\nwithout driver_async_probe.\n\nConvert the SoC code to platform driver and instantiate a platform device\nin its current device_initcall() to probe the platform driver. Rework\n.soc_revision callback to always return valid error code and return SoC\nrevision via parameter. This way, if anything in the .soc_revision callback\nreturn -EPROBE_DEFER, it gets propagated to .probe and the .probe will get\nretried later.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 1 at drivers/soc/imx/soc-imx8m.c:115 imx8mm_soc_revision+0xdc/0x180\nCPU: 1 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.11.0-next-20240924-00002-g2062bb554dea #603\nHardware name: DH electronics i.MX8M Plus DHCOM Premium Developer Kit (3) (DT)\npstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : imx8mm_soc_revision+0xdc/0x180\nlr : imx8mm_soc_revision+0xd0/0x180\nsp : ffff8000821fbcc0\nx29: ffff8000821fbce0 x28: 0000000000000000 x27: ffff800081810120\nx26: ffff8000818a9970 x25: 0000000000000006 x24: 0000000000824311\nx23: ffff8000817f42c8 x22: ffff0000df8be210 x21: fffffffffffffdfb\nx20: ffff800082780000 x19: 0000000000000001 x18: ffffffffffffffff\nx17: ffff800081fff418 x16: ffff8000823e1000 x15: ffff0000c03b65e8\nx14: ffff0000c00051b0 x13: ffff800082790000 x12: 0000000000000801\nx11: ffff80008278ffff x10: ffff80008209d3a6 x9 : ffff80008062e95c\nx8 : ffff8000821fb9a0 x7 : 0000000000000000 x6 : 00000000000080e3\nx5 : ffff0000df8c03d8 x4 : 0000000000000000 x3 : 0000000000000000\nx2 : 0000000000000000 x1 : fffffffffffffdfb x0 : fffffffffffffdfb\nCall trace:\n imx8mm_soc_revision+0xdc/0x180\n imx8_soc_init+0xb0/0x1e0\n do_one_initcall+0x94/0x1a8\n kernel_init_freeable+0x240/0x2a8\n kernel_init+0x28/0x140\n ret_from_fork+0x10/0x20\n---[ end trace 0000000000000000 ]---\nSoC: i.MX8MP revision 1.1\n\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56787",
"url": "https://www.suse.com/security/cve/CVE-2024-56787"
},
{
"category": "external",
"summary": "SUSE Bug 1235663 for CVE-2024-56787",
"url": "https://bugzilla.suse.com/1235663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-56787"
},
{
"cve": "CVE-2024-57791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: check return value of sock_recvmsg when draining clc data\n\nWhen receiving clc msg, the field length in smc_clc_msg_hdr indicates the\nlength of msg should be received from network and the value should not be\nfully trusted as it is from the network. Once the value of length exceeds\nthe value of buflen in function smc_clc_wait_msg it may run into deadloop\nwhen trying to drain the remaining data exceeding buflen.\n\nThis patch checks the return value of sock_recvmsg when draining data in\ncase of deadloop in draining.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57791",
"url": "https://www.suse.com/security/cve/CVE-2024-57791"
},
{
"category": "external",
"summary": "SUSE Bug 1235759 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "external",
"summary": "SUSE Bug 1235760 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-57791"
},
{
"cve": "CVE-2024-57792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: gpio-charger: Fix set charge current limits\n\nFix set charge current limits for devices which allow to set the lowest\ncharge current limit to be greater zero. If requested charge current limit\nis below lowest limit, the index equals current_limit_map_size which leads\nto accessing memory beyond allocated memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57792",
"url": "https://www.suse.com/security/cve/CVE-2024-57792"
},
{
"category": "external",
"summary": "SUSE Bug 1235764 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "external",
"summary": "SUSE Bug 1236568 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1236568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-57792"
},
{
"cve": "CVE-2024-57793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57793"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirt: tdx-guest: Just leak decrypted memory on unrecoverable errors\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_decrypted() to fail such that an error is returned\nand the resulting memory is shared. Callers need to take care\nto handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional\nor security issues.\n\nLeak the decrypted memory when set_memory_decrypted() fails,\nand don\u0027t need to print an error since set_memory_decrypted()\nwill call WARN_ONCE().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57793",
"url": "https://www.suse.com/security/cve/CVE-2024-57793"
},
{
"category": "external",
"summary": "SUSE Bug 1235768 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "external",
"summary": "SUSE Bug 1235769 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-57793"
},
{
"cve": "CVE-2024-57795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Remove the direct link to net_device\n\nThe similar patch in siw is in the link:\nhttps://git.kernel.org/rdma/rdma/c/16b87037b48889\n\nThis problem also occurred in RXE. The following analyze this problem.\nIn the following Call Traces:\n\"\nBUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\nRead of size 4 at addr ffff8880554640b0 by task kworker/1:4/5295\n\nCPU: 1 UID: 0 PID: 5295 Comm: kworker/1:4 Not tainted\n6.12.0-rc3-syzkaller-00399-g9197b73fd7bb #0\nHardware name: Google Compute Engine/Google Compute Engine,\nBIOS Google 09/13/2024\nWorkqueue: infiniband ib_cache_event_task\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\n rxe_query_port+0x12d/0x260 drivers/infiniband/sw/rxe/rxe_verbs.c:60\n __ib_query_port drivers/infiniband/core/device.c:2111 [inline]\n ib_query_port+0x168/0x7d0 drivers/infiniband/core/device.c:2143\n ib_cache_update+0x1a9/0xb80 drivers/infiniband/core/cache.c:1494\n ib_cache_event_task+0xf3/0x1e0 drivers/infiniband/core/cache.c:1568\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa65/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f2/0x390 kernel/kthread.c:389\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\"\n\n1). In the link [1],\n\n\"\n infiniband syz2: set down\n\"\n\nThis means that on 839.350575, the event ib_cache_event_task was sent andi\nqueued in ib_wq.\n\n2). In the link [1],\n\n\"\n team0 (unregistering): Port device team_slave_0 removed\n\"\n\nIt indicates that before 843.251853, the net device should be freed.\n\n3). In the link [1],\n\n\"\n BUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0\n\"\n\nThis means that on 850.559070, this slab-use-after-free problem occurred.\n\nIn all, on 839.350575, the event ib_cache_event_task was sent and queued\nin ib_wq,\n\nbefore 843.251853, the net device veth was freed.\n\non 850.559070, this event was executed, and the mentioned freed net device\nwas called. Thus, the above call trace occurred.\n\n[1] https://syzkaller.appspot.com/x/log.txt?x=12e7025f980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57795",
"url": "https://www.suse.com/security/cve/CVE-2024-57795"
},
{
"category": "external",
"summary": "SUSE Bug 1235906 for CVE-2024-57795",
"url": "https://bugzilla.suse.com/1235906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57795"
},
{
"cve": "CVE-2024-57798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()\n\nWhile receiving an MST up request message from one thread in\ndrm_dp_mst_handle_up_req(), the MST topology could be removed from\nanother thread via drm_dp_mst_topology_mgr_set_mst(false), freeing\nmst_primary and setting drm_dp_mst_topology_mgr::mst_primary to NULL.\nThis could lead to a NULL deref/use-after-free of mst_primary in\ndrm_dp_mst_handle_up_req().\n\nAvoid the above by holding a reference for mst_primary in\ndrm_dp_mst_handle_up_req() while it\u0027s used.\n\nv2: Fix kfreeing the request if getting an mst_primary reference fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57798",
"url": "https://www.suse.com/security/cve/CVE-2024-57798"
},
{
"category": "external",
"summary": "SUSE Bug 1235818 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "external",
"summary": "SUSE Bug 1235819 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-57798"
},
{
"cve": "CVE-2024-57801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Skip restore TC rules for vport rep without loaded flag\n\nDuring driver unload, unregister_netdev is called after unloading\nvport rep. So, the mlx5e_rep_priv is already freed while trying to get\nrpriv-\u003enetdev, or walk rpriv-\u003etc_ht, which results in use-after-free.\nSo add the checking to make sure access the data of vport rep which is\nstill loaded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57801",
"url": "https://www.suse.com/security/cve/CVE-2024-57801"
},
{
"category": "external",
"summary": "SUSE Bug 1235940 for CVE-2024-57801",
"url": "https://bugzilla.suse.com/1235940"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57801"
},
{
"cve": "CVE-2024-57804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs\n\nThe driver, through the SAS transport, exposes a sysfs interface to\nenable/disable PHYs in a controller/expander setup. When multiple PHYs\nare disabled and enabled in rapid succession, the persistent and current\nconfig pages related to SAS IO unit/SAS Expander pages could get\ncorrupted.\n\nUse separate memory for each config request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57804",
"url": "https://www.suse.com/security/cve/CVE-2024-57804"
},
{
"category": "external",
"summary": "SUSE Bug 1235779 for CVE-2024-57804",
"url": "https://bugzilla.suse.com/1235779"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57804"
},
{
"cve": "CVE-2024-57809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: imx6: Fix suspend/resume support on i.MX6QDL\n\nThe suspend/resume functionality is currently broken on the i.MX6QDL\nplatform, as documented in the NXP errata (ERR005723):\n\n https://www.nxp.com/docs/en/errata/IMX6DQCE.pdf\n\nThis patch addresses the issue by sharing most of the suspend/resume\nsequences used by other i.MX devices, while avoiding modifications to\ncritical registers that disrupt the PCIe functionality. It targets the\nsame problem as the following downstream commit:\n\n https://github.com/nxp-imx/linux-imx/commit/4e92355e1f79d225ea842511fcfd42b343b32995\n\nUnlike the downstream commit, this patch also resets the connected PCIe\ndevice if possible. Without this reset, certain drivers, such as ath10k\nor iwlwifi, will crash on resume. The device reset is also done by the\ndriver on other i.MX platforms, making this patch consistent with\nexisting practices.\n\nUpon resuming, the kernel will hang and display an error. Here\u0027s an\nexample of the error encountered with the ath10k driver:\n\n ath10k_pci 0000:01:00.0: Unable to change power state from D3hot to D0, device inaccessible\n Unhandled fault: imprecise external abort (0x1406) at 0x0106f944\n\nWithout this patch, suspend/resume will fail on i.MX6QDL devices if a\nPCIe device is connected.\n\n[kwilczynski: commit log, added tag for stable releases]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57809",
"url": "https://www.suse.com/security/cve/CVE-2024-57809"
},
{
"category": "external",
"summary": "SUSE Bug 1235793 for CVE-2024-57809",
"url": "https://bugzilla.suse.com/1235793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57809"
},
{
"cve": "CVE-2024-57838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57838"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/entry: Mark IRQ entries to fix stack depot warnings\n\nThe stack depot filters out everything outside of the top interrupt\ncontext as an uninteresting or irrelevant part of the stack traces. This\nhelps with stack trace de-duplication, avoiding an explosion of saved\nstack traces that share the same IRQ context code path but originate\nfrom different randomly interrupted points, eventually exhausting the\nstack depot.\n\nFiltering uses in_irqentry_text() to identify functions within the\n.irqentry.text and .softirqentry.text sections, which then become the\nlast stack trace entries being saved.\n\nWhile __do_softirq() is placed into the .softirqentry.text section by\ncommon code, populating .irqentry.text is architecture-specific.\n\nCurrently, the .irqentry.text section on s390 is empty, which prevents\nstack depot filtering and de-duplication and could result in warnings\nlike:\n\nStack depot reached limit capacity\nWARNING: CPU: 0 PID: 286113 at lib/stackdepot.c:252 depot_alloc_stack+0x39a/0x3c8\n\nwith PREEMPT and KASAN enabled.\n\nFix this by moving the IO/EXT interrupt handlers from .kprobes.text into\nthe .irqentry.text section and updating the kprobes blacklist to include\nthe .irqentry.text section.\n\nThis is done only for asynchronous interrupts and explicitly not for\nprogram checks, which are synchronous and where the context beyond the\nprogram check is important to preserve. Despite machine checks being\nsomewhat in between, they are extremely rare, and preserving context\nwhen possible is also of value.\n\nSVCs and Restart Interrupts are not relevant, one being always at the\nboundary to user space and the other being a one-time thing.\n\nIRQ entries filtering is also optionally used in ftrace function graph,\nwhere the same logic applies.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57838",
"url": "https://www.suse.com/security/cve/CVE-2024-57838"
},
{
"category": "external",
"summary": "SUSE Bug 1235798 for CVE-2024-57838",
"url": "https://bugzilla.suse.com/1235798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57838"
},
{
"cve": "CVE-2024-57849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57849"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/cpum_sf: Handle CPU hotplug remove during sampling\n\nCPU hotplug remove handling triggers the following function\ncall sequence:\n\n CPUHP_AP_PERF_S390_SF_ONLINE --\u003e s390_pmu_sf_offline_cpu()\n ...\n CPUHP_AP_PERF_ONLINE --\u003e perf_event_exit_cpu()\n\nThe s390 CPUMF sampling CPU hotplug handler invokes:\n\n s390_pmu_sf_offline_cpu()\n +--\u003e cpusf_pmu_setup()\n +--\u003e setup_pmc_cpu()\n +--\u003e deallocate_buffers()\n\nThis function de-allocates all sampling data buffers (SDBs) allocated\nfor that CPU at event initialization. It also clears the\nPMU_F_RESERVED bit. The CPU is gone and can not be sampled.\n\nWith the event still being active on the removed CPU, the CPU event\nhotplug support in kernel performance subsystem triggers the\nfollowing function calls on the removed CPU:\n\n perf_event_exit_cpu()\n +--\u003e perf_event_exit_cpu_context()\n +--\u003e __perf_event_exit_context()\n\t +--\u003e __perf_remove_from_context()\n\t +--\u003e event_sched_out()\n\t +--\u003e cpumsf_pmu_del()\n\t +--\u003e cpumsf_pmu_stop()\n +--\u003e hw_perf_event_update()\n\nto stop and remove the event. During removal of the event, the\nsampling device driver tries to read out the remaining samples from\nthe sample data buffers (SDBs). But they have already been freed\n(and may have been re-assigned). This may lead to a use after free\nsituation in which case the samples are most likely invalid. In the\nbest case the memory has not been reassigned and still contains\nvalid data.\n\nRemedy this situation and check if the CPU is still in reserved\nstate (bit PMU_F_RESERVED set). In this case the SDBs have not been\nreleased an contain valid data. This is always the case when\nthe event is removed (and no CPU hotplug off occured).\nIf the PMU_F_RESERVED bit is not set, the SDB buffers are gone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57849",
"url": "https://www.suse.com/security/cve/CVE-2024-57849"
},
{
"category": "external",
"summary": "SUSE Bug 1235814 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "external",
"summary": "SUSE Bug 1235815 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-57849"
},
{
"cve": "CVE-2024-57850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njffs2: Prevent rtime decompress memory corruption\n\nThe rtime decompression routine does not fully check bounds during the\nentirety of the decompression pass and can corrupt memory outside the\ndecompression buffer if the compressed data is corrupted. This adds the\nrequired check to prevent this failure mode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57850",
"url": "https://www.suse.com/security/cve/CVE-2024-57850"
},
{
"category": "external",
"summary": "SUSE Bug 1235812 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "external",
"summary": "SUSE Bug 1235813 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-57850"
},
{
"cve": "CVE-2024-57857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/siw: Remove direct link to net_device\n\nDo not manage a per device direct link to net_device. Rely\non associated ib_devices net_device management, not doubling\nthe effort locally. A badly managed local link to net_device\nwas causing a \u0027KASAN: slab-use-after-free\u0027 exception during\nsiw_query_port() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57857",
"url": "https://www.suse.com/security/cve/CVE-2024-57857"
},
{
"category": "external",
"summary": "SUSE Bug 1235946 for CVE-2024-57857",
"url": "https://bugzilla.suse.com/1235946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57857"
},
{
"cve": "CVE-2024-57874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57874"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL\n\nCurrently tagged_addr_ctrl_set() doesn\u0027t initialize the temporary \u0027ctrl\u0027\nvariable, and a SETREGSET call with a length of zero will leave this\nuninitialized. Consequently tagged_addr_ctrl_set() will consume an\narbitrary value, potentially leaking up to 64 bits of memory from the\nkernel stack. The read is limited to a specific slot on the stack, and\nthe issue does not provide a write mechanism.\n\nAs set_tagged_addr_ctrl() only accepts values where bits [63:4] zero and\nrejects other values, a partial SETREGSET attempt will randomly succeed\nor fail depending on the value of the uninitialized value, and the\nexposure is significantly limited.\n\nFix this by initializing the temporary value before copying the regset\nfrom userspace, as for other regsets (e.g. NT_PRSTATUS, NT_PRFPREG,\nNT_ARM_SYSTEM_CALL). In the case of a zero-length write, the existing\nvalue of the tagged address ctrl will be retained.\n\nThe NT_ARM_TAGGED_ADDR_CTRL regset is only visible in the\nuser_aarch64_view used by a native AArch64 task to manipulate another\nnative AArch64 task. As get_tagged_addr_ctrl() only returns an error\nvalue when called for a compat task, tagged_addr_ctrl_get() and\ntagged_addr_ctrl_set() should never observe an error value from\nget_tagged_addr_ctrl(). Add a WARN_ON_ONCE() to both to indicate that\nsuch an error would be unexpected, and error handlnig is not missing in\neither case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57874",
"url": "https://www.suse.com/security/cve/CVE-2024-57874"
},
{
"category": "external",
"summary": "SUSE Bug 1235808 for CVE-2024-57874",
"url": "https://bugzilla.suse.com/1235808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-57874"
},
{
"cve": "CVE-2024-57876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57876"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix resetting msg rx state after topology removal\n\nIf the MST topology is removed during the reception of an MST down reply\nor MST up request sideband message, the\ndrm_dp_mst_topology_mgr::up_req_recv/down_rep_recv states could be reset\nfrom one thread via drm_dp_mst_topology_mgr_set_mst(false), racing with\nthe reading/parsing of the message from another thread via\ndrm_dp_mst_handle_down_rep() or drm_dp_mst_handle_up_req(). The race is\npossible since the reader/parser doesn\u0027t hold any lock while accessing\nthe reception state. This in turn can lead to a memory corruption in the\nreader/parser as described by commit bd2fccac61b4 (\"drm/dp_mst: Fix MST\nsideband message body length check\").\n\nFix the above by resetting the message reception state if needed before\nreading/parsing a message. Another solution would be to hold the\ndrm_dp_mst_topology_mgr::lock for the whole duration of the message\nreception/parsing in drm_dp_mst_handle_down_rep() and\ndrm_dp_mst_handle_up_req(), however this would require a bigger change.\nSince the fix is also needed for stable, opting for the simpler solution\nin this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57876",
"url": "https://www.suse.com/security/cve/CVE-2024-57876"
},
{
"category": "external",
"summary": "SUSE Bug 1235806 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "external",
"summary": "SUSE Bug 1235807 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-57876"
},
{
"cve": "CVE-2024-57887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: adv7511: Fix use-after-free in adv7533_attach_dsi()\n\nThe host_node pointer was assigned and freed in adv7533_parse_dt(), and\nlater, adv7533_attach_dsi() uses the same. Fix this use-after-free issue\nby dropping of_node_put() in adv7533_parse_dt() and calling of_node_put()\nin error path of probe() and also in the remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57887",
"url": "https://www.suse.com/security/cve/CVE-2024-57887"
},
{
"category": "external",
"summary": "SUSE Bug 1235952 for CVE-2024-57887",
"url": "https://bugzilla.suse.com/1235952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57887"
},
{
"cve": "CVE-2024-57888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nworkqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker\n\nAfter commit\n746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")\namdgpu started seeing the following warning:\n\n [ ] workqueue: WQ_MEM_RECLAIM sdma0:drm_sched_run_job_work [gpu_sched] is flushing !WQ_MEM_RECLAIM events:amdgpu_device_delay_enable_gfx_off [amdgpu]\n...\n [ ] Workqueue: sdma0 drm_sched_run_job_work [gpu_sched]\n...\n [ ] Call Trace:\n [ ] \u003cTASK\u003e\n...\n [ ] ? check_flush_dependency+0xf5/0x110\n...\n [ ] cancel_delayed_work_sync+0x6e/0x80\n [ ] amdgpu_gfx_off_ctrl+0xab/0x140 [amdgpu]\n [ ] amdgpu_ring_alloc+0x40/0x50 [amdgpu]\n [ ] amdgpu_ib_schedule+0xf4/0x810 [amdgpu]\n [ ] ? drm_sched_run_job_work+0x22c/0x430 [gpu_sched]\n [ ] amdgpu_job_run+0xaa/0x1f0 [amdgpu]\n [ ] drm_sched_run_job_work+0x257/0x430 [gpu_sched]\n [ ] process_one_work+0x217/0x720\n...\n [ ] \u003c/TASK\u003e\n\nThe intent of the verifcation done in check_flush_depedency is to ensure\nforward progress during memory reclaim, by flagging cases when either a\nmemory reclaim process, or a memory reclaim work item is flushed from a\ncontext not marked as memory reclaim safe.\n\nThis is correct when flushing, but when called from the\ncancel(_delayed)_work_sync() paths it is a false positive because work is\neither already running, or will not be running at all. Therefore\ncancelling it is safe and we can relax the warning criteria by letting the\nhelper know of the calling context.\n\nReferences: 746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57888",
"url": "https://www.suse.com/security/cve/CVE-2024-57888"
},
{
"category": "external",
"summary": "SUSE Bug 1235918 for CVE-2024-57888",
"url": "https://bugzilla.suse.com/1235918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57888"
},
{
"cve": "CVE-2024-57890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/uverbs: Prevent integer overflow issue\n\nIn the expression \"cmd.wqe_size * cmd.wr_count\", both variables are u32\nvalues that come from the user so the multiplication can lead to integer\nwrapping. Then we pass the result to uverbs_request_next_ptr() which also\ncould potentially wrap. The \"cmd.sge_count * sizeof(struct ib_uverbs_sge)\"\nmultiplication can also overflow on 32bit systems although it\u0027s fine on\n64bit systems.\n\nThis patch does two things. First, I\u0027ve re-arranged the condition in\nuverbs_request_next_ptr() so that the use controlled variable \"len\" is on\none side of the comparison by itself without any math. Then I\u0027ve modified\nall the callers to use size_mul() for the multiplications.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57890",
"url": "https://www.suse.com/security/cve/CVE-2024-57890"
},
{
"category": "external",
"summary": "SUSE Bug 1235919 for CVE-2024-57890",
"url": "https://bugzilla.suse.com/1235919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57890"
},
{
"cve": "CVE-2024-57892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57892"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix slab-use-after-free due to dangling pointer dqi_priv\n\nWhen mounting ocfs2 and then remounting it as read-only, a\nslab-use-after-free occurs after the user uses a syscall to\nquota_getnextquota. Specifically, sb_dqinfo(sb, type)-\u003edqi_priv is the\ndangling pointer.\n\nDuring the remounting process, the pointer dqi_priv is freed but is never\nset as null leaving it to be accessed. Additionally, the read-only option\nfor remounting sets the DQUOT_SUSPENDED flag instead of setting the\nDQUOT_USAGE_ENABLED flags. Moreover, later in the process of getting the\nnext quota, the function ocfs2_get_next_id is called and only checks the\nquota usage flags and not the quota suspended flags.\n\nTo fix this, I set dqi_priv to null when it is freed after remounting with\nread-only and put a check for DQUOT_SUSPENDED in ocfs2_get_next_id.\n\n[akpm@linux-foundation.org: coding-style cleanups]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57892",
"url": "https://www.suse.com/security/cve/CVE-2024-57892"
},
{
"category": "external",
"summary": "SUSE Bug 1235964 for CVE-2024-57892",
"url": "https://bugzilla.suse.com/1235964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57892"
},
{
"cve": "CVE-2024-57893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: oss: Fix races at processing SysEx messages\n\nOSS sequencer handles the SysEx messages split in 6 bytes packets, and\nALSA sequencer OSS layer tries to combine those. It stores the data\nin the internal buffer and this access is racy as of now, which may\nlead to the out-of-bounds access.\n\nAs a temporary band-aid fix, introduce a mutex for serializing the\nprocess of the SysEx message packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57893",
"url": "https://www.suse.com/security/cve/CVE-2024-57893"
},
{
"category": "external",
"summary": "SUSE Bug 1235920 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "external",
"summary": "SUSE Bug 1235921 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-57893"
},
{
"cve": "CVE-2024-57896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: flush delalloc workers queue before stopping cleaner kthread during unmount\n\nDuring the unmount path, at close_ctree(), we first stop the cleaner\nkthread, using kthread_stop() which frees the associated task_struct, and\nthen stop and destroy all the work queues. However after we stopped the\ncleaner we may still have a worker from the delalloc_workers queue running\ninode.c:submit_compressed_extents(), which calls btrfs_add_delayed_iput(),\nwhich in turn tries to wake up the cleaner kthread - which was already\ndestroyed before, resulting in a use-after-free on the task_struct.\n\nSyzbot reported this with the following stack traces:\n\n BUG: KASAN: slab-use-after-free in __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n Read of size 8 at addr ffff8880259d2818 by task kworker/u8:3/52\n\n CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Workqueue: btrfs-delalloc btrfs_work_helper\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5849\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xd5/0x120 kernel/locking/spinlock.c:162\n class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:551 [inline]\n try_to_wake_up+0xc2/0x1470 kernel/sched/core.c:4205\n submit_compressed_extents+0xdf/0x16e0 fs/btrfs/inode.c:1615\n run_ordered_work fs/btrfs/async-thread.c:288 [inline]\n btrfs_work_helper+0x96f/0xc40 fs/btrfs/async-thread.c:324\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa66/0x1840 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\n Allocated by task 2:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:319 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:345\n kasan_slab_alloc include/linux/kasan.h:250 [inline]\n slab_post_alloc_hook mm/slub.c:4104 [inline]\n slab_alloc_node mm/slub.c:4153 [inline]\n kmem_cache_alloc_node_noprof+0x1d9/0x380 mm/slub.c:4205\n alloc_task_struct_node kernel/fork.c:180 [inline]\n dup_task_struct+0x57/0x8c0 kernel/fork.c:1113\n copy_process+0x5d1/0x3d50 kernel/fork.c:2225\n kernel_clone+0x223/0x870 kernel/fork.c:2807\n kernel_thread+0x1bc/0x240 kernel/fork.c:2869\n create_kthread kernel/kthread.c:412 [inline]\n kthreadd+0x60d/0x810 kernel/kthread.c:767\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\n Freed by task 24:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:582\n poison_slab_object mm/kasan/common.c:247 [inline]\n __kasan_slab_free+0x59/0x70 mm/kasan/common.c:264\n kasan_slab_free include/linux/kasan.h:233 [inline]\n slab_free_hook mm/slub.c:2338 [inline]\n slab_free mm/slub.c:4598 [inline]\n kmem_cache_free+0x195/0x410 mm/slub.c:4700\n put_task_struct include/linux/sched/task.h:144 [inline]\n delayed_put_task_struct+0x125/0x300 kernel/exit.c:227\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:554\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:943\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57896",
"url": "https://www.suse.com/security/cve/CVE-2024-57896"
},
{
"category": "external",
"summary": "SUSE Bug 1235965 for CVE-2024-57896",
"url": "https://bugzilla.suse.com/1235965"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57896"
},
{
"cve": "CVE-2024-57897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Correct the migration DMA map direction\n\nThe SVM DMA device map direction should be set the same as\nthe DMA unmap setting, otherwise the DMA core will report\nthe following warning.\n\nBefore finialize this solution, there\u0027re some discussion on\nthe DMA mapping type(stream-based or coherent) in this KFD\nmigration case, followed by https://lore.kernel.org/all/04d4ab32\n-45a1-4b88-86ee-fb0f35a0ca40@amd.com/T/.\n\nAs there\u0027s no dma_sync_single_for_*() in the DMA buffer accessed\nthat because this migration operation should be sync properly and\nautomatically. Give that there\u0027s might not be a performance problem\nin various cache sync policy of DMA sync. Therefore, in order to\nsimplify the DMA direction setting alignment, let\u0027s set the DMA map\ndirection as BIDIRECTIONAL.\n\n[ 150.834218] WARNING: CPU: 8 PID: 1812 at kernel/dma/debug.c:1028 check_unmap+0x1cc/0x930\n[ 150.834225] Modules linked in: amdgpu(OE) amdxcp drm_exec(OE) gpu_sched drm_buddy(OE) drm_ttm_helper(OE) ttm(OE) drm_suballoc_helper(OE) drm_display_helper(OE) drm_kms_helper(OE) i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc sch_fq_codel intel_rapl_msr amd_atl intel_rapl_common snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd snd_pci_acp6x snd_hda_codec snd_acp_config snd_hda_core snd_hwdep snd_soc_acpi kvm_amd sunrpc snd_pcm kvm binfmt_misc snd_seq_midi crct10dif_pclmul snd_seq_midi_event ghash_clmulni_intel sha512_ssse3 snd_rawmidi nls_iso8859_1 sha256_ssse3 sha1_ssse3 snd_seq aesni_intel snd_seq_device crypto_simd snd_timer cryptd input_leds\n[ 150.834310] wmi_bmof serio_raw k10temp rapl snd sp5100_tco ipmi_devintf soundcore ccp ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport efi_pstore drm(OE) ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 150.834354] CPU: 8 PID: 1812 Comm: rocrtst64 Tainted: G OE 6.10.0-custom #492\n[ 150.834358] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 150.834360] RIP: 0010:check_unmap+0x1cc/0x930\n[ 150.834363] Code: c0 4c 89 4d c8 e8 34 bf 86 00 4c 8b 4d c8 4c 8b 45 c0 48 8b 4d b8 48 89 c6 41 57 4c 89 ea 48 c7 c7 80 49 b4 84 e8 b4 81 f3 ff \u003c0f\u003e 0b 48 c7 c7 04 83 ac 84 e8 76 ba fc ff 41 8b 76 4c 49 8d 7e 50\n[ 150.834365] RSP: 0018:ffffaac5023739e0 EFLAGS: 00010086\n[ 150.834368] RAX: 0000000000000000 RBX: ffffffff8566a2e0 RCX: 0000000000000027\n[ 150.834370] RDX: ffff8f6a8f621688 RSI: 0000000000000001 RDI: ffff8f6a8f621680\n[ 150.834372] RBP: ffffaac502373a30 R08: 00000000000000c9 R09: ffffaac502373850\n[ 150.834373] R10: ffffaac502373848 R11: ffffffff84f46328 R12: ffffaac502373a40\n[ 150.834375] R13: ffff8f6741045330 R14: ffff8f6741a77700 R15: ffffffff84ac831b\n[ 150.834377] FS: 00007faf0fc94c00(0000) GS:ffff8f6a8f600000(0000) knlGS:0000000000000000\n[ 150.834379] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 150.834381] CR2: 00007faf0b600020 CR3: 000000010a52e000 CR4: 0000000000350ef0\n[ 150.834383] Call Trace:\n[ 150.834385] \u003cTASK\u003e\n[ 150.834387] ? show_regs+0x6d/0x80\n[ 150.834393] ? __warn+0x8c/0x140\n[ 150.834397] ? check_unmap+0x1cc/0x930\n[ 150.834400] ? report_bug+0x193/0x1a0\n[ 150.834406] ? handle_bug+0x46/0x80\n[ 150.834410] ? exc_invalid_op+0x1d/0x80\n[ 150.834413] ? asm_exc_invalid_op+0x1f/0x30\n[ 150.834420] ? check_unmap+0x1cc/0x930\n[ 150.834425] debug_dma_unmap_page+0x86/0x90\n[ 150.834431] ? srso_return_thunk+0x5/0x5f\n[ 150.834435] \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57897",
"url": "https://www.suse.com/security/cve/CVE-2024-57897"
},
{
"category": "external",
"summary": "SUSE Bug 1235969 for CVE-2024-57897",
"url": "https://bugzilla.suse.com/1235969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57897"
},
{
"cve": "CVE-2024-57899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57899"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: fix mbss changed flags corruption on 32 bit systems\n\nOn 32-bit systems, the size of an unsigned long is 4 bytes,\nwhile a u64 is 8 bytes. Therefore, when using\nor_each_set_bit(bit, \u0026bits, sizeof(changed) * BITS_PER_BYTE),\nthe code is incorrectly searching for a bit in a 32-bit\nvariable that is expected to be 64 bits in size,\nleading to incorrect bit finding.\n\nSolution: Ensure that the size of the bits variable is correctly\nadjusted for each architecture.\n\n Call Trace:\n ? show_regs+0x54/0x58\n ? __warn+0x6b/0xd4\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? report_bug+0x113/0x150\n ? exc_overflow+0x30/0x30\n ? handle_bug+0x27/0x44\n ? exc_invalid_op+0x18/0x50\n ? handle_exception+0xf6/0xf6\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? ieee80211_mesh_work+0xff/0x260 [mac80211]\n ? cfg80211_wiphy_work+0x72/0x98 [cfg80211]\n ? process_one_work+0xf1/0x1fc\n ? worker_thread+0x2c0/0x3b4\n ? kthread+0xc7/0xf0\n ? mod_delayed_work_on+0x4c/0x4c\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork+0x24/0x38\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork_asm+0xf/0x14\n ? entry_INT80_32+0xf0/0xf0\n\n[restore no-op path for no changes]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57899",
"url": "https://www.suse.com/security/cve/CVE-2024-57899"
},
{
"category": "external",
"summary": "SUSE Bug 1235924 for CVE-2024-57899",
"url": "https://bugzilla.suse.com/1235924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57899"
},
{
"cve": "CVE-2024-57903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: restrict SO_REUSEPORT to inet sockets\n\nAfter blamed commit, crypto sockets could accidentally be destroyed\nfrom RCU call back, as spotted by zyzbot [1].\n\nTrying to acquire a mutex in RCU callback is not allowed.\n\nRestrict SO_REUSEPORT socket option to inet sockets.\n\nv1 of this patch supported TCP, UDP and SCTP sockets,\nbut fcnal-test.sh test needed RAW and ICMP support.\n\n[1]\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:562\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 24, name: ksoftirqd/1\npreempt_count: 100, expected: 0\nRCU nest depth: 0, expected: 0\n1 lock held by ksoftirqd/1/24:\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_lock_acquire include/linux/rcupdate.h:337 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_do_batch kernel/rcu/tree.c:2561 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_core+0xa37/0x17a0 kernel/rcu/tree.c:2823\nPreemption disabled at:\n [\u003cffffffff8161c8c8\u003e] softirq_handle_begin kernel/softirq.c:402 [inline]\n [\u003cffffffff8161c8c8\u003e] handle_softirqs+0x128/0x9b0 kernel/softirq.c:537\nCPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.13.0-rc3-syzkaller-00174-ga024e377efed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n __might_resched+0x5d4/0x780 kernel/sched/core.c:8758\n __mutex_lock_common kernel/locking/mutex.c:562 [inline]\n __mutex_lock+0x131/0xee0 kernel/locking/mutex.c:735\n crypto_put_default_null_skcipher+0x18/0x70 crypto/crypto_null.c:179\n aead_release+0x3d/0x50 crypto/algif_aead.c:489\n alg_do_release crypto/af_alg.c:118 [inline]\n alg_sock_destruct+0x86/0xc0 crypto/af_alg.c:502\n __sk_destruct+0x58/0x5f0 net/core/sock.c:2260\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:561\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:950\n smpboot_thread_fn+0x544/0xa30 kernel/smpboot.c:164\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57903",
"url": "https://www.suse.com/security/cve/CVE-2024-57903"
},
{
"category": "external",
"summary": "SUSE Bug 1235967 for CVE-2024-57903",
"url": "https://bugzilla.suse.com/1235967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57903"
},
{
"cve": "CVE-2024-57904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: at91: call input_free_device() on allocated iio_dev\n\nCurrent implementation of at91_ts_register() calls input_free_deivce()\non st-\u003ets_input, however, the err label can be reached before the\nallocated iio_dev is stored to st-\u003ets_input. Thus call\ninput_free_device() on input instead of st-\u003ets_input.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57904",
"url": "https://www.suse.com/security/cve/CVE-2024-57904"
},
{
"category": "external",
"summary": "SUSE Bug 1236078 for CVE-2024-57904",
"url": "https://bugzilla.suse.com/1236078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57904"
},
{
"cve": "CVE-2024-57906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ti-ads8688: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57906",
"url": "https://www.suse.com/security/cve/CVE-2024-57906"
},
{
"category": "external",
"summary": "SUSE Bug 1236088 for CVE-2024-57906",
"url": "https://bugzilla.suse.com/1236088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-57906"
},
{
"cve": "CVE-2024-57907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: rockchip_saradc: fix information leak in triggered buffer\n\nThe \u0027data\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57907",
"url": "https://www.suse.com/security/cve/CVE-2024-57907"
},
{
"category": "external",
"summary": "SUSE Bug 1236090 for CVE-2024-57907",
"url": "https://bugzilla.suse.com/1236090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2024-57907"
},
{
"cve": "CVE-2024-57908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: imu: kmx61: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57908",
"url": "https://www.suse.com/security/cve/CVE-2024-57908"
},
{
"category": "external",
"summary": "SUSE Bug 1236091 for CVE-2024-57908",
"url": "https://bugzilla.suse.com/1236091"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57908"
},
{
"cve": "CVE-2024-57910",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57910"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: vcnl4035: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to userspace from a\ntriggered buffer, but it does not set an initial value for the single\ndata element, which is an u16 aligned to 8 bytes. That leaves at least\n4 bytes uninitialized even after writing an integer value with\nregmap_read().\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57910",
"url": "https://www.suse.com/security/cve/CVE-2024-57910"
},
{
"category": "external",
"summary": "SUSE Bug 1236097 for CVE-2024-57910",
"url": "https://bugzilla.suse.com/1236097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57910"
},
{
"cve": "CVE-2024-57911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer\n\nThe \u0027data\u0027 array is allocated via kmalloc() and it is used to push data\nto user space from a triggered buffer, but it does not set values for\ninactive channels, as it only uses iio_for_each_active_channel()\nto assign new values.\n\nUse kzalloc for the memory allocation to avoid pushing uninitialized\ninformation to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57911",
"url": "https://www.suse.com/security/cve/CVE-2024-57911"
},
{
"category": "external",
"summary": "SUSE Bug 1236098 for CVE-2024-57911",
"url": "https://bugzilla.suse.com/1236098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57911"
},
{
"cve": "CVE-2024-57912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: pressure: zpa2326: fix information leak in triggered buffer\n\nThe \u0027sample\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it has a hole between the temperature and the\ntimestamp (u32 pressure, u16 temperature, GAP, u64 timestamp).\nThis hole is never initialized.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57912",
"url": "https://www.suse.com/security/cve/CVE-2024-57912"
},
{
"category": "external",
"summary": "SUSE Bug 1236101 for CVE-2024-57912",
"url": "https://bugzilla.suse.com/1236101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57912"
},
{
"cve": "CVE-2024-57913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Remove WARN_ON in functionfs_bind\n\nThis commit addresses an issue related to below kernel panic where\npanic_on_warn is enabled. It is caused by the unnecessary use of WARN_ON\nin functionsfs_bind, which easily leads to the following scenarios.\n\n1.adb_write in adbd 2. UDC write via configfs\n =================\t =====================\n\n-\u003eusb_ffs_open_thread() -\u003eUDC write\n -\u003eopen_functionfs() -\u003econfigfs_write_iter()\n -\u003eadb_open() -\u003egadget_dev_desc_UDC_store()\n -\u003eadb_write() -\u003eusb_gadget_register_driver_owner\n -\u003edriver_register()\n-\u003eStartMonitor() -\u003ebus_add_driver()\n -\u003eadb_read() -\u003egadget_bind_driver()\n\u003ctimes-out without BIND event\u003e -\u003econfigfs_composite_bind()\n -\u003eusb_add_function()\n-\u003eopen_functionfs() -\u003effs_func_bind()\n -\u003eadb_open() -\u003efunctionfs_bind()\n \u003cffs-\u003estate !=FFS_ACTIVE\u003e\n\nThe adb_open, adb_read, and adb_write operations are invoked from the\ndaemon, but trying to bind the function is a process that is invoked by\nUDC write through configfs, which opens up the possibility of a race\ncondition between the two paths. In this race scenario, the kernel panic\noccurs due to the WARN_ON from functionfs_bind when panic_on_warn is\nenabled. This commit fixes the kernel panic by removing the unnecessary\nWARN_ON.\n\nKernel panic - not syncing: kernel: panic_on_warn set ...\n[ 14.542395] Call trace:\n[ 14.542464] ffs_func_bind+0x1c8/0x14a8\n[ 14.542468] usb_add_function+0xcc/0x1f0\n[ 14.542473] configfs_composite_bind+0x468/0x588\n[ 14.542478] gadget_bind_driver+0x108/0x27c\n[ 14.542483] really_probe+0x190/0x374\n[ 14.542488] __driver_probe_device+0xa0/0x12c\n[ 14.542492] driver_probe_device+0x3c/0x220\n[ 14.542498] __driver_attach+0x11c/0x1fc\n[ 14.542502] bus_for_each_dev+0x104/0x160\n[ 14.542506] driver_attach+0x24/0x34\n[ 14.542510] bus_add_driver+0x154/0x270\n[ 14.542514] driver_register+0x68/0x104\n[ 14.542518] usb_gadget_register_driver_owner+0x48/0xf4\n[ 14.542523] gadget_dev_desc_UDC_store+0xf8/0x144\n[ 14.542526] configfs_write_iter+0xf0/0x138",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57913",
"url": "https://www.suse.com/security/cve/CVE-2024-57913"
},
{
"category": "external",
"summary": "SUSE Bug 1236102 for CVE-2024-57913",
"url": "https://bugzilla.suse.com/1236102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57913"
},
{
"cve": "CVE-2024-57915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57915"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57915",
"url": "https://www.suse.com/security/cve/CVE-2024-57915"
},
{
"category": "external",
"summary": "SUSE Bug 1236120 for CVE-2024-57915",
"url": "https://bugzilla.suse.com/1236120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57915"
},
{
"cve": "CVE-2024-57916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling\n\nResolve kernel panic caused by improper handling of IRQs while\naccessing GPIO values. This is done by replacing generic_handle_irq with\nhandle_nested_irq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57916",
"url": "https://www.suse.com/security/cve/CVE-2024-57916"
},
{
"category": "external",
"summary": "SUSE Bug 1236125 for CVE-2024-57916",
"url": "https://bugzilla.suse.com/1236125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57916"
},
{
"cve": "CVE-2024-57922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add check for granularity in dml ceil/floor helpers\n\n[Why]\nWrapper functions for dcn_bw_ceil2() and dcn_bw_floor2()\nshould check for granularity is non zero to avoid assert and\ndivide-by-zero error in dcn_bw_ functions.\n\n[How]\nAdd check for granularity 0.\n\n(cherry picked from commit f6e09701c3eb2ccb8cb0518e0b67f1c69742a4ec)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57922",
"url": "https://www.suse.com/security/cve/CVE-2024-57922"
},
{
"category": "external",
"summary": "SUSE Bug 1236080 for CVE-2024-57922",
"url": "https://bugzilla.suse.com/1236080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57922"
},
{
"cve": "CVE-2024-57926",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57926"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err\n\nThe pointer need to be set to NULL, otherwise KASAN complains about\nuse-after-free. Because in mtk_drm_bind, all private\u0027s drm are set\nas follows.\n\nprivate-\u003eall_drm_private[i]-\u003edrm = drm;\n\nAnd drm will be released by drm_dev_put in case mtk_drm_kms_init returns\nfailure. However, the shutdown path still accesses the previous allocated\nmemory in drm_atomic_helper_shutdown.\n\n[ 84.874820] watchdog: watchdog0: watchdog did not stop!\n[ 86.512054] ==================================================================\n[ 86.513162] BUG: KASAN: use-after-free in drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.514258] Read of size 8 at addr ffff0000d46fc068 by task shutdown/1\n[ 86.515213]\n[ 86.515455] CPU: 1 UID: 0 PID: 1 Comm: shutdown Not tainted 6.13.0-rc1-mtk+gfa1a78e5d24b-dirty #55\n[ 86.516752] Hardware name: Unknown Product/Unknown Product, BIOS 2022.10 10/01/2022\n[ 86.517960] Call trace:\n[ 86.518333] show_stack+0x20/0x38 (C)\n[ 86.518891] dump_stack_lvl+0x90/0xd0\n[ 86.519443] print_report+0xf8/0x5b0\n[ 86.519985] kasan_report+0xb4/0x100\n[ 86.520526] __asan_report_load8_noabort+0x20/0x30\n[ 86.521240] drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.521966] mtk_drm_shutdown+0x54/0x80\n[ 86.522546] platform_shutdown+0x64/0x90\n[ 86.523137] device_shutdown+0x260/0x5b8\n[ 86.523728] kernel_restart+0x78/0xf0\n[ 86.524282] __do_sys_reboot+0x258/0x2f0\n[ 86.524871] __arm64_sys_reboot+0x90/0xd8\n[ 86.525473] invoke_syscall+0x74/0x268\n[ 86.526041] el0_svc_common.constprop.0+0xb0/0x240\n[ 86.526751] do_el0_svc+0x4c/0x70\n[ 86.527251] el0_svc+0x4c/0xc0\n[ 86.527719] el0t_64_sync_handler+0x144/0x168\n[ 86.528367] el0t_64_sync+0x198/0x1a0\n[ 86.528920]\n[ 86.529157] The buggy address belongs to the physical page:\n[ 86.529972] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff0000d46fd4d0 pfn:0x1146fc\n[ 86.531319] flags: 0xbfffc0000000000(node=0|zone=2|lastcpupid=0xffff)\n[ 86.532267] raw: 0bfffc0000000000 0000000000000000 dead000000000122 0000000000000000\n[ 86.533390] raw: ffff0000d46fd4d0 0000000000000000 00000000ffffffff 0000000000000000\n[ 86.534511] page dumped because: kasan: bad access detected\n[ 86.535323]\n[ 86.535559] Memory state around the buggy address:\n[ 86.536265] ffff0000d46fbf00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.537314] ffff0000d46fbf80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.538363] \u003effff0000d46fc000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.544733] ^\n[ 86.551057] ffff0000d46fc080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.557510] ffff0000d46fc100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.563928] ==================================================================\n[ 86.571093] Disabling lock debugging due to kernel taint\n[ 86.577642] Unable to handle kernel paging request at virtual address e0e9c0920000000b\n[ 86.581834] KASAN: maybe wild-memory-access in range [0x0752049000000058-0x075204900000005f]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57926",
"url": "https://www.suse.com/security/cve/CVE-2024-57926"
},
{
"category": "external",
"summary": "SUSE Bug 1236082 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "external",
"summary": "SUSE Bug 1236084 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-57926"
},
{
"cve": "CVE-2024-57929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57929"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm array: fix releasing a faulty array block twice in dm_array_cursor_end\n\nWhen dm_bm_read_lock() fails due to locking or checksum errors, it\nreleases the faulty block implicitly while leaving an invalid output\npointer behind. The caller of dm_bm_read_lock() should not operate on\nthis invalid dm_block pointer, or it will lead to undefined result.\nFor example, the dm_array_cursor incorrectly caches the invalid pointer\non reading a faulty array block, causing a double release in\ndm_array_cursor_end(), then hitting the BUG_ON in dm-bufio cache_put().\n\nReproduce steps:\n\n1. initialize a cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. wipe the second array block offline\n\ndmsteup remove cache cmeta cdata corig\nmapping_root=$(dd if=/dev/sdc bs=1c count=8 skip=192 \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\nablock=$(dd if=/dev/sdc bs=1c count=8 skip=$((4096*mapping_root+2056)) \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\ndd if=/dev/zero of=/dev/sdc bs=4k count=1 seek=$ablock\n\n3. try reopen the cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\ndevice-mapper: array: array_block_check failed: blocknr 0 != wanted 10\ndevice-mapper: block manager: array validator check failed for block 10\ndevice-mapper: array: get_ablock failed\ndevice-mapper: cache metadata: dm_array_cursor_next for mapping failed\n------------[ cut here ]------------\nkernel BUG at drivers/md/dm-bufio.c:638!\n\nFix by setting the cached block pointer to NULL on errors.\n\nIn addition to the reproducer described above, this fix can be\nverified using the \"array_cursor/damaged\" test in dm-unit:\n dm-unit run /pdata/array_cursor/damaged --kernel-dir \u003cKERNEL_DIR\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57929",
"url": "https://www.suse.com/security/cve/CVE-2024-57929"
},
{
"category": "external",
"summary": "SUSE Bug 1236096 for CVE-2024-57929",
"url": "https://bugzilla.suse.com/1236096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57929"
},
{
"cve": "CVE-2024-57932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XDP xmit NDO on existence of xdp queues\n\nIn GVE, dedicated XDP queues only exist when an XDP program is installed\nand the interface is up. As such, the NDO XDP XMIT callback should\nreturn early if either of these conditions are false.\n\nIn the case of no loaded XDP program, priv-\u003enum_xdp_queues=0 which can\ncause a divide-by-zero error, and in the case of interface down,\nnum_xdp_queues remains untouched to persist XDP queue count for the next\ninterface up, but the TX pointer itself would be NULL.\n\nThe XDP xmit callback also needs to synchronize with a device\ntransitioning from open to close. This synchronization will happen via\nthe GVE_PRIV_FLAGS_NAPI_ENABLED bit along with a synchronize_net() call,\nwhich waits for any RCU critical sections at call-time to complete.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57932",
"url": "https://www.suse.com/security/cve/CVE-2024-57932"
},
{
"category": "external",
"summary": "SUSE Bug 1236190 for CVE-2024-57932",
"url": "https://bugzilla.suse.com/1236190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57932"
},
{
"cve": "CVE-2024-57933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57933"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XSK operations on the existence of queues\n\nThis patch predicates the enabling and disabling of XSK pools on the\nexistence of queues. As it stands, if the interface is down, disabling\nor enabling XSK pools would result in a crash, as the RX queue pointer\nwould be NULL. XSK pool registration will occur as part of the next\ninterface up.\n\nSimilarly, xsk_wakeup needs be guarded against queues disappearing\nwhile the function is executing, so a check against the\nGVE_PRIV_FLAGS_NAPI_ENABLED flag is added to synchronize with the\ndisabling of the bit and the synchronize_net() in gve_turndown.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57933",
"url": "https://www.suse.com/security/cve/CVE-2024-57933"
},
{
"category": "external",
"summary": "SUSE Bug 1236178 for CVE-2024-57933",
"url": "https://bugzilla.suse.com/1236178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57933"
},
{
"cve": "CVE-2024-57935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix accessing invalid dip_ctx during destroying QP\n\nIf it fails to modify QP to RTR, dip_ctx will not be attached. And\nduring detroying QP, the invalid dip_ctx pointer will be accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57935",
"url": "https://www.suse.com/security/cve/CVE-2024-57935"
},
{
"category": "external",
"summary": "SUSE Bug 1236180 for CVE-2024-57935",
"url": "https://bugzilla.suse.com/1236180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57935"
},
{
"cve": "CVE-2024-57936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57936"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix max SGEs for the Work Request\n\nGen P7 supports up to 13 SGEs for now. WQE software structure\ncan hold only 6 now. Since the max send sge is reported as\n13, the stack can give requests up to 13 SGEs. This is causing\ntraffic failures and system crashes.\n\nUse the define for max SGE supported for variable size. This\nwill work for both static and variable WQEs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57936",
"url": "https://www.suse.com/security/cve/CVE-2024-57936"
},
{
"category": "external",
"summary": "SUSE Bug 1236181 for CVE-2024-57936",
"url": "https://bugzilla.suse.com/1236181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57936"
},
{
"cve": "CVE-2024-57940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix the infinite loop in exfat_readdir()\n\nIf the file system is corrupted so that a cluster is linked to\nitself in the cluster chain, and there is an unused directory\nentry in the cluster, \u0027dentry\u0027 will not be incremented, causing\ncondition \u0027dentry \u003c max_dentries\u0027 unable to prevent an infinite\nloop.\n\nThis infinite loop causes s_lock not to be released, and other\ntasks will hang, such as exfat_sync_fs().\n\nThis commit stops traversing the cluster chain when there is unused\ndirectory entry in the cluster to avoid this infinite loop.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57940",
"url": "https://www.suse.com/security/cve/CVE-2024-57940"
},
{
"category": "external",
"summary": "SUSE Bug 1236227 for CVE-2024-57940",
"url": "https://bugzilla.suse.com/1236227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2024-57940"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
},
{
"cve": "CVE-2025-21632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure shadow stack is active before \"getting\" registers\n\nThe x86 shadow stack support has its own set of registers. Those registers\nare XSAVE-managed, but they are \"supervisor state components\" which means\nthat userspace can not touch them with XSAVE/XRSTOR. It also means that\nthey are not accessible from the existing ptrace ABI for XSAVE state.\nThus, there is a new ptrace get/set interface for it.\n\nThe regset code that ptrace uses provides an -\u003eactive() handler in\naddition to the get/set ones. For shadow stack this -\u003eactive() handler\nverifies that shadow stack is enabled via the ARCH_SHSTK_SHSTK bit in the\nthread struct. The -\u003eactive() handler is checked from some call sites of\nthe regset get/set handlers, but not the ptrace ones. This was not\nunderstood when shadow stack support was put in place.\n\nAs a result, both the set/get handlers can be called with\nXFEATURE_CET_USER in its init state, which would cause get_xsave_addr() to\nreturn NULL and trigger a WARN_ON(). The ssp_set() handler luckily has an\nssp_active() check to avoid surprising the kernel with shadow stack\nbehavior when the kernel is not ready for it (ARCH_SHSTK_SHSTK==0). That\ncheck just happened to avoid the warning.\n\nBut the -\u003eget() side wasn\u0027t so lucky. It can be called with shadow stacks\ndisabled, triggering the warning in practice, as reported by Christina\nSchimpe:\n\nWARNING: CPU: 5 PID: 1773 at arch/x86/kernel/fpu/regset.c:198 ssp_get+0x89/0xa0\n[...]\nCall Trace:\n\u003cTASK\u003e\n? show_regs+0x6e/0x80\n? ssp_get+0x89/0xa0\n? __warn+0x91/0x150\n? ssp_get+0x89/0xa0\n? report_bug+0x19d/0x1b0\n? handle_bug+0x46/0x80\n? exc_invalid_op+0x1d/0x80\n? asm_exc_invalid_op+0x1f/0x30\n? __pfx_ssp_get+0x10/0x10\n? ssp_get+0x89/0xa0\n? ssp_get+0x52/0xa0\n__regset_get+0xad/0xf0\ncopy_regset_to_user+0x52/0xc0\nptrace_regset+0x119/0x140\nptrace_request+0x13c/0x850\n? wait_task_inactive+0x142/0x1d0\n? do_syscall_64+0x6d/0x90\narch_ptrace+0x102/0x300\n[...]\n\nEnsure that shadow stacks are active in a thread before looking them up\nin the XSAVE buffer. Since ARCH_SHSTK_SHSTK and user_ssp[SHSTK_EN] are\nset at the same time, the active check ensures that there will be\nsomething to find in the XSAVE buffer.\n\n[ dhansen: changelog/subject tweaks ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21632",
"url": "https://www.suse.com/security/cve/CVE-2025-21632"
},
{
"category": "external",
"summary": "SUSE Bug 1236106 for CVE-2025-21632",
"url": "https://bugzilla.suse.com/1236106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2025-21632"
},
{
"cve": "CVE-2025-21645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it\n\nWakeup for IRQ1 should be disabled only in cases where i8042 had\nactually enabled it, otherwise \"wake_depth\" for this IRQ will try to\ndrop below zero and there will be an unpleasant WARN() logged:\n\nkernel: atkbd serio0: Disabling IRQ1 wakeup source to avoid platform firmware bug\nkernel: ------------[ cut here ]------------\nkernel: Unbalanced IRQ 1 wake disable\nkernel: WARNING: CPU: 10 PID: 6431 at kernel/irq/manage.c:920 irq_set_irq_wake+0x147/0x1a0\n\nThe PMC driver uses DEFINE_SIMPLE_DEV_PM_OPS() to define its dev_pm_ops\nwhich sets amd_pmc_suspend_handler() to the .suspend, .freeze, and\n.poweroff handlers. i8042_pm_suspend(), however, is only set as\nthe .suspend handler.\n\nFix the issue by call PMC suspend handler only from the same set of\ndev_pm_ops handlers as i8042_pm_suspend(), which currently means just\nthe .suspend handler.\n\nTo reproduce this issue try hibernating (S4) the machine after a fresh boot\nwithout putting it into s2idle first.\n\n[ij: edited the commit message.]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21645",
"url": "https://www.suse.com/security/cve/CVE-2025-21645"
},
{
"category": "external",
"summary": "SUSE Bug 1236131 for CVE-2025-21645",
"url": "https://bugzilla.suse.com/1236131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2025-21645"
},
{
"cve": "CVE-2025-21646",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21646"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix the maximum cell name length\n\nThe kafs filesystem limits the maximum length of a cell to 256 bytes, but a\nproblem occurs if someone actually does that: kafs tries to create a\ndirectory under /proc/net/afs/ with the name of the cell, but that fails\nwith a warning:\n\n WARNING: CPU: 0 PID: 9 at fs/proc/generic.c:405\n\nbecause procfs limits the maximum filename length to 255.\n\nHowever, the DNS limits the maximum lookup length and, by extension, the\nmaximum cell name, to 255 less two (length count and trailing NUL).\n\nFix this by limiting the maximum acceptable cellname length to 253. This\nalso allows us to be sure we can create the \"/afs/.\u003ccell\u003e/\" mountpoint too.\n\nFurther, split the YFS VL record cell name maximum to be the 256 allowed by\nthe protocol and ignore the record retrieved by YFSVL.GetCellName if it\nexceeds 253.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21646",
"url": "https://www.suse.com/security/cve/CVE-2025-21646"
},
{
"category": "external",
"summary": "SUSE Bug 1236168 for CVE-2025-21646",
"url": "https://bugzilla.suse.com/1236168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2025-21646"
},
{
"cve": "CVE-2025-21649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when 1588 is sent on HIP08 devices\n\nCurrently, HIP08 devices does not register the ptp devices, so the\nhdev-\u003eptp is NULL. But the tx process would still try to set hardware time\nstamp info with SKBTX_HW_TSTAMP flag and cause a kernel crash.\n\n[ 128.087798] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n...\n[ 128.280251] pc : hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.286600] lr : hclge_ptp_set_tx_info+0x20/0x140 [hclge]\n[ 128.292938] sp : ffff800059b93140\n[ 128.297200] x29: ffff800059b93140 x28: 0000000000003280\n[ 128.303455] x27: ffff800020d48280 x26: ffff0cb9dc814080\n[ 128.309715] x25: ffff0cb9cde93fa0 x24: 0000000000000001\n[ 128.315969] x23: 0000000000000000 x22: 0000000000000194\n[ 128.322219] x21: ffff0cd94f986000 x20: 0000000000000000\n[ 128.328462] x19: ffff0cb9d2a166c0 x18: 0000000000000000\n[ 128.334698] x17: 0000000000000000 x16: ffffcf1fc523ed24\n[ 128.340934] x15: 0000ffffd530a518 x14: 0000000000000000\n[ 128.347162] x13: ffff0cd6bdb31310 x12: 0000000000000368\n[ 128.353388] x11: ffff0cb9cfbc7070 x10: ffff2cf55dd11e02\n[ 128.359606] x9 : ffffcf1f85a212b4 x8 : ffff0cd7cf27dab0\n[ 128.365831] x7 : 0000000000000a20 x6 : ffff0cd7cf27d000\n[ 128.372040] x5 : 0000000000000000 x4 : 000000000000ffff\n[ 128.378243] x3 : 0000000000000400 x2 : ffffcf1f85a21294\n[ 128.384437] x1 : ffff0cb9db520080 x0 : ffff0cb9db500080\n[ 128.390626] Call trace:\n[ 128.393964] hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.399893] hns3_nic_net_xmit+0x39c/0x4c4 [hns3]\n[ 128.405468] xmit_one.constprop.0+0xc4/0x200\n[ 128.410600] dev_hard_start_xmit+0x54/0xf0\n[ 128.415556] sch_direct_xmit+0xe8/0x634\n[ 128.420246] __dev_queue_xmit+0x224/0xc70\n[ 128.425101] dev_queue_xmit+0x1c/0x40\n[ 128.429608] ovs_vport_send+0xac/0x1a0 [openvswitch]\n[ 128.435409] do_output+0x60/0x17c [openvswitch]\n[ 128.440770] do_execute_actions+0x898/0x8c4 [openvswitch]\n[ 128.446993] ovs_execute_actions+0x64/0xf0 [openvswitch]\n[ 128.453129] ovs_dp_process_packet+0xa0/0x224 [openvswitch]\n[ 128.459530] ovs_vport_receive+0x7c/0xfc [openvswitch]\n[ 128.465497] internal_dev_xmit+0x34/0xb0 [openvswitch]\n[ 128.471460] xmit_one.constprop.0+0xc4/0x200\n[ 128.476561] dev_hard_start_xmit+0x54/0xf0\n[ 128.481489] __dev_queue_xmit+0x968/0xc70\n[ 128.486330] dev_queue_xmit+0x1c/0x40\n[ 128.490856] ip_finish_output2+0x250/0x570\n[ 128.495810] __ip_finish_output+0x170/0x1e0\n[ 128.500832] ip_finish_output+0x3c/0xf0\n[ 128.505504] ip_output+0xbc/0x160\n[ 128.509654] ip_send_skb+0x58/0xd4\n[ 128.513892] udp_send_skb+0x12c/0x354\n[ 128.518387] udp_sendmsg+0x7a8/0x9c0\n[ 128.522793] inet_sendmsg+0x4c/0x8c\n[ 128.527116] __sock_sendmsg+0x48/0x80\n[ 128.531609] __sys_sendto+0x124/0x164\n[ 128.536099] __arm64_sys_sendto+0x30/0x5c\n[ 128.540935] invoke_syscall+0x50/0x130\n[ 128.545508] el0_svc_common.constprop.0+0x10c/0x124\n[ 128.551205] do_el0_svc+0x34/0xdc\n[ 128.555347] el0_svc+0x20/0x30\n[ 128.559227] el0_sync_handler+0xb8/0xc0\n[ 128.563883] el0_sync+0x160/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21649",
"url": "https://www.suse.com/security/cve/CVE-2025-21649"
},
{
"category": "external",
"summary": "SUSE Bug 1236143 for CVE-2025-21649",
"url": "https://bugzilla.suse.com/1236143"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2025-21649"
},
{
"cve": "CVE-2025-21650",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21650"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue\n\nThe TQP BAR space is divided into two segments. TQPs 0-1023 and TQPs\n1024-1279 are in different BAR space addresses. However,\nhclge_fetch_pf_reg does not distinguish the tqp space information when\nreading the tqp space information. When the number of TQPs is greater\nthan 1024, access bar space overwriting occurs.\nThe problem of different segments has been considered during the\ninitialization of tqp.io_base. Therefore, tqp.io_base is directly used\nwhen the queue is read in hclge_fetch_pf_reg.\n\nThe error message:\n\nUnable to handle kernel paging request at virtual address ffff800037200000\npc : hclge_fetch_pf_reg+0x138/0x250 [hclge]\nlr : hclge_get_regs+0x84/0x1d0 [hclge]\nCall trace:\n hclge_fetch_pf_reg+0x138/0x250 [hclge]\n hclge_get_regs+0x84/0x1d0 [hclge]\n hns3_get_regs+0x2c/0x50 [hns3]\n ethtool_get_regs+0xf4/0x270\n dev_ethtool+0x674/0x8a0\n dev_ioctl+0x270/0x36c\n sock_do_ioctl+0x110/0x2a0\n sock_ioctl+0x2ac/0x530\n __arm64_sys_ioctl+0xa8/0x100\n invoke_syscall+0x4c/0x124\n el0_svc_common.constprop.0+0x140/0x15c\n do_el0_svc+0x30/0xd0\n el0_svc+0x1c/0x2c\n el0_sync_handler+0xb0/0xb4\n el0_sync+0x168/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21650",
"url": "https://www.suse.com/security/cve/CVE-2025-21650"
},
{
"category": "external",
"summary": "SUSE Bug 1236144 for CVE-2025-21650",
"url": "https://bugzilla.suse.com/1236144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2025-21650"
},
{
"cve": "CVE-2025-21651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: don\u0027t auto enable misc vector\n\nCurrently, there is a time window between misc irq enabled\nand service task inited. If an interrupte is reported at\nthis time, it will cause warning like below:\n\n[ 16.324639] Call trace:\n[ 16.324641] __queue_delayed_work+0xb8/0xe0\n[ 16.324643] mod_delayed_work_on+0x78/0xd0\n[ 16.324655] hclge_errhand_task_schedule+0x58/0x90 [hclge]\n[ 16.324662] hclge_misc_irq_handle+0x168/0x240 [hclge]\n[ 16.324666] __handle_irq_event_percpu+0x64/0x1e0\n[ 16.324667] handle_irq_event+0x80/0x170\n[ 16.324670] handle_fasteoi_edge_irq+0x110/0x2bc\n[ 16.324671] __handle_domain_irq+0x84/0xfc\n[ 16.324673] gic_handle_irq+0x88/0x2c0\n[ 16.324674] el1_irq+0xb8/0x140\n[ 16.324677] arch_cpu_idle+0x18/0x40\n[ 16.324679] default_idle_call+0x5c/0x1bc\n[ 16.324682] cpuidle_idle_call+0x18c/0x1c4\n[ 16.324684] do_idle+0x174/0x17c\n[ 16.324685] cpu_startup_entry+0x30/0x6c\n[ 16.324687] secondary_start_kernel+0x1a4/0x280\n[ 16.324688] ---[ end trace 6aa0bff672a964aa ]---\n\nSo don\u0027t auto enable misc vector when request irq..",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21651",
"url": "https://www.suse.com/security/cve/CVE-2025-21651"
},
{
"category": "external",
"summary": "SUSE Bug 1236145 for CVE-2025-21651",
"url": "https://bugzilla.suse.com/1236145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2025-21651"
},
{
"cve": "CVE-2025-21656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur\n\nscsi_execute_cmd() function can return both negative (linux codes) and\npositive (scsi_cmnd result field) error codes.\n\nCurrently the driver just passes error codes of scsi_execute_cmd() to\nhwmon core, which is incorrect because hwmon only checks for negative\nerror codes. This leads to hwmon reporting uninitialized data to\nuserspace in case of SCSI errors (for example if the disk drive was\ndisconnected).\n\nThis patch checks scsi_execute_cmd() output and returns -EIO if it\u0027s\nerror code is positive.\n\n[groeck: Avoid inline variable declaration for portability]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21656",
"url": "https://www.suse.com/security/cve/CVE-2025-21656"
},
{
"category": "external",
"summary": "SUSE Bug 1236248 for CVE-2025-21656",
"url": "https://bugzilla.suse.com/1236248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "low"
}
],
"title": "CVE-2025-21656"
},
{
"cve": "CVE-2025-21662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix variable not being completed when function returns\n\nWhen cmd_alloc_index(), fails cmd_work_handler() needs\nto complete ent-\u003eslotted before returning early.\nOtherwise the task which issued the command may hang:\n\n mlx5_core 0000:01:00.0: cmd_work_handler:877:(pid 3880418): failed to allocate command entry\n INFO: task kworker/13:2:4055883 blocked for more than 120 seconds.\n Not tainted 4.19.90-25.44.v2101.ky10.aarch64 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n kworker/13:2 D 0 4055883 2 0x00000228\n Workqueue: events mlx5e_tx_dim_work [mlx5_core]\n Call trace:\n __switch_to+0xe8/0x150\n __schedule+0x2a8/0x9b8\n schedule+0x2c/0x88\n schedule_timeout+0x204/0x478\n wait_for_common+0x154/0x250\n wait_for_completion+0x28/0x38\n cmd_exec+0x7a0/0xa00 [mlx5_core]\n mlx5_cmd_exec+0x54/0x80 [mlx5_core]\n mlx5_core_modify_cq+0x6c/0x80 [mlx5_core]\n mlx5_core_modify_cq_moderation+0xa0/0xb8 [mlx5_core]\n mlx5e_tx_dim_work+0x54/0x68 [mlx5_core]\n process_one_work+0x1b0/0x448\n worker_thread+0x54/0x468\n kthread+0x134/0x138\n ret_from_fork+0x10/0x18",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21662",
"url": "https://www.suse.com/security/cve/CVE-2025-21662"
},
{
"category": "external",
"summary": "SUSE Bug 1236198 for CVE-2025-21662",
"url": "https://bugzilla.suse.com/1236198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.12.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.12.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.12.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-29T16:11:29Z",
"details": "moderate"
}
],
"title": "CVE-2025-21662"
}
]
}
SUSE-SU-2025:20248-1
Vulnerability from csaf_suse - Published: 2025-03-27 14:32 - Updated: 2025-03-27 14:32Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).
- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).
- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-44996: vsock: fix recursive ->recvmsg calls (bsc#1230205).
- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).
- CVE-2024-49948: net: add more sanity checks to qdisc_pkt_len_init() (bsc#1232161).
- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).
- CVE-2024-49978: gso: fix udp gso fraglist segmentation after pull from frag_list (bsc#1232101).
- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).
- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized
delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).
- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).
- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).
- CVE-2024-53099: bpf: Check validity of link->type in bpf_link_show_fdinfo() (bsc#1233772).
- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).
- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).
- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)
- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).
- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).
- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).
- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).
- CVE-2024-53187: io_uring: check for overflows in io_pin_pages (bsc#1234947).
- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).
- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).
- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).
- CVE-2024-53203: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() (bsc#1235001).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).
- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).
- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).
- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).
- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).
- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).
- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).
- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).
- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).
- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).
- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).
- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).
- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).
- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).
- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).
- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).
- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).
- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).
- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).
- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).
- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56608: drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create' (bsc#1235487).
- CVE-2024-56610: kcsan: Turn report_filterlist_lock into a raw_spinlock (bsc#1235390).
- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).
- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).
- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).
- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).
- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).
- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).
- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).
- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).
- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).
- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).
- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).
- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).
- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).
- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).
- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).
- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).
- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).
- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).
- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).
- CVE-2024-56665: bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog (bsc#1235489).
- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).
- CVE-2024-56679: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (bsc#1235498).
- CVE-2024-56693: brd: defer automatic disk creation until module initialization succeeds (bsc#1235418).
- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).
- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).
- CVE-2024-56707: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c (bsc#1235545).
- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).
- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).
- CVE-2024-56715: ionic: Fix netdev notifier unregister on failure (bsc#1235612).
- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).
- CVE-2024-56725: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c (bsc#1235578).
- CVE-2024-56726: octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (bsc#1235582).
- CVE-2024-56727: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c (bsc#1235583).
- CVE-2024-56728: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (bsc#1235656).
- CVE-2024-56729: smb: Initialize cfid->tcon before performing network ops (bsc#1235503).
- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).
- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).
- CVE-2024-56763: tracing: Prevent bad count for tracing_cpumask_write (bsc#1235638).
- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).
- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).
- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).
- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).
- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).
- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).
- CVE-2024-57802: netrom: check buffer length before accessing it (bsc#1235941).
- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).
- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).
- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).
- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).
- CVE-2024-57884: mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (bsc#1235948).
- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).
- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).
- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).
- CVE-2024-57917: topology: Keep the cpumask unchanged when printing cpumap (bsc#1236127).
- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).
- CVE-2024-57931: selinux: ignore unknown extended permissions (bsc#1236192).
- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).
- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).
- CVE-2024-57938: net/sctp: Prevent autoclose integer overflow in sctp_association_init() (bsc#1236182).
- CVE-2024-57946: virtio-blk: do not keep queue frozen during system suspend (bsc#1236247).
- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before "getting" registers (bsc#1236106).
- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).
- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).
- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).
- CVE-2025-21652: ipvlan: Fix use-after-free in ipvlan_get_iflink() (bsc#1236160).
- CVE-2025-21653: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute (bsc#1236161).
- CVE-2025-21655: io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period (bsc#1236163).
- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).
- CVE-2025-21663: net: stmmac: dwmac-tegra: Read iommu stream id from device tree (bsc#1236260).
- CVE-2025-21664: dm thin: make get_first_thin use rcu-safe list first function (bsc#1236262).
- CVE-2025-21674: net/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel (bsc#1236688).
- CVE-2025-21676: net: fec: handle page_pool_dev_alloc_pages error (bsc#1236696).
- CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref (bsc#1236703).
The following non-security bugs were fixed:
- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).
- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).
- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).
- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).
- ACPI: fan: cleanup resources in the error path of .probe() (git-fixes).
- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).
- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).
- ACPI: resource: Fix memory resource type union access (git-fixes).
- ACPI: resource: acpi_dev_irq_override(): Check DMI match last (stable-fixes).
- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).
- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).
- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).
- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).
- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).
- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).
- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).
- ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31 laptop (git-fixes).
- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).
- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).
- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).
- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).
- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14s-fq1xxx (stable-fixes).
- ALSA: hda/realtek: Enable headset mic on Positivo C6400 (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).
- ALSA: hda/realtek: Workaround for resume on Dell Venue 11 Pro 7130 (bsc#1235686).
- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).
- ALSA: hda: Fix headset detection failure due to unstable sort (git-fixes).
- ALSA: line6: Fix racy access to midibuf (stable-fixes).
- ALSA: seq: Check UMP support for midi_version change (git-fixes).
- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).
- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).
- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).
- ALSA: seq: ump: Use guard() for locking (stable-fixes).
- ALSA: ump: Use guard() for locking (stable-fixes).
- ALSA: usb-audio: Add delay quirk for USB Audio Device (stable-fixes).
- ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro (stable-fixes).
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).
- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).
- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).
- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).
- ASoC: Intel: avs: Fix theoretical infinite loop (git-fixes).
- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).
- ASoC: SOF: Remove libraries from topology lookups (git-fixes).
- ASoC: acp: Support microphone from Lenovo Go S (stable-fixes).
- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).
- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).
- ASoC: amd: yc: Fix the wrong return value (git-fixes).
- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).
- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).
- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).
- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).
- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).
- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).
- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).
- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).
- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).
- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).
- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).
- ASoC: nau8822: Lower debug print priority (stable-fixes).
- ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback (git-fixes).
- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).
- ASoC: samsung: Add missing depends on I2C (git-fixes).
- ASoC: samsung: Add missing selects for MFD_WM8994 (stable-fixes).
- ASoC: sun4i-spdif: Add clock multiplier settings (git-fixes).
- ASoC: wm8994: Add depends on MFD core (stable-fixes).
- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).
- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).
- Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection (git-fixes).
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).
- Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc (git-fixes).
- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).
- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).
- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).
- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).
- Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming (git-fixes).
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).
- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).
- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).
- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).
- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).
- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).
- Bluetooth: iso: Fix recursive locking warning (git-fixes).
- Delete XHCI patch for regression (bsc#1235550)
- Disable ceph (jsc#PED-7242)
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- Drop downstream TPM fix patch (bsc#1233260 bsc#1233259 bsc#1232421)
- Drop uvcvideo fix due to regression (bsc#1235894)
- EDAC/{i10nm,skx,skx_common}: Support UV systems (bsc#1234693).
- HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections (git-fixes).
- HID: fix generic desktop D-Pad controls (git-fixes).
- HID: hid-sensor-hub: do not use stale platform-data on remove (git-fixes).
- HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check (git-fixes).
- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).
- HID: multitouch: fix support for Goodix PID 0x01e9 (git-fixes).
- Input: atkbd - map F23 key to support default copilot shortcut (stable-fixes).
- Input: bbnsm_pwrkey - add remove hook (git-fixes).
- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).
- Input: davinci-keyscan - remove leftover header (git-fixes).
- Input: xpad - add QH Electronics VID/PID (stable-fixes).
- Input: xpad - add support for Nacon Evol-X Xbox One Controller (stable-fixes).
- Input: xpad - add support for Nacon Pro Compact (stable-fixes).
- Input: xpad - add support for wooting two he (arm) (stable-fixes).
- Input: xpad - add unofficial Xbox 360 wireless receiver clone (stable-fixes).
- Input: xpad - improve name of 8BitDo controller 2dc8:3106 (stable-fixes).
- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).
- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).
- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).
- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).
- NFC: nci: Add bounds checking in nci_hci_create_pipe() (git-fixes).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Async COPY result needs to return a write verifier (git-fixes).
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: Remove a never-true comparison (git-fixes).
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (git-fixes).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- NFSv4.2: fix COPY_NOTIFY xdr buf size calculation (git-fixes).
- NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE (git-fixes).
- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).
- PCI/AER: Disable AER service on suspend (stable-fixes).
- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (stable-fixes).
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).
- PCI: Add T_PERST_CLK_US macro (git-fixes).
- PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 (git-fixes).
- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).
- PCI: Fix use-after-free of slot->bus on hot remove (stable-fixes).
- PCI: Use preserve_config in place of pci_flags (stable-fixes).
- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).
- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).
- PCI: dwc: Always stop link in the dw_pcie_suspend_noirq (git-fixes).
- PCI: dwc: ep: Prevent changing BAR size/flags in pci_epc_set_bar() (git-fixes).
- PCI: dwc: ep: Write BAR_MASK before iATU registers in pci_epc_set_bar() (git-fixes).
- PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy() (git-fixes).
- PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf() (git-fixes).
- PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test (git-fixes).
- PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error (git-fixes).
- PCI: imx6: Deassert apps_reset in imx_pcie_deassert_core_reset() (git-fixes).
- PCI: imx6: Skip controller_id generation logic for i.MX7D (git-fixes).
- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).
- PCI: j721e: Add per platform maximum lane settings (stable-fixes).
- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).
- PCI: j721e: Add suspend and resume support (git-fixes).
- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).
- PCI: microchip: Set inbound address translation for coherent or non-coherent mode (git-fixes).
- PCI: qcom: Add support for IPQ9574 (stable-fixes).
- PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region() (git-fixes).
- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).
- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).
- PM: hibernate: Add error handling for syscore_suspend() (git-fixes).
- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).
- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)
- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)
- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)
- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)
- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)
- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)
- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)
- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)
- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)
- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)
- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)
- RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error (git-fixes)
- RDMA/bnxt_re: Fix to export port num to ib_query_qp (git-fixes)
- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)
- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)
- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)
- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)
- RDMA/mlx4: Avoid false error about access to uninitialized gids array (git-fixes)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)
- RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error (git-fixes)
- RDMA/mlx5: Fix implicit ODP use after free (git-fixes)
- RDMA/mlx5: Fix indirect mkey ODP page count (git-fixes)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (git-fixes)
- RDMA/rxe: Fix mismatched max_msg_sz (git-fixes)
- RDMA/rxe: Fix the warning "__rxe_cleanup+0x12c/0x170 [rdma_rxe]" (git-fixes)
- RDMA/srp: Fix error handling in srp_add_port (git-fixes)
- RDMA/uverbs: Prevent integer overflow issue (git-fixes)
- Revert "HID: multitouch: Add support for lenovo Y9000P Touchpad" (stable-fixes).
- Revert "block/mq-deadline: use correct way to throttling write requests" (bsc#1234146).
- Revert "btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)"
- Revert "drm/i915/dpt: Make DPT object unshrinkable" (stable-fixes).
- Revert "igb: Disable threaded IRQ for igb_msix_other" (git-fixes).
- Revert "mm, kmsan: fix infinite recursion due to RCU critical section" (bsc#1230413)
- Revert "mm/sparsemem: fix race in accessing memory_section->usage" (bsc#1230413)
- Revert "mm: prevent derefencing NULL ptr in pfn_section_valid()" (bsc#1230413)
- Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (git-fixes).
- Revert "unicode: Do not special case ignorable code points" (stable-fixes).
- Revert "usb: gadget: u_serial: Disable ep before setting port to null
to fix the crash caused by port being null" (stable-fixes).
- Revert 'arm64: Kconfig: Make SME depend on BROKEN for now'
- Revert 0dd78566990 ("Disable ceph (jsc#PED-7242)")
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).
- USB: core: Disable LPM only for non-suspended ports (git-fixes).
- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).
- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).
- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).
- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).
- USB: serial: option: add Neoway N723-EA support (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).
- USB: serial: option: add TCL IK512 MBIM & ECM (stable-fixes).
- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).
- USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() (git-fixes).
- USB: usblp: return error when setting unsupported protocol (git-fixes).
- VFS: use system_unbound_wq for delayed_mntput (bsc#1234683).
- VMCI: fix reference to ioctl-number.rst (git-fixes).
- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).
- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).
- accel/habanalabs: fix debugfs files permissions (stable-fixes).
- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).
- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).
- afs: Automatically generate trace tag enums (git-fixes).
- afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY (git-fixes).
- afs: Fix cleanup of immediately failed async calls (git-fixes).
- afs: Fix directory format encoding struct (git-fixes).
- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).
- afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call (git-fixes).
- afs: Fix the maximum cell name length (git-fixes).
- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).
- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).
- arch: Remove cmpxchg_double (bsc#1220773).
- arch: consolidate arch_irq_work_raise prototypes (git-fixes).
- arm64/sme: Move storage of reg_smidr to __cpuinfo_store_cpu() (git-fixes)
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- arm64: Filter out SVE hwcaps when FEAT_SVE isn't implemented (git-fixes)
- arm64: Force position-independent veneers (git-fixes).
- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes bsc#1236245)
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- arm64: dts: rockchip: Add sdmmc/sdio/emmc reset controls for RK3328 (git-fixes)
- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).
- arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma (git-fixes)
- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).
- arm64: tegra: Disable Tegra234 sce-fabric node (git-fixes)
- arm64: tegra: Fix Tegra234 PCIe interrupt-map (git-fixes)
- arm64: tegra: Fix typo in Tegra234 dce-fabric compatible (git-fixes)
- ata: libata-core: Set ATA_QCFLAG_RTF_FILLED in fill_result_tf() (stable-fixes).
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).
- batman-adv: Do not send uninitialized TT changes (git-fixes).
- batman-adv: Remove uninitialized data in full table TT response (git-fixes).
- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).
- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).
- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).
- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).
- blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock required!" (bsc#1234140).
- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).
- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).
- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).
- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).
- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).
- block/mq-deadline: Fix the tag reservation code (bsc#1234148).
- block: Call .limit_depth() after .hctx has been set (bsc#1234148).
- block: Fix where bio IO priority gets set (bsc#1234145).
- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).
- block: update the stable_writes flag in bdev_add (bsc#1234141).
- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)
- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).
- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).
- bpf: verifier: prevent userspace memory access (git-fixes).
- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)
- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).
- bus: mhi: host: Free mhi_buf vector inside mhi_alloc_bhie_table() (git-fixes).
- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).
- can: j1939: fix error in J1939 documentation (stable-fixes).
- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).
- checkpatch: always parse orig_commit in fixes tag (git-fixes).
- checkpatch: check for missing Fixes tags (stable-fixes).
- cleanup: Add conditional guard support (stable-fixes).
- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).
- cleanup: Remove address space of returned pointer (git-fixes).
- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).
- clocksource/drivers:sp804: Make user selectable (git-fixes).
- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).
- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).
- cpufreq: ACPI: Fix max-frequency computation (git-fixes).
- cpufreq: Do not unregister cpufreq cooling on CPU hotplug (git-fixes).
- cpufreq: amd-pstate: remove global header file (git-fixes).
- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).
- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).
- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).
- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).
- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).
- cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock (git-fixes).
- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).
- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).
- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).
- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).
- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).
- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).
- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).
- cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing (git-fixes).
- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).
- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).
- cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back (git-fixes).
- cpuidle: Avoid potential overflow in integer multiplication (git-fixes).
- cpupower: fix TSC MHz calculation (git-fixes).
- crypto: caam - use JobR's space to access page 0 regs (git-fixes).
- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).
- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).
- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).
- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).
- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).
- crypto: iaa - Fix IAA disabling that occurs when sync_mode is set to 'async' (git-fixes).
- crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto() (git-fixes).
- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).
- crypto: qce - fix goto jump in error path (git-fixes).
- crypto: qce - fix priority to be less than ARMv8 CE (git-fixes).
- crypto: qce - unregister previously registered algos in error path (git-fixes).
- crypto: x86/sha256 - Add parentheses around macros' single arguments (stable-fixes).
- cyrpto/b128ops: Remove struct u128 (bsc#1220773).
- devcoredump: cleanup some comments (git-fixes).
- devlink: Fix length of eswitch inline-mode (git-fixes).
- dlm: fix possible lkb_resource null dereference (git-fixes).
- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).
- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).
- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).
- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).
- dmaengine: tegra: Return correct DMA status when paused (git-fixes).
- dmaengine: ti: edma: fix OF node reference leaks in edma_driver (git-fixes).
- docs: media: update location of the media patches (stable-fixes).
- docs: power: Fix footnote reference for Toshiba Satellite P10-554 (git-fixes).
- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).
- driver core: class: Fix wild pointer dereferences in API class_dev_iter_next() (git-fixes).
- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).
- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).
- drivers/card_reader/rtsx_usb: Restore interrupt based detection (git-fixes).
- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).
- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).
- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).
- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).
- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).
- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).
- drm/amd/display: Fix DSC-re-computing (stable-fixes).
- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).
- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).
- drm/amd/display: Use HW lock mgr for PSR1 (stable-fixes).
- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).
- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).
- drm/amd/pm: Fix an error handling path in vega10_enable_se_edc_force_stall_config() (git-fixes).
- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).
- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).
- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).
- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).
- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).
- drm/amdgpu/pm: Remove gpu_od if it's an empty directory (stable-fixes).
- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).
- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).
- drm/amdgpu/vcn: reset fw_shared under SRIOV (git-fixes).
- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).
- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).
- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).
- drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table (git-fixes).
- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).
- drm/amdgpu: always sync the GFX pipe on ctx switch (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).
- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).
- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
- drm/amdgpu: do not access invalid sched (git-fixes).
- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
- drm/amdgpu: fix usage slab after free (stable-fixes).
- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).
- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).
- drm/amdgpu: simplify return statement in amdgpu_ras_eeprom_init (git-fixes).
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).
- drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini() (git-fixes).
- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).
- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
- drm/amdkfd: Use device based logging for errors (stable-fixes).
- drm/amdkfd: Use the correct wptr size (stable-fixes).
- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).
- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).
- drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE (git-fixes).
- drm/bridge: it6505: Enable module autoloading (stable-fixes).
- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).
- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).
- drm/display: Fix building with GCC 15 (stable-fixes).
- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).
- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).
- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).
- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).
- drm/etnaviv: Fix page property being used for non writecombine buffers (git-fixes).
- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).
- drm/i915/dg1: Fix power gate sequence (git-fixes).
- drm/i915/fb: Relax clear color alignment to 64 bytes (stable-fixes).
- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).
- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).
- drm/mcde: Enable module autoloading (stable-fixes).
- drm/mediatek: Add return value check when reading DPCD (git-fixes).
- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).
- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).
- drm/mediatek: Fix mode valid issue for dp (git-fixes).
- drm/mediatek: Set private->all_drm_private[i]->drm to NULL if mtk_drm_bind returns err (git-fixes).
- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).
- drm/mediatek: stop selecting foreign drivers (git-fixes).
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).
- drm/msm/dp: set safe_to_exit_level before printing it (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8150 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8250 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8350 (git-fixes).
- drm/msm/dpu: link DSPP_2/_3 blocks on SM8550 (git-fixes).
- drm/msm: Check return value of of_dma_configure() (git-fixes).
- drm/msm: do not clean up priv->kms prematurely (git-fixes).
- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).
- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).
- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).
- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).
- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).
- drm/radeon: change rdev->ddev to rdev_to_drm(rdev) (stable-fixes).
- drm/rcar-du: dsi: Fix PHY lock bit check (git-fixes).
- drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event() (git-fixes).
- drm/rockchip: vop2: Check linear format for Cluster windows on rk3566/8 (git-fixes).
- drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters offset (git-fixes).
- drm/rockchip: vop2: Fix the mixer alpha setup for layer 0 (git-fixes).
- drm/sched: memset() 'job' in drm_sched_job_init() (stable-fixes).
- drm/tidss: Clear the interrupt status for interrupts being disabled (git-fixes).
- drm/tidss: Fix issue in irq handling causing irq-flood issue (git-fixes).
- drm/v3d: Assign job pointer to NULL before signaling the fence (git-fixes).
- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).
- drm/v3d: Stop active perfmon if it is being destroyed (git-fixes).
- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).
- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).
- drm/vmwgfx: Add new keep_resv BO param (git-fixes).
- drm: adv7511: Drop dsi single lane support (git-fixes).
- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).
- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- erofs: avoid debugging output for (de)compressed data (git-fixes).
- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).
- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).
- exfat: fix the infinite loop in exfat_readdir() (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- ext4: add a new helper to check if es must be kept (bsc#1234170).
- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).
- ext4: add missed brelse in update_backups (bsc#1234171).
- ext4: allow for the last group to be marked as trimmed (bsc#1234278).
- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).
- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).
- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).
- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).
- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).
- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).
- ext4: check the extent status again before inserting delalloc block (bsc#1234186).
- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).
- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).
- ext4: correct best extent lstart adjustment logic (bsc#1234179).
- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).
- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).
- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).
- ext4: correct the start block of counting reserved clusters (bsc#1234169).
- ext4: do not let fstrim block system suspend (bsc#1234166).
- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).
- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).
- ext4: factor out a common helper to query extent map (bsc#1234186).
- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).
- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).
- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).
- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).
- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).
- ext4: fix potential unnitialized variable (bsc#1234183).
- ext4: fix race between writepages and remount (bsc#1234168).
- ext4: fix rec_len verify error (bsc#1234167).
- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).
- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).
- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).
- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).
- ext4: make ext4_es_insert_extent() return void (bsc#1234170).
- ext4: make ext4_es_remove_extent() return void (bsc#1234170).
- ext4: make ext4_zeroout_es() return void (bsc#1234170).
- ext4: make sure allocate pending entry not fail (bsc#1234170).
- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).
- ext4: move 'ix' sanity check to corrent position (bsc#1234174).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).
- ext4: nested locking for xattr inode (bsc#1234189).
- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).
- ext4: refactor ext4_da_map_blocks() (bsc#1234178).
- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).
- ext4: remove the redundant folio_wait_stable() (bsc#1234184).
- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).
- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).
- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).
- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).
- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).
- fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device() (git-fixes).
- filemap: Fix bounds checking in filemap_read() (bsc#1234209).
- filemap: add a per-mapping stable writes flag (bsc#1234141).
- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).
- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).
- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).
- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).
- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).
- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).
- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).
- genirq: Make handle_enforce_irqctx() unconditionally available (git-fixes).
- genksyms: fix memory leak when the same symbol is added from source (git-fixes).
- genksyms: fix memory leak when the same symbol is read from *.symref file (git-fixes).
- gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (git-fixes).
- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (stable-fixes).
- gpio: mxc: remove dead code after switch to DT-only (git-fixes).
- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- hvc/xen: fix console unplug (git-fixes).
- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).
- hvc/xen: fix event channel handling for secondary consoles (git-fixes).
- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).
- hwmon: (drivetemp) Set scsi command timeout to 10s (stable-fixes).
- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).
- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).
- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).
- hwmon: (tmp513) Do not use "proxy" headers (stable-fixes).
- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).
- hwmon: (tmp513) Fix division of negative numbers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).
- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).
- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).
- hyperv: Do not overlap the hvcall IO areas in get_vtl() (git-fixes).
- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).
- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).
- i2c: i801: Add support for Intel Panther Lake (stable-fixes).
- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).
- i2c: microchip-core: actually use repeated sends (git-fixes).
- i2c: microchip-core: fix "ghost" detections (git-fixes).
- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).
- i2c: pnx: Fix timeout in wait functions (git-fixes).
- i2c: rcar: fix NACK handling when being a target (git-fixes).
- i2c: riic: Always round-up when calculating bus period (git-fixes).
- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).
- i40e: Fix handling changed priv flags (git-fixes).
- i915/guc: Accumulate active runtime on gt reset (git-fixes).
- i915/guc: Ensure busyness counter increases motonically (git-fixes).
- i915/guc: Reset engine utilization buffer before registration (git-fixes).
- ibmvnic: Free any outstanding tx skbs during scrq reset (bsc#1226980).
- ice: Unbind the workqueue (bsc#1234989)
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).
- ice: fix PHY Clock Recovery availability check (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).
- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).
- iio: adc: ad7124: Disable all channels at probe time (git-fixes).
- iio: adc: ad_sigma_delta: Handle CS assertion as intended in ad_sd_read_reg_raw() (git-fixes).
- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).
- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).
- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).
- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).
- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).
- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).
- iio: iio-mux: kzalloc instead of devm_kzalloc to ensure page alignment (git-fixes).
- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).
- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).
- iio: light: as73211: fix channel handling in only-color triggered buffer (git-fixes).
- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).
- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).
- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).
- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).
- instrumentation: Wire up cmpxchg128() (bsc#1220773).
- intel_th: core: fix kernel-doc warnings (git-fixes).
- io_uring/rw: avoid punting to io-wq directly (git-fixes).
- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).
- io_uring: Fix registered ring file refcount leak (git-fixes).
- io_uring: always lock __io_cqring_overflow_flush (git-fixes).
- io_uring: check if iowq is killed before queuing (git-fixes).
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).
- ipmi: ipmb: Add check devm_kasprintf() returned value (git-fixes).
- ipmi: ssif_bmc: Fix new request loss when bmc ready for a response (git-fixes).
- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).
- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).
- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).
- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).
- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).
- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kABI workaround for struct auto_pin_cfg_item change (git-fixes).
- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).
- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)
- kasan: make report_lock a raw spinlock (git-fixes).
- kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST (git-fixes).
- kdb: Fix buffer overflow during tab-complete (bsc#1234652).
- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).
- kdb: Merge identical case statements in kdb_read() (bsc#1234657).
- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).
- kdb: Use format-strings rather than '\0' injection in kdb_read() (bsc#1234654).
- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).
- kdb: address -Wformat-security warnings (bsc#1234659).
- kgdb: Flush console before entering kgdb on panic (bsc#1234651).
- kheaders: Ignore silly-rename files (stable-fixes).
- ktest.pl: Avoid false positives with grub2 skip regex (stable-fixes).
- ktest.pl: Check kernelrelease return in get_version (git-fixes).
- ktest.pl: Fix typo "accesing" (git-fixes).
- ktest.pl: Fix typo in comment (git-fixes).
- ktest.pl: Remove unused declarations in run_bisect_test function (git-fixes).
- ktest: force $buildonly = 1 for 'make_warnings_file' test type (stable-fixes).
- landlock: Handle weird files (git-fixes).
- latencytop: use correct kernel-doc format for func params (git-fixes).
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (stable-fixes).
- leds: lp8860: Write full EEPROM, not only half of it (git-fixes).
- leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata() (git-fixes).
- lib/inflate.c: remove dead code (git-fixes).
- lib/stackdepot: print disabled message only if truly disabled (git-fixes).
- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).
- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).
- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).
- mac80211: fix user-power when emulating chanctx (stable-fixes).
- mac802154: check local interfaces before deleting sdata list (stable-fixes).
- mailbox: pcc: Add support for platform notification handling (stable-fixes).
- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).
- mailbox: tegra-hsp: Clear mailbox before using message (git-fixes).
- maple_tree: simplify split calculation (git-fixes).
- media: camif-core: Add check for clk_enable() (git-fixes).
- media: ccs: Clean up parsed CCS static data on parse failure (git-fixes).
- media: ccs: Fix CCS static data parsing for large block sizes (git-fixes).
- media: ccs: Fix cleanup order in ccs_probe() (git-fixes).
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).
- media: dvb-usb-v2: af9035: fix ISO C90 compilation error on af9035_i2c_master_xfer (git-fixes).
- media: i2c: imx412: Add missing newline to prints (git-fixes).
- media: i2c: ov9282: Correct the exposure offset (git-fixes).
- media: imx-jpeg: Fix potential error pointer dereference in detach_pm() (git-fixes).
- media: imx296: Add standby delay during probe (git-fixes).
- media: lmedm04: Handle errors for lme2510_int_read (git-fixes).
- media: marvell: Add check for clk_enable() (git-fixes).
- media: mc: fix endpoint iteration (git-fixes).
- media: mipi-csis: Add check for clk_enable() (git-fixes).
- media: nxp: imx8-isi: fix v4l2-compliance test errors (git-fixes).
- media: ov5640: fix get_light_freq on auto (git-fixes).
- media: rc: iguanair: handle timeouts (git-fixes).
- media: rkisp1: Fix unused value issue (git-fixes).
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).
- media: uvcvideo: Fix crash during unbind if gpio unit is in use (git-fixes).
- media: uvcvideo: Fix double free in error path (git-fixes).
- media: uvcvideo: Fix event flags in uvc_ctrl_send_events (git-fixes).
- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).
- media: uvcvideo: Only save async fh if success (git-fixes).
- media: uvcvideo: Propagate buf->error to userspace (git-fixes).
- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).
- media: uvcvideo: Remove dangling pointers (git-fixes).
- media: uvcvideo: Remove redundant NULL assignment (git-fixes).
- media: uvcvideo: Support partial control reads (git-fixes).
- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).
- memory-failure: use a folio in me_huge_page() (git-fixes).
- memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code() (git-fixes).
- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).
- misc: fastrpc: Deregister device nodes properly in error scenarios (git-fixes).
- misc: fastrpc: Fix copy buffer page size (git-fixes).
- misc: fastrpc: Fix registered buffer page address (git-fixes).
- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).
- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).
- misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors (git-fixes).
- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).
- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).
- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).
- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).
- mm/memory-failure: check the mapcount of the precise page (git-fixes).
- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).
- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).
- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).
- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).
- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).
- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).
- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).
- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).
- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).
- mm/migrate: putback split folios when numa hint migration fails (git-fixes).
- mm/migrate: split source folio if it is on deferred split list (git-fixes).
- mm/page_owner: remove free_ts from page_owner output (git-fixes).
- mm/readahead: do not allow order-1 folio (bsc#1234205).
- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).
- mm/rodata_test: use READ_ONCE() to read const variable (git-fixes).
- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).
- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).
- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).
- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).
- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).
- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).
- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).
- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).
- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).
- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).
- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).
- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).
- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).
- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).
- mtd: onenand: Fix uninitialized retlen in do_otp_read() (git-fixes).
- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).
- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).
- mtd: spinand: Remove write_enable_op() in markbad() (git-fixes).
- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).
- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).
- net/qed: allow old cards not supporting "num_images" to work (git-fixes).
- net/rose: prevent integer overflows in rose_setsockopt() (git-fixes).
- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset (git-fixes).
- net: rose: fix timer races against user threads (git-fixes).
- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).
- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).
- net: usb: rtl8150: enable basic endpoint checking (git-fixes).
- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).
- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).
- netfilter: nf_tables: validate family when identifying table via handle (bsc#1233778 ZDI-24-1454).
- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).
- nilfs2: fix possible int overflows in nilfs_fiemap() (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).
- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).
- nvme-tcp: Fix I/O queue cpu spreading for multiple controllers (git-fixes).
- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).
- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).
- nvme: Add error check for xa_store in nvme_get_effects_log (git-fixes).
- nvme: Add error path for xa_store in nvme_init_effects (git-fixes).
- nvme: apple: fix device reference counting (git-fixes).
- nvme: fix bogus kzalloc() return check in nvme_init_effects_log() (git-fixes).
- nvme: fix metadata handling in nvme-passthrough (git-fixes).
- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).
- nvmet: propagate npwg topology (git-fixes).
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).
- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).
- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).
- of: address: Report error on resource bounds overflow (stable-fixes).
- padata: add pd get/put refcnt helper (git-fixes).
- padata: avoid UAF for reorder_work (git-fixes).
- padata: fix UAF in padata_reorder (git-fixes).
- parisc: Raise minimal GCC version (bsc#1220773).
- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).
- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).
- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).
- percpu: Wire up cmpxchg128 (bsc#1220773).
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).
- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).
- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).
- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).
- phy: usb: Toggle the PHY power during init (git-fixes).
- pinctrl: amd: Take suspend type into consideration which pins are non-wake (git-fixes).
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).
- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).
- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).
- pinctrl: samsung: fix fwnode refcount cleanup if platform_get_irq_optional() fails (git-fixes).
- pinmux: Use sequential access to access desc->pinmux data (stable-fixes).
- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).
- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).
- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).
- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).
- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).
- platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing incorrect fan speed (stable-fixes).
- pm:cpupower: Add missing powercap_set_enabled() stub function (git-fixes).
- power: ip5xxx_power: Fix return value on ADC read errors (git-fixes).
- power: supply: gpio-charger: Fix set charge current limits (git-fixes).
- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).
- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).
- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).
- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).
- powerpc/pseries/eeh: Fix get PE state translation (bsc#1215199).
- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).
- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).
- pps: add an error check in parport_attach (git-fixes).
- pps: remove usage of the deprecated ida_simple_xx() API (stable-fixes).
- printk: Add is_printk_legacy_deferred() (bsc#1236733).
- printk: Defer legacy printing when holding printk_cpu_sync (bsc#1236733).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- pwm: stm32-lp: Add check for clk_enable() (git-fixes).
- pwm: stm32: Add check for clk_enable() (git-fixes).
- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).
- quota: explicitly forbid quota files from being encrypted (bsc#1234196).
- quota: flush quota_release_work upon quota writeback (bsc#1234195).
- quota: simplify drop_dquot_ref() (bsc#1234197).
- rcu-tasks: Pull sampling of ->percpu_dequeue_lim out of loop (git-fixes)
- rcu/tree: Defer setting of jiffies during stall reset (git-fixes)
- rcu: Dump memory object info if callback function is invalid (git-fixes)
- rcu: Eliminate rcu_gp_slow_unregister() false positive (git-fixes)
- rcuscale: Move rcu_scale_writer() (git-fixes)
- rdma/cxgb4: Prevent potential integer overflow on 32bit (git-fixes)
- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).
- regmap: Use correct format specifier for logging range errors (stable-fixes).
- regulator: core: Add missing newline character (git-fixes).
- regulator: of: Implement the unwind path of of_regulator_match() (git-fixes).
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).
- remoteproc: core: Fix ida_free call while not allocated (git-fixes).
- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).
- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read (git-fixes).
- rtc: zynqmp: Fix optional clock name property (git-fixes).
- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).
- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).
- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).
- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).
- s390/facility: Disable compile time optimization for decompressor code (git-fixes).
- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).
- s390/pageattr: Implement missing kernel_page_present() (git-fixes).
- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)
- samples/landlock: Fix possible NULL dereference in parse_path() (git-fixes).
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat (bsc#1235865).
- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat -kabi (bsc#1235865).
- sched/numa: fix memory leak due to the overwritten vma->numab_state (git fixes (sched/numa)).
- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).
- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).
- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).
- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).
- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).
- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).
- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).
- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).
- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).
- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).
- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).
- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).
- scsi: qla2xxx: Remove the unused 'del_list_entry' field in struct fc_port (bsc#1235406).
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).
- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (git-fixes).
- seccomp: Stub for !CONFIG_SECCOMP (stable-fixes).
- selftest: media_tests: fix trivial UAF typo (git-fixes).
- selftests/alsa: Fix circular dependency involving global-timer (stable-fixes).
- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).
- selftests/landlock: Fix error message (git-fixes).
- selftests/mm/cow: modify the incorrect checking parameters (git-fixes).
- selftests/powerpc: Fix argument order to timer_sub() (git-fixes).
- selftests: harness: fix printing of mismatch values in __EXPECT() (git-fixes).
- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).
- selftests: tc-testing: reduce rshift value (stable-fixes).
- selftests: timers: clocksource-switch: Adapt progress to kselftest framework (git-fixes).
- selinux: Fix SCTP error inconsistency in selinux_socket_bind() (git-fixes).
- serial: 8250: Adjust the timeout for FIFO mode (git-fixes).
- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).
- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).
- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).
- serial: 8250_fintek: Add support for F81216E (stable-fixes).
- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).
- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).
- serial: amba-pl011: Use port lock wrappers (stable-fixes).
- serial: amba-pl011: fix build regression (git-fixes).
- serial: do not use uninitialized value in uart_poll_init() (git-fixes).
- serial: imx: only set receiver level if it is zero (git-fixes).
- serial: imx: set receiver level before starting uart (git-fixes).
- serial: qcom-geni: Do not cancel/abort if we can't get the port lock (git-fixes).
- serial: qcom-geni: disable interrupts during console writes (git-fixes).
- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).
- serial: qcom-geni: fix console corruption (git-fixes).
- serial: qcom-geni: fix dma rx cancellation (git-fixes).
- serial: qcom-geni: fix false console tx restart (git-fixes).
- serial: qcom-geni: fix fifo polling timeout (git-fixes).
- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).
- serial: qcom-geni: fix polled console corruption (git-fixes).
- serial: qcom-geni: fix polled console initialisation (git-fixes).
- serial: qcom-geni: fix receiver enable (git-fixes).
- serial: qcom-geni: fix shutdown race (git-fixes).
- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).
- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).
- serial: qcom-geni: revert broken hibernation support (git-fixes).
- serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use (git-fixes).
- serial: sh-sci: Drop __initdata macro for port_cfg (git-fixes).
- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).
- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).
- slub: Replace cmpxchg_double() (bsc#1220773).
- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]
- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).
- soc: atmel: fix device_node release in atmel_soc_device_init() (git-fixes).
- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).
- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).
- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).
- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).
- soc: mediatek: mtk-devapc: Fix leaking IO map on error paths (git-fixes).
- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).
- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).
- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).
- soc: qcom: smem_state: fix missing of_node_put in error path (git-fixes).
- soc: qcom: socinfo: Avoid out of bounds read of serial number (git-fixes).
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).
- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).
- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).
- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).
- spi: zynq-qspi: Add check for clk_enable() (git-fixes).
- srcu: Fix srcu_struct node grpmask overflow on 64-bit systems (git-fixes)
- srcu: Only accelerate on enqueue time (git-fixes)
- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).
- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).
- staging: iio: ad9832: Correct phase range check (git-fixes).
- staging: iio: ad9834: Correct phase range check (git-fixes).
- staging: media: imx: fix OF node leak in imx_media_add_of_subdevs() (git-fixes).
- staging: media: max96712: fix kernel oops when removing module (git-fixes).
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).
- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).
- supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).
- swiotlb: Reinstate page-alignment for mappings >= PAGE_SIZE (git-fixes).
- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).
- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).
- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).
- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).
- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).
- tools: Sync if_xdp.h uapi tooling header (git-fixes).
- tools: hv: change permissions of NetworkManager configuration file (git-fixes).
- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).
- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).
- types: Introduce [us]128 (bsc#1220773).
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- ubifs: skip dumping tnc tree when zroot is null (git-fixes).
- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).
- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).
- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).
- udf: refactor inode_bmap() to handle error (bsc#1234242).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).
- uio: Fix return value of poll (git-fixes).
- uio: uio_dmem_genirq: check the return value of devm_kasprintf() (git-fixes).
- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).
- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).
- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).
- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).
- usb: dwc2: Fix HCD port connection race (git-fixes).
- usb: dwc2: Fix HCD resume (git-fixes).
- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (git-fixes).
- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).
- usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk() (git-fixes).
- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).
- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).
- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).
- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).
- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).
- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).
- usb: fix reference leak in usb_new_device() (git-fixes).
- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).
- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).
- usb: gadget: f_tcm: Decrement command ref count on cleanup (git-fixes).
- usb: gadget: f_tcm: Do not free command immediately (git-fixes).
- usb: gadget: f_tcm: Do not prepare BOT write request twice (git-fixes).
- usb: gadget: f_tcm: Fix Get/SetInterface return value (git-fixes).
- usb: gadget: f_tcm: Translate error to sense (git-fixes).
- usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint (git-fixes).
- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).
- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).
- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).
- usb: host: xhci-plat: Assign shared_hcd->rsrc_start (git-fixes).
- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).
- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).
- usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control() (bsc#1235001)
- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).
- usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE (git-fixes).
- usb: typec: use cleanup facility for 'altmodes_node' (stable-fixes).
- usbnet: ipheth: break up NCM header size computation (git-fixes).
- usbnet: ipheth: check that DPE points past NCM header (git-fixes).
- usbnet: ipheth: fix DPE OoB read (git-fixes).
- usbnet: ipheth: fix possible overflow in DPE length check (git-fixes).
- usbnet: ipheth: refactor NCM datagram loop (git-fixes).
- usbnet: ipheth: use static NDP16 location in URB (git-fixes).
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).
- vdpa: solidrun: Fix UB bug with devres (git-fixes).
- vfs: fix readahead(2) on block devices (bsc#1234201).
- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).
- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).
- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).
- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).
- wifi: ath11k: Fix unexpected return buffer manager error for WCN6750/WCN6855 (git-fixes).
- wifi: ath11k: cleanup struct ath11k_mon_data (git-fixes).
- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).
- wifi: ath12k: fix tx power, max reg power update to firmware (git-fixes).
- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).
- wifi: ath5k: add PCI ID for SX76X (git-fixes).
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).
- wifi: brcmfmac: add missing header include for brcmf_dbg (git-fixes).
- wifi: cfg80211: adjust allocation of colocated AP data (git-fixes).
- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).
- wifi: cw1200: Fix potential NULL dereference (git-fixes).
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).
- wifi: iwlwifi: fw: read STEP table from correct UEFI var (git-fixes).
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).
- wifi: mac80211: Add non-atomic station iterator (stable-fixes).
- wifi: mac80211: Fix common size calculation for ML element (git-fixes).
- wifi: mac80211: clean up 'ret' in sta_link_apply_parameters() (stable-fixes).
- wifi: mac80211: do not flush non-uploaded STAs (git-fixes).
- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).
- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).
- wifi: mac80211: fix station NSS capability initialization order (git-fixes).
- wifi: mac80211: fix tid removal during mesh forwarding (git-fixes).
- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).
- wifi: mac80211: prohibit deactivating all links (git-fixes).
- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).
- wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO (git-fixes).
- wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC (git-fixes).
- wifi: mt76: mt7915: add module param to select 5 GHz or 6 GHz on MT7916 (git-fixes).
- wifi: mt76: mt7915: firmware restart on devices with a second pcie link (git-fixes).
- wifi: mt76: mt7915: fix overflows seen when writing limit attributes (git-fixes).
- wifi: mt76: mt7915: fix register mapping (git-fixes).
- wifi: mt76: mt7921: fix using incorrect group cipher after disconnection (git-fixes).
- wifi: mt76: mt7925: fix off by one in mt7925_load_clc() (git-fixes).
- wifi: mt76: mt7996: add max mpdu len capability (git-fixes).
- wifi: mt76: mt7996: fix HE Phy capability (git-fixes).
- wifi: mt76: mt7996: fix definition of tx descriptor (git-fixes).
- wifi: mt76: mt7996: fix incorrect indexing of MIB FW event (git-fixes).
- wifi: mt76: mt7996: fix ldpc setting (git-fixes).
- wifi: mt76: mt7996: fix overflows seen when writing limit attributes (git-fixes).
- wifi: mt76: mt7996: fix register mapping (git-fixes).
- wifi: mt76: mt7996: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU (git-fixes).
- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).
- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).
- wifi: rtlwifi: destroy workqueue at rtl_deinit_core (git-fixes).
- wifi: rtlwifi: do not complete firmware loading needlessly (git-fixes).
- wifi: rtlwifi: fix init_sw_vars leak when probe fails (git-fixes).
- wifi: rtlwifi: fix memory leaks and invalid access at probe error path (git-fixes).
- wifi: rtlwifi: pci: wait for firmware loading before releasing memory (git-fixes).
- wifi: rtlwifi: remove unused check_buddy_priv (git-fixes).
- wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step (git-fixes).
- wifi: rtlwifi: rtl8821ae: Fix media status report (git-fixes).
- wifi: rtlwifi: rtl8821ae: phy: restore removed code to fix infinite loop (git-fixes).
- wifi: rtlwifi: usb: fix workqueue leak when probe fails (git-fixes).
- wifi: rtlwifi: wait for firmware loading before releasing memory (git-fixes).
- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).
- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).
- wifi: rtw89: mcc: consider time limits not divisible by 1024 (git-fixes).
- wifi: wcn36xx: fix channel survey memory allocation size (git-fixes).
- wifi: wlcore: fix unbalanced pm_runtime calls (git-fixes).
- workqueue: Add rcu lock check at the end of work item execution (bsc#1236732).
- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).
- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).
- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).
- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).
- xfs: Add error handling for xfs_reflink_cancel_cow_range (git-fixes).
- xfs: Propagate errors from xfs_reflink_cancel_cow_range in xfs_dax_write_iomap_end (git-fixes).
- xfs: do not allocate COW extents when unsharing a hole (git-fixes).
- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).
- xfs: remove unknown compat feature check in superblock write validation (git-fixes).
- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).
- xfs: sb_spino_align is not verified (git-fixes).
- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).
- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).
- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).
Patchnames
SUSE-SLE-Micro-6.1-kernel-3
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element timeout (bsc#1224095).\n- CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with physinif in nf_bridge_info (bsc#1224726).\n- CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-44996: vsock: fix recursive -\u003erecvmsg calls (bsc#1230205).\n- CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (bsc#1235705).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-48881: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (bsc#1235727).\n- CVE-2024-49948: net: add more sanity checks to qdisc_pkt_len_init() (bsc#1232161).\n- CVE-2024-49951: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (bsc#1232158).\n- CVE-2024-49978: gso: fix udp gso fraglist segmentation after pull from frag_list (bsc#1232101).\n- CVE-2024-49998: net: dsa: improve shutdown sequence (bsc#1232087).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50039: kABI: Restore deleted EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).\n- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized\n delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).\n- CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first resume (bsc#1233467).\n- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).\n- CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability (bsc#1233546).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558 bsc#1234464).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53091: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx (bsc#1233638).\n- CVE-2024-53099: bpf: Check validity of link-\u003etype in bpf_link_show_fdinfo() (bsc#1233772).\n- CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() (bsc#1234069).\n- CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables() (bsc#1234086).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling (bsc#1234079).\n- CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid crash (bsc#1234221)\n- CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).\n- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).\n- CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu (bsc#1234810).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1234863).\n- CVE-2024-53170: block: fix uaf for flush rq while iterating tags (bsc#1234888).\n- CVE-2024-53172: ubi: fastmap: Fix duplicate slab cache names while attaching (bsc#1234898).\n- CVE-2024-53175: ipc: fix memleak if msg_init_ns failed in create_ipc_ns (bsc#1234893).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53185: smb: client: fix NULL ptr deref in crypto_aead_setkey() (bsc#1234901).\n- CVE-2024-53187: io_uring: check for overflows in io_pin_pages (bsc#1234947).\n- CVE-2024-53195: KVM: arm64: Get rid of userspace_irqchip_in_use (bsc#1234957).\n- CVE-2024-53196: KVM: arm64: Do not retire aborted MMIO instruction (bsc#1234906).\n- CVE-2024-53198: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (bsc#1234923).\n- CVE-2024-53203: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() (bsc#1235001).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).\n- CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show() (bsc#1234974).\n- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).\n- CVE-2024-53232: iommu/s390: Implement blocking domain (bsc#1235050).\n- CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully (bsc#1235045).\n- CVE-2024-53236: xsk: Free skb when TX metadata options are invalid (bsc#1235000).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (XSA-466 bsc#1234282).\n- CVE-2024-53685: ceph: give up on paths longer than PATH_MAX (bsc#1235720).\n- CVE-2024-55639: net: renesas: rswitch: avoid use-after-put for a device tree node (bsc#1235737).\n- CVE-2024-55881: KVM: x86: Play nice with protected guests in complete_hypercall_exit() (bsc#1235745).\n- CVE-2024-56372: net: tun: fix tun_napi_alloc_frags() (bsc#1235753).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the full list (bsc#1235033).\n- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).\n- CVE-2024-56569: ftrace: Fix regression with module command in stack_trace_filter (bsc#1235031).\n- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).\n- CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235128).\n- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).\n- CVE-2024-56589: scsi: hisi_sas: Add cond_resched() for no forced preemption model (bsc#1235241).\n- CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove (bsc#1235138).\n- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).\n- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).\n- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).\n- CVE-2024-56603: net: af_can: do not leave a dangling sk pointer in can_create() (bsc#1235415).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56608: drm/amd/display: Fix out-of-bounds access in \u0027dcn21_link_encoder_create\u0027 (bsc#1235487).\n- CVE-2024-56610: kcsan: Turn report_filterlist_lock into a raw_spinlock (bsc#1235390).\n- CVE-2024-56611: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM (bsc#1235391).\n- CVE-2024-56614: xsk: fix OOB map writes when deleting elements (bsc#1235424).\n- CVE-2024-56615: bpf: fix OOB devmap writes when deleting elements (bsc#1235426).\n- CVE-2024-56617: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU (bsc#1235429).\n- CVE-2024-56620: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled (bsc#1235227).\n- CVE-2024-56622: scsi: ufs: core: sysfs: Prevent div by zero (bsc#1235251).\n- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).\n- CVE-2024-56635: net: avoid potential UAF in default_operstate() (bsc#1235519).\n- CVE-2024-56636: geneve: do not assume mac header is set in geneve_xmit_skb() (bsc#1235520).\n- CVE-2024-56637: netfilter: ipset: Hold module reference while requesting a module (bsc#1235523).\n- CVE-2024-56641: net/smc: initialize close_work early to avoid warning (bsc#1235526).\n- CVE-2024-56643: dccp: Fix memory leak in dccp_feat_change_recv (bsc#1235132).\n- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).\n- CVE-2024-56649: net: enetc: Do not configure preemptible TCs if SIs do not support (bsc#1235449).\n- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).\n- CVE-2024-56656: bnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips (bsc#1235444).\n- CVE-2024-56659: net: lapb: increase LAPB_HEADER_LEN (bsc#1235439).\n- CVE-2024-56660: net/mlx5: DR, prevent potential error pointer dereference (bsc#1235437).\n- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).\n- CVE-2024-56665: bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog (bsc#1235489).\n- CVE-2024-56675: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors (bsc#1235555).\n- CVE-2024-56679: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (bsc#1235498).\n- CVE-2024-56693: brd: defer automatic disk creation until module initialization succeeds (bsc#1235418).\n- CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS (bsc#1235412).\n- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).\n- CVE-2024-56707: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c (bsc#1235545).\n- CVE-2024-56708: EDAC/igen6: Avoid segmentation fault on module unload (bsc#1235564).\n- CVE-2024-56712: udmabuf: fix memory leak on last export_udmabuf() error path (bsc#1235565).\n- CVE-2024-56715: ionic: Fix netdev notifier unregister on failure (bsc#1235612).\n- CVE-2024-56716: netdevsim: prevent bad user input in nsim_dev_health_break_write() (bsc#1235587).\n- CVE-2024-56725: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c (bsc#1235578).\n- CVE-2024-56726: octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (bsc#1235582).\n- CVE-2024-56727: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c (bsc#1235583).\n- CVE-2024-56728: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (bsc#1235656).\n- CVE-2024-56729: smb: Initialize cfid-\u003etcon before performing network ops (bsc#1235503).\n- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).\n- CVE-2024-56748: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (bsc#1235627).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).\n- CVE-2024-56763: tracing: Prevent bad count for tracing_cpumask_write (bsc#1235638).\n- CVE-2024-56774: btrfs: add a sanity check for btrfs root in btrfs_search_slot() (bsc#1235653).\n- CVE-2024-56775: drm/amd/display: Fix handling of plane refcount (bsc#1235657).\n- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).\n- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).\n- CVE-2024-57795: RDMA/rxe: Remove the direct link to net_device (bsc#1235906).\n- CVE-2024-57801: net/mlx5e: Skip restore TC rules for vport rep without loaded flag (bsc#1235940).\n- CVE-2024-57802: netrom: check buffer length before accessing it (bsc#1235941).\n- CVE-2024-57804: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs (bsc#1235779).\n- CVE-2024-57809: PCI: imx6: Fix suspend/resume support on i.MX6QDL (bsc#1235793).\n- CVE-2024-57838: s390/entry: Mark IRQ entries to fix stack depot warnings (bsc#1235798).\n- CVE-2024-57857: RDMA/siw: Remove direct link to net_device (bsc#1235946).\n- CVE-2024-57884: mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (bsc#1235948).\n- CVE-2024-57892: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv (bsc#1235964).\n- CVE-2024-57896: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (bsc#1235965).\n- CVE-2024-57903: net: restrict SO_REUSEPORT to inet sockets (bsc#1235967).\n- CVE-2024-57917: topology: Keep the cpumask unchanged when printing cpumap (bsc#1236127).\n- CVE-2024-57929: dm array: fix releasing a faulty array block twice in dm_array_cursor_end (bsc#1236096).\n- CVE-2024-57931: selinux: ignore unknown extended permissions (bsc#1236192).\n- CVE-2024-57932: gve: guard XDP xmit NDO on existence of xdp queues (bsc#1236190).\n- CVE-2024-57933: gve: guard XSK operations on the existence of queues (bsc#1236178).\n- CVE-2024-57938: net/sctp: Prevent autoclose integer overflow in sctp_association_init() (bsc#1236182).\n- CVE-2024-57946: virtio-blk: do not keep queue frozen during system suspend (bsc#1236247).\n- CVE-2025-21632: x86/fpu: Ensure shadow stack is active before \"getting\" registers (bsc#1236106).\n- CVE-2025-21649: net: hns3: fix kernel crash when 1588 is sent on HIP08 devices (bsc#1236143).\n- CVE-2025-21650: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue (bsc#1236144).\n- CVE-2025-21651: net: hns3: do not auto enable misc vector (bsc#1236145).\n- CVE-2025-21652: ipvlan: Fix use-after-free in ipvlan_get_iflink() (bsc#1236160).\n- CVE-2025-21653: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute (bsc#1236161).\n- CVE-2025-21655: io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period (bsc#1236163).\n- CVE-2025-21662: net/mlx5: Fix variable not being completed when function returns (bsc#1236198).\n- CVE-2025-21663: net: stmmac: dwmac-tegra: Read iommu stream id from device tree (bsc#1236260).\n- CVE-2025-21664: dm thin: make get_first_thin use rcu-safe list first function (bsc#1236262).\n- CVE-2025-21674: net/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel (bsc#1236688).\n- CVE-2025-21676: net: fec: handle page_pool_dev_alloc_pages error (bsc#1236696).\n- CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref (bsc#1236703).\n\nThe following non-security bugs were fixed:\n\n- 9p: v9fs_fid_find: also lookup by inode if not found dentry (git-fixes).\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP09A (stable-fixes).\n- ACPI/IORT: Add PMCG platform information for HiSilicon HIP10/11 (stable-fixes).\n- ACPI: PCC: Add PCC shared memory region command and status bitfields (stable-fixes).\n- ACPI: PRM: Add PRM handler direct call support (jsc#PED-10467).\n- ACPI: fan: cleanup resources in the error path of .probe() (git-fixes).\n- ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] (stable-fixes).\n- ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] (stable-fixes).\n- ACPI: resource: Fix memory resource type union access (git-fixes).\n- ACPI: resource: acpi_dev_irq_override(): Check DMI match last (stable-fixes).\n- ACPI: x86: Add skip i2c clients quirk for Acer Iconia One 8 A1-840 (stable-fixes).\n- ACPI: x86: Clean up Asus entries in acpi_quirk_skip_dmi_ids[] (stable-fixes).\n- ACPI: x86: Make UART skip quirks work on PCI UARTs without an UID (stable-fixes).\n- ACPICA: events/evxfregn: do not release the ContextMutex that was never acquired (git-fixes).\n- ALSA hda/realtek: Add quirk for Framework F111:000C (stable-fixes).\n- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes).\n- ALSA: hda/realtek - Add support for ASUS Zen AIO 27 Z272SD_A272SD audio (stable-fixes).\n- ALSA: hda/realtek - Fixed headphone distorted sound on Acer Aspire A115-31 laptop (git-fixes).\n- ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes).\n- ALSA: hda/realtek: Add new alc2xx-fixup-headset-mic model (stable-fixes).\n- ALSA: hda/realtek: Add support for Ayaneo System using CS35L41 HDA (stable-fixes).\n- ALSA: hda/realtek: Add support for Galaxy Book2 Pro (NP950XEE) (stable-fixes).\n- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14s-fq1xxx (stable-fixes).\n- ALSA: hda/realtek: Enable headset mic on Positivo C6400 (stable-fixes).\n- ALSA: hda/realtek: Fix headset mic on Acer Nitro 5 (stable-fixes).\n- ALSA: hda/realtek: Workaround for resume on Dell Venue 11 Pro 7130 (bsc#1235686).\n- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes).\n- ALSA: hda: Fix headset detection failure due to unstable sort (git-fixes).\n- ALSA: line6: Fix racy access to midibuf (stable-fixes).\n- ALSA: seq: Check UMP support for midi_version change (git-fixes).\n- ALSA: seq: oss: Fix races at processing SysEx messages (stable-fixes).\n- ALSA: seq: ump: Fix seq port updates per FB info notify (git-fixes).\n- ALSA: seq: ump: Use automatic cleanup of kfree() (stable-fixes).\n- ALSA: seq: ump: Use guard() for locking (stable-fixes).\n- ALSA: ump: Use guard() for locking (stable-fixes).\n- ALSA: usb-audio: Add delay quirk for USB Audio Device (stable-fixes).\n- ALSA: usb-audio: Add delay quirk for iBasso DC07 Pro (stable-fixes).\n- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (stable-fixes).\n- ALSA: usb-audio: Notify xrun for low-latency mode (git-fixes).\n- ALSA: usb-audio: Re-add ScratchAmp quirk entries (git-fixes).\n- ALSA: usb-audio: US16x08: Initialize array before use (git-fixes).\n- ASoC: Intel: avs: Fix theoretical infinite loop (git-fixes).\n- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C (stable-fixes).\n- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (stable-fixes).\n- ASoC: SOF: Remove libraries from topology lookups (git-fixes).\n- ASoC: acp: Support microphone from Lenovo Go S (stable-fixes).\n- ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen 5 21MES00B00 (stable-fixes).\n- ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen 6 21M1CTO1WW (stable-fixes).\n- ASoC: amd: yc: Fix the wrong return value (git-fixes).\n- ASoC: amd: yc: Support mic on HP 14-em0002la (stable-fixes).\n- ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6 (stable-fixes).\n- ASoC: amd: yc: fix internal mic on Redmi G 2022 (stable-fixes).\n- ASoC: codecs: wcd938x-sdw: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa881x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa883x: Correct Soundwire ports mask (git-fixes).\n- ASoC: codecs: wsa884x: Correct Soundwire ports mask (git-fixes).\n- ASoC: cs35l56: Handle OTP read latency over SoundWire (stable-fixes).\n- ASoC: cs35l56: Patch CS35L56_IRQ1_MASK_18 to the default value (stable-fixes).\n- ASoC: fsl_micfil: Expand the range of FIFO watermark mask (stable-fixes).\n- ASoC: hdmi-codec: reorder channel allocation list (stable-fixes).\n- ASoC: mediatek: disable buffer pre-allocation (stable-fixes).\n- ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT (git-fixes).\n- ASoC: nau8822: Lower debug print priority (stable-fixes).\n- ASoC: rockchip: i2s_tdm: Re-add the set_sysclk callback (git-fixes).\n- ASoC: rt722: add delay time to wait for the calibration procedure (stable-fixes).\n- ASoC: samsung: Add missing depends on I2C (git-fixes).\n- ASoC: samsung: Add missing selects for MFD_WM8994 (stable-fixes).\n- ASoC: sun4i-spdif: Add clock multiplier settings (git-fixes).\n- ASoC: wm8994: Add depends on MFD core (stable-fixes).\n- Bluetooth: Add support ITTIM PE50-M75C (stable-fixes).\n- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (stable-fixes).\n- Bluetooth: ISO: Reassociate a socket with an active BIS (stable-fixes).\n- Bluetooth: L2CAP: accept zero as a special value for MTU auto-selection (git-fixes).\n- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (stable-fixes).\n- Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc (git-fixes).\n- Bluetooth: MGMT: Fix Add Device to responding before completing (git-fixes).\n- Bluetooth: MGMT: Fix possible deadlocks (git-fixes).\n- Bluetooth: SCO: Add support for 16 bits transparent voice setting (git-fixes).\n- Bluetooth: btnxpuart: Fix driver sending truncated data (git-fixes).\n- Bluetooth: btnxpuart: Fix glitches seen in dual A2DP streaming (git-fixes).\n- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (stable-fixes).\n- Bluetooth: btusb: Add USB HW IDs for MT7921/MT7922/MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 0489/e111 for MT7925 (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 13d3/3602 for MT7925 (stable-fixes).\n- Bluetooth: btusb: add callback function in btusb suspend/resume (stable-fixes).\n- Bluetooth: btusb: mediatek: add callback function in btusb_disconnect (stable-fixes).\n- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (stable-fixes).\n- Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating (git-fixes).\n- Bluetooth: hci_sync: Fix not setting Random Address when required (git-fixes).\n- Bluetooth: iso: Fix recursive locking warning (git-fixes).\n- Delete XHCI patch for regression (bsc#1235550)\n- Disable ceph (jsc#PED-7242)\n- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (git-fixes).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- Drop downstream TPM fix patch (bsc#1233260 bsc#1233259 bsc#1232421)\n- Drop uvcvideo fix due to regression (bsc#1235894)\n- EDAC/{i10nm,skx,skx_common}: Support UV systems (bsc#1234693).\n- HID: core: Fix assumption that Resolution Multipliers must be in Logical Collections (git-fixes).\n- HID: fix generic desktop D-Pad controls (git-fixes).\n- HID: hid-sensor-hub: do not use stale platform-data on remove (git-fixes).\n- HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check (git-fixes).\n- HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support (stable-fixes).\n- HID: multitouch: fix support for Goodix PID 0x01e9 (git-fixes).\n- Input: atkbd - map F23 key to support default copilot shortcut (stable-fixes).\n- Input: bbnsm_pwrkey - add remove hook (git-fixes).\n- Input: bbnsm_pwrkey - fix missed key press after suspend (git-fixes).\n- Input: davinci-keyscan - remove leftover header (git-fixes).\n- Input: xpad - add QH Electronics VID/PID (stable-fixes).\n- Input: xpad - add support for Nacon Evol-X Xbox One Controller (stable-fixes).\n- Input: xpad - add support for Nacon Pro Compact (stable-fixes).\n- Input: xpad - add support for wooting two he (arm) (stable-fixes).\n- Input: xpad - add unofficial Xbox 360 wireless receiver clone (stable-fixes).\n- Input: xpad - improve name of 8BitDo controller 2dc8:3106 (stable-fixes).\n- KVM: SVM: Allow guest writes to set MSR_AMD64_DE_CFG bits (bsc#1234635).\n- KVM: s390: Reject KVM_SET_GSI_ROUTING on ucontrol VMs (git-fixes bsc#1235776).\n- KVM: s390: Reject setting flic pfault attributes on ucontrol VMs (git-fixes bsc#1235777).\n- KVM: s390: vsie: fix virtual/physical address in unpin_scb() (git-fixes bsc#1235778).\n- NFC: nci: Add bounds checking in nci_hci_create_pipe() (git-fixes).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Async COPY result needs to return a write verifier (git-fixes).\n- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: Remove a never-true comparison (git-fixes).\n- NFSD: initialize copy-\u003ecp_clp early in nfsd4_copy for use by trace point (git-fixes).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- NFSv4.2: fix COPY_NOTIFY xdr buf size calculation (git-fixes).\n- NFSv4.2: mark OFFLOAD_CANCEL MOVEABLE (git-fixes).\n- Octeontx2-pf: Free send queue buffers incase of leaf to inner (git-fixes).\n- PCI/AER: Disable AER service on suspend (stable-fixes).\n- PCI/MSI: Handle lack of irqdomain gracefully (git-fixes).\n- PCI: Add \u0027reset_subordinate\u0027 to reset hierarchy below bridge (stable-fixes).\n- PCI: Add ACS quirk for Broadcom BCM5760X NIC (stable-fixes).\n- PCI: Add ACS quirk for Wangxun FF5xxx NICs (stable-fixes).\n- PCI: Add T_PERST_CLK_US macro (git-fixes).\n- PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 (git-fixes).\n- PCI: Detect and trust built-in Thunderbolt chips (stable-fixes).\n- PCI: Fix use-after-free of slot-\u003ebus on hot remove (stable-fixes).\n- PCI: Use preserve_config in place of pci_flags (stable-fixes).\n- PCI: cadence: Extract link setup sequence from cdns_pcie_host_setup() (stable-fixes).\n- PCI: cadence: Set cdns_pcie_host_init() global (stable-fixes).\n- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (stable-fixes).\n- PCI: dwc: Always stop link in the dw_pcie_suspend_noirq (git-fixes).\n- PCI: dwc: ep: Prevent changing BAR size/flags in pci_epc_set_bar() (git-fixes).\n- PCI: dwc: ep: Write BAR_MASK before iATU registers in pci_epc_set_bar() (git-fixes).\n- PCI: endpoint: Destroy the EPC device in devm_pci_epc_destroy() (git-fixes).\n- PCI: endpoint: Finish virtual EP removal in pci_epf_remove_vepf() (git-fixes).\n- PCI: endpoint: pci-epf-test: Fix check for DMA MEMCPY test (git-fixes).\n- PCI: endpoint: pci-epf-test: Set dma_chan_rx pointer to NULL on error (git-fixes).\n- PCI: imx6: Deassert apps_reset in imx_pcie_deassert_core_reset() (git-fixes).\n- PCI: imx6: Skip controller_id generation logic for i.MX7D (git-fixes).\n- PCI: j721e: Add PCIe 4x lane selection support (stable-fixes).\n- PCI: j721e: Add per platform maximum lane settings (stable-fixes).\n- PCI: j721e: Add reset GPIO to struct j721e_pcie (stable-fixes).\n- PCI: j721e: Add suspend and resume support (git-fixes).\n- PCI: j721e: Use T_PERST_CLK_US macro (git-fixes).\n- PCI: microchip: Set inbound address translation for coherent or non-coherent mode (git-fixes).\n- PCI: qcom: Add support for IPQ9574 (stable-fixes).\n- PCI: rcar-ep: Fix incorrect variable used when calling devm_request_mem_region() (git-fixes).\n- PCI: vmd: Add DID 8086:B06F and 8086:B60B for Intel client SKUs (stable-fixes).\n- PCI: vmd: Set devices to D0 before enabling PM L1 Substates (stable-fixes).\n- PM: hibernate: Add error handling for syscore_suspend() (git-fixes).\n- RAS/AMD/ATL: Translate normalized to system physical addresses using PRM (jsc#PED-10467).\n- RDMA/bnxt_re: Add check for path mtu in modify_qp (git-fixes)\n- RDMA/bnxt_re: Add send queue size check for variable wqe (git-fixes)\n- RDMA/bnxt_re: Avoid initializing the software queue for user queues (git-fixes)\n- RDMA/bnxt_re: Avoid sending the modify QP workaround for latest adapters (git-fixes)\n- RDMA/bnxt_re: Disable use of reserved wqes (git-fixes)\n- RDMA/bnxt_re: Fix MSN table size for variable wqe mode (git-fixes)\n- RDMA/bnxt_re: Fix max SGEs for the Work Request (git-fixes)\n- RDMA/bnxt_re: Fix max_qp_wrs reported (git-fixes)\n- RDMA/bnxt_re: Fix reporting hw_ver in query_device (git-fixes)\n- RDMA/bnxt_re: Fix the check for 9060 condition (git-fixes)\n- RDMA/bnxt_re: Fix the locking while accessing the QP table (git-fixes)\n- RDMA/bnxt_re: Fix the max WQE size for static WQE support (git-fixes)\n- RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (git-fixes)\n- RDMA/bnxt_re: Fix to drop reference to the mmap entry in case of error (git-fixes)\n- RDMA/bnxt_re: Fix to export port num to ib_query_qp (git-fixes)\n- RDMA/bnxt_re: Remove always true dattr validity check (git-fixes)\n- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)\n- RDMA/hns: Fix accessing invalid dip_ctx during destroying QP (git-fixes)\n- RDMA/hns: Fix mapping error of zero-hop WQE buffer (git-fixes)\n- RDMA/hns: Fix missing flush CQE for DWQE (git-fixes)\n- RDMA/hns: Fix warning storm caused by invalid input in IO path (git-fixes)\n- RDMA/mlx4: Avoid false error about access to uninitialized gids array (git-fixes)\n- RDMA/mlx5: Enforce same type port association for multiport RoCE (git-fixes)\n- RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error (git-fixes)\n- RDMA/mlx5: Fix implicit ODP use after free (git-fixes)\n- RDMA/mlx5: Fix indirect mkey ODP page count (git-fixes)\n- RDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible (git-fixes)\n- RDMA/rxe: Fix mismatched max_msg_sz (git-fixes)\n- RDMA/rxe: Fix the warning \"__rxe_cleanup+0x12c/0x170 [rdma_rxe]\" (git-fixes)\n- RDMA/srp: Fix error handling in srp_add_port (git-fixes)\n- RDMA/uverbs: Prevent integer overflow issue (git-fixes)\n- Revert \"HID: multitouch: Add support for lenovo Y9000P Touchpad\" (stable-fixes).\n- Revert \"block/mq-deadline: use correct way to throttling write requests\" (bsc#1234146).\n- Revert \"btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\"\n- Revert \"drm/i915/dpt: Make DPT object unshrinkable\" (stable-fixes).\n- Revert \"igb: Disable threaded IRQ for igb_msix_other\" (git-fixes).\n- Revert \"mm, kmsan: fix infinite recursion due to RCU critical section\" (bsc#1230413)\n- Revert \"mm/sparsemem: fix race in accessing memory_section-\u003eusage\" (bsc#1230413)\n- Revert \"mm: prevent derefencing NULL ptr in pfn_section_valid()\" (bsc#1230413)\n- Revert \"mtd: spi-nor: core: replace dummy buswidth from addr to data\" (git-fixes).\n- Revert \"unicode: Do not special case ignorable code points\" (stable-fixes).\n- Revert \"usb: gadget: u_serial: Disable ep before setting port to null\n to fix the crash caused by port being null\" (stable-fixes).\n- Revert \u0027arm64: Kconfig: Make SME depend on BROKEN for now\u0027 \n- Revert 0dd78566990 (\"Disable ceph (jsc#PED-7242)\") \n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- SUNRPC: timeout and cancel TLS handshake with -ETIMEDOUT (git-fixes).\n- USB: core: Disable LPM only for non-suspended ports (git-fixes).\n- USB: serial: cp210x: add Phoenix Contact UPS Device (stable-fixes).\n- USB: serial: option: add MediaTek T7XX compositions (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM770A (stable-fixes).\n- USB: serial: option: add MeiG Smart SRM815 (stable-fixes).\n- USB: serial: option: add Neoway N723-EA support (stable-fixes).\n- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (stable-fixes).\n- USB: serial: option: add TCL IK512 MBIM \u0026 ECM (stable-fixes).\n- USB: serial: option: add Telit FE910C04 rmnet compositions (stable-fixes).\n- USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() (git-fixes).\n- USB: usblp: return error when setting unsupported protocol (git-fixes).\n- VFS: use system_unbound_wq for delayed_mntput (bsc#1234683).\n- VMCI: fix reference to ioctl-number.rst (git-fixes).\n- accel/habanalabs/gaudi2: unsecure tpc count registers (stable-fixes).\n- accel/habanalabs: export dma-buf only if size/offset multiples of PAGE_SIZE (stable-fixes).\n- accel/habanalabs: fix debugfs files permissions (stable-fixes).\n- accel/habanalabs: increase HL_MAX_STR to 64 bytes to avoid warnings (stable-fixes).\n- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (git-fixes).\n- af_unix: Call manage_oob() for every skb in unix_stream_read_generic() (bsc#1234725).\n- afs: Automatically generate trace tag enums (git-fixes).\n- afs: Fix EEXIST error returned from afs_rmdir() to be ENOTEMPTY (git-fixes).\n- afs: Fix cleanup of immediately failed async calls (git-fixes).\n- afs: Fix directory format encoding struct (git-fixes).\n- afs: Fix missing subdir edit when renamed between parent dirs (git-fixes).\n- afs: Fix the fallback handling for the YFS.RemoveFile2 RPC call (git-fixes).\n- afs: Fix the maximum cell name length (git-fixes).\n- amdgpu/uvd: get ring reference from rq scheduler (git-fixes).\n- arch: Introduce arch_{,try_}_cmpxchg128{,_local}() (bsc#1220773).\n- arch: Remove cmpxchg_double (bsc#1220773).\n- arch: consolidate arch_irq_work_raise prototypes (git-fixes).\n- arm64/sme: Move storage of reg_smidr to __cpuinfo_store_cpu() (git-fixes)\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- arm64: Filter out SVE hwcaps when FEAT_SVE isn\u0027t implemented (git-fixes)\n- arm64: Force position-independent veneers (git-fixes).\n- arm64: Kconfig: Make SME depend on BROKEN for now (git-fixes bsc#1236245)\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- arm64: dts: rockchip: Add sdmmc/sdio/emmc reset controls for RK3328 (git-fixes)\n- arm64: dts: rockchip: add hevc power domain clock to rk3328 (git-fixes).\n- arm64: dts: rockchip: increase gmac rx_delay on rk3399-puma (git-fixes)\n- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (git-fixes).\n- arm64: tegra: Disable Tegra234 sce-fabric node (git-fixes)\n- arm64: tegra: Fix Tegra234 PCIe interrupt-map (git-fixes)\n- arm64: tegra: Fix typo in Tegra234 dce-fabric compatible (git-fixes)\n- ata: libata-core: Set ATA_QCFLAG_RTF_FILLED in fill_result_tf() (stable-fixes).\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- batman-adv: Do not let TT changes list grows indefinitely (git-fixes).\n- batman-adv: Do not send uninitialized TT changes (git-fixes).\n- batman-adv: Remove uninitialized data in full table TT response (git-fixes).\n- blk-cgroup: Fix UAF in blkcg_unpin_online() (bsc#1234726).\n- blk-core: use pr_warn_ratelimited() in bio_check_ro() (bsc#1234139).\n- blk-iocost: Fix an UBSAN shift-out-of-bounds warning (bsc#1234144).\n- blk-iocost: do not WARN if iocg was already offlined (bsc#1234147).\n- blk-throttle: fix lockdep warning of \"cgroup_mutex or RCU read lock required!\" (bsc#1234140).\n- block, bfq: choose the last bfqq from merge chain in bfq_setup_cooperator() (bsc#1234149).\n- block, bfq: do not break merge chain in bfq_split_bfqq() (bsc#1234150).\n- block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234160).\n- block, bfq: fix procress reference leakage for bfqq in merge chain (bsc#1234280).\n- block, bfq: fix uaf for accessing waker_bfqq after splitting (bsc#1234279).\n- block/mq-deadline: Fix the tag reservation code (bsc#1234148).\n- block: Call .limit_depth() after .hctx has been set (bsc#1234148).\n- block: Fix where bio IO priority gets set (bsc#1234145).\n- block: prevent an integer overflow in bvec_try_merge_hw_page (bsc#1234142).\n- block: update the stable_writes flag in bdev_add (bsc#1234141).\n- bnxt_en: Fix GSO type for HW GRO packets on 5750X chips (git-fixes)\n- bnxt_en: Fix receive ring space parameters when XDP is active (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Set backplane link modes correctly for ethtool (git-fixes).\n- bpf, x86: Fix PROBE_MEM runtime load check (git-fixes).\n- bpf: verifier: prevent userspace memory access (git-fixes).\n- btrfs: fix use-after-free in btrfs_encoded_read_endio() (bsc#1235445).\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235128)\n- btrfs: fix use-after-free waiting for encoded read endios (bsc#1235445).\n- bus: mhi: host: Free mhi_buf vector inside mhi_alloc_bhie_table() (git-fixes).\n- can: gs_usb: add VID/PID for Xylanta SAINT3 product family (stable-fixes).\n- can: j1939: fix error in J1939 documentation (stable-fixes).\n- ceph: improve error handling and short/overflow-read logic in __ceph_sync_read() (bsc#1228592).\n- checkpatch: always parse orig_commit in fixes tag (git-fixes).\n- checkpatch: check for missing Fixes tags (stable-fixes).\n- cleanup: Add conditional guard support (stable-fixes).\n- cleanup: Adjust scoped_guard() macros to avoid potential warning (stable-fixes).\n- cleanup: Remove address space of returned pointer (git-fixes).\n- clocksource/drivers/timer-ti-dm: Fix child node refcount handling (git-fixes).\n- clocksource/drivers:sp804: Make user selectable (git-fixes).\n- counter: stm32-timer-cnt: Add check for clk_enable() (git-fixes).\n- counter: ti-ecap-capture: Add check for clk_enable() (git-fixes).\n- cpufreq: ACPI: Fix max-frequency computation (git-fixes).\n- cpufreq: Do not unregister cpufreq cooling on CPU hotplug (git-fixes).\n- cpufreq: amd-pstate: remove global header file (git-fixes).\n- cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization (bsc#1234619).\n- cpufreq: intel_pstate: Drop redundant locking from intel_pstate_driver_cleanup() (bsc#1234619).\n- cpufreq: intel_pstate: Fix unchecked HWP MSR access (bsc#1234619).\n- cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller (bsc#1234619).\n- cpufreq: intel_pstate: Get rid of unnecessary READ_ONCE() annotations (bsc#1234619).\n- cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock (git-fixes).\n- cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE() (bsc#1234619).\n- cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo() (bsc#1234619).\n- cpufreq: intel_pstate: Refine computation of P-state for given frequency (bsc#1234619).\n- cpufreq: intel_pstate: Replace three global.turbo_disabled checks (bsc#1234619).\n- cpufreq: intel_pstate: Revise global turbo disable check (bsc#1234619).\n- cpufreq: intel_pstate: Simplify spinlock locking (bsc#1234619).\n- cpufreq: intel_pstate: Update the maximum CPU frequency consistently (bsc#1234619).\n- cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing (git-fixes).\n- cpufreq: intel_pstate: Use __ro_after_init for three variables (bsc#1234619).\n- cpufreq: intel_pstate: Wait for canceled delayed work to complete (bsc#1234619).\n- cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back (git-fixes).\n- cpuidle: Avoid potential overflow in integer multiplication (git-fixes).\n- cpupower: fix TSC MHz calculation (git-fixes).\n- crypto: caam - use JobR\u0027s space to access page 0 regs (git-fixes).\n- crypto: ecc - Prevent ecc_digits_from_bytes from reading too many bytes (git-fixes).\n- crypto: ecdsa - Avoid signed integer overflow on signature decoding (stable-fixes).\n- crypto: ecdsa - Convert byte arrays with key coordinates to digits (stable-fixes).\n- crypto: ecdsa - Rename keylen to bufsize where necessary (stable-fixes).\n- crypto: ecdsa - Use ecc_digits_from_bytes to convert signature (stable-fixes).\n- crypto: iaa - Fix IAA disabling that occurs when sync_mode is set to \u0027async\u0027 (git-fixes).\n- crypto: ixp4xx - fix OF node reference leaks in init_ixp_crypto() (git-fixes).\n- crypto: qat - disable IOV in adf_dev_stop() (git-fixes).\n- crypto: qce - fix goto jump in error path (git-fixes).\n- crypto: qce - fix priority to be less than ARMv8 CE (git-fixes).\n- crypto: qce - unregister previously registered algos in error path (git-fixes).\n- crypto: x86/sha256 - Add parentheses around macros\u0027 single arguments (stable-fixes).\n- cyrpto/b128ops: Remove struct u128 (bsc#1220773).\n- devcoredump: cleanup some comments (git-fixes).\n- devlink: Fix length of eswitch inline-mode (git-fixes).\n- dlm: fix possible lkb_resource null dereference (git-fixes).\n- dma-buf: fix dma_fence_array_signaled v4 (stable-fixes).\n- dma-debug: fix a possible deadlock on radix_lock (stable-fixes).\n- dmaengine: apple-admac: Avoid accessing registers in probe (git-fixes).\n- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (git-fixes).\n- dmaengine: dw: Select only supported masters for ACPI devices (git-fixes).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- dmaengine: mv_xor: fix child node refcount handling in early exit (git-fixes).\n- dmaengine: tegra: Return correct DMA status when paused (git-fixes).\n- dmaengine: ti: edma: fix OF node reference leaks in edma_driver (git-fixes).\n- docs: media: update location of the media patches (stable-fixes).\n- docs: power: Fix footnote reference for Toshiba Satellite P10-554 (git-fixes).\n- driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link (stable-fixes).\n- driver core: class: Fix wild pointer dereferences in API class_dev_iter_next() (git-fixes).\n- driver core: fw_devlink: Improve logs for cycle detection (stable-fixes).\n- driver core: fw_devlink: Stop trying to optimize cycle detection logic (git-fixes).\n- drivers/card_reader/rtsx_usb: Restore interrupt based detection (git-fixes).\n- drivers: net: ionic: add missed debugfs cleanup to ionic_probe() error path (git-fixes).\n- drm/amd/display: Add HDR workaround for specific eDP (stable-fixes).\n- drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw (stable-fixes).\n- drm/amd/display: Add check for granularity in dml ceil/floor helpers (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Avoid overflow assignment in link_dp_cts (stable-fixes).\n- drm/amd/display: Fix DSC-re-computing (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Fix incorrect DSC recompute trigger (stable-fixes).\n- drm/amd/display: Revert Avoid overflow assignment (stable-fixes).\n- drm/amd/display: Use HW lock mgr for PSR1 (stable-fixes).\n- drm/amd/display: Use gpuvm_min_page_size_kbytes for DML2 surfaces (stable-fixes).\n- drm/amd/display: increase MAX_SURFACES to the value supported by hw (stable-fixes).\n- drm/amd/pm: Fix an error handling path in vega10_enable_se_edc_force_stall_config() (git-fixes).\n- drm/amd/pm: fix the high voltage issue after unload (stable-fixes).\n- drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu v13.0.7 (stable-fixes).\n- drm/amdgpu/gfx10: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx11: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/gfx9: properly handle error ints on all pipes (stable-fixes).\n- drm/amdgpu/gfx9: use rlc safe mode for soft recovery (stable-fixes).\n- drm/amdgpu/hdp5.2: do a posting read when flushing HDP (stable-fixes).\n- drm/amdgpu/pm: Remove gpu_od if it\u0027s an empty directory (stable-fixes).\n- drm/amdgpu/umsch: do not execute umsch test when GPU is in reset/suspend (stable-fixes).\n- drm/amdgpu/umsch: reinitialize write pointer in hw init (stable-fixes).\n- drm/amdgpu/vcn: reset fw_shared under SRIOV (git-fixes).\n- drm/amdgpu/vcn: reset fw_shared when VCPU buffers corrupted on vcn v4.0.3 (stable-fixes).\n- drm/amdgpu: Block MMR_READ IOCTL in reset (stable-fixes).\n- drm/amdgpu: Dereference the ATCS ACPI buffer (stable-fixes).\n- drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table (git-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: add smu 14.0.1 discovery support (stable-fixes).\n- drm/amdgpu: always sync the GFX pipe on ctx switch (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (stable-fixes).\n- drm/amdgpu: differentiate external rev id for gfx 11.5.0 (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: do not access invalid sched (git-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: fix usage slab after free (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (stable-fixes).\n- drm/amdgpu: set the right AMDGPU sg segment limitation (stable-fixes).\n- drm/amdgpu: simplify return statement in amdgpu_ras_eeprom_init (git-fixes).\n- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (stable-fixes).\n- drm/amdgpu: tear down ttm range manager for doorbell in amdgpu_ttm_fini() (git-fixes).\n- drm/amdkfd: Correct the migration DMA map direction (stable-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/amdkfd: Use device based logging for errors (stable-fixes).\n- drm/amdkfd: Use the correct wptr size (stable-fixes).\n- drm/amdkfd: fixed page fault when enable MES shader debugger (git-fixes).\n- drm/amdkfd: pause autosuspend when creating pdd (stable-fixes).\n- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (git-fixes).\n- drm/bridge: it6505: Change definition of AUX_FIFO_MAX_SIZE (git-fixes).\n- drm/bridge: it6505: Enable module autoloading (stable-fixes).\n- drm/bridge: it6505: Fix inverted reset polarity (git-fixes).\n- drm/bridge: it6505: update usleep_range for RC circuit charge time (stable-fixes).\n- drm/display: Fix building with GCC 15 (stable-fixes).\n- drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (stable-fixes).\n- drm/dp_mst: Fix MST sideband message body length check (stable-fixes).\n- drm/dp_mst: Fix resetting msg rx state after topology removal (git-fixes).\n- drm/dp_mst: Verify request type in the corresponding down message reply (stable-fixes).\n- drm/etnaviv: Fix page property being used for non writecombine buffers (git-fixes).\n- drm/etnaviv: flush shader L1 cache after user commandstream (stable-fixes).\n- drm/i915/dg1: Fix power gate sequence (git-fixes).\n- drm/i915/fb: Relax clear color alignment to 64 bytes (stable-fixes).\n- drm/i915: Fix NULL pointer dereference in capture_engine (git-fixes).\n- drm/i915: Fix memory leak by correcting cache object name in error handler (git-fixes).\n- drm/mcde: Enable module autoloading (stable-fixes).\n- drm/mediatek: Add return value check when reading DPCD (git-fixes).\n- drm/mediatek: Add support for 180-degree rotation in the display driver (git-fixes).\n- drm/mediatek: Fix YCbCr422 color format issue for DP (git-fixes).\n- drm/mediatek: Fix mode valid issue for dp (git-fixes).\n- drm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err (git-fixes).\n- drm/mediatek: mtk_dsi: Add registers to pdata to fix MT8186/MT8188 (git-fixes).\n- drm/mediatek: stop selecting foreign drivers (git-fixes).\n- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (stable-fixes).\n- drm/msm/dp: set safe_to_exit_level before printing it (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SC8180X (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8150 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8250 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8350 (git-fixes).\n- drm/msm/dpu: link DSPP_2/_3 blocks on SM8550 (git-fixes).\n- drm/msm: Check return value of of_dma_configure() (git-fixes).\n- drm/msm: do not clean up priv-\u003ekms prematurely (git-fixes).\n- drm/nouveau/gsp: Use the sg allocator for level 2 of radix3 (stable-fixes).\n- drm/panel: novatek-nt35950: fix return value check in nt35950_probe() (git-fixes).\n- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (stable-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (stable-fixes).\n- drm/radeon: Fix spurious unplug event on radeon HDMI (git-fixes).\n- drm/radeon: add helper rdev_to_drm(rdev) (stable-fixes).\n- drm/radeon: change rdev-\u003eddev to rdev_to_drm(rdev) (stable-fixes).\n- drm/rcar-du: dsi: Fix PHY lock bit check (git-fixes).\n- drm/rockchip: cdn-dp: Use drm_connector_helper_hpd_irq_event() (git-fixes).\n- drm/rockchip: vop2: Check linear format for Cluster windows on rk3566/8 (git-fixes).\n- drm/rockchip: vop2: Fix cluster windows alpha ctrl regsiters offset (git-fixes).\n- drm/rockchip: vop2: Fix the mixer alpha setup for layer 0 (git-fixes).\n- drm/sched: memset() \u0027job\u0027 in drm_sched_job_init() (stable-fixes).\n- drm/tidss: Clear the interrupt status for interrupts being disabled (git-fixes).\n- drm/tidss: Fix issue in irq handling causing irq-flood issue (git-fixes).\n- drm/v3d: Assign job pointer to NULL before signaling the fence (git-fixes).\n- drm/v3d: Ensure job pointer is set to NULL after job completion (git-fixes).\n- drm/v3d: Stop active perfmon if it is being destroyed (git-fixes).\n- drm/vc4: hdmi: Avoid log spam for audio start failure (stable-fixes).\n- drm/vc4: hvs: Set AXI panic modes for the HVS (stable-fixes).\n- drm/vmwgfx: Add new keep_resv BO param (git-fixes).\n- drm: adv7511: Drop dsi single lane support (git-fixes).\n- drm: adv7511: Fix use-after-free in adv7533_attach_dsi() (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK (stable-fixes).\n- drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- erofs: avoid debugging output for (de)compressed data (git-fixes).\n- exfat: ensure that ctime is updated whenever the mtime is (git-fixes).\n- exfat: fix the infinite loop in __exfat_free_cluster() (git-fixes).\n- exfat: fix the infinite loop in exfat_readdir() (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- ext4: add a new helper to check if es must be kept (bsc#1234170).\n- ext4: add correct group descriptors and reserved GDT blocks to system zone (bsc#1234164).\n- ext4: add missed brelse in update_backups (bsc#1234171).\n- ext4: allow for the last group to be marked as trimmed (bsc#1234278).\n- ext4: avoid buffer_head leak in ext4_mark_inode_used() (bsc#1234191).\n- ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1234180).\n- ext4: avoid negative min_clusters in find_group_orlov() (bsc#1234193).\n- ext4: avoid overlapping preallocations due to overflow (bsc#1234162).\n- ext4: avoid potential buffer_head leak in __ext4_new_inode() (bsc#1234192).\n- ext4: avoid writing unitialized memory to disk in EA inodes (bsc#1234187).\n- ext4: check the extent status again before inserting delalloc block (bsc#1234186).\n- ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard (bsc#1234190).\n- ext4: convert to exclusive lock while inserting delalloc extents (bsc#1234178).\n- ext4: correct best extent lstart adjustment logic (bsc#1234179).\n- ext4: correct grp validation in ext4_mb_good_group (bsc#1234163).\n- ext4: correct return value of ext4_convert_meta_bg (bsc#1234172).\n- ext4: correct the hole length returned by ext4_map_blocks() (bsc#1234178).\n- ext4: correct the start block of counting reserved clusters (bsc#1234169).\n- ext4: do not let fstrim block system suspend (bsc#1234166).\n- ext4: do not trim the group with corrupted block bitmap (bsc#1234177).\n- ext4: factor out __es_alloc_extent() and __es_free_extent() (bsc#1234170).\n- ext4: factor out a common helper to query extent map (bsc#1234186).\n- ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1234176).\n- ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space() (bsc#1234188).\n- ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit() (bsc#1234188).\n- ext4: fix incorrect tid assumption in jbd2_journal_shrink_checkpoint_list() (bsc#1234188).\n- ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} (bsc#1214954).\n- ext4: fix potential unnitialized variable (bsc#1234183).\n- ext4: fix race between writepages and remount (bsc#1234168).\n- ext4: fix rec_len verify error (bsc#1234167).\n- ext4: fix slab-use-after-free in ext4_es_insert_extent() (bsc#1234170).\n- ext4: fix uninitialized variable in ext4_inlinedir_to_tree (bsc#1234185).\n- ext4: forbid commit inconsistent quota data when errors=remount-ro (bsc#1234178).\n- ext4: make ext4_es_insert_delayed_block() return void (bsc#1234170).\n- ext4: make ext4_es_insert_extent() return void (bsc#1234170).\n- ext4: make ext4_es_remove_extent() return void (bsc#1234170).\n- ext4: make ext4_zeroout_es() return void (bsc#1234170).\n- ext4: make sure allocate pending entry not fail (bsc#1234170).\n- ext4: mark buffer new if it is unwritten to avoid stale data exposure (bsc#1234175).\n- ext4: move \u0027ix\u0027 sanity check to corrent position (bsc#1234174).\n- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (bsc#1234165).\n- ext4: nested locking for xattr inode (bsc#1234189).\n- ext4: propagate errors from ext4_find_extent() in ext4_insert_range() (bsc#1234194).\n- ext4: refactor ext4_da_map_blocks() (bsc#1234178).\n- ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks (bsc#1234173).\n- ext4: remove the redundant folio_wait_stable() (bsc#1234184).\n- ext4: set the type of max_zeroout to unsigned int to avoid overflow (bsc#1234182).\n- ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow (bsc#1234181).\n- ext4: use pre-allocated es in __es_insert_extent() (bsc#1234170).\n- ext4: use pre-allocated es in __es_remove_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_delayed_block() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_insert_extent() (bsc#1234170).\n- ext4: using nofail preallocation in ext4_es_remove_extent() (bsc#1234170).\n- fbdev: omapfb: Fix an OF node leak in dss_of_port_get_parent_device() (git-fixes).\n- filemap: Fix bounds checking in filemap_read() (bsc#1234209).\n- filemap: add a per-mapping stable writes flag (bsc#1234141).\n- firmware: arm_scmi: Reject clear channel request on A2P (stable-fixes).\n- fs-writeback: do not requeue a clean inode having skipped pages (bsc#1234200).\n- fs/writeback: bail out if there is no more inodes for IO and queued once (bsc#1234207).\n- fsnotify: fix sending inotify event with unexpected filename (bsc#1234198).\n- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (git-fixes).\n- genirq/cpuhotplug: Skip suspended interrupts when restoring affinity (git-fixes).\n- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (git-fixes).\n- genirq: Make handle_enforce_irqctx() unconditionally available (git-fixes).\n- genksyms: fix memory leak when the same symbol is added from source (git-fixes).\n- genksyms: fix memory leak when the same symbol is read from *.symref file (git-fixes).\n- gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (git-fixes).\n- gpio: grgpio: Add NULL check in grgpio_probe (git-fixes).\n- gpio: grgpio: use a helper variable to store the address of ofdev-\u003edev (stable-fixes).\n- gpio: mxc: remove dead code after switch to DT-only (git-fixes).\n- gpio: xilinx: Convert gpio_lock to raw spinlock (git-fixes).\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- hvc/xen: fix console unplug (git-fixes).\n- hvc/xen: fix error path in xen_hvc_init() to always register frontend driver (git-fixes).\n- hvc/xen: fix event channel handling for secondary consoles (git-fixes).\n- hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur (git-fixes).\n- hwmon: (drivetemp) Set scsi command timeout to 10s (stable-fixes).\n- hwmon: (nct6775) Add 665-ACE/600M-CL to ASUS WMI monitoring list (stable-fixes).\n- hwmon: (pmbus/core) clear faults after setting smbalert mask (git-fixes).\n- hwmon: (pmbus_core) Allow to hook PMBUS_SMBALERT_MASK (stable-fixes).\n- hwmon: (tmp513) Do not use \"proxy\" headers (stable-fixes).\n- hwmon: (tmp513) Fix Current Register value interpretation (git-fixes).\n- hwmon: (tmp513) Fix division of negative numbers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (git-fixes).\n- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (git-fixes).\n- hwmon: (tmp513) Simplify with dev_err_probe() (stable-fixes).\n- hwmon: (tmp513) Use SI constants from units.h (stable-fixes).\n- hyperv: Do not overlap the hvcall IO areas in get_vtl() (git-fixes).\n- i2c: core: fix reference leak in i2c_register_adapter() (git-fixes).\n- i2c: i801: Add support for Intel Arrow Lake-H (stable-fixes).\n- i2c: i801: Add support for Intel Panther Lake (stable-fixes).\n- i2c: imx: add imx7d compatible string for applying erratum ERR007805 (git-fixes).\n- i2c: microchip-core: actually use repeated sends (git-fixes).\n- i2c: microchip-core: fix \"ghost\" detections (git-fixes).\n- i2c: mux: demux-pinctrl: check initial mux selection, too (git-fixes).\n- i2c: pnx: Fix timeout in wait functions (git-fixes).\n- i2c: rcar: fix NACK handling when being a target (git-fixes).\n- i2c: riic: Always round-up when calculating bus period (git-fixes).\n- i2c: xgene-slimpro: Migrate to use generic PCC shmem related macros (stable-fixes).\n- i40e: Fix handling changed priv flags (git-fixes).\n- i915/guc: Accumulate active runtime on gt reset (git-fixes).\n- i915/guc: Ensure busyness counter increases motonically (git-fixes).\n- i915/guc: Reset engine utilization buffer before registration (git-fixes).\n- ibmvnic: Free any outstanding tx skbs during scrq reset (bsc#1226980).\n- ice: Unbind the workqueue (bsc#1234989)\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: consistently use q_idx in ice_vc_cfg_qs_msg() (git-fixes).\n- ice: fix PHY Clock Recovery availability check (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() (git-fixes).\n- igb: Fix potential invalid memory access in igb_init_module() (git-fixes).\n- iio: adc: ad7124: Disable all channels at probe time (git-fixes).\n- iio: adc: ad_sigma_delta: Handle CS assertion as intended in ad_sd_read_reg_raw() (git-fixes).\n- iio: adc: at91: call input_free_device() on allocated iio_dev (git-fixes).\n- iio: adc: rockchip_saradc: fix information leak in triggered buffer (git-fixes).\n- iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() (git-fixes).\n- iio: adc: ti-ads8688: fix information leak in triggered buffer (git-fixes).\n- iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer (git-fixes).\n- iio: gyro: fxas21002c: Fix missing data update in trigger handler (git-fixes).\n- iio: iio-mux: kzalloc instead of devm_kzalloc to ensure page alignment (git-fixes).\n- iio: imu: kmx61: fix information leak in triggered buffer (git-fixes).\n- iio: inkern: call iio_device_put() only on mapped devices (git-fixes).\n- iio: light: as73211: fix channel handling in only-color triggered buffer (git-fixes).\n- iio: light: vcnl4035: fix information leak in triggered buffer (git-fixes).\n- iio: magnetometer: yas530: use signed integer type for clamp limits (git-fixes).\n- iio: pressure: zpa2326: fix information leak in triggered buffer (git-fixes).\n- iio: test : check null return of kunit_kmalloc in iio_rescale_test_scale (git-fixes).\n- instrumentation: Wire up cmpxchg128() (bsc#1220773).\n- intel_th: core: fix kernel-doc warnings (git-fixes).\n- io_uring/rw: avoid punting to io-wq directly (git-fixes).\n- io_uring/tctx: work around xa_store() allocation error issue (git-fixes).\n- io_uring: Fix registered ring file refcount leak (git-fixes).\n- io_uring: always lock __io_cqring_overflow_flush (git-fixes).\n- io_uring: check if iowq is killed before queuing (git-fixes).\n- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (git-fixes).\n- ipmi: ipmb: Add check devm_kasprintf() returned value (git-fixes).\n- ipmi: ssif_bmc: Fix new request loss when bmc ready for a response (git-fixes).\n- irqchip/gic-v3: Force propagation of the active state with a read-back (stable-fixes).\n- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (stable-fixes).\n- irqflags: Explicitly ignore lockdep_hrtimer_exit() argument (git-fixes).\n- isofs: handle CDs with bad root inode but good Joliet root directory (bsc#1234199).\n- ixgbe: downgrade logging of unsupported VF API version to debug (git-fixes).\n- ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5 (git-fixes).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kABI workaround for struct auto_pin_cfg_item change (git-fixes).\n- kABI workaround for struct drm_dp_mst_topology_mgr (git-fixes).\n- kabi/severities: make vcap_find_actionfield PASS (bsc#1220773)\n- kasan: make report_lock a raw spinlock (git-fixes).\n- kconfig: fix file name in warnings when loading KCONFIG_DEFCONFIG_LIST (git-fixes).\n- kdb: Fix buffer overflow during tab-complete (bsc#1234652).\n- kdb: Fix console handling when editing and tab-completing commands (bsc#1234655).\n- kdb: Merge identical case statements in kdb_read() (bsc#1234657).\n- kdb: Use format-specifiers rather than memset() for padding in kdb_read() (bsc#1234658).\n- kdb: Use format-strings rather than \u0027\\0\u0027 injection in kdb_read() (bsc#1234654).\n- kdb: Use the passed prompt in kdb_position_cursor() (bsc#1234654).\n- kdb: address -Wformat-security warnings (bsc#1234659).\n- kgdb: Flush console before entering kgdb on panic (bsc#1234651).\n- kheaders: Ignore silly-rename files (stable-fixes).\n- ktest.pl: Avoid false positives with grub2 skip regex (stable-fixes).\n- ktest.pl: Check kernelrelease return in get_version (git-fixes).\n- ktest.pl: Fix typo \"accesing\" (git-fixes).\n- ktest.pl: Fix typo in comment (git-fixes).\n- ktest.pl: Remove unused declarations in run_bisect_test function (git-fixes).\n- ktest: force $buildonly = 1 for \u0027make_warnings_file\u0027 test type (stable-fixes).\n- landlock: Handle weird files (git-fixes).\n- latencytop: use correct kernel-doc format for func params (git-fixes).\n- leds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex (stable-fixes).\n- leds: lp8860: Write full EEPROM, not only half of it (git-fixes).\n- leds: netxbig: Fix an OF node reference leak in netxbig_leds_get_of_pdata() (git-fixes).\n- lib/inflate.c: remove dead code (git-fixes).\n- lib/stackdepot: print disabled message only if truly disabled (git-fixes).\n- linux/dmaengine.h: fix a few kernel-doc warnings (git-fixes).\n- locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128() (bsc#1220773 git-fix).\n- loop: fix the the direct I/O support check when used on top of block devices (bsc#1234143).\n- mac80211: fix user-power when emulating chanctx (stable-fixes).\n- mac802154: check local interfaces before deleting sdata list (stable-fixes).\n- mailbox: pcc: Add support for platform notification handling (stable-fixes).\n- mailbox: pcc: Support shared interrupt for multiple subspaces (stable-fixes).\n- mailbox: tegra-hsp: Clear mailbox before using message (git-fixes).\n- maple_tree: simplify split calculation (git-fixes).\n- media: camif-core: Add check for clk_enable() (git-fixes).\n- media: ccs: Clean up parsed CCS static data on parse failure (git-fixes).\n- media: ccs: Fix CCS static data parsing for large block sizes (git-fixes).\n- media: ccs: Fix cleanup order in ccs_probe() (git-fixes).\n- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (stable-fixes).\n- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (git-fixes).\n- media: dvb-usb-v2: af9035: fix ISO C90 compilation error on af9035_i2c_master_xfer (git-fixes).\n- media: i2c: imx412: Add missing newline to prints (git-fixes).\n- media: i2c: ov9282: Correct the exposure offset (git-fixes).\n- media: imx-jpeg: Fix potential error pointer dereference in detach_pm() (git-fixes).\n- media: imx296: Add standby delay during probe (git-fixes).\n- media: lmedm04: Handle errors for lme2510_int_read (git-fixes).\n- media: marvell: Add check for clk_enable() (git-fixes).\n- media: mc: fix endpoint iteration (git-fixes).\n- media: mipi-csis: Add check for clk_enable() (git-fixes).\n- media: nxp: imx8-isi: fix v4l2-compliance test errors (git-fixes).\n- media: ov5640: fix get_light_freq on auto (git-fixes).\n- media: rc: iguanair: handle timeouts (git-fixes).\n- media: rkisp1: Fix unused value issue (git-fixes).\n- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (stable-fixes).\n- media: uvcvideo: Fix crash during unbind if gpio unit is in use (git-fixes).\n- media: uvcvideo: Fix double free in error path (git-fixes).\n- media: uvcvideo: Fix event flags in uvc_ctrl_send_events (git-fixes).\n- media: uvcvideo: Force UVC version to 1.0a for 0408:4035 (stable-fixes).\n- media: uvcvideo: Only save async fh if success (git-fixes).\n- media: uvcvideo: Propagate buf-\u003eerror to userspace (git-fixes).\n- media: uvcvideo: RealSense D421 Depth module metadata (stable-fixes).\n- media: uvcvideo: Remove dangling pointers (git-fixes).\n- media: uvcvideo: Remove redundant NULL assignment (git-fixes).\n- media: uvcvideo: Support partial control reads (git-fixes).\n- memory tiering: count PGPROMOTE_SUCCESS when mem tiering is enabled (git-fixes).\n- memory-failure: use a folio in me_huge_page() (git-fixes).\n- memory: tegra20-emc: fix an OF node reference bug in tegra_emc_find_node_by_ram_code() (git-fixes).\n- mfd: da9052-spi: Change read-mask to write-mask (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (git-fixes).\n- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (git-fixes).\n- misc: fastrpc: Deregister device nodes properly in error scenarios (git-fixes).\n- misc: fastrpc: Fix copy buffer page size (git-fixes).\n- misc: fastrpc: Fix registered buffer page address (git-fixes).\n- misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling (git-fixes).\n- misc: microchip: pci1xxxx: Resolve return code mismatch during GPIO set config (git-fixes).\n- misc: misc_minor_alloc to use ida for all dynamic/misc dynamic minors (git-fixes).\n- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).\n- mm,page_owner: do not remove __GFP_NOLOCKDEP in add_stack_record_to_list (git-fixes).\n- mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1234204).\n- mm/memory-failure: cast index to loff_t before shifting it (git-fixes).\n- mm/memory-failure: check the mapcount of the precise page (git-fixes).\n- mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page (git-fixes).\n- mm/memory-failure: pass the folio and the page to collect_procs() (git-fixes).\n- mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (git-fixes).\n- mm/memory_hotplug: add missing mem_hotplug_lock (git-fixes).\n- mm/memory_hotplug: fix error handling in add_memory_resource() (git-fixes).\n- mm/memory_hotplug: prevent accessing by index=-1 (git-fixes).\n- mm/memory_hotplug: use pfn math in place of direct struct page manipulation (git-fixes).\n- mm/migrate: correct nr_failed in migrate_pages_sync() (git-fixes).\n- mm/migrate: fix deadlock in migrate_pages_batch() on large folios (git-fixes).\n- mm/migrate: putback split folios when numa hint migration fails (git-fixes).\n- mm/migrate: split source folio if it is on deferred split list (git-fixes).\n- mm/page_owner: remove free_ts from page_owner output (git-fixes).\n- mm/readahead: do not allow order-1 folio (bsc#1234205).\n- mm/readahead: limit page cache size in page_cache_ra_order() (bsc#1234208).\n- mm/rodata_test: use READ_ONCE() to read const variable (git-fixes).\n- mm: convert DAX lock/unlock page to lock/unlock folio (git-fixes).\n- mm: memory-failure: ensure moving HWPoison flag to the raw error pages (git-fixes).\n- mm: memory-failure: fetch compound head after extra page refcnt is held (git-fixes).\n- mm: memory-failure: fix potential page refcnt leak in memory_failure() (git-fixes).\n- mm: memory-failure: fix race window when trying to get hugetlb folio (git-fixes).\n- mm: memory-failure: remove unneeded PageHuge() check (git-fixes).\n- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).\n- mmc: core: Add SD card quirk for broken poweroff notification (stable-fixes).\n- mmc: mtk-sd: Fix MMC_CAP2_CRYPTO flag setting (git-fixes).\n- mmc: mtk-sd: fix devm_clk_get_optional usage (stable-fixes).\n- mmc: sdhci-esdhc-imx: enable quirks SDHCI_QUIRK_NO_LED (stable-fixes).\n- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (stable-fixes).\n- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (git-fixes).\n- modpost: fix the missed iteration for the max bit in do_input() (git-fixes).\n- mtd: diskonchip: Cast an operand to prevent potential overflow (git-fixes).\n- mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- mtd: hyperbus: rpc-if: Convert to platform remove callback returning void (stable-fixes).\n- mtd: onenand: Fix uninitialized retlen in do_otp_read() (git-fixes).\n- mtd: rawnand: arasan: Fix double assertion of chip-select (git-fixes).\n- mtd: rawnand: arasan: Fix missing de-registration of NAND (git-fixes).\n- mtd: rawnand: fix double free in atmel_pmecc_create_user() (git-fixes).\n- mtd: spinand: Remove write_enable_op() in markbad() (git-fixes).\n- net :mana :Request a V2 response version for MANA_QUERY_GF_STAT (git-fixes).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Remove workaround to avoid syndrome for internal port (git-fixes).\n- net/mlx5e: clear xdp features on non-uplink representors (git-fixes).\n- net/qed: allow old cards not supporting \"num_images\" to work (git-fixes).\n- net/rose: prevent integer overflows in rose_setsockopt() (git-fixes).\n- net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (git-fixes).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- net: phy: c45-tjaxx: add delay between MDIO write and read in soft_reset (git-fixes).\n- net: rose: fix timer races against user threads (git-fixes).\n- net: usb: qmi_wwan: add Quectel RG650V (stable-fixes).\n- net: usb: qmi_wwan: add Telit FE910C04 compositions (stable-fixes).\n- net: usb: rtl8150: enable basic endpoint checking (git-fixes).\n- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (git-fixes).\n- net: wwan: t7xx: Fix FSM command timeout issue (git-fixes).\n- netfilter: nf_tables: validate family when identifying table via handle (bsc#1233778 ZDI-24-1454).\n- nfs: ignore SB_RDONLY when mounting nfs (git-fixes).\n- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (git-fixes).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- nfsd: release svc_expkey/svc_export with rcu_work (git-fixes).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- nilfs2: fix buffer head leaks in calls to truncate_inode_pages() (git-fixes).\n- nilfs2: fix possible int overflows in nilfs_fiemap() (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- nvme-pci: 512 byte aligned dma pool segment quirk (git-fixes).\n- nvme-rdma: unquiesce admin_q before destroy it (git-fixes).\n- nvme-tcp: Fix I/O queue cpu spreading for multiple controllers (git-fixes).\n- nvme-tcp: fix the memleak while create new ctrl failed (git-fixes).\n- nvme/multipath: Fix RCU list traversal to use SRCU primitive (git-fixes).\n- nvme: Add error check for xa_store in nvme_get_effects_log (git-fixes).\n- nvme: Add error path for xa_store in nvme_init_effects (git-fixes).\n- nvme: apple: fix device reference counting (git-fixes).\n- nvme: fix bogus kzalloc() return check in nvme_init_effects_log() (git-fixes).\n- nvme: fix metadata handling in nvme-passthrough (git-fixes).\n- nvmet-loop: avoid using mutex in IO hotpath (git-fixes).\n- nvmet: propagate npwg topology (git-fixes).\n- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (git-fixes).\n- ocfs2: free inode when ocfs2_get_init_inode() fails (git-fixes).\n- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (git-fixes).\n- of: Fix error path in of_parse_phandle_with_args_map() (git-fixes).\n- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (git-fixes).\n- of: address: Report error on resource bounds overflow (stable-fixes).\n- padata: add pd get/put refcnt helper (git-fixes).\n- padata: avoid UAF for reorder_work (git-fixes).\n- padata: fix UAF in padata_reorder (git-fixes).\n- parisc: Raise minimal GCC version (bsc#1220773).\n- parisc: Raise minimal GCC version to 12.0.0 (bsc#1220773 git-fix).\n- percpu: Add {raw,this}_cpu_try_cmpxchg() (bsc#1220773).\n- percpu: Fix self-assignment of __old in raw_cpu_generic_try_cmpxchg() (bsc#1220773 git-fix).\n- percpu: Wire up cmpxchg128 (bsc#1220773).\n- phy: core: Fix an OF node refcount leakage in _of_phy_get() (git-fixes).\n- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (git-fixes).\n- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (git-fixes).\n- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (git-fixes).\n- phy: core: Fix that API devm_phy_put() fails to release the phy (git-fixes).\n- phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP (git-fixes).\n- phy: rockchip: naneng-combphy: fix phy reset (git-fixes).\n- phy: usb: Toggle the PHY power during init (git-fixes).\n- pinctrl: amd: Take suspend type into consideration which pins are non-wake (git-fixes).\n- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (git-fixes).\n- pinctrl: qcom-pmic-gpio: add support for PM8937 (stable-fixes).\n- pinctrl: qcom: spmi-mpp: Add PM8937 compatible (stable-fixes).\n- pinctrl: samsung: fix fwnode refcount cleanup if platform_get_irq_optional() fails (git-fixes).\n- pinmux: Use sequential access to access desc-\u003epinmux data (stable-fixes).\n- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).\n- platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it (git-fixes).\n- platform/x86/intel-uncore-freq: Ignore minor version change (bsc#1225897).\n- platform/x86/intel/tpmi: Add defines to get version information (bsc#1225897).\n- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (stable-fixes).\n- platform/x86: dell-smbios-base: Extends support to Alienware products (stable-fixes).\n- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (stable-fixes).\n- platform/x86: thinkpad_acpi: Fix for ThinkPad\u0027s with ECFW showing incorrect fan speed (stable-fixes).\n- pm:cpupower: Add missing powercap_set_enabled() stub function (git-fixes).\n- power: ip5xxx_power: Fix return value on ADC read errors (git-fixes).\n- power: supply: gpio-charger: Fix set charge current limits (git-fixes).\n- powerpc/book3s64/hugetlb: Fix disabling hugetlb when fadump is active (bsc#1235108).\n- powerpc/iommu: Move pSeries specific functions to pseries/iommu.c (bsc#1220711 ltc#205755).\n- powerpc/iommu: Only build sPAPR access functions on pSeries (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove MVE code (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove ioda1 support (bsc#1220711 ltc#205755).\n- powerpc/powernv/pci: Remove last IODA1 defines (bsc#1220711 ltc#205755).\n- powerpc/pseries/eeh: Fix get PE state translation (bsc#1215199).\n- powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW (bsc#1218470 ltc#204531).\n- powerpc/pseries/vas: Add close() callback in vas_vm_ops struct (bsc#1234825).\n- pps: add an error check in parport_attach (git-fixes).\n- pps: remove usage of the deprecated ida_simple_xx() API (stable-fixes).\n- printk: Add is_printk_legacy_deferred() (bsc#1236733).\n- printk: Defer legacy printing when holding printk_cpu_sync (bsc#1236733).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- pwm: stm32-lp: Add check for clk_enable() (git-fixes).\n- pwm: stm32: Add check for clk_enable() (git-fixes).\n- quota: Fix rcu annotations of inode dquot pointers (bsc#1234197).\n- quota: explicitly forbid quota files from being encrypted (bsc#1234196).\n- quota: flush quota_release_work upon quota writeback (bsc#1234195).\n- quota: simplify drop_dquot_ref() (bsc#1234197).\n- rcu-tasks: Pull sampling of -\u003epercpu_dequeue_lim out of loop (git-fixes)\n- rcu/tree: Defer setting of jiffies during stall reset (git-fixes)\n- rcu: Dump memory object info if callback function is invalid (git-fixes)\n- rcu: Eliminate rcu_gp_slow_unregister() false positive (git-fixes)\n- rcuscale: Move rcu_scale_writer() (git-fixes)\n- rdma/cxgb4: Prevent potential integer overflow on 32bit (git-fixes)\n- readahead: use ilog2 instead of a while loop in page_cache_ra_order() (bsc#1234208).\n- regmap: Use correct format specifier for logging range errors (stable-fixes).\n- regulator: core: Add missing newline character (git-fixes).\n- regulator: of: Implement the unwind path of of_regulator_match() (git-fixes).\n- regulator: rk808: Add apply_bit for BUCK3 on RK809 (stable-fixes).\n- remoteproc: core: Fix ida_free call while not allocated (git-fixes).\n- rtc: cmos: avoid taking rtc_lock for extended period of time (stable-fixes).\n- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read (git-fixes).\n- rtc: zynqmp: Fix optional clock name property (git-fixes).\n- s390/cio: Do not unregister the subchannel based on DNV (git-fixes).\n- s390/cpum_sf: Convert to cmpxchg128() (bsc#1220773).\n- s390/cpum_sf: Handle CPU hotplug remove during sampling (git-fixes).\n- s390/cpum_sf: Remove WARN_ON_ONCE statements (git-fixes).\n- s390/facility: Disable compile time optimization for decompressor code (git-fixes).\n- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (git-fixes).\n- s390/pageattr: Implement missing kernel_page_present() (git-fixes).\n- s390x config: IOMMU_DEFAULT_DMA_LAZY=y (bsc#1235646)\n- samples/landlock: Fix possible NULL dereference in parse_path() (git-fixes).\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat (bsc#1235865).\n- sched/fair: Fix value reported by hot tasks pulled in /proc/schedstat -kabi (bsc#1235865).\n- sched/numa: fix memory leak due to the overwritten vma-\u003enumab_state (git fixes (sched/numa)).\n- scsi: lpfc: Add handling for LS_RJT reason explanation authentication required (bsc#1235409).\n- scsi: lpfc: Add support for large fw object application layer reads (bsc#1235409).\n- scsi: lpfc: Change lpfc_nodelist save_flags member into a bitmask (bsc#1235409).\n- scsi: lpfc: Copyright updates for 14.4.0.7 patches (bsc#1235409).\n- scsi: lpfc: Delete NLP_TARGET_REMOVE flag due to obsolete usage (bsc#1235409).\n- scsi: lpfc: Modify handling of ADISC based on ndlp state and RPI registration (bsc#1235409).\n- scsi: lpfc: Redefine incorrect type in lpfc_create_device_data() (bsc#1235409).\n- scsi: lpfc: Restrict the REG_FCFI MAM field to FCoE adapters only (bsc#1235409).\n- scsi: lpfc: Update definition of firmware configuration mbox cmds (bsc#1235409).\n- scsi: lpfc: Update lpfc version to 14.4.0.7 (bsc#1235409).\n- scsi: qla2xxx: Fix NVMe and NPIV connect issue (bsc#1235406).\n- scsi: qla2xxx: Fix abort in bsg timeout (bsc#1235406).\n- scsi: qla2xxx: Fix use after free on unload (bsc#1235406).\n- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (bsc#1235406).\n- scsi: qla2xxx: Remove the unused \u0027del_list_entry\u0027 field in struct fc_port (bsc#1235406).\n- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (bsc#1235406).\n- scsi: qla2xxx: Update version to 10.02.09.400-k (bsc#1235406).\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (git-fixes).\n- seccomp: Stub for !CONFIG_SECCOMP (stable-fixes).\n- selftest: media_tests: fix trivial UAF typo (git-fixes).\n- selftests/alsa: Fix circular dependency involving global-timer (stable-fixes).\n- selftests/bpf: Test PROBE_MEM of VSYSCALL_ADDR on x86-64 (git-fixes).\n- selftests/landlock: Fix error message (git-fixes).\n- selftests/mm/cow: modify the incorrect checking parameters (git-fixes).\n- selftests/powerpc: Fix argument order to timer_sub() (git-fixes).\n- selftests: harness: fix printing of mismatch values in __EXPECT() (git-fixes).\n- selftests: mptcp: avoid spurious errors on disconnect (git-fixes).\n- selftests: tc-testing: reduce rshift value (stable-fixes).\n- selftests: timers: clocksource-switch: Adapt progress to kselftest framework (git-fixes).\n- selinux: Fix SCTP error inconsistency in selinux_socket_bind() (git-fixes).\n- serial: 8250: Adjust the timeout for FIFO mode (git-fixes).\n- serial: 8250_dw: Add Sophgo SG2044 quirk (stable-fixes).\n- serial: 8250_dw: Do not use struct dw8250_data outside of 8250_dw (git-fixes).\n- serial: 8250_dw: Replace ACPI device check by a quirk (git-fixes).\n- serial: 8250_fintek: Add support for F81216E (stable-fixes).\n- serial: Do not hold the port lock when setting rx-during-tx GPIO (git-fixes).\n- serial: amba-pl011: Fix RX stall when DMA is used (git-fixes).\n- serial: amba-pl011: Use port lock wrappers (stable-fixes).\n- serial: amba-pl011: fix build regression (git-fixes).\n- serial: do not use uninitialized value in uart_poll_init() (git-fixes).\n- serial: imx: only set receiver level if it is zero (git-fixes).\n- serial: imx: set receiver level before starting uart (git-fixes).\n- serial: qcom-geni: Do not cancel/abort if we can\u0027t get the port lock (git-fixes).\n- serial: qcom-geni: disable interrupts during console writes (git-fixes).\n- serial: qcom-geni: fix arg types for qcom_geni_serial_poll_bit() (git-fixes).\n- serial: qcom-geni: fix console corruption (git-fixes).\n- serial: qcom-geni: fix dma rx cancellation (git-fixes).\n- serial: qcom-geni: fix false console tx restart (git-fixes).\n- serial: qcom-geni: fix fifo polling timeout (git-fixes).\n- serial: qcom-geni: fix hard lockup on buffer flush (git-fixes).\n- serial: qcom-geni: fix polled console corruption (git-fixes).\n- serial: qcom-geni: fix polled console initialisation (git-fixes).\n- serial: qcom-geni: fix receiver enable (git-fixes).\n- serial: qcom-geni: fix shutdown race (git-fixes).\n- serial: qcom-geni: fix soft lockup on sw flow control and suspend (git-fixes).\n- serial: qcom-geni: introduce qcom_geni_serial_poll_bitfield() (git-fixes).\n- serial: qcom-geni: revert broken hibernation support (git-fixes).\n- serial: sh-sci: Do not probe the serial port if its slot in sci_ports[] is in use (git-fixes).\n- serial: sh-sci: Drop __initdata macro for port_cfg (git-fixes).\n- serial: stm32: Return IRQ_NONE in the ISR if no handling happend (git-fixes).\n- serial: stm32: do not always set SER_RS485_RX_DURING_TX if RS485 is enabled (git-fixes).\n- slub: Replace cmpxchg_double() (bsc#1220773).\n- slub: Replace cmpxchg_double() - KABI fix (bsc#1220773).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) [hcarvalho: fix issue described in bsc#1233642]\n- soc/fsl: cpm: qmc: Convert to platform remove callback returning void (stable-fixes).\n- soc: atmel: fix device_node release in atmel_soc_device_init() (git-fixes).\n- soc: fsl: cpm1: qmc: Fix blank line and spaces (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_init_resource() and its CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Introduce qmc_{init,exit}_xcc() and their CPM1 version (stable-fixes).\n- soc: fsl: cpm1: qmc: Re-order probe() operations (stable-fixes).\n- soc: fsl: cpm1: qmc: Set the ret error code on platform_get_irq() failure (git-fixes).\n- soc: imx8m: Probe the SoC driver as platform driver (stable-fixes).\n- soc: mediatek: mtk-devapc: Fix leaking IO map on error paths (git-fixes).\n- soc: qcom: Add check devm_kasprintf() returned value (stable-fixes).\n- soc: qcom: geni-se: Add M_TX_FIFO_NOT_EMPTY bit definition (git-fixes).\n- soc: qcom: geni-se: add GP_LENGTH/IRQ_EN_SET/IRQ_EN_CLEAR registers (git-fixes).\n- soc: qcom: smem_state: fix missing of_node_put in error path (git-fixes).\n- soc: qcom: socinfo: Avoid out of bounds read of serial number (git-fixes).\n- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (git-fixes).\n- sound: usb: enable DSD output for ddHiFi TC44C (stable-fixes).\n- sound: usb: format: do not warn that raw DSD is unsupported (stable-fixes).\n- spi: aspeed: Fix an error handling path in aspeed_spi_[read|write]_user() (git-fixes).\n- spi: zynq-qspi: Add check for clk_enable() (git-fixes).\n- srcu: Fix srcu_struct node grpmask overflow on 64-bit systems (git-fixes)\n- srcu: Only accelerate on enqueue time (git-fixes)\n- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).\n- stackdepot: respect __GFP_NOLOCKDEP allocation flag (git-fixes).\n- staging: iio: ad9832: Correct phase range check (git-fixes).\n- staging: iio: ad9834: Correct phase range check (git-fixes).\n- staging: media: imx: fix OF node leak in imx_media_add_of_subdevs() (git-fixes).\n- staging: media: max96712: fix kernel oops when removing module (git-fixes).\n- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (git-fixes).\n- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket (git-fixes).\n- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() (git-fixes).\n- supported.conf: Add support for v4l2-dv-timings (jsc#PED-8645)\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- swiotlb: Enforce page alignment in swiotlb_alloc() (git-fixes).\n- swiotlb: Reinstate page-alignment for mappings \u003e= PAGE_SIZE (git-fixes).\n- thermal/drivers/qcom/tsens-v1: Add support for MSM8937 tsens (stable-fixes).\n- thermal: of: fix OF node leak in of_thermal_zone_find() (git-fixes).\n- thunderbolt: Add support for Intel Lunar Lake (stable-fixes).\n- thunderbolt: Add support for Intel Panther Lake-M/P (stable-fixes).\n- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).\n- tools: Sync if_xdp.h uapi tooling header (git-fixes).\n- tools: hv: change permissions of NetworkManager configuration file (git-fixes).\n- tpm/eventlog: Limit memory allocations for event logs with excessive size (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm: Map the ACPI provided event log (bsc#1233260 bsc#1233259 bsc#1232421).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- tty: serial: 8250: Fix another runtime PM usage counter underflow (git-fixes).\n- tty: serial: kgdboc: Fix 8250_* kgdb over serial (git-fixes).\n- types: Introduce [us]128 (bsc#1220773).\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- ubifs: skip dumping tnc tree when zroot is null (git-fixes).\n- udf: Fix lock ordering in udf_evict_inode() (bsc#1234238).\n- udf: fix uninit-value use in udf_get_fileshortad (bsc#1234243).\n- udf: prevent integer overflow in udf_bitmap_free_blocks() (bsc#1234239).\n- udf: refactor inode_bmap() to handle error (bsc#1234242).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (bsc#1234237).\n- uio: Fix return value of poll (git-fixes).\n- uio: uio_dmem_genirq: check the return value of devm_kasprintf() (git-fixes).\n- usb-storage: Add max sectors quirk for Nokia 208 (stable-fixes).\n- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (stable-fixes).\n- usb: cdns3-ti: Add workaround for Errata i2409 (stable-fixes).\n- usb: cdns3: Add quirk flag to enable suspend residency (stable-fixes).\n- usb: chipidea: add CI_HDRC_FORCE_VBUS_ACTIVE_ALWAYS flag (stable-fixes).\n- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (stable-fixes).\n- usb: dwc2: Fix HCD port connection race (git-fixes).\n- usb: dwc2: Fix HCD resume (git-fixes).\n- usb: dwc2: gadget: Do not write invalid mapped sg entries into dma_desc with iommu enabled (stable-fixes).\n- usb: dwc2: hcd: Fix GetPortStatus \u0026 SetPortFeature (git-fixes).\n- usb: dwc3-am62: Disable autosuspend during remove (git-fixes).\n- usb: dwc3-am62: Fix an OF node leak in phy_syscon_pll_refclk() (git-fixes).\n- usb: dwc3: ep0: Do not clear ep0 DWC3_EP_TRANSFER_STARTED (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (git-fixes).\n- usb: dwc3: ep0: Do not reset resource alloc flag (including ep0) (git-fixes).\n- usb: dwc3: gadget: Rewrite endpoint allocation flow (stable-fixes).\n- usb: dwc3: gadget: fix writing NYET threshold (git-fixes).\n- usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode (git-fixes).\n- usb: ehci-hcd: fix call balance of clocks handling routines (git-fixes).\n- usb: fix reference leak in usb_new_device() (git-fixes).\n- usb: gadget: configfs: Ignore trailing LF for user strings to cdev (git-fixes).\n- usb: gadget: f_fs: Remove WARN_ON in functionfs_bind (git-fixes).\n- usb: gadget: f_tcm: Decrement command ref count on cleanup (git-fixes).\n- usb: gadget: f_tcm: Do not free command immediately (git-fixes).\n- usb: gadget: f_tcm: Do not prepare BOT write request twice (git-fixes).\n- usb: gadget: f_tcm: Fix Get/SetInterface return value (git-fixes).\n- usb: gadget: f_tcm: Translate error to sense (git-fixes).\n- usb: gadget: f_tcm: ep_autoconfig with fullspeed endpoint (git-fixes).\n- usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints (git-fixes).\n- usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null (git-fixes).\n- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (git-fixes).\n- usb: host: max3421-hcd: Correctly abort a USB request (git-fixes).\n- usb: host: xhci-plat: Assign shared_hcd-\u003ersrc_start (git-fixes).\n- usb: typec: anx7411: fix OF node reference leaks in anx7411_typec_switch_probe() (git-fixes).\n- usb: typec: anx7411: fix fwnode_handle reference leak (git-fixes).\n- usb: typec: fix pm usage counter imbalance in ucsi_ccg_sync_control() (bsc#1235001)\n- usb: typec: tcpm/tcpci_maxim: fix error code in max_contaminant_read_resistance_kohm() (git-fixes).\n- usb: typec: tcpm: set SRC_SEND_CAPABILITIES timeout to PD_T_SENDER_RESPONSE (git-fixes).\n- usb: typec: use cleanup facility for \u0027altmodes_node\u0027 (stable-fixes).\n- usbnet: ipheth: break up NCM header size computation (git-fixes).\n- usbnet: ipheth: check that DPE points past NCM header (git-fixes).\n- usbnet: ipheth: fix DPE OoB read (git-fixes).\n- usbnet: ipheth: fix possible overflow in DPE length check (git-fixes).\n- usbnet: ipheth: refactor NCM datagram loop (git-fixes).\n- usbnet: ipheth: use static NDP16 location in URB (git-fixes).\n- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (git-fixes).\n- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (git-fixes).\n- vdpa/mlx5: Fix suboptimal range on iotlb iteration (git-fixes).\n- vdpa: solidrun: Fix UB bug with devres (git-fixes).\n- vfs: fix readahead(2) on block devices (bsc#1234201).\n- vmscan,migrate: fix page count imbalance on node stats when demoting pages (git-fixes).\n- watchdog: rzg2l_wdt: Power on the watchdog domain in the restart handler (stable-fixes).\n- watchdog: rzg2l_wdt: Rely on the reset driver for doing proper reset (stable-fixes).\n- watchdog: rzg2l_wdt: Remove reset de-assert from probe (stable-fixes).\n- wifi: ath11k: Fix unexpected return buffer manager error for WCN6750/WCN6855 (git-fixes).\n- wifi: ath11k: cleanup struct ath11k_mon_data (git-fixes).\n- wifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask() (stable-fixes).\n- wifi: ath12k: fix tx power, max reg power update to firmware (git-fixes).\n- wifi: ath5k: add PCI ID for Arcadyan devices (git-fixes).\n- wifi: ath5k: add PCI ID for SX76X (git-fixes).\n- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (stable-fixes).\n- wifi: brcmfmac: add missing header include for brcmf_dbg (git-fixes).\n- wifi: cfg80211: adjust allocation of colocated AP data (git-fixes).\n- wifi: cfg80211: sme: init n_channels before channels[] access (git-fixes).\n- wifi: cw1200: Fix potential NULL dereference (git-fixes).\n- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (stable-fixes).\n- wifi: iwlwifi: fw: read STEP table from correct UEFI var (git-fixes).\n- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (stable-fixes).\n- wifi: mac80211: Add non-atomic station iterator (stable-fixes).\n- wifi: mac80211: Fix common size calculation for ML element (git-fixes).\n- wifi: mac80211: clean up \u0027ret\u0027 in sta_link_apply_parameters() (stable-fixes).\n- wifi: mac80211: do not flush non-uploaded STAs (git-fixes).\n- wifi: mac80211: export ieee80211_purge_tx_queue() for drivers (stable-fixes).\n- wifi: mac80211: fix mbss changed flags corruption on 32 bit systems (stable-fixes).\n- wifi: mac80211: fix station NSS capability initialization order (git-fixes).\n- wifi: mac80211: fix tid removal during mesh forwarding (git-fixes).\n- wifi: mac80211: init cnt before accessing elem in ieee80211_copy_mbssid_beacon (git-fixes).\n- wifi: mac80211: prohibit deactivating all links (git-fixes).\n- wifi: mac80211: wake the queues in case of failure in resume (stable-fixes).\n- wifi: mt76: mt76u_vendor_request: Do not print error messages when -EPROTO (git-fixes).\n- wifi: mt76: mt7915: Fix mesh scan on MT7916 DBDC (git-fixes).\n- wifi: mt76: mt7915: add module param to select 5 GHz or 6 GHz on MT7916 (git-fixes).\n- wifi: mt76: mt7915: firmware restart on devices with a second pcie link (git-fixes).\n- wifi: mt76: mt7915: fix overflows seen when writing limit attributes (git-fixes).\n- wifi: mt76: mt7915: fix register mapping (git-fixes).\n- wifi: mt76: mt7921: fix using incorrect group cipher after disconnection (git-fixes).\n- wifi: mt76: mt7925: fix off by one in mt7925_load_clc() (git-fixes).\n- wifi: mt76: mt7996: add max mpdu len capability (git-fixes).\n- wifi: mt76: mt7996: fix HE Phy capability (git-fixes).\n- wifi: mt76: mt7996: fix definition of tx descriptor (git-fixes).\n- wifi: mt76: mt7996: fix incorrect indexing of MIB FW event (git-fixes).\n- wifi: mt76: mt7996: fix ldpc setting (git-fixes).\n- wifi: mt76: mt7996: fix overflows seen when writing limit attributes (git-fixes).\n- wifi: mt76: mt7996: fix register mapping (git-fixes).\n- wifi: mt76: mt7996: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7996: fix the capability of reception of EHT MU PPDU (git-fixes).\n- wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one (git-fixes).\n- wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures (stable-fixes).\n- wifi: rtlwifi: destroy workqueue at rtl_deinit_core (git-fixes).\n- wifi: rtlwifi: do not complete firmware loading needlessly (git-fixes).\n- wifi: rtlwifi: fix init_sw_vars leak when probe fails (git-fixes).\n- wifi: rtlwifi: fix memory leaks and invalid access at probe error path (git-fixes).\n- wifi: rtlwifi: pci: wait for firmware loading before releasing memory (git-fixes).\n- wifi: rtlwifi: remove unused check_buddy_priv (git-fixes).\n- wifi: rtlwifi: rtl8192se: rise completion of firmware loading as last step (git-fixes).\n- wifi: rtlwifi: rtl8821ae: Fix media status report (git-fixes).\n- wifi: rtlwifi: rtl8821ae: phy: restore removed code to fix infinite loop (git-fixes).\n- wifi: rtlwifi: usb: fix workqueue leak when probe fails (git-fixes).\n- wifi: rtlwifi: wait for firmware loading before releasing memory (git-fixes).\n- wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb (stable-fixes).\n- wifi: rtw89: check return value of ieee80211_probereq_get() for RNR (stable-fixes).\n- wifi: rtw89: mcc: consider time limits not divisible by 1024 (git-fixes).\n- wifi: wcn36xx: fix channel survey memory allocation size (git-fixes).\n- wifi: wlcore: fix unbalanced pm_runtime calls (git-fixes).\n- workqueue: Add rcu lock check at the end of work item execution (bsc#1236732).\n- workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker (bsc#1235416).\n- writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1234203).\n- x86,amd_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86,intel_iommu: Replace cmpxchg_double() (bsc#1220773).\n- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (git-fixes).\n- x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0 (git-fixes).\n- xfs: Add error handling for xfs_reflink_cancel_cow_range (git-fixes).\n- xfs: Propagate errors from xfs_reflink_cancel_cow_range in xfs_dax_write_iomap_end (git-fixes).\n- xfs: do not allocate COW extents when unsharing a hole (git-fixes).\n- xfs: fix sb_spino_align checks for large fsblock sizes (git-fixes).\n- xfs: remove unknown compat feature check in superblock write validation (git-fixes).\n- xfs: return from xfs_symlink_verify early on V4 filesystems (git-fixes).\n- xfs: sb_spino_align is not verified (git-fixes).\n- xhci: Add usb cold attach (CAS) as a reason to resume root hub (git-fixes).\n- xhci: Allow RPM on the USB controller (1022:43f7) by default (stable-fixes).\n- xhci: fix possible null pointer deref during xhci urb enqueue (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-kernel-3",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20248-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20248-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520248-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20248-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021074.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1214954",
"url": "https://bugzilla.suse.com/1214954"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1218470",
"url": "https://bugzilla.suse.com/1218470"
},
{
"category": "self",
"summary": "SUSE Bug 1220711",
"url": "https://bugzilla.suse.com/1220711"
},
{
"category": "self",
"summary": "SUSE Bug 1220773",
"url": "https://bugzilla.suse.com/1220773"
},
{
"category": "self",
"summary": "SUSE Bug 1224095",
"url": "https://bugzilla.suse.com/1224095"
},
{
"category": "self",
"summary": "SUSE Bug 1224726",
"url": "https://bugzilla.suse.com/1224726"
},
{
"category": "self",
"summary": "SUSE Bug 1225743",
"url": "https://bugzilla.suse.com/1225743"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1225897",
"url": "https://bugzilla.suse.com/1225897"
},
{
"category": "self",
"summary": "SUSE Bug 1226980",
"url": "https://bugzilla.suse.com/1226980"
},
{
"category": "self",
"summary": "SUSE Bug 1227445",
"url": "https://bugzilla.suse.com/1227445"
},
{
"category": "self",
"summary": "SUSE Bug 1228526",
"url": "https://bugzilla.suse.com/1228526"
},
{
"category": "self",
"summary": "SUSE Bug 1228592",
"url": "https://bugzilla.suse.com/1228592"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1229833",
"url": "https://bugzilla.suse.com/1229833"
},
{
"category": "self",
"summary": "SUSE Bug 1230205",
"url": "https://bugzilla.suse.com/1230205"
},
{
"category": "self",
"summary": "SUSE Bug 1230413",
"url": "https://bugzilla.suse.com/1230413"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231016",
"url": "https://bugzilla.suse.com/1231016"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1231909",
"url": "https://bugzilla.suse.com/1231909"
},
{
"category": "self",
"summary": "SUSE Bug 1231963",
"url": "https://bugzilla.suse.com/1231963"
},
{
"category": "self",
"summary": "SUSE Bug 1232087",
"url": "https://bugzilla.suse.com/1232087"
},
{
"category": "self",
"summary": "SUSE Bug 1232101",
"url": "https://bugzilla.suse.com/1232101"
},
{
"category": "self",
"summary": "SUSE Bug 1232158",
"url": "https://bugzilla.suse.com/1232158"
},
{
"category": "self",
"summary": "SUSE Bug 1232161",
"url": "https://bugzilla.suse.com/1232161"
},
{
"category": "self",
"summary": "SUSE Bug 1232193",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232418",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232420",
"url": "https://bugzilla.suse.com/1232420"
},
{
"category": "self",
"summary": "SUSE Bug 1232421",
"url": "https://bugzilla.suse.com/1232421"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232882",
"url": "https://bugzilla.suse.com/1232882"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233055",
"url": "https://bugzilla.suse.com/1233055"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233112",
"url": "https://bugzilla.suse.com/1233112"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233204",
"url": "https://bugzilla.suse.com/1233204"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233259",
"url": "https://bugzilla.suse.com/1233259"
},
{
"category": "self",
"summary": "SUSE Bug 1233260",
"url": "https://bugzilla.suse.com/1233260"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233328",
"url": "https://bugzilla.suse.com/1233328"
},
{
"category": "self",
"summary": "SUSE Bug 1233461",
"url": "https://bugzilla.suse.com/1233461"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233488",
"url": "https://bugzilla.suse.com/1233488"
},
{
"category": "self",
"summary": "SUSE Bug 1233546",
"url": "https://bugzilla.suse.com/1233546"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233638",
"url": "https://bugzilla.suse.com/1233638"
},
{
"category": "self",
"summary": "SUSE Bug 1233642",
"url": "https://bugzilla.suse.com/1233642"
},
{
"category": "self",
"summary": "SUSE Bug 1233772",
"url": "https://bugzilla.suse.com/1233772"
},
{
"category": "self",
"summary": "SUSE Bug 1233778",
"url": "https://bugzilla.suse.com/1233778"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234024",
"url": "https://bugzilla.suse.com/1234024"
},
{
"category": "self",
"summary": "SUSE Bug 1234069",
"url": "https://bugzilla.suse.com/1234069"
},
{
"category": "self",
"summary": "SUSE Bug 1234071",
"url": "https://bugzilla.suse.com/1234071"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234079",
"url": "https://bugzilla.suse.com/1234079"
},
{
"category": "self",
"summary": "SUSE Bug 1234086",
"url": "https://bugzilla.suse.com/1234086"
},
{
"category": "self",
"summary": "SUSE Bug 1234139",
"url": "https://bugzilla.suse.com/1234139"
},
{
"category": "self",
"summary": "SUSE Bug 1234140",
"url": "https://bugzilla.suse.com/1234140"
},
{
"category": "self",
"summary": "SUSE Bug 1234141",
"url": "https://bugzilla.suse.com/1234141"
},
{
"category": "self",
"summary": "SUSE Bug 1234142",
"url": "https://bugzilla.suse.com/1234142"
},
{
"category": "self",
"summary": "SUSE Bug 1234143",
"url": "https://bugzilla.suse.com/1234143"
},
{
"category": "self",
"summary": "SUSE Bug 1234144",
"url": "https://bugzilla.suse.com/1234144"
},
{
"category": "self",
"summary": "SUSE Bug 1234145",
"url": "https://bugzilla.suse.com/1234145"
},
{
"category": "self",
"summary": "SUSE Bug 1234146",
"url": "https://bugzilla.suse.com/1234146"
},
{
"category": "self",
"summary": "SUSE Bug 1234147",
"url": "https://bugzilla.suse.com/1234147"
},
{
"category": "self",
"summary": "SUSE Bug 1234148",
"url": "https://bugzilla.suse.com/1234148"
},
{
"category": "self",
"summary": "SUSE Bug 1234149",
"url": "https://bugzilla.suse.com/1234149"
},
{
"category": "self",
"summary": "SUSE Bug 1234150",
"url": "https://bugzilla.suse.com/1234150"
},
{
"category": "self",
"summary": "SUSE Bug 1234153",
"url": "https://bugzilla.suse.com/1234153"
},
{
"category": "self",
"summary": "SUSE Bug 1234155",
"url": "https://bugzilla.suse.com/1234155"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234158",
"url": "https://bugzilla.suse.com/1234158"
},
{
"category": "self",
"summary": "SUSE Bug 1234159",
"url": "https://bugzilla.suse.com/1234159"
},
{
"category": "self",
"summary": "SUSE Bug 1234160",
"url": "https://bugzilla.suse.com/1234160"
},
{
"category": "self",
"summary": "SUSE Bug 1234161",
"url": "https://bugzilla.suse.com/1234161"
},
{
"category": "self",
"summary": "SUSE Bug 1234162",
"url": "https://bugzilla.suse.com/1234162"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234164",
"url": "https://bugzilla.suse.com/1234164"
},
{
"category": "self",
"summary": "SUSE Bug 1234165",
"url": "https://bugzilla.suse.com/1234165"
},
{
"category": "self",
"summary": "SUSE Bug 1234166",
"url": "https://bugzilla.suse.com/1234166"
},
{
"category": "self",
"summary": "SUSE Bug 1234167",
"url": "https://bugzilla.suse.com/1234167"
},
{
"category": "self",
"summary": "SUSE Bug 1234168",
"url": "https://bugzilla.suse.com/1234168"
},
{
"category": "self",
"summary": "SUSE Bug 1234169",
"url": "https://bugzilla.suse.com/1234169"
},
{
"category": "self",
"summary": "SUSE Bug 1234170",
"url": "https://bugzilla.suse.com/1234170"
},
{
"category": "self",
"summary": "SUSE Bug 1234171",
"url": "https://bugzilla.suse.com/1234171"
},
{
"category": "self",
"summary": "SUSE Bug 1234172",
"url": "https://bugzilla.suse.com/1234172"
},
{
"category": "self",
"summary": "SUSE Bug 1234173",
"url": "https://bugzilla.suse.com/1234173"
},
{
"category": "self",
"summary": "SUSE Bug 1234174",
"url": "https://bugzilla.suse.com/1234174"
},
{
"category": "self",
"summary": "SUSE Bug 1234175",
"url": "https://bugzilla.suse.com/1234175"
},
{
"category": "self",
"summary": "SUSE Bug 1234176",
"url": "https://bugzilla.suse.com/1234176"
},
{
"category": "self",
"summary": "SUSE Bug 1234177",
"url": "https://bugzilla.suse.com/1234177"
},
{
"category": "self",
"summary": "SUSE Bug 1234178",
"url": "https://bugzilla.suse.com/1234178"
},
{
"category": "self",
"summary": "SUSE Bug 1234179",
"url": "https://bugzilla.suse.com/1234179"
},
{
"category": "self",
"summary": "SUSE Bug 1234180",
"url": "https://bugzilla.suse.com/1234180"
},
{
"category": "self",
"summary": "SUSE Bug 1234181",
"url": "https://bugzilla.suse.com/1234181"
},
{
"category": "self",
"summary": "SUSE Bug 1234182",
"url": "https://bugzilla.suse.com/1234182"
},
{
"category": "self",
"summary": "SUSE Bug 1234183",
"url": "https://bugzilla.suse.com/1234183"
},
{
"category": "self",
"summary": "SUSE Bug 1234184",
"url": "https://bugzilla.suse.com/1234184"
},
{
"category": "self",
"summary": "SUSE Bug 1234185",
"url": "https://bugzilla.suse.com/1234185"
},
{
"category": "self",
"summary": "SUSE Bug 1234186",
"url": "https://bugzilla.suse.com/1234186"
},
{
"category": "self",
"summary": "SUSE Bug 1234187",
"url": "https://bugzilla.suse.com/1234187"
},
{
"category": "self",
"summary": "SUSE Bug 1234188",
"url": "https://bugzilla.suse.com/1234188"
},
{
"category": "self",
"summary": "SUSE Bug 1234189",
"url": "https://bugzilla.suse.com/1234189"
},
{
"category": "self",
"summary": "SUSE Bug 1234190",
"url": "https://bugzilla.suse.com/1234190"
},
{
"category": "self",
"summary": "SUSE Bug 1234191",
"url": "https://bugzilla.suse.com/1234191"
},
{
"category": "self",
"summary": "SUSE Bug 1234192",
"url": "https://bugzilla.suse.com/1234192"
},
{
"category": "self",
"summary": "SUSE Bug 1234193",
"url": "https://bugzilla.suse.com/1234193"
},
{
"category": "self",
"summary": "SUSE Bug 1234194",
"url": "https://bugzilla.suse.com/1234194"
},
{
"category": "self",
"summary": "SUSE Bug 1234195",
"url": "https://bugzilla.suse.com/1234195"
},
{
"category": "self",
"summary": "SUSE Bug 1234196",
"url": "https://bugzilla.suse.com/1234196"
},
{
"category": "self",
"summary": "SUSE Bug 1234197",
"url": "https://bugzilla.suse.com/1234197"
},
{
"category": "self",
"summary": "SUSE Bug 1234198",
"url": "https://bugzilla.suse.com/1234198"
},
{
"category": "self",
"summary": "SUSE Bug 1234199",
"url": "https://bugzilla.suse.com/1234199"
},
{
"category": "self",
"summary": "SUSE Bug 1234200",
"url": "https://bugzilla.suse.com/1234200"
},
{
"category": "self",
"summary": "SUSE Bug 1234201",
"url": "https://bugzilla.suse.com/1234201"
},
{
"category": "self",
"summary": "SUSE Bug 1234203",
"url": "https://bugzilla.suse.com/1234203"
},
{
"category": "self",
"summary": "SUSE Bug 1234204",
"url": "https://bugzilla.suse.com/1234204"
},
{
"category": "self",
"summary": "SUSE Bug 1234205",
"url": "https://bugzilla.suse.com/1234205"
},
{
"category": "self",
"summary": "SUSE Bug 1234207",
"url": "https://bugzilla.suse.com/1234207"
},
{
"category": "self",
"summary": "SUSE Bug 1234208",
"url": "https://bugzilla.suse.com/1234208"
},
{
"category": "self",
"summary": "SUSE Bug 1234209",
"url": "https://bugzilla.suse.com/1234209"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234221",
"url": "https://bugzilla.suse.com/1234221"
},
{
"category": "self",
"summary": "SUSE Bug 1234237",
"url": "https://bugzilla.suse.com/1234237"
},
{
"category": "self",
"summary": "SUSE Bug 1234238",
"url": "https://bugzilla.suse.com/1234238"
},
{
"category": "self",
"summary": "SUSE Bug 1234239",
"url": "https://bugzilla.suse.com/1234239"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234242",
"url": "https://bugzilla.suse.com/1234242"
},
{
"category": "self",
"summary": "SUSE Bug 1234243",
"url": "https://bugzilla.suse.com/1234243"
},
{
"category": "self",
"summary": "SUSE Bug 1234278",
"url": "https://bugzilla.suse.com/1234278"
},
{
"category": "self",
"summary": "SUSE Bug 1234279",
"url": "https://bugzilla.suse.com/1234279"
},
{
"category": "self",
"summary": "SUSE Bug 1234280",
"url": "https://bugzilla.suse.com/1234280"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234381",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "self",
"summary": "SUSE Bug 1234454",
"url": "https://bugzilla.suse.com/1234454"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234619",
"url": "https://bugzilla.suse.com/1234619"
},
{
"category": "self",
"summary": "SUSE Bug 1234635",
"url": "https://bugzilla.suse.com/1234635"
},
{
"category": "self",
"summary": "SUSE Bug 1234651",
"url": "https://bugzilla.suse.com/1234651"
},
{
"category": "self",
"summary": "SUSE Bug 1234652",
"url": "https://bugzilla.suse.com/1234652"
},
{
"category": "self",
"summary": "SUSE Bug 1234654",
"url": "https://bugzilla.suse.com/1234654"
},
{
"category": "self",
"summary": "SUSE Bug 1234655",
"url": "https://bugzilla.suse.com/1234655"
},
{
"category": "self",
"summary": "SUSE Bug 1234657",
"url": "https://bugzilla.suse.com/1234657"
},
{
"category": "self",
"summary": "SUSE Bug 1234658",
"url": "https://bugzilla.suse.com/1234658"
},
{
"category": "self",
"summary": "SUSE Bug 1234659",
"url": "https://bugzilla.suse.com/1234659"
},
{
"category": "self",
"summary": "SUSE Bug 1234668",
"url": "https://bugzilla.suse.com/1234668"
},
{
"category": "self",
"summary": "SUSE Bug 1234683",
"url": "https://bugzilla.suse.com/1234683"
},
{
"category": "self",
"summary": "SUSE Bug 1234690",
"url": "https://bugzilla.suse.com/1234690"
},
{
"category": "self",
"summary": "SUSE Bug 1234693",
"url": "https://bugzilla.suse.com/1234693"
},
{
"category": "self",
"summary": "SUSE Bug 1234725",
"url": "https://bugzilla.suse.com/1234725"
},
{
"category": "self",
"summary": "SUSE Bug 1234726",
"url": "https://bugzilla.suse.com/1234726"
},
{
"category": "self",
"summary": "SUSE Bug 1234810",
"url": "https://bugzilla.suse.com/1234810"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234825",
"url": "https://bugzilla.suse.com/1234825"
},
{
"category": "self",
"summary": "SUSE Bug 1234826",
"url": "https://bugzilla.suse.com/1234826"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234829",
"url": "https://bugzilla.suse.com/1234829"
},
{
"category": "self",
"summary": "SUSE Bug 1234832",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234848",
"url": "https://bugzilla.suse.com/1234848"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234855",
"url": "https://bugzilla.suse.com/1234855"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234863",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "self",
"summary": "SUSE Bug 1234884",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "self",
"summary": "SUSE Bug 1234887",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "self",
"summary": "SUSE Bug 1234888",
"url": "https://bugzilla.suse.com/1234888"
},
{
"category": "self",
"summary": "SUSE Bug 1234889",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234893",
"url": "https://bugzilla.suse.com/1234893"
},
{
"category": "self",
"summary": "SUSE Bug 1234898",
"url": "https://bugzilla.suse.com/1234898"
},
{
"category": "self",
"summary": "SUSE Bug 1234899",
"url": "https://bugzilla.suse.com/1234899"
},
{
"category": "self",
"summary": "SUSE Bug 1234900",
"url": "https://bugzilla.suse.com/1234900"
},
{
"category": "self",
"summary": "SUSE Bug 1234901",
"url": "https://bugzilla.suse.com/1234901"
},
{
"category": "self",
"summary": "SUSE Bug 1234905",
"url": "https://bugzilla.suse.com/1234905"
},
{
"category": "self",
"summary": "SUSE Bug 1234906",
"url": "https://bugzilla.suse.com/1234906"
},
{
"category": "self",
"summary": "SUSE Bug 1234907",
"url": "https://bugzilla.suse.com/1234907"
},
{
"category": "self",
"summary": "SUSE Bug 1234909",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "self",
"summary": "SUSE Bug 1234911",
"url": "https://bugzilla.suse.com/1234911"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234916",
"url": "https://bugzilla.suse.com/1234916"
},
{
"category": "self",
"summary": "SUSE Bug 1234918",
"url": "https://bugzilla.suse.com/1234918"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234922",
"url": "https://bugzilla.suse.com/1234922"
},
{
"category": "self",
"summary": "SUSE Bug 1234923",
"url": "https://bugzilla.suse.com/1234923"
},
{
"category": "self",
"summary": "SUSE Bug 1234929",
"url": "https://bugzilla.suse.com/1234929"
},
{
"category": "self",
"summary": "SUSE Bug 1234930",
"url": "https://bugzilla.suse.com/1234930"
},
{
"category": "self",
"summary": "SUSE Bug 1234931",
"url": "https://bugzilla.suse.com/1234931"
},
{
"category": "self",
"summary": "SUSE Bug 1234934",
"url": "https://bugzilla.suse.com/1234934"
},
{
"category": "self",
"summary": "SUSE Bug 1234937",
"url": "https://bugzilla.suse.com/1234937"
},
{
"category": "self",
"summary": "SUSE Bug 1234947",
"url": "https://bugzilla.suse.com/1234947"
},
{
"category": "self",
"summary": "SUSE Bug 1234948",
"url": "https://bugzilla.suse.com/1234948"
},
{
"category": "self",
"summary": "SUSE Bug 1234950",
"url": "https://bugzilla.suse.com/1234950"
},
{
"category": "self",
"summary": "SUSE Bug 1234952",
"url": "https://bugzilla.suse.com/1234952"
},
{
"category": "self",
"summary": "SUSE Bug 1234957",
"url": "https://bugzilla.suse.com/1234957"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234962",
"url": "https://bugzilla.suse.com/1234962"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234968",
"url": "https://bugzilla.suse.com/1234968"
},
{
"category": "self",
"summary": "SUSE Bug 1234969",
"url": "https://bugzilla.suse.com/1234969"
},
{
"category": "self",
"summary": "SUSE Bug 1234970",
"url": "https://bugzilla.suse.com/1234970"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1234974",
"url": "https://bugzilla.suse.com/1234974"
},
{
"category": "self",
"summary": "SUSE Bug 1234989",
"url": "https://bugzilla.suse.com/1234989"
},
{
"category": "self",
"summary": "SUSE Bug 1234999",
"url": "https://bugzilla.suse.com/1234999"
},
{
"category": "self",
"summary": "SUSE Bug 1235000",
"url": "https://bugzilla.suse.com/1235000"
},
{
"category": "self",
"summary": "SUSE Bug 1235001",
"url": "https://bugzilla.suse.com/1235001"
},
{
"category": "self",
"summary": "SUSE Bug 1235002",
"url": "https://bugzilla.suse.com/1235002"
},
{
"category": "self",
"summary": "SUSE Bug 1235003",
"url": "https://bugzilla.suse.com/1235003"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235007",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "self",
"summary": "SUSE Bug 1235009",
"url": "https://bugzilla.suse.com/1235009"
},
{
"category": "self",
"summary": "SUSE Bug 1235011",
"url": "https://bugzilla.suse.com/1235011"
},
{
"category": "self",
"summary": "SUSE Bug 1235016",
"url": "https://bugzilla.suse.com/1235016"
},
{
"category": "self",
"summary": "SUSE Bug 1235019",
"url": "https://bugzilla.suse.com/1235019"
},
{
"category": "self",
"summary": "SUSE Bug 1235031",
"url": "https://bugzilla.suse.com/1235031"
},
{
"category": "self",
"summary": "SUSE Bug 1235032",
"url": "https://bugzilla.suse.com/1235032"
},
{
"category": "self",
"summary": "SUSE Bug 1235033",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "self",
"summary": "SUSE Bug 1235035",
"url": "https://bugzilla.suse.com/1235035"
},
{
"category": "self",
"summary": "SUSE Bug 1235037",
"url": "https://bugzilla.suse.com/1235037"
},
{
"category": "self",
"summary": "SUSE Bug 1235038",
"url": "https://bugzilla.suse.com/1235038"
},
{
"category": "self",
"summary": "SUSE Bug 1235039",
"url": "https://bugzilla.suse.com/1235039"
},
{
"category": "self",
"summary": "SUSE Bug 1235040",
"url": "https://bugzilla.suse.com/1235040"
},
{
"category": "self",
"summary": "SUSE Bug 1235042",
"url": "https://bugzilla.suse.com/1235042"
},
{
"category": "self",
"summary": "SUSE Bug 1235043",
"url": "https://bugzilla.suse.com/1235043"
},
{
"category": "self",
"summary": "SUSE Bug 1235045",
"url": "https://bugzilla.suse.com/1235045"
},
{
"category": "self",
"summary": "SUSE Bug 1235046",
"url": "https://bugzilla.suse.com/1235046"
},
{
"category": "self",
"summary": "SUSE Bug 1235050",
"url": "https://bugzilla.suse.com/1235050"
},
{
"category": "self",
"summary": "SUSE Bug 1235051",
"url": "https://bugzilla.suse.com/1235051"
},
{
"category": "self",
"summary": "SUSE Bug 1235053",
"url": "https://bugzilla.suse.com/1235053"
},
{
"category": "self",
"summary": "SUSE Bug 1235054",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235057",
"url": "https://bugzilla.suse.com/1235057"
},
{
"category": "self",
"summary": "SUSE Bug 1235059",
"url": "https://bugzilla.suse.com/1235059"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235065",
"url": "https://bugzilla.suse.com/1235065"
},
{
"category": "self",
"summary": "SUSE Bug 1235070",
"url": "https://bugzilla.suse.com/1235070"
},
{
"category": "self",
"summary": "SUSE Bug 1235073",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "self",
"summary": "SUSE Bug 1235075",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "self",
"summary": "SUSE Bug 1235100",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "self",
"summary": "SUSE Bug 1235108",
"url": "https://bugzilla.suse.com/1235108"
},
{
"category": "self",
"summary": "SUSE Bug 1235112",
"url": "https://bugzilla.suse.com/1235112"
},
{
"category": "self",
"summary": "SUSE Bug 1235115",
"url": "https://bugzilla.suse.com/1235115"
},
{
"category": "self",
"summary": "SUSE Bug 1235117",
"url": "https://bugzilla.suse.com/1235117"
},
{
"category": "self",
"summary": "SUSE Bug 1235122",
"url": "https://bugzilla.suse.com/1235122"
},
{
"category": "self",
"summary": "SUSE Bug 1235123",
"url": "https://bugzilla.suse.com/1235123"
},
{
"category": "self",
"summary": "SUSE Bug 1235125",
"url": "https://bugzilla.suse.com/1235125"
},
{
"category": "self",
"summary": "SUSE Bug 1235128",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "self",
"summary": "SUSE Bug 1235132",
"url": "https://bugzilla.suse.com/1235132"
},
{
"category": "self",
"summary": "SUSE Bug 1235133",
"url": "https://bugzilla.suse.com/1235133"
},
{
"category": "self",
"summary": "SUSE Bug 1235134",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "self",
"summary": "SUSE Bug 1235138",
"url": "https://bugzilla.suse.com/1235138"
},
{
"category": "self",
"summary": "SUSE Bug 1235155",
"url": "https://bugzilla.suse.com/1235155"
},
{
"category": "self",
"summary": "SUSE Bug 1235160",
"url": "https://bugzilla.suse.com/1235160"
},
{
"category": "self",
"summary": "SUSE Bug 1235217",
"url": "https://bugzilla.suse.com/1235217"
},
{
"category": "self",
"summary": "SUSE Bug 1235219",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "self",
"summary": "SUSE Bug 1235220",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "self",
"summary": "SUSE Bug 1235222",
"url": "https://bugzilla.suse.com/1235222"
},
{
"category": "self",
"summary": "SUSE Bug 1235223",
"url": "https://bugzilla.suse.com/1235223"
},
{
"category": "self",
"summary": "SUSE Bug 1235224",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "self",
"summary": "SUSE Bug 1235227",
"url": "https://bugzilla.suse.com/1235227"
},
{
"category": "self",
"summary": "SUSE Bug 1235230",
"url": "https://bugzilla.suse.com/1235230"
},
{
"category": "self",
"summary": "SUSE Bug 1235241",
"url": "https://bugzilla.suse.com/1235241"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235249",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "self",
"summary": "SUSE Bug 1235251",
"url": "https://bugzilla.suse.com/1235251"
},
{
"category": "self",
"summary": "SUSE Bug 1235252",
"url": "https://bugzilla.suse.com/1235252"
},
{
"category": "self",
"summary": "SUSE Bug 1235389",
"url": "https://bugzilla.suse.com/1235389"
},
{
"category": "self",
"summary": "SUSE Bug 1235390",
"url": "https://bugzilla.suse.com/1235390"
},
{
"category": "self",
"summary": "SUSE Bug 1235391",
"url": "https://bugzilla.suse.com/1235391"
},
{
"category": "self",
"summary": "SUSE Bug 1235406",
"url": "https://bugzilla.suse.com/1235406"
},
{
"category": "self",
"summary": "SUSE Bug 1235409",
"url": "https://bugzilla.suse.com/1235409"
},
{
"category": "self",
"summary": "SUSE Bug 1235410",
"url": "https://bugzilla.suse.com/1235410"
},
{
"category": "self",
"summary": "SUSE Bug 1235412",
"url": "https://bugzilla.suse.com/1235412"
},
{
"category": "self",
"summary": "SUSE Bug 1235413",
"url": "https://bugzilla.suse.com/1235413"
},
{
"category": "self",
"summary": "SUSE Bug 1235415",
"url": "https://bugzilla.suse.com/1235415"
},
{
"category": "self",
"summary": "SUSE Bug 1235416",
"url": "https://bugzilla.suse.com/1235416"
},
{
"category": "self",
"summary": "SUSE Bug 1235417",
"url": "https://bugzilla.suse.com/1235417"
},
{
"category": "self",
"summary": "SUSE Bug 1235418",
"url": "https://bugzilla.suse.com/1235418"
},
{
"category": "self",
"summary": "SUSE Bug 1235423",
"url": "https://bugzilla.suse.com/1235423"
},
{
"category": "self",
"summary": "SUSE Bug 1235424",
"url": "https://bugzilla.suse.com/1235424"
},
{
"category": "self",
"summary": "SUSE Bug 1235425",
"url": "https://bugzilla.suse.com/1235425"
},
{
"category": "self",
"summary": "SUSE Bug 1235426",
"url": "https://bugzilla.suse.com/1235426"
},
{
"category": "self",
"summary": "SUSE Bug 1235427",
"url": "https://bugzilla.suse.com/1235427"
},
{
"category": "self",
"summary": "SUSE Bug 1235428",
"url": "https://bugzilla.suse.com/1235428"
},
{
"category": "self",
"summary": "SUSE Bug 1235429",
"url": "https://bugzilla.suse.com/1235429"
},
{
"category": "self",
"summary": "SUSE Bug 1235430",
"url": "https://bugzilla.suse.com/1235430"
},
{
"category": "self",
"summary": "SUSE Bug 1235433",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "self",
"summary": "SUSE Bug 1235437",
"url": "https://bugzilla.suse.com/1235437"
},
{
"category": "self",
"summary": "SUSE Bug 1235439",
"url": "https://bugzilla.suse.com/1235439"
},
{
"category": "self",
"summary": "SUSE Bug 1235444",
"url": "https://bugzilla.suse.com/1235444"
},
{
"category": "self",
"summary": "SUSE Bug 1235445",
"url": "https://bugzilla.suse.com/1235445"
},
{
"category": "self",
"summary": "SUSE Bug 1235449",
"url": "https://bugzilla.suse.com/1235449"
},
{
"category": "self",
"summary": "SUSE Bug 1235451",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "self",
"summary": "SUSE Bug 1235454",
"url": "https://bugzilla.suse.com/1235454"
},
{
"category": "self",
"summary": "SUSE Bug 1235458",
"url": "https://bugzilla.suse.com/1235458"
},
{
"category": "self",
"summary": "SUSE Bug 1235459",
"url": "https://bugzilla.suse.com/1235459"
},
{
"category": "self",
"summary": "SUSE Bug 1235464",
"url": "https://bugzilla.suse.com/1235464"
},
{
"category": "self",
"summary": "SUSE Bug 1235466",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "self",
"summary": "SUSE Bug 1235473",
"url": "https://bugzilla.suse.com/1235473"
},
{
"category": "self",
"summary": "SUSE Bug 1235479",
"url": "https://bugzilla.suse.com/1235479"
},
{
"category": "self",
"summary": "SUSE Bug 1235480",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "self",
"summary": "SUSE Bug 1235483",
"url": "https://bugzilla.suse.com/1235483"
},
{
"category": "self",
"summary": "SUSE Bug 1235486",
"url": "https://bugzilla.suse.com/1235486"
},
{
"category": "self",
"summary": "SUSE Bug 1235487",
"url": "https://bugzilla.suse.com/1235487"
},
{
"category": "self",
"summary": "SUSE Bug 1235488",
"url": "https://bugzilla.suse.com/1235488"
},
{
"category": "self",
"summary": "SUSE Bug 1235489",
"url": "https://bugzilla.suse.com/1235489"
},
{
"category": "self",
"summary": "SUSE Bug 1235491",
"url": "https://bugzilla.suse.com/1235491"
},
{
"category": "self",
"summary": "SUSE Bug 1235494",
"url": "https://bugzilla.suse.com/1235494"
},
{
"category": "self",
"summary": "SUSE Bug 1235495",
"url": "https://bugzilla.suse.com/1235495"
},
{
"category": "self",
"summary": "SUSE Bug 1235496",
"url": "https://bugzilla.suse.com/1235496"
},
{
"category": "self",
"summary": "SUSE Bug 1235497",
"url": "https://bugzilla.suse.com/1235497"
},
{
"category": "self",
"summary": "SUSE Bug 1235498",
"url": "https://bugzilla.suse.com/1235498"
},
{
"category": "self",
"summary": "SUSE Bug 1235500",
"url": "https://bugzilla.suse.com/1235500"
},
{
"category": "self",
"summary": "SUSE Bug 1235502",
"url": "https://bugzilla.suse.com/1235502"
},
{
"category": "self",
"summary": "SUSE Bug 1235503",
"url": "https://bugzilla.suse.com/1235503"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE Bug 1235519",
"url": "https://bugzilla.suse.com/1235519"
},
{
"category": "self",
"summary": "SUSE Bug 1235520",
"url": "https://bugzilla.suse.com/1235520"
},
{
"category": "self",
"summary": "SUSE Bug 1235521",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "self",
"summary": "SUSE Bug 1235523",
"url": "https://bugzilla.suse.com/1235523"
},
{
"category": "self",
"summary": "SUSE Bug 1235526",
"url": "https://bugzilla.suse.com/1235526"
},
{
"category": "self",
"summary": "SUSE Bug 1235528",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "self",
"summary": "SUSE Bug 1235532",
"url": "https://bugzilla.suse.com/1235532"
},
{
"category": "self",
"summary": "SUSE Bug 1235533",
"url": "https://bugzilla.suse.com/1235533"
},
{
"category": "self",
"summary": "SUSE Bug 1235534",
"url": "https://bugzilla.suse.com/1235534"
},
{
"category": "self",
"summary": "SUSE Bug 1235537",
"url": "https://bugzilla.suse.com/1235537"
},
{
"category": "self",
"summary": "SUSE Bug 1235538",
"url": "https://bugzilla.suse.com/1235538"
},
{
"category": "self",
"summary": "SUSE Bug 1235545",
"url": "https://bugzilla.suse.com/1235545"
},
{
"category": "self",
"summary": "SUSE Bug 1235550",
"url": "https://bugzilla.suse.com/1235550"
},
{
"category": "self",
"summary": "SUSE Bug 1235552",
"url": "https://bugzilla.suse.com/1235552"
},
{
"category": "self",
"summary": "SUSE Bug 1235555",
"url": "https://bugzilla.suse.com/1235555"
},
{
"category": "self",
"summary": "SUSE Bug 1235557",
"url": "https://bugzilla.suse.com/1235557"
},
{
"category": "self",
"summary": "SUSE Bug 1235563",
"url": "https://bugzilla.suse.com/1235563"
},
{
"category": "self",
"summary": "SUSE Bug 1235564",
"url": "https://bugzilla.suse.com/1235564"
},
{
"category": "self",
"summary": "SUSE Bug 1235565",
"url": "https://bugzilla.suse.com/1235565"
},
{
"category": "self",
"summary": "SUSE Bug 1235568",
"url": "https://bugzilla.suse.com/1235568"
},
{
"category": "self",
"summary": "SUSE Bug 1235570",
"url": "https://bugzilla.suse.com/1235570"
},
{
"category": "self",
"summary": "SUSE Bug 1235571",
"url": "https://bugzilla.suse.com/1235571"
},
{
"category": "self",
"summary": "SUSE Bug 1235577",
"url": "https://bugzilla.suse.com/1235577"
},
{
"category": "self",
"summary": "SUSE Bug 1235578",
"url": "https://bugzilla.suse.com/1235578"
},
{
"category": "self",
"summary": "SUSE Bug 1235582",
"url": "https://bugzilla.suse.com/1235582"
},
{
"category": "self",
"summary": "SUSE Bug 1235583",
"url": "https://bugzilla.suse.com/1235583"
},
{
"category": "self",
"summary": "SUSE Bug 1235584",
"url": "https://bugzilla.suse.com/1235584"
},
{
"category": "self",
"summary": "SUSE Bug 1235587",
"url": "https://bugzilla.suse.com/1235587"
},
{
"category": "self",
"summary": "SUSE Bug 1235611",
"url": "https://bugzilla.suse.com/1235611"
},
{
"category": "self",
"summary": "SUSE Bug 1235612",
"url": "https://bugzilla.suse.com/1235612"
},
{
"category": "self",
"summary": "SUSE Bug 1235616",
"url": "https://bugzilla.suse.com/1235616"
},
{
"category": "self",
"summary": "SUSE Bug 1235622",
"url": "https://bugzilla.suse.com/1235622"
},
{
"category": "self",
"summary": "SUSE Bug 1235627",
"url": "https://bugzilla.suse.com/1235627"
},
{
"category": "self",
"summary": "SUSE Bug 1235632",
"url": "https://bugzilla.suse.com/1235632"
},
{
"category": "self",
"summary": "SUSE Bug 1235635",
"url": "https://bugzilla.suse.com/1235635"
},
{
"category": "self",
"summary": "SUSE Bug 1235638",
"url": "https://bugzilla.suse.com/1235638"
},
{
"category": "self",
"summary": "SUSE Bug 1235641",
"url": "https://bugzilla.suse.com/1235641"
},
{
"category": "self",
"summary": "SUSE Bug 1235643",
"url": "https://bugzilla.suse.com/1235643"
},
{
"category": "self",
"summary": "SUSE Bug 1235645",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "self",
"summary": "SUSE Bug 1235646",
"url": "https://bugzilla.suse.com/1235646"
},
{
"category": "self",
"summary": "SUSE Bug 1235647",
"url": "https://bugzilla.suse.com/1235647"
},
{
"category": "self",
"summary": "SUSE Bug 1235650",
"url": "https://bugzilla.suse.com/1235650"
},
{
"category": "self",
"summary": "SUSE Bug 1235653",
"url": "https://bugzilla.suse.com/1235653"
},
{
"category": "self",
"summary": "SUSE Bug 1235656",
"url": "https://bugzilla.suse.com/1235656"
},
{
"category": "self",
"summary": "SUSE Bug 1235657",
"url": "https://bugzilla.suse.com/1235657"
},
{
"category": "self",
"summary": "SUSE Bug 1235663",
"url": "https://bugzilla.suse.com/1235663"
},
{
"category": "self",
"summary": "SUSE Bug 1235686",
"url": "https://bugzilla.suse.com/1235686"
},
{
"category": "self",
"summary": "SUSE Bug 1235700",
"url": "https://bugzilla.suse.com/1235700"
},
{
"category": "self",
"summary": "SUSE Bug 1235705",
"url": "https://bugzilla.suse.com/1235705"
},
{
"category": "self",
"summary": "SUSE Bug 1235707",
"url": "https://bugzilla.suse.com/1235707"
},
{
"category": "self",
"summary": "SUSE Bug 1235708",
"url": "https://bugzilla.suse.com/1235708"
},
{
"category": "self",
"summary": "SUSE Bug 1235710",
"url": "https://bugzilla.suse.com/1235710"
},
{
"category": "self",
"summary": "SUSE Bug 1235714",
"url": "https://bugzilla.suse.com/1235714"
},
{
"category": "self",
"summary": "SUSE Bug 1235716",
"url": "https://bugzilla.suse.com/1235716"
},
{
"category": "self",
"summary": "SUSE Bug 1235720",
"url": "https://bugzilla.suse.com/1235720"
},
{
"category": "self",
"summary": "SUSE Bug 1235723",
"url": "https://bugzilla.suse.com/1235723"
},
{
"category": "self",
"summary": "SUSE Bug 1235727",
"url": "https://bugzilla.suse.com/1235727"
},
{
"category": "self",
"summary": "SUSE Bug 1235730",
"url": "https://bugzilla.suse.com/1235730"
},
{
"category": "self",
"summary": "SUSE Bug 1235737",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "self",
"summary": "SUSE Bug 1235739",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "self",
"summary": "SUSE Bug 1235745",
"url": "https://bugzilla.suse.com/1235745"
},
{
"category": "self",
"summary": "SUSE Bug 1235747",
"url": "https://bugzilla.suse.com/1235747"
},
{
"category": "self",
"summary": "SUSE Bug 1235750",
"url": "https://bugzilla.suse.com/1235750"
},
{
"category": "self",
"summary": "SUSE Bug 1235753",
"url": "https://bugzilla.suse.com/1235753"
},
{
"category": "self",
"summary": "SUSE Bug 1235759",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "self",
"summary": "SUSE Bug 1235764",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "self",
"summary": "SUSE Bug 1235768",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "self",
"summary": "SUSE Bug 1235776",
"url": "https://bugzilla.suse.com/1235776"
},
{
"category": "self",
"summary": "SUSE Bug 1235777",
"url": "https://bugzilla.suse.com/1235777"
},
{
"category": "self",
"summary": "SUSE Bug 1235778",
"url": "https://bugzilla.suse.com/1235778"
},
{
"category": "self",
"summary": "SUSE Bug 1235779",
"url": "https://bugzilla.suse.com/1235779"
},
{
"category": "self",
"summary": "SUSE Bug 1235793",
"url": "https://bugzilla.suse.com/1235793"
},
{
"category": "self",
"summary": "SUSE Bug 1235798",
"url": "https://bugzilla.suse.com/1235798"
},
{
"category": "self",
"summary": "SUSE Bug 1235806",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "self",
"summary": "SUSE Bug 1235808",
"url": "https://bugzilla.suse.com/1235808"
},
{
"category": "self",
"summary": "SUSE Bug 1235812",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "self",
"summary": "SUSE Bug 1235814",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "self",
"summary": "SUSE Bug 1235818",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "self",
"summary": "SUSE Bug 1235842",
"url": "https://bugzilla.suse.com/1235842"
},
{
"category": "self",
"summary": "SUSE Bug 1235865",
"url": "https://bugzilla.suse.com/1235865"
},
{
"category": "self",
"summary": "SUSE Bug 1235894",
"url": "https://bugzilla.suse.com/1235894"
},
{
"category": "self",
"summary": "SUSE Bug 1235902",
"url": "https://bugzilla.suse.com/1235902"
},
{
"category": "self",
"summary": "SUSE Bug 1235903",
"url": "https://bugzilla.suse.com/1235903"
},
{
"category": "self",
"summary": "SUSE Bug 1235906",
"url": "https://bugzilla.suse.com/1235906"
},
{
"category": "self",
"summary": "SUSE Bug 1235918",
"url": "https://bugzilla.suse.com/1235918"
},
{
"category": "self",
"summary": "SUSE Bug 1235919",
"url": "https://bugzilla.suse.com/1235919"
},
{
"category": "self",
"summary": "SUSE Bug 1235920",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "self",
"summary": "SUSE Bug 1235924",
"url": "https://bugzilla.suse.com/1235924"
},
{
"category": "self",
"summary": "SUSE Bug 1235940",
"url": "https://bugzilla.suse.com/1235940"
},
{
"category": "self",
"summary": "SUSE Bug 1235941",
"url": "https://bugzilla.suse.com/1235941"
},
{
"category": "self",
"summary": "SUSE Bug 1235946",
"url": "https://bugzilla.suse.com/1235946"
},
{
"category": "self",
"summary": "SUSE Bug 1235948",
"url": "https://bugzilla.suse.com/1235948"
},
{
"category": "self",
"summary": "SUSE Bug 1235952",
"url": "https://bugzilla.suse.com/1235952"
},
{
"category": "self",
"summary": "SUSE Bug 1235964",
"url": "https://bugzilla.suse.com/1235964"
},
{
"category": "self",
"summary": "SUSE Bug 1235965",
"url": "https://bugzilla.suse.com/1235965"
},
{
"category": "self",
"summary": "SUSE Bug 1235967",
"url": "https://bugzilla.suse.com/1235967"
},
{
"category": "self",
"summary": "SUSE Bug 1235969",
"url": "https://bugzilla.suse.com/1235969"
},
{
"category": "self",
"summary": "SUSE Bug 1235976",
"url": "https://bugzilla.suse.com/1235976"
},
{
"category": "self",
"summary": "SUSE Bug 1235977",
"url": "https://bugzilla.suse.com/1235977"
},
{
"category": "self",
"summary": "SUSE Bug 1236078",
"url": "https://bugzilla.suse.com/1236078"
},
{
"category": "self",
"summary": "SUSE Bug 1236080",
"url": "https://bugzilla.suse.com/1236080"
},
{
"category": "self",
"summary": "SUSE Bug 1236082",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "self",
"summary": "SUSE Bug 1236088",
"url": "https://bugzilla.suse.com/1236088"
},
{
"category": "self",
"summary": "SUSE Bug 1236090",
"url": "https://bugzilla.suse.com/1236090"
},
{
"category": "self",
"summary": "SUSE Bug 1236091",
"url": "https://bugzilla.suse.com/1236091"
},
{
"category": "self",
"summary": "SUSE Bug 1236096",
"url": "https://bugzilla.suse.com/1236096"
},
{
"category": "self",
"summary": "SUSE Bug 1236097",
"url": "https://bugzilla.suse.com/1236097"
},
{
"category": "self",
"summary": "SUSE Bug 1236098",
"url": "https://bugzilla.suse.com/1236098"
},
{
"category": "self",
"summary": "SUSE Bug 1236101",
"url": "https://bugzilla.suse.com/1236101"
},
{
"category": "self",
"summary": "SUSE Bug 1236102",
"url": "https://bugzilla.suse.com/1236102"
},
{
"category": "self",
"summary": "SUSE Bug 1236104",
"url": "https://bugzilla.suse.com/1236104"
},
{
"category": "self",
"summary": "SUSE Bug 1236106",
"url": "https://bugzilla.suse.com/1236106"
},
{
"category": "self",
"summary": "SUSE Bug 1236120",
"url": "https://bugzilla.suse.com/1236120"
},
{
"category": "self",
"summary": "SUSE Bug 1236125",
"url": "https://bugzilla.suse.com/1236125"
},
{
"category": "self",
"summary": "SUSE Bug 1236127",
"url": "https://bugzilla.suse.com/1236127"
},
{
"category": "self",
"summary": "SUSE Bug 1236131",
"url": "https://bugzilla.suse.com/1236131"
},
{
"category": "self",
"summary": "SUSE Bug 1236138",
"url": "https://bugzilla.suse.com/1236138"
},
{
"category": "self",
"summary": "SUSE Bug 1236143",
"url": "https://bugzilla.suse.com/1236143"
},
{
"category": "self",
"summary": "SUSE Bug 1236144",
"url": "https://bugzilla.suse.com/1236144"
},
{
"category": "self",
"summary": "SUSE Bug 1236145",
"url": "https://bugzilla.suse.com/1236145"
},
{
"category": "self",
"summary": "SUSE Bug 1236160",
"url": "https://bugzilla.suse.com/1236160"
},
{
"category": "self",
"summary": "SUSE Bug 1236161",
"url": "https://bugzilla.suse.com/1236161"
},
{
"category": "self",
"summary": "SUSE Bug 1236163",
"url": "https://bugzilla.suse.com/1236163"
},
{
"category": "self",
"summary": "SUSE Bug 1236168",
"url": "https://bugzilla.suse.com/1236168"
},
{
"category": "self",
"summary": "SUSE Bug 1236178",
"url": "https://bugzilla.suse.com/1236178"
},
{
"category": "self",
"summary": "SUSE Bug 1236180",
"url": "https://bugzilla.suse.com/1236180"
},
{
"category": "self",
"summary": "SUSE Bug 1236181",
"url": "https://bugzilla.suse.com/1236181"
},
{
"category": "self",
"summary": "SUSE Bug 1236182",
"url": "https://bugzilla.suse.com/1236182"
},
{
"category": "self",
"summary": "SUSE Bug 1236190",
"url": "https://bugzilla.suse.com/1236190"
},
{
"category": "self",
"summary": "SUSE Bug 1236192",
"url": "https://bugzilla.suse.com/1236192"
},
{
"category": "self",
"summary": "SUSE Bug 1236198",
"url": "https://bugzilla.suse.com/1236198"
},
{
"category": "self",
"summary": "SUSE Bug 1236227",
"url": "https://bugzilla.suse.com/1236227"
},
{
"category": "self",
"summary": "SUSE Bug 1236245",
"url": "https://bugzilla.suse.com/1236245"
},
{
"category": "self",
"summary": "SUSE Bug 1236247",
"url": "https://bugzilla.suse.com/1236247"
},
{
"category": "self",
"summary": "SUSE Bug 1236248",
"url": "https://bugzilla.suse.com/1236248"
},
{
"category": "self",
"summary": "SUSE Bug 1236260",
"url": "https://bugzilla.suse.com/1236260"
},
{
"category": "self",
"summary": "SUSE Bug 1236262",
"url": "https://bugzilla.suse.com/1236262"
},
{
"category": "self",
"summary": "SUSE Bug 1236628",
"url": "https://bugzilla.suse.com/1236628"
},
{
"category": "self",
"summary": "SUSE Bug 1236688",
"url": "https://bugzilla.suse.com/1236688"
},
{
"category": "self",
"summary": "SUSE Bug 1236696",
"url": "https://bugzilla.suse.com/1236696"
},
{
"category": "self",
"summary": "SUSE Bug 1236703",
"url": "https://bugzilla.suse.com/1236703"
},
{
"category": "self",
"summary": "SUSE Bug 1236732",
"url": "https://bugzilla.suse.com/1236732"
},
{
"category": "self",
"summary": "SUSE Bug 1236733",
"url": "https://bugzilla.suse.com/1236733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52923 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27397 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27397/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35839 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36476 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36476/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39282 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39480 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39480/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48873 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-48881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-48881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49978 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50051 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50106 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50199 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50199/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50272 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50299 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52332 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53050 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53050/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53091 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53164 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53168 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53169 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53170 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53172 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53175 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53175/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53185 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53187 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53194 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53195 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53196 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53197 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53203 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53227 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53230 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53231 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53233 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53236 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-54680 page",
"url": "https://www.suse.com/security/cve/CVE-2024-54680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55639 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55639/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-55916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-55916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56369 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56372 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56531 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56531/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56532 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56532/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56533 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56533/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56536 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56543 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56546 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56546/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56557 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56557/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56558 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56562 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56566 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56568 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56571 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56572 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56573 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56573/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56574 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56574/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56575 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56576 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56577 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56578 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56578/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56582 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56584 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56584/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56587 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56587/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56588 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56589 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56590 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56593 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56593/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56594 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56595 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56597 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56600 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56600/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56601 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56601/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56602 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56603 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56606 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56607 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56608 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56608/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56609 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56609/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56610 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56611 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56611/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56614 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56615 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56616 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56617 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56617/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56620 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56622 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56622/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56623 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56625 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56625/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56629 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56629/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56630 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56630/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56631 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56631/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56634 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56634/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56635 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56635/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56636 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56636/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56637 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56637/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56641 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56642 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56642/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56643 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56643/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56644 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56645 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56648 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56648/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56649 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56650 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56650/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56651 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56654 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56654/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56656 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56662 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56663 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56664 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56665 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56665/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56670 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56681 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56683 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56688 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56698 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56700 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56700/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56701 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56704 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56705 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56708 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56712 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56748 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56763 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56763/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56765 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56766 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56769 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56769/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56775 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56777 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56779 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57792 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57793 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57795 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57801 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57802 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57809 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57838 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57849 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57874 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57876 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57892 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57899 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57910 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57910/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57917 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57926 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57926/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57929 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57931 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57933 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57936 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-57946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-57946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21632 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21645 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21646 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21646/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21649 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21650 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21650/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21651 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21652 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21653 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21653/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21655 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21655/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21656 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21662 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21663 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21664 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21674 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21676 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21682 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21682/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-03-27T14:32:55Z",
"generator": {
"date": "2025-03-27T14:32:55Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20248-1",
"initial_release_date": "2025-03-27T14:32:55Z",
"revision_history": [
{
"date": "2025-03-27T14:32:55Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-25.1.aarch64",
"product": {
"name": "kernel-default-6.4.0-25.1.aarch64",
"product_id": "kernel-default-6.4.0-25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-24.1.21.4.aarch64",
"product": {
"name": "kernel-default-base-6.4.0-24.1.21.4.aarch64",
"product_id": "kernel-default-base-6.4.0-24.1.21.4.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-25.1.aarch64",
"product": {
"name": "kernel-default-devel-6.4.0-25.1.aarch64",
"product_id": "kernel-default-devel-6.4.0-25.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.4.0-25.1.noarch",
"product": {
"name": "kernel-devel-6.4.0-25.1.noarch",
"product_id": "kernel-devel-6.4.0-25.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.4.0-25.1.noarch",
"product": {
"name": "kernel-macros-6.4.0-25.1.noarch",
"product_id": "kernel-macros-6.4.0-25.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.4.0-25.1.noarch",
"product": {
"name": "kernel-source-6.4.0-25.1.noarch",
"product_id": "kernel-source-6.4.0-25.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-25.1.ppc64le",
"product": {
"name": "kernel-default-6.4.0-25.1.ppc64le",
"product_id": "kernel-default-6.4.0-25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"product": {
"name": "kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"product_id": "kernel-default-base-6.4.0-24.1.21.4.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-25.1.ppc64le",
"product": {
"name": "kernel-default-devel-6.4.0-25.1.ppc64le",
"product_id": "kernel-default-devel-6.4.0-25.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-25.1.s390x",
"product": {
"name": "kernel-default-6.4.0-25.1.s390x",
"product_id": "kernel-default-6.4.0-25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-25.1.s390x",
"product": {
"name": "kernel-default-devel-6.4.0-25.1.s390x",
"product_id": "kernel-default-devel-6.4.0-25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-25.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.4.0-25.1.s390x",
"product_id": "kernel-default-livepatch-6.4.0-25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"product": {
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"product_id": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-default-6.4.0-25.1.x86_64",
"product_id": "kernel-default-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-24.1.21.4.x86_64",
"product": {
"name": "kernel-default-base-6.4.0-24.1.21.4.x86_64",
"product_id": "kernel-default-base-6.4.0-24.1.21.4.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-default-devel-6.4.0-25.1.x86_64",
"product_id": "kernel-default-devel-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.4.0-25.1.x86_64",
"product_id": "kernel-default-livepatch-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-25.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.4.0-25.1.x86_64",
"product_id": "kernel-kvmsmall-6.4.0-25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"product_id": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-25.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-25.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le"
},
"product_reference": "kernel-default-6.4.0-25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-25.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x"
},
"product_reference": "kernel-default-6.4.0-25.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-24.1.21.4.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-24.1.21.4.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-24.1.21.4.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le"
},
"product_reference": "kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-24.1.21.4.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-24.1.21.4.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-25.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64"
},
"product_reference": "kernel-default-devel-6.4.0-25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-25.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.4.0-25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-25.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x"
},
"product_reference": "kernel-default-devel-6.4.0-25.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-default-devel-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-25.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-25.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-25.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.4.0-25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x"
},
"product_reference": "kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-25.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
},
"product_reference": "kernel-source-6.4.0-25.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: adapt set backend to use GC transaction API\n\nUse the GC transaction API to replace the old and buggy gc API and the\nbusy mark approach.\n\nNo set elements are removed from async garbage collection anymore,\ninstead the _DEAD bit is set on so the set element is not visible from\nlookup path anymore. Async GC enqueues transaction work that might be\naborted and retried later.\n\nrbtree and pipapo set backends does not set on the _DEAD bit from the\nsync GC path since this runs in control plane path where mutex is held.\nIn this case, set elements are deactivated, removed and then released\nvia RCU callback, sync GC never fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52923",
"url": "https://www.suse.com/security/cve/CVE-2023-52923"
},
{
"category": "external",
"summary": "SUSE Bug 1236104 for CVE-2023-52923",
"url": "https://bugzilla.suse.com/1236104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2023-52923"
},
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-27397",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27397"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: use timestamp to check for set element timeout\n\nAdd a timestamp field at the beginning of the transaction, store it\nin the nftables per-netns area.\n\nUpdate set backend .insert, .deactivate and sync gc path to use the\ntimestamp, this avoids that an element expires while control plane\ntransaction is still unfinished.\n\n.lookup and .update, which are used from packet path, still use the\ncurrent time to check if the element has expired. And .get path and dump\nalso since this runs lockless under rcu read size lock. Then, there is\nasync gc which also needs to check the current time since it runs\nasynchronously from a workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27397",
"url": "https://www.suse.com/security/cve/CVE-2024-27397"
},
{
"category": "external",
"summary": "SUSE Bug 1224095 for CVE-2024-27397",
"url": "https://bugzilla.suse.com/1224095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-27397"
},
{
"cve": "CVE-2024-35839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bridge: replace physindev with physinif in nf_bridge_info\n\nAn skb can be added to a neigh-\u003earp_queue while waiting for an arp\nreply. Where original skb\u0027s skb-\u003edev can be different to neigh\u0027s\nneigh-\u003edev. For instance in case of bridging dnated skb from one veth to\nanother, the skb would be added to a neigh-\u003earp_queue of the bridge.\n\nAs skb-\u003edev can be reset back to nf_bridge-\u003ephysindev and used, and as\nthere is no explicit mechanism that prevents this physindev from been\nfreed under us (for instance neigh_flush_dev doesn\u0027t cleanup skbs from\ndifferent device\u0027s neigh queue) we can crash on e.g. this stack:\n\narp_process\n neigh_update\n skb = __skb_dequeue(\u0026neigh-\u003earp_queue)\n neigh_resolve_output(..., skb)\n ...\n br_nf_dev_xmit\n br_nf_pre_routing_finish_bridge_slow\n skb-\u003edev = nf_bridge-\u003ephysindev\n br_handle_frame_finish\n\nLet\u0027s use plain ifindex instead of net_device link. To peek into the\noriginal net_device we will use dev_get_by_index_rcu(). Thus either we\nget device and are safe to use it or we don\u0027t get it and drop skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35839",
"url": "https://www.suse.com/security/cve/CVE-2024-35839"
},
{
"category": "external",
"summary": "SUSE Bug 1224726 for CVE-2024-35839",
"url": "https://bugzilla.suse.com/1224726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-35839"
},
{
"cve": "CVE-2024-36476",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36476"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs: Ensure \u0027ib_sge list\u0027 is accessible\n\nMove the declaration of the \u0027ib_sge list\u0027 variable outside the\n\u0027always_invalidate\u0027 block to ensure it remains accessible for use\nthroughout the function.\n\nPreviously, \u0027ib_sge list\u0027 was declared within the \u0027always_invalidate\u0027\nblock, limiting its accessibility, then caused a\n\u0027BUG: kernel NULL pointer dereference\u0027[1].\n ? __die_body.cold+0x19/0x27\n ? page_fault_oops+0x15a/0x2d0\n ? search_module_extables+0x19/0x60\n ? search_bpf_extables+0x5f/0x80\n ? exc_page_fault+0x7e/0x180\n ? asm_exc_page_fault+0x26/0x30\n ? memcpy_orig+0xd5/0x140\n rxe_mr_copy+0x1c3/0x200 [rdma_rxe]\n ? rxe_pool_get_index+0x4b/0x80 [rdma_rxe]\n copy_data+0xa5/0x230 [rdma_rxe]\n rxe_requester+0xd9b/0xf70 [rdma_rxe]\n ? finish_task_switch.isra.0+0x99/0x2e0\n rxe_sender+0x13/0x40 [rdma_rxe]\n do_task+0x68/0x1e0 [rdma_rxe]\n process_one_work+0x177/0x330\n worker_thread+0x252/0x390\n ? __pfx_worker_thread+0x10/0x10\n\nThis change ensures the variable is available for subsequent operations\nthat require it.\n\n[1] https://lore.kernel.org/linux-rdma/6a1f3e8f-deb0-49f9-bc69-a9b03ecfcda7@fujitsu.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36476",
"url": "https://www.suse.com/security/cve/CVE-2024-36476"
},
{
"category": "external",
"summary": "SUSE Bug 1235902 for CVE-2024-36476",
"url": "https://bugzilla.suse.com/1235902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-36476"
},
{
"cve": "CVE-2024-36908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-iocost: do not WARN if iocg was already offlined\n\nIn iocg_pay_debt(), warn is triggered if \u0027active_list\u0027 is empty, which\nis intended to confirm iocg is active when it has debt. However, warn\ncan be triggered during a blkcg or disk removal, if iocg_waitq_timer_fn()\nis run at that time:\n\n WARNING: CPU: 0 PID: 2344971 at block/blk-iocost.c:1402 iocg_pay_debt+0x14c/0x190\n Call trace:\n iocg_pay_debt+0x14c/0x190\n iocg_kick_waitq+0x438/0x4c0\n iocg_waitq_timer_fn+0xd8/0x130\n __run_hrtimer+0x144/0x45c\n __hrtimer_run_queues+0x16c/0x244\n hrtimer_interrupt+0x2cc/0x7b0\n\nThe warn in this situation is meaningless. Since this iocg is being\nremoved, the state of the \u0027active_list\u0027 is irrelevant, and \u0027waitq_timer\u0027\nis canceled after removing \u0027active_list\u0027 in ioc_pd_free(), which ensures\niocg is freed after iocg_waitq_timer_fn() returns.\n\nTherefore, add the check if iocg was already offlined to avoid warn\nwhen removing a blkcg or disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36908",
"url": "https://www.suse.com/security/cve/CVE-2024-36908"
},
{
"category": "external",
"summary": "SUSE Bug 1225743 for CVE-2024-36908",
"url": "https://bugzilla.suse.com/1225743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-36908"
},
{
"cve": "CVE-2024-39282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: t7xx: Fix FSM command timeout issue\n\nWhen driver processes the internal state change command, it use an\nasynchronous thread to process the command operation. If the main\nthread detects that the task has timed out, the asynchronous thread\nwill panic when executing the completion notification because the\nmain thread completion object has been released.\n\nBUG: unable to handle page fault for address: fffffffffffffff8\nPGD 1f283a067 P4D 1f283a067 PUD 1f283c067 PMD 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nRIP: 0010:complete_all+0x3e/0xa0\n[...]\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x68/0xb0\n ? page_fault_oops+0x379/0x3e0\n ? exc_page_fault+0x69/0xa0\n ? asm_exc_page_fault+0x22/0x30\n ? complete_all+0x3e/0xa0\n fsm_main_thread+0xa3/0x9c0 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_autoremove_wake_function+0x10/0x10\n kthread+0xd8/0x110\n ? __pfx_fsm_main_thread+0x10/0x10 [mtk_t7xx (HASH:1400 5)]\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x38/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n[...]\nCR2: fffffffffffffff8\n---[ end trace 0000000000000000 ]---\n\nUse the reference counter to ensure safe release as Sergey suggests:\nhttps://lore.kernel.org/all/da90f64c-260a-4329-87bf-1f9ff20a5951@gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39282",
"url": "https://www.suse.com/security/cve/CVE-2024-39282"
},
{
"category": "external",
"summary": "SUSE Bug 1235903 for CVE-2024-39282",
"url": "https://bugzilla.suse.com/1235903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-39282"
},
{
"cve": "CVE-2024-39480",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-39480"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkdb: Fix buffer overflow during tab-complete\n\nCurrently, when the user attempts symbol completion with the Tab key, kdb\nwill use strncpy() to insert the completed symbol into the command buffer.\nUnfortunately it passes the size of the source buffer rather than the\ndestination to strncpy() with predictably horrible results. Most obviously\nif the command buffer is already full but cp, the cursor position, is in\nthe middle of the buffer, then we will write past the end of the supplied\nbuffer.\n\nFix this by replacing the dubious strncpy() calls with memmove()/memcpy()\ncalls plus explicit boundary checks to make sure we have enough space\nbefore we start moving characters around.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-39480",
"url": "https://www.suse.com/security/cve/CVE-2024-39480"
},
{
"category": "external",
"summary": "SUSE Bug 1227445 for CVE-2024-39480",
"url": "https://bugzilla.suse.com/1227445"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-39480"
},
{
"cve": "CVE-2024-41042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prefer nft_chain_validate\n\nnft_chain_validate already performs loop detection because a cycle will\nresult in a call stack overflow (ctx-\u003elevel \u003e= NFT_JUMP_STACK_SIZE).\n\nIt also follows maps via -\u003evalidate callback in nft_lookup, so there\nappears no reason to iterate the maps again.\n\nnf_tables_check_loops() and all its helper functions can be removed.\nThis improves ruleset load time significantly, from 23s down to 12s.\n\nThis also fixes a crash bug. Old loop detection code can result in\nunbounded recursion:\n\nBUG: TASK stack guard page was hit at ....\nOops: stack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 4 PID: 1539 Comm: nft Not tainted 6.10.0-rc5+ #1\n[..]\n\nwith a suitable ruleset during validation of register stores.\n\nI can\u0027t see any actual reason to attempt to check for this from\nnft_validate_register_store(), at this point the transaction is still in\nprogress, so we don\u0027t have a full picture of the rule graph.\n\nFor nf-next it might make sense to either remove it or make this depend\non table-\u003evalidate_state in case we could catch an error earlier\n(for improved error reporting to userspace).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41042",
"url": "https://www.suse.com/security/cve/CVE-2024-41042"
},
{
"category": "external",
"summary": "SUSE Bug 1228526 for CVE-2024-41042",
"url": "https://bugzilla.suse.com/1228526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-41042"
},
{
"cve": "CVE-2024-43913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: apple: fix device reference counting\n\nDrivers must call nvme_uninit_ctrl after a successful nvme_init_ctrl.\nSplit the allocation side out to make the error handling boundary easier\nto navigate. The apple driver had been doing this wrong, leaking the\ncontroller device memory on a tagset failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43913",
"url": "https://www.suse.com/security/cve/CVE-2024-43913"
},
{
"category": "external",
"summary": "SUSE Bug 1229833 for CVE-2024-43913",
"url": "https://bugzilla.suse.com/1229833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-43913"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-44996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix recursive -\u003erecvmsg calls\n\nAfter a vsock socket has been added to a BPF sockmap, its prot-\u003erecvmsg\nhas been replaced with vsock_bpf_recvmsg(). Thus the following\nrecursiion could happen:\n\nvsock_bpf_recvmsg()\n -\u003e __vsock_recvmsg()\n -\u003e vsock_connectible_recvmsg()\n -\u003e prot-\u003erecvmsg()\n -\u003e vsock_bpf_recvmsg() again\n\nWe need to fix it by calling the original -\u003erecvmsg() without any BPF\nsockmap logic in __vsock_recvmsg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44996",
"url": "https://www.suse.com/security/cve/CVE-2024-44996"
},
{
"category": "external",
"summary": "SUSE Bug 1230205 for CVE-2024-44996",
"url": "https://bugzilla.suse.com/1230205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-44996"
},
{
"cve": "CVE-2024-45828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Mask ring interrupts before ring stop request\n\nBus cleanup path in DMA mode may trigger a RING_OP_STAT interrupt when\nthe ring is being stopped. Depending on timing between ring stop request\ncompletion, interrupt handler removal and code execution this may lead\nto a NULL pointer dereference in hci_dma_irq_handler() if it gets to run\nafter the io_data pointer is set to NULL in hci_dma_cleanup().\n\nPrevent this my masking the ring interrupts before ring stop request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45828",
"url": "https://www.suse.com/security/cve/CVE-2024-45828"
},
{
"category": "external",
"summary": "SUSE Bug 1235705 for CVE-2024-45828",
"url": "https://bugzilla.suse.com/1235705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-45828"
},
{
"cve": "CVE-2024-46896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: don\u0027t access invalid sched\n\nSince 2320c9e6a768 (\"drm/sched: memset() \u0027job\u0027 in drm_sched_job_init()\")\naccessing job-\u003ebase.sched can produce unexpected results as the initialisation\nof (*job)-\u003ebase.sched done in amdgpu_job_alloc is overwritten by the\nmemset.\n\nThis commit fixes an issue when a CS would fail validation and would\nbe rejected after job-\u003enum_ibs is incremented. In this case,\namdgpu_ib_free(ring-\u003eadev, ...) will be called, which would crash the\nmachine because the ring value is bogus.\n\nTo fix this, pass a NULL pointer to amdgpu_ib_free(): we can do this\nbecause the device is actually not used in this function.\n\nThe next commit will remove the ring argument completely.\n\n(cherry picked from commit 2ae520cb12831d264ceb97c61f72c59d33c0dbd7)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46896",
"url": "https://www.suse.com/security/cve/CVE-2024-46896"
},
{
"category": "external",
"summary": "SUSE Bug 1235707 for CVE-2024-46896",
"url": "https://bugzilla.suse.com/1235707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-46896"
},
{
"cve": "CVE-2024-47141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinmux: Use sequential access to access desc-\u003epinmux data\n\nWhen two client of the same gpio call pinctrl_select_state() for the\nsame functionality, we are seeing NULL pointer issue while accessing\ndesc-\u003emux_owner.\n\nLet\u0027s say two processes A, B executing in pin_request() for the same pin\nand process A updates the desc-\u003emux_usecount but not yet updated the\ndesc-\u003emux_owner while process B see the desc-\u003emux_usecount which got\nupdated by A path and further executes strcmp and while accessing\ndesc-\u003emux_owner it crashes with NULL pointer.\n\nSerialize the access to mux related setting with a mutex lock.\n\n\tcpu0 (process A)\t\t\tcpu1(process B)\n\npinctrl_select_state() {\t\t pinctrl_select_state() {\n pin_request() {\t\t\t\tpin_request() {\n ...\n\t\t\t\t\t\t ....\n } else {\n desc-\u003emux_usecount++;\n \t\t\t\t\t\tdesc-\u003emux_usecount \u0026\u0026 strcmp(desc-\u003emux_owner, owner)) {\n\n if (desc-\u003emux_usecount \u003e 1)\n return 0;\n desc-\u003emux_owner = owner;\n\n }\t\t\t\t\t\t}",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47141",
"url": "https://www.suse.com/security/cve/CVE-2024-47141"
},
{
"category": "external",
"summary": "SUSE Bug 1235708 for CVE-2024-47141",
"url": "https://bugzilla.suse.com/1235708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-47141"
},
{
"cve": "CVE-2024-47143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-debug: fix a possible deadlock on radix_lock\n\nradix_lock() shouldn\u0027t be held while holding dma_hash_entry[idx].lock\notherwise, there\u0027s a possible deadlock scenario when\ndma debug API is called holding rq_lock():\n\nCPU0 CPU1 CPU2\ndma_free_attrs()\ncheck_unmap() add_dma_entry() __schedule() //out\n (A) rq_lock()\nget_hash_bucket()\n(A) dma_entry_hash\n check_sync()\n (A) radix_lock() (W) dma_entry_hash\ndma_entry_free()\n(W) radix_lock()\n // CPU2\u0027s one\n (W) rq_lock()\n\nCPU1 situation can happen when it extending radix tree and\nit tries to wake up kswapd via wake_all_kswapd().\n\nCPU2 situation can happen while perf_event_task_sched_out()\n(i.e. dma sync operation is called while deleting perf_event using\n etm and etr tmc which are Arm Coresight hwtracing driver backends).\n\nTo remove this possible situation, call dma_entry_free() after\nput_hash_bucket() in check_unmap().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47143",
"url": "https://www.suse.com/security/cve/CVE-2024-47143"
},
{
"category": "external",
"summary": "SUSE Bug 1235710 for CVE-2024-47143",
"url": "https://bugzilla.suse.com/1235710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-47143"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-47809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndlm: fix possible lkb_resource null dereference\n\nThis patch fixes a possible null pointer dereference when this function is\ncalled from request_lock() as lkb-\u003elkb_resource is not assigned yet,\nonly after validate_lock_args() by calling attach_lkb(). Another issue\nis that a resource name could be a non printable bytearray and we cannot\nassume to be ASCII coded.\n\nThe log functionality is probably never being hit when DLM is used in\nnormal way and no debug logging is enabled. The null pointer dereference\ncan only occur on a new created lkb that does not have the resource\nassigned yet, it probably never hits the null pointer dereference but we\nshould be sure that other changes might not change this behaviour and we\nactually can hit the mentioned null pointer dereference.\n\nIn this patch we just drop the printout of the resource name, the lkb id\nis enough to make a possible connection to a resource name if this\nexists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47809",
"url": "https://www.suse.com/security/cve/CVE-2024-47809"
},
{
"category": "external",
"summary": "SUSE Bug 1235714 for CVE-2024-47809",
"url": "https://bugzilla.suse.com/1235714"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-47809"
},
{
"cve": "CVE-2024-48873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48873"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: check return value of ieee80211_probereq_get() for RNR\n\nThe return value of ieee80211_probereq_get() might be NULL, so check it\nbefore using to avoid NULL pointer access.\n\nAddresses-Coverity-ID: 1529805 (\"Dereference null return value\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48873",
"url": "https://www.suse.com/security/cve/CVE-2024-48873"
},
{
"category": "external",
"summary": "SUSE Bug 1235716 for CVE-2024-48873",
"url": "https://bugzilla.suse.com/1235716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-48873"
},
{
"cve": "CVE-2024-48881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-48881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbcache: revert replacing IS_ERR_OR_NULL with IS_ERR again\n\nCommit 028ddcac477b (\"bcache: Remove unnecessary NULL point check in\nnode allocations\") leads a NULL pointer deference in cache_set_flush().\n\n1721 if (!IS_ERR_OR_NULL(c-\u003eroot))\n1722 list_add(\u0026c-\u003eroot-\u003elist, \u0026c-\u003ebtree_cache);\n\n\u003eFrom the above code in cache_set_flush(), if previous registration code\nfails before allocating c-\u003eroot, it is possible c-\u003eroot is NULL as what\nit is initialized. __bch_btree_node_alloc() never returns NULL but\nc-\u003eroot is possible to be NULL at above line 1721.\n\nThis patch replaces IS_ERR() by IS_ERR_OR_NULL() to fix this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-48881",
"url": "https://www.suse.com/security/cve/CVE-2024-48881"
},
{
"category": "external",
"summary": "SUSE Bug 1235727 for CVE-2024-48881",
"url": "https://bugzilla.suse.com/1235727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-48881"
},
{
"cve": "CVE-2024-49569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-rdma: unquiesce admin_q before destroy it\n\nKernel will hang on destroy admin_q while we create ctrl failed, such\nas following calltrace:\n\nPID: 23644 TASK: ff2d52b40f439fc0 CPU: 2 COMMAND: \"nvme\"\n #0 [ff61d23de260fb78] __schedule at ffffffff8323bc15\n #1 [ff61d23de260fc08] schedule at ffffffff8323c014\n #2 [ff61d23de260fc28] blk_mq_freeze_queue_wait at ffffffff82a3dba1\n #3 [ff61d23de260fc78] blk_freeze_queue at ffffffff82a4113a\n #4 [ff61d23de260fc90] blk_cleanup_queue at ffffffff82a33006\n #5 [ff61d23de260fcb0] nvme_rdma_destroy_admin_queue at ffffffffc12686ce\n #6 [ff61d23de260fcc8] nvme_rdma_setup_ctrl at ffffffffc1268ced\n #7 [ff61d23de260fd28] nvme_rdma_create_ctrl at ffffffffc126919b\n #8 [ff61d23de260fd68] nvmf_dev_write at ffffffffc024f362\n #9 [ff61d23de260fe38] vfs_write at ffffffff827d5f25\n RIP: 00007fda7891d574 RSP: 00007ffe2ef06958 RFLAGS: 00000202\n RAX: ffffffffffffffda RBX: 000055e8122a4d90 RCX: 00007fda7891d574\n RDX: 000000000000012b RSI: 000055e8122a4d90 RDI: 0000000000000004\n RBP: 00007ffe2ef079c0 R8: 000000000000012b R9: 000055e8122a4d90\n R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000004\n R13: 000055e8122923c0 R14: 000000000000012b R15: 00007fda78a54500\n ORIG_RAX: 0000000000000001 CS: 0033 SS: 002b\n\nThis due to we have quiesced admi_q before cancel requests, but forgot\nto unquiesce before destroy it, as a result we fail to drain the\npending requests, and hang on blk_mq_freeze_queue_wait() forever. Here\ntry to reuse nvme_rdma_teardown_admin_queue() to fix this issue and\nsimplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49569",
"url": "https://www.suse.com/security/cve/CVE-2024-49569"
},
{
"category": "external",
"summary": "SUSE Bug 1235730 for CVE-2024-49569",
"url": "https://bugzilla.suse.com/1235730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-49569"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix uaf for accessing waker_bfqq after splitting\n\nAfter commit 42c306ed7233 (\"block, bfq: don\u0027t break merge chain in\nbfq_split_bfqq()\"), if the current procress is the last holder of bfqq,\nthe bfqq can be freed after bfq_split_bfqq(). Hence recored the bfqq and\nthen access bfqq-\u003ewaker_bfqq may trigger UAF. What\u0027s more, the waker_bfqq\nmay in the merge chain of bfqq, hence just recored waker_bfqq is still\nnot safe.\n\nFix the problem by adding a helper bfq_waker_bfqq() to check if\nbfqq-\u003ewaker_bfqq is in the merge chain, and current procress is the only\nholder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-49948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: add more sanity checks to qdisc_pkt_len_init()\n\nOne path takes care of SKB_GSO_DODGY, assuming\nskb-\u003elen is bigger than hdr_len.\n\nvirtio_net_hdr_to_skb() does not fully dissect TCP headers,\nit only make sure it is at least 20 bytes.\n\nIt is possible for an user to provide a malicious \u0027GSO\u0027 packet,\ntotal length of 80 bytes.\n\n- 20 bytes of IPv4 header\n- 60 bytes TCP header\n- a small gso_size like 8\n\nvirtio_net_hdr_to_skb() would declare this packet as a normal\nGSO packet, because it would see 40 bytes of payload,\nbigger than gso_size.\n\nWe need to make detect this case to not underflow\nqdisc_skb_cb(skb)-\u003epkt_len.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49948",
"url": "https://www.suse.com/security/cve/CVE-2024-49948"
},
{
"category": "external",
"summary": "SUSE Bug 1232161 for CVE-2024-49948",
"url": "https://bugzilla.suse.com/1232161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-49948"
},
{
"cve": "CVE-2024-49951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible crash on mgmt_index_removed\n\nIf mgmt_index_removed is called while there are commands queued on\ncmd_sync it could lead to crashes like the bellow trace:\n\n0x0000053D: __list_del_entry_valid_or_report+0x98/0xdc\n0x0000053D: mgmt_pending_remove+0x18/0x58 [bluetooth]\n0x0000053E: mgmt_remove_adv_monitor_complete+0x80/0x108 [bluetooth]\n0x0000053E: hci_cmd_sync_work+0xbc/0x164 [bluetooth]\n\nSo while handling mgmt_index_removed this attempts to dequeue\ncommands passed as user_data to cmd_sync.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49951",
"url": "https://www.suse.com/security/cve/CVE-2024-49951"
},
{
"category": "external",
"summary": "SUSE Bug 1232158 for CVE-2024-49951",
"url": "https://bugzilla.suse.com/1232158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-49951"
},
{
"cve": "CVE-2024-49978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngso: fix udp gso fraglist segmentation after pull from frag_list\n\nDetect gso fraglist skbs with corrupted geometry (see below) and\npass these to skb_segment instead of skb_segment_list, as the first\ncan segment them correctly.\n\nValid SKB_GSO_FRAGLIST skbs\n- consist of two or more segments\n- the head_skb holds the protocol headers plus first gso_size\n- one or more frag_list skbs hold exactly one segment\n- all but the last must be gso_size\n\nOptional datapath hooks such as NAT and BPF (bpf_skb_pull_data) can\nmodify these skbs, breaking these invariants.\n\nIn extreme cases they pull all data into skb linear. For UDP, this\ncauses a NULL ptr deref in __udpv4_gso_segment_list_csum at\nudp_hdr(seg-\u003enext)-\u003edest.\n\nDetect invalid geometry due to pull, by checking head_skb size.\nDon\u0027t just drop, as this may blackhole a destination. Convert to be\nable to pass to regular skb_segment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49978",
"url": "https://www.suse.com/security/cve/CVE-2024-49978"
},
{
"category": "external",
"summary": "SUSE Bug 1232101 for CVE-2024-49978",
"url": "https://bugzilla.suse.com/1232101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-49978"
},
{
"cve": "CVE-2024-49998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: improve shutdown sequence\n\nAlexander Sverdlin presents 2 problems during shutdown with the\nlan9303 driver. One is specific to lan9303 and the other just happens\nto reproduce there.\n\nThe first problem is that lan9303 is unique among DSA drivers in that it\ncalls dev_get_drvdata() at \"arbitrary runtime\" (not probe, not shutdown,\nnot remove):\n\nphy_state_machine()\n-\u003e ...\n -\u003e dsa_user_phy_read()\n -\u003e ds-\u003eops-\u003ephy_read()\n -\u003e lan9303_phy_read()\n -\u003e chip-\u003eops-\u003ephy_read()\n -\u003e lan9303_mdio_phy_read()\n -\u003e dev_get_drvdata()\n\nBut we never stop the phy_state_machine(), so it may continue to run\nafter dsa_switch_shutdown(). Our common pattern in all DSA drivers is\nto set drvdata to NULL to suppress the remove() method that may come\nafterwards. But in this case it will result in an NPD.\n\nThe second problem is that the way in which we set\ndp-\u003econduit-\u003edsa_ptr = NULL; is concurrent with receive packet\nprocessing. dsa_switch_rcv() checks once whether dev-\u003edsa_ptr is NULL,\nbut afterwards, rather than continuing to use that non-NULL value,\ndev-\u003edsa_ptr is dereferenced again and again without NULL checks:\ndsa_conduit_find_user() and many other places. In between dereferences,\nthere is no locking to ensure that what was valid once continues to be\nvalid.\n\nBoth problems have the common aspect that closing the conduit interface\nsolves them.\n\nIn the first case, dev_close(conduit) triggers the NETDEV_GOING_DOWN\nevent in dsa_user_netdevice_event() which closes user ports as well.\ndsa_port_disable_rt() calls phylink_stop(), which synchronously stops\nthe phylink state machine, and ds-\u003eops-\u003ephy_read() will thus no longer\ncall into the driver after this point.\n\nIn the second case, dev_close(conduit) should do this, as per\nDocumentation/networking/driver.rst:\n\n| Quiescence\n| ----------\n|\n| After the ndo_stop routine has been called, the hardware must\n| not receive or transmit any data. All in flight packets must\n| be aborted. If necessary, poll or wait for completion of\n| any reset commands.\n\nSo it should be sufficient to ensure that later, when we zeroize\nconduit-\u003edsa_ptr, there will be no concurrent dsa_switch_rcv() call\non this conduit.\n\nThe addition of the netif_device_detach() function is to ensure that\nioctls, rtnetlinks and ethtool requests on the user ports no longer\npropagate down to the driver - we\u0027re no longer prepared to handle them.\n\nThe race condition actually did not exist when commit 0650bf52b31f\n(\"net: dsa: be compatible with masters which unregister on shutdown\")\nfirst introduced dsa_switch_shutdown(). It was created later, when we\nstopped unregistering the user interfaces from a bad spot, and we just\nreplaced that sequence with a racy zeroization of conduit-\u003edsa_ptr\n(one which doesn\u0027t ensure that the interfaces aren\u0027t up).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49998",
"url": "https://www.suse.com/security/cve/CVE-2024-49998"
},
{
"category": "external",
"summary": "SUSE Bug 1232087 for CVE-2024-49998",
"url": "https://bugzilla.suse.com/1232087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-49998"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: mpc52xx: Add cancel_work_sync before module remove\n\nIf we remove the module which will call mpc52xx_spi_remove\nit will free \u0027ms\u0027 through spi_unregister_controller.\nwhile the work ms-\u003ework will be used. The sequence of operations\nthat may lead to a UAF bug.\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in mpc52xx_spi_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50051",
"url": "https://www.suse.com/security/cve/CVE-2024-50051"
},
{
"category": "external",
"summary": "SUSE Bug 1235739 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1235739"
},
{
"category": "external",
"summary": "SUSE Bug 1239156 for CVE-2024-50051",
"url": "https://bugzilla.suse.com/1239156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-50051"
},
{
"cve": "CVE-2024-50106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix race between laundromat and free_stateid\n\nThere is a race between laundromat handling of revoked delegations\nand a client sending free_stateid operation. Laundromat thread\nfinds that delegation has expired and needs to be revoked so it\nmarks the delegation stid revoked and it puts it on a reaper list\nbut then it unlock the state lock and the actual delegation revocation\nhappens without the lock. Once the stid is marked revoked a racing\nfree_stateid processing thread does the following (1) it calls\nlist_del_init() which removes it from the reaper list and (2) frees\nthe delegation stid structure. The laundromat thread ends up not\ncalling the revoke_delegation() function for this particular delegation\nbut that means it will no release the lock lease that exists on\nthe file.\n\nNow, a new open for this file comes in and ends up finding that\nlease list isn\u0027t empty and calls nfsd_breaker_owns_lease() which ends\nup trying to derefence a freed delegation stateid. Leading to the\nfollowint use-after-free KASAN warning:\n\nkernel: ==================================================================\nkernel: BUG: KASAN: slab-use-after-free in nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: Read of size 8 at addr ffff0000e73cd0c8 by task nfsd/6205\nkernel:\nkernel: CPU: 2 UID: 0 PID: 6205 Comm: nfsd Kdump: loaded Not tainted 6.11.0-rc7+ #9\nkernel: Hardware name: Apple Inc. Apple Virtualization Generic Platform, BIOS 2069.0.0.0.0 08/03/2024\nkernel: Call trace:\nkernel: dump_backtrace+0x98/0x120\nkernel: show_stack+0x1c/0x30\nkernel: dump_stack_lvl+0x80/0xe8\nkernel: print_address_description.constprop.0+0x84/0x390\nkernel: print_report+0xa4/0x268\nkernel: kasan_report+0xb4/0xf8\nkernel: __asan_report_load8_noabort+0x1c/0x28\nkernel: nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: nfsd_file_do_acquire+0xb3c/0x11d0 [nfsd]\nkernel: nfsd_file_acquire_opened+0x84/0x110 [nfsd]\nkernel: nfs4_get_vfs_file+0x634/0x958 [nfsd]\nkernel: nfsd4_process_open2+0xa40/0x1a40 [nfsd]\nkernel: nfsd4_open+0xa08/0xe80 [nfsd]\nkernel: nfsd4_proc_compound+0xb8c/0x2130 [nfsd]\nkernel: nfsd_dispatch+0x22c/0x718 [nfsd]\nkernel: svc_process_common+0x8e8/0x1960 [sunrpc]\nkernel: svc_process+0x3d4/0x7e0 [sunrpc]\nkernel: svc_handle_xprt+0x828/0xe10 [sunrpc]\nkernel: svc_recv+0x2cc/0x6a8 [sunrpc]\nkernel: nfsd+0x270/0x400 [nfsd]\nkernel: kthread+0x288/0x310\nkernel: ret_from_fork+0x10/0x20\n\nThis patch proposes a fixed that\u0027s based on adding 2 new additional\nstid\u0027s sc_status values that help coordinate between the laundromat\nand other operations (nfsd4_free_stateid() and nfsd4_delegreturn()).\n\nFirst to make sure, that once the stid is marked revoked, it is not\nremoved by the nfsd4_free_stateid(), the laundromat take a reference\non the stateid. Then, coordinating whether the stid has been put\non the cl_revoked list or we are processing FREE_STATEID and need to\nmake sure to remove it from the list, each check that state and act\naccordingly. If laundromat has added to the cl_revoke list before\nthe arrival of FREE_STATEID, then nfsd4_free_stateid() knows to remove\nit from the list. If nfsd4_free_stateid() finds that operations arrived\nbefore laundromat has placed it on cl_revoke list, it marks the state\nfreed and then laundromat will no longer add it to the list.\n\nAlso, for nfsd4_delegreturn() when looking for the specified stid,\nwe need to access stid that are marked removed or freeable, it means\nthe laundromat has started processing it but hasn\u0027t finished and this\ndelegreturn needs to return nfserr_deleg_revoked and not\nnfserr_bad_stateid. The latter will not trigger a FREE_STATEID and the\nlack of it will leave this stid on the cl_revoked list indefinitely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50106",
"url": "https://www.suse.com/security/cve/CVE-2024-50106"
},
{
"category": "external",
"summary": "SUSE Bug 1232882 for CVE-2024-50106",
"url": "https://bugzilla.suse.com/1232882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50106"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix OOBs when building SMB2_IOCTL request\n\nWhen using encryption, either enforced by the server or when using\n\u0027seal\u0027 mount option, the client will squash all compound request buffers\ndown for encryption into a single iov in smb2_set_next_command().\n\nSMB2_ioctl_init() allocates a small buffer (448 bytes) to hold the\nSMB2_IOCTL request in the first iov, and if the user passes an input\nbuffer that is greater than 328 bytes, smb2_set_next_command() will\nend up writing off the end of @rqst-\u003eiov[0].iov_base as shown below:\n\n mount.cifs //srv/share /mnt -o ...,seal\n ln -s $(perl -e \"print(\u0027a\u0027)for 1..1024\") /mnt/link\n\n BUG: KASAN: slab-out-of-bounds in\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n Write of size 4116 at addr ffff8881148fcab8 by task ln/859\n\n CPU: 1 UID: 0 PID: 859 Comm: ln Not tainted 6.12.0-rc3 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n 1.16.3-2.fc40 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n print_report+0x156/0x4d9\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n ? __virt_addr_valid+0x145/0x310\n ? __phys_addr+0x46/0x90\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_report+0xda/0x110\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_check_range+0x10f/0x1f0\n __asan_memcpy+0x3c/0x60\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n smb2_compound_op+0x238c/0x3840 [cifs]\n ? kasan_save_track+0x14/0x30\n ? kasan_save_free_info+0x3b/0x70\n ? vfs_symlink+0x1a1/0x2c0\n ? do_symlinkat+0x108/0x1c0\n ? __pfx_smb2_compound_op+0x10/0x10 [cifs]\n ? kmem_cache_free+0x118/0x3e0\n ? cifs_get_writable_path+0xeb/0x1a0 [cifs]\n smb2_get_reparse_inode+0x423/0x540 [cifs]\n ? __pfx_smb2_get_reparse_inode+0x10/0x10 [cifs]\n ? rcu_is_watching+0x20/0x50\n ? __kmalloc_noprof+0x37c/0x480\n ? smb2_create_reparse_symlink+0x257/0x490 [cifs]\n ? smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n ? __pfx_smb2_create_reparse_symlink+0x10/0x10 [cifs]\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? __build_path_from_dentry_optional_prefix+0x19d/0x2e0 [cifs]\n cifs_symlink+0x24f/0x960 [cifs]\n ? __pfx_make_vfsuid+0x10/0x10\n ? __pfx_cifs_symlink+0x10/0x10 [cifs]\n ? make_vfsgid+0x6b/0xc0\n ? generic_permission+0x96/0x2d0\n vfs_symlink+0x1a1/0x2c0\n do_symlinkat+0x108/0x1c0\n ? __pfx_do_symlinkat+0x10/0x10\n ? strncpy_from_user+0xaa/0x160\n __x64_sys_symlinkat+0xb9/0xf0\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7f08d75c13bb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50151",
"url": "https://www.suse.com/security/cve/CVE-2024-50151"
},
{
"category": "external",
"summary": "SUSE Bug 1233055 for CVE-2024-50151",
"url": "https://bugzilla.suse.com/1233055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50151"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50199",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50199"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swapfile: skip HugeTLB pages for unuse_vma\n\nI got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The\nproblem can be reproduced by the following steps:\n\n 1. Allocate an anonymous 1GB HugeTLB and some other anonymous memory.\n 2. Swapout the above anonymous memory.\n 3. run swapoff and we will get a bad pud error in kernel message:\n\n mm/pgtable-generic.c:42: bad pud 00000000743d215d(84000001400000e7)\n\nWe can tell that pud_clear_bad is called by pud_none_or_clear_bad in\nunuse_pud_range() by ftrace. And therefore the HugeTLB pages will never\nbe freed because we lost it from page table. We can skip HugeTLB pages\nfor unuse_vma to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50199",
"url": "https://www.suse.com/security/cve/CVE-2024-50199"
},
{
"category": "external",
"summary": "SUSE Bug 1233112 for CVE-2024-50199",
"url": "https://bugzilla.suse.com/1233112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50199"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, arm64: Fix address emission with tag-based KASAN enabled\n\nWhen BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_image\nstruct on the stack is passed during the size calculation pass and\nan address on the heap is passed during code generation. This may\ncause a heap buffer overflow if the heap address is tagged because\nemit_a64_mov_i64() will emit longer code than it did during the size\ncalculation pass. The same problem could occur without tag-based\nKASAN if one of the 16-bit words of the stack address happened to\nbe all-ones during the size calculation pass. Fix the problem by\nassuming the worst case (4 instructions) when calculating the size\nof the bpf_tramp_image address emission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50203",
"url": "https://www.suse.com/security/cve/CVE-2024-50203"
},
{
"category": "external",
"summary": "SUSE Bug 1233328 for CVE-2024-50203",
"url": "https://bugzilla.suse.com/1233328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50203"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilemap: Fix bounds checking in filemap_read()\n\nIf the caller supplies an iocb-\u003eki_pos value that is close to the\nfilesystem upper limit, and an iterator with a count that causes us to\noverflow that limit, then filemap_read() enters an infinite loop.\n\nThis behaviour was discovered when testing xfstests generic/525 with the\n\"localio\" optimisation for loopback NFS mounts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50272",
"url": "https://www.suse.com/security/cve/CVE-2024-50272"
},
{
"category": "external",
"summary": "SUSE Bug 1233461 for CVE-2024-50272",
"url": "https://bugzilla.suse.com/1233461"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50272"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-50299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50299"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: properly validate chunk size in sctp_sf_ootb()\n\nA size validation fix similar to that in Commit 50619dbf8db7 (\"sctp: add\nsize validation when walking chunks\") is also required in sctp_sf_ootb()\nto address a crash reported by syzbot:\n\n BUG: KMSAN: uninit-value in sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712\n sctp_do_sm+0x181/0x93d0 net/sctp/sm_sideeffect.c:1166\n sctp_endpoint_bh_rcv+0xc38/0xf90 net/sctp/endpointola.c:407\n sctp_inq_push+0x2ef/0x380 net/sctp/inqueue.c:88\n sctp_rcv+0x3831/0x3b20 net/sctp/input.c:243\n sctp4_rcv+0x42/0x50 net/sctp/protocol.c:1159\n ip_protocol_deliver_rcu+0xb51/0x13d0 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x336/0x500 net/ipv4/ip_input.c:233",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50299",
"url": "https://www.suse.com/security/cve/CVE-2024-50299"
},
{
"category": "external",
"summary": "SUSE Bug 1233488 for CVE-2024-50299",
"url": "https://bugzilla.suse.com/1233488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-50299"
},
{
"cve": "CVE-2024-52332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Fix potential invalid memory access in igb_init_module()\n\nThe pci_register_driver() can fail and when this happened, the dca_notifier\nneeds to be unregistered, otherwise the dca_notifier can be called when\nigb fails to install, resulting to invalid memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52332",
"url": "https://www.suse.com/security/cve/CVE-2024-52332"
},
{
"category": "external",
"summary": "SUSE Bug 1235700 for CVE-2024-52332",
"url": "https://bugzilla.suse.com/1235700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-52332"
},
{
"cve": "CVE-2024-53050",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53050"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in hdcp2_get_capability\n\nAdd encoder check in intel_hdcp2_get_capability to avoid\nnull pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53050",
"url": "https://www.suse.com/security/cve/CVE-2024-53050"
},
{
"category": "external",
"summary": "SUSE Bug 1233546 for CVE-2024-53050",
"url": "https://bugzilla.suse.com/1233546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53050"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx\n\nAs the introduction of the support for vsock and unix sockets in sockmap,\ntls_sw_has_ctx_tx/rx cannot presume the socket passed in must be IS_ICSK.\nvsock and af_unix sockets have vsock_sock and unix_sock instead of\ninet_connection_sock. For these sockets, tls_get_ctx may return an invalid\npointer and cause page fault in function tls_sw_ctx_rx.\n\nBUG: unable to handle page fault for address: 0000000000040030\nWorkqueue: vsock-loopback vsock_loopback_work\nRIP: 0010:sk_psock_strp_data_ready+0x23/0x60\nCall Trace:\n ? __die+0x81/0xc3\n ? no_context+0x194/0x350\n ? do_page_fault+0x30/0x110\n ? async_page_fault+0x3e/0x50\n ? sk_psock_strp_data_ready+0x23/0x60\n virtio_transport_recv_pkt+0x750/0x800\n ? update_load_avg+0x7e/0x620\n vsock_loopback_work+0xd0/0x100\n process_one_work+0x1a7/0x360\n worker_thread+0x30/0x390\n ? create_worker+0x1a0/0x1a0\n kthread+0x112/0x130\n ? __kthread_cancel_work+0x40/0x40\n ret_from_fork+0x1f/0x40\n\nv2:\n - Add IS_ICSK check\nv3:\n - Update the commits in Fixes",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53091",
"url": "https://www.suse.com/security/cve/CVE-2024-53091"
},
{
"category": "external",
"summary": "SUSE Bug 1233638 for CVE-2024-53091",
"url": "https://bugzilla.suse.com/1233638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53091"
},
{
"cve": "CVE-2024-53095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Fix use-after-free of network namespace.\n\nRecently, we got a customer report that CIFS triggers oops while\nreconnecting to a server. [0]\n\nThe workload runs on Kubernetes, and some pods mount CIFS servers\nin non-root network namespaces. The problem rarely happened, but\nit was always while the pod was dying.\n\nThe root cause is wrong reference counting for network namespace.\n\nCIFS uses kernel sockets, which do not hold refcnt of the netns that\nthe socket belongs to. That means CIFS must ensure the socket is\nalways freed before its netns; otherwise, use-after-free happens.\n\nThe repro steps are roughly:\n\n 1. mount CIFS in a non-root netns\n 2. drop packets from the netns\n 3. destroy the netns\n 4. unmount CIFS\n\nWe can reproduce the issue quickly with the script [1] below and see\nthe splat [2] if CONFIG_NET_NS_REFCNT_TRACKER is enabled.\n\nWhen the socket is TCP, it is hard to guarantee the netns lifetime\nwithout holding refcnt due to async timers.\n\nLet\u0027s hold netns refcnt for each socket as done for SMC in commit\n9744d2bf1976 (\"smc: Fix use-after-free in tcp_write_timer_handler().\").\n\nNote that we need to move put_net() from cifs_put_tcp_session() to\nclean_demultiplex_info(); otherwise, __sock_create() still could touch a\nfreed netns while cifsd tries to reconnect from cifs_demultiplex_thread().\n\nAlso, maybe_get_net() cannot be put just before __sock_create() because\nthe code is not under RCU and there is a small chance that the same\naddress happened to be reallocated to another netns.\n\n[0]:\nCIFS: VFS: \\\\XXXXXXXXXXX has not responded in 15 seconds. Reconnecting...\nCIFS: Serverclose failed 4 times, giving up\nUnable to handle kernel paging request at virtual address 14de99e461f84a07\nMem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000004\n CM = 0, WnR = 0\n[14de99e461f84a07] address between user and kernel address ranges\nInternal error: Oops: 0000000096000004 [#1] SMP\nModules linked in: cls_bpf sch_ingress nls_utf8 cifs cifs_arc4 cifs_md4 dns_resolver tcp_diag inet_diag veth xt_state xt_connmark nf_conntrack_netlink xt_nat xt_statistic xt_MASQUERADE xt_mark xt_addrtype ipt_REJECT nf_reject_ipv4 nft_chain_nat nf_nat xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment nft_compat nf_tables nfnetlink overlay nls_ascii nls_cp437 sunrpc vfat fat aes_ce_blk aes_ce_cipher ghash_ce sm4_ce_cipher sm4 sm3_ce sm3 sha3_ce sha512_ce sha512_arm64 sha1_ce ena button sch_fq_codel loop fuse configfs dmi_sysfs sha2_ce sha256_arm64 dm_mirror dm_region_hash dm_log dm_mod dax efivarfs\nCPU: 5 PID: 2690970 Comm: cifsd Not tainted 6.1.103-109.184.amzn2023.aarch64 #1\nHardware name: Amazon EC2 r7g.4xlarge/, BIOS 1.0 11/1/2018\npstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : fib_rules_lookup+0x44/0x238\nlr : __fib_lookup+0x64/0xbc\nsp : ffff8000265db790\nx29: ffff8000265db790 x28: 0000000000000000 x27: 000000000000bd01\nx26: 0000000000000000 x25: ffff000b4baf8000 x24: ffff00047b5e4580\nx23: ffff8000265db7e0 x22: 0000000000000000 x21: ffff00047b5e4500\nx20: ffff0010e3f694f8 x19: 14de99e461f849f7 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 3f92800abd010002\nx11: 0000000000000001 x10: ffff0010e3f69420 x9 : ffff800008a6f294\nx8 : 0000000000000000 x7 : 0000000000000006 x6 : 0000000000000000\nx5 : 0000000000000001 x4 : ffff001924354280 x3 : ffff8000265db7e0\nx2 : 0000000000000000 x1 : ffff0010e3f694f8 x0 : ffff00047b5e4500\nCall trace:\n fib_rules_lookup+0x44/0x238\n __fib_lookup+0x64/0xbc\n ip_route_output_key_hash_rcu+0x2c4/0x398\n ip_route_output_key_hash+0x60/0x8c\n tcp_v4_connect+0x290/0x488\n __inet_stream_connect+0x108/0x3d0\n inet_stream_connect+0x50/0x78\n kernel_connect+0x6c/0xac\n generic_ip_conne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53095",
"url": "https://www.suse.com/security/cve/CVE-2024-53095"
},
{
"category": "external",
"summary": "SUSE Bug 1233642 for CVE-2024-53095",
"url": "https://bugzilla.suse.com/1233642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53095"
},
{
"cve": "CVE-2024-53099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check validity of link-\u003etype in bpf_link_show_fdinfo()\n\nIf a newly-added link type doesn\u0027t invoke BPF_LINK_TYPE(), accessing\nbpf_link_type_strs[link-\u003etype] may result in an out-of-bounds access.\n\nTo spot such missed invocations early in the future, checking the\nvalidity of link-\u003etype in bpf_link_show_fdinfo() and emitting a warning\nwhen such invocations are missed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53099",
"url": "https://www.suse.com/security/cve/CVE-2024-53099"
},
{
"category": "external",
"summary": "SUSE Bug 1233772 for CVE-2024-53099",
"url": "https://bugzilla.suse.com/1233772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53099"
},
{
"cve": "CVE-2024-53103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer\n\nWhen hvs is released, there is a possibility that vsk-\u003etrans may not\nbe initialized to NULL, which could lead to a dangling pointer.\nThis issue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53103",
"url": "https://www.suse.com/security/cve/CVE-2024-53103"
},
{
"category": "external",
"summary": "SUSE Bug 1234024 for CVE-2024-53103",
"url": "https://bugzilla.suse.com/1234024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53103"
},
{
"cve": "CVE-2024-53105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: page_alloc: move mlocked flag clearance into free_pages_prepare()\n\nSyzbot reported a bad page state problem caused by a page being freed\nusing free_page() still having a mlocked flag at free_pages_prepare()\nstage:\n\n BUG: Bad page state in process syz.5.504 pfn:61f45\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61f45\n flags: 0xfff00000080204(referenced|workingset|mlocked|node=0|zone=1|lastcpupid=0x7ff)\n raw: 00fff00000080204 0000000000000000 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\n page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set\n page_owner tracks the page as allocated\n page last allocated via order 0, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 8443, tgid 8442 (syz.5.504), ts 201884660643, free_ts 201499827394\n set_page_owner include/linux/page_owner.h:32 [inline]\n post_alloc_hook+0x1f3/0x230 mm/page_alloc.c:1537\n prep_new_page mm/page_alloc.c:1545 [inline]\n get_page_from_freelist+0x303f/0x3190 mm/page_alloc.c:3457\n __alloc_pages_noprof+0x292/0x710 mm/page_alloc.c:4733\n alloc_pages_mpol_noprof+0x3e8/0x680 mm/mempolicy.c:2265\n kvm_coalesced_mmio_init+0x1f/0xf0 virt/kvm/coalesced_mmio.c:99\n kvm_create_vm virt/kvm/kvm_main.c:1235 [inline]\n kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5488 [inline]\n kvm_dev_ioctl+0x12dc/0x2240 virt/kvm/kvm_main.c:5530\n __do_compat_sys_ioctl fs/ioctl.c:1007 [inline]\n __se_compat_sys_ioctl+0x510/0xc90 fs/ioctl.c:950\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0xb4/0x110 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x34/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n page last free pid 8399 tgid 8399 stack trace:\n reset_page_owner include/linux/page_owner.h:25 [inline]\n free_pages_prepare mm/page_alloc.c:1108 [inline]\n free_unref_folios+0xf12/0x18d0 mm/page_alloc.c:2686\n folios_put_refs+0x76c/0x860 mm/swap.c:1007\n free_pages_and_swap_cache+0x5c8/0x690 mm/swap_state.c:335\n __tlb_batch_free_encoded_pages mm/mmu_gather.c:136 [inline]\n tlb_batch_pages_flush mm/mmu_gather.c:149 [inline]\n tlb_flush_mmu_free mm/mmu_gather.c:366 [inline]\n tlb_flush_mmu+0x3a3/0x680 mm/mmu_gather.c:373\n tlb_finish_mmu+0xd4/0x200 mm/mmu_gather.c:465\n exit_mmap+0x496/0xc40 mm/mmap.c:1926\n __mmput+0x115/0x390 kernel/fork.c:1348\n exit_mm+0x220/0x310 kernel/exit.c:571\n do_exit+0x9b2/0x28e0 kernel/exit.c:926\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [inline]\n __se_sys_exit_group kernel/exit.c:1097 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1097\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n Modules linked in:\n CPU: 0 UID: 0 PID: 8442 Comm: syz.5.504 Not tainted 6.12.0-rc6-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n bad_page+0x176/0x1d0 mm/page_alloc.c:501\n free_page_is_bad mm/page_alloc.c:918 [inline]\n free_pages_prepare mm/page_alloc.c:1100 [inline]\n free_unref_page+0xed0/0xf20 mm/page_alloc.c:2638\n kvm_destroy_vm virt/kvm/kvm_main.c:1327 [inline]\n kvm_put_kvm+0xc75/0x1350 virt/kvm/kvm_main.c:1386\n kvm_vcpu_release+0x54/0x60 virt/kvm/kvm_main.c:4143\n __fput+0x23f/0x880 fs/file_table.c:431\n task_work_run+0x24f/0x310 kernel/task_work.c:239\n exit_task_work include/linux/task_work.h:43 [inline]\n do_exit+0xa2f/0x28e0 kernel/exit.c:939\n do_group_exit+0x207/0x2c0 kernel/exit.c:1088\n __do_sys_exit_group kernel/exit.c:1099 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53105",
"url": "https://www.suse.com/security/cve/CVE-2024-53105"
},
{
"category": "external",
"summary": "SUSE Bug 1234069 for CVE-2024-53105",
"url": "https://bugzilla.suse.com/1234069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53105"
},
{
"cve": "CVE-2024-53111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix address wraparound in move_page_tables()\n\nOn 32-bit platforms, it is possible for the expression `len + old_addr \u003c\nold_end` to be false-positive if `len + old_addr` wraps around. \n`old_addr` is the cursor in the old range up to which page table entries\nhave been moved; so if the operation succeeded, `old_addr` is the *end* of\nthe old region, and adding `len` to it can wrap.\n\nThe overflow causes mremap() to mistakenly believe that PTEs have been\ncopied; the consequence is that mremap() bails out, but doesn\u0027t move the\nPTEs back before the new VMA is unmapped, causing anonymous pages in the\nregion to be lost. So basically if userspace tries to mremap() a\nprivate-anon region and hits this bug, mremap() will return an error and\nthe private-anon region\u0027s contents appear to have been zeroed.\n\nThe idea of this check is that `old_end - len` is the original start\naddress, and writing the check that way also makes it easier to read; so\nfix the check by rearranging the comparison accordingly.\n\n(An alternate fix would be to refactor this function by introducing an\n\"orig_old_start\" variable or such.)\n\n\nTested in a VM with a 32-bit X86 kernel; without the patch:\n\n```\nuser@horn:~/big_mremap$ cat test.c\n#define _GNU_SOURCE\n#include \u003cstdlib.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003cerr.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define ADDR1 ((void*)0x60000000)\n#define ADDR2 ((void*)0x10000000)\n#define SIZE 0x50000000uL\n\nint main(void) {\n unsigned char *p1 = mmap(ADDR1, SIZE, PROT_READ|PROT_WRITE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p1 == MAP_FAILED)\n err(1, \"mmap 1\");\n unsigned char *p2 = mmap(ADDR2, SIZE, PROT_NONE,\n MAP_ANONYMOUS|MAP_PRIVATE|MAP_FIXED_NOREPLACE, -1, 0);\n if (p2 == MAP_FAILED)\n err(1, \"mmap 2\");\n *p1 = 0x41;\n printf(\"first char is 0x%02hhx\\n\", *p1);\n unsigned char *p3 = mremap(p1, SIZE, SIZE,\n MREMAP_MAYMOVE|MREMAP_FIXED, p2);\n if (p3 == MAP_FAILED) {\n printf(\"mremap() failed; first char is 0x%02hhx\\n\", *p1);\n } else {\n printf(\"mremap() succeeded; first char is 0x%02hhx\\n\", *p3);\n }\n}\nuser@horn:~/big_mremap$ gcc -static -o test test.c\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() failed; first char is 0x00\n```\n\nWith the patch:\n\n```\nuser@horn:~/big_mremap$ setarch -R ./test\nfirst char is 0x41\nmremap() succeeded; first char is 0x41\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53111",
"url": "https://www.suse.com/security/cve/CVE-2024-53111"
},
{
"category": "external",
"summary": "SUSE Bug 1234086 for CVE-2024-53111",
"url": "https://bugzilla.suse.com/1234086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53111"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Improve MSG_ZEROCOPY error handling\n\nAdd a missing kfree_skb() to prevent memory leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53117",
"url": "https://www.suse.com/security/cve/CVE-2024-53117"
},
{
"category": "external",
"summary": "SUSE Bug 1234079 for CVE-2024-53117",
"url": "https://bugzilla.suse.com/1234079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53117"
},
{
"cve": "CVE-2024-53118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Fix sk_error_queue memory leak\n\nKernel queues MSG_ZEROCOPY completion notifications on the error queue.\nWhere they remain, until explicitly recv()ed. To prevent memory leaks,\nclean up the queue when the socket is destroyed.\n\nunreferenced object 0xffff8881028beb00 (size 224):\n comm \"vsock_test\", pid 1218, jiffies 4294694897\n hex dump (first 32 bytes):\n 90 b0 21 17 81 88 ff ff 90 b0 21 17 81 88 ff ff ..!.......!.....\n 00 00 00 00 00 00 00 00 00 b0 21 17 81 88 ff ff ..........!.....\n backtrace (crc 6c7031ca):\n [\u003cffffffff81418ef7\u003e] kmem_cache_alloc_node_noprof+0x2f7/0x370\n [\u003cffffffff81d35882\u003e] __alloc_skb+0x132/0x180\n [\u003cffffffff81d2d32b\u003e] sock_omalloc+0x4b/0x80\n [\u003cffffffff81d3a8ae\u003e] msg_zerocopy_realloc+0x9e/0x240\n [\u003cffffffff81fe5cb2\u003e] virtio_transport_send_pkt_info+0x412/0x4c0\n [\u003cffffffff81fe6183\u003e] virtio_transport_stream_enqueue+0x43/0x50\n [\u003cffffffff81fe0813\u003e] vsock_connectible_sendmsg+0x373/0x450\n [\u003cffffffff81d233d5\u003e] ____sys_sendmsg+0x365/0x3a0\n [\u003cffffffff81d246f4\u003e] ___sys_sendmsg+0x84/0xd0\n [\u003cffffffff81d26f47\u003e] __sys_sendmsg+0x47/0x80\n [\u003cffffffff820d3df3\u003e] do_syscall_64+0x93/0x180\n [\u003cffffffff8220012b\u003e] entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53118",
"url": "https://www.suse.com/security/cve/CVE-2024-53118"
},
{
"category": "external",
"summary": "SUSE Bug 1234071 for CVE-2024-53118",
"url": "https://bugzilla.suse.com/1234071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53118"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n...\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: solidrun: Fix UB bug with devres\n\nIn psnet_open_pf_bar() and snet_open_vf_bar() a string later passed to\npcim_iomap_regions() is placed on the stack. Neither\npcim_iomap_regions() nor the functions it calls copy that string.\n\nShould the string later ever be used, this, consequently, causes\nundefined behavior since the stack frame will by then have disappeared.\n\nFix the bug by allocating the strings on the heap through\ndevm_kasprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53126",
"url": "https://www.suse.com/security/cve/CVE-2024-53126"
},
{
"category": "external",
"summary": "SUSE Bug 1234158 for CVE-2024-53126",
"url": "https://bugzilla.suse.com/1234158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53126"
},
{
"cve": "CVE-2024-53127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\"\n\nThe commit 8396c793ffdf (\"mmc: dw_mmc: Fix IDMAC operation with pages\nbigger than 4K\") increased the max_req_size, even for 4K pages, causing\nvarious issues:\n- Panic booting the kernel/rootfs from an SD card on Rockchip RK3566\n- Panic booting the kernel/rootfs from an SD card on StarFive JH7100\n- \"swiotlb buffer is full\" and data corruption on StarFive JH7110\n\nAt this stage no fix have been found, so it\u0027s probably better to just\nrevert the change.\n\nThis reverts commit 8396c793ffdf28bb8aee7cfe0891080f8cab7890.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53127",
"url": "https://www.suse.com/security/cve/CVE-2024-53127"
},
{
"category": "external",
"summary": "SUSE Bug 1234153 for CVE-2024-53127",
"url": "https://bugzilla.suse.com/1234153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53127"
},
{
"cve": "CVE-2024-53129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/rockchip: vop: Fix a dereferenced before check warning\n\nThe \u0027state\u0027 can\u0027t be NULL, we should check crtc_state.\n\nFix warning:\ndrivers/gpu/drm/rockchip/rockchip_drm_vop.c:1096\nvop_plane_atomic_async_check() warn: variable dereferenced before check\n\u0027state\u0027 (see line 1077)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53129",
"url": "https://www.suse.com/security/cve/CVE-2024-53129"
},
{
"category": "external",
"summary": "SUSE Bug 1234155 for CVE-2024-53129",
"url": "https://bugzilla.suse.com/1234155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53129"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle dml allocation failure to avoid crash\n\n[Why]\nIn the case where a dml allocation fails for any reason, the\ncurrent state\u0027s dml contexts would no longer be valid. Then\nsubsequent calls dc_state_copy_internal would shallow copy\ninvalid memory and if the new state was released, a double\nfree would occur.\n\n[How]\nReset dml pointers in new_state to NULL and avoid invalid\npointer\n\n(cherry picked from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53133",
"url": "https://www.suse.com/security/cve/CVE-2024-53133"
},
{
"category": "external",
"summary": "SUSE Bug 1234221 for CVE-2024-53133",
"url": "https://bugzilla.suse.com/1234221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53133"
},
{
"cve": "CVE-2024-53134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx93-blk-ctrl: correct remove path\n\nThe check condition should be \u0027i \u003c bc-\u003eonecell_data.num_domains\u0027, not\n\u0027bc-\u003eonecell_data.num_domains\u0027 which will make the look never finish\nand cause kernel panic.\n\nAlso disable runtime to address\n\"imx93-blk-ctrl 4ac10000.system-controller: Unbalanced pm_runtime_enable!\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53134",
"url": "https://www.suse.com/security/cve/CVE-2024-53134"
},
{
"category": "external",
"summary": "SUSE Bug 1234159 for CVE-2024-53134",
"url": "https://bugzilla.suse.com/1234159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53134"
},
{
"cve": "CVE-2024-53136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: revert \"mm: shmem: fix data-race in shmem_getattr()\"\n\nRevert d949d1d14fa2 (\"mm: shmem: fix data-race in shmem_getattr()\") as\nsuggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over\nNFS.\n\nAs Hugh commented, \"added just to silence a syzbot sanitizer splat: added\nwhere there has never been any practical problem\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53136",
"url": "https://www.suse.com/security/cve/CVE-2024-53136"
},
{
"category": "external",
"summary": "SUSE Bug 1234161 for CVE-2024-53136",
"url": "https://bugzilla.suse.com/1234161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53136"
},
{
"cve": "CVE-2024-53141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: add missing range check in bitmap_ip_uadt\n\nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,\nthe values of ip and ip_to are slightly swapped. Therefore, the range check\nfor ip should be done later, but this part is missing and it seems that the\nvulnerability occurs.\n\nSo we should add missing range checks and remove unnecessary range checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53141",
"url": "https://www.suse.com/security/cve/CVE-2024-53141"
},
{
"category": "external",
"summary": "SUSE Bug 1234381 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1234381"
},
{
"category": "external",
"summary": "SUSE Bug 1245778 for CVE-2024-53141",
"url": "https://bugzilla.suse.com/1245778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53141"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE\n\nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4\n(\"Bluetooth: Always request for user confirmation for Just Works\")\nalways request user confirmation with confirm_hint set since the\nlikes of bluetoothd have dedicated policy around JUST_WORKS method\n(e.g. main.conf:JustWorksRepairing).\n\nCVE: CVE-2024-8805",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53144",
"url": "https://www.suse.com/security/cve/CVE-2024-53144"
},
{
"category": "external",
"summary": "SUSE Bug 1234690 for CVE-2024-53144",
"url": "https://bugzilla.suse.com/1234690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53144"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: Flush partial mappings in error case\n\nIf some remap_pfn_range() calls succeeded before one failed, we still have\nbuffer pages mapped into the userspace page tables when we drop the buffer\nreference with comedi_buf_map_put(bm). The userspace mappings are only\ncleaned up later in the mmap error path.\n\nFix it by explicitly flushing all mappings in our VMA on the error path.\n\nSee commit 79a61cc3fc04 (\"mm: avoid leaving partial pfn mappings around in\nerror case\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53148",
"url": "https://www.suse.com/security/cve/CVE-2024-53148"
},
{
"category": "external",
"summary": "SUSE Bug 1234832 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234832"
},
{
"category": "external",
"summary": "SUSE Bug 1234833 for CVE-2024-53148",
"url": "https://bugzilla.suse.com/1234833"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53148"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: Address an integer overflow\n\nDan Carpenter reports:\n\u003e Commit 78147ca8b4a9 (\"svcrdma: Add a \"parsed chunk list\" data\n\u003e structure\") from Jun 22, 2020 (linux-next), leads to the following\n\u003e Smatch static checker warning:\n\u003e\n\u003e\tnet/sunrpc/xprtrdma/svc_rdma_recvfrom.c:498 xdr_check_write_chunk()\n\u003e\twarn: potential user controlled sizeof overflow \u0027segcount * 4 * 4\u0027\n\u003e\n\u003e net/sunrpc/xprtrdma/svc_rdma_recvfrom.c\n\u003e 488 static bool xdr_check_write_chunk(struct svc_rdma_recv_ctxt *rctxt)\n\u003e 489 {\n\u003e 490 u32 segcount;\n\u003e 491 __be32 *p;\n\u003e 492\n\u003e 493 if (xdr_stream_decode_u32(\u0026rctxt-\u003erc_stream, \u0026segcount))\n\u003e ^^^^^^^^\n\u003e\n\u003e 494 return false;\n\u003e 495\n\u003e 496 /* A bogus segcount causes this buffer overflow check to fail. */\n\u003e 497 p = xdr_inline_decode(\u0026rctxt-\u003erc_stream,\n\u003e --\u003e 498 segcount * rpcrdma_segment_maxsz * sizeof(*p));\n\u003e\n\u003e\n\u003e segcount is an untrusted u32. On 32bit systems anything \u003e= SIZE_MAX / 16 will\n\u003e have an integer overflow and some those values will be accepted by\n\u003e xdr_inline_decode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53151",
"url": "https://www.suse.com/security/cve/CVE-2024-53151"
},
{
"category": "external",
"summary": "SUSE Bug 1234829 for CVE-2024-53151",
"url": "https://bugzilla.suse.com/1234829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53151"
},
{
"cve": "CVE-2024-53154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clk-apple-nco: Add NULL check in applnco_probe\n\nAdd NULL check in applnco_probe, to handle kernel NULL pointer\ndereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53154",
"url": "https://www.suse.com/security/cve/CVE-2024-53154"
},
{
"category": "external",
"summary": "SUSE Bug 1234826 for CVE-2024-53154",
"url": "https://bugzilla.suse.com/1234826"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53154"
},
{
"cve": "CVE-2024-53155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix uninitialized value in ocfs2_file_read_iter()\n\nSyzbot has reported the following KMSAN splat:\n\nBUG: KMSAN: uninit-value in ocfs2_file_read_iter+0x9a4/0xf80\n ocfs2_file_read_iter+0x9a4/0xf80\n __io_read+0x8d4/0x20f0\n io_read+0x3e/0xf0\n io_issue_sqe+0x42b/0x22c0\n io_wq_submit_work+0xaf9/0xdc0\n io_worker_handle_work+0xd13/0x2110\n io_wq_worker+0x447/0x1410\n ret_from_fork+0x6f/0x90\n ret_from_fork_asm+0x1a/0x30\n\nUninit was created at:\n __alloc_pages_noprof+0x9a7/0xe00\n alloc_pages_mpol_noprof+0x299/0x990\n alloc_pages_noprof+0x1bf/0x1e0\n allocate_slab+0x33a/0x1250\n ___slab_alloc+0x12ef/0x35e0\n kmem_cache_alloc_bulk_noprof+0x486/0x1330\n __io_alloc_req_refill+0x84/0x560\n io_submit_sqes+0x172f/0x2f30\n __se_sys_io_uring_enter+0x406/0x41c0\n __x64_sys_io_uring_enter+0x11f/0x1a0\n x64_sys_call+0x2b54/0x3ba0\n do_syscall_64+0xcd/0x1e0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nSince an instance of \u0027struct kiocb\u0027 may be passed from the block layer\nwith \u0027private\u0027 field uninitialized, introduce \u0027ocfs2_iocb_init_rw_locked()\u0027\nand use it from where \u0027ocfs2_dio_end_io()\u0027 might take care, i.e. in\n\u0027ocfs2_file_read_iter()\u0027 and \u0027ocfs2_file_write_iter()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53155",
"url": "https://www.suse.com/security/cve/CVE-2024-53155"
},
{
"category": "external",
"summary": "SUSE Bug 1234855 for CVE-2024-53155",
"url": "https://bugzilla.suse.com/1234855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53155"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53159"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53159",
"url": "https://www.suse.com/security/cve/CVE-2024-53159"
},
{
"category": "external",
"summary": "SUSE Bug 1234848 for CVE-2024-53159",
"url": "https://bugzilla.suse.com/1234848"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53159"
},
{
"cve": "CVE-2024-53160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu\n\nKCSAN reports a data race when access the krcp-\u003emonitor_work.timer.expires\nvariable in the schedule_delayed_monitor_work() function:\n\n\u003csnip\u003e\nBUG: KCSAN: data-race in __mod_timer / kvfree_call_rcu\n\nread to 0xffff888237d1cce8 of 8 bytes by task 10149 on cpu 1:\n schedule_delayed_monitor_work kernel/rcu/tree.c:3520 [inline]\n kvfree_call_rcu+0x3b8/0x510 kernel/rcu/tree.c:3839\n trie_update_elem+0x47c/0x620 kernel/bpf/lpm_trie.c:441\n bpf_map_update_value+0x324/0x350 kernel/bpf/syscall.c:203\n generic_map_update_batch+0x401/0x520 kernel/bpf/syscall.c:1849\n bpf_map_do_batch+0x28c/0x3f0 kernel/bpf/syscall.c:5143\n __sys_bpf+0x2e5/0x7a0\n __do_sys_bpf kernel/bpf/syscall.c:5741 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5739 [inline]\n __x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5739\n x64_sys_call+0x2625/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nwrite to 0xffff888237d1cce8 of 8 bytes by task 56 on cpu 0:\n __mod_timer+0x578/0x7f0 kernel/time/timer.c:1173\n add_timer_global+0x51/0x70 kernel/time/timer.c:1330\n __queue_delayed_work+0x127/0x1a0 kernel/workqueue.c:2523\n queue_delayed_work_on+0xdf/0x190 kernel/workqueue.c:2552\n queue_delayed_work include/linux/workqueue.h:677 [inline]\n schedule_delayed_monitor_work kernel/rcu/tree.c:3525 [inline]\n kfree_rcu_monitor+0x5e8/0x660 kernel/rcu/tree.c:3643\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0x483/0x9a0 kernel/workqueue.c:3310\n worker_thread+0x51d/0x6f0 kernel/workqueue.c:3391\n kthread+0x1d1/0x210 kernel/kthread.c:389\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 UID: 0 PID: 56 Comm: kworker/u8:4 Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events_unbound kfree_rcu_monitor\n\u003csnip\u003e\n\nkfree_rcu_monitor() rearms the work if a \"krcp\" has to be still\noffloaded and this is done without holding krcp-\u003elock, whereas\nthe kvfree_call_rcu() holds it.\n\nFix it by acquiring the \"krcp-\u003elock\" for kfree_rcu_monitor() so\nboth functions do not race anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53160",
"url": "https://www.suse.com/security/cve/CVE-2024-53160"
},
{
"category": "external",
"summary": "SUSE Bug 1234810 for CVE-2024-53160",
"url": "https://bugzilla.suse.com/1234810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53160"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix ordering of qlen adjustment\n\nChanges to sch-\u003eq.qlen around qdisc_tree_reduce_backlog() need to happen\n_before_ a call to said function because otherwise it may fail to notify\nparent qdiscs when the child is about to become empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53164",
"url": "https://www.suse.com/security/cve/CVE-2024-53164"
},
{
"category": "external",
"summary": "SUSE Bug 1234863 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1234863"
},
{
"category": "external",
"summary": "SUSE Bug 1246019 for CVE-2024-53164",
"url": "https://bugzilla.suse.com/1246019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53164"
},
{
"cve": "CVE-2024-53166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix bfqq uaf in bfq_limit_depth()\n\nSet new allocated bfqq to bic or remove freed bfqq from bic are both\nprotected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq\nfrom bic without the lock, this can lead to UAF if the io_context is\nshared by multiple tasks.\n\nFor example, test bfq with io_uring can trigger following UAF in v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfqq_group+0x15/0x50\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x80\n print_address_description.constprop.0+0x66/0x300\n print_report+0x3e/0x70\n kasan_report+0xb4/0xf0\n bfqq_group+0x15/0x50\n bfqq_request_over_limit+0x130/0x9a0\n bfq_limit_depth+0x1b5/0x480\n __blk_mq_alloc_requests+0x2b5/0xa00\n blk_mq_get_new_requests+0x11d/0x1d0\n blk_mq_submit_bio+0x286/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __block_write_full_folio+0x3d0/0x640\n writepage_cb+0x3b/0xc0\n write_cache_pages+0x254/0x6c0\n write_cache_pages+0x254/0x6c0\n do_writepages+0x192/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nAllocated by task 808602:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_slab_alloc+0x83/0x90\n kmem_cache_alloc_node+0x1b1/0x6d0\n bfq_get_queue+0x138/0xfa0\n bfq_get_bfqq_handle_split+0xe3/0x2c0\n bfq_init_rq+0x196/0xbb0\n bfq_insert_request.isra.0+0xb5/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_insert_request+0x15d/0x440\n blk_mq_submit_bio+0x8a4/0xb00\n submit_bio_noacct_nocheck+0x331/0x400\n __blkdev_direct_IO_async+0x2dd/0x330\n blkdev_write_iter+0x39a/0x450\n io_write+0x22a/0x840\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFreed by task 808589:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n __kasan_slab_free+0x126/0x1b0\n kmem_cache_free+0x10c/0x750\n bfq_put_queue+0x2dd/0x770\n __bfq_insert_request.isra.0+0x155/0x7a0\n bfq_insert_request.isra.0+0x122/0x480\n bfq_insert_requests+0x156/0x180\n blk_mq_dispatch_plug_list+0x528/0x7e0\n blk_mq_flush_plug_list.part.0+0xe5/0x590\n __blk_flush_plug+0x3b/0x90\n blk_finish_plug+0x40/0x60\n do_writepages+0x19d/0x310\n filemap_fdatawrite_wbc+0x95/0xc0\n __filemap_fdatawrite_range+0x99/0xd0\n filemap_write_and_wait_range.part.0+0x4d/0xa0\n blkdev_read_iter+0xef/0x1e0\n io_read+0x1b6/0x8a0\n io_issue_sqe+0x87/0x300\n io_wq_submit_work+0xeb/0x390\n io_worker_handle_work+0x24d/0x550\n io_wq_worker+0x27f/0x6c0\n ret_from_fork+0x2d/0x50\n ret_from_fork_asm+0x1b/0x30\n\nFix the problem by protecting bic_to_bfqq() with bfqd-\u003elock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53166",
"url": "https://www.suse.com/security/cve/CVE-2024-53166"
},
{
"category": "external",
"summary": "SUSE Bug 1234884 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234884"
},
{
"category": "external",
"summary": "SUSE Bug 1234885 for CVE-2024-53166",
"url": "https://bugzilla.suse.com/1234885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-53168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: fix one UAF issue caused by sunrpc kernel tcp socket\n\nBUG: KASAN: slab-use-after-free in tcp_write_timer_handler+0x156/0x3e0\nRead of size 1 at addr ffff888111f322cd by task swapper/0/0\n\nCPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc4-dirty #7\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x68/0xa0\n print_address_description.constprop.0+0x2c/0x3d0\n print_report+0xb4/0x270\n kasan_report+0xbd/0xf0\n tcp_write_timer_handler+0x156/0x3e0\n tcp_write_timer+0x66/0x170\n call_timer_fn+0xfb/0x1d0\n __run_timers+0x3f8/0x480\n run_timer_softirq+0x9b/0x100\n handle_softirqs+0x153/0x390\n __irq_exit_rcu+0x103/0x120\n irq_exit_rcu+0xe/0x20\n sysvec_apic_timer_interrupt+0x76/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\nCode: 4c 01 c7 4c 29 c2 e9 72 ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90\n 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 f8 25 00 fb f4 \u003cfa\u003e c3 cc cc cc\n cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90\nRSP: 0018:ffffffffa2007e28 EFLAGS: 00000242\nRAX: 00000000000f3b31 RBX: 1ffffffff4400fc7 RCX: ffffffffa09c3196\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9f00590f\nRBP: 0000000000000000 R08: 0000000000000001 R09: ffffed102360835d\nR10: ffff88811b041aeb R11: 0000000000000001 R12: 0000000000000000\nR13: ffffffffa202d7c0 R14: 0000000000000000 R15: 00000000000147d0\n default_idle_call+0x6b/0xa0\n cpuidle_idle_call+0x1af/0x1f0\n do_idle+0xbc/0x130\n cpu_startup_entry+0x33/0x40\n rest_init+0x11f/0x210\n start_kernel+0x39a/0x420\n x86_64_start_reservations+0x18/0x30\n x86_64_start_kernel+0x97/0xa0\n common_startup_64+0x13e/0x141\n \u003c/TASK\u003e\n\nAllocated by task 595:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_slab_alloc+0x87/0x90\n kmem_cache_alloc_noprof+0x12b/0x3f0\n copy_net_ns+0x94/0x380\n create_new_namespaces+0x24c/0x500\n unshare_nsproxy_namespaces+0x75/0xf0\n ksys_unshare+0x24e/0x4f0\n __x64_sys_unshare+0x1f/0x30\n do_syscall_64+0x70/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 100:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x54/0x70\n kmem_cache_free+0x156/0x5d0\n cleanup_net+0x5d3/0x670\n process_one_work+0x776/0xa90\n worker_thread+0x2e2/0x560\n kthread+0x1a8/0x1f0\n ret_from_fork+0x34/0x60\n ret_from_fork_asm+0x1a/0x30\n\nReproduction script:\n\nmkdir -p /mnt/nfsshare\nmkdir -p /mnt/nfs/netns_1\nmkfs.ext4 /dev/sdb\nmount /dev/sdb /mnt/nfsshare\nsystemctl restart nfs-server\nchmod 777 /mnt/nfsshare\nexportfs -i -o rw,no_root_squash *:/mnt/nfsshare\n\nip netns add netns_1\nip link add name veth_1_peer type veth peer veth_1\nifconfig veth_1_peer 11.11.0.254 up\nip link set veth_1 netns netns_1\nip netns exec netns_1 ifconfig veth_1 11.11.0.1\n\nip netns exec netns_1 /root/iptables -A OUTPUT -d 11.11.0.254 -p tcp \\\n\t--tcp-flags FIN FIN -j DROP\n\n(note: In my environment, a DESTROY_CLIENTID operation is always sent\n immediately, breaking the nfs tcp connection.)\nip netns exec netns_1 timeout -s 9 300 mount -t nfs -o proto=tcp,vers=4.1 \\\n\t11.11.0.254:/mnt/nfsshare /mnt/nfs/netns_1\n\nip netns del netns_1\n\nThe reason here is that the tcp socket in netns_1 (nfs side) has been\nshutdown and closed (done in xs_destroy), but the FIN message (with ack)\nis discarded, and the nfsd side keeps sending retransmission messages.\nAs a result, when the tcp sock in netns_1 processes the received message,\nit sends the message (FIN message) in the sending queue, and the tcp timer\nis re-established. When the network namespace is deleted, the net structure\naccessed by tcp\u0027s timer handler function causes problems.\n\nTo fix this problem, let\u0027s hold netns refcnt for the tcp kernel socket as\ndone in other modules. This is an ugly hack which can easily be backported\nto earlier kernels. A proper fix which cleans up the interfaces will\nfollow, but may not be so easy to backport.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53168",
"url": "https://www.suse.com/security/cve/CVE-2024-53168"
},
{
"category": "external",
"summary": "SUSE Bug 1234887 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1234887"
},
{
"category": "external",
"summary": "SUSE Bug 1243650 for CVE-2024-53168",
"url": "https://bugzilla.suse.com/1243650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53168"
},
{
"cve": "CVE-2024-53169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fabrics: fix kernel crash while shutting down controller\n\nThe nvme keep-alive operation, which executes at a periodic interval,\ncould potentially sneak in while shutting down a fabric controller.\nThis may lead to a race between the fabric controller admin queue\ndestroy code path (invoked while shutting down controller) and hw/hctx\nqueue dispatcher called from the nvme keep-alive async request queuing\noperation. This race could lead to the kernel crash shown below:\n\nCall Trace:\n autoremove_wake_function+0x0/0xbc (unreliable)\n __blk_mq_sched_dispatch_requests+0x114/0x24c\n blk_mq_sched_dispatch_requests+0x44/0x84\n blk_mq_run_hw_queue+0x140/0x220\n nvme_keep_alive_work+0xc8/0x19c [nvme_core]\n process_one_work+0x200/0x4e0\n worker_thread+0x340/0x504\n kthread+0x138/0x140\n start_kernel_thread+0x14/0x18\n\nWhile shutting down fabric controller, if nvme keep-alive request sneaks\nin then it would be flushed off. The nvme_keep_alive_end_io function is\nthen invoked to handle the end of the keep-alive operation which\ndecrements the admin-\u003eq_usage_counter and assuming this is the last/only\nrequest in the admin queue then the admin-\u003eq_usage_counter becomes zero.\nIf that happens then blk-mq destroy queue operation (blk_mq_destroy_\nqueue()) which could be potentially running simultaneously on another\ncpu (as this is the controller shutdown code path) would forward\nprogress and deletes the admin queue. So, now from this point onward\nwe are not supposed to access the admin queue resources. However the\nissue here\u0027s that the nvme keep-alive thread running hw/hctx queue\ndispatch operation hasn\u0027t yet finished its work and so it could still\npotentially access the admin queue resource while the admin queue had\nbeen already deleted and that causes the above crash.\n\nThe above kernel crash is regression caused due to changes implemented\nin commit a54a93d0e359 (\"nvme: move stopping keep-alive into\nnvme_uninit_ctrl()\"). Ideally we should stop keep-alive before destroyin\ng the admin queue and freeing the admin tagset so that it wouldn\u0027t sneak\nin during the shutdown operation. However we removed the keep alive stop\noperation from the beginning of the controller shutdown code path in commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\")\nand added it under nvme_uninit_ctrl() which executes very late in the\nshutdown code path after the admin queue is destroyed and its tagset is\nremoved. So this change created the possibility of keep-alive sneaking in\nand interfering with the shutdown operation and causing observed kernel\ncrash.\n\nTo fix the observed crash, we decided to move nvme_stop_keep_alive() from\nnvme_uninit_ctrl() to nvme_remove_admin_tag_set(). This change would ensure\nthat we don\u0027t forward progress and delete the admin queue until the keep-\nalive operation is finished (if it\u0027s in-flight) or cancelled and that would\nhelp contain the race condition explained above and hence avoid the crash.\n\nMoving nvme_stop_keep_alive() to nvme_remove_admin_tag_set() instead of\nadding nvme_stop_keep_alive() to the beginning of the controller shutdown\ncode path in nvme_stop_ctrl(), as was the case earlier before commit\na54a93d0e359 (\"nvme: move stopping keep-alive into nvme_uninit_ctrl()\"),\nwould help save one callsite of nvme_stop_keep_alive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53169",
"url": "https://www.suse.com/security/cve/CVE-2024-53169"
},
{
"category": "external",
"summary": "SUSE Bug 1234900 for CVE-2024-53169",
"url": "https://bugzilla.suse.com/1234900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53169"
},
{
"cve": "CVE-2024-53170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix uaf for flush rq while iterating tags\n\nblk_mq_clear_flush_rq_mapping() is not called during scsi probe, by\nchecking blk_queue_init_done(). However, QUEUE_FLAG_INIT_DONE is cleared\nin del_gendisk by commit aec89dc5d421 (\"block: keep q_usage_counter in\natomic mode after del_gendisk\"), hence for disk like scsi, following\nblk_mq_destroy_queue() will not clear flush rq from tags-\u003erqs[] as well,\ncause following uaf that is found by our syzkaller for v6.6:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in blk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nRead of size 4 at addr ffff88811c969c20 by task kworker/1:2H/224909\n\nCPU: 1 PID: 224909 Comm: kworker/1:2H Not tainted 6.6.0-ga836a5060850 #32\nWorkqueue: kblockd blk_mq_timeout_work\nCall Trace:\n\n__dump_stack lib/dump_stack.c:88 [inline]\ndump_stack_lvl+0x91/0xf0 lib/dump_stack.c:106\nprint_address_description.constprop.0+0x66/0x300 mm/kasan/report.c:364\nprint_report+0x3e/0x70 mm/kasan/report.c:475\nkasan_report+0xb8/0xf0 mm/kasan/report.c:588\nblk_mq_find_and_get_req+0x16e/0x1a0 block/blk-mq-tag.c:261\nbt_iter block/blk-mq-tag.c:288 [inline]\n__sbitmap_for_each_set include/linux/sbitmap.h:295 [inline]\nsbitmap_for_each_set include/linux/sbitmap.h:316 [inline]\nbt_for_each+0x455/0x790 block/blk-mq-tag.c:325\nblk_mq_queue_tag_busy_iter+0x320/0x740 block/blk-mq-tag.c:534\nblk_mq_timeout_work+0x1a3/0x7b0 block/blk-mq.c:1673\nprocess_one_work+0x7c4/0x1450 kernel/workqueue.c:2631\nprocess_scheduled_works kernel/workqueue.c:2704 [inline]\nworker_thread+0x804/0xe40 kernel/workqueue.c:2785\nkthread+0x346/0x450 kernel/kthread.c:388\nret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\nret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:293\n\nAllocated by task 942:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\n____kasan_kmalloc mm/kasan/common.c:374 [inline]\n__kasan_kmalloc mm/kasan/common.c:383 [inline]\n__kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:380\nkasan_kmalloc include/linux/kasan.h:198 [inline]\n__do_kmalloc_node mm/slab_common.c:1007 [inline]\n__kmalloc_node+0x69/0x170 mm/slab_common.c:1014\nkmalloc_node include/linux/slab.h:620 [inline]\nkzalloc_node include/linux/slab.h:732 [inline]\nblk_alloc_flush_queue+0x144/0x2f0 block/blk-flush.c:499\nblk_mq_alloc_hctx+0x601/0x940 block/blk-mq.c:3788\nblk_mq_alloc_and_init_hctx+0x27f/0x330 block/blk-mq.c:4261\nblk_mq_realloc_hw_ctxs+0x488/0x5e0 block/blk-mq.c:4294\nblk_mq_init_allocated_queue+0x188/0x860 block/blk-mq.c:4350\nblk_mq_init_queue_data block/blk-mq.c:4166 [inline]\nblk_mq_init_queue+0x8d/0x100 block/blk-mq.c:4176\nscsi_alloc_sdev+0x843/0xd50 drivers/scsi/scsi_scan.c:335\nscsi_probe_and_add_lun+0x77c/0xde0 drivers/scsi/scsi_scan.c:1189\n__scsi_scan_target+0x1fc/0x5a0 drivers/scsi/scsi_scan.c:1727\nscsi_scan_channel drivers/scsi/scsi_scan.c:1815 [inline]\nscsi_scan_channel+0x14b/0x1e0 drivers/scsi/scsi_scan.c:1791\nscsi_scan_host_selected+0x2fe/0x400 drivers/scsi/scsi_scan.c:1844\nscsi_scan+0x3a0/0x3f0 drivers/scsi/scsi_sysfs.c:151\nstore_scan+0x2a/0x60 drivers/scsi/scsi_sysfs.c:191\ndev_attr_store+0x5c/0x90 drivers/base/core.c:2388\nsysfs_kf_write+0x11c/0x170 fs/sysfs/file.c:136\nkernfs_fop_write_iter+0x3fc/0x610 fs/kernfs/file.c:338\ncall_write_iter include/linux/fs.h:2083 [inline]\nnew_sync_write+0x1b4/0x2d0 fs/read_write.c:493\nvfs_write+0x76c/0xb00 fs/read_write.c:586\nksys_write+0x127/0x250 fs/read_write.c:639\ndo_syscall_x64 arch/x86/entry/common.c:51 [inline]\ndo_syscall_64+0x70/0x120 arch/x86/entry/common.c:81\nentry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nFreed by task 244687:\nkasan_save_stack+0x22/0x50 mm/kasan/common.c:45\nkasan_set_track+0x25/0x30 mm/kasan/common.c:52\nkasan_save_free_info+0x2b/0x50 mm/kasan/generic.c:522\n____kasan_slab_free mm/kasan/common.c:236 [inline]\n__kasan_slab_free+0x12a/0x1b0 mm/kasan/common.c:244\nkasan_slab_free include/linux/kasan.h:164 [in\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53170",
"url": "https://www.suse.com/security/cve/CVE-2024-53170"
},
{
"category": "external",
"summary": "SUSE Bug 1234888 for CVE-2024-53170",
"url": "https://bugzilla.suse.com/1234888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53170"
},
{
"cve": "CVE-2024-53171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit\n\nAfter an insertion in TNC, the tree might split and cause a node to\nchange its `znode-\u003eparent`. A further deletion of other nodes in the\ntree (which also could free the nodes), the aforementioned node\u0027s\n`znode-\u003ecparent` could still point to a freed node. This\n`znode-\u003ecparent` may not be updated when getting nodes to commit in\n`ubifs_tnc_start_commit()`. This could then trigger a use-after-free\nwhen accessing the `znode-\u003ecparent` in `write_index()` in\n`ubifs_tnc_end_commit()`.\n\nThis can be triggered by running\n\n rm -f /etc/test-file.bin\n dd if=/dev/urandom of=/etc/test-file.bin bs=1M count=60 conv=fsync\n\nin a loop, and with `CONFIG_UBIFS_FS_AUTHENTICATION`. KASAN then\nreports:\n\n BUG: KASAN: use-after-free in ubifs_tnc_end_commit+0xa5c/0x1950\n Write of size 32 at addr ffffff800a3af86c by task ubifs_bgt0_20/153\n\n Call trace:\n dump_backtrace+0x0/0x340\n show_stack+0x18/0x24\n dump_stack_lvl+0x9c/0xbc\n print_address_description.constprop.0+0x74/0x2b0\n kasan_report+0x1d8/0x1f0\n kasan_check_range+0xf8/0x1a0\n memcpy+0x84/0xf4\n ubifs_tnc_end_commit+0xa5c/0x1950\n do_commit+0x4e0/0x1340\n ubifs_bg_thread+0x234/0x2e0\n kthread+0x36c/0x410\n ret_from_fork+0x10/0x20\n\n Allocated by task 401:\n kasan_save_stack+0x38/0x70\n __kasan_kmalloc+0x8c/0xd0\n __kmalloc+0x34c/0x5bc\n tnc_insert+0x140/0x16a4\n ubifs_tnc_add+0x370/0x52c\n ubifs_jnl_write_data+0x5d8/0x870\n do_writepage+0x36c/0x510\n ubifs_writepage+0x190/0x4dc\n __writepage+0x58/0x154\n write_cache_pages+0x394/0x830\n do_writepages+0x1f0/0x5b0\n filemap_fdatawrite_wbc+0x170/0x25c\n file_write_and_wait_range+0x140/0x190\n ubifs_fsync+0xe8/0x290\n vfs_fsync_range+0xc0/0x1e4\n do_fsync+0x40/0x90\n __arm64_sys_fsync+0x34/0x50\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\n Freed by task 403:\n kasan_save_stack+0x38/0x70\n kasan_set_track+0x28/0x40\n kasan_set_free_info+0x28/0x4c\n __kasan_slab_free+0xd4/0x13c\n kfree+0xc4/0x3a0\n tnc_delete+0x3f4/0xe40\n ubifs_tnc_remove_range+0x368/0x73c\n ubifs_tnc_remove_ino+0x29c/0x2e0\n ubifs_jnl_delete_inode+0x150/0x260\n ubifs_evict_inode+0x1d4/0x2e4\n evict+0x1c8/0x450\n iput+0x2a0/0x3c4\n do_unlinkat+0x2cc/0x490\n __arm64_sys_unlinkat+0x90/0x100\n invoke_syscall.constprop.0+0xa8/0x260\n do_el0_svc+0xc8/0x1f0\n el0_svc+0x34/0x70\n el0t_64_sync_handler+0x108/0x114\n el0t_64_sync+0x1a4/0x1a8\n\nThe offending `memcpy()` in `ubifs_copy_hash()` has a use-after-free\nwhen a node becomes root in TNC but still has a `cparent` to an already\nfreed node. More specifically, consider the following TNC:\n\n zroot\n /\n /\n zp1\n /\n /\n zn\n\nInserting a new node `zn_new` with a key smaller then `zn` will trigger\na split in `tnc_insert()` if `zp1` is full:\n\n zroot\n / \\\n / \\\n zp1 zp2\n / \\\n / \\\n zn_new zn\n\n`zn-\u003eparent` has now been moved to `zp2`, *but* `zn-\u003ecparent` still\npoints to `zp1`.\n\nNow, consider a removal of all the nodes _except_ `zn`. Just when\n`tnc_delete()` is about to delete `zroot` and `zp2`:\n\n zroot\n \\\n \\\n zp2\n \\\n \\\n zn\n\n`zroot` and `zp2` get freed and the tree collapses:\n\n zn\n\n`zn` now becomes the new `zroot`.\n\n`get_znodes_to_commit()` will now only find `zn`, the new `zroot`, and\n`write_index()` will check its `znode-\u003ecparent` that wrongly points to\nthe already freed `zp1`. `ubifs_copy_hash()` thus gets wrongly called\nwith `znode-\u003ecparent-\u003ezbranch[znode-\u003eiip].hash` that triggers the\nuse-after-free!\n\nFix this by explicitly setting `znode-\u003ecparent` to `NULL` in\n`get_znodes_to_commit()` for the root node. The search for the dirty\nnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53171",
"url": "https://www.suse.com/security/cve/CVE-2024-53171"
},
{
"category": "external",
"summary": "SUSE Bug 1234889 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1234889"
},
{
"category": "external",
"summary": "SUSE Bug 1236234 for CVE-2024-53171",
"url": "https://bugzilla.suse.com/1236234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53171"
},
{
"cve": "CVE-2024-53172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubi: fastmap: Fix duplicate slab cache names while attaching\n\nSince commit 4c39529663b9 (\"slab: Warn on duplicate cache names when\nDEBUG_VM=y\"), the duplicate slab cache names can be detected and a\nkernel WARNING is thrown out.\nIn UBI fast attaching process, alloc_ai() could be invoked twice\nwith the same slab cache name \u0027ubi_aeb_slab_cache\u0027, which will trigger\nfollowing warning messages:\n kmem_cache of name \u0027ubi_aeb_slab_cache\u0027 already exists\n WARNING: CPU: 0 PID: 7519 at mm/slab_common.c:107\n __kmem_cache_create_args+0x100/0x5f0\n Modules linked in: ubi(+) nandsim [last unloaded: nandsim]\n CPU: 0 UID: 0 PID: 7519 Comm: modprobe Tainted: G 6.12.0-rc2\n RIP: 0010:__kmem_cache_create_args+0x100/0x5f0\n Call Trace:\n __kmem_cache_create_args+0x100/0x5f0\n alloc_ai+0x295/0x3f0 [ubi]\n ubi_attach+0x3c3/0xcc0 [ubi]\n ubi_attach_mtd_dev+0x17cf/0x3fa0 [ubi]\n ubi_init+0x3fb/0x800 [ubi]\n do_init_module+0x265/0x7d0\n __x64_sys_finit_module+0x7a/0xc0\n\nThe problem could be easily reproduced by loading UBI device by fastmap\nwith CONFIG_DEBUG_VM=y.\nFix it by using different slab names for alloc_ai() callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53172",
"url": "https://www.suse.com/security/cve/CVE-2024-53172"
},
{
"category": "external",
"summary": "SUSE Bug 1234898 for CVE-2024-53172",
"url": "https://bugzilla.suse.com/1234898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53172"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: make sure cache entry active before cache_show\n\nThe function `c_show` was called with protection from RCU. This only\nensures that `cp` will not be freed. Therefore, the reference count for\n`cp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `cache_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `cp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 7 PID: 822 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 7 UID: 0 PID: 822 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n\nCall Trace:\n \u003cTASK\u003e\n c_show+0x2fc/0x380 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53174",
"url": "https://www.suse.com/security/cve/CVE-2024-53174"
},
{
"category": "external",
"summary": "SUSE Bug 1234899 for CVE-2024-53174",
"url": "https://bugzilla.suse.com/1234899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53174"
},
{
"cve": "CVE-2024-53175",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53175"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipc: fix memleak if msg_init_ns failed in create_ipc_ns\n\nPercpu memory allocation may failed during create_ipc_ns however this\nfail is not handled properly since ipc sysctls and mq sysctls is not\nreleased properly. Fix this by release these two resource when failure.\n\nHere is the kmemleak stack when percpu failed:\n\nunreferenced object 0xffff88819de2a600 (size 512):\n comm \"shmem_2nstest\", pid 120711, jiffies 4300542254\n hex dump (first 32 bytes):\n 60 aa 9d 84 ff ff ff ff fc 18 48 b2 84 88 ff ff `.........H.....\n 04 00 00 00 a4 01 00 00 20 e4 56 81 ff ff ff ff ........ .V.....\n backtrace (crc be7cba35):\n [\u003cffffffff81b43f83\u003e] __kmalloc_node_track_caller_noprof+0x333/0x420\n [\u003cffffffff81a52e56\u003e] kmemdup_noprof+0x26/0x50\n [\u003cffffffff821b2f37\u003e] setup_mq_sysctls+0x57/0x1d0\n [\u003cffffffff821b29cc\u003e] copy_ipcs+0x29c/0x3b0\n [\u003cffffffff815d6a10\u003e] create_new_namespaces+0x1d0/0x920\n [\u003cffffffff815d7449\u003e] copy_namespaces+0x2e9/0x3e0\n [\u003cffffffff815458f3\u003e] copy_process+0x29f3/0x7ff0\n [\u003cffffffff8154b080\u003e] kernel_clone+0xc0/0x650\n [\u003cffffffff8154b6b1\u003e] __do_sys_clone+0xa1/0xe0\n [\u003cffffffff843df8ff\u003e] do_syscall_64+0xbf/0x1c0\n [\u003cffffffff846000b0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53175",
"url": "https://www.suse.com/security/cve/CVE-2024-53175"
},
{
"category": "external",
"summary": "SUSE Bug 1234893 for CVE-2024-53175",
"url": "https://bugzilla.suse.com/1234893"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53175"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Add sanity NULL check for the default mmap fault handler\n\nA driver might allow the mmap access before initializing its\nruntime-\u003edma_area properly. Add a proper NULL check before passing to\nvirt_to_page() for avoiding a panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53180",
"url": "https://www.suse.com/security/cve/CVE-2024-53180"
},
{
"category": "external",
"summary": "SUSE Bug 1234929 for CVE-2024-53180",
"url": "https://bugzilla.suse.com/1234929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53180"
},
{
"cve": "CVE-2024-53185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix NULL ptr deref in crypto_aead_setkey()\n\nNeither SMB3.0 or SMB3.02 supports encryption negotiate context, so\nwhen SMB2_GLOBAL_CAP_ENCRYPTION flag is set in the negotiate response,\nthe client uses AES-128-CCM as the default cipher. See MS-SMB2\n3.3.5.4.\n\nCommit b0abcd65ec54 (\"smb: client: fix UAF in async decryption\") added\na @server-\u003ecipher_type check to conditionally call\nsmb3_crypto_aead_allocate(), but that check would always be false as\n@server-\u003ecipher_type is unset for SMB3.02.\n\nFix the following KASAN splat by setting @server-\u003ecipher_type for\nSMB3.02 as well.\n\nmount.cifs //srv/share /mnt -o vers=3.02,seal,...\n\nBUG: KASAN: null-ptr-deref in crypto_aead_setkey+0x2c/0x130\nRead of size 8 at addr 0000000000000020 by task mount.cifs/1095\nCPU: 1 UID: 0 PID: 1095 Comm: mount.cifs Not tainted 6.12.0 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-3.fc41\n04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? crypto_aead_setkey+0x2c/0x130\n kasan_report+0xda/0x110\n ? crypto_aead_setkey+0x2c/0x130\n crypto_aead_setkey+0x2c/0x130\n crypt_message+0x258/0xec0 [cifs]\n ? __asan_memset+0x23/0x50\n ? __pfx_crypt_message+0x10/0x10 [cifs]\n ? mark_lock+0xb0/0x6a0\n ? hlock_class+0x32/0xb0\n ? mark_lock+0xb0/0x6a0\n smb3_init_transform_rq+0x352/0x3f0 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n smb_send_rqst+0x144/0x230 [cifs]\n ? __pfx_smb_send_rqst+0x10/0x10 [cifs]\n ? hlock_class+0x32/0xb0\n ? smb2_setup_request+0x225/0x3a0 [cifs]\n ? __pfx_cifs_compound_last_callback+0x10/0x10 [cifs]\n compound_send_recv+0x59b/0x1140 [cifs]\n ? __pfx_compound_send_recv+0x10/0x10 [cifs]\n ? __create_object+0x5e/0x90\n ? hlock_class+0x32/0xb0\n ? do_raw_spin_unlock+0x9a/0xf0\n cifs_send_recv+0x23/0x30 [cifs]\n SMB2_tcon+0x3ec/0xb30 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? __pfx_lock_release+0x10/0x10\n ? do_raw_spin_trylock+0xc6/0x120\n ? lock_acquire+0x3f/0x90\n ? _get_xid+0x16/0xd0 [cifs]\n ? __pfx_SMB2_tcon+0x10/0x10 [cifs]\n ? cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n cifs_get_smb_ses+0xcdd/0x10a0 [cifs]\n ? __pfx_cifs_get_smb_ses+0x10/0x10 [cifs]\n ? cifs_get_tcp_session+0xaa0/0xca0 [cifs]\n cifs_mount_get_session+0x8a/0x210 [cifs]\n dfs_mount_share+0x1b0/0x11d0 [cifs]\n ? __pfx___lock_acquire+0x10/0x10\n ? __pfx_dfs_mount_share+0x10/0x10 [cifs]\n ? lock_acquire.part.0+0xf4/0x2a0\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? lock_release+0x203/0x5d0\n cifs_mount+0xb3/0x3d0 [cifs]\n ? do_raw_spin_trylock+0xc6/0x120\n ? __pfx_cifs_mount+0x10/0x10 [cifs]\n ? lock_acquire+0x3f/0x90\n ? find_nls+0x16/0xa0\n ? smb3_update_mnt_flags+0x372/0x3b0 [cifs]\n cifs_smb3_do_mount+0x1e2/0xc80 [cifs]\n ? __pfx_vfs_parse_fs_string+0x10/0x10\n ? __pfx_cifs_smb3_do_mount+0x10/0x10 [cifs]\n smb3_get_tree+0x1bf/0x330 [cifs]\n vfs_get_tree+0x4a/0x160\n path_mount+0x3c1/0xfb0\n ? kasan_quarantine_put+0xc7/0x1d0\n ? __pfx_path_mount+0x10/0x10\n ? kmem_cache_free+0x118/0x3e0\n ? user_path_at+0x74/0xa0\n __x64_sys_mount+0x1a6/0x1e0\n ? __pfx___x64_sys_mount+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53185",
"url": "https://www.suse.com/security/cve/CVE-2024-53185"
},
{
"category": "external",
"summary": "SUSE Bug 1234901 for CVE-2024-53185",
"url": "https://bugzilla.suse.com/1234901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53185"
},
{
"cve": "CVE-2024-53187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check for overflows in io_pin_pages\n\nWARNING: CPU: 0 PID: 5834 at io_uring/memmap.c:144 io_pin_pages+0x149/0x180 io_uring/memmap.c:144\nCPU: 0 UID: 0 PID: 5834 Comm: syz-executor825 Not tainted 6.12.0-next-20241118-syzkaller #0\nCall Trace:\n \u003cTASK\u003e\n __io_uaddr_map+0xfb/0x2d0 io_uring/memmap.c:183\n io_rings_map io_uring/io_uring.c:2611 [inline]\n io_allocate_scq_urings+0x1c0/0x650 io_uring/io_uring.c:3470\n io_uring_create+0x5b5/0xc00 io_uring/io_uring.c:3692\n io_uring_setup io_uring/io_uring.c:3781 [inline]\n ...\n \u003c/TASK\u003e\n\nio_pin_pages()\u0027s uaddr parameter came directly from the user and can be\ngarbage. Don\u0027t just add size to it as it can overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53187",
"url": "https://www.suse.com/security/cve/CVE-2024-53187"
},
{
"category": "external",
"summary": "SUSE Bug 1234947 for CVE-2024-53187",
"url": "https://bugzilla.suse.com/1234947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53187"
},
{
"cve": "CVE-2024-53188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix crash when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe function ath12k_dp_cc_cleanup is called to release resources.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nat RIP: 0010:ath12k_dp_cc_cleanup.part.0+0xb6/0x500 [ath12k]\nCall Trace:\nath12k_dp_cc_cleanup\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set to NULL the released structure in\nath12k_dp_cc_cleanup at the end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53188",
"url": "https://www.suse.com/security/cve/CVE-2024-53188"
},
{
"category": "external",
"summary": "SUSE Bug 1234948 for CVE-2024-53188",
"url": "https://bugzilla.suse.com/1234948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53188"
},
{
"cve": "CVE-2024-53190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures\n\nSyzkaller reported a hung task with uevent_show() on stack trace. That\nspecific issue was addressed by another commit [0], but even with that\nfix applied (for example, running v6.12-rc5) we face another type of hung\ntask that comes from the same reproducer [1]. By investigating that, we\ncould narrow it to the following path:\n\n(a) Syzkaller emulates a Realtek USB WiFi adapter using raw-gadget and\ndummy_hcd infrastructure.\n\n(b) During the probe of rtl8192cu, the driver ends-up performing an efuse\nread procedure (which is related to EEPROM load IIUC), and here lies the\nissue: the function read_efuse() calls read_efuse_byte() many times, as\nloop iterations depending on the efuse size (in our example, 512 in total).\n\nThis procedure for reading efuse bytes relies in a loop that performs an\nI/O read up to *10k* times in case of failures. We measured the time of\nthe loop inside read_efuse_byte() alone, and in this reproducer (which\ninvolves the dummy_hcd emulation layer), it takes 15 seconds each. As a\nconsequence, we have the driver stuck in its probe routine for big time,\nexposing a stack trace like below if we attempt to reboot the system, for\nexample:\n\ntask:kworker/0:3 state:D stack:0 pid:662 tgid:662 ppid:2 flags:0x00004000\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n __schedule+0xe22/0xeb6\n schedule_timeout+0xe7/0x132\n __wait_for_common+0xb5/0x12e\n usb_start_wait_urb+0xc5/0x1ef\n ? usb_alloc_urb+0x95/0xa4\n usb_control_msg+0xff/0x184\n _usbctrl_vendorreq_sync+0xa0/0x161\n _usb_read_sync+0xb3/0xc5\n read_efuse_byte+0x13c/0x146\n read_efuse+0x351/0x5f0\n efuse_read_all_map+0x42/0x52\n rtl_efuse_shadow_map_update+0x60/0xef\n rtl_get_hwinfo+0x5d/0x1c2\n rtl92cu_read_eeprom_info+0x10a/0x8d5\n ? rtl92c_read_chip_version+0x14f/0x17e\n rtl_usb_probe+0x323/0x851\n usb_probe_interface+0x278/0x34b\n really_probe+0x202/0x4a4\n __driver_probe_device+0x166/0x1b2\n driver_probe_device+0x2f/0xd8\n [...]\n\nWe propose hereby to drastically reduce the attempts of doing the I/O\nreads in case of failures, restricted to USB devices (given that\nthey\u0027re inherently slower than PCIe ones). By retrying up to 10 times\n(instead of 10000), we got reponsiveness in the reproducer, while seems\nreasonable to believe that there\u0027s no sane USB device implementation in\nthe field requiring this amount of retries at every I/O read in order\nto properly work. Based on that assumption, it\u0027d be good to have it\nbackported to stable but maybe not since driver implementation (the 10k\nnumber comes from day 0), perhaps up to 6.x series makes sense.\n\n[0] Commit 15fffc6a5624 (\"driver core: Fix uevent_show() vs driver detach race\")\n\n[1] A note about that: this syzkaller report presents multiple reproducers\nthat differs by the type of emulated USB device. For this specific case,\ncheck the entry from 2024/08/08 06:23 in the list of crashes; the C repro\nis available at https://syzkaller.appspot.com/text?tag=ReproC\u0026x=1521fc83980000.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53190",
"url": "https://www.suse.com/security/cve/CVE-2024-53190"
},
{
"category": "external",
"summary": "SUSE Bug 1234950 for CVE-2024-53190",
"url": "https://bugzilla.suse.com/1234950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-53190"
},
{
"cve": "CVE-2024-53191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix warning when unbinding\n\nIf there is an error during some initialization related to firmware,\nthe buffers dp-\u003etx_ring[i].tx_status are released.\nHowever this is released again when the device is unbinded (ath12k_pci),\nand we get:\nWARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 free_large_kmalloc+0x4d/0x80\nCall Trace:\nfree_large_kmalloc\nath12k_dp_free\nath12k_core_deinit\nath12k_pci_remove\n...\n\nThe issue is always reproducible from a VM because the MSI addressing\ninitialization is failing.\n\nIn order to fix the issue, just set the buffers to NULL after releasing in\norder to avoid the double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53191",
"url": "https://www.suse.com/security/cve/CVE-2024-53191"
},
{
"category": "external",
"summary": "SUSE Bug 1234952 for CVE-2024-53191",
"url": "https://bugzilla.suse.com/1234952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53191"
},
{
"cve": "CVE-2024-53194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix use-after-free of slot-\u003ebus on hot remove\n\nDennis reports a boot crash on recent Lenovo laptops with a USB4 dock.\n\nSince commit 0fc70886569c (\"thunderbolt: Reset USB4 v2 host router\") and\ncommit 59a54c5f3dbd (\"thunderbolt: Reset topology created by the boot\nfirmware\"), USB4 v2 and v1 Host Routers are reset on probe of the\nthunderbolt driver.\n\nThe reset clears the Presence Detect State and Data Link Layer Link Active\nbits at the USB4 Host Router\u0027s Root Port and thus causes hot removal of the\ndock.\n\nThe crash occurs when pciehp is unbound from one of the dock\u0027s Downstream\nPorts: pciehp creates a pci_slot on bind and destroys it on unbind. The\npci_slot contains a pointer to the pci_bus below the Downstream Port, but\na reference on that pci_bus is never acquired. The pci_bus is destroyed\nbefore the pci_slot, so a use-after-free ensues when pci_slot_release()\naccesses slot-\u003ebus.\n\nIn principle this should not happen because pci_stop_bus_device() unbinds\npciehp (and therefore destroys the pci_slot) before the pci_bus is\ndestroyed by pci_remove_bus_device().\n\nHowever the stacktrace provided by Dennis shows that pciehp is unbound from\npci_remove_bus_device() instead of pci_stop_bus_device(). To understand\nthe significance of this, one needs to know that the PCI core uses a two\nstep process to remove a portion of the hierarchy: It first unbinds all\ndrivers in the sub-hierarchy in pci_stop_bus_device() and then actually\nremoves the devices in pci_remove_bus_device(). There is no precaution to\nprevent driver binding in-between pci_stop_bus_device() and\npci_remove_bus_device().\n\nIn Dennis\u0027 case, it seems removal of the hierarchy by pciehp races with\ndriver binding by pci_bus_add_devices(). pciehp is bound to the\nDownstream Port after pci_stop_bus_device() has run, so it is unbound by\npci_remove_bus_device() instead of pci_stop_bus_device(). Because the\npci_bus has already been destroyed at that point, accesses to it result in\na use-after-free.\n\nOne might conclude that driver binding needs to be prevented after\npci_stop_bus_device() has run. However it seems risky that pci_slot points\nto pci_bus without holding a reference. Solely relying on correct ordering\nof driver unbind versus pci_bus destruction is certainly not defensive\nprogramming.\n\nIf pci_slot has a need to access data in pci_bus, it ought to acquire a\nreference. Amend pci_create_slot() accordingly. Dennis reports that the\ncrash is not reproducible with this change.\n\nAbridged stacktrace:\n\n pcieport 0000:00:07.0: PME: Signaling with IRQ 156\n pcieport 0000:00:07.0: pciehp: Slot #12 AttnBtn- PwrCtrl- MRL- AttnInd- PwrInd- HotPlug+ Surprise+ Interlock- NoCompl+ IbPresDis- LLActRep+\n pci_bus 0000:20: dev 00, created physical slot 12\n pcieport 0000:00:07.0: pciehp: Slot(12): Card not present\n ...\n pcieport 0000:21:02.0: pciehp: pcie_disable_notification: SLOTCTRL d8 write cmd 0\n Oops: general protection fault, probably for non-canonical address 0x6b6b6b6b6b6b6b6b: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 13 UID: 0 PID: 134 Comm: irq/156-pciehp Not tainted 6.11.0-devel+ #1\n RIP: 0010:dev_driver_string+0x12/0x40\n pci_destroy_slot\n pciehp_remove\n pcie_port_remove_service\n device_release_driver_internal\n bus_remove_device\n device_del\n device_unregister\n remove_iter\n device_for_each_child\n pcie_portdrv_remove\n pci_device_remove\n device_release_driver_internal\n bus_remove_device\n device_del\n pci_remove_bus_device (recursive invocation)\n pci_remove_bus_device\n pciehp_unconfigure_device\n pciehp_disable_slot\n pciehp_handle_presence_or_link_change\n pciehp_ist",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53194",
"url": "https://www.suse.com/security/cve/CVE-2024-53194"
},
{
"category": "external",
"summary": "SUSE Bug 1235459 for CVE-2024-53194",
"url": "https://bugzilla.suse.com/1235459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53194"
},
{
"cve": "CVE-2024-53195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Get rid of userspace_irqchip_in_use\n\nImproper use of userspace_irqchip_in_use led to syzbot hitting the\nfollowing WARN_ON() in kvm_timer_update_irq():\n\nWARNING: CPU: 0 PID: 3281 at arch/arm64/kvm/arch_timer.c:459\nkvm_timer_update_irq+0x21c/0x394\nCall trace:\n kvm_timer_update_irq+0x21c/0x394 arch/arm64/kvm/arch_timer.c:459\n kvm_timer_vcpu_reset+0x158/0x684 arch/arm64/kvm/arch_timer.c:968\n kvm_reset_vcpu+0x3b4/0x560 arch/arm64/kvm/reset.c:264\n kvm_vcpu_set_target arch/arm64/kvm/arm.c:1553 [inline]\n kvm_arch_vcpu_ioctl_vcpu_init arch/arm64/kvm/arm.c:1573 [inline]\n kvm_arch_vcpu_ioctl+0x112c/0x1b3c arch/arm64/kvm/arm.c:1695\n kvm_vcpu_ioctl+0x4ec/0xf74 virt/kvm/kvm_main.c:4658\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x108/0x184 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x78/0x1b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0xe8/0x1b0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x40/0x50 arch/arm64/kernel/syscall.c:151\n el0_svc+0x54/0x14c arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe following sequence led to the scenario:\n - Userspace creates a VM and a vCPU.\n - The vCPU is initialized with KVM_ARM_VCPU_PMU_V3 during\n KVM_ARM_VCPU_INIT.\n - Without any other setup, such as vGIC or vPMU, userspace issues\n KVM_RUN on the vCPU. Since the vPMU is requested, but not setup,\n kvm_arm_pmu_v3_enable() fails in kvm_arch_vcpu_run_pid_change().\n As a result, KVM_RUN returns after enabling the timer, but before\n incrementing \u0027userspace_irqchip_in_use\u0027:\n kvm_arch_vcpu_run_pid_change()\n ret = kvm_arm_pmu_v3_enable()\n if (!vcpu-\u003earch.pmu.created)\n return -EINVAL;\n if (ret)\n return ret;\n [...]\n if (!irqchip_in_kernel(kvm))\n static_branch_inc(\u0026userspace_irqchip_in_use);\n - Userspace ignores the error and issues KVM_ARM_VCPU_INIT again.\n Since the timer is already enabled, control moves through the\n following flow, ultimately hitting the WARN_ON():\n kvm_timer_vcpu_reset()\n if (timer-\u003eenabled)\n kvm_timer_update_irq()\n if (!userspace_irqchip())\n ret = kvm_vgic_inject_irq()\n ret = vgic_lazy_init()\n if (unlikely(!vgic_initialized(kvm)))\n if (kvm-\u003earch.vgic.vgic_model !=\n KVM_DEV_TYPE_ARM_VGIC_V2)\n return -EBUSY;\n WARN_ON(ret);\n\nTheoretically, since userspace_irqchip_in_use\u0027s functionality can be\nsimply replaced by \u0027!irqchip_in_kernel()\u0027, get rid of the static key\nto avoid the mismanagement, which also helps with the syzbot issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53195",
"url": "https://www.suse.com/security/cve/CVE-2024-53195"
},
{
"category": "external",
"summary": "SUSE Bug 1234957 for CVE-2024-53195",
"url": "https://bugzilla.suse.com/1234957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53195"
},
{
"cve": "CVE-2024-53196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Don\u0027t retire aborted MMIO instruction\n\nReturning an abort to the guest for an unsupported MMIO access is a\ndocumented feature of the KVM UAPI. Nevertheless, it\u0027s clear that this\nplumbing has seen limited testing, since userspace can trivially cause a\nWARN in the MMIO return:\n\n WARNING: CPU: 0 PID: 30558 at arch/arm64/include/asm/kvm_emulate.h:536 kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n Call trace:\n kvm_handle_mmio_return+0x46c/0x5c4 arch/arm64/include/asm/kvm_emulate.h:536\n kvm_arch_vcpu_ioctl_run+0x98/0x15b4 arch/arm64/kvm/arm.c:1133\n kvm_vcpu_ioctl+0x75c/0xa78 virt/kvm/kvm_main.c:4487\n __do_sys_ioctl fs/ioctl.c:51 [inline]\n __se_sys_ioctl fs/ioctl.c:893 [inline]\n __arm64_sys_ioctl+0x14c/0x1c8 fs/ioctl.c:893\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x1e0/0x23c arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n el0_svc+0x38/0x68 arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x90/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nThe splat is complaining that KVM is advancing PC while an exception is\npending, i.e. that KVM is retiring the MMIO instruction despite a\npending synchronous external abort. Womp womp.\n\nFix the glaring UAPI bug by skipping over all the MMIO emulation in\ncase there is a pending synchronous exception. Note that while userspace\nis capable of pending an asynchronous exception (SError, IRQ, or FIQ),\nit is still safe to retire the MMIO instruction in this case as (1) they\nare by definition asynchronous, and (2) KVM relies on hardware support\nfor pending/delivering these exceptions instead of the software state\nmachine for advancing PC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53196",
"url": "https://www.suse.com/security/cve/CVE-2024-53196"
},
{
"category": "external",
"summary": "SUSE Bug 1234906 for CVE-2024-53196",
"url": "https://bugzilla.suse.com/1234906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53196"
},
{
"cve": "CVE-2024-53197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53197"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices\n\nA bogus device can provide a bNumConfigurations value that exceeds the\ninitial value used in usb_get_configuration for allocating dev-\u003econfig.\n\nThis can lead to out-of-bounds accesses later, e.g. in\nusb_destroy_configuration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53197",
"url": "https://www.suse.com/security/cve/CVE-2024-53197"
},
{
"category": "external",
"summary": "SUSE Bug 1235464 for CVE-2024-53197",
"url": "https://bugzilla.suse.com/1235464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53197"
},
{
"cve": "CVE-2024-53198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen: Fix the issue of resource not being properly released in xenbus_dev_probe()\n\nThis patch fixes an issue in the function xenbus_dev_probe(). In the\nxenbus_dev_probe() function, within the if (err) branch at line 313, the\nprogram incorrectly returns err directly without releasing the resources\nallocated by err = drv-\u003eprobe(dev, id). As the return value is non-zero,\nthe upper layers assume the processing logic has failed. However, the probe\noperation was performed earlier without a corresponding remove operation.\nSince the probe actually allocates resources, failing to perform the remove\noperation could lead to problems.\n\nTo fix this issue, we followed the resource release logic of the\nxenbus_dev_remove() function by adding a new block fail_remove before the\nfail_put block. After entering the branch if (err) at line 313, the\nfunction will use a goto statement to jump to the fail_remove block,\nensuring that the previously acquired resources are correctly released,\nthus preventing the reference count leak.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand detecting potential issues where resources are not properly managed.\nIn this case, the tool flagged the missing release operation as a\npotential problem, which led to the development of this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53198",
"url": "https://www.suse.com/security/cve/CVE-2024-53198"
},
{
"category": "external",
"summary": "SUSE Bug 1234923 for CVE-2024-53198",
"url": "https://bugzilla.suse.com/1234923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53198"
},
{
"cve": "CVE-2024-53200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in hwss_setup_dpp\n\nThis commit addresses a null pointer dereference issue in\nhwss_setup_dpp(). The issue could occur when pipe_ctx-\u003eplane_state is\nnull. The fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53200",
"url": "https://www.suse.com/security/cve/CVE-2024-53200"
},
{
"category": "external",
"summary": "SUSE Bug 1234968 for CVE-2024-53200",
"url": "https://bugzilla.suse.com/1234968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53200"
},
{
"cve": "CVE-2024-53201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in\ndcn20_program_pipe(). Previously, commit 8e4ed3cf1642 (\"drm/amd/display:\nAdd null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\")\npartially fixed the null pointer dereference issue. However, in\ndcn20_update_dchubp_dpp(), the variable pipe_ctx is passed in, and\nplane_state is accessed again through pipe_ctx. Multiple if statements\ndirectly call attributes of plane_state, leading to potential null\npointer dereference issues. This patch adds necessary null checks to\nensure stability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53201",
"url": "https://www.suse.com/security/cve/CVE-2024-53201"
},
{
"category": "external",
"summary": "SUSE Bug 1234969 for CVE-2024-53201",
"url": "https://bugzilla.suse.com/1234969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53201"
},
{
"cve": "CVE-2024-53202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Fix possible resource leak in fw_log_firmware_info()\n\nThe alg instance should be released under the exception path, otherwise\nthere may be resource leak here.\n\nTo mitigate this, free the alg instance with crypto_free_shash when kmalloc\nfails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53202",
"url": "https://www.suse.com/security/cve/CVE-2024-53202"
},
{
"category": "external",
"summary": "SUSE Bug 1234970 for CVE-2024-53202",
"url": "https://bugzilla.suse.com/1234970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53202"
},
{
"cve": "CVE-2024-53203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53203"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: fix potential array underflow in ucsi_ccg_sync_control()\n\nThe \"command\" variable can be controlled by the user via debugfs. The\nworry is that if con_index is zero then \"\u0026uc-\u003eucsi-\u003econnector[con_index\n- 1]\" would be an array underflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53203",
"url": "https://www.suse.com/security/cve/CVE-2024-53203"
},
{
"category": "external",
"summary": "SUSE Bug 1235001 for CVE-2024-53203",
"url": "https://bugzilla.suse.com/1235001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53203"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible deadlocks\n\nThis fixes possible deadlocks like the following caused by\nhci_cmd_sync_dequeue causing the destroy function to run:\n\n INFO: task kworker/u19:0:143 blocked for more than 120 seconds.\n Tainted: G W O 6.8.0-2024-03-19-intel-next-iLS-24ww14 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:kworker/u19:0 state:D stack:0 pid:143 tgid:143 ppid:2 flags:0x00004000\n Workqueue: hci0 hci_cmd_sync_work [bluetooth]\n Call Trace:\n \u003cTASK\u003e\n __schedule+0x374/0xaf0\n schedule+0x3c/0xf0\n schedule_preempt_disabled+0x1c/0x30\n __mutex_lock.constprop.0+0x3ef/0x7a0\n __mutex_lock_slowpath+0x13/0x20\n mutex_lock+0x3c/0x50\n mgmt_set_connectable_complete+0xa4/0x150 [bluetooth]\n ? kfree+0x211/0x2a0\n hci_cmd_sync_dequeue+0xae/0x130 [bluetooth]\n ? __pfx_cmd_complete_rsp+0x10/0x10 [bluetooth]\n cmd_complete_rsp+0x26/0x80 [bluetooth]\n mgmt_pending_foreach+0x4d/0x70 [bluetooth]\n __mgmt_power_off+0x8d/0x180 [bluetooth]\n ? _raw_spin_unlock_irq+0x23/0x40\n hci_dev_close_sync+0x445/0x5b0 [bluetooth]\n hci_set_powered_sync+0x149/0x250 [bluetooth]\n set_powered_sync+0x24/0x60 [bluetooth]\n hci_cmd_sync_work+0x90/0x150 [bluetooth]\n process_one_work+0x13e/0x300\n worker_thread+0x2f7/0x420\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x107/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x3d/0x60\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53207",
"url": "https://www.suse.com/security/cve/CVE-2024-53207"
},
{
"category": "external",
"summary": "SUSE Bug 1234907 for CVE-2024-53207",
"url": "https://bugzilla.suse.com/1234907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53207"
},
{
"cve": "CVE-2024-53208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync\n\nThis fixes the following crash:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\nRead of size 8 at addr ffff888029b4dd18 by task kworker/u9:0/54\n\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-01155-gf723224742fc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\nq kasan_report+0x143/0x180 mm/kasan/report.c:601\n set_powered_sync+0x3a/0xc0 net/bluetooth/mgmt.c:1353\n hci_cmd_sync_work+0x22b/0x400 net/bluetooth/hci_sync.c:328\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd10 kernel/workqueue.c:3389\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\nAllocated by task 5247:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __kmalloc_cache_noprof+0x19c/0x2c0 mm/slub.c:4193\n kmalloc_noprof include/linux/slab.h:681 [inline]\n kzalloc_noprof include/linux/slab.h:807 [inline]\n mgmt_pending_new+0x65/0x250 net/bluetooth/mgmt_util.c:269\n mgmt_pending_add+0x36/0x120 net/bluetooth/mgmt_util.c:296\n set_powered+0x3cd/0x5e0 net/bluetooth/mgmt.c:1394\n hci_mgmt_cmd+0xc47/0x11d0 net/bluetooth/hci_sock.c:1712\n hci_sock_sendmsg+0x7b8/0x11c0 net/bluetooth/hci_sock.c:1832\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xa72/0xc90 fs/read_write.c:590\n ksys_write+0x1a0/0x2c0 fs/read_write.c:643\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5246:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x149/0x360 mm/slub.c:4598\n settings_rsp+0x2bc/0x390 net/bluetooth/mgmt.c:1443\n mgmt_pending_foreach+0xd1/0x130 net/bluetooth/mgmt_util.c:259\n __mgmt_power_off+0x112/0x420 net/bluetooth/mgmt.c:9455\n hci_dev_close_sync+0x665/0x11a0 net/bluetooth/hci_sync.c:5191\n hci_dev_do_close net/bluetooth/hci_core.c:483 [inline]\n hci_dev_close+0x112/0x210 net/bluetooth/hci_core.c:508\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83gv\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53208",
"url": "https://www.suse.com/security/cve/CVE-2024-53208"
},
{
"category": "external",
"summary": "SUSE Bug 1234909 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1234909"
},
{
"category": "external",
"summary": "SUSE Bug 1236244 for CVE-2024-53208",
"url": "https://bugzilla.suse.com/1236244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53208"
},
{
"cve": "CVE-2024-53209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix receive ring space parameters when XDP is active\n\nThe MTU setting at the time an XDP multi-buffer is attached\ndetermines whether the aggregation ring will be used and the\nrx_skb_func handler. This is done in bnxt_set_rx_skb_mode().\n\nIf the MTU is later changed, the aggregation ring setting may need\nto be changed and it may become out-of-sync with the settings\ninitially done in bnxt_set_rx_skb_mode(). This may result in\nrandom memory corruption and crashes as the HW may DMA data larger\nthan the allocated buffer size, such as:\n\nBUG: kernel NULL pointer dereference, address: 00000000000003c0\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 17 PID: 0 Comm: swapper/17 Kdump: loaded Tainted: G S OE 6.1.0-226bf9805506 #1\nHardware name: Wiwynn Delta Lake PVT BZA.02601.0150/Delta Lake-Class1, BIOS F0E_3A12 08/26/2021\nRIP: 0010:bnxt_rx_pkt+0xe97/0x1ae0 [bnxt_en]\nCode: 8b 95 70 ff ff ff 4c 8b 9d 48 ff ff ff 66 41 89 87 b4 00 00 00 e9 0b f7 ff ff 0f b7 43 0a 49 8b 95 a8 04 00 00 25 ff 0f 00 00 \u003c0f\u003e b7 14 42 48 c1 e2 06 49 03 95 a0 04 00 00 0f b6 42 33f\nRSP: 0018:ffffa19f40cc0d18 EFLAGS: 00010202\nRAX: 00000000000001e0 RBX: ffff8e2c805c6100 RCX: 00000000000007ff\nRDX: 0000000000000000 RSI: ffff8e2c271ab990 RDI: ffff8e2c84f12380\nRBP: ffffa19f40cc0e48 R08: 000000000001000d R09: 974ea2fcddfa4cbf\nR10: 0000000000000000 R11: ffffa19f40cc0ff8 R12: ffff8e2c94b58980\nR13: ffff8e2c952d6600 R14: 0000000000000016 R15: ffff8e2c271ab990\nFS: 0000000000000000(0000) GS:ffff8e3b3f840000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000000003c0 CR3: 0000000e8580a004 CR4: 00000000007706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n __bnxt_poll_work+0x1c2/0x3e0 [bnxt_en]\n\nTo address the issue, we now call bnxt_set_rx_skb_mode() within\nbnxt_change_mtu() to properly set the AGG rings configuration and\nupdate rx_skb_func based on the new MTU value.\nAdditionally, BNXT_FLAG_NO_AGG_RINGS is cleared at the beginning of\nbnxt_set_rx_skb_mode() to make sure it gets set or cleared based on\nthe current MTU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53209",
"url": "https://www.suse.com/security/cve/CVE-2024-53209"
},
{
"category": "external",
"summary": "SUSE Bug 1235002 for CVE-2024-53209",
"url": "https://bugzilla.suse.com/1235002"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53209"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()\n\nThere\u0027s issue as follows:\nRPC: Registered rdma transport module.\nRPC: Registered rdma backchannel transport module.\nRPC: Unregistered rdma transport module.\nRPC: Unregistered rdma backchannel transport module.\nBUG: unable to handle page fault for address: fffffbfff80c609a\nPGD 123fee067 P4D 123fee067 PUD 123fea067 PMD 10c624067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nRIP: 0010:percpu_counter_destroy_many+0xf7/0x2a0\nCall Trace:\n \u003cTASK\u003e\n __die+0x1f/0x70\n page_fault_oops+0x2cd/0x860\n spurious_kernel_fault+0x36/0x450\n do_kern_addr_fault+0xca/0x100\n exc_page_fault+0x128/0x150\n asm_exc_page_fault+0x26/0x30\n percpu_counter_destroy_many+0xf7/0x2a0\n mmdrop+0x209/0x350\n finish_task_switch.isra.0+0x481/0x840\n schedule_tail+0xe/0xd0\n ret_from_fork+0x23/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nIf register_sysctl() return NULL, then svc_rdma_proc_cleanup() will not\ndestroy the percpu counters which init in svc_rdma_proc_init().\nIf CONFIG_HOTPLUG_CPU is enabled, residual nodes may be in the\n\u0027percpu_counters\u0027 list. The above issue may occur once the module is\nremoved. If the CONFIG_HOTPLUG_CPU configuration is not enabled, memory\nleakage occurs.\nTo solve above issue just destroy all percpu counters when\nregister_sysctl() return NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53215",
"url": "https://www.suse.com/security/cve/CVE-2024-53215"
},
{
"category": "external",
"summary": "SUSE Bug 1234962 for CVE-2024-53215",
"url": "https://bugzilla.suse.com/1234962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53215"
},
{
"cve": "CVE-2024-53216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: release svc_expkey/svc_export with rcu_work\n\nThe last reference for `cache_head` can be reduced to zero in `c_show`\nand `e_show`(using `rcu_read_lock` and `rcu_read_unlock`). Consequently,\n`svc_export_put` and `expkey_put` will be invoked, leading to two\nissues:\n\n1. The `svc_export_put` will directly free ex_uuid. However,\n `e_show`/`c_show` will access `ex_uuid` after `cache_put`, which can\n trigger a use-after-free issue, shown below.\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in svc_export_show+0x362/0x430 [nfsd]\n Read of size 1 at addr ff11000010fdc120 by task cat/870\n\n CPU: 1 UID: 0 PID: 870 Comm: cat Not tainted 6.12.0-rc3+ #1\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n 1.16.1-2.fc37 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x53/0x70\n print_address_description.constprop.0+0x2c/0x3a0\n print_report+0xb9/0x280\n kasan_report+0xae/0xe0\n svc_export_show+0x362/0x430 [nfsd]\n c_show+0x161/0x390 [sunrpc]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n proc_reg_read+0xe1/0x140\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Allocated by task 830:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __kmalloc_node_track_caller_noprof+0x1bc/0x400\n kmemdup_noprof+0x22/0x50\n svc_export_parse+0x8a9/0xb80 [nfsd]\n cache_do_downcall+0x71/0xa0 [sunrpc]\n cache_write_procfs+0x8e/0xd0 [sunrpc]\n proc_reg_write+0xe1/0x140\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 868:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x37/0x50\n kfree+0xf3/0x3e0\n svc_export_put+0x87/0xb0 [nfsd]\n cache_purge+0x17f/0x1f0 [sunrpc]\n nfsd_destroy_serv+0x226/0x2d0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n2. We cannot sleep while using `rcu_read_lock`/`rcu_read_unlock`.\n However, `svc_export_put`/`expkey_put` will call path_put, which\n subsequently triggers a sleeping operation due to the following\n `dput`.\n\n =============================\n WARNING: suspicious RCU usage\n 5.10.0-dirty #141 Not tainted\n -----------------------------\n ...\n Call Trace:\n dump_stack+0x9a/0xd0\n ___might_sleep+0x231/0x240\n dput+0x39/0x600\n path_put+0x1b/0x30\n svc_export_put+0x17/0x80\n e_show+0x1c9/0x200\n seq_read_iter+0x63f/0x7c0\n seq_read+0x226/0x2d0\n vfs_read+0x113/0x2c0\n ksys_read+0xc9/0x170\n do_syscall_64+0x33/0x40\n entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nFix these issues by using `rcu_work` to help release\n`svc_expkey`/`svc_export`. This approach allows for an asynchronous\ncontext to invoke `path_put` and also facilitates the freeing of\n`uuid/exp/key` after an RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53216",
"url": "https://www.suse.com/security/cve/CVE-2024-53216"
},
{
"category": "external",
"summary": "SUSE Bug 1235003 for CVE-2024-53216",
"url": "https://bugzilla.suse.com/1235003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53216"
},
{
"cve": "CVE-2024-53217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent NULL dereference in nfsd4_process_cb_update()\n\n@ses is initialized to NULL. If __nfsd4_find_backchannel() finds no\navailable backchannel session, setup_callback_client() will try to\ndereference @ses and segfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53217",
"url": "https://www.suse.com/security/cve/CVE-2024-53217"
},
{
"category": "external",
"summary": "SUSE Bug 1234999 for CVE-2024-53217",
"url": "https://bugzilla.suse.com/1234999"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53217"
},
{
"cve": "CVE-2024-53222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram-\u003ecomp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram-\u003einit_lock in other places and no such problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53222",
"url": "https://www.suse.com/security/cve/CVE-2024-53222"
},
{
"category": "external",
"summary": "SUSE Bug 1234974 for CVE-2024-53222",
"url": "https://bugzilla.suse.com/1234974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53222"
},
{
"cve": "CVE-2024-53224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Move events notifier registration to be after device registration\n\nMove pkey change work initialization and cleanup from device resources\nstage to notifier stage, since this is the stage which handles this work\nevents.\n\nFix a race between the device deregistration and pkey change work by moving\nMLX5_IB_STAGE_DEVICE_NOTIFIER to be after MLX5_IB_STAGE_IB_REG in order to\nensure that the notifier is deregistered before the device during cleanup.\nWhich ensures there are no works that are being executed after the\ndevice has already unregistered which can cause the panic below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 1 PID: 630071 Comm: kworker/1:2 Kdump: loaded Tainted: G W OE --------- --- 5.14.0-162.6.1.el9_1.x86_64 #1\nHardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 02/27/2023\nWorkqueue: events pkey_change_handler [mlx5_ib]\nRIP: 0010:setup_qp+0x38/0x1f0 [mlx5_ib]\nCode: ee 41 54 45 31 e4 55 89 f5 53 48 89 fb 48 83 ec 20 8b 77 08 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 48 8b 07 48 8d 4c 24 16 \u003c4c\u003e 8b 38 49 8b 87 80 0b 00 00 4c 89 ff 48 8b 80 08 05 00 00 8b 40\nRSP: 0018:ffffbcc54068be20 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff954054494128 RCX: ffffbcc54068be36\nRDX: ffff954004934000 RSI: 0000000000000001 RDI: ffff954054494128\nRBP: 0000000000000023 R08: ffff954001be2c20 R09: 0000000000000001\nR10: ffff954001be2c20 R11: ffff9540260133c0 R12: 0000000000000000\nR13: 0000000000000023 R14: 0000000000000000 R15: ffff9540ffcb0905\nFS: 0000000000000000(0000) GS:ffff9540ffc80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000010625c001 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\nmlx5_ib_gsi_pkey_change+0x20/0x40 [mlx5_ib]\nprocess_one_work+0x1e8/0x3c0\nworker_thread+0x50/0x3b0\n? rescuer_thread+0x380/0x380\nkthread+0x149/0x170\n? set_kthread_struct+0x50/0x50\nret_from_fork+0x22/0x30\nModules linked in: rdma_ucm(OE) rdma_cm(OE) iw_cm(OE) ib_ipoib(OE) ib_cm(OE) ib_umad(OE) mlx5_ib(OE) mlx5_fwctl(OE) fwctl(OE) ib_uverbs(OE) mlx5_core(OE) mlxdevm(OE) ib_core(OE) mlx_compat(OE) psample mlxfw(OE) tls knem(OE) netconsole nfsv3 nfs_acl nfs lockd grace fscache netfs qrtr rfkill sunrpc intel_rapl_msr intel_rapl_common rapl hv_balloon hv_utils i2c_piix4 pcspkr joydev fuse ext4 mbcache jbd2 sr_mod sd_mod cdrom t10_pi sg ata_generic pci_hyperv pci_hyperv_intf hyperv_drm drm_shmem_helper drm_kms_helper hv_storvsc syscopyarea hv_netvsc sysfillrect sysimgblt hid_hyperv fb_sys_fops scsi_transport_fc hyperv_keyboard drm ata_piix crct10dif_pclmul crc32_pclmul crc32c_intel libata ghash_clmulni_intel hv_vmbus serio_raw [last unloaded: ib_core]\nCR2: 0000000000000000\n---[ end trace f6f8be4eae12f7bc ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53224",
"url": "https://www.suse.com/security/cve/CVE-2024-53224"
},
{
"category": "external",
"summary": "SUSE Bug 1235009 for CVE-2024-53224",
"url": "https://bugzilla.suse.com/1235009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53224"
},
{
"cve": "CVE-2024-53227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bfa: Fix use-after-free in bfad_im_module_exit()\n\nBUG: KASAN: slab-use-after-free in __lock_acquire+0x2aca/0x3a20\nRead of size 8 at addr ffff8881082d80c8 by task modprobe/25303\n\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x95/0xe0\n print_report+0xcb/0x620\n kasan_report+0xbd/0xf0\n __lock_acquire+0x2aca/0x3a20\n lock_acquire+0x19b/0x520\n _raw_spin_lock+0x2b/0x40\n attribute_container_unregister+0x30/0x160\n fc_release_transport+0x19/0x90 [scsi_transport_fc]\n bfad_im_module_exit+0x23/0x60 [bfa]\n bfad_init+0xdb/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\nAllocated by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n fc_attach_transport+0x4f/0x4740 [scsi_transport_fc]\n bfad_im_module_init+0x17/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 25303:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x38/0x50\n kfree+0x212/0x480\n bfad_im_module_init+0x7e/0x80 [bfa]\n bfad_init+0x23/0xff0 [bfa]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nAbove issue happens as follows:\n\nbfad_init\n error = bfad_im_module_init()\n fc_release_transport(bfad_im_scsi_transport_template);\n if (error)\n goto ext;\n\next:\n bfad_im_module_exit();\n fc_release_transport(bfad_im_scsi_transport_template);\n --\u003e Trigger double release\n\nDon\u0027t call bfad_im_module_exit() if bfad_im_module_init() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53227",
"url": "https://www.suse.com/security/cve/CVE-2024-53227"
},
{
"category": "external",
"summary": "SUSE Bug 1235011 for CVE-2024-53227",
"url": "https://bugzilla.suse.com/1235011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53227"
},
{
"cve": "CVE-2024-53229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix the qp flush warnings in req\n\nWhen the qp is in error state, the status of WQEs in the queue should be\nset to error. Or else the following will appear.\n\n[ 920.617269] WARNING: CPU: 1 PID: 21 at drivers/infiniband/sw/rxe/rxe_comp.c:756 rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.617744] Modules linked in: rnbd_client(O) rtrs_client(O) rtrs_core(O) rdma_ucm rdma_cm iw_cm ib_cm crc32_generic rdma_rxe ip6_udp_tunnel udp_tunnel ib_uverbs ib_core loop brd null_blk ipv6\n[ 920.618516] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G O 6.1.113-storage+ #65\n[ 920.618986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n[ 920.619396] RIP: 0010:rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.619658] Code: 0f b6 84 24 3a 02 00 00 41 89 84 24 44 04 00 00 e9 2a f7 ff ff 39 ca bb 03 00 00 00 b8 0e 00 00 00 48 0f 45 d8 e9 15 f7 ff ff \u003c0f\u003e 0b e9 cb f8 ff ff 41 bf f5 ff ff ff e9 08 f8 ff ff 49 8d bc 24\n[ 920.620482] RSP: 0018:ffff97b7c00bbc38 EFLAGS: 00010246\n[ 920.620817] RAX: 0000000000000000 RBX: 000000000000000c RCX: 0000000000000008\n[ 920.621183] RDX: ffff960dc396ebc0 RSI: 0000000000005400 RDI: ffff960dc4e2fbac\n[ 920.621548] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffffac406450\n[ 920.621884] R10: ffffffffac4060c0 R11: 0000000000000001 R12: ffff960dc4e2f800\n[ 920.622254] R13: ffff960dc4e2f928 R14: ffff97b7c029c580 R15: 0000000000000000\n[ 920.622609] FS: 0000000000000000(0000) GS:ffff960ef7d00000(0000) knlGS:0000000000000000\n[ 920.622979] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 920.623245] CR2: 00007fa056965e90 CR3: 00000001107f1000 CR4: 00000000000006e0\n[ 920.623680] Call Trace:\n[ 920.623815] \u003cTASK\u003e\n[ 920.623933] ? __warn+0x79/0xc0\n[ 920.624116] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.624356] ? report_bug+0xfb/0x150\n[ 920.624594] ? handle_bug+0x3c/0x60\n[ 920.624796] ? exc_invalid_op+0x14/0x70\n[ 920.624976] ? asm_exc_invalid_op+0x16/0x20\n[ 920.625203] ? rxe_completer+0x989/0xcc0 [rdma_rxe]\n[ 920.625474] ? rxe_completer+0x329/0xcc0 [rdma_rxe]\n[ 920.625749] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.626037] rxe_requester+0x625/0xde0 [rdma_rxe]\n[ 920.626310] ? rxe_cq_post+0xe2/0x180 [rdma_rxe]\n[ 920.626583] ? do_complete+0x18d/0x220 [rdma_rxe]\n[ 920.626812] ? rxe_completer+0x1a3/0xcc0 [rdma_rxe]\n[ 920.627050] rxe_do_task+0x80/0x110 [rdma_rxe]\n[ 920.627285] tasklet_action_common.constprop.0+0xa4/0x120\n[ 920.627522] handle_softirqs+0xc2/0x250\n[ 920.627728] ? sort_range+0x20/0x20\n[ 920.627942] run_ksoftirqd+0x1f/0x30\n[ 920.628158] smpboot_thread_fn+0xc7/0x1b0\n[ 920.628334] kthread+0xd6/0x100\n[ 920.628504] ? kthread_complete_and_exit+0x20/0x20\n[ 920.628709] ret_from_fork+0x1f/0x30\n[ 920.628892] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53229",
"url": "https://www.suse.com/security/cve/CVE-2024-53229"
},
{
"category": "external",
"summary": "SUSE Bug 1234905 for CVE-2024-53229",
"url": "https://bugzilla.suse.com/1234905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53229"
},
{
"cve": "CVE-2024-53230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference,\nso check NULL for cppc_get_cpu_cost().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53230",
"url": "https://www.suse.com/security/cve/CVE-2024-53230"
},
{
"category": "external",
"summary": "SUSE Bug 1235976 for CVE-2024-53230",
"url": "https://bugzilla.suse.com/1235976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53230"
},
{
"cve": "CVE-2024-53231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy-\u003ecpus cpu mask and it will cause null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53231",
"url": "https://www.suse.com/security/cve/CVE-2024-53231"
},
{
"category": "external",
"summary": "SUSE Bug 1235977 for CVE-2024-53231",
"url": "https://bugzilla.suse.com/1235977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53231"
},
{
"cve": "CVE-2024-53232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/s390: Implement blocking domain\n\nThis fixes a crash when surprise hot-unplugging a PCI device. This crash\nhappens because during hot-unplug __iommu_group_set_domain_nofail()\nattaching the default domain fails when the platform no longer\nrecognizes the device as it has already been removed and we end up with\na NULL domain pointer and UAF. This is exactly the case referred to in\nthe second comment in __iommu_device_set_domain() and just as stated\nthere if we can instead attach the blocking domain the UAF is prevented\nas this can handle the already removed device. Implement the blocking\ndomain to use this handling. With this change, the crash is fixed but\nwe still hit a warning attempting to change DMA ownership on a blocked\ndevice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53232",
"url": "https://www.suse.com/security/cve/CVE-2024-53232"
},
{
"category": "external",
"summary": "SUSE Bug 1235050 for CVE-2024-53232",
"url": "https://bugzilla.suse.com/1235050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53232"
},
{
"cve": "CVE-2024-53233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nunicode: Fix utf8_load() error path\n\nutf8_load() requests the symbol \"utf8_data_table\" and then checks if the\nrequested UTF-8 version is supported. If it\u0027s unsupported, it tries to\nput the data table using symbol_put(). If an unsupported version is\nrequested, symbol_put() fails like this:\n\n kernel BUG at kernel/module/main.c:786!\n RIP: 0010:__symbol_put+0x93/0xb0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x19/0x27\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x65/0x80\n ? __symbol_put+0x93/0xb0\n ? exc_invalid_op+0x51/0x70\n ? __symbol_put+0x93/0xb0\n ? asm_exc_invalid_op+0x1a/0x20\n ? __pfx_cmp_name+0x10/0x10\n ? __symbol_put+0x93/0xb0\n ? __symbol_put+0x62/0xb0\n utf8_load+0xf8/0x150\n\nThat happens because symbol_put() expects the unique string that\nidentify the symbol, instead of a pointer to the loaded symbol. Fix that\nby using such string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53233",
"url": "https://www.suse.com/security/cve/CVE-2024-53233"
},
{
"category": "external",
"summary": "SUSE Bug 1235046 for CVE-2024-53233",
"url": "https://bugzilla.suse.com/1235046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53233"
},
{
"cve": "CVE-2024-53234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle NONHEAD !delta[1] lclusters gracefully\n\nsyzbot reported a WARNING in iomap_iter_done:\n iomap_fiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80\n ioctl_fiemap fs/ioctl.c:220 [inline]\n\nGenerally, NONHEAD lclusters won\u0027t have delta[1]==0, except for crafted\nimages and filesystems created by pre-1.0 mkfs versions.\n\nPreviously, it would immediately bail out if delta[1]==0, which led to\ninadequate decompressed lengths (thus FIEMAP is impacted). Treat it as\ndelta[1]=1 to work around these legacy mkfs versions.\n\n`lclusterbits \u003e 14` is illegal for compact indexes, error out too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53234",
"url": "https://www.suse.com/security/cve/CVE-2024-53234"
},
{
"category": "external",
"summary": "SUSE Bug 1235045 for CVE-2024-53234",
"url": "https://bugzilla.suse.com/1235045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53234"
},
{
"cve": "CVE-2024-53236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: Free skb when TX metadata options are invalid\n\nWhen a new skb is allocated for transmitting an xsk descriptor, i.e., for\nevery non-multibuf descriptor or the first frag of a multibuf descriptor,\nbut the descriptor is later found to have invalid options set for the TX\nmetadata, the new skb is never freed. This can leak skbs until the send\nbuffer is full which makes sending more packets impossible.\n\nFix this by freeing the skb in the error path if we are currently dealing\nwith the first frag, i.e., an skb allocated in this iteration of\nxsk_build_skb.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53236",
"url": "https://www.suse.com/security/cve/CVE-2024-53236"
},
{
"category": "external",
"summary": "SUSE Bug 1235000 for CVE-2024-53236",
"url": "https://bugzilla.suse.com/1235000"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53236"
},
{
"cve": "CVE-2024-53237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: fix use-after-free in device_for_each_child()\n\nSyzbot has reported the following KASAN splat:\n\nBUG: KASAN: slab-use-after-free in device_for_each_child+0x18f/0x1a0\nRead of size 8 at addr ffff88801f605308 by task kbnepd bnep0/4980\n\nCPU: 0 UID: 0 PID: 4980 Comm: kbnepd bnep0 Not tainted 6.12.0-rc4-00161-gae90f6a6170d #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x100/0x190\n ? device_for_each_child+0x18f/0x1a0\n print_report+0x13a/0x4cb\n ? __virt_addr_valid+0x5e/0x590\n ? __phys_addr+0xc6/0x150\n ? device_for_each_child+0x18f/0x1a0\n kasan_report+0xda/0x110\n ? device_for_each_child+0x18f/0x1a0\n ? __pfx_dev_memalloc_noio+0x10/0x10\n device_for_each_child+0x18f/0x1a0\n ? __pfx_device_for_each_child+0x10/0x10\n pm_runtime_set_memalloc_noio+0xf2/0x180\n netdev_unregister_kobject+0x1ed/0x270\n unregister_netdevice_many_notify+0x123c/0x1d80\n ? __mutex_trylock_common+0xde/0x250\n ? __pfx_unregister_netdevice_many_notify+0x10/0x10\n ? trace_contention_end+0xe6/0x140\n ? __mutex_lock+0x4e7/0x8f0\n ? __pfx_lock_acquire.part.0+0x10/0x10\n ? rcu_is_watching+0x12/0xc0\n ? unregister_netdev+0x12/0x30\n unregister_netdevice_queue+0x30d/0x3f0\n ? __pfx_unregister_netdevice_queue+0x10/0x10\n ? __pfx_down_write+0x10/0x10\n unregister_netdev+0x1c/0x30\n bnep_session+0x1fb3/0x2ab0\n ? __pfx_bnep_session+0x10/0x10\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_woken_wake_function+0x10/0x10\n ? __kthread_parkme+0x132/0x200\n ? __pfx_bnep_session+0x10/0x10\n ? kthread+0x13a/0x370\n ? __pfx_bnep_session+0x10/0x10\n kthread+0x2b7/0x370\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x48/0x80\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 4974:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n __kmalloc_noprof+0x1d1/0x440\n hci_alloc_dev_priv+0x1d/0x2820\n __vhci_create_device+0xef/0x7d0\n vhci_write+0x2c7/0x480\n vfs_write+0x6a0/0xfc0\n ksys_write+0x12f/0x260\n do_syscall_64+0xc7/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 4979:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x4f/0x70\n kfree+0x141/0x490\n hci_release_dev+0x4d9/0x600\n bt_host_release+0x6a/0xb0\n device_release+0xa4/0x240\n kobject_put+0x1ec/0x5a0\n put_device+0x1f/0x30\n vhci_release+0x81/0xf0\n __fput+0x3f6/0xb30\n task_work_run+0x151/0x250\n do_exit+0xa79/0x2c30\n do_group_exit+0xd5/0x2a0\n get_signal+0x1fcd/0x2210\n arch_do_signal_or_restart+0x93/0x780\n syscall_exit_to_user_mode+0x140/0x290\n do_syscall_64+0xd4/0x250\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nIn \u0027hci_conn_del_sysfs()\u0027, \u0027device_unregister()\u0027 may be called when\nan underlying (kobject) reference counter is greater than 1. This\nmeans that reparenting (happened when the device is actually freed)\nis delayed and, during that delay, parent controller device (hciX)\nmay be deleted. Since the latter may create a dangling pointer to\nfreed parent, avoid that scenario by reparenting to NULL explicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53237",
"url": "https://www.suse.com/security/cve/CVE-2024-53237"
},
{
"category": "external",
"summary": "SUSE Bug 1235007 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235007"
},
{
"category": "external",
"summary": "SUSE Bug 1235008 for CVE-2024-53237",
"url": "https://bugzilla.suse.com/1235008"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53237"
},
{
"cve": "CVE-2024-53239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: 6fire: Release resources at card release\n\nThe current 6fire code tries to release the resources right after the\ncall of usb6fire_chip_abort(). But at this moment, the card object\nmight be still in use (as we\u0027re calling snd_card_free_when_closed()).\n\nFor avoid potential UAFs, move the release of resources to the card\u0027s\nprivate_free instead of the manual call of usb6fire_chip_destroy() at\nthe USB disconnect callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53239",
"url": "https://www.suse.com/security/cve/CVE-2024-53239"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235054 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "external",
"summary": "SUSE Bug 1235055 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-53239"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-53685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: give up on paths longer than PATH_MAX\n\nIf the full path to be built by ceph_mdsc_build_path() happens to be\nlonger than PATH_MAX, then this function will enter an endless (retry)\nloop, effectively blocking the whole task. Most of the machine\nbecomes unusable, making this a very simple and effective DoS\nvulnerability.\n\nI cannot imagine why this retry was ever implemented, but it seems\nrather useless and harmful to me. Let\u0027s remove it and fail with\nENAMETOOLONG instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53685",
"url": "https://www.suse.com/security/cve/CVE-2024-53685"
},
{
"category": "external",
"summary": "SUSE Bug 1235720 for CVE-2024-53685",
"url": "https://bugzilla.suse.com/1235720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53685"
},
{
"cve": "CVE-2024-53690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: prevent use of deleted inode\n\nsyzbot reported a WARNING in nilfs_rmdir. [1]\n\nBecause the inode bitmap is corrupted, an inode with an inode number that\nshould exist as a \".nilfs\" file was reassigned by nilfs_mkdir for \"file0\",\ncausing an inode duplication during execution. And this causes an\nunderflow of i_nlink in rmdir operations.\n\nThe inode is used twice by the same task to unmount and remove directories\n\".nilfs\" and \"file0\", it trigger warning in nilfs_rmdir.\n\nAvoid to this issue, check i_nlink in nilfs_iget(), if it is 0, it means\nthat this inode has been deleted, and iput is executed to reclaim it.\n\n[1]\nWARNING: CPU: 1 PID: 5824 at fs/inode.c:407 drop_nlink+0xc4/0x110 fs/inode.c:407\n...\nCall Trace:\n \u003cTASK\u003e\n nilfs_rmdir+0x1b0/0x250 fs/nilfs2/namei.c:342\n vfs_rmdir+0x3a3/0x510 fs/namei.c:4394\n do_rmdir+0x3b5/0x580 fs/namei.c:4453\n __do_sys_rmdir fs/namei.c:4472 [inline]\n __se_sys_rmdir fs/namei.c:4470 [inline]\n __x64_sys_rmdir+0x47/0x50 fs/namei.c:4470\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53690",
"url": "https://www.suse.com/security/cve/CVE-2024-53690"
},
{
"category": "external",
"summary": "SUSE Bug 1235842 for CVE-2024-53690",
"url": "https://bugzilla.suse.com/1235842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-53690"
},
{
"cve": "CVE-2024-54680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-54680"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-54680",
"url": "https://www.suse.com/security/cve/CVE-2024-54680"
},
{
"category": "external",
"summary": "SUSE Bug 1235723 for CVE-2024-54680",
"url": "https://bugzilla.suse.com/1235723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-54680"
},
{
"cve": "CVE-2024-55639",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55639"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: renesas: rswitch: avoid use-after-put for a device tree node\n\nThe device tree node saved in the rswitch_device structure is used at\nseveral driver locations. So passing this node to of_node_put() after\nthe first use is wrong.\n\nMove of_node_put() for this node to exit paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55639",
"url": "https://www.suse.com/security/cve/CVE-2024-55639"
},
{
"category": "external",
"summary": "SUSE Bug 1235737 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235737"
},
{
"category": "external",
"summary": "SUSE Bug 1235738 for CVE-2024-55639",
"url": "https://bugzilla.suse.com/1235738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-55639"
},
{
"cve": "CVE-2024-55881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: x86: Play nice with protected guests in complete_hypercall_exit()\n\nUse is_64_bit_hypercall() instead of is_64_bit_mode() to detect a 64-bit\nhypercall when completing said hypercall. For guests with protected state,\ne.g. SEV-ES and SEV-SNP, KVM must assume the hypercall was made in 64-bit\nmode as the vCPU state needed to detect 64-bit mode is unavailable.\n\nHacking the sev_smoke_test selftest to generate a KVM_HC_MAP_GPA_RANGE\nhypercall via VMGEXIT trips the WARN:\n\n ------------[ cut here ]------------\n WARNING: CPU: 273 PID: 326626 at arch/x86/kvm/x86.h:180 complete_hypercall_exit+0x44/0xe0 [kvm]\n Modules linked in: kvm_amd kvm ... [last unloaded: kvm]\n CPU: 273 UID: 0 PID: 326626 Comm: sev_smoke_test Not tainted 6.12.0-smp--392e932fa0f3-feat #470\n Hardware name: Google Astoria/astoria, BIOS 0.20240617.0-0 06/17/2024\n RIP: 0010:complete_hypercall_exit+0x44/0xe0 [kvm]\n Call Trace:\n \u003cTASK\u003e\n kvm_arch_vcpu_ioctl_run+0x2400/0x2720 [kvm]\n kvm_vcpu_ioctl+0x54f/0x630 [kvm]\n __se_sys_ioctl+0x6b/0xc0\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55881",
"url": "https://www.suse.com/security/cve/CVE-2024-55881"
},
{
"category": "external",
"summary": "SUSE Bug 1235745 for CVE-2024-55881",
"url": "https://bugzilla.suse.com/1235745"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-55881"
},
{
"cve": "CVE-2024-55916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-55916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nDrivers: hv: util: Avoid accessing a ringbuffer not initialized yet\n\nIf the KVP (or VSS) daemon starts before the VMBus channel\u0027s ringbuffer is\nfully initialized, we can hit the panic below:\n\nhv_utils: Registering HyperV Utility Driver\nhv_vmbus: registering driver hv_utils\n...\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nCPU: 44 UID: 0 PID: 2552 Comm: hv_kvp_daemon Tainted: G E 6.11.0-rc3+ #1\nRIP: 0010:hv_pkt_iter_first+0x12/0xd0\nCall Trace:\n...\n vmbus_recvpacket\n hv_kvp_onchannelcallback\n vmbus_on_event\n tasklet_action_common\n tasklet_action\n handle_softirqs\n irq_exit_rcu\n sysvec_hyperv_stimer0\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_hyperv_stimer0\n...\n kvp_register_done\n hvt_op_read\n vfs_read\n ksys_read\n __x64_sys_read\n\nThis can happen because the KVP/VSS channel callback can be invoked\neven before the channel is fully opened:\n1) as soon as hv_kvp_init() -\u003e hvutil_transport_init() creates\n/dev/vmbus/hv_kvp, the kvp daemon can open the device file immediately and\nregister itself to the driver by writing a message KVP_OP_REGISTER1 to the\nfile (which is handled by kvp_on_msg() -\u003ekvp_handle_handshake()) and\nreading the file for the driver\u0027s response, which is handled by\nhvt_op_read(), which calls hvt-\u003eon_read(), i.e. kvp_register_done().\n\n2) the problem with kvp_register_done() is that it can cause the\nchannel callback to be called even before the channel is fully opened,\nand when the channel callback is starting to run, util_probe()-\u003e\nvmbus_open() may have not initialized the ringbuffer yet, so the\ncallback can hit the panic of NULL pointer dereference.\n\nTo reproduce the panic consistently, we can add a \"ssleep(10)\" for KVP in\n__vmbus_open(), just before the first hv_ringbuffer_init(), and then we\nunload and reload the driver hv_utils, and run the daemon manually within\nthe 10 seconds.\n\nFix the panic by reordering the steps in util_probe() so the char dev\nentry used by the KVP or VSS daemon is not created until after\nvmbus_open() has completed. This reordering prevents the race condition\nfrom happening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-55916",
"url": "https://www.suse.com/security/cve/CVE-2024-55916"
},
{
"category": "external",
"summary": "SUSE Bug 1235747 for CVE-2024-55916",
"url": "https://bugzilla.suse.com/1235747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-55916"
},
{
"cve": "CVE-2024-56369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56369"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/modes: Avoid divide by zero harder in drm_mode_vrefresh()\n\ndrm_mode_vrefresh() is trying to avoid divide by zero\nby checking whether htotal or vtotal are zero. But we may\nstill end up with a div-by-zero of vtotal*htotal*...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56369",
"url": "https://www.suse.com/security/cve/CVE-2024-56369"
},
{
"category": "external",
"summary": "SUSE Bug 1235750 for CVE-2024-56369",
"url": "https://bugzilla.suse.com/1235750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56369"
},
{
"cve": "CVE-2024-56372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tun: fix tun_napi_alloc_frags()\n\nsyzbot reported the following crash [1]\n\nIssue came with the blamed commit. Instead of going through\nall the iov components, we keep using the first one\nand end up with a malformed skb.\n\n[1]\n\nkernel BUG at net/core/skbuff.c:2849 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 6230 Comm: syz-executor132 Not tainted 6.13.0-rc1-syzkaller-00407-g96b6fcc0ee41 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024\n RIP: 0010:__pskb_pull_tail+0x1568/0x1570 net/core/skbuff.c:2848\nCode: 38 c1 0f 8c 32 f1 ff ff 4c 89 f7 e8 92 96 74 f8 e9 25 f1 ff ff e8 e8 ae 09 f8 48 8b 5c 24 08 e9 eb fb ff ff e8 d9 ae 09 f8 90 \u003c0f\u003e 0b 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90\nRSP: 0018:ffffc90004cbef30 EFLAGS: 00010293\nRAX: ffffffff8995c347 RBX: 00000000fffffff2 RCX: ffff88802cf45a00\nRDX: 0000000000000000 RSI: 00000000fffffff2 RDI: 0000000000000000\nRBP: ffff88807df0c06a R08: ffffffff8995b084 R09: 1ffff1100fbe185c\nR10: dffffc0000000000 R11: ffffed100fbe185d R12: ffff888076e85d50\nR13: ffff888076e85c80 R14: ffff888076e85cf4 R15: ffff888076e85c80\nFS: 00007f0dca6ea6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f0dca6ead58 CR3: 00000000119da000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_cow_data+0x2da/0xcb0 net/core/skbuff.c:5284\n tipc_aead_decrypt net/tipc/crypto.c:894 [inline]\n tipc_crypto_rcv+0x402/0x24e0 net/tipc/crypto.c:1844\n tipc_rcv+0x57e/0x12a0 net/tipc/node.c:2109\n tipc_l2_rcv_msg+0x2bd/0x450 net/tipc/bearer.c:668\n __netif_receive_skb_list_ptype net/core/dev.c:5720 [inline]\n __netif_receive_skb_list_core+0x8b7/0x980 net/core/dev.c:5762\n __netif_receive_skb_list net/core/dev.c:5814 [inline]\n netif_receive_skb_list_internal+0xa51/0xe30 net/core/dev.c:5905\n gro_normal_list include/net/gro.h:515 [inline]\n napi_complete_done+0x2b5/0x870 net/core/dev.c:6256\n napi_complete include/linux/netdevice.h:567 [inline]\n tun_get_user+0x2ea0/0x4890 drivers/net/tun.c:1982\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2057\n do_iter_readv_writev+0x600/0x880\n vfs_writev+0x376/0xba0 fs/read_write.c:1050\n do_writev+0x1b6/0x360 fs/read_write.c:1096\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56372",
"url": "https://www.suse.com/security/cve/CVE-2024-56372"
},
{
"category": "external",
"summary": "SUSE Bug 1235753 for CVE-2024-56372",
"url": "https://bugzilla.suse.com/1235753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56372"
},
{
"cve": "CVE-2024-56531",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56531"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: caiaq: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThis patch also splits the code to the disconnect and the free phases;\nthe former is called immediately at the USB disconnect callback while\nthe latter is called from the card destructor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56531",
"url": "https://www.suse.com/security/cve/CVE-2024-56531"
},
{
"category": "external",
"summary": "SUSE Bug 1235057 for CVE-2024-56531",
"url": "https://bugzilla.suse.com/1235057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56531"
},
{
"cve": "CVE-2024-56532",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56532"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: us122l: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.\n\nThe loop of us122l-\u003emmap_count check is dropped as well. The check is\nuseless for the asynchronous operation with *_when_closed().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56532",
"url": "https://www.suse.com/security/cve/CVE-2024-56532"
},
{
"category": "external",
"summary": "SUSE Bug 1235059 for CVE-2024-56532",
"url": "https://bugzilla.suse.com/1235059"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56532"
},
{
"cve": "CVE-2024-56533",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56533"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usx2y: Use snd_card_free_when_closed() at disconnection\n\nThe USB disconnect callback is supposed to be short and not too-long\nwaiting. OTOH, the current code uses snd_card_free() at\ndisconnection, but this waits for the close of all used fds, hence it\ncan take long. It eventually blocks the upper layer USB ioctls, which\nmay trigger a soft lockup.\n\nAn easy workaround is to replace snd_card_free() with\nsnd_card_free_when_closed(). This variant returns immediately while\nthe release of resources is done asynchronously by the card device\nrelease at the last close.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56533",
"url": "https://www.suse.com/security/cve/CVE-2024-56533"
},
{
"category": "external",
"summary": "SUSE Bug 1235053 for CVE-2024-56533",
"url": "https://bugzilla.suse.com/1235053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56533"
},
{
"cve": "CVE-2024-56536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56536"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cw1200: Fix potential NULL dereference\n\nA recent refactoring was identified by static analysis to\ncause a potential NULL dereference, fix this!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56536",
"url": "https://www.suse.com/security/cve/CVE-2024-56536"
},
{
"category": "external",
"summary": "SUSE Bug 1234911 for CVE-2024-56536",
"url": "https://bugzilla.suse.com/1234911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56536"
},
{
"cve": "CVE-2024-56538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: zynqmp_kms: Unplug DRM device before removal\n\nPrevent userspace accesses to the DRM device from causing\nuse-after-frees by unplugging the device before we remove it. This\ncauses any further userspace accesses to result in an error without\nfurther calls into this driver\u0027s internals.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56538",
"url": "https://www.suse.com/security/cve/CVE-2024-56538"
},
{
"category": "external",
"summary": "SUSE Bug 1235051 for CVE-2024-56538",
"url": "https://bugzilla.suse.com/1235051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56538"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: Skip Rx TID cleanup for self peer\n\nDuring peer create, dp setup for the peer is done where Rx TID is\nupdated for all the TIDs. Peer object for self peer will not go through\ndp setup.\n\nWhen core halts, dp cleanup is done for all the peers. While cleanup,\nrx_tid::ab is accessed which causes below stack trace for self peer.\n\nWARNING: CPU: 6 PID: 12297 at drivers/net/wireless/ath/ath12k/dp_rx.c:851\nCall Trace:\n__warn+0x7b/0x1a0\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nreport_bug+0x10b/0x200\nhandle_bug+0x3f/0x70\nexc_invalid_op+0x13/0x60\nasm_exc_invalid_op+0x16/0x20\nath12k_dp_rx_frags_cleanup+0xd2/0xe0 [ath12k]\nath12k_dp_rx_frags_cleanup+0xca/0xe0 [ath12k]\nath12k_dp_rx_peer_tid_cleanup+0x39/0xa0 [ath12k]\nath12k_mac_peer_cleanup_all+0x61/0x100 [ath12k]\nath12k_core_halt+0x3b/0x100 [ath12k]\nath12k_core_reset+0x494/0x4c0 [ath12k]\n\nsta object in peer will be updated when remote peer is created. Hence\nuse peer::sta to detect the self peer and skip the cleanup.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.1.0.c5-00481-QCAHMTSWPL_V1.0_V2.0_SILICONZ-3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56543",
"url": "https://www.suse.com/security/cve/CVE-2024-56543"
},
{
"category": "external",
"summary": "SUSE Bug 1235065 for CVE-2024-56543",
"url": "https://bugzilla.suse.com/1235065"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56543"
},
{
"cve": "CVE-2024-56546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56546"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()\n\nIf we fail to allocate memory for cb_data by kmalloc, the memory\nallocation for eve_data is never freed, add the missing kfree()\nin the error handling path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56546",
"url": "https://www.suse.com/security/cve/CVE-2024-56546"
},
{
"category": "external",
"summary": "SUSE Bug 1235070 for CVE-2024-56546",
"url": "https://bugzilla.suse.com/1235070"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56546"
},
{
"cve": "CVE-2024-56548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: don\u0027t query the device logical block size multiple times\n\nDevices block sizes may change. One of these cases is a loop device by\nusing ioctl LOOP_SET_BLOCK_SIZE.\n\nWhile this may cause other issues like IO being rejected, in the case of\nhfsplus, it will allocate a block by using that size and potentially write\nout-of-bounds when hfsplus_read_wrapper calls hfsplus_submit_bio and the\nlatter function reads a different io_size.\n\nUsing a new min_io_size initally set to sb_min_blocksize works for the\npurposes of the original fix, since it will be set to the max between\nHFSPLUS_SECTOR_SIZE and the first seen logical block size. We still use the\nmax between HFSPLUS_SECTOR_SIZE and min_io_size in case the latter is not\ninitialized.\n\nTested by mounting an hfsplus filesystem with loop block sizes 512, 1024\nand 4096.\n\nThe produced KASAN report before the fix looks like this:\n\n[ 419.944641] ==================================================================\n[ 419.945655] BUG: KASAN: slab-use-after-free in hfsplus_read_wrapper+0x659/0xa0a\n[ 419.946703] Read of size 2 at addr ffff88800721fc00 by task repro/10678\n[ 419.947612]\n[ 419.947846] CPU: 0 UID: 0 PID: 10678 Comm: repro Not tainted 6.12.0-rc5-00008-gdf56e0f2f3ca #84\n[ 419.949007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 419.950035] Call Trace:\n[ 419.950384] \u003cTASK\u003e\n[ 419.950676] dump_stack_lvl+0x57/0x78\n[ 419.951212] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.951830] print_report+0x14c/0x49e\n[ 419.952361] ? __virt_addr_valid+0x267/0x278\n[ 419.952979] ? kmem_cache_debug_flags+0xc/0x1d\n[ 419.953561] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.954231] kasan_report+0x89/0xb0\n[ 419.954748] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955367] hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955948] ? __pfx_hfsplus_read_wrapper+0x10/0x10\n[ 419.956618] ? do_raw_spin_unlock+0x59/0x1a9\n[ 419.957214] ? _raw_spin_unlock+0x1a/0x2e\n[ 419.957772] hfsplus_fill_super+0x348/0x1590\n[ 419.958355] ? hlock_class+0x4c/0x109\n[ 419.958867] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.959499] ? __pfx_string+0x10/0x10\n[ 419.960006] ? lock_acquire+0x3e2/0x454\n[ 419.960532] ? bdev_name.constprop.0+0xce/0x243\n[ 419.961129] ? __pfx_bdev_name.constprop.0+0x10/0x10\n[ 419.961799] ? pointer+0x3f0/0x62f\n[ 419.962277] ? __pfx_pointer+0x10/0x10\n[ 419.962761] ? vsnprintf+0x6c4/0xfba\n[ 419.963178] ? __pfx_vsnprintf+0x10/0x10\n[ 419.963621] ? setup_bdev_super+0x376/0x3b3\n[ 419.964029] ? snprintf+0x9d/0xd2\n[ 419.964344] ? __pfx_snprintf+0x10/0x10\n[ 419.964675] ? lock_acquired+0x45c/0x5e9\n[ 419.965016] ? set_blocksize+0x139/0x1c1\n[ 419.965381] ? sb_set_blocksize+0x6d/0xae\n[ 419.965742] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.966179] mount_bdev+0x12f/0x1bf\n[ 419.966512] ? __pfx_mount_bdev+0x10/0x10\n[ 419.966886] ? vfs_parse_fs_string+0xce/0x111\n[ 419.967293] ? __pfx_vfs_parse_fs_string+0x10/0x10\n[ 419.967702] ? __pfx_hfsplus_mount+0x10/0x10\n[ 419.968073] legacy_get_tree+0x104/0x178\n[ 419.968414] vfs_get_tree+0x86/0x296\n[ 419.968751] path_mount+0xba3/0xd0b\n[ 419.969157] ? __pfx_path_mount+0x10/0x10\n[ 419.969594] ? kmem_cache_free+0x1e2/0x260\n[ 419.970311] do_mount+0x99/0xe0\n[ 419.970630] ? __pfx_do_mount+0x10/0x10\n[ 419.971008] __do_sys_mount+0x199/0x1c9\n[ 419.971397] do_syscall_64+0xd0/0x135\n[ 419.971761] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 419.972233] RIP: 0033:0x7c3cb812972e\n[ 419.972564] Code: 48 8b 0d f5 46 0d 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 a5 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d c2 46 0d 00 f7 d8 64 89 01 48\n[ 419.974371] RSP: 002b:00007ffe30632548 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5\n[ 419.975048] RAX: ffffffffffffffda RBX: 00007ffe306328d8 RCX: 00007c3cb812972e\n[ 419.975701] RDX: 0000000020000000 RSI: 0000000020000c80 RDI:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56548",
"url": "https://www.suse.com/security/cve/CVE-2024-56548"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235073 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "external",
"summary": "SUSE Bug 1235074 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56548"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix usage slab after free\n\n[ +0.000021] BUG: KASAN: slab-use-after-free in drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000027] Read of size 8 at addr ffff8881b8605f88 by task amd_pci_unplug/2147\n\n[ +0.000023] CPU: 6 PID: 2147 Comm: amd_pci_unplug Not tainted 6.10.0+ #1\n[ +0.000016] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[ +0.000016] Call Trace:\n[ +0.000008] \u003cTASK\u003e\n[ +0.000009] dump_stack_lvl+0x76/0xa0\n[ +0.000017] print_report+0xce/0x5f0\n[ +0.000017] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] ? srso_return_thunk+0x5/0x5f\n[ +0.000015] ? kasan_complete_mode_report_info+0x72/0x200\n[ +0.000016] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000019] kasan_report+0xbe/0x110\n[ +0.000015] ? drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000023] __asan_report_load8_noabort+0x14/0x30\n[ +0.000014] drm_sched_entity_flush+0x6cb/0x7a0 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000016] ? __pfx_drm_sched_entity_flush+0x10/0x10 [gpu_sched]\n[ +0.000020] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? enable_work+0x124/0x220\n[ +0.000015] ? __pfx_enable_work+0x10/0x10\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? free_large_kmalloc+0x85/0xf0\n[ +0.000016] drm_sched_entity_destroy+0x18/0x30 [gpu_sched]\n[ +0.000020] amdgpu_vce_sw_fini+0x55/0x170 [amdgpu]\n[ +0.000735] ? __kasan_check_read+0x11/0x20\n[ +0.000016] vce_v4_0_sw_fini+0x80/0x110 [amdgpu]\n[ +0.000726] amdgpu_device_fini_sw+0x331/0xfc0 [amdgpu]\n[ +0.000679] ? mutex_unlock+0x80/0xe0\n[ +0.000017] ? __pfx_amdgpu_device_fini_sw+0x10/0x10 [amdgpu]\n[ +0.000662] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? __kasan_check_write+0x14/0x30\n[ +0.000013] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? mutex_unlock+0x80/0xe0\n[ +0.000016] amdgpu_driver_release_kms+0x16/0x80 [amdgpu]\n[ +0.000663] drm_minor_release+0xc9/0x140 [drm]\n[ +0.000081] drm_release+0x1fd/0x390 [drm]\n[ +0.000082] __fput+0x36c/0xad0\n[ +0.000018] __fput_sync+0x3c/0x50\n[ +0.000014] __x64_sys_close+0x7d/0xe0\n[ +0.000014] x64_sys_call+0x1bc6/0x2680\n[ +0.000014] do_syscall_64+0x70/0x130\n[ +0.000014] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit_to_user_mode+0x60/0x190\n[ +0.000015] ? srso_return_thunk+0x5/0x5f\n[ +0.000014] ? irqentry_exit+0x43/0x50\n[ +0.000012] ? srso_return_thunk+0x5/0x5f\n[ +0.000013] ? exc_page_fault+0x7c/0x110\n[ +0.000015] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ +0.000014] RIP: 0033:0x7ffff7b14f67\n[ +0.000013] Code: ff e8 0d 16 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 03 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 41 c3 48 83 ec 18 89 7c 24 0c e8 73 ba f7 ff\n[ +0.000026] RSP: 002b:00007fffffffe378 EFLAGS: 00000246 ORIG_RAX: 0000000000000003\n[ +0.000019] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffff7b14f67\n[ +0.000014] RDX: 0000000000000000 RSI: 00007ffff7f6f47a RDI: 0000000000000003\n[ +0.000014] RBP: 00007fffffffe3a0 R08: 0000555555569890 R09: 0000000000000000\n[ +0.000014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffffe5c8\n[ +0.000013] R13: 00005555555552a9 R14: 0000555555557d48 R15: 00007ffff7ffd040\n[ +0.000020] \u003c/TASK\u003e\n\n[ +0.000016] Allocated by task 383 on cpu 7 at 26.880319s:\n[ +0.000014] kasan_save_stack+0x28/0x60\n[ +0.000008] kasan_save_track+0x18/0x70\n[ +0.000007] kasan_save_alloc_info+0x38/0x60\n[ +0.000007] __kasan_kmalloc+0xc1/0xd0\n[ +0.000007] kmalloc_trace_noprof+0x180/0x380\n[ +0.000007] drm_sched_init+0x411/0xec0 [gpu_sched]\n[ +0.000012] amdgpu_device_init+0x695f/0xa610 [amdgpu]\n[ +0.000658] amdgpu_driver_load_kms+0x1a/0x120 [amdgpu]\n[ +0.000662] amdgpu_pci_p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56551",
"url": "https://www.suse.com/security/cve/CVE-2024-56551"
},
{
"category": "external",
"summary": "SUSE Bug 1235075 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235075"
},
{
"category": "external",
"summary": "SUSE Bug 1235102 for CVE-2024-56551",
"url": "https://bugzilla.suse.com/1235102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56551"
},
{
"cve": "CVE-2024-56557",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56557"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer\n\nThe AD7923 was updated to support devices with 8 channels, but the size\nof tx_buf and ring_xfer was not increased accordingly, leading to a\npotential buffer overflow in ad7923_update_scan_mode().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56557",
"url": "https://www.suse.com/security/cve/CVE-2024-56557"
},
{
"category": "external",
"summary": "SUSE Bug 1235122 for CVE-2024-56557",
"url": "https://bugzilla.suse.com/1235122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56557"
},
{
"cve": "CVE-2024-56558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56558"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: make sure exp active before svc_export_show\n\nThe function `e_show` was called with protection from RCU. This only\nensures that `exp` will not be freed. Therefore, the reference count for\n`exp` can drop to zero, which will trigger a refcount use-after-free\nwarning when `exp_get` is called. To resolve this issue, use\n`cache_get_rcu` to ensure that `exp` remains active.\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 3 PID: 819 at lib/refcount.c:25\nrefcount_warn_saturate+0xb1/0x120\nCPU: 3 UID: 0 PID: 819 Comm: cat Not tainted 6.12.0-rc3+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:refcount_warn_saturate+0xb1/0x120\n...\nCall Trace:\n \u003cTASK\u003e\n e_show+0x20b/0x230 [nfsd]\n seq_read_iter+0x589/0x770\n seq_read+0x1e5/0x270\n vfs_read+0x125/0x530\n ksys_read+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56558",
"url": "https://www.suse.com/security/cve/CVE-2024-56558"
},
{
"category": "external",
"summary": "SUSE Bug 1235100 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1235100"
},
{
"category": "external",
"summary": "SUSE Bug 1243648 for CVE-2024-56558",
"url": "https://bugzilla.suse.com/1243648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56558"
},
{
"cve": "CVE-2024-56562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56562"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()\n\nif (dev-\u003eboardinfo \u0026\u0026 dev-\u003eboardinfo-\u003einit_dyn_addr)\n ^^^ here check \"init_dyn_addr\"\n\ti3c_bus_set_addr_slot_status(\u0026master-\u003ebus, dev-\u003einfo.dyn_addr, ...)\n\t\t\t\t\t\t ^^^^\n\t\t\t\t\t\t\tfree \"dyn_addr\"\nFix copy/paste error \"dyn_addr\" by replacing it with \"init_dyn_addr\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56562",
"url": "https://www.suse.com/security/cve/CVE-2024-56562"
},
{
"category": "external",
"summary": "SUSE Bug 1234930 for CVE-2024-56562",
"url": "https://bugzilla.suse.com/1234930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56562"
},
{
"cve": "CVE-2024-56566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: Avoid list corruption when removing a slab from the full list\n\nBoot with slub_debug=UFPZ.\n\nIf allocated object failed in alloc_consistency_checks, all objects of\nthe slab will be marked as used, and then the slab will be removed from\nthe partial list.\n\nWhen an object belonging to the slab got freed later, the remove_full()\nfunction is called. Because the slab is neither on the partial list nor\non the full list, it eventually lead to a list corruption (actually a\nlist poison being detected).\n\nSo we need to mark and isolate the slab page with metadata corruption,\ndo not put it back in circulation.\n\nBecause the debug caches avoid all the fastpaths, reusing the frozen bit\nto mark slab page with metadata corruption seems to be fine.\n\n[ 4277.385669] list_del corruption, ffffea00044b3e50-\u003enext is LIST_POISON1 (dead000000000100)\n[ 4277.387023] ------------[ cut here ]------------\n[ 4277.387880] kernel BUG at lib/list_debug.c:56!\n[ 4277.388680] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 4277.389562] CPU: 5 PID: 90 Comm: kworker/5:1 Kdump: loaded Tainted: G OE 6.6.1-1 #1\n[ 4277.392113] Workqueue: xfs-inodegc/vda1 xfs_inodegc_worker [xfs]\n[ 4277.393551] RIP: 0010:__list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.394518] Code: 48 91 82 e8 37 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 28 49 91 82 e8 26 f9 9a ff 0f 0b 48 89 fe 48 c7 c7 58 49 91\n[ 4277.397292] RSP: 0018:ffffc90000333b38 EFLAGS: 00010082\n[ 4277.398202] RAX: 000000000000004e RBX: ffffea00044b3e50 RCX: 0000000000000000\n[ 4277.399340] RDX: 0000000000000002 RSI: ffffffff828f8715 RDI: 00000000ffffffff\n[ 4277.400545] RBP: ffffea00044b3e40 R08: 0000000000000000 R09: ffffc900003339f0\n[ 4277.401710] R10: 0000000000000003 R11: ffffffff82d44088 R12: ffff888112cf9910\n[ 4277.402887] R13: 0000000000000001 R14: 0000000000000001 R15: ffff8881000424c0\n[ 4277.404049] FS: 0000000000000000(0000) GS:ffff88842fd40000(0000) knlGS:0000000000000000\n[ 4277.405357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4277.406389] CR2: 00007f2ad0b24000 CR3: 0000000102a3a006 CR4: 00000000007706e0\n[ 4277.407589] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4277.408780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4277.410000] PKRU: 55555554\n[ 4277.410645] Call Trace:\n[ 4277.411234] \u003cTASK\u003e\n[ 4277.411777] ? die+0x32/0x80\n[ 4277.412439] ? do_trap+0xd6/0x100\n[ 4277.413150] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.414158] ? do_error_trap+0x6a/0x90\n[ 4277.414948] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.415915] ? exc_invalid_op+0x4c/0x60\n[ 4277.416710] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.417675] ? asm_exc_invalid_op+0x16/0x20\n[ 4277.418482] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.419466] ? __list_del_entry_valid_or_report+0x7b/0xc0\n[ 4277.420410] free_to_partial_list+0x515/0x5e0\n[ 4277.421242] ? xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.422298] xfs_iext_remove+0x41a/0xa10 [xfs]\n[ 4277.423316] ? xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.424383] xfs_bmap_del_extent_delay+0x4fe/0x7d0 [xfs]\n[ 4277.425490] __xfs_bunmapi+0x50d/0x840 [xfs]\n[ 4277.426445] xfs_itruncate_extents_flags+0x13a/0x490 [xfs]\n[ 4277.427553] xfs_inactive_truncate+0xa3/0x120 [xfs]\n[ 4277.428567] xfs_inactive+0x22d/0x290 [xfs]\n[ 4277.429500] xfs_inodegc_worker+0xb4/0x1a0 [xfs]\n[ 4277.430479] process_one_work+0x171/0x340\n[ 4277.431227] worker_thread+0x277/0x390\n[ 4277.431962] ? __pfx_worker_thread+0x10/0x10\n[ 4277.432752] kthread+0xf0/0x120\n[ 4277.433382] ? __pfx_kthread+0x10/0x10\n[ 4277.434134] ret_from_fork+0x2d/0x50\n[ 4277.434837] ? __pfx_kthread+0x10/0x10\n[ 4277.435566] ret_from_fork_asm+0x1b/0x30\n[ 4277.436280] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56566",
"url": "https://www.suse.com/security/cve/CVE-2024-56566"
},
{
"category": "external",
"summary": "SUSE Bug 1235033 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235033"
},
{
"category": "external",
"summary": "SUSE Bug 1235034 for CVE-2024-56566",
"url": "https://bugzilla.suse.com/1235034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56566"
},
{
"cve": "CVE-2024-56567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nad7780: fix division by zero in ad7780_write_raw()\n\nIn the ad7780_write_raw() , val2 can be zero, which might lead to a\ndivision by zero error in DIV_ROUND_CLOSEST(). The ad7780_write_raw()\nis based on iio_info\u0027s write_raw. While val is explicitly declared that\ncan be zero (in read mode), val2 is not specified to be non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56567",
"url": "https://www.suse.com/security/cve/CVE-2024-56567"
},
{
"category": "external",
"summary": "SUSE Bug 1234916 for CVE-2024-56567",
"url": "https://bugzilla.suse.com/1234916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56567"
},
{
"cve": "CVE-2024-56568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56568"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/arm-smmu: Defer probe of clients after smmu device bound\n\nNull pointer dereference occurs due to a race between smmu\ndriver probe and client driver probe, when of_dma_configure()\nfor client is called after the iommu_device_register() for smmu driver\nprobe has executed but before the driver_bound() for smmu driver\nhas been called.\n\nFollowing is how the race occurs:\n\nT1:Smmu device probe\t\tT2: Client device probe\n\nreally_probe()\narm_smmu_device_probe()\niommu_device_register()\n\t\t\t\t\treally_probe()\n\t\t\t\t\tplatform_dma_configure()\n\t\t\t\t\tof_dma_configure()\n\t\t\t\t\tof_dma_configure_id()\n\t\t\t\t\tof_iommu_configure()\n\t\t\t\t\tiommu_probe_device()\n\t\t\t\t\tiommu_init_device()\n\t\t\t\t\tarm_smmu_probe_device()\n\t\t\t\t\tarm_smmu_get_by_fwnode()\n\t\t\t\t\t\tdriver_find_device_by_fwnode()\n\t\t\t\t\t\tdriver_find_device()\n\t\t\t\t\t\tnext_device()\n\t\t\t\t\t\tklist_next()\n\t\t\t\t\t\t /* null ptr\n\t\t\t\t\t\t assigned to smmu */\n\t\t\t\t\t/* null ptr dereference\n\t\t\t\t\t while smmu-\u003estreamid_mask */\ndriver_bound()\n\tklist_add_tail()\n\nWhen this null smmu pointer is dereferenced later in\narm_smmu_probe_device, the device crashes.\n\nFix this by deferring the probe of the client device\nuntil the smmu device has bound to the arm smmu driver.\n\n[will: Add comment]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56568",
"url": "https://www.suse.com/security/cve/CVE-2024-56568"
},
{
"category": "external",
"summary": "SUSE Bug 1235032 for CVE-2024-56568",
"url": "https://bugzilla.suse.com/1235032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56568"
},
{
"cve": "CVE-2024-56569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix regression with module command in stack_trace_filter\n\nWhen executing the following command:\n\n # echo \"write*:mod:ext3\" \u003e /sys/kernel/tracing/stack_trace_filter\n\nThe current mod command causes a null pointer dereference. While commit\n0f17976568b3f (\"ftrace: Fix regression with module command in stack_trace_filter\")\nhas addressed part of the issue, it left a corner case unhandled, which still\nresults in a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56569",
"url": "https://www.suse.com/security/cve/CVE-2024-56569"
},
{
"category": "external",
"summary": "SUSE Bug 1235031 for CVE-2024-56569",
"url": "https://bugzilla.suse.com/1235031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56569"
},
{
"cve": "CVE-2024-56570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Filter invalid inodes with missing lookup function\n\nAdd a check to the ovl_dentry_weird() function to prevent the\nprocessing of directory inodes that lack the lookup function.\nThis is important because such inodes can cause errors in overlayfs\nwhen passed to the lowerstack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56570",
"url": "https://www.suse.com/security/cve/CVE-2024-56570"
},
{
"category": "external",
"summary": "SUSE Bug 1235035 for CVE-2024-56570",
"url": "https://bugzilla.suse.com/1235035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56570"
},
{
"cve": "CVE-2024-56571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56571"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56571",
"url": "https://www.suse.com/security/cve/CVE-2024-56571"
},
{
"category": "external",
"summary": "SUSE Bug 1235037 for CVE-2024-56571",
"url": "https://bugzilla.suse.com/1235037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56571"
},
{
"cve": "CVE-2024-56572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56572"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal()\n\nThe buffer in the loop should be released under the exception path,\notherwise there may be a memory leak here.\n\nTo mitigate this, free the buffer when allegro_alloc_buffer fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56572",
"url": "https://www.suse.com/security/cve/CVE-2024-56572"
},
{
"category": "external",
"summary": "SUSE Bug 1235043 for CVE-2024-56572",
"url": "https://bugzilla.suse.com/1235043"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56572"
},
{
"cve": "CVE-2024-56573",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56573"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi/libstub: Free correct pointer on failure\n\ncmdline_ptr is an out parameter, which is not allocated by the function\nitself, and likely points into the caller\u0027s stack.\n\ncmdline refers to the pool allocation that should be freed when cleaning\nup after a failure, so pass this instead to free_pool().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56573",
"url": "https://www.suse.com/security/cve/CVE-2024-56573"
},
{
"category": "external",
"summary": "SUSE Bug 1235042 for CVE-2024-56573",
"url": "https://bugzilla.suse.com/1235042"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56573"
},
{
"cve": "CVE-2024-56574",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56574"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: ts2020: fix null-ptr-deref in ts2020_probe()\n\nKASAN reported a null-ptr-deref issue when executing the following\ncommand:\n\n # echo ts2020 0x20 \u003e /sys/bus/i2c/devices/i2c-0/new_device\n KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\n CPU: 53 UID: 0 PID: 970 Comm: systemd-udevd Not tainted 6.12.0-rc2+ #24\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)\n RIP: 0010:ts2020_probe+0xad/0xe10 [ts2020]\n RSP: 0018:ffffc9000abbf598 EFLAGS: 00010202\n RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffffc0714809\n RDX: 0000000000000002 RSI: ffff88811550be00 RDI: 0000000000000010\n RBP: ffff888109868800 R08: 0000000000000001 R09: fffff52001577eb6\n R10: 0000000000000000 R11: ffffc9000abbff50 R12: ffffffffc0714790\n R13: 1ffff92001577eb8 R14: ffffffffc07190d0 R15: 0000000000000001\n FS: 00007f95f13b98c0(0000) GS:ffff888149280000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000555d2634b000 CR3: 0000000152236000 CR4: 00000000000006f0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ts2020_probe+0xad/0xe10 [ts2020]\n i2c_device_probe+0x421/0xb40\n really_probe+0x266/0x850\n ...\n\nThe cause of the problem is that when using sysfs to dynamically register\nan i2c device, there is no platform data, but the probe process of ts2020\nneeds to use platform data, resulting in a null pointer being accessed.\n\nSolve this problem by adding checks to platform data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56574",
"url": "https://www.suse.com/security/cve/CVE-2024-56574"
},
{
"category": "external",
"summary": "SUSE Bug 1235040 for CVE-2024-56574",
"url": "https://bugzilla.suse.com/1235040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56574"
},
{
"cve": "CVE-2024-56575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56575"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Ensure power suppliers be suspended before detach them\n\nThe power suppliers are always requested to suspend asynchronously,\ndev_pm_domain_detach() requires the caller to ensure proper\nsynchronization of this function with power management callbacks.\notherwise the detach may led to kernel panic, like below:\n\n[ 1457.107934] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000040\n[ 1457.116777] Mem abort info:\n[ 1457.119589] ESR = 0x0000000096000004\n[ 1457.123358] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 1457.128692] SET = 0, FnV = 0\n[ 1457.131764] EA = 0, S1PTW = 0\n[ 1457.134920] FSC = 0x04: level 0 translation fault\n[ 1457.139812] Data abort info:\n[ 1457.142707] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 1457.148196] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 1457.153256] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 1457.158563] user pgtable: 4k pages, 48-bit VAs, pgdp=00000001138b6000\n[ 1457.165000] [0000000000000040] pgd=0000000000000000, p4d=0000000000000000\n[ 1457.171792] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 1457.178045] Modules linked in: v4l2_jpeg wave6_vpu_ctrl(-) [last unloaded: mxc_jpeg_encdec]\n[ 1457.186383] CPU: 0 PID: 51938 Comm: kworker/0:3 Not tainted 6.6.36-gd23d64eea511 #66\n[ 1457.194112] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 1457.199236] Workqueue: pm pm_runtime_work\n[ 1457.203247] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1457.210188] pc : genpd_runtime_suspend+0x20/0x290\n[ 1457.214886] lr : __rpm_callback+0x48/0x1d8\n[ 1457.218968] sp : ffff80008250bc50\n[ 1457.222270] x29: ffff80008250bc50 x28: 0000000000000000 x27: 0000000000000000\n[ 1457.229394] x26: 0000000000000000 x25: 0000000000000008 x24: 00000000000f4240\n[ 1457.236518] x23: 0000000000000000 x22: ffff00008590f0e4 x21: 0000000000000008\n[ 1457.243642] x20: ffff80008099c434 x19: ffff00008590f000 x18: ffffffffffffffff\n[ 1457.250766] x17: 5300326563697665 x16: 645f676e696c6f6f x15: 63343a6d726f6674\n[ 1457.257890] x14: 0000000000000004 x13: 00000000000003a4 x12: 0000000000000002\n[ 1457.265014] x11: 0000000000000000 x10: 0000000000000a60 x9 : ffff80008250bbb0\n[ 1457.272138] x8 : ffff000092937200 x7 : ffff0003fdf6af80 x6 : 0000000000000000\n[ 1457.279262] x5 : 00000000410fd050 x4 : 0000000000200000 x3 : 0000000000000000\n[ 1457.286386] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff00008590f000\n[ 1457.293510] Call trace:\n[ 1457.295946] genpd_runtime_suspend+0x20/0x290\n[ 1457.300296] __rpm_callback+0x48/0x1d8\n[ 1457.304038] rpm_callback+0x6c/0x78\n[ 1457.307515] rpm_suspend+0x10c/0x570\n[ 1457.311077] pm_runtime_work+0xc4/0xc8\n[ 1457.314813] process_one_work+0x138/0x248\n[ 1457.318816] worker_thread+0x320/0x438\n[ 1457.322552] kthread+0x110/0x114\n[ 1457.325767] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56575",
"url": "https://www.suse.com/security/cve/CVE-2024-56575"
},
{
"category": "external",
"summary": "SUSE Bug 1235039 for CVE-2024-56575",
"url": "https://bugzilla.suse.com/1235039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56575"
},
{
"cve": "CVE-2024-56576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56576"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: tc358743: Fix crash in the probe error path when using polling\n\nIf an error occurs in the probe() function, we should remove the polling\ntimer that was alarmed earlier, otherwise the timer is called with\narguments that are already freed, which results in a crash.\n\n------------[ cut here ]------------\nWARNING: CPU: 3 PID: 0 at kernel/time/timer.c:1830 __run_timers+0x244/0x268\nModules linked in:\nCPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted 6.11.0 #226\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\npstate: 804000c9 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : __run_timers+0x244/0x268\nlr : __run_timers+0x1d4/0x268\nsp : ffffff80eff2baf0\nx29: ffffff80eff2bb50 x28: 7fffffffffffffff x27: ffffff80eff2bb00\nx26: ffffffc080f669c0 x25: ffffff80efef6bf0 x24: ffffff80eff2bb00\nx23: 0000000000000000 x22: dead000000000122 x21: 0000000000000000\nx20: ffffff80efef6b80 x19: ffffff80041c8bf8 x18: ffffffffffffffff\nx17: ffffffc06f146000 x16: ffffff80eff27dc0 x15: 000000000000003e\nx14: 0000000000000000 x13: 00000000000054da x12: 0000000000000000\nx11: 00000000000639c0 x10: 000000000000000c x9 : 0000000000000009\nx8 : ffffff80eff2cb40 x7 : ffffff80eff2cb40 x6 : ffffff8002bee480\nx5 : ffffffc080cb2220 x4 : ffffffc080cb2150 x3 : 00000000000f4240\nx2 : 0000000000000102 x1 : ffffff80eff2bb00 x0 : ffffff80041c8bf0\nCall trace:\n __run_timers+0x244/0x268\n timer_expire_remote+0x50/0x68\n tmigr_handle_remote+0x388/0x39c\n run_timer_softirq+0x38/0x44\n handle_softirqs+0x138/0x298\n __do_softirq+0x14/0x20\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0x9c/0xcc\n el1_interrupt+0x48/0xc0\n el1h_64_irq_handler+0x18/0x24\n el1h_64_irq+0x7c/0x80\n default_idle_call+0x34/0x68\n do_idle+0x23c/0x294\n cpu_startup_entry+0x38/0x3c\n secondary_start_kernel+0x128/0x160\n __secondary_switched+0xb8/0xbc\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56576",
"url": "https://www.suse.com/security/cve/CVE-2024-56576"
},
{
"category": "external",
"summary": "SUSE Bug 1235019 for CVE-2024-56576",
"url": "https://bugzilla.suse.com/1235019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56576"
},
{
"cve": "CVE-2024-56577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56577"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-jpeg: Fix null-ptr-deref during unload module\n\nThe workqueue should be destroyed in mtk_jpeg_core.c since commit\n09aea13ecf6f (\"media: mtk-jpeg: refactor some variables\"), otherwise\nthe below calltrace can be easily triggered.\n\n[ 677.862514] Unable to handle kernel paging request at virtual address dfff800000000023\n[ 677.863633] KASAN: null-ptr-deref in range [0x0000000000000118-0x000000000000011f]\n...\n[ 677.879654] CPU: 6 PID: 1071 Comm: modprobe Tainted: G O 6.8.12-mtk+gfa1a78e5d24b+ #17\n...\n[ 677.882838] pc : destroy_workqueue+0x3c/0x770\n[ 677.883413] lr : mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.884314] sp : ffff80008ad974f0\n[ 677.884744] x29: ffff80008ad974f0 x28: ffff0000d7115580 x27: ffff0000dd691070\n[ 677.885669] x26: ffff0000dd691408 x25: ffff8000844af3e0 x24: ffff80008ad97690\n[ 677.886592] x23: ffff0000e051d400 x22: ffff0000dd691010 x21: dfff800000000000\n[ 677.887515] x20: 0000000000000000 x19: 0000000000000000 x18: ffff800085397ac0\n[ 677.888438] x17: 0000000000000000 x16: ffff8000801b87c8 x15: 1ffff000115b2e10\n[ 677.889361] x14: 00000000f1f1f1f1 x13: 0000000000000000 x12: ffff7000115b2e4d\n[ 677.890285] x11: 1ffff000115b2e4c x10: ffff7000115b2e4c x9 : ffff80000aa43e90\n[ 677.891208] x8 : 00008fffeea4d1b4 x7 : ffff80008ad97267 x6 : 0000000000000001\n[ 677.892131] x5 : ffff80008ad97260 x4 : ffff7000115b2e4d x3 : 0000000000000000\n[ 677.893054] x2 : 0000000000000023 x1 : dfff800000000000 x0 : 0000000000000118\n[ 677.893977] Call trace:\n[ 677.894297] destroy_workqueue+0x3c/0x770\n[ 677.894826] mtk_jpegdec_destroy_workqueue+0x70/0x88 [mtk_jpeg_dec_hw]\n[ 677.895677] devm_action_release+0x50/0x90\n[ 677.896211] release_nodes+0xe8/0x170\n[ 677.896688] devres_release_all+0xf8/0x178\n[ 677.897219] device_unbind_cleanup+0x24/0x170\n[ 677.897785] device_release_driver_internal+0x35c/0x480\n[ 677.898461] device_release_driver+0x20/0x38\n...\n[ 677.912665] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56577",
"url": "https://www.suse.com/security/cve/CVE-2024-56577"
},
{
"category": "external",
"summary": "SUSE Bug 1235112 for CVE-2024-56577",
"url": "https://bugzilla.suse.com/1235112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56577"
},
{
"cve": "CVE-2024-56578",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56578"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Set video drvdata before register video device\n\nThe video drvdata should be set before the video device is registered,\notherwise video_drvdata() may return NULL in the open() file ops, and led\nto oops.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56578",
"url": "https://www.suse.com/security/cve/CVE-2024-56578"
},
{
"category": "external",
"summary": "SUSE Bug 1235115 for CVE-2024-56578",
"url": "https://bugzilla.suse.com/1235115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56578"
},
{
"cve": "CVE-2024-56582",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56582"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free in btrfs_encoded_read_endio()\n\nShinichiro reported the following use-after free that sometimes is\nhappening in our CI system when running fstests\u0027 btrfs/284 on a TCMU\nrunner device:\n\n BUG: KASAN: slab-use-after-free in lock_release+0x708/0x780\n Read of size 8 at addr ffff888106a83f18 by task kworker/u80:6/219\n\n CPU: 8 UID: 0 PID: 219 Comm: kworker/u80:6 Not tainted 6.12.0-rc6-kts+ #15\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6e/0xa0\n ? lock_release+0x708/0x780\n print_report+0x174/0x505\n ? lock_release+0x708/0x780\n ? __virt_addr_valid+0x224/0x410\n ? lock_release+0x708/0x780\n kasan_report+0xda/0x1b0\n ? lock_release+0x708/0x780\n ? __wake_up+0x44/0x60\n lock_release+0x708/0x780\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? lock_is_held_type+0x9a/0x110\n _raw_spin_unlock_irqrestore+0x1f/0x60\n __wake_up+0x44/0x60\n btrfs_encoded_read_endio+0x14b/0x190 [btrfs]\n btrfs_check_read_bio+0x8d9/0x1360 [btrfs]\n ? lock_release+0x1b0/0x780\n ? trace_lock_acquire+0x12f/0x1a0\n ? __pfx_btrfs_check_read_bio+0x10/0x10 [btrfs]\n ? process_one_work+0x7e3/0x1460\n ? lock_acquire+0x31/0xc0\n ? process_one_work+0x7e3/0x1460\n process_one_work+0x85c/0x1460\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x16c/0x240\n worker_thread+0x5e6/0xfc0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2c3/0x3a0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_encoded_read_regular_fill_pages+0x16c/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 3661:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x4f/0x70\n kfree+0x143/0x490\n btrfs_encoded_read_regular_fill_pages+0x531/0x6d0 [btrfs]\n send_extent_data+0xf0f/0x24a0 [btrfs]\n process_extent+0x48a/0x1830 [btrfs]\n changed_cb+0x178b/0x2ea0 [btrfs]\n btrfs_ioctl_send+0x3bf9/0x5c20 [btrfs]\n _btrfs_ioctl_send+0x117/0x330 [btrfs]\n btrfs_ioctl+0x184a/0x60a0 [btrfs]\n __x64_sys_ioctl+0x12e/0x1a0\n do_syscall_64+0x95/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n The buggy address belongs to the object at ffff888106a83f00\n which belongs to the cache kmalloc-rnd-07-96 of size 96\n The buggy address is located 24 bytes inside of\n freed 96-byte region [ffff888106a83f00, ffff888106a83f60)\n\n The buggy address belongs to the physical page:\n page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888106a83800 pfn:0x106a83\n flags: 0x17ffffc0000000(node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f5(slab)\n raw: 0017ffffc0000000 ffff888100053680 ffffea0004917200 0000000000000004\n raw: ffff888106a83800 0000000080200019 00000001f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888106a83e00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a83e80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n \u003effff888106a83f00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ^\n ffff888106a83f80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n ffff888106a84000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ==================================================================\n\nFurther analyzing the trace and \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56582",
"url": "https://www.suse.com/security/cve/CVE-2024-56582"
},
{
"category": "external",
"summary": "SUSE Bug 1235128 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235128"
},
{
"category": "external",
"summary": "SUSE Bug 1235129 for CVE-2024-56582",
"url": "https://bugzilla.suse.com/1235129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56582"
},
{
"cve": "CVE-2024-56584",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56584"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/tctx: work around xa_store() allocation error issue\n\nsyzbot triggered the following WARN_ON:\n\nWARNING: CPU: 0 PID: 16 at io_uring/tctx.c:51 __io_uring_free+0xfa/0x140 io_uring/tctx.c:51\n\nwhich is the\n\nWARN_ON_ONCE(!xa_empty(\u0026tctx-\u003exa));\n\nsanity check in __io_uring_free() when a io_uring_task is going through\nits final put. The syzbot test case includes injecting memory allocation\nfailures, and it very much looks like xa_store() can fail one of its\nmemory allocations and end up with -\u003ehead being non-NULL even though no\nentries exist in the xarray.\n\nUntil this issue gets sorted out, work around it by attempting to\niterate entries in our xarray, and WARN_ON_ONCE() if one is found.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56584",
"url": "https://www.suse.com/security/cve/CVE-2024-56584"
},
{
"category": "external",
"summary": "SUSE Bug 1235117 for CVE-2024-56584",
"url": "https://bugzilla.suse.com/1235117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56584"
},
{
"cve": "CVE-2024-56587",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56587"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nleds: class: Protect brightness_show() with led_cdev-\u003eled_access mutex\n\nThere is NULL pointer issue observed if from Process A where hid device\nbeing added which results in adding a led_cdev addition and later a\nanother call to access of led_cdev attribute from Process B can result\nin NULL pointer issue.\n\nUse mutex led_cdev-\u003eled_access to protect access to led-\u003ecdev and its\nattribute inside brightness_show() and max_brightness_show() and also\nupdate the comment for mutex that it should be used to protect the led\nclass device fields.\n\n\tProcess A \t\t\t\tProcess B\n\n kthread+0x114\n worker_thread+0x244\n process_scheduled_works+0x248\n uhid_device_add_worker+0x24\n hid_add_device+0x120\n device_add+0x268\n bus_probe_device+0x94\n device_initial_probe+0x14\n __device_attach+0xfc\n bus_for_each_drv+0x10c\n __device_attach_driver+0x14c\n driver_probe_device+0x3c\n __driver_probe_device+0xa0\n really_probe+0x190\n hid_device_probe+0x130\n ps_probe+0x990\n ps_led_register+0x94\n devm_led_classdev_register_ext+0x58\n led_classdev_register_ext+0x1f8\n device_create_with_groups+0x48\n device_create_groups_vargs+0xc8\n device_add+0x244\n kobject_uevent+0x14\n kobject_uevent_env[jt]+0x224\n mutex_unlock[jt]+0xc4\n __mutex_unlock_slowpath+0xd4\n wake_up_q+0x70\n try_to_wake_up[jt]+0x48c\n preempt_schedule_common+0x28\n __schedule+0x628\n __switch_to+0x174\n\t\t\t\t\t\tel0t_64_sync+0x1a8/0x1ac\n\t\t\t\t\t\tel0t_64_sync_handler+0x68/0xbc\n\t\t\t\t\t\tel0_svc+0x38/0x68\n\t\t\t\t\t\tdo_el0_svc+0x1c/0x28\n\t\t\t\t\t\tel0_svc_common+0x80/0xe0\n\t\t\t\t\t\tinvoke_syscall+0x58/0x114\n\t\t\t\t\t\t__arm64_sys_read+0x1c/0x2c\n\t\t\t\t\t\tksys_read+0x78/0xe8\n\t\t\t\t\t\tvfs_read+0x1e0/0x2c8\n\t\t\t\t\t\tkernfs_fop_read_iter+0x68/0x1b4\n\t\t\t\t\t\tseq_read_iter+0x158/0x4ec\n\t\t\t\t\t\tkernfs_seq_show+0x44/0x54\n\t\t\t\t\t\tsysfs_kf_seq_show+0xb4/0x130\n\t\t\t\t\t\tdev_attr_show+0x38/0x74\n\t\t\t\t\t\tbrightness_show+0x20/0x4c\n\t\t\t\t\t\tdualshock4_led_get_brightness+0xc/0x74\n\n[ 3313.874295][ T4013] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000060\n[ 3313.874301][ T4013] Mem abort info:\n[ 3313.874303][ T4013] ESR = 0x0000000096000006\n[ 3313.874305][ T4013] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 3313.874307][ T4013] SET = 0, FnV = 0\n[ 3313.874309][ T4013] EA = 0, S1PTW = 0\n[ 3313.874311][ T4013] FSC = 0x06: level 2 translation fault\n[ 3313.874313][ T4013] Data abort info:\n[ 3313.874314][ T4013] ISV = 0, ISS = 0x00000006, ISS2 = 0x00000000\n[ 3313.874316][ T4013] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 3313.874318][ T4013] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 3313.874320][ T4013] user pgtable: 4k pages, 39-bit VAs, pgdp=00000008f2b0a000\n..\n\n[ 3313.874332][ T4013] Dumping ftrace buffer:\n[ 3313.874334][ T4013] (ftrace buffer empty)\n..\n..\n[ dd3313.874639][ T4013] CPU: 6 PID: 4013 Comm: InputReader\n[ 3313.874648][ T4013] pc : dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874653][ T4013] lr : led_update_brightness+0x38/0x60\n[ 3313.874656][ T4013] sp : ffffffc0b910bbd0\n..\n..\n[ 3313.874685][ T4013] Call trace:\n[ 3313.874687][ T4013] dualshock4_led_get_brightness+0xc/0x74\n[ 3313.874690][ T4013] brightness_show+0x20/0x4c\n[ 3313.874692][ T4013] dev_attr_show+0x38/0x74\n[ 3313.874696][ T4013] sysfs_kf_seq_show+0xb4/0x130\n[ 3313.874700][ T4013] kernfs_seq_show+0x44/0x54\n[ 3313.874703][ T4013] seq_read_iter+0x158/0x4ec\n[ 3313.874705][ T4013] kernfs_fop_read_iter+0x68/0x1b4\n[ 3313.874708][ T4013] vfs_read+0x1e0/0x2c8\n[ 3313.874711][ T4013] ksys_read+0x78/0xe8\n[ 3313.874714][ T4013] __arm64_sys_read+0x1c/0x2c\n[ 3313.874718][ T4013] invoke_syscall+0x58/0x114\n[ 3313.874721][ T4013] el0_svc_common+0x80/0xe0\n[ 3313.874724][ T4013] do_el0_svc+0x1c/0x28\n[ 3313.874727][ T4013] el0_svc+0x38/0x68\n[ 3313.874730][ T4013] el0t_64_sync_handler+0x68/0xbc\n[ 3313.874732][ T4013] el0t_64_sync+0x1a8/0x1ac",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56587",
"url": "https://www.suse.com/security/cve/CVE-2024-56587"
},
{
"category": "external",
"summary": "SUSE Bug 1235125 for CVE-2024-56587",
"url": "https://bugzilla.suse.com/1235125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56587"
},
{
"cve": "CVE-2024-56588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56588"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Create all dump files during debugfs initialization\n\nFor the current debugfs of hisi_sas, after user triggers dump, the\ndriver allocate memory space to save the register information and create\ndebugfs files to display the saved information. In this process, the\ndebugfs files created after each dump.\n\nTherefore, when the dump is triggered while the driver is unbind, the\nfollowing hang occurs:\n\n[67840.853907] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000a0\n[67840.862947] Mem abort info:\n[67840.865855] ESR = 0x0000000096000004\n[67840.869713] EC = 0x25: DABT (current EL), IL = 32 bits\n[67840.875125] SET = 0, FnV = 0\n[67840.878291] EA = 0, S1PTW = 0\n[67840.881545] FSC = 0x04: level 0 translation fault\n[67840.886528] Data abort info:\n[67840.889524] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[67840.895117] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[67840.900284] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[67840.905709] user pgtable: 4k pages, 48-bit VAs, pgdp=0000002803a1f000\n[67840.912263] [00000000000000a0] pgd=0000000000000000, p4d=0000000000000000\n[67840.919177] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[67840.996435] pstate: 80400009 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[67841.003628] pc : down_write+0x30/0x98\n[67841.007546] lr : start_creating.part.0+0x60/0x198\n[67841.012495] sp : ffff8000b979ba20\n[67841.016046] x29: ffff8000b979ba20 x28: 0000000000000010 x27: 0000000000024b40\n[67841.023412] x26: 0000000000000012 x25: ffff20202b355ae8 x24: ffff20202b35a8c8\n[67841.030779] x23: ffffa36877928208 x22: ffffa368b4972240 x21: ffff8000b979bb18\n[67841.038147] x20: ffff00281dc1e3c0 x19: fffffffffffffffe x18: 0000000000000020\n[67841.045515] x17: 0000000000000000 x16: ffffa368b128a530 x15: ffffffffffffffff\n[67841.052888] x14: ffff8000b979bc18 x13: ffffffffffffffff x12: ffff8000b979bb18\n[67841.060263] x11: 0000000000000000 x10: 0000000000000000 x9 : ffffa368b1289b18\n[67841.067640] x8 : 0000000000000012 x7 : 0000000000000000 x6 : 00000000000003a9\n[67841.075014] x5 : 0000000000000000 x4 : ffff002818c5cb00 x3 : 0000000000000001\n[67841.082388] x2 : 0000000000000000 x1 : ffff002818c5cb00 x0 : 00000000000000a0\n[67841.089759] Call trace:\n[67841.092456] down_write+0x30/0x98\n[67841.096017] start_creating.part.0+0x60/0x198\n[67841.100613] debugfs_create_dir+0x48/0x1f8\n[67841.104950] debugfs_create_files_v3_hw+0x88/0x348 [hisi_sas_v3_hw]\n[67841.111447] debugfs_snapshot_regs_v3_hw+0x708/0x798 [hisi_sas_v3_hw]\n[67841.118111] debugfs_trigger_dump_v3_hw_write+0x9c/0x120 [hisi_sas_v3_hw]\n[67841.125115] full_proxy_write+0x68/0xc8\n[67841.129175] vfs_write+0xd8/0x3f0\n[67841.132708] ksys_write+0x70/0x108\n[67841.136317] __arm64_sys_write+0x24/0x38\n[67841.140440] invoke_syscall+0x50/0x128\n[67841.144385] el0_svc_common.constprop.0+0xc8/0xf0\n[67841.149273] do_el0_svc+0x24/0x38\n[67841.152773] el0_svc+0x38/0xd8\n[67841.156009] el0t_64_sync_handler+0xc0/0xc8\n[67841.160361] el0t_64_sync+0x1a4/0x1a8\n[67841.164189] Code: b9000882 d2800002 d2800023 f9800011 (c85ffc05)\n[67841.170443] ---[ end trace 0000000000000000 ]---\n\nTo fix this issue, create all directories and files during debugfs\ninitialization. In this way, the driver only needs to allocate memory\nspace to save information each time the user triggers dumping.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56588",
"url": "https://www.suse.com/security/cve/CVE-2024-56588"
},
{
"category": "external",
"summary": "SUSE Bug 1235123 for CVE-2024-56588",
"url": "https://bugzilla.suse.com/1235123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56588"
},
{
"cve": "CVE-2024-56589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Add cond_resched() for no forced preemption model\n\nFor no forced preemption model kernel, in the scenario where the\nexpander is connected to 12 high performance SAS SSDs, the following\ncall trace may occur:\n\n[ 214.409199][ C240] watchdog: BUG: soft lockup - CPU#240 stuck for 22s! [irq/149-hisi_sa:3211]\n[ 214.568533][ C240] pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--)\n[ 214.575224][ C240] pc : fput_many+0x8c/0xdc\n[ 214.579480][ C240] lr : fput+0x1c/0xf0\n[ 214.583302][ C240] sp : ffff80002de2b900\n[ 214.587298][ C240] x29: ffff80002de2b900 x28: ffff1082aa412000\n[ 214.593291][ C240] x27: ffff3062a0348c08 x26: ffff80003a9f6000\n[ 214.599284][ C240] x25: ffff1062bbac5c40 x24: 0000000000001000\n[ 214.605277][ C240] x23: 000000000000000a x22: 0000000000000001\n[ 214.611270][ C240] x21: 0000000000001000 x20: 0000000000000000\n[ 214.617262][ C240] x19: ffff3062a41ae580 x18: 0000000000010000\n[ 214.623255][ C240] x17: 0000000000000001 x16: ffffdb3a6efe5fc0\n[ 214.629248][ C240] x15: ffffffffffffffff x14: 0000000003ffffff\n[ 214.635241][ C240] x13: 000000000000ffff x12: 000000000000029c\n[ 214.641234][ C240] x11: 0000000000000006 x10: ffff80003a9f7fd0\n[ 214.647226][ C240] x9 : ffffdb3a6f0482fc x8 : 0000000000000001\n[ 214.653219][ C240] x7 : 0000000000000002 x6 : 0000000000000080\n[ 214.659212][ C240] x5 : ffff55480ee9b000 x4 : fffffde7f94c6554\n[ 214.665205][ C240] x3 : 0000000000000002 x2 : 0000000000000020\n[ 214.671198][ C240] x1 : 0000000000000021 x0 : ffff3062a41ae5b8\n[ 214.677191][ C240] Call trace:\n[ 214.680320][ C240] fput_many+0x8c/0xdc\n[ 214.684230][ C240] fput+0x1c/0xf0\n[ 214.687707][ C240] aio_complete_rw+0xd8/0x1fc\n[ 214.692225][ C240] blkdev_bio_end_io+0x98/0x140\n[ 214.696917][ C240] bio_endio+0x160/0x1bc\n[ 214.701001][ C240] blk_update_request+0x1c8/0x3bc\n[ 214.705867][ C240] scsi_end_request+0x3c/0x1f0\n[ 214.710471][ C240] scsi_io_completion+0x7c/0x1a0\n[ 214.715249][ C240] scsi_finish_command+0x104/0x140\n[ 214.720200][ C240] scsi_softirq_done+0x90/0x180\n[ 214.724892][ C240] blk_mq_complete_request+0x5c/0x70\n[ 214.730016][ C240] scsi_mq_done+0x48/0xac\n[ 214.734194][ C240] sas_scsi_task_done+0xbc/0x16c [libsas]\n[ 214.739758][ C240] slot_complete_v3_hw+0x260/0x760 [hisi_sas_v3_hw]\n[ 214.746185][ C240] cq_thread_v3_hw+0xbc/0x190 [hisi_sas_v3_hw]\n[ 214.752179][ C240] irq_thread_fn+0x34/0xa4\n[ 214.756435][ C240] irq_thread+0xc4/0x130\n[ 214.760520][ C240] kthread+0x108/0x13c\n[ 214.764430][ C240] ret_from_fork+0x10/0x18\n\nThis is because in the hisi_sas driver, both the hardware interrupt\nhandler and the interrupt thread are executed on the same CPU. In the\nperformance test scenario, function irq_wait_for_interrupt() will always\nreturn 0 if lots of interrupts occurs and the CPU will be continuously\nconsumed. As a result, the CPU cannot run the watchdog thread. When the\nwatchdog time exceeds the specified time, call trace occurs.\n\nTo fix it, add cond_resched() to execute the watchdog thread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56589",
"url": "https://www.suse.com/security/cve/CVE-2024-56589"
},
{
"category": "external",
"summary": "SUSE Bug 1235241 for CVE-2024-56589",
"url": "https://bugzilla.suse.com/1235241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56589"
},
{
"cve": "CVE-2024-56590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56590"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_core: Fix not checking skb length on hci_acldata_packet\n\nThis fixes not checking if skb really contains an ACL header otherwise\nthe code may attempt to access some uninitilized/invalid memory past the\nvalid skb-\u003edata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56590",
"url": "https://www.suse.com/security/cve/CVE-2024-56590"
},
{
"category": "external",
"summary": "SUSE Bug 1235038 for CVE-2024-56590",
"url": "https://bugzilla.suse.com/1235038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56590"
},
{
"cve": "CVE-2024-56593",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56593"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw()\n\nThis patch fixes a NULL pointer dereference bug in brcmfmac that occurs\nwhen a high \u0027sd_sgentry_align\u0027 value applies (e.g. 512) and a lot of queued SKBs\nare sent from the pkt queue.\n\nThe problem is the number of entries in the pre-allocated sgtable, it is\nnents = max(rxglom_size, txglom_size) + max(rxglom_size, txglom_size) \u003e\u003e 4 + 1.\nGiven the default [rt]xglom_size=32 it\u0027s actually 35 which is too small.\nWorst case, the pkt queue can end up with 64 SKBs. This occurs when a new SKB\nis added for each original SKB if tailroom isn\u0027t enough to hold tail_pad.\nAt least one sg entry is needed for each SKB. So, eventually the \"skb_queue_walk loop\"\nin brcmf_sdiod_sglist_rw may run out of sg entries. This makes sg_next return\nNULL and this causes the oops.\n\nThe patch sets nents to max(rxglom_size, txglom_size) * 2 to be able handle\nthe worst-case.\nBtw. this requires only 64-35=29 * 16 (or 20 if CONFIG_NEED_SG_DMA_LENGTH) = 464\nadditional bytes of memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56593",
"url": "https://www.suse.com/security/cve/CVE-2024-56593"
},
{
"category": "external",
"summary": "SUSE Bug 1235252 for CVE-2024-56593",
"url": "https://bugzilla.suse.com/1235252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56593"
},
{
"cve": "CVE-2024-56594",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56594"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: set the right AMDGPU sg segment limitation\n\nThe driver needs to set the correct max_segment_size;\notherwise debug_dma_map_sg() will complain about the\nover-mapping of the AMDGPU sg length as following:\n\nWARNING: CPU: 6 PID: 1964 at kernel/dma/debug.c:1178 debug_dma_map_sg+0x2dc/0x370\n[ 364.049444] Modules linked in: veth amdgpu(OE) amdxcp drm_exec gpu_sched drm_buddy drm_ttm_helper ttm(OE) drm_suballoc_helper drm_display_helper drm_kms_helper i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc amd_atl intel_rapl_msr intel_rapl_common sunrpc sch_fq_codel snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd binfmt_misc snd_hda_codec snd_pci_acp6x snd_hda_core snd_acp_config snd_hwdep snd_soc_acpi kvm_amd snd_pcm kvm snd_seq_midi snd_seq_midi_event crct10dif_pclmul ghash_clmulni_intel sha512_ssse3 snd_rawmidi sha256_ssse3 sha1_ssse3 aesni_intel snd_seq nls_iso8859_1 crypto_simd snd_seq_device cryptd snd_timer rapl input_leds snd\n[ 364.049532] ipmi_devintf wmi_bmof ccp serio_raw k10temp sp5100_tco soundcore ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport drm efi_pstore ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 364.049576] CPU: 6 PID: 1964 Comm: rocminfo Tainted: G OE 6.10.0-custom #492\n[ 364.049579] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 364.049582] RIP: 0010:debug_dma_map_sg+0x2dc/0x370\n[ 364.049585] Code: 89 4d b8 e8 36 b1 86 00 8b 4d b8 48 8b 55 b0 44 8b 45 a8 4c 8b 4d a0 48 89 c6 48 c7 c7 00 4b 74 bc 4c 89 4d b8 e8 b4 73 f3 ff \u003c0f\u003e 0b 4c 8b 4d b8 8b 15 c8 2c b8 01 85 d2 0f 85 ee fd ff ff 8b 05\n[ 364.049588] RSP: 0018:ffff9ca600b57ac0 EFLAGS: 00010286\n[ 364.049590] RAX: 0000000000000000 RBX: ffff88b7c132b0c8 RCX: 0000000000000027\n[ 364.049592] RDX: ffff88bb0f521688 RSI: 0000000000000001 RDI: ffff88bb0f521680\n[ 364.049594] RBP: ffff9ca600b57b20 R08: 000000000000006f R09: ffff9ca600b57930\n[ 364.049596] R10: ffff9ca600b57928 R11: ffffffffbcb46328 R12: 0000000000000000\n[ 364.049597] R13: 0000000000000001 R14: ffff88b7c19c0700 R15: ffff88b7c9059800\n[ 364.049599] FS: 00007fb2d3516e80(0000) GS:ffff88bb0f500000(0000) knlGS:0000000000000000\n[ 364.049601] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 364.049603] CR2: 000055610bd03598 CR3: 00000001049f6000 CR4: 0000000000350ef0\n[ 364.049605] Call Trace:\n[ 364.049607] \u003cTASK\u003e\n[ 364.049609] ? show_regs+0x6d/0x80\n[ 364.049614] ? __warn+0x8c/0x140\n[ 364.049618] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049621] ? report_bug+0x193/0x1a0\n[ 364.049627] ? handle_bug+0x46/0x80\n[ 364.049631] ? exc_invalid_op+0x1d/0x80\n[ 364.049635] ? asm_exc_invalid_op+0x1f/0x30\n[ 364.049642] ? debug_dma_map_sg+0x2dc/0x370\n[ 364.049647] __dma_map_sg_attrs+0x90/0xe0\n[ 364.049651] dma_map_sgtable+0x25/0x40\n[ 364.049654] amdgpu_bo_move+0x59a/0x850 [amdgpu]\n[ 364.049935] ? srso_return_thunk+0x5/0x5f\n[ 364.049939] ? amdgpu_ttm_tt_populate+0x5d/0xc0 [amdgpu]\n[ 364.050095] ttm_bo_handle_move_mem+0xc3/0x180 [ttm]\n[ 364.050103] ttm_bo_validate+0xc1/0x160 [ttm]\n[ 364.050108] ? amdgpu_ttm_tt_get_user_pages+0xe5/0x1b0 [amdgpu]\n[ 364.050263] amdgpu_amdkfd_gpuvm_alloc_memory_of_gpu+0xa12/0xc90 [amdgpu]\n[ 364.050473] kfd_ioctl_alloc_memory_of_gpu+0x16b/0x3b0 [amdgpu]\n[ 364.050680] kfd_ioctl+0x3c2/0x530 [amdgpu]\n[ 364.050866] ? __pfx_kfd_ioctl_alloc_memory_of_gpu+0x10/0x10 [amdgpu]\n[ 364.05105\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56594",
"url": "https://www.suse.com/security/cve/CVE-2024-56594"
},
{
"category": "external",
"summary": "SUSE Bug 1235413 for CVE-2024-56594",
"url": "https://bugzilla.suse.com/1235413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56594"
},
{
"cve": "CVE-2024-56595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56595"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: add a check to prevent array-index-out-of-bounds in dbAdjTree\n\nWhen the value of lp is 0 at the beginning of the for loop, it will\nbecome negative in the next assignment and we should bail out.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56595",
"url": "https://www.suse.com/security/cve/CVE-2024-56595"
},
{
"category": "external",
"summary": "SUSE Bug 1235410 for CVE-2024-56595",
"url": "https://bugzilla.suse.com/1235410"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56595"
},
{
"cve": "CVE-2024-56596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix array-index-out-of-bounds in jfs_readdir\n\nThe stbl might contain some invalid values. Added a check to\nreturn error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56596",
"url": "https://www.suse.com/security/cve/CVE-2024-56596"
},
{
"category": "external",
"summary": "SUSE Bug 1235458 for CVE-2024-56596",
"url": "https://bugzilla.suse.com/1235458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56596"
},
{
"cve": "CVE-2024-56597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56597"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix shift-out-of-bounds in dbSplit\n\nWhen dmt_budmin is less than zero, it causes errors\nin the later stages. Added a check to return an error beforehand\nin dbAllocCtl itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56597",
"url": "https://www.suse.com/security/cve/CVE-2024-56597"
},
{
"category": "external",
"summary": "SUSE Bug 1235222 for CVE-2024-56597",
"url": "https://bugzilla.suse.com/1235222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56597"
},
{
"cve": "CVE-2024-56598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56598"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: array-index-out-of-bounds fix in dtReadFirst\n\nThe value of stbl can be sometimes out of bounds due\nto a bad filesystem. Added a check with appopriate return\nof error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56598",
"url": "https://www.suse.com/security/cve/CVE-2024-56598"
},
{
"category": "external",
"summary": "SUSE Bug 1235220 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "external",
"summary": "SUSE Bug 1235221 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56598"
},
{
"cve": "CVE-2024-56599",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56599"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: avoid NULL pointer error during sdio remove\n\nWhen running \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will free sdio\nworkqueue by destroy_workqueue(). But if CONFIG_INIT_ON_FREE_DEFAULT_ON\nis set to yes, kernel panic will happen:\nCall trace:\n destroy_workqueue+0x1c/0x258\n ath10k_sdio_remove+0x84/0x94\n sdio_bus_remove+0x50/0x16c\n device_release_driver_internal+0x188/0x25c\n device_driver_detach+0x20/0x2c\n\nThis is because during \u0027rmmod ath10k\u0027, ath10k_sdio_remove() will call\nath10k_core_destroy() before destroy_workqueue(). wiphy_dev_release()\nwill finally be called in ath10k_core_destroy(). This function will free\nstruct cfg80211_registered_device *rdev and all its members, including\nwiphy, dev and the pointer of sdio workqueue. Then the pointer of sdio\nworkqueue will be set to NULL due to CONFIG_INIT_ON_FREE_DEFAULT_ON.\n\nAfter device release, destroy_workqueue() will use NULL pointer then the\nkernel panic happen.\n\nCall trace:\nath10k_sdio_remove\n -\u003eath10k_core_unregister\n ......\n -\u003eath10k_core_stop\n -\u003eath10k_hif_stop\n -\u003eath10k_sdio_irq_disable\n -\u003eath10k_hif_power_down\n -\u003edel_timer_sync(\u0026ar_sdio-\u003esleep_timer)\n -\u003eath10k_core_destroy\n -\u003eath10k_mac_destroy\n -\u003eieee80211_free_hw\n -\u003ewiphy_free\n ......\n -\u003ewiphy_dev_release\n -\u003edestroy_workqueue\n\nNeed to call destroy_workqueue() before ath10k_core_destroy(), free\nthe work queue buffer first and then free pointer of work queue by\nath10k_core_destroy(). This order matches the error path order in\nath10k_sdio_probe().\n\nNo work will be queued on sdio workqueue between it is destroyed and\nath10k_core_destroy() is called. Based on the call_stack above, the\nreason is:\nOnly ath10k_sdio_sleep_timer_handler(), ath10k_sdio_hif_tx_sg() and\nath10k_sdio_irq_disable() will queue work on sdio workqueue.\nSleep timer will be deleted before ath10k_core_destroy() in\nath10k_hif_power_down().\nath10k_sdio_irq_disable() only be called in ath10k_hif_stop().\nath10k_core_unregister() will call ath10k_hif_power_down() to stop hif\nbus, so ath10k_sdio_hif_tx_sg() won\u0027t be called anymore.\n\nTested-on: QCA6174 hw3.2 SDIO WLAN.RMH.4.4.1-00189",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56599",
"url": "https://www.suse.com/security/cve/CVE-2024-56599"
},
{
"category": "external",
"summary": "SUSE Bug 1235138 for CVE-2024-56599",
"url": "https://bugzilla.suse.com/1235138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56599"
},
{
"cve": "CVE-2024-56600",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56600"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: inet6: do not leave a dangling sk pointer in inet6_create()\n\nsock_init_data() attaches the allocated sk pointer to the provided sock\nobject. If inet6_create() fails later, the sk object is released, but the\nsock object retains the dangling sk pointer, which may cause use-after-free\nlater.\n\nClear the sock sk pointer on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56600",
"url": "https://www.suse.com/security/cve/CVE-2024-56600"
},
{
"category": "external",
"summary": "SUSE Bug 1235217 for CVE-2024-56600",
"url": "https://bugzilla.suse.com/1235217"
},
{
"category": "external",
"summary": "SUSE Bug 1235218 for CVE-2024-56600",
"url": "https://bugzilla.suse.com/1235218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56600"
},
{
"cve": "CVE-2024-56601",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56601"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: inet: do not leave a dangling sk pointer in inet_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If inet_create() fails later, the sk object is freed, but the\nsock object retains the dangling pointer, which may create use-after-free\nlater.\n\nClear the sk pointer in the sock object on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56601",
"url": "https://www.suse.com/security/cve/CVE-2024-56601"
},
{
"category": "external",
"summary": "SUSE Bug 1235230 for CVE-2024-56601",
"url": "https://bugzilla.suse.com/1235230"
},
{
"category": "external",
"summary": "SUSE Bug 1235231 for CVE-2024-56601",
"url": "https://bugzilla.suse.com/1235231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56601"
},
{
"cve": "CVE-2024-56602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56602"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ieee802154: do not leave a dangling sk pointer in ieee802154_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If ieee802154_create() fails later, the allocated sk object is\nfreed, but the dangling pointer remains in the provided sock object, which\nmay allow use-after-free.\n\nClear the sk pointer in the sock object on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56602",
"url": "https://www.suse.com/security/cve/CVE-2024-56602"
},
{
"category": "external",
"summary": "SUSE Bug 1235521 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235521"
},
{
"category": "external",
"summary": "SUSE Bug 1235522 for CVE-2024-56602",
"url": "https://bugzilla.suse.com/1235522"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56602"
},
{
"cve": "CVE-2024-56603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56603"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: af_can: do not leave a dangling sk pointer in can_create()\n\nOn error can_create() frees the allocated sk object, but sock_init_data()\nhas already attached it to the provided sock object. This will leave a\ndangling sk pointer in the sock object and may cause use-after-free later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56603",
"url": "https://www.suse.com/security/cve/CVE-2024-56603"
},
{
"category": "external",
"summary": "SUSE Bug 1235415 for CVE-2024-56603",
"url": "https://bugzilla.suse.com/1235415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56603"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56606"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_packet: avoid erroring out after sock_init_data() in packet_create()\n\nAfter sock_init_data() the allocated sk object is attached to the provided\nsock object. On error, packet_create() frees the sk object leaving the\ndangling pointer in the sock object on return. Some other code may try\nto use this pointer and cause use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56606",
"url": "https://www.suse.com/security/cve/CVE-2024-56606"
},
{
"category": "external",
"summary": "SUSE Bug 1235417 for CVE-2024-56606",
"url": "https://bugzilla.suse.com/1235417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56606"
},
{
"cve": "CVE-2024-56607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56607"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix atomic calls in ath12k_mac_op_set_bitrate_mask()\n\nWhen I try to manually set bitrates:\n\niw wlan0 set bitrates legacy-2.4 1\n\nI get sleeping from invalid context error, see below. Fix that by switching to\nuse recently introduced ieee80211_iterate_stations_mtx().\n\nDo note that WCN6855 firmware is still crashing, I\u0027m not sure if that firmware\neven supports bitrate WMI commands and should we consider disabling\nath12k_mac_op_set_bitrate_mask() for WCN6855? But that\u0027s for another patch.\n\nBUG: sleeping function called from invalid context at drivers/net/wireless/ath/ath12k/wmi.c:420\nin_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 2236, name: iw\npreempt_count: 0, expected: 0\nRCU nest depth: 1, expected: 0\n3 locks held by iw/2236:\n #0: ffffffffabc6f1d8 (cb_lock){++++}-{3:3}, at: genl_rcv+0x14/0x40\n #1: ffff888138410810 (\u0026rdev-\u003ewiphy.mtx){+.+.}-{3:3}, at: nl80211_pre_doit+0x54d/0x800 [cfg80211]\n #2: ffffffffab2cfaa0 (rcu_read_lock){....}-{1:2}, at: ieee80211_iterate_stations_atomic+0x2f/0x200 [mac80211]\nCPU: 3 UID: 0 PID: 2236 Comm: iw Not tainted 6.11.0-rc7-wt-ath+ #1772\nHardware name: Intel(R) Client Systems NUC8i7HVK/NUC8i7HVB, BIOS HNKBLi70.86A.0067.2021.0528.1339 05/28/2021\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xa4/0xe0\n dump_stack+0x10/0x20\n __might_resched+0x363/0x5a0\n ? __alloc_skb+0x165/0x340\n __might_sleep+0xad/0x160\n ath12k_wmi_cmd_send+0xb1/0x3d0 [ath12k]\n ? ath12k_wmi_init_wcn7850+0xa40/0xa40 [ath12k]\n ? __netdev_alloc_skb+0x45/0x7b0\n ? __asan_memset+0x39/0x40\n ? ath12k_wmi_alloc_skb+0xf0/0x150 [ath12k]\n ? reacquire_held_locks+0x4d0/0x4d0\n ath12k_wmi_set_peer_param+0x340/0x5b0 [ath12k]\n ath12k_mac_disable_peer_fixed_rate+0xa3/0x110 [ath12k]\n ? ath12k_mac_vdev_stop+0x4f0/0x4f0 [ath12k]\n ieee80211_iterate_stations_atomic+0xd4/0x200 [mac80211]\n ath12k_mac_op_set_bitrate_mask+0x5d2/0x1080 [ath12k]\n ? ath12k_mac_vif_chan+0x320/0x320 [ath12k]\n drv_set_bitrate_mask+0x267/0x470 [mac80211]\n ieee80211_set_bitrate_mask+0x4cc/0x8a0 [mac80211]\n ? __this_cpu_preempt_check+0x13/0x20\n nl80211_set_tx_bitrate_mask+0x2bc/0x530 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? trace_contention_end+0xef/0x140\n ? rtnl_unlock+0x9/0x10\n ? nl80211_pre_doit+0x557/0x800 [cfg80211]\n genl_family_rcv_msg_doit+0x1f0/0x2e0\n ? genl_family_rcv_msg_attrs_parse.isra.0+0x250/0x250\n ? ns_capable+0x57/0xd0\n genl_family_rcv_msg+0x34c/0x600\n ? genl_family_rcv_msg_dumpit+0x310/0x310\n ? __lock_acquire+0xc62/0x1de0\n ? he_set_mcs_mask.isra.0+0x8d0/0x8d0 [cfg80211]\n ? nl80211_parse_tx_bitrate_mask+0x2320/0x2320 [cfg80211]\n ? cfg80211_external_auth_request+0x690/0x690 [cfg80211]\n genl_rcv_msg+0xa0/0x130\n netlink_rcv_skb+0x14c/0x400\n ? genl_family_rcv_msg+0x600/0x600\n ? netlink_ack+0xd70/0xd70\n ? rwsem_optimistic_spin+0x4f0/0x4f0\n ? genl_rcv+0x14/0x40\n ? down_read_killable+0x580/0x580\n ? netlink_deliver_tap+0x13e/0x350\n ? __this_cpu_preempt_check+0x13/0x20\n genl_rcv+0x23/0x40\n netlink_unicast+0x45e/0x790\n ? netlink_attachskb+0x7f0/0x7f0\n netlink_sendmsg+0x7eb/0xdb0\n ? netlink_unicast+0x790/0x790\n ? __this_cpu_preempt_check+0x13/0x20\n ? selinux_socket_sendmsg+0x31/0x40\n ? netlink_unicast+0x790/0x790\n __sock_sendmsg+0xc9/0x160\n ____sys_sendmsg+0x620/0x990\n ? kernel_sendmsg+0x30/0x30\n ? __copy_msghdr+0x410/0x410\n ? __kasan_check_read+0x11/0x20\n ? mark_lock+0xe6/0x1470\n ___sys_sendmsg+0xe9/0x170\n ? copy_msghdr_from_user+0x120/0x120\n ? __lock_acquire+0xc62/0x1de0\n ? do_fault_around+0x2c6/0x4e0\n ? do_user_addr_fault+0x8c1/0xde0\n ? reacquire_held_locks+0x220/0x4d0\n ? do_user_addr_fault+0x8c1/0xde0\n ? __kasan_check_read+0x11/0x20\n ? __fdget+0x4e/0x1d0\n ? sockfd_lookup_light+0x1a/0x170\n __sys_sendmsg+0xd2/0x180\n ? __sys_sendmsg_sock+0x20/0x20\n ? reacquire_held_locks+0x4d0/0x4d0\n ? debug_smp_processor_id+0x17/0x20\n __x64_sys_sendmsg+0x72/0xb0\n ? lockdep_hardirqs_on+0x7d/0x100\n x64_sys_call+0x894/0x9f0\n do_syscall_64+0x64/0x130\n entry_SYSCALL_64_after_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56607",
"url": "https://www.suse.com/security/cve/CVE-2024-56607"
},
{
"category": "external",
"summary": "SUSE Bug 1235423 for CVE-2024-56607",
"url": "https://bugzilla.suse.com/1235423"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56607"
},
{
"cve": "CVE-2024-56608",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56608"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix out-of-bounds access in \u0027dcn21_link_encoder_create\u0027\n\nAn issue was identified in the dcn21_link_encoder_create function where\nan out-of-bounds access could occur when the hpd_source index was used\nto reference the link_enc_hpd_regs array. This array has a fixed size\nand the index was not being checked against the array\u0027s bounds before\naccessing it.\n\nThis fix adds a conditional check to ensure that the hpd_source index is\nwithin the valid range of the link_enc_hpd_regs array. If the index is\nout of bounds, the function now returns NULL to prevent undefined\nbehavior.\n\nReferences:\n\n[ 65.920507] ------------[ cut here ]------------\n[ 65.920510] UBSAN: array-index-out-of-bounds in drivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn21/dcn21_resource.c:1312:29\n[ 65.920519] index 7 is out of range for type \u0027dcn10_link_enc_hpd_registers [5]\u0027\n[ 65.920523] CPU: 3 PID: 1178 Comm: modprobe Tainted: G OE 6.8.0-cleanershaderfeatureresetasdntipmi200nv2132 #13\n[ 65.920525] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS WMJ0429N_Weekly_20_04_2 04/29/2020\n[ 65.920527] Call Trace:\n[ 65.920529] \u003cTASK\u003e\n[ 65.920532] dump_stack_lvl+0x48/0x70\n[ 65.920541] dump_stack+0x10/0x20\n[ 65.920543] __ubsan_handle_out_of_bounds+0xa2/0xe0\n[ 65.920549] dcn21_link_encoder_create+0xd9/0x140 [amdgpu]\n[ 65.921009] link_create+0x6d3/0xed0 [amdgpu]\n[ 65.921355] create_links+0x18a/0x4e0 [amdgpu]\n[ 65.921679] dc_create+0x360/0x720 [amdgpu]\n[ 65.921999] ? dmi_matches+0xa0/0x220\n[ 65.922004] amdgpu_dm_init+0x2b6/0x2c90 [amdgpu]\n[ 65.922342] ? console_unlock+0x77/0x120\n[ 65.922348] ? dev_printk_emit+0x86/0xb0\n[ 65.922354] dm_hw_init+0x15/0x40 [amdgpu]\n[ 65.922686] amdgpu_device_init+0x26a8/0x33a0 [amdgpu]\n[ 65.922921] amdgpu_driver_load_kms+0x1b/0xa0 [amdgpu]\n[ 65.923087] amdgpu_pci_probe+0x1b7/0x630 [amdgpu]\n[ 65.923087] local_pci_probe+0x4b/0xb0\n[ 65.923087] pci_device_probe+0xc8/0x280\n[ 65.923087] really_probe+0x187/0x300\n[ 65.923087] __driver_probe_device+0x85/0x130\n[ 65.923087] driver_probe_device+0x24/0x110\n[ 65.923087] __driver_attach+0xac/0x1d0\n[ 65.923087] ? __pfx___driver_attach+0x10/0x10\n[ 65.923087] bus_for_each_dev+0x7d/0xd0\n[ 65.923087] driver_attach+0x1e/0x30\n[ 65.923087] bus_add_driver+0xf2/0x200\n[ 65.923087] driver_register+0x64/0x130\n[ 65.923087] ? __pfx_amdgpu_init+0x10/0x10 [amdgpu]\n[ 65.923087] __pci_register_driver+0x61/0x70\n[ 65.923087] amdgpu_init+0x7d/0xff0 [amdgpu]\n[ 65.923087] do_one_initcall+0x49/0x310\n[ 65.923087] ? kmalloc_trace+0x136/0x360\n[ 65.923087] do_init_module+0x6a/0x270\n[ 65.923087] load_module+0x1fce/0x23a0\n[ 65.923087] init_module_from_file+0x9c/0xe0\n[ 65.923087] ? init_module_from_file+0x9c/0xe0\n[ 65.923087] idempotent_init_module+0x179/0x230\n[ 65.923087] __x64_sys_finit_module+0x5d/0xa0\n[ 65.923087] do_syscall_64+0x76/0x120\n[ 65.923087] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n[ 65.923087] RIP: 0033:0x7f2d80f1e88d\n[ 65.923087] Code: 5b 41 5c c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 b5 0f 00 f7 d8 64 89 01 48\n[ 65.923087] RSP: 002b:00007ffc7bc1aa78 EFLAGS: 00000246 ORIG_RAX: 0000000000000139\n[ 65.923087] RAX: ffffffffffffffda RBX: 0000564c9c1db130 RCX: 00007f2d80f1e88d\n[ 65.923087] RDX: 0000000000000000 RSI: 0000564c9c1e5480 RDI: 000000000000000f\n[ 65.923087] RBP: 0000000000040000 R08: 0000000000000000 R09: 0000000000000002\n[ 65.923087] R10: 000000000000000f R11: 0000000000000246 R12: 0000564c9c1e5480\n[ 65.923087] R13: 0000564c9c1db260 R14: 0000000000000000 R15: 0000564c9c1e54b0\n[ 65.923087] \u003c/TASK\u003e\n[ 65.923927] ---[ end trace ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56608",
"url": "https://www.suse.com/security/cve/CVE-2024-56608"
},
{
"category": "external",
"summary": "SUSE Bug 1235487 for CVE-2024-56608",
"url": "https://bugzilla.suse.com/1235487"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56608"
},
{
"cve": "CVE-2024-56609",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56609"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb\n\nWhen removing kernel modules by:\n rmmod rtw88_8723cs rtw88_8703b rtw88_8723x rtw88_sdio rtw88_core\n\nDriver uses skb_queue_purge() to purge TX skb, but not report tx status\ncausing \"Have pending ack frames!\" warning. Use ieee80211_purge_tx_queue()\nto correct this.\n\nSince ieee80211_purge_tx_queue() doesn\u0027t take locks, to prevent racing\nbetween TX work and purge TX queue, flush and destroy TX work in advance.\n\n wlan0: deauthenticating from aa:f5:fd:60:4c:a8 by local\n choice (Reason: 3=DEAUTH_LEAVING)\n ------------[ cut here ]------------\n Have pending ack frames!\n WARNING: CPU: 3 PID: 9232 at net/mac80211/main.c:1691\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n CPU: 3 PID: 9232 Comm: rmmod Tainted: G C\n 6.10.1-200.fc40.aarch64 #1\n Hardware name: pine64 Pine64 PinePhone Braveheart\n (1.1)/Pine64 PinePhone Braveheart (1.1), BIOS 2024.01 01/01/2024\n pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n lr : ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n sp : ffff80008c1b37b0\n x29: ffff80008c1b37b0 x28: ffff000003be8000 x27: 0000000000000000\n x26: 0000000000000000 x25: ffff000003dc14b8 x24: ffff80008c1b37d0\n x23: ffff000000ff9f80 x22: 0000000000000000 x21: 000000007fffffff\n x20: ffff80007c7e93d8 x19: ffff00006e66f400 x18: 0000000000000000\n x17: ffff7ffffd2b3000 x16: ffff800083fc0000 x15: 0000000000000000\n x14: 0000000000000000 x13: 2173656d61726620 x12: 6b636120676e6964\n x11: 0000000000000000 x10: 000000000000005d x9 : ffff8000802af2b0\n x8 : ffff80008c1b3430 x7 : 0000000000000001 x6 : 0000000000000001\n x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff000003be8000\n Call trace:\n ieee80211_free_ack_frame+0x5c/0x90 [mac80211]\n idr_for_each+0x74/0x110\n ieee80211_free_hw+0x44/0xe8 [mac80211]\n rtw_sdio_remove+0x9c/0xc0 [rtw88_sdio]\n sdio_bus_remove+0x44/0x180\n device_remove+0x54/0x90\n device_release_driver_internal+0x1d4/0x238\n driver_detach+0x54/0xc0\n bus_remove_driver+0x78/0x108\n driver_unregister+0x38/0x78\n sdio_unregister_driver+0x2c/0x40\n rtw_8723cs_driver_exit+0x18/0x1000 [rtw88_8723cs]\n __do_sys_delete_module.isra.0+0x190/0x338\n __arm64_sys_delete_module+0x1c/0x30\n invoke_syscall+0x74/0x100\n el0_svc_common.constprop.0+0x48/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x3c/0x158\n el0t_64_sync_handler+0x120/0x138\n el0t_64_sync+0x194/0x198\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56609",
"url": "https://www.suse.com/security/cve/CVE-2024-56609"
},
{
"category": "external",
"summary": "SUSE Bug 1235389 for CVE-2024-56609",
"url": "https://bugzilla.suse.com/1235389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56609"
},
{
"cve": "CVE-2024-56610",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56610"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcsan: Turn report_filterlist_lock into a raw_spinlock\n\nRan Xiaokai reports that with a KCSAN-enabled PREEMPT_RT kernel, we can see\nsplats like:\n\n| BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\n| in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 0, name: swapper/1\n| preempt_count: 10002, expected: 0\n| RCU nest depth: 0, expected: 0\n| no locks held by swapper/1/0.\n| irq event stamp: 156674\n| hardirqs last enabled at (156673): [\u003cffffffff81130bd9\u003e] do_idle+0x1f9/0x240\n| hardirqs last disabled at (156674): [\u003cffffffff82254f84\u003e] sysvec_apic_timer_interrupt+0x14/0xc0\n| softirqs last enabled at (0): [\u003cffffffff81099f47\u003e] copy_process+0xfc7/0x4b60\n| softirqs last disabled at (0): [\u003c0000000000000000\u003e] 0x0\n| Preemption disabled at:\n| [\u003cffffffff814a3e2a\u003e] paint_ptr+0x2a/0x90\n| CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.11.0+ #3\n| Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-0-ga698c8995f-prebuilt.qemu.org 04/01/2014\n| Call Trace:\n| \u003cIRQ\u003e\n| dump_stack_lvl+0x7e/0xc0\n| dump_stack+0x1d/0x30\n| __might_resched+0x1a2/0x270\n| rt_spin_lock+0x68/0x170\n| kcsan_skip_report_debugfs+0x43/0xe0\n| print_report+0xb5/0x590\n| kcsan_report_known_origin+0x1b1/0x1d0\n| kcsan_setup_watchpoint+0x348/0x650\n| __tsan_unaligned_write1+0x16d/0x1d0\n| hrtimer_interrupt+0x3d6/0x430\n| __sysvec_apic_timer_interrupt+0xe8/0x3a0\n| sysvec_apic_timer_interrupt+0x97/0xc0\n| \u003c/IRQ\u003e\n\nOn a detected data race, KCSAN\u0027s reporting logic checks if it should\nfilter the report. That list is protected by the report_filterlist_lock\n*non-raw* spinlock which may sleep on RT kernels.\n\nSince KCSAN may report data races in any context, convert it to a\nraw_spinlock.\n\nThis requires being careful about when to allocate memory for the filter\nlist itself which can be done via KCSAN\u0027s debugfs interface. Concurrent\nmodification of the filter list via debugfs should be rare: the chosen\nstrategy is to optimistically pre-allocate memory before the critical\nsection and discard if unused.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56610",
"url": "https://www.suse.com/security/cve/CVE-2024-56610"
},
{
"category": "external",
"summary": "SUSE Bug 1235390 for CVE-2024-56610",
"url": "https://bugzilla.suse.com/1235390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56610"
},
{
"cve": "CVE-2024-56611",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56611"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM\n\nWe currently assume that there is at least one VMA in a MM, which isn\u0027t\ntrue.\n\nSo we might end up having find_vma() return NULL, to then de-reference\nNULL. So properly handle find_vma() returning NULL.\n\nThis fixes the report:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 UID: 0 PID: 6021 Comm: syz-executor284 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\nRIP: 0010:migrate_to_node mm/mempolicy.c:1090 [inline]\nRIP: 0010:do_migrate_pages+0x403/0x6f0 mm/mempolicy.c:1194\nCode: ...\nRSP: 0018:ffffc9000375fd08 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffc9000375fd78 RCX: 0000000000000000\nRDX: ffff88807e171300 RSI: dffffc0000000000 RDI: ffff88803390c044\nRBP: ffff88807e171428 R08: 0000000000000014 R09: fffffbfff2039ef1\nR10: ffffffff901cf78f R11: 0000000000000000 R12: 0000000000000003\nR13: ffffc9000375fe90 R14: ffffc9000375fe98 R15: ffffc9000375fdf8\nFS: 00005555919e1380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555919e1ca8 CR3: 000000007f12a000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n kernel_migrate_pages+0x5b2/0x750 mm/mempolicy.c:1709\n __do_sys_migrate_pages mm/mempolicy.c:1727 [inline]\n __se_sys_migrate_pages mm/mempolicy.c:1723 [inline]\n __x64_sys_migrate_pages+0x96/0x100 mm/mempolicy.c:1723\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[akpm@linux-foundation.org: add unlikely()]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56611",
"url": "https://www.suse.com/security/cve/CVE-2024-56611"
},
{
"category": "external",
"summary": "SUSE Bug 1235391 for CVE-2024-56611",
"url": "https://bugzilla.suse.com/1235391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56611"
},
{
"cve": "CVE-2024-56614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56614"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: fix OOB map writes when deleting elements\n\nJordy says:\n\n\"\nIn the xsk_map_delete_elem function an unsigned integer\n(map-\u003emax_entries) is compared with a user-controlled signed integer\n(k). Due to implicit type conversion, a large unsigned value for\nmap-\u003emax_entries can bypass the intended bounds check:\n\n\tif (k \u003e= map-\u003emax_entries)\n\t\treturn -EINVAL;\n\nThis allows k to hold a negative value (between -2147483648 and -2),\nwhich is then used as an array index in m-\u003exsk_map[k], which results\nin an out-of-bounds access.\n\n\tspin_lock_bh(\u0026m-\u003elock);\n\tmap_entry = \u0026m-\u003exsk_map[k]; // Out-of-bounds map_entry\n\told_xs = unrcu_pointer(xchg(map_entry, NULL)); // Oob write\n\tif (old_xs)\n\t\txsk_map_sock_delete(old_xs, map_entry);\n\tspin_unlock_bh(\u0026m-\u003elock);\n\nThe xchg operation can then be used to cause an out-of-bounds write.\nMoreover, the invalid map_entry passed to xsk_map_sock_delete can lead\nto further memory corruption.\n\"\n\nIt indeed results in following splat:\n\n[76612.897343] BUG: unable to handle page fault for address: ffffc8fc2e461108\n[76612.904330] #PF: supervisor write access in kernel mode\n[76612.909639] #PF: error_code(0x0002) - not-present page\n[76612.914855] PGD 0 P4D 0\n[76612.917431] Oops: Oops: 0002 [#1] PREEMPT SMP\n[76612.921859] CPU: 11 UID: 0 PID: 10318 Comm: a.out Not tainted 6.12.0-rc1+ #470\n[76612.929189] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[76612.939781] RIP: 0010:xsk_map_delete_elem+0x2d/0x60\n[76612.944738] Code: 00 00 41 54 55 53 48 63 2e 3b 6f 24 73 38 4c 8d a7 f8 00 00 00 48 89 fb 4c 89 e7 e8 2d bf 05 00 48 8d b4 eb 00 01 00 00 31 ff \u003c48\u003e 87 3e 48 85 ff 74 05 e8 16 ff ff ff 4c 89 e7 e8 3e bc 05 00 31\n[76612.963774] RSP: 0018:ffffc9002e407df8 EFLAGS: 00010246\n[76612.969079] RAX: 0000000000000000 RBX: ffffc9002e461000 RCX: 0000000000000000\n[76612.976323] RDX: 0000000000000001 RSI: ffffc8fc2e461108 RDI: 0000000000000000\n[76612.983569] RBP: ffffffff80000001 R08: 0000000000000000 R09: 0000000000000007\n[76612.990812] R10: ffffc9002e407e18 R11: ffff888108a38858 R12: ffffc9002e4610f8\n[76612.998060] R13: ffff888108a38858 R14: 00007ffd1ae0ac78 R15: ffffc9002e4610c0\n[76613.005303] FS: 00007f80b6f59740(0000) GS:ffff8897e0ec0000(0000) knlGS:0000000000000000\n[76613.013517] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[76613.019349] CR2: ffffc8fc2e461108 CR3: 000000011e3ef001 CR4: 00000000007726f0\n[76613.026595] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[76613.033841] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[76613.041086] PKRU: 55555554\n[76613.043842] Call Trace:\n[76613.046331] \u003cTASK\u003e\n[76613.048468] ? __die+0x20/0x60\n[76613.051581] ? page_fault_oops+0x15a/0x450\n[76613.055747] ? search_extable+0x22/0x30\n[76613.059649] ? search_bpf_extables+0x5f/0x80\n[76613.063988] ? exc_page_fault+0xa9/0x140\n[76613.067975] ? asm_exc_page_fault+0x22/0x30\n[76613.072229] ? xsk_map_delete_elem+0x2d/0x60\n[76613.076573] ? xsk_map_delete_elem+0x23/0x60\n[76613.080914] __sys_bpf+0x19b7/0x23c0\n[76613.084555] __x64_sys_bpf+0x1a/0x20\n[76613.088194] do_syscall_64+0x37/0xb0\n[76613.091832] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[76613.096962] RIP: 0033:0x7f80b6d1e88d\n[76613.100592] Code: 5b 41 5c c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 b5 0f 00 f7 d8 64 89 01 48\n[76613.119631] RSP: 002b:00007ffd1ae0ac68 EFLAGS: 00000206 ORIG_RAX: 0000000000000141\n[76613.131330] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f80b6d1e88d\n[76613.142632] RDX: 0000000000000098 RSI: 00007ffd1ae0ad20 RDI: 0000000000000003\n[76613.153967] RBP: 00007ffd1ae0adc0 R08: 0000000000000000 R09: 0000000000000000\n[76613.166030] R10: 00007f80b6f77040 R11: 0000000000000206 R12: 00007ffd1ae0aed8\n[76613.177130] R13: 000055ddf42ce1e9 R14: 000055ddf42d0d98 R15: 00\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56614",
"url": "https://www.suse.com/security/cve/CVE-2024-56614"
},
{
"category": "external",
"summary": "SUSE Bug 1235424 for CVE-2024-56614",
"url": "https://bugzilla.suse.com/1235424"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56614"
},
{
"cve": "CVE-2024-56615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56615"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix OOB devmap writes when deleting elements\n\nJordy reported issue against XSKMAP which also applies to DEVMAP - the\nindex used for accessing map entry, due to being a signed integer,\ncauses the OOB writes. Fix is simple as changing the type from int to\nu32, however, when compared to XSKMAP case, one more thing needs to be\naddressed.\n\nWhen map is released from system via dev_map_free(), we iterate through\nall of the entries and an iterator variable is also an int, which\nimplies OOB accesses. Again, change it to be u32.\n\nExample splat below:\n\n[ 160.724676] BUG: unable to handle page fault for address: ffffc8fc2c001000\n[ 160.731662] #PF: supervisor read access in kernel mode\n[ 160.736876] #PF: error_code(0x0000) - not-present page\n[ 160.742095] PGD 0 P4D 0\n[ 160.744678] Oops: Oops: 0000 [#1] PREEMPT SMP\n[ 160.749106] CPU: 1 UID: 0 PID: 520 Comm: kworker/u145:12 Not tainted 6.12.0-rc1+ #487\n[ 160.757050] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.02.01.0008.031920191559 03/19/2019\n[ 160.767642] Workqueue: events_unbound bpf_map_free_deferred\n[ 160.773308] RIP: 0010:dev_map_free+0x77/0x170\n[ 160.777735] Code: 00 e8 fd 91 ed ff e8 b8 73 ed ff 41 83 7d 18 19 74 6e 41 8b 45 24 49 8b bd f8 00 00 00 31 db 85 c0 74 48 48 63 c3 48 8d 04 c7 \u003c48\u003e 8b 28 48 85 ed 74 30 48 8b 7d 18 48 85 ff 74 05 e8 b3 52 fa ff\n[ 160.796777] RSP: 0018:ffffc9000ee1fe38 EFLAGS: 00010202\n[ 160.802086] RAX: ffffc8fc2c001000 RBX: 0000000080000000 RCX: 0000000000000024\n[ 160.809331] RDX: 0000000000000000 RSI: 0000000000000024 RDI: ffffc9002c001000\n[ 160.816576] RBP: 0000000000000000 R08: 0000000000000023 R09: 0000000000000001\n[ 160.823823] R10: 0000000000000001 R11: 00000000000ee6b2 R12: dead000000000122\n[ 160.831066] R13: ffff88810c928e00 R14: ffff8881002df405 R15: 0000000000000000\n[ 160.838310] FS: 0000000000000000(0000) GS:ffff8897e0c40000(0000) knlGS:0000000000000000\n[ 160.846528] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 160.852357] CR2: ffffc8fc2c001000 CR3: 0000000005c32006 CR4: 00000000007726f0\n[ 160.859604] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 160.866847] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 160.874092] PKRU: 55555554\n[ 160.876847] Call Trace:\n[ 160.879338] \u003cTASK\u003e\n[ 160.881477] ? __die+0x20/0x60\n[ 160.884586] ? page_fault_oops+0x15a/0x450\n[ 160.888746] ? search_extable+0x22/0x30\n[ 160.892647] ? search_bpf_extables+0x5f/0x80\n[ 160.896988] ? exc_page_fault+0xa9/0x140\n[ 160.900973] ? asm_exc_page_fault+0x22/0x30\n[ 160.905232] ? dev_map_free+0x77/0x170\n[ 160.909043] ? dev_map_free+0x58/0x170\n[ 160.912857] bpf_map_free_deferred+0x51/0x90\n[ 160.917196] process_one_work+0x142/0x370\n[ 160.921272] worker_thread+0x29e/0x3b0\n[ 160.925082] ? rescuer_thread+0x4b0/0x4b0\n[ 160.929157] kthread+0xd4/0x110\n[ 160.932355] ? kthread_park+0x80/0x80\n[ 160.936079] ret_from_fork+0x2d/0x50\n[ 160.943396] ? kthread_park+0x80/0x80\n[ 160.950803] ret_from_fork_asm+0x11/0x20\n[ 160.958482] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56615",
"url": "https://www.suse.com/security/cve/CVE-2024-56615"
},
{
"category": "external",
"summary": "SUSE Bug 1235426 for CVE-2024-56615",
"url": "https://bugzilla.suse.com/1235426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56615"
},
{
"cve": "CVE-2024-56616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56616"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix MST sideband message body length check\n\nFix the MST sideband message body length check, which must be at least 1\nbyte accounting for the message body CRC (aka message data CRC) at the\nend of the message.\n\nThis fixes a case where an MST branch device returns a header with a\ncorrect header CRC (indicating a correctly received body length), with\nthe body length being incorrectly set to 0. This will later lead to a\nmemory corruption in drm_dp_sideband_append_payload() and the following\nerrors in dmesg:\n\n UBSAN: array-index-out-of-bounds in drivers/gpu/drm/display/drm_dp_mst_topology.c:786:25\n index -1 is out of range for type \u0027u8 [48]\u0027\n Call Trace:\n drm_dp_sideband_append_payload+0x33d/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]\n\n memcpy: detected field-spanning write (size 18446744073709551615) of single field \"\u0026msg-\u003emsg[msg-\u003ecurlen]\" at drivers/gpu/drm/display/drm_dp_mst_topology.c:791 (size 256)\n Call Trace:\n drm_dp_sideband_append_payload+0x324/0x350 [drm_display_helper]\n drm_dp_get_one_sb_msg+0x3ce/0x5f0 [drm_display_helper]\n drm_dp_mst_hpd_irq_handle_event+0xc8/0x1580 [drm_display_helper]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56616",
"url": "https://www.suse.com/security/cve/CVE-2024-56616"
},
{
"category": "external",
"summary": "SUSE Bug 1235427 for CVE-2024-56616",
"url": "https://bugzilla.suse.com/1235427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56616"
},
{
"cve": "CVE-2024-56617",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56617"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU\n\nCommit\n\n 5944ce092b97 (\"arch_topology: Build cacheinfo from primary CPU\")\n\nadds functionality that architectures can use to optionally allocate and\nbuild cacheinfo early during boot. Commit\n\n 6539cffa9495 (\"cacheinfo: Add arch specific early level initializer\")\n\nlets secondary CPUs correct (and reallocate memory) cacheinfo data if\nneeded.\n\nIf the early build functionality is not used and cacheinfo does not need\ncorrection, memory for cacheinfo is never allocated. x86 does not use\nthe early build functionality. Consequently, during the cacheinfo CPU\nhotplug callback, last_level_cache_is_valid() attempts to dereference\na NULL pointer:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000100\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not present page\n PGD 0 P4D 0\n Oops: 0000 [#1] PREEPMT SMP NOPTI\n CPU: 0 PID 19 Comm: cpuhp/0 Not tainted 6.4.0-rc2 #1\n RIP: 0010: last_level_cache_is_valid+0x95/0xe0a\n\nAllocate memory for cacheinfo during the cacheinfo CPU hotplug callback\nif not done earlier.\n\nMoreover, before determining the validity of the last-level cache info,\nensure that it has been allocated. Simply checking for non-zero\ncache_leaves() is not sufficient, as some architectures (e.g., Intel\nprocessors) have non-zero cache_leaves() before allocation.\n\nDereferencing NULL cacheinfo can occur in update_per_cpu_data_slice_size().\nThis function iterates over all online CPUs. However, a CPU may have come\nonline recently, but its cacheinfo may not have been allocated yet.\n\nWhile here, remove an unnecessary indentation in allocate_cache_info().\n\n [ bp: Massage. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56617",
"url": "https://www.suse.com/security/cve/CVE-2024-56617"
},
{
"category": "external",
"summary": "SUSE Bug 1235429 for CVE-2024-56617",
"url": "https://bugzilla.suse.com/1235429"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56617"
},
{
"cve": "CVE-2024-56619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56619"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()\n\nSyzbot reported that when searching for records in a directory where the\ninode\u0027s i_size is corrupted and has a large value, memory access outside\nthe folio/page range may occur, or a use-after-free bug may be detected if\nKASAN is enabled.\n\nThis is because nilfs_last_byte(), which is called by nilfs_find_entry()\nand others to calculate the number of valid bytes of directory data in a\npage from i_size and the page index, loses the upper 32 bits of the 64-bit\nsize information due to an inappropriate type of local variable to which\nthe i_size value is assigned.\n\nThis caused a large byte offset value due to underflow in the end address\ncalculation in the calling nilfs_find_entry(), resulting in memory access\nthat exceeds the folio/page size.\n\nFix this issue by changing the type of the local variable causing the bit\nloss from \"unsigned int\" to \"u64\". The return value of nilfs_last_byte()\nis also of type \"unsigned int\", but it is truncated so as not to exceed\nPAGE_SIZE and no bit loss occurs, so no change is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56619",
"url": "https://www.suse.com/security/cve/CVE-2024-56619"
},
{
"category": "external",
"summary": "SUSE Bug 1235224 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "external",
"summary": "SUSE Bug 1235225 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56619"
},
{
"cve": "CVE-2024-56620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56620"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: qcom: Only free platform MSIs when ESI is enabled\n\nOtherwise, it will result in a NULL pointer dereference as below:\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000008\nCall trace:\n mutex_lock+0xc/0x54\n platform_device_msi_free_irqs_all+0x14/0x20\n ufs_qcom_remove+0x34/0x48 [ufs_qcom]\n platform_remove+0x28/0x44\n device_remove+0x4c/0x80\n device_release_driver_internal+0xd8/0x178\n driver_detach+0x50/0x9c\n bus_remove_driver+0x6c/0xbc\n driver_unregister+0x30/0x60\n platform_driver_unregister+0x14/0x20\n ufs_qcom_pltform_exit+0x18/0xb94 [ufs_qcom]\n __arm64_sys_delete_module+0x180/0x260\n invoke_syscall+0x44/0x100\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xdc\n el0t_64_sync_handler+0xc0/0xc4\n el0t_64_sync+0x190/0x194",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56620",
"url": "https://www.suse.com/security/cve/CVE-2024-56620"
},
{
"category": "external",
"summary": "SUSE Bug 1235227 for CVE-2024-56620",
"url": "https://bugzilla.suse.com/1235227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56620"
},
{
"cve": "CVE-2024-56622",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56622"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: sysfs: Prevent div by zero\n\nPrevent a division by 0 when monitoring is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56622",
"url": "https://www.suse.com/security/cve/CVE-2024-56622"
},
{
"category": "external",
"summary": "SUSE Bug 1235251 for CVE-2024-56622",
"url": "https://bugzilla.suse.com/1235251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56622"
},
{
"cve": "CVE-2024-56623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56623"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix use after free on unload\n\nSystem crash is observed with stack trace warning of use after\nfree. There are 2 signals to tell dpc_thread to terminate (UNLOADING\nflag and kthread_stop).\n\nOn setting the UNLOADING flag when dpc_thread happens to run at the time\nand sees the flag, this causes dpc_thread to exit and clean up\nitself. When kthread_stop is called for final cleanup, this causes use\nafter free.\n\nRemove UNLOADING signal to terminate dpc_thread. Use the kthread_stop\nas the main signal to exit dpc_thread.\n\n[596663.812935] kernel BUG at mm/slub.c:294!\n[596663.812950] invalid opcode: 0000 [#1] SMP PTI\n[596663.812957] CPU: 13 PID: 1475935 Comm: rmmod Kdump: loaded Tainted: G IOE --------- - - 4.18.0-240.el8.x86_64 #1\n[596663.812960] Hardware name: HP ProLiant DL380p Gen8, BIOS P70 08/20/2012\n[596663.812974] RIP: 0010:__slab_free+0x17d/0x360\n\n...\n[596663.813008] Call Trace:\n[596663.813022] ? __dentry_kill+0x121/0x170\n[596663.813030] ? _cond_resched+0x15/0x30\n[596663.813034] ? _cond_resched+0x15/0x30\n[596663.813039] ? wait_for_completion+0x35/0x190\n[596663.813048] ? try_to_wake_up+0x63/0x540\n[596663.813055] free_task+0x5a/0x60\n[596663.813061] kthread_stop+0xf3/0x100\n[596663.813103] qla2x00_remove_one+0x284/0x440 [qla2xxx]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56623",
"url": "https://www.suse.com/security/cve/CVE-2024-56623"
},
{
"category": "external",
"summary": "SUSE Bug 1235466 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235466"
},
{
"category": "external",
"summary": "SUSE Bug 1235468 for CVE-2024-56623",
"url": "https://bugzilla.suse.com/1235468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56623"
},
{
"cve": "CVE-2024-56625",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56625"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: dev: can_set_termination(): allow sleeping GPIOs\n\nIn commit 6e86a1543c37 (\"can: dev: provide optional GPIO based\ntermination support\") GPIO based termination support was added.\n\nFor no particular reason that patch uses gpiod_set_value() to set the\nGPIO. This leads to the following warning, if the systems uses a\nsleeping GPIO, i.e. behind an I2C port expander:\n\n| WARNING: CPU: 0 PID: 379 at /drivers/gpio/gpiolib.c:3496 gpiod_set_value+0x50/0x6c\n| CPU: 0 UID: 0 PID: 379 Comm: ip Not tainted 6.11.0-20241016-1 #1 823affae360cc91126e4d316d7a614a8bf86236c\n\nReplace gpiod_set_value() by gpiod_set_value_cansleep() to allow the\nuse of sleeping GPIOs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56625",
"url": "https://www.suse.com/security/cve/CVE-2024-56625"
},
{
"category": "external",
"summary": "SUSE Bug 1235223 for CVE-2024-56625",
"url": "https://bugzilla.suse.com/1235223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56625"
},
{
"cve": "CVE-2024-56629",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56629"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: wacom: fix when get product name maybe null pointer\n\nDue to incorrect dev-\u003eproduct reporting by certain devices, null\npointer dereferences occur when dev-\u003eproduct is empty, leading to\npotential system crashes.\n\nThis issue was found on EXCELSIOR DL37-D05 device with\nLoongson-LS3A6000-7A2000-DL37 motherboard.\n\nKernel logs:\n[ 56.470885] usb 4-3: new full-speed USB device number 4 using ohci-pci\n[ 56.671638] usb 4-3: string descriptor 0 read error: -22\n[ 56.671644] usb 4-3: New USB device found, idVendor=056a, idProduct=0374, bcdDevice= 1.07\n[ 56.671647] usb 4-3: New USB device strings: Mfr=1, Product=2, SerialNumber=3\n[ 56.678839] hid-generic 0003:056A:0374.0004: hiddev0,hidraw3: USB HID v1.10 Device [HID 056a:0374] on usb-0000:00:05.0-3/input0\n[ 56.697719] CPU 2 Unable to handle kernel paging request at virtual address 0000000000000000, era == 90000000066e35c8, ra == ffff800004f98a80\n[ 56.697732] Oops[#1]:\n[ 56.697734] CPU: 2 PID: 2742 Comm: (udev-worker) Tainted: G OE 6.6.0-loong64-desktop #25.00.2000.015\n[ 56.697737] Hardware name: Inspur CE520L2/C09901N000000000, BIOS 2.09.00 10/11/2024\n[ 56.697739] pc 90000000066e35c8 ra ffff800004f98a80 tp 9000000125478000 sp 900000012547b8a0\n[ 56.697741] a0 0000000000000000 a1 ffff800004818b28 a2 0000000000000000 a3 0000000000000000\n[ 56.697743] a4 900000012547b8f0 a5 0000000000000000 a6 0000000000000000 a7 0000000000000000\n[ 56.697745] t0 ffff800004818b2d t1 0000000000000000 t2 0000000000000003 t3 0000000000000005\n[ 56.697747] t4 0000000000000000 t5 0000000000000000 t6 0000000000000000 t7 0000000000000000\n[ 56.697748] t8 0000000000000000 u0 0000000000000000 s9 0000000000000000 s0 900000011aa48028\n[ 56.697750] s1 0000000000000000 s2 0000000000000000 s3 ffff800004818e80 s4 ffff800004810000\n[ 56.697751] s5 90000001000b98d0 s6 ffff800004811f88 s7 ffff800005470440 s8 0000000000000000\n[ 56.697753] ra: ffff800004f98a80 wacom_update_name+0xe0/0x300 [wacom]\n[ 56.697802] ERA: 90000000066e35c8 strstr+0x28/0x120\n[ 56.697806] CRMD: 000000b0 (PLV0 -IE -DA +PG DACF=CC DACM=CC -WE)\n[ 56.697816] PRMD: 0000000c (PPLV0 +PIE +PWE)\n[ 56.697821] EUEN: 00000000 (-FPE -SXE -ASXE -BTE)\n[ 56.697827] ECFG: 00071c1d (LIE=0,2-4,10-12 VS=7)\n[ 56.697831] ESTAT: 00010000 [PIL] (IS= ECode=1 EsubCode=0)\n[ 56.697835] BADV: 0000000000000000\n[ 56.697836] PRID: 0014d000 (Loongson-64bit, Loongson-3A6000)\n[ 56.697838] Modules linked in: wacom(+) bnep bluetooth rfkill qrtr nls_iso8859_1 nls_cp437 snd_hda_codec_conexant snd_hda_codec_generic ledtrig_audio snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd soundcore input_leds mousedev led_class joydev deepin_netmonitor(OE) fuse nfnetlink dmi_sysfs ip_tables x_tables overlay amdgpu amdxcp drm_exec gpu_sched drm_buddy radeon drm_suballoc_helper i2c_algo_bit drm_ttm_helper r8169 ttm drm_display_helper spi_loongson_pci xhci_pci cec xhci_pci_renesas spi_loongson_core hid_generic realtek gpio_loongson_64bit\n[ 56.697887] Process (udev-worker) (pid: 2742, threadinfo=00000000aee0d8b4, task=00000000a9eff1f3)\n[ 56.697890] Stack : 0000000000000000 ffff800004817e00 0000000000000000 0000251c00000000\n[ 56.697896] 0000000000000000 00000011fffffffd 0000000000000000 0000000000000000\n[ 56.697901] 0000000000000000 1b67a968695184b9 0000000000000000 90000001000b98d0\n[ 56.697906] 90000001000bb8d0 900000011aa48028 0000000000000000 ffff800004f9d74c\n[ 56.697911] 90000001000ba000 ffff800004f9ce58 0000000000000000 ffff800005470440\n[ 56.697916] ffff800004811f88 90000001000b98d0 9000000100da2aa8 90000001000bb8d0\n[ 56.697921] 0000000000000000 90000001000ba000 900000011aa48028 ffff800004f9d74c\n[ 56.697926] ffff8000054704e8 90000001000bb8b8 90000001000ba000 0000000000000000\n[ 56.697931] 90000001000bb8d0 \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56629",
"url": "https://www.suse.com/security/cve/CVE-2024-56629"
},
{
"category": "external",
"summary": "SUSE Bug 1235473 for CVE-2024-56629",
"url": "https://bugzilla.suse.com/1235473"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56629"
},
{
"cve": "CVE-2024-56630",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56630"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: free inode when ocfs2_get_init_inode() fails\n\nsyzbot is reporting busy inodes after unmount, for commit 9c89fe0af826\n(\"ocfs2: Handle error from dquot_initialize()\") forgot to call iput() when\nnew_inode() succeeded and dquot_initialize() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56630",
"url": "https://www.suse.com/security/cve/CVE-2024-56630"
},
{
"category": "external",
"summary": "SUSE Bug 1235479 for CVE-2024-56630",
"url": "https://bugzilla.suse.com/1235479"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56630"
},
{
"cve": "CVE-2024-56631",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56631"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Fix slab-use-after-free read in sg_release()\n\nFix a use-after-free bug in sg_release(), detected by syzbot with KASAN:\n\nBUG: KASAN: slab-use-after-free in lock_release+0x151/0xa30\nkernel/locking/lockdep.c:5838\n__mutex_unlock_slowpath+0xe2/0x750 kernel/locking/mutex.c:912\nsg_release+0x1f4/0x2e0 drivers/scsi/sg.c:407\n\nIn sg_release(), the function kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) is\ncalled before releasing the open_rel_lock mutex. The kref_put() call may\ndecrement the reference count of sfp to zero, triggering its cleanup\nthrough sg_remove_sfp(). This cleanup includes scheduling deferred work\nvia sg_remove_sfp_usercontext(), which ultimately frees sfp.\n\nAfter kref_put(), sg_release() continues to unlock open_rel_lock and may\nreference sfp or sdp. If sfp has already been freed, this results in a\nslab-use-after-free error.\n\nMove the kref_put(\u0026sfp-\u003ef_ref, sg_remove_sfp) call after unlocking the\nopen_rel_lock mutex. This ensures:\n\n - No references to sfp or sdp occur after the reference count is\n decremented.\n\n - Cleanup functions such as sg_remove_sfp() and\n sg_remove_sfp_usercontext() can safely execute without impacting the\n mutex handling in sg_release().\n\nThe fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures proper\nsequencing of resource cleanup and mutex operations, eliminating the\nrisk of use-after-free errors in sg_release().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56631",
"url": "https://www.suse.com/security/cve/CVE-2024-56631"
},
{
"category": "external",
"summary": "SUSE Bug 1235480 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235480"
},
{
"category": "external",
"summary": "SUSE Bug 1235482 for CVE-2024-56631",
"url": "https://bugzilla.suse.com/1235482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56631"
},
{
"cve": "CVE-2024-56632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: fix the memleak while create new ctrl failed\n\nNow while we create new ctrl failed, we have not free the\ntagset occupied by admin_q, here try to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56632",
"url": "https://www.suse.com/security/cve/CVE-2024-56632"
},
{
"category": "external",
"summary": "SUSE Bug 1235483 for CVE-2024-56632",
"url": "https://bugzilla.suse.com/1235483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56632"
},
{
"cve": "CVE-2024-56634",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56634"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: grgpio: Add NULL check in grgpio_probe\n\ndevm_kasprintf() can return a NULL pointer on failure,but this\nreturned value in grgpio_probe is not checked.\nAdd NULL check in grgpio_probe, to handle kernel NULL\npointer dereference error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56634",
"url": "https://www.suse.com/security/cve/CVE-2024-56634"
},
{
"category": "external",
"summary": "SUSE Bug 1235486 for CVE-2024-56634",
"url": "https://bugzilla.suse.com/1235486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56634"
},
{
"cve": "CVE-2024-56635",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56635"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: avoid potential UAF in default_operstate()\n\nsyzbot reported an UAF in default_operstate() [1]\n\nIssue is a race between device and netns dismantles.\n\nAfter calling __rtnl_unlock() from netdev_run_todo(),\nwe can not assume the netns of each device is still alive.\n\nMake sure the device is not in NETREG_UNREGISTERED state,\nand add an ASSERT_RTNL() before the call to\n__dev_get_by_index().\n\nWe might move this ASSERT_RTNL() in __dev_get_by_index()\nin the future.\n\n[1]\n\nBUG: KASAN: slab-use-after-free in __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\nRead of size 8 at addr ffff888043eba1b0 by task syz.0.0/5339\n\nCPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __dev_get_by_index+0x5d/0x110 net/core/dev.c:852\n default_operstate net/core/link_watch.c:51 [inline]\n rfc2863_policy+0x224/0x300 net/core/link_watch.c:67\n linkwatch_do_dev+0x3e/0x170 net/core/link_watch.c:170\n netdev_run_todo+0x461/0x1000 net/core/dev.c:10894\n rtnl_unlock net/core/rtnetlink.c:152 [inline]\n rtnl_net_unlock include/linux/rtnetlink.h:133 [inline]\n rtnl_dellink+0x760/0x8d0 net/core/rtnetlink.c:3520\n rtnetlink_rcv_msg+0x791/0xcf0 net/core/rtnetlink.c:6911\n netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2541\n netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]\n netlink_unicast+0x7f6/0x990 net/netlink/af_netlink.c:1347\n netlink_sendmsg+0x8e4/0xcb0 net/netlink/af_netlink.c:1891\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:726\n ____sys_sendmsg+0x52a/0x7e0 net/socket.c:2583\n ___sys_sendmsg net/socket.c:2637 [inline]\n __sys_sendmsg+0x269/0x350 net/socket.c:2669\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f2a3cb80809\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f2a3d9cd058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f2a3cd45fa0 RCX: 00007f2a3cb80809\nRDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000008\nRBP: 00007f2a3cbf393e R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f2a3cd45fa0 R15: 00007ffd03bc65c8\n \u003c/TASK\u003e\n\nAllocated by task 5339:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:394\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __kmalloc_cache_noprof+0x243/0x390 mm/slub.c:4314\n kmalloc_noprof include/linux/slab.h:901 [inline]\n kmalloc_array_noprof include/linux/slab.h:945 [inline]\n netdev_create_hash net/core/dev.c:11870 [inline]\n netdev_init+0x10c/0x250 net/core/dev.c:11890\n ops_init+0x31e/0x590 net/core/net_namespace.c:138\n setup_net+0x287/0x9e0 net/core/net_namespace.c:362\n copy_net_ns+0x33f/0x570 net/core/net_namespace.c:500\n create_new_namespaces+0x425/0x7b0 kernel/nsproxy.c:110\n unshare_nsproxy_namespaces+0x124/0x180 kernel/nsproxy.c:228\n ksys_unshare+0x57d/0xa70 kernel/fork.c:3314\n __do_sys_unshare kernel/fork.c:3385 [inline]\n __se_sys_unshare kernel/fork.c:3383 [inline]\n __x64_sys_unshare+0x38/0x40 kernel/fork.c:3383\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x8\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56635",
"url": "https://www.suse.com/security/cve/CVE-2024-56635"
},
{
"category": "external",
"summary": "SUSE Bug 1235519 for CVE-2024-56635",
"url": "https://bugzilla.suse.com/1235519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56635"
},
{
"cve": "CVE-2024-56636",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56636"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: do not assume mac header is set in geneve_xmit_skb()\n\nWe should not assume mac header is set in output path.\n\nUse skb_eth_hdr() instead of eth_hdr() to fix the issue.\n\nsysbot reported the following :\n\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 skb_mac_header include/linux/skbuff.h:3052 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 eth_hdr include/linux/if_ether.h:24 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n WARNING: CPU: 0 PID: 11635 at include/linux/skbuff.h:3052 geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nModules linked in:\nCPU: 0 UID: 0 PID: 11635 Comm: syz.4.1423 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_mac_header include/linux/skbuff.h:3052 [inline]\n RIP: 0010:eth_hdr include/linux/if_ether.h:24 [inline]\n RIP: 0010:geneve_xmit_skb drivers/net/geneve.c:898 [inline]\n RIP: 0010:geneve_xmit+0x4c38/0x5730 drivers/net/geneve.c:1039\nCode: 21 c6 02 e9 35 d4 ff ff e8 a5 48 4c fb 90 0f 0b 90 e9 fd f5 ff ff e8 97 48 4c fb 90 0f 0b 90 e9 d8 f5 ff ff e8 89 48 4c fb 90 \u003c0f\u003e 0b 90 e9 41 e4 ff ff e8 7b 48 4c fb 90 0f 0b 90 e9 cd e7 ff ff\nRSP: 0018:ffffc90003b2f870 EFLAGS: 00010283\nRAX: 000000000000037a RBX: 000000000000ffff RCX: ffffc9000dc3d000\nRDX: 0000000000080000 RSI: ffffffff86428417 RDI: 0000000000000003\nRBP: ffffc90003b2f9f0 R08: 0000000000000003 R09: 000000000000ffff\nR10: 000000000000ffff R11: 0000000000000002 R12: ffff88806603c000\nR13: 0000000000000000 R14: ffff8880685b2780 R15: 0000000000000e23\nFS: 00007fdc2deed6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000001b30a1dff8 CR3: 0000000056b8c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n __dev_direct_xmit+0x58a/0x720 net/core/dev.c:4490\n dev_direct_xmit include/linux/netdevice.h:3181 [inline]\n packet_xmit+0x1e4/0x360 net/packet/af_packet.c:285\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x2700/0x5660 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg net/socket.c:726 [inline]\n __sys_sendto+0x488/0x4f0 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2200\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56636",
"url": "https://www.suse.com/security/cve/CVE-2024-56636"
},
{
"category": "external",
"summary": "SUSE Bug 1235520 for CVE-2024-56636",
"url": "https://bugzilla.suse.com/1235520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56636"
},
{
"cve": "CVE-2024-56637",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56637"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ipset: Hold module reference while requesting a module\n\nUser space may unload ip_set.ko while it is itself requesting a set type\nbackend module, leading to a kernel crash. The race condition may be\nprovoked by inserting an mdelay() right after the nfnl_unlock() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56637",
"url": "https://www.suse.com/security/cve/CVE-2024-56637"
},
{
"category": "external",
"summary": "SUSE Bug 1235523 for CVE-2024-56637",
"url": "https://bugzilla.suse.com/1235523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56637"
},
{
"cve": "CVE-2024-56641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56641"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: initialize close_work early to avoid warning\n\nWe encountered a warning that close_work was canceled before\ninitialization.\n\n WARNING: CPU: 7 PID: 111103 at kernel/workqueue.c:3047 __flush_work+0x19e/0x1b0\n Workqueue: events smc_lgr_terminate_work [smc]\n RIP: 0010:__flush_work+0x19e/0x1b0\n Call Trace:\n ? __wake_up_common+0x7a/0x190\n ? work_busy+0x80/0x80\n __cancel_work_timer+0xe3/0x160\n smc_close_cancel_work+0x1a/0x70 [smc]\n smc_close_active_abort+0x207/0x360 [smc]\n __smc_lgr_terminate.part.38+0xc8/0x180 [smc]\n process_one_work+0x19e/0x340\n worker_thread+0x30/0x370\n ? process_one_work+0x340/0x340\n kthread+0x117/0x130\n ? __kthread_cancel_work+0x50/0x50\n ret_from_fork+0x22/0x30\n\nThis is because when smc_close_cancel_work is triggered, e.g. the RDMA\ndriver is rmmod and the LGR is terminated, the conn-\u003eclose_work is\nflushed before initialization, resulting in WARN_ON(!work-\u003efunc).\n\n__smc_lgr_terminate | smc_connect_{rdma|ism}\n-------------------------------------------------------------\n | smc_conn_create\n\t\t\t\t| \\- smc_lgr_register_conn\nfor conn in lgr-\u003econns_all |\n\\- smc_conn_kill |\n \\- smc_close_active_abort |\n \\- smc_close_cancel_work |\n \\- cancel_work_sync |\n \\- __flush_work |\n\t (close_work) |\n\t | smc_close_init\n\t | \\- INIT_WORK(\u0026close_work)\n\nSo fix this by initializing close_work before establishing the\nconnection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56641",
"url": "https://www.suse.com/security/cve/CVE-2024-56641"
},
{
"category": "external",
"summary": "SUSE Bug 1235526 for CVE-2024-56641",
"url": "https://bugzilla.suse.com/1235526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56641"
},
{
"cve": "CVE-2024-56642",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56642"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free of kernel socket in cleanup_bearer().\n\nsyzkaller reported a use-after-free of UDP kernel socket\nin cleanup_bearer() without repro. [0][1]\n\nWhen bearer_disable() calls tipc_udp_disable(), cleanup\nof the UDP kernel socket is deferred by work calling\ncleanup_bearer().\n\ntipc_exit_net() waits for such works to finish by checking\ntipc_net(net)-\u003ewq_count. However, the work decrements the\ncount too early before releasing the kernel socket,\nunblocking cleanup_net() and resulting in use-after-free.\n\nLet\u0027s move the decrement after releasing the socket in\ncleanup_bearer().\n\n[0]:\nref_tracker: net notrefcnt@000000009b3d1faf has 1/1 users at\n sk_alloc+0x438/0x608\n inet_create+0x4c8/0xcb0\n __sock_create+0x350/0x6b8\n sock_create_kern+0x58/0x78\n udp_sock_create4+0x68/0x398\n udp_sock_create+0x88/0xc8\n tipc_udp_enable+0x5e8/0x848\n __tipc_nl_bearer_enable+0x84c/0xed8\n tipc_nl_bearer_enable+0x38/0x60\n genl_family_rcv_msg_doit+0x170/0x248\n genl_rcv_msg+0x400/0x5b0\n netlink_rcv_skb+0x1dc/0x398\n genl_rcv+0x44/0x68\n netlink_unicast+0x678/0x8b0\n netlink_sendmsg+0x5e4/0x898\n ____sys_sendmsg+0x500/0x830\n\n[1]:\nBUG: KMSAN: use-after-free in udp_hashslot include/net/udp.h:85 [inline]\nBUG: KMSAN: use-after-free in udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n udp_hashslot include/net/udp.h:85 [inline]\n udp_lib_unhash+0x3b8/0x930 net/ipv4/udp.c:1979\n sk_common_release+0xaf/0x3f0 net/core/sock.c:3820\n inet_release+0x1e0/0x260 net/ipv4/af_inet.c:437\n inet6_release+0x6f/0xd0 net/ipv6/af_inet6.c:489\n __sock_release net/socket.c:658 [inline]\n sock_release+0xa0/0x210 net/socket.c:686\n cleanup_bearer+0x42d/0x4c0 net/tipc/udp_media.c:819\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nUninit was created at:\n slab_free_hook mm/slub.c:2269 [inline]\n slab_free mm/slub.c:4580 [inline]\n kmem_cache_free+0x207/0xc40 mm/slub.c:4682\n net_free net/core/net_namespace.c:454 [inline]\n cleanup_net+0x16f2/0x19d0 net/core/net_namespace.c:647\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xcaf/0x1c90 kernel/workqueue.c:3310\n worker_thread+0xf6c/0x1510 kernel/workqueue.c:3391\n kthread+0x531/0x6b0 kernel/kthread.c:389\n ret_from_fork+0x60/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:244\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/0:2 Not tainted 6.12.0-rc1-00131-gf66ebf37d69c #7 91723d6f74857f70725e1583cba3cf4adc716cfa\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nWorkqueue: events cleanup_bearer",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56642",
"url": "https://www.suse.com/security/cve/CVE-2024-56642"
},
{
"category": "external",
"summary": "SUSE Bug 1235433 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235433"
},
{
"category": "external",
"summary": "SUSE Bug 1235434 for CVE-2024-56642",
"url": "https://bugzilla.suse.com/1235434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56642"
},
{
"cve": "CVE-2024-56643",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56643"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: Fix memory leak in dccp_feat_change_recv\n\nIf dccp_feat_push_confirm() fails after new value for SP feature was accepted\nwithout reconciliation (\u0027entry == NULL\u0027 branch), memory allocated for that value\nwith dccp_feat_clone_sp_val() is never freed.\n\nHere is the kmemleak stack for this:\n\nunreferenced object 0xffff88801d4ab488 (size 8):\n comm \"syz-executor310\", pid 1127, jiffies 4295085598 (age 41.666s)\n hex dump (first 8 bytes):\n 01 b4 4a 1d 80 88 ff ff ..J.....\n backtrace:\n [\u003c00000000db7cabfe\u003e] kmemdup+0x23/0x50 mm/util.c:128\n [\u003c0000000019b38405\u003e] kmemdup include/linux/string.h:465 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:371 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_clone_sp_val net/dccp/feat.c:367 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_change_recv net/dccp/feat.c:1145 [inline]\n [\u003c0000000019b38405\u003e] dccp_feat_parse_options+0x1196/0x2180 net/dccp/feat.c:1416\n [\u003c00000000b1f6d94a\u003e] dccp_parse_options+0xa2a/0x1260 net/dccp/options.c:125\n [\u003c0000000030d7b621\u003e] dccp_rcv_state_process+0x197/0x13d0 net/dccp/input.c:650\n [\u003c000000001f74c72e\u003e] dccp_v4_do_rcv+0xf9/0x1a0 net/dccp/ipv4.c:688\n [\u003c00000000a6c24128\u003e] sk_backlog_rcv include/net/sock.h:1041 [inline]\n [\u003c00000000a6c24128\u003e] __release_sock+0x139/0x3b0 net/core/sock.c:2570\n [\u003c00000000cf1f3a53\u003e] release_sock+0x54/0x1b0 net/core/sock.c:3111\n [\u003c000000008422fa23\u003e] inet_wait_for_connect net/ipv4/af_inet.c:603 [inline]\n [\u003c000000008422fa23\u003e] __inet_stream_connect+0x5d0/0xf70 net/ipv4/af_inet.c:696\n [\u003c0000000015b6f64d\u003e] inet_stream_connect+0x53/0xa0 net/ipv4/af_inet.c:735\n [\u003c0000000010122488\u003e] __sys_connect_file+0x15c/0x1a0 net/socket.c:1865\n [\u003c00000000b4b70023\u003e] __sys_connect+0x165/0x1a0 net/socket.c:1882\n [\u003c00000000f4cb3815\u003e] __do_sys_connect net/socket.c:1892 [inline]\n [\u003c00000000f4cb3815\u003e] __se_sys_connect net/socket.c:1889 [inline]\n [\u003c00000000f4cb3815\u003e] __x64_sys_connect+0x6e/0xb0 net/socket.c:1889\n [\u003c00000000e7b1e839\u003e] do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46\n [\u003c0000000055e91434\u003e] entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nClean up the allocated memory in case of dccp_feat_push_confirm() failure\nand bail out with an error reset code.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56643",
"url": "https://www.suse.com/security/cve/CVE-2024-56643"
},
{
"category": "external",
"summary": "SUSE Bug 1235132 for CVE-2024-56643",
"url": "https://bugzilla.suse.com/1235132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56643"
},
{
"cve": "CVE-2024-56644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56644"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ipv6: release expired exception dst cached in socket\n\nDst objects get leaked in ip6_negative_advice() when this function is\nexecuted for an expired IPv6 route located in the exception table. There\nare several conditions that must be fulfilled for the leak to occur:\n* an ICMPv6 packet indicating a change of the MTU for the path is received,\n resulting in an exception dst being created\n* a TCP connection that uses the exception dst for routing packets must\n start timing out so that TCP begins retransmissions\n* after the exception dst expires, the FIB6 garbage collector must not run\n before TCP executes ip6_negative_advice() for the expired exception dst\n\nWhen TCP executes ip6_negative_advice() for an exception dst that has\nexpired and if no other socket holds a reference to the exception dst, the\nrefcount of the exception dst is 2, which corresponds to the increment\nmade by dst_init() and the increment made by the TCP socket for which the\nconnection is timing out. The refcount made by the socket is never\nreleased. The refcount of the dst is decremented in sk_dst_reset() but\nthat decrement is counteracted by a dst_hold() intentionally placed just\nbefore the sk_dst_reset() in ip6_negative_advice(). After\nip6_negative_advice() has finished, there is no other object tied to the\ndst. The socket lost its reference stored in sk_dst_cache and the dst is\nno longer in the exception table. The exception dst becomes a leaked\nobject.\n\nAs a result of this dst leak, an unbalanced refcount is reported for the\nloopback device of a net namespace being destroyed under kernels that do\nnot contain e5f80fcf869a (\"ipv6: give an IPv6 dev to blackhole_netdev\"):\nunregister_netdevice: waiting for lo to become free. Usage count = 2\n\nFix the dst leak by removing the dst_hold() in ip6_negative_advice(). The\npatch that introduced the dst_hold() in ip6_negative_advice() was\n92f1655aa2b22 (\"net: fix __dst_negative_advice() race\"). But 92f1655aa2b22\nmerely refactored the code with regards to the dst refcount so the issue\nwas present even before 92f1655aa2b22. The bug was introduced in\n54c1a859efd9f (\"ipv6: Don\u0027t drop cache route entry unless timer actually\nexpired.\") where the expired cached route is deleted and the sk_dst_cache\nmember of the socket is set to NULL by calling dst_negative_advice() but\nthe refcount belonging to the socket is left unbalanced.\n\nThe IPv4 version - ipv4_negative_advice() - is not affected by this bug.\nWhen the TCP connection times out ipv4_negative_advice() merely resets the\nsk_dst_cache of the socket while decrementing the refcount of the\nexception dst.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56644",
"url": "https://www.suse.com/security/cve/CVE-2024-56644"
},
{
"category": "external",
"summary": "SUSE Bug 1235133 for CVE-2024-56644",
"url": "https://bugzilla.suse.com/1235133"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56644"
},
{
"cve": "CVE-2024-56645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: j1939: j1939_session_new(): fix skb reference counting\n\nSince j1939_session_skb_queue() does an extra skb_get() for each new\nskb, do the same for the initial one in j1939_session_new() to avoid\nrefcount underflow.\n\n[mkl: clean up commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56645",
"url": "https://www.suse.com/security/cve/CVE-2024-56645"
},
{
"category": "external",
"summary": "SUSE Bug 1235134 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235134"
},
{
"category": "external",
"summary": "SUSE Bug 1235135 for CVE-2024-56645",
"url": "https://bugzilla.suse.com/1235135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56645"
},
{
"cve": "CVE-2024-56648",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56648"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hsr: avoid potential out-of-bound access in fill_frame_info()\n\nsyzbot is able to feed a packet with 14 bytes, pretending\nit is a vlan one.\n\nSince fill_frame_info() is relying on skb-\u003emac_len already,\nextend the check to cover this case.\n\nBUG: KMSAN: uninit-value in fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n BUG: KMSAN: uninit-value in hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n fill_frame_info net/hsr/hsr_forward.c:709 [inline]\n hsr_forward_skb+0x9ee/0x3b10 net/hsr/hsr_forward.c:724\n hsr_dev_xmit+0x2f0/0x350 net/hsr/hsr_device.c:235\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n xmit_one net/core/dev.c:3590 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3606\n __dev_queue_xmit+0x366a/0x57d0 net/core/dev.c:4434\n dev_queue_xmit include/linux/netdevice.h:3168 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3146 [inline]\n packet_sendmsg+0x91ae/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4091 [inline]\n slab_alloc_node mm/slub.c:4134 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4186\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n alloc_skb include/linux/skbuff.h:1323 [inline]\n alloc_skb_with_frags+0xc8/0xd00 net/core/skbuff.c:6612\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2881\n packet_alloc_skb net/packet/af_packet.c:2995 [inline]\n packet_snd net/packet/af_packet.c:3089 [inline]\n packet_sendmsg+0x74c6/0xa6f0 net/packet/af_packet.c:3178\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:726\n __sys_sendto+0x594/0x750 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2200\n x64_sys_call+0x346a/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56648",
"url": "https://www.suse.com/security/cve/CVE-2024-56648"
},
{
"category": "external",
"summary": "SUSE Bug 1235451 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235451"
},
{
"category": "external",
"summary": "SUSE Bug 1235452 for CVE-2024-56648",
"url": "https://bugzilla.suse.com/1235452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56648"
},
{
"cve": "CVE-2024-56649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: Do not configure preemptible TCs if SIs do not support\n\nBoth ENETC PF and VF drivers share enetc_setup_tc_mqprio() to configure\nMQPRIO. And enetc_setup_tc_mqprio() calls enetc_change_preemptible_tcs()\nto configure preemptible TCs. However, only PF is able to configure\npreemptible TCs. Because only PF has related registers, while VF does not\nhave these registers. So for VF, its hw-\u003eport pointer is NULL. Therefore,\nVF will access an invalid pointer when accessing a non-existent register,\nwhich will cause a crash issue. The simplified log is as follows.\n\nroot@ls1028ardb:~# tc qdisc add dev eno0vf0 parent root handle 100: \\\nmqprio num_tc 4 map 0 0 1 1 2 2 3 3 queues 1@0 1@1 1@2 1@3 hw 1\n[ 187.290775] Unable to handle kernel paging request at virtual address 0000000000001f00\n[ 187.424831] pc : enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.430518] lr : enetc_mm_commit_preemptible_tcs+0x30c/0x400\n[ 187.511140] Call trace:\n[ 187.513588] enetc_mm_commit_preemptible_tcs+0x1c4/0x400\n[ 187.518918] enetc_setup_tc_mqprio+0x180/0x214\n[ 187.523374] enetc_vf_setup_tc+0x1c/0x30\n[ 187.527306] mqprio_enable_offload+0x144/0x178\n[ 187.531766] mqprio_init+0x3ec/0x668\n[ 187.535351] qdisc_create+0x15c/0x488\n[ 187.539023] tc_modify_qdisc+0x398/0x73c\n[ 187.542958] rtnetlink_rcv_msg+0x128/0x378\n[ 187.547064] netlink_rcv_skb+0x60/0x130\n[ 187.550910] rtnetlink_rcv+0x18/0x24\n[ 187.554492] netlink_unicast+0x300/0x36c\n[ 187.558425] netlink_sendmsg+0x1a8/0x420\n[ 187.606759] ---[ end trace 0000000000000000 ]---\n\nIn addition, some PFs also do not support configuring preemptible TCs,\nsuch as eno1 and eno3 on LS1028A. It won\u0027t crash like it does for VFs,\nbut we should prevent these PFs from accessing these unimplemented\nregisters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56649",
"url": "https://www.suse.com/security/cve/CVE-2024-56649"
},
{
"category": "external",
"summary": "SUSE Bug 1235449 for CVE-2024-56649",
"url": "https://bugzilla.suse.com/1235449"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56649"
},
{
"cve": "CVE-2024-56650",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56650"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: x_tables: fix LED ID check in led_tg_check()\n\nSyzbot has reported the following BUG detected by KASAN:\n\nBUG: KASAN: slab-out-of-bounds in strlen+0x58/0x70\nRead of size 1 at addr ffff8881022da0c8 by task repro/5879\n...\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x241/0x360\n ? __pfx_dump_stack_lvl+0x10/0x10\n ? __pfx__printk+0x10/0x10\n ? _printk+0xd5/0x120\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x183/0x530\n print_report+0x169/0x550\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x183/0x530\n ? __virt_addr_valid+0x45f/0x530\n ? __phys_addr+0xba/0x170\n ? strlen+0x58/0x70\n kasan_report+0x143/0x180\n ? strlen+0x58/0x70\n strlen+0x58/0x70\n kstrdup+0x20/0x80\n led_tg_check+0x18b/0x3c0\n xt_check_target+0x3bb/0xa40\n ? __pfx_xt_check_target+0x10/0x10\n ? stack_depot_save_flags+0x6e4/0x830\n ? nft_target_init+0x174/0xc30\n nft_target_init+0x82d/0xc30\n ? __pfx_nft_target_init+0x10/0x10\n ? nf_tables_newrule+0x1609/0x2980\n ? nf_tables_newrule+0x1609/0x2980\n ? rcu_is_watching+0x15/0xb0\n ? nf_tables_newrule+0x1609/0x2980\n ? nf_tables_newrule+0x1609/0x2980\n ? __kmalloc_noprof+0x21a/0x400\n nf_tables_newrule+0x1860/0x2980\n ? __pfx_nf_tables_newrule+0x10/0x10\n ? __nla_parse+0x40/0x60\n nfnetlink_rcv+0x14e5/0x2ab0\n ? __pfx_validate_chain+0x10/0x10\n ? __pfx_nfnetlink_rcv+0x10/0x10\n ? __lock_acquire+0x1384/0x2050\n ? netlink_deliver_tap+0x2e/0x1b0\n ? __pfx_lock_release+0x10/0x10\n ? netlink_deliver_tap+0x2e/0x1b0\n netlink_unicast+0x7f8/0x990\n ? __pfx_netlink_unicast+0x10/0x10\n ? __virt_addr_valid+0x183/0x530\n ? __check_object_size+0x48e/0x900\n netlink_sendmsg+0x8e4/0xcb0\n ? __pfx_netlink_sendmsg+0x10/0x10\n ? aa_sock_msg_perm+0x91/0x160\n ? __pfx_netlink_sendmsg+0x10/0x10\n __sock_sendmsg+0x223/0x270\n ____sys_sendmsg+0x52a/0x7e0\n ? __pfx_____sys_sendmsg+0x10/0x10\n __sys_sendmsg+0x292/0x380\n ? __pfx___sys_sendmsg+0x10/0x10\n ? lockdep_hardirqs_on_prepare+0x43d/0x780\n ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10\n ? exc_page_fault+0x590/0x8c0\n ? do_syscall_64+0xb6/0x230\n do_syscall_64+0xf3/0x230\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n \u003c/TASK\u003e\n\nSince an invalid (without \u0027\\0\u0027 byte at all) byte sequence may be passed\nfrom userspace, add an extra check to ensure that such a sequence is\nrejected as possible ID and so never passed to \u0027kstrdup()\u0027 and further.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56650",
"url": "https://www.suse.com/security/cve/CVE-2024-56650"
},
{
"category": "external",
"summary": "SUSE Bug 1235430 for CVE-2024-56650",
"url": "https://bugzilla.suse.com/1235430"
},
{
"category": "external",
"summary": "SUSE Bug 1235431 for CVE-2024-56650",
"url": "https://bugzilla.suse.com/1235431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56650"
},
{
"cve": "CVE-2024-56651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: hi311x: hi3110_can_ist(): fix potential use-after-free\n\nThe commit a22bd630cfff (\"can: hi311x: do not report txerr and rxerr\nduring bus-off\") removed the reporting of rxerr and txerr even in case\nof correct operation (i. e. not bus-off).\n\nThe error count information added to the CAN frame after netif_rx() is\na potential use after free, since there is no guarantee that the skb\nis in the same state. It might be freed or reused.\n\nFix the issue by postponing the netif_rx() call in case of txerr and\nrxerr reporting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56651",
"url": "https://www.suse.com/security/cve/CVE-2024-56651"
},
{
"category": "external",
"summary": "SUSE Bug 1235528 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1235528"
},
{
"category": "external",
"summary": "SUSE Bug 1236570 for CVE-2024-56651",
"url": "https://bugzilla.suse.com/1236570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56651"
},
{
"cve": "CVE-2024-56654",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56654"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: Fix using rcu_read_(un)lock while iterating\n\nThe usage of rcu_read_(un)lock while inside list_for_each_entry_rcu is\nnot safe since for the most part entries fetched this way shall be\ntreated as rcu_dereference:\n\n\tNote that the value returned by rcu_dereference() is valid\n\tonly within the enclosing RCU read-side critical section [1]_.\n\tFor example, the following is **not** legal::\n\n\t\trcu_read_lock();\n\t\tp = rcu_dereference(head.next);\n\t\trcu_read_unlock();\n\t\tx = p-\u003eaddress;\t/* BUG!!! */\n\t\trcu_read_lock();\n\t\ty = p-\u003edata;\t/* BUG!!! */\n\t\trcu_read_unlock();",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56654",
"url": "https://www.suse.com/security/cve/CVE-2024-56654"
},
{
"category": "external",
"summary": "SUSE Bug 1235532 for CVE-2024-56654",
"url": "https://bugzilla.suse.com/1235532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56654"
},
{
"cve": "CVE-2024-56656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix aggregation ID mask to prevent oops on 5760X chips\n\nThe 5760X (P7) chip\u0027s HW GRO/LRO interface is very similar to that of\nthe previous generation (5750X or P5). However, the aggregation ID\nfields in the completion structures on P7 have been redefined from\n16 bits to 12 bits. The freed up 4 bits are redefined for part of the\nmetadata such as the VLAN ID. The aggregation ID mask was not modified\nwhen adding support for P7 chips. Including the extra 4 bits for the\naggregation ID can potentially cause the driver to store or fetch the\npacket header of GRO/LRO packets in the wrong TPA buffer. It may hit\nthe BUG() condition in __skb_pull() because the SKB contains no valid\npacket header:\n\nkernel BUG at include/linux/skbuff.h:2766!\nOops: invalid opcode: 0000 1 PREEMPT SMP NOPTI\nCPU: 4 UID: 0 PID: 0 Comm: swapper/4 Kdump: loaded Tainted: G OE 6.12.0-rc2+ #7\nTainted: [O]=OOT_MODULE, [E]=UNSIGNED_MODULE\nHardware name: Dell Inc. PowerEdge R760/0VRV9X, BIOS 1.0.1 12/27/2022\nRIP: 0010:eth_type_trans+0xda/0x140\nCode: 80 00 00 00 eb c1 8b 47 70 2b 47 74 48 8b 97 d0 00 00 00 83 f8 01 7e 1b 48 85 d2 74 06 66 83 3a ff 74 09 b8 00 04 00 00 eb a5 \u003c0f\u003e 0b b8 00 01 00 00 eb 9c 48 85 ff 74 eb 31 f6 b9 02 00 00 00 48\nRSP: 0018:ff615003803fcc28 EFLAGS: 00010283\nRAX: 00000000000022d2 RBX: 0000000000000003 RCX: ff2e8c25da334040\nRDX: 0000000000000040 RSI: ff2e8c25c1ce8000 RDI: ff2e8c25869f9000\nRBP: ff2e8c258c31c000 R08: ff2e8c25da334000 R09: 0000000000000001\nR10: ff2e8c25da3342c0 R11: ff2e8c25c1ce89c0 R12: ff2e8c258e0990b0\nR13: ff2e8c25bb120000 R14: ff2e8c25c1ce89c0 R15: ff2e8c25869f9000\nFS: 0000000000000000(0000) GS:ff2e8c34be300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055f05317e4c8 CR3: 000000108bac6006 CR4: 0000000000773ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cIRQ\u003e\n ? die+0x33/0x90\n ? do_trap+0xd9/0x100\n ? eth_type_trans+0xda/0x140\n ? do_error_trap+0x65/0x80\n ? eth_type_trans+0xda/0x140\n ? exc_invalid_op+0x4e/0x70\n ? eth_type_trans+0xda/0x140\n ? asm_exc_invalid_op+0x16/0x20\n ? eth_type_trans+0xda/0x140\n bnxt_tpa_end+0x10b/0x6b0 [bnxt_en]\n ? bnxt_tpa_start+0x195/0x320 [bnxt_en]\n bnxt_rx_pkt+0x902/0xd90 [bnxt_en]\n ? __bnxt_tx_int.constprop.0+0x89/0x300 [bnxt_en]\n ? kmem_cache_free+0x343/0x440\n ? __bnxt_tx_int.constprop.0+0x24f/0x300 [bnxt_en]\n __bnxt_poll_work+0x193/0x370 [bnxt_en]\n bnxt_poll_p5+0x9a/0x300 [bnxt_en]\n ? try_to_wake_up+0x209/0x670\n __napi_poll+0x29/0x1b0\n\nFix it by redefining the aggregation ID mask for P5_PLUS chips to be\n12 bits. This will work because the maximum aggregation ID is less\nthan 4096 on all P5_PLUS chips.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56656",
"url": "https://www.suse.com/security/cve/CVE-2024-56656"
},
{
"category": "external",
"summary": "SUSE Bug 1235444 for CVE-2024-56656",
"url": "https://bugzilla.suse.com/1235444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56656"
},
{
"cve": "CVE-2024-56659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56659"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: lapb: increase LAPB_HEADER_LEN\n\nIt is unclear if net/lapb code is supposed to be ready for 8021q.\n\nWe can at least avoid crashes like the following :\n\nskbuff: skb_under_panic: text:ffffffff8aabe1f6 len:24 put:20 head:ffff88802824a400 data:ffff88802824a3fe tail:0x16 end:0x140 dev:nr0.2\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 5508 Comm: dhcpcd Not tainted 6.12.0-rc7-syzkaller-00144-g66418447d27b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 2e 9e 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 1a 6f 37 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc90002ddf638 EFLAGS: 00010282\nRAX: 0000000000000086 RBX: dffffc0000000000 RCX: 7a24750e538ff600\nRDX: 0000000000000000 RSI: 0000000000000201 RDI: 0000000000000000\nRBP: ffff888034a86650 R08: ffffffff8174b13c R09: 1ffff920005bbe60\nR10: dffffc0000000000 R11: fffff520005bbe61 R12: 0000000000000140\nR13: ffff88802824a400 R14: ffff88802824a3fe R15: 0000000000000016\nFS: 00007f2a5990d740(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c2631fd CR3: 0000000029504000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n nr_header+0x36/0x320 net/netrom/nr_dev.c:69\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n vlan_dev_hard_header+0x359/0x480 net/8021q/vlan_dev.c:83\n dev_hard_header include/linux/netdevice.h:3148 [inline]\n lapbeth_data_transmit+0x1f6/0x2a0 drivers/net/wan/lapbether.c:257\n lapb_data_transmit+0x91/0xb0 net/lapb/lapb_iface.c:447\n lapb_transmit_buffer+0x168/0x1f0 net/lapb/lapb_out.c:149\n lapb_establish_data_link+0x84/0xd0\n lapb_device_event+0x4e0/0x670\n notifier_call_chain+0x19f/0x3e0 kernel/notifier.c:93\n __dev_notify_flags+0x207/0x400\n dev_change_flags+0xf0/0x1a0 net/core/dev.c:8922\n devinet_ioctl+0xa4e/0x1aa0 net/ipv4/devinet.c:1188\n inet_ioctl+0x3d7/0x4f0 net/ipv4/af_inet.c:1003\n sock_do_ioctl+0x158/0x460 net/socket.c:1227\n sock_ioctl+0x626/0x8e0 net/socket.c:1346\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xf9/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56659",
"url": "https://www.suse.com/security/cve/CVE-2024-56659"
},
{
"category": "external",
"summary": "SUSE Bug 1235439 for CVE-2024-56659",
"url": "https://bugzilla.suse.com/1235439"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56659"
},
{
"cve": "CVE-2024-56660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56660"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: DR, prevent potential error pointer dereference\n\nThe dr_domain_add_vport_cap() function generally returns NULL on error\nbut sometimes we want it to return ERR_PTR(-EBUSY) so the caller can\nretry. The problem here is that \"ret\" can be either -EBUSY or -ENOMEM\nand if it\u0027s and -ENOMEM then the error pointer is propogated back and\neventually dereferenced in dr_ste_v0_build_src_gvmi_qpn_tag().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56660",
"url": "https://www.suse.com/security/cve/CVE-2024-56660"
},
{
"category": "external",
"summary": "SUSE Bug 1235437 for CVE-2024-56660",
"url": "https://bugzilla.suse.com/1235437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56660"
},
{
"cve": "CVE-2024-56661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56661"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix NULL deref in cleanup_bearer()\n\nsyzbot found [1] that after blamed commit, ub-\u003eubsock-\u003esk\nwas NULL when attempting the atomic_dec() :\n\natomic_dec(\u0026tipc_net(sock_net(ub-\u003eubsock-\u003esk))-\u003ewq_count);\n\nFix this by caching the tipc_net pointer.\n\n[1]\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]\nCPU: 0 UID: 0 PID: 5896 Comm: kworker/0:3 Not tainted 6.13.0-rc1-next-20241203-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events cleanup_bearer\n RIP: 0010:read_pnet include/net/net_namespace.h:387 [inline]\n RIP: 0010:sock_net include/net/sock.h:655 [inline]\n RIP: 0010:cleanup_bearer+0x1f7/0x280 net/tipc/udp_media.c:820\nCode: 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 3c f7 99 f6 48 8b 1b 48 83 c3 30 e8 f0 e4 60 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 28 00 74 08 48 89 df e8 1a f7 99 f6 49 83 c7 e8 48 8b 1b\nRSP: 0018:ffffc9000410fb70 EFLAGS: 00010206\nRAX: 0000000000000006 RBX: 0000000000000030 RCX: ffff88802fe45a00\nRDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc9000410f900\nRBP: ffff88807e1f0908 R08: ffffc9000410f907 R09: 1ffff92000821f20\nR10: dffffc0000000000 R11: fffff52000821f21 R12: ffff888031d19980\nR13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88807e1f0918\nFS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000556ca050b000 CR3: 0000000031c0c000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56661",
"url": "https://www.suse.com/security/cve/CVE-2024-56661"
},
{
"category": "external",
"summary": "SUSE Bug 1234931 for CVE-2024-56661",
"url": "https://bugzilla.suse.com/1234931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56661"
},
{
"cve": "CVE-2024-56662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nacpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl\n\nFix an issue detected by syzbot with KASAN:\n\nBUG: KASAN: vmalloc-out-of-bounds in cmd_to_func drivers/acpi/nfit/\ncore.c:416 [inline]\nBUG: KASAN: vmalloc-out-of-bounds in acpi_nfit_ctl+0x20e8/0x24a0\ndrivers/acpi/nfit/core.c:459\n\nThe issue occurs in cmd_to_func when the call_pkg-\u003end_reserved2\narray is accessed without verifying that call_pkg points to a buffer\nthat is appropriately sized as a struct nd_cmd_pkg. This can lead\nto out-of-bounds access and undefined behavior if the buffer does not\nhave sufficient space.\n\nTo address this, a check was added in acpi_nfit_ctl() to ensure that\nbuf is not NULL and that buf_len is less than sizeof(*call_pkg)\nbefore accessing it. This ensures safe access to the members of\ncall_pkg, including the nd_reserved2 array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56662",
"url": "https://www.suse.com/security/cve/CVE-2024-56662"
},
{
"category": "external",
"summary": "SUSE Bug 1235533 for CVE-2024-56662",
"url": "https://bugzilla.suse.com/1235533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56662"
},
{
"cve": "CVE-2024-56663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one\n\nSince the netlink attribute range validation provides inclusive\nchecking, the *max* of attribute NL80211_ATTR_MLO_LINK_ID should be\nIEEE80211_MLD_MAX_NUM_LINKS - 1 otherwise causing an off-by-one.\n\nOne crash stack for demonstration:\n==================================================================\nBUG: KASAN: wild-memory-access in ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\nRead of size 6 at addr 001102080000000c by task fuzzer.386/9508\n\nCPU: 1 PID: 9508 Comm: syz.1.386 Not tainted 6.1.70 #2\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x177/0x231 lib/dump_stack.c:106\n print_report+0xe0/0x750 mm/kasan/report.c:398\n kasan_report+0x139/0x170 mm/kasan/report.c:495\n kasan_check_range+0x287/0x290 mm/kasan/generic.c:189\n memcpy+0x25/0x60 mm/kasan/shadow.c:65\n ieee80211_tx_control_port+0x3b6/0xca0 net/mac80211/tx.c:5939\n rdev_tx_control_port net/wireless/rdev-ops.h:761 [inline]\n nl80211_tx_control_port+0x7b3/0xc40 net/wireless/nl80211.c:15453\n genl_family_rcv_msg_doit+0x22e/0x320 net/netlink/genetlink.c:756\n genl_family_rcv_msg net/netlink/genetlink.c:833 [inline]\n genl_rcv_msg+0x539/0x740 net/netlink/genetlink.c:850\n netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2508\n genl_rcv+0x24/0x40 net/netlink/genetlink.c:861\n netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]\n netlink_unicast+0x74b/0x8c0 net/netlink/af_netlink.c:1352\n netlink_sendmsg+0x882/0xb90 net/netlink/af_netlink.c:1874\n sock_sendmsg_nosec net/socket.c:716 [inline]\n __sock_sendmsg net/socket.c:728 [inline]\n ____sys_sendmsg+0x5cc/0x8f0 net/socket.c:2499\n ___sys_sendmsg+0x21c/0x290 net/socket.c:2553\n __sys_sendmsg net/socket.c:2582 [inline]\n __do_sys_sendmsg net/socket.c:2591 [inline]\n __se_sys_sendmsg+0x19e/0x270 net/socket.c:2589\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x45/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUpdate the policy to ensure correct validation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56663",
"url": "https://www.suse.com/security/cve/CVE-2024-56663"
},
{
"category": "external",
"summary": "SUSE Bug 1235454 for CVE-2024-56663",
"url": "https://bugzilla.suse.com/1235454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56663"
},
{
"cve": "CVE-2024-56664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Fix race between element replace and close()\n\nElement replace (with a socket different from the one stored) may race\nwith socket\u0027s close() link popping \u0026 unlinking. __sock_map_delete()\nunconditionally unrefs the (wrong) element:\n\n// set map[0] = s0\nmap_update_elem(map, 0, s0)\n\n// drop fd of s0\nclose(s0)\n sock_map_close()\n lock_sock(sk) (s0!)\n sock_map_remove_links(sk)\n link = sk_psock_link_pop()\n sock_map_unlink(sk, link)\n sock_map_delete_from_link\n // replace map[0] with s1\n map_update_elem(map, 0, s1)\n sock_map_update_elem\n (s1!) lock_sock(sk)\n sock_map_update_common\n psock = sk_psock(sk)\n spin_lock(\u0026stab-\u003elock)\n osk = stab-\u003esks[idx]\n sock_map_add_link(..., \u0026stab-\u003esks[idx])\n sock_map_unref(osk, \u0026stab-\u003esks[idx])\n psock = sk_psock(osk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test(\u0026psock))\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n unlock_sock(sk)\n __sock_map_delete\n spin_lock(\u0026stab-\u003elock)\n sk = *psk // s1 replaced s0; sk == s1\n if (!sk_test || sk_test == sk) // sk_test (s0) != sk (s1); no branch\n sk = xchg(psk, NULL)\n if (sk)\n sock_map_unref(sk, psk) // unref s1; sks[idx] will dangle\n psock = sk_psock(sk)\n sk_psock_put(sk, psock)\n if (refcount_dec_and_test())\n sk_psock_drop(sk, psock)\n spin_unlock(\u0026stab-\u003elock)\n release_sock(sk)\n\nThen close(map) enqueues bpf_map_free_deferred, which finally calls\nsock_map_free(). This results in some refcount_t warnings along with\na KASAN splat [1].\n\nFix __sock_map_delete(), do not allow sock_map_unref() on elements that\nmay have been replaced.\n\n[1]:\nBUG: KASAN: slab-use-after-free in sock_map_free+0x10e/0x330\nWrite of size 4 at addr ffff88811f5b9100 by task kworker/u64:12/1063\n\nCPU: 14 UID: 0 PID: 1063 Comm: kworker/u64:12 Not tainted 6.12.0+ #125\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Arch Linux 1.16.3-1-1 04/01/2014\nWorkqueue: events_unbound bpf_map_free_deferred\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x68/0x90\n print_report+0x174/0x4f6\n kasan_report+0xb9/0x190\n kasan_check_range+0x10f/0x1e0\n sock_map_free+0x10e/0x330\n bpf_map_free_deferred+0x173/0x320\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 1202:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x85/0x90\n kmem_cache_alloc_noprof+0x131/0x450\n sk_prot_alloc+0x5b/0x220\n sk_alloc+0x2c/0x870\n unix_create1+0x88/0x8a0\n unix_create+0xc5/0x180\n __sock_create+0x241/0x650\n __sys_socketpair+0x1ce/0x420\n __x64_sys_socketpair+0x92/0x100\n do_syscall_64+0x93/0x180\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 46:\n kasan_save_stack+0x1e/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x60\n __kasan_slab_free+0x4b/0x70\n kmem_cache_free+0x1a1/0x590\n __sk_destruct+0x388/0x5a0\n sk_psock_destroy+0x73e/0xa50\n process_one_work+0x846/0x1420\n worker_thread+0x5b3/0xf80\n kthread+0x29e/0x360\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x1a/0x30\n\nThe bu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56664",
"url": "https://www.suse.com/security/cve/CVE-2024-56664"
},
{
"category": "external",
"summary": "SUSE Bug 1235249 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235249"
},
{
"category": "external",
"summary": "SUSE Bug 1235250 for CVE-2024-56664",
"url": "https://bugzilla.suse.com/1235250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56664"
},
{
"cve": "CVE-2024-56665",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56665"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog\n\nSyzbot reported [1] crash that happens for following tracing scenario:\n\n - create tracepoint perf event with attr.inherit=1, attach it to the\n process and set bpf program to it\n - attached process forks -\u003e chid creates inherited event\n\n the new child event shares the parent\u0027s bpf program and tp_event\n (hence prog_array) which is global for tracepoint\n\n - exit both process and its child -\u003e release both events\n - first perf_event_detach_bpf_prog call will release tp_event-\u003eprog_array\n and second perf_event_detach_bpf_prog will crash, because\n tp_event-\u003eprog_array is NULL\n\nThe fix makes sure the perf_event_detach_bpf_prog checks prog_array\nis valid before it tries to remove the bpf program from it.\n\n[1] https://lore.kernel.org/bpf/Z1MR6dCIKajNS6nU@krava/T/#m91dbf0688221ec7a7fc95e896a7ef9ff93b0b8ad",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56665",
"url": "https://www.suse.com/security/cve/CVE-2024-56665"
},
{
"category": "external",
"summary": "SUSE Bug 1235489 for CVE-2024-56665",
"url": "https://bugzilla.suse.com/1235489"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56665"
},
{
"cve": "CVE-2024-56667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Fix NULL pointer dereference in capture_engine\n\nWhen the intel_context structure contains NULL,\nit raises a NULL pointer dereference error in drm_info().\n\n(cherry picked from commit 754302a5bc1bd8fd3b7d85c168b0a1af6d4bba4d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56667",
"url": "https://www.suse.com/security/cve/CVE-2024-56667"
},
{
"category": "external",
"summary": "SUSE Bug 1235016 for CVE-2024-56667",
"url": "https://bugzilla.suse.com/1235016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56667"
},
{
"cve": "CVE-2024-56670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56670"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer\n\nConsidering that in some extreme cases,\nwhen u_serial driver is accessed by multiple threads,\nThread A is executing the open operation and calling the gs_open,\nThread B is executing the disconnect operation and calling the\ngserial_disconnect function,The port-\u003eport_usb pointer will be set to NULL.\n\nE.g.\n Thread A Thread B\n gs_open() gadget_unbind_driver()\n gs_start_io() composite_disconnect()\n gs_start_rx() gserial_disconnect()\n ... ...\n spin_unlock(\u0026port-\u003eport_lock)\n status = usb_ep_queue() spin_lock(\u0026port-\u003eport_lock)\n spin_lock(\u0026port-\u003eport_lock) port-\u003eport_usb = NULL\n gs_free_requests(port-\u003eport_usb-\u003ein) spin_unlock(\u0026port-\u003eport_lock)\n Crash\n\nThis causes thread A to access a null pointer (port-\u003eport_usb is null)\nwhen calling the gs_free_requests function, causing a crash.\n\nIf port_usb is NULL, the release request will be skipped as it\nwill be done by gserial_disconnect.\n\nSo add a null pointer check to gs_start_io before attempting\nto access the value of the pointer port-\u003eport_usb.\n\nCall trace:\n gs_start_io+0x164/0x25c\n gs_open+0x108/0x13c\n tty_open+0x314/0x638\n chrdev_open+0x1b8/0x258\n do_dentry_open+0x2c4/0x700\n vfs_open+0x2c/0x3c\n path_openat+0xa64/0xc60\n do_filp_open+0xb8/0x164\n do_sys_openat2+0x84/0xf0\n __arm64_sys_openat+0x70/0x9c\n invoke_syscall+0x58/0x114\n el0_svc_common+0x80/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x38/0x68",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56670",
"url": "https://www.suse.com/security/cve/CVE-2024-56670"
},
{
"category": "external",
"summary": "SUSE Bug 1235488 for CVE-2024-56670",
"url": "https://bugzilla.suse.com/1235488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56670"
},
{
"cve": "CVE-2024-56672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: Fix UAF in blkcg_unpin_online()\n\nblkcg_unpin_online() walks up the blkcg hierarchy putting the online pin. To\nwalk up, it uses blkcg_parent(blkcg) but it was calling that after\nblkcg_destroy_blkgs(blkcg) which could free the blkcg, leading to the\nfollowing UAF:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in blkcg_unpin_online+0x15a/0x270\n Read of size 8 at addr ffff8881057678c0 by task kworker/9:1/117\n\n CPU: 9 UID: 0 PID: 117 Comm: kworker/9:1 Not tainted 6.13.0-rc1-work-00182-gb8f52214c61a-dirty #48\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS unknown 02/02/2022\n Workqueue: cgwb_release cgwb_release_workfn\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x27/0x80\n print_report+0x151/0x710\n kasan_report+0xc0/0x100\n blkcg_unpin_online+0x15a/0x270\n cgwb_release_workfn+0x194/0x480\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n ...\n Freed by task 1944:\n kasan_save_track+0x2b/0x70\n kasan_save_free_info+0x3c/0x50\n __kasan_slab_free+0x33/0x50\n kfree+0x10c/0x330\n css_free_rwork_fn+0xe6/0xb30\n process_scheduled_works+0x71b/0xe20\n worker_thread+0x82a/0xbd0\n kthread+0x242/0x2c0\n ret_from_fork+0x33/0x70\n ret_from_fork_asm+0x1a/0x30\n\nNote that the UAF is not easy to trigger as the free path is indirected\nbehind a couple RCU grace periods and a work item execution. I could only\ntrigger it with artifical msleep() injected in blkcg_unpin_online().\n\nFix it by reading the parent pointer before destroying the blkcg\u0027s blkg\u0027s.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56672",
"url": "https://www.suse.com/security/cve/CVE-2024-56672"
},
{
"category": "external",
"summary": "SUSE Bug 1235534 for CVE-2024-56672",
"url": "https://bugzilla.suse.com/1235534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56672"
},
{
"cve": "CVE-2024-56675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors\n\nUprobes always use bpf_prog_run_array_uprobe() under tasks-trace-RCU\nprotection. But it is possible to attach a non-sleepable BPF program to a\nuprobe, and non-sleepable BPF programs are freed via normal RCU (see\n__bpf_prog_put_noref()). This leads to UAF of the bpf_prog because a normal\nRCU grace period does not imply a tasks-trace-RCU grace period.\n\nFix it by explicitly waiting for a tasks-trace-RCU grace period after\nremoving the attachment of a bpf_prog to a perf_event.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56675",
"url": "https://www.suse.com/security/cve/CVE-2024-56675"
},
{
"category": "external",
"summary": "SUSE Bug 1235555 for CVE-2024-56675",
"url": "https://bugzilla.suse.com/1235555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56675"
},
{
"cve": "CVE-2024-56677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init()\n\nDuring early init CMA_MIN_ALIGNMENT_BYTES can be PAGE_SIZE,\nsince pageblock_order is still zero and it gets initialized\nlater during initmem_init() e.g.\nsetup_arch() -\u003e initmem_init() -\u003e sparse_init() -\u003e set_pageblock_order()\n\nOne such use case where this causes issue is -\nearly_setup() -\u003e early_init_devtree() -\u003e fadump_reserve_mem() -\u003e fadump_cma_init()\n\nThis causes CMA memory alignment check to be bypassed in\ncma_init_reserved_mem(). Then later cma_activate_area() can hit\na VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1)) if the reserved memory\narea was not pageblock_order aligned.\n\nFix it by moving the fadump_cma_init() after initmem_init(),\nwhere other such cma reservations also gets called.\n\n\u003cstack trace\u003e\n==============\npage: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10010\nflags: 0x13ffff800000000(node=1|zone=0|lastcpupid=0x7ffff) CMA\nraw: 013ffff800000000 5deadbeef0000100 5deadbeef0000122 0000000000000000\nraw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000\npage dumped because: VM_BUG_ON_PAGE(pfn \u0026 ((1 \u003c\u003c order) - 1))\n------------[ cut here ]------------\nkernel BUG at mm/page_alloc.c:778!\n\nCall Trace:\n__free_one_page+0x57c/0x7b0 (unreliable)\nfree_pcppages_bulk+0x1a8/0x2c8\nfree_unref_page_commit+0x3d4/0x4e4\nfree_unref_page+0x458/0x6d0\ninit_cma_reserved_pageblock+0x114/0x198\ncma_init_reserved_areas+0x270/0x3e0\ndo_one_initcall+0x80/0x2f8\nkernel_init_freeable+0x33c/0x530\nkernel_init+0x34/0x26c\nret_from_kernel_user_thread+0x14/0x1c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56677",
"url": "https://www.suse.com/security/cve/CVE-2024-56677"
},
{
"category": "external",
"summary": "SUSE Bug 1235494 for CVE-2024-56677",
"url": "https://bugzilla.suse.com/1235494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56677"
},
{
"cve": "CVE-2024-56678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/mm/fault: Fix kfence page fault reporting\n\ncopy_from_kernel_nofault() can be called when doing read of /proc/kcore.\n/proc/kcore can have some unmapped kfence objects which when read via\ncopy_from_kernel_nofault() can cause page faults. Since *_nofault()\nfunctions define their own fixup table for handling fault, use that\ninstead of asking kfence to handle such faults.\n\nHence we search the exception tables for the nip which generated the\nfault. If there is an entry then we let the fixup table handler handle the\npage fault by returning an error from within ___do_page_fault().\n\nThis can be easily triggered if someone tries to do dd from /proc/kcore.\neg. dd if=/proc/kcore of=/dev/null bs=1M\n\nSome example false negatives:\n\n ===============================\n BUG: KFENCE: invalid read in copy_from_kernel_nofault+0x9c/0x1a0\n Invalid read at 0xc0000000fdff0000:\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec\n\n BUG: KFENCE: use-after-free read in copy_from_kernel_nofault+0x9c/0x1a0\n Use-after-free read at 0xc0000000fe050000 (in kfence-#2):\n copy_from_kernel_nofault+0x9c/0x1a0\n 0xc00000000665f950\n read_kcore_iter+0x57c/0xa04\n proc_reg_read_iter+0xe4/0x16c\n vfs_read+0x320/0x3ec\n ksys_read+0x90/0x154\n system_call_exception+0x120/0x310\n system_call_vectored_common+0x15c/0x2ec",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56678",
"url": "https://www.suse.com/security/cve/CVE-2024-56678"
},
{
"category": "external",
"summary": "SUSE Bug 1235495 for CVE-2024-56678",
"url": "https://bugzilla.suse.com/1235495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56678"
},
{
"cve": "CVE-2024-56679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56679",
"url": "https://www.suse.com/security/cve/CVE-2024-56679"
},
{
"category": "external",
"summary": "SUSE Bug 1235498 for CVE-2024-56679",
"url": "https://bugzilla.suse.com/1235498"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56679"
},
{
"cve": "CVE-2024-56681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: bcm - add error check in the ahash_hmac_init function\n\nThe ahash_init functions may return fails. The ahash_hmac_init should\nnot return ok when ahash_init returns error. For an example, ahash_init\nwill return -ENOMEM when allocation memory is error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56681",
"url": "https://www.suse.com/security/cve/CVE-2024-56681"
},
{
"category": "external",
"summary": "SUSE Bug 1235557 for CVE-2024-56681",
"url": "https://bugzilla.suse.com/1235557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56681"
},
{
"cve": "CVE-2024-56683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56683"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: hdmi: Avoid hang with debug registers when suspended\n\nTrying to read /sys/kernel/debug/dri/1/hdmi1_regs\nwhen the hdmi is disconnected results in a fatal system hang.\n\nThis is due to the pm suspend code disabling the dvp clock.\nThat is just a gate of the 108MHz clock in DVP_HT_RPI_MISC_CONFIG,\nwhich results in accesses hanging AXI bus.\n\nProtect against this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56683",
"url": "https://www.suse.com/security/cve/CVE-2024-56683"
},
{
"category": "external",
"summary": "SUSE Bug 1235497 for CVE-2024-56683",
"url": "https://bugzilla.suse.com/1235497"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56683"
},
{
"cve": "CVE-2024-56687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: musb: Fix hardware lockup on first Rx endpoint request\n\nThere is a possibility that a request\u0027s callback could be invoked from\nusb_ep_queue() (call trace below, supplemented with missing calls):\n\nreq-\u003ecomplete from usb_gadget_giveback_request\n\t(drivers/usb/gadget/udc/core.c:999)\nusb_gadget_giveback_request from musb_g_giveback\n\t(drivers/usb/musb/musb_gadget.c:147)\nmusb_g_giveback from rxstate\n\t(drivers/usb/musb/musb_gadget.c:784)\nrxstate from musb_ep_restart\n\t(drivers/usb/musb/musb_gadget.c:1169)\nmusb_ep_restart from musb_ep_restart_resume_work\n\t(drivers/usb/musb/musb_gadget.c:1176)\nmusb_ep_restart_resume_work from musb_queue_resume_work\n\t(drivers/usb/musb/musb_core.c:2279)\nmusb_queue_resume_work from musb_gadget_queue\n\t(drivers/usb/musb/musb_gadget.c:1241)\nmusb_gadget_queue from usb_ep_queue\n\t(drivers/usb/gadget/udc/core.c:300)\n\nAccording to the docstring of usb_ep_queue(), this should not happen:\n\n\"Note that @req\u0027s -\u003ecomplete() callback must never be called from within\nusb_ep_queue() as that can create deadlock situations.\"\n\nIn fact, a hardware lockup might occur in the following sequence:\n\n1. The gadget is initialized using musb_gadget_enable().\n2. Meanwhile, a packet arrives, and the RXPKTRDY flag is set, raising an\n interrupt.\n3. If IRQs are enabled, the interrupt is handled, but musb_g_rx() finds an\n empty queue (next_request() returns NULL). The interrupt flag has\n already been cleared by the glue layer handler, but the RXPKTRDY flag\n remains set.\n4. The first request is enqueued using usb_ep_queue(), leading to the call\n of req-\u003ecomplete(), as shown in the call trace above.\n5. If the callback enables IRQs and another packet is waiting, step (3)\n repeats. The request queue is empty because usb_g_giveback() removes the\n request before invoking the callback.\n6. The endpoint remains locked up, as the interrupt triggered by hardware\n setting the RXPKTRDY flag has been handled, but the flag itself remains\n set.\n\nFor this scenario to occur, it is only necessary for IRQs to be enabled at\nsome point during the complete callback. This happens with the USB Ethernet\ngadget, whose rx_complete() callback calls netif_rx(). If called in the\ntask context, netif_rx() disables the bottom halves (BHs). When the BHs are\nre-enabled, IRQs are also enabled to allow soft IRQs to be processed. The\ngadget itself is initialized at module load (or at boot if built-in), but\nthe first request is enqueued when the network interface is brought up,\ntriggering rx_complete() in the task context via ioctl(). If a packet\narrives while the interface is down, it can prevent the interface from\nreceiving any further packets from the USB host.\n\nThe situation is quite complicated with many parties involved. This\nparticular issue can be resolved in several possible ways:\n\n1. Ensure that callbacks never enable IRQs. This would be difficult to\n enforce, as discovering how netif_rx() interacts with interrupts was\n already quite challenging and u_ether is not the only function driver.\n Similar \"bugs\" could be hidden in other drivers as well.\n2. Disable MUSB interrupts in musb_g_giveback() before calling the callback\n and re-enable them afterwars (by calling musb_{dis,en}able_interrupts(),\n for example). This would ensure that MUSB interrupts are not handled\n during the callback, even if IRQs are enabled. In fact, it would allow\n IRQs to be enabled when releasing the lock. However, this feels like an\n inelegant hack.\n3. Modify the interrupt handler to clear the RXPKTRDY flag if the request\n queue is empty. While this approach also feels like a hack, it wastes\n CPU time by attempting to handle incoming packets when the software is\n not ready to process them.\n4. Flush the Rx FIFO instead of calling rxstate() in musb_ep_restart().\n This ensures that the hardware can receive packets when there is at\n least one request in the queue. Once I\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56687",
"url": "https://www.suse.com/security/cve/CVE-2024-56687"
},
{
"category": "external",
"summary": "SUSE Bug 1235537 for CVE-2024-56687",
"url": "https://bugzilla.suse.com/1235537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56687"
},
{
"cve": "CVE-2024-56688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56688"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport\n\nSince transport-\u003esock has been set to NULL during reset transport,\nXPRT_SOCK_UPD_TIMEOUT also needs to be cleared. Otherwise, the\nxs_tcp_set_socket_timeouts() may be triggered in xs_tcp_send_request()\nto dereference the transport-\u003esock that has been set to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56688",
"url": "https://www.suse.com/security/cve/CVE-2024-56688"
},
{
"category": "external",
"summary": "SUSE Bug 1235538 for CVE-2024-56688",
"url": "https://bugzilla.suse.com/1235538"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56688"
},
{
"cve": "CVE-2024-56690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY\n\nSince commit 8f4f68e788c3 (\"crypto: pcrypt - Fix hungtask for\nPADATA_RESET\"), the pcrypt encryption and decryption operations return\n-EAGAIN when the CPU goes online or offline. In alg_test(), a WARN is\ngenerated when pcrypt_aead_decrypt() or pcrypt_aead_encrypt() returns\n-EAGAIN, the unnecessary panic will occur when panic_on_warn set 1.\nFix this issue by calling crypto layer directly without parallelization\nin that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56690",
"url": "https://www.suse.com/security/cve/CVE-2024-56690"
},
{
"category": "external",
"summary": "SUSE Bug 1235428 for CVE-2024-56690",
"url": "https://bugzilla.suse.com/1235428"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56690"
},
{
"cve": "CVE-2024-56691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56691",
"url": "https://www.suse.com/security/cve/CVE-2024-56691"
},
{
"category": "external",
"summary": "SUSE Bug 1235425 for CVE-2024-56691",
"url": "https://bugzilla.suse.com/1235425"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56691"
},
{
"cve": "CVE-2024-56693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbrd: defer automatic disk creation until module initialization succeeds\n\nMy colleague Wupeng found the following problems during fault injection:\n\nBUG: unable to handle page fault for address: fffffbfff809d073\nPGD 6e648067 P4D 123ec8067 PUD 123ec4067 PMD 100e38067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI\nCPU: 5 UID: 0 PID: 755 Comm: modprobe Not tainted 6.12.0-rc3+ #17\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nRIP: 0010:__asan_load8+0x4c/0xa0\n...\nCall Trace:\n \u003cTASK\u003e\n blkdev_put_whole+0x41/0x70\n bdev_release+0x1a3/0x250\n blkdev_release+0x11/0x20\n __fput+0x1d7/0x4a0\n task_work_run+0xfc/0x180\n syscall_exit_to_user_mode+0x1de/0x1f0\n do_syscall_64+0x6b/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nloop_init() is calling loop_add() after __register_blkdev() succeeds and\nis ignoring disk_add() failure from loop_add(), for loop_add() failure\nis not fatal and successfully created disks are already visible to\nbdev_open().\n\nbrd_init() is currently calling brd_alloc() before __register_blkdev()\nsucceeds and is releasing successfully created disks when brd_init()\nreturns an error. This can cause UAF for the latter two case:\n\ncase 1:\n T1:\nmodprobe brd\n brd_init\n brd_alloc(0) // success\n add_disk\n disk_scan_partitions\n bdev_file_open_by_dev // alloc file\n fput // won\u0027t free until back to userspace\n brd_alloc(1) // failed since mem alloc error inject\n // error path for modprobe will release code segment\n // back to userspace\n __fput\n blkdev_release\n bdev_release\n blkdev_put_whole\n bdev-\u003ebd_disk-\u003efops-\u003erelease // fops is freed now, UAF!\n\ncase 2:\n T1: T2:\nmodprobe brd\n brd_init\n brd_alloc(0) // success\n open(/dev/ram0)\n brd_alloc(1) // fail\n // error path for modprobe\n\n close(/dev/ram0)\n ...\n /* UAF! */\n bdev-\u003ebd_disk-\u003efops-\u003erelease\n\nFix this problem by following what loop_init() does. Besides,\nreintroduce brd_devices_mutex to help serialize modifications to\nbrd_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56693",
"url": "https://www.suse.com/security/cve/CVE-2024-56693"
},
{
"category": "external",
"summary": "SUSE Bug 1235418 for CVE-2024-56693",
"url": "https://bugzilla.suse.com/1235418"
},
{
"category": "external",
"summary": "SUSE Bug 1235419 for CVE-2024-56693",
"url": "https://bugzilla.suse.com/1235419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56693"
},
{
"cve": "CVE-2024-56694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix recursive lock when verdict program return SK_PASS\n\nWhen the stream_verdict program returns SK_PASS, it places the received skb\ninto its own receive queue, but a recursive lock eventually occurs, leading\nto an operating system deadlock. This issue has been present since v6.9.\n\n\u0027\u0027\u0027\nsk_psock_strp_data_ready\n write_lock_bh(\u0026sk-\u003esk_callback_lock)\n strp_data_ready\n strp_read_sock\n read_sock -\u003e tcp_read_sock\n strp_recv\n cb.rcv_msg -\u003e sk_psock_strp_read\n # now stream_verdict return SK_PASS without peer sock assign\n __SK_PASS = sk_psock_map_verd(SK_PASS, NULL)\n sk_psock_verdict_apply\n sk_psock_skb_ingress_self\n sk_psock_skb_ingress_enqueue\n sk_psock_data_ready\n read_lock_bh(\u0026sk-\u003esk_callback_lock) \u003c= dead lock\n\n\u0027\u0027\u0027\n\nThis topic has been discussed before, but it has not been fixed.\nPrevious discussion:\nhttps://lore.kernel.org/all/6684a5864ec86_403d20898@john.notmuch",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56694",
"url": "https://www.suse.com/security/cve/CVE-2024-56694"
},
{
"category": "external",
"summary": "SUSE Bug 1235412 for CVE-2024-56694",
"url": "https://bugzilla.suse.com/1235412"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56694"
},
{
"cve": "CVE-2024-56698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56698"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: gadget: Fix looping of queued SG entries\n\nThe dwc3_request-\u003enum_queued_sgs is decremented on completion. If a\npartially completed request is handled, then the\ndwc3_request-\u003enum_queued_sgs no longer reflects the total number of\nnum_queued_sgs (it would be cleared).\n\nCorrectly check the number of request SG entries remained to be prepare\nand queued. Failure to do this may cause null pointer dereference when\naccessing non-existent SG entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56698",
"url": "https://www.suse.com/security/cve/CVE-2024-56698"
},
{
"category": "external",
"summary": "SUSE Bug 1235491 for CVE-2024-56698",
"url": "https://bugzilla.suse.com/1235491"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56698"
},
{
"cve": "CVE-2024-56700",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56700"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: wl128x: Fix atomicity violation in fmc_send_cmd()\n\nAtomicity violation occurs when the fmc_send_cmd() function is executed\nsimultaneously with the modification of the fmdev-\u003eresp_skb value.\nConsider a scenario where, after passing the validity check within the\nfunction, a non-null fmdev-\u003eresp_skb variable is assigned a null value.\nThis results in an invalid fmdev-\u003eresp_skb variable passing the validity\ncheck. As seen in the later part of the function, skb = fmdev-\u003eresp_skb;\nwhen the invalid fmdev-\u003eresp_skb passes the check, a null pointer\ndereference error may occur at line 478, evt_hdr = (void *)skb-\u003edata;\n\nTo address this issue, it is recommended to include the validity check of\nfmdev-\u003eresp_skb within the locked section of the function. This\nmodification ensures that the value of fmdev-\u003eresp_skb does not change\nduring the validation process, thereby maintaining its validity.\n\nThis possible bug is found by an experimental static analysis tool\ndeveloped by our team. This tool analyzes the locking APIs\nto extract function pairs that can be concurrently executed, and then\nanalyzes the instructions in the paired functions to identify possible\nconcurrency bugs including data races and atomicity violations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56700",
"url": "https://www.suse.com/security/cve/CVE-2024-56700"
},
{
"category": "external",
"summary": "SUSE Bug 1235500 for CVE-2024-56700",
"url": "https://bugzilla.suse.com/1235500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56700"
},
{
"cve": "CVE-2024-56701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56701"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: Fix dtl_access_lock to be a rw_semaphore\n\nThe dtl_access_lock needs to be a rw_sempahore, a sleeping lock, because\nthe code calls kmalloc() while holding it, which can sleep:\n\n # echo 1 \u003e /proc/powerpc/vcpudispatch_stats\n BUG: sleeping function called from invalid context at include/linux/sched/mm.h:337\n in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 199, name: sh\n preempt_count: 1, expected: 0\n 3 locks held by sh/199:\n #0: c00000000a0743f8 (sb_writers#3){.+.+}-{0:0}, at: vfs_write+0x324/0x438\n #1: c0000000028c7058 (dtl_enable_mutex){+.+.}-{3:3}, at: vcpudispatch_stats_write+0xd4/0x5f4\n #2: c0000000028c70b8 (dtl_access_lock){+.+.}-{2:2}, at: vcpudispatch_stats_write+0x220/0x5f4\n CPU: 0 PID: 199 Comm: sh Not tainted 6.10.0-rc4 #152\n Hardware name: IBM pSeries (emulated by qemu) POWER9 (raw) 0x4e1202 0xf000005 of:SLOF,HEAD hv:linux,kvm pSeries\n Call Trace:\n dump_stack_lvl+0x130/0x148 (unreliable)\n __might_resched+0x174/0x410\n kmem_cache_alloc_noprof+0x340/0x3d0\n alloc_dtl_buffers+0x124/0x1ac\n vcpudispatch_stats_write+0x2a8/0x5f4\n proc_reg_write+0xf4/0x150\n vfs_write+0xfc/0x438\n ksys_write+0x88/0x148\n system_call_exception+0x1c4/0x5a0\n system_call_common+0xf4/0x258",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56701",
"url": "https://www.suse.com/security/cve/CVE-2024-56701"
},
{
"category": "external",
"summary": "SUSE Bug 1235496 for CVE-2024-56701",
"url": "https://bugzilla.suse.com/1235496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56701"
},
{
"cve": "CVE-2024-56704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56704"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\n9p/xen: fix release of IRQ\n\nKernel logs indicate an IRQ was double-freed.\n\nPass correct device ID during IRQ release.\n\n[Dominique: remove confusing variable reset to 0]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56704",
"url": "https://www.suse.com/security/cve/CVE-2024-56704"
},
{
"category": "external",
"summary": "SUSE Bug 1235584 for CVE-2024-56704",
"url": "https://bugzilla.suse.com/1235584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56704"
},
{
"cve": "CVE-2024-56705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56705"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: atomisp: Add check for rgby_data memory allocation failure\n\nIn ia_css_3a_statistics_allocate(), there is no check on the allocation\nresult of the rgby_data memory. If rgby_data is not successfully\nallocated, it may trigger the assert(host_stats-\u003ergby_data) assertion in\nia_css_s3a_hmem_decode(). Adding a check to fix this potential issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56705",
"url": "https://www.suse.com/security/cve/CVE-2024-56705"
},
{
"category": "external",
"summary": "SUSE Bug 1235568 for CVE-2024-56705",
"url": "https://bugzilla.suse.com/1235568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56705"
},
{
"cve": "CVE-2024-56707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c\n\nAdd error pointer checks after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56707",
"url": "https://www.suse.com/security/cve/CVE-2024-56707"
},
{
"category": "external",
"summary": "SUSE Bug 1235545 for CVE-2024-56707",
"url": "https://bugzilla.suse.com/1235545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56707"
},
{
"cve": "CVE-2024-56708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56708"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/igen6: Avoid segmentation fault on module unload\n\nThe segmentation fault happens because:\n\nDuring modprobe:\n1. In igen6_probe(), igen6_pvt will be allocated with kzalloc()\n2. In igen6_register_mci(), mci-\u003epvt_info will point to\n \u0026igen6_pvt-\u003eimc[mc]\n\nDuring rmmod:\n1. In mci_release() in edac_mc.c, it will kfree(mci-\u003epvt_info)\n2. In igen6_remove(), it will kfree(igen6_pvt);\n\nFix this issue by setting mci-\u003epvt_info to NULL to avoid the double\nkfree.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56708",
"url": "https://www.suse.com/security/cve/CVE-2024-56708"
},
{
"category": "external",
"summary": "SUSE Bug 1235564 for CVE-2024-56708",
"url": "https://bugzilla.suse.com/1235564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56708"
},
{
"cve": "CVE-2024-56709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check if iowq is killed before queuing\n\ntask work can be executed after the task has gone through io_uring\ntermination, whether it\u0027s the final task_work run or the fallback path.\nIn this case, task work will find -\u003eio_wq being already killed and\nnull\u0027ed, which is a problem if it then tries to forward the request to\nio_queue_iowq(). Make io_queue_iowq() fail requests in this case.\n\nNote that it also checks PF_KTHREAD, because the user can first close\na DEFER_TASKRUN ring and shortly after kill the task, in which case\n-\u003eiowq check would race.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56709",
"url": "https://www.suse.com/security/cve/CVE-2024-56709"
},
{
"category": "external",
"summary": "SUSE Bug 1235552 for CVE-2024-56709",
"url": "https://bugzilla.suse.com/1235552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56709"
},
{
"cve": "CVE-2024-56712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56712"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudmabuf: fix memory leak on last export_udmabuf() error path\n\nIn export_udmabuf(), if dma_buf_fd() fails because the FD table is full, a\ndma_buf owning the udmabuf has already been created; but the error handling\nin udmabuf_create() will tear down the udmabuf without doing anything about\nthe containing dma_buf.\n\nThis leaves a dma_buf in memory that contains a dangling pointer; though\nthat doesn\u0027t seem to lead to anything bad except a memory leak.\n\nFix it by moving the dma_buf_fd() call out of export_udmabuf() so that we\ncan give it different error handling.\n\nNote that the shape of this code changed a lot in commit 5e72b2b41a21\n(\"udmabuf: convert udmabuf driver to use folios\"); but the memory leak\nseems to have existed since the introduction of udmabuf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56712",
"url": "https://www.suse.com/security/cve/CVE-2024-56712"
},
{
"category": "external",
"summary": "SUSE Bug 1235565 for CVE-2024-56712",
"url": "https://bugzilla.suse.com/1235565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56712"
},
{
"cve": "CVE-2024-56715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nionic: Fix netdev notifier unregister on failure\n\nIf register_netdev() fails, then the driver leaks the netdev notifier.\nFix this by calling ionic_lif_unregister() on register_netdev()\nfailure. This will also call ionic_lif_unregister_phc() if it has\nalready been registered.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56715",
"url": "https://www.suse.com/security/cve/CVE-2024-56715"
},
{
"category": "external",
"summary": "SUSE Bug 1235612 for CVE-2024-56715",
"url": "https://bugzilla.suse.com/1235612"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56715"
},
{
"cve": "CVE-2024-56716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: prevent bad user input in nsim_dev_health_break_write()\n\nIf either a zero count or a large one is provided, kernel can crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56716",
"url": "https://www.suse.com/security/cve/CVE-2024-56716"
},
{
"category": "external",
"summary": "SUSE Bug 1235587 for CVE-2024-56716",
"url": "https://bugzilla.suse.com/1235587"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56716"
},
{
"cve": "CVE-2024-56722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix cpu stuck caused by printings during reset\n\nDuring reset, cmd to destroy resources such as qp, cq, and mr may fail,\nand error logs will be printed. When a large number of resources are\ndestroyed, there will be lots of printings, and it may lead to a cpu\nstuck.\n\nDelete some unnecessary printings and replace other printing functions\nin these paths with the ratelimited version.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56722",
"url": "https://www.suse.com/security/cve/CVE-2024-56722"
},
{
"category": "external",
"summary": "SUSE Bug 1235570 for CVE-2024-56722",
"url": "https://bugzilla.suse.com/1235570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56722"
},
{
"cve": "CVE-2024-56723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56723",
"url": "https://www.suse.com/security/cve/CVE-2024-56723"
},
{
"category": "external",
"summary": "SUSE Bug 1235571 for CVE-2024-56723",
"url": "https://bugzilla.suse.com/1235571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56723"
},
{
"cve": "CVE-2024-56724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device\n\nWhile design wise the idea of converting the driver to use\nthe hierarchy of the IRQ chips is correct, the implementation\nhas (inherited) flaws. This was unveiled when platform_get_irq()\nhad started WARN() on IRQ 0 that is supposed to be a Linux\nIRQ number (also known as vIRQ).\n\nRework the driver to respect IRQ domain when creating each MFD\ndevice separately, as the domain is not the same for all of them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56724",
"url": "https://www.suse.com/security/cve/CVE-2024-56724"
},
{
"category": "external",
"summary": "SUSE Bug 1235577 for CVE-2024-56724",
"url": "https://bugzilla.suse.com/1235577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56724"
},
{
"cve": "CVE-2024-56725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56725",
"url": "https://www.suse.com/security/cve/CVE-2024-56725"
},
{
"category": "external",
"summary": "SUSE Bug 1235578 for CVE-2024-56725",
"url": "https://bugzilla.suse.com/1235578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56725"
},
{
"cve": "CVE-2024-56726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56726",
"url": "https://www.suse.com/security/cve/CVE-2024-56726"
},
{
"category": "external",
"summary": "SUSE Bug 1235582 for CVE-2024-56726",
"url": "https://bugzilla.suse.com/1235582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56726"
},
{
"cve": "CVE-2024-56727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c\n\nAdding error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56727",
"url": "https://www.suse.com/security/cve/CVE-2024-56727"
},
{
"category": "external",
"summary": "SUSE Bug 1235583 for CVE-2024-56727",
"url": "https://bugzilla.suse.com/1235583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56727"
},
{
"cve": "CVE-2024-56728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c\n\nAdd error pointer check after calling otx2_mbox_get_rsp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56728",
"url": "https://www.suse.com/security/cve/CVE-2024-56728"
},
{
"category": "external",
"summary": "SUSE Bug 1235656 for CVE-2024-56728",
"url": "https://bugzilla.suse.com/1235656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56728"
},
{
"cve": "CVE-2024-56729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: Initialize cfid-\u003etcon before performing network ops\n\nAvoid leaking a tcon ref when a lease break races with opening the\ncached directory. Processing the leak break might take a reference to\nthe tcon in cached_dir_lease_break() and then fail to release the ref in\ncached_dir_offload_close, since cfid-\u003etcon is still NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56729",
"url": "https://www.suse.com/security/cve/CVE-2024-56729"
},
{
"category": "external",
"summary": "SUSE Bug 1235503 for CVE-2024-56729",
"url": "https://bugzilla.suse.com/1235503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56729"
},
{
"cve": "CVE-2024-56739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtc: check if __rtc_read_time was successful in rtc_timer_do_work()\n\nIf the __rtc_read_time call fails,, the struct rtc_time tm; may contain\nuninitialized data, or an illegal date/time read from the RTC hardware.\n\nWhen calling rtc_tm_to_ktime later, the result may be a very large value\n(possibly KTIME_MAX). If there are periodic timers in rtc-\u003etimerqueue,\nthey will continually expire, may causing kernel softlockup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56739",
"url": "https://www.suse.com/security/cve/CVE-2024-56739"
},
{
"category": "external",
"summary": "SUSE Bug 1235611 for CVE-2024-56739",
"url": "https://bugzilla.suse.com/1235611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56739"
},
{
"cve": "CVE-2024-56741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56741"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56741",
"url": "https://www.suse.com/security/cve/CVE-2024-56741"
},
{
"category": "external",
"summary": "SUSE Bug 1235502 for CVE-2024-56741",
"url": "https://bugzilla.suse.com/1235502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56741"
},
{
"cve": "CVE-2024-56745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Fix reset_method_store() memory leak\n\nIn reset_method_store(), a string is allocated via kstrndup() and assigned\nto the local \"options\". options is then used in with strsep() to find\nspaces:\n\n while ((name = strsep(\u0026options, \" \")) != NULL) {\n\nIf there are no remaining spaces, then options is set to NULL by strsep(),\nso the subsequent kfree(options) doesn\u0027t free the memory allocated via\nkstrndup().\n\nFix by using a separate tmp_options to iterate with strsep() so options is\npreserved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56745",
"url": "https://www.suse.com/security/cve/CVE-2024-56745"
},
{
"category": "external",
"summary": "SUSE Bug 1235563 for CVE-2024-56745",
"url": "https://bugzilla.suse.com/1235563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56745"
},
{
"cve": "CVE-2024-56746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()\n\nWhen information such as info-\u003escreen_base is not ready, calling\nsh7760fb_free_mem() does not release memory correctly. Call\ndma_free_coherent() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56746",
"url": "https://www.suse.com/security/cve/CVE-2024-56746"
},
{
"category": "external",
"summary": "SUSE Bug 1235622 for CVE-2024-56746",
"url": "https://bugzilla.suse.com/1235622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56746"
},
{
"cve": "CVE-2024-56747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()\n\nHook \"qedi_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56747",
"url": "https://www.suse.com/security/cve/CVE-2024-56747"
},
{
"category": "external",
"summary": "SUSE Bug 1234934 for CVE-2024-56747",
"url": "https://bugzilla.suse.com/1234934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56747"
},
{
"cve": "CVE-2024-56748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56748"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()\n\nHook \"qed_ops-\u003ecommon-\u003esb_init = qed_sb_init\" does not release the DMA\nmemory sb_virt when it fails. Add dma_free_coherent() to free it. This\nis the same way as qedr_alloc_mem_sb() and qede_alloc_mem_sb().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56748",
"url": "https://www.suse.com/security/cve/CVE-2024-56748"
},
{
"category": "external",
"summary": "SUSE Bug 1235627 for CVE-2024-56748",
"url": "https://bugzilla.suse.com/1235627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56748"
},
{
"cve": "CVE-2024-56752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()\n\nWhen the call to gf100_grctx_generate() fails, unlock gr-\u003efecs.mutex\nbefore returning the error.\n\nFixes smatch warning:\n\ndrivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480 gf100_gr_chan_new() warn: inconsistent returns \u0027\u0026gr-\u003efecs.mutex\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56752",
"url": "https://www.suse.com/security/cve/CVE-2024-56752"
},
{
"category": "external",
"summary": "SUSE Bug 1234937 for CVE-2024-56752",
"url": "https://bugzilla.suse.com/1234937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56752"
},
{
"cve": "CVE-2024-56754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: caam - Fix the pointer passed to caam_qi_shutdown()\n\nThe type of the last parameter given to devm_add_action_or_reset() is\n\"struct caam_drv_private *\", but in caam_qi_shutdown(), it is casted to\n\"struct device *\".\n\nPass the correct parameter to devm_add_action_or_reset() so that the\nresources are released as expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56754",
"url": "https://www.suse.com/security/cve/CVE-2024-56754"
},
{
"category": "external",
"summary": "SUSE Bug 1234918 for CVE-2024-56754",
"url": "https://bugzilla.suse.com/1234918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56754"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-56756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix freeing of the HMB descriptor table\n\nThe HMB descriptor table is sized to the maximum number of descriptors\nthat could be used for a given device, but __nvme_alloc_host_mem could\nbreak out of the loop earlier on memory allocation failure and end up\nusing less descriptors than planned for, which leads to an incorrect\nsize passed to dma_free_coherent.\n\nIn practice this was not showing up because the number of descriptors\ntends to be low and the dma coherent allocator always allocates and\nfrees at least a page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56756",
"url": "https://www.suse.com/security/cve/CVE-2024-56756"
},
{
"category": "external",
"summary": "SUSE Bug 1234922 for CVE-2024-56756",
"url": "https://bugzilla.suse.com/1234922"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56756"
},
{
"cve": "CVE-2024-56759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free when COWing tree bock and tracing is enabled\n\nWhen a COWing a tree block, at btrfs_cow_block(), and we have the\ntracepoint trace_btrfs_cow_block() enabled and preemption is also enabled\n(CONFIG_PREEMPT=y), we can trigger a use-after-free in the COWed extent\nbuffer while inside the tracepoint code. This is because in some paths\nthat call btrfs_cow_block(), such as btrfs_search_slot(), we are holding\nthe last reference on the extent buffer @buf so btrfs_force_cow_block()\ndrops the last reference on the @buf extent buffer when it calls\nfree_extent_buffer_stale(buf), which schedules the release of the extent\nbuffer with RCU. This means that if we are on a kernel with preemption,\nthe current task may be preempted before calling trace_btrfs_cow_block()\nand the extent buffer already released by the time trace_btrfs_cow_block()\nis called, resulting in a use-after-free.\n\nFix this by moving the trace_btrfs_cow_block() from btrfs_cow_block() to\nbtrfs_force_cow_block() before the COWed extent buffer is freed.\nThis also has a side effect of invoking the tracepoint in the tree defrag\ncode, at defrag.c:btrfs_realloc_node(), since btrfs_force_cow_block() is\ncalled there, but this is fine and it was actually missing there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56759",
"url": "https://www.suse.com/security/cve/CVE-2024-56759"
},
{
"category": "external",
"summary": "SUSE Bug 1235645 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1235645"
},
{
"category": "external",
"summary": "SUSE Bug 1236569 for CVE-2024-56759",
"url": "https://bugzilla.suse.com/1236569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56759"
},
{
"cve": "CVE-2024-56760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/MSI: Handle lack of irqdomain gracefully\n\nAlexandre observed a warning emitted from pci_msi_setup_msi_irqs() on a\nRISCV platform which does not provide PCI/MSI support:\n\n WARNING: CPU: 1 PID: 1 at drivers/pci/msi/msi.h:121 pci_msi_setup_msi_irqs+0x2c/0x32\n __pci_enable_msix_range+0x30c/0x596\n pci_msi_setup_msi_irqs+0x2c/0x32\n pci_alloc_irq_vectors_affinity+0xb8/0xe2\n\nRISCV uses hierarchical interrupt domains and correctly does not implement\nthe legacy fallback. The warning triggers from the legacy fallback stub.\n\nThat warning is bogus as the PCI/MSI layer knows whether a PCI/MSI parent\ndomain is associated with the device or not. There is a check for MSI-X,\nwhich has a legacy assumption. But that legacy fallback assumption is only\nvalid when legacy support is enabled, but otherwise the check should simply\nreturn -ENOTSUPP.\n\nLoongarch tripped over the same problem and blindly enabled legacy support\nwithout implementing the legacy fallbacks. There are weak implementations\nwhich return an error, so the problem was papered over.\n\nCorrect pci_msi_domain_supports() to evaluate the legacy mode and add\nthe missing supported check into the MSI enable path to complete it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56760",
"url": "https://www.suse.com/security/cve/CVE-2024-56760"
},
{
"category": "external",
"summary": "SUSE Bug 1235616 for CVE-2024-56760",
"url": "https://bugzilla.suse.com/1235616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56760"
},
{
"cve": "CVE-2024-56763",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56763"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Prevent bad count for tracing_cpumask_write\n\nIf a large count is provided, it will trigger a warning in bitmap_parse_user.\nAlso check zero for it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56763",
"url": "https://www.suse.com/security/cve/CVE-2024-56763"
},
{
"category": "external",
"summary": "SUSE Bug 1235638 for CVE-2024-56763",
"url": "https://bugzilla.suse.com/1235638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56763"
},
{
"cve": "CVE-2024-56765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries/vas: Add close() callback in vas_vm_ops struct\n\nThe mapping VMA address is saved in VAS window struct when the\npaste address is mapped. This VMA address is used during migration\nto unmap the paste address if the window is active. The paste\naddress mapping will be removed when the window is closed or with\nthe munmap(). But the VMA address in the VAS window is not updated\nwith munmap() which is causing invalid access during migration.\n\nThe KASAN report shows:\n[16386.254991] BUG: KASAN: slab-use-after-free in reconfig_close_windows+0x1a0/0x4e8\n[16386.255043] Read of size 8 at addr c00000014a819670 by task drmgr/696928\n\n[16386.255096] CPU: 29 UID: 0 PID: 696928 Comm: drmgr Kdump: loaded Tainted: G B 6.11.0-rc5-nxgzip #2\n[16386.255128] Tainted: [B]=BAD_PAGE\n[16386.255148] Hardware name: IBM,9080-HEX Power11 (architected) 0x820200 0xf000007 of:IBM,FW1110.00 (NH1110_016) hv:phyp pSeries\n[16386.255181] Call Trace:\n[16386.255202] [c00000016b297660] [c0000000018ad0ac] dump_stack_lvl+0x84/0xe8 (unreliable)\n[16386.255246] [c00000016b297690] [c0000000006e8a90] print_report+0x19c/0x764\n[16386.255285] [c00000016b297760] [c0000000006e9490] kasan_report+0x128/0x1f8\n[16386.255309] [c00000016b297880] [c0000000006eb5c8] __asan_load8+0xac/0xe0\n[16386.255326] [c00000016b2978a0] [c00000000013f898] reconfig_close_windows+0x1a0/0x4e8\n[16386.255343] [c00000016b297990] [c000000000140e58] vas_migration_handler+0x3a4/0x3fc\n[16386.255368] [c00000016b297a90] [c000000000128848] pseries_migrate_partition+0x4c/0x4c4\n...\n\n[16386.256136] Allocated by task 696554 on cpu 31 at 16377.277618s:\n[16386.256149] kasan_save_stack+0x34/0x68\n[16386.256163] kasan_save_track+0x34/0x80\n[16386.256175] kasan_save_alloc_info+0x58/0x74\n[16386.256196] __kasan_slab_alloc+0xb8/0xdc\n[16386.256209] kmem_cache_alloc_noprof+0x200/0x3d0\n[16386.256225] vm_area_alloc+0x44/0x150\n[16386.256245] mmap_region+0x214/0x10c4\n[16386.256265] do_mmap+0x5fc/0x750\n[16386.256277] vm_mmap_pgoff+0x14c/0x24c\n[16386.256292] ksys_mmap_pgoff+0x20c/0x348\n[16386.256303] sys_mmap+0xd0/0x160\n...\n\n[16386.256350] Freed by task 0 on cpu 31 at 16386.204848s:\n[16386.256363] kasan_save_stack+0x34/0x68\n[16386.256374] kasan_save_track+0x34/0x80\n[16386.256384] kasan_save_free_info+0x64/0x10c\n[16386.256396] __kasan_slab_free+0x120/0x204\n[16386.256415] kmem_cache_free+0x128/0x450\n[16386.256428] vm_area_free_rcu_cb+0xa8/0xd8\n[16386.256441] rcu_do_batch+0x2c8/0xcf0\n[16386.256458] rcu_core+0x378/0x3c4\n[16386.256473] handle_softirqs+0x20c/0x60c\n[16386.256495] do_softirq_own_stack+0x6c/0x88\n[16386.256509] do_softirq_own_stack+0x58/0x88\n[16386.256521] __irq_exit_rcu+0x1a4/0x20c\n[16386.256533] irq_exit+0x20/0x38\n[16386.256544] interrupt_async_exit_prepare.constprop.0+0x18/0x2c\n...\n\n[16386.256717] Last potentially related work creation:\n[16386.256729] kasan_save_stack+0x34/0x68\n[16386.256741] __kasan_record_aux_stack+0xcc/0x12c\n[16386.256753] __call_rcu_common.constprop.0+0x94/0xd04\n[16386.256766] vm_area_free+0x28/0x3c\n[16386.256778] remove_vma+0xf4/0x114\n[16386.256797] do_vmi_align_munmap.constprop.0+0x684/0x870\n[16386.256811] __vm_munmap+0xe0/0x1f8\n[16386.256821] sys_munmap+0x54/0x6c\n[16386.256830] system_call_exception+0x1a0/0x4a0\n[16386.256841] system_call_vectored_common+0x15c/0x2ec\n\n[16386.256868] The buggy address belongs to the object at c00000014a819670\n which belongs to the cache vm_area_struct of size 168\n[16386.256887] The buggy address is located 0 bytes inside of\n freed 168-byte region [c00000014a819670, c00000014a819718)\n\n[16386.256915] The buggy address belongs to the physical page:\n[16386.256928] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14a81\n[16386.256950] memcg:c0000000ba430001\n[16386.256961] anon flags: 0x43ffff800000000(node=4|zone=0|lastcpupid=0x7ffff)\n[16386.256975] page_type: 0xfdffffff(slab)\n[16386\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56765",
"url": "https://www.suse.com/security/cve/CVE-2024-56765"
},
{
"category": "external",
"summary": "SUSE Bug 1235643 for CVE-2024-56765",
"url": "https://bugzilla.suse.com/1235643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56765"
},
{
"cve": "CVE-2024-56766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: fix double free in atmel_pmecc_create_user()\n\nThe \"user\" pointer was converted from being allocated with kzalloc() to\nbeing allocated by devm_kzalloc(). Calling kfree(user) will lead to a\ndouble free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56766",
"url": "https://www.suse.com/security/cve/CVE-2024-56766"
},
{
"category": "external",
"summary": "SUSE Bug 1235219 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1235219"
},
{
"category": "external",
"summary": "SUSE Bug 1240426 for CVE-2024-56766",
"url": "https://bugzilla.suse.com/1240426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-56766"
},
{
"cve": "CVE-2024-56767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset\n\nThe at_xdmac_memset_create_desc may return NULL, which will lead to a\nnull pointer dereference. For example, the len input is error, or the\natchan-\u003efree_descs_list is empty and memory is exhausted. Therefore, add\ncheck to avoid this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56767",
"url": "https://www.suse.com/security/cve/CVE-2024-56767"
},
{
"category": "external",
"summary": "SUSE Bug 1235160 for CVE-2024-56767",
"url": "https://bugzilla.suse.com/1235160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56767"
},
{
"cve": "CVE-2024-56769",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56769"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg\n\nSyzbot reports [1] an uninitialized value issue found by KMSAN in\ndib3000_read_reg().\n\nLocal u8 rb[2] is used in i2c_transfer() as a read buffer; in case\nthat call fails, the buffer may end up with some undefined values.\n\nSince no elaborate error handling is expected in dib3000_write_reg(),\nsimply zero out rb buffer to mitigate the problem.\n\n[1] Syzkaller report\ndvb-usb: bulk message failed: -22 (6/0)\n=====================================================\nBUG: KMSAN: uninit-value in dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dib3000mb_attach+0x2d8/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n dibusb_dib3000mb_frontend_attach+0x155/0x2f0 drivers/media/usb/dvb-usb/dibusb-mb.c:31\n dvb_usb_adapter_frontend_init+0xed/0x9a0 drivers/media/usb/dvb-usb/dvb-usb-dvb.c:290\n dvb_usb_adapter_init drivers/media/usb/dvb-usb/dvb-usb-init.c:90 [inline]\n dvb_usb_init drivers/media/usb/dvb-usb/dvb-usb-init.c:186 [inline]\n dvb_usb_device_init+0x25a8/0x3760 drivers/media/usb/dvb-usb/dvb-usb-init.c:310\n dibusb_probe+0x46/0x250 drivers/media/usb/dvb-usb/dibusb-mb.c:110\n...\nLocal variable rb created at:\n dib3000_read_reg+0x86/0x4e0 drivers/media/dvb-frontends/dib3000mb.c:54\n dib3000mb_attach+0x123/0x3c0 drivers/media/dvb-frontends/dib3000mb.c:758\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56769",
"url": "https://www.suse.com/security/cve/CVE-2024-56769"
},
{
"category": "external",
"summary": "SUSE Bug 1235155 for CVE-2024-56769",
"url": "https://bugzilla.suse.com/1235155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56769"
},
{
"cve": "CVE-2024-56774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: add a sanity check for btrfs root in btrfs_search_slot()\n\nSyzbot reports a null-ptr-deref in btrfs_search_slot().\n\nThe reproducer is using rescue=ibadroots, and the extent tree root is\ncorrupted thus the extent tree is NULL.\n\nWhen scrub tries to search the extent tree to gather the needed extent\ninfo, btrfs_search_slot() doesn\u0027t check if the target root is NULL or\nnot, resulting the null-ptr-deref.\n\nAdd sanity check for btrfs root before using it in btrfs_search_slot().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56774",
"url": "https://www.suse.com/security/cve/CVE-2024-56774"
},
{
"category": "external",
"summary": "SUSE Bug 1235653 for CVE-2024-56774",
"url": "https://bugzilla.suse.com/1235653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56774"
},
{
"cve": "CVE-2024-56775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix handling of plane refcount\n\n[Why]\nThe mechanism to backup and restore plane states doesn\u0027t maintain\nrefcount, which can cause issues if the refcount of the plane changes\nin between backup and restore operations, such as memory leaks if the\nrefcount was supposed to go down, or double frees / invalid memory\naccesses if the refcount was supposed to go up.\n\n[How]\nCache and re-apply current refcount when restoring plane states.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56775",
"url": "https://www.suse.com/security/cve/CVE-2024-56775"
},
{
"category": "external",
"summary": "SUSE Bug 1235657 for CVE-2024-56775",
"url": "https://bugzilla.suse.com/1235657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56775"
},
{
"cve": "CVE-2024-56776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56776",
"url": "https://www.suse.com/security/cve/CVE-2024-56776"
},
{
"category": "external",
"summary": "SUSE Bug 1235647 for CVE-2024-56776",
"url": "https://bugzilla.suse.com/1235647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56776"
},
{
"cve": "CVE-2024-56777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56777",
"url": "https://www.suse.com/security/cve/CVE-2024-56777"
},
{
"category": "external",
"summary": "SUSE Bug 1235641 for CVE-2024-56777",
"url": "https://bugzilla.suse.com/1235641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56777"
},
{
"cve": "CVE-2024-56778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check\n\nThe return value of drm_atomic_get_crtc_state() needs to be\nchecked. To avoid use of error pointer \u0027crtc_state\u0027 in case\nof the failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56778",
"url": "https://www.suse.com/security/cve/CVE-2024-56778"
},
{
"category": "external",
"summary": "SUSE Bug 1235635 for CVE-2024-56778",
"url": "https://bugzilla.suse.com/1235635"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56778"
},
{
"cve": "CVE-2024-56779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56779"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur\n\nThe action force umount(umount -f) will attempt to kill all rpc_task even\numount operation may ultimately fail if some files remain open.\nConsequently, if an action attempts to open a file, it can potentially\nsend two rpc_task to nfs server.\n\n NFS CLIENT\nthread1 thread2\nopen(\"file\")\n...\nnfs4_do_open\n _nfs4_do_open\n _nfs4_open_and_get_state\n _nfs4_proc_open\n nfs4_run_open_task\n /* rpc_task1 */\n rpc_run_task\n rpc_wait_for_completion_task\n\n umount -f\n nfs_umount_begin\n rpc_killall_tasks\n rpc_signal_task\n rpc_task1 been wakeup\n and return -512\n _nfs4_do_open // while loop\n ...\n nfs4_run_open_task\n /* rpc_task2 */\n rpc_run_task\n rpc_wait_for_completion_task\n\nWhile processing an open request, nfsd will first attempt to find or\nallocate an nfs4_openowner. If it finds an nfs4_openowner that is not\nmarked as NFS4_OO_CONFIRMED, this nfs4_openowner will released. Since\ntwo rpc_task can attempt to open the same file simultaneously from the\nclient to server, and because two instances of nfsd can run\nconcurrently, this situation can lead to lots of memory leak.\nAdditionally, when we echo 0 to /proc/fs/nfsd/threads, warning will be\ntriggered.\n\n NFS SERVER\nnfsd1 nfsd2 echo 0 \u003e /proc/fs/nfsd/threads\n\nnfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // alloc oo1, stateid1\n nfsd4_open\n nfsd4_process_open1\n find_or_alloc_open_stateowner\n // find oo1, without NFS4_OO_CONFIRMED\n release_openowner\n unhash_openowner_locked\n list_del_init(\u0026oo-\u003eoo_perclient)\n // cannot find this oo\n // from client, LEAK!!!\n alloc_stateowner // alloc oo2\n\n nfsd4_process_open2\n init_open_stateid\n // associate oo1\n // with stateid1, stateid1 LEAK!!!\n nfs4_get_vfs_file\n // alloc nfsd_file1 and nfsd_file_mark1\n // all LEAK!!!\n\n nfsd4_process_open2\n ...\n\n write_threads\n ...\n nfsd_destroy_serv\n nfsd_shutdown_net\n nfs4_state_shutdown_net\n nfs4_state_destroy_net\n destroy_client\n __destroy_client\n // won\u0027t find oo1!!!\n nfsd_shutdown_generic\n nfsd_file_cache_shutdown\n kmem_cache_destroy\n for nfsd_file_slab\n and nfsd_file_mark_slab\n // bark since nfsd_file1\n // and nfsd_file_mark1\n // still alive\n\n=======================================================================\nBUG nfsd_file (Not tainted): Objects remaining in nfsd_file on\n__kmem_cache_shutdown()\n-----------------------------------------------------------------------\n\nSlab 0xffd4000004438a80 objects=34 used=1 fp=0xff11000110e2ad28\nflags=0x17ffffc0000240(workingset|head|node=0|zone=2|lastcpupid=0x1fffff)\nCPU: 4 UID: 0 PID: 757 Comm: sh Not tainted 6.12.0-rc6+ #19\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.1-2.fc37 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dum\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56779",
"url": "https://www.suse.com/security/cve/CVE-2024-56779"
},
{
"category": "external",
"summary": "SUSE Bug 1235632 for CVE-2024-56779",
"url": "https://bugzilla.suse.com/1235632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56779"
},
{
"cve": "CVE-2024-56780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: flush quota_release_work upon quota writeback\n\nOne of the paths quota writeback is called from is:\n\nfreeze_super()\n sync_filesystem()\n ext4_sync_fs()\n dquot_writeback_dquots()\n\nSince we currently don\u0027t always flush the quota_release_work queue in\nthis path, we can end up with the following race:\n\n 1. dquot are added to releasing_dquots list during regular operations.\n 2. FS Freeze starts, however, this does not flush the quota_release_work queue.\n 3. Freeze completes.\n 4. Kernel eventually tries to flush the workqueue while FS is frozen which\n hits a WARN_ON since transaction gets started during frozen state:\n\n ext4_journal_check_start+0x28/0x110 [ext4] (unreliable)\n __ext4_journal_start_sb+0x64/0x1c0 [ext4]\n ext4_release_dquot+0x90/0x1d0 [ext4]\n quota_release_workfn+0x43c/0x4d0\n\nWhich is the following line:\n\n WARN_ON(sb-\u003es_writers.frozen == SB_FREEZE_COMPLETE);\n\nWhich ultimately results in generic/390 failing due to dmesg\nnoise. This was detected on powerpc machine 15 cores.\n\nTo avoid this, make sure to flush the workqueue during\ndquot_writeback_dquots() so we dont have any pending workitems after\nfreeze.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56780",
"url": "https://www.suse.com/security/cve/CVE-2024-56780"
},
{
"category": "external",
"summary": "SUSE Bug 1235650 for CVE-2024-56780",
"url": "https://bugzilla.suse.com/1235650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56780"
},
{
"cve": "CVE-2024-56787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: imx8m: Probe the SoC driver as platform driver\n\nWith driver_async_probe=* on kernel command line, the following trace is\nproduced because on i.MX8M Plus hardware because the soc-imx8m.c driver\ncalls of_clk_get_by_name() which returns -EPROBE_DEFER because the clock\ndriver is not yet probed. This was not detected during regular testing\nwithout driver_async_probe.\n\nConvert the SoC code to platform driver and instantiate a platform device\nin its current device_initcall() to probe the platform driver. Rework\n.soc_revision callback to always return valid error code and return SoC\nrevision via parameter. This way, if anything in the .soc_revision callback\nreturn -EPROBE_DEFER, it gets propagated to .probe and the .probe will get\nretried later.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 1 at drivers/soc/imx/soc-imx8m.c:115 imx8mm_soc_revision+0xdc/0x180\nCPU: 1 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.11.0-next-20240924-00002-g2062bb554dea #603\nHardware name: DH electronics i.MX8M Plus DHCOM Premium Developer Kit (3) (DT)\npstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : imx8mm_soc_revision+0xdc/0x180\nlr : imx8mm_soc_revision+0xd0/0x180\nsp : ffff8000821fbcc0\nx29: ffff8000821fbce0 x28: 0000000000000000 x27: ffff800081810120\nx26: ffff8000818a9970 x25: 0000000000000006 x24: 0000000000824311\nx23: ffff8000817f42c8 x22: ffff0000df8be210 x21: fffffffffffffdfb\nx20: ffff800082780000 x19: 0000000000000001 x18: ffffffffffffffff\nx17: ffff800081fff418 x16: ffff8000823e1000 x15: ffff0000c03b65e8\nx14: ffff0000c00051b0 x13: ffff800082790000 x12: 0000000000000801\nx11: ffff80008278ffff x10: ffff80008209d3a6 x9 : ffff80008062e95c\nx8 : ffff8000821fb9a0 x7 : 0000000000000000 x6 : 00000000000080e3\nx5 : ffff0000df8c03d8 x4 : 0000000000000000 x3 : 0000000000000000\nx2 : 0000000000000000 x1 : fffffffffffffdfb x0 : fffffffffffffdfb\nCall trace:\n imx8mm_soc_revision+0xdc/0x180\n imx8_soc_init+0xb0/0x1e0\n do_one_initcall+0x94/0x1a8\n kernel_init_freeable+0x240/0x2a8\n kernel_init+0x28/0x140\n ret_from_fork+0x10/0x20\n---[ end trace 0000000000000000 ]---\nSoC: i.MX8MP revision 1.1\n\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56787",
"url": "https://www.suse.com/security/cve/CVE-2024-56787"
},
{
"category": "external",
"summary": "SUSE Bug 1235663 for CVE-2024-56787",
"url": "https://bugzilla.suse.com/1235663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-56787"
},
{
"cve": "CVE-2024-57791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: check return value of sock_recvmsg when draining clc data\n\nWhen receiving clc msg, the field length in smc_clc_msg_hdr indicates the\nlength of msg should be received from network and the value should not be\nfully trusted as it is from the network. Once the value of length exceeds\nthe value of buflen in function smc_clc_wait_msg it may run into deadloop\nwhen trying to drain the remaining data exceeding buflen.\n\nThis patch checks the return value of sock_recvmsg when draining data in\ncase of deadloop in draining.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57791",
"url": "https://www.suse.com/security/cve/CVE-2024-57791"
},
{
"category": "external",
"summary": "SUSE Bug 1235759 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235759"
},
{
"category": "external",
"summary": "SUSE Bug 1235760 for CVE-2024-57791",
"url": "https://bugzilla.suse.com/1235760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-57791"
},
{
"cve": "CVE-2024-57792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: gpio-charger: Fix set charge current limits\n\nFix set charge current limits for devices which allow to set the lowest\ncharge current limit to be greater zero. If requested charge current limit\nis below lowest limit, the index equals current_limit_map_size which leads\nto accessing memory beyond allocated memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57792",
"url": "https://www.suse.com/security/cve/CVE-2024-57792"
},
{
"category": "external",
"summary": "SUSE Bug 1235764 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1235764"
},
{
"category": "external",
"summary": "SUSE Bug 1236568 for CVE-2024-57792",
"url": "https://bugzilla.suse.com/1236568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-57792"
},
{
"cve": "CVE-2024-57793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57793"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirt: tdx-guest: Just leak decrypted memory on unrecoverable errors\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_decrypted() to fail such that an error is returned\nand the resulting memory is shared. Callers need to take care\nto handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional\nor security issues.\n\nLeak the decrypted memory when set_memory_decrypted() fails,\nand don\u0027t need to print an error since set_memory_decrypted()\nwill call WARN_ONCE().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57793",
"url": "https://www.suse.com/security/cve/CVE-2024-57793"
},
{
"category": "external",
"summary": "SUSE Bug 1235768 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235768"
},
{
"category": "external",
"summary": "SUSE Bug 1235769 for CVE-2024-57793",
"url": "https://bugzilla.suse.com/1235769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-57793"
},
{
"cve": "CVE-2024-57795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Remove the direct link to net_device\n\nThe similar patch in siw is in the link:\nhttps://git.kernel.org/rdma/rdma/c/16b87037b48889\n\nThis problem also occurred in RXE. The following analyze this problem.\nIn the following Call Traces:\n\"\nBUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\nRead of size 4 at addr ffff8880554640b0 by task kworker/1:4/5295\n\nCPU: 1 UID: 0 PID: 5295 Comm: kworker/1:4 Not tainted\n6.12.0-rc3-syzkaller-00399-g9197b73fd7bb #0\nHardware name: Google Compute Engine/Google Compute Engine,\nBIOS Google 09/13/2024\nWorkqueue: infiniband ib_cache_event_task\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n dev_get_flags+0x188/0x1d0 net/core/dev.c:8782\n rxe_query_port+0x12d/0x260 drivers/infiniband/sw/rxe/rxe_verbs.c:60\n __ib_query_port drivers/infiniband/core/device.c:2111 [inline]\n ib_query_port+0x168/0x7d0 drivers/infiniband/core/device.c:2143\n ib_cache_update+0x1a9/0xb80 drivers/infiniband/core/cache.c:1494\n ib_cache_event_task+0xf3/0x1e0 drivers/infiniband/core/cache.c:1568\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa65/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f2/0x390 kernel/kthread.c:389\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\"\n\n1). In the link [1],\n\n\"\n infiniband syz2: set down\n\"\n\nThis means that on 839.350575, the event ib_cache_event_task was sent andi\nqueued in ib_wq.\n\n2). In the link [1],\n\n\"\n team0 (unregistering): Port device team_slave_0 removed\n\"\n\nIt indicates that before 843.251853, the net device should be freed.\n\n3). In the link [1],\n\n\"\n BUG: KASAN: slab-use-after-free in dev_get_flags+0x188/0x1d0\n\"\n\nThis means that on 850.559070, this slab-use-after-free problem occurred.\n\nIn all, on 839.350575, the event ib_cache_event_task was sent and queued\nin ib_wq,\n\nbefore 843.251853, the net device veth was freed.\n\non 850.559070, this event was executed, and the mentioned freed net device\nwas called. Thus, the above call trace occurred.\n\n[1] https://syzkaller.appspot.com/x/log.txt?x=12e7025f980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57795",
"url": "https://www.suse.com/security/cve/CVE-2024-57795"
},
{
"category": "external",
"summary": "SUSE Bug 1235906 for CVE-2024-57795",
"url": "https://bugzilla.suse.com/1235906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57795"
},
{
"cve": "CVE-2024-57798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()\n\nWhile receiving an MST up request message from one thread in\ndrm_dp_mst_handle_up_req(), the MST topology could be removed from\nanother thread via drm_dp_mst_topology_mgr_set_mst(false), freeing\nmst_primary and setting drm_dp_mst_topology_mgr::mst_primary to NULL.\nThis could lead to a NULL deref/use-after-free of mst_primary in\ndrm_dp_mst_handle_up_req().\n\nAvoid the above by holding a reference for mst_primary in\ndrm_dp_mst_handle_up_req() while it\u0027s used.\n\nv2: Fix kfreeing the request if getting an mst_primary reference fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57798",
"url": "https://www.suse.com/security/cve/CVE-2024-57798"
},
{
"category": "external",
"summary": "SUSE Bug 1235818 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235818"
},
{
"category": "external",
"summary": "SUSE Bug 1235819 for CVE-2024-57798",
"url": "https://bugzilla.suse.com/1235819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-57798"
},
{
"cve": "CVE-2024-57801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Skip restore TC rules for vport rep without loaded flag\n\nDuring driver unload, unregister_netdev is called after unloading\nvport rep. So, the mlx5e_rep_priv is already freed while trying to get\nrpriv-\u003enetdev, or walk rpriv-\u003etc_ht, which results in use-after-free.\nSo add the checking to make sure access the data of vport rep which is\nstill loaded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57801",
"url": "https://www.suse.com/security/cve/CVE-2024-57801"
},
{
"category": "external",
"summary": "SUSE Bug 1235940 for CVE-2024-57801",
"url": "https://bugzilla.suse.com/1235940"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57801"
},
{
"cve": "CVE-2024-57802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetrom: check buffer length before accessing it\n\nSyzkaller reports an uninit value read from ax25cmp when sending raw message\nthrough ieee802154 implementation.\n\n=====================================================\nBUG: KMSAN: uninit-value in ax25cmp+0x3a5/0x460 net/ax25/ax25_addr.c:119\n ax25cmp+0x3a5/0x460 net/ax25/ax25_addr.c:119\n nr_dev_get+0x20e/0x450 net/netrom/nr_route.c:601\n nr_route_frame+0x1a2/0xfc0 net/netrom/nr_route.c:774\n nr_xmit+0x5a/0x1c0 net/netrom/nr_dev.c:144\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n __dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n raw_sendmsg+0x654/0xc10 net/ieee802154/socket.c:299\n ieee802154_sock_sendmsg+0x91/0xc0 net/ieee802154/socket.c:96\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n __sys_sendmsg net/socket.c:2667 [inline]\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x5e9/0xb10 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x318/0x740 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1286 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6334\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2780\n sock_alloc_send_skb include/net/sock.h:1884 [inline]\n raw_sendmsg+0x36d/0xc10 net/ieee802154/socket.c:282\n ieee802154_sock_sendmsg+0x91/0xc0 net/ieee802154/socket.c:96\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n __sys_sendmsg net/socket.c:2667 [inline]\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nCPU: 0 PID: 5037 Comm: syz-executor166 Not tainted 6.7.0-rc7-syzkaller-00003-gfbafc3e621c3 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023\n=====================================================\n\nThis issue occurs because the skb buffer is too small, and it\u0027s actual\nallocation is aligned. This hides an actual issue, which is that nr_route_frame\ndoes not validate the buffer size before using it.\n\nFix this issue by checking skb-\u003elen before accessing any fields in skb-\u003edata.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57802",
"url": "https://www.suse.com/security/cve/CVE-2024-57802"
},
{
"category": "external",
"summary": "SUSE Bug 1235941 for CVE-2024-57802",
"url": "https://bugzilla.suse.com/1235941"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57802"
},
{
"cve": "CVE-2024-57804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs\n\nThe driver, through the SAS transport, exposes a sysfs interface to\nenable/disable PHYs in a controller/expander setup. When multiple PHYs\nare disabled and enabled in rapid succession, the persistent and current\nconfig pages related to SAS IO unit/SAS Expander pages could get\ncorrupted.\n\nUse separate memory for each config request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57804",
"url": "https://www.suse.com/security/cve/CVE-2024-57804"
},
{
"category": "external",
"summary": "SUSE Bug 1235779 for CVE-2024-57804",
"url": "https://bugzilla.suse.com/1235779"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57804"
},
{
"cve": "CVE-2024-57809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: imx6: Fix suspend/resume support on i.MX6QDL\n\nThe suspend/resume functionality is currently broken on the i.MX6QDL\nplatform, as documented in the NXP errata (ERR005723):\n\n https://www.nxp.com/docs/en/errata/IMX6DQCE.pdf\n\nThis patch addresses the issue by sharing most of the suspend/resume\nsequences used by other i.MX devices, while avoiding modifications to\ncritical registers that disrupt the PCIe functionality. It targets the\nsame problem as the following downstream commit:\n\n https://github.com/nxp-imx/linux-imx/commit/4e92355e1f79d225ea842511fcfd42b343b32995\n\nUnlike the downstream commit, this patch also resets the connected PCIe\ndevice if possible. Without this reset, certain drivers, such as ath10k\nor iwlwifi, will crash on resume. The device reset is also done by the\ndriver on other i.MX platforms, making this patch consistent with\nexisting practices.\n\nUpon resuming, the kernel will hang and display an error. Here\u0027s an\nexample of the error encountered with the ath10k driver:\n\n ath10k_pci 0000:01:00.0: Unable to change power state from D3hot to D0, device inaccessible\n Unhandled fault: imprecise external abort (0x1406) at 0x0106f944\n\nWithout this patch, suspend/resume will fail on i.MX6QDL devices if a\nPCIe device is connected.\n\n[kwilczynski: commit log, added tag for stable releases]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57809",
"url": "https://www.suse.com/security/cve/CVE-2024-57809"
},
{
"category": "external",
"summary": "SUSE Bug 1235793 for CVE-2024-57809",
"url": "https://bugzilla.suse.com/1235793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57809"
},
{
"cve": "CVE-2024-57838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57838"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/entry: Mark IRQ entries to fix stack depot warnings\n\nThe stack depot filters out everything outside of the top interrupt\ncontext as an uninteresting or irrelevant part of the stack traces. This\nhelps with stack trace de-duplication, avoiding an explosion of saved\nstack traces that share the same IRQ context code path but originate\nfrom different randomly interrupted points, eventually exhausting the\nstack depot.\n\nFiltering uses in_irqentry_text() to identify functions within the\n.irqentry.text and .softirqentry.text sections, which then become the\nlast stack trace entries being saved.\n\nWhile __do_softirq() is placed into the .softirqentry.text section by\ncommon code, populating .irqentry.text is architecture-specific.\n\nCurrently, the .irqentry.text section on s390 is empty, which prevents\nstack depot filtering and de-duplication and could result in warnings\nlike:\n\nStack depot reached limit capacity\nWARNING: CPU: 0 PID: 286113 at lib/stackdepot.c:252 depot_alloc_stack+0x39a/0x3c8\n\nwith PREEMPT and KASAN enabled.\n\nFix this by moving the IO/EXT interrupt handlers from .kprobes.text into\nthe .irqentry.text section and updating the kprobes blacklist to include\nthe .irqentry.text section.\n\nThis is done only for asynchronous interrupts and explicitly not for\nprogram checks, which are synchronous and where the context beyond the\nprogram check is important to preserve. Despite machine checks being\nsomewhat in between, they are extremely rare, and preserving context\nwhen possible is also of value.\n\nSVCs and Restart Interrupts are not relevant, one being always at the\nboundary to user space and the other being a one-time thing.\n\nIRQ entries filtering is also optionally used in ftrace function graph,\nwhere the same logic applies.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57838",
"url": "https://www.suse.com/security/cve/CVE-2024-57838"
},
{
"category": "external",
"summary": "SUSE Bug 1235798 for CVE-2024-57838",
"url": "https://bugzilla.suse.com/1235798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57838"
},
{
"cve": "CVE-2024-57849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57849"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/cpum_sf: Handle CPU hotplug remove during sampling\n\nCPU hotplug remove handling triggers the following function\ncall sequence:\n\n CPUHP_AP_PERF_S390_SF_ONLINE --\u003e s390_pmu_sf_offline_cpu()\n ...\n CPUHP_AP_PERF_ONLINE --\u003e perf_event_exit_cpu()\n\nThe s390 CPUMF sampling CPU hotplug handler invokes:\n\n s390_pmu_sf_offline_cpu()\n +--\u003e cpusf_pmu_setup()\n +--\u003e setup_pmc_cpu()\n +--\u003e deallocate_buffers()\n\nThis function de-allocates all sampling data buffers (SDBs) allocated\nfor that CPU at event initialization. It also clears the\nPMU_F_RESERVED bit. The CPU is gone and can not be sampled.\n\nWith the event still being active on the removed CPU, the CPU event\nhotplug support in kernel performance subsystem triggers the\nfollowing function calls on the removed CPU:\n\n perf_event_exit_cpu()\n +--\u003e perf_event_exit_cpu_context()\n +--\u003e __perf_event_exit_context()\n\t +--\u003e __perf_remove_from_context()\n\t +--\u003e event_sched_out()\n\t +--\u003e cpumsf_pmu_del()\n\t +--\u003e cpumsf_pmu_stop()\n +--\u003e hw_perf_event_update()\n\nto stop and remove the event. During removal of the event, the\nsampling device driver tries to read out the remaining samples from\nthe sample data buffers (SDBs). But they have already been freed\n(and may have been re-assigned). This may lead to a use after free\nsituation in which case the samples are most likely invalid. In the\nbest case the memory has not been reassigned and still contains\nvalid data.\n\nRemedy this situation and check if the CPU is still in reserved\nstate (bit PMU_F_RESERVED set). In this case the SDBs have not been\nreleased an contain valid data. This is always the case when\nthe event is removed (and no CPU hotplug off occured).\nIf the PMU_F_RESERVED bit is not set, the SDB buffers are gone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57849",
"url": "https://www.suse.com/security/cve/CVE-2024-57849"
},
{
"category": "external",
"summary": "SUSE Bug 1235814 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235814"
},
{
"category": "external",
"summary": "SUSE Bug 1235815 for CVE-2024-57849",
"url": "https://bugzilla.suse.com/1235815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-57849"
},
{
"cve": "CVE-2024-57850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njffs2: Prevent rtime decompress memory corruption\n\nThe rtime decompression routine does not fully check bounds during the\nentirety of the decompression pass and can corrupt memory outside the\ndecompression buffer if the compressed data is corrupted. This adds the\nrequired check to prevent this failure mode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57850",
"url": "https://www.suse.com/security/cve/CVE-2024-57850"
},
{
"category": "external",
"summary": "SUSE Bug 1235812 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235812"
},
{
"category": "external",
"summary": "SUSE Bug 1235813 for CVE-2024-57850",
"url": "https://bugzilla.suse.com/1235813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-57850"
},
{
"cve": "CVE-2024-57857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/siw: Remove direct link to net_device\n\nDo not manage a per device direct link to net_device. Rely\non associated ib_devices net_device management, not doubling\nthe effort locally. A badly managed local link to net_device\nwas causing a \u0027KASAN: slab-use-after-free\u0027 exception during\nsiw_query_port() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57857",
"url": "https://www.suse.com/security/cve/CVE-2024-57857"
},
{
"category": "external",
"summary": "SUSE Bug 1235946 for CVE-2024-57857",
"url": "https://bugzilla.suse.com/1235946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57857"
},
{
"cve": "CVE-2024-57874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57874"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL\n\nCurrently tagged_addr_ctrl_set() doesn\u0027t initialize the temporary \u0027ctrl\u0027\nvariable, and a SETREGSET call with a length of zero will leave this\nuninitialized. Consequently tagged_addr_ctrl_set() will consume an\narbitrary value, potentially leaking up to 64 bits of memory from the\nkernel stack. The read is limited to a specific slot on the stack, and\nthe issue does not provide a write mechanism.\n\nAs set_tagged_addr_ctrl() only accepts values where bits [63:4] zero and\nrejects other values, a partial SETREGSET attempt will randomly succeed\nor fail depending on the value of the uninitialized value, and the\nexposure is significantly limited.\n\nFix this by initializing the temporary value before copying the regset\nfrom userspace, as for other regsets (e.g. NT_PRSTATUS, NT_PRFPREG,\nNT_ARM_SYSTEM_CALL). In the case of a zero-length write, the existing\nvalue of the tagged address ctrl will be retained.\n\nThe NT_ARM_TAGGED_ADDR_CTRL regset is only visible in the\nuser_aarch64_view used by a native AArch64 task to manipulate another\nnative AArch64 task. As get_tagged_addr_ctrl() only returns an error\nvalue when called for a compat task, tagged_addr_ctrl_get() and\ntagged_addr_ctrl_set() should never observe an error value from\nget_tagged_addr_ctrl(). Add a WARN_ON_ONCE() to both to indicate that\nsuch an error would be unexpected, and error handlnig is not missing in\neither case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57874",
"url": "https://www.suse.com/security/cve/CVE-2024-57874"
},
{
"category": "external",
"summary": "SUSE Bug 1235808 for CVE-2024-57874",
"url": "https://bugzilla.suse.com/1235808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-57874"
},
{
"cve": "CVE-2024-57876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57876"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/dp_mst: Fix resetting msg rx state after topology removal\n\nIf the MST topology is removed during the reception of an MST down reply\nor MST up request sideband message, the\ndrm_dp_mst_topology_mgr::up_req_recv/down_rep_recv states could be reset\nfrom one thread via drm_dp_mst_topology_mgr_set_mst(false), racing with\nthe reading/parsing of the message from another thread via\ndrm_dp_mst_handle_down_rep() or drm_dp_mst_handle_up_req(). The race is\npossible since the reader/parser doesn\u0027t hold any lock while accessing\nthe reception state. This in turn can lead to a memory corruption in the\nreader/parser as described by commit bd2fccac61b4 (\"drm/dp_mst: Fix MST\nsideband message body length check\").\n\nFix the above by resetting the message reception state if needed before\nreading/parsing a message. Another solution would be to hold the\ndrm_dp_mst_topology_mgr::lock for the whole duration of the message\nreception/parsing in drm_dp_mst_handle_down_rep() and\ndrm_dp_mst_handle_up_req(), however this would require a bigger change.\nSince the fix is also needed for stable, opting for the simpler solution\nin this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57876",
"url": "https://www.suse.com/security/cve/CVE-2024-57876"
},
{
"category": "external",
"summary": "SUSE Bug 1235806 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235806"
},
{
"category": "external",
"summary": "SUSE Bug 1235807 for CVE-2024-57876",
"url": "https://bugzilla.suse.com/1235807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-57876"
},
{
"cve": "CVE-2024-57884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim()\n\nThe task sometimes continues looping in throttle_direct_reclaim() because\nallow_direct_reclaim(pgdat) keeps returning false. \n\n #0 [ffff80002cb6f8d0] __switch_to at ffff8000080095ac\n #1 [ffff80002cb6f900] __schedule at ffff800008abbd1c\n #2 [ffff80002cb6f990] schedule at ffff800008abc50c\n #3 [ffff80002cb6f9b0] throttle_direct_reclaim at ffff800008273550\n #4 [ffff80002cb6fa20] try_to_free_pages at ffff800008277b68\n #5 [ffff80002cb6fae0] __alloc_pages_nodemask at ffff8000082c4660\n #6 [ffff80002cb6fc50] alloc_pages_vma at ffff8000082e4a98\n #7 [ffff80002cb6fca0] do_anonymous_page at ffff80000829f5a8\n #8 [ffff80002cb6fce0] __handle_mm_fault at ffff8000082a5974\n #9 [ffff80002cb6fd90] handle_mm_fault at ffff8000082a5bd4\n\nAt this point, the pgdat contains the following two zones:\n\n NODE: 4 ZONE: 0 ADDR: ffff00817fffe540 NAME: \"DMA32\"\n SIZE: 20480 MIN/LOW/HIGH: 11/28/45\n VM_STAT:\n NR_FREE_PAGES: 359\n NR_ZONE_INACTIVE_ANON: 18813\n NR_ZONE_ACTIVE_ANON: 0\n NR_ZONE_INACTIVE_FILE: 50\n NR_ZONE_ACTIVE_FILE: 0\n NR_ZONE_UNEVICTABLE: 0\n NR_ZONE_WRITE_PENDING: 0\n NR_MLOCK: 0\n NR_BOUNCE: 0\n NR_ZSPAGES: 0\n NR_FREE_CMA_PAGES: 0\n\n NODE: 4 ZONE: 1 ADDR: ffff00817fffec00 NAME: \"Normal\"\n SIZE: 8454144 PRESENT: 98304 MIN/LOW/HIGH: 68/166/264\n VM_STAT:\n NR_FREE_PAGES: 146\n NR_ZONE_INACTIVE_ANON: 94668\n NR_ZONE_ACTIVE_ANON: 3\n NR_ZONE_INACTIVE_FILE: 735\n NR_ZONE_ACTIVE_FILE: 78\n NR_ZONE_UNEVICTABLE: 0\n NR_ZONE_WRITE_PENDING: 0\n NR_MLOCK: 0\n NR_BOUNCE: 0\n NR_ZSPAGES: 0\n NR_FREE_CMA_PAGES: 0\n\nIn allow_direct_reclaim(), while processing ZONE_DMA32, the sum of\ninactive/active file-backed pages calculated in zone_reclaimable_pages()\nbased on the result of zone_page_state_snapshot() is zero. \n\nAdditionally, since this system lacks swap, the calculation of inactive/\nactive anonymous pages is skipped.\n\n crash\u003e p nr_swap_pages\n nr_swap_pages = $1937 = {\n counter = 0\n }\n\nAs a result, ZONE_DMA32 is deemed unreclaimable and skipped, moving on to\nthe processing of the next zone, ZONE_NORMAL, despite ZONE_DMA32 having\nfree pages significantly exceeding the high watermark.\n\nThe problem is that the pgdat-\u003ekswapd_failures hasn\u0027t been incremented.\n\n crash\u003e px ((struct pglist_data *) 0xffff00817fffe540)-\u003ekswapd_failures\n $1935 = 0x0\n\nThis is because the node deemed balanced. The node balancing logic in\nbalance_pgdat() evaluates all zones collectively. If one or more zones\n(e.g., ZONE_DMA32) have enough free pages to meet their watermarks, the\nentire node is deemed balanced. This causes balance_pgdat() to exit early\nbefore incrementing the kswapd_failures, as it considers the overall\nmemory state acceptable, even though some zones (like ZONE_NORMAL) remain\nunder significant pressure.\n\n\nThe patch ensures that zone_reclaimable_pages() includes free pages\n(NR_FREE_PAGES) in its calculation when no other reclaimable pages are\navailable (e.g., file-backed or anonymous pages). This change prevents\nzones like ZONE_DMA32, which have sufficient free pages, from being\nmistakenly deemed unreclaimable. By doing so, the patch ensures proper\nnode balancing, avoids masking pressure on other zones like ZONE_NORMAL,\nand prevents infinite loops in throttle_direct_reclaim() caused by\nallow_direct_reclaim(pgdat) repeatedly returning false.\n\n\nThe kernel hangs due to a task stuck in throttle_direct_reclaim(), caused\nby a node being incorrectly deemed balanced despite pressure in certain\nzones, such as ZONE_NORMAL. This issue arises from\nzone_reclaimable_pages\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57884",
"url": "https://www.suse.com/security/cve/CVE-2024-57884"
},
{
"category": "external",
"summary": "SUSE Bug 1235948 for CVE-2024-57884",
"url": "https://bugzilla.suse.com/1235948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57884"
},
{
"cve": "CVE-2024-57887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: adv7511: Fix use-after-free in adv7533_attach_dsi()\n\nThe host_node pointer was assigned and freed in adv7533_parse_dt(), and\nlater, adv7533_attach_dsi() uses the same. Fix this use-after-free issue\nby dropping of_node_put() in adv7533_parse_dt() and calling of_node_put()\nin error path of probe() and also in the remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57887",
"url": "https://www.suse.com/security/cve/CVE-2024-57887"
},
{
"category": "external",
"summary": "SUSE Bug 1235952 for CVE-2024-57887",
"url": "https://bugzilla.suse.com/1235952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57887"
},
{
"cve": "CVE-2024-57888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nworkqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker\n\nAfter commit\n746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")\namdgpu started seeing the following warning:\n\n [ ] workqueue: WQ_MEM_RECLAIM sdma0:drm_sched_run_job_work [gpu_sched] is flushing !WQ_MEM_RECLAIM events:amdgpu_device_delay_enable_gfx_off [amdgpu]\n...\n [ ] Workqueue: sdma0 drm_sched_run_job_work [gpu_sched]\n...\n [ ] Call Trace:\n [ ] \u003cTASK\u003e\n...\n [ ] ? check_flush_dependency+0xf5/0x110\n...\n [ ] cancel_delayed_work_sync+0x6e/0x80\n [ ] amdgpu_gfx_off_ctrl+0xab/0x140 [amdgpu]\n [ ] amdgpu_ring_alloc+0x40/0x50 [amdgpu]\n [ ] amdgpu_ib_schedule+0xf4/0x810 [amdgpu]\n [ ] ? drm_sched_run_job_work+0x22c/0x430 [gpu_sched]\n [ ] amdgpu_job_run+0xaa/0x1f0 [amdgpu]\n [ ] drm_sched_run_job_work+0x257/0x430 [gpu_sched]\n [ ] process_one_work+0x217/0x720\n...\n [ ] \u003c/TASK\u003e\n\nThe intent of the verifcation done in check_flush_depedency is to ensure\nforward progress during memory reclaim, by flagging cases when either a\nmemory reclaim process, or a memory reclaim work item is flushed from a\ncontext not marked as memory reclaim safe.\n\nThis is correct when flushing, but when called from the\ncancel(_delayed)_work_sync() paths it is a false positive because work is\neither already running, or will not be running at all. Therefore\ncancelling it is safe and we can relax the warning criteria by letting the\nhelper know of the calling context.\n\nReferences: 746ae46c1113 (\"drm/sched: Mark scheduler work queues with WQ_MEM_RECLAIM\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57888",
"url": "https://www.suse.com/security/cve/CVE-2024-57888"
},
{
"category": "external",
"summary": "SUSE Bug 1235918 for CVE-2024-57888",
"url": "https://bugzilla.suse.com/1235918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57888"
},
{
"cve": "CVE-2024-57890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/uverbs: Prevent integer overflow issue\n\nIn the expression \"cmd.wqe_size * cmd.wr_count\", both variables are u32\nvalues that come from the user so the multiplication can lead to integer\nwrapping. Then we pass the result to uverbs_request_next_ptr() which also\ncould potentially wrap. The \"cmd.sge_count * sizeof(struct ib_uverbs_sge)\"\nmultiplication can also overflow on 32bit systems although it\u0027s fine on\n64bit systems.\n\nThis patch does two things. First, I\u0027ve re-arranged the condition in\nuverbs_request_next_ptr() so that the use controlled variable \"len\" is on\none side of the comparison by itself without any math. Then I\u0027ve modified\nall the callers to use size_mul() for the multiplications.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57890",
"url": "https://www.suse.com/security/cve/CVE-2024-57890"
},
{
"category": "external",
"summary": "SUSE Bug 1235919 for CVE-2024-57890",
"url": "https://bugzilla.suse.com/1235919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57890"
},
{
"cve": "CVE-2024-57892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57892"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix slab-use-after-free due to dangling pointer dqi_priv\n\nWhen mounting ocfs2 and then remounting it as read-only, a\nslab-use-after-free occurs after the user uses a syscall to\nquota_getnextquota. Specifically, sb_dqinfo(sb, type)-\u003edqi_priv is the\ndangling pointer.\n\nDuring the remounting process, the pointer dqi_priv is freed but is never\nset as null leaving it to be accessed. Additionally, the read-only option\nfor remounting sets the DQUOT_SUSPENDED flag instead of setting the\nDQUOT_USAGE_ENABLED flags. Moreover, later in the process of getting the\nnext quota, the function ocfs2_get_next_id is called and only checks the\nquota usage flags and not the quota suspended flags.\n\nTo fix this, I set dqi_priv to null when it is freed after remounting with\nread-only and put a check for DQUOT_SUSPENDED in ocfs2_get_next_id.\n\n[akpm@linux-foundation.org: coding-style cleanups]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57892",
"url": "https://www.suse.com/security/cve/CVE-2024-57892"
},
{
"category": "external",
"summary": "SUSE Bug 1235964 for CVE-2024-57892",
"url": "https://bugzilla.suse.com/1235964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57892"
},
{
"cve": "CVE-2024-57893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: oss: Fix races at processing SysEx messages\n\nOSS sequencer handles the SysEx messages split in 6 bytes packets, and\nALSA sequencer OSS layer tries to combine those. It stores the data\nin the internal buffer and this access is racy as of now, which may\nlead to the out-of-bounds access.\n\nAs a temporary band-aid fix, introduce a mutex for serializing the\nprocess of the SysEx message packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57893",
"url": "https://www.suse.com/security/cve/CVE-2024-57893"
},
{
"category": "external",
"summary": "SUSE Bug 1235920 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235920"
},
{
"category": "external",
"summary": "SUSE Bug 1235921 for CVE-2024-57893",
"url": "https://bugzilla.suse.com/1235921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-57893"
},
{
"cve": "CVE-2024-57896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: flush delalloc workers queue before stopping cleaner kthread during unmount\n\nDuring the unmount path, at close_ctree(), we first stop the cleaner\nkthread, using kthread_stop() which frees the associated task_struct, and\nthen stop and destroy all the work queues. However after we stopped the\ncleaner we may still have a worker from the delalloc_workers queue running\ninode.c:submit_compressed_extents(), which calls btrfs_add_delayed_iput(),\nwhich in turn tries to wake up the cleaner kthread - which was already\ndestroyed before, resulting in a use-after-free on the task_struct.\n\nSyzbot reported this with the following stack traces:\n\n BUG: KASAN: slab-use-after-free in __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n Read of size 8 at addr ffff8880259d2818 by task kworker/u8:3/52\n\n CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Workqueue: btrfs-delalloc btrfs_work_helper\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:489\n kasan_report+0x143/0x180 mm/kasan/report.c:602\n __lock_acquire+0x78/0x2100 kernel/locking/lockdep.c:5089\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5849\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xd5/0x120 kernel/locking/spinlock.c:162\n class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:551 [inline]\n try_to_wake_up+0xc2/0x1470 kernel/sched/core.c:4205\n submit_compressed_extents+0xdf/0x16e0 fs/btrfs/inode.c:1615\n run_ordered_work fs/btrfs/async-thread.c:288 [inline]\n btrfs_work_helper+0x96f/0xc40 fs/btrfs/async-thread.c:324\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa66/0x1840 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\n Allocated by task 2:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:319 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:345\n kasan_slab_alloc include/linux/kasan.h:250 [inline]\n slab_post_alloc_hook mm/slub.c:4104 [inline]\n slab_alloc_node mm/slub.c:4153 [inline]\n kmem_cache_alloc_node_noprof+0x1d9/0x380 mm/slub.c:4205\n alloc_task_struct_node kernel/fork.c:180 [inline]\n dup_task_struct+0x57/0x8c0 kernel/fork.c:1113\n copy_process+0x5d1/0x3d50 kernel/fork.c:2225\n kernel_clone+0x223/0x870 kernel/fork.c:2807\n kernel_thread+0x1bc/0x240 kernel/fork.c:2869\n create_kthread kernel/kthread.c:412 [inline]\n kthreadd+0x60d/0x810 kernel/kthread.c:767\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\n Freed by task 24:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:582\n poison_slab_object mm/kasan/common.c:247 [inline]\n __kasan_slab_free+0x59/0x70 mm/kasan/common.c:264\n kasan_slab_free include/linux/kasan.h:233 [inline]\n slab_free_hook mm/slub.c:2338 [inline]\n slab_free mm/slub.c:4598 [inline]\n kmem_cache_free+0x195/0x410 mm/slub.c:4700\n put_task_struct include/linux/sched/task.h:144 [inline]\n delayed_put_task_struct+0x125/0x300 kernel/exit.c:227\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:554\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:943\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57896",
"url": "https://www.suse.com/security/cve/CVE-2024-57896"
},
{
"category": "external",
"summary": "SUSE Bug 1235965 for CVE-2024-57896",
"url": "https://bugzilla.suse.com/1235965"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57896"
},
{
"cve": "CVE-2024-57897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Correct the migration DMA map direction\n\nThe SVM DMA device map direction should be set the same as\nthe DMA unmap setting, otherwise the DMA core will report\nthe following warning.\n\nBefore finialize this solution, there\u0027re some discussion on\nthe DMA mapping type(stream-based or coherent) in this KFD\nmigration case, followed by https://lore.kernel.org/all/04d4ab32\n-45a1-4b88-86ee-fb0f35a0ca40@amd.com/T/.\n\nAs there\u0027s no dma_sync_single_for_*() in the DMA buffer accessed\nthat because this migration operation should be sync properly and\nautomatically. Give that there\u0027s might not be a performance problem\nin various cache sync policy of DMA sync. Therefore, in order to\nsimplify the DMA direction setting alignment, let\u0027s set the DMA map\ndirection as BIDIRECTIONAL.\n\n[ 150.834218] WARNING: CPU: 8 PID: 1812 at kernel/dma/debug.c:1028 check_unmap+0x1cc/0x930\n[ 150.834225] Modules linked in: amdgpu(OE) amdxcp drm_exec(OE) gpu_sched drm_buddy(OE) drm_ttm_helper(OE) ttm(OE) drm_suballoc_helper(OE) drm_display_helper(OE) drm_kms_helper(OE) i2c_algo_bit rpcsec_gss_krb5 auth_rpcgss nfsv4 nfs lockd grace netfs xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo iptable_nat xt_addrtype iptable_filter br_netfilter nvme_fabrics overlay nfnetlink_cttimeout nfnetlink openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c bridge stp llc sch_fq_codel intel_rapl_msr amd_atl intel_rapl_common snd_hda_codec_realtek snd_hda_codec_generic snd_hda_scodec_component snd_hda_codec_hdmi snd_hda_intel snd_intel_dspcfg edac_mce_amd snd_pci_acp6x snd_hda_codec snd_acp_config snd_hda_core snd_hwdep snd_soc_acpi kvm_amd sunrpc snd_pcm kvm binfmt_misc snd_seq_midi crct10dif_pclmul snd_seq_midi_event ghash_clmulni_intel sha512_ssse3 snd_rawmidi nls_iso8859_1 sha256_ssse3 sha1_ssse3 snd_seq aesni_intel snd_seq_device crypto_simd snd_timer cryptd input_leds\n[ 150.834310] wmi_bmof serio_raw k10temp rapl snd sp5100_tco ipmi_devintf soundcore ccp ipmi_msghandler cm32181 industrialio mac_hid msr parport_pc ppdev lp parport efi_pstore drm(OE) ip_tables x_tables pci_stub crc32_pclmul nvme ahci libahci i2c_piix4 r8169 nvme_core i2c_designware_pci realtek i2c_ccgx_ucsi video wmi hid_generic cdc_ether usbnet usbhid hid r8152 mii\n[ 150.834354] CPU: 8 PID: 1812 Comm: rocrtst64 Tainted: G OE 6.10.0-custom #492\n[ 150.834358] Hardware name: AMD Majolica-RN/Majolica-RN, BIOS RMJ1009A 06/13/2021\n[ 150.834360] RIP: 0010:check_unmap+0x1cc/0x930\n[ 150.834363] Code: c0 4c 89 4d c8 e8 34 bf 86 00 4c 8b 4d c8 4c 8b 45 c0 48 8b 4d b8 48 89 c6 41 57 4c 89 ea 48 c7 c7 80 49 b4 84 e8 b4 81 f3 ff \u003c0f\u003e 0b 48 c7 c7 04 83 ac 84 e8 76 ba fc ff 41 8b 76 4c 49 8d 7e 50\n[ 150.834365] RSP: 0018:ffffaac5023739e0 EFLAGS: 00010086\n[ 150.834368] RAX: 0000000000000000 RBX: ffffffff8566a2e0 RCX: 0000000000000027\n[ 150.834370] RDX: ffff8f6a8f621688 RSI: 0000000000000001 RDI: ffff8f6a8f621680\n[ 150.834372] RBP: ffffaac502373a30 R08: 00000000000000c9 R09: ffffaac502373850\n[ 150.834373] R10: ffffaac502373848 R11: ffffffff84f46328 R12: ffffaac502373a40\n[ 150.834375] R13: ffff8f6741045330 R14: ffff8f6741a77700 R15: ffffffff84ac831b\n[ 150.834377] FS: 00007faf0fc94c00(0000) GS:ffff8f6a8f600000(0000) knlGS:0000000000000000\n[ 150.834379] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 150.834381] CR2: 00007faf0b600020 CR3: 000000010a52e000 CR4: 0000000000350ef0\n[ 150.834383] Call Trace:\n[ 150.834385] \u003cTASK\u003e\n[ 150.834387] ? show_regs+0x6d/0x80\n[ 150.834393] ? __warn+0x8c/0x140\n[ 150.834397] ? check_unmap+0x1cc/0x930\n[ 150.834400] ? report_bug+0x193/0x1a0\n[ 150.834406] ? handle_bug+0x46/0x80\n[ 150.834410] ? exc_invalid_op+0x1d/0x80\n[ 150.834413] ? asm_exc_invalid_op+0x1f/0x30\n[ 150.834420] ? check_unmap+0x1cc/0x930\n[ 150.834425] debug_dma_unmap_page+0x86/0x90\n[ 150.834431] ? srso_return_thunk+0x5/0x5f\n[ 150.834435] \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57897",
"url": "https://www.suse.com/security/cve/CVE-2024-57897"
},
{
"category": "external",
"summary": "SUSE Bug 1235969 for CVE-2024-57897",
"url": "https://bugzilla.suse.com/1235969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57897"
},
{
"cve": "CVE-2024-57899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57899"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: fix mbss changed flags corruption on 32 bit systems\n\nOn 32-bit systems, the size of an unsigned long is 4 bytes,\nwhile a u64 is 8 bytes. Therefore, when using\nor_each_set_bit(bit, \u0026bits, sizeof(changed) * BITS_PER_BYTE),\nthe code is incorrectly searching for a bit in a 32-bit\nvariable that is expected to be 64 bits in size,\nleading to incorrect bit finding.\n\nSolution: Ensure that the size of the bits variable is correctly\nadjusted for each architecture.\n\n Call Trace:\n ? show_regs+0x54/0x58\n ? __warn+0x6b/0xd4\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? report_bug+0x113/0x150\n ? exc_overflow+0x30/0x30\n ? handle_bug+0x27/0x44\n ? exc_invalid_op+0x18/0x50\n ? handle_exception+0xf6/0xf6\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? exc_overflow+0x30/0x30\n ? ieee80211_link_info_change_notify+0xcc/0xd4 [mac80211]\n ? ieee80211_mesh_work+0xff/0x260 [mac80211]\n ? cfg80211_wiphy_work+0x72/0x98 [cfg80211]\n ? process_one_work+0xf1/0x1fc\n ? worker_thread+0x2c0/0x3b4\n ? kthread+0xc7/0xf0\n ? mod_delayed_work_on+0x4c/0x4c\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork+0x24/0x38\n ? kthread_complete_and_exit+0x14/0x14\n ? ret_from_fork_asm+0xf/0x14\n ? entry_INT80_32+0xf0/0xf0\n\n[restore no-op path for no changes]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57899",
"url": "https://www.suse.com/security/cve/CVE-2024-57899"
},
{
"category": "external",
"summary": "SUSE Bug 1235924 for CVE-2024-57899",
"url": "https://bugzilla.suse.com/1235924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57899"
},
{
"cve": "CVE-2024-57903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: restrict SO_REUSEPORT to inet sockets\n\nAfter blamed commit, crypto sockets could accidentally be destroyed\nfrom RCU call back, as spotted by zyzbot [1].\n\nTrying to acquire a mutex in RCU callback is not allowed.\n\nRestrict SO_REUSEPORT socket option to inet sockets.\n\nv1 of this patch supported TCP, UDP and SCTP sockets,\nbut fcnal-test.sh test needed RAW and ICMP support.\n\n[1]\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:562\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 24, name: ksoftirqd/1\npreempt_count: 100, expected: 0\nRCU nest depth: 0, expected: 0\n1 lock held by ksoftirqd/1/24:\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_lock_acquire include/linux/rcupdate.h:337 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_do_batch kernel/rcu/tree.c:2561 [inline]\n #0: ffffffff8e937ba0 (rcu_callback){....}-{0:0}, at: rcu_core+0xa37/0x17a0 kernel/rcu/tree.c:2823\nPreemption disabled at:\n [\u003cffffffff8161c8c8\u003e] softirq_handle_begin kernel/softirq.c:402 [inline]\n [\u003cffffffff8161c8c8\u003e] handle_softirqs+0x128/0x9b0 kernel/softirq.c:537\nCPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.13.0-rc3-syzkaller-00174-ga024e377efed #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n __might_resched+0x5d4/0x780 kernel/sched/core.c:8758\n __mutex_lock_common kernel/locking/mutex.c:562 [inline]\n __mutex_lock+0x131/0xee0 kernel/locking/mutex.c:735\n crypto_put_default_null_skcipher+0x18/0x70 crypto/crypto_null.c:179\n aead_release+0x3d/0x50 crypto/algif_aead.c:489\n alg_do_release crypto/af_alg.c:118 [inline]\n alg_sock_destruct+0x86/0xc0 crypto/af_alg.c:502\n __sk_destruct+0x58/0x5f0 net/core/sock.c:2260\n rcu_do_batch kernel/rcu/tree.c:2567 [inline]\n rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2823\n handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:561\n run_ksoftirqd+0xca/0x130 kernel/softirq.c:950\n smpboot_thread_fn+0x544/0xa30 kernel/smpboot.c:164\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57903",
"url": "https://www.suse.com/security/cve/CVE-2024-57903"
},
{
"category": "external",
"summary": "SUSE Bug 1235967 for CVE-2024-57903",
"url": "https://bugzilla.suse.com/1235967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57903"
},
{
"cve": "CVE-2024-57904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: at91: call input_free_device() on allocated iio_dev\n\nCurrent implementation of at91_ts_register() calls input_free_deivce()\non st-\u003ets_input, however, the err label can be reached before the\nallocated iio_dev is stored to st-\u003ets_input. Thus call\ninput_free_device() on input instead of st-\u003ets_input.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57904",
"url": "https://www.suse.com/security/cve/CVE-2024-57904"
},
{
"category": "external",
"summary": "SUSE Bug 1236078 for CVE-2024-57904",
"url": "https://bugzilla.suse.com/1236078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57904"
},
{
"cve": "CVE-2024-57906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ti-ads8688: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57906",
"url": "https://www.suse.com/security/cve/CVE-2024-57906"
},
{
"category": "external",
"summary": "SUSE Bug 1236088 for CVE-2024-57906",
"url": "https://bugzilla.suse.com/1236088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-57906"
},
{
"cve": "CVE-2024-57907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: rockchip_saradc: fix information leak in triggered buffer\n\nThe \u0027data\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57907",
"url": "https://www.suse.com/security/cve/CVE-2024-57907"
},
{
"category": "external",
"summary": "SUSE Bug 1236090 for CVE-2024-57907",
"url": "https://bugzilla.suse.com/1236090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2024-57907"
},
{
"cve": "CVE-2024-57908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: imu: kmx61: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to user space from a\ntriggered buffer, but it does not set values for inactive channels, as\nit only uses iio_for_each_active_channel() to assign new values.\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57908",
"url": "https://www.suse.com/security/cve/CVE-2024-57908"
},
{
"category": "external",
"summary": "SUSE Bug 1236091 for CVE-2024-57908",
"url": "https://bugzilla.suse.com/1236091"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57908"
},
{
"cve": "CVE-2024-57910",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57910"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: vcnl4035: fix information leak in triggered buffer\n\nThe \u0027buffer\u0027 local array is used to push data to userspace from a\ntriggered buffer, but it does not set an initial value for the single\ndata element, which is an u16 aligned to 8 bytes. That leaves at least\n4 bytes uninitialized even after writing an integer value with\nregmap_read().\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57910",
"url": "https://www.suse.com/security/cve/CVE-2024-57910"
},
{
"category": "external",
"summary": "SUSE Bug 1236097 for CVE-2024-57910",
"url": "https://bugzilla.suse.com/1236097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57910"
},
{
"cve": "CVE-2024-57911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer\n\nThe \u0027data\u0027 array is allocated via kmalloc() and it is used to push data\nto user space from a triggered buffer, but it does not set values for\ninactive channels, as it only uses iio_for_each_active_channel()\nto assign new values.\n\nUse kzalloc for the memory allocation to avoid pushing uninitialized\ninformation to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57911",
"url": "https://www.suse.com/security/cve/CVE-2024-57911"
},
{
"category": "external",
"summary": "SUSE Bug 1236098 for CVE-2024-57911",
"url": "https://bugzilla.suse.com/1236098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57911"
},
{
"cve": "CVE-2024-57912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: pressure: zpa2326: fix information leak in triggered buffer\n\nThe \u0027sample\u0027 local struct is used to push data to user space from a\ntriggered buffer, but it has a hole between the temperature and the\ntimestamp (u32 pressure, u16 temperature, GAP, u64 timestamp).\nThis hole is never initialized.\n\nInitialize the struct to zero before using it to avoid pushing\nuninitialized information to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57912",
"url": "https://www.suse.com/security/cve/CVE-2024-57912"
},
{
"category": "external",
"summary": "SUSE Bug 1236101 for CVE-2024-57912",
"url": "https://bugzilla.suse.com/1236101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57912"
},
{
"cve": "CVE-2024-57913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Remove WARN_ON in functionfs_bind\n\nThis commit addresses an issue related to below kernel panic where\npanic_on_warn is enabled. It is caused by the unnecessary use of WARN_ON\nin functionsfs_bind, which easily leads to the following scenarios.\n\n1.adb_write in adbd 2. UDC write via configfs\n =================\t =====================\n\n-\u003eusb_ffs_open_thread() -\u003eUDC write\n -\u003eopen_functionfs() -\u003econfigfs_write_iter()\n -\u003eadb_open() -\u003egadget_dev_desc_UDC_store()\n -\u003eadb_write() -\u003eusb_gadget_register_driver_owner\n -\u003edriver_register()\n-\u003eStartMonitor() -\u003ebus_add_driver()\n -\u003eadb_read() -\u003egadget_bind_driver()\n\u003ctimes-out without BIND event\u003e -\u003econfigfs_composite_bind()\n -\u003eusb_add_function()\n-\u003eopen_functionfs() -\u003effs_func_bind()\n -\u003eadb_open() -\u003efunctionfs_bind()\n \u003cffs-\u003estate !=FFS_ACTIVE\u003e\n\nThe adb_open, adb_read, and adb_write operations are invoked from the\ndaemon, but trying to bind the function is a process that is invoked by\nUDC write through configfs, which opens up the possibility of a race\ncondition between the two paths. In this race scenario, the kernel panic\noccurs due to the WARN_ON from functionfs_bind when panic_on_warn is\nenabled. This commit fixes the kernel panic by removing the unnecessary\nWARN_ON.\n\nKernel panic - not syncing: kernel: panic_on_warn set ...\n[ 14.542395] Call trace:\n[ 14.542464] ffs_func_bind+0x1c8/0x14a8\n[ 14.542468] usb_add_function+0xcc/0x1f0\n[ 14.542473] configfs_composite_bind+0x468/0x588\n[ 14.542478] gadget_bind_driver+0x108/0x27c\n[ 14.542483] really_probe+0x190/0x374\n[ 14.542488] __driver_probe_device+0xa0/0x12c\n[ 14.542492] driver_probe_device+0x3c/0x220\n[ 14.542498] __driver_attach+0x11c/0x1fc\n[ 14.542502] bus_for_each_dev+0x104/0x160\n[ 14.542506] driver_attach+0x24/0x34\n[ 14.542510] bus_add_driver+0x154/0x270\n[ 14.542514] driver_register+0x68/0x104\n[ 14.542518] usb_gadget_register_driver_owner+0x48/0xf4\n[ 14.542523] gadget_dev_desc_UDC_store+0xf8/0x144\n[ 14.542526] configfs_write_iter+0xf0/0x138",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57913",
"url": "https://www.suse.com/security/cve/CVE-2024-57913"
},
{
"category": "external",
"summary": "SUSE Bug 1236102 for CVE-2024-57913",
"url": "https://bugzilla.suse.com/1236102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57913"
},
{
"cve": "CVE-2024-57915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57915"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57915",
"url": "https://www.suse.com/security/cve/CVE-2024-57915"
},
{
"category": "external",
"summary": "SUSE Bug 1236120 for CVE-2024-57915",
"url": "https://bugzilla.suse.com/1236120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57915"
},
{
"cve": "CVE-2024-57916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling\n\nResolve kernel panic caused by improper handling of IRQs while\naccessing GPIO values. This is done by replacing generic_handle_irq with\nhandle_nested_irq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57916",
"url": "https://www.suse.com/security/cve/CVE-2024-57916"
},
{
"category": "external",
"summary": "SUSE Bug 1236125 for CVE-2024-57916",
"url": "https://bugzilla.suse.com/1236125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57916"
},
{
"cve": "CVE-2024-57917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57917"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntopology: Keep the cpumask unchanged when printing cpumap\n\nDuring fuzz testing, the following warning was discovered:\n\n different return values (15 and 11) from vsnprintf(\"%*pbl\n \", ...)\n\n test:keyward is WARNING in kvasprintf\n WARNING: CPU: 55 PID: 1168477 at lib/kasprintf.c:30 kvasprintf+0x121/0x130\n Call Trace:\n kvasprintf+0x121/0x130\n kasprintf+0xa6/0xe0\n bitmap_print_to_buf+0x89/0x100\n core_siblings_list_read+0x7e/0xb0\n kernfs_file_read_iter+0x15b/0x270\n new_sync_read+0x153/0x260\n vfs_read+0x215/0x290\n ksys_read+0xb9/0x160\n do_syscall_64+0x56/0x100\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe call trace shows that kvasprintf() reported this warning during the\nprinting of core_siblings_list. kvasprintf() has several steps:\n\n (1) First, calculate the length of the resulting formatted string.\n\n (2) Allocate a buffer based on the returned length.\n\n (3) Then, perform the actual string formatting.\n\n (4) Check whether the lengths of the formatted strings returned in\n steps (1) and (2) are consistent.\n\nIf the core_cpumask is modified between steps (1) and (3), the lengths\nobtained in these two steps may not match. Indeed our test includes cpu\nhotplugging, which should modify core_cpumask while printing.\n\nTo fix this issue, cache the cpumask into a temporary variable before\ncalling cpumap_print_{list, cpumask}_to_buf(), to keep it unchanged\nduring the printing process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57917",
"url": "https://www.suse.com/security/cve/CVE-2024-57917"
},
{
"category": "external",
"summary": "SUSE Bug 1236127 for CVE-2024-57917",
"url": "https://bugzilla.suse.com/1236127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57917"
},
{
"cve": "CVE-2024-57922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add check for granularity in dml ceil/floor helpers\n\n[Why]\nWrapper functions for dcn_bw_ceil2() and dcn_bw_floor2()\nshould check for granularity is non zero to avoid assert and\ndivide-by-zero error in dcn_bw_ functions.\n\n[How]\nAdd check for granularity 0.\n\n(cherry picked from commit f6e09701c3eb2ccb8cb0518e0b67f1c69742a4ec)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57922",
"url": "https://www.suse.com/security/cve/CVE-2024-57922"
},
{
"category": "external",
"summary": "SUSE Bug 1236080 for CVE-2024-57922",
"url": "https://bugzilla.suse.com/1236080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57922"
},
{
"cve": "CVE-2024-57926",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57926"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Set private-\u003eall_drm_private[i]-\u003edrm to NULL if mtk_drm_bind returns err\n\nThe pointer need to be set to NULL, otherwise KASAN complains about\nuse-after-free. Because in mtk_drm_bind, all private\u0027s drm are set\nas follows.\n\nprivate-\u003eall_drm_private[i]-\u003edrm = drm;\n\nAnd drm will be released by drm_dev_put in case mtk_drm_kms_init returns\nfailure. However, the shutdown path still accesses the previous allocated\nmemory in drm_atomic_helper_shutdown.\n\n[ 84.874820] watchdog: watchdog0: watchdog did not stop!\n[ 86.512054] ==================================================================\n[ 86.513162] BUG: KASAN: use-after-free in drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.514258] Read of size 8 at addr ffff0000d46fc068 by task shutdown/1\n[ 86.515213]\n[ 86.515455] CPU: 1 UID: 0 PID: 1 Comm: shutdown Not tainted 6.13.0-rc1-mtk+gfa1a78e5d24b-dirty #55\n[ 86.516752] Hardware name: Unknown Product/Unknown Product, BIOS 2022.10 10/01/2022\n[ 86.517960] Call trace:\n[ 86.518333] show_stack+0x20/0x38 (C)\n[ 86.518891] dump_stack_lvl+0x90/0xd0\n[ 86.519443] print_report+0xf8/0x5b0\n[ 86.519985] kasan_report+0xb4/0x100\n[ 86.520526] __asan_report_load8_noabort+0x20/0x30\n[ 86.521240] drm_atomic_helper_shutdown+0x33c/0x378\n[ 86.521966] mtk_drm_shutdown+0x54/0x80\n[ 86.522546] platform_shutdown+0x64/0x90\n[ 86.523137] device_shutdown+0x260/0x5b8\n[ 86.523728] kernel_restart+0x78/0xf0\n[ 86.524282] __do_sys_reboot+0x258/0x2f0\n[ 86.524871] __arm64_sys_reboot+0x90/0xd8\n[ 86.525473] invoke_syscall+0x74/0x268\n[ 86.526041] el0_svc_common.constprop.0+0xb0/0x240\n[ 86.526751] do_el0_svc+0x4c/0x70\n[ 86.527251] el0_svc+0x4c/0xc0\n[ 86.527719] el0t_64_sync_handler+0x144/0x168\n[ 86.528367] el0t_64_sync+0x198/0x1a0\n[ 86.528920]\n[ 86.529157] The buggy address belongs to the physical page:\n[ 86.529972] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff0000d46fd4d0 pfn:0x1146fc\n[ 86.531319] flags: 0xbfffc0000000000(node=0|zone=2|lastcpupid=0xffff)\n[ 86.532267] raw: 0bfffc0000000000 0000000000000000 dead000000000122 0000000000000000\n[ 86.533390] raw: ffff0000d46fd4d0 0000000000000000 00000000ffffffff 0000000000000000\n[ 86.534511] page dumped because: kasan: bad access detected\n[ 86.535323]\n[ 86.535559] Memory state around the buggy address:\n[ 86.536265] ffff0000d46fbf00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.537314] ffff0000d46fbf80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.538363] \u003effff0000d46fc000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.544733] ^\n[ 86.551057] ffff0000d46fc080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.557510] ffff0000d46fc100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff\n[ 86.563928] ==================================================================\n[ 86.571093] Disabling lock debugging due to kernel taint\n[ 86.577642] Unable to handle kernel paging request at virtual address e0e9c0920000000b\n[ 86.581834] KASAN: maybe wild-memory-access in range [0x0752049000000058-0x075204900000005f]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57926",
"url": "https://www.suse.com/security/cve/CVE-2024-57926"
},
{
"category": "external",
"summary": "SUSE Bug 1236082 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236082"
},
{
"category": "external",
"summary": "SUSE Bug 1236084 for CVE-2024-57926",
"url": "https://bugzilla.suse.com/1236084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-57926"
},
{
"cve": "CVE-2024-57929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57929"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm array: fix releasing a faulty array block twice in dm_array_cursor_end\n\nWhen dm_bm_read_lock() fails due to locking or checksum errors, it\nreleases the faulty block implicitly while leaving an invalid output\npointer behind. The caller of dm_bm_read_lock() should not operate on\nthis invalid dm_block pointer, or it will lead to undefined result.\nFor example, the dm_array_cursor incorrectly caches the invalid pointer\non reading a faulty array block, causing a double release in\ndm_array_cursor_end(), then hitting the BUG_ON in dm-bufio cache_put().\n\nReproduce steps:\n\n1. initialize a cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. wipe the second array block offline\n\ndmsteup remove cache cmeta cdata corig\nmapping_root=$(dd if=/dev/sdc bs=1c count=8 skip=192 \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\nablock=$(dd if=/dev/sdc bs=1c count=8 skip=$((4096*mapping_root+2056)) \\\n2\u003e/dev/null | hexdump -e \u00271/8 \"%u\\n\"\u0027)\ndd if=/dev/zero of=/dev/sdc bs=4k count=1 seek=$ablock\n\n3. try reopen the cache device\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc $262144\"\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\ndevice-mapper: array: array_block_check failed: blocknr 0 != wanted 10\ndevice-mapper: block manager: array validator check failed for block 10\ndevice-mapper: array: get_ablock failed\ndevice-mapper: cache metadata: dm_array_cursor_next for mapping failed\n------------[ cut here ]------------\nkernel BUG at drivers/md/dm-bufio.c:638!\n\nFix by setting the cached block pointer to NULL on errors.\n\nIn addition to the reproducer described above, this fix can be\nverified using the \"array_cursor/damaged\" test in dm-unit:\n dm-unit run /pdata/array_cursor/damaged --kernel-dir \u003cKERNEL_DIR\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57929",
"url": "https://www.suse.com/security/cve/CVE-2024-57929"
},
{
"category": "external",
"summary": "SUSE Bug 1236096 for CVE-2024-57929",
"url": "https://bugzilla.suse.com/1236096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57929"
},
{
"cve": "CVE-2024-57931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57931"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: ignore unknown extended permissions\n\nWhen evaluating extended permissions, ignore unknown permissions instead\nof calling BUG(). This commit ensures that future permissions can be\nadded without interfering with older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57931",
"url": "https://www.suse.com/security/cve/CVE-2024-57931"
},
{
"category": "external",
"summary": "SUSE Bug 1236192 for CVE-2024-57931",
"url": "https://bugzilla.suse.com/1236192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57931"
},
{
"cve": "CVE-2024-57932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XDP xmit NDO on existence of xdp queues\n\nIn GVE, dedicated XDP queues only exist when an XDP program is installed\nand the interface is up. As such, the NDO XDP XMIT callback should\nreturn early if either of these conditions are false.\n\nIn the case of no loaded XDP program, priv-\u003enum_xdp_queues=0 which can\ncause a divide-by-zero error, and in the case of interface down,\nnum_xdp_queues remains untouched to persist XDP queue count for the next\ninterface up, but the TX pointer itself would be NULL.\n\nThe XDP xmit callback also needs to synchronize with a device\ntransitioning from open to close. This synchronization will happen via\nthe GVE_PRIV_FLAGS_NAPI_ENABLED bit along with a synchronize_net() call,\nwhich waits for any RCU critical sections at call-time to complete.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57932",
"url": "https://www.suse.com/security/cve/CVE-2024-57932"
},
{
"category": "external",
"summary": "SUSE Bug 1236190 for CVE-2024-57932",
"url": "https://bugzilla.suse.com/1236190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57932"
},
{
"cve": "CVE-2024-57933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57933"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: guard XSK operations on the existence of queues\n\nThis patch predicates the enabling and disabling of XSK pools on the\nexistence of queues. As it stands, if the interface is down, disabling\nor enabling XSK pools would result in a crash, as the RX queue pointer\nwould be NULL. XSK pool registration will occur as part of the next\ninterface up.\n\nSimilarly, xsk_wakeup needs be guarded against queues disappearing\nwhile the function is executing, so a check against the\nGVE_PRIV_FLAGS_NAPI_ENABLED flag is added to synchronize with the\ndisabling of the bit and the synchronize_net() in gve_turndown.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57933",
"url": "https://www.suse.com/security/cve/CVE-2024-57933"
},
{
"category": "external",
"summary": "SUSE Bug 1236178 for CVE-2024-57933",
"url": "https://bugzilla.suse.com/1236178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57933"
},
{
"cve": "CVE-2024-57935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix accessing invalid dip_ctx during destroying QP\n\nIf it fails to modify QP to RTR, dip_ctx will not be attached. And\nduring detroying QP, the invalid dip_ctx pointer will be accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57935",
"url": "https://www.suse.com/security/cve/CVE-2024-57935"
},
{
"category": "external",
"summary": "SUSE Bug 1236180 for CVE-2024-57935",
"url": "https://bugzilla.suse.com/1236180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57935"
},
{
"cve": "CVE-2024-57936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57936"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix max SGEs for the Work Request\n\nGen P7 supports up to 13 SGEs for now. WQE software structure\ncan hold only 6 now. Since the max send sge is reported as\n13, the stack can give requests up to 13 SGEs. This is causing\ntraffic failures and system crashes.\n\nUse the define for max SGE supported for variable size. This\nwill work for both static and variable WQEs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57936",
"url": "https://www.suse.com/security/cve/CVE-2024-57936"
},
{
"category": "external",
"summary": "SUSE Bug 1236181 for CVE-2024-57936",
"url": "https://bugzilla.suse.com/1236181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57936"
},
{
"cve": "CVE-2024-57938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sctp: Prevent autoclose integer overflow in sctp_association_init()\n\nWhile by default max_autoclose equals to INT_MAX / HZ, one may set\nnet.sctp.max_autoclose to UINT_MAX. There is code in\nsctp_association_init() that can consequently trigger overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57938",
"url": "https://www.suse.com/security/cve/CVE-2024-57938"
},
{
"category": "external",
"summary": "SUSE Bug 1236182 for CVE-2024-57938",
"url": "https://bugzilla.suse.com/1236182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57938"
},
{
"cve": "CVE-2024-57940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix the infinite loop in exfat_readdir()\n\nIf the file system is corrupted so that a cluster is linked to\nitself in the cluster chain, and there is an unused directory\nentry in the cluster, \u0027dentry\u0027 will not be incremented, causing\ncondition \u0027dentry \u003c max_dentries\u0027 unable to prevent an infinite\nloop.\n\nThis infinite loop causes s_lock not to be released, and other\ntasks will hang, such as exfat_sync_fs().\n\nThis commit stops traversing the cluster chain when there is unused\ndirectory entry in the cluster to avoid this infinite loop.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57940",
"url": "https://www.suse.com/security/cve/CVE-2024-57940"
},
{
"category": "external",
"summary": "SUSE Bug 1236227 for CVE-2024-57940",
"url": "https://bugzilla.suse.com/1236227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57940"
},
{
"cve": "CVE-2024-57946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-57946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-blk: don\u0027t keep queue frozen during system suspend\n\nCommit 4ce6e2db00de (\"virtio-blk: Ensure no requests in virtqueues before\ndeleting vqs.\") replaces queue quiesce with queue freeze in virtio-blk\u0027s\nPM callbacks. And the motivation is to drain inflight IOs before suspending.\n\nblock layer\u0027s queue freeze looks very handy, but it is also easy to cause\ndeadlock, such as, any attempt to call into bio_queue_enter() may run into\ndeadlock if the queue is frozen in current context. There are all kinds\nof -\u003esuspend() called in suspend context, so keeping queue frozen in the\nwhole suspend context isn\u0027t one good idea. And Marek reported lockdep\nwarning[1] caused by virtio-blk\u0027s freeze queue in virtblk_freeze().\n\n[1] https://lore.kernel.org/linux-block/ca16370e-d646-4eee-b9cc-87277c89c43c@samsung.com/\n\nGiven the motivation is to drain in-flight IOs, it can be done by calling\nfreeze \u0026 unfreeze, meantime restore to previous behavior by keeping queue\nquiesced during suspend.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-57946",
"url": "https://www.suse.com/security/cve/CVE-2024-57946"
},
{
"category": "external",
"summary": "SUSE Bug 1236247 for CVE-2024-57946",
"url": "https://bugzilla.suse.com/1236247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-57946"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
},
{
"cve": "CVE-2025-21632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure shadow stack is active before \"getting\" registers\n\nThe x86 shadow stack support has its own set of registers. Those registers\nare XSAVE-managed, but they are \"supervisor state components\" which means\nthat userspace can not touch them with XSAVE/XRSTOR. It also means that\nthey are not accessible from the existing ptrace ABI for XSAVE state.\nThus, there is a new ptrace get/set interface for it.\n\nThe regset code that ptrace uses provides an -\u003eactive() handler in\naddition to the get/set ones. For shadow stack this -\u003eactive() handler\nverifies that shadow stack is enabled via the ARCH_SHSTK_SHSTK bit in the\nthread struct. The -\u003eactive() handler is checked from some call sites of\nthe regset get/set handlers, but not the ptrace ones. This was not\nunderstood when shadow stack support was put in place.\n\nAs a result, both the set/get handlers can be called with\nXFEATURE_CET_USER in its init state, which would cause get_xsave_addr() to\nreturn NULL and trigger a WARN_ON(). The ssp_set() handler luckily has an\nssp_active() check to avoid surprising the kernel with shadow stack\nbehavior when the kernel is not ready for it (ARCH_SHSTK_SHSTK==0). That\ncheck just happened to avoid the warning.\n\nBut the -\u003eget() side wasn\u0027t so lucky. It can be called with shadow stacks\ndisabled, triggering the warning in practice, as reported by Christina\nSchimpe:\n\nWARNING: CPU: 5 PID: 1773 at arch/x86/kernel/fpu/regset.c:198 ssp_get+0x89/0xa0\n[...]\nCall Trace:\n\u003cTASK\u003e\n? show_regs+0x6e/0x80\n? ssp_get+0x89/0xa0\n? __warn+0x91/0x150\n? ssp_get+0x89/0xa0\n? report_bug+0x19d/0x1b0\n? handle_bug+0x46/0x80\n? exc_invalid_op+0x1d/0x80\n? asm_exc_invalid_op+0x1f/0x30\n? __pfx_ssp_get+0x10/0x10\n? ssp_get+0x89/0xa0\n? ssp_get+0x52/0xa0\n__regset_get+0xad/0xf0\ncopy_regset_to_user+0x52/0xc0\nptrace_regset+0x119/0x140\nptrace_request+0x13c/0x850\n? wait_task_inactive+0x142/0x1d0\n? do_syscall_64+0x6d/0x90\narch_ptrace+0x102/0x300\n[...]\n\nEnsure that shadow stacks are active in a thread before looking them up\nin the XSAVE buffer. Since ARCH_SHSTK_SHSTK and user_ssp[SHSTK_EN] are\nset at the same time, the active check ensures that there will be\nsomething to find in the XSAVE buffer.\n\n[ dhansen: changelog/subject tweaks ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21632",
"url": "https://www.suse.com/security/cve/CVE-2025-21632"
},
{
"category": "external",
"summary": "SUSE Bug 1236106 for CVE-2025-21632",
"url": "https://bugzilla.suse.com/1236106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21632"
},
{
"cve": "CVE-2025-21645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it\n\nWakeup for IRQ1 should be disabled only in cases where i8042 had\nactually enabled it, otherwise \"wake_depth\" for this IRQ will try to\ndrop below zero and there will be an unpleasant WARN() logged:\n\nkernel: atkbd serio0: Disabling IRQ1 wakeup source to avoid platform firmware bug\nkernel: ------------[ cut here ]------------\nkernel: Unbalanced IRQ 1 wake disable\nkernel: WARNING: CPU: 10 PID: 6431 at kernel/irq/manage.c:920 irq_set_irq_wake+0x147/0x1a0\n\nThe PMC driver uses DEFINE_SIMPLE_DEV_PM_OPS() to define its dev_pm_ops\nwhich sets amd_pmc_suspend_handler() to the .suspend, .freeze, and\n.poweroff handlers. i8042_pm_suspend(), however, is only set as\nthe .suspend handler.\n\nFix the issue by call PMC suspend handler only from the same set of\ndev_pm_ops handlers as i8042_pm_suspend(), which currently means just\nthe .suspend handler.\n\nTo reproduce this issue try hibernating (S4) the machine after a fresh boot\nwithout putting it into s2idle first.\n\n[ij: edited the commit message.]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21645",
"url": "https://www.suse.com/security/cve/CVE-2025-21645"
},
{
"category": "external",
"summary": "SUSE Bug 1236131 for CVE-2025-21645",
"url": "https://bugzilla.suse.com/1236131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21645"
},
{
"cve": "CVE-2025-21646",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21646"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix the maximum cell name length\n\nThe kafs filesystem limits the maximum length of a cell to 256 bytes, but a\nproblem occurs if someone actually does that: kafs tries to create a\ndirectory under /proc/net/afs/ with the name of the cell, but that fails\nwith a warning:\n\n WARNING: CPU: 0 PID: 9 at fs/proc/generic.c:405\n\nbecause procfs limits the maximum filename length to 255.\n\nHowever, the DNS limits the maximum lookup length and, by extension, the\nmaximum cell name, to 255 less two (length count and trailing NUL).\n\nFix this by limiting the maximum acceptable cellname length to 253. This\nalso allows us to be sure we can create the \"/afs/.\u003ccell\u003e/\" mountpoint too.\n\nFurther, split the YFS VL record cell name maximum to be the 256 allowed by\nthe protocol and ignore the record retrieved by YFSVL.GetCellName if it\nexceeds 253.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21646",
"url": "https://www.suse.com/security/cve/CVE-2025-21646"
},
{
"category": "external",
"summary": "SUSE Bug 1236168 for CVE-2025-21646",
"url": "https://bugzilla.suse.com/1236168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21646"
},
{
"cve": "CVE-2025-21649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21649"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when 1588 is sent on HIP08 devices\n\nCurrently, HIP08 devices does not register the ptp devices, so the\nhdev-\u003eptp is NULL. But the tx process would still try to set hardware time\nstamp info with SKBTX_HW_TSTAMP flag and cause a kernel crash.\n\n[ 128.087798] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n...\n[ 128.280251] pc : hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.286600] lr : hclge_ptp_set_tx_info+0x20/0x140 [hclge]\n[ 128.292938] sp : ffff800059b93140\n[ 128.297200] x29: ffff800059b93140 x28: 0000000000003280\n[ 128.303455] x27: ffff800020d48280 x26: ffff0cb9dc814080\n[ 128.309715] x25: ffff0cb9cde93fa0 x24: 0000000000000001\n[ 128.315969] x23: 0000000000000000 x22: 0000000000000194\n[ 128.322219] x21: ffff0cd94f986000 x20: 0000000000000000\n[ 128.328462] x19: ffff0cb9d2a166c0 x18: 0000000000000000\n[ 128.334698] x17: 0000000000000000 x16: ffffcf1fc523ed24\n[ 128.340934] x15: 0000ffffd530a518 x14: 0000000000000000\n[ 128.347162] x13: ffff0cd6bdb31310 x12: 0000000000000368\n[ 128.353388] x11: ffff0cb9cfbc7070 x10: ffff2cf55dd11e02\n[ 128.359606] x9 : ffffcf1f85a212b4 x8 : ffff0cd7cf27dab0\n[ 128.365831] x7 : 0000000000000a20 x6 : ffff0cd7cf27d000\n[ 128.372040] x5 : 0000000000000000 x4 : 000000000000ffff\n[ 128.378243] x3 : 0000000000000400 x2 : ffffcf1f85a21294\n[ 128.384437] x1 : ffff0cb9db520080 x0 : ffff0cb9db500080\n[ 128.390626] Call trace:\n[ 128.393964] hclge_ptp_set_tx_info+0x2c/0x140 [hclge]\n[ 128.399893] hns3_nic_net_xmit+0x39c/0x4c4 [hns3]\n[ 128.405468] xmit_one.constprop.0+0xc4/0x200\n[ 128.410600] dev_hard_start_xmit+0x54/0xf0\n[ 128.415556] sch_direct_xmit+0xe8/0x634\n[ 128.420246] __dev_queue_xmit+0x224/0xc70\n[ 128.425101] dev_queue_xmit+0x1c/0x40\n[ 128.429608] ovs_vport_send+0xac/0x1a0 [openvswitch]\n[ 128.435409] do_output+0x60/0x17c [openvswitch]\n[ 128.440770] do_execute_actions+0x898/0x8c4 [openvswitch]\n[ 128.446993] ovs_execute_actions+0x64/0xf0 [openvswitch]\n[ 128.453129] ovs_dp_process_packet+0xa0/0x224 [openvswitch]\n[ 128.459530] ovs_vport_receive+0x7c/0xfc [openvswitch]\n[ 128.465497] internal_dev_xmit+0x34/0xb0 [openvswitch]\n[ 128.471460] xmit_one.constprop.0+0xc4/0x200\n[ 128.476561] dev_hard_start_xmit+0x54/0xf0\n[ 128.481489] __dev_queue_xmit+0x968/0xc70\n[ 128.486330] dev_queue_xmit+0x1c/0x40\n[ 128.490856] ip_finish_output2+0x250/0x570\n[ 128.495810] __ip_finish_output+0x170/0x1e0\n[ 128.500832] ip_finish_output+0x3c/0xf0\n[ 128.505504] ip_output+0xbc/0x160\n[ 128.509654] ip_send_skb+0x58/0xd4\n[ 128.513892] udp_send_skb+0x12c/0x354\n[ 128.518387] udp_sendmsg+0x7a8/0x9c0\n[ 128.522793] inet_sendmsg+0x4c/0x8c\n[ 128.527116] __sock_sendmsg+0x48/0x80\n[ 128.531609] __sys_sendto+0x124/0x164\n[ 128.536099] __arm64_sys_sendto+0x30/0x5c\n[ 128.540935] invoke_syscall+0x50/0x130\n[ 128.545508] el0_svc_common.constprop.0+0x10c/0x124\n[ 128.551205] do_el0_svc+0x34/0xdc\n[ 128.555347] el0_svc+0x20/0x30\n[ 128.559227] el0_sync_handler+0xb8/0xc0\n[ 128.563883] el0_sync+0x160/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21649",
"url": "https://www.suse.com/security/cve/CVE-2025-21649"
},
{
"category": "external",
"summary": "SUSE Bug 1236143 for CVE-2025-21649",
"url": "https://bugzilla.suse.com/1236143"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21649"
},
{
"cve": "CVE-2025-21650",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21650"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue\n\nThe TQP BAR space is divided into two segments. TQPs 0-1023 and TQPs\n1024-1279 are in different BAR space addresses. However,\nhclge_fetch_pf_reg does not distinguish the tqp space information when\nreading the tqp space information. When the number of TQPs is greater\nthan 1024, access bar space overwriting occurs.\nThe problem of different segments has been considered during the\ninitialization of tqp.io_base. Therefore, tqp.io_base is directly used\nwhen the queue is read in hclge_fetch_pf_reg.\n\nThe error message:\n\nUnable to handle kernel paging request at virtual address ffff800037200000\npc : hclge_fetch_pf_reg+0x138/0x250 [hclge]\nlr : hclge_get_regs+0x84/0x1d0 [hclge]\nCall trace:\n hclge_fetch_pf_reg+0x138/0x250 [hclge]\n hclge_get_regs+0x84/0x1d0 [hclge]\n hns3_get_regs+0x2c/0x50 [hns3]\n ethtool_get_regs+0xf4/0x270\n dev_ethtool+0x674/0x8a0\n dev_ioctl+0x270/0x36c\n sock_do_ioctl+0x110/0x2a0\n sock_ioctl+0x2ac/0x530\n __arm64_sys_ioctl+0xa8/0x100\n invoke_syscall+0x4c/0x124\n el0_svc_common.constprop.0+0x140/0x15c\n do_el0_svc+0x30/0xd0\n el0_svc+0x1c/0x2c\n el0_sync_handler+0xb0/0xb4\n el0_sync+0x168/0x180",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21650",
"url": "https://www.suse.com/security/cve/CVE-2025-21650"
},
{
"category": "external",
"summary": "SUSE Bug 1236144 for CVE-2025-21650",
"url": "https://bugzilla.suse.com/1236144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21650"
},
{
"cve": "CVE-2025-21651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21651"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: don\u0027t auto enable misc vector\n\nCurrently, there is a time window between misc irq enabled\nand service task inited. If an interrupte is reported at\nthis time, it will cause warning like below:\n\n[ 16.324639] Call trace:\n[ 16.324641] __queue_delayed_work+0xb8/0xe0\n[ 16.324643] mod_delayed_work_on+0x78/0xd0\n[ 16.324655] hclge_errhand_task_schedule+0x58/0x90 [hclge]\n[ 16.324662] hclge_misc_irq_handle+0x168/0x240 [hclge]\n[ 16.324666] __handle_irq_event_percpu+0x64/0x1e0\n[ 16.324667] handle_irq_event+0x80/0x170\n[ 16.324670] handle_fasteoi_edge_irq+0x110/0x2bc\n[ 16.324671] __handle_domain_irq+0x84/0xfc\n[ 16.324673] gic_handle_irq+0x88/0x2c0\n[ 16.324674] el1_irq+0xb8/0x140\n[ 16.324677] arch_cpu_idle+0x18/0x40\n[ 16.324679] default_idle_call+0x5c/0x1bc\n[ 16.324682] cpuidle_idle_call+0x18c/0x1c4\n[ 16.324684] do_idle+0x174/0x17c\n[ 16.324685] cpu_startup_entry+0x30/0x6c\n[ 16.324687] secondary_start_kernel+0x1a4/0x280\n[ 16.324688] ---[ end trace 6aa0bff672a964aa ]---\n\nSo don\u0027t auto enable misc vector when request irq..",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21651",
"url": "https://www.suse.com/security/cve/CVE-2025-21651"
},
{
"category": "external",
"summary": "SUSE Bug 1236145 for CVE-2025-21651",
"url": "https://bugzilla.suse.com/1236145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21651"
},
{
"cve": "CVE-2025-21652",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21652"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvlan: Fix use-after-free in ipvlan_get_iflink().\n\nsyzbot presented an use-after-free report [0] regarding ipvlan and\nlinkwatch.\n\nipvlan does not hold a refcnt of the lower device unlike vlan and\nmacvlan.\n\nIf the linkwatch work is triggered for the ipvlan dev, the lower dev\nmight have already been freed, resulting in UAF of ipvlan-\u003ephy_dev in\nipvlan_get_iflink().\n\nWe can delay the lower dev unregistration like vlan and macvlan by\nholding the lower dev\u0027s refcnt in dev-\u003enetdev_ops-\u003endo_init() and\nreleasing it in dev-\u003epriv_destructor().\n\nJakub pointed out calling .ndo_XXX after unregister_netdevice() has\nreturned is error prone and suggested [1] addressing this UAF in the\ncore by taking commit 750e51603395 (\"net: avoid potential UAF in\ndefault_operstate()\") further.\n\nLet\u0027s assume unregistering devices DOWN and use RCU protection in\ndefault_operstate() not to race with the device unregistration.\n\n[0]:\nBUG: KASAN: slab-use-after-free in ipvlan_get_iflink+0x84/0x88 drivers/net/ipvlan/ipvlan_main.c:353\nRead of size 4 at addr ffff0000d768c0e0 by task kworker/u8:35/6944\n\nCPU: 0 UID: 0 PID: 6944 Comm: kworker/u8:35 Not tainted 6.13.0-rc2-g9bc5c9515b48 #12 4c3cb9e8b4565456f6a355f312ff91f4f29b3c47\nHardware name: linux,dummy-virt (DT)\nWorkqueue: events_unbound linkwatch_event\nCall trace:\n show_stack+0x38/0x50 arch/arm64/kernel/stacktrace.c:484 (C)\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0xbc/0x108 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x16c/0x6f0 mm/kasan/report.c:489\n kasan_report+0xc0/0x120 mm/kasan/report.c:602\n __asan_report_load4_noabort+0x20/0x30 mm/kasan/report_generic.c:380\n ipvlan_get_iflink+0x84/0x88 drivers/net/ipvlan/ipvlan_main.c:353\n dev_get_iflink+0x7c/0xd8 net/core/dev.c:674\n default_operstate net/core/link_watch.c:45 [inline]\n rfc2863_policy+0x144/0x360 net/core/link_watch.c:72\n linkwatch_do_dev+0x60/0x228 net/core/link_watch.c:175\n __linkwatch_run_queue+0x2f4/0x5b8 net/core/link_watch.c:239\n linkwatch_event+0x64/0xa8 net/core/link_watch.c:282\n process_one_work+0x700/0x1398 kernel/workqueue.c:3229\n process_scheduled_works kernel/workqueue.c:3310 [inline]\n worker_thread+0x8c4/0xe10 kernel/workqueue.c:3391\n kthread+0x2b0/0x360 kernel/kthread.c:389\n ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862\n\nAllocated by task 9303:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x68 mm/kasan/common.c:68\n kasan_save_alloc_info+0x44/0x58 mm/kasan/generic.c:568\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0x84/0xa0 mm/kasan/common.c:394\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __do_kmalloc_node mm/slub.c:4283 [inline]\n __kmalloc_node_noprof+0x2a0/0x560 mm/slub.c:4289\n __kvmalloc_node_noprof+0x9c/0x230 mm/util.c:650\n alloc_netdev_mqs+0xb4/0x1118 net/core/dev.c:11209\n rtnl_create_link+0x2b8/0xb60 net/core/rtnetlink.c:3595\n rtnl_newlink_create+0x19c/0x868 net/core/rtnetlink.c:3771\n __rtnl_newlink net/core/rtnetlink.c:3896 [inline]\n rtnl_newlink+0x122c/0x15c0 net/core/rtnetlink.c:4011\n rtnetlink_rcv_msg+0x61c/0x918 net/core/rtnetlink.c:6901\n netlink_rcv_skb+0x1dc/0x398 net/netlink/af_netlink.c:2542\n rtnetlink_rcv+0x34/0x50 net/core/rtnetlink.c:6928\n netlink_unicast_kernel net/netlink/af_netlink.c:1321 [inline]\n netlink_unicast+0x618/0x838 net/netlink/af_netlink.c:1347\n netlink_sendmsg+0x5fc/0x8b0 net/netlink/af_netlink.c:1891\n sock_sendmsg_nosec net/socket.c:711 [inline]\n __sock_sendmsg net/socket.c:726 [inline]\n __sys_sendto+0x2ec/0x438 net/socket.c:2197\n __do_sys_sendto net/socket.c:2204 [inline]\n __se_sys_sendto net/socket.c:2200 [inline]\n __arm64_sys_sendto+0xe4/0x110 net/socket.c:2200\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x90/0x278 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x13c/0x250 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x54/0x70 arch/arm64/kernel/syscall.c:151\n el\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21652",
"url": "https://www.suse.com/security/cve/CVE-2025-21652"
},
{
"category": "external",
"summary": "SUSE Bug 1236160 for CVE-2025-21652",
"url": "https://bugzilla.suse.com/1236160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21652"
},
{
"cve": "CVE-2025-21653",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21653"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute\n\nsyzbot found that TCA_FLOW_RSHIFT attribute was not validated.\nRight shitfing a 32bit integer is undefined for large shift values.\n\nUBSAN: shift-out-of-bounds in net/sched/cls_flow.c:329:23\nshift exponent 9445 is too large for 32-bit type \u0027u32\u0027 (aka \u0027unsigned int\u0027)\nCPU: 1 UID: 0 PID: 54 Comm: kworker/u8:3 Not tainted 6.13.0-rc3-syzkaller-00180-g4f619d518db9 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: ipv6_addrconf addrconf_dad_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n ubsan_epilogue lib/ubsan.c:231 [inline]\n __ubsan_handle_shift_out_of_bounds+0x3c8/0x420 lib/ubsan.c:468\n flow_classify+0x24d5/0x25b0 net/sched/cls_flow.c:329\n tc_classify include/net/tc_wrapper.h:197 [inline]\n __tcf_classify net/sched/cls_api.c:1771 [inline]\n tcf_classify+0x420/0x1160 net/sched/cls_api.c:1867\n sfb_classify net/sched/sch_sfb.c:260 [inline]\n sfb_enqueue+0x3ad/0x18b0 net/sched/sch_sfb.c:318\n dev_qdisc_enqueue+0x4b/0x290 net/core/dev.c:3793\n __dev_xmit_skb net/core/dev.c:3889 [inline]\n __dev_queue_xmit+0xf0e/0x3f50 net/core/dev.c:4400\n dev_queue_xmit include/linux/netdevice.h:3168 [inline]\n neigh_hh_output include/net/neighbour.h:523 [inline]\n neigh_output include/net/neighbour.h:537 [inline]\n ip_finish_output2+0xd41/0x1390 net/ipv4/ip_output.c:236\n iptunnel_xmit+0x55d/0x9b0 net/ipv4/ip_tunnel_core.c:82\n udp_tunnel_xmit_skb+0x262/0x3b0 net/ipv4/udp_tunnel_core.c:173\n geneve_xmit_skb drivers/net/geneve.c:916 [inline]\n geneve_xmit+0x21dc/0x2d00 drivers/net/geneve.c:1039\n __netdev_start_xmit include/linux/netdevice.h:5002 [inline]\n netdev_start_xmit include/linux/netdevice.h:5011 [inline]\n xmit_one net/core/dev.c:3590 [inline]\n dev_hard_start_xmit+0x27a/0x7d0 net/core/dev.c:3606\n __dev_queue_xmit+0x1b73/0x3f50 net/core/dev.c:4434",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21653",
"url": "https://www.suse.com/security/cve/CVE-2025-21653"
},
{
"category": "external",
"summary": "SUSE Bug 1236161 for CVE-2025-21653",
"url": "https://bugzilla.suse.com/1236161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21653"
},
{
"cve": "CVE-2025-21655",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21655"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/eventfd: ensure io_eventfd_signal() defers another RCU period\n\nio_eventfd_do_signal() is invoked from an RCU callback, but when\ndropping the reference to the io_ev_fd, it calls io_eventfd_free()\ndirectly if the refcount drops to zero. This isn\u0027t correct, as any\npotential freeing of the io_ev_fd should be deferred another RCU grace\nperiod.\n\nJust call io_eventfd_put() rather than open-code the dec-and-test and\nfree, which will correctly defer it another RCU grace period.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21655",
"url": "https://www.suse.com/security/cve/CVE-2025-21655"
},
{
"category": "external",
"summary": "SUSE Bug 1236163 for CVE-2025-21655",
"url": "https://bugzilla.suse.com/1236163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21655"
},
{
"cve": "CVE-2025-21656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur\n\nscsi_execute_cmd() function can return both negative (linux codes) and\npositive (scsi_cmnd result field) error codes.\n\nCurrently the driver just passes error codes of scsi_execute_cmd() to\nhwmon core, which is incorrect because hwmon only checks for negative\nerror codes. This leads to hwmon reporting uninitialized data to\nuserspace in case of SCSI errors (for example if the disk drive was\ndisconnected).\n\nThis patch checks scsi_execute_cmd() output and returns -EIO if it\u0027s\nerror code is positive.\n\n[groeck: Avoid inline variable declaration for portability]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21656",
"url": "https://www.suse.com/security/cve/CVE-2025-21656"
},
{
"category": "external",
"summary": "SUSE Bug 1236248 for CVE-2025-21656",
"url": "https://bugzilla.suse.com/1236248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "low"
}
],
"title": "CVE-2025-21656"
},
{
"cve": "CVE-2025-21662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21662"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix variable not being completed when function returns\n\nWhen cmd_alloc_index(), fails cmd_work_handler() needs\nto complete ent-\u003eslotted before returning early.\nOtherwise the task which issued the command may hang:\n\n mlx5_core 0000:01:00.0: cmd_work_handler:877:(pid 3880418): failed to allocate command entry\n INFO: task kworker/13:2:4055883 blocked for more than 120 seconds.\n Not tainted 4.19.90-25.44.v2101.ky10.aarch64 #1\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n kworker/13:2 D 0 4055883 2 0x00000228\n Workqueue: events mlx5e_tx_dim_work [mlx5_core]\n Call trace:\n __switch_to+0xe8/0x150\n __schedule+0x2a8/0x9b8\n schedule+0x2c/0x88\n schedule_timeout+0x204/0x478\n wait_for_common+0x154/0x250\n wait_for_completion+0x28/0x38\n cmd_exec+0x7a0/0xa00 [mlx5_core]\n mlx5_cmd_exec+0x54/0x80 [mlx5_core]\n mlx5_core_modify_cq+0x6c/0x80 [mlx5_core]\n mlx5_core_modify_cq_moderation+0xa0/0xb8 [mlx5_core]\n mlx5e_tx_dim_work+0x54/0x68 [mlx5_core]\n process_one_work+0x1b0/0x448\n worker_thread+0x54/0x468\n kthread+0x134/0x138\n ret_from_fork+0x10/0x18",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21662",
"url": "https://www.suse.com/security/cve/CVE-2025-21662"
},
{
"category": "external",
"summary": "SUSE Bug 1236198 for CVE-2025-21662",
"url": "https://bugzilla.suse.com/1236198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21662"
},
{
"cve": "CVE-2025-21663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: dwmac-tegra: Read iommu stream id from device tree\n\nNvidia\u0027s Tegra MGBE controllers require the IOMMU \"Stream ID\" (SID) to be\nwritten to the MGBE_WRAP_AXI_ASID0_CTRL register.\n\nThe current driver is hard coded to use MGBE0\u0027s SID for all controllers.\nThis causes softirq time outs and kernel panics when using controllers\nother than MGBE0.\n\nExample dmesg errors when an ethernet cable is connected to MGBE1:\n\n[ 116.133290] tegra-mgbe 6910000.ethernet eth1: Link is Up - 1Gbps/Full - flow control rx/tx\n[ 121.851283] tegra-mgbe 6910000.ethernet eth1: NETDEV WATCHDOG: CPU: 5: transmit queue 0 timed out 5690 ms\n[ 121.851782] tegra-mgbe 6910000.ethernet eth1: Reset adapter.\n[ 121.892464] tegra-mgbe 6910000.ethernet eth1: Register MEM_TYPE_PAGE_POOL RxQ-0\n[ 121.905920] tegra-mgbe 6910000.ethernet eth1: PHY [stmmac-1:00] driver [Aquantia AQR113] (irq=171)\n[ 121.907356] tegra-mgbe 6910000.ethernet eth1: Enabling Safety Features\n[ 121.907578] tegra-mgbe 6910000.ethernet eth1: IEEE 1588-2008 Advanced Timestamp supported\n[ 121.908399] tegra-mgbe 6910000.ethernet eth1: registered PTP clock\n[ 121.908582] tegra-mgbe 6910000.ethernet eth1: configuring for phy/10gbase-r link mode\n[ 125.961292] tegra-mgbe 6910000.ethernet eth1: Link is Up - 1Gbps/Full - flow control rx/tx\n[ 181.921198] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:\n[ 181.921404] rcu: \t7-....: (1 GPs behind) idle=540c/1/0x4000000000000002 softirq=1748/1749 fqs=2337\n[ 181.921684] rcu: \t(detected by 4, t=6002 jiffies, g=1357, q=1254 ncpus=8)\n[ 181.921878] Sending NMI from CPU 4 to CPUs 7:\n[ 181.921886] NMI backtrace for cpu 7\n[ 181.922131] CPU: 7 UID: 0 PID: 0 Comm: swapper/7 Kdump: loaded Not tainted 6.13.0-rc3+ #6\n[ 181.922390] Hardware name: NVIDIA CTI Forge + Orin AGX/Jetson, BIOS 202402.1-Unknown 10/28/2024\n[ 181.922658] pstate: 40400009 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 181.922847] pc : handle_softirqs+0x98/0x368\n[ 181.922978] lr : __do_softirq+0x18/0x20\n[ 181.923095] sp : ffff80008003bf50\n[ 181.923189] x29: ffff80008003bf50 x28: 0000000000000008 x27: 0000000000000000\n[ 181.923379] x26: ffffce78ea277000 x25: 0000000000000000 x24: 0000001c61befda0\n[ 181.924486] x23: 0000000060400009 x22: ffffce78e99918bc x21: ffff80008018bd70\n[ 181.925568] x20: ffffce78e8bb00d8 x19: ffff80008018bc20 x18: 0000000000000000\n[ 181.926655] x17: ffff318ebe7d3000 x16: ffff800080038000 x15: 0000000000000000\n[ 181.931455] x14: ffff000080816680 x13: ffff318ebe7d3000 x12: 000000003464d91d\n[ 181.938628] x11: 0000000000000040 x10: ffff000080165a70 x9 : ffffce78e8bb0160\n[ 181.945804] x8 : ffff8000827b3160 x7 : f9157b241586f343 x6 : eeb6502a01c81c74\n[ 181.953068] x5 : a4acfcdd2e8096bb x4 : ffffce78ea277340 x3 : 00000000ffffd1e1\n[ 181.960329] x2 : 0000000000000101 x1 : ffffce78ea277340 x0 : ffff318ebe7d3000\n[ 181.967591] Call trace:\n[ 181.970043] handle_softirqs+0x98/0x368 (P)\n[ 181.974240] __do_softirq+0x18/0x20\n[ 181.977743] ____do_softirq+0x14/0x28\n[ 181.981415] call_on_irq_stack+0x24/0x30\n[ 181.985180] do_softirq_own_stack+0x20/0x30\n[ 181.989379] __irq_exit_rcu+0x114/0x140\n[ 181.993142] irq_exit_rcu+0x14/0x28\n[ 181.996816] el1_interrupt+0x44/0xb8\n[ 182.000316] el1h_64_irq_handler+0x14/0x20\n[ 182.004343] el1h_64_irq+0x80/0x88\n[ 182.007755] cpuidle_enter_state+0xc4/0x4a8 (P)\n[ 182.012305] cpuidle_enter+0x3c/0x58\n[ 182.015980] cpuidle_idle_call+0x128/0x1c0\n[ 182.020005] do_idle+0xe0/0xf0\n[ 182.023155] cpu_startup_entry+0x3c/0x48\n[ 182.026917] secondary_start_kernel+0xdc/0x120\n[ 182.031379] __secondary_switched+0x74/0x78\n[ 212.971162] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 7-.... } 6103 jiffies s: 417 root: 0x80/.\n[ 212.985935] rcu: blocking rcu_node structures (internal RCU debug):\n[ 212.992758] Sending NMI from CPU 0 to CPUs 7:\n[ 212.998539] NMI backtrace for cpu 7\n[ 213.004304] CPU: 7 UID: 0 PI\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21663",
"url": "https://www.suse.com/security/cve/CVE-2025-21663"
},
{
"category": "external",
"summary": "SUSE Bug 1236260 for CVE-2025-21663",
"url": "https://bugzilla.suse.com/1236260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21663"
},
{
"cve": "CVE-2025-21664",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21664"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm thin: make get_first_thin use rcu-safe list first function\n\nThe documentation in rculist.h explains the absence of list_empty_rcu()\nand cautions programmers against relying on a list_empty() -\u003e\nlist_first() sequence in RCU safe code. This is because each of these\nfunctions performs its own READ_ONCE() of the list head. This can lead\nto a situation where the list_empty() sees a valid list entry, but the\nsubsequent list_first() sees a different view of list head state after a\nmodification.\n\nIn the case of dm-thin, this author had a production box crash from a GP\nfault in the process_deferred_bios path. This function saw a valid list\nhead in get_first_thin() but when it subsequently dereferenced that and\nturned it into a thin_c, it got the inside of the struct pool, since the\nlist was now empty and referring to itself. The kernel on which this\noccurred printed both a warning about a refcount_t being saturated, and\na UBSAN error for an out-of-bounds cpuid access in the queued spinlock,\nprior to the fault itself. When the resulting kdump was examined, it\nwas possible to see another thread patiently waiting in thin_dtr\u0027s\nsynchronize_rcu.\n\nThe thin_dtr call managed to pull the thin_c out of the active thins\nlist (and have it be the last entry in the active_thins list) at just\nthe wrong moment which lead to this crash.\n\nFortunately, the fix here is straight forward. Switch get_first_thin()\nfunction to use list_first_or_null_rcu() which performs just a single\nREAD_ONCE() and returns NULL if the list is already empty.\n\nThis was run against the devicemapper test suite\u0027s thin-provisioning\nsuites for delete and suspend and no regressions were observed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21664",
"url": "https://www.suse.com/security/cve/CVE-2025-21664"
},
{
"category": "external",
"summary": "SUSE Bug 1236262 for CVE-2025-21664",
"url": "https://bugzilla.suse.com/1236262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21664"
},
{
"cve": "CVE-2025-21674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix inversion dependency warning while enabling IPsec tunnel\n\nAttempt to enable IPsec packet offload in tunnel mode in debug kernel\ngenerates the following kernel panic, which is happening due to two\nissues:\n1. In SA add section, the should be _bh() variant when marking SA mode.\n2. There is not needed flush_workqueue in SA delete routine. It is not\nneeded as at this stage as it is removed from SADB and the running work\nwill be canceled later in SA free.\n\n =====================================================\n WARNING: SOFTIRQ-safe -\u003e SOFTIRQ-unsafe lock order detected\n 6.12.0+ #4 Not tainted\n -----------------------------------------------------\n charon/1337 [HC0[0]:SC0[4]:HE1:SE0] is trying to acquire:\n ffff88810f365020 (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}, at: mlx5e_xfrm_del_state+0xca/0x1e0 [mlx5_core]\n\n and this task is already holding:\n ffff88813e0f0d48 (\u0026x-\u003elock){+.-.}-{3:3}, at: xfrm_state_delete+0x16/0x30\n which would create a new lock dependency:\n (\u0026x-\u003elock){+.-.}-{3:3} -\u003e (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}\n\n but this new dependency connects a SOFTIRQ-irq-safe lock:\n (\u0026x-\u003elock){+.-.}-{3:3}\n\n ... which became SOFTIRQ-irq-safe at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_timer_handler+0x91/0xd70\n __hrtimer_run_queues+0x1dd/0xa60\n hrtimer_run_softirq+0x146/0x2e0\n handle_softirqs+0x266/0x860\n irq_exit_rcu+0x115/0x1a0\n sysvec_apic_timer_interrupt+0x6e/0x90\n asm_sysvec_apic_timer_interrupt+0x16/0x20\n default_idle+0x13/0x20\n default_idle_call+0x67/0xa0\n do_idle+0x2da/0x320\n cpu_startup_entry+0x50/0x60\n start_secondary+0x213/0x2a0\n common_startup_64+0x129/0x138\n\n to a SOFTIRQ-irq-unsafe lock:\n (\u0026xa-\u003exa_lock#24){+.+.}-{3:3}\n\n ... which became SOFTIRQ-irq-unsafe at:\n ...\n lock_acquire+0x1be/0x520\n _raw_spin_lock+0x2c/0x40\n xa_set_mark+0x70/0x110\n mlx5e_xfrm_add_state+0xe48/0x2290 [mlx5_core]\n xfrm_dev_state_add+0x3bb/0xd70\n xfrm_add_sa+0x2451/0x4a90\n xfrm_user_rcv_msg+0x493/0x880\n netlink_rcv_skb+0x12e/0x380\n xfrm_netlink_rcv+0x6d/0x90\n netlink_unicast+0x42f/0x740\n netlink_sendmsg+0x745/0xbe0\n __sock_sendmsg+0xc5/0x190\n __sys_sendto+0x1fe/0x2c0\n __x64_sys_sendto+0xdc/0x1b0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n other info that might help us debug this:\n\n Possible interrupt unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026xa-\u003exa_lock#24);\n local_irq_disable();\n lock(\u0026x-\u003elock);\n lock(\u0026xa-\u003exa_lock#24);\n \u003cInterrupt\u003e\n lock(\u0026x-\u003elock);\n\n *** DEADLOCK ***\n\n 2 locks held by charon/1337:\n #0: ffffffff87f8f858 (\u0026net-\u003exfrm.xfrm_cfg_mutex){+.+.}-{4:4}, at: xfrm_netlink_rcv+0x5e/0x90\n #1: ffff88813e0f0d48 (\u0026x-\u003elock){+.-.}-{3:3}, at: xfrm_state_delete+0x16/0x30\n\n the dependencies between SOFTIRQ-irq-safe lock and the holding lock:\n -\u003e (\u0026x-\u003elock){+.-.}-{3:3} ops: 29 {\n HARDIRQ-ON-W at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_alloc_spi+0xc0/0xe60\n xfrm_alloc_userspi+0x5f6/0xbc0\n xfrm_user_rcv_msg+0x493/0x880\n netlink_rcv_skb+0x12e/0x380\n xfrm_netlink_rcv+0x6d/0x90\n netlink_unicast+0x42f/0x740\n netlink_sendmsg+0x745/0xbe0\n __sock_sendmsg+0xc5/0x190\n __sys_sendto+0x1fe/0x2c0\n __x64_sys_sendto+0xdc/0x1b0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n IN-SOFTIRQ-W at:\n lock_acquire+0x1be/0x520\n _raw_spin_lock_bh+0x34/0x40\n xfrm_timer_handler+0x91/0xd70\n __hrtimer_run_queues+0x1dd/0xa60\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21674",
"url": "https://www.suse.com/security/cve/CVE-2025-21674"
},
{
"category": "external",
"summary": "SUSE Bug 1236688 for CVE-2025-21674",
"url": "https://bugzilla.suse.com/1236688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21674"
},
{
"cve": "CVE-2025-21676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fec: handle page_pool_dev_alloc_pages error\n\nThe fec_enet_update_cbd function calls page_pool_dev_alloc_pages but did\nnot handle the case when it returned NULL. There was a WARN_ON(!new_page)\nbut it would still proceed to use the NULL pointer and then crash.\n\nThis case does seem somewhat rare but when the system is under memory\npressure it can happen. One case where I can duplicate this with some\nfrequency is when writing over a smbd share to a SATA HDD attached to an\nimx6q.\n\nSetting /proc/sys/vm/min_free_kbytes to higher values also seems to solve\nthe problem for my test case. But it still seems wrong that the fec driver\nignores the memory allocation error and can crash.\n\nThis commit handles the allocation error by dropping the current packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21676",
"url": "https://www.suse.com/security/cve/CVE-2025-21676"
},
{
"category": "external",
"summary": "SUSE Bug 1236696 for CVE-2025-21676",
"url": "https://bugzilla.suse.com/1236696"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21676"
},
{
"cve": "CVE-2025-21682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21682"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\neth: bnxt: always recalculate features after XDP clearing, fix null-deref\n\nRecalculate features when XDP is detached.\n\nBefore:\n # ip li set dev eth0 xdp obj xdp_dummy.bpf.o sec xdp\n # ip li set dev eth0 xdp off\n # ethtool -k eth0 | grep gro\n rx-gro-hw: off [requested on]\n\nAfter:\n # ip li set dev eth0 xdp obj xdp_dummy.bpf.o sec xdp\n # ip li set dev eth0 xdp off\n # ethtool -k eth0 | grep gro\n rx-gro-hw: on\n\nThe fact that HW-GRO doesn\u0027t get re-enabled automatically is just\na minor annoyance. The real issue is that the features will randomly\ncome back during another reconfiguration which just happens to invoke\nnetdev_update_features(). The driver doesn\u0027t handle reconfiguring\ntwo things at a time very robustly.\n\nStarting with commit 98ba1d931f61 (\"bnxt_en: Fix RSS logic in\n__bnxt_reserve_rings()\") we only reconfigure the RSS hash table\nif the \"effective\" number of Rx rings has changed. If HW-GRO is\nenabled \"effective\" number of rings is 2x what user sees.\nSo if we are in the bad state, with HW-GRO re-enablement \"pending\"\nafter XDP off, and we lower the rings by / 2 - the HW-GRO rings\ndoing 2x and the ethtool -L doing / 2 may cancel each other out,\nand the:\n\n if (old_rx_rings != bp-\u003ehw_resc.resv_rx_rings \u0026\u0026\n\ncondition in __bnxt_reserve_rings() will be false.\nThe RSS map won\u0027t get updated, and we\u0027ll crash with:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000168\n RIP: 0010:__bnxt_hwrm_vnic_set_rss+0x13a/0x1a0\n bnxt_hwrm_vnic_rss_cfg_p5+0x47/0x180\n __bnxt_setup_vnic_p5+0x58/0x110\n bnxt_init_nic+0xb72/0xf50\n __bnxt_open_nic+0x40d/0xab0\n bnxt_open_nic+0x2b/0x60\n ethtool_set_channels+0x18c/0x1d0\n\nAs we try to access a freed ring.\n\nThe issue is present since XDP support was added, really, but\nprior to commit 98ba1d931f61 (\"bnxt_en: Fix RSS logic in\n__bnxt_reserve_rings()\") it wasn\u0027t causing major issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21682",
"url": "https://www.suse.com/security/cve/CVE-2025-21682"
},
{
"category": "external",
"summary": "SUSE Bug 1236703 for CVE-2025-21682",
"url": "https://bugzilla.suse.com/1236703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-24.1.21.4.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-25.1.x86_64",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.s390x",
"SUSE Linux Micro 6.1:kernel-livepatch-6_4_0-25-default-1-1.2.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-25.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-27T14:32:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-21682"
}
]
}
SUSE-SU-2025:0229-1
Vulnerability from csaf_suse - Published: 2025-01-24 10:10 - Updated: 2025-01-24 10:10Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver (bsc#1203332).
- CVE-2022-48742: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() (bsc#1226694).
- CVE-2022-49033: btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit() (bsc#1232045).
- CVE-2023-1382: Fixed denial of service in tipc_conn_close (bsc#1209288).
- CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking (bsc#1232823).
- CVE-2024-26886: Bluetooth: af_bluetooth: Fix deadlock (bsc#1223044).
- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).
- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).
- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).
- CVE-2024-47666: scsi: pm80xx: Set phy->enable_completion only when we wait for it (bsc#1231453).
- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).
- CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption (bsc#1232157).
- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).
- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).
- CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices (bsc#1233050).
- CVE-2024-50181: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D (bsc#1233127).
- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).
- CVE-2024-50211: udf: refactor inode_bmap() to handle error (bsc#1233096).
- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).
- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).
- CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver (bsc#1233485).
- CVE-2024-53051: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability (bsc#1233547).
- CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction (bsc#1233550).
- CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() (bsc#1233568).
- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558).
- CVE-2024-53072: platform/x86/amd/pmc: Detect when STB is not available (bsc#1233564).
- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
- CVE-2024-53101: fs: Fix uninitialized value issue in from_kuid and from_kgid (bsc#1233769).
- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).
- CVE-2024-53114: x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client (bsc#1234072).
- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).
- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).
- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).
- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).
- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).
- CVE-2024-53150: ALSA: usb-audio: Fix out of bounds reads when finding clock sources (bsc#1234834).
- CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846).
- CVE-2024-53157: firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (bsc#1234827).
- CVE-2024-53158: soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (bsc#1234811).
- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).
- CVE-2024-53162: crypto: qat/qat_4xxx - fix off by one in uof_get_name() (bsc#1234843).
- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891).
- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).
- CVE-2024-53210: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (bsc#1234971).
- CVE-2024-53213: net: usb: lan78xx: Fix double free issue with interrupt buffer allocation (bsc#1234973).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).
- CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054).
- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (bsc#1234282).
- CVE-2024-56539: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (bsc#1234963).
- CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073).
- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file (bsc#1234912).
- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).
- CVE-2024-56571: media: uvcvideo: Require entities to have a non-zero unique ID (bsc#1235037).
- CVE-2024-56575: media: imx-jpeg: Ensure power suppliers be suspended before detach them (bsc#1235039).
- CVE-2024-56598: jfs: array-index-out-of-bounds fix in dtReadFirst (bsc#1235220).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).
- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).
- CVE-2024-56619: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (bsc#1235224).
- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).
The following non-security bugs were fixed:
- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
- amd_hsmp: Add HSMP protocol version 5 messages (jsc#PED-1295).
- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-fixes).
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-fixes).
- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes).
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (git-fixes).
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (git-fixes).
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (git-fixes).
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
- autofs: use flexible array in ioctl structure (git-fixes).
- devlink: allow registering parameters after the instance (bsc#1231388 bsc#1230422).
- devlink: do not require setting features before registration (bsc#1231388 bsc#1230422).
- dma-fence: Fix reference leak on fence merge failure path (git-fixes).
- dmaengine: idxd: add wq driver name support for accel-config user tool (bsc#1234357).
- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).
- Documentation: Add x86/amd_hsmp driver (jsc#PED-1295).
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (git-fixes).
- drm/v3d: Enable Performance Counters before clearing them (git-fixes).
- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
- hfsplus: do not query the device logical block size multiple times (git-fixes).
- idpf: add support for SW triggered interrupts (bsc#1235507).
- idpf: enable WB_ON_ITR (bsc#1235507).
- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
- ipc/sem: Fix dangling sem_array access in semtimedop race (bsc#1234727).
- jffs2: Fix rtime decompressor (git-fixes).
- jffs2: fix use of uninitialized variable (git-fixes).
- jffs2: Prevent rtime decompress memory corruption (git-fixes).
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
- jfs: xattr: check invalid xattr size more strictly (git-fixes).
- kabi/severities: ignore intermodule symbols between fsl_fman and fsl_dpaa_eth
- kobject: Add sanity check for kset->kobj.ktype in kset_register() (bsc#1234639).
- KVM: x86: fix sending PV IPI (git-fixes).
- memory: tegra: Add API for retrieving carveout bounds (jsc#PED-1763).
- mm/kfence: reset PG_slab and memcg_data before freeing __kfence_pool (bsc#1234120).
- mmc: core: Further prevent card detect during shutdown (git-fixes).
- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
- net/ipv6: release expired exception dst cached in socket (bsc#1216813).
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).
- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
- nfsd: make sure exp active before svc_export_show (git-fixes).
- NFSD: Move fill_pre_wcc() and fill_post_wcc() (bsc#1234650 bsc#1233701 bsc#1232472).
- NFSD: Prevent a potential integer overflow (git-fixes).
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
- NFSD: reduce locking in nfsd_lookup() (bsc#1234650 bsc#1233701 bsc#1232472).
- nfsd: remove unsafe BUG_ON from set_change_info (bsc#1234650 bsc#1233701 bsc#1232472).
- nfsd: restore callback functionality for NFSv4.0 (git-fixes).
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).
- nilfs2: prevent use of deleted inode (git-fixes).
- ocfs2: uncache inode which has failed entering the group (bsc#1234087).
- PCI: vmd: Fix secondary bus reset for Intel bridges (git-fixes).
- phy: tegra: p2u: Set ENABLE_L2_EXIT_RATE_CHANGE in calibration (jsc#PED-1763).
- platform/x86: Add AMD system management interface (jsc#PED-1295).
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).
- pwm: tegra: Improve required rate calculation (jsc#PED-1763).
- RDMA/hns: Disassociate mmap pages for all uctx when HW is being reset (git-fixes)
- regmap: detach regmap from dev on regmap_exit (git-fixes).
- scatterlist: fix incorrect func name in kernel-doc (git-fixes).
- scripts/git_sort/git_sort.py: add tegra DRM and linux-pwm repo
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).
- serial: tegra: Read DMA status before terminating (jsc#PED-1763).
- smb: client: fix TCP timers deadlock after rmmod (git-fixes) (bsc#1233642).
- spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes).
- SUNRPC: make sure cache entry active before cache_show (git-fixes).
- sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (git-fixes).
- svcrdma: Address an integer overflow (git-fixes).
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).
- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).
- ubifs: Correct the total block count by deducting journal reservation (git-fixes).
- udf: Handle error when adding extent to a file (bsc#1234437).
- udf: refactor udf_current_aext() to handle error (bsc#1234240).
- udf: refactor udf_next_aext() to handle error (bsc#1234241).
- usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes).
- usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes).
- x86: Annotate call_on_stack() (git-fixes).
- x86/bug: Merge annotate_reachable() into _BUG_FLAGS() asm (git-fixes).
- x86/fpu: Remove unused supervisor only offsets (git-fixes).
- x86/fpu/xsave: Handle compacted offsets correctly with supervisor states (git-fixes).
- x86/fpu/xstate: Fix the ARCH_REQ_XCOMP_PERM implementation (git-fixes).
- x86/kvm: Do not use pv tlb/ipi/sched_yield if on 1 vCPU (git-fixes).
- x86/mce: Allow instrumentation during task work queueing (git-fixes).
- x86/mce: Mark mce_end() noinstr (git-fixes).
- x86/mce: Mark mce_panic() noinstr (git-fixes).
- x86/mce: Mark mce_read_aux() noinstr (git-fixes).
- x86/mce/inject: Avoid out-of-bounds write when setting flags (git-fixes).
- x86/mm: Flush global TLB when switching to trampoline page-table (git-fixes).
- x86/sgx: Free backing memory after faulting the enclave page (git-fixes).
- x86/sgx: Silence softlockup detection when releasing large enclaves (git-fixes).
- x86/uaccess: Move variable into switch case statement (git-fixes).
- xfs: can't use kmem_zalloc() for attribute buffers (bsc#1216909).
- zonefs: fix zone report size in __zonefs_io_error() (git-fixes).
Patchnames
SUSE-2025-229,SUSE-SLE-Micro-5.5-2025-229
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver (bsc#1203332).\n- CVE-2022-48742: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() (bsc#1226694).\n- CVE-2022-49033: btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit() (bsc#1232045).\n- CVE-2023-1382: Fixed denial of service in tipc_conn_close (bsc#1209288).\n- CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking (bsc#1232823).\n- CVE-2024-26886: Bluetooth: af_bluetooth: Fix deadlock (bsc#1223044).\n- CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820).\n- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).\n- CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when removing port (bsc#1229809).\n- CVE-2024-47666: scsi: pm80xx: Set phy-\u003eenable_completion only when we wait for it (bsc#1231453).\n- CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).\n- CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166).\n- CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption (bsc#1232157).\n- CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs (bsc#1232419).\n- CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad (bsc#1233038).\n- CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices (bsc#1233050).\n- CVE-2024-50181: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D (bsc#1233127).\n- CVE-2024-50202: nilfs2: propagate directory read errors from nilfs_find_entry() (bsc#1233324).\n- CVE-2024-50211: udf: refactor inode_bmap() to handle error (bsc#1233096).\n- CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (bsc#1233200).\n- CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key() (bsc#1233239).\n- CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver (bsc#1233485).\n- CVE-2024-53051: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability (bsc#1233547).\n- CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction (bsc#1233550).\n- CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() (bsc#1233568).\n- CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558).\n- CVE-2024-53072: platform/x86/amd/pmc: Detect when STB is not available (bsc#1233564).\n- CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).\n- CVE-2024-53101: fs: Fix uninitialized value issue in from_kuid and from_kgid (bsc#1233769).\n- CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1234077).\n- CVE-2024-53114: x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client (bsc#1234072).\n- CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).\n- CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1234076).\n- CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def (bsc#1234156).\n- CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1234219).\n- CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1234220).\n- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).\n- CVE-2024-53150: ALSA: usb-audio: Fix out of bounds reads when finding clock sources (bsc#1234834).\n- CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (bsc#1234846).\n- CVE-2024-53157: firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (bsc#1234827).\n- CVE-2024-53158: soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (bsc#1234811).\n- CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow (bsc#1234856).\n- CVE-2024-53162: crypto: qat/qat_4xxx - fix off by one in uof_get_name() (bsc#1234843).\n- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891).\n- CVE-2024-53179: smb: client: fix use-after-free of signing key (bsc#1234921).\n- CVE-2024-53210: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (bsc#1234971).\n- CVE-2024-53213: net: usb: lan78xx: Fix double free issue with interrupt buffer allocation (bsc#1234973).\n- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235004).\n- CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054).\n- CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).\n- CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall page (bsc#1234282).\n- CVE-2024-56539: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (bsc#1234963).\n- CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073).\n- CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object-\u003efile (bsc#1234912).\n- CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function (bsc#1235035).\n- CVE-2024-56571: media: uvcvideo: Require entities to have a non-zero unique ID (bsc#1235037).\n- CVE-2024-56575: media: imx-jpeg: Ensure power suppliers be suspended before detach them (bsc#1235039).\n- CVE-2024-56598: jfs: array-index-out-of-bounds fix in dtReadFirst (bsc#1235220).\n- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() (bsc#1235056).\n- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (bsc#1235061).\n- CVE-2024-56619: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (bsc#1235224).\n- CVE-2024-56755: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING (bsc#1234920).\n\nThe following non-security bugs were fixed:\n\n- ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)\n- amd_hsmp: Add HSMP protocol version 5 messages (jsc#PED-1295).\n- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-fixes).\n- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-fixes).\n- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes).\n- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (git-fixes).\n- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (git-fixes).\n- arm64: dts: rockchip: Remove hdmi\u0027s 2nd interrupt on rk3328 (git-fixes).\n- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses (bsc#1234605)\n- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).\n- autofs: use flexible array in ioctl structure (git-fixes).\n- devlink: allow registering parameters after the instance (bsc#1231388 bsc#1230422).\n- devlink: do not require setting features before registration (bsc#1231388 bsc#1230422).\n- dma-fence: Fix reference leak on fence merge failure path (git-fixes).\n- dmaengine: idxd: add wq driver name support for accel-config user tool (bsc#1234357).\n- dmaengine: idxd: Check for driver name match before sva user feature (bsc#1234357).\n- Documentation: Add x86/amd_hsmp driver (jsc#PED-1295).\n- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-fixes).\n- drm/sti: Add __iomem for mixer_dbg_mxn\u0027s parameter (git-fixes).\n- drm/v3d: Enable Performance Counters before clearing them (git-fixes).\n- exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).\n- hfsplus: do not query the device logical block size multiple times (git-fixes).\n- idpf: add support for SW triggered interrupts (bsc#1235507).\n- idpf: enable WB_ON_ITR (bsc#1235507).\n- idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).\n- ipc/sem: Fix dangling sem_array access in semtimedop race (bsc#1234727).\n- jffs2: Fix rtime decompressor (git-fixes).\n- jffs2: fix use of uninitialized variable (git-fixes).\n- jffs2: Prevent rtime decompress memory corruption (git-fixes).\n- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).\n- jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).\n- jfs: fix shift-out-of-bounds in dbSplit (git-fixes).\n- jfs: xattr: check invalid xattr size more strictly (git-fixes).\n- kabi/severities: ignore intermodule symbols between fsl_fman and fsl_dpaa_eth\n- kobject: Add sanity check for kset-\u003ekobj.ktype in kset_register() (bsc#1234639).\n- KVM: x86: fix sending PV IPI (git-fixes).\n- memory: tegra: Add API for retrieving carveout bounds (jsc#PED-1763).\n- mm/kfence: reset PG_slab and memcg_data before freeing __kfence_pool (bsc#1234120).\n- mmc: core: Further prevent card detect during shutdown (git-fixes).\n- net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).\n- net/ipv6: release expired exception dst cached in socket (bsc#1216813).\n- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-fixes).\n- NFSD: Fix nfsd4_shutdown_copy() (git-fixes).\n- nfsd: make sure exp active before svc_export_show (git-fixes).\n- NFSD: Move fill_pre_wcc() and fill_post_wcc() (bsc#1234650 bsc#1233701 bsc#1232472).\n- NFSD: Prevent a potential integer overflow (git-fixes).\n- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).\n- NFSD: reduce locking in nfsd_lookup() (bsc#1234650 bsc#1233701 bsc#1232472).\n- nfsd: remove unsafe BUG_ON from set_change_info (bsc#1234650 bsc#1233701 bsc#1232472).\n- nfsd: restore callback functionality for NFSv4.0 (git-fixes).\n- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-fixes).\n- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (git-fixes).\n- nilfs2: prevent use of deleted inode (git-fixes).\n- ocfs2: uncache inode which has failed entering the group (bsc#1234087).\n- PCI: vmd: Fix secondary bus reset for Intel bridges (git-fixes).\n- phy: tegra: p2u: Set ENABLE_L2_EXIT_RATE_CHANGE in calibration (jsc#PED-1763).\n- platform/x86: Add AMD system management interface (jsc#PED-1295).\n- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-fixes).\n- pwm: tegra: Improve required rate calculation (jsc#PED-1763).\n- RDMA/hns: Disassociate mmap pages for all uctx when HW is being reset (git-fixes)\n- regmap: detach regmap from dev on regmap_exit (git-fixes).\n- scatterlist: fix incorrect func name in kernel-doc (git-fixes).\n- scripts/git_sort/git_sort.py: add tegra DRM and linux-pwm repo\n- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (git-fixes).\n- serial: tegra: Read DMA status before terminating (jsc#PED-1763).\n- smb: client: fix TCP timers deadlock after rmmod (git-fixes) (bsc#1233642).\n- spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes).\n- SUNRPC: make sure cache entry active before cache_show (git-fixes).\n- sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (git-fixes).\n- svcrdma: Address an integer overflow (git-fixes).\n- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-fixes).\n- tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)\n- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-fixes).\n- ubifs: Correct the total block count by deducting journal reservation (git-fixes).\n- udf: Handle error when adding extent to a file (bsc#1234437).\n- udf: refactor udf_current_aext() to handle error (bsc#1234240).\n- udf: refactor udf_next_aext() to handle error (bsc#1234241).\n- usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes).\n- usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes).\n- x86: Annotate call_on_stack() (git-fixes).\n- x86/bug: Merge annotate_reachable() into _BUG_FLAGS() asm (git-fixes).\n- x86/fpu: Remove unused supervisor only offsets (git-fixes).\n- x86/fpu/xsave: Handle compacted offsets correctly with supervisor states (git-fixes).\n- x86/fpu/xstate: Fix the ARCH_REQ_XCOMP_PERM implementation (git-fixes).\n- x86/kvm: Do not use pv tlb/ipi/sched_yield if on 1 vCPU (git-fixes).\n- x86/mce: Allow instrumentation during task work queueing (git-fixes).\n- x86/mce: Mark mce_end() noinstr (git-fixes).\n- x86/mce: Mark mce_panic() noinstr (git-fixes).\n- x86/mce: Mark mce_read_aux() noinstr (git-fixes).\n- x86/mce/inject: Avoid out-of-bounds write when setting flags (git-fixes).\n- x86/mm: Flush global TLB when switching to trampoline page-table (git-fixes).\n- x86/sgx: Free backing memory after faulting the enclave page (git-fixes).\n- x86/sgx: Silence softlockup detection when releasing large enclaves (git-fixes).\n- x86/uaccess: Move variable into switch case statement (git-fixes).\n- xfs: can\u0027t use kmem_zalloc() for attribute buffers (bsc#1216909).\n- zonefs: fix zone report size in __zonefs_io_error() (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-229,SUSE-SLE-Micro-5.5-2025-229",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0229-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0229-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250229-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0229-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020194.html"
},
{
"category": "self",
"summary": "SUSE Bug 1135481",
"url": "https://bugzilla.suse.com/1135481"
},
{
"category": "self",
"summary": "SUSE Bug 1170891",
"url": "https://bugzilla.suse.com/1170891"
},
{
"category": "self",
"summary": "SUSE Bug 1171420",
"url": "https://bugzilla.suse.com/1171420"
},
{
"category": "self",
"summary": "SUSE Bug 1173139",
"url": "https://bugzilla.suse.com/1173139"
},
{
"category": "self",
"summary": "SUSE Bug 1175543",
"url": "https://bugzilla.suse.com/1175543"
},
{
"category": "self",
"summary": "SUSE Bug 1181006",
"url": "https://bugzilla.suse.com/1181006"
},
{
"category": "self",
"summary": "SUSE Bug 1185010",
"url": "https://bugzilla.suse.com/1185010"
},
{
"category": "self",
"summary": "SUSE Bug 1187211",
"url": "https://bugzilla.suse.com/1187211"
},
{
"category": "self",
"summary": "SUSE Bug 1187619",
"url": "https://bugzilla.suse.com/1187619"
},
{
"category": "self",
"summary": "SUSE Bug 1188412",
"url": "https://bugzilla.suse.com/1188412"
},
{
"category": "self",
"summary": "SUSE Bug 1188616",
"url": "https://bugzilla.suse.com/1188616"
},
{
"category": "self",
"summary": "SUSE Bug 1188700",
"url": "https://bugzilla.suse.com/1188700"
},
{
"category": "self",
"summary": "SUSE Bug 1188983",
"url": "https://bugzilla.suse.com/1188983"
},
{
"category": "self",
"summary": "SUSE Bug 1188985",
"url": "https://bugzilla.suse.com/1188985"
},
{
"category": "self",
"summary": "SUSE Bug 1189760",
"url": "https://bugzilla.suse.com/1189760"
},
{
"category": "self",
"summary": "SUSE Bug 1189762",
"url": "https://bugzilla.suse.com/1189762"
},
{
"category": "self",
"summary": "SUSE Bug 1189870",
"url": "https://bugzilla.suse.com/1189870"
},
{
"category": "self",
"summary": "SUSE Bug 1189872",
"url": "https://bugzilla.suse.com/1189872"
},
{
"category": "self",
"summary": "SUSE Bug 1190117",
"url": "https://bugzilla.suse.com/1190117"
},
{
"category": "self",
"summary": "SUSE Bug 1190131",
"url": "https://bugzilla.suse.com/1190131"
},
{
"category": "self",
"summary": "SUSE Bug 1190181",
"url": "https://bugzilla.suse.com/1190181"
},
{
"category": "self",
"summary": "SUSE Bug 1190358",
"url": "https://bugzilla.suse.com/1190358"
},
{
"category": "self",
"summary": "SUSE Bug 1190412",
"url": "https://bugzilla.suse.com/1190412"
},
{
"category": "self",
"summary": "SUSE Bug 1190428",
"url": "https://bugzilla.suse.com/1190428"
},
{
"category": "self",
"summary": "SUSE Bug 1203332",
"url": "https://bugzilla.suse.com/1203332"
},
{
"category": "self",
"summary": "SUSE Bug 1205521",
"url": "https://bugzilla.suse.com/1205521"
},
{
"category": "self",
"summary": "SUSE Bug 1209288",
"url": "https://bugzilla.suse.com/1209288"
},
{
"category": "self",
"summary": "SUSE Bug 1209798",
"url": "https://bugzilla.suse.com/1209798"
},
{
"category": "self",
"summary": "SUSE Bug 1211593",
"url": "https://bugzilla.suse.com/1211593"
},
{
"category": "self",
"summary": "SUSE Bug 1211595",
"url": "https://bugzilla.suse.com/1211595"
},
{
"category": "self",
"summary": "SUSE Bug 1215304",
"url": "https://bugzilla.suse.com/1215304"
},
{
"category": "self",
"summary": "SUSE Bug 1216813",
"url": "https://bugzilla.suse.com/1216813"
},
{
"category": "self",
"summary": "SUSE Bug 1216909",
"url": "https://bugzilla.suse.com/1216909"
},
{
"category": "self",
"summary": "SUSE Bug 1219608",
"url": "https://bugzilla.suse.com/1219608"
},
{
"category": "self",
"summary": "SUSE Bug 1222878",
"url": "https://bugzilla.suse.com/1222878"
},
{
"category": "self",
"summary": "SUSE Bug 1223044",
"url": "https://bugzilla.suse.com/1223044"
},
{
"category": "self",
"summary": "SUSE Bug 1225758",
"url": "https://bugzilla.suse.com/1225758"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1226694",
"url": "https://bugzilla.suse.com/1226694"
},
{
"category": "self",
"summary": "SUSE Bug 1228190",
"url": "https://bugzilla.suse.com/1228190"
},
{
"category": "self",
"summary": "SUSE Bug 1229809",
"url": "https://bugzilla.suse.com/1229809"
},
{
"category": "self",
"summary": "SUSE Bug 1230422",
"url": "https://bugzilla.suse.com/1230422"
},
{
"category": "self",
"summary": "SUSE Bug 1230697",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "self",
"summary": "SUSE Bug 1231388",
"url": "https://bugzilla.suse.com/1231388"
},
{
"category": "self",
"summary": "SUSE Bug 1231453",
"url": "https://bugzilla.suse.com/1231453"
},
{
"category": "self",
"summary": "SUSE Bug 1231854",
"url": "https://bugzilla.suse.com/1231854"
},
{
"category": "self",
"summary": "SUSE Bug 1232045",
"url": "https://bugzilla.suse.com/1232045"
},
{
"category": "self",
"summary": "SUSE Bug 1232157",
"url": "https://bugzilla.suse.com/1232157"
},
{
"category": "self",
"summary": "SUSE Bug 1232166",
"url": "https://bugzilla.suse.com/1232166"
},
{
"category": "self",
"summary": "SUSE Bug 1232419",
"url": "https://bugzilla.suse.com/1232419"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232472",
"url": "https://bugzilla.suse.com/1232472"
},
{
"category": "self",
"summary": "SUSE Bug 1232823",
"url": "https://bugzilla.suse.com/1232823"
},
{
"category": "self",
"summary": "SUSE Bug 1233038",
"url": "https://bugzilla.suse.com/1233038"
},
{
"category": "self",
"summary": "SUSE Bug 1233050",
"url": "https://bugzilla.suse.com/1233050"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233096",
"url": "https://bugzilla.suse.com/1233096"
},
{
"category": "self",
"summary": "SUSE Bug 1233127",
"url": "https://bugzilla.suse.com/1233127"
},
{
"category": "self",
"summary": "SUSE Bug 1233200",
"url": "https://bugzilla.suse.com/1233200"
},
{
"category": "self",
"summary": "SUSE Bug 1233239",
"url": "https://bugzilla.suse.com/1233239"
},
{
"category": "self",
"summary": "SUSE Bug 1233324",
"url": "https://bugzilla.suse.com/1233324"
},
{
"category": "self",
"summary": "SUSE Bug 1233467",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "self",
"summary": "SUSE Bug 1233468",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "self",
"summary": "SUSE Bug 1233469",
"url": "https://bugzilla.suse.com/1233469"
},
{
"category": "self",
"summary": "SUSE Bug 1233485",
"url": "https://bugzilla.suse.com/1233485"
},
{
"category": "self",
"summary": "SUSE Bug 1233547",
"url": "https://bugzilla.suse.com/1233547"
},
{
"category": "self",
"summary": "SUSE Bug 1233550",
"url": "https://bugzilla.suse.com/1233550"
},
{
"category": "self",
"summary": "SUSE Bug 1233558",
"url": "https://bugzilla.suse.com/1233558"
},
{
"category": "self",
"summary": "SUSE Bug 1233564",
"url": "https://bugzilla.suse.com/1233564"
},
{
"category": "self",
"summary": "SUSE Bug 1233568",
"url": "https://bugzilla.suse.com/1233568"
},
{
"category": "self",
"summary": "SUSE Bug 1233637",
"url": "https://bugzilla.suse.com/1233637"
},
{
"category": "self",
"summary": "SUSE Bug 1233701",
"url": "https://bugzilla.suse.com/1233701"
},
{
"category": "self",
"summary": "SUSE Bug 1233769",
"url": "https://bugzilla.suse.com/1233769"
},
{
"category": "self",
"summary": "SUSE Bug 1233837",
"url": "https://bugzilla.suse.com/1233837"
},
{
"category": "self",
"summary": "SUSE Bug 1234072",
"url": "https://bugzilla.suse.com/1234072"
},
{
"category": "self",
"summary": "SUSE Bug 1234073",
"url": "https://bugzilla.suse.com/1234073"
},
{
"category": "self",
"summary": "SUSE Bug 1234075",
"url": "https://bugzilla.suse.com/1234075"
},
{
"category": "self",
"summary": "SUSE Bug 1234076",
"url": "https://bugzilla.suse.com/1234076"
},
{
"category": "self",
"summary": "SUSE Bug 1234077",
"url": "https://bugzilla.suse.com/1234077"
},
{
"category": "self",
"summary": "SUSE Bug 1234087",
"url": "https://bugzilla.suse.com/1234087"
},
{
"category": "self",
"summary": "SUSE Bug 1234120",
"url": "https://bugzilla.suse.com/1234120"
},
{
"category": "self",
"summary": "SUSE Bug 1234156",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "self",
"summary": "SUSE Bug 1234219",
"url": "https://bugzilla.suse.com/1234219"
},
{
"category": "self",
"summary": "SUSE Bug 1234220",
"url": "https://bugzilla.suse.com/1234220"
},
{
"category": "self",
"summary": "SUSE Bug 1234240",
"url": "https://bugzilla.suse.com/1234240"
},
{
"category": "self",
"summary": "SUSE Bug 1234241",
"url": "https://bugzilla.suse.com/1234241"
},
{
"category": "self",
"summary": "SUSE Bug 1234281",
"url": "https://bugzilla.suse.com/1234281"
},
{
"category": "self",
"summary": "SUSE Bug 1234282",
"url": "https://bugzilla.suse.com/1234282"
},
{
"category": "self",
"summary": "SUSE Bug 1234294",
"url": "https://bugzilla.suse.com/1234294"
},
{
"category": "self",
"summary": "SUSE Bug 1234338",
"url": "https://bugzilla.suse.com/1234338"
},
{
"category": "self",
"summary": "SUSE Bug 1234357",
"url": "https://bugzilla.suse.com/1234357"
},
{
"category": "self",
"summary": "SUSE Bug 1234437",
"url": "https://bugzilla.suse.com/1234437"
},
{
"category": "self",
"summary": "SUSE Bug 1234464",
"url": "https://bugzilla.suse.com/1234464"
},
{
"category": "self",
"summary": "SUSE Bug 1234605",
"url": "https://bugzilla.suse.com/1234605"
},
{
"category": "self",
"summary": "SUSE Bug 1234639",
"url": "https://bugzilla.suse.com/1234639"
},
{
"category": "self",
"summary": "SUSE Bug 1234650",
"url": "https://bugzilla.suse.com/1234650"
},
{
"category": "self",
"summary": "SUSE Bug 1234727",
"url": "https://bugzilla.suse.com/1234727"
},
{
"category": "self",
"summary": "SUSE Bug 1234811",
"url": "https://bugzilla.suse.com/1234811"
},
{
"category": "self",
"summary": "SUSE Bug 1234827",
"url": "https://bugzilla.suse.com/1234827"
},
{
"category": "self",
"summary": "SUSE Bug 1234834",
"url": "https://bugzilla.suse.com/1234834"
},
{
"category": "self",
"summary": "SUSE Bug 1234843",
"url": "https://bugzilla.suse.com/1234843"
},
{
"category": "self",
"summary": "SUSE Bug 1234846",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "self",
"summary": "SUSE Bug 1234853",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "self",
"summary": "SUSE Bug 1234856",
"url": "https://bugzilla.suse.com/1234856"
},
{
"category": "self",
"summary": "SUSE Bug 1234891",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "self",
"summary": "SUSE Bug 1234912",
"url": "https://bugzilla.suse.com/1234912"
},
{
"category": "self",
"summary": "SUSE Bug 1234920",
"url": "https://bugzilla.suse.com/1234920"
},
{
"category": "self",
"summary": "SUSE Bug 1234921",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "self",
"summary": "SUSE Bug 1234960",
"url": "https://bugzilla.suse.com/1234960"
},
{
"category": "self",
"summary": "SUSE Bug 1234963",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "self",
"summary": "SUSE Bug 1234971",
"url": "https://bugzilla.suse.com/1234971"
},
{
"category": "self",
"summary": "SUSE Bug 1234973",
"url": "https://bugzilla.suse.com/1234973"
},
{
"category": "self",
"summary": "SUSE Bug 1235004",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "self",
"summary": "SUSE Bug 1235035",
"url": "https://bugzilla.suse.com/1235035"
},
{
"category": "self",
"summary": "SUSE Bug 1235037",
"url": "https://bugzilla.suse.com/1235037"
},
{
"category": "self",
"summary": "SUSE Bug 1235039",
"url": "https://bugzilla.suse.com/1235039"
},
{
"category": "self",
"summary": "SUSE Bug 1235054",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "self",
"summary": "SUSE Bug 1235056",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "self",
"summary": "SUSE Bug 1235061",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "self",
"summary": "SUSE Bug 1235073",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "self",
"summary": "SUSE Bug 1235220",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "self",
"summary": "SUSE Bug 1235224",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "self",
"summary": "SUSE Bug 1235246",
"url": "https://bugzilla.suse.com/1235246"
},
{
"category": "self",
"summary": "SUSE Bug 1235507",
"url": "https://bugzilla.suse.com/1235507"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12770 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-34556 page",
"url": "https://www.suse.com/security/cve/CVE-2021-34556/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35477 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35477/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38160 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47202 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-36280 page",
"url": "https://www.suse.com/security/cve/CVE-2022-36280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48742 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-49033 page",
"url": "https://www.suse.com/security/cve/CVE-2022-49033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-49035 page",
"url": "https://www.suse.com/security/cve/CVE-2022-49035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-1382 page",
"url": "https://www.suse.com/security/cve/CVE-2023-1382/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-33951 page",
"url": "https://www.suse.com/security/cve/CVE-2023-33951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-33952 page",
"url": "https://www.suse.com/security/cve/CVE-2023-33952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52920 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52920/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24860 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24860/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47666 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47666/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50181 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50202 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50278 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50279 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50280 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50296 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53051 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53055 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53056 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53056/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53072 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53072/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53101 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53114 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56571 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56575 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-8805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-8805/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-01-24T10:10:25Z",
"generator": {
"date": "2025-01-24T10:10:25Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0229-1",
"initial_release_date": "2025-01-24T10:10:25Z",
"revision_history": [
{
"date": "2025-01-24T10:10:25Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-5.14.21-150500.13.82.1.noarch",
"product": {
"name": "kernel-devel-rt-5.14.21-150500.13.82.1.noarch",
"product_id": "kernel-devel-rt-5.14.21-150500.13.82.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-5.14.21-150500.13.82.1.noarch",
"product": {
"name": "kernel-source-rt-5.14.21-150500.13.82.1.noarch",
"product_id": "kernel-source-rt-5.14.21-150500.13.82.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "cluster-md-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product_id": "cluster-md-kmp-rt-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "dlm-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product_id": "dlm-kmp-rt-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "gfs2-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product_id": "gfs2-kmp-rt-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt-devel-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt-devel-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-extra-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt-extra-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt-extra-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt-livepatch-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-devel-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-devel-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt-livepatch-devel-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-optional-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt-optional-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt-optional-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-vdso-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt-vdso-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt-vdso-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt_debug-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt_debug-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-devel-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt_debug-devel-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt_debug-devel-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-vdso-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-rt_debug-vdso-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-rt_debug-vdso-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-rt-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kernel-syms-rt-5.14.21-150500.13.82.1.x86_64",
"product_id": "kernel-syms-rt-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "kselftests-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product_id": "kselftests-kmp-rt-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "ocfs2-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product_id": "ocfs2-kmp-rt-5.14.21-150500.13.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product": {
"name": "reiserfs-kmp-rt-5.14.21-150500.13.82.1.x86_64",
"product_id": "reiserfs-kmp-rt-5.14.21-150500.13.82.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-5.14.21-150500.13.82.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64"
},
"product_reference": "kernel-rt-5.14.21-150500.13.82.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-5.14.21-150500.13.82.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
},
"product_reference": "kernel-source-rt-5.14.21-150500.13.82.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-12770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-12770"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel through 5.6.11. sg_write lacks an sg_remove_request call in a certain failure case, aka CID-83c6f2390040.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-12770",
"url": "https://www.suse.com/security/cve/CVE-2020-12770"
},
{
"category": "external",
"summary": "SUSE Bug 1171420 for CVE-2020-12770",
"url": "https://bugzilla.suse.com/1171420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2020-12770"
},
{
"cve": "CVE-2021-34556",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-34556"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-34556",
"url": "https://www.suse.com/security/cve/CVE-2021-34556"
},
{
"category": "external",
"summary": "SUSE Bug 1188983 for CVE-2021-34556",
"url": "https://bugzilla.suse.com/1188983"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2021-34556"
},
{
"cve": "CVE-2021-35477",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35477"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an attacker-controlled value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35477",
"url": "https://www.suse.com/security/cve/CVE-2021-35477"
},
{
"category": "external",
"summary": "SUSE Bug 1188985 for CVE-2021-35477",
"url": "https://bugzilla.suse.com/1188985"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2021-35477"
},
{
"cve": "CVE-2021-38160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38160"
}
],
"notes": [
{
"category": "general",
"text": "In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf-\u003elen value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in any existing use case; the length validation was added solely for robustness in the face of anomalous host OS behavior",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38160",
"url": "https://www.suse.com/security/cve/CVE-2021-38160"
},
{
"category": "external",
"summary": "SUSE Bug 1190117 for CVE-2021-38160",
"url": "https://bugzilla.suse.com/1190117"
},
{
"category": "external",
"summary": "SUSE Bug 1190118 for CVE-2021-38160",
"url": "https://bugzilla.suse.com/1190118"
},
{
"category": "external",
"summary": "SUSE Bug 1196914 for CVE-2021-38160",
"url": "https://bugzilla.suse.com/1196914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2021-38160"
},
{
"cve": "CVE-2021-47202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: Fix NULL pointer dereferences in of_thermal_ functions\n\nof_parse_thermal_zones() parses the thermal-zones node and registers a\nthermal_zone device for each subnode. However, if a thermal zone is\nconsuming a thermal sensor and that thermal sensor device hasn\u0027t probed\nyet, an attempt to set trip_point_*_temp for that thermal zone device\ncan cause a NULL pointer dereference. Fix it.\n\n console:/sys/class/thermal/thermal_zone87 # echo 120000 \u003e trip_point_0_temp\n ...\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n ...\n Call trace:\n of_thermal_set_trip_temp+0x40/0xc4\n trip_point_temp_store+0xc0/0x1dc\n dev_attr_store+0x38/0x88\n sysfs_kf_write+0x64/0xc0\n kernfs_fop_write_iter+0x108/0x1d0\n vfs_write+0x2f4/0x368\n ksys_write+0x7c/0xec\n __arm64_sys_write+0x20/0x30\n el0_svc_common.llvm.7279915941325364641+0xbc/0x1bc\n do_el0_svc+0x28/0xa0\n el0_svc+0x14/0x24\n el0_sync_handler+0x88/0xec\n el0_sync+0x1c0/0x200\n\nWhile at it, fix the possible NULL pointer dereference in other\nfunctions as well: of_thermal_get_temp(), of_thermal_set_emul_temp(),\nof_thermal_get_trend().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47202",
"url": "https://www.suse.com/security/cve/CVE-2021-47202"
},
{
"category": "external",
"summary": "SUSE Bug 1222878 for CVE-2021-47202",
"url": "https://bugzilla.suse.com/1222878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2021-47202"
},
{
"cve": "CVE-2022-36280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-36280"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file \u0027/dev/dri/renderD128 (or Dxxx)\u0027. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-36280",
"url": "https://www.suse.com/security/cve/CVE-2022-36280"
},
{
"category": "external",
"summary": "SUSE Bug 1203332 for CVE-2022-36280",
"url": "https://bugzilla.suse.com/1203332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2022-36280"
},
{
"cve": "CVE-2022-48742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink()\n\nWhile looking at one unrelated syzbot bug, I found the replay logic\nin __rtnl_newlink() to potentially trigger use-after-free.\n\nIt is better to clear master_dev and m_ops inside the loop,\nin case we have to replay it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48742",
"url": "https://www.suse.com/security/cve/CVE-2022-48742"
},
{
"category": "external",
"summary": "SUSE Bug 1226694 for CVE-2022-48742",
"url": "https://bugzilla.suse.com/1226694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2022-48742"
},
{
"cve": "CVE-2022-49033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-49033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit()\n\nSyzkaller reported BUG as follows:\n\n BUG: sleeping function called from invalid context at\n include/linux/sched/mm.h:274\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xcd/0x134\n __might_resched.cold+0x222/0x26b\n kmem_cache_alloc+0x2e7/0x3c0\n update_qgroup_limit_item+0xe1/0x390\n btrfs_qgroup_inherit+0x147b/0x1ee0\n create_subvol+0x4eb/0x1710\n btrfs_mksubvol+0xfe5/0x13f0\n __btrfs_ioctl_snap_create+0x2b0/0x430\n btrfs_ioctl_snap_create_v2+0x25a/0x520\n btrfs_ioctl+0x2a1c/0x5ce0\n __x64_sys_ioctl+0x193/0x200\n do_syscall_64+0x35/0x80\n\nFix this by calling qgroup_dirty() on @dstqgroup, and update limit item in\nbtrfs_run_qgroups() later outside of the spinlock context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-49033",
"url": "https://www.suse.com/security/cve/CVE-2022-49033"
},
{
"category": "external",
"summary": "SUSE Bug 1232045 for CVE-2022-49033",
"url": "https://bugzilla.suse.com/1232045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2022-49033"
},
{
"cve": "CVE-2022-49035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-49035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE\n\nI expect that the hardware will have limited this to 16, but just in\ncase it hasn\u0027t, check for this corner case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-49035",
"url": "https://www.suse.com/security/cve/CVE-2022-49035"
},
{
"category": "external",
"summary": "SUSE Bug 1215304 for CVE-2022-49035",
"url": "https://bugzilla.suse.com/1215304"
},
{
"category": "external",
"summary": "SUSE Bug 1235013 for CVE-2022-49035",
"url": "https://bugzilla.suse.com/1235013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2022-49035"
},
{
"cve": "CVE-2023-1382",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-1382"
}
],
"notes": [
{
"category": "general",
"text": "A data race flaw was found in the Linux kernel, between where con is allocated and con-\u003esock is set. This issue leads to a NULL pointer dereference when accessing con-\u003esock-\u003esk in net/tipc/topsrv.c in the tipc protocol in the Linux kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-1382",
"url": "https://www.suse.com/security/cve/CVE-2023-1382"
},
{
"category": "external",
"summary": "SUSE Bug 1209288 for CVE-2023-1382",
"url": "https://bugzilla.suse.com/1209288"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2023-1382"
},
{
"cve": "CVE-2023-33951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-33951"
}
],
"notes": [
{
"category": "general",
"text": "A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information in the context of the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-33951",
"url": "https://www.suse.com/security/cve/CVE-2023-33951"
},
{
"category": "external",
"summary": "SUSE Bug 1211593 for CVE-2023-33951",
"url": "https://bugzilla.suse.com/1211593"
},
{
"category": "external",
"summary": "SUSE Bug 1216527 for CVE-2023-33951",
"url": "https://bugzilla.suse.com/1216527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2023-33951"
},
{
"cve": "CVE-2023-33952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-33952"
}
],
"notes": [
{
"category": "general",
"text": "A double-free vulnerability was found in handling vmw_buffer_object objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior to performing further free operations on the object, which may allow a local privileged user to escalate privileges and execute code in the context of the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-33952",
"url": "https://www.suse.com/security/cve/CVE-2023-33952"
},
{
"category": "external",
"summary": "SUSE Bug 1211595 for CVE-2023-33952",
"url": "https://bugzilla.suse.com/1211595"
},
{
"category": "external",
"summary": "SUSE Bug 1212348 for CVE-2023-33952",
"url": "https://bugzilla.suse.com/1212348"
},
{
"category": "external",
"summary": "SUSE Bug 1216527 for CVE-2023-33952",
"url": "https://bugzilla.suse.com/1216527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2023-33952"
},
{
"cve": "CVE-2023-52920",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52920"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: support non-r10 register spill/fill to/from stack in precision tracking\n\nUse instruction (jump) history to record instructions that performed\nregister spill/fill to/from stack, regardless if this was done through\nread-only r10 register, or any other register after copying r10 into it\n*and* potentially adjusting offset.\n\nTo make this work reliably, we push extra per-instruction flags into\ninstruction history, encoding stack slot index (spi) and stack frame\nnumber in extra 10 bit flags we take away from prev_idx in instruction\nhistory. We don\u0027t touch idx field for maximum performance, as it\u0027s\nchecked most frequently during backtracking.\n\nThis change removes basically the last remaining practical limitation of\nprecision backtracking logic in BPF verifier. It fixes known\ndeficiencies, but also opens up new opportunities to reduce number of\nverified states, explored in the subsequent patches.\n\nThere are only three differences in selftests\u0027 BPF object files\naccording to veristat, all in the positive direction (less states).\n\nFile Program Insns (A) Insns (B) Insns (DIFF) States (A) States (B) States (DIFF)\n-------------------------------------- ------------- --------- --------- ------------- ---------- ---------- -------------\ntest_cls_redirect_dynptr.bpf.linked3.o cls_redirect 2987 2864 -123 (-4.12%) 240 231 -9 (-3.75%)\nxdp_synproxy_kern.bpf.linked3.o syncookie_tc 82848 82661 -187 (-0.23%) 5107 5073 -34 (-0.67%)\nxdp_synproxy_kern.bpf.linked3.o syncookie_xdp 85116 84964 -152 (-0.18%) 5162 5130 -32 (-0.62%)\n\nNote, I avoided renaming jmp_history to more generic insn_hist to\nminimize number of lines changed and potential merge conflicts between\nbpf and bpf-next trees.\n\nNotice also cur_hist_entry pointer reset to NULL at the beginning of\ninstruction verification loop. This pointer avoids the problem of\nrelying on last jump history entry\u0027s insn_idx to determine whether we\nalready have entry for current instruction or not. It can happen that we\nadded jump history entry because current instruction is_jmp_point(), but\nalso we need to add instruction flags for stack access. In this case, we\ndon\u0027t want to entries, so we need to reuse last added entry, if it is\npresent.\n\nRelying on insn_idx comparison has the same ambiguity problem as the one\nthat was fixed recently in [0], so we avoid that.\n\n [0] https://patchwork.kernel.org/project/netdevbpf/patch/20231110002638.4168352-3-andrii@kernel.org/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52920",
"url": "https://www.suse.com/security/cve/CVE-2023-52920"
},
{
"category": "external",
"summary": "SUSE Bug 1232823 for CVE-2023-52920",
"url": "https://bugzilla.suse.com/1232823"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2023-52920"
},
{
"cve": "CVE-2024-24860",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24860"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the Linux kernel\u0027s bluetooth device driver in {min,max}_key_size_set() function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24860",
"url": "https://www.suse.com/security/cve/CVE-2024-24860"
},
{
"category": "external",
"summary": "SUSE Bug 1219608 for CVE-2024-24860",
"url": "https://bugzilla.suse.com/1219608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-24860"
},
{
"cve": "CVE-2024-26886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: af_bluetooth: Fix deadlock\n\nAttemting to do sock_lock on .recvmsg may cause a deadlock as shown\nbellow, so instead of using sock_sock this uses sk_receive_queue.lock\non bt_sock_ioctl to avoid the UAF:\n\nINFO: task kworker/u9:1:121 blocked for more than 30 seconds.\n Not tainted 6.7.6-lemon #183\nWorkqueue: hci0 hci_rx_work\nCall Trace:\n \u003cTASK\u003e\n __schedule+0x37d/0xa00\n schedule+0x32/0xe0\n __lock_sock+0x68/0xa0\n ? __pfx_autoremove_wake_function+0x10/0x10\n lock_sock_nested+0x43/0x50\n l2cap_sock_recv_cb+0x21/0xa0\n l2cap_recv_frame+0x55b/0x30a0\n ? psi_task_switch+0xeb/0x270\n ? finish_task_switch.isra.0+0x93/0x2a0\n hci_rx_work+0x33a/0x3f0\n process_one_work+0x13a/0x2f0\n worker_thread+0x2f0/0x410\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xe0/0x110\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2c/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26886",
"url": "https://www.suse.com/security/cve/CVE-2024-26886"
},
{
"category": "external",
"summary": "SUSE Bug 1223044 for CVE-2024-26886",
"url": "https://bugzilla.suse.com/1223044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-26886"
},
{
"cve": "CVE-2024-26924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: do not free live element\n\nPablo reports a crash with large batches of elements with a\nback-to-back add/remove pattern. Quoting Pablo:\n\n add_elem(\"00000000\") timeout 100 ms\n ...\n add_elem(\"0000000X\") timeout 100 ms\n del_elem(\"0000000X\") \u003c---------------- delete one that was just added\n ...\n add_elem(\"00005000\") timeout 100 ms\n\n 1) nft_pipapo_remove() removes element 0000000X\n Then, KASAN shows a splat.\n\nLooking at the remove function there is a chance that we will drop a\nrule that maps to a non-deactivated element.\n\nRemoval happens in two steps, first we do a lookup for key k and return the\nto-be-removed element and mark it as inactive in the next generation.\nThen, in a second step, the element gets removed from the set/map.\n\nThe _remove function does not work correctly if we have more than one\nelement that share the same key.\n\nThis can happen if we insert an element into a set when the set already\nholds an element with same key, but the element mapping to the existing\nkey has timed out or is not active in the next generation.\n\nIn such case its possible that removal will unmap the wrong element.\nIf this happens, we will leak the non-deactivated element, it becomes\nunreachable.\n\nThe element that got deactivated (and will be freed later) will\nremain reachable in the set data structure, this can result in\na crash when such an element is retrieved during lookup (stale\npointer).\n\nAdd a check that the fully matching key does in fact map to the element\nthat we have marked as inactive in the deactivation step.\nIf not, we need to continue searching.\n\nAdd a bug/warn trap at the end of the function as well, the remove\nfunction must not ever be called with an invisible/unreachable/non-existent\nelement.\n\nv2: avoid uneeded temporary variable (Stefano)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26924",
"url": "https://www.suse.com/security/cve/CVE-2024-26924"
},
{
"category": "external",
"summary": "SUSE Bug 1223387 for CVE-2024-26924",
"url": "https://bugzilla.suse.com/1223387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-26924"
},
{
"cve": "CVE-2024-36915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: llcp: fix nfc_llcp_setsockopt() unsafe copies\n\nsyzbot reported unsafe calls to copy_from_sockptr() [1]\n\nUse copy_safe_from_sockptr() instead.\n\n[1]\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\nRead of size 4 at addr ffff88801caa1ec3 by task syz-executor459/5078\n\nCPU: 0 PID: 5078 Comm: syz-executor459 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\n do_sock_setsockopt+0x3b1/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfd/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7f7fac07fd89\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff660eb788 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7fac07fd89\nRDX: 0000000000000000 RSI: 0000000000000118 RDI: 0000000000000004\nRBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020000a80 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36915",
"url": "https://www.suse.com/security/cve/CVE-2024-36915"
},
{
"category": "external",
"summary": "SUSE Bug 1225758 for CVE-2024-36915",
"url": "https://bugzilla.suse.com/1225758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-36915"
},
{
"cve": "CVE-2024-42232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix race between delayed_work() and ceph_monc_stop()\n\nThe way the delayed work is handled in ceph_monc_stop() is prone to\nraces with mon_fault() and possibly also finish_hunting(). Both of\nthese can requeue the delayed work which wouldn\u0027t be canceled by any of\nthe following code in case that happens after cancel_delayed_work_sync()\nruns -- __close_session() doesn\u0027t mess with the delayed work in order\nto avoid interfering with the hunting interval logic. This part was\nmissed in commit b5d91704f53e (\"libceph: behave in mon_fault() if\ncur_mon \u003c 0\") and use-after-free can still ensue on monc and objects\nthat hang off of it, with monc-\u003eauth and monc-\u003emonmap being\nparticularly susceptible to quickly being reused.\n\nTo fix this:\n\n- clear monc-\u003ecur_mon and monc-\u003ehunting as part of closing the session\n in ceph_monc_stop()\n- bail from delayed_work() if monc-\u003ecur_mon is cleared, similar to how\n it\u0027s done in mon_fault() and finish_hunting() (based on monc-\u003ehunting)\n- call cancel_delayed_work_sync() after the session is closed",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42232",
"url": "https://www.suse.com/security/cve/CVE-2024-42232"
},
{
"category": "external",
"summary": "SUSE Bug 1228959 for CVE-2024-42232",
"url": "https://bugzilla.suse.com/1228959"
},
{
"category": "external",
"summary": "SUSE Bug 1229458 for CVE-2024-42232",
"url": "https://bugzilla.suse.com/1229458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-42232"
},
{
"cve": "CVE-2024-44934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: wait for previous gc cycles when removing port\n\nsyzbot hit a use-after-free[1] which is caused because the bridge doesn\u0027t\nmake sure that all previous garbage has been collected when removing a\nport. What happens is:\n CPU 1 CPU 2\n start gc cycle remove port\n acquire gc lock first\n wait for lock\n call br_multicasg_gc() directly\n acquire lock now but free port\n the port can be freed\n while grp timers still\n running\n\nMake sure all previous gc cycles have finished by using flush_work before\nfreeing the port.\n\n[1]\n BUG: KASAN: slab-use-after-free in br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n Read of size 8 at addr ffff888071d6d000 by task syz.5.1232/9699\n\n CPU: 1 PID: 9699 Comm: syz.5.1232 Not tainted 6.10.0-rc5-syzkaller-00021-g24ca36a562d6 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n Call Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n br_multicast_port_group_expired+0x4c0/0x550 net/bridge/br_multicast.c:861\n call_timer_fn+0x1a3/0x610 kernel/time/timer.c:1792\n expire_timers kernel/time/timer.c:1843 [inline]\n __run_timers+0x74b/0xaf0 kernel/time/timer.c:2417\n __run_timer_base kernel/time/timer.c:2428 [inline]\n __run_timer_base kernel/time/timer.c:2421 [inline]\n run_timer_base+0x111/0x190 kernel/time/timer.c:2437",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44934",
"url": "https://www.suse.com/security/cve/CVE-2024-44934"
},
{
"category": "external",
"summary": "SUSE Bug 1229809 for CVE-2024-44934",
"url": "https://bugzilla.suse.com/1229809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-44934"
},
{
"cve": "CVE-2024-47666",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47666"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: pm80xx: Set phy-\u003eenable_completion only when we wait for it\n\npm8001_phy_control() populates the enable_completion pointer with a stack\naddress, sends a PHY_LINK_RESET / PHY_HARD_RESET, waits 300 ms, and\nreturns. The problem arises when a phy control response comes late. After\n300 ms the pm8001_phy_control() function returns and the passed\nenable_completion stack address is no longer valid. Late phy control\nresponse invokes complete() on a dangling enable_completion pointer which\nleads to a kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47666",
"url": "https://www.suse.com/security/cve/CVE-2024-47666"
},
{
"category": "external",
"summary": "SUSE Bug 1231453 for CVE-2024-47666",
"url": "https://bugzilla.suse.com/1231453"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-47666"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-49944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start\n\nIn sctp_listen_start() invoked by sctp_inet_listen(), it should set the\nsk_state back to CLOSED if sctp_autobind() fails due to whatever reason.\n\nOtherwise, next time when calling sctp_inet_listen(), if sctp_sk(sk)-\u003ereuse\nis already set via setsockopt(SCTP_REUSE_PORT), sctp_sk(sk)-\u003ebind_hash will\nbe dereferenced as sk_state is LISTENING, which causes a crash as bind_hash\nis NULL.\n\n KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n RIP: 0010:sctp_inet_listen+0x7f0/0xa20 net/sctp/socket.c:8617\n Call Trace:\n \u003cTASK\u003e\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49944",
"url": "https://www.suse.com/security/cve/CVE-2024-49944"
},
{
"category": "external",
"summary": "SUSE Bug 1232166 for CVE-2024-49944",
"url": "https://bugzilla.suse.com/1232166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-49944"
},
{
"cve": "CVE-2024-49952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49952"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prevent nf_skb_duplicated corruption\n\nsyzbot found that nf_dup_ipv4() or nf_dup_ipv6() could write\nper-cpu variable nf_skb_duplicated in an unsafe way [1].\n\nDisabling preemption as hinted by the splat is not enough,\nwe have to disable soft interrupts as well.\n\n[1]\nBUG: using __this_cpu_write() in preemptible [00000000] code: syz.4.282/6316\n caller is nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\nCPU: 0 UID: 0 PID: 6316 Comm: syz.4.282 Not tainted 6.11.0-rc7-syzkaller-00104-g7052622fccb1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n check_preemption_disabled+0x10e/0x120 lib/smp_processor_id.c:49\n nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\n nft_dup_ipv4_eval+0x1db/0x300 net/ipv4/netfilter/nft_dup_ipv4.c:30\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_ipv4+0x202/0x320 net/netfilter/nft_chain_filter.c:23\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook+0x2c4/0x450 include/linux/netfilter.h:269\n NF_HOOK_COND include/linux/netfilter.h:302 [inline]\n ip_output+0x185/0x230 net/ipv4/ip_output.c:433\n ip_local_out net/ipv4/ip_output.c:129 [inline]\n ip_send_skb+0x74/0x100 net/ipv4/ip_output.c:1495\n udp_send_skb+0xacf/0x1650 net/ipv4/udp.c:981\n udp_sendmsg+0x1c21/0x2a60 net/ipv4/udp.c:1269\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmmsg+0x3b2/0x740 net/socket.c:2737\n __do_sys_sendmmsg net/socket.c:2766 [inline]\n __se_sys_sendmmsg net/socket.c:2763 [inline]\n __x64_sys_sendmmsg+0xa0/0xb0 net/socket.c:2763\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f4ce4f7def9\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f4ce5d4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133\nRAX: ffffffffffffffda RBX: 00007f4ce5135f80 RCX: 00007f4ce4f7def9\nRDX: 0000000000000001 RSI: 0000000020005d40 RDI: 0000000000000006\nRBP: 00007f4ce4ff0b76 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f4ce5135f80 R15: 00007ffd4cbc6d68\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49952",
"url": "https://www.suse.com/security/cve/CVE-2024-49952"
},
{
"category": "external",
"summary": "SUSE Bug 1232157 for CVE-2024-49952",
"url": "https://bugzilla.suse.com/1232157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-49952"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsl/fman: Fix refcount handling of fman-related devices\n\nIn mac_probe() there are multiple calls to of_find_device_by_node(),\nfman_bind() and fman_port_bind() which takes references to of_dev-\u003edev.\nNot all references taken by these calls are released later on error path\nin mac_probe() and in mac_remove() which lead to reference leaks.\n\nAdd references release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50166",
"url": "https://www.suse.com/security/cve/CVE-2024-50166"
},
{
"category": "external",
"summary": "SUSE Bug 1233050 for CVE-2024-50166",
"url": "https://bugzilla.suse.com/1233050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50166"
},
{
"cve": "CVE-2024-50181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50181"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50181",
"url": "https://www.suse.com/security/cve/CVE-2024-50181"
},
{
"category": "external",
"summary": "SUSE Bug 1233127 for CVE-2024-50181",
"url": "https://bugzilla.suse.com/1233127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50181"
},
{
"cve": "CVE-2024-50202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: propagate directory read errors from nilfs_find_entry()\n\nSyzbot reported that a task hang occurs in vcs_open() during a fuzzing\ntest for nilfs2.\n\nThe root cause of this problem is that in nilfs_find_entry(), which\nsearches for directory entries, ignores errors when loading a directory\npage/folio via nilfs_get_folio() fails.\n\nIf the filesystem images is corrupted, and the i_size of the directory\ninode is large, and the directory page/folio is successfully read but\nfails the sanity check, for example when it is zero-filled,\nnilfs_check_folio() may continue to spit out error messages in bursts.\n\nFix this issue by propagating the error to the callers when loading a\npage/folio fails in nilfs_find_entry().\n\nThe current interface of nilfs_find_entry() and its callers is outdated\nand cannot propagate error codes such as -EIO and -ENOMEM returned via\nnilfs_find_entry(), so fix it together.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50202",
"url": "https://www.suse.com/security/cve/CVE-2024-50202"
},
{
"category": "external",
"summary": "SUSE Bug 1233324 for CVE-2024-50202",
"url": "https://bugzilla.suse.com/1233324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix potential out-of-bounds access on the first resume\n\nOut-of-bounds access occurs if the fast device is expanded unexpectedly\nbefore the first-time resume of the cache table. This happens because\nexpanding the fast device requires reloading the cache table for\ncache_create to allocate new in-core data structures that fit the new\nsize, and the check in cache_preresume is not performed during the\nfirst resume, leading to the issue.\n\nReproduce steps:\n\n1. prepare component devices:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\n\n2. load a cache table of 512 cache blocks, and deliberately expand the\n fast device before resuming the cache, making the in-core data\n structures inadequate.\n\ndmsetup create cache --notable\ndmsetup reload cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\ndmsetup reload cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\n3. suspend the cache to write out the in-core dirty bitset and hint\n array, leading to out-of-bounds access to the dirty bitset at offset\n 0x40:\n\ndmsetup suspend cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in is_dirty_callback+0x2b/0x80\n Read of size 8 at addr ffffc90000085040 by task dmsetup/90\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc90000085000, ffffc90000087000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc90000084f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000084f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n \u003effffc90000085000: 00 00 00 00 00 00 00 00 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc90000085080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc90000085100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by checking the size change on the first resume.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50278",
"url": "https://www.suse.com/security/cve/CVE-2024-50278"
},
{
"category": "external",
"summary": "SUSE Bug 1233467 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233467"
},
{
"category": "external",
"summary": "SUSE Bug 1233709 for CVE-2024-50278",
"url": "https://bugzilla.suse.com/1233709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50278"
},
{
"cve": "CVE-2024-50279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix out-of-bounds access to the dirty bitset when resizing\n\ndm-cache checks the dirty bits of the cache blocks to be dropped when\nshrinking the fast device, but an index bug in bitset iteration causes\nout-of-bounds access.\n\nReproduce steps:\n\n1. create a cache device of 1024 cache blocks (128 bytes dirty bitset)\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. shrink the fast device to 512 cache blocks, triggering out-of-bounds\n access to the dirty bitset (offset 0x80)\n\ndmsetup suspend cache\ndmsetup reload cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in cache_preresume+0x269/0x7b0\n Read of size 8 at addr ffffc900000f3080 by task dmsetup/131\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc900000f3000, ffffc900000f5000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc900000f2f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effffc900000f3080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc900000f3100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by making the index post-incremented.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50279",
"url": "https://www.suse.com/security/cve/CVE-2024-50279"
},
{
"category": "external",
"summary": "SUSE Bug 1233468 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "external",
"summary": "SUSE Bug 1233708 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-50279"
},
{
"cve": "CVE-2024-50280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix flushing uninitialized delayed_work on cache_ctr error\n\nAn unexpected WARN_ON from flush_work() may occur when cache creation\nfails, caused by destroying the uninitialized delayed_work waker in the\nerror path of cache_create(). For example, the warning appears on the\nsuperblock checksum error.\n\nReproduce steps:\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/urandom of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\nKernel logs:\n\n(snip)\nWARNING: CPU: 0 PID: 84 at kernel/workqueue.c:4178 __flush_work+0x5d4/0x890\n\nFix by pulling out the cancel_delayed_work_sync() from the constructor\u0027s\nerror path. This patch doesn\u0027t affect the use-after-free fix for\nconcurrent dm_resume and dm_destroy (commit 6a459d8edbdb (\"dm cache: Fix\nUAF in destroy()\")) as cache_dtr is not changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50280",
"url": "https://www.suse.com/security/cve/CVE-2024-50280"
},
{
"category": "external",
"summary": "SUSE Bug 1233469 for CVE-2024-50280",
"url": "https://bugzilla.suse.com/1233469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50280"
},
{
"cve": "CVE-2024-50296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when uninstalling driver\n\nWhen the driver is uninstalled and the VF is disabled concurrently, a\nkernel crash occurs. The reason is that the two actions call function\npci_disable_sriov(). The num_VFs is checked to determine whether to\nrelease the corresponding resources. During the second calling, num_VFs\nis not 0 and the resource release function is called. However, the\ncorresponding resource has been released during the first invoking.\nTherefore, the problem occurs:\n\n[15277.839633][T50670] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n...\n[15278.131557][T50670] Call trace:\n[15278.134686][T50670] klist_put+0x28/0x12c\n[15278.138682][T50670] klist_del+0x14/0x20\n[15278.142592][T50670] device_del+0xbc/0x3c0\n[15278.146676][T50670] pci_remove_bus_device+0x84/0x120\n[15278.151714][T50670] pci_stop_and_remove_bus_device+0x6c/0x80\n[15278.157447][T50670] pci_iov_remove_virtfn+0xb4/0x12c\n[15278.162485][T50670] sriov_disable+0x50/0x11c\n[15278.166829][T50670] pci_disable_sriov+0x24/0x30\n[15278.171433][T50670] hnae3_unregister_ae_algo_prepare+0x60/0x90 [hnae3]\n[15278.178039][T50670] hclge_exit+0x28/0xd0 [hclge]\n[15278.182730][T50670] __se_sys_delete_module.isra.0+0x164/0x230\n[15278.188550][T50670] __arm64_sys_delete_module+0x1c/0x30\n[15278.193848][T50670] invoke_syscall+0x50/0x11c\n[15278.198278][T50670] el0_svc_common.constprop.0+0x158/0x164\n[15278.203837][T50670] do_el0_svc+0x34/0xcc\n[15278.207834][T50670] el0_svc+0x20/0x30\n\nFor details, see the following figure.\n\n rmmod hclge disable VFs\n----------------------------------------------------\nhclge_exit() sriov_numvfs_store()\n ... device_lock()\n pci_disable_sriov() hns3_pci_sriov_configure()\n pci_disable_sriov()\n sriov_disable()\n sriov_disable() if !num_VFs :\n if !num_VFs : return;\n return; sriov_del_vfs()\n sriov_del_vfs() ...\n ... klist_put()\n klist_put() ...\n ... num_VFs = 0;\n num_VFs = 0; device_unlock();\n\nIn this patch, when driver is removing, we get the device_lock()\nto protect num_VFs, just like sriov_numvfs_store().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50296",
"url": "https://www.suse.com/security/cve/CVE-2024-50296"
},
{
"category": "external",
"summary": "SUSE Bug 1233485 for CVE-2024-50296",
"url": "https://bugzilla.suse.com/1233485"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-50296"
},
{
"cve": "CVE-2024-53051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/hdcp: Add encoder check in intel_hdcp_get_capability\n\nSometimes during hotplug scenario or suspend/resume scenario encoder is\nnot always initialized when intel_hdcp_get_capability add\na check to avoid kernel null pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53051",
"url": "https://www.suse.com/security/cve/CVE-2024-53051"
},
{
"category": "external",
"summary": "SUSE Bug 1233547 for CVE-2024-53051",
"url": "https://bugzilla.suse.com/1233547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53051"
},
{
"cve": "CVE-2024-53055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53055"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: fix 6 GHz scan construction\n\nIf more than 255 colocated APs exist for the set of all\nAPs found during 2.4/5 GHz scanning, then the 6 GHz scan\nconstruction will loop forever since the loop variable\nhas type u8, which can never reach the number found when\nthat\u0027s bigger than 255, and is stored in a u32 variable.\nAlso move it into the loops to have a smaller scope.\n\nUsing a u32 there is fine, we limit the number of APs in\nthe scan list and each has a limit on the number of RNR\nentries due to the frame size. With a limit of 1000 scan\nresults, a frame size upper bound of 4096 (really it\u0027s\nmore like ~2300) and a TBTT entry size of at least 11,\nwe get an upper bound for the number of ~372k, well in\nthe bounds of a u32.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53055",
"url": "https://www.suse.com/security/cve/CVE-2024-53055"
},
{
"category": "external",
"summary": "SUSE Bug 1233550 for CVE-2024-53055",
"url": "https://bugzilla.suse.com/1233550"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53055"
},
{
"cve": "CVE-2024-53056",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53056"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy()\n\nIn mtk_crtc_create(), if the call to mbox_request_channel() fails then we\nset the \"mtk_crtc-\u003ecmdq_client.chan\" pointer to NULL. In that situation,\nwe do not call cmdq_pkt_create().\n\nDuring the cleanup, we need to check if the \"mtk_crtc-\u003ecmdq_client.chan\"\nis NULL first before calling cmdq_pkt_destroy(). Calling\ncmdq_pkt_destroy() is unnecessary if we didn\u0027t call cmdq_pkt_create() and\nit will result in a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53056",
"url": "https://www.suse.com/security/cve/CVE-2024-53056"
},
{
"category": "external",
"summary": "SUSE Bug 1233568 for CVE-2024-53056",
"url": "https://bugzilla.suse.com/1233568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53056"
},
{
"cve": "CVE-2024-53064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix idpf_vc_core_init error path\n\nIn an event where the platform running the device control plane\nis rebooted, reset is detected on the driver. It releases\nall the resources and waits for the reset to complete. Once the\nreset is done, it tries to build the resources back. At this\ntime if the device control plane is not yet started, then\nthe driver timeouts on the virtchnl message and retries to\nestablish the mailbox again.\n\nIn the retry flow, mailbox is deinitialized but the mailbox\nworkqueue is still alive and polling for the mailbox message.\nThis results in accessing the released control queue leading to\nnull-ptr-deref. Fix it by unrolling the work queue cancellation\nand mailbox deinitialization in the reverse order which they got\ninitialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53064",
"url": "https://www.suse.com/security/cve/CVE-2024-53064"
},
{
"category": "external",
"summary": "SUSE Bug 1233558 for CVE-2024-53064",
"url": "https://bugzilla.suse.com/1233558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53064"
},
{
"cve": "CVE-2024-53072",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53072"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/amd/pmc: Detect when STB is not available\n\nLoading the amd_pmc module as:\n\n amd_pmc enable_stb=1\n\n...can result in the following messages in the kernel ring buffer:\n\n amd_pmc AMDI0009:00: SMU cmd failed. err: 0xff\n ioremap on RAM at 0x0000000000000000 - 0x0000000000ffffff\n WARNING: CPU: 10 PID: 2151 at arch/x86/mm/ioremap.c:217 __ioremap_caller+0x2cd/0x340\n\nFurther debugging reveals that this occurs when the requests for\nS2D_PHYS_ADDR_LOW and S2D_PHYS_ADDR_HIGH return a value of 0,\nindicating that the STB is inaccessible. To prevent the ioremap\nwarning and provide clarity to the user, handle the invalid address\nand display an error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53072",
"url": "https://www.suse.com/security/cve/CVE-2024-53072"
},
{
"category": "external",
"summary": "SUSE Bug 1233564 for CVE-2024-53072",
"url": "https://bugzilla.suse.com/1233564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53072"
},
{
"cve": "CVE-2024-53090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix lock recursion\n\nafs_wake_up_async_call() can incur lock recursion. The problem is that it\nis called from AF_RXRPC whilst holding the -\u003enotify_lock, but it tries to\ntake a ref on the afs_call struct in order to pass it to a work queue - but\nif the afs_call is already queued, we then have an extraneous ref that must\nbe put... calling afs_put_call() may call back down into AF_RXRPC through\nrxrpc_kernel_shutdown_call(), however, which might try taking the\n-\u003enotify_lock again.\n\nThis case isn\u0027t very common, however, so defer it to a workqueue. The oops\nlooks something like:\n\n BUG: spinlock recursion on CPU#0, krxrpcio/7001/1646\n lock: 0xffff888141399b30, .magic: dead4ead, .owner: krxrpcio/7001/1646, .owner_cpu: 0\n CPU: 0 UID: 0 PID: 1646 Comm: krxrpcio/7001 Not tainted 6.12.0-rc2-build3+ #4351\n Hardware name: ASUS All Series/H97-PLUS, BIOS 2306 10/09/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x47/0x70\n do_raw_spin_lock+0x3c/0x90\n rxrpc_kernel_shutdown_call+0x83/0xb0\n afs_put_call+0xd7/0x180\n rxrpc_notify_socket+0xa0/0x190\n rxrpc_input_split_jumbo+0x198/0x1d0\n rxrpc_input_data+0x14b/0x1e0\n ? rxrpc_input_call_packet+0xc2/0x1f0\n rxrpc_input_call_event+0xad/0x6b0\n rxrpc_input_packet_on_conn+0x1e1/0x210\n rxrpc_input_packet+0x3f2/0x4d0\n rxrpc_io_thread+0x243/0x410\n ? __pfx_rxrpc_io_thread+0x10/0x10\n kthread+0xcf/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x24/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53090",
"url": "https://www.suse.com/security/cve/CVE-2024-53090"
},
{
"category": "external",
"summary": "SUSE Bug 1233637 for CVE-2024-53090",
"url": "https://bugzilla.suse.com/1233637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53090"
},
{
"cve": "CVE-2024-53101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs: Fix uninitialized value issue in from_kuid and from_kgid\n\nocfs2_setattr() uses attr-\u003eia_mode, attr-\u003eia_uid and attr-\u003eia_gid in\na trace point even though ATTR_MODE, ATTR_UID and ATTR_GID aren\u0027t set.\n\nInitialize all fields of newattrs to avoid uninitialized variables, by\nchecking if ATTR_MODE, ATTR_UID, ATTR_GID are initialized, otherwise 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53101",
"url": "https://www.suse.com/security/cve/CVE-2024-53101"
},
{
"category": "external",
"summary": "SUSE Bug 1233769 for CVE-2024-53101",
"url": "https://bugzilla.suse.com/1233769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53101"
},
{
"cve": "CVE-2024-53113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix NULL pointer dereference in alloc_pages_bulk_noprof\n\nWe triggered a NULL pointer dereference for ac.preferred_zoneref-\u003ezone in\nalloc_pages_bulk_noprof() when the task is migrated between cpusets.\n\nWhen cpuset is enabled, in prepare_alloc_pages(), ac-\u003enodemask may be\n\u0026current-\u003emems_allowed. when first_zones_zonelist() is called to find\npreferred_zoneref, the ac-\u003enodemask may be modified concurrently if the\ntask is migrated between different cpusets. Assuming we have 2 NUMA Node,\nwhen traversing Node1 in ac-\u003ezonelist, the nodemask is 2, and when\ntraversing Node2 in ac-\u003ezonelist, the nodemask is 1. As a result, the\nac-\u003epreferred_zoneref points to NULL zone.\n\nIn alloc_pages_bulk_noprof(), for_each_zone_zonelist_nodemask() finds a\nallowable zone and calls zonelist_node_idx(ac.preferred_zoneref), leading\nto NULL pointer dereference.\n\n__alloc_pages_noprof() fixes this issue by checking NULL pointer in commit\nea57485af8f4 (\"mm, page_alloc: fix check for NULL preferred_zone\") and\ncommit df76cee6bbeb (\"mm, page_alloc: remove redundant checks from alloc\nfastpath\").\n\nTo fix it, check NULL pointer for preferred_zoneref-\u003ezone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53113",
"url": "https://www.suse.com/security/cve/CVE-2024-53113"
},
{
"category": "external",
"summary": "SUSE Bug 1234077 for CVE-2024-53113",
"url": "https://bugzilla.suse.com/1234077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53113"
},
{
"cve": "CVE-2024-53114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client\n\nA number of Zen4 client SoCs advertise the ability to use virtualized\nVMLOAD/VMSAVE, but using these instructions is reported to be a cause\nof a random host reboot.\n\nThese instructions aren\u0027t intended to be advertised on Zen4 client\nso clear the capability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53114",
"url": "https://www.suse.com/security/cve/CVE-2024-53114"
},
{
"category": "external",
"summary": "SUSE Bug 1234072 for CVE-2024-53114",
"url": "https://bugzilla.suse.com/1234072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53114"
},
{
"cve": "CVE-2024-53119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix accept_queue memory leak\n\nAs the final stages of socket destruction may be delayed, it is possible\nthat virtio_transport_recv_listen() will be called after the accept_queue\nhas been flushed, but before the SOCK_DONE flag has been set. As a result,\nsockets enqueued after the flush would remain unremoved, leading to a\nmemory leak.\n\nvsock_release\n __vsock_release\n lock\n virtio_transport_release\n virtio_transport_close\n schedule_delayed_work(close_work)\n sk_shutdown = SHUTDOWN_MASK\n(!) flush accept_queue\n release\n virtio_transport_recv_pkt\n vsock_find_bound_socket\n lock\n if flag(SOCK_DONE) return\n virtio_transport_recv_listen\n child = vsock_create_connected\n (!) vsock_enqueue_accept(child)\n release\nclose_work\n lock\n virtio_transport_do_close\n set_flag(SOCK_DONE)\n virtio_transport_remove_sock\n vsock_remove_sock\n vsock_remove_bound\n release\n\nIntroduce a sk_shutdown check to disallow vsock_enqueue_accept() during\nsocket destruction.\n\nunreferenced object 0xffff888109e3f800 (size 2040):\n comm \"kworker/5:2\", pid 371, jiffies 4294940105\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............\n backtrace (crc 9e5f4e84):\n [\u003cffffffff81418ff1\u003e] kmem_cache_alloc_noprof+0x2c1/0x360\n [\u003cffffffff81d27aa0\u003e] sk_prot_alloc+0x30/0x120\n [\u003cffffffff81d2b54c\u003e] sk_alloc+0x2c/0x4b0\n [\u003cffffffff81fe049a\u003e] __vsock_create.constprop.0+0x2a/0x310\n [\u003cffffffff81fe6d6c\u003e] virtio_transport_recv_pkt+0x4dc/0x9a0\n [\u003cffffffff81fe745d\u003e] vsock_loopback_work+0xfd/0x140\n [\u003cffffffff810fc6ac\u003e] process_one_work+0x20c/0x570\n [\u003cffffffff810fce3f\u003e] worker_thread+0x1bf/0x3a0\n [\u003cffffffff811070dd\u003e] kthread+0xdd/0x110\n [\u003cffffffff81044fdd\u003e] ret_from_fork+0x2d/0x50\n [\u003cffffffff8100785a\u003e] ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53119",
"url": "https://www.suse.com/security/cve/CVE-2024-53119"
},
{
"category": "external",
"summary": "SUSE Bug 1234073 for CVE-2024-53119",
"url": "https://bugzilla.suse.com/1234073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53119"
},
{
"cve": "CVE-2024-53120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT: Fix null-ptr-deref in add rule err flow\n\nIn error flow of mlx5_tc_ct_entry_add_rule(), in case ct_rule_add()\ncallback returns error, zone_rule-\u003eattr is used uninitiated. Fix it to\nuse attr which has the needed pointer value.\n\nKernel log:\n BUG: kernel NULL pointer dereference, address: 0000000000000110\n RIP: 0010:mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n\u2026\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_tc_ct_entry_add_rule+0x2b1/0x2f0 [mlx5_core]\n ? mlx5_tc_ct_entry_add_rule+0x1d5/0x2f0 [mlx5_core]\n mlx5_tc_ct_block_flow_offload+0xc6a/0xf90 [mlx5_core]\n ? nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n nf_flow_offload_tuple+0xd8/0x190 [nf_flow_table]\n flow_offload_work_handler+0x142/0x320 [nf_flow_table]\n ? finish_task_switch.isra.0+0x15b/0x2b0\n process_one_work+0x16c/0x320\n worker_thread+0x28c/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xb8/0xf0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53120",
"url": "https://www.suse.com/security/cve/CVE-2024-53120"
},
{
"category": "external",
"summary": "SUSE Bug 1234075 for CVE-2024-53120",
"url": "https://bugzilla.suse.com/1234075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53120"
},
{
"cve": "CVE-2024-53122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: cope racing subflow creation in mptcp_rcv_space_adjust\n\nAdditional active subflows - i.e. created by the in kernel path\nmanager - are included into the subflow list before starting the\n3whs.\n\nA racing recvmsg() spooling data received on an already established\nsubflow would unconditionally call tcp_cleanup_rbuf() on all the\ncurrent subflows, potentially hitting a divide by zero error on\nthe newly created ones.\n\nExplicitly check that the subflow is in a suitable state before\ninvoking tcp_cleanup_rbuf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53122",
"url": "https://www.suse.com/security/cve/CVE-2024-53122"
},
{
"category": "external",
"summary": "SUSE Bug 1234076 for CVE-2024-53122",
"url": "https://bugzilla.suse.com/1234076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53122"
},
{
"cve": "CVE-2024-53125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: sync_linked_regs() must preserve subreg_def\n\nRange propagation must not affect subreg_def marks, otherwise the\nfollowing example is rewritten by verifier incorrectly when\nBPF_F_TEST_RND_HI32 flag is set:\n\n 0: call bpf_ktime_get_ns call bpf_ktime_get_ns\n 1: r0 \u0026= 0x7fffffff after verifier r0 \u0026= 0x7fffffff\n 2: w1 = w0 rewrites w1 = w0\n 3: if w0 \u003c 10 goto +0 --------------\u003e r11 = 0x2f5674a6 (r)\n 4: r1 \u003e\u003e= 32 r11 \u003c\u003c= 32 (r)\n 5: r0 = r1 r1 |= r11 (r)\n 6: exit; if w0 \u003c 0xa goto pc+0\n r1 \u003e\u003e= 32\n r0 = r1\n exit\n\n(or zero extension of w1 at (2) is missing for architectures that\n require zero extension for upper register half).\n\nThe following happens w/o this patch:\n- r0 is marked as not a subreg at (0);\n- w1 is marked as subreg at (2);\n- w1 subreg_def is overridden at (3) by copy_register_state();\n- w1 is read at (5) but mark_insn_zext() does not mark (2)\n for zero extension, because w1 subreg_def is not set;\n- because of BPF_F_TEST_RND_HI32 flag verifier inserts random\n value for hi32 bits of (2) (marked (r));\n- this random value is read at (5).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53125",
"url": "https://www.suse.com/security/cve/CVE-2024-53125"
},
{
"category": "external",
"summary": "SUSE Bug 1234156 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1234156"
},
{
"category": "external",
"summary": "SUSE Bug 1245804 for CVE-2024-53125",
"url": "https://bugzilla.suse.com/1245804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-53125"
},
{
"cve": "CVE-2024-53130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint\n\nWhen using the \"block:block_dirty_buffer\" tracepoint, mark_buffer_dirty()\nmay cause a NULL pointer dereference, or a general protection fault when\nKASAN is enabled.\n\nThis happens because, since the tracepoint was added in\nmark_buffer_dirty(), it references the dev_t member bh-\u003eb_bdev-\u003ebd_dev\nregardless of whether the buffer head has a pointer to a block_device\nstructure.\n\nIn the current implementation, nilfs_grab_buffer(), which grabs a buffer\nto read (or create) a block of metadata, including b-tree node blocks,\ndoes not set the block device, but instead does so only if the buffer is\nnot in the \"uptodate\" state for each of its caller block reading\nfunctions. However, if the uptodate flag is set on a folio/page, and the\nbuffer heads are detached from it by try_to_free_buffers(), and new buffer\nheads are then attached by create_empty_buffers(), the uptodate flag may\nbe restored to each buffer without the block device being set to\nbh-\u003eb_bdev, and mark_buffer_dirty() may be called later in that state,\nresulting in the bug mentioned above.\n\nFix this issue by making nilfs_grab_buffer() always set the block device\nof the super block structure to the buffer head, regardless of the state\nof the buffer\u0027s uptodate flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53130",
"url": "https://www.suse.com/security/cve/CVE-2024-53130"
},
{
"category": "external",
"summary": "SUSE Bug 1234219 for CVE-2024-53130",
"url": "https://bugzilla.suse.com/1234219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53130"
},
{
"cve": "CVE-2024-53131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix null-ptr-deref in block_touch_buffer tracepoint\n\nPatch series \"nilfs2: fix null-ptr-deref bugs on block tracepoints\".\n\nThis series fixes null pointer dereference bugs that occur when using\nnilfs2 and two block-related tracepoints.\n\n\nThis patch (of 2):\n\nIt has been reported that when using \"block:block_touch_buffer\"\ntracepoint, touch_buffer() called from __nilfs_get_folio_block() causes a\nNULL pointer dereference, or a general protection fault when KASAN is\nenabled.\n\nThis happens because since the tracepoint was added in touch_buffer(), it\nreferences the dev_t member bh-\u003eb_bdev-\u003ebd_dev regardless of whether the\nbuffer head has a pointer to a block_device structure. In the current\nimplementation, the block_device structure is set after the function\nreturns to the caller.\n\nHere, touch_buffer() is used to mark the folio/page that owns the buffer\nhead as accessed, but the common search helper for folio/page used by the\ncaller function was optimized to mark the folio/page as accessed when it\nwas reimplemented a long time ago, eliminating the need to call\ntouch_buffer() here in the first place.\n\nSo this solves the issue by eliminating the touch_buffer() call itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53131",
"url": "https://www.suse.com/security/cve/CVE-2024-53131"
},
{
"category": "external",
"summary": "SUSE Bug 1234220 for CVE-2024-53131",
"url": "https://bugzilla.suse.com/1234220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53131"
},
{
"cve": "CVE-2024-53142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninitramfs: avoid filename buffer overrun\n\nThe initramfs filename field is defined in\nDocumentation/driver-api/early-userspace/buffer-format.rst as:\n\n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data\n...\n 55 ============= ================== =========================\n 56 Field name Field size Meaning\n 57 ============= ================== =========================\n...\n 70 c_namesize 8 bytes Length of filename, including final \\0\n\nWhen extracting an initramfs cpio archive, the kernel\u0027s do_name() path\nhandler assumes a zero-terminated path at @collected, passing it\ndirectly to filp_open() / init_mkdir() / init_mknod().\n\nIf a specially crafted cpio entry carries a non-zero-terminated filename\nand is followed by uninitialized memory, then a file may be created with\ntrailing characters that represent the uninitialized memory. The ability\nto create an initramfs entry would imply already having full control of\nthe system, so the buffer overrun shouldn\u0027t be considered a security\nvulnerability.\n\nAppend the output of the following bash script to an existing initramfs\nand observe any created /initramfs_test_fname_overrunAA* path. E.g.\n ./reproducer.sh | gzip \u003e\u003e /myinitramfs\n\nIt\u0027s easiest to observe non-zero uninitialized memory when the output is\ngzipped, as it\u0027ll overflow the heap allocated @out_buf in __gunzip(),\nrather than the initrd_start+initrd_size block.\n\n---- reproducer.sh ----\nnilchar=\"A\"\t# change to \"\\0\" to properly zero terminate / pad\nmagic=\"070701\"\nino=1\nmode=$(( 0100777 ))\nuid=0\ngid=0\nnlink=1\nmtime=1\nfilesize=0\ndevmajor=0\ndevminor=1\nrdevmajor=0\nrdevminor=0\ncsum=0\nfname=\"initramfs_test_fname_overrun\"\nnamelen=$(( ${#fname} + 1 ))\t# plus one to account for terminator\n\nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\\n\t$magic $ino $mode $uid $gid $nlink $mtime $filesize \\\n\t$devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname\n\ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) \u0026 3)) % 4) ))\nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)\n---- reproducer.sh ----\n\nSymlink filename fields handled in do_symlink() won\u0027t overrun past the\ndata segment, due to the explicit zero-termination of the symlink\ntarget.\n\nFix filename buffer overrun by aborting the initramfs FSM if any cpio\nentry doesn\u0027t carry a zero-terminator at the expected (name_len - 1)\noffset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53142",
"url": "https://www.suse.com/security/cve/CVE-2024-53142"
},
{
"category": "external",
"summary": "SUSE Bug 1232436 for CVE-2024-53142",
"url": "https://bugzilla.suse.com/1232436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53142"
},
{
"cve": "CVE-2024-53146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Prevent a potential integer overflow\n\nIf the tag length is \u003e= U32_MAX - 3 then the \"length + 4\" addition\ncan result in an integer overflow. Address this by splitting the\ndecoding into several steps so that decode_cb_compound4res() does\nnot have to perform arithmetic on the unsafe length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53146",
"url": "https://www.suse.com/security/cve/CVE-2024-53146"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234854 for CVE-2024-53146",
"url": "https://bugzilla.suse.com/1234854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-53146"
},
{
"cve": "CVE-2024-53150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix out of bounds reads when finding clock sources\n\nThe current USB-audio driver code doesn\u0027t check bLength of each\ndescriptor at traversing for clock descriptors. That is, when a\ndevice provides a bogus descriptor with a shorter bLength, the driver\nmight hit out-of-bounds reads.\n\nFor addressing it, this patch adds sanity checks to the validator\nfunctions for the clock descriptor traversal. When the descriptor\nlength is shorter than expected, it\u0027s skipped in the loop.\n\nFor the clock source and clock multiplier descriptors, we can just\ncheck bLength against the sizeof() of each descriptor type.\nOTOH, the clock selector descriptor of UAC2 and UAC3 has an array\nof bNrInPins elements and two more fields at its tail, hence those\nhave to be checked in addition to the sizeof() check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53150",
"url": "https://www.suse.com/security/cve/CVE-2024-53150"
},
{
"category": "external",
"summary": "SUSE Bug 1234834 for CVE-2024-53150",
"url": "https://bugzilla.suse.com/1234834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53150"
},
{
"cve": "CVE-2024-53156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()\n\nI found the following bug in my fuzzer:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htc_hst.c:26:51\n index 255 is out of range for type \u0027htc_endpoint [22]\u0027\n CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.11.0-rc6-dirty #14\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n Workqueue: events request_firmware_work_func\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x180/0x1b0\n __ubsan_handle_out_of_bounds+0xd4/0x130\n htc_issue_send.constprop.0+0x20c/0x230\n ? _raw_spin_unlock_irqrestore+0x3c/0x70\n ath9k_wmi_cmd+0x41d/0x610\n ? mark_held_locks+0x9f/0xe0\n ...\n\nSince this bug has been confirmed to be caused by insufficient verification\nof conn_rsp_epid, I think it would be appropriate to add a range check for\nconn_rsp_epid to htc_connect_service() to prevent the bug from occurring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53156",
"url": "https://www.suse.com/security/cve/CVE-2024-53156"
},
{
"category": "external",
"summary": "SUSE Bug 1234846 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234846"
},
{
"category": "external",
"summary": "SUSE Bug 1234847 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234847"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53156",
"url": "https://bugzilla.suse.com/1234853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-53156"
},
{
"cve": "CVE-2024-53157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Check the DVFS OPP count returned by the firmware\n\nFix a kernel crash with the below call trace when the SCPI firmware\nreturns OPP count of zero.\n\ndvfs_info.opp_count may be zero on some platforms during the reboot\ntest, and the kernel will crash after dereferencing the pointer to\nkcalloc(info-\u003ecount, sizeof(*opp), GFP_KERNEL).\n\n | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000028\n | Mem abort info:\n | ESR = 0x96000004\n | Exception class = DABT (current EL), IL = 32 bits\n | SET = 0, FnV = 0\n | EA = 0, S1PTW = 0\n | Data abort info:\n | ISV = 0, ISS = 0x00000004\n | CM = 0, WnR = 0\n | user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000faefa08c\n | [0000000000000028] pgd=0000000000000000\n | Internal error: Oops: 96000004 [#1] SMP\n | scpi-hwmon: probe of PHYT000D:00 failed with error -110\n | Process systemd-udevd (pid: 1701, stack limit = 0x00000000aaede86c)\n | CPU: 2 PID: 1701 Comm: systemd-udevd Not tainted 4.19.90+ #1\n | Hardware name: PHYTIUM LTD Phytium FT2000/4/Phytium FT2000/4, BIOS\n | pstate: 60000005 (nZCv daif -PAN -UAO)\n | pc : scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | lr : clk_register+0x438/0x720\n | Call trace:\n | scpi_dvfs_recalc_rate+0x40/0x58 [clk_scpi]\n | devm_clk_hw_register+0x50/0xa0\n | scpi_clk_ops_init.isra.2+0xa0/0x138 [clk_scpi]\n | scpi_clocks_probe+0x528/0x70c [clk_scpi]\n | platform_drv_probe+0x58/0xa8\n | really_probe+0x260/0x3d0\n | driver_probe_device+0x12c/0x148\n | device_driver_attach+0x74/0x98\n | __driver_attach+0xb4/0xe8\n | bus_for_each_dev+0x88/0xe0\n | driver_attach+0x30/0x40\n | bus_add_driver+0x178/0x2b0\n | driver_register+0x64/0x118\n | __platform_driver_register+0x54/0x60\n | scpi_clocks_driver_init+0x24/0x1000 [clk_scpi]\n | do_one_initcall+0x54/0x220\n | do_init_module+0x54/0x1c8\n | load_module+0x14a4/0x1668\n | __se_sys_finit_module+0xf8/0x110\n | __arm64_sys_finit_module+0x24/0x30\n | el0_svc_common+0x78/0x170\n | el0_svc_handler+0x38/0x78\n | el0_svc+0x8/0x340\n | Code: 937d7c00 a94153f3 a8c27bfd f9400421 (b8606820)\n | ---[ end trace 06feb22469d89fa8 ]---\n | Kernel panic - not syncing: Fatal exception\n | SMP: stopping secondary CPUs\n | Kernel Offset: disabled\n | CPU features: 0x10,a0002008\n | Memory Limit: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53157",
"url": "https://www.suse.com/security/cve/CVE-2024-53157"
},
{
"category": "external",
"summary": "SUSE Bug 1234827 for CVE-2024-53157",
"url": "https://bugzilla.suse.com/1234827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53157"
},
{
"cve": "CVE-2024-53158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()\n\nThis loop is supposed to break if the frequency returned from\nclk_round_rate() is the same as on the previous iteration. However,\nthat check doesn\u0027t make sense on the first iteration through the loop.\nIt leads to reading before the start of these-\u003eclk_perf_tbl[] array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53158",
"url": "https://www.suse.com/security/cve/CVE-2024-53158"
},
{
"category": "external",
"summary": "SUSE Bug 1234811 for CVE-2024-53158",
"url": "https://bugzilla.suse.com/1234811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53158"
},
{
"cve": "CVE-2024-53161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/bluefield: Fix potential integer overflow\n\nThe 64-bit argument for the \"get DIMM info\" SMC call consists of mem_ctrl_idx\nleft-shifted 16 bits and OR-ed with DIMM index. With mem_ctrl_idx defined as\n32-bits wide the left-shift operation truncates the upper 16 bits of\ninformation during the calculation of the SMC argument.\n\nThe mem_ctrl_idx stack variable must be defined as 64-bits wide to prevent any\npotential integer overflow, i.e. loss of data from upper 16 bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53161",
"url": "https://www.suse.com/security/cve/CVE-2024-53161"
},
{
"category": "external",
"summary": "SUSE Bug 1234856 for CVE-2024-53161",
"url": "https://bugzilla.suse.com/1234856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53161"
},
{
"cve": "CVE-2024-53162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat/qat_4xxx - fix off by one in uof_get_name()\n\nThe fw_objs[] array has \"num_objs\" elements so the \u003e needs to be \u003e= to\nprevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53162",
"url": "https://www.suse.com/security/cve/CVE-2024-53162"
},
{
"category": "external",
"summary": "SUSE Bug 1234843 for CVE-2024-53162",
"url": "https://bugzilla.suse.com/1234843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53162"
},
{
"cve": "CVE-2024-53173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4.0: Fix a use-after-free problem in the asynchronous open()\n\nYang Erkun reports that when two threads are opening files at the same\ntime, and are forced to abort before a reply is seen, then the call to\nnfs_release_seqid() in nfs4_opendata_free() can result in a\nuse-after-free of the pointer to the defunct rpc task of the other\nthread.\nThe fix is to ensure that if the RPC call is aborted before the call to\nnfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()\nin nfs4_open_release() before the rpc_task is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53173",
"url": "https://www.suse.com/security/cve/CVE-2024-53173"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234891 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234891"
},
{
"category": "external",
"summary": "SUSE Bug 1234892 for CVE-2024-53173",
"url": "https://bugzilla.suse.com/1234892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-53173"
},
{
"cve": "CVE-2024-53179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free of signing key\n\nCustomers have reported use-after-free in @ses-\u003eauth_key.response with\nSMB2.1 + sign mounts which occurs due to following race:\n\ntask A task B\ncifs_mount()\n dfs_mount_share()\n get_session()\n cifs_mount_get_session() cifs_send_recv()\n cifs_get_smb_ses() compound_send_recv()\n cifs_setup_session() smb2_setup_request()\n kfree_sensitive() smb2_calc_signature()\n crypto_shash_setkey() *UAF*\n\nFix this by ensuring that we have a valid @ses-\u003eauth_key.response by\nchecking whether @ses-\u003eses_status is SES_GOOD or SES_EXITING with\n@ses-\u003eses_lock held. After commit 24a9799aa8ef (\"smb: client: fix UAF\nin smb2_reconnect_server()\"), we made sure to call -\u003elogoff() only\nwhen @ses was known to be good (e.g. valid -\u003eauth_key.response), so\nit\u0027s safe to access signing key when @ses-\u003eses_status == SES_EXITING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53179",
"url": "https://www.suse.com/security/cve/CVE-2024-53179"
},
{
"category": "external",
"summary": "SUSE Bug 1234921 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234921"
},
{
"category": "external",
"summary": "SUSE Bug 1234927 for CVE-2024-53179",
"url": "https://bugzilla.suse.com/1234927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-53179"
},
{
"cve": "CVE-2024-53206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Fix use-after-free of nreq in reqsk_timer_handler().\n\nThe cited commit replaced inet_csk_reqsk_queue_drop_and_put() with\n__inet_csk_reqsk_queue_drop() and reqsk_put() in reqsk_timer_handler().\n\nThen, oreq should be passed to reqsk_put() instead of req; otherwise\nuse-after-free of nreq could happen when reqsk is migrated but the\nretry attempt failed (e.g. due to timeout).\n\nLet\u0027s pass oreq to reqsk_put().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53206",
"url": "https://www.suse.com/security/cve/CVE-2024-53206"
},
{
"category": "external",
"summary": "SUSE Bug 1234960 for CVE-2024-53206",
"url": "https://bugzilla.suse.com/1234960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53206"
},
{
"cve": "CVE-2024-53210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()\n\nPassing MSG_PEEK flag to skb_recv_datagram() increments skb refcount\n(skb-\u003eusers) and iucv_sock_recvmsg() does not decrement skb refcount\nat exit.\nThis results in skb memory leak in skb_queue_purge() and WARN_ON in\niucv_sock_destruct() during socket close. To fix this decrease\nskb refcount by one if MSG_PEEK is set in order to prevent memory\nleak and WARN_ON.\n\nWARNING: CPU: 2 PID: 6292 at net/iucv/af_iucv.c:286 iucv_sock_destruct+0x144/0x1a0 [af_iucv]\nCPU: 2 PID: 6292 Comm: afiucv_test_msg Kdump: loaded Tainted: G W 6.10.0-rc7 #1\nHardware name: IBM 3931 A01 704 (z/VM 7.3.0)\nCall Trace:\n [\u003c001587c682c4aa98\u003e] iucv_sock_destruct+0x148/0x1a0 [af_iucv]\n [\u003c001587c682c4a9d0\u003e] iucv_sock_destruct+0x80/0x1a0 [af_iucv]\n [\u003c001587c704117a32\u003e] __sk_destruct+0x52/0x550\n [\u003c001587c704104a54\u003e] __sock_release+0xa4/0x230\n [\u003c001587c704104c0c\u003e] sock_close+0x2c/0x40\n [\u003c001587c702c5f5a8\u003e] __fput+0x2e8/0x970\n [\u003c001587c7024148c4\u003e] task_work_run+0x1c4/0x2c0\n [\u003c001587c7023b0716\u003e] do_exit+0x996/0x1050\n [\u003c001587c7023b13aa\u003e] do_group_exit+0x13a/0x360\n [\u003c001587c7023b1626\u003e] __s390x_sys_exit_group+0x56/0x60\n [\u003c001587c7022bccca\u003e] do_syscall+0x27a/0x380\n [\u003c001587c7049a6a0c\u003e] __do_syscall+0x9c/0x160\n [\u003c001587c7049ce8a8\u003e] system_call+0x70/0x98\n Last Breaking-Event-Address:\n [\u003c001587c682c4a9d4\u003e] iucv_sock_destruct+0x84/0x1a0 [af_iucv]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53210",
"url": "https://www.suse.com/security/cve/CVE-2024-53210"
},
{
"category": "external",
"summary": "SUSE Bug 1234971 for CVE-2024-53210",
"url": "https://bugzilla.suse.com/1234971"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53210"
},
{
"cve": "CVE-2024-53213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: lan78xx: Fix double free issue with interrupt buffer allocation\n\nIn lan78xx_probe(), the buffer `buf` was being freed twice: once\nimplicitly through `usb_free_urb(dev-\u003eurb_intr)` with the\n`URB_FREE_BUFFER` flag and again explicitly by `kfree(buf)`. This caused\na double free issue.\n\nTo resolve this, reordered `kmalloc()` and `usb_alloc_urb()` calls to\nsimplify the initialization sequence and removed the redundant\n`kfree(buf)`. Now, `buf` is allocated after `usb_alloc_urb()`, ensuring\nit is correctly managed by `usb_fill_int_urb()` and freed by\n`usb_free_urb()` as intended.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53213",
"url": "https://www.suse.com/security/cve/CVE-2024-53213"
},
{
"category": "external",
"summary": "SUSE Bug 1234973 for CVE-2024-53213",
"url": "https://bugzilla.suse.com/1234973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53213"
},
{
"cve": "CVE-2024-53214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: Properly hide first-in-list PCIe extended capability\n\nThere are cases where a PCIe extended capability should be hidden from\nthe user. For example, an unknown capability (i.e., capability with ID\ngreater than PCI_EXT_CAP_ID_MAX) or a capability that is intentionally\nchosen to be hidden from the user.\n\nHiding a capability is done by virtualizing and modifying the \u0027Next\nCapability Offset\u0027 field of the previous capability so it points to the\ncapability after the one that should be hidden.\n\nThe special case where the first capability in the list should be hidden\nis handled differently because there is no previous capability that can\nbe modified. In this case, the capability ID and version are zeroed\nwhile leaving the next pointer intact. This hides the capability and\nleaves an anchor for the rest of the capability list.\n\nHowever, today, hiding the first capability in the list is not done\nproperly if the capability is unknown, as struct\nvfio_pci_core_device-\u003epci_config_map is set to the capability ID during\ninitialization but the capability ID is not properly checked later when\nused in vfio_config_do_rw(). This leads to the following warning [1] and\nto an out-of-bounds access to ecap_perms array.\n\nFix it by checking cap_id in vfio_config_do_rw(), and if it is greater\nthan PCI_EXT_CAP_ID_MAX, use an alternative struct perm_bits for direct\nread only access instead of the ecap_perms array.\n\nNote that this is safe since the above is the only case where cap_id can\nexceed PCI_EXT_CAP_ID_MAX (except for the special capabilities, which\nare already checked before).\n\n[1]\n\nWARNING: CPU: 118 PID: 5329 at drivers/vfio/pci/vfio_pci_config.c:1900 vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\nCPU: 118 UID: 0 PID: 5329 Comm: simx-qemu-syste Not tainted 6.12.0+ #1\n(snip)\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x69/0x80\n ? __warn+0x8d/0x140\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? report_bug+0x18f/0x1a0\n ? handle_bug+0x63/0xa0\n ? exc_invalid_op+0x19/0x70\n ? asm_exc_invalid_op+0x1b/0x20\n ? vfio_pci_config_rw+0x395/0x430 [vfio_pci_core]\n ? vfio_pci_config_rw+0x244/0x430 [vfio_pci_core]\n vfio_pci_rw+0x101/0x1b0 [vfio_pci_core]\n vfio_pci_core_read+0x1d/0x30 [vfio_pci_core]\n vfio_device_fops_read+0x27/0x40 [vfio]\n vfs_read+0xbd/0x340\n ? vfio_device_fops_unl_ioctl+0xbb/0x740 [vfio]\n ? __rseq_handle_notify_resume+0xa4/0x4b0\n __x64_sys_pread64+0x96/0xc0\n x64_sys_call+0x1c3d/0x20d0\n do_syscall_64+0x4d/0x120\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53214",
"url": "https://www.suse.com/security/cve/CVE-2024-53214"
},
{
"category": "external",
"summary": "SUSE Bug 1235004 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235004"
},
{
"category": "external",
"summary": "SUSE Bug 1235005 for CVE-2024-53214",
"url": "https://bugzilla.suse.com/1235005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-53214"
},
{
"cve": "CVE-2024-53239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: 6fire: Release resources at card release\n\nThe current 6fire code tries to release the resources right after the\ncall of usb6fire_chip_abort(). But at this moment, the card object\nmight be still in use (as we\u0027re calling snd_card_free_when_closed()).\n\nFor avoid potential UAFs, move the release of resources to the card\u0027s\nprivate_free instead of the manual call of usb6fire_chip_destroy() at\nthe USB disconnect callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53239",
"url": "https://www.suse.com/security/cve/CVE-2024-53239"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235054 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235054"
},
{
"category": "external",
"summary": "SUSE Bug 1235055 for CVE-2024-53239",
"url": "https://bugzilla.suse.com/1235055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-53239"
},
{
"cve": "CVE-2024-53240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/netfront: fix crash when removing device\n\nWhen removing a netfront device directly after a suspend/resume cycle\nit might happen that the queues have not been setup again, causing a\ncrash during the attempt to stop the queues another time.\n\nFix that by checking the queues are existing before trying to stop\nthem.\n\nThis is XSA-465 / CVE-2024-53240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53240",
"url": "https://www.suse.com/security/cve/CVE-2024-53240"
},
{
"category": "external",
"summary": "SUSE Bug 1234281 for CVE-2024-53240",
"url": "https://bugzilla.suse.com/1234281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53240"
},
{
"cve": "CVE-2024-53241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/xen: don\u0027t do PV iret hypercall through hypercall page\n\nInstead of jumping to the Xen hypercall page for doing the iret\nhypercall, directly code the required sequence in xen-asm.S.\n\nThis is done in preparation of no longer using hypercall page at all,\nas it has shown to cause problems with speculation mitigations.\n\nThis is part of XSA-466 / CVE-2024-53241.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53241",
"url": "https://www.suse.com/security/cve/CVE-2024-53241"
},
{
"category": "external",
"summary": "SUSE Bug 1234282 for CVE-2024-53241",
"url": "https://bugzilla.suse.com/1234282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-53241"
},
{
"cve": "CVE-2024-56539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan()\n\nReplace one-element array with a flexible-array member in `struct\nmwifiex_ie_types_wildcard_ssid_params` to fix the following warning\non a MT8173 Chromebook (mt8173-elm-hana):\n\n[ 356.775250] ------------[ cut here ]------------\n[ 356.784543] memcpy: detected field-spanning write (size 6) of single field \"wildcard_ssid_tlv-\u003essid\" at drivers/net/wireless/marvell/mwifiex/scan.c:904 (size 1)\n[ 356.813403] WARNING: CPU: 3 PID: 742 at drivers/net/wireless/marvell/mwifiex/scan.c:904 mwifiex_scan_networks+0x4fc/0xf28 [mwifiex]\n\nThe \"(size 6)\" above is exactly the length of the SSID of the network\nthis device was connected to. The source of the warning looks like:\n\n ssid_len = user_scan_in-\u003essid_list[i].ssid_len;\n [...]\n memcpy(wildcard_ssid_tlv-\u003essid,\n user_scan_in-\u003essid_list[i].ssid, ssid_len);\n\nThere is a #define WILDCARD_SSID_TLV_MAX_SIZE that uses sizeof() on this\nstruct, but it already didn\u0027t account for the size of the one-element\narray, so it doesn\u0027t need to be changed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56539",
"url": "https://www.suse.com/security/cve/CVE-2024-56539"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1234963 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234963"
},
{
"category": "external",
"summary": "SUSE Bug 1234964 for CVE-2024-56539",
"url": "https://bugzilla.suse.com/1234964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-56539"
},
{
"cve": "CVE-2024-56548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: don\u0027t query the device logical block size multiple times\n\nDevices block sizes may change. One of these cases is a loop device by\nusing ioctl LOOP_SET_BLOCK_SIZE.\n\nWhile this may cause other issues like IO being rejected, in the case of\nhfsplus, it will allocate a block by using that size and potentially write\nout-of-bounds when hfsplus_read_wrapper calls hfsplus_submit_bio and the\nlatter function reads a different io_size.\n\nUsing a new min_io_size initally set to sb_min_blocksize works for the\npurposes of the original fix, since it will be set to the max between\nHFSPLUS_SECTOR_SIZE and the first seen logical block size. We still use the\nmax between HFSPLUS_SECTOR_SIZE and min_io_size in case the latter is not\ninitialized.\n\nTested by mounting an hfsplus filesystem with loop block sizes 512, 1024\nand 4096.\n\nThe produced KASAN report before the fix looks like this:\n\n[ 419.944641] ==================================================================\n[ 419.945655] BUG: KASAN: slab-use-after-free in hfsplus_read_wrapper+0x659/0xa0a\n[ 419.946703] Read of size 2 at addr ffff88800721fc00 by task repro/10678\n[ 419.947612]\n[ 419.947846] CPU: 0 UID: 0 PID: 10678 Comm: repro Not tainted 6.12.0-rc5-00008-gdf56e0f2f3ca #84\n[ 419.949007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 419.950035] Call Trace:\n[ 419.950384] \u003cTASK\u003e\n[ 419.950676] dump_stack_lvl+0x57/0x78\n[ 419.951212] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.951830] print_report+0x14c/0x49e\n[ 419.952361] ? __virt_addr_valid+0x267/0x278\n[ 419.952979] ? kmem_cache_debug_flags+0xc/0x1d\n[ 419.953561] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.954231] kasan_report+0x89/0xb0\n[ 419.954748] ? hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955367] hfsplus_read_wrapper+0x659/0xa0a\n[ 419.955948] ? __pfx_hfsplus_read_wrapper+0x10/0x10\n[ 419.956618] ? do_raw_spin_unlock+0x59/0x1a9\n[ 419.957214] ? _raw_spin_unlock+0x1a/0x2e\n[ 419.957772] hfsplus_fill_super+0x348/0x1590\n[ 419.958355] ? hlock_class+0x4c/0x109\n[ 419.958867] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.959499] ? __pfx_string+0x10/0x10\n[ 419.960006] ? lock_acquire+0x3e2/0x454\n[ 419.960532] ? bdev_name.constprop.0+0xce/0x243\n[ 419.961129] ? __pfx_bdev_name.constprop.0+0x10/0x10\n[ 419.961799] ? pointer+0x3f0/0x62f\n[ 419.962277] ? __pfx_pointer+0x10/0x10\n[ 419.962761] ? vsnprintf+0x6c4/0xfba\n[ 419.963178] ? __pfx_vsnprintf+0x10/0x10\n[ 419.963621] ? setup_bdev_super+0x376/0x3b3\n[ 419.964029] ? snprintf+0x9d/0xd2\n[ 419.964344] ? __pfx_snprintf+0x10/0x10\n[ 419.964675] ? lock_acquired+0x45c/0x5e9\n[ 419.965016] ? set_blocksize+0x139/0x1c1\n[ 419.965381] ? sb_set_blocksize+0x6d/0xae\n[ 419.965742] ? __pfx_hfsplus_fill_super+0x10/0x10\n[ 419.966179] mount_bdev+0x12f/0x1bf\n[ 419.966512] ? __pfx_mount_bdev+0x10/0x10\n[ 419.966886] ? vfs_parse_fs_string+0xce/0x111\n[ 419.967293] ? __pfx_vfs_parse_fs_string+0x10/0x10\n[ 419.967702] ? __pfx_hfsplus_mount+0x10/0x10\n[ 419.968073] legacy_get_tree+0x104/0x178\n[ 419.968414] vfs_get_tree+0x86/0x296\n[ 419.968751] path_mount+0xba3/0xd0b\n[ 419.969157] ? __pfx_path_mount+0x10/0x10\n[ 419.969594] ? kmem_cache_free+0x1e2/0x260\n[ 419.970311] do_mount+0x99/0xe0\n[ 419.970630] ? __pfx_do_mount+0x10/0x10\n[ 419.971008] __do_sys_mount+0x199/0x1c9\n[ 419.971397] do_syscall_64+0xd0/0x135\n[ 419.971761] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 419.972233] RIP: 0033:0x7c3cb812972e\n[ 419.972564] Code: 48 8b 0d f5 46 0d 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 a5 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d c2 46 0d 00 f7 d8 64 89 01 48\n[ 419.974371] RSP: 002b:00007ffe30632548 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5\n[ 419.975048] RAX: ffffffffffffffda RBX: 00007ffe306328d8 RCX: 00007c3cb812972e\n[ 419.975701] RDX: 0000000020000000 RSI: 0000000020000c80 RDI:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56548",
"url": "https://www.suse.com/security/cve/CVE-2024-56548"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235073 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235073"
},
{
"category": "external",
"summary": "SUSE Bug 1235074 for CVE-2024-56548",
"url": "https://bugzilla.suse.com/1235074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-56548"
},
{
"cve": "CVE-2024-56549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: Fix NULL pointer dereference in object-\u003efile\n\nAt present, the object-\u003efile has the NULL pointer dereference problem in\nondemand-mode. The root cause is that the allocated fd and object-\u003efile\nlifetime are inconsistent, and the user-space invocation to anon_fd uses\nobject-\u003efile. Following is the process that triggers the issue:\n\n\t [write fd]\t\t\t\t[umount]\ncachefiles_ondemand_fd_write_iter\n\t\t\t\t fscache_cookie_state_machine\n\t\t\t\t\t cachefiles_withdraw_cookie\n if (!file) return -ENOBUFS\n\t\t\t\t\t cachefiles_clean_up_object\n\t\t\t\t\t cachefiles_unmark_inode_in_use\n\t\t\t\t\t fput(object-\u003efile)\n\t\t\t\t\t object-\u003efile = NULL\n // file NULL pointer dereference!\n __cachefiles_write(..., file, ...)\n\nFix this issue by add an additional reference count to the object-\u003efile\nbefore write/llseek, and decrement after it finished.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56549",
"url": "https://www.suse.com/security/cve/CVE-2024-56549"
},
{
"category": "external",
"summary": "SUSE Bug 1234912 for CVE-2024-56549",
"url": "https://bugzilla.suse.com/1234912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-56549"
},
{
"cve": "CVE-2024-56570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: Filter invalid inodes with missing lookup function\n\nAdd a check to the ovl_dentry_weird() function to prevent the\nprocessing of directory inodes that lack the lookup function.\nThis is important because such inodes can cause errors in overlayfs\nwhen passed to the lowerstack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56570",
"url": "https://www.suse.com/security/cve/CVE-2024-56570"
},
{
"category": "external",
"summary": "SUSE Bug 1235035 for CVE-2024-56570",
"url": "https://bugzilla.suse.com/1235035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-56570"
},
{
"cve": "CVE-2024-56571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56571"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56571",
"url": "https://www.suse.com/security/cve/CVE-2024-56571"
},
{
"category": "external",
"summary": "SUSE Bug 1235037 for CVE-2024-56571",
"url": "https://bugzilla.suse.com/1235037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-56571"
},
{
"cve": "CVE-2024-56575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56575"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imx-jpeg: Ensure power suppliers be suspended before detach them\n\nThe power suppliers are always requested to suspend asynchronously,\ndev_pm_domain_detach() requires the caller to ensure proper\nsynchronization of this function with power management callbacks.\notherwise the detach may led to kernel panic, like below:\n\n[ 1457.107934] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000040\n[ 1457.116777] Mem abort info:\n[ 1457.119589] ESR = 0x0000000096000004\n[ 1457.123358] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 1457.128692] SET = 0, FnV = 0\n[ 1457.131764] EA = 0, S1PTW = 0\n[ 1457.134920] FSC = 0x04: level 0 translation fault\n[ 1457.139812] Data abort info:\n[ 1457.142707] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 1457.148196] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 1457.153256] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 1457.158563] user pgtable: 4k pages, 48-bit VAs, pgdp=00000001138b6000\n[ 1457.165000] [0000000000000040] pgd=0000000000000000, p4d=0000000000000000\n[ 1457.171792] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 1457.178045] Modules linked in: v4l2_jpeg wave6_vpu_ctrl(-) [last unloaded: mxc_jpeg_encdec]\n[ 1457.186383] CPU: 0 PID: 51938 Comm: kworker/0:3 Not tainted 6.6.36-gd23d64eea511 #66\n[ 1457.194112] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 1457.199236] Workqueue: pm pm_runtime_work\n[ 1457.203247] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1457.210188] pc : genpd_runtime_suspend+0x20/0x290\n[ 1457.214886] lr : __rpm_callback+0x48/0x1d8\n[ 1457.218968] sp : ffff80008250bc50\n[ 1457.222270] x29: ffff80008250bc50 x28: 0000000000000000 x27: 0000000000000000\n[ 1457.229394] x26: 0000000000000000 x25: 0000000000000008 x24: 00000000000f4240\n[ 1457.236518] x23: 0000000000000000 x22: ffff00008590f0e4 x21: 0000000000000008\n[ 1457.243642] x20: ffff80008099c434 x19: ffff00008590f000 x18: ffffffffffffffff\n[ 1457.250766] x17: 5300326563697665 x16: 645f676e696c6f6f x15: 63343a6d726f6674\n[ 1457.257890] x14: 0000000000000004 x13: 00000000000003a4 x12: 0000000000000002\n[ 1457.265014] x11: 0000000000000000 x10: 0000000000000a60 x9 : ffff80008250bbb0\n[ 1457.272138] x8 : ffff000092937200 x7 : ffff0003fdf6af80 x6 : 0000000000000000\n[ 1457.279262] x5 : 00000000410fd050 x4 : 0000000000200000 x3 : 0000000000000000\n[ 1457.286386] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff00008590f000\n[ 1457.293510] Call trace:\n[ 1457.295946] genpd_runtime_suspend+0x20/0x290\n[ 1457.300296] __rpm_callback+0x48/0x1d8\n[ 1457.304038] rpm_callback+0x6c/0x78\n[ 1457.307515] rpm_suspend+0x10c/0x570\n[ 1457.311077] pm_runtime_work+0xc4/0xc8\n[ 1457.314813] process_one_work+0x138/0x248\n[ 1457.318816] worker_thread+0x320/0x438\n[ 1457.322552] kthread+0x110/0x114\n[ 1457.325767] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56575",
"url": "https://www.suse.com/security/cve/CVE-2024-56575"
},
{
"category": "external",
"summary": "SUSE Bug 1235039 for CVE-2024-56575",
"url": "https://bugzilla.suse.com/1235039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-56575"
},
{
"cve": "CVE-2024-56598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56598"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: array-index-out-of-bounds fix in dtReadFirst\n\nThe value of stbl can be sometimes out of bounds due\nto a bad filesystem. Added a check with appopriate return\nof error code in that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56598",
"url": "https://www.suse.com/security/cve/CVE-2024-56598"
},
{
"category": "external",
"summary": "SUSE Bug 1235220 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235220"
},
{
"category": "external",
"summary": "SUSE Bug 1235221 for CVE-2024-56598",
"url": "https://bugzilla.suse.com/1235221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-56598"
},
{
"cve": "CVE-2024-56604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56604"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()\n\nbt_sock_alloc() attaches allocated sk object to the provided sock object.\nIf rfcomm_dlc_alloc() fails, we release the sk object, but leave the\ndangling pointer in the sock object, which may cause use-after-free.\n\nFix this by swapping calls to bt_sock_alloc() and rfcomm_dlc_alloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56604",
"url": "https://www.suse.com/security/cve/CVE-2024-56604"
},
{
"category": "external",
"summary": "SUSE Bug 1235056 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235056"
},
{
"category": "external",
"summary": "SUSE Bug 1235058 for CVE-2024-56604",
"url": "https://bugzilla.suse.com/1235058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-56604"
},
{
"cve": "CVE-2024-56605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create()\n\nbt_sock_alloc() allocates the sk object and attaches it to the provided\nsock object. On error l2cap_sock_alloc() frees the sk object, but the\ndangling pointer is still attached to the sock object, which may create\nuse-after-free in other code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56605",
"url": "https://www.suse.com/security/cve/CVE-2024-56605"
},
{
"category": "external",
"summary": "SUSE Bug 1234853 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1234853"
},
{
"category": "external",
"summary": "SUSE Bug 1235061 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235061"
},
{
"category": "external",
"summary": "SUSE Bug 1235062 for CVE-2024-56605",
"url": "https://bugzilla.suse.com/1235062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-56605"
},
{
"cve": "CVE-2024-56619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56619"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()\n\nSyzbot reported that when searching for records in a directory where the\ninode\u0027s i_size is corrupted and has a large value, memory access outside\nthe folio/page range may occur, or a use-after-free bug may be detected if\nKASAN is enabled.\n\nThis is because nilfs_last_byte(), which is called by nilfs_find_entry()\nand others to calculate the number of valid bytes of directory data in a\npage from i_size and the page index, loses the upper 32 bits of the 64-bit\nsize information due to an inappropriate type of local variable to which\nthe i_size value is assigned.\n\nThis caused a large byte offset value due to underflow in the end address\ncalculation in the calling nilfs_find_entry(), resulting in memory access\nthat exceeds the folio/page size.\n\nFix this issue by changing the type of the local variable causing the bit\nloss from \"unsigned int\" to \"u64\". The return value of nilfs_last_byte()\nis also of type \"unsigned int\", but it is truncated so as not to exceed\nPAGE_SIZE and no bit loss occurs, so no change is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56619",
"url": "https://www.suse.com/security/cve/CVE-2024-56619"
},
{
"category": "external",
"summary": "SUSE Bug 1235224 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235224"
},
{
"category": "external",
"summary": "SUSE Bug 1235225 for CVE-2024-56619",
"url": "https://bugzilla.suse.com/1235225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-56619"
},
{
"cve": "CVE-2024-56755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING\n\nIn fscache_create_volume(), there is a missing memory barrier between the\nbit-clearing operation and the wake-up operation. This may cause a\nsituation where, after a wake-up, the bit-clearing operation hasn\u0027t been\ndetected yet, leading to an indefinite wait. The triggering process is as\nfollows:\n\n [cookie1] [cookie2] [volume_work]\nfscache_perform_lookup\n fscache_create_volume\n fscache_perform_lookup\n fscache_create_volume\n\t\t\t fscache_create_volume_work\n cachefiles_acquire_volume\n clear_and_wake_up_bit\n test_and_set_bit\n test_and_set_bit\n goto maybe_wait\n goto no_wait\n\nIn the above process, cookie1 and cookie2 has the same volume. When cookie1\nenters the -no_wait- process, it will clear the bit and wake up the waiting\nprocess. If a barrier is missing, it may cause cookie2 to remain in the\n-wait- process indefinitely.\n\nIn commit 3288666c7256 (\"fscache: Use clear_and_wake_up_bit() in\nfscache_create_volume_work()\"), barriers were added to similar operations\nin fscache_create_volume_work(), but fscache_create_volume() was missed.\n\nBy combining the clear and wake operations into clear_and_wake_up_bit() to\nfix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56755",
"url": "https://www.suse.com/security/cve/CVE-2024-56755"
},
{
"category": "external",
"summary": "SUSE Bug 1234920 for CVE-2024-56755",
"url": "https://bugzilla.suse.com/1234920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "low"
}
],
"title": "CVE-2024-56755"
},
{
"cve": "CVE-2024-8805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-8805"
}
],
"notes": [
{
"category": "general",
"text": "BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-8805",
"url": "https://www.suse.com/security/cve/CVE-2024-8805"
},
{
"category": "external",
"summary": "SUSE Bug 1230697 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1230697"
},
{
"category": "external",
"summary": "SUSE Bug 1240804 for CVE-2024-8805",
"url": "https://bugzilla.suse.com/1240804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.82.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.82.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-24T10:10:25Z",
"details": "important"
}
],
"title": "CVE-2024-8805"
}
]
}
OPENSUSE-SU-2024:14500-1
Vulnerability from csaf_opensuse - Published: 2024-11-15 00:00 - Updated: 2024-11-15 00:00Summary
kernel-devel-6.11.8-1.1 on GA media
Notes
Title of the patch
kernel-devel-6.11.8-1.1 on GA media
Description of the patch
These are all security issues fixed in the kernel-devel-6.11.8-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-14500
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "kernel-devel-6.11.8-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the kernel-devel-6.11.8-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-14500",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_14500-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2024:14500-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2NO44GTYBSPPWKFDREFWHITK4XKTNVLP/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2024:14500-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2NO44GTYBSPPWKFDREFWHITK4XKTNVLP/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52917 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46869 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47671 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47671/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47680 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47681 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47682 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47682/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47683 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47684 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47684/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47686 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47688 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47689 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47692 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47696 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47696/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47697 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47697/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47698 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47699 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47699/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47700 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47700/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47701 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47702 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47703 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47703/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47704 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47705 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47706 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47708 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47710 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47710/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47711 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47711/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47712 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47713 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47714 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47717 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47717/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47718 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47718/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47719 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47720 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47721 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47721/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47730 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47731 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47731/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47732 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47733 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47734 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47736 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47736/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47738 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47740 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47742 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47743 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47748 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47750 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47751 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49851 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49852 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49852/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49853 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49855 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49856 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49858 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49858/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49859 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49859/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49860 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49860/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49861 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49862 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49862/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49863 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49864 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49865 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49865/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49866 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49867 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49868 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49869 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49871 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49871/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49872 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49872/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49873 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49874 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49875 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49876 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49877 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49878 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49878/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49879 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49880 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49882 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49882/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49883 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49885 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49885/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49889 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49889/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49891 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49892 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49894 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49894/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49895 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49895/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49899 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49900 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49901 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49902 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49902/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49905 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49905/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49909 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49909/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49910 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49910/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49917 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49918 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49919 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49919/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49920 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49920/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49921 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49923 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49925 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49925/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49926 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49926/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49927 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49928 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49929 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49930 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49930/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49931 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49933 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49936 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49939 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49941 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49942 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49943 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49943/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49945 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49945/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49949 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49949/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49955 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49956 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49956/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49957 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49958 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49959 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49963 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49963/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49964 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49966 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49966/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49968 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49968/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49969 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49972 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49972/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49974 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49974/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49975 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49975/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49976 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49978 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49979 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49979/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49980 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49980/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49981 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49985 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49987 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49991 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49992 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49994 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49994/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49995 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50009 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50009/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50010 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50014 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50015 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50022 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50024 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50024/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50025 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50027 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50032 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50033 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50034 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50034/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50035 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50036 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50036/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50037 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50038 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50040 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50040/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50041 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50043 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50043/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50044 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50044/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50045 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50045/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50046 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50046/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50048 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50048/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50049 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50049/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50055 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50056 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50056/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50057 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50057/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50058 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50058/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50059 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50059/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50060 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50061 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50062 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50062/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50063 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50063/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50065 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50066 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50067 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50068 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50069 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50069/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50070 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50071 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50071/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50072 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50072/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50073 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50074 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50074/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50075 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50075/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50076 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50077 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50078 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50079 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50080 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50081 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50082 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50083 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50084 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50085 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50086 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50087 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50088 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50089 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50091 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50092 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50092/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50093 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50094 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50096 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50097 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50098 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50100 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50101 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50102 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50102/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50104 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50106 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50107 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50107/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50108 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50109 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50109/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50110 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50112 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50114 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50115 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50115/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50116 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50121 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50123 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50124 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50124/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50128 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50128/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50132 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50135 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50137 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50138 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50139 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50140 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50145 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50147 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50149 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50152 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50152/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50153 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50163 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50164 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50165 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50167 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50168 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50170 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50172 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50175 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50175/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50176 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50177 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50178 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50181 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50182 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50183 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50184 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50185 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50186 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50187 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50189 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50192 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50193 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50193/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50194 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50195 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50196 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50197 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50199 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50199/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50205 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50212 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50212/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50218 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50220 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50221 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50223 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50225 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50226 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50226/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50227 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50230 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50231 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50233 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50235 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50236 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50238 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50242 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50242/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50243 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50244 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50245 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50246 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50246/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50247 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50247/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50248 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50248/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50249 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50250 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50250/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50251 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50252 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50253 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50253/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50254 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50255 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50257 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50258 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50259 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50260 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50260/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50261 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50263 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50263/"
}
],
"title": "kernel-devel-6.11.8-1.1 on GA media",
"tracking": {
"current_release_date": "2024-11-15T00:00:00Z",
"generator": {
"date": "2024-11-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:14500-1",
"initial_release_date": "2024-11-15T00:00:00Z",
"revision_history": [
{
"date": "2024-11-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.11.8-1.1.aarch64",
"product": {
"name": "kernel-devel-6.11.8-1.1.aarch64",
"product_id": "kernel-devel-6.11.8-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.11.8-1.1.aarch64",
"product": {
"name": "kernel-macros-6.11.8-1.1.aarch64",
"product_id": "kernel-macros-6.11.8-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-source-6.11.8-1.1.aarch64",
"product": {
"name": "kernel-source-6.11.8-1.1.aarch64",
"product_id": "kernel-source-6.11.8-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-6.11.8-1.1.aarch64",
"product": {
"name": "kernel-source-vanilla-6.11.8-1.1.aarch64",
"product_id": "kernel-source-vanilla-6.11.8-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.11.8-1.1.ppc64le",
"product": {
"name": "kernel-devel-6.11.8-1.1.ppc64le",
"product_id": "kernel-devel-6.11.8-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.11.8-1.1.ppc64le",
"product": {
"name": "kernel-macros-6.11.8-1.1.ppc64le",
"product_id": "kernel-macros-6.11.8-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-source-6.11.8-1.1.ppc64le",
"product": {
"name": "kernel-source-6.11.8-1.1.ppc64le",
"product_id": "kernel-source-6.11.8-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-6.11.8-1.1.ppc64le",
"product": {
"name": "kernel-source-vanilla-6.11.8-1.1.ppc64le",
"product_id": "kernel-source-vanilla-6.11.8-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.11.8-1.1.s390x",
"product": {
"name": "kernel-devel-6.11.8-1.1.s390x",
"product_id": "kernel-devel-6.11.8-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.11.8-1.1.s390x",
"product": {
"name": "kernel-macros-6.11.8-1.1.s390x",
"product_id": "kernel-macros-6.11.8-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-source-6.11.8-1.1.s390x",
"product": {
"name": "kernel-source-6.11.8-1.1.s390x",
"product_id": "kernel-source-6.11.8-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-6.11.8-1.1.s390x",
"product": {
"name": "kernel-source-vanilla-6.11.8-1.1.s390x",
"product_id": "kernel-source-vanilla-6.11.8-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.11.8-1.1.x86_64",
"product": {
"name": "kernel-devel-6.11.8-1.1.x86_64",
"product_id": "kernel-devel-6.11.8-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.11.8-1.1.x86_64",
"product": {
"name": "kernel-macros-6.11.8-1.1.x86_64",
"product_id": "kernel-macros-6.11.8-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-source-6.11.8-1.1.x86_64",
"product": {
"name": "kernel-source-6.11.8-1.1.x86_64",
"product_id": "kernel-source-6.11.8-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-6.11.8-1.1.x86_64",
"product": {
"name": "kernel-source-vanilla-6.11.8-1.1.x86_64",
"product_id": "kernel-source-vanilla-6.11.8-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.11.8-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64"
},
"product_reference": "kernel-devel-6.11.8-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.11.8-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le"
},
"product_reference": "kernel-devel-6.11.8-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.11.8-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x"
},
"product_reference": "kernel-devel-6.11.8-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.11.8-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64"
},
"product_reference": "kernel-devel-6.11.8-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.11.8-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64"
},
"product_reference": "kernel-macros-6.11.8-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.11.8-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le"
},
"product_reference": "kernel-macros-6.11.8-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.11.8-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x"
},
"product_reference": "kernel-macros-6.11.8-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.11.8-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64"
},
"product_reference": "kernel-macros-6.11.8-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.11.8-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64"
},
"product_reference": "kernel-source-6.11.8-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.11.8-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le"
},
"product_reference": "kernel-source-6.11.8-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.11.8-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x"
},
"product_reference": "kernel-source-6.11.8-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.11.8-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64"
},
"product_reference": "kernel-source-6.11.8-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-6.11.8-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64"
},
"product_reference": "kernel-source-vanilla-6.11.8-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-6.11.8-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le"
},
"product_reference": "kernel-source-vanilla-6.11.8-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-6.11.8-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x"
},
"product_reference": "kernel-source-vanilla-6.11.8-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-6.11.8-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
},
"product_reference": "kernel-source-vanilla-6.11.8-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52917"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52917",
"url": "https://www.suse.com/security/cve/CVE-2023-52917"
},
{
"category": "external",
"summary": "SUSE Bug 1231849 for CVE-2023-52917",
"url": "https://bugzilla.suse.com/1231849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-52917"
},
{
"cve": "CVE-2024-46869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46869"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btintel_pcie: Allocate memory for driver private data\n\nFix driver not allocating memory for struct btintel_data which is used\nto store internal data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46869",
"url": "https://www.suse.com/security/cve/CVE-2024-46869"
},
{
"category": "external",
"summary": "SUSE Bug 1231173 for CVE-2024-46869",
"url": "https://bugzilla.suse.com/1231173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-46869"
},
{
"cve": "CVE-2024-47671",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47671"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: usbtmc: prevent kernel-usb-infoleak\n\nThe syzbot reported a kernel-usb-infoleak in usbtmc_write,\nwe need to clear the structure before filling fields.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47671",
"url": "https://www.suse.com/security/cve/CVE-2024-47671"
},
{
"category": "external",
"summary": "SUSE Bug 1231541 for CVE-2024-47671",
"url": "https://bugzilla.suse.com/1231541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47671"
},
{
"cve": "CVE-2024-47675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix use-after-free in bpf_uprobe_multi_link_attach()\n\nIf bpf_link_prime() fails, bpf_uprobe_multi_link_attach() goes to the\nerror_free label and frees the array of bpf_uprobe\u0027s without calling\nbpf_uprobe_unregister().\n\nThis leaks bpf_uprobe-\u003euprobe and worse, this frees bpf_uprobe-\u003econsumer\nwithout removing it from the uprobe-\u003econsumers list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47675",
"url": "https://www.suse.com/security/cve/CVE-2024-47675"
},
{
"category": "external",
"summary": "SUSE Bug 1231926 for CVE-2024-47675",
"url": "https://bugzilla.suse.com/1231926"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47675"
},
{
"cve": "CVE-2024-47676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/hugetlb.c: fix UAF of vma in hugetlb fault pathway\n\nSyzbot reports a UAF in hugetlb_fault(). This happens because\nvmf_anon_prepare() could drop the per-VMA lock and allow the current VMA\nto be freed before hugetlb_vma_unlock_read() is called.\n\nWe can fix this by using a modified version of vmf_anon_prepare() that\ndoesn\u0027t release the VMA lock on failure, and then release it ourselves\nafter hugetlb_vma_unlock_read().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47676",
"url": "https://www.suse.com/security/cve/CVE-2024-47676"
},
{
"category": "external",
"summary": "SUSE Bug 1231927 for CVE-2024-47676",
"url": "https://bugzilla.suse.com/1231927"
},
{
"category": "external",
"summary": "SUSE Bug 1232898 for CVE-2024-47676",
"url": "https://bugzilla.suse.com/1232898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47676"
},
{
"cve": "CVE-2024-47677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: resolve memory leak from exfat_create_upcase_table()\n\nIf exfat_load_upcase_table reaches end and returns -EINVAL,\nallocated memory doesn\u0027t get freed and while\nexfat_load_default_upcase_table allocates more memory, leading to a\nmemory leak.\n\nHere\u0027s link to syzkaller crash report illustrating this issue:\nhttps://syzkaller.appspot.com/text?tag=CrashReport\u0026x=1406c201980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47677",
"url": "https://www.suse.com/security/cve/CVE-2024-47677"
},
{
"category": "external",
"summary": "SUSE Bug 1231853 for CVE-2024-47677",
"url": "https://bugzilla.suse.com/1231853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47677"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-47679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfs: fix race between evice_inodes() and find_inode()\u0026iput()\n\nHi, all\n\nRecently I noticed a bug[1] in btrfs, after digged it into\nand I believe it\u0027a race in vfs.\n\nLet\u0027s assume there\u0027s a inode (ie ino 261) with i_count 1 is\ncalled by iput(), and there\u0027s a concurrent thread calling\ngeneric_shutdown_super().\n\ncpu0: cpu1:\niput() // i_count is 1\n -\u003espin_lock(inode)\n -\u003edec i_count to 0\n -\u003eiput_final() generic_shutdown_super()\n -\u003e__inode_add_lru() -\u003eevict_inodes()\n // cause some reason[2] -\u003eif (atomic_read(inode-\u003ei_count)) continue;\n // return before // inode 261 passed the above check\n // list_lru_add_obj() // and then schedule out\n -\u003espin_unlock()\n// note here: the inode 261\n// was still at sb list and hash list,\n// and I_FREEING|I_WILL_FREE was not been set\n\nbtrfs_iget()\n // after some function calls\n -\u003efind_inode()\n // found the above inode 261\n -\u003espin_lock(inode)\n // check I_FREEING|I_WILL_FREE\n // and passed\n -\u003e__iget()\n -\u003espin_unlock(inode) // schedule back\n -\u003espin_lock(inode)\n // check (I_NEW|I_FREEING|I_WILL_FREE) flags,\n // passed and set I_FREEING\niput() -\u003espin_unlock(inode)\n -\u003espin_lock(inode)\t\t\t -\u003eevict()\n // dec i_count to 0\n -\u003eiput_final()\n -\u003espin_unlock()\n -\u003eevict()\n\nNow, we have two threads simultaneously evicting\nthe same inode, which may trigger the BUG(inode-\u003ei_state \u0026 I_CLEAR)\nstatement both within clear_inode() and iput().\n\nTo fix the bug, recheck the inode-\u003ei_count after holding i_lock.\nBecause in the most scenarios, the first check is valid, and\nthe overhead of spin_lock() can be reduced.\n\nIf there is any misunderstanding, please let me know, thanks.\n\n[1]: https://lore.kernel.org/linux-btrfs/000000000000eabe1d0619c48986@google.com/\n[2]: The reason might be 1. SB_ACTIVE was removed or 2. mapping_shrinkable()\nreturn false when I reproduced the bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47679",
"url": "https://www.suse.com/security/cve/CVE-2024-47679"
},
{
"category": "external",
"summary": "SUSE Bug 1231930 for CVE-2024-47679",
"url": "https://bugzilla.suse.com/1231930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47679"
},
{
"cve": "CVE-2024-47680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47680"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: check discard support for conventional zones\n\nAs the helper function f2fs_bdev_support_discard() shows, f2fs checks if\nthe target block devices support discard by calling\nbdev_max_discard_sectors() and bdev_is_zoned(). This check works well\nfor most cases, but it does not work for conventional zones on zoned\nblock devices. F2fs assumes that zoned block devices support discard,\nand calls __submit_discard_cmd(). When __submit_discard_cmd() is called\nfor sequential write required zones, it works fine since\n__submit_discard_cmd() issues zone reset commands instead of discard\ncommands. However, when __submit_discard_cmd() is called for\nconventional zones, __blkdev_issue_discard() is called even when the\ndevices do not support discard.\n\nThe inappropriate __blkdev_issue_discard() call was not a problem before\nthe commit 30f1e7241422 (\"block: move discard checks into the ioctl\nhandler\") because __blkdev_issue_discard() checked if the target devices\nsupport discard or not. If not, it returned EOPNOTSUPP. After the\ncommit, __blkdev_issue_discard() no longer checks it. It always returns\nzero and sets NULL to the given bio pointer. This NULL pointer triggers\nf2fs_bug_on() in __submit_discard_cmd(). The BUG is recreated with the\ncommands below at the umount step, where /dev/nullb0 is a zoned null_blk\nwith 5GB total size, 128MB zone size and 10 conventional zones.\n\n$ mkfs.f2fs -f -m /dev/nullb0\n$ mount /dev/nullb0 /mnt\n$ for ((i=0;i\u003c5;i++)); do dd if=/dev/zero of=/mnt/test bs=65536 count=1600 conv=fsync; done\n$ umount /mnt\n\nTo fix the BUG, avoid the inappropriate __blkdev_issue_discard() call.\nWhen discard is requested for conventional zones, check if the device\nsupports discard or not. If not, return EOPNOTSUPP.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47680",
"url": "https://www.suse.com/security/cve/CVE-2024-47680"
},
{
"category": "external",
"summary": "SUSE Bug 1231970 for CVE-2024-47680",
"url": "https://bugzilla.suse.com/1231970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47680"
},
{
"cve": "CVE-2024-47681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he\n\nFix the NULL pointer dereference in mt7996_mcu_sta_bfer_he\nroutine adding an sta interface to the mt7996 driver.\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47681",
"url": "https://www.suse.com/security/cve/CVE-2024-47681"
},
{
"category": "external",
"summary": "SUSE Bug 1231855 for CVE-2024-47681",
"url": "https://bugzilla.suse.com/1231855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47681"
},
{
"cve": "CVE-2024-47682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47682"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sd: Fix off-by-one error in sd_read_block_characteristics()\n\nFf the device returns page 0xb1 with length 8 (happens with qemu v2.x, for\nexample), sd_read_block_characteristics() may attempt an out-of-bounds\nmemory access when accessing the zoned field at offset 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47682",
"url": "https://www.suse.com/security/cve/CVE-2024-47682"
},
{
"category": "external",
"summary": "SUSE Bug 1231856 for CVE-2024-47682",
"url": "https://bugzilla.suse.com/1231856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47682"
},
{
"cve": "CVE-2024-47683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47683"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip Recompute DSC Params if no Stream on Link\n\n[why]\nEncounter NULL pointer dereference uner mst + dsc setup.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\n PGD 0 P4D 0\n Oops: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 4 PID: 917 Comm: sway Not tainted 6.3.9-arch1-1 #1 124dc55df4f5272ccb409f39ef4872fc2b3376a2\n Hardware name: LENOVO 20NKS01Y00/20NKS01Y00, BIOS R12ET61W(1.31 ) 07/28/2022\n RIP: 0010:drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper]\n Code: 01 00 00 48 8b 85 60 05 00 00 48 63 80 88 00 00 00 3b 43 28 0f 8d 2e 01 00 00 48 8b 53 30 48 8d 04 80 48 8d 04 c2 48 8b 40 18 \u003c48\u003e 8\u003e\n RSP: 0018:ffff960cc2df77d8 EFLAGS: 00010293\n RAX: 0000000000000000 RBX: ffff8afb87e81280 RCX: 0000000000000224\n RDX: ffff8afb9ee37c00 RSI: ffff8afb8da1a578 RDI: ffff8afb87e81280\n RBP: ffff8afb83d67000 R08: 0000000000000001 R09: ffff8afb9652f850\n R10: ffff960cc2df7908 R11: 0000000000000002 R12: 0000000000000000\n R13: ffff8afb8d7688a0 R14: ffff8afb8da1a578 R15: 0000000000000224\n FS: 00007f4dac35ce00(0000) GS:ffff8afe30b00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000008 CR3: 000000010ddc6000 CR4: 00000000003506e0\n Call Trace:\n\u003cTASK\u003e\n ? __die+0x23/0x70\n ? page_fault_oops+0x171/0x4e0\n ? plist_add+0xbe/0x100\n ? exc_page_fault+0x7c/0x180\n ? asm_exc_page_fault+0x26/0x30\n ? drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026]\n ? drm_dp_atomic_find_time_slots+0x28/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026]\n compute_mst_dsc_configs_for_link+0x2ff/0xa40 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n ? fill_plane_buffer_attributes+0x419/0x510 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n compute_mst_dsc_configs_for_state+0x1e1/0x250 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n amdgpu_dm_atomic_check+0xecd/0x1190 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n drm_atomic_check_only+0x5c5/0xa40\n drm_mode_atomic_ioctl+0x76e/0xbc0\n\n[how]\ndsc recompute should be skipped if no mode change detected on the new\nrequest. If detected, keep checking whether the stream is already on\ncurrent state or not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47683",
"url": "https://www.suse.com/security/cve/CVE-2024-47683"
},
{
"category": "external",
"summary": "SUSE Bug 1231975 for CVE-2024-47683",
"url": "https://bugzilla.suse.com/1231975"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47683"
},
{
"cve": "CVE-2024-47684",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47684"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: check skb is non-NULL in tcp_rto_delta_us()\n\nWe have some machines running stock Ubuntu 20.04.6 which is their 5.4.0-174-generic\nkernel that are running ceph and recently hit a null ptr dereference in\ntcp_rearm_rto(). Initially hitting it from the TLP path, but then later we also\nsaw it getting hit from the RACK case as well. Here are examples of the oops\nmessages we saw in each of those cases:\n\nJul 26 15:05:02 rx [11061395.780353] BUG: kernel NULL pointer dereference, address: 0000000000000020\nJul 26 15:05:02 rx [11061395.787572] #PF: supervisor read access in kernel mode\nJul 26 15:05:02 rx [11061395.792971] #PF: error_code(0x0000) - not-present page\nJul 26 15:05:02 rx [11061395.798362] PGD 0 P4D 0\nJul 26 15:05:02 rx [11061395.801164] Oops: 0000 [#1] SMP NOPTI\nJul 26 15:05:02 rx [11061395.805091] CPU: 0 PID: 9180 Comm: msgr-worker-1 Tainted: G W 5.4.0-174-generic #193-Ubuntu\nJul 26 15:05:02 rx [11061395.814996] Hardware name: Supermicro SMC 2x26 os-gen8 64C NVME-Y 256G/H12SSW-NTR, BIOS 2.5.V1.2U.NVMe.UEFI 05/09/2023\nJul 26 15:05:02 rx [11061395.825952] RIP: 0010:tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.830656] Code: 87 ca 04 00 00 00 5b 41 5c 41 5d 5d c3 c3 49 8b bc 24 40 06 00 00 eb 8d 48 bb cf f7 53 e3 a5 9b c4 20 4c 89 ef e8 0c fe 0e 00 \u003c48\u003e 8b 78 20 48 c1 ef 03 48 89 f8 41 8b bc 24 80 04 00 00 48 f7 e3\nJul 26 15:05:02 rx [11061395.849665] RSP: 0018:ffffb75d40003e08 EFLAGS: 00010246\nJul 26 15:05:02 rx [11061395.855149] RAX: 0000000000000000 RBX: 20c49ba5e353f7cf RCX: 0000000000000000\nJul 26 15:05:02 rx [11061395.862542] RDX: 0000000062177c30 RSI: 000000000000231c RDI: ffff9874ad283a60\nJul 26 15:05:02 rx [11061395.869933] RBP: ffffb75d40003e20 R08: 0000000000000000 R09: ffff987605e20aa8\nJul 26 15:05:02 rx [11061395.877318] R10: ffffb75d40003f00 R11: ffffb75d4460f740 R12: ffff9874ad283900\nJul 26 15:05:02 rx [11061395.884710] R13: ffff9874ad283a60 R14: ffff9874ad283980 R15: ffff9874ad283d30\nJul 26 15:05:02 rx [11061395.892095] FS: 00007f1ef4a2e700(0000) GS:ffff987605e00000(0000) knlGS:0000000000000000\nJul 26 15:05:02 rx [11061395.900438] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nJul 26 15:05:02 rx [11061395.906435] CR2: 0000000000000020 CR3: 0000003e450ba003 CR4: 0000000000760ef0\nJul 26 15:05:02 rx [11061395.913822] PKRU: 55555554\nJul 26 15:05:02 rx [11061395.916786] Call Trace:\nJul 26 15:05:02 rx [11061395.919488]\nJul 26 15:05:02 rx [11061395.921765] ? show_regs.cold+0x1a/0x1f\nJul 26 15:05:02 rx [11061395.925859] ? __die+0x90/0xd9\nJul 26 15:05:02 rx [11061395.929169] ? no_context+0x196/0x380\nJul 26 15:05:02 rx [11061395.933088] ? ip6_protocol_deliver_rcu+0x4e0/0x4e0\nJul 26 15:05:02 rx [11061395.938216] ? ip6_sublist_rcv_finish+0x3d/0x50\nJul 26 15:05:02 rx [11061395.943000] ? __bad_area_nosemaphore+0x50/0x1a0\nJul 26 15:05:02 rx [11061395.947873] ? bad_area_nosemaphore+0x16/0x20\nJul 26 15:05:02 rx [11061395.952486] ? do_user_addr_fault+0x267/0x450\nJul 26 15:05:02 rx [11061395.957104] ? ipv6_list_rcv+0x112/0x140\nJul 26 15:05:02 rx [11061395.961279] ? __do_page_fault+0x58/0x90\nJul 26 15:05:02 rx [11061395.965458] ? do_page_fault+0x2c/0xe0\nJul 26 15:05:02 rx [11061395.969465] ? page_fault+0x34/0x40\nJul 26 15:05:02 rx [11061395.973217] ? tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.977313] ? tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.981408] tcp_send_loss_probe+0x10b/0x220\nJul 26 15:05:02 rx [11061395.985937] tcp_write_timer_handler+0x1b4/0x240\nJul 26 15:05:02 rx [11061395.990809] tcp_write_timer+0x9e/0xe0\nJul 26 15:05:02 rx [11061395.994814] ? tcp_write_timer_handler+0x240/0x240\nJul 26 15:05:02 rx [11061395.999866] call_timer_fn+0x32/0x130\nJul 26 15:05:02 rx [11061396.003782] __run_timers.part.0+0x180/0x280\nJul 26 15:05:02 rx [11061396.008309] ? recalibrate_cpu_khz+0x10/0x10\nJul 26 15:05:02 rx [11061396.012841] ? native_x2apic_icr_write+0x30/0x30\nJul 26 15:05:02 rx [11061396.017718] ? lapic_next_even\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47684",
"url": "https://www.suse.com/security/cve/CVE-2024-47684"
},
{
"category": "external",
"summary": "SUSE Bug 1231987 for CVE-2024-47684",
"url": "https://bugzilla.suse.com/1231987"
},
{
"category": "external",
"summary": "SUSE Bug 1231993 for CVE-2024-47684",
"url": "https://bugzilla.suse.com/1231993"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47684"
},
{
"cve": "CVE-2024-47685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put()\n\nsyzbot reported that nf_reject_ip6_tcphdr_put() was possibly sending\ngarbage on the four reserved tcp bits (th-\u003eres1)\n\nUse skb_put_zero() to clear the whole TCP header,\nas done in nf_reject_ip_tcphdr_put()\n\nBUG: KMSAN: uninit-value in nf_reject_ip6_tcphdr_put+0x688/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:255\n nf_reject_ip6_tcphdr_put+0x688/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:255\n nf_send_reset6+0xd84/0x15b0 net/ipv6/netfilter/nf_reject_ipv6.c:344\n nft_reject_inet_eval+0x3c1/0x880 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x438/0x22a0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x41a/0x4f0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xf4/0x400 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x29b/0x390 net/ipv6/ip6_input.c:310\n __netif_receive_skb_one_core net/core/dev.c:5661 [inline]\n __netif_receive_skb+0x1da/0xa00 net/core/dev.c:5775\n process_backlog+0x4ad/0xa50 net/core/dev.c:6108\n __napi_poll+0xe7/0x980 net/core/dev.c:6772\n napi_poll net/core/dev.c:6841 [inline]\n net_rx_action+0xa5a/0x19b0 net/core/dev.c:6963\n handle_softirqs+0x1ce/0x800 kernel/softirq.c:554\n __do_softirq+0x14/0x1a kernel/softirq.c:588\n do_softirq+0x9a/0x100 kernel/softirq.c:455\n __local_bh_enable_ip+0x9f/0xb0 kernel/softirq.c:382\n local_bh_enable include/linux/bottom_half.h:33 [inline]\n rcu_read_unlock_bh include/linux/rcupdate.h:908 [inline]\n __dev_queue_xmit+0x2692/0x5610 net/core/dev.c:4450\n dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n neigh_resolve_output+0x9ca/0xae0 net/core/neighbour.c:1565\n neigh_output include/net/neighbour.h:542 [inline]\n ip6_finish_output2+0x2347/0x2ba0 net/ipv6/ip6_output.c:141\n __ip6_finish_output net/ipv6/ip6_output.c:215 [inline]\n ip6_finish_output+0xbb8/0x14b0 net/ipv6/ip6_output.c:226\n NF_HOOK_COND include/linux/netfilter.h:303 [inline]\n ip6_output+0x356/0x620 net/ipv6/ip6_output.c:247\n dst_output include/net/dst.h:450 [inline]\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip6_xmit+0x1ba6/0x25d0 net/ipv6/ip6_output.c:366\n inet6_csk_xmit+0x442/0x530 net/ipv6/inet6_connection_sock.c:135\n __tcp_transmit_skb+0x3b07/0x4880 net/ipv4/tcp_output.c:1466\n tcp_transmit_skb net/ipv4/tcp_output.c:1484 [inline]\n tcp_connect+0x35b6/0x7130 net/ipv4/tcp_output.c:4143\n tcp_v6_connect+0x1bcc/0x1e40 net/ipv6/tcp_ipv6.c:333\n __inet_stream_connect+0x2ef/0x1730 net/ipv4/af_inet.c:679\n inet_stream_connect+0x6a/0xd0 net/ipv4/af_inet.c:750\n __sys_connect_file net/socket.c:2061 [inline]\n __sys_connect+0x606/0x690 net/socket.c:2078\n __do_sys_connect net/socket.c:2088 [inline]\n __se_sys_connect net/socket.c:2085 [inline]\n __x64_sys_connect+0x91/0xe0 net/socket.c:2085\n x64_sys_call+0x27a5/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:43\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was stored to memory at:\n nf_reject_ip6_tcphdr_put+0x60c/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:249\n nf_send_reset6+0xd84/0x15b0 net/ipv6/netfilter/nf_reject_ipv6.c:344\n nft_reject_inet_eval+0x3c1/0x880 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x438/0x22a0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x41a/0x4f0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xf4/0x400 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x29b/0x390 net/ipv6/ip6_input.c:310\n __netif_receive_skb_one_core\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47685",
"url": "https://www.suse.com/security/cve/CVE-2024-47685"
},
{
"category": "external",
"summary": "SUSE Bug 1231998 for CVE-2024-47685",
"url": "https://bugzilla.suse.com/1231998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47685"
},
{
"cve": "CVE-2024-47686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nep93xx: clock: Fix off by one in ep93xx_div_recalc_rate()\n\nThe psc-\u003ediv[] array has psc-\u003enum_div elements. These values come from\nwhen we call clk_hw_register_div(). It\u0027s adc_divisors and\nARRAY_SIZE(adc_divisors)) and so on. So this condition needs to be \u003e=\ninstead of \u003e to prevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47686",
"url": "https://www.suse.com/security/cve/CVE-2024-47686"
},
{
"category": "external",
"summary": "SUSE Bug 1232000 for CVE-2024-47686",
"url": "https://bugzilla.suse.com/1232000"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47686"
},
{
"cve": "CVE-2024-47687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa/mlx5: Fix invalid mr resource destroy\n\nCertain error paths from mlx5_vdpa_dev_add() can end up releasing mr\nresources which never got initialized in the first place.\n\nThis patch adds the missing check in mlx5_vdpa_destroy_mr_resources()\nto block releasing non-initialized mr resources.\n\nReference trace:\n\n mlx5_core 0000:08:00.2: mlx5_vdpa_dev_add:3274:(pid 2700) warning: No mac address provisioned?\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 140216067 P4D 0\n Oops: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 8 PID: 2700 Comm: vdpa Kdump: loaded Not tainted 5.14.0-496.el9.x86_64 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:vhost_iotlb_del_range+0xf/0xe0 [vhost_iotlb]\n Code: [...]\n RSP: 0018:ff1c823ac23077f0 EFLAGS: 00010246\n RAX: ffffffffc1a21a60 RBX: ffffffff899567a0 RCX: 0000000000000000\n RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000000000000\n RBP: ff1bda1f7c21e800 R08: 0000000000000000 R09: ff1c823ac2307670\n R10: ff1c823ac2307668 R11: ffffffff8a9e7b68 R12: 0000000000000000\n R13: 0000000000000000 R14: ff1bda1f43e341a0 R15: 00000000ffffffea\n FS: 00007f56eba7c740(0000) GS:ff1bda269f800000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 0000000104d90001 CR4: 0000000000771ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n\n ? show_trace_log_lvl+0x1c4/0x2df\n ? show_trace_log_lvl+0x1c4/0x2df\n ? mlx5_vdpa_free+0x3d/0x150 [mlx5_vdpa]\n ? __die_body.cold+0x8/0xd\n ? page_fault_oops+0x134/0x170\n ? __irq_work_queue_local+0x2b/0xc0\n ? irq_work_queue+0x2c/0x50\n ? exc_page_fault+0x62/0x150\n ? asm_exc_page_fault+0x22/0x30\n ? __pfx_mlx5_vdpa_free+0x10/0x10 [mlx5_vdpa]\n ? vhost_iotlb_del_range+0xf/0xe0 [vhost_iotlb]\n mlx5_vdpa_free+0x3d/0x150 [mlx5_vdpa]\n vdpa_release_dev+0x1e/0x50 [vdpa]\n device_release+0x31/0x90\n kobject_cleanup+0x37/0x130\n mlx5_vdpa_dev_add+0x2d2/0x7a0 [mlx5_vdpa]\n vdpa_nl_cmd_dev_add_set_doit+0x277/0x4c0 [vdpa]\n genl_family_rcv_msg_doit+0xd9/0x130\n genl_family_rcv_msg+0x14d/0x220\n ? __pfx_vdpa_nl_cmd_dev_add_set_doit+0x10/0x10 [vdpa]\n ? _copy_to_user+0x1a/0x30\n ? move_addr_to_user+0x4b/0xe0\n genl_rcv_msg+0x47/0xa0\n ? __import_iovec+0x46/0x150\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x54/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x245/0x370\n netlink_sendmsg+0x206/0x440\n __sys_sendto+0x1dc/0x1f0\n ? do_read_fault+0x10c/0x1d0\n ? do_pte_missing+0x10d/0x190\n __x64_sys_sendto+0x20/0x30\n do_syscall_64+0x5c/0xf0\n ? __count_memcg_events+0x4f/0xb0\n ? mm_account_fault+0x6c/0x100\n ? handle_mm_fault+0x116/0x270\n ? do_user_addr_fault+0x1d6/0x6a0\n ? do_syscall_64+0x6b/0xf0\n ? clear_bhb_loop+0x25/0x80\n ? clear_bhb_loop+0x25/0x80\n ? clear_bhb_loop+0x25/0x80\n ? clear_bhb_loop+0x25/0x80\n ? clear_bhb_loop+0x25/0x80\n entry_SYSCALL_64_after_hwframe+0x78/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47687",
"url": "https://www.suse.com/security/cve/CVE-2024-47687"
},
{
"category": "external",
"summary": "SUSE Bug 1232003 for CVE-2024-47687",
"url": "https://bugzilla.suse.com/1232003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47687"
},
{
"cve": "CVE-2024-47688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47688"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver core: Fix a potential null-ptr-deref in module_add_driver()\n\nInject fault while probing of-fpga-region, if kasprintf() fails in\nmodule_add_driver(), the second sysfs_remove_link() in exit path will cause\nnull-ptr-deref as below because kernfs_name_hash() will call strlen() with\nNULL driver_name.\n\nFix it by releasing resources based on the exit path sequence.\n\n\t KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n\t Mem abort info:\n\t ESR = 0x0000000096000005\n\t EC = 0x25: DABT (current EL), IL = 32 bits\n\t SET = 0, FnV = 0\n\t EA = 0, S1PTW = 0\n\t FSC = 0x05: level 1 translation fault\n\t Data abort info:\n\t ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n\t CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n\t GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n\t [dfffffc000000000] address between user and kernel address ranges\n\t Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n\t Dumping ftrace buffer:\n\t (ftrace buffer empty)\n\t Modules linked in: of_fpga_region(+) fpga_region fpga_bridge cfg80211 rfkill 8021q garp mrp stp llc ipv6 [last unloaded: of_fpga_region]\n\t CPU: 2 UID: 0 PID: 2036 Comm: modprobe Not tainted 6.11.0-rc2-g6a0e38264012 #295\n\t Hardware name: linux,dummy-virt (DT)\n\t pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n\t pc : strlen+0x24/0xb0\n\t lr : kernfs_name_hash+0x1c/0xc4\n\t sp : ffffffc081f97380\n\t x29: ffffffc081f97380 x28: ffffffc081f97b90 x27: ffffff80c821c2a0\n\t x26: ffffffedac0be418 x25: 0000000000000000 x24: ffffff80c09d2000\n\t x23: 0000000000000000 x22: 0000000000000000 x21: 0000000000000000\n\t x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000001840\n\t x17: 0000000000000000 x16: 0000000000000000 x15: 1ffffff8103f2e42\n\t x14: 00000000f1f1f1f1 x13: 0000000000000004 x12: ffffffb01812d61d\n\t x11: 1ffffff01812d61c x10: ffffffb01812d61c x9 : dfffffc000000000\n\t x8 : 0000004fe7ed29e4 x7 : ffffff80c096b0e7 x6 : 0000000000000001\n\t x5 : ffffff80c096b0e0 x4 : 1ffffffdb990efa2 x3 : 0000000000000000\n\t x2 : 0000000000000000 x1 : dfffffc000000000 x0 : 0000000000000000\n\t Call trace:\n\t strlen+0x24/0xb0\n\t kernfs_name_hash+0x1c/0xc4\n\t kernfs_find_ns+0x118/0x2e8\n\t kernfs_remove_by_name_ns+0x80/0x100\n\t sysfs_remove_link+0x74/0xa8\n\t module_add_driver+0x278/0x394\n\t bus_add_driver+0x1f0/0x43c\n\t driver_register+0xf4/0x3c0\n\t __platform_driver_register+0x60/0x88\n\t of_fpga_region_init+0x20/0x1000 [of_fpga_region]\n\t do_one_initcall+0x110/0x788\n\t do_init_module+0x1dc/0x5c8\n\t load_module+0x3c38/0x4cac\n\t init_module_from_file+0xd4/0x128\n\t idempotent_init_module+0x2cc/0x528\n\t __arm64_sys_finit_module+0xac/0x100\n\t invoke_syscall+0x6c/0x258\n\t el0_svc_common.constprop.0+0x160/0x22c\n\t do_el0_svc+0x44/0x5c\n\t el0_svc+0x48/0xb8\n\t el0t_64_sync_handler+0x13c/0x158\n\t el0t_64_sync+0x190/0x194\n\t Code: f2fbffe1 a90157f4 12000802 aa0003f5 (38e16861)\n\t ---[ end trace 0000000000000000 ]---\n\t Kernel panic - not syncing: Oops: Fatal exception",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47688",
"url": "https://www.suse.com/security/cve/CVE-2024-47688"
},
{
"category": "external",
"summary": "SUSE Bug 1232009 for CVE-2024-47688",
"url": "https://bugzilla.suse.com/1232009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47688"
},
{
"cve": "CVE-2024-47689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to don\u0027t set SB_RDONLY in f2fs_handle_critical_error()\n\nsyzbot reports a f2fs bug as below:\n\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 58 at kernel/rcu/sync.c:177 rcu_sync_dtor+0xcd/0x180 kernel/rcu/sync.c:177\nCPU: 1 UID: 0 PID: 58 Comm: kworker/1:2 Not tainted 6.10.0-syzkaller-12562-g1722389b0d86 #0\nWorkqueue: events destroy_super_work\nRIP: 0010:rcu_sync_dtor+0xcd/0x180 kernel/rcu/sync.c:177\nCall Trace:\n percpu_free_rwsem+0x41/0x80 kernel/locking/percpu-rwsem.c:42\n destroy_super_work+0xec/0x130 fs/super.c:282\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd40 kernel/workqueue.c:3390\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nAs Christian Brauner pointed out [1]: the root cause is f2fs sets\nSB_RDONLY flag in internal function, rather than setting the flag\ncovered w/ sb-\u003es_umount semaphore via remount procedure, then below\nrace condition causes this bug:\n\n- freeze_super()\n - sb_wait_write(sb, SB_FREEZE_WRITE)\n - sb_wait_write(sb, SB_FREEZE_PAGEFAULT)\n - sb_wait_write(sb, SB_FREEZE_FS)\n\t\t\t\t\t- f2fs_handle_critical_error\n\t\t\t\t\t - sb-\u003es_flags |= SB_RDONLY\n- thaw_super\n - thaw_super_locked\n - sb_rdonly() is true, so it skips\n sb_freeze_unlock(sb, SB_FREEZE_FS)\n - deactivate_locked_super\n\nSince f2fs has almost the same logic as ext4 [2] when handling critical\nerror in filesystem if it mounts w/ errors=remount-ro option:\n- set CP_ERROR_FLAG flag which indicates filesystem is stopped\n- record errors to superblock\n- set SB_RDONLY falg\nOnce we set CP_ERROR_FLAG flag, all writable interfaces can detect the\nflag and stop any further updates on filesystem. So, it is safe to not\nset SB_RDONLY flag, let\u0027s remove the logic and keep in line w/ ext4 [3].\n\n[1] https://lore.kernel.org/all/20240729-himbeeren-funknetz-96e62f9c7aee@brauner\n[2] https://lore.kernel.org/all/20240729132721.hxih6ehigadqf7wx@quack3\n[3] https://lore.kernel.org/linux-ext4/20240805201241.27286-1-jack@suse.cz",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47689",
"url": "https://www.suse.com/security/cve/CVE-2024-47689"
},
{
"category": "external",
"summary": "SUSE Bug 1232010 for CVE-2024-47689",
"url": "https://bugzilla.suse.com/1232010"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47689"
},
{
"cve": "CVE-2024-47690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: get rid of online repaire on corrupted directory\n\nsyzbot reports a f2fs bug as below:\n\nkernel BUG at fs/f2fs/inode.c:896!\nRIP: 0010:f2fs_evict_inode+0x1598/0x15c0 fs/f2fs/inode.c:896\nCall Trace:\n evict+0x532/0x950 fs/inode.c:704\n dispose_list fs/inode.c:747 [inline]\n evict_inodes+0x5f9/0x690 fs/inode.c:797\n generic_shutdown_super+0x9d/0x2d0 fs/super.c:627\n kill_block_super+0x44/0x90 fs/super.c:1696\n kill_f2fs_super+0x344/0x690 fs/f2fs/super.c:4898\n deactivate_locked_super+0xc4/0x130 fs/super.c:473\n cleanup_mnt+0x41f/0x4b0 fs/namespace.c:1373\n task_work_run+0x24f/0x310 kernel/task_work.c:228\n ptrace_notify+0x2d2/0x380 kernel/signal.c:2402\n ptrace_report_syscall include/linux/ptrace.h:415 [inline]\n ptrace_report_syscall_exit include/linux/ptrace.h:477 [inline]\n syscall_exit_work+0xc6/0x190 kernel/entry/common.c:173\n syscall_exit_to_user_mode_prepare kernel/entry/common.c:200 [inline]\n __syscall_exit_to_user_mode_work kernel/entry/common.c:205 [inline]\n syscall_exit_to_user_mode+0x279/0x370 kernel/entry/common.c:218\n do_syscall_64+0x100/0x230 arch/x86/entry/common.c:89\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0010:f2fs_evict_inode+0x1598/0x15c0 fs/f2fs/inode.c:896\n\nOnline repaire on corrupted directory in f2fs_lookup() can generate\ndirty data/meta while racing w/ readonly remount, it may leave dirty\ninode after filesystem becomes readonly, however, checkpoint() will\nskips flushing dirty inode in a state of readonly mode, result in\nabove panic.\n\nLet\u0027s get rid of online repaire in f2fs_lookup(), and leave the work\nto fsck.f2fs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47690",
"url": "https://www.suse.com/security/cve/CVE-2024-47690"
},
{
"category": "external",
"summary": "SUSE Bug 1232011 for CVE-2024-47690",
"url": "https://bugzilla.suse.com/1232011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47690"
},
{
"cve": "CVE-2024-47691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to avoid use-after-free in f2fs_stop_gc_thread()\n\nsyzbot reports a f2fs bug as below:\n\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_report+0xe8/0x550 mm/kasan/report.c:491\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n kasan_check_range+0x282/0x290 mm/kasan/generic.c:189\n instrument_atomic_read_write include/linux/instrumented.h:96 [inline]\n atomic_fetch_add_relaxed include/linux/atomic/atomic-instrumented.h:252 [inline]\n __refcount_add include/linux/refcount.h:184 [inline]\n __refcount_inc include/linux/refcount.h:241 [inline]\n refcount_inc include/linux/refcount.h:258 [inline]\n get_task_struct include/linux/sched/task.h:118 [inline]\n kthread_stop+0xca/0x630 kernel/kthread.c:704\n f2fs_stop_gc_thread+0x65/0xb0 fs/f2fs/gc.c:210\n f2fs_do_shutdown+0x192/0x540 fs/f2fs/file.c:2283\n f2fs_ioc_shutdown fs/f2fs/file.c:2325 [inline]\n __f2fs_ioctl+0x443a/0xbe60 fs/f2fs/file.c:4325\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe root cause is below race condition, it may cause use-after-free\nissue in sbi-\u003egc_th pointer.\n\n- remount\n - f2fs_remount\n - f2fs_stop_gc_thread\n - kfree(gc_th)\n\t\t\t\t- f2fs_ioc_shutdown\n\t\t\t\t - f2fs_do_shutdown\n\t\t\t\t - f2fs_stop_gc_thread\n\t\t\t\t - kthread_stop(gc_th-\u003ef2fs_gc_task)\n : sbi-\u003egc_thread = NULL;\n\nWe will call f2fs_do_shutdown() in two paths:\n- for f2fs_ioc_shutdown() path, we should grab sb-\u003es_umount semaphore\nfor fixing.\n- for f2fs_shutdown() path, it\u0027s safe since caller has already grabbed\nsb-\u003es_umount semaphore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47691",
"url": "https://www.suse.com/security/cve/CVE-2024-47691"
},
{
"category": "external",
"summary": "SUSE Bug 1232012 for CVE-2024-47691",
"url": "https://bugzilla.suse.com/1232012"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47691"
},
{
"cve": "CVE-2024-47692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47692"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: return -EINVAL when namelen is 0\n\nWhen we have a corrupted main.sqlite in /var/lib/nfs/nfsdcld/, it may\nresult in namelen being 0, which will cause memdup_user() to return\nZERO_SIZE_PTR.\nWhen we access the name.data that has been assigned the value of\nZERO_SIZE_PTR in nfs4_client_to_reclaim(), null pointer dereference is\ntriggered.\n\n[ T1205] ==================================================================\n[ T1205] BUG: KASAN: null-ptr-deref in nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] Read of size 1 at addr 0000000000000010 by task nfsdcld/1205\n[ T1205]\n[ T1205] CPU: 11 PID: 1205 Comm: nfsdcld Not tainted 5.10.0-00003-g2c1423731b8d #406\n[ T1205] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS ?-20190727_073836-buildvm-ppc64le-16.ppc.fedoraproject.org-3.fc31 04/01/2014\n[ T1205] Call Trace:\n[ T1205] dump_stack+0x9a/0xd0\n[ T1205] ? nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] __kasan_report.cold+0x34/0x84\n[ T1205] ? nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] kasan_report+0x3a/0x50\n[ T1205] nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] ? nfsd4_release_lockowner+0x410/0x410\n[ T1205] cld_pipe_downcall+0x5ca/0x760\n[ T1205] ? nfsd4_cld_tracking_exit+0x1d0/0x1d0\n[ T1205] ? down_write_killable_nested+0x170/0x170\n[ T1205] ? avc_policy_seqno+0x28/0x40\n[ T1205] ? selinux_file_permission+0x1b4/0x1e0\n[ T1205] rpc_pipe_write+0x84/0xb0\n[ T1205] vfs_write+0x143/0x520\n[ T1205] ksys_write+0xc9/0x170\n[ T1205] ? __ia32_sys_read+0x50/0x50\n[ T1205] ? ktime_get_coarse_real_ts64+0xfe/0x110\n[ T1205] ? ktime_get_coarse_real_ts64+0xa2/0x110\n[ T1205] do_syscall_64+0x33/0x40\n[ T1205] entry_SYSCALL_64_after_hwframe+0x67/0xd1\n[ T1205] RIP: 0033:0x7fdbdb761bc7\n[ T1205] Code: 0f 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 514\n[ T1205] RSP: 002b:00007fff8c4b7248 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\n[ T1205] RAX: ffffffffffffffda RBX: 000000000000042b RCX: 00007fdbdb761bc7\n[ T1205] RDX: 000000000000042b RSI: 00007fff8c4b75f0 RDI: 0000000000000008\n[ T1205] RBP: 00007fdbdb761bb0 R08: 0000000000000000 R09: 0000000000000001\n[ T1205] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000042b\n[ T1205] R13: 0000000000000008 R14: 00007fff8c4b75f0 R15: 0000000000000000\n[ T1205] ==================================================================\n\nFix it by checking namelen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47692",
"url": "https://www.suse.com/security/cve/CVE-2024-47692"
},
{
"category": "external",
"summary": "SUSE Bug 1231857 for CVE-2024-47692",
"url": "https://bugzilla.suse.com/1231857"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47692"
},
{
"cve": "CVE-2024-47693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/core: Fix ib_cache_setup_one error flow cleanup\n\nWhen ib_cache_update return an error, we exit ib_cache_setup_one\ninstantly with no proper cleanup, even though before this we had\nalready successfully done gid_table_setup_one, that results in\nthe kernel WARN below.\n\nDo proper cleanup using gid_table_cleanup_one before returning\nthe err in order to fix the issue.\n\nWARNING: CPU: 4 PID: 922 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x181/0x1a0\nModules linked in:\nCPU: 4 UID: 0 PID: 922 Comm: c_repro Not tainted 6.11.0-rc1+ #3\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:gid_table_release_one+0x181/0x1a0\nCode: 44 8b 38 75 0c e8 2f cb 34 ff 4d 8b b5 28 05 00 00 e8 23 cb 34 ff 44 89 f9 89 da 4c 89 f6 48 c7 c7 d0 58 14 83 e8 4f de 21 ff \u003c0f\u003e 0b 4c 8b 75 30 e9 54 ff ff ff 48 8 3 c4 10 5b 5d 41 5c 41 5d 41\nRSP: 0018:ffffc90002b835b0 EFLAGS: 00010286\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff811c8527\nRDX: 0000000000000000 RSI: ffffffff811c8534 RDI: 0000000000000001\nRBP: ffff8881011b3d00 R08: ffff88810b3abe00 R09: 205d303839303631\nR10: 666572207972746e R11: 72746e6520444947 R12: 0000000000000001\nR13: ffff888106390000 R14: ffff8881011f2110 R15: 0000000000000001\nFS: 00007fecc3b70800(0000) GS:ffff88813bd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020000340 CR3: 000000010435a001 CR4: 00000000003706b0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x94/0xa0\n ? __warn+0x9e/0x1c0\n ? gid_table_release_one+0x181/0x1a0\n ? report_bug+0x1f9/0x340\n ? gid_table_release_one+0x181/0x1a0\n ? handle_bug+0xa2/0x110\n ? exc_invalid_op+0x31/0xa0\n ? asm_exc_invalid_op+0x16/0x20\n ? __warn_printk+0xc7/0x180\n ? __warn_printk+0xd4/0x180\n ? gid_table_release_one+0x181/0x1a0\n ib_device_release+0x71/0xe0\n ? __pfx_ib_device_release+0x10/0x10\n device_release+0x44/0xd0\n kobject_put+0x135/0x3d0\n put_device+0x20/0x30\n rxe_net_add+0x7d/0xa0\n rxe_newlink+0xd7/0x190\n nldev_newlink+0x1b0/0x2a0\n ? __pfx_nldev_newlink+0x10/0x10\n rdma_nl_rcv_msg+0x1ad/0x2e0\n rdma_nl_rcv_skb.constprop.0+0x176/0x210\n netlink_unicast+0x2de/0x400\n netlink_sendmsg+0x306/0x660\n __sock_sendmsg+0x110/0x120\n ____sys_sendmsg+0x30e/0x390\n ___sys_sendmsg+0x9b/0xf0\n ? kstrtouint+0x6e/0xa0\n ? kstrtouint_from_user+0x7c/0xb0\n ? get_pid_task+0xb0/0xd0\n ? proc_fail_nth_write+0x5b/0x140\n ? __fget_light+0x9a/0x200\n ? preempt_count_add+0x47/0xa0\n __sys_sendmsg+0x61/0xd0\n do_syscall_64+0x50/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47693",
"url": "https://www.suse.com/security/cve/CVE-2024-47693"
},
{
"category": "external",
"summary": "SUSE Bug 1232013 for CVE-2024-47693",
"url": "https://bugzilla.suse.com/1232013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47693"
},
{
"cve": "CVE-2024-47694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/mlx5: Fix UMR pd cleanup on error flow of driver init\n\nThe cited commit moves the pd allocation from function\nmlx5r_umr_resource_cleanup() to a new function mlx5r_umr_cleanup().\nSo the fix in commit [1] is broken. In error flow, will hit panic [2].\n\nFix it by checking pd pointer to avoid panic if it is NULL;\n\n[1] RDMA/mlx5: Fix UMR cleanup on error flow of driver init\n[2]\n [ 347.567063] infiniband mlx5_0: Couldn\u0027t register device with driver model\n [ 347.591382] BUG: kernel NULL pointer dereference, address: 0000000000000020\n [ 347.593438] #PF: supervisor read access in kernel mode\n [ 347.595176] #PF: error_code(0x0000) - not-present page\n [ 347.596962] PGD 0 P4D 0\n [ 347.601361] RIP: 0010:ib_dealloc_pd_user+0x12/0xc0 [ib_core]\n [ 347.604171] RSP: 0018:ffff888106293b10 EFLAGS: 00010282\n [ 347.604834] RAX: 0000000000000000 RBX: 000000000000000e RCX: 0000000000000000\n [ 347.605672] RDX: ffff888106293ad0 RSI: 0000000000000000 RDI: 0000000000000000\n [ 347.606529] RBP: 0000000000000000 R08: ffff888106293ae0 R09: ffff888106293ae0\n [ 347.607379] R10: 0000000000000a06 R11: 0000000000000000 R12: 0000000000000000\n [ 347.608224] R13: ffffffffa0704dc0 R14: 0000000000000001 R15: 0000000000000001\n [ 347.609067] FS: 00007fdc720cd9c0(0000) GS:ffff88852c880000(0000) knlGS:0000000000000000\n [ 347.610094] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [ 347.610727] CR2: 0000000000000020 CR3: 0000000103012003 CR4: 0000000000370eb0\n [ 347.611421] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [ 347.612113] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [ 347.612804] Call Trace:\n [ 347.613130] \u003cTASK\u003e\n [ 347.613417] ? __die+0x20/0x60\n [ 347.613793] ? page_fault_oops+0x150/0x3e0\n [ 347.614243] ? free_msg+0x68/0x80 [mlx5_core]\n [ 347.614840] ? cmd_exec+0x48f/0x11d0 [mlx5_core]\n [ 347.615359] ? exc_page_fault+0x74/0x130\n [ 347.615808] ? asm_exc_page_fault+0x22/0x30\n [ 347.616273] ? ib_dealloc_pd_user+0x12/0xc0 [ib_core]\n [ 347.616801] mlx5r_umr_cleanup+0x23/0x90 [mlx5_ib]\n [ 347.617365] mlx5_ib_stage_pre_ib_reg_umr_cleanup+0x36/0x40 [mlx5_ib]\n [ 347.618025] __mlx5_ib_add+0x96/0xd0 [mlx5_ib]\n [ 347.618539] mlx5r_probe+0xe9/0x310 [mlx5_ib]\n [ 347.619032] ? kernfs_add_one+0x107/0x150\n [ 347.619478] ? __mlx5_ib_add+0xd0/0xd0 [mlx5_ib]\n [ 347.619984] auxiliary_bus_probe+0x3e/0x90\n [ 347.620448] really_probe+0xc5/0x3a0\n [ 347.620857] __driver_probe_device+0x80/0x160\n [ 347.621325] driver_probe_device+0x1e/0x90\n [ 347.621770] __driver_attach+0xec/0x1c0\n [ 347.622213] ? __device_attach_driver+0x100/0x100\n [ 347.622724] bus_for_each_dev+0x71/0xc0\n [ 347.623151] bus_add_driver+0xed/0x240\n [ 347.623570] driver_register+0x58/0x100\n [ 347.623998] __auxiliary_driver_register+0x6a/0xc0\n [ 347.624499] ? driver_register+0xae/0x100\n [ 347.624940] ? 0xffffffffa0893000\n [ 347.625329] mlx5_ib_init+0x16a/0x1e0 [mlx5_ib]\n [ 347.625845] do_one_initcall+0x4a/0x2a0\n [ 347.626273] ? gcov_event+0x2e2/0x3a0\n [ 347.626706] do_init_module+0x8a/0x260\n [ 347.627126] init_module_from_file+0x8b/0xd0\n [ 347.627596] __x64_sys_finit_module+0x1ca/0x2f0\n [ 347.628089] do_syscall_64+0x4c/0x100",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47694",
"url": "https://www.suse.com/security/cve/CVE-2024-47694"
},
{
"category": "external",
"summary": "SUSE Bug 1232014 for CVE-2024-47694",
"url": "https://bugzilla.suse.com/1232014"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47694"
},
{
"cve": "CVE-2024-47695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds\n\nIn the function init_conns(), after the create_con() and create_cm() for\nloop if something fails. In the cleanup for loop after the destroy tag, we\naccess out of bound memory because cid is set to clt_path-\u003es.con_num.\n\nThis commits resets the cid to clt_path-\u003es.con_num - 1, to stay in bounds\nin the cleanup loop later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47695",
"url": "https://www.suse.com/security/cve/CVE-2024-47695"
},
{
"category": "external",
"summary": "SUSE Bug 1231931 for CVE-2024-47695",
"url": "https://bugzilla.suse.com/1231931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47695"
},
{
"cve": "CVE-2024-47696",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47696"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency\n\nIn the commit aee2424246f9 (\"RDMA/iwcm: Fix a use-after-free related to\ndestroying CM IDs\"), the function flush_workqueue is invoked to flush the\nwork queue iwcm_wq.\n\nBut at that time, the work queue iwcm_wq was created via the function\nalloc_ordered_workqueue without the flag WQ_MEM_RECLAIM.\n\nBecause the current process is trying to flush the whole iwcm_wq, if\niwcm_wq doesn\u0027t have the flag WQ_MEM_RECLAIM, verify that the current\nprocess is not reclaiming memory or running on a workqueue which doesn\u0027t\nhave the flag WQ_MEM_RECLAIM as that can break forward-progress guarantee\nleading to a deadlock.\n\nThe call trace is as below:\n\n[ 125.350876][ T1430] Call Trace:\n[ 125.356281][ T1430] \u003cTASK\u003e\n[ 125.361285][ T1430] ? __warn (kernel/panic.c:693)\n[ 125.367640][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.375689][ T1430] ? report_bug (lib/bug.c:180 lib/bug.c:219)\n[ 125.382505][ T1430] ? handle_bug (arch/x86/kernel/traps.c:239)\n[ 125.388987][ T1430] ? exc_invalid_op (arch/x86/kernel/traps.c:260 (discriminator 1))\n[ 125.395831][ T1430] ? asm_exc_invalid_op (arch/x86/include/asm/idtentry.h:621)\n[ 125.403125][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.410984][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.418764][ T1430] __flush_workqueue (kernel/workqueue.c:3970)\n[ 125.426021][ T1430] ? __pfx___might_resched (kernel/sched/core.c:10151)\n[ 125.433431][ T1430] ? destroy_cm_id (drivers/infiniband/core/iwcm.c:375) iw_cm\n[ 125.441209][ T1430] ? __pfx___flush_workqueue (kernel/workqueue.c:3910)\n[ 125.473900][ T1430] ? _raw_spin_lock_irqsave (arch/x86/include/asm/atomic.h:107 include/linux/atomic/atomic-arch-fallback.h:2170 include/linux/atomic/atomic-instrumented.h:1302 include/asm-generic/qspinlock.h:111 include/linux/spinlock.h:187 include/linux/spinlock_api_smp.h:111 kernel/locking/spinlock.c:162)\n[ 125.473909][ T1430] ? __pfx__raw_spin_lock_irqsave (kernel/locking/spinlock.c:161)\n[ 125.482537][ T1430] _destroy_id (drivers/infiniband/core/cma.c:2044) rdma_cm\n[ 125.495072][ T1430] nvme_rdma_free_queue (drivers/nvme/host/rdma.c:656 drivers/nvme/host/rdma.c:650) nvme_rdma\n[ 125.505827][ T1430] nvme_rdma_reset_ctrl_work (drivers/nvme/host/rdma.c:2180) nvme_rdma\n[ 125.505831][ T1430] process_one_work (kernel/workqueue.c:3231)\n[ 125.515122][ T1430] worker_thread (kernel/workqueue.c:3306 kernel/workqueue.c:3393)\n[ 125.515127][ T1430] ? __pfx_worker_thread (kernel/workqueue.c:3339)\n[ 125.531837][ T1430] kthread (kernel/kthread.c:389)\n[ 125.539864][ T1430] ? __pfx_kthread (kernel/kthread.c:342)\n[ 125.550628][ T1430] ret_from_fork (arch/x86/kernel/process.c:147)\n[ 125.558840][ T1430] ? __pfx_kthread (kernel/kthread.c:342)\n[ 125.558844][ T1430] ret_from_fork_asm (arch/x86/entry/entry_64.S:257)\n[ 125.566487][ T1430] \u003c/TASK\u003e\n[ 125.566488][ T1430] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47696",
"url": "https://www.suse.com/security/cve/CVE-2024-47696"
},
{
"category": "external",
"summary": "SUSE Bug 1231864 for CVE-2024-47696",
"url": "https://bugzilla.suse.com/1231864"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47696"
},
{
"cve": "CVE-2024-47697",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47697"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error\n\nEnsure index in rtl2830_pid_filter does not exceed 31 to prevent\nout-of-bounds access.\n\ndev-\u003efilters is a 32-bit value, so set_bit and clear_bit functions should\nonly operate on indices from 0 to 31. If index is 32, it will attempt to\naccess a non-existent 33rd bit, leading to out-of-bounds access.\nChange the boundary check from index \u003e 32 to index \u003e= 32 to resolve this\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47697",
"url": "https://www.suse.com/security/cve/CVE-2024-47697"
},
{
"category": "external",
"summary": "SUSE Bug 1231858 for CVE-2024-47697",
"url": "https://bugzilla.suse.com/1231858"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47697"
},
{
"cve": "CVE-2024-47698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47698"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error\n\nEnsure index in rtl2832_pid_filter does not exceed 31 to prevent\nout-of-bounds access.\n\ndev-\u003efilters is a 32-bit value, so set_bit and clear_bit functions should\nonly operate on indices from 0 to 31. If index is 32, it will attempt to\naccess a non-existent 33rd bit, leading to out-of-bounds access.\nChange the boundary check from index \u003e 32 to index \u003e= 32 to resolve this\nissue.\n\n[hverkuil: added fixes tag, rtl2830_pid_filter -\u003e rtl2832_pid_filter in logmsg]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47698",
"url": "https://www.suse.com/security/cve/CVE-2024-47698"
},
{
"category": "external",
"summary": "SUSE Bug 1231859 for CVE-2024-47698",
"url": "https://bugzilla.suse.com/1231859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47698"
},
{
"cve": "CVE-2024-47699",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47699"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential null-ptr-deref in nilfs_btree_insert()\n\nPatch series \"nilfs2: fix potential issues with empty b-tree nodes\".\n\nThis series addresses three potential issues with empty b-tree nodes that\ncan occur with corrupted filesystem images, including one recently\ndiscovered by syzbot.\n\n\nThis patch (of 3):\n\nIf a b-tree is broken on the device, and the b-tree height is greater than\n2 (the level of the root node is greater than 1) even if the number of\nchild nodes of the b-tree root is 0, a NULL pointer dereference occurs in\nnilfs_btree_prepare_insert(), which is called from nilfs_btree_insert().\n\nThis is because, when the number of child nodes of the b-tree root is 0,\nnilfs_btree_do_lookup() does not set the block buffer head in any of\npath[x].bp_bh, leaving it as the initial value of NULL, but if the level\nof the b-tree root node is greater than 1, nilfs_btree_get_nonroot_node(),\nwhich accesses the buffer memory of path[x].bp_bh, is called.\n\nFix this issue by adding a check to nilfs_btree_root_broken(), which\nperforms sanity checks when reading the root node from the device, to\ndetect this inconsistency.\n\nThanks to Lizhi Xu for trying to solve the bug and clarifying the cause\nearly on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47699",
"url": "https://www.suse.com/security/cve/CVE-2024-47699"
},
{
"category": "external",
"summary": "SUSE Bug 1231916 for CVE-2024-47699",
"url": "https://bugzilla.suse.com/1231916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47699"
},
{
"cve": "CVE-2024-47700",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47700"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: check stripe size compatibility on remount as well\n\nWe disable stripe size in __ext4_fill_super if it is not a multiple of\nthe cluster ratio however this check is missed when trying to remount.\nThis can leave us with cases where stripe \u003c cluster_ratio after\nremount:set making EXT4_B2C(sbi-\u003es_stripe) become 0 that can cause some\nunforeseen bugs like divide by 0.\n\nFix that by adding the check in remount path as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47700",
"url": "https://www.suse.com/security/cve/CVE-2024-47700"
},
{
"category": "external",
"summary": "SUSE Bug 1231919 for CVE-2024-47700",
"url": "https://bugzilla.suse.com/1231919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47700"
},
{
"cve": "CVE-2024-47701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47701"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid OOB when system.data xattr changes underneath the filesystem\n\nWhen looking up for an entry in an inlined directory, if e_value_offs is\nchanged underneath the filesystem by some change in the block device, it\nwill lead to an out-of-bounds access that KASAN detects as an UAF.\n\nEXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.\nloop0: detected capacity change from 2048 to 2047\n==================================================================\nBUG: KASAN: use-after-free in ext4_search_dir+0xf2/0x1c0 fs/ext4/namei.c:1500\nRead of size 1 at addr ffff88803e91130f by task syz-executor269/5103\n\nCPU: 0 UID: 0 PID: 5103 Comm: syz-executor269 Not tainted 6.11.0-rc4-syzkaller #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ext4_search_dir+0xf2/0x1c0 fs/ext4/namei.c:1500\n ext4_find_inline_entry+0x4be/0x5e0 fs/ext4/inline.c:1697\n __ext4_find_entry+0x2b4/0x1b30 fs/ext4/namei.c:1573\n ext4_lookup_entry fs/ext4/namei.c:1727 [inline]\n ext4_lookup+0x15f/0x750 fs/ext4/namei.c:1795\n lookup_one_qstr_excl+0x11f/0x260 fs/namei.c:1633\n filename_create+0x297/0x540 fs/namei.c:3980\n do_symlinkat+0xf9/0x3a0 fs/namei.c:4587\n __do_sys_symlinkat fs/namei.c:4610 [inline]\n __se_sys_symlinkat fs/namei.c:4607 [inline]\n __x64_sys_symlinkat+0x95/0xb0 fs/namei.c:4607\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f3e73ced469\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff4d40c258 EFLAGS: 00000246 ORIG_RAX: 000000000000010a\nRAX: ffffffffffffffda RBX: 0032656c69662f2e RCX: 00007f3e73ced469\nRDX: 0000000020000200 RSI: 00000000ffffff9c RDI: 00000000200001c0\nRBP: 0000000000000000 R08: 00007fff4d40c290 R09: 00007fff4d40c290\nR10: 0023706f6f6c2f76 R11: 0000000000000246 R12: 00007fff4d40c27c\nR13: 0000000000000003 R14: 431bde82d7b634db R15: 00007fff4d40c2b0\n \u003c/TASK\u003e\n\nCalling ext4_xattr_ibody_find right after reading the inode with\next4_get_inode_loc will lead to a check of the validity of the xattrs,\navoiding this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47701",
"url": "https://www.suse.com/security/cve/CVE-2024-47701"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-47701",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1231920 for CVE-2024-47701",
"url": "https://bugzilla.suse.com/1231920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47701"
},
{
"cve": "CVE-2024-47702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47702"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fail verification for sign-extension of packet data/data_end/data_meta\n\nsyzbot reported a kernel crash due to\n commit 1f1e864b6555 (\"bpf: Handle sign-extenstin ctx member accesses\").\nThe reason is due to sign-extension of 32-bit load for\npacket data/data_end/data_meta uapi field.\n\nThe original code looks like:\n r2 = *(s32 *)(r1 + 76) /* load __sk_buff-\u003edata */\n r3 = *(u32 *)(r1 + 80) /* load __sk_buff-\u003edata_end */\n r0 = r2\n r0 += 8\n if r3 \u003e r0 goto +1\n ...\nNote that __sk_buff-\u003edata load has 32-bit sign extension.\n\nAfter verification and convert_ctx_accesses(), the final asm code looks like:\n r2 = *(u64 *)(r1 +208)\n r2 = (s32)r2\n r3 = *(u64 *)(r1 +80)\n r0 = r2\n r0 += 8\n if r3 \u003e r0 goto pc+1\n ...\nNote that \u0027r2 = (s32)r2\u0027 may make the kernel __sk_buff-\u003edata address invalid\nwhich may cause runtime failure.\n\nCurrently, in C code, typically we have\n void *data = (void *)(long)skb-\u003edata;\n void *data_end = (void *)(long)skb-\u003edata_end;\n ...\nand it will generate\n r2 = *(u64 *)(r1 +208)\n r3 = *(u64 *)(r1 +80)\n r0 = r2\n r0 += 8\n if r3 \u003e r0 goto pc+1\n\nIf we allow sign-extension,\n void *data = (void *)(long)(int)skb-\u003edata;\n void *data_end = (void *)(long)skb-\u003edata_end;\n ...\nthe generated code looks like\n r2 = *(u64 *)(r1 +208)\n r2 \u003c\u003c= 32\n r2 s\u003e\u003e= 32\n r3 = *(u64 *)(r1 +80)\n r0 = r2\n r0 += 8\n if r3 \u003e r0 goto pc+1\nand this will cause verification failure since \"r2 \u003c\u003c= 32\" is not allowed\nas \"r2\" is a packet pointer.\n\nTo fix this issue for case\n r2 = *(s32 *)(r1 + 76) /* load __sk_buff-\u003edata */\nthis patch added additional checking in is_valid_access() callback\nfunction for packet data/data_end/data_meta access. If those accesses\nare with sign-extenstion, the verification will fail.\n\n [1] https://lore.kernel.org/bpf/000000000000c90eee061d236d37@google.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47702",
"url": "https://www.suse.com/security/cve/CVE-2024-47702"
},
{
"category": "external",
"summary": "SUSE Bug 1231924 for CVE-2024-47702",
"url": "https://bugzilla.suse.com/1231924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47702"
},
{
"cve": "CVE-2024-47703",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47703"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, lsm: Add check for BPF LSM return value\n\nA bpf prog returning a positive number attached to file_alloc_security\nhook makes kernel panic.\n\nThis happens because file system can not filter out the positive number\nreturned by the LSM prog using IS_ERR, and misinterprets this positive\nnumber as a file pointer.\n\nGiven that hook file_alloc_security never returned positive number\nbefore the introduction of BPF LSM, and other BPF LSM hooks may\nencounter similar issues, this patch adds LSM return value check\nin verifier, to ensure no unexpected value is returned.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47703",
"url": "https://www.suse.com/security/cve/CVE-2024-47703"
},
{
"category": "external",
"summary": "SUSE Bug 1231946 for CVE-2024-47703",
"url": "https://bugzilla.suse.com/1231946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47703"
},
{
"cve": "CVE-2024-47704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47704"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check link_res-\u003ehpo_dp_link_enc before using it\n\n[WHAT \u0026 HOW]\nFunctions dp_enable_link_phy and dp_disable_link_phy can pass link_res\nwithout initializing hpo_dp_link_enc and it is necessary to check for\nnull before dereferencing.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47704",
"url": "https://www.suse.com/security/cve/CVE-2024-47704"
},
{
"category": "external",
"summary": "SUSE Bug 1231944 for CVE-2024-47704",
"url": "https://bugzilla.suse.com/1231944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47704"
},
{
"cve": "CVE-2024-47705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47705"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix potential invalid pointer dereference in blk_add_partition\n\nThe blk_add_partition() function initially used a single if-condition\n(IS_ERR(part)) to check for errors when adding a partition. This was\nmodified to handle the specific case of -ENXIO separately, allowing the\nfunction to proceed without logging the error in this case. However,\nthis change unintentionally left a path where md_autodetect_dev()\ncould be called without confirming that part is a valid pointer.\n\nThis commit separates the error handling logic by splitting the\ninitial if-condition, improving code readability and handling specific\nerror scenarios explicitly. The function now distinguishes the general\nerror case from -ENXIO without altering the existing behavior of\nmd_autodetect_dev() calls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47705",
"url": "https://www.suse.com/security/cve/CVE-2024-47705"
},
{
"category": "external",
"summary": "SUSE Bug 1231872 for CVE-2024-47705",
"url": "https://bugzilla.suse.com/1231872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47705"
},
{
"cve": "CVE-2024-47706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47706"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix possible UAF for bfqq-\u003ebic with merge chain\n\n1) initial state, three tasks:\n\n\t\tProcess 1 Process 2\tProcess 3\n\t\t (BIC1) (BIC2)\t\t (BIC3)\n\t\t | \u039b | \u039b\t\t | \u039b\n\t\t | | | |\t\t | |\n\t\t V | V |\t\t V |\n\t\t bfqq1 bfqq2\t\t bfqq3\nprocess ref:\t 1\t\t 1\t\t 1\n\n2) bfqq1 merged to bfqq2:\n\n\t\tProcess 1 Process 2\tProcess 3\n\t\t (BIC1) (BIC2)\t\t (BIC3)\n\t\t | |\t\t | \u039b\n\t\t \\--------------\\|\t\t | |\n\t\t V\t\t V |\n\t\t bfqq1---------\u003ebfqq2\t\t bfqq3\nprocess ref:\t 0\t\t 2\t\t 1\n\n3) bfqq2 merged to bfqq3:\n\n\t\tProcess 1 Process 2\tProcess 3\n\t\t (BIC1) (BIC2)\t\t (BIC3)\n\t here -\u003e \u039b |\t\t |\n\t\t \\--------------\\ \\-------------\\|\n\t\t V\t\t V\n\t\t bfqq1---------\u003ebfqq2----------\u003ebfqq3\nprocess ref:\t 0\t\t 1\t\t 3\n\nIn this case, IO from Process 1 will get bfqq2 from BIC1 first, and then\nget bfqq3 through merge chain, and finially handle IO by bfqq3.\nHowerver, current code will think bfqq2 is owned by BIC1, like initial\nstate, and set bfqq2-\u003ebic to BIC1.\n\nbfq_insert_request\n-\u003e by Process 1\n bfqq = bfq_init_rq(rq)\n bfqq = bfq_get_bfqq_handle_split\n bfqq = bic_to_bfqq\n -\u003e get bfqq2 from BIC1\n bfqq-\u003eref++\n rq-\u003eelv.priv[0] = bic\n rq-\u003eelv.priv[1] = bfqq\n if (bfqq_process_refs(bfqq) == 1)\n bfqq-\u003ebic = bic\n -\u003e record BIC1 to bfqq2\n\n __bfq_insert_request\n new_bfqq = bfq_setup_cooperator\n -\u003e get bfqq3 from bfqq2-\u003enew_bfqq\n bfqq_request_freed(bfqq)\n new_bfqq-\u003eref++\n rq-\u003eelv.priv[1] = new_bfqq\n -\u003e handle IO by bfqq3\n\nFix the problem by checking bfqq is from merge chain fist. And this\nmight fix a following problem reported by our syzkaller(unreproducible):\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfq_do_early_stable_merge block/bfq-iosched.c:5692 [inline]\nBUG: KASAN: slab-use-after-free in bfq_do_or_sched_stable_merge block/bfq-iosched.c:5805 [inline]\nBUG: KASAN: slab-use-after-free in bfq_get_queue+0x25b0/0x2610 block/bfq-iosched.c:5889\nWrite of size 1 at addr ffff888123839eb8 by task kworker/0:1H/18595\n\nCPU: 0 PID: 18595 Comm: kworker/0:1H Tainted: G L 6.6.0-07439-gba2303cacfda #6\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\nWorkqueue: kblockd blk_mq_requeue_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x91/0xf0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:364 [inline]\n print_report+0x10d/0x610 mm/kasan/report.c:475\n kasan_report+0x8e/0xc0 mm/kasan/report.c:588\n bfq_do_early_stable_merge block/bfq-iosched.c:5692 [inline]\n bfq_do_or_sched_stable_merge block/bfq-iosched.c:5805 [inline]\n bfq_get_queue+0x25b0/0x2610 block/bfq-iosched.c:5889\n bfq_get_bfqq_handle_split+0x169/0x5d0 block/bfq-iosched.c:6757\n bfq_init_rq block/bfq-iosched.c:6876 [inline]\n bfq_insert_request block/bfq-iosched.c:6254 [inline]\n bfq_insert_requests+0x1112/0x5cf0 block/bfq-iosched.c:6304\n blk_mq_insert_request+0x290/0x8d0 block/blk-mq.c:2593\n blk_mq_requeue_work+0x6bc/0xa70 block/blk-mq.c:1502\n process_one_work kernel/workqueue.c:2627 [inline]\n process_scheduled_works+0x432/0x13f0 kernel/workqueue.c:2700\n worker_thread+0x6f2/0x1160 kernel/workqueue.c:2781\n kthread+0x33c/0x440 kernel/kthread.c:388\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:305\n \u003c/TASK\u003e\n\nAllocated by task 20776:\n kasan_save_stack+0x20/0x40 mm/kasan/common.c:45\n kasan_set_track+0x25/0x30 mm/kasan/common.c:52\n __kasan_slab_alloc+0x87/0x90 mm/kasan/common.c:328\n kasan_slab_alloc include/linux/kasan.h:188 [inline]\n slab_post_alloc_hook mm/slab.h:763 [inline]\n slab_alloc_node mm/slub.c:3458 [inline]\n kmem_cache_alloc_node+0x1a4/0x6f0 mm/slub.c:3503\n ioc_create_icq block/blk-ioc.c:370 [inline]\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47706",
"url": "https://www.suse.com/security/cve/CVE-2024-47706"
},
{
"category": "external",
"summary": "SUSE Bug 1231942 for CVE-2024-47706",
"url": "https://bugzilla.suse.com/1231942"
},
{
"category": "external",
"summary": "SUSE Bug 1231943 for CVE-2024-47706",
"url": "https://bugzilla.suse.com/1231943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47706"
},
{
"cve": "CVE-2024-47707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()\n\nBlamed commit accidentally removed a check for rt-\u003ert6i_idev being NULL,\nas spotted by syzbot:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 UID: 0 PID: 10998 Comm: syz-executor Not tainted 6.11.0-rc6-syzkaller-00208-g625403177711 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\n RIP: 0010:rt6_uncached_list_flush_dev net/ipv6/route.c:177 [inline]\n RIP: 0010:rt6_disable_ip+0x33e/0x7e0 net/ipv6/route.c:4914\nCode: 41 80 3c 04 00 74 0a e8 90 d0 9b f7 48 8b 7c 24 08 48 8b 07 48 89 44 24 10 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df \u003c80\u003e 3c 08 00 74 08 4c 89 f7 e8 64 d0 9b f7 48 8b 44 24 18 49 39 06\nRSP: 0018:ffffc900047374e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 1ffff1100fdf8f33 RCX: dffffc0000000000\nRDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88807efc78c0\nRBP: ffffc900047375d0 R08: 0000000000000003 R09: fffff520008e6e8c\nR10: dffffc0000000000 R11: fffff520008e6e8c R12: 1ffff1100fdf8f18\nR13: ffff88807efc7998 R14: 0000000000000000 R15: ffff88807efc7930\nFS: 0000000000000000(0000) GS:ffff8880b8900000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020002a80 CR3: 0000000022f62000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n addrconf_ifdown+0x15d/0x1bd0 net/ipv6/addrconf.c:3856\n addrconf_notify+0x3cb/0x1020\n notifier_call_chain+0x19f/0x3e0 kernel/notifier.c:93\n call_netdevice_notifiers_extack net/core/dev.c:2032 [inline]\n call_netdevice_notifiers net/core/dev.c:2046 [inline]\n unregister_netdevice_many_notify+0xd81/0x1c40 net/core/dev.c:11352\n unregister_netdevice_many net/core/dev.c:11414 [inline]\n unregister_netdevice_queue+0x303/0x370 net/core/dev.c:11289\n unregister_netdevice include/linux/netdevice.h:3129 [inline]\n __tun_detach+0x6b9/0x1600 drivers/net/tun.c:685\n tun_detach drivers/net/tun.c:701 [inline]\n tun_chr_close+0x108/0x1b0 drivers/net/tun.c:3510\n __fput+0x24a/0x8a0 fs/file_table.c:422\n task_work_run+0x24f/0x310 kernel/task_work.c:228\n exit_task_work include/linux/task_work.h:40 [inline]\n do_exit+0xa2f/0x27f0 kernel/exit.c:882\n do_group_exit+0x207/0x2c0 kernel/exit.c:1031\n __do_sys_exit_group kernel/exit.c:1042 [inline]\n __se_sys_exit_group kernel/exit.c:1040 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1040\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f1acc77def9\nCode: Unable to access opcode bytes at 0x7f1acc77decf.\nRSP: 002b:00007ffeb26fa738 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1acc77def9\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043\nRBP: 00007f1acc7dd508 R08: 00007ffeb26f84d7 R09: 0000000000000003\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001\nR13: 0000000000000003 R14: 00000000ffffffff R15: 00007ffeb26fa8e0\n \u003c/TASK\u003e\nModules linked in:\n---[ end trace 0000000000000000 ]---\n RIP: 0010:rt6_uncached_list_flush_dev net/ipv6/route.c:177 [inline]\n RIP: 0010:rt6_disable_ip+0x33e/0x7e0 net/ipv6/route.c:4914\nCode: 41 80 3c 04 00 74 0a e8 90 d0 9b f7 48 8b 7c 24 08 48 8b 07 48 89 44 24 10 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df \u003c80\u003e 3c 08 00 74 08 4c 89 f7 e8 64 d0 9b f7 48 8b 44 24 18 49 39 06\nRSP: 0018:ffffc900047374e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 1ffff1100fdf8f33 RCX: dffffc0000000000\nRDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88807efc78c0\nR\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47707",
"url": "https://www.suse.com/security/cve/CVE-2024-47707"
},
{
"category": "external",
"summary": "SUSE Bug 1231935 for CVE-2024-47707",
"url": "https://bugzilla.suse.com/1231935"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47707"
},
{
"cve": "CVE-2024-47708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47708"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetkit: Assign missing bpf_net_context\n\nDuring the introduction of struct bpf_net_context handling for\nXDP-redirect, the netkit driver has been missed, which also requires it\nbecause NETKIT_REDIRECT invokes skb_do_redirect() which is accessing the\nper-CPU variables. Otherwise we see the following crash:\n\n\tBUG: kernel NULL pointer dereference, address: 0000000000000038\n\tbpf_redirect()\n\tnetkit_xmit()\n\tdev_hard_start_xmit()\n\nSet the bpf_net_context before invoking netkit_xmit() program within the\nnetkit driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47708",
"url": "https://www.suse.com/security/cve/CVE-2024-47708"
},
{
"category": "external",
"summary": "SUSE Bug 1231933 for CVE-2024-47708",
"url": "https://bugzilla.suse.com/1231933"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47708"
},
{
"cve": "CVE-2024-47709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry().\n\nsyzbot reported a warning in bcm_release(). [0]\n\nThe blamed change fixed another warning that is triggered when\nconnect() is issued again for a socket whose connect()ed device has\nbeen unregistered.\n\nHowever, if the socket is just close()d without the 2nd connect(), the\nremaining bo-\u003ebcm_proc_read triggers unnecessary remove_proc_entry()\nin bcm_release().\n\nLet\u0027s clear bo-\u003ebcm_proc_read after remove_proc_entry() in bcm_notify().\n\n[0]\nname \u00274986\u0027\nWARNING: CPU: 0 PID: 5234 at fs/proc/generic.c:711 remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nModules linked in:\nCPU: 0 UID: 0 PID: 5234 Comm: syz-executor606 Not tainted 6.11.0-rc5-syzkaller-00178-g5517ae241919 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nRIP: 0010:remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nCode: ff eb 05 e8 cb 1e 5e ff 48 8b 5c 24 10 48 c7 c7 e0 f7 aa 8e e8 2a 38 8e 09 90 48 c7 c7 60 3a 1b 8c 48 89 de e8 da 42 20 ff 90 \u003c0f\u003e 0b 90 90 48 8b 44 24 18 48 c7 44 24 40 0e 36 e0 45 49 c7 04 07\nRSP: 0018:ffffc9000345fa20 EFLAGS: 00010246\nRAX: 2a2d0aee2eb64600 RBX: ffff888032f1f548 RCX: ffff888029431e00\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffc9000345fb08 R08: ffffffff8155b2f2 R09: 1ffff1101710519a\nR10: dffffc0000000000 R11: ffffed101710519b R12: ffff888011d38640\nR13: 0000000000000004 R14: 0000000000000000 R15: dffffc0000000000\nFS: 0000000000000000(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fcfb52722f0 CR3: 000000000e734000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n bcm_release+0x250/0x880 net/can/bcm.c:1578\n __sock_release net/socket.c:659 [inline]\n sock_close+0xbc/0x240 net/socket.c:1421\n __fput+0x24a/0x8a0 fs/file_table.c:422\n task_work_run+0x24f/0x310 kernel/task_work.c:228\n exit_task_work include/linux/task_work.h:40 [inline]\n do_exit+0xa2f/0x27f0 kernel/exit.c:882\n do_group_exit+0x207/0x2c0 kernel/exit.c:1031\n __do_sys_exit_group kernel/exit.c:1042 [inline]\n __se_sys_exit_group kernel/exit.c:1040 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1040\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fcfb51ee969\nCode: Unable to access opcode bytes at 0x7fcfb51ee93f.\nRSP: 002b:00007ffce0109ca8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fcfb51ee969\nRDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001\nRBP: 00007fcfb526f3b0 R08: ffffffffffffffb8 R09: 0000555500000000\nR10: 0000555500000000 R11: 0000000000000246 R12: 00007fcfb526f3b0\nR13: 0000000000000000 R14: 00007fcfb5271ee0 R15: 00007fcfb51bf160\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47709",
"url": "https://www.suse.com/security/cve/CVE-2024-47709"
},
{
"category": "external",
"summary": "SUSE Bug 1232048 for CVE-2024-47709",
"url": "https://bugzilla.suse.com/1232048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47709"
},
{
"cve": "CVE-2024-47710",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47710"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsock_map: Add a cond_resched() in sock_hash_free()\n\nSeveral syzbot soft lockup reports all have in common sock_hash_free()\n\nIf a map with a large number of buckets is destroyed, we need to yield\nthe cpu when needed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47710",
"url": "https://www.suse.com/security/cve/CVE-2024-47710"
},
{
"category": "external",
"summary": "SUSE Bug 1232049 for CVE-2024-47710",
"url": "https://bugzilla.suse.com/1232049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47710"
},
{
"cve": "CVE-2024-47711",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47711"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Don\u0027t return OOB skb in manage_oob().\n\nsyzbot reported use-after-free in unix_stream_recv_urg(). [0]\n\nThe scenario is\n\n 1. send(MSG_OOB)\n 2. recv(MSG_OOB)\n -\u003e The consumed OOB remains in recv queue\n 3. send(MSG_OOB)\n 4. recv()\n -\u003e manage_oob() returns the next skb of the consumed OOB\n -\u003e This is also OOB, but unix_sk(sk)-\u003eoob_skb is not cleared\n 5. recv(MSG_OOB)\n -\u003e unix_sk(sk)-\u003eoob_skb is used but already freed\n\nThe recent commit 8594d9b85c07 (\"af_unix: Don\u0027t call skb_get() for OOB\nskb.\") uncovered the issue.\n\nIf the OOB skb is consumed and the next skb is peeked in manage_oob(),\nwe still need to check if the skb is OOB.\n\nLet\u0027s do so by falling back to the following checks in manage_oob()\nand add the test case in selftest.\n\nNote that we need to add a similar check for SIOCATMARK.\n\n[0]:\nBUG: KASAN: slab-use-after-free in unix_stream_read_actor+0xa6/0xb0 net/unix/af_unix.c:2959\nRead of size 4 at addr ffff8880326abcc4 by task syz-executor178/5235\n\nCPU: 0 UID: 0 PID: 5235 Comm: syz-executor178 Not tainted 6.11.0-rc5-syzkaller-00742-gfbdaffe41adc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n unix_stream_read_actor+0xa6/0xb0 net/unix/af_unix.c:2959\n unix_stream_recv_urg+0x1df/0x320 net/unix/af_unix.c:2640\n unix_stream_read_generic+0x2456/0x2520 net/unix/af_unix.c:2778\n unix_stream_recvmsg+0x22b/0x2c0 net/unix/af_unix.c:2996\n sock_recvmsg_nosec net/socket.c:1046 [inline]\n sock_recvmsg+0x22f/0x280 net/socket.c:1068\n ____sys_recvmsg+0x1db/0x470 net/socket.c:2816\n ___sys_recvmsg net/socket.c:2858 [inline]\n __sys_recvmsg+0x2f0/0x3e0 net/socket.c:2888\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f5360d6b4e9\nCode: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff29b3a458 EFLAGS: 00000246 ORIG_RAX: 000000000000002f\nRAX: ffffffffffffffda RBX: 00007fff29b3a638 RCX: 00007f5360d6b4e9\nRDX: 0000000000002001 RSI: 0000000020000640 RDI: 0000000000000003\nRBP: 00007f5360dde610 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001\nR13: 00007fff29b3a628 R14: 0000000000000001 R15: 0000000000000001\n \u003c/TASK\u003e\n\nAllocated by task 5235:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:312 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:338\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3988 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_node_noprof+0x16b/0x320 mm/slub.c:4080\n __alloc_skb+0x1c3/0x440 net/core/skbuff.c:667\n alloc_skb include/linux/skbuff.h:1320 [inline]\n alloc_skb_with_frags+0xc3/0x770 net/core/skbuff.c:6528\n sock_alloc_send_pskb+0x91a/0xa60 net/core/sock.c:2815\n sock_alloc_send_skb include/net/sock.h:1778 [inline]\n queue_oob+0x108/0x680 net/unix/af_unix.c:2198\n unix_stream_sendmsg+0xd24/0xf80 net/unix/af_unix.c:2351\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2680\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5235:\n kasan_save_stack mm/kasan/common.c:47\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47711",
"url": "https://www.suse.com/security/cve/CVE-2024-47711"
},
{
"category": "external",
"summary": "SUSE Bug 1232054 for CVE-2024-47711",
"url": "https://bugzilla.suse.com/1232054"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47711"
},
{
"cve": "CVE-2024-47712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47712"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param\n\nIn the `wilc_parse_join_bss_param` function, the TSF field of the `ies`\nstructure is accessed after the RCU read-side critical section is\nunlocked. According to RCU usage rules, this is illegal. Reusing this\npointer can lead to unpredictable behavior, including accessing memory\nthat has been updated or causing use-after-free issues.\n\nThis possible bug was identified using a static analysis tool developed\nby myself, specifically designed to detect RCU-related issues.\n\nTo address this, the TSF value is now stored in a local variable\n`ies_tsf` before the RCU lock is released. The `param-\u003etsf_lo` field is\nthen assigned using this local variable, ensuring that the TSF value is\nsafely accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47712",
"url": "https://www.suse.com/security/cve/CVE-2024-47712"
},
{
"category": "external",
"summary": "SUSE Bug 1232017 for CVE-2024-47712",
"url": "https://bugzilla.suse.com/1232017"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47712"
},
{
"cve": "CVE-2024-47713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47713"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()\n\nSince \u0027__dev_queue_xmit()\u0027 should be called with interrupts enabled,\nthe following backtrace:\n\nieee80211_do_stop()\n ...\n spin_lock_irqsave(\u0026local-\u003equeue_stop_reason_lock, flags)\n ...\n ieee80211_free_txskb()\n ieee80211_report_used_skb()\n ieee80211_report_ack_skb()\n cfg80211_mgmt_tx_status_ext()\n nl80211_frame_tx_status()\n genlmsg_multicast_netns()\n genlmsg_multicast_netns_filtered()\n nlmsg_multicast_filtered()\n\t netlink_broadcast_filtered()\n\t do_one_broadcast()\n\t netlink_broadcast_deliver()\n\t __netlink_sendskb()\n\t netlink_deliver_tap()\n\t __netlink_deliver_tap_skb()\n\t dev_queue_xmit()\n\t __dev_queue_xmit() ; with IRQS disabled\n ...\n spin_unlock_irqrestore(\u0026local-\u003equeue_stop_reason_lock, flags)\n\nissues the warning (as reported by syzbot reproducer):\n\nWARNING: CPU: 2 PID: 5128 at kernel/softirq.c:362 __local_bh_enable_ip+0xc3/0x120\n\nFix this by implementing a two-phase skb reclamation in\n\u0027ieee80211_do_stop()\u0027, where actual work is performed\noutside of a section with interrupts disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47713",
"url": "https://www.suse.com/security/cve/CVE-2024-47713"
},
{
"category": "external",
"summary": "SUSE Bug 1232016 for CVE-2024-47713",
"url": "https://bugzilla.suse.com/1232016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47713"
},
{
"cve": "CVE-2024-47714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7996: use hweight16 to get correct tx antenna\n\nThe chainmask is u16 so using hweight8 cannot get correct tx_ant.\nWithout this patch, the tx_ant of band 2 would be -1 and lead to the\nfollowing issue:\nBUG: KASAN: stack-out-of-bounds in mt7996_mcu_add_sta+0x12e0/0x16e0 [mt7996e]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47714",
"url": "https://www.suse.com/security/cve/CVE-2024-47714"
},
{
"category": "external",
"summary": "SUSE Bug 1232018 for CVE-2024-47714",
"url": "https://bugzilla.suse.com/1232018"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47714"
},
{
"cve": "CVE-2024-47715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7915: fix oops on non-dbdc mt7986\n\nmt7915_band_config() sets band_idx = 1 on the main phy for mt7986\nwith MT7975_ONE_ADIE or MT7976_ONE_ADIE.\n\nCommit 0335c034e726 (\"wifi: mt76: fix race condition related to\nchecking tx queue fill status\") introduced a dereference of the\nphys array indirectly indexed by band_idx via wcid-\u003ephy_idx in\nmt76_wcid_cleanup(). This caused the following Oops on affected\nmt7986 devices:\n\n Unable to handle kernel read from unreadable memory at virtual address 0000000000000024\n Mem abort info:\n ESR = 0x0000000096000005\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x05: level 1 translation fault\n Data abort info:\n ISV = 0, ISS = 0x00000005\n CM = 0, WnR = 0\n user pgtable: 4k pages, 39-bit VAs, pgdp=0000000042545000\n [0000000000000024] pgd=0000000000000000, p4d=0000000000000000, pud=0000000000000000\n Internal error: Oops: 0000000096000005 [#1] SMP\n Modules linked in: ... mt7915e mt76_connac_lib mt76 mac80211 cfg80211 ...\n CPU: 2 PID: 1631 Comm: hostapd Not tainted 5.15.150 #0\n Hardware name: ZyXEL EX5700 (Telenor) (DT)\n pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : mt76_wcid_cleanup+0x84/0x22c [mt76]\n lr : mt76_wcid_cleanup+0x64/0x22c [mt76]\n sp : ffffffc00a803700\n x29: ffffffc00a803700 x28: ffffff80008f7300 x27: ffffff80003f3c00\n x26: ffffff80000a7880 x25: ffffffc008c26e00 x24: 0000000000000001\n x23: ffffffc000a68114 x22: 0000000000000000 x21: ffffff8004172cc8\n x20: ffffffc00a803748 x19: ffffff8004152020 x18: 0000000000000000\n x17: 00000000000017c0 x16: ffffffc008ef5000 x15: 0000000000000be0\n x14: ffffff8004172e28 x13: ffffff8004172e28 x12: 0000000000000000\n x11: 0000000000000000 x10: ffffff8004172e30 x9 : ffffff8004172e28\n x8 : 0000000000000000 x7 : ffffff8004156020 x6 : 0000000000000000\n x5 : 0000000000000031 x4 : 0000000000000000 x3 : 0000000000000001\n x2 : 0000000000000000 x1 : ffffff80008f7300 x0 : 0000000000000024\n Call trace:\n mt76_wcid_cleanup+0x84/0x22c [mt76]\n __mt76_sta_remove+0x70/0xbc [mt76]\n mt76_sta_state+0x8c/0x1a4 [mt76]\n mt7915_eeprom_get_power_delta+0x11e4/0x23a0 [mt7915e]\n drv_sta_state+0x144/0x274 [mac80211]\n sta_info_move_state+0x1cc/0x2a4 [mac80211]\n sta_set_sinfo+0xaf8/0xc24 [mac80211]\n sta_info_destroy_addr_bss+0x4c/0x6c [mac80211]\n\n ieee80211_color_change_finish+0x1c08/0x1e70 [mac80211]\n cfg80211_check_station_change+0x1360/0x4710 [cfg80211]\n genl_family_rcv_msg_doit+0xb4/0x110\n genl_rcv_msg+0xd0/0x1bc\n netlink_rcv_skb+0x58/0x120\n genl_rcv+0x34/0x50\n netlink_unicast+0x1f0/0x2ec\n netlink_sendmsg+0x198/0x3d0\n ____sys_sendmsg+0x1b0/0x210\n ___sys_sendmsg+0x80/0xf0\n __sys_sendmsg+0x44/0xa0\n __arm64_sys_sendmsg+0x20/0x30\n invoke_syscall.constprop.0+0x4c/0xe0\n do_el0_svc+0x40/0xd0\n el0_svc+0x14/0x4c\n el0t_64_sync_handler+0x100/0x110\n el0t_64_sync+0x15c/0x160\n Code: d2800002 910092c0 52800023 f9800011 (885f7c01)\n ---[ end trace 7e42dd9a39ed2281 ]---\n\nFix by using mt76_dev_phy() which will map band_idx to the correct phy\nfor all hardware combinations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47715",
"url": "https://www.suse.com/security/cve/CVE-2024-47715"
},
{
"category": "external",
"summary": "SUSE Bug 1231860 for CVE-2024-47715",
"url": "https://bugzilla.suse.com/1231860"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47715"
},
{
"cve": "CVE-2024-47716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nARM: 9410/1: vfp: Use asm volatile in fmrx/fmxr macros\n\nFloating point instructions in userspace can crash some arm kernels\nbuilt with clang/LLD 17.0.6:\n\n BUG: unsupported FP instruction in kernel mode\n FPEXC == 0xc0000780\n Internal error: Oops - undefined instruction: 0 [#1] ARM\n CPU: 0 PID: 196 Comm: vfp-reproducer Not tainted 6.10.0 #1\n Hardware name: BCM2835\n PC is at vfp_support_entry+0xc8/0x2cc\n LR is at do_undefinstr+0xa8/0x250\n pc : [\u003cc0101d50\u003e] lr : [\u003cc010a80c\u003e] psr: a0000013\n sp : dc8d1f68 ip : 60000013 fp : bedea19c\n r10: ec532b17 r9 : 00000010 r8 : 0044766c\n r7 : c0000780 r6 : ec532b17 r5 : c1c13800 r4 : dc8d1fb0\n r3 : c10072c4 r2 : c0101c88 r1 : ec532b17 r0 : 0044766c\n Flags: NzCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none\n Control: 00c5387d Table: 0251c008 DAC: 00000051\n Register r0 information: non-paged memory\n Register r1 information: vmalloc memory\n Register r2 information: non-slab/vmalloc memory\n Register r3 information: non-slab/vmalloc memory\n Register r4 information: 2-page vmalloc region\n Register r5 information: slab kmalloc-cg-2k\n Register r6 information: vmalloc memory\n Register r7 information: non-slab/vmalloc memory\n Register r8 information: non-paged memory\n Register r9 information: zero-size pointer\n Register r10 information: vmalloc memory\n Register r11 information: non-paged memory\n Register r12 information: non-paged memory\n Process vfp-reproducer (pid: 196, stack limit = 0x61aaaf8b)\n Stack: (0xdc8d1f68 to 0xdc8d2000)\n 1f60: 0000081f b6f69300 0000000f c10073f4 c10072c4 dc8d1fb0\n 1f80: ec532b17 0c532b17 0044766c b6f9ccd8 00000000 c010a80c 00447670 60000010\n 1fa0: ffffffff c1c13800 00c5387d c0100f10 b6f68af8 00448fc0 00000000 bedea188\n 1fc0: bedea314 00000001 00448ebc b6f9d000 00447608 b6f9ccd8 00000000 bedea19c\n 1fe0: bede9198 bedea188 b6e1061c 0044766c 60000010 ffffffff 00000000 00000000\n Call trace:\n [\u003cc0101d50\u003e] (vfp_support_entry) from [\u003cc010a80c\u003e] (do_undefinstr+0xa8/0x250)\n [\u003cc010a80c\u003e] (do_undefinstr) from [\u003cc0100f10\u003e] (__und_usr+0x70/0x80)\n Exception stack(0xdc8d1fb0 to 0xdc8d1ff8)\n 1fa0: b6f68af8 00448fc0 00000000 bedea188\n 1fc0: bedea314 00000001 00448ebc b6f9d000 00447608 b6f9ccd8 00000000 bedea19c\n 1fe0: bede9198 bedea188 b6e1061c 0044766c 60000010 ffffffff\n Code: 0a000061 e3877202 e594003c e3a09010 (eef16a10)\n ---[ end trace 0000000000000000 ]---\n Kernel panic - not syncing: Fatal exception in interrupt\n ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---\n\nThis is a minimal userspace reproducer on a Raspberry Pi Zero W:\n\n #include \u003cstdio.h\u003e\n #include \u003cmath.h\u003e\n\n int main(void)\n {\n double v = 1.0;\n printf(\"%fn\", NAN + *(volatile double *)\u0026v);\n return 0;\n }\n\nAnother way to consistently trigger the oops is:\n\n calvin@raspberry-pi-zero-w ~$ python -c \"import json\"\n\nThe bug reproduces only when the kernel is built with DYNAMIC_DEBUG=n,\nbecause the pr_debug() calls act as barriers even when not activated.\n\nThis is the output from the same kernel source built with the same\ncompiler and DYNAMIC_DEBUG=y, where the userspace reproducer works as\nexpected:\n\n VFP: bounce: trigger ec532b17 fpexc c0000780\n VFP: emulate: INST=0xee377b06 SCR=0x00000000\n VFP: bounce: trigger eef1fa10 fpexc c0000780\n VFP: emulate: INST=0xeeb40b40 SCR=0x00000000\n VFP: raising exceptions 30000000\n\n calvin@raspberry-pi-zero-w ~$ ./vfp-reproducer\n nan\n\nCrudely grepping for vmsr/vmrs instructions in the otherwise nearly\nidential text for vfp_support_entry() makes the problem obvious:\n\n vmlinux.llvm.good [0xc0101cb8] \u003c+48\u003e: vmrs r7, fpexc\n vmlinux.llvm.good [0xc0101cd8] \u003c+80\u003e: vmsr fpexc, r0\n vmlinux.llvm.good [0xc0101d20\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47716",
"url": "https://www.suse.com/security/cve/CVE-2024-47716"
},
{
"category": "external",
"summary": "SUSE Bug 1232053 for CVE-2024-47716",
"url": "https://bugzilla.suse.com/1232053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47716"
},
{
"cve": "CVE-2024-47717",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47717"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRISC-V: KVM: Don\u0027t zero-out PMU snapshot area before freeing data\n\nWith the latest Linux-6.11-rc3, the below NULL pointer crash is observed\nwhen SBI PMU snapshot is enabled for the guest and the guest is forcefully\npowered-off.\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000508\n Oops [#1]\n Modules linked in: kvm\n CPU: 0 UID: 0 PID: 61 Comm: term-poll Not tainted 6.11.0-rc3-00018-g44d7178dd77a #3\n Hardware name: riscv-virtio,qemu (DT)\n epc : __kvm_write_guest_page+0x94/0xa6 [kvm]\n ra : __kvm_write_guest_page+0x54/0xa6 [kvm]\n epc : ffffffff01590e98 ra : ffffffff01590e58 sp : ffff8f80001f39b0\n gp : ffffffff81512a60 tp : ffffaf80024872c0 t0 : ffffaf800247e000\n t1 : 00000000000007e0 t2 : 0000000000000000 s0 : ffff8f80001f39f0\n s1 : 00007fff89ac4000 a0 : ffffffff015dd7e8 a1 : 0000000000000086\n a2 : 0000000000000000 a3 : ffffaf8000000000 a4 : ffffaf80024882c0\n a5 : 0000000000000000 a6 : ffffaf800328d780 a7 : 00000000000001cc\n s2 : ffffaf800197bd00 s3 : 00000000000828c4 s4 : ffffaf800248c000\n s5 : ffffaf800247d000 s6 : 0000000000001000 s7 : 0000000000001000\n s8 : 0000000000000000 s9 : 00007fff861fd500 s10: 0000000000000001\n s11: 0000000000800000 t3 : 00000000000004d3 t4 : 00000000000004d3\n t5 : ffffffff814126e0 t6 : ffffffff81412700\n status: 0000000200000120 badaddr: 0000000000000508 cause: 000000000000000d\n [\u003cffffffff01590e98\u003e] __kvm_write_guest_page+0x94/0xa6 [kvm]\n [\u003cffffffff015943a6\u003e] kvm_vcpu_write_guest+0x56/0x90 [kvm]\n [\u003cffffffff015a175c\u003e] kvm_pmu_clear_snapshot_area+0x42/0x7e [kvm]\n [\u003cffffffff015a1972\u003e] kvm_riscv_vcpu_pmu_deinit.part.0+0xe0/0x14e [kvm]\n [\u003cffffffff015a2ad0\u003e] kvm_riscv_vcpu_pmu_deinit+0x1a/0x24 [kvm]\n [\u003cffffffff0159b344\u003e] kvm_arch_vcpu_destroy+0x28/0x4c [kvm]\n [\u003cffffffff0158e420\u003e] kvm_destroy_vcpus+0x5a/0xda [kvm]\n [\u003cffffffff0159930c\u003e] kvm_arch_destroy_vm+0x14/0x28 [kvm]\n [\u003cffffffff01593260\u003e] kvm_destroy_vm+0x168/0x2a0 [kvm]\n [\u003cffffffff015933d4\u003e] kvm_put_kvm+0x3c/0x58 [kvm]\n [\u003cffffffff01593412\u003e] kvm_vm_release+0x22/0x2e [kvm]\n\nClearly, the kvm_vcpu_write_guest() function is crashing because it is\nbeing called from kvm_pmu_clear_snapshot_area() upon guest tear down.\n\nTo address the above issue, simplify the kvm_pmu_clear_snapshot_area() to\nnot zero-out PMU snapshot area from kvm_pmu_clear_snapshot_area() because\nthe guest is anyway being tore down.\n\nThe kvm_pmu_clear_snapshot_area() is also called when guest changes\nPMU snapshot area of a VCPU but even in this case the previous PMU\nsnaphsot area must not be zeroed-out because the guest might have\nreclaimed the pervious PMU snapshot area for some other purpose.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47717",
"url": "https://www.suse.com/security/cve/CVE-2024-47717"
},
{
"category": "external",
"summary": "SUSE Bug 1232041 for CVE-2024-47717",
"url": "https://bugzilla.suse.com/1232041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47717"
},
{
"cve": "CVE-2024-47718",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47718"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: always wait for both firmware loading attempts\n\nIn \u0027rtw_wait_firmware_completion()\u0027, always wait for both (regular and\nwowlan) firmware loading attempts. Otherwise if \u0027rtw_usb_intf_init()\u0027\nhas failed in \u0027rtw_usb_probe()\u0027, \u0027rtw_usb_disconnect()\u0027 may issue\n\u0027ieee80211_free_hw()\u0027 when one of \u0027rtw_load_firmware_cb()\u0027 (usually\nthe wowlan one) is still in progress, causing UAF detected by KASAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47718",
"url": "https://www.suse.com/security/cve/CVE-2024-47718"
},
{
"category": "external",
"summary": "SUSE Bug 1232015 for CVE-2024-47718",
"url": "https://bugzilla.suse.com/1232015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47718"
},
{
"cve": "CVE-2024-47719",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47719"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Protect against overflow of ALIGN() during iova allocation\n\nUserspace can supply an iova and uptr such that the target iova alignment\nbecomes really big and ALIGN() overflows which corrupts the selected area\nrange during allocation. CONFIG_IOMMUFD_TEST can detect this:\n\n WARNING: CPU: 1 PID: 5092 at drivers/iommu/iommufd/io_pagetable.c:268 iopt_alloc_area_pages drivers/iommu/iommufd/io_pagetable.c:268 [inline]\n WARNING: CPU: 1 PID: 5092 at drivers/iommu/iommufd/io_pagetable.c:268 iopt_map_pages+0xf95/0x1050 drivers/iommu/iommufd/io_pagetable.c:352\n Modules linked in:\n CPU: 1 PID: 5092 Comm: syz-executor294 Not tainted 6.10.0-rc5-syzkaller-00294-g3ffea9a7a6f7 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n RIP: 0010:iopt_alloc_area_pages drivers/iommu/iommufd/io_pagetable.c:268 [inline]\n RIP: 0010:iopt_map_pages+0xf95/0x1050 drivers/iommu/iommufd/io_pagetable.c:352\n Code: fc e9 a4 f3 ff ff e8 1a 8b 4c fc 41 be e4 ff ff ff e9 8a f3 ff ff e8 0a 8b 4c fc 90 0f 0b 90 e9 37 f5 ff ff e8 fc 8a 4c fc 90 \u003c0f\u003e 0b 90 e9 68 f3 ff ff 48 c7 c1 ec 82 ad 8f 80 e1 07 80 c1 03 38\n RSP: 0018:ffffc90003ebf9e0 EFLAGS: 00010293\n RAX: ffffffff85499fa4 RBX: 00000000ffffffef RCX: ffff888079b49e00\n RDX: 0000000000000000 RSI: 00000000ffffffef RDI: 0000000000000000\n RBP: ffffc90003ebfc50 R08: ffffffff85499b30 R09: ffffffff85499942\n R10: 0000000000000002 R11: ffff888079b49e00 R12: ffff8880228e0010\n R13: 0000000000000000 R14: 1ffff920007d7f68 R15: ffffc90003ebfd00\n FS: 000055557d760380(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00000000005fdeb8 CR3: 000000007404a000 CR4: 00000000003506f0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n iommufd_ioas_copy+0x610/0x7b0 drivers/iommu/iommufd/ioas.c:274\n iommufd_fops_ioctl+0x4d9/0x5a0 drivers/iommu/iommufd/main.c:421\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCap the automatic alignment to the huge page size, which is probably a\nbetter idea overall. Huge automatic alignments can fragment and chew up\nthe available IOVA space without any reason.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47719",
"url": "https://www.suse.com/security/cve/CVE-2024-47719"
},
{
"category": "external",
"summary": "SUSE Bug 1231865 for CVE-2024-47719",
"url": "https://bugzilla.suse.com/1231865"
},
{
"category": "external",
"summary": "SUSE Bug 1231866 for CVE-2024-47719",
"url": "https://bugzilla.suse.com/1231866"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47719"
},
{
"cve": "CVE-2024-47720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47720"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn30_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for nullity at line 386, but then it\nwas being dereferenced without any nullity check at line 401. This\ncould potentially lead to a null pointer dereference error if\nset_output_gamma is indeed null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a nullity check for\nset_output_gamma before the call to set_output_gamma at line 401. If\nset_output_gamma is null, we log an error message and do not call the\nfunction.\n\nThis fix prevents a potential null pointer dereference error.\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:401 dcn30_set_output_transfer_func()\nerror: we previously assumed \u0027mpc-\u003efuncs-\u003eset_output_gamma\u0027 could be null (see line 386)\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c\n 373 bool dcn30_set_output_transfer_func(struct dc *dc,\n 374 struct pipe_ctx *pipe_ctx,\n 375 const struct dc_stream_state *stream)\n 376 {\n 377 int mpcc_id = pipe_ctx-\u003eplane_res.hubp-\u003einst;\n 378 struct mpc *mpc = pipe_ctx-\u003estream_res.opp-\u003ectx-\u003edc-\u003eres_pool-\u003empc;\n 379 const struct pwl_params *params = NULL;\n 380 bool ret = false;\n 381\n 382 /* program OGAM or 3DLUT only for the top pipe*/\n 383 if (pipe_ctx-\u003etop_pipe == NULL) {\n 384 /*program rmu shaper and 3dlut in MPC*/\n 385 ret = dcn30_set_mpc_shaper_3dlut(pipe_ctx, stream);\n 386 if (ret == false \u0026\u0026 mpc-\u003efuncs-\u003eset_output_gamma) {\n ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ If this is NULL\n\n 387 if (stream-\u003eout_transfer_func.type == TF_TYPE_HWPWL)\n 388 params = \u0026stream-\u003eout_transfer_func.pwl;\n 389 else if (pipe_ctx-\u003estream-\u003eout_transfer_func.type ==\n 390 TF_TYPE_DISTRIBUTED_POINTS \u0026\u0026\n 391 cm3_helper_translate_curve_to_hw_format(\n 392 \u0026stream-\u003eout_transfer_func,\n 393 \u0026mpc-\u003eblender_params, false))\n 394 params = \u0026mpc-\u003eblender_params;\n 395 /* there are no ROM LUTs in OUTGAM */\n 396 if (stream-\u003eout_transfer_func.type == TF_TYPE_PREDEFINED)\n 397 BREAK_TO_DEBUGGER();\n 398 }\n 399 }\n 400\n--\u003e 401 mpc-\u003efuncs-\u003eset_output_gamma(mpc, mpcc_id, params);\n ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ Then it will crash\n\n 402 return ret;\n 403 }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47720",
"url": "https://www.suse.com/security/cve/CVE-2024-47720"
},
{
"category": "external",
"summary": "SUSE Bug 1232043 for CVE-2024-47720",
"url": "https://bugzilla.suse.com/1232043"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47720"
},
{
"cve": "CVE-2024-47721",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47721"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: remove unused C2H event ID RTW89_MAC_C2H_FUNC_READ_WOW_CAM to prevent out-of-bounds reading\n\nThe handler of firmware C2H event RTW89_MAC_C2H_FUNC_READ_WOW_CAM isn\u0027t\nimplemented, but driver expects number of handlers is\nNUM_OF_RTW89_MAC_C2H_FUNC_WOW causing out-of-bounds access. Fix it by\nremoving ID.\n\nAddresses-Coverity-ID: 1598775 (\"Out-of-bounds read\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47721",
"url": "https://www.suse.com/security/cve/CVE-2024-47721"
},
{
"category": "external",
"summary": "SUSE Bug 1232052 for CVE-2024-47721",
"url": "https://bugzilla.suse.com/1232052"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47721"
},
{
"cve": "CVE-2024-47723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix out-of-bounds in dbNextAG() and diAlloc()\n\nIn dbNextAG() , there is no check for the case where bmp-\u003edb_numag is\ngreater or same than MAXAG due to a polluted image, which causes an\nout-of-bounds. Therefore, a bounds check should be added in dbMount().\n\nAnd in dbNextAG(), a check for the case where agpref is greater than\nbmp-\u003edb_numag should be added, so an out-of-bounds exception should be\nprevented.\n\nAdditionally, a check for the case where agno is greater or same than\nMAXAG should be added in diAlloc() to prevent out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47723",
"url": "https://www.suse.com/security/cve/CVE-2024-47723"
},
{
"category": "external",
"summary": "SUSE Bug 1232050 for CVE-2024-47723",
"url": "https://bugzilla.suse.com/1232050"
},
{
"category": "external",
"summary": "SUSE Bug 1232051 for CVE-2024-47723",
"url": "https://bugzilla.suse.com/1232051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47723"
},
{
"cve": "CVE-2024-47724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: use work queue to process beacon tx event\n\nCommit 3a415daa3e8b (\"wifi: ath11k: add P2P IE in beacon template\")\nfrom Feb 28, 2024 (linux-next), leads to the following Smatch static\nchecker warning:\n\ndrivers/net/wireless/ath/ath11k/wmi.c:1742 ath11k_wmi_p2p_go_bcn_ie()\nwarn: sleeping in atomic context\n\nThe reason is that ath11k_bcn_tx_status_event() will directly call might\nsleep function ath11k_wmi_cmd_send() during RCU read-side critical\nsections. The call trace is like:\n\nath11k_bcn_tx_status_event()\n-\u003e rcu_read_lock()\n-\u003e ath11k_mac_bcn_tx_event()\n\t-\u003e ath11k_mac_setup_bcn_tmpl()\n\t\u2026\u2026\n\t\t-\u003e ath11k_wmi_bcn_tmpl()\n\t\t\t-\u003e ath11k_wmi_cmd_send()\n-\u003e rcu_read_unlock()\n\nCommit 886433a98425 (\"ath11k: add support for BSS color change\") added the\nath11k_mac_bcn_tx_event(), commit 01e782c89108 (\"ath11k: fix warning\nof RCU usage for ath11k_mac_get_arvif_by_vdev_id()\") added the RCU lock\nto avoid warning but also introduced this BUG.\n\nUse work queue to avoid directly calling ath11k_mac_bcn_tx_event()\nduring RCU critical sections. No need to worry about the deletion of vif\nbecause cancel_work_sync() will drop the work if it doesn\u0027t start or\nblock vif deletion until the running work is done.\n\nTested-on: WCN6855 hw2.0 PCI WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47724",
"url": "https://www.suse.com/security/cve/CVE-2024-47724"
},
{
"category": "external",
"summary": "SUSE Bug 1232073 for CVE-2024-47724",
"url": "https://bugzilla.suse.com/1232073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47724"
},
{
"cve": "CVE-2024-47726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to wait dio completion\n\nIt should wait all existing dio write IOs before block removal,\notherwise, previous direct write IO may overwrite data in the\nblock which may be reused by other inode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47726",
"url": "https://www.suse.com/security/cve/CVE-2024-47726"
},
{
"category": "external",
"summary": "SUSE Bug 1232113 for CVE-2024-47726",
"url": "https://bugzilla.suse.com/1232113"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47726"
},
{
"cve": "CVE-2024-47727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix \"in-kernel MMIO\" check\n\nTDX only supports kernel-initiated MMIO operations. The handle_mmio()\nfunction checks if the #VE exception occurred in the kernel and rejects\nthe operation if it did not.\n\nHowever, userspace can deceive the kernel into performing MMIO on its\nbehalf. For example, if userspace can point a syscall to an MMIO address,\nsyscall does get_user() or put_user() on it, triggering MMIO #VE. The\nkernel will treat the #VE as in-kernel MMIO.\n\nEnsure that the target MMIO address is within the kernel before decoding\ninstruction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47727",
"url": "https://www.suse.com/security/cve/CVE-2024-47727"
},
{
"category": "external",
"summary": "SUSE Bug 1232116 for CVE-2024-47727",
"url": "https://bugzilla.suse.com/1232116"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47727"
},
{
"cve": "CVE-2024-47728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error\n\nFor all non-tracing helpers which formerly had ARG_PTR_TO_{LONG,INT} as input\narguments, zero the value for the case of an error as otherwise it could leak\nmemory. For tracing, it is not needed given CAP_PERFMON can already read all\nkernel memory anyway hence bpf_get_func_arg() and bpf_get_func_ret() is skipped\nin here.\n\nAlso, the MTU helpers mtu_len pointer value is being written but also read.\nTechnically, the MEM_UNINIT should not be there in order to always force init.\nRemoving MEM_UNINIT needs more verifier rework though: MEM_UNINIT right now\nimplies two things actually: i) write into memory, ii) memory does not have\nto be initialized. If we lift MEM_UNINIT, it then becomes: i) read into memory,\nii) memory must be initialized. This means that for bpf_*_check_mtu() we\u0027re\nreadding the issue we\u0027re trying to fix, that is, it would then be able to\nwrite back into things like .rodata BPF maps. Follow-up work will rework the\nMEM_UNINIT semantics such that the intent can be better expressed. For now\njust clear the *mtu_len on error path which can be lifted later again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47728",
"url": "https://www.suse.com/security/cve/CVE-2024-47728"
},
{
"category": "external",
"summary": "SUSE Bug 1232076 for CVE-2024-47728",
"url": "https://bugzilla.suse.com/1232076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47728"
},
{
"cve": "CVE-2024-47729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Use reserved copy engine for user binds on faulting devices\n\nUser binds map to engines with can fault, faults depend on user binds\ncompletion, thus we can deadlock. Avoid this by using reserved copy\nengine for user binds on faulting devices.\n\nWhile we are here, normalize bind queue creation with a helper.\n\nv2:\n - Pass in extensions to bind queue creation (CI)\nv3:\n - s/resevered/reserved (Lucas)\n - Fix NULL hwe check (Jonathan)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47729",
"url": "https://www.suse.com/security/cve/CVE-2024-47729"
},
{
"category": "external",
"summary": "SUSE Bug 1232077 for CVE-2024-47729",
"url": "https://bugzilla.suse.com/1232077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47729"
},
{
"cve": "CVE-2024-47730",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47730"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: hisilicon/qm - inject error before stopping queue\n\nThe master ooo cannot be completely closed when the\naccelerator core reports memory error. Therefore, the driver\nneeds to inject the qm error to close the master ooo. Currently,\nthe qm error is injected after stopping queue, memory may be\nreleased immediately after stopping queue, causing the device to\naccess the released memory. Therefore, error is injected to close master\nooo before stopping queue to ensure that the device does not access\nthe released memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47730",
"url": "https://www.suse.com/security/cve/CVE-2024-47730"
},
{
"category": "external",
"summary": "SUSE Bug 1232075 for CVE-2024-47730",
"url": "https://bugzilla.suse.com/1232075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47730"
},
{
"cve": "CVE-2024-47731",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47731"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers/perf: Fix ali_drw_pmu driver interrupt status clearing\n\nThe alibaba_uncore_pmu driver forgot to clear all interrupt status\nin the interrupt processing function. After the PMU counter overflow\ninterrupt occurred, an interrupt storm occurred, causing the system\nto hang.\n\nTherefore, clear the correct interrupt status in the interrupt handling\nfunction to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47731",
"url": "https://www.suse.com/security/cve/CVE-2024-47731"
},
{
"category": "external",
"summary": "SUSE Bug 1232117 for CVE-2024-47731",
"url": "https://bugzilla.suse.com/1232117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47731"
},
{
"cve": "CVE-2024-47732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: iaa - Fix potential use after free bug\n\nThe free_device_compression_mode(iaa_device, device_mode) function frees\n\"device_mode\" but it iss passed to iaa_compression_modes[i]-\u003efree() a few\nlines later resulting in a use after free.\n\nThe good news is that, so far as I can tell, nothing implements the\n-\u003efree() function and the use after free happens in dead code. But, with\nthis fix, when something does implement it, we\u0027ll be ready. :)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47732",
"url": "https://www.suse.com/security/cve/CVE-2024-47732"
},
{
"category": "external",
"summary": "SUSE Bug 1232109 for CVE-2024-47732",
"url": "https://bugzilla.suse.com/1232109"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47732"
},
{
"cve": "CVE-2024-47733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47733"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs: Delete subtree of \u0027fs/netfs\u0027 when netfs module exits\n\nIn netfs_init() or fscache_proc_init(), we create dentry under \u0027fs/netfs\u0027,\nbut in netfs_exit(), we only delete the proc entry of \u0027fs/netfs\u0027 without\ndeleting its subtree. This triggers the following WARNING:\n\n==================================================================\nremove_proc_entry: removing non-empty directory \u0027fs/netfs\u0027, leaking at least \u0027requests\u0027\nWARNING: CPU: 4 PID: 566 at fs/proc/generic.c:717 remove_proc_entry+0x160/0x1c0\nModules linked in: netfs(-)\nCPU: 4 UID: 0 PID: 566 Comm: rmmod Not tainted 6.11.0-rc3 #860\nRIP: 0010:remove_proc_entry+0x160/0x1c0\nCall Trace:\n \u003cTASK\u003e\n netfs_exit+0x12/0x620 [netfs]\n __do_sys_delete_module.isra.0+0x14c/0x2e0\n do_syscall_64+0x4b/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n==================================================================\n\nTherefore use remove_proc_subtree() instead of remove_proc_entry() to\nfix the above problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47733",
"url": "https://www.suse.com/security/cve/CVE-2024-47733"
},
{
"category": "external",
"summary": "SUSE Bug 1232110 for CVE-2024-47733",
"url": "https://bugzilla.suse.com/1232110"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47733"
},
{
"cve": "CVE-2024-47734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: Fix unnecessary warnings and logs from bond_xdp_get_xmit_slave()\n\nsyzbot reported a WARNING in bond_xdp_get_xmit_slave. To reproduce\nthis[1], one bond device (bond1) has xdpdrv, which increases\nbpf_master_redirect_enabled_key. Another bond device (bond0) which is\nunsupported by XDP but its slave (veth3) has xdpgeneric that returns\nXDP_TX. This triggers WARN_ON_ONCE() from the xdp_master_redirect().\nTo reduce unnecessary warnings and improve log management, we need to\ndelete the WARN_ON_ONCE() and add ratelimit to the netdev_err().\n\n[1] Steps to reproduce:\n # Needs tx_xdp with return XDP_TX;\n ip l add veth0 type veth peer veth1\n ip l add veth3 type veth peer veth4\n ip l add bond0 type bond mode 6 # BOND_MODE_ALB, unsupported by XDP\n ip l add bond1 type bond # BOND_MODE_ROUNDROBIN by default\n ip l set veth0 master bond1\n ip l set bond1 up\n # Increases bpf_master_redirect_enabled_key\n ip l set dev bond1 xdpdrv object tx_xdp.o section xdp_tx\n ip l set veth3 master bond0\n ip l set bond0 up\n ip l set veth4 up\n # Triggers WARN_ON_ONCE() from the xdp_master_redirect()\n ip l set veth3 xdpgeneric object tx_xdp.o section xdp_tx",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47734",
"url": "https://www.suse.com/security/cve/CVE-2024-47734"
},
{
"category": "external",
"summary": "SUSE Bug 1232055 for CVE-2024-47734",
"url": "https://bugzilla.suse.com/1232055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47734"
},
{
"cve": "CVE-2024-47735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled\n\nFix missuse of spin_lock_irq()/spin_unlock_irq() when\nspin_lock_irqsave()/spin_lock_irqrestore() was hold.\n\nThis was discovered through the lock debugging, and the corresponding\nlog is as follows:\n\nraw_local_irq_restore() called with IRQs enabled\nWARNING: CPU: 96 PID: 2074 at kernel/locking/irqflag-debug.c:10 warn_bogus_irq_restore+0x30/0x40\n...\nCall trace:\n warn_bogus_irq_restore+0x30/0x40\n _raw_spin_unlock_irqrestore+0x84/0xc8\n add_qp_to_list+0x11c/0x148 [hns_roce_hw_v2]\n hns_roce_create_qp_common.constprop.0+0x240/0x780 [hns_roce_hw_v2]\n hns_roce_create_qp+0x98/0x160 [hns_roce_hw_v2]\n create_qp+0x138/0x258\n ib_create_qp_kernel+0x50/0xe8\n create_mad_qp+0xa8/0x128\n ib_mad_port_open+0x218/0x448\n ib_mad_init_device+0x70/0x1f8\n add_client_context+0xfc/0x220\n enable_device_and_get+0xd0/0x140\n ib_register_device.part.0+0xf4/0x1c8\n ib_register_device+0x34/0x50\n hns_roce_register_device+0x174/0x3d0 [hns_roce_hw_v2]\n hns_roce_init+0xfc/0x2c0 [hns_roce_hw_v2]\n __hns_roce_hw_v2_init_instance+0x7c/0x1d0 [hns_roce_hw_v2]\n hns_roce_hw_v2_init_instance+0x9c/0x180 [hns_roce_hw_v2]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47735",
"url": "https://www.suse.com/security/cve/CVE-2024-47735"
},
{
"category": "external",
"summary": "SUSE Bug 1232111 for CVE-2024-47735",
"url": "https://bugzilla.suse.com/1232111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47735"
},
{
"cve": "CVE-2024-47736",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47736"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle overlapped pclusters out of crafted images properly\n\nsyzbot reported a task hang issue due to a deadlock case where it is\nwaiting for the folio lock of a cached folio that will be used for\ncache I/Os.\n\nAfter looking into the crafted fuzzed image, I found it\u0027s formed with\nseveral overlapped big pclusters as below:\n\n Ext: logical offset | length : physical offset | length\n 0: 0.. 16384 | 16384 : 151552.. 167936 | 16384\n 1: 16384.. 32768 | 16384 : 155648.. 172032 | 16384\n 2: 32768.. 49152 | 16384 : 537223168.. 537239552 | 16384\n...\n\nHere, extent 0/1 are physically overlapped although it\u0027s entirely\n_impossible_ for normal filesystem images generated by mkfs.\n\nFirst, managed folios containing compressed data will be marked as\nup-to-date and then unlocked immediately (unlike in-place folios) when\ncompressed I/Os are complete. If physical blocks are not submitted in\nthe incremental order, there should be separate BIOs to avoid dependency\nissues. However, the current code mis-arranges z_erofs_fill_bio_vec()\nand BIO submission which causes unexpected BIO waits.\n\nSecond, managed folios will be connected to their own pclusters for\nefficient inter-queries. However, this is somewhat hard to implement\neasily if overlapped big pclusters exist. Again, these only appear in\nfuzzed images so let\u0027s simply fall back to temporary short-lived pages\nfor correctness.\n\nAdditionally, it justifies that referenced managed folios cannot be\ntruncated for now and reverts part of commit 2080ca1ed3e4 (\"erofs: tidy\nup `struct z_erofs_bvec`\") for simplicity although it shouldn\u0027t be any\ndifference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47736",
"url": "https://www.suse.com/security/cve/CVE-2024-47736"
},
{
"category": "external",
"summary": "SUSE Bug 1232112 for CVE-2024-47736",
"url": "https://bugzilla.suse.com/1232112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47736"
},
{
"cve": "CVE-2024-47737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: call cache_put if xdr_reserve_space returns NULL\n\nIf not enough buffer space available, but idmap_lookup has triggered\nlookup_fn which calls cache_get and returns successfully. Then we\nmissed to call cache_put here which pairs with cache_get.\n\nReviwed-by: Jeff Layton \u003cjlayton@kernel.org\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47737",
"url": "https://www.suse.com/security/cve/CVE-2024-47737"
},
{
"category": "external",
"summary": "SUSE Bug 1232056 for CVE-2024-47737",
"url": "https://bugzilla.suse.com/1232056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47737"
},
{
"cve": "CVE-2024-47738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47738"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: don\u0027t use rate mask for offchannel TX either\n\nLike the commit ab9177d83c04 (\"wifi: mac80211: don\u0027t use rate mask for\nscanning\"), ignore incorrect settings to avoid no supported rate warning\nreported by syzbot.\n\nThe syzbot did bisect and found cause is commit 9df66d5b9f45 (\"cfg80211:\nfix default HE tx bitrate mask in 2G band\"), which however corrects\nbitmask of HE MCS and recognizes correctly settings of empty legacy rate\nplus HE MCS rate instead of returning -EINVAL.\n\nAs suggestions [1], follow the change of SCAN TX to consider this case of\noffchannel TX as well.\n\n[1] https://lore.kernel.org/linux-wireless/6ab2dc9c3afe753ca6fdcdd1421e7a1f47e87b84.camel@sipsolutions.net/T/#m2ac2a6d2be06a37c9c47a3d8a44b4f647ed4f024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47738",
"url": "https://www.suse.com/security/cve/CVE-2024-47738"
},
{
"category": "external",
"summary": "SUSE Bug 1232114 for CVE-2024-47738",
"url": "https://bugzilla.suse.com/1232114"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47738"
},
{
"cve": "CVE-2024-47739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npadata: use integer wrap around to prevent deadlock on seq_nr overflow\n\nWhen submitting more than 2^32 padata objects to padata_do_serial, the\ncurrent sorting implementation incorrectly sorts padata objects with\noverflowed seq_nr, causing them to be placed before existing objects in\nthe reorder list. This leads to a deadlock in the serialization process\nas padata_find_next cannot match padata-\u003eseq_nr and pd-\u003eprocessed\nbecause the padata instance with overflowed seq_nr will be selected\nnext.\n\nTo fix this, we use an unsigned integer wrap around to correctly sort\npadata objects in scenarios with integer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47739",
"url": "https://www.suse.com/security/cve/CVE-2024-47739"
},
{
"category": "external",
"summary": "SUSE Bug 1232124 for CVE-2024-47739",
"url": "https://bugzilla.suse.com/1232124"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47739"
},
{
"cve": "CVE-2024-47740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47740"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: Require FMODE_WRITE for atomic write ioctls\n\nThe F2FS ioctls for starting and committing atomic writes check for\ninode_owner_or_capable(), but this does not give LSMs like SELinux or\nLandlock an opportunity to deny the write access - if the caller\u0027s FSUID\nmatches the inode\u0027s UID, inode_owner_or_capable() immediately returns true.\n\nThere are scenarios where LSMs want to deny a process the ability to write\nparticular files, even files that the FSUID of the process owns; but this\ncan currently partially be bypassed using atomic write ioctls in two ways:\n\n - F2FS_IOC_START_ATOMIC_REPLACE + F2FS_IOC_COMMIT_ATOMIC_WRITE can\n truncate an inode to size 0\n - F2FS_IOC_START_ATOMIC_WRITE + F2FS_IOC_ABORT_ATOMIC_WRITE can revert\n changes another process concurrently made to a file\n\nFix it by requiring FMODE_WRITE for these operations, just like for\nF2FS_IOC_MOVE_RANGE. Since any legitimate caller should only be using these\nioctls when intending to write into the file, that seems unlikely to break\nanything.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47740",
"url": "https://www.suse.com/security/cve/CVE-2024-47740"
},
{
"category": "external",
"summary": "SUSE Bug 1231867 for CVE-2024-47740",
"url": "https://bugzilla.suse.com/1231867"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47740"
},
{
"cve": "CVE-2024-47741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race setting file private on concurrent lseek using same fd\n\nWhen doing concurrent lseek(2) system calls against the same file\ndescriptor, using multiple threads belonging to the same process, we have\na short time window where a race happens and can result in a memory leak.\n\nThe race happens like this:\n\n1) A program opens a file descriptor for a file and then spawns two\n threads (with the pthreads library for example), lets call them\n task A and task B;\n\n2) Task A calls lseek with SEEK_DATA or SEEK_HOLE and ends up at\n file.c:find_desired_extent() while holding a read lock on the inode;\n\n3) At the start of find_desired_extent(), it extracts the file\u0027s\n private_data pointer into a local variable named \u0027private\u0027, which has\n a value of NULL;\n\n4) Task B also calls lseek with SEEK_DATA or SEEK_HOLE, locks the inode\n in shared mode and enters file.c:find_desired_extent(), where it also\n extracts file-\u003eprivate_data into its local variable \u0027private\u0027, which\n has a NULL value;\n\n5) Because it saw a NULL file private, task A allocates a private\n structure and assigns to the file structure;\n\n6) Task B also saw a NULL file private so it also allocates its own file\n private and then assigns it to the same file structure, since both\n tasks are using the same file descriptor.\n\n At this point we leak the private structure allocated by task A.\n\nBesides the memory leak, there\u0027s also the detail that both tasks end up\nusing the same cached state record in the private structure (struct\nbtrfs_file_private::llseek_cached_state), which can result in a\nuse-after-free problem since one task can free it while the other is\nstill using it (only one task took a reference count on it). Also, sharing\nthe cached state is not a good idea since it could result in incorrect\nresults in the future - right now it should not be a problem because it\nend ups being used only in extent-io-tree.c:count_range_bits() where we do\nrange validation before using the cached state.\n\nFix this by protecting the private assignment and check of a file while\nholding the inode\u0027s spinlock and keep track of the task that allocated\nthe private, so that it\u0027s used only by that task in order to prevent\nuser-after-free issues with the cached state record as well as potentially\nusing it incorrectly in the future.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47741",
"url": "https://www.suse.com/security/cve/CVE-2024-47741"
},
{
"category": "external",
"summary": "SUSE Bug 1231869 for CVE-2024-47741",
"url": "https://bugzilla.suse.com/1231869"
},
{
"category": "external",
"summary": "SUSE Bug 1231870 for CVE-2024-47741",
"url": "https://bugzilla.suse.com/1231870"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47741"
},
{
"cve": "CVE-2024-47742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Block path traversal\n\nMost firmware names are hardcoded strings, or are constructed from fairly\nconstrained format strings where the dynamic parts are just some hex\nnumbers or such.\n\nHowever, there are a couple codepaths in the kernel where firmware file\nnames contain string components that are passed through from a device or\nsemi-privileged userspace; the ones I could find (not counting interfaces\nthat require root privileges) are:\n\n - lpfc_sli4_request_firmware_update() seems to construct the firmware\n filename from \"ModelName\", a string that was previously parsed out of\n some descriptor (\"Vital Product Data\") in lpfc_fill_vpd()\n - nfp_net_fw_find() seems to construct a firmware filename from a model\n name coming from nfp_hwinfo_lookup(pf-\u003ehwinfo, \"nffw.partno\"), which I\n think parses some descriptor that was read from the device.\n (But this case likely isn\u0027t exploitable because the format string looks\n like \"netronome/nic_%s\", and there shouldn\u0027t be any *folders* starting\n with \"netronome/nic_\". The previous case was different because there,\n the \"%s\" is *at the start* of the format string.)\n - module_flash_fw_schedule() is reachable from the\n ETHTOOL_MSG_MODULE_FW_FLASH_ACT netlink command, which is marked as\n GENL_UNS_ADMIN_PERM (meaning CAP_NET_ADMIN inside a user namespace is\n enough to pass the privilege check), and takes a userspace-provided\n firmware name.\n (But I think to reach this case, you need to have CAP_NET_ADMIN over a\n network namespace that a special kind of ethernet device is mapped into,\n so I think this is not a viable attack path in practice.)\n\nFix it by rejecting any firmware names containing \"..\" path components.\n\nFor what it\u0027s worth, I went looking and haven\u0027t found any USB device\ndrivers that use the firmware loader dangerously.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47742",
"url": "https://www.suse.com/security/cve/CVE-2024-47742"
},
{
"category": "external",
"summary": "SUSE Bug 1232126 for CVE-2024-47742",
"url": "https://bugzilla.suse.com/1232126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47742"
},
{
"cve": "CVE-2024-47743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: prevent NULL pointer dereference in find_asymmetric_key()\n\nIn find_asymmetric_key(), if all NULLs are passed in the id_{0,1,2}\narguments, the kernel will first emit WARN but then have an oops\nbecause id_2 gets dereferenced anyway.\n\nAdd the missing id_2 check and move WARN_ON() to the final else branch\nto avoid duplicate NULL checks.\n\nFound by Linux Verification Center (linuxtesting.org) with Svace static\nanalysis tool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47743",
"url": "https://www.suse.com/security/cve/CVE-2024-47743"
},
{
"category": "external",
"summary": "SUSE Bug 1232129 for CVE-2024-47743",
"url": "https://bugzilla.suse.com/1232129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47743"
},
{
"cve": "CVE-2024-47744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: Use dedicated mutex to protect kvm_usage_count to avoid deadlock\n\nUse a dedicated mutex to guard kvm_usage_count to fix a potential deadlock\non x86 due to a chain of locks and SRCU synchronizations. Translating the\nbelow lockdep splat, CPU1 #6 will wait on CPU0 #1, CPU0 #8 will wait on\nCPU2 #3, and CPU2 #7 will wait on CPU1 #4 (if there\u0027s a writer, due to the\nfairness of r/w semaphores).\n\n CPU0 CPU1 CPU2\n1 lock(\u0026kvm-\u003eslots_lock);\n2 lock(\u0026vcpu-\u003emutex);\n3 lock(\u0026kvm-\u003esrcu);\n4 lock(cpu_hotplug_lock);\n5 lock(kvm_lock);\n6 lock(\u0026kvm-\u003eslots_lock);\n7 lock(cpu_hotplug_lock);\n8 sync(\u0026kvm-\u003esrcu);\n\nNote, there are likely more potential deadlocks in KVM x86, e.g. the same\npattern of taking cpu_hotplug_lock outside of kvm_lock likely exists with\n__kvmclock_cpufreq_notifier():\n\n cpuhp_cpufreq_online()\n |\n -\u003e cpufreq_online()\n |\n -\u003e cpufreq_gov_performance_limits()\n |\n -\u003e __cpufreq_driver_target()\n |\n -\u003e __target_index()\n |\n -\u003e cpufreq_freq_transition_begin()\n |\n -\u003e cpufreq_notify_transition()\n |\n -\u003e ... __kvmclock_cpufreq_notifier()\n\nBut, actually triggering such deadlocks is beyond rare due to the\ncombination of dependencies and timings involved. E.g. the cpufreq\nnotifier is only used on older CPUs without a constant TSC, mucking with\nthe NX hugepage mitigation while VMs are running is very uncommon, and\ndoing so while also onlining/offlining a CPU (necessary to generate\ncontention on cpu_hotplug_lock) would be even more unusual.\n\nThe most robust solution to the general cpu_hotplug_lock issue is likely\nto switch vm_list to be an RCU-protected list, e.g. so that x86\u0027s cpufreq\nnotifier doesn\u0027t to take kvm_lock. For now, settle for fixing the most\nblatant deadlock, as switching to an RCU-protected list is a much more\ninvolved change, but add a comment in locking.rst to call out that care\nneeds to be taken when walking holding kvm_lock and walking vm_list.\n\n ======================================================\n WARNING: possible circular locking dependency detected\n 6.10.0-smp--c257535a0c9d-pip #330 Tainted: G S O\n ------------------------------------------------------\n tee/35048 is trying to acquire lock:\n ff6a80eced71e0a8 (\u0026kvm-\u003eslots_lock){+.+.}-{3:3}, at: set_nx_huge_pages+0x179/0x1e0 [kvm]\n\n but task is already holding lock:\n ffffffffc07abb08 (kvm_lock){+.+.}-{3:3}, at: set_nx_huge_pages+0x14a/0x1e0 [kvm]\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #3 (kvm_lock){+.+.}-{3:3}:\n __mutex_lock+0x6a/0xb40\n mutex_lock_nested+0x1f/0x30\n kvm_dev_ioctl+0x4fb/0xe50 [kvm]\n __se_sys_ioctl+0x7b/0xd0\n __x64_sys_ioctl+0x21/0x30\n x64_sys_call+0x15d0/0x2e60\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n -\u003e #2 (cpu_hotplug_lock){++++}-{0:0}:\n cpus_read_lock+0x2e/0xb0\n static_key_slow_inc+0x16/0x30\n kvm_lapic_set_base+0x6a/0x1c0 [kvm]\n kvm_set_apic_base+0x8f/0xe0 [kvm]\n kvm_set_msr_common+0x9ae/0xf80 [kvm]\n vmx_set_msr+0xa54/0xbe0 [kvm_intel]\n __kvm_set_msr+0xb6/0x1a0 [kvm]\n kvm_arch_vcpu_ioctl+0xeca/0x10c0 [kvm]\n kvm_vcpu_ioctl+0x485/0x5b0 [kvm]\n __se_sys_ioctl+0x7b/0xd0\n __x64_sys_ioctl+0x21/0x30\n x64_sys_call+0x15d0/0x2e60\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n -\u003e #1 (\u0026kvm-\u003esrcu){.+.+}-{0:0}:\n __synchronize_srcu+0x44/0x1a0\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47744",
"url": "https://www.suse.com/security/cve/CVE-2024-47744"
},
{
"category": "external",
"summary": "SUSE Bug 1232132 for CVE-2024-47744",
"url": "https://bugzilla.suse.com/1232132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47744"
},
{
"cve": "CVE-2024-47745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: call the security_mmap_file() LSM hook in remap_file_pages()\n\nThe remap_file_pages syscall handler calls do_mmap() directly, which\ndoesn\u0027t contain the LSM security check. And if the process has called\npersonality(READ_IMPLIES_EXEC) before and remap_file_pages() is called for\nRW pages, this will actually result in remapping the pages to RWX,\nbypassing a W^X policy enforced by SELinux.\n\nSo we should check prot by security_mmap_file LSM hook in the\nremap_file_pages syscall handler before do_mmap() is called. Otherwise, it\npotentially permits an attacker to bypass a W^X policy enforced by\nSELinux.\n\nThe bypass is similar to CVE-2016-10044, which bypass the same thing via\nAIO and can be found in [1].\n\nThe PoC:\n\n$ cat \u003e test.c\n\nint main(void) {\n\tsize_t pagesz = sysconf(_SC_PAGE_SIZE);\n\tint mfd = syscall(SYS_memfd_create, \"test\", 0);\n\tconst char *buf = mmap(NULL, 4 * pagesz, PROT_READ | PROT_WRITE,\n\t\tMAP_SHARED, mfd, 0);\n\tunsigned int old = syscall(SYS_personality, 0xffffffff);\n\tsyscall(SYS_personality, READ_IMPLIES_EXEC | old);\n\tsyscall(SYS_remap_file_pages, buf, pagesz, 0, 2, 0);\n\tsyscall(SYS_personality, old);\n\t// show the RWX page exists even if W^X policy is enforced\n\tint fd = open(\"/proc/self/maps\", O_RDONLY);\n\tunsigned char buf2[1024];\n\twhile (1) {\n\t\tint ret = read(fd, buf2, 1024);\n\t\tif (ret \u003c= 0) break;\n\t\twrite(1, buf2, ret);\n\t}\n\tclose(fd);\n}\n\n$ gcc test.c -o test\n$ ./test | grep rwx\n7f1836c34000-7f1836c35000 rwxs 00002000 00:01 2050 /memfd:test (deleted)\n\n[PM: subject line tweaks]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47745",
"url": "https://www.suse.com/security/cve/CVE-2024-47745"
},
{
"category": "external",
"summary": "SUSE Bug 1232135 for CVE-2024-47745",
"url": "https://bugzilla.suse.com/1232135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47745"
},
{
"cve": "CVE-2024-47746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: use exclusive lock when FUSE_I_CACHE_IO_MODE is set\n\nThis may be a typo. The comment has said shared locks are\nnot allowed when this bit is set. If using shared lock, the\nwait in `fuse_file_cached_io_open` may be forever.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47746",
"url": "https://www.suse.com/security/cve/CVE-2024-47746"
},
{
"category": "external",
"summary": "SUSE Bug 1232137 for CVE-2024-47746",
"url": "https://bugzilla.suse.com/1232137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47746"
},
{
"cve": "CVE-2024-47747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition\n\nIn the ether3_probe function, a timer is initialized with a callback\nfunction ether3_ledoff, bound to \u0026prev(dev)-\u003etimer. Once the timer is\nstarted, there is a risk of a race condition if the module or device\nis removed, triggering the ether3_remove function to perform cleanup.\nThe sequence of operations that may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | ether3_ledoff\nether3_remove |\n free_netdev(dev); |\n put_devic |\n kfree(dev); |\n | ether3_outw(priv(dev)-\u003eregs.config2 |= CFG2_CTRLO, REG_CONFIG2);\n | // use dev\n\nFix it by ensuring that the timer is canceled before proceeding with\nthe cleanup in ether3_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47747",
"url": "https://www.suse.com/security/cve/CVE-2024-47747"
},
{
"category": "external",
"summary": "SUSE Bug 1232145 for CVE-2024-47747",
"url": "https://bugzilla.suse.com/1232145"
},
{
"category": "external",
"summary": "SUSE Bug 1232146 for CVE-2024-47747",
"url": "https://bugzilla.suse.com/1232146"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47747"
},
{
"cve": "CVE-2024-47748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47748"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost_vdpa: assign irq bypass producer token correctly\n\nWe used to call irq_bypass_unregister_producer() in\nvhost_vdpa_setup_vq_irq() which is problematic as we don\u0027t know if the\ntoken pointer is still valid or not.\n\nActually, we use the eventfd_ctx as the token so the life cycle of the\ntoken should be bound to the VHOST_SET_VRING_CALL instead of\nvhost_vdpa_setup_vq_irq() which could be called by set_status().\n\nFixing this by setting up irq bypass producer\u0027s token when handling\nVHOST_SET_VRING_CALL and un-registering the producer before calling\nvhost_vring_ioctl() to prevent a possible use after free as eventfd\ncould have been released in vhost_vring_ioctl(). And such registering\nand unregistering will only be done if DRIVER_OK is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47748",
"url": "https://www.suse.com/security/cve/CVE-2024-47748"
},
{
"category": "external",
"summary": "SUSE Bug 1232174 for CVE-2024-47748",
"url": "https://bugzilla.suse.com/1232174"
},
{
"category": "external",
"summary": "SUSE Bug 1232177 for CVE-2024-47748",
"url": "https://bugzilla.suse.com/1232177"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47748"
},
{
"cve": "CVE-2024-47749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cxgb4: Added NULL check for lookup_atid\n\nThe lookup_atid() function can return NULL if the ATID is\ninvalid or does not exist in the identifier table, which\ncould lead to dereferencing a null pointer without a\ncheck in the `act_establish()` and `act_open_rpl()` functions.\nAdd a NULL check to prevent null pointer dereferencing.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47749",
"url": "https://www.suse.com/security/cve/CVE-2024-47749"
},
{
"category": "external",
"summary": "SUSE Bug 1232180 for CVE-2024-47749",
"url": "https://bugzilla.suse.com/1232180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47749"
},
{
"cve": "CVE-2024-47750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix Use-After-Free of rsv_qp on HIP08\n\nCurrently rsv_qp is freed before ib_unregister_device() is called\non HIP08. During the time interval, users can still dereg MR and\nrsv_qp will be used in this process, leading to a UAF. Move the\nrelease of rsv_qp after calling ib_unregister_device() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47750",
"url": "https://www.suse.com/security/cve/CVE-2024-47750"
},
{
"category": "external",
"summary": "SUSE Bug 1232182 for CVE-2024-47750",
"url": "https://bugzilla.suse.com/1232182"
},
{
"category": "external",
"summary": "SUSE Bug 1232829 for CVE-2024-47750",
"url": "https://bugzilla.suse.com/1232829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47750"
},
{
"cve": "CVE-2024-47751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()\n\nWithin kirin_pcie_parse_port(), the pcie-\u003enum_slots is compared to\npcie-\u003egpio_id_reset size (MAX_PCI_SLOTS) which is correct and would lead\nto an overflow.\n\nThus, fix condition to pcie-\u003enum_slots + 1 \u003e= MAX_PCI_SLOTS and move\npcie-\u003enum_slots increment below the if-statement to avoid out-of-bounds\narray access.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.\n\n[kwilczynski: commit log]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47751",
"url": "https://www.suse.com/security/cve/CVE-2024-47751"
},
{
"category": "external",
"summary": "SUSE Bug 1232127 for CVE-2024-47751",
"url": "https://bugzilla.suse.com/1232127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47751"
},
{
"cve": "CVE-2024-47752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mediatek: vcodec: Fix H264 stateless decoder smatch warning\n\nFix a smatch static checker warning on vdec_h264_req_if.c.\nWhich leads to a kernel crash when fb is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47752",
"url": "https://www.suse.com/security/cve/CVE-2024-47752"
},
{
"category": "external",
"summary": "SUSE Bug 1232130 for CVE-2024-47752",
"url": "https://bugzilla.suse.com/1232130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47752"
},
{
"cve": "CVE-2024-47753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mediatek: vcodec: Fix VP8 stateless decoder smatch warning\n\nFix a smatch static checker warning on vdec_vp8_req_if.c.\nWhich leads to a kernel crash when fb is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47753",
"url": "https://www.suse.com/security/cve/CVE-2024-47753"
},
{
"category": "external",
"summary": "SUSE Bug 1231868 for CVE-2024-47753",
"url": "https://bugzilla.suse.com/1231868"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47753"
},
{
"cve": "CVE-2024-47754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mediatek: vcodec: Fix H264 multi stateless decoder smatch warning\n\nFix a smatch static checker warning on vdec_h264_req_multi_if.c.\nWhich leads to a kernel crash when fb is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47754",
"url": "https://www.suse.com/security/cve/CVE-2024-47754"
},
{
"category": "external",
"summary": "SUSE Bug 1232131 for CVE-2024-47754",
"url": "https://bugzilla.suse.com/1232131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47754"
},
{
"cve": "CVE-2024-47756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: keystone: Fix if-statement expression in ks_pcie_quirk()\n\nThis code accidentally uses \u0026\u0026 where || was intended. It potentially\nresults in a NULL dereference.\n\nThus, fix the if-statement expression to use the correct condition.\n\n[kwilczynski: commit log]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47756",
"url": "https://www.suse.com/security/cve/CVE-2024-47756"
},
{
"category": "external",
"summary": "SUSE Bug 1232185 for CVE-2024-47756",
"url": "https://bugzilla.suse.com/1232185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47756"
},
{
"cve": "CVE-2024-47757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential oob read in nilfs_btree_check_delete()\n\nThe function nilfs_btree_check_delete(), which checks whether degeneration\nto direct mapping occurs before deleting a b-tree entry, causes memory\naccess outside the block buffer when retrieving the maximum key if the\nroot node has no entries.\n\nThis does not usually happen because b-tree mappings with 0 child nodes\nare never created by mkfs.nilfs2 or nilfs2 itself. However, it can happen\nif the b-tree root node read from a device is configured that way, so fix\nthis potential issue by adding a check for that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47757",
"url": "https://www.suse.com/security/cve/CVE-2024-47757"
},
{
"category": "external",
"summary": "SUSE Bug 1232187 for CVE-2024-47757",
"url": "https://bugzilla.suse.com/1232187"
},
{
"category": "external",
"summary": "SUSE Bug 1232188 for CVE-2024-47757",
"url": "https://bugzilla.suse.com/1232188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47757"
},
{
"cve": "CVE-2024-49850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos\n\nIn case of malformed relocation record of kind BPF_CORE_TYPE_ID_LOCAL\nreferencing a non-existing BTF type, function bpf_core_calc_relo_insn\nwould cause a null pointer deference.\n\nFix this by adding a proper check upper in call stack, as malformed\nrelocation records could be passed from user space.\n\nSimplest reproducer is a program:\n\n r0 = 0\n exit\n\nWith a single relocation record:\n\n .insn_off = 0, /* patch first instruction */\n .type_id = 100500, /* this type id does not exist */\n .access_str_off = 6, /* offset of string \"0\" */\n .kind = BPF_CORE_TYPE_ID_LOCAL,\n\nSee the link for original reproducer or next commit for a test case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49850",
"url": "https://www.suse.com/security/cve/CVE-2024-49850"
},
{
"category": "external",
"summary": "SUSE Bug 1232189 for CVE-2024-49850",
"url": "https://bugzilla.suse.com/1232189"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49850"
},
{
"cve": "CVE-2024-49851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Clean up TPM space after command failure\n\ntpm_dev_transmit prepares the TPM space before attempting command\ntransmission. However if the command fails no rollback of this\npreparation is done. This can result in transient handles being leaked\nif the device is subsequently closed with no further commands performed.\n\nFix this by flushing the space in the event of command transmission\nfailure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49851",
"url": "https://www.suse.com/security/cve/CVE-2024-49851"
},
{
"category": "external",
"summary": "SUSE Bug 1232134 for CVE-2024-49851",
"url": "https://bugzilla.suse.com/1232134"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49851"
},
{
"cve": "CVE-2024-49852",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49852"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()\n\nThe kref_put() function will call nport-\u003erelease if the refcount drops to\nzero. The nport-\u003erelease release function is _efc_nport_free() which frees\n\"nport\". But then we dereference \"nport\" on the next line which is a use\nafter free. Re-order these lines to avoid the use after free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49852",
"url": "https://www.suse.com/security/cve/CVE-2024-49852"
},
{
"category": "external",
"summary": "SUSE Bug 1232819 for CVE-2024-49852",
"url": "https://bugzilla.suse.com/1232819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49852"
},
{
"cve": "CVE-2024-49853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49853"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Fix double free in OPTEE transport\n\nChannels can be shared between protocols, avoid freeing the same channel\ndescriptors twice when unloading the stack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49853",
"url": "https://www.suse.com/security/cve/CVE-2024-49853"
},
{
"category": "external",
"summary": "SUSE Bug 1232192 for CVE-2024-49853",
"url": "https://bugzilla.suse.com/1232192"
},
{
"category": "external",
"summary": "SUSE Bug 1232828 for CVE-2024-49853",
"url": "https://bugzilla.suse.com/1232828"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49853"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: fix race between timeout and normal completion\n\nIf request timetout is handled by nbd_requeue_cmd(), normal completion\nhas to be stopped for avoiding to complete this requeued request, other\nuse-after-free can be triggered.\n\nFix the race by clearing NBD_CMD_INFLIGHT in nbd_requeue_cmd(), meantime\nmake sure that cmd-\u003elock is grabbed for clearing the flag and the\nrequeue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49855",
"url": "https://www.suse.com/security/cve/CVE-2024-49855"
},
{
"category": "external",
"summary": "SUSE Bug 1232195 for CVE-2024-49855",
"url": "https://bugzilla.suse.com/1232195"
},
{
"category": "external",
"summary": "SUSE Bug 1232900 for CVE-2024-49855",
"url": "https://bugzilla.suse.com/1232900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49855"
},
{
"cve": "CVE-2024-49856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49856"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/sgx: Fix deadlock in SGX NUMA node search\n\nWhen the current node doesn\u0027t have an EPC section configured by firmware\nand all other EPC sections are used up, CPU can get stuck inside the\nwhile loop that looks for an available EPC page from remote nodes\nindefinitely, leading to a soft lockup. Note how nid_of_current will\nnever be equal to nid in that while loop because nid_of_current is not\nset in sgx_numa_mask.\n\nAlso worth mentioning is that it\u0027s perfectly fine for the firmware not\nto setup an EPC section on a node. While setting up an EPC section on\neach node can enhance performance, it is not a requirement for\nfunctionality.\n\nRework the loop to start and end on *a* node that has SGX memory. This\navoids the deadlock looking for the current SGX-lacking node to show up\nin the loop when it never will.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49856",
"url": "https://www.suse.com/security/cve/CVE-2024-49856"
},
{
"category": "external",
"summary": "SUSE Bug 1232202 for CVE-2024-49856",
"url": "https://bugzilla.suse.com/1232202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49856"
},
{
"cve": "CVE-2024-49857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: set the cipher for secured NDP ranging\n\nThe cipher pointer is not set, but is derefereced trying to set its\ncontent, which leads to a NULL pointer dereference.\nFix it by pointing to the cipher parameter before dereferencing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49857",
"url": "https://www.suse.com/security/cve/CVE-2024-49857"
},
{
"category": "external",
"summary": "SUSE Bug 1232203 for CVE-2024-49857",
"url": "https://bugzilla.suse.com/1232203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49857"
},
{
"cve": "CVE-2024-49858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49858"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefistub/tpm: Use ACPI reclaim memory for event log to avoid corruption\n\nThe TPM event log table is a Linux specific construct, where the data\nproduced by the GetEventLog() boot service is cached in memory, and\npassed on to the OS using an EFI configuration table.\n\nThe use of EFI_LOADER_DATA here results in the region being left\nunreserved in the E820 memory map constructed by the EFI stub, and this\nis the memory description that is passed on to the incoming kernel by\nkexec, which is therefore unaware that the region should be reserved.\n\nEven though the utility of the TPM2 event log after a kexec is\nquestionable, any corruption might send the parsing code off into the\nweeds and crash the kernel. So let\u0027s use EFI_ACPI_RECLAIM_MEMORY\ninstead, which is always treated as reserved by the E820 conversion\nlogic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49858",
"url": "https://www.suse.com/security/cve/CVE-2024-49858"
},
{
"category": "external",
"summary": "SUSE Bug 1232251 for CVE-2024-49858",
"url": "https://bugzilla.suse.com/1232251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49858"
},
{
"cve": "CVE-2024-49859",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49859"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to check atomic_file in f2fs ioctl interfaces\n\nSome f2fs ioctl interfaces like f2fs_ioc_set_pin_file(),\nf2fs_move_file_range(), and f2fs_defragment_range() missed to\ncheck atomic_write status, which may cause potential race issue,\nfix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49859",
"url": "https://www.suse.com/security/cve/CVE-2024-49859"
},
{
"category": "external",
"summary": "SUSE Bug 1232252 for CVE-2024-49859",
"url": "https://bugzilla.suse.com/1232252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49859"
},
{
"cve": "CVE-2024-49860",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49860"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: sysfs: validate return type of _STR method\n\nOnly buffer objects are valid return values of _STR.\n\nIf something else is returned description_show() will access invalid\nmemory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49860",
"url": "https://www.suse.com/security/cve/CVE-2024-49860"
},
{
"category": "external",
"summary": "SUSE Bug 1231861 for CVE-2024-49860",
"url": "https://bugzilla.suse.com/1231861"
},
{
"category": "external",
"summary": "SUSE Bug 1231862 for CVE-2024-49860",
"url": "https://bugzilla.suse.com/1231862"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49860"
},
{
"cve": "CVE-2024-49861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix helper writes to read-only maps\n\nLonial found an issue that despite user- and BPF-side frozen BPF map\n(like in case of .rodata), it was still possible to write into it from\na BPF program side through specific helpers having ARG_PTR_TO_{LONG,INT}\nas arguments.\n\nIn check_func_arg() when the argument is as mentioned, the meta-\u003eraw_mode\nis never set. Later, check_helper_mem_access(), under the case of\nPTR_TO_MAP_VALUE as register base type, it assumes BPF_READ for the\nsubsequent call to check_map_access_type() and given the BPF map is\nread-only it succeeds.\n\nThe helpers really need to be annotated as ARG_PTR_TO_{LONG,INT} | MEM_UNINIT\nwhen results are written into them as opposed to read out of them. The\nlatter indicates that it\u0027s okay to pass a pointer to uninitialized memory\nas the memory is written to anyway.\n\nHowever, ARG_PTR_TO_{LONG,INT} is a special case of ARG_PTR_TO_FIXED_SIZE_MEM\njust with additional alignment requirement. So it is better to just get\nrid of the ARG_PTR_TO_{LONG,INT} special cases altogether and reuse the\nfixed size memory types. For this, add MEM_ALIGNED to additionally ensure\nalignment given these helpers write directly into the args via *\u003cptr\u003e = val.\nThe .arg*_size has been initialized reflecting the actual sizeof(*\u003cptr\u003e).\n\nMEM_ALIGNED can only be used in combination with MEM_FIXED_SIZE annotated\nargument types, since in !MEM_FIXED_SIZE cases the verifier does not know\nthe buffer size a priori and therefore cannot blindly write *\u003cptr\u003e = val.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49861",
"url": "https://www.suse.com/security/cve/CVE-2024-49861"
},
{
"category": "external",
"summary": "SUSE Bug 1232254 for CVE-2024-49861",
"url": "https://bugzilla.suse.com/1232254"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49861"
},
{
"cve": "CVE-2024-49862",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49862"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowercap: intel_rapl: Fix off by one in get_rpi()\n\nThe rp-\u003epriv-\u003erpi array is either rpi_msr or rpi_tpmi which have\nNR_RAPL_PRIMITIVES number of elements. Thus the \u003e needs to be \u003e=\nto prevent an off by one access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49862",
"url": "https://www.suse.com/security/cve/CVE-2024-49862"
},
{
"category": "external",
"summary": "SUSE Bug 1231871 for CVE-2024-49862",
"url": "https://bugzilla.suse.com/1231871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49862"
},
{
"cve": "CVE-2024-49863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost/scsi: null-ptr-dereference in vhost_scsi_get_req()\n\nSince commit 3f8ca2e115e5 (\"vhost/scsi: Extract common handling code\nfrom control queue handler\") a null pointer dereference bug can be\ntriggered when guest sends an SCSI AN request.\n\nIn vhost_scsi_ctl_handle_vq(), `vc.target` is assigned with\n`\u0026v_req.tmf.lun[1]` within a switch-case block and is then passed to\nvhost_scsi_get_req() which extracts `vc-\u003ereq` and `tpg`. However, for\na `VIRTIO_SCSI_T_AN_*` request, tpg is not required, so `vc.target` is\nset to NULL in this branch. Later, in vhost_scsi_get_req(),\n`vc-\u003etarget` is dereferenced without being checked, leading to a null\npointer dereference bug. This bug can be triggered from guest.\n\nWhen this bug occurs, the vhost_worker process is killed while holding\n`vq-\u003emutex` and the corresponding tpg will remain occupied\nindefinitely.\n\nBelow is the KASAN report:\nOops: general protection fault, probably for non-canonical address\n0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 PID: 840 Comm: poc Not tainted 6.10.0+ #1\nHardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS\n1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:vhost_scsi_get_req+0x165/0x3a0\nCode: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 2b 02 00 00\n48 b8 00 00 00 00 00 fc ff df 4d 8b 65 30 4c 89 e2 48 c1 ea 03 \u003c0f\u003e b6\n04 02 4c 89 e2 83 e2 07 38 d0 7f 08 84 c0 0f 85 be 01 00 00\nRSP: 0018:ffff888017affb50 EFLAGS: 00010246\nRAX: dffffc0000000000 RBX: ffff88801b000000 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888017affcb8\nRBP: ffff888017affb80 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff888017affc88 R14: ffff888017affd1c R15: ffff888017993000\nFS: 000055556e076500(0000) GS:ffff88806b100000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200027c0 CR3: 0000000010ed0004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x86/0xa0\n ? die_addr+0x4b/0xd0\n ? exc_general_protection+0x163/0x260\n ? asm_exc_general_protection+0x27/0x30\n ? vhost_scsi_get_req+0x165/0x3a0\n vhost_scsi_ctl_handle_vq+0x2a4/0xca0\n ? __pfx_vhost_scsi_ctl_handle_vq+0x10/0x10\n ? __switch_to+0x721/0xeb0\n ? __schedule+0xda5/0x5710\n ? __kasan_check_write+0x14/0x30\n ? _raw_spin_lock+0x82/0xf0\n vhost_scsi_ctl_handle_kick+0x52/0x90\n vhost_run_work_list+0x134/0x1b0\n vhost_task_fn+0x121/0x350\n...\n \u003c/TASK\u003e\n---[ end trace 0000000000000000 ]---\n\nLet\u0027s add a check in vhost_scsi_get_req.\n\n[whitespace fixes]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49863",
"url": "https://www.suse.com/security/cve/CVE-2024-49863"
},
{
"category": "external",
"summary": "SUSE Bug 1232255 for CVE-2024-49863",
"url": "https://bugzilla.suse.com/1232255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49863"
},
{
"cve": "CVE-2024-49864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49864"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix a race between socket set up and I/O thread creation\n\nIn rxrpc_open_socket(), it sets up the socket and then sets up the I/O\nthread that will handle it. This is a problem, however, as there\u0027s a gap\nbetween the two phases in which a packet may come into rxrpc_encap_rcv()\nfrom the UDP packet but we oops when trying to wake the not-yet created I/O\nthread.\n\nAs a quick fix, just make rxrpc_encap_rcv() discard the packet if there\u0027s\nno I/O thread yet.\n\nA better, but more intrusive fix would perhaps be to rearrange things such\nthat the socket creation is done by the I/O thread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49864",
"url": "https://www.suse.com/security/cve/CVE-2024-49864"
},
{
"category": "external",
"summary": "SUSE Bug 1232256 for CVE-2024-49864",
"url": "https://bugzilla.suse.com/1232256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49864"
},
{
"cve": "CVE-2024-49865",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49865"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/vm: move xa_alloc to prevent UAF\n\nEvil user can guess the next id of the vm before the ioctl completes and\nthen call vm destroy ioctl to trigger UAF since create ioctl is still\nreferencing the same vm. Move the xa_alloc all the way to the end to\nprevent this.\n\nv2:\n - Rebase\n\n(cherry picked from commit dcfd3971327f3ee92765154baebbaece833d3ca9)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49865",
"url": "https://www.suse.com/security/cve/CVE-2024-49865"
},
{
"category": "external",
"summary": "SUSE Bug 1232257 for CVE-2024-49865",
"url": "https://bugzilla.suse.com/1232257"
},
{
"category": "external",
"summary": "SUSE Bug 1232901 for CVE-2024-49865",
"url": "https://bugzilla.suse.com/1232901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49865"
},
{
"cve": "CVE-2024-49866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49866"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing/timerlat: Fix a race during cpuhp processing\n\nThere is another found exception that the \"timerlat/1\" thread was\nscheduled on CPU0, and lead to timer corruption finally:\n\n```\nODEBUG: init active (active state 0) object: ffff888237c2e108 object type: hrtimer hint: timerlat_irq+0x0/0x220\nWARNING: CPU: 0 PID: 426 at lib/debugobjects.c:518 debug_print_object+0x7d/0xb0\nModules linked in:\nCPU: 0 UID: 0 PID: 426 Comm: timerlat/1 Not tainted 6.11.0-rc7+ #45\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nRIP: 0010:debug_print_object+0x7d/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x7c/0x110\n ? debug_print_object+0x7d/0xb0\n ? report_bug+0xf1/0x1d0\n ? prb_read_valid+0x17/0x20\n ? handle_bug+0x3f/0x70\n ? exc_invalid_op+0x13/0x60\n ? asm_exc_invalid_op+0x16/0x20\n ? debug_print_object+0x7d/0xb0\n ? debug_print_object+0x7d/0xb0\n ? __pfx_timerlat_irq+0x10/0x10\n __debug_object_init+0x110/0x150\n hrtimer_init+0x1d/0x60\n timerlat_main+0xab/0x2d0\n ? __pfx_timerlat_main+0x10/0x10\n kthread+0xb7/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n```\n\nAfter tracing the scheduling event, it was discovered that the migration\nof the \"timerlat/1\" thread was performed during thread creation. Further\nanalysis confirmed that it is because the CPU online processing for\nosnoise is implemented through workers, which is asynchronous with the\noffline processing. When the worker was scheduled to create a thread, the\nCPU may has already been removed from the cpu_online_mask during the offline\nprocess, resulting in the inability to select the right CPU:\n\nT1 | T2\n[CPUHP_ONLINE] | cpu_device_down()\nosnoise_hotplug_workfn() |\n | cpus_write_lock()\n | takedown_cpu(1)\n | cpus_write_unlock()\n[CPUHP_OFFLINE] |\n cpus_read_lock() |\n start_kthread(1) |\n cpus_read_unlock() |\n\nTo fix this, skip online processing if the CPU is already offline.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49866",
"url": "https://www.suse.com/security/cve/CVE-2024-49866"
},
{
"category": "external",
"summary": "SUSE Bug 1232259 for CVE-2024-49866",
"url": "https://bugzilla.suse.com/1232259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49866"
},
{
"cve": "CVE-2024-49867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49867"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: wait for fixup workers before stopping cleaner kthread during umount\n\nDuring unmount, at close_ctree(), we have the following steps in this order:\n\n1) Park the cleaner kthread - this doesn\u0027t destroy the kthread, it basically\n halts its execution (wake ups against it work but do nothing);\n\n2) We stop the cleaner kthread - this results in freeing the respective\n struct task_struct;\n\n3) We call btrfs_stop_all_workers() which waits for any jobs running in all\n the work queues and then free the work queues.\n\nSyzbot reported a case where a fixup worker resulted in a crash when doing\na delayed iput on its inode while attempting to wake up the cleaner at\nbtrfs_add_delayed_iput(), because the task_struct of the cleaner kthread\nwas already freed. This can happen during unmount because we don\u0027t wait\nfor any fixup workers still running before we call kthread_stop() against\nthe cleaner kthread, which stops and free all its resources.\n\nFix this by waiting for any fixup workers at close_ctree() before we call\nkthread_stop() against the cleaner and run pending delayed iputs.\n\nThe stack traces reported by syzbot were the following:\n\n BUG: KASAN: slab-use-after-free in __lock_acquire+0x77/0x2050 kernel/locking/lockdep.c:5065\n Read of size 8 at addr ffff8880272a8a18 by task kworker/u8:3/52\n\n CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.12.0-rc1-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Workqueue: btrfs-fixup btrfs_work_helper\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n __lock_acquire+0x77/0x2050 kernel/locking/lockdep.c:5065\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5825\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xd5/0x120 kernel/locking/spinlock.c:162\n class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:551 [inline]\n try_to_wake_up+0xb0/0x1480 kernel/sched/core.c:4154\n btrfs_writepage_fixup_worker+0xc16/0xdf0 fs/btrfs/inode.c:2842\n btrfs_work_helper+0x390/0xc50 fs/btrfs/async-thread.c:314\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa63/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\n Allocated by task 2:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:319 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:345\n kasan_slab_alloc include/linux/kasan.h:247 [inline]\n slab_post_alloc_hook mm/slub.c:4086 [inline]\n slab_alloc_node mm/slub.c:4135 [inline]\n kmem_cache_alloc_node_noprof+0x16b/0x320 mm/slub.c:4187\n alloc_task_struct_node kernel/fork.c:180 [inline]\n dup_task_struct+0x57/0x8c0 kernel/fork.c:1107\n copy_process+0x5d1/0x3d50 kernel/fork.c:2206\n kernel_clone+0x223/0x880 kernel/fork.c:2787\n kernel_thread+0x1bc/0x240 kernel/fork.c:2849\n create_kthread kernel/kthread.c:412 [inline]\n kthreadd+0x60d/0x810 kernel/kthread.c:765\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\n Freed by task 61:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object mm/kasan/common.c:247 [inline]\n __kasan_slab_free+0x59/0x70 mm/kasan/common.c:264\n kasan_slab_free include/linux/kasan.h:230 [inline]\n slab_free_h\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49867",
"url": "https://www.suse.com/security/cve/CVE-2024-49867"
},
{
"category": "external",
"summary": "SUSE Bug 1232262 for CVE-2024-49867",
"url": "https://bugzilla.suse.com/1232262"
},
{
"category": "external",
"summary": "SUSE Bug 1232271 for CVE-2024-49867",
"url": "https://bugzilla.suse.com/1232271"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49867"
},
{
"cve": "CVE-2024-49868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49868"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a NULL pointer dereference when failed to start a new trasacntion\n\n[BUG]\nSyzbot reported a NULL pointer dereference with the following crash:\n\n FAULT_INJECTION: forcing a failure.\n start_transaction+0x830/0x1670 fs/btrfs/transaction.c:676\n prepare_to_relocate+0x31f/0x4c0 fs/btrfs/relocation.c:3642\n relocate_block_group+0x169/0xd20 fs/btrfs/relocation.c:3678\n ...\n BTRFS info (device loop0): balance: ended with status: -12\n Oops: general protection fault, probably for non-canonical address 0xdffffc00000000cc: 0000 [#1] PREEMPT SMP KASAN NOPTI\n KASAN: null-ptr-deref in range [0x0000000000000660-0x0000000000000667]\n RIP: 0010:btrfs_update_reloc_root+0x362/0xa80 fs/btrfs/relocation.c:926\n Call Trace:\n \u003cTASK\u003e\n commit_fs_roots+0x2ee/0x720 fs/btrfs/transaction.c:1496\n btrfs_commit_transaction+0xfaf/0x3740 fs/btrfs/transaction.c:2430\n del_balance_item fs/btrfs/volumes.c:3678 [inline]\n reset_balance_state+0x25e/0x3c0 fs/btrfs/volumes.c:3742\n btrfs_balance+0xead/0x10c0 fs/btrfs/volumes.c:4574\n btrfs_ioctl_balance+0x493/0x7c0 fs/btrfs/ioctl.c:3673\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xf9/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[CAUSE]\nThe allocation failure happens at the start_transaction() inside\nprepare_to_relocate(), and during the error handling we call\nunset_reloc_control(), which makes fs_info-\u003ebalance_ctl to be NULL.\n\nThen we continue the error path cleanup in btrfs_balance() by calling\nreset_balance_state() which will call del_balance_item() to fully delete\nthe balance item in the root tree.\n\nHowever during the small window between set_reloc_contrl() and\nunset_reloc_control(), we can have a subvolume tree update and created a\nreloc_root for that subvolume.\n\nThen we go into the final btrfs_commit_transaction() of\ndel_balance_item(), and into btrfs_update_reloc_root() inside\ncommit_fs_roots().\n\nThat function checks if fs_info-\u003ereloc_ctl is in the merge_reloc_tree\nstage, but since fs_info-\u003ereloc_ctl is NULL, it results a NULL pointer\ndereference.\n\n[FIX]\nJust add extra check on fs_info-\u003ereloc_ctl inside\nbtrfs_update_reloc_root(), before checking\nfs_info-\u003ereloc_ctl-\u003emerge_reloc_tree.\n\nThat DEAD_RELOC_TREE handling is to prevent further modification to the\nreloc tree during merge stage, but since there is no reloc_ctl at all,\nwe do not need to bother that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49868",
"url": "https://www.suse.com/security/cve/CVE-2024-49868"
},
{
"category": "external",
"summary": "SUSE Bug 1232272 for CVE-2024-49868",
"url": "https://bugzilla.suse.com/1232272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49868"
},
{
"cve": "CVE-2024-49869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49869"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: send: fix buffer overflow detection when copying path to cache entry\n\nStarting with commit c0247d289e73 (\"btrfs: send: annotate struct\nname_cache_entry with __counted_by()\") we annotated the variable length\narray \"name\" from the name_cache_entry structure with __counted_by() to\nimprove overflow detection. However that alone was not correct, because\nthe length of that array does not match the \"name_len\" field - it matches\nthat plus 1 to include the NUL string terminator, so that makes a\nfortified kernel think there\u0027s an overflow and report a splat like this:\n\n strcpy: detected buffer overflow: 20 byte write of buffer size 19\n WARNING: CPU: 3 PID: 3310 at __fortify_report+0x45/0x50\n CPU: 3 UID: 0 PID: 3310 Comm: btrfs Not tainted 6.11.0-prnet #1\n Hardware name: CompuLab Ltd. sbc-ihsw/Intense-PC2 (IPC2), BIOS IPC2_3.330.7 X64 03/15/2018\n RIP: 0010:__fortify_report+0x45/0x50\n Code: 48 8b 34 (...)\n RSP: 0018:ffff97ebc0d6f650 EFLAGS: 00010246\n RAX: 7749924ef60fa600 RBX: ffff8bf5446a521a RCX: 0000000000000027\n RDX: 00000000ffffdfff RSI: ffff97ebc0d6f548 RDI: ffff8bf84e7a1cc8\n RBP: ffff8bf548574080 R08: ffffffffa8c40e10 R09: 0000000000005ffd\n R10: 0000000000000004 R11: ffffffffa8c70e10 R12: ffff8bf551eef400\n R13: 0000000000000000 R14: 0000000000000013 R15: 00000000000003a8\n FS: 00007fae144de8c0(0000) GS:ffff8bf84e780000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fae14691690 CR3: 00000001027a2003 CR4: 00000000001706f0\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x12a/0x1d0\n ? __fortify_report+0x45/0x50\n ? report_bug+0x154/0x1c0\n ? handle_bug+0x42/0x70\n ? exc_invalid_op+0x1a/0x50\n ? asm_exc_invalid_op+0x1a/0x20\n ? __fortify_report+0x45/0x50\n __fortify_panic+0x9/0x10\n __get_cur_name_and_parent+0x3bc/0x3c0\n get_cur_path+0x207/0x3b0\n send_extent_data+0x709/0x10d0\n ? find_parent_nodes+0x22df/0x25d0\n ? mas_nomem+0x13/0x90\n ? mtree_insert_range+0xa5/0x110\n ? btrfs_lru_cache_store+0x5f/0x1e0\n ? iterate_extent_inodes+0x52d/0x5a0\n process_extent+0xa96/0x11a0\n ? __pfx_lookup_backref_cache+0x10/0x10\n ? __pfx_store_backref_cache+0x10/0x10\n ? __pfx_iterate_backrefs+0x10/0x10\n ? __pfx_check_extent_item+0x10/0x10\n changed_cb+0x6fa/0x930\n ? tree_advance+0x362/0x390\n ? memcmp_extent_buffer+0xd7/0x160\n send_subvol+0xf0a/0x1520\n btrfs_ioctl_send+0x106b/0x11d0\n ? __pfx___clone_root_cmp_sort+0x10/0x10\n _btrfs_ioctl_send+0x1ac/0x240\n btrfs_ioctl+0x75b/0x850\n __se_sys_ioctl+0xca/0x150\n do_syscall_64+0x85/0x160\n ? __count_memcg_events+0x69/0x100\n ? handle_mm_fault+0x1327/0x15c0\n ? __se_sys_rt_sigprocmask+0xf1/0x180\n ? syscall_exit_to_user_mode+0x75/0xa0\n ? do_syscall_64+0x91/0x160\n ? do_user_addr_fault+0x21d/0x630\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n RIP: 0033:0x7fae145eeb4f\n Code: 00 48 89 (...)\n RSP: 002b:00007ffdf1cb09b0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007fae145eeb4f\n RDX: 00007ffdf1cb0ad0 RSI: 0000000040489426 RDI: 0000000000000004\n RBP: 00000000000078fe R08: 00007fae144006c0 R09: 00007ffdf1cb0927\n R10: 0000000000000008 R11: 0000000000000246 R12: 00007ffdf1cb1ce8\n R13: 0000000000000003 R14: 000055c499fab2e0 R15: 0000000000000004\n \u003c/TASK\u003e\n\nFix this by not storing the NUL string terminator since we don\u0027t actually\nneed it for name cache entries, this way \"name_len\" corresponds to the\nactual size of the \"name\" array. This requires marking the \"name\" array\nfield with __nonstring and using memcpy() instead of strcpy() as\nrecommended by the guidelines at:\n\n https://github.com/KSPP/linux/issues/90",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49869",
"url": "https://www.suse.com/security/cve/CVE-2024-49869"
},
{
"category": "external",
"summary": "SUSE Bug 1232278 for CVE-2024-49869",
"url": "https://bugzilla.suse.com/1232278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49869"
},
{
"cve": "CVE-2024-49870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: fix dentry leak in cachefiles_open_file()\n\nA dentry leak may be caused when a lookup cookie and a cull are concurrent:\n\n P1 | P2\n-----------------------------------------------------------\ncachefiles_lookup_cookie\n cachefiles_look_up_object\n lookup_one_positive_unlocked\n // get dentry\n cachefiles_cull\n inode-\u003ei_flags |= S_KERNEL_FILE;\n cachefiles_open_file\n cachefiles_mark_inode_in_use\n __cachefiles_mark_inode_in_use\n can_use = false\n if (!(inode-\u003ei_flags \u0026 S_KERNEL_FILE))\n can_use = true\n\t return false\n return false\n // Returns an error but doesn\u0027t put dentry\n\nAfter that the following WARNING will be triggered when the backend folder\nis umounted:\n\n==================================================================\nBUG: Dentry 000000008ad87947{i=7a,n=Dx_1_1.img} still in use (1) [unmount of ext4 sda]\nWARNING: CPU: 4 PID: 359261 at fs/dcache.c:1767 umount_check+0x5d/0x70\nCPU: 4 PID: 359261 Comm: umount Not tainted 6.6.0-dirty #25\nRIP: 0010:umount_check+0x5d/0x70\nCall Trace:\n \u003cTASK\u003e\n d_walk+0xda/0x2b0\n do_one_tree+0x20/0x40\n shrink_dcache_for_umount+0x2c/0x90\n generic_shutdown_super+0x20/0x160\n kill_block_super+0x1a/0x40\n ext4_kill_sb+0x22/0x40\n deactivate_locked_super+0x35/0x80\n cleanup_mnt+0x104/0x160\n==================================================================\n\nWhether cachefiles_open_file() returns true or false, the reference count\nobtained by lookup_positive_unlocked() in cachefiles_look_up_object()\nshould be released.\n\nTherefore release that reference count in cachefiles_look_up_object() to\nfix the above issue and simplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49870",
"url": "https://www.suse.com/security/cve/CVE-2024-49870"
},
{
"category": "external",
"summary": "SUSE Bug 1232279 for CVE-2024-49870",
"url": "https://bugzilla.suse.com/1232279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49870"
},
{
"cve": "CVE-2024-49871",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49871"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: adp5589-keys - fix NULL pointer dereference\n\nWe register a devm action to call adp5589_clear_config() and then pass\nthe i2c client as argument so that we can call i2c_get_clientdata() in\norder to get our device object. However, i2c_set_clientdata() is only\nbeing set at the end of the probe function which means that we\u0027ll get a\nNULL pointer dereference in case the probe function fails early.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49871",
"url": "https://www.suse.com/security/cve/CVE-2024-49871"
},
{
"category": "external",
"summary": "SUSE Bug 1232287 for CVE-2024-49871",
"url": "https://bugzilla.suse.com/1232287"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49871"
},
{
"cve": "CVE-2024-49872",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49872"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/gup: fix memfd_pin_folios alloc race panic\n\nIf memfd_pin_folios tries to create a hugetlb page, but someone else\nalready did, then folio gets the value -EEXIST here:\n\n folio = memfd_alloc_folio(memfd, start_idx);\n if (IS_ERR(folio)) {\n ret = PTR_ERR(folio);\n if (ret != -EEXIST)\n goto err;\n\nthen on the next trip through the \"while start_idx\" loop we panic here:\n\n if (folio) {\n folio_put(folio);\n\nTo fix, set the folio to NULL on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49872",
"url": "https://www.suse.com/security/cve/CVE-2024-49872"
},
{
"category": "external",
"summary": "SUSE Bug 1232288 for CVE-2024-49872",
"url": "https://bugzilla.suse.com/1232288"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49872"
},
{
"cve": "CVE-2024-49873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49873"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/filemap: fix filemap_get_folios_contig THP panic\n\nPatch series \"memfd-pin huge page fixes\".\n\nFix multiple bugs that occur when using memfd_pin_folios with hugetlb\npages and THP. The hugetlb bugs only bite when the page is not yet\nfaulted in when memfd_pin_folios is called. The THP bug bites when the\nstarting offset passed to memfd_pin_folios is not huge page aligned. See\nthe commit messages for details.\n\n\nThis patch (of 5):\n\nmemfd_pin_folios on memory backed by THP panics if the requested start\noffset is not huge page aligned:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000036\nRIP: 0010:filemap_get_folios_contig+0xdf/0x290\nRSP: 0018:ffffc9002092fbe8 EFLAGS: 00010202\nRAX: 0000000000000002 RBX: 0000000000000002 RCX: 0000000000000002\n\nThe fault occurs here, because xas_load returns a folio with value 2:\n\n filemap_get_folios_contig()\n for (folio = xas_load(\u0026xas); folio \u0026\u0026 xas.xa_index \u003c= end;\n folio = xas_next(\u0026xas)) {\n ...\n if (!folio_try_get(folio)) \u003c-- BOOM\n\n\"2\" is an xarray sibling entry. We get it because memfd_pin_folios does\nnot round the indices passed to filemap_get_folios_contig to huge page\nboundaries for THP, so we load from the middle of a huge page range see a\nsibling. (It does round for hugetlbfs, at the is_file_hugepages test).\n\nTo fix, if the folio is a sibling, then return the next index as the\nstarting point for the next call to filemap_get_folios_contig.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49873",
"url": "https://www.suse.com/security/cve/CVE-2024-49873"
},
{
"category": "external",
"summary": "SUSE Bug 1232291 for CVE-2024-49873",
"url": "https://bugzilla.suse.com/1232291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49873"
},
{
"cve": "CVE-2024-49874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49874"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition\n\nIn the svc_i3c_master_probe function, \u0026master-\u003ehj_work is bound with\nsvc_i3c_master_hj_work, \u0026master-\u003eibi_work is bound with\nsvc_i3c_master_ibi_work. And svc_i3c_master_ibi_work can start the\nhj_work, svc_i3c_master_irq_handler can start the ibi_work.\n\nIf we remove the module which will call svc_i3c_master_remove to\nmake cleanup, it will free master-\u003ebase through i3c_master_unregister\nwhile the work mentioned above will be used. The sequence of operations\nthat may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | svc_i3c_master_hj_work\nsvc_i3c_master_remove |\ni3c_master_unregister(\u0026master-\u003ebase)|\ndevice_unregister(\u0026master-\u003edev) |\ndevice_release |\n//free master-\u003ebase |\n | i3c_master_do_daa(\u0026master-\u003ebase)\n | //use master-\u003ebase\n\nFix it by ensuring that the work is canceled before proceeding with the\ncleanup in svc_i3c_master_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49874",
"url": "https://www.suse.com/security/cve/CVE-2024-49874"
},
{
"category": "external",
"summary": "SUSE Bug 1232295 for CVE-2024-49874",
"url": "https://bugzilla.suse.com/1232295"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49874"
},
{
"cve": "CVE-2024-49875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49875"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: map the EBADMSG to nfserr_io to avoid warning\n\nExt4 will throw -EBADMSG through ext4_readdir when a checksum error\noccurs, resulting in the following WARNING.\n\nFix it by mapping EBADMSG to nfserr_io.\n\nnfsd_buffered_readdir\n iterate_dir // -EBADMSG -74\n ext4_readdir // .iterate_shared\n ext4_dx_readdir\n ext4_htree_fill_tree\n htree_dirblock_to_tree\n ext4_read_dirblock\n __ext4_read_dirblock\n ext4_dirblock_csum_verify\n warn_no_space_for_csum\n __warn_no_space_for_csum\n return ERR_PTR(-EFSBADCRC) // -EBADMSG -74\n nfserrno // WARNING\n\n[ 161.115610] ------------[ cut here ]------------\n[ 161.116465] nfsd: non-standard errno: -74\n[ 161.117315] WARNING: CPU: 1 PID: 780 at fs/nfsd/nfsproc.c:878 nfserrno+0x9d/0xd0\n[ 161.118596] Modules linked in:\n[ 161.119243] CPU: 1 PID: 780 Comm: nfsd Not tainted 5.10.0-00014-g79679361fd5d #138\n[ 161.120684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qe\nmu.org 04/01/2014\n[ 161.123601] RIP: 0010:nfserrno+0x9d/0xd0\n[ 161.124676] Code: 0f 87 da 30 dd 00 83 e3 01 b8 00 00 00 05 75 d7 44 89 ee 48 c7 c7 c0 57 24 98 89 44 24 04 c6\n 05 ce 2b 61 03 01 e8 99 20 d8 00 \u003c0f\u003e 0b 8b 44 24 04 eb b5 4c 89 e6 48 c7 c7 a0 6d a4 99 e8 cc 15 33\n[ 161.127797] RSP: 0018:ffffc90000e2f9c0 EFLAGS: 00010286\n[ 161.128794] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000\n[ 161.130089] RDX: 1ffff1103ee16f6d RSI: 0000000000000008 RDI: fffff520001c5f2a\n[ 161.131379] RBP: 0000000000000022 R08: 0000000000000001 R09: ffff8881f70c1827\n[ 161.132664] R10: ffffed103ee18304 R11: 0000000000000001 R12: 0000000000000021\n[ 161.133949] R13: 00000000ffffffb6 R14: ffff8881317c0000 R15: ffffc90000e2fbd8\n[ 161.135244] FS: 0000000000000000(0000) GS:ffff8881f7080000(0000) knlGS:0000000000000000\n[ 161.136695] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 161.137761] CR2: 00007fcaad70b348 CR3: 0000000144256006 CR4: 0000000000770ee0\n[ 161.139041] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 161.140291] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 161.141519] PKRU: 55555554\n[ 161.142076] Call Trace:\n[ 161.142575] ? __warn+0x9b/0x140\n[ 161.143229] ? nfserrno+0x9d/0xd0\n[ 161.143872] ? report_bug+0x125/0x150\n[ 161.144595] ? handle_bug+0x41/0x90\n[ 161.145284] ? exc_invalid_op+0x14/0x70\n[ 161.146009] ? asm_exc_invalid_op+0x12/0x20\n[ 161.146816] ? nfserrno+0x9d/0xd0\n[ 161.147487] nfsd_buffered_readdir+0x28b/0x2b0\n[ 161.148333] ? nfsd4_encode_dirent_fattr+0x380/0x380\n[ 161.149258] ? nfsd_buffered_filldir+0xf0/0xf0\n[ 161.150093] ? wait_for_concurrent_writes+0x170/0x170\n[ 161.151004] ? generic_file_llseek_size+0x48/0x160\n[ 161.151895] nfsd_readdir+0x132/0x190\n[ 161.152606] ? nfsd4_encode_dirent_fattr+0x380/0x380\n[ 161.153516] ? nfsd_unlink+0x380/0x380\n[ 161.154256] ? override_creds+0x45/0x60\n[ 161.155006] nfsd4_encode_readdir+0x21a/0x3d0\n[ 161.155850] ? nfsd4_encode_readlink+0x210/0x210\n[ 161.156731] ? write_bytes_to_xdr_buf+0x97/0xe0\n[ 161.157598] ? __write_bytes_to_xdr_buf+0xd0/0xd0\n[ 161.158494] ? lock_downgrade+0x90/0x90\n[ 161.159232] ? nfs4svc_decode_voidarg+0x10/0x10\n[ 161.160092] nfsd4_encode_operation+0x15a/0x440\n[ 161.160959] nfsd4_proc_compound+0x718/0xe90\n[ 161.161818] nfsd_dispatch+0x18e/0x2c0\n[ 161.162586] svc_process_common+0x786/0xc50\n[ 161.163403] ? nfsd_svc+0x380/0x380\n[ 161.164137] ? svc_printk+0x160/0x160\n[ 161.164846] ? svc_xprt_do_enqueue.part.0+0x365/0x380\n[ 161.165808] ? nfsd_svc+0x380/0x380\n[ 161.166523] ? rcu_is_watching+0x23/0x40\n[ 161.167309] svc_process+0x1a5/0x200\n[ 161.168019] nfsd+0x1f5/0x380\n[ 161.168663] ? nfsd_shutdown_threads+0x260/0x260\n[ 161.169554] kthread+0x1c4/0x210\n[ 161.170224] ? kthread_insert_work_sanity_check+0x80/0x80\n[ 161.171246] ret_from_fork+0x1f/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49875",
"url": "https://www.suse.com/security/cve/CVE-2024-49875"
},
{
"category": "external",
"summary": "SUSE Bug 1232333 for CVE-2024-49875",
"url": "https://bugzilla.suse.com/1232333"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-49875"
},
{
"cve": "CVE-2024-49876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49876"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: fix UAF around queue destruction\n\nWe currently do stuff like queuing the final destruction step on a\nrandom system wq, which will outlive the driver instance. With bad\ntiming we can teardown the driver with one or more work workqueue still\nbeing alive leading to various UAF splats. Add a fini step to ensure\nuser queues are properly torn down. At this point GuC should already be\nnuked so queue itself should no longer be referenced from hw pov.\n\nv2 (Matt B)\n - Looks much safer to use a waitqueue and then just wait for the\n xa_array to become empty before triggering the drain.\n\n(cherry picked from commit 861108666cc0e999cffeab6aff17b662e68774e3)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49876",
"url": "https://www.suse.com/security/cve/CVE-2024-49876"
},
{
"category": "external",
"summary": "SUSE Bug 1232336 for CVE-2024-49876",
"url": "https://bugzilla.suse.com/1232336"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49876"
},
{
"cve": "CVE-2024-49877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49877"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate\n\nWhen doing cleanup, if flags without OCFS2_BH_READAHEAD, it may trigger\nNULL pointer dereference in the following ocfs2_set_buffer_uptodate() if\nbh is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49877",
"url": "https://www.suse.com/security/cve/CVE-2024-49877"
},
{
"category": "external",
"summary": "SUSE Bug 1232339 for CVE-2024-49877",
"url": "https://bugzilla.suse.com/1232339"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49877"
},
{
"cve": "CVE-2024-49878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49878"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nresource: fix region_intersects() vs add_memory_driver_managed()\n\nOn a system with CXL memory, the resource tree (/proc/iomem) related to\nCXL memory may look like something as follows.\n\n490000000-50fffffff : CXL Window 0\n 490000000-50fffffff : region0\n 490000000-50fffffff : dax0.0\n 490000000-50fffffff : System RAM (kmem)\n\nBecause drivers/dax/kmem.c calls add_memory_driver_managed() during\nonlining CXL memory, which makes \"System RAM (kmem)\" a descendant of \"CXL\nWindow X\". This confuses region_intersects(), which expects all \"System\nRAM\" resources to be at the top level of iomem_resource. This can lead to\nbugs.\n\nFor example, when the following command line is executed to write some\nmemory in CXL memory range via /dev/mem,\n\n $ dd if=data of=/dev/mem bs=$((1 \u003c\u003c 10)) seek=$((0x490000000 \u003e\u003e 10)) count=1\n dd: error writing \u0027/dev/mem\u0027: Bad address\n 1+0 records in\n 0+0 records out\n 0 bytes copied, 0.0283507 s, 0.0 kB/s\n\nthe command fails as expected. However, the error code is wrong. It\nshould be \"Operation not permitted\" instead of \"Bad address\". More\nseriously, the /dev/mem permission checking in devmem_is_allowed() passes\nincorrectly. Although the accessing is prevented later because ioremap()\nisn\u0027t allowed to map system RAM, it is a potential security issue. During\ncommand executing, the following warning is reported in the kernel log for\ncalling ioremap() on system RAM.\n\n ioremap on RAM at 0x0000000490000000 - 0x0000000490000fff\n WARNING: CPU: 2 PID: 416 at arch/x86/mm/ioremap.c:216 __ioremap_caller.constprop.0+0x131/0x35d\n Call Trace:\n memremap+0xcb/0x184\n xlate_dev_mem_ptr+0x25/0x2f\n write_mem+0x94/0xfb\n vfs_write+0x128/0x26d\n ksys_write+0xac/0xfe\n do_syscall_64+0x9a/0xfd\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nThe details of command execution process are as follows. In the above\nresource tree, \"System RAM\" is a descendant of \"CXL Window 0\" instead of a\ntop level resource. So, region_intersects() will report no System RAM\nresources in the CXL memory region incorrectly, because it only checks the\ntop level resources. Consequently, devmem_is_allowed() will return 1\n(allow access via /dev/mem) for CXL memory region incorrectly. \nFortunately, ioremap() doesn\u0027t allow to map System RAM and reject the\naccess.\n\nSo, region_intersects() needs to be fixed to work correctly with the\nresource tree with \"System RAM\" not at top level as above. To fix it, if\nwe found a unmatched resource in the top level, we will continue to search\nmatched resources in its descendant resources. So, we will not miss any\nmatched resources in resource tree anymore.\n\nIn the new implementation, an example resource tree\n\n|------------- \"CXL Window 0\" ------------|\n|-- \"System RAM\" --|\n\nwill behave similar as the following fake resource tree for\nregion_intersects(, IORESOURCE_SYSTEM_RAM, ),\n\n|-- \"System RAM\" --||-- \"CXL Window 0a\" --|\n\nWhere \"CXL Window 0a\" is part of the original \"CXL Window 0\" that\nisn\u0027t covered by \"System RAM\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49878",
"url": "https://www.suse.com/security/cve/CVE-2024-49878"
},
{
"category": "external",
"summary": "SUSE Bug 1232340 for CVE-2024-49878",
"url": "https://bugzilla.suse.com/1232340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49878"
},
{
"cve": "CVE-2024-49879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49879"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: omapdrm: Add missing check for alloc_ordered_workqueue\n\nAs it may return NULL pointer and cause NULL pointer dereference. Add check\nfor the return value of alloc_ordered_workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49879",
"url": "https://www.suse.com/security/cve/CVE-2024-49879"
},
{
"category": "external",
"summary": "SUSE Bug 1232349 for CVE-2024-49879",
"url": "https://bugzilla.suse.com/1232349"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49879"
},
{
"cve": "CVE-2024-49880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix off by one issue in alloc_flex_gd()\n\nWesley reported an issue:\n\n==================================================================\nEXT4-fs (dm-5): resizing filesystem from 7168 to 786432 blocks\n------------[ cut here ]------------\nkernel BUG at fs/ext4/resize.c:324!\nCPU: 9 UID: 0 PID: 3576 Comm: resize2fs Not tainted 6.11.0+ #27\nRIP: 0010:ext4_resize_fs+0x1212/0x12d0\nCall Trace:\n __ext4_ioctl+0x4e0/0x1800\n ext4_ioctl+0x12/0x20\n __x64_sys_ioctl+0x99/0xd0\n x64_sys_call+0x1206/0x20d0\n do_syscall_64+0x72/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n==================================================================\n\nWhile reviewing the patch, Honza found that when adjusting resize_bg in\nalloc_flex_gd(), it was possible for flex_gd-\u003eresize_bg to be bigger than\nflexbg_size.\n\nThe reproduction of the problem requires the following:\n\n o_group = flexbg_size * 2 * n;\n o_size = (o_group + 1) * group_size;\n n_group: [o_group + flexbg_size, o_group + flexbg_size * 2)\n o_size = (n_group + 1) * group_size;\n\nTake n=0,flexbg_size=16 as an example:\n\n last:15\n|o---------------|--------------n-|\no_group:0 resize to n_group:30\n\nThe corresponding reproducer is:\n\nimg=test.img\nrm -f $img\ntruncate -s 600M $img\nmkfs.ext4 -F $img -b 1024 -G 16 8M\ndev=`losetup -f --show $img`\nmkdir -p /tmp/test\nmount $dev /tmp/test\nresize2fs $dev 248M\n\nDelete the problematic plus 1 to fix the issue, and add a WARN_ON_ONCE()\nto prevent the issue from happening again.\n\n[ Note: another reproucer which this commit fixes is:\n\n img=test.img\n rm -f $img\n truncate -s 25MiB $img\n mkfs.ext4 -b 4096 -E nodiscard,lazy_itable_init=0,lazy_journal_init=0 $img\n truncate -s 3GiB $img\n dev=`losetup -f --show $img`\n mkdir -p /tmp/test\n mount $dev /tmp/test\n resize2fs $dev 3G\n umount $dev\n losetup -d $dev\n\n -- TYT ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49880",
"url": "https://www.suse.com/security/cve/CVE-2024-49880"
},
{
"category": "external",
"summary": "SUSE Bug 1232205 for CVE-2024-49880",
"url": "https://bugzilla.suse.com/1232205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49880"
},
{
"cve": "CVE-2024-49881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: update orig_path in ext4_find_extent()\n\nIn ext4_find_extent(), if the path is not big enough, we free it and set\n*orig_path to NULL. But after reallocating and successfully initializing\nthe path, we don\u0027t update *orig_path, in which case the caller gets a\nvalid path but a NULL ppath, and this may cause a NULL pointer dereference\nor a path memory leak. For example:\n\next4_split_extent\n path = *ppath = 2000\n ext4_find_extent\n if (depth \u003e path[0].p_maxdepth)\n kfree(path = 2000);\n *orig_path = path = NULL;\n path = kcalloc() = 3000\n ext4_split_extent_at(*ppath = NULL)\n path = *ppath;\n ex = path[depth].p_ext;\n // NULL pointer dereference!\n\n==================================================================\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nCPU: 6 UID: 0 PID: 576 Comm: fsstress Not tainted 6.11.0-rc2-dirty #847\nRIP: 0010:ext4_split_extent_at+0x6d/0x560\nCall Trace:\n \u003cTASK\u003e\n ext4_split_extent.isra.0+0xcb/0x1b0\n ext4_ext_convert_to_initialized+0x168/0x6c0\n ext4_ext_handle_unwritten_extents+0x325/0x4d0\n ext4_ext_map_blocks+0x520/0xdb0\n ext4_map_blocks+0x2b0/0x690\n ext4_iomap_begin+0x20e/0x2c0\n[...]\n==================================================================\n\nTherefore, *orig_path is updated when the extent lookup succeeds, so that\nthe caller can safely use path or *ppath.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49881",
"url": "https://www.suse.com/security/cve/CVE-2024-49881"
},
{
"category": "external",
"summary": "SUSE Bug 1232201 for CVE-2024-49881",
"url": "https://bugzilla.suse.com/1232201"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49881"
},
{
"cve": "CVE-2024-49882",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49882"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix double brelse() the buffer of the extents path\n\nIn ext4_ext_try_to_merge_up(), set path[1].p_bh to NULL after it has been\nreleased, otherwise it may be released twice. An example of what triggers\nthis is as follows:\n\n split2 map split1\n|--------|-------|--------|\n\next4_ext_map_blocks\n ext4_ext_handle_unwritten_extents\n ext4_split_convert_extents\n // path-\u003ep_depth == 0\n ext4_split_extent\n // 1. do split1\n ext4_split_extent_at\n |ext4_ext_insert_extent\n | ext4_ext_create_new_leaf\n | ext4_ext_grow_indepth\n | le16_add_cpu(\u0026neh-\u003eeh_depth, 1)\n | ext4_find_extent\n | // return -ENOMEM\n |// get error and try zeroout\n |path = ext4_find_extent\n | path-\u003ep_depth = 1\n |ext4_ext_try_to_merge\n | ext4_ext_try_to_merge_up\n | path-\u003ep_depth = 0\n | brelse(path[1].p_bh) ---\u003e not set to NULL here\n |// zeroout success\n // 2. update path\n ext4_find_extent\n // 3. do split2\n ext4_split_extent_at\n ext4_ext_insert_extent\n ext4_ext_create_new_leaf\n ext4_ext_grow_indepth\n le16_add_cpu(\u0026neh-\u003eeh_depth, 1)\n ext4_find_extent\n path[0].p_bh = NULL;\n path-\u003ep_depth = 1\n read_extent_tree_block ---\u003e return err\n // path[1].p_bh is still the old value\n ext4_free_ext_path\n ext4_ext_drop_refs\n // path-\u003ep_depth == 1\n brelse(path[1].p_bh) ---\u003e brelse a buffer twice\n\nFinally got the following WARRNING when removing the buffer from lru:\n\n============================================\nVFS: brelse: Trying to free free buffer\nWARNING: CPU: 2 PID: 72 at fs/buffer.c:1241 __brelse+0x58/0x90\nCPU: 2 PID: 72 Comm: kworker/u19:1 Not tainted 6.9.0-dirty #716\nRIP: 0010:__brelse+0x58/0x90\nCall Trace:\n \u003cTASK\u003e\n __find_get_block+0x6e7/0x810\n bdev_getblk+0x2b/0x480\n __ext4_get_inode_loc+0x48a/0x1240\n ext4_get_inode_loc+0xb2/0x150\n ext4_reserve_inode_write+0xb7/0x230\n __ext4_mark_inode_dirty+0x144/0x6a0\n ext4_ext_insert_extent+0x9c8/0x3230\n ext4_ext_map_blocks+0xf45/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n============================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49882",
"url": "https://www.suse.com/security/cve/CVE-2024-49882"
},
{
"category": "external",
"summary": "SUSE Bug 1232200 for CVE-2024-49882",
"url": "https://bugzilla.suse.com/1232200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49882"
},
{
"cve": "CVE-2024-49883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49883"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: aovid use-after-free in ext4_ext_insert_extent()\n\nAs Ojaswin mentioned in Link, in ext4_ext_insert_extent(), if the path is\nreallocated in ext4_ext_create_new_leaf(), we\u0027ll use the stale path and\ncause UAF. Below is a sample trace with dummy values:\n\next4_ext_insert_extent\n path = *ppath = 2000\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(ppath)\n path = *ppath = 2000\n if (depth \u003e path[0].p_maxdepth)\n kfree(path = 2000);\n *ppath = path = NULL;\n path = kcalloc() = 3000\n *ppath = 3000;\n return path;\n /* here path is still 2000, UAF! */\n eh = path[depth].p_hdr\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_ext_insert_extent+0x26d4/0x3330\nRead of size 8 at addr ffff8881027bf7d0 by task kworker/u36:1/179\nCPU: 3 UID: 0 PID: 179 Comm: kworker/u6:1 Not tainted 6.11.0-rc2-dirty #866\nCall Trace:\n \u003cTASK\u003e\n ext4_ext_insert_extent+0x26d4/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n[...]\n\nAllocated by task 179:\n ext4_find_extent+0x81c/0x1f70\n ext4_ext_map_blocks+0x146/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n\nFreed by task 179:\n kfree+0xcb/0x240\n ext4_find_extent+0x7c0/0x1f70\n ext4_ext_insert_extent+0xa26/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n==================================================================\n\nSo use *ppath to update the path to avoid the above problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49883",
"url": "https://www.suse.com/security/cve/CVE-2024-49883"
},
{
"category": "external",
"summary": "SUSE Bug 1232199 for CVE-2024-49883",
"url": "https://bugzilla.suse.com/1232199"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49883"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49885",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49885"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm, slub: avoid zeroing kmalloc redzone\n\nSince commit 946fa0dbf2d8 (\"mm/slub: extend redzone check to extra\nallocated kmalloc space than requested\"), setting orig_size treats\nthe wasted space (object_size - orig_size) as a redzone. However with\ninit_on_free=1 we clear the full object-\u003esize, including the redzone.\n\nAdditionally we clear the object metadata, including the stored orig_size,\nmaking it zero, which makes check_object() treat the whole object as a\nredzone.\n\nThese issues lead to the following BUG report with \"slub_debug=FUZ\ninit_on_free=1\":\n\n[ 0.000000] =============================================================================\n[ 0.000000] BUG kmalloc-8 (Not tainted): kmalloc Redzone overwritten\n[ 0.000000] -----------------------------------------------------------------------------\n[ 0.000000]\n[ 0.000000] 0xffff000010032858-0xffff00001003285f @offset=2136. First byte 0x0 instead of 0xcc\n[ 0.000000] FIX kmalloc-8: Restoring kmalloc Redzone 0xffff000010032858-0xffff00001003285f=0xcc\n[ 0.000000] Slab 0xfffffdffc0400c80 objects=36 used=23 fp=0xffff000010032a18 flags=0x3fffe0000000200(workingset|node=0|zone=0|lastcpupid=0x1ffff)\n[ 0.000000] Object 0xffff000010032858 @offset=2136 fp=0xffff0000100328c8\n[ 0.000000]\n[ 0.000000] Redzone ffff000010032850: cc cc cc cc cc cc cc cc ........\n[ 0.000000] Object ffff000010032858: cc cc cc cc cc cc cc cc ........\n[ 0.000000] Redzone ffff000010032860: cc cc cc cc cc cc cc cc ........\n[ 0.000000] Padding ffff0000100328b4: 00 00 00 00 00 00 00 00 00 00 00 00 ............\n[ 0.000000] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.11.0-rc3-next-20240814-00004-g61844c55c3f4 #144\n[ 0.000000] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 0.000000] Call trace:\n[ 0.000000] dump_backtrace+0x90/0xe8\n[ 0.000000] show_stack+0x18/0x24\n[ 0.000000] dump_stack_lvl+0x74/0x8c\n[ 0.000000] dump_stack+0x18/0x24\n[ 0.000000] print_trailer+0x150/0x218\n[ 0.000000] check_object+0xe4/0x454\n[ 0.000000] free_to_partial_list+0x2f8/0x5ec\n\nTo address the issue, use orig_size to clear the used area. And restore\nthe value of orig_size after clear the remaining area.\n\nWhen CONFIG_SLUB_DEBUG not defined, (get_orig_size()\u0027 directly returns\ns-\u003eobject_size. So when using memset to init the area, the size can simply\nbe orig_size, as orig_size returns object_size when CONFIG_SLUB_DEBUG not\nenabled. And orig_size can never be bigger than object_size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49885",
"url": "https://www.suse.com/security/cve/CVE-2024-49885"
},
{
"category": "external",
"summary": "SUSE Bug 1232197 for CVE-2024-49885",
"url": "https://bugzilla.suse.com/1232197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49885"
},
{
"cve": "CVE-2024-49886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug\n\nAttaching SST PCI device to VM causes \"BUG: KASAN: slab-out-of-bounds\".\nkasan report:\n[ 19.411889] ==================================================================\n[ 19.413702] BUG: KASAN: slab-out-of-bounds in _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.415634] Read of size 8 at addr ffff888829e65200 by task cpuhp/16/113\n[ 19.417368]\n[ 19.418627] CPU: 16 PID: 113 Comm: cpuhp/16 Tainted: G E 6.9.0 #10\n[ 19.420435] Hardware name: VMware, Inc. VMware20,1/440BX Desktop Reference Platform, BIOS VMW201.00V.20192059.B64.2207280713 07/28/2022\n[ 19.422687] Call Trace:\n[ 19.424091] \u003cTASK\u003e\n[ 19.425448] dump_stack_lvl+0x5d/0x80\n[ 19.426963] ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.428694] print_report+0x19d/0x52e\n[ 19.430206] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 19.431837] ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.433539] kasan_report+0xf0/0x170\n[ 19.435019] ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.436709] _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.438379] ? __pfx_sched_clock_cpu+0x10/0x10\n[ 19.439910] isst_if_cpu_online+0x406/0x58f [isst_if_common]\n[ 19.441573] ? __pfx_isst_if_cpu_online+0x10/0x10 [isst_if_common]\n[ 19.443263] ? ttwu_queue_wakelist+0x2c1/0x360\n[ 19.444797] cpuhp_invoke_callback+0x221/0xec0\n[ 19.446337] cpuhp_thread_fun+0x21b/0x610\n[ 19.447814] ? __pfx_cpuhp_thread_fun+0x10/0x10\n[ 19.449354] smpboot_thread_fn+0x2e7/0x6e0\n[ 19.450859] ? __pfx_smpboot_thread_fn+0x10/0x10\n[ 19.452405] kthread+0x29c/0x350\n[ 19.453817] ? __pfx_kthread+0x10/0x10\n[ 19.455253] ret_from_fork+0x31/0x70\n[ 19.456685] ? __pfx_kthread+0x10/0x10\n[ 19.458114] ret_from_fork_asm+0x1a/0x30\n[ 19.459573] \u003c/TASK\u003e\n[ 19.460853]\n[ 19.462055] Allocated by task 1198:\n[ 19.463410] kasan_save_stack+0x30/0x50\n[ 19.464788] kasan_save_track+0x14/0x30\n[ 19.466139] __kasan_kmalloc+0xaa/0xb0\n[ 19.467465] __kmalloc+0x1cd/0x470\n[ 19.468748] isst_if_cdev_register+0x1da/0x350 [isst_if_common]\n[ 19.470233] isst_if_mbox_init+0x108/0xff0 [isst_if_mbox_msr]\n[ 19.471670] do_one_initcall+0xa4/0x380\n[ 19.472903] do_init_module+0x238/0x760\n[ 19.474105] load_module+0x5239/0x6f00\n[ 19.475285] init_module_from_file+0xd1/0x130\n[ 19.476506] idempotent_init_module+0x23b/0x650\n[ 19.477725] __x64_sys_finit_module+0xbe/0x130\n[ 19.476506] idempotent_init_module+0x23b/0x650\n[ 19.477725] __x64_sys_finit_module+0xbe/0x130\n[ 19.478920] do_syscall_64+0x82/0x160\n[ 19.480036] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 19.481292]\n[ 19.482205] The buggy address belongs to the object at ffff888829e65000\n which belongs to the cache kmalloc-512 of size 512\n[ 19.484818] The buggy address is located 0 bytes to the right of\n allocated 512-byte region [ffff888829e65000, ffff888829e65200)\n[ 19.487447]\n[ 19.488328] The buggy address belongs to the physical page:\n[ 19.489569] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888829e60c00 pfn:0x829e60\n[ 19.491140] head: order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n[ 19.492466] anon flags: 0x57ffffc0000840(slab|head|node=1|zone=2|lastcpupid=0x1fffff)\n[ 19.493914] page_type: 0xffffffff()\n[ 19.494988] raw: 0057ffffc0000840 ffff88810004cc80 0000000000000000 0000000000000001\n[ 19.496451] raw: ffff888829e60c00 0000000080200018 00000001ffffffff 0000000000000000\n[ 19.497906] head: 0057ffffc0000840 ffff88810004cc80 0000000000000000 0000000000000001\n[ 19.499379] head: ffff888829e60c00 0000000080200018 00000001ffffffff 0000000000000000\n[ 19.500844] head: 0057ffffc0000003 ffffea0020a79801 ffffea0020a79848 00000000ffffffff\n[ 19.502316] head: 0000000800000000 0000000000000000 00000000ffffffff 0000000000000000\n[ 19.503784] page dumped because: k\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49886",
"url": "https://www.suse.com/security/cve/CVE-2024-49886"
},
{
"category": "external",
"summary": "SUSE Bug 1232196 for CVE-2024-49886",
"url": "https://bugzilla.suse.com/1232196"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49886"
},
{
"cve": "CVE-2024-49887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to don\u0027t panic system for no free segment fault injection\n\nf2fs: fix to don\u0027t panic system for no free segment fault injection\n\nsyzbot reports a f2fs bug as below:\n\nF2FS-fs (loop0): inject no free segment in get_new_segment of __allocate_new_segment+0x1ce/0x940 fs/f2fs/segment.c:3167\nF2FS-fs (loop0): Stopped filesystem due to reason: 7\n------------[ cut here ]------------\nkernel BUG at fs/f2fs/segment.c:2748!\nCPU: 0 UID: 0 PID: 5109 Comm: syz-executor304 Not tainted 6.11.0-rc6-syzkaller-00363-g89f5e14d05b4 #0\nRIP: 0010:get_new_segment fs/f2fs/segment.c:2748 [inline]\nRIP: 0010:new_curseg+0x1f61/0x1f70 fs/f2fs/segment.c:2836\nCall Trace:\n __allocate_new_segment+0x1ce/0x940 fs/f2fs/segment.c:3167\n f2fs_allocate_new_section fs/f2fs/segment.c:3181 [inline]\n f2fs_allocate_pinning_section+0xfa/0x4e0 fs/f2fs/segment.c:3195\n f2fs_expand_inode_data+0x5d6/0xbb0 fs/f2fs/file.c:1799\n f2fs_fallocate+0x448/0x960 fs/f2fs/file.c:1903\n vfs_fallocate+0x553/0x6c0 fs/open.c:334\n do_vfs_ioctl+0x2592/0x2e50 fs/ioctl.c:886\n __do_sys_ioctl fs/ioctl.c:905 [inline]\n __se_sys_ioctl+0x81/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0010:get_new_segment fs/f2fs/segment.c:2748 [inline]\nRIP: 0010:new_curseg+0x1f61/0x1f70 fs/f2fs/segment.c:2836\n\nThe root cause is when we inject no free segment fault into f2fs,\nwe should not panic system, fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49887",
"url": "https://www.suse.com/security/cve/CVE-2024-49887"
},
{
"category": "external",
"summary": "SUSE Bug 1232206 for CVE-2024-49887",
"url": "https://bugzilla.suse.com/1232206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49887"
},
{
"cve": "CVE-2024-49888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a sdiv overflow issue\n\nZac Ecob reported a problem where a bpf program may cause kernel crash due\nto the following error:\n Oops: divide error: 0000 [#1] PREEMPT SMP KASAN PTI\n\nThe failure is due to the below signed divide:\n LLONG_MIN/-1 where LLONG_MIN equals to -9,223,372,036,854,775,808.\nLLONG_MIN/-1 is supposed to give a positive number 9,223,372,036,854,775,808,\nbut it is impossible since for 64-bit system, the maximum positive\nnumber is 9,223,372,036,854,775,807. On x86_64, LLONG_MIN/-1 will\ncause a kernel exception. On arm64, the result for LLONG_MIN/-1 is\nLLONG_MIN.\n\nFurther investigation found all the following sdiv/smod cases may trigger\nan exception when bpf program is running on x86_64 platform:\n - LLONG_MIN/-1 for 64bit operation\n - INT_MIN/-1 for 32bit operation\n - LLONG_MIN%-1 for 64bit operation\n - INT_MIN%-1 for 32bit operation\nwhere -1 can be an immediate or in a register.\n\nOn arm64, there are no exceptions:\n - LLONG_MIN/-1 = LLONG_MIN\n - INT_MIN/-1 = INT_MIN\n - LLONG_MIN%-1 = 0\n - INT_MIN%-1 = 0\nwhere -1 can be an immediate or in a register.\n\nInsn patching is needed to handle the above cases and the patched codes\nproduced results aligned with above arm64 result. The below are pseudo\ncodes to handle sdiv/smod exceptions including both divisor -1 and divisor 0\nand the divisor is stored in a register.\n\nsdiv:\n tmp = rX\n tmp += 1 /* [-1, 0] -\u003e [0, 1]\n if tmp \u003e(unsigned) 1 goto L2\n if tmp == 0 goto L1\n rY = 0\n L1:\n rY = -rY;\n goto L3\n L2:\n rY /= rX\n L3:\n\nsmod:\n tmp = rX\n tmp += 1 /* [-1, 0] -\u003e [0, 1]\n if tmp \u003e(unsigned) 1 goto L1\n if tmp == 1 (is64 ? goto L2 : goto L3)\n rY = 0;\n goto L2\n L1:\n rY %= rX\n L2:\n goto L4 // only when !is64\n L3:\n wY = wY // only when !is64\n L4:\n\n [1] https://lore.kernel.org/bpf/tPJLTEh7S_DxFEqAI2Ji5MBSoZVg7_G-Py2iaZpAaWtM961fFTWtsnlzwvTbzBzaUzwQAoNATXKUlt0LZOFgnDcIyKCswAnAGdUF3LBrhGQ=@protonmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49888",
"url": "https://www.suse.com/security/cve/CVE-2024-49888"
},
{
"category": "external",
"summary": "SUSE Bug 1232208 for CVE-2024-49888",
"url": "https://bugzilla.suse.com/1232208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49888"
},
{
"cve": "CVE-2024-49889",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49889"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid use-after-free in ext4_ext_show_leaf()\n\nIn ext4_find_extent(), path may be freed by error or be reallocated, so\nusing a previously saved *ppath may have been freed and thus may trigger\nuse-after-free, as follows:\n\next4_split_extent\n path = *ppath;\n ext4_split_extent_at(ppath)\n path = ext4_find_extent(ppath)\n ext4_split_extent_at(ppath)\n // ext4_find_extent fails to free path\n // but zeroout succeeds\n ext4_ext_show_leaf(inode, path)\n eh = path[depth].p_hdr\n // path use-after-free !!!\n\nSimilar to ext4_split_extent_at(), we use *ppath directly as an input to\next4_ext_show_leaf(). Fix a spelling error by the way.\n\nSame problem in ext4_ext_handle_unwritten_extents(). Since \u0027path\u0027 is only\nused in ext4_ext_show_leaf(), remove \u0027path\u0027 and use *ppath directly.\n\nThis issue is triggered only when EXT_DEBUG is defined and therefore does\nnot affect functionality.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49889",
"url": "https://www.suse.com/security/cve/CVE-2024-49889"
},
{
"category": "external",
"summary": "SUSE Bug 1232215 for CVE-2024-49889",
"url": "https://bugzilla.suse.com/1232215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49889"
},
{
"cve": "CVE-2024-49890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: ensure the fw_info is not null before using it\n\nThis resolves the dereference null return value warning\nreported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49890",
"url": "https://www.suse.com/security/cve/CVE-2024-49890"
},
{
"category": "external",
"summary": "SUSE Bug 1232217 for CVE-2024-49890",
"url": "https://bugzilla.suse.com/1232217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49890"
},
{
"cve": "CVE-2024-49891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49891"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths\n\nWhen the HBA is undergoing a reset or is handling an errata event, NULL ptr\ndereference crashes may occur in routines such as\nlpfc_sli_flush_io_rings(), lpfc_dev_loss_tmo_callbk(), or\nlpfc_abort_handler().\n\nAdd NULL ptr checks before dereferencing hdwq pointers that may have been\nfreed due to operations colliding with a reset or errata event handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49891",
"url": "https://www.suse.com/security/cve/CVE-2024-49891"
},
{
"category": "external",
"summary": "SUSE Bug 1232218 for CVE-2024-49891",
"url": "https://bugzilla.suse.com/1232218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49891"
},
{
"cve": "CVE-2024-49892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49892"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Initialize get_bytes_per_element\u0027s default to 1\n\nVariables, used as denominators and maybe not assigned to other values,\nshould not be 0. bytes_per_element_y \u0026 bytes_per_element_c are\ninitialized by get_bytes_per_element() which should never return 0.\n\nThis fixes 10 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49892",
"url": "https://www.suse.com/security/cve/CVE-2024-49892"
},
{
"category": "external",
"summary": "SUSE Bug 1232220 for CVE-2024-49892",
"url": "https://bugzilla.suse.com/1232220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49892"
},
{
"cve": "CVE-2024-49893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check stream_status before it is used\n\n[WHAT \u0026 HOW]\ndc_state_get_stream_status can return null, and therefore null must be\nchecked before stream_status is used.\n\nThis fixes 1 NULL_RETURNS issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49893",
"url": "https://www.suse.com/security/cve/CVE-2024-49893"
},
{
"category": "external",
"summary": "SUSE Bug 1232350 for CVE-2024-49893",
"url": "https://bugzilla.suse.com/1232350"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49893"
},
{
"cve": "CVE-2024-49894",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49894"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in degamma hardware format translation\n\nFixes index out of bounds issue in\n`cm_helper_translate_curve_to_degamma_hw_format` function. The issue\ncould occur when the index \u0027i\u0027 exceeds the number of transfer function\npoints (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds the function returns\nfalse to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:594 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:595 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:596 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49894",
"url": "https://www.suse.com/security/cve/CVE-2024-49894"
},
{
"category": "external",
"summary": "SUSE Bug 1232354 for CVE-2024-49894",
"url": "https://bugzilla.suse.com/1232354"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49894"
},
{
"cve": "CVE-2024-49895",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49895"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation\n\nThis commit addresses a potential index out of bounds issue in the\n`cm3_helper_translate_curve_to_degamma_hw_format` function in the DCN30\ncolor management module. The issue could occur when the index \u0027i\u0027\nexceeds the number of transfer function points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, the function returns\nfalse to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:338 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:339 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:340 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49895",
"url": "https://www.suse.com/security/cve/CVE-2024-49895"
},
{
"category": "external",
"summary": "SUSE Bug 1232352 for CVE-2024-49895",
"url": "https://bugzilla.suse.com/1232352"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-49895"
},
{
"cve": "CVE-2024-49896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check stream before comparing them\n\n[WHAT \u0026 HOW]\namdgpu_dm can pass a null stream to dc_is_stream_unchanged. It is\nnecessary to check for null before dereferencing them.\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49896",
"url": "https://www.suse.com/security/cve/CVE-2024-49896"
},
{
"category": "external",
"summary": "SUSE Bug 1232221 for CVE-2024-49896",
"url": "https://bugzilla.suse.com/1232221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49896"
},
{
"cve": "CVE-2024-49897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check phantom_stream before it is used\n\ndcn32_enable_phantom_stream can return null, so returned value\nmust be checked before used.\n\nThis fixes 1 NULL_RETURNS issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49897",
"url": "https://www.suse.com/security/cve/CVE-2024-49897"
},
{
"category": "external",
"summary": "SUSE Bug 1232355 for CVE-2024-49897",
"url": "https://bugzilla.suse.com/1232355"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49897"
},
{
"cve": "CVE-2024-49898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49898"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null-initialized variables\n\n[WHAT \u0026 HOW]\ndrr_timing and subvp_pipe are initialized to null and they are not\nalways assigned new values. It is necessary to check for null before\ndereferencing.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49898",
"url": "https://www.suse.com/security/cve/CVE-2024-49898"
},
{
"category": "external",
"summary": "SUSE Bug 1232222 for CVE-2024-49898",
"url": "https://bugzilla.suse.com/1232222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49898"
},
{
"cve": "CVE-2024-49899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49899"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Initialize denominators\u0027 default to 1\n\n[WHAT \u0026 HOW]\nVariables used as denominators and maybe not assigned to other values,\nshould not be 0. Change their default to 1 so they are never 0.\n\nThis fixes 10 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49899",
"url": "https://www.suse.com/security/cve/CVE-2024-49899"
},
{
"category": "external",
"summary": "SUSE Bug 1232358 for CVE-2024-49899",
"url": "https://bugzilla.suse.com/1232358"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49899"
},
{
"cve": "CVE-2024-49900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49900"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Fix uninit-value access of new_ea in ea_buffer\n\nsyzbot reports that lzo1x_1_do_compress is using uninit-value:\n\n=====================================================\nBUG: KMSAN: uninit-value in lzo1x_1_do_compress+0x19f9/0x2510 lib/lzo/lzo1x_compress.c:178\n\n...\n\nUninit was stored to memory at:\n ea_put fs/jfs/xattr.c:639 [inline]\n\n...\n\nLocal variable ea_buf created at:\n __jfs_setxattr+0x5d/0x1ae0 fs/jfs/xattr.c:662\n __jfs_xattr_set+0xe6/0x1f0 fs/jfs/xattr.c:934\n\n=====================================================\n\nThe reason is ea_buf-\u003enew_ea is not initialized properly.\n\nFix this by using memset to empty its content at the beginning\nin ea_get().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49900",
"url": "https://www.suse.com/security/cve/CVE-2024-49900"
},
{
"category": "external",
"summary": "SUSE Bug 1232359 for CVE-2024-49900",
"url": "https://bugzilla.suse.com/1232359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49900"
},
{
"cve": "CVE-2024-49901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49901"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/adreno: Assign msm_gpu-\u003epdev earlier to avoid nullptrs\n\nThere are some cases, such as the one uncovered by Commit 46d4efcccc68\n(\"drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails\")\nwhere\n\nmsm_gpu_cleanup() : platform_set_drvdata(gpu-\u003epdev, NULL);\n\nis called on gpu-\u003epdev == NULL, as the GPU device has not been fully\ninitialized yet.\n\nTurns out that there\u0027s more than just the aforementioned path that\ncauses this to happen (e.g. the case when there\u0027s speedbin data in the\ncatalog, but opp-supported-hw is missing in DT).\n\nAssigning msm_gpu-\u003epdev earlier seems like the least painful solution\nto this, therefore do so.\n\nPatchwork: https://patchwork.freedesktop.org/patch/602742/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49901",
"url": "https://www.suse.com/security/cve/CVE-2024-49901"
},
{
"category": "external",
"summary": "SUSE Bug 1232305 for CVE-2024-49901",
"url": "https://bugzilla.suse.com/1232305"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49901"
},
{
"cve": "CVE-2024-49902",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49902"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: check if leafidx greater than num leaves per dmap tree\n\nsyzbot report a out of bounds in dbSplit, it because dmt_leafidx greater\nthan num leaves per dmap tree, add a checking for dmt_leafidx in dbFindLeaf.\n\nShaggy:\nModified sanity check to apply to control pages as well as leaf pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49902",
"url": "https://www.suse.com/security/cve/CVE-2024-49902"
},
{
"category": "external",
"summary": "SUSE Bug 1232378 for CVE-2024-49902",
"url": "https://bugzilla.suse.com/1232378"
},
{
"category": "external",
"summary": "SUSE Bug 1232379 for CVE-2024-49902",
"url": "https://bugzilla.suse.com/1232379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49902"
},
{
"cve": "CVE-2024-49903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Fix uaf in dbFreeBits\n\n[syzbot reported]\n==================================================================\nBUG: KASAN: slab-use-after-free in __mutex_lock_common kernel/locking/mutex.c:587 [inline]\nBUG: KASAN: slab-use-after-free in __mutex_lock+0xfe/0xd70 kernel/locking/mutex.c:752\nRead of size 8 at addr ffff8880229254b0 by task syz-executor357/5216\n\nCPU: 0 UID: 0 PID: 5216 Comm: syz-executor357 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n __mutex_lock_common kernel/locking/mutex.c:587 [inline]\n __mutex_lock+0xfe/0xd70 kernel/locking/mutex.c:752\n dbFreeBits+0x7ea/0xd90 fs/jfs/jfs_dmap.c:2390\n dbFreeDmap fs/jfs/jfs_dmap.c:2089 [inline]\n dbFree+0x35b/0x680 fs/jfs/jfs_dmap.c:409\n dbDiscardAG+0x8a9/0xa20 fs/jfs/jfs_dmap.c:1650\n jfs_ioc_trim+0x433/0x670 fs/jfs/jfs_discard.c:100\n jfs_ioctl+0x2d0/0x3e0 fs/jfs/ioctl.c:131\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n\nFreed by task 5218:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kfree+0x149/0x360 mm/slub.c:4594\n dbUnmount+0x11d/0x190 fs/jfs/jfs_dmap.c:278\n jfs_mount_rw+0x4ac/0x6a0 fs/jfs/jfs_mount.c:247\n jfs_remount+0x3d1/0x6b0 fs/jfs/super.c:454\n reconfigure_super+0x445/0x880 fs/super.c:1083\n vfs_cmd_reconfigure fs/fsopen.c:263 [inline]\n vfs_fsconfig_locked fs/fsopen.c:292 [inline]\n __do_sys_fsconfig fs/fsopen.c:473 [inline]\n __se_sys_fsconfig+0xb6e/0xf80 fs/fsopen.c:345\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[Analysis]\nThere are two paths (dbUnmount and jfs_ioc_trim) that generate race\ncondition when accessing bmap, which leads to the occurrence of uaf.\n\nUse the lock s_umount to synchronize them, in order to avoid uaf caused\nby race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49903",
"url": "https://www.suse.com/security/cve/CVE-2024-49903"
},
{
"category": "external",
"summary": "SUSE Bug 1232362 for CVE-2024-49903",
"url": "https://bugzilla.suse.com/1232362"
},
{
"category": "external",
"summary": "SUSE Bug 1233020 for CVE-2024-49903",
"url": "https://bugzilla.suse.com/1233020"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49903"
},
{
"cve": "CVE-2024-49904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: add list empty check to avoid null pointer issue\n\nAdd list empty check to avoid null pointer issues in some corner cases.\n- list_for_each_entry_safe()",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49904",
"url": "https://www.suse.com/security/cve/CVE-2024-49904"
},
{
"category": "external",
"summary": "SUSE Bug 1232356 for CVE-2024-49904",
"url": "https://bugzilla.suse.com/1232356"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49904"
},
{
"cve": "CVE-2024-49905",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49905"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_plane_handle_cursor_update (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_plane_handle_cursor_update function. Previously, \u0027afb\u0027 was\nassumed to be null, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm_plane.c:1298 amdgpu_dm_plane_handle_cursor_update() error: we previously assumed \u0027afb\u0027 could be null (see line 1252)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49905",
"url": "https://www.suse.com/security/cve/CVE-2024-49905"
},
{
"category": "external",
"summary": "SUSE Bug 1232357 for CVE-2024-49905",
"url": "https://bugzilla.suse.com/1232357"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49905"
},
{
"cve": "CVE-2024-49906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointer before try to access it\n\n[why \u0026 how]\nChange the order of the pipe_ctx-\u003eplane_state check to ensure that\nplane_state is not null before accessing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49906",
"url": "https://www.suse.com/security/cve/CVE-2024-49906"
},
{
"category": "external",
"summary": "SUSE Bug 1232332 for CVE-2024-49906",
"url": "https://bugzilla.suse.com/1232332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49906"
},
{
"cve": "CVE-2024-49907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before using dc-\u003eclk_mgr\n\n[WHY \u0026 HOW]\ndc-\u003eclk_mgr is null checked previously in the same function, indicating\nit might be null.\n\nPassing \"dc\" to \"dc-\u003ehwss.apply_idle_power_optimizations\", which\ndereferences null \"dc-\u003eclk_mgr\". (The function pointer resolves to\n\"dcn35_apply_idle_power_optimizations\".)\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49907",
"url": "https://www.suse.com/security/cve/CVE-2024-49907"
},
{
"category": "external",
"summary": "SUSE Bug 1232334 for CVE-2024-49907",
"url": "https://bugzilla.suse.com/1232334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49907"
},
{
"cve": "CVE-2024-49908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_update_cursor (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_update_cursor function. Previously, \u0027afb\u0027 was assumed to be\nnull at line 8388, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm.c:8433 amdgpu_dm_update_cursor()\n\terror: we previously assumed \u0027afb\u0027 could be null (see line 8388)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49908",
"url": "https://www.suse.com/security/cve/CVE-2024-49908"
},
{
"category": "external",
"summary": "SUSE Bug 1232335 for CVE-2024-49908",
"url": "https://bugzilla.suse.com/1232335"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49908"
},
{
"cve": "CVE-2024-49909",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49909"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn32_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null, but then it was being\ndereferenced without any null check. This could lead to a null pointer\ndereference if set_output_gamma is null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49909",
"url": "https://www.suse.com/security/cve/CVE-2024-49909"
},
{
"category": "external",
"summary": "SUSE Bug 1232337 for CVE-2024-49909",
"url": "https://bugzilla.suse.com/1232337"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49909"
},
{
"cve": "CVE-2024-49910",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49910"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn401_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn401_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null, but then it was being\ndereferenced without any null check. This could lead to a null pointer\ndereference if set_output_gamma is null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49910",
"url": "https://www.suse.com/security/cve/CVE-2024-49910"
},
{
"category": "external",
"summary": "SUSE Bug 1232365 for CVE-2024-49910",
"url": "https://bugzilla.suse.com/1232365"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49910"
},
{
"cve": "CVE-2024-49911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn20_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null at line 1030, but then it\nwas being dereferenced without any null check at line 1048. This could\npotentially lead to a null pointer dereference error if set_output_gamma\nis null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma at line 1048.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49911",
"url": "https://www.suse.com/security/cve/CVE-2024-49911"
},
{
"category": "external",
"summary": "SUSE Bug 1232366 for CVE-2024-49911",
"url": "https://bugzilla.suse.com/1232366"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49911"
},
{
"cve": "CVE-2024-49912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle null \u0027stream_status\u0027 in \u0027planes_changed_for_existing_stream\u0027\n\nThis commit adds a null check for \u0027stream_status\u0027 in the function\n\u0027planes_changed_for_existing_stream\u0027. Previously, the code assumed\n\u0027stream_status\u0027 could be null, but did not handle the case where it was\nactually null. This could lead to a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/core/dc_resource.c:3784 planes_changed_for_existing_stream() error: we previously assumed \u0027stream_status\u0027 could be null (see line 3774)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49912",
"url": "https://www.suse.com/security/cve/CVE-2024-49912"
},
{
"category": "external",
"summary": "SUSE Bug 1232367 for CVE-2024-49912",
"url": "https://bugzilla.suse.com/1232367"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49912"
},
{
"cve": "CVE-2024-49913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream\n\nThis commit addresses a null pointer dereference issue in the\n`commit_planes_for_stream` function at line 4140. The issue could occur\nwhen `top_pipe_to_program` is null.\n\nThe fix adds a check to ensure `top_pipe_to_program` is not null before\naccessing its stream_res. This prevents a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/core/dc.c:4140 commit_planes_for_stream() error: we previously assumed \u0027top_pipe_to_program\u0027 could be null (see line 3906)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49913",
"url": "https://www.suse.com/security/cve/CVE-2024-49913"
},
{
"category": "external",
"summary": "SUSE Bug 1232307 for CVE-2024-49913",
"url": "https://bugzilla.suse.com/1232307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49913"
},
{
"cve": "CVE-2024-49914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in the\n`dcn20_program_pipe` function. The issue could occur when\n`pipe_ctx-\u003eplane_state` is null.\n\nThe fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn20/dcn20_hwseq.c:1925 dcn20_program_pipe() error: we previously assumed \u0027pipe_ctx-\u003eplane_state\u0027 could be null (see line 1877)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49914",
"url": "https://www.suse.com/security/cve/CVE-2024-49914"
},
{
"category": "external",
"summary": "SUSE Bug 1232369 for CVE-2024-49914",
"url": "https://bugzilla.suse.com/1232369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49914"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-49916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr and clk_mgr-\u003efuncs in dcn401_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn401_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` or\n`dc-\u003eclk_mgr-\u003efuncs` is null.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` and `dc-\u003eclk_mgr-\u003efuncs` is\nnot null before accessing its functions. This prevents a potential null\npointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn401/dcn401_hwseq.c:416 dcn401_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 225)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49916",
"url": "https://www.suse.com/security/cve/CVE-2024-49916"
},
{
"category": "external",
"summary": "SUSE Bug 1231964 for CVE-2024-49916",
"url": "https://bugzilla.suse.com/1231964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49916"
},
{
"cve": "CVE-2024-49917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49917"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr and clk_mgr-\u003efuncs in dcn30_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn30_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` or\n`dc-\u003eclk_mgr-\u003efuncs` is null.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` and `dc-\u003eclk_mgr-\u003efuncs` is\nnot null before accessing its functions. This prevents a potential null\npointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:789 dcn30_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 628)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49917",
"url": "https://www.suse.com/security/cve/CVE-2024-49917"
},
{
"category": "external",
"summary": "SUSE Bug 1231965 for CVE-2024-49917",
"url": "https://bugzilla.suse.com/1231965"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49917"
},
{
"cve": "CVE-2024-49918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49918"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_acquire_idle_pipe_for_head_pipe_in_layer` function. The issue\ncould occur when `head_pipe` is null.\n\nThe fix adds a check to ensure `head_pipe` is not null before asserting\nit. If `head_pipe` is null, the function returns NULL to prevent a\npotential null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn32/dcn32_resource.c:2690 dcn32_acquire_idle_pipe_for_head_pipe_in_layer() error: we previously assumed \u0027head_pipe\u0027 could be null (see line 2681)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49918",
"url": "https://www.suse.com/security/cve/CVE-2024-49918"
},
{
"category": "external",
"summary": "SUSE Bug 1231967 for CVE-2024-49918",
"url": "https://bugzilla.suse.com/1231967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49918"
},
{
"cve": "CVE-2024-49919",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49919"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn201_acquire_free_pipe_for_layer` function. The issue could occur\nwhen `head_pipe` is null.\n\nThe fix adds a check to ensure `head_pipe` is not null before asserting\nit. If `head_pipe` is null, the function returns NULL to prevent a\npotential null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn201/dcn201_resource.c:1016 dcn201_acquire_free_pipe_for_layer() error: we previously assumed \u0027head_pipe\u0027 could be null (see line 1010)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49919",
"url": "https://www.suse.com/security/cve/CVE-2024-49919"
},
{
"category": "external",
"summary": "SUSE Bug 1231968 for CVE-2024-49919",
"url": "https://bugzilla.suse.com/1231968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49919"
},
{
"cve": "CVE-2024-49920",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49920"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before multiple uses\n\n[WHAT \u0026 HOW]\nPoniters, such as stream_enc and dc-\u003ebw_vbios, are null checked previously\nin the same function, so Coverity warns \"implies that stream_enc and\ndc-\u003ebw_vbios might be null\". They are used multiple times in the\nsubsequent code and need to be checked.\n\nThis fixes 10 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49920",
"url": "https://www.suse.com/security/cve/CVE-2024-49920"
},
{
"category": "external",
"summary": "SUSE Bug 1232313 for CVE-2024-49920",
"url": "https://bugzilla.suse.com/1232313"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49920"
},
{
"cve": "CVE-2024-49921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49921"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before used\n\n[WHAT \u0026 HOW]\nPoniters, such as dc-\u003eclk_mgr, are null checked previously in the same\nfunction, so Coverity warns \"implies that \"dc-\u003eclk_mgr\" might be null\".\nAs a result, these pointers need to be checked when used again.\n\nThis fixes 10 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49921",
"url": "https://www.suse.com/security/cve/CVE-2024-49921"
},
{
"category": "external",
"summary": "SUSE Bug 1232371 for CVE-2024-49921",
"url": "https://bugzilla.suse.com/1232371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49921"
},
{
"cve": "CVE-2024-49922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before using them\n\n[WHAT \u0026 HOW]\nThese pointers are null checked previously in the same function,\nindicating they might be null as reported by Coverity. As a result,\nthey need to be checked when used again.\n\nThis fixes 3 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49922",
"url": "https://www.suse.com/security/cve/CVE-2024-49922"
},
{
"category": "external",
"summary": "SUSE Bug 1232374 for CVE-2024-49922",
"url": "https://bugzilla.suse.com/1232374"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49922"
},
{
"cve": "CVE-2024-49923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags\n\n[WHAT \u0026 HOW]\n\"dcn20_validate_apply_pipe_split_flags\" dereferences merge, and thus it\ncannot be a null pointer. Let\u0027s pass a valid pointer to avoid null\ndereference.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49923",
"url": "https://www.suse.com/security/cve/CVE-2024-49923"
},
{
"category": "external",
"summary": "SUSE Bug 1232361 for CVE-2024-49923",
"url": "https://bugzilla.suse.com/1232361"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49923"
},
{
"cve": "CVE-2024-49924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: pxafb: Fix possible use after free in pxafb_task()\n\nIn the pxafb_probe function, it calls the pxafb_init_fbinfo function,\nafter which \u0026fbi-\u003etask is associated with pxafb_task. Moreover,\nwithin this pxafb_init_fbinfo function, the pxafb_blank function\nwithin the \u0026pxafb_ops struct is capable of scheduling work.\n\nIf we remove the module which will call pxafb_remove to make cleanup,\nit will call unregister_framebuffer function which can call\ndo_unregister_framebuffer to free fbi-\u003efb through\nput_fb_info(fb_info), while the work mentioned above will be used.\nThe sequence of operations that may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | pxafb_task\npxafb_remove |\nunregister_framebuffer(info) |\ndo_unregister_framebuffer(fb_info) |\nput_fb_info(fb_info) |\n// free fbi-\u003efb | set_ctrlr_state(fbi, state)\n | __pxafb_lcd_power(fbi, 0)\n | fbi-\u003elcd_power(on, \u0026fbi-\u003efb.var)\n | //use fbi-\u003efb\n\nFix it by ensuring that the work is canceled before proceeding\nwith the cleanup in pxafb_remove.\n\nNote that only root user can remove the driver at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49924",
"url": "https://www.suse.com/security/cve/CVE-2024-49924"
},
{
"category": "external",
"summary": "SUSE Bug 1232364 for CVE-2024-49924",
"url": "https://bugzilla.suse.com/1232364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49924"
},
{
"cve": "CVE-2024-49925",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49925"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: efifb: Register sysfs groups through driver core\n\nThe driver core can register and cleanup sysfs groups already.\nMake use of that functionality to simplify the error handling and\ncleanup.\n\nAlso avoid a UAF race during unregistering where the sysctl attributes\nwere usable after the info struct was freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49925",
"url": "https://www.suse.com/security/cve/CVE-2024-49925"
},
{
"category": "external",
"summary": "SUSE Bug 1232224 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232224"
},
{
"category": "external",
"summary": "SUSE Bug 1232225 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49925"
},
{
"cve": "CVE-2024-49926",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49926"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu-tasks: Fix access non-existent percpu rtpcp variable in rcu_tasks_need_gpcb()\n\nFor kernels built with CONFIG_FORCE_NR_CPUS=y, the nr_cpu_ids is\ndefined as NR_CPUS instead of the number of possible cpus, this\nwill cause the following system panic:\n\nsmpboot: Allowing 4 CPUs, 0 hotplug CPUs\n...\nsetup_percpu: NR_CPUS:512 nr_cpumask_bits:512 nr_cpu_ids:512 nr_node_ids:1\n...\nBUG: unable to handle page fault for address: ffffffff9911c8c8\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 0 PID: 15 Comm: rcu_tasks_trace Tainted: G W\n6.6.21 #1 5dc7acf91a5e8e9ac9dcfc35bee0245691283ea6\nRIP: 0010:rcu_tasks_need_gpcb+0x25d/0x2c0\nRSP: 0018:ffffa371c00a3e60 EFLAGS: 00010082\nCR2: ffffffff9911c8c8 CR3: 000000040fa20005 CR4: 00000000001706f0\nCall Trace:\n\u003cTASK\u003e\n? __die+0x23/0x80\n? page_fault_oops+0xa4/0x180\n? exc_page_fault+0x152/0x180\n? asm_exc_page_fault+0x26/0x40\n? rcu_tasks_need_gpcb+0x25d/0x2c0\n? __pfx_rcu_tasks_kthread+0x40/0x40\nrcu_tasks_one_gp+0x69/0x180\nrcu_tasks_kthread+0x94/0xc0\nkthread+0xe8/0x140\n? __pfx_kthread+0x40/0x40\nret_from_fork+0x34/0x80\n? __pfx_kthread+0x40/0x40\nret_from_fork_asm+0x1b/0x80\n\u003c/TASK\u003e\n\nConsidering that there may be holes in the CPU numbers, use the\nmaximum possible cpu number, instead of nr_cpu_ids, for configuring\nenqueue and dequeue limits.\n\n[ neeraj.upadhyay: Fix htmldocs build error reported by Stephen Rothwell ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49926",
"url": "https://www.suse.com/security/cve/CVE-2024-49926"
},
{
"category": "external",
"summary": "SUSE Bug 1232247 for CVE-2024-49926",
"url": "https://bugzilla.suse.com/1232247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49926"
},
{
"cve": "CVE-2024-49927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49927"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/ioapic: Handle allocation failures gracefully\n\nBreno observed panics when using failslab under certain conditions during\nruntime:\n\n can not alloc irq_pin_list (-1,0,20)\n Kernel panic - not syncing: IO-APIC: failed to add irq-pin. Can not proceed\n\n panic+0x4e9/0x590\n mp_irqdomain_alloc+0x9ab/0xa80\n irq_domain_alloc_irqs_locked+0x25d/0x8d0\n __irq_domain_alloc_irqs+0x80/0x110\n mp_map_pin_to_irq+0x645/0x890\n acpi_register_gsi_ioapic+0xe6/0x150\n hpet_open+0x313/0x480\n\nThat\u0027s a pointless panic which is a leftover of the historic IO/APIC code\nwhich panic\u0027ed during early boot when the interrupt allocation failed.\n\nThe only place which might justify panic is the PIT/HPET timer_check() code\nwhich tries to figure out whether the timer interrupt is delivered through\nthe IO/APIC. But that code does not require to handle interrupt allocation\nfailures. If the interrupt cannot be allocated then timer delivery fails\nand it either panics due to that or falls back to legacy mode.\n\nCure this by removing the panic wrapper around __add_pin_to_irq_node() and\nmaking mp_irqdomain_alloc() aware of the failure condition and handle it as\nany other failure in this function gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49927",
"url": "https://www.suse.com/security/cve/CVE-2024-49927"
},
{
"category": "external",
"summary": "SUSE Bug 1232249 for CVE-2024-49927",
"url": "https://bugzilla.suse.com/1232249"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49927"
},
{
"cve": "CVE-2024-49928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49928"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: avoid reading out of bounds when loading TX power FW elements\n\nBecause the loop-expression will do one more time before getting false from\ncond-expression, the original code copied one more entry size beyond valid\nregion.\n\nFix it by moving the entry copy to loop-body.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49928",
"url": "https://www.suse.com/security/cve/CVE-2024-49928"
},
{
"category": "external",
"summary": "SUSE Bug 1232250 for CVE-2024-49928",
"url": "https://bugzilla.suse.com/1232250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49928"
},
{
"cve": "CVE-2024-49929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49929"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: avoid NULL pointer dereference\n\niwl_mvm_tx_skb_sta() and iwl_mvm_tx_mpdu() verify that the mvmvsta\npointer is not NULL.\nIt retrieves this pointer using iwl_mvm_sta_from_mac80211, which is\ndereferencing the ieee80211_sta pointer.\nIf sta is NULL, iwl_mvm_sta_from_mac80211 will dereference a NULL\npointer.\nFix this by checking the sta pointer before retrieving the mvmsta\nfrom it. If sta is not NULL, then mvmsta isn\u0027t either.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49929",
"url": "https://www.suse.com/security/cve/CVE-2024-49929"
},
{
"category": "external",
"summary": "SUSE Bug 1232253 for CVE-2024-49929",
"url": "https://bugzilla.suse.com/1232253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49929"
},
{
"cve": "CVE-2024-49930",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49930"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix array out-of-bound access in SoC stats\n\nCurrently, the ath11k_soc_dp_stats::hal_reo_error array is defined with a\nmaximum size of DP_REO_DST_RING_MAX. However, the ath11k_dp_process_rx()\nfunction access ath11k_soc_dp_stats::hal_reo_error using the REO\ndestination SRNG ring ID, which is incorrect. SRNG ring ID differ from\nnormal ring ID, and this usage leads to out-of-bounds array access. To fix\nthis issue, modify ath11k_dp_process_rx() to use the normal ring ID\ndirectly instead of the SRNG ring ID to avoid out-of-bounds array access.\n\nTested-on: QCN9074 hw1.0 PCI WLAN.HK.2.7.0.1-01744-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49930",
"url": "https://www.suse.com/security/cve/CVE-2024-49930"
},
{
"category": "external",
"summary": "SUSE Bug 1232260 for CVE-2024-49930",
"url": "https://bugzilla.suse.com/1232260"
},
{
"category": "external",
"summary": "SUSE Bug 1232261 for CVE-2024-49930",
"url": "https://bugzilla.suse.com/1232261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49930"
},
{
"cve": "CVE-2024-49931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49931"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix array out-of-bound access in SoC stats\n\nCurrently, the ath12k_soc_dp_stats::hal_reo_error array is defined with a\nmaximum size of DP_REO_DST_RING_MAX. However, the ath12k_dp_rx_process()\nfunction access ath12k_soc_dp_stats::hal_reo_error using the REO\ndestination SRNG ring ID, which is incorrect. SRNG ring ID differ from\nnormal ring ID, and this usage leads to out-of-bounds array access. To\nfix this issue, modify ath12k_dp_rx_process() to use the normal ring ID\ndirectly instead of the SRNG ring ID to avoid out-of-bounds array access.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49931",
"url": "https://www.suse.com/security/cve/CVE-2024-49931"
},
{
"category": "external",
"summary": "SUSE Bug 1232275 for CVE-2024-49931",
"url": "https://bugzilla.suse.com/1232275"
},
{
"category": "external",
"summary": "SUSE Bug 1232277 for CVE-2024-49931",
"url": "https://bugzilla.suse.com/1232277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49931"
},
{
"cve": "CVE-2024-49932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t readahead the relocation inode on RST\n\nOn relocation we\u0027re doing readahead on the relocation inode, but if the\nfilesystem is backed by a RAID stripe tree we can get ENOENT (e.g. due to\npreallocated extents not being mapped in the RST) from the lookup.\n\nBut readahead doesn\u0027t handle the error and submits invalid reads to the\ndevice, causing an assertion in the scatter-gather list code:\n\n BTRFS info (device nvme1n1): balance: start -d -m -s\n BTRFS info (device nvme1n1): relocating block group 6480920576 flags data|raid0\n BTRFS error (device nvme1n1): cannot find raid-stripe for logical [6481928192, 6481969152] devid 2, profile raid0\n ------------[ cut here ]------------\n kernel BUG at include/linux/scatterlist.h:115!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 0 PID: 1012 Comm: btrfs Not tainted 6.10.0-rc7+ #567\n RIP: 0010:__blk_rq_map_sg+0x339/0x4a0\n RSP: 0018:ffffc90001a43820 EFLAGS: 00010202\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffea00045d4802\n RDX: 0000000117520000 RSI: 0000000000000000 RDI: ffff8881027d1000\n RBP: 0000000000003000 R08: ffffea00045d4902 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000001000 R12: ffff8881003d10b8\n R13: ffffc90001a438f0 R14: 0000000000000000 R15: 0000000000003000\n FS: 00007fcc048a6900(0000) GS:ffff88813bc00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 000000002cd11000 CR3: 00000001109ea001 CR4: 0000000000370eb0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x14/0x25\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x65/0x80\n ? __blk_rq_map_sg+0x339/0x4a0\n ? exc_invalid_op+0x50/0x70\n ? __blk_rq_map_sg+0x339/0x4a0\n ? asm_exc_invalid_op+0x1a/0x20\n ? __blk_rq_map_sg+0x339/0x4a0\n nvme_prep_rq.part.0+0x9d/0x770\n nvme_queue_rq+0x7d/0x1e0\n __blk_mq_issue_directly+0x2a/0x90\n ? blk_mq_get_budget_and_tag+0x61/0x90\n blk_mq_try_issue_list_directly+0x56/0xf0\n blk_mq_flush_plug_list.part.0+0x52b/0x5d0\n __blk_flush_plug+0xc6/0x110\n blk_finish_plug+0x28/0x40\n read_pages+0x160/0x1c0\n page_cache_ra_unbounded+0x109/0x180\n relocate_file_extent_cluster+0x611/0x6a0\n ? btrfs_search_slot+0xba4/0xd20\n ? balance_dirty_pages_ratelimited_flags+0x26/0xb00\n relocate_data_extent.constprop.0+0x134/0x160\n relocate_block_group+0x3f2/0x500\n btrfs_relocate_block_group+0x250/0x430\n btrfs_relocate_chunk+0x3f/0x130\n btrfs_balance+0x71b/0xef0\n ? kmalloc_trace_noprof+0x13b/0x280\n btrfs_ioctl+0x2c2e/0x3030\n ? kvfree_call_rcu+0x1e6/0x340\n ? list_lru_add_obj+0x66/0x80\n ? mntput_no_expire+0x3a/0x220\n __x64_sys_ioctl+0x96/0xc0\n do_syscall_64+0x54/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n RIP: 0033:0x7fcc04514f9b\n Code: Unable to access opcode bytes at 0x7fcc04514f71.\n RSP: 002b:00007ffeba923370 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fcc04514f9b\n RDX: 00007ffeba923460 RSI: 00000000c4009420 RDI: 0000000000000003\n RBP: 0000000000000000 R08: 0000000000000013 R09: 0000000000000001\n R10: 00007fcc043fbba8 R11: 0000000000000246 R12: 00007ffeba924fc5\n R13: 00007ffeba923460 R14: 0000000000000002 R15: 00000000004d4bb0\n \u003c/TASK\u003e\n Modules linked in:\n ---[ end trace 0000000000000000 ]---\n RIP: 0010:__blk_rq_map_sg+0x339/0x4a0\n RSP: 0018:ffffc90001a43820 EFLAGS: 00010202\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffea00045d4802\n RDX: 0000000117520000 RSI: 0000000000000000 RDI: ffff8881027d1000\n RBP: 0000000000003000 R08: ffffea00045d4902 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000001000 R12: ffff8881003d10b8\n R13: ffffc90001a438f0 R14: 0000000000000000 R15: 0000000000003000\n FS: 00007fcc048a6900(0000) GS:ffff88813bc00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fcc04514f71 CR3: 00000001109ea001 CR4: 0000000000370eb0\n Kernel p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49932",
"url": "https://www.suse.com/security/cve/CVE-2024-49932"
},
{
"category": "external",
"summary": "SUSE Bug 1232376 for CVE-2024-49932",
"url": "https://bugzilla.suse.com/1232376"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49932"
},
{
"cve": "CVE-2024-49933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49933"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk_iocost: fix more out of bound shifts\n\nRecently running UBSAN caught few out of bound shifts in the\nioc_forgive_debts() function:\n\nUBSAN: shift-out-of-bounds in block/blk-iocost.c:2142:38\nshift exponent 80 is too large for 64-bit type \u0027u64\u0027 (aka \u0027unsigned long\nlong\u0027)\n...\nUBSAN: shift-out-of-bounds in block/blk-iocost.c:2144:30\nshift exponent 80 is too large for 64-bit type \u0027u64\u0027 (aka \u0027unsigned long\nlong\u0027)\n...\nCall Trace:\n\u003cIRQ\u003e\ndump_stack_lvl+0xca/0x130\n__ubsan_handle_shift_out_of_bounds+0x22c/0x280\n? __lock_acquire+0x6441/0x7c10\nioc_timer_fn+0x6cec/0x7750\n? blk_iocost_init+0x720/0x720\n? call_timer_fn+0x5d/0x470\ncall_timer_fn+0xfa/0x470\n? blk_iocost_init+0x720/0x720\n__run_timer_base+0x519/0x700\n...\n\nActual impact of this issue was not identified but I propose to fix the\nundefined behaviour.\nThe proposed fix to prevent those out of bound shifts consist of\nprecalculating exponent before using it the shift operations by taking\nmin value from the actual exponent and maximum possible number of bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49933",
"url": "https://www.suse.com/security/cve/CVE-2024-49933"
},
{
"category": "external",
"summary": "SUSE Bug 1232368 for CVE-2024-49933",
"url": "https://bugzilla.suse.com/1232368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49933"
},
{
"cve": "CVE-2024-49934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name\n\nIt\u0027s observed that a crash occurs during hot-remove a memory device,\nin which user is accessing the hugetlb. See calltrace as following:\n\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 14045 at arch/x86/mm/fault.c:1278 do_user_addr_fault+0x2a0/0x790\nModules linked in: kmem device_dax cxl_mem cxl_pmem cxl_port cxl_pci dax_hmem dax_pmem nd_pmem cxl_acpi nd_btt cxl_core crc32c_intel nvme virtiofs fuse nvme_core nfit libnvdimm dm_multipath scsi_dh_rdac scsi_dh_emc s\nmirror dm_region_hash dm_log dm_mod\nCPU: 1 PID: 14045 Comm: daxctl Not tainted 6.10.0-rc2-lizhijian+ #492\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:do_user_addr_fault+0x2a0/0x790\nCode: 48 8b 00 a8 04 0f 84 b5 fe ff ff e9 1c ff ff ff 4c 89 e9 4c 89 e2 be 01 00 00 00 bf 02 00 00 00 e8 b5 ef 24 00 e9 42 fe ff ff \u003c0f\u003e 0b 48 83 c4 08 4c 89 ea 48 89 ee 4c 89 e7 5b 5d 41 5c 41 5d 41\nRSP: 0000:ffffc90000a575f0 EFLAGS: 00010046\nRAX: ffff88800c303600 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000001000 RSI: ffffffff82504162 RDI: ffffffff824b2c36\nRBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffc90000a57658\nR13: 0000000000001000 R14: ffff88800bc2e040 R15: 0000000000000000\nFS: 00007f51cb57d880(0000) GS:ffff88807fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000001000 CR3: 00000000072e2004 CR4: 00000000001706f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x8d/0x190\n ? do_user_addr_fault+0x2a0/0x790\n ? report_bug+0x1c3/0x1d0\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x14/0x70\n ? asm_exc_invalid_op+0x16/0x20\n ? do_user_addr_fault+0x2a0/0x790\n ? exc_page_fault+0x31/0x200\n exc_page_fault+0x68/0x200\n\u003c...snip...\u003e\nBUG: unable to handle page fault for address: 0000000000001000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 800000000ad92067 P4D 800000000ad92067 PUD 7677067 PMD 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n ---[ end trace 0000000000000000 ]---\n BUG: unable to handle page fault for address: 0000000000001000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 800000000ad92067 P4D 800000000ad92067 PUD 7677067 PMD 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 14045 Comm: daxctl Kdump: loaded Tainted: G W 6.10.0-rc2-lizhijian+ #492\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n RIP: 0010:dentry_name+0x1f4/0x440\n\u003c...snip...\u003e\n? dentry_name+0x2fa/0x440\nvsnprintf+0x1f3/0x4f0\nvprintk_store+0x23a/0x540\nvprintk_emit+0x6d/0x330\n_printk+0x58/0x80\ndump_mapping+0x10b/0x1a0\n? __pfx_free_object_rcu+0x10/0x10\n__dump_page+0x26b/0x3e0\n? vprintk_emit+0xe0/0x330\n? _printk+0x58/0x80\n? dump_page+0x17/0x50\ndump_page+0x17/0x50\ndo_migrate_range+0x2f7/0x7f0\n? do_migrate_range+0x42/0x7f0\n? offline_pages+0x2f4/0x8c0\noffline_pages+0x60a/0x8c0\nmemory_subsys_offline+0x9f/0x1c0\n? lockdep_hardirqs_on+0x77/0x100\n? _raw_spin_unlock_irqrestore+0x38/0x60\ndevice_offline+0xe3/0x110\nstate_store+0x6e/0xc0\nkernfs_fop_write_iter+0x143/0x200\nvfs_write+0x39f/0x560\nksys_write+0x65/0xf0\ndo_syscall_64+0x62/0x130\n\nPreviously, some sanity check have been done in dump_mapping() before\nthe print facility parsing \u0027%pd\u0027 though, it\u0027s still possible to run into\nan invalid dentry.d_name.name.\n\nSince dump_mapping() only needs to dump the filename only, retrieve it\nby itself in a safer way to prevent an unnecessary crash.\n\nNote that either retrieving the filename with \u0027%pd\u0027 or\nstrncpy_from_kernel_nofault(), the filename could be unreliable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49934",
"url": "https://www.suse.com/security/cve/CVE-2024-49934"
},
{
"category": "external",
"summary": "SUSE Bug 1232387 for CVE-2024-49934",
"url": "https://bugzilla.suse.com/1232387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49934"
},
{
"cve": "CVE-2024-49935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: PAD: fix crash in exit_round_robin()\n\nThe kernel occasionally crashes in cpumask_clear_cpu(), which is called\nwithin exit_round_robin(), because when executing clear_bit(nr, addr) with\nnr set to 0xffffffff, the address calculation may cause misalignment within\nthe memory, leading to access to an invalid memory address.\n\n----------\nBUG: unable to handle kernel paging request at ffffffffe0740618\n ...\nCPU: 3 PID: 2919323 Comm: acpi_pad/14 Kdump: loaded Tainted: G OE X --------- - - 4.18.0-425.19.2.el8_7.x86_64 #1\n ...\nRIP: 0010:power_saving_thread+0x313/0x411 [acpi_pad]\nCode: 89 cd 48 89 d3 eb d1 48 c7 c7 55 70 72 c0 e8 64 86 b0 e4 c6 05 0d a1 02 00 01 e9 bc fd ff ff 45 89 e4 42 8b 04 a5 20 82 72 c0 \u003cf0\u003e 48 0f b3 05 f4 9c 01 00 42 c7 04 a5 20 82 72 c0 ff ff ff ff 31\nRSP: 0018:ff72a5d51fa77ec8 EFLAGS: 00010202\nRAX: 00000000ffffffff RBX: ff462981e5d8cb80 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000246 RDI: 0000000000000246\nRBP: ff46297556959d80 R08: 0000000000000382 R09: ff46297c8d0f38d8\nR10: 0000000000000000 R11: 0000000000000001 R12: 000000000000000e\nR13: 0000000000000000 R14: ffffffffffffffff R15: 000000000000000e\nFS: 0000000000000000(0000) GS:ff46297a800c0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffffffffe0740618 CR3: 0000007e20410004 CR4: 0000000000771ee0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n ? acpi_pad_add+0x120/0x120 [acpi_pad]\n kthread+0x10b/0x130\n ? set_kthread_struct+0x50/0x50\n ret_from_fork+0x1f/0x40\n ...\nCR2: ffffffffe0740618\n\ncrash\u003e dis -lr ffffffffc0726923\n ...\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./include/linux/cpumask.h: 114\n0xffffffffc0726918 \u003cpower_saving_thread+776\u003e:\tmov %r12d,%r12d\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./include/linux/cpumask.h: 325\n0xffffffffc072691b \u003cpower_saving_thread+779\u003e:\tmov -0x3f8d7de0(,%r12,4),%eax\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./arch/x86/include/asm/bitops.h: 80\n0xffffffffc0726923 \u003cpower_saving_thread+787\u003e:\tlock btr %rax,0x19cf4(%rip) # 0xffffffffc0740620 \u003cpad_busy_cpus_bits\u003e\n\ncrash\u003e px tsk_in_cpu[14]\n$66 = 0xffffffff\n\ncrash\u003e px 0xffffffffc072692c+0x19cf4\n$99 = 0xffffffffc0740620\n\ncrash\u003e sym 0xffffffffc0740620\nffffffffc0740620 (b) pad_busy_cpus_bits [acpi_pad]\n\ncrash\u003e px pad_busy_cpus_bits[0]\n$42 = 0xfffc0\n----------\n\nTo fix this, ensure that tsk_in_cpu[tsk_index] != -1 before calling\ncpumask_clear_cpu() in exit_round_robin(), just as it is done in\nround_robin_cpu().\n\n[ rjw: Subject edit, avoid updates to the same value ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49935",
"url": "https://www.suse.com/security/cve/CVE-2024-49935"
},
{
"category": "external",
"summary": "SUSE Bug 1232370 for CVE-2024-49935",
"url": "https://bugzilla.suse.com/1232370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49935"
},
{
"cve": "CVE-2024-49936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49936"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/xen-netback: prevent UAF in xenvif_flush_hash()\n\nDuring the list_for_each_entry_rcu iteration call of xenvif_flush_hash,\nkfree_rcu does not exist inside the rcu read critical section, so if\nkfree_rcu is called when the rcu grace period ends during the iteration,\nUAF occurs when accessing head-\u003enext after the entry becomes free.\n\nTherefore, to solve this, you need to change it to list_for_each_entry_safe.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49936",
"url": "https://www.suse.com/security/cve/CVE-2024-49936"
},
{
"category": "external",
"summary": "SUSE Bug 1232424 for CVE-2024-49936",
"url": "https://bugzilla.suse.com/1232424"
},
{
"category": "external",
"summary": "SUSE Bug 1232426 for CVE-2024-49936",
"url": "https://bugzilla.suse.com/1232426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49936"
},
{
"cve": "CVE-2024-49937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49937"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: Set correct chandef when starting CAC\n\nWhen starting CAC in a mode other than AP mode, it return a\n\"WARNING: CPU: 0 PID: 63 at cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211]\"\ncaused by the chandef.chan being null at the end of CAC.\n\nSolution: Ensure the channel definition is set for the different modes\nwhen starting CAC to avoid getting a NULL \u0027chan\u0027 at the end of CAC.\n\n Call Trace:\n ? show_regs.part.0+0x14/0x16\n ? __warn+0x67/0xc0\n ? cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211]\n ? report_bug+0xa7/0x130\n ? exc_overflow+0x30/0x30\n ? handle_bug+0x27/0x50\n ? exc_invalid_op+0x18/0x60\n ? handle_exception+0xf6/0xf6\n ? exc_overflow+0x30/0x30\n ? cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211]\n ? exc_overflow+0x30/0x30\n ? cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211]\n ? regulatory_propagate_dfs_state.cold+0x1b/0x4c [cfg80211]\n ? cfg80211_propagate_cac_done_wk+0x1a/0x30 [cfg80211]\n ? process_one_work+0x165/0x280\n ? worker_thread+0x120/0x3f0\n ? kthread+0xc2/0xf0\n ? process_one_work+0x280/0x280\n ? kthread_complete_and_exit+0x20/0x20\n ? ret_from_fork+0x19/0x24\n\n[shorten subject, remove OCB, reorder cases to match previous list]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49937",
"url": "https://www.suse.com/security/cve/CVE-2024-49937"
},
{
"category": "external",
"summary": "SUSE Bug 1232427 for CVE-2024-49937",
"url": "https://bugzilla.suse.com/1232427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49937"
},
{
"cve": "CVE-2024-49938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit\n\nSyzbot points out that skb_trim() has a sanity check on the existing length of\nthe skb, which can be uninitialised in some error paths. The intent here is\nclearly just to reset the length to zero before resubmitting, so switch to\ncalling __skb_set_length(skb, 0) directly. In addition, __skb_set_length()\nalready contains a call to skb_reset_tail_pointer(), so remove the redundant\ncall.\n\nThe syzbot report came from ath9k_hif_usb_reg_in_cb(), but there\u0027s a similar\nusage of skb_trim() in ath9k_hif_usb_rx_cb(), change both while we\u0027re at it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49938",
"url": "https://www.suse.com/security/cve/CVE-2024-49938"
},
{
"category": "external",
"summary": "SUSE Bug 1232552 for CVE-2024-49938",
"url": "https://bugzilla.suse.com/1232552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49938"
},
{
"cve": "CVE-2024-49939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49939"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: avoid to add interface to list twice when SER\n\nIf SER L2 occurs during the WoWLAN resume flow, the add interface flow\nis triggered by ieee80211_reconfig(). However, due to\nrtw89_wow_resume() return failure, it will cause the add interface flow\nto be executed again, resulting in a double add list and causing a kernel\npanic. Therefore, we have added a check to prevent double adding of the\nlist.\n\nlist_add double add: new=ffff99d6992e2010, prev=ffff99d6992e2010, next=ffff99d695302628.\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:37!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 0 PID: 9 Comm: kworker/0:1 Tainted: G W O 6.6.30-02659-gc18865c4dfbd #1 770df2933251a0e3c888ba69d1053a817a6376a7\nHardware name: HP Grunt/Grunt, BIOS Google_Grunt.11031.169.0 06/24/2021\nWorkqueue: events_freezable ieee80211_restart_work [mac80211]\nRIP: 0010:__list_add_valid_or_report+0x5e/0xb0\nCode: c7 74 18 48 39 ce 74 13 b0 01 59 5a 5e 5f 41 58 41 59 41 5a 5d e9 e2 d6 03 00 cc 48 c7 c7 8d 4f 17 83 48 89 c2 e8 02 c0 00 00 \u003c0f\u003e 0b 48 c7 c7 aa 8c 1c 83 e8 f4 bf 00 00 0f 0b 48 c7 c7 c8 bc 12\nRSP: 0018:ffffa91b8007bc50 EFLAGS: 00010246\nRAX: 0000000000000058 RBX: ffff99d6992e0900 RCX: a014d76c70ef3900\nRDX: ffffa91b8007bae8 RSI: 00000000ffffdfff RDI: 0000000000000001\nRBP: ffffa91b8007bc88 R08: 0000000000000000 R09: ffffa91b8007bae0\nR10: 00000000ffffdfff R11: ffffffff83a79800 R12: ffff99d695302060\nR13: ffff99d695300900 R14: ffff99d6992e1be0 R15: ffff99d6992e2010\nFS: 0000000000000000(0000) GS:ffff99d6aac00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000078fbdba43480 CR3: 000000010e464000 CR4: 00000000001506f0\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x1f/0x70\n ? die+0x3d/0x60\n ? do_trap+0xa4/0x110\n ? __list_add_valid_or_report+0x5e/0xb0\n ? do_error_trap+0x6d/0x90\n ? __list_add_valid_or_report+0x5e/0xb0\n ? handle_invalid_op+0x30/0x40\n ? __list_add_valid_or_report+0x5e/0xb0\n ? exc_invalid_op+0x3c/0x50\n ? asm_exc_invalid_op+0x16/0x20\n ? __list_add_valid_or_report+0x5e/0xb0\n rtw89_ops_add_interface+0x309/0x310 [rtw89_core 7c32b1ee6854761c0321027c8a58c5160e41f48f]\n drv_add_interface+0x5c/0x130 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n ieee80211_reconfig+0x241/0x13d0 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n ? finish_wait+0x3e/0x90\n ? synchronize_rcu_expedited+0x174/0x260\n ? sync_rcu_exp_done_unlocked+0x50/0x50\n ? wake_bit_function+0x40/0x40\n ieee80211_restart_work+0xf0/0x140 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n process_scheduled_works+0x1e5/0x480\n worker_thread+0xea/0x1e0\n kthread+0xdb/0x110\n ? move_linked_works+0x90/0x90\n ? kthread_associate_blkcg+0xa0/0xa0\n ret_from_fork+0x3b/0x50\n ? kthread_associate_blkcg+0xa0/0xa0\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\nModules linked in: dm_integrity async_xor xor async_tx lz4 lz4_compress zstd zstd_compress zram zsmalloc rfcomm cmac uinput algif_hash algif_skcipher af_alg btusb btrtl iio_trig_hrtimer industrialio_sw_trigger btmtk industrialio_configfs btbcm btintel uvcvideo videobuf2_vmalloc iio_trig_sysfs videobuf2_memops videobuf2_v4l2 videobuf2_common uvc snd_hda_codec_hdmi veth snd_hda_intel snd_intel_dspcfg acpi_als snd_hda_codec industrialio_triggered_buffer kfifo_buf snd_hwdep industrialio i2c_piix4 snd_hda_core designware_i2s ip6table_nat snd_soc_max98357a xt_MASQUERADE xt_cgroup snd_soc_acp_rt5682_mach fuse rtw89_8922ae(O) rtw89_8922a(O) rtw89_pci(O) rtw89_core(O) 8021q mac80211(O) bluetooth ecdh_generic ecc cfg80211 r8152 mii joydev\ngsmi: Log Shutdown Reason 0x03\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49939",
"url": "https://www.suse.com/security/cve/CVE-2024-49939"
},
{
"category": "external",
"summary": "SUSE Bug 1232381 for CVE-2024-49939",
"url": "https://bugzilla.suse.com/1232381"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49939"
},
{
"cve": "CVE-2024-49940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nl2tp: prevent possible tunnel refcount underflow\n\nWhen a session is created, it sets a backpointer to its tunnel. When\nthe session refcount drops to 0, l2tp_session_free drops the tunnel\nrefcount if session-\u003etunnel is non-NULL. However, session-\u003etunnel is\nset in l2tp_session_create, before the tunnel refcount is incremented\nby l2tp_session_register, which leaves a small window where\nsession-\u003etunnel is non-NULL when the tunnel refcount hasn\u0027t been\nbumped.\n\nMoving the assignment to l2tp_session_register is trivial but\nl2tp_session_create calls l2tp_session_set_header_len which uses\nsession-\u003etunnel to get the tunnel\u0027s encap. Add an encap arg to\nl2tp_session_set_header_len to avoid using session-\u003etunnel.\n\nIf l2tpv3 sessions have colliding IDs, it is possible for\nl2tp_v3_session_get to race with l2tp_session_register and fetch a\nsession which doesn\u0027t yet have session-\u003etunnel set. Add a check for\nthis case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49940",
"url": "https://www.suse.com/security/cve/CVE-2024-49940"
},
{
"category": "external",
"summary": "SUSE Bug 1232812 for CVE-2024-49940",
"url": "https://bugzilla.suse.com/1232812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49940"
},
{
"cve": "CVE-2024-49941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49941"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: Fix potential NULL pointer dereference in gpiod_get_label()\n\nIn `gpiod_get_label()`, it is possible that `srcu_dereference_check()` may\nreturn a NULL pointer, leading to a scenario where `label-\u003estr` is accessed\nwithout verifying if `label` itself is NULL.\n\nThis patch adds a proper NULL check for `label` before accessing\n`label-\u003estr`. The check for `label-\u003estr != NULL` is removed because\n`label-\u003estr` can never be NULL if `label` is not NULL.\n\nThis fixes the issue where the label name was being printed as `(efault)`\nwhen dumping the sysfs GPIO file when `label == NULL`.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49941",
"url": "https://www.suse.com/security/cve/CVE-2024-49941"
},
{
"category": "external",
"summary": "SUSE Bug 1232169 for CVE-2024-49941",
"url": "https://bugzilla.suse.com/1232169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49941"
},
{
"cve": "CVE-2024-49942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49942"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Prevent null pointer access in xe_migrate_copy\n\nxe_migrate_copy designed to copy content of TTM resources. When source\nresource is null, it will trigger a NULL pointer dereference in\nxe_migrate_copy. To avoid this situation, update lacks source flag to\ntrue for this case, the flag will trigger xe_migrate_clear rather than\nxe_migrate_copy.\n\nIssue trace:\n\u003c7\u003e [317.089847] xe 0000:00:02.0: [drm:xe_migrate_copy [xe]] Pass 14,\n sizes: 4194304 \u0026 4194304\n\u003c7\u003e [317.089945] xe 0000:00:02.0: [drm:xe_migrate_copy [xe]] Pass 15,\n sizes: 4194304 \u0026 4194304\n\u003c1\u003e [317.128055] BUG: kernel NULL pointer dereference, address:\n 0000000000000010\n\u003c1\u003e [317.128064] #PF: supervisor read access in kernel mode\n\u003c1\u003e [317.128066] #PF: error_code(0x0000) - not-present page\n\u003c6\u003e [317.128069] PGD 0 P4D 0\n\u003c4\u003e [317.128071] Oops: Oops: 0000 [#1] PREEMPT SMP NOPTI\n\u003c4\u003e [317.128074] CPU: 1 UID: 0 PID: 1440 Comm: kunit_try_catch Tainted:\n G U N 6.11.0-rc7-xe #1\n\u003c4\u003e [317.128078] Tainted: [U]=USER, [N]=TEST\n\u003c4\u003e [317.128080] Hardware name: Intel Corporation Lunar Lake Client\n Platform/LNL-M LP5 RVP1, BIOS LNLMFWI1.R00.3221.D80.2407291239 07/29/2024\n\u003c4\u003e [317.128082] RIP: 0010:xe_migrate_copy+0x66/0x13e0 [xe]\n\u003c4\u003e [317.128158] Code: 00 00 48 89 8d e0 fe ff ff 48 8b 40 10 4c 89 85 c8\n fe ff ff 44 88 8d bd fe ff ff 65 48 8b 3c 25 28 00 00 00 48 89 7d d0 31\n ff \u003c8b\u003e 79 10 48 89 85 a0 fe ff ff 48 8b 00 48 89 b5 d8 fe ff ff 83 ff\n\u003c4\u003e [317.128162] RSP: 0018:ffffc9000167f9f0 EFLAGS: 00010246\n\u003c4\u003e [317.128164] RAX: ffff8881120d8028 RBX: ffff88814d070428 RCX:\n 0000000000000000\n\u003c4\u003e [317.128166] RDX: ffff88813cb99c00 RSI: 0000000004000000 RDI:\n 0000000000000000\n\u003c4\u003e [317.128168] RBP: ffffc9000167fbb8 R08: ffff88814e7b1f08 R09:\n 0000000000000001\n\u003c4\u003e [317.128170] R10: 0000000000000001 R11: 0000000000000001 R12:\n ffff88814e7b1f08\n\u003c4\u003e [317.128172] R13: ffff88814e7b1f08 R14: ffff88813cb99c00 R15:\n 0000000000000001\n\u003c4\u003e [317.128174] FS: 0000000000000000(0000) GS:ffff88846f280000(0000)\n knlGS:0000000000000000\n\u003c4\u003e [317.128176] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n\u003c4\u003e [317.128178] CR2: 0000000000000010 CR3: 000000011f676004 CR4:\n 0000000000770ef0\n\u003c4\u003e [317.128180] DR0: 0000000000000000 DR1: 0000000000000000 DR2:\n 0000000000000000\n\u003c4\u003e [317.128182] DR3: 0000000000000000 DR6: 00000000ffff07f0 DR7:\n 0000000000000400\n\u003c4\u003e [317.128184] PKRU: 55555554\n\u003c4\u003e [317.128185] Call Trace:\n\u003c4\u003e [317.128187] \u003cTASK\u003e\n\u003c4\u003e [317.128189] ? show_regs+0x67/0x70\n\u003c4\u003e [317.128194] ? __die_body+0x20/0x70\n\u003c4\u003e [317.128196] ? __die+0x2b/0x40\n\u003c4\u003e [317.128198] ? page_fault_oops+0x15f/0x4e0\n\u003c4\u003e [317.128203] ? do_user_addr_fault+0x3fb/0x970\n\u003c4\u003e [317.128205] ? lock_acquire+0xc7/0x2e0\n\u003c4\u003e [317.128209] ? exc_page_fault+0x87/0x2b0\n\u003c4\u003e [317.128212] ? asm_exc_page_fault+0x27/0x30\n\u003c4\u003e [317.128216] ? xe_migrate_copy+0x66/0x13e0 [xe]\n\u003c4\u003e [317.128263] ? __lock_acquire+0xb9d/0x26f0\n\u003c4\u003e [317.128265] ? __lock_acquire+0xb9d/0x26f0\n\u003c4\u003e [317.128267] ? sg_free_append_table+0x20/0x80\n\u003c4\u003e [317.128271] ? lock_acquire+0xc7/0x2e0\n\u003c4\u003e [317.128273] ? mark_held_locks+0x4d/0x80\n\u003c4\u003e [317.128275] ? trace_hardirqs_on+0x1e/0xd0\n\u003c4\u003e [317.128278] ? _raw_spin_unlock_irqrestore+0x31/0x60\n\u003c4\u003e [317.128281] ? __pm_runtime_resume+0x60/0xa0\n\u003c4\u003e [317.128284] xe_bo_move+0x682/0xc50 [xe]\n\u003c4\u003e [317.128315] ? lock_is_held_type+0xaa/0x120\n\u003c4\u003e [317.128318] ttm_bo_handle_move_mem+0xe5/0x1a0 [ttm]\n\u003c4\u003e [317.128324] ttm_bo_validate+0xd1/0x1a0 [ttm]\n\u003c4\u003e [317.128328] shrink_test_run_device+0x721/0xc10 [xe]\n\u003c4\u003e [317.128360] ? find_held_lock+0x31/0x90\n\u003c4\u003e [317.128363] ? lock_release+0xd1/0x2a0\n\u003c4\u003e [317.128365] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10\n [kunit]\n\u003c4\u003e [317.128370] xe_bo_shrink_kunit+0x11/0x20 [xe]\n\u003c4\u003e [317.128397] kunit_try_run_case+0x6e/0x150 [kunit]\n\u003c4\u003e [317.128400] ? trace_hardirqs_on+0x1e/0xd0\n\u003c4\u003e [317.128402] ? _raw_spin_unlock_irqrestore+0x31/0x60\n\u003c4\u003e [317.128404] kunit_generic_run_threadfn_adapter+0x1e/0x40 [ku\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49942",
"url": "https://www.suse.com/security/cve/CVE-2024-49942"
},
{
"category": "external",
"summary": "SUSE Bug 1232168 for CVE-2024-49942",
"url": "https://bugzilla.suse.com/1232168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49942"
},
{
"cve": "CVE-2024-49943",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49943"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/guc_submit: add missing locking in wedged_fini\n\nAny non-wedged queue can have a zero refcount here and can be running\nconcurrently with an async queue destroy, therefore dereferencing the\nqueue ptr to check wedge status after the lookup can trigger UAF if\nqueue is not wedged. Fix this by keeping the submission_state lock held\naround the check to postpone the free and make the check safe, before\ndropping again around the put() to avoid the deadlock.\n\n(cherry picked from commit d28af0b6b9580b9f90c265a7da0315b0ad20bbfd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49943",
"url": "https://www.suse.com/security/cve/CVE-2024-49943"
},
{
"category": "external",
"summary": "SUSE Bug 1232167 for CVE-2024-49943",
"url": "https://bugzilla.suse.com/1232167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49943"
},
{
"cve": "CVE-2024-49944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start\n\nIn sctp_listen_start() invoked by sctp_inet_listen(), it should set the\nsk_state back to CLOSED if sctp_autobind() fails due to whatever reason.\n\nOtherwise, next time when calling sctp_inet_listen(), if sctp_sk(sk)-\u003ereuse\nis already set via setsockopt(SCTP_REUSE_PORT), sctp_sk(sk)-\u003ebind_hash will\nbe dereferenced as sk_state is LISTENING, which causes a crash as bind_hash\nis NULL.\n\n KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n RIP: 0010:sctp_inet_listen+0x7f0/0xa20 net/sctp/socket.c:8617\n Call Trace:\n \u003cTASK\u003e\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49944",
"url": "https://www.suse.com/security/cve/CVE-2024-49944"
},
{
"category": "external",
"summary": "SUSE Bug 1232166 for CVE-2024-49944",
"url": "https://bugzilla.suse.com/1232166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49944"
},
{
"cve": "CVE-2024-49945",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49945"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ncsi: Disable the ncsi work before freeing the associated structure\n\nThe work function can run after the ncsi device is freed, resulting\nin use-after-free bugs or kernel panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49945",
"url": "https://www.suse.com/security/cve/CVE-2024-49945"
},
{
"category": "external",
"summary": "SUSE Bug 1232165 for CVE-2024-49945",
"url": "https://bugzilla.suse.com/1232165"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49945"
},
{
"cve": "CVE-2024-49946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nppp: do not assume bh is held in ppp_channel_bridge_input()\n\nNetworking receive path is usually handled from BH handler.\nHowever, some protocols need to acquire the socket lock, and\npackets might be stored in the socket backlog is the socket was\nowned by a user process.\n\nIn this case, release_sock(), __release_sock(), and sk_backlog_rcv()\nmight call the sk-\u003esk_backlog_rcv() handler in process context.\n\nsybot caught ppp was not considering this case in\nppp_channel_bridge_input() :\n\nWARNING: inconsistent lock state\n6.11.0-rc7-syzkaller-g5f5673607153 #0 Not tainted\n--------------------------------\ninconsistent {SOFTIRQ-ON-W} -\u003e {IN-SOFTIRQ-W} usage.\nksoftirqd/1/24 [HC0[0]:SC1[1]:HE1:SE0] takes:\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2272 [inline]\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: ppp_input+0x16c/0x854 drivers/net/ppp/ppp_generic.c:2304\n{SOFTIRQ-ON-W} state was registered at:\n lock_acquire+0x240/0x728 kernel/locking/lockdep.c:5759\n __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]\n _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154\n spin_lock include/linux/spinlock.h:351 [inline]\n ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2272 [inline]\n ppp_input+0x16c/0x854 drivers/net/ppp/ppp_generic.c:2304\n pppoe_rcv_core+0xfc/0x314 drivers/net/ppp/pppoe.c:379\n sk_backlog_rcv include/net/sock.h:1111 [inline]\n __release_sock+0x1a8/0x3d8 net/core/sock.c:3004\n release_sock+0x68/0x1b8 net/core/sock.c:3558\n pppoe_sendmsg+0xc8/0x5d8 drivers/net/ppp/pppoe.c:903\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x374/0x4f4 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __arm64_sys_sendto+0xd8/0xf8 net/socket.c:2212\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\nirq event stamp: 282914\n hardirqs last enabled at (282914): [\u003cffff80008b42e30c\u003e] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline]\n hardirqs last enabled at (282914): [\u003cffff80008b42e30c\u003e] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194\n hardirqs last disabled at (282913): [\u003cffff80008b42e13c\u003e] __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:108 [inline]\n hardirqs last disabled at (282913): [\u003cffff80008b42e13c\u003e] _raw_spin_lock_irqsave+0x2c/0x7c kernel/locking/spinlock.c:162\n softirqs last enabled at (282904): [\u003cffff8000801f8e88\u003e] softirq_handle_end kernel/softirq.c:400 [inline]\n softirqs last enabled at (282904): [\u003cffff8000801f8e88\u003e] handle_softirqs+0xa3c/0xbfc kernel/softirq.c:582\n softirqs last disabled at (282909): [\u003cffff8000801fbdf8\u003e] run_ksoftirqd+0x70/0x158 kernel/softirq.c:928\n\nother info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026pch-\u003edownl);\n \u003cInterrupt\u003e\n lock(\u0026pch-\u003edownl);\n\n *** DEADLOCK ***\n\n1 lock held by ksoftirqd/1/24:\n #0: ffff80008f74dfa0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c include/linux/rcupdate.h:325\n\nstack backtrace:\nCPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.11.0-rc7-syzkaller-g5f5673607153 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall trace:\n dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:319\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:326\n __dump_sta\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49946",
"url": "https://www.suse.com/security/cve/CVE-2024-49946"
},
{
"category": "external",
"summary": "SUSE Bug 1232164 for CVE-2024-49946",
"url": "https://bugzilla.suse.com/1232164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49946"
},
{
"cve": "CVE-2024-49947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: test for not too small csum_start in virtio_net_hdr_to_skb()\n\nsyzbot was able to trigger this warning [1], after injecting a\nmalicious packet through af_packet, setting skb-\u003ecsum_start and thus\nthe transport header to an incorrect value.\n\nWe can at least make sure the transport header is after\nthe end of the network header (with a estimated minimal size).\n\n[1]\n[ 67.873027] skb len=4096 headroom=16 headlen=14 tailroom=0\nmac=(-1,-1) mac_len=0 net=(16,-6) trans=10\nshinfo(txflags=0 nr_frags=1 gso(size=0 type=0 segs=0))\ncsum(0xa start=10 offset=0 ip_summed=3 complete_sw=0 valid=0 level=0)\nhash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0\npriority=0x0 mark=0x0 alloc_cpu=10 vlan_all=0x0\nencapsulation=0 inner(proto=0x0000, mac=0, net=0, trans=0)\n[ 67.877172] dev name=veth0_vlan feat=0x000061164fdd09e9\n[ 67.877764] sk family=17 type=3 proto=0\n[ 67.878279] skb linear: 00000000: 00 00 10 00 00 00 00 00 0f 00 00 00 08 00\n[ 67.879128] skb frag: 00000000: 0e 00 07 00 00 00 28 00 08 80 1c 00 04 00 00 02\n[ 67.879877] skb frag: 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.880647] skb frag: 00000020: 00 00 02 00 00 00 08 00 1b 00 00 00 00 00 00 00\n[ 67.881156] skb frag: 00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.881753] skb frag: 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.882173] skb frag: 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.882790] skb frag: 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.883171] skb frag: 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.883733] skb frag: 00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.884206] skb frag: 00000090: 00 00 00 00 00 00 00 00 00 00 69 70 76 6c 61 6e\n[ 67.884704] skb frag: 000000a0: 31 00 00 00 00 00 00 00 00 00 2b 00 00 00 00 00\n[ 67.885139] skb frag: 000000b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.885677] skb frag: 000000c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.886042] skb frag: 000000d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.886408] skb frag: 000000e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.887020] skb frag: 000000f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.887384] skb frag: 00000100: 00 00\n[ 67.887878] ------------[ cut here ]------------\n[ 67.887908] offset (-6) \u003e= skb_headlen() (14)\n[ 67.888445] WARNING: CPU: 10 PID: 2088 at net/core/dev.c:3332 skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.889353] Modules linked in: macsec macvtap macvlan hsr wireguard curve25519_x86_64 libcurve25519_generic libchacha20poly1305 chacha_x86_64 libchacha poly1305_x86_64 dummy bridge sr_mod cdrom evdev pcspkr i2c_piix4 9pnet_virtio 9p 9pnet netfs\n[ 67.890111] CPU: 10 UID: 0 PID: 2088 Comm: b363492833 Not tainted 6.11.0-virtme #1011\n[ 67.890183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 67.890309] RIP: 0010:skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891043] Call Trace:\n[ 67.891173] \u003cTASK\u003e\n[ 67.891274] ? __warn (kernel/panic.c:741)\n[ 67.891320] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891333] ? report_bug (lib/bug.c:180 lib/bug.c:219)\n[ 67.891348] ? handle_bug (arch/x86/kernel/traps.c:239)\n[ 67.891363] ? exc_invalid_op (arch/x86/kernel/traps.c:260 (discriminator 1))\n[ 67.891372] ? asm_exc_invalid_op (./arch/x86/include/asm/idtentry.h:621)\n[ 67.891388] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891399] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891416] ip_do_fragment (net/ipv4/ip_output.c:777 (discriminator 1))\n[ 67.891448] ? __ip_local_out (./include/linux/skbuff.h:1146 ./include/net/l3mdev.h:196 ./include/net/l3mdev.h:213 ne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49947",
"url": "https://www.suse.com/security/cve/CVE-2024-49947"
},
{
"category": "external",
"summary": "SUSE Bug 1232162 for CVE-2024-49947",
"url": "https://bugzilla.suse.com/1232162"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49947"
},
{
"cve": "CVE-2024-49948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: add more sanity checks to qdisc_pkt_len_init()\n\nOne path takes care of SKB_GSO_DODGY, assuming\nskb-\u003elen is bigger than hdr_len.\n\nvirtio_net_hdr_to_skb() does not fully dissect TCP headers,\nit only make sure it is at least 20 bytes.\n\nIt is possible for an user to provide a malicious \u0027GSO\u0027 packet,\ntotal length of 80 bytes.\n\n- 20 bytes of IPv4 header\n- 60 bytes TCP header\n- a small gso_size like 8\n\nvirtio_net_hdr_to_skb() would declare this packet as a normal\nGSO packet, because it would see 40 bytes of payload,\nbigger than gso_size.\n\nWe need to make detect this case to not underflow\nqdisc_skb_cb(skb)-\u003epkt_len.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49948",
"url": "https://www.suse.com/security/cve/CVE-2024-49948"
},
{
"category": "external",
"summary": "SUSE Bug 1232161 for CVE-2024-49948",
"url": "https://bugzilla.suse.com/1232161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49948"
},
{
"cve": "CVE-2024-49949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49949"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: avoid potential underflow in qdisc_pkt_len_init() with UFO\n\nAfter commit 7c6d2ecbda83 (\"net: be more gentle about silly gso\nrequests coming from user\") virtio_net_hdr_to_skb() had sanity check\nto detect malicious attempts from user space to cook a bad GSO packet.\n\nThen commit cf9acc90c80ec (\"net: virtio_net_hdr_to_skb: count\ntransport header in UFO\") while fixing one issue, allowed user space\nto cook a GSO packet with the following characteristic :\n\nIPv4 SKB_GSO_UDP, gso_size=3, skb-\u003elen = 28.\n\nWhen this packet arrives in qdisc_pkt_len_init(), we end up\nwith hdr_len = 28 (IPv4 header + UDP header), matching skb-\u003elen\n\nThen the following sets gso_segs to 0 :\n\ngso_segs = DIV_ROUND_UP(skb-\u003elen - hdr_len,\n shinfo-\u003egso_size);\n\nThen later we set qdisc_skb_cb(skb)-\u003epkt_len to back to zero :/\n\nqdisc_skb_cb(skb)-\u003epkt_len += (gso_segs - 1) * hdr_len;\n\nThis leads to the following crash in fq_codel [1]\n\nqdisc_pkt_len_init() is best effort, we only want an estimation\nof the bytes sent on the wire, not crashing the kernel.\n\nThis patch is fixing this particular issue, a following one\nadds more sanity checks for another potential bug.\n\n[1]\n[ 70.724101] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 70.724561] #PF: supervisor read access in kernel mode\n[ 70.724561] #PF: error_code(0x0000) - not-present page\n[ 70.724561] PGD 10ac61067 P4D 10ac61067 PUD 107ee2067 PMD 0\n[ 70.724561] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 70.724561] CPU: 11 UID: 0 PID: 2163 Comm: b358537762 Not tainted 6.11.0-virtme #991\n[ 70.724561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.724561] RIP: 0010:fq_codel_enqueue (net/sched/sch_fq_codel.c:120 net/sched/sch_fq_codel.c:168 net/sched/sch_fq_codel.c:230) sch_fq_codel\n[ 70.724561] Code: 24 08 49 c1 e1 06 44 89 7c 24 18 45 31 ed 45 31 c0 31 ff 89 44 24 14 4c 03 8b 90 01 00 00 eb 04 39 ca 73 37 4d 8b 39 83 c7 01 \u003c49\u003e 8b 17 49 89 11 41 8b 57 28 45 8b 5f 34 49 c7 07 00 00 00 00 49\nAll code\n========\n 0:\t24 08 \tand $0x8,%al\n 2:\t49 c1 e1 06 \tshl $0x6,%r9\n 6:\t44 89 7c 24 18 \tmov %r15d,0x18(%rsp)\n b:\t45 31 ed \txor %r13d,%r13d\n e:\t45 31 c0 \txor %r8d,%r8d\n 11:\t31 ff \txor %edi,%edi\n 13:\t89 44 24 14 \tmov %eax,0x14(%rsp)\n 17:\t4c 03 8b 90 01 00 00 \tadd 0x190(%rbx),%r9\n 1e:\teb 04 \tjmp 0x24\n 20:\t39 ca \tcmp %ecx,%edx\n 22:\t73 37 \tjae 0x5b\n 24:\t4d 8b 39 \tmov (%r9),%r15\n 27:\t83 c7 01 \tadd $0x1,%edi\n 2a:*\t49 8b 17 \tmov (%r15),%rdx\t\t\u003c-- trapping instruction\n 2d:\t49 89 11 \tmov %rdx,(%r9)\n 30:\t41 8b 57 28 \tmov 0x28(%r15),%edx\n 34:\t45 8b 5f 34 \tmov 0x34(%r15),%r11d\n 38:\t49 c7 07 00 00 00 00 \tmovq $0x0,(%r15)\n 3f:\t49 \trex.WB\n\nCode starting with the faulting instruction\n===========================================\n 0:\t49 8b 17 \tmov (%r15),%rdx\n 3:\t49 89 11 \tmov %rdx,(%r9)\n 6:\t41 8b 57 28 \tmov 0x28(%r15),%edx\n a:\t45 8b 5f 34 \tmov 0x34(%r15),%r11d\n e:\t49 c7 07 00 00 00 00 \tmovq $0x0,(%r15)\n 15:\t49 \trex.WB\n[ 70.724561] RSP: 0018:ffff95ae85e6fb90 EFLAGS: 00000202\n[ 70.724561] RAX: 0000000002000000 RBX: ffff95ae841de000 RCX: 0000000000000000\n[ 70.724561] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001\n[ 70.724561] RBP: ffff95ae85e6fbf8 R08: 0000000000000000 R09: ffff95b710a30000\n[ 70.724561] R10: 0000000000000000 R11: bdf289445ce31881 R12: ffff95ae85e6fc58\n[ 70.724561] R13: 0000000000000000 R14: 0000000000000040 R15: 0000000000000000\n[ 70.724561] FS: 000000002c5c1380(0000) GS:ffff95bd7fcc0000(0000) knlGS:0000000000000000\n[ 70.724561] CS: 0010 DS: 0000 ES: 0000 C\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49949",
"url": "https://www.suse.com/security/cve/CVE-2024-49949"
},
{
"category": "external",
"summary": "SUSE Bug 1232160 for CVE-2024-49949",
"url": "https://bugzilla.suse.com/1232160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49949"
},
{
"cve": "CVE-2024-49950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix uaf in l2cap_connect\n\n[Syzbot reported]\nBUG: KASAN: slab-use-after-free in l2cap_connect.constprop.0+0x10d8/0x1270 net/bluetooth/l2cap_core.c:3949\nRead of size 8 at addr ffff8880241e9800 by task kworker/u9:0/54\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-00268-g788220eee30d #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci2 hci_rx_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n l2cap_connect.constprop.0+0x10d8/0x1270 net/bluetooth/l2cap_core.c:3949\n l2cap_connect_req net/bluetooth/l2cap_core.c:4080 [inline]\n l2cap_bredr_sig_cmd net/bluetooth/l2cap_core.c:4772 [inline]\n l2cap_sig_channel net/bluetooth/l2cap_core.c:5543 [inline]\n l2cap_recv_frame+0xf0b/0x8eb0 net/bluetooth/l2cap_core.c:6825\n l2cap_recv_acldata+0x9b4/0xb70 net/bluetooth/l2cap_core.c:7514\n hci_acldata_packet net/bluetooth/hci_core.c:3791 [inline]\n hci_rx_work+0xaab/0x1610 net/bluetooth/hci_core.c:4028\n process_one_work+0x9c5/0x1b40 kernel/workqueue.c:3231\n process_scheduled_works kernel/workqueue.c:3312 [inline]\n worker_thread+0x6c8/0xed0 kernel/workqueue.c:3389\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n...\n\nFreed by task 5245:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:47\n kasan_save_track+0x14/0x30 mm/kasan/common.c:68\n kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:579\n poison_slab_object+0xf7/0x160 mm/kasan/common.c:240\n __kasan_slab_free+0x32/0x50 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x12a/0x3b0 mm/slub.c:4598\n l2cap_conn_free net/bluetooth/l2cap_core.c:1810 [inline]\n kref_put include/linux/kref.h:65 [inline]\n l2cap_conn_put net/bluetooth/l2cap_core.c:1822 [inline]\n l2cap_conn_del+0x59d/0x730 net/bluetooth/l2cap_core.c:1802\n l2cap_connect_cfm+0x9e6/0xf80 net/bluetooth/l2cap_core.c:7241\n hci_connect_cfm include/net/bluetooth/hci_core.h:1960 [inline]\n hci_conn_failed+0x1c3/0x370 net/bluetooth/hci_conn.c:1265\n hci_abort_conn_sync+0x75a/0xb50 net/bluetooth/hci_sync.c:5583\n abort_conn_sync+0x197/0x360 net/bluetooth/hci_conn.c:2917\n hci_cmd_sync_work+0x1a4/0x410 net/bluetooth/hci_sync.c:328\n process_one_work+0x9c5/0x1b40 kernel/workqueue.c:3231\n process_scheduled_works kernel/workqueue.c:3312 [inline]\n worker_thread+0x6c8/0xed0 kernel/workqueue.c:3389\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49950",
"url": "https://www.suse.com/security/cve/CVE-2024-49950"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49950",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232159 for CVE-2024-49950",
"url": "https://bugzilla.suse.com/1232159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49950"
},
{
"cve": "CVE-2024-49951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible crash on mgmt_index_removed\n\nIf mgmt_index_removed is called while there are commands queued on\ncmd_sync it could lead to crashes like the bellow trace:\n\n0x0000053D: __list_del_entry_valid_or_report+0x98/0xdc\n0x0000053D: mgmt_pending_remove+0x18/0x58 [bluetooth]\n0x0000053E: mgmt_remove_adv_monitor_complete+0x80/0x108 [bluetooth]\n0x0000053E: hci_cmd_sync_work+0xbc/0x164 [bluetooth]\n\nSo while handling mgmt_index_removed this attempts to dequeue\ncommands passed as user_data to cmd_sync.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49951",
"url": "https://www.suse.com/security/cve/CVE-2024-49951"
},
{
"category": "external",
"summary": "SUSE Bug 1232158 for CVE-2024-49951",
"url": "https://bugzilla.suse.com/1232158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49951"
},
{
"cve": "CVE-2024-49952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49952"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prevent nf_skb_duplicated corruption\n\nsyzbot found that nf_dup_ipv4() or nf_dup_ipv6() could write\nper-cpu variable nf_skb_duplicated in an unsafe way [1].\n\nDisabling preemption as hinted by the splat is not enough,\nwe have to disable soft interrupts as well.\n\n[1]\nBUG: using __this_cpu_write() in preemptible [00000000] code: syz.4.282/6316\n caller is nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\nCPU: 0 UID: 0 PID: 6316 Comm: syz.4.282 Not tainted 6.11.0-rc7-syzkaller-00104-g7052622fccb1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n check_preemption_disabled+0x10e/0x120 lib/smp_processor_id.c:49\n nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\n nft_dup_ipv4_eval+0x1db/0x300 net/ipv4/netfilter/nft_dup_ipv4.c:30\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_ipv4+0x202/0x320 net/netfilter/nft_chain_filter.c:23\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook+0x2c4/0x450 include/linux/netfilter.h:269\n NF_HOOK_COND include/linux/netfilter.h:302 [inline]\n ip_output+0x185/0x230 net/ipv4/ip_output.c:433\n ip_local_out net/ipv4/ip_output.c:129 [inline]\n ip_send_skb+0x74/0x100 net/ipv4/ip_output.c:1495\n udp_send_skb+0xacf/0x1650 net/ipv4/udp.c:981\n udp_sendmsg+0x1c21/0x2a60 net/ipv4/udp.c:1269\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmmsg+0x3b2/0x740 net/socket.c:2737\n __do_sys_sendmmsg net/socket.c:2766 [inline]\n __se_sys_sendmmsg net/socket.c:2763 [inline]\n __x64_sys_sendmmsg+0xa0/0xb0 net/socket.c:2763\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f4ce4f7def9\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f4ce5d4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133\nRAX: ffffffffffffffda RBX: 00007f4ce5135f80 RCX: 00007f4ce4f7def9\nRDX: 0000000000000001 RSI: 0000000020005d40 RDI: 0000000000000006\nRBP: 00007f4ce4ff0b76 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f4ce5135f80 R15: 00007ffd4cbc6d68\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49952",
"url": "https://www.suse.com/security/cve/CVE-2024-49952"
},
{
"category": "external",
"summary": "SUSE Bug 1232157 for CVE-2024-49952",
"url": "https://bugzilla.suse.com/1232157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49952"
},
{
"cve": "CVE-2024-49953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice\n\nThe km.state is not checked in driver\u0027s delayed work. When\nxfrm_state_check_expire() is called, the state can be reset to\nXFRM_STATE_EXPIRED, even if it is XFRM_STATE_DEAD already. This\nhappens when xfrm state is deleted, but not freed yet. As\n__xfrm_state_delete() is called again in xfrm timer, the following\ncrash occurs.\n\nTo fix this issue, skip xfrm_state_check_expire() if km.state is not\nXFRM_STATE_VALID.\n\n Oops: general protection fault, probably for non-canonical address 0xdead000000000108: 0000 [#1] SMP\n CPU: 5 UID: 0 PID: 7448 Comm: kworker/u102:2 Not tainted 6.11.0-rc2+ #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n Workqueue: mlx5e_ipsec: eth%d mlx5e_ipsec_handle_sw_limits [mlx5_core]\n RIP: 0010:__xfrm_state_delete+0x3d/0x1b0\n Code: 0f 84 8b 01 00 00 48 89 fd c6 87 c8 00 00 00 05 48 8d bb 40 10 00 00 e8 11 04 1a 00 48 8b 95 b8 00 00 00 48 8b 85 c0 00 00 00 \u003c48\u003e 89 42 08 48 89 10 48 8b 55 10 48 b8 00 01 00 00 00 00 ad de 48\n RSP: 0018:ffff88885f945ec8 EFLAGS: 00010246\n RAX: dead000000000122 RBX: ffffffff82afa940 RCX: 0000000000000036\n RDX: dead000000000100 RSI: 0000000000000000 RDI: ffffffff82afb980\n RBP: ffff888109a20340 R08: ffff88885f945ea0 R09: 0000000000000000\n R10: 0000000000000000 R11: ffff88885f945ff8 R12: 0000000000000246\n R13: ffff888109a20340 R14: ffff88885f95f420 R15: ffff88885f95f400\n FS: 0000000000000000(0000) GS:ffff88885f940000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f2163102430 CR3: 00000001128d6001 CR4: 0000000000370eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cIRQ\u003e\n ? die_addr+0x33/0x90\n ? exc_general_protection+0x1a2/0x390\n ? asm_exc_general_protection+0x22/0x30\n ? __xfrm_state_delete+0x3d/0x1b0\n ? __xfrm_state_delete+0x2f/0x1b0\n xfrm_timer_handler+0x174/0x350\n ? __xfrm_state_delete+0x1b0/0x1b0\n __hrtimer_run_queues+0x121/0x270\n hrtimer_run_softirq+0x88/0xd0\n handle_softirqs+0xcc/0x270\n do_softirq+0x3c/0x50\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x47/0x50\n mlx5e_ipsec_handle_sw_limits+0x7d/0x90 [mlx5_core]\n process_one_work+0x137/0x2d0\n worker_thread+0x28d/0x3a0\n ? rescuer_thread+0x480/0x480\n kthread+0xb8/0xe0\n ? kthread_park+0x80/0x80\n ret_from_fork+0x2d/0x50\n ? kthread_park+0x80/0x80\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49953",
"url": "https://www.suse.com/security/cve/CVE-2024-49953"
},
{
"category": "external",
"summary": "SUSE Bug 1232156 for CVE-2024-49953",
"url": "https://bugzilla.suse.com/1232156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49953"
},
{
"cve": "CVE-2024-49954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstatic_call: Replace pointless WARN_ON() in static_call_module_notify()\n\nstatic_call_module_notify() triggers a WARN_ON(), when memory allocation\nfails in __static_call_add_module().\n\nThat\u0027s not really justified, because the failure case must be correctly\nhandled by the well known call chain and the error code is passed\nthrough to the initiating userspace application.\n\nA memory allocation fail is not a fatal problem, but the WARN_ON() takes\nthe machine out when panic_on_warn is set.\n\nReplace it with a pr_warn().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49954",
"url": "https://www.suse.com/security/cve/CVE-2024-49954"
},
{
"category": "external",
"summary": "SUSE Bug 1232155 for CVE-2024-49954",
"url": "https://bugzilla.suse.com/1232155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49954"
},
{
"cve": "CVE-2024-49955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: battery: Fix possible crash when unregistering a battery hook\n\nWhen a battery hook returns an error when adding a new battery, then\nthe battery hook is automatically unregistered.\nHowever the battery hook provider cannot know that, so it will later\ncall battery_hook_unregister() on the already unregistered battery\nhook, resulting in a crash.\n\nFix this by using the list head to mark already unregistered battery\nhooks as already being unregistered so that they can be ignored by\nbattery_hook_unregister().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49955",
"url": "https://www.suse.com/security/cve/CVE-2024-49955"
},
{
"category": "external",
"summary": "SUSE Bug 1232154 for CVE-2024-49955",
"url": "https://bugzilla.suse.com/1232154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49955"
},
{
"cve": "CVE-2024-49956",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49956"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: fix double destroy_workqueue error\n\nWhen gfs2_fill_super() fails, destroy_workqueue() is called within\ngfs2_gl_hash_clear(), and the subsequent code path calls\ndestroy_workqueue() on the same work queue again.\n\nThis issue can be fixed by setting the work queue pointer to NULL after\nthe first destroy_workqueue() call and checking for a NULL pointer\nbefore attempting to destroy the work queue again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49956",
"url": "https://www.suse.com/security/cve/CVE-2024-49956"
},
{
"category": "external",
"summary": "SUSE Bug 1232153 for CVE-2024-49956",
"url": "https://bugzilla.suse.com/1232153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49956"
},
{
"cve": "CVE-2024-49957",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49957"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix null-ptr-deref when journal load failed.\n\nDuring the mounting process, if journal_reset() fails because of too short\njournal, then lead to jbd2_journal_load() fails with NULL j_sb_buffer. \nSubsequently, ocfs2_journal_shutdown() calls\njbd2_journal_flush()-\u003ejbd2_cleanup_journal_tail()-\u003e\n__jbd2_update_log_tail()-\u003ejbd2_journal_update_sb_log_tail()\n-\u003elock_buffer(journal-\u003ej_sb_buffer), resulting in a null-pointer\ndereference error.\n\nTo resolve this issue, we should check the JBD2_LOADED flag to ensure the\njournal was properly loaded. Additionally, use journal instead of\nosb-\u003ejournal directly to simplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49957",
"url": "https://www.suse.com/security/cve/CVE-2024-49957"
},
{
"category": "external",
"summary": "SUSE Bug 1232152 for CVE-2024-49957",
"url": "https://bugzilla.suse.com/1232152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49957"
},
{
"cve": "CVE-2024-49958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49958"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: reserve space for inline xattr before attaching reflink tree\n\nOne of our customers reported a crash and a corrupted ocfs2 filesystem. \nThe crash was due to the detection of corruption. Upon troubleshooting,\nthe fsck -fn output showed the below corruption\n\n[EXTENT_LIST_FREE] Extent list in owner 33080590 claims 230 as the next free chain record,\nbut fsck believes the largest valid value is 227. Clamp the next record value? n\n\nThe stat output from the debugfs.ocfs2 showed the following corruption\nwhere the \"Next Free Rec:\" had overshot the \"Count:\" in the root metadata\nblock.\n\n Inode: 33080590 Mode: 0640 Generation: 2619713622 (0x9c25a856)\n FS Generation: 904309833 (0x35e6ac49)\n CRC32: 00000000 ECC: 0000\n Type: Regular Attr: 0x0 Flags: Valid\n Dynamic Features: (0x16) HasXattr InlineXattr Refcounted\n Extended Attributes Block: 0 Extended Attributes Inline Size: 256\n User: 0 (root) Group: 0 (root) Size: 281320357888\n Links: 1 Clusters: 141738\n ctime: 0x66911b56 0x316edcb8 -- Fri Jul 12 06:02:30.829349048 2024\n atime: 0x66911d6b 0x7f7a28d -- Fri Jul 12 06:11:23.133669517 2024\n mtime: 0x66911b56 0x12ed75d7 -- Fri Jul 12 06:02:30.317552087 2024\n dtime: 0x0 -- Wed Dec 31 17:00:00 1969\n Refcount Block: 2777346\n Last Extblk: 2886943 Orphan Slot: 0\n Sub Alloc Slot: 0 Sub Alloc Bit: 14\n Tree Depth: 1 Count: 227 Next Free Rec: 230\n ## Offset Clusters Block#\n 0 0 2310 2776351\n 1 2310 2139 2777375\n 2 4449 1221 2778399\n 3 5670 731 2779423\n 4 6401 566 2780447\n ....... .... .......\n ....... .... .......\n\nThe issue was in the reflink workfow while reserving space for inline\nxattr. The problematic function is ocfs2_reflink_xattr_inline(). By the\ntime this function is called the reflink tree is already recreated at the\ndestination inode from the source inode. At this point, this function\nreserves space for inline xattrs at the destination inode without even\nchecking if there is space at the root metadata block. It simply reduces\nthe l_count from 243 to 227 thereby making space of 256 bytes for inline\nxattr whereas the inode already has extents beyond this index (in this\ncase up to 230), thereby causing corruption.\n\nThe fix for this is to reserve space for inline metadata at the destination\ninode before the reflink tree gets recreated. The customer has verified the\nfix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49958",
"url": "https://www.suse.com/security/cve/CVE-2024-49958"
},
{
"category": "external",
"summary": "SUSE Bug 1232151 for CVE-2024-49958",
"url": "https://bugzilla.suse.com/1232151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49958"
},
{
"cve": "CVE-2024-49959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49959"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error\n\nIn __jbd2_log_wait_for_space(), we might call jbd2_cleanup_journal_tail()\nto recover some journal space. But if an error occurs while executing\njbd2_cleanup_journal_tail() (e.g., an EIO), we don\u0027t stop waiting for free\nspace right away, we try other branches, and if j_committing_transaction\nis NULL (i.e., the tid is 0), we will get the following complain:\n\n============================================\nJBD2: I/O error when updating journal superblock for sdd-8.\n__jbd2_log_wait_for_space: needed 256 blocks and only had 217 space available\n__jbd2_log_wait_for_space: no way to get more journal space in sdd-8\n------------[ cut here ]------------\nWARNING: CPU: 2 PID: 139804 at fs/jbd2/checkpoint.c:109 __jbd2_log_wait_for_space+0x251/0x2e0\nModules linked in:\nCPU: 2 PID: 139804 Comm: kworker/u8:3 Not tainted 6.6.0+ #1\nRIP: 0010:__jbd2_log_wait_for_space+0x251/0x2e0\nCall Trace:\n \u003cTASK\u003e\n add_transaction_credits+0x5d1/0x5e0\n start_this_handle+0x1ef/0x6a0\n jbd2__journal_start+0x18b/0x340\n ext4_dirty_inode+0x5d/0xb0\n __mark_inode_dirty+0xe4/0x5d0\n generic_update_time+0x60/0x70\n[...]\n============================================\n\nSo only if jbd2_cleanup_journal_tail() returns 1, i.e., there is nothing to\nclean up at the moment, continue to try to reclaim free space in other ways.\n\nNote that this fix relies on commit 6f6a6fda2945 (\"jbd2: fix ocfs2 corrupt\nwhen updating journal superblock fails\") to make jbd2_cleanup_journal_tail\nreturn the correct error code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49959",
"url": "https://www.suse.com/security/cve/CVE-2024-49959"
},
{
"category": "external",
"summary": "SUSE Bug 1232149 for CVE-2024-49959",
"url": "https://bugzilla.suse.com/1232149"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49959"
},
{
"cve": "CVE-2024-49960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix timer use-after-free on failed mount\n\nSyzbot has found an ODEBUG bug in ext4_fill_super\n\nThe del_timer_sync function cancels the s_err_report timer,\nwhich reminds about filesystem errors daily. We should\nguarantee the timer is no longer active before kfree(sbi).\n\nWhen filesystem mounting fails, the flow goes to failed_mount3,\nwhere an error occurs when ext4_stop_mmpd is called, causing\na read I/O failure. This triggers the ext4_handle_error function\nthat ultimately re-arms the timer,\nleaving the s_err_report timer active before kfree(sbi) is called.\n\nFix the issue by canceling the s_err_report timer after calling ext4_stop_mmpd.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49960",
"url": "https://www.suse.com/security/cve/CVE-2024-49960"
},
{
"category": "external",
"summary": "SUSE Bug 1232395 for CVE-2024-49960",
"url": "https://bugzilla.suse.com/1232395"
},
{
"category": "external",
"summary": "SUSE Bug 1232803 for CVE-2024-49960",
"url": "https://bugzilla.suse.com/1232803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49960"
},
{
"cve": "CVE-2024-49961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: ar0521: Use cansleep version of gpiod_set_value()\n\nIf we use GPIO reset from I2C port expander, we must use *_cansleep()\nvariant of GPIO functions.\nThis was not done in ar0521_power_on()/ar0521_power_off() functions.\nLet\u0027s fix that.\n\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 11 at drivers/gpio/gpiolib.c:3496 gpiod_set_value+0x74/0x7c\nModules linked in:\nCPU: 0 PID: 11 Comm: kworker/u16:0 Not tainted 6.10.0 #53\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\nWorkqueue: events_unbound deferred_probe_work_func\npstate: 80400009 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : gpiod_set_value+0x74/0x7c\nlr : ar0521_power_on+0xcc/0x290\nsp : ffffff8001d7ab70\nx29: ffffff8001d7ab70 x28: ffffff80027dcc90 x27: ffffff8003c82000\nx26: ffffff8003ca9250 x25: ffffffc080a39c60 x24: ffffff8003ca9088\nx23: ffffff8002402720 x22: ffffff8003ca9080 x21: ffffff8003ca9088\nx20: 0000000000000000 x19: ffffff8001eb2a00 x18: ffffff80efeeac80\nx17: 756d2d6332692f30 x16: 0000000000000000 x15: 0000000000000000\nx14: ffffff8001d91d40 x13: 0000000000000016 x12: ffffffc080e98930\nx11: ffffff8001eb2880 x10: 0000000000000890 x9 : ffffff8001d7a9f0\nx8 : ffffff8001d92570 x7 : ffffff80efeeac80 x6 : 000000003fc6e780\nx5 : ffffff8001d91c80 x4 : 0000000000000002 x3 : 0000000000000000\nx2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000001\nCall trace:\n gpiod_set_value+0x74/0x7c\n ar0521_power_on+0xcc/0x290\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49961",
"url": "https://www.suse.com/security/cve/CVE-2024-49961"
},
{
"category": "external",
"summary": "SUSE Bug 1232148 for CVE-2024-49961",
"url": "https://bugzilla.suse.com/1232148"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49961"
},
{
"cve": "CVE-2024-49962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package()\n\nACPICA commit 4d4547cf13cca820ff7e0f859ba83e1a610b9fd0\n\nACPI_ALLOCATE_ZEROED() may fail, elements might be NULL and will cause\nNULL pointer dereference later.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49962",
"url": "https://www.suse.com/security/cve/CVE-2024-49962"
},
{
"category": "external",
"summary": "SUSE Bug 1232314 for CVE-2024-49962",
"url": "https://bugzilla.suse.com/1232314"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49962"
},
{
"cve": "CVE-2024-49963",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49963"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmailbox: bcm2835: Fix timeout during suspend mode\n\nDuring noirq suspend phase the Raspberry Pi power driver suffer of\nfirmware property timeouts. The reason is that the IRQ of the underlying\nBCM2835 mailbox is disabled and rpi_firmware_property_list() will always\nrun into a timeout [1].\n\nSince the VideoCore side isn\u0027t consider as a wakeup source, set the\nIRQF_NO_SUSPEND flag for the mailbox IRQ in order to keep it enabled\nduring suspend-resume cycle.\n\n[1]\nPM: late suspend of devices complete after 1.754 msecs\nWARNING: CPU: 0 PID: 438 at drivers/firmware/raspberrypi.c:128\n rpi_firmware_property_list+0x204/0x22c\nFirmware transaction 0x00028001 timeout\nModules linked in:\nCPU: 0 PID: 438 Comm: bash Tainted: G C 6.9.3-dirty #17\nHardware name: BCM2835\nCall trace:\nunwind_backtrace from show_stack+0x18/0x1c\nshow_stack from dump_stack_lvl+0x34/0x44\ndump_stack_lvl from __warn+0x88/0xec\n__warn from warn_slowpath_fmt+0x7c/0xb0\nwarn_slowpath_fmt from rpi_firmware_property_list+0x204/0x22c\nrpi_firmware_property_list from rpi_firmware_property+0x68/0x8c\nrpi_firmware_property from rpi_firmware_set_power+0x54/0xc0\nrpi_firmware_set_power from _genpd_power_off+0xe4/0x148\n_genpd_power_off from genpd_sync_power_off+0x7c/0x11c\ngenpd_sync_power_off from genpd_finish_suspend+0xcc/0xe0\ngenpd_finish_suspend from dpm_run_callback+0x78/0xd0\ndpm_run_callback from device_suspend_noirq+0xc0/0x238\ndevice_suspend_noirq from dpm_suspend_noirq+0xb0/0x168\ndpm_suspend_noirq from suspend_devices_and_enter+0x1b8/0x5ac\nsuspend_devices_and_enter from pm_suspend+0x254/0x2e4\npm_suspend from state_store+0xa8/0xd4\nstate_store from kernfs_fop_write_iter+0x154/0x1a0\nkernfs_fop_write_iter from vfs_write+0x12c/0x184\nvfs_write from ksys_write+0x78/0xc0\nksys_write from ret_fast_syscall+0x0/0x54\nException stack(0xcc93dfa8 to 0xcc93dff0)\n[...]\nPM: noirq suspend of devices complete after 3095.584 msecs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49963",
"url": "https://www.suse.com/security/cve/CVE-2024-49963"
},
{
"category": "external",
"summary": "SUSE Bug 1232147 for CVE-2024-49963",
"url": "https://bugzilla.suse.com/1232147"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49963"
},
{
"cve": "CVE-2024-49964",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49964"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/hugetlb: fix memfd_pin_folios free_huge_pages leak\n\nmemfd_pin_folios followed by unpin_folios fails to restore free_huge_pages\nif the pages were not already faulted in, because the folio refcount for\npages created by memfd_alloc_folio never goes to 0. memfd_pin_folios\nneeds another folio_put to undo the folio_try_get below:\n\nmemfd_alloc_folio()\n alloc_hugetlb_folio_nodemask()\n dequeue_hugetlb_folio_nodemask()\n dequeue_hugetlb_folio_node_exact()\n folio_ref_unfreeze(folio, 1); ; adds 1 refcount\n folio_try_get() ; adds 1 refcount\n hugetlb_add_to_page_cache() ; adds 512 refcount (on x86)\n\nWith the fix, after memfd_pin_folios + unpin_folios, the refcount for the\n(unfaulted) page is 512, which is correct, as the refcount for a faulted\nunpinned page is 513.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49964",
"url": "https://www.suse.com/security/cve/CVE-2024-49964"
},
{
"category": "external",
"summary": "SUSE Bug 1232144 for CVE-2024-49964",
"url": "https://bugzilla.suse.com/1232144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49964"
},
{
"cve": "CVE-2024-49965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: remove unreasonable unlock in ocfs2_read_blocks\n\nPatch series \"Misc fixes for ocfs2_read_blocks\", v5.\n\nThis series contains 2 fixes for ocfs2_read_blocks(). The first patch fix\nthe issue reported by syzbot, which detects bad unlock balance in\nocfs2_read_blocks(). The second patch fixes an issue reported by Heming\nZhao when reviewing above fix.\n\n\nThis patch (of 2):\n\nThere was a lock release before exiting, so remove the unreasonable unlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49965",
"url": "https://www.suse.com/security/cve/CVE-2024-49965"
},
{
"category": "external",
"summary": "SUSE Bug 1232142 for CVE-2024-49965",
"url": "https://bugzilla.suse.com/1232142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49965"
},
{
"cve": "CVE-2024-49966",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49966"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: cancel dqi_sync_work before freeing oinfo\n\nocfs2_global_read_info() will initialize and schedule dqi_sync_work at the\nend, if error occurs after successfully reading global quota, it will\ntrigger the following warning with CONFIG_DEBUG_OBJECTS_* enabled:\n\nODEBUG: free active (active state 0) object: 00000000d8b0ce28 object type: timer_list hint: qsync_work_fn+0x0/0x16c\n\nThis reports that there is an active delayed work when freeing oinfo in\nerror handling, so cancel dqi_sync_work first. BTW, return status instead\nof -1 when .read_file_info fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49966",
"url": "https://www.suse.com/security/cve/CVE-2024-49966"
},
{
"category": "external",
"summary": "SUSE Bug 1232141 for CVE-2024-49966",
"url": "https://bugzilla.suse.com/1232141"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49966"
},
{
"cve": "CVE-2024-49967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49967"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49967",
"url": "https://www.suse.com/security/cve/CVE-2024-49967"
},
{
"category": "external",
"summary": "SUSE Bug 1232140 for CVE-2024-49967",
"url": "https://bugzilla.suse.com/1232140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49967"
},
{
"cve": "CVE-2024-49968",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49968"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: filesystems without casefold feature cannot be mounted with siphash\n\nWhen mounting the ext4 filesystem, if the default hash version is set to\nDX_HASH_SIPHASH but the casefold feature is not set, exit the mounting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49968",
"url": "https://www.suse.com/security/cve/CVE-2024-49968"
},
{
"category": "external",
"summary": "SUSE Bug 1232264 for CVE-2024-49968",
"url": "https://bugzilla.suse.com/1232264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49968"
},
{
"cve": "CVE-2024-49969",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49969"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in DCN30 color transformation\n\nThis commit addresses a potential index out of bounds issue in the\n`cm3_helper_translate_curve_to_hw_format` function in the DCN30 color\nmanagement module. The issue could occur when the index \u0027i\u0027 exceeds the\nnumber of transfer function points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, the function returns\nfalse to indicate an error.\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:180 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:181 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:182 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49969",
"url": "https://www.suse.com/security/cve/CVE-2024-49969"
},
{
"category": "external",
"summary": "SUSE Bug 1232519 for CVE-2024-49969",
"url": "https://bugzilla.suse.com/1232519"
},
{
"category": "external",
"summary": "SUSE Bug 1232524 for CVE-2024-49969",
"url": "https://bugzilla.suse.com/1232524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49969"
},
{
"cve": "CVE-2024-49970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49970"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Implement bounds check for stream encoder creation in DCN401\n\n\u0027stream_enc_regs\u0027 array is an array of dcn10_stream_enc_registers\nstructures. The array is initialized with four elements, corresponding\nto the four calls to stream_enc_regs() in the array initializer. This\nmeans that valid indices for this array are 0, 1, 2, and 3.\n\nThe error message \u0027stream_enc_regs\u0027 4 \u003c= 5 below, is indicating that\nthere is an attempt to access this array with an index of 5, which is\nout of bounds. This could lead to undefined behavior\n\nHere, eng_id is used as an index to access the stream_enc_regs array. If\neng_id is 5, this would result in an out-of-bounds access on the\nstream_enc_regs array.\n\nThus fixing Buffer overflow error in dcn401_stream_encoder_create\n\nFound by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn401/dcn401_resource.c:1209 dcn401_stream_encoder_create() error: buffer overflow \u0027stream_enc_regs\u0027 4 \u003c= 5",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49970",
"url": "https://www.suse.com/security/cve/CVE-2024-49970"
},
{
"category": "external",
"summary": "SUSE Bug 1232516 for CVE-2024-49970",
"url": "https://bugzilla.suse.com/1232516"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49970"
},
{
"cve": "CVE-2024-49971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Increase array size of dummy_boolean\n\n[WHY]\ndml2_core_shared_mode_support and dml_core_mode_support access the third\nelement of dummy_boolean, i.e. hw_debug5 = \u0026s-\u003edummy_boolean[2], when\ndummy_boolean has size of 2. Any assignment to hw_debug5 causes an\nOVERRUN.\n\n[HOW]\nIncrease dummy_boolean\u0027s array size to 3.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49971",
"url": "https://www.suse.com/security/cve/CVE-2024-49971"
},
{
"category": "external",
"summary": "SUSE Bug 1232473 for CVE-2024-49971",
"url": "https://bugzilla.suse.com/1232473"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49971"
},
{
"cve": "CVE-2024-49972",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49972"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Deallocate DML memory if allocation fails\n\n[Why]\nWhen DC state create DML memory allocation fails, memory is not\ndeallocated subsequently, resulting in uninitialized structure\nthat is not NULL.\n\n[How]\nDeallocate memory if DML memory allocation fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49972",
"url": "https://www.suse.com/security/cve/CVE-2024-49972"
},
{
"category": "external",
"summary": "SUSE Bug 1232315 for CVE-2024-49972",
"url": "https://bugzilla.suse.com/1232315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49972"
},
{
"cve": "CVE-2024-49973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nr8169: add tally counter fields added with RTL8125\n\nRTL8125 added fields to the tally counter, what may result in the chip\ndma\u0027ing these new fields to unallocated memory. Therefore make sure\nthat the allocated memory area is big enough to hold all of the\ntally counter values, even if we use only parts of it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49973",
"url": "https://www.suse.com/security/cve/CVE-2024-49973"
},
{
"category": "external",
"summary": "SUSE Bug 1232105 for CVE-2024-49973",
"url": "https://bugzilla.suse.com/1232105"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49973"
},
{
"cve": "CVE-2024-49974",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49974"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Limit the number of concurrent async COPY operations\n\nNothing appears to limit the number of concurrent async COPY\noperations that clients can start. In addition, AFAICT each async\nCOPY can copy an unlimited number of 4MB chunks, so can run for a\nlong time. Thus IMO async COPY can become a DoS vector.\n\nAdd a restriction mechanism that bounds the number of concurrent\nbackground COPY operations. Start simple and try to be fair -- this\npatch implements a per-namespace limit.\n\nAn async COPY request that occurs while this limit is exceeded gets\nNFS4ERR_DELAY. The requesting client can choose to send the request\nagain after a delay or fall back to a traditional read/write style\ncopy.\n\nIf there is need to make the mechanism more sophisticated, we can\nvisit that in future patches.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49974",
"url": "https://www.suse.com/security/cve/CVE-2024-49974"
},
{
"category": "external",
"summary": "SUSE Bug 1232383 for CVE-2024-49974",
"url": "https://bugzilla.suse.com/1232383"
},
{
"category": "external",
"summary": "SUSE Bug 1232384 for CVE-2024-49974",
"url": "https://bugzilla.suse.com/1232384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49974"
},
{
"cve": "CVE-2024-49975",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49975"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuprobes: fix kernel info leak via \"[uprobes]\" vma\n\nxol_add_vma() maps the uninitialized page allocated by __create_xol_area()\ninto userspace. On some architectures (x86) this memory is readable even\nwithout VM_READ, VM_EXEC results in the same pgprot_t as VM_EXEC|VM_READ,\nalthough this doesn\u0027t really matter, debugger can read this memory anyway.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49975",
"url": "https://www.suse.com/security/cve/CVE-2024-49975"
},
{
"category": "external",
"summary": "SUSE Bug 1232104 for CVE-2024-49975",
"url": "https://bugzilla.suse.com/1232104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49975"
},
{
"cve": "CVE-2024-49976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing/timerlat: Drop interface_lock in stop_kthread()\n\nstop_kthread() is the offline callback for \"trace/osnoise:online\", since\ncommit 5bfbcd1ee57b (\"tracing/timerlat: Add interface_lock around clearing\nof kthread in stop_kthread()\"), the following ABBA deadlock scenario is\nintroduced:\n\nT1 | T2 [BP] | T3 [AP]\nosnoise_hotplug_workfn() | work_for_cpu_fn() | cpuhp_thread_fun()\n | _cpu_down() | osnoise_cpu_die()\n mutex_lock(\u0026interface_lock) | | stop_kthread()\n | cpus_write_lock() | mutex_lock(\u0026interface_lock)\n cpus_read_lock() | cpuhp_kick_ap() |\n\nAs the interface_lock here in just for protecting the \"kthread\" field of\nthe osn_var, use xchg() instead to fix this issue. Also use\nfor_each_online_cpu() back in stop_per_cpu_kthreads() as it can take\ncpu_read_lock() again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49976",
"url": "https://www.suse.com/security/cve/CVE-2024-49976"
},
{
"category": "external",
"summary": "SUSE Bug 1232103 for CVE-2024-49976",
"url": "https://bugzilla.suse.com/1232103"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49976"
},
{
"cve": "CVE-2024-49977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: Fix zero-division error when disabling tc cbs\n\nThe commit b8c43360f6e4 (\"net: stmmac: No need to calculate speed divider\nwhen offload is disabled\") allows the \"port_transmit_rate_kbps\" to be\nset to a value of 0, which is then passed to the \"div_s64\" function when\ntc-cbs is disabled. This leads to a zero-division error.\n\nWhen tc-cbs is disabled, the idleslope, sendslope, and credit values the\ncredit values are not required to be configured. Therefore, adding a return\nstatement after setting the txQ mode to DCB when tc-cbs is disabled would\nprevent a zero-division error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49977",
"url": "https://www.suse.com/security/cve/CVE-2024-49977"
},
{
"category": "external",
"summary": "SUSE Bug 1232102 for CVE-2024-49977",
"url": "https://bugzilla.suse.com/1232102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49977"
},
{
"cve": "CVE-2024-49978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngso: fix udp gso fraglist segmentation after pull from frag_list\n\nDetect gso fraglist skbs with corrupted geometry (see below) and\npass these to skb_segment instead of skb_segment_list, as the first\ncan segment them correctly.\n\nValid SKB_GSO_FRAGLIST skbs\n- consist of two or more segments\n- the head_skb holds the protocol headers plus first gso_size\n- one or more frag_list skbs hold exactly one segment\n- all but the last must be gso_size\n\nOptional datapath hooks such as NAT and BPF (bpf_skb_pull_data) can\nmodify these skbs, breaking these invariants.\n\nIn extreme cases they pull all data into skb linear. For UDP, this\ncauses a NULL ptr deref in __udpv4_gso_segment_list_csum at\nudp_hdr(seg-\u003enext)-\u003edest.\n\nDetect invalid geometry due to pull, by checking head_skb size.\nDon\u0027t just drop, as this may blackhole a destination. Convert to be\nable to pass to regular skb_segment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49978",
"url": "https://www.suse.com/security/cve/CVE-2024-49978"
},
{
"category": "external",
"summary": "SUSE Bug 1232101 for CVE-2024-49978",
"url": "https://bugzilla.suse.com/1232101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49978"
},
{
"cve": "CVE-2024-49979",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49979"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: gso: fix tcp fraglist segmentation after pull from frag_list\n\nDetect tcp gso fraglist skbs with corrupted geometry (see below) and\npass these to skb_segment instead of skb_segment_list, as the first\ncan segment them correctly.\n\nValid SKB_GSO_FRAGLIST skbs\n- consist of two or more segments\n- the head_skb holds the protocol headers plus first gso_size\n- one or more frag_list skbs hold exactly one segment\n- all but the last must be gso_size\n\nOptional datapath hooks such as NAT and BPF (bpf_skb_pull_data) can\nmodify these skbs, breaking these invariants.\n\nIn extreme cases they pull all data into skb linear. For TCP, this\ncauses a NULL ptr deref in __tcpv4_gso_segment_list_csum at\ntcp_hdr(seg-\u003enext).\n\nDetect invalid geometry due to pull, by checking head_skb size.\nDon\u0027t just drop, as this may blackhole a destination. Convert to be\nable to pass to regular skb_segment.\n\nApproach and description based on a patch by Willem de Bruijn.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49979",
"url": "https://www.suse.com/security/cve/CVE-2024-49979"
},
{
"category": "external",
"summary": "SUSE Bug 1232100 for CVE-2024-49979",
"url": "https://bugzilla.suse.com/1232100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49979"
},
{
"cve": "CVE-2024-49980",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49980"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvrf: revert \"vrf: Remove unnecessary RCU-bh critical section\"\n\nThis reverts commit 504fc6f4f7f681d2a03aa5f68aad549d90eab853.\n\ndev_queue_xmit_nit is expected to be called with BH disabled.\n__dev_queue_xmit has the following:\n\n /* Disable soft irqs for various locks below. Also\n * stops preemption for RCU.\n */\n rcu_read_lock_bh();\n\nVRF must follow this invariant. The referenced commit removed this\nprotection. Which triggered a lockdep warning:\n\n\t================================\n\tWARNING: inconsistent lock state\n\t6.11.0 #1 Tainted: G W\n\t--------------------------------\n\tinconsistent {IN-SOFTIRQ-W} -\u003e {SOFTIRQ-ON-W} usage.\n\tbtserver/134819 [HC0[0]:SC0[0]:HE1:SE1] takes:\n\tffff8882da30c118 (rlock-AF_PACKET){+.?.}-{2:2}, at: tpacket_rcv+0x863/0x3b30\n\t{IN-SOFTIRQ-W} state was registered at:\n\t lock_acquire+0x19a/0x4f0\n\t _raw_spin_lock+0x27/0x40\n\t packet_rcv+0xa33/0x1320\n\t __netif_receive_skb_core.constprop.0+0xcb0/0x3a90\n\t __netif_receive_skb_list_core+0x2c9/0x890\n\t netif_receive_skb_list_internal+0x610/0xcc0\n [...]\n\n\tother info that might help us debug this:\n\t Possible unsafe locking scenario:\n\n\t CPU0\n\t ----\n\t lock(rlock-AF_PACKET);\n\t \u003cInterrupt\u003e\n\t lock(rlock-AF_PACKET);\n\n\t *** DEADLOCK ***\n\n\tCall Trace:\n\t \u003cTASK\u003e\n\t dump_stack_lvl+0x73/0xa0\n\t mark_lock+0x102e/0x16b0\n\t __lock_acquire+0x9ae/0x6170\n\t lock_acquire+0x19a/0x4f0\n\t _raw_spin_lock+0x27/0x40\n\t tpacket_rcv+0x863/0x3b30\n\t dev_queue_xmit_nit+0x709/0xa40\n\t vrf_finish_direct+0x26e/0x340 [vrf]\n\t vrf_l3_out+0x5f4/0xe80 [vrf]\n\t __ip_local_out+0x51e/0x7a0\n [...]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49980",
"url": "https://www.suse.com/security/cve/CVE-2024-49980"
},
{
"category": "external",
"summary": "SUSE Bug 1232099 for CVE-2024-49980",
"url": "https://bugzilla.suse.com/1232099"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49980"
},
{
"cve": "CVE-2024-49981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49981"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: venus: fix use after free bug in venus_remove due to race condition\n\nin venus_probe, core-\u003ework is bound with venus_sys_error_handler, which is\nused to handle error. The code use core-\u003esys_err_done to make sync work.\nThe core-\u003ework is started in venus_event_notify.\n\nIf we call venus_remove, there might be an unfished work. The possible\nsequence is as follows:\n\nCPU0 CPU1\n\n |venus_sys_error_handler\nvenus_remove |\nhfi_destroy\t \t\t |\nvenus_hfi_destroy\t |\nkfree(hdev);\t |\n |hfi_reinit\n\t\t\t\t\t |venus_hfi_queues_reinit\n |//use hdev\n\nFix it by canceling the work in venus_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49981",
"url": "https://www.suse.com/security/cve/CVE-2024-49981"
},
{
"category": "external",
"summary": "SUSE Bug 1232098 for CVE-2024-49981",
"url": "https://bugzilla.suse.com/1232098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49981"
},
{
"cve": "CVE-2024-49982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naoe: fix the potential use-after-free problem in more places\n\nFor fixing CVE-2023-6270, f98364e92662 (\"aoe: fix the potential\nuse-after-free problem in aoecmd_cfg_pkts\") makes tx() calling dev_put()\ninstead of doing in aoecmd_cfg_pkts(). It avoids that the tx() runs\ninto use-after-free.\n\nThen Nicolai Stange found more places in aoe have potential use-after-free\nproblem with tx(). e.g. revalidate(), aoecmd_ata_rw(), resend(), probe()\nand aoecmd_cfg_rsp(). Those functions also use aoenet_xmit() to push\npacket to tx queue. So they should also use dev_hold() to increase the\nrefcnt of skb-\u003edev.\n\nOn the other hand, moving dev_put() to tx() causes that the refcnt of\nskb-\u003edev be reduced to a negative value, because corresponding\ndev_hold() are not called in revalidate(), aoecmd_ata_rw(), resend(),\nprobe(), and aoecmd_cfg_rsp(). This patch fixed this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49982",
"url": "https://www.suse.com/security/cve/CVE-2024-49982"
},
{
"category": "external",
"summary": "SUSE Bug 1232097 for CVE-2024-49982",
"url": "https://bugzilla.suse.com/1232097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49982"
},
{
"cve": "CVE-2024-49983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free\n\nWhen calling ext4_force_split_extent_at() in ext4_ext_replay_update_ex(),\nthe \u0027ppath\u0027 is updated but it is the \u0027path\u0027 that is freed, thus potentially\ntriggering a double-free in the following process:\n\next4_ext_replay_update_ex\n ppath = path\n ext4_force_split_extent_at(\u0026ppath)\n ext4_split_extent_at\n ext4_ext_insert_extent\n ext4_ext_create_new_leaf\n ext4_ext_grow_indepth\n ext4_find_extent\n if (depth \u003e path[0].p_maxdepth)\n kfree(path) ---\u003e path First freed\n *orig_path = path = NULL ---\u003e null ppath\n kfree(path) ---\u003e path double-free !!!\n\nSo drop the unnecessary ppath and use path directly to avoid this problem.\nAnd use ext4_find_extent() directly to update path, avoiding unnecessary\nmemory allocation and freeing. Also, propagate the error returned by\next4_find_extent() instead of using strange error codes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49983",
"url": "https://www.suse.com/security/cve/CVE-2024-49983"
},
{
"category": "external",
"summary": "SUSE Bug 1232096 for CVE-2024-49983",
"url": "https://bugzilla.suse.com/1232096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49983"
},
{
"cve": "CVE-2024-49984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/v3d: Prevent out of bounds access in performance query extensions\n\nCheck that the number of perfmons userspace is passing in the copy and\nreset extensions is not greater than the internal kernel storage where\nthe ids will be copied into.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49984",
"url": "https://www.suse.com/security/cve/CVE-2024-49984"
},
{
"category": "external",
"summary": "SUSE Bug 1232095 for CVE-2024-49984",
"url": "https://bugzilla.suse.com/1232095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49984"
},
{
"cve": "CVE-2024-49985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume\n\nIn case there is any sort of clock controller attached to this I2C bus\ncontroller, for example Versaclock or even an AIC32x4 I2C codec, then\nan I2C transfer triggered from the clock controller clk_ops .prepare\ncallback may trigger a deadlock on drivers/clk/clk.c prepare_lock mutex.\n\nThis is because the clock controller first grabs the prepare_lock mutex\nand then performs the prepare operation, including its I2C access. The\nI2C access resumes this I2C bus controller via .runtime_resume callback,\nwhich calls clk_prepare_enable(), which attempts to grab the prepare_lock\nmutex again and deadlocks.\n\nSince the clock are already prepared since probe() and unprepared in\nremove(), use simple clk_enable()/clk_disable() calls to enable and\ndisable the clock on runtime suspend and resume, to avoid hitting the\nprepare_lock mutex.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49985",
"url": "https://www.suse.com/security/cve/CVE-2024-49985"
},
{
"category": "external",
"summary": "SUSE Bug 1232094 for CVE-2024-49985",
"url": "https://bugzilla.suse.com/1232094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49985"
},
{
"cve": "CVE-2024-49986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors\n\nx86_android_tablet_remove() frees the pdevs[] array, so it should not\nbe used after calling x86_android_tablet_remove().\n\nWhen platform_device_register() fails, store the pdevs[x] PTR_ERR() value\ninto the local ret variable before calling x86_android_tablet_remove()\nto avoid using pdevs[] after it has been freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49986",
"url": "https://www.suse.com/security/cve/CVE-2024-49986"
},
{
"category": "external",
"summary": "SUSE Bug 1232093 for CVE-2024-49986",
"url": "https://bugzilla.suse.com/1232093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49986"
},
{
"cve": "CVE-2024-49987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49987"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpftool: Fix undefined behavior in qsort(NULL, 0, ...)\n\nWhen netfilter has no entry to display, qsort is called with\nqsort(NULL, 0, ...). This results in undefined behavior, as UBSan\nreports:\n\nnet.c:827:2: runtime error: null pointer passed as argument 1, which is declared to never be null\n\nAlthough the C standard does not explicitly state whether calling qsort\nwith a NULL pointer when the size is 0 constitutes undefined behavior,\nSection 7.1.4 of the C standard (Use of library functions) mentions:\n\n\"Each of the following statements applies unless explicitly stated\notherwise in the detailed descriptions that follow: If an argument to a\nfunction has an invalid value (such as a value outside the domain of\nthe function, or a pointer outside the address space of the program, or\na null pointer, or a pointer to non-modifiable storage when the\ncorresponding parameter is not const-qualified) or a type (after\npromotion) not expected by a function with variable number of\narguments, the behavior is undefined.\"\n\nTo avoid this, add an early return when nf_link_info is NULL to prevent\ncalling qsort with a NULL pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49987",
"url": "https://www.suse.com/security/cve/CVE-2024-49987"
},
{
"category": "external",
"summary": "SUSE Bug 1232258 for CVE-2024-49987",
"url": "https://bugzilla.suse.com/1232258"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49987"
},
{
"cve": "CVE-2024-49988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: add refcnt to ksmbd_conn struct\n\nWhen sending an oplock break request, opinfo-\u003econn is used,\nBut freed -\u003econn can be used on multichannel.\nThis patch add a reference count to the ksmbd_conn struct\nso that it can be freed when it is no longer used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49988",
"url": "https://www.suse.com/security/cve/CVE-2024-49988"
},
{
"category": "external",
"summary": "SUSE Bug 1232482 for CVE-2024-49988",
"url": "https://bugzilla.suse.com/1232482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49988"
},
{
"cve": "CVE-2024-49989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix double free issue during amdgpu module unload\n\nFlexible endpoints use DIGs from available inflexible endpoints,\nso only the encoders of inflexible links need to be freed.\nOtherwise, a double free issue may occur when unloading the\namdgpu module.\n\n[ 279.190523] RIP: 0010:__slab_free+0x152/0x2f0\n[ 279.190577] Call Trace:\n[ 279.190580] \u003cTASK\u003e\n[ 279.190582] ? show_regs+0x69/0x80\n[ 279.190590] ? die+0x3b/0x90\n[ 279.190595] ? do_trap+0xc8/0xe0\n[ 279.190601] ? do_error_trap+0x73/0xa0\n[ 279.190605] ? __slab_free+0x152/0x2f0\n[ 279.190609] ? exc_invalid_op+0x56/0x70\n[ 279.190616] ? __slab_free+0x152/0x2f0\n[ 279.190642] ? asm_exc_invalid_op+0x1f/0x30\n[ 279.190648] ? dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191096] ? __slab_free+0x152/0x2f0\n[ 279.191102] ? dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191469] kfree+0x260/0x2b0\n[ 279.191474] dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191821] link_destroy+0xd7/0x130 [amdgpu]\n[ 279.192248] dc_destruct+0x90/0x270 [amdgpu]\n[ 279.192666] dc_destroy+0x19/0x40 [amdgpu]\n[ 279.193020] amdgpu_dm_fini+0x16e/0x200 [amdgpu]\n[ 279.193432] dm_hw_fini+0x26/0x40 [amdgpu]\n[ 279.193795] amdgpu_device_fini_hw+0x24c/0x400 [amdgpu]\n[ 279.194108] amdgpu_driver_unload_kms+0x4f/0x70 [amdgpu]\n[ 279.194436] amdgpu_pci_remove+0x40/0x80 [amdgpu]\n[ 279.194632] pci_device_remove+0x3a/0xa0\n[ 279.194638] device_remove+0x40/0x70\n[ 279.194642] device_release_driver_internal+0x1ad/0x210\n[ 279.194647] driver_detach+0x4e/0xa0\n[ 279.194650] bus_remove_driver+0x6f/0xf0\n[ 279.194653] driver_unregister+0x33/0x60\n[ 279.194657] pci_unregister_driver+0x44/0x90\n[ 279.194662] amdgpu_exit+0x19/0x1f0 [amdgpu]\n[ 279.194939] __do_sys_delete_module.isra.0+0x198/0x2f0\n[ 279.194946] __x64_sys_delete_module+0x16/0x20\n[ 279.194950] do_syscall_64+0x58/0x120\n[ 279.194954] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n[ 279.194980] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49989",
"url": "https://www.suse.com/security/cve/CVE-2024-49989"
},
{
"category": "external",
"summary": "SUSE Bug 1232483 for CVE-2024-49989",
"url": "https://bugzilla.suse.com/1232483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49989"
},
{
"cve": "CVE-2024-49990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/hdcp: Check GSC structure validity\n\nSometimes xe_gsc is not initialized when checked at HDCP capability\ncheck. Add gsc structure check to avoid null pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49990",
"url": "https://www.suse.com/security/cve/CVE-2024-49990"
},
{
"category": "external",
"summary": "SUSE Bug 1232484 for CVE-2024-49990",
"url": "https://bugzilla.suse.com/1232484"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49990"
},
{
"cve": "CVE-2024-49991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer\n\nPass pointer reference to amdgpu_bo_unref to clear the correct pointer,\notherwise amdgpu_bo_unref clear the local variable, the original pointer\nnot set to NULL, this could cause use-after-free bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49991",
"url": "https://www.suse.com/security/cve/CVE-2024-49991"
},
{
"category": "external",
"summary": "SUSE Bug 1232282 for CVE-2024-49991",
"url": "https://bugzilla.suse.com/1232282"
},
{
"category": "external",
"summary": "SUSE Bug 1232284 for CVE-2024-49991",
"url": "https://bugzilla.suse.com/1232284"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49991"
},
{
"cve": "CVE-2024-49992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/stm: Avoid use-after-free issues with crtc and plane\n\nltdc_load() calls functions drm_crtc_init_with_planes(),\ndrm_universal_plane_init() and drm_encoder_init(). These functions\nshould not be called with parameters allocated with devm_kzalloc()\nto avoid use-after-free issues [1].\n\nUse allocations managed by the DRM framework.\n\nFound by Linux Verification Center (linuxtesting.org).\n\n[1]\nhttps://lore.kernel.org/lkml/u366i76e3qhh3ra5oxrtngjtm2u5lterkekcz6y2jkndhuxzli@diujon4h7qwb/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49992",
"url": "https://www.suse.com/security/cve/CVE-2024-49992"
},
{
"category": "external",
"summary": "SUSE Bug 1232430 for CVE-2024-49992",
"url": "https://bugzilla.suse.com/1232430"
},
{
"category": "external",
"summary": "SUSE Bug 1232431 for CVE-2024-49992",
"url": "https://bugzilla.suse.com/1232431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49992"
},
{
"cve": "CVE-2024-49994",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49994"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix integer overflow in BLKSECDISCARD\n\nI independently rediscovered\n\n\tcommit 22d24a544b0d49bbcbd61c8c0eaf77d3c9297155\n\tblock: fix overflow in blk_ioctl_discard()\n\nbut for secure erase.\n\nSame problem:\n\n\tuint64_t r[2] = {512, 18446744073709551104ULL};\n\tioctl(fd, BLKSECDISCARD, r);\n\nwill enter near infinite loop inside blkdev_issue_secure_erase():\n\n\ta.out: attempt to access beyond end of device\n\tloop0: rw=5, sector=3399043073, nr_sectors = 1024 limit=2048\n\tbio_check_eod: 3286214 callbacks suppressed",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49994",
"url": "https://www.suse.com/security/cve/CVE-2024-49994"
},
{
"category": "external",
"summary": "SUSE Bug 1237757 for CVE-2024-49994",
"url": "https://bugzilla.suse.com/1237757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49994"
},
{
"cve": "CVE-2024-49995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49995"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49995",
"url": "https://www.suse.com/security/cve/CVE-2024-49995"
},
{
"category": "external",
"summary": "SUSE Bug 1232432 for CVE-2024-49995",
"url": "https://bugzilla.suse.com/1232432"
},
{
"category": "external",
"summary": "SUSE Bug 1232433 for CVE-2024-49995",
"url": "https://bugzilla.suse.com/1232433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49995"
},
{
"cve": "CVE-2024-49996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: Fix buffer overflow when parsing NFS reparse points\n\nReparseDataLength is sum of the InodeType size and DataBuffer size.\nSo to get DataBuffer size it is needed to subtract InodeType\u0027s size from\nReparseDataLength.\n\nFunction cifs_strndup_from_utf16() is currentlly accessing buf-\u003eDataBuffer\nat position after the end of the buffer because it does not subtract\nInodeType size from the length. Fix this problem and correctly subtract\nvariable len.\n\nMember InodeType is present only when reparse buffer is large enough. Check\nfor ReparseDataLength before accessing InodeType to prevent another invalid\nmemory access.\n\nMajor and minor rdev values are present also only when reparse buffer is\nlarge enough. Check for reparse buffer size before calling reparse_mkdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49996",
"url": "https://www.suse.com/security/cve/CVE-2024-49996"
},
{
"category": "external",
"summary": "SUSE Bug 1232089 for CVE-2024-49996",
"url": "https://bugzilla.suse.com/1232089"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49996"
},
{
"cve": "CVE-2024-49997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: lantiq_etop: fix memory disclosure\n\nWhen applying padding, the buffer is not zeroed, which results in memory\ndisclosure. The mentioned data is observed on the wire. This patch uses\nskb_put_padto() to pad Ethernet frames properly. The mentioned function\nzeroes the expanded buffer.\n\nIn case the packet cannot be padded it is silently dropped. Statistics\nare also not incremented. This driver does not support statistics in the\nold 32-bit format or the new 64-bit format. These will be added in the\nfuture. In its current form, the patch should be easily backported to\nstable versions.\n\nEthernet MACs on Amazon-SE and Danube cannot do padding of the packets\nin hardware, so software padding must be applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49997",
"url": "https://www.suse.com/security/cve/CVE-2024-49997"
},
{
"category": "external",
"summary": "SUSE Bug 1232088 for CVE-2024-49997",
"url": "https://bugzilla.suse.com/1232088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49997"
},
{
"cve": "CVE-2024-49998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: improve shutdown sequence\n\nAlexander Sverdlin presents 2 problems during shutdown with the\nlan9303 driver. One is specific to lan9303 and the other just happens\nto reproduce there.\n\nThe first problem is that lan9303 is unique among DSA drivers in that it\ncalls dev_get_drvdata() at \"arbitrary runtime\" (not probe, not shutdown,\nnot remove):\n\nphy_state_machine()\n-\u003e ...\n -\u003e dsa_user_phy_read()\n -\u003e ds-\u003eops-\u003ephy_read()\n -\u003e lan9303_phy_read()\n -\u003e chip-\u003eops-\u003ephy_read()\n -\u003e lan9303_mdio_phy_read()\n -\u003e dev_get_drvdata()\n\nBut we never stop the phy_state_machine(), so it may continue to run\nafter dsa_switch_shutdown(). Our common pattern in all DSA drivers is\nto set drvdata to NULL to suppress the remove() method that may come\nafterwards. But in this case it will result in an NPD.\n\nThe second problem is that the way in which we set\ndp-\u003econduit-\u003edsa_ptr = NULL; is concurrent with receive packet\nprocessing. dsa_switch_rcv() checks once whether dev-\u003edsa_ptr is NULL,\nbut afterwards, rather than continuing to use that non-NULL value,\ndev-\u003edsa_ptr is dereferenced again and again without NULL checks:\ndsa_conduit_find_user() and many other places. In between dereferences,\nthere is no locking to ensure that what was valid once continues to be\nvalid.\n\nBoth problems have the common aspect that closing the conduit interface\nsolves them.\n\nIn the first case, dev_close(conduit) triggers the NETDEV_GOING_DOWN\nevent in dsa_user_netdevice_event() which closes user ports as well.\ndsa_port_disable_rt() calls phylink_stop(), which synchronously stops\nthe phylink state machine, and ds-\u003eops-\u003ephy_read() will thus no longer\ncall into the driver after this point.\n\nIn the second case, dev_close(conduit) should do this, as per\nDocumentation/networking/driver.rst:\n\n| Quiescence\n| ----------\n|\n| After the ndo_stop routine has been called, the hardware must\n| not receive or transmit any data. All in flight packets must\n| be aborted. If necessary, poll or wait for completion of\n| any reset commands.\n\nSo it should be sufficient to ensure that later, when we zeroize\nconduit-\u003edsa_ptr, there will be no concurrent dsa_switch_rcv() call\non this conduit.\n\nThe addition of the netif_device_detach() function is to ensure that\nioctls, rtnetlinks and ethtool requests on the user ports no longer\npropagate down to the driver - we\u0027re no longer prepared to handle them.\n\nThe race condition actually did not exist when commit 0650bf52b31f\n(\"net: dsa: be compatible with masters which unregister on shutdown\")\nfirst introduced dsa_switch_shutdown(). It was created later, when we\nstopped unregistering the user interfaces from a bad spot, and we just\nreplaced that sequence with a racy zeroization of conduit-\u003edsa_ptr\n(one which doesn\u0027t ensure that the interfaces aren\u0027t up).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49998",
"url": "https://www.suse.com/security/cve/CVE-2024-49998"
},
{
"category": "external",
"summary": "SUSE Bug 1232087 for CVE-2024-49998",
"url": "https://bugzilla.suse.com/1232087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49998"
},
{
"cve": "CVE-2024-49999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix the setting of the server responding flag\n\nIn afs_wait_for_operation(), we set transcribe the call responded flag to\nthe server record that we used after doing the fileserver iteration loop -\nbut it\u0027s possible to exit the loop having had a response from the server\nthat we\u0027ve discarded (e.g. it returned an abort or we started receiving\ndata, but the call didn\u0027t complete).\n\nThis means that op-\u003eserver might be NULL, but we don\u0027t check that before\nattempting to set the server flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49999",
"url": "https://www.suse.com/security/cve/CVE-2024-49999"
},
{
"category": "external",
"summary": "SUSE Bug 1232086 for CVE-2024-49999",
"url": "https://bugzilla.suse.com/1232086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49999"
},
{
"cve": "CVE-2024-50000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc()\n\nIn mlx5e_tir_builder_alloc() kvzalloc() may return NULL\nwhich is dereferenced on the next line in a reference\nto the modify field.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50000",
"url": "https://www.suse.com/security/cve/CVE-2024-50000"
},
{
"category": "external",
"summary": "SUSE Bug 1232085 for CVE-2024-50000",
"url": "https://bugzilla.suse.com/1232085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50000"
},
{
"cve": "CVE-2024-50001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix error path in multi-packet WQE transmit\n\nRemove the erroneous unmap in case no DMA mapping was established\n\nThe multi-packet WQE transmit code attempts to obtain a DMA mapping for\nthe skb. This could fail, e.g. under memory pressure, when the IOMMU\ndriver just can\u0027t allocate more memory for page tables. While the code\ntries to handle this in the path below the err_unmap label it erroneously\nunmaps one entry from the sq\u0027s FIFO list of active mappings. Since the\ncurrent map attempt failed this unmap is removing some random DMA mapping\nthat might still be required. If the PCI function now presents that IOVA,\nthe IOMMU may assumes a rogue DMA access and e.g. on s390 puts the PCI\nfunction in error state.\n\nThe erroneous behavior was seen in a stress-test environment that created\nmemory pressure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50001",
"url": "https://www.suse.com/security/cve/CVE-2024-50001"
},
{
"category": "external",
"summary": "SUSE Bug 1232084 for CVE-2024-50001",
"url": "https://bugzilla.suse.com/1232084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50001"
},
{
"cve": "CVE-2024-50002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstatic_call: Handle module init failure correctly in static_call_del_module()\n\nModule insertion invokes static_call_add_module() to initialize the static\ncalls in a module. static_call_add_module() invokes __static_call_init(),\nwhich allocates a struct static_call_mod to either encapsulate the built-in\nstatic call sites of the associated key into it so further modules can be\nadded or to append the module to the module chain.\n\nIf that allocation fails the function returns with an error code and the\nmodule core invokes static_call_del_module() to clean up eventually added\nstatic_call_mod entries.\n\nThis works correctly, when all keys used by the module were converted over\nto a module chain before the failure. If not then static_call_del_module()\ncauses a #GP as it blindly assumes that key::mods points to a valid struct\nstatic_call_mod.\n\nThe problem is that key::mods is not a individual struct member of struct\nstatic_call_key, it\u0027s part of a union to save space:\n\n union {\n /* bit 0: 0 = mods, 1 = sites */\n unsigned long type;\n struct static_call_mod *mods;\n struct static_call_site *sites;\n\t};\n\nkey::sites is a pointer to the list of built-in usage sites of the static\ncall. The type of the pointer is differentiated by bit 0. A mods pointer\nhas the bit clear, the sites pointer has the bit set.\n\nAs static_call_del_module() blidly assumes that the pointer is a valid\nstatic_call_mod type, it fails to check for this failure case and\ndereferences the pointer to the list of built-in call sites, which is\nobviously bogus.\n\nCure it by checking whether the key has a sites or a mods pointer.\n\nIf it\u0027s a sites pointer then the key is not to be touched. As the sites are\nwalked in the same order as in __static_call_init() the site walk can be\nterminated because all subsequent sites have not been touched by the init\ncode due to the error exit.\n\nIf it was converted before the allocation fail, then the inner loop which\nsearches for a module match will find nothing.\n\nA fail in the second allocation in __static_call_init() is harmless and\ndoes not require special treatment. The first allocation succeeded and\nconverted the key to a module chain. That first entry has mod::mod == NULL\nand mod::next == NULL, so the inner loop of static_call_del_module() will\nneither find a module match nor a module chain. The next site in the walk\nwas either already converted, but can\u0027t match the module, or it will exit\nthe outer loop because it has a static_call_site pointer and not a\nstatic_call_mod pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50002",
"url": "https://www.suse.com/security/cve/CVE-2024-50002"
},
{
"category": "external",
"summary": "SUSE Bug 1232083 for CVE-2024-50002",
"url": "https://bugzilla.suse.com/1232083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50002"
},
{
"cve": "CVE-2024-50003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix system hang while resume with TBT monitor\n\n[Why]\nConnected with a Thunderbolt monitor and do the suspend and the system\nmay hang while resume.\n\nThe TBT monitor HPD will be triggered during the resume procedure\nand call the drm_client_modeset_probe() while\nstruct drm_connector connector-\u003edev-\u003emaster is NULL.\n\nIt will mess up the pipe topology after resume.\n\n[How]\nSkip the TBT monitor HPD during the resume procedure because we\ncurrently will probe the connectors after resume by default.\n\n(cherry picked from commit 453f86a26945207a16b8f66aaed5962dc2b95b85)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50003",
"url": "https://www.suse.com/security/cve/CVE-2024-50003"
},
{
"category": "external",
"summary": "SUSE Bug 1232385 for CVE-2024-50003",
"url": "https://bugzilla.suse.com/1232385"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50003"
},
{
"cve": "CVE-2024-50004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50004"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: update DML2 policy EnhancedPrefetchScheduleAccelerationFinal DCN35\n\n[WHY \u0026 HOW]\nMismatch in DCN35 DML2 cause bw validation failed to acquire unexpected DPP pipe to cause\ngrey screen and system hang. Remove EnhancedPrefetchScheduleAccelerationFinal value override\nto match HW spec.\n\n(cherry picked from commit 9dad21f910fcea2bdcff4af46159101d7f9cd8ba)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50004",
"url": "https://www.suse.com/security/cve/CVE-2024-50004"
},
{
"category": "external",
"summary": "SUSE Bug 1232396 for CVE-2024-50004",
"url": "https://bugzilla.suse.com/1232396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50004"
},
{
"cve": "CVE-2024-50005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmac802154: Fix potential RCU dereference issue in mac802154_scan_worker\n\nIn the `mac802154_scan_worker` function, the `scan_req-\u003etype` field was\naccessed after the RCU read-side critical section was unlocked. According\nto RCU usage rules, this is illegal and can lead to unpredictable\nbehavior, such as accessing memory that has been updated or causing\nuse-after-free issues.\n\nThis possible bug was identified using a static analysis tool developed\nby myself, specifically designed to detect RCU-related issues.\n\nTo address this, the `scan_req-\u003etype` value is now stored in a local\nvariable `scan_req_type` while still within the RCU read-side critical\nsection. The `scan_req_type` is then used after the RCU lock is released,\nensuring that the type value is safely accessed without violating RCU\nrules.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50005",
"url": "https://www.suse.com/security/cve/CVE-2024-50005"
},
{
"category": "external",
"summary": "SUSE Bug 1232082 for CVE-2024-50005",
"url": "https://bugzilla.suse.com/1232082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50005"
},
{
"cve": "CVE-2024-50006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix i_data_sem unlock order in ext4_ind_migrate()\n\nFuzzing reports a possible deadlock in jbd2_log_wait_commit.\n\nThis issue is triggered when an EXT4_IOC_MIGRATE ioctl is set to require\nsynchronous updates because the file descriptor is opened with O_SYNC.\nThis can lead to the jbd2_journal_stop() function calling\njbd2_might_wait_for_commit(), potentially causing a deadlock if the\nEXT4_IOC_MIGRATE call races with a write(2) system call.\n\nThis problem only arises when CONFIG_PROVE_LOCKING is enabled. In this\ncase, the jbd2_might_wait_for_commit macro locks jbd2_handle in the\njbd2_journal_stop function while i_data_sem is locked. This triggers\nlockdep because the jbd2_journal_start function might also lock the same\njbd2_handle simultaneously.\n\nFound by Linux Verification Center (linuxtesting.org) with syzkaller.\n\nRule: add",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50006",
"url": "https://www.suse.com/security/cve/CVE-2024-50006"
},
{
"category": "external",
"summary": "SUSE Bug 1232442 for CVE-2024-50006",
"url": "https://bugzilla.suse.com/1232442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50006"
},
{
"cve": "CVE-2024-50007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: asihpi: Fix potential OOB array access\n\nASIHPI driver stores some values in the static array upon a response\nfrom the driver, and its index depends on the firmware. We shouldn\u0027t\ntrust it blindly.\n\nThis patch adds a sanity check of the array index to fit in the array\nsize.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50007",
"url": "https://www.suse.com/security/cve/CVE-2024-50007"
},
{
"category": "external",
"summary": "SUSE Bug 1232394 for CVE-2024-50007",
"url": "https://bugzilla.suse.com/1232394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50007"
},
{
"cve": "CVE-2024-50008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()\n\nReplace one-element array with a flexible-array member in\n`struct host_cmd_ds_802_11_scan_ext`.\n\nWith this, fix the following warning:\n\nelo 16 17:51:58 surfacebook kernel: ------------[ cut here ]------------\nelo 16 17:51:58 surfacebook kernel: memcpy: detected field-spanning write (size 243) of single field \"ext_scan-\u003etlv_buffer\" at drivers/net/wireless/marvell/mwifiex/scan.c:2239 (size 1)\nelo 16 17:51:58 surfacebook kernel: WARNING: CPU: 0 PID: 498 at drivers/net/wireless/marvell/mwifiex/scan.c:2239 mwifiex_cmd_802_11_scan_ext+0x83/0x90 [mwifiex]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50008",
"url": "https://www.suse.com/security/cve/CVE-2024-50008"
},
{
"category": "external",
"summary": "SUSE Bug 1232317 for CVE-2024-50008",
"url": "https://bugzilla.suse.com/1232317"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50008"
},
{
"cve": "CVE-2024-50009",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50009"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: amd-pstate: add check for cpufreq_cpu_get\u0027s return value\n\ncpufreq_cpu_get may return NULL. To avoid NULL-dereference check it\nand return in case of error.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50009",
"url": "https://www.suse.com/security/cve/CVE-2024-50009"
},
{
"category": "external",
"summary": "SUSE Bug 1232318 for CVE-2024-50009",
"url": "https://bugzilla.suse.com/1232318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50009"
},
{
"cve": "CVE-2024-50010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50010"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexec: don\u0027t WARN for racy path_noexec check\n\nBoth i_mode and noexec checks wrapped in WARN_ON stem from an artifact\nof the previous implementation. They used to legitimately check for the\ncondition, but that got moved up in two commits:\n633fb6ac3980 (\"exec: move S_ISREG() check earlier\")\n0fd338b2d2cd (\"exec: move path_noexec() check earlier\")\n\nInstead of being removed said checks are WARN_ON\u0027ed instead, which\nhas some debug value.\n\nHowever, the spurious path_noexec check is racy, resulting in\nunwarranted warnings should someone race with setting the noexec flag.\n\nOne can note there is more to perm-checking whether execve is allowed\nand none of the conditions are guaranteed to still hold after they were\ntested for.\n\nAdditionally this does not validate whether the code path did any perm\nchecking to begin with -- it will pass if the inode happens to be\nregular.\n\nKeep the redundant path_noexec() check even though it\u0027s mindless\nnonsense checking for guarantee that isn\u0027t given so drop the WARN.\n\nReword the commentary and do small tidy ups while here.\n\n[brauner: keep redundant path_noexec() check]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50010",
"url": "https://www.suse.com/security/cve/CVE-2024-50010"
},
{
"category": "external",
"summary": "SUSE Bug 1232388 for CVE-2024-50010",
"url": "https://bugzilla.suse.com/1232388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50010"
},
{
"cve": "CVE-2024-50011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: soc-acpi-intel-rpl-match: add missing empty item\n\nThere is no links_num in struct snd_soc_acpi_mach {}, and we test\n!link-\u003enum_adr as a condition to end the loop in hda_sdw_machine_select().\nSo an empty item in struct snd_soc_acpi_link_adr array is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50011",
"url": "https://www.suse.com/security/cve/CVE-2024-50011"
},
{
"category": "external",
"summary": "SUSE Bug 1232081 for CVE-2024-50011",
"url": "https://bugzilla.suse.com/1232081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50011"
},
{
"cve": "CVE-2024-50012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: Avoid a bad reference count on CPU node\n\nIn the parse_perf_domain function, if the call to\nof_parse_phandle_with_args returns an error, then the reference to the\nCPU device node that was acquired at the start of the function would not\nbe properly decremented.\n\nAddress this by declaring the variable with the __free(device_node)\ncleanup attribute.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50012",
"url": "https://www.suse.com/security/cve/CVE-2024-50012"
},
{
"category": "external",
"summary": "SUSE Bug 1232386 for CVE-2024-50012",
"url": "https://bugzilla.suse.com/1232386"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50012"
},
{
"cve": "CVE-2024-50013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix memory leak in exfat_load_bitmap()\n\nIf the first directory entry in the root directory is not a bitmap\ndirectory entry, \u0027bh\u0027 will not be released and reassigned, which\nwill cause a memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50013",
"url": "https://www.suse.com/security/cve/CVE-2024-50013"
},
{
"category": "external",
"summary": "SUSE Bug 1232080 for CVE-2024-50013",
"url": "https://bugzilla.suse.com/1232080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50013"
},
{
"cve": "CVE-2024-50014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50014"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix access to uninitialised lock in fc replay path\n\nThe following kernel trace can be triggered with fstest generic/629 when\nexecuted against a filesystem with fast-commit feature enabled:\n\nINFO: trying to register non-static key.\nThe code is fine but needs lockdep annotation, or maybe\nyou didn\u0027t initialize this object before use?\nturning off the locking correctness validator.\nCPU: 0 PID: 866 Comm: mount Not tainted 6.10.0+ #11\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x66/0x90\n register_lock_class+0x759/0x7d0\n __lock_acquire+0x85/0x2630\n ? __find_get_block+0xb4/0x380\n lock_acquire+0xd1/0x2d0\n ? __ext4_journal_get_write_access+0xd5/0x160\n _raw_spin_lock+0x33/0x40\n ? __ext4_journal_get_write_access+0xd5/0x160\n __ext4_journal_get_write_access+0xd5/0x160\n ext4_reserve_inode_write+0x61/0xb0\n __ext4_mark_inode_dirty+0x79/0x270\n ? ext4_ext_replay_set_iblocks+0x2f8/0x450\n ext4_ext_replay_set_iblocks+0x330/0x450\n ext4_fc_replay+0x14c8/0x1540\n ? jread+0x88/0x2e0\n ? rcu_is_watching+0x11/0x40\n do_one_pass+0x447/0xd00\n jbd2_journal_recover+0x139/0x1b0\n jbd2_journal_load+0x96/0x390\n ext4_load_and_init_journal+0x253/0xd40\n ext4_fill_super+0x2cc6/0x3180\n...\n\nIn the replay path there\u0027s an attempt to lock sbi-\u003es_bdev_wb_lock in\nfunction ext4_check_bdev_write_error(). Unfortunately, at this point this\nspinlock has not been initialized yet. Moving it\u0027s initialization to an\nearlier point in __ext4_fill_super() fixes this splat.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50014",
"url": "https://www.suse.com/security/cve/CVE-2024-50014"
},
{
"category": "external",
"summary": "SUSE Bug 1232446 for CVE-2024-50014",
"url": "https://bugzilla.suse.com/1232446"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50014"
},
{
"cve": "CVE-2024-50015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50015"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: dax: fix overflowing extents beyond inode size when partially writing\n\nThe dax_iomap_rw() does two things in each iteration: map written blocks\nand copy user data to blocks. If the process is killed by user(See signal\nhandling in dax_iomap_iter()), the copied data will be returned and added\non inode size, which means that the length of written extents may exceed\nthe inode size, then fsck will fail. An example is given as:\n\ndd if=/dev/urandom of=file bs=4M count=1\n dax_iomap_rw\n iomap_iter // round 1\n ext4_iomap_begin\n ext4_iomap_alloc // allocate 0~2M extents(written flag)\n dax_iomap_iter // copy 2M data\n iomap_iter // round 2\n iomap_iter_advance\n iter-\u003epos += iter-\u003eprocessed // iter-\u003epos = 2M\n ext4_iomap_begin\n ext4_iomap_alloc // allocate 2~4M extents(written flag)\n dax_iomap_iter\n fatal_signal_pending\n done = iter-\u003epos - iocb-\u003eki_pos // done = 2M\n ext4_handle_inode_extension\n ext4_update_inode_size // inode size = 2M\n\nfsck reports: Inode 13, i_size is 2097152, should be 4194304. Fix?\n\nFix the problem by truncating extents if the written length is smaller\nthan expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50015",
"url": "https://www.suse.com/security/cve/CVE-2024-50015"
},
{
"category": "external",
"summary": "SUSE Bug 1232079 for CVE-2024-50015",
"url": "https://bugzilla.suse.com/1232079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50015"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm/ident_map: Use gbpages only where full GB page should be mapped.\n\nWhen ident_pud_init() uses only GB pages to create identity maps, large\nranges of addresses not actually requested can be included in the resulting\ntable; a 4K request will map a full GB. This can include a lot of extra\naddress space past that requested, including areas marked reserved by the\nBIOS. That allows processor speculation into reserved regions, that on UV\nsystems can cause system halts.\n\nOnly use GB pages when map creation requests include the full GB page of\nspace. Fall back to using smaller 2M pages when only portions of a GB page\nare included in the request.\n\nNo attempt is made to coalesce mapping requests. If a request requires a\nmap entry at the 2M (pmd) level, subsequent mapping requests within the\nsame 1G region will also be at the pmd level, even if adjacent or\noverlapping such requests could have been combined to map a full GB page.\nExisting usage starts with larger regions and then adds smaller regions, so\nthis should not have any great consequence.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50017",
"url": "https://www.suse.com/security/cve/CVE-2024-50017"
},
{
"category": "external",
"summary": "SUSE Bug 1232312 for CVE-2024-50017",
"url": "https://bugzilla.suse.com/1232312"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50017"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkthread: unpark only parked kthread\n\nCalling into kthread unparking unconditionally is mostly harmless when\nthe kthread is already unparked. The wake up is then simply ignored\nbecause the target is not in TASK_PARKED state.\n\nHowever if the kthread is per CPU, the wake up is preceded by a call\nto kthread_bind() which expects the task to be inactive and in\nTASK_PARKED state, which obviously isn\u0027t the case if it is unparked.\n\nAs a result, calling kthread_stop() on an unparked per-cpu kthread\ntriggers such a warning:\n\n\tWARNING: CPU: 0 PID: 11 at kernel/kthread.c:525 __kthread_bind_mask kernel/kthread.c:525\n\t \u003cTASK\u003e\n\t kthread_stop+0x17a/0x630 kernel/kthread.c:707\n\t destroy_workqueue+0x136/0xc40 kernel/workqueue.c:5810\n\t wg_destruct+0x1e2/0x2e0 drivers/net/wireguard/device.c:257\n\t netdev_run_todo+0xe1a/0x1000 net/core/dev.c:10693\n\t default_device_exit_batch+0xa14/0xa90 net/core/dev.c:11769\n\t ops_exit_list net/core/net_namespace.c:178 [inline]\n\t cleanup_net+0x89d/0xcc0 net/core/net_namespace.c:640\n\t process_one_work kernel/workqueue.c:3231 [inline]\n\t process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n\t worker_thread+0x86d/0xd70 kernel/workqueue.c:3393\n\t kthread+0x2f0/0x390 kernel/kthread.c:389\n\t ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n\t ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\t \u003c/TASK\u003e\n\nFix this with skipping unecessary unparking while stopping a kthread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50019",
"url": "https://www.suse.com/security/cve/CVE-2024-50019"
},
{
"category": "external",
"summary": "SUSE Bug 1231990 for CVE-2024-50019",
"url": "https://bugzilla.suse.com/1231990"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50019"
},
{
"cve": "CVE-2024-50020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix improper handling of refcount in ice_sriov_set_msix_vec_count()\n\nThis patch addresses an issue with improper reference count handling in the\nice_sriov_set_msix_vec_count() function.\n\nFirst, the function calls ice_get_vf_by_id(), which increments the\nreference count of the vf pointer. If the subsequent call to\nice_get_vf_vsi() fails, the function currently returns an error without\ndecrementing the reference count of the vf pointer, leading to a reference\ncount leak. The correct behavior, as implemented in this patch, is to\ndecrement the reference count using ice_put_vf(vf) before returning an\nerror when vsi is NULL.\n\nSecond, the function calls ice_sriov_get_irqs(), which sets\nvf-\u003efirst_vector_idx. If this call returns a negative value, indicating an\nerror, the function returns an error without decrementing the reference\ncount of the vf pointer, resulting in another reference count leak. The\npatch addresses this by adding a call to ice_put_vf(vf) before returning\nan error when vf-\u003efirst_vector_idx \u003c 0.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand identifying potential mismanagement of reference counts. In this case,\nthe tool flagged the missing decrement operation as a potential issue,\nleading to this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50020",
"url": "https://www.suse.com/security/cve/CVE-2024-50020"
},
{
"category": "external",
"summary": "SUSE Bug 1231989 for CVE-2024-50020",
"url": "https://bugzilla.suse.com/1231989"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50020"
},
{
"cve": "CVE-2024-50021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix improper handling of refcount in ice_dpll_init_rclk_pins()\n\nThis patch addresses a reference count handling issue in the\nice_dpll_init_rclk_pins() function. The function calls ice_dpll_get_pins(),\nwhich increments the reference count of the relevant resources. However,\nif the condition WARN_ON((!vsi || !vsi-\u003enetdev)) is met, the function\ncurrently returns an error without properly releasing the resources\nacquired by ice_dpll_get_pins(), leading to a reference count leak.\n\nTo resolve this, the check has been moved to the top of the function. This\nensures that the function verifies the state before any resources are\nacquired, avoiding the need for additional resource management in the\nerror path.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand detecting potential issues where resources are not properly managed.\nIn this case, the tool flagged the missing release operation as a\npotential problem, which led to the development of this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50021",
"url": "https://www.suse.com/security/cve/CVE-2024-50021"
},
{
"category": "external",
"summary": "SUSE Bug 1231957 for CVE-2024-50021",
"url": "https://bugzilla.suse.com/1231957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50021"
},
{
"cve": "CVE-2024-50022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevice-dax: correct pgoff align in dax_set_mapping()\n\npgoff should be aligned using ALIGN_DOWN() instead of ALIGN(). Otherwise,\nvmf-\u003eaddress not aligned to fault_size will be aligned to the next\nalignment, that can result in memory failure getting the wrong address.\n\nIt\u0027s a subtle situation that only can be observed in\npage_mapped_in_vma() after the page is page fault handled by\ndev_dax_huge_fault. Generally, there is little chance to perform\npage_mapped_in_vma in dev-dax\u0027s page unless in specific error injection\nto the dax device to trigger an MCE - memory-failure. In that case,\npage_mapped_in_vma() will be triggered to determine which task is\naccessing the failure address and kill that task in the end.\n\n\nWe used self-developed dax device (which is 2M aligned mapping) , to\nperform error injection to random address. It turned out that error\ninjected to non-2M-aligned address was causing endless MCE until panic.\nBecause page_mapped_in_vma() kept resulting wrong address and the task\naccessing the failure address was never killed properly:\n\n\n[ 3783.719419] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3784.049006] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3784.049190] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3784.448042] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3784.448186] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3784.792026] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3784.792179] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3785.162502] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3785.162633] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3785.461116] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3785.461247] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3785.764730] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3785.764859] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3786.042128] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3786.042259] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3786.464293] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3786.464423] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3786.818090] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3786.818217] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3787.085297] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3787.085424] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n\nIt took us several weeks to pinpoint this problem, but we eventually\nused bpftrace to trace the page fault and mce address and successfully\nidentified the issue.\n\n\nJoao added:\n\n; Likely we never reproduce in production because we always pin\n: device-dax regions in the region align they provide (Qemu does\n: similarly with prealloc in hugetlb/file backed memory). I think this\n: bug requires that we touch *unpinned* device-dax regions unaligned to\n: the device-dax selected alignment (page size i.e. 4K/2M/1G)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50022",
"url": "https://www.suse.com/security/cve/CVE-2024-50022"
},
{
"category": "external",
"summary": "SUSE Bug 1231956 for CVE-2024-50022",
"url": "https://bugzilla.suse.com/1231956"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50022"
},
{
"cve": "CVE-2024-50023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Remove LED entry from LEDs list on unregister\n\nCommit c938ab4da0eb (\"net: phy: Manual remove LEDs to ensure correct\nordering\") correctly fixed a problem with using devm_ but missed\nremoving the LED entry from the LEDs list.\n\nThis cause kernel panic on specific scenario where the port for the PHY\nis torn down and up and the kmod for the PHY is removed.\n\nOn setting the port down the first time, the assosiacted LEDs are\ncorrectly unregistered. The associated kmod for the PHY is now removed.\nThe kmod is now added again and the port is now put up, the associated LED\nare registered again.\nOn putting the port down again for the second time after these step, the\nLED list now have 4 elements. With the first 2 already unregistered\npreviously and the 2 new one registered again.\n\nThis cause a kernel panic as the first 2 element should have been\nremoved.\n\nFix this by correctly removing the element when LED is unregistered.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50023",
"url": "https://www.suse.com/security/cve/CVE-2024-50023"
},
{
"category": "external",
"summary": "SUSE Bug 1231955 for CVE-2024-50023",
"url": "https://bugzilla.suse.com/1231955"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50023"
},
{
"cve": "CVE-2024-50024",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50024"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: Fix an unsafe loop on the list\n\nThe kernel may crash when deleting a genetlink family if there are still\nlisteners for that family:\n\nOops: Kernel access of bad area, sig: 11 [#1]\n ...\n NIP [c000000000c080bc] netlink_update_socket_mc+0x3c/0xc0\n LR [c000000000c0f764] __netlink_clear_multicast_users+0x74/0xc0\n Call Trace:\n__netlink_clear_multicast_users+0x74/0xc0\ngenl_unregister_family+0xd4/0x2d0\n\nChange the unsafe loop on the list to a safe one, because inside the\nloop there is an element removal from this list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50024",
"url": "https://www.suse.com/security/cve/CVE-2024-50024"
},
{
"category": "external",
"summary": "SUSE Bug 1231954 for CVE-2024-50024",
"url": "https://bugzilla.suse.com/1231954"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50024"
},
{
"cve": "CVE-2024-50025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: fnic: Move flush_work initialization out of if block\n\nAfter commit 379a58caa199 (\"scsi: fnic: Move fnic_fnic_flush_tx() to a\nwork queue\"), it can happen that a work item is sent to an uninitialized\nwork queue. This may has the effect that the item being queued is never\nactually queued, and any further actions depending on it will not\nproceed.\n\nThe following warning is observed while the fnic driver is loaded:\n\nkernel: WARNING: CPU: 11 PID: 0 at ../kernel/workqueue.c:1524 __queue_work+0x373/0x410\nkernel: \u003cIRQ\u003e\nkernel: queue_work_on+0x3a/0x50\nkernel: fnic_wq_copy_cmpl_handler+0x54a/0x730 [fnic 62fbff0c42e7fb825c60a55cde2fb91facb2ed24]\nkernel: fnic_isr_msix_wq_copy+0x2d/0x60 [fnic 62fbff0c42e7fb825c60a55cde2fb91facb2ed24]\nkernel: __handle_irq_event_percpu+0x36/0x1a0\nkernel: handle_irq_event_percpu+0x30/0x70\nkernel: handle_irq_event+0x34/0x60\nkernel: handle_edge_irq+0x7e/0x1a0\nkernel: __common_interrupt+0x3b/0xb0\nkernel: common_interrupt+0x58/0xa0\nkernel: \u003c/IRQ\u003e\n\nIt has been observed that this may break the rediscovery of Fibre\nChannel devices after a temporary fabric failure.\n\nThis patch fixes it by moving the work queue initialization out of\nan if block in fnic_probe().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50025",
"url": "https://www.suse.com/security/cve/CVE-2024-50025"
},
{
"category": "external",
"summary": "SUSE Bug 1231953 for CVE-2024-50025",
"url": "https://bugzilla.suse.com/1231953"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50025"
},
{
"cve": "CVE-2024-50026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: wd33c93: Don\u0027t use stale scsi_pointer value\n\nA regression was introduced with commit dbb2da557a6a (\"scsi: wd33c93:\nMove the SCSI pointer to private command data\") which results in an oops\nin wd33c93_intr(). That commit added the scsi_pointer variable and\ninitialized it from hostdata-\u003econnected. However, during selection,\nhostdata-\u003econnected is not yet valid. Fix this by getting the current\nscsi_pointer from hostdata-\u003eselecting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50026",
"url": "https://www.suse.com/security/cve/CVE-2024-50026"
},
{
"category": "external",
"summary": "SUSE Bug 1231952 for CVE-2024-50026",
"url": "https://bugzilla.suse.com/1231952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50026"
},
{
"cve": "CVE-2024-50027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50027"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: core: Free tzp copy along with the thermal zone\n\nThe object pointed to by tz-\u003etzp may still be accessed after being\nfreed in thermal_zone_device_unregister(), so move the freeing of it\nto the point after the removal completion has been completed at which\nit cannot be accessed any more.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50027",
"url": "https://www.suse.com/security/cve/CVE-2024-50027"
},
{
"category": "external",
"summary": "SUSE Bug 1231951 for CVE-2024-50027",
"url": "https://bugzilla.suse.com/1231951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50027"
},
{
"cve": "CVE-2024-50028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: core: Reference count the zone in thermal_zone_get_by_id()\n\nThere are places in the thermal netlink code where nothing prevents\nthe thermal zone object from going away while being accessed after it\nhas been returned by thermal_zone_get_by_id().\n\nTo address this, make thermal_zone_get_by_id() get a reference on the\nthermal zone device object to be returned with the help of get_device(),\nunder thermal_list_lock, and adjust all of its callers to this change\nwith the help of the cleanup.h infrastructure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50028",
"url": "https://www.suse.com/security/cve/CVE-2024-50028"
},
{
"category": "external",
"summary": "SUSE Bug 1231950 for CVE-2024-50028",
"url": "https://bugzilla.suse.com/1231950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50028"
},
{
"cve": "CVE-2024-50029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync\n\nThis checks if the ACL connection remains valid as it could be destroyed\nwhile hci_enhanced_setup_sync is pending on cmd_sync leading to the\nfollowing trace:\n\nBUG: KASAN: slab-use-after-free in hci_enhanced_setup_sync+0x91b/0xa60\nRead of size 1 at addr ffff888002328ffd by task kworker/u5:2/37\n\nCPU: 0 UID: 0 PID: 37 Comm: kworker/u5:2 Not tainted 6.11.0-rc6-01300-g810be445d8d6 #7099\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? hci_enhanced_setup_sync+0x91b/0xa60\n print_report+0x152/0x4c0\n ? hci_enhanced_setup_sync+0x91b/0xa60\n ? __virt_addr_valid+0x1fa/0x420\n ? hci_enhanced_setup_sync+0x91b/0xa60\n kasan_report+0xda/0x1b0\n ? hci_enhanced_setup_sync+0x91b/0xa60\n hci_enhanced_setup_sync+0x91b/0xa60\n ? __pfx_hci_enhanced_setup_sync+0x10/0x10\n ? __pfx___mutex_lock+0x10/0x10\n hci_cmd_sync_work+0x1c2/0x330\n process_one_work+0x7d9/0x1360\n ? __pfx_lock_acquire+0x10/0x10\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x167/0x240\n worker_thread+0x5b7/0xf60\n ? __kthread_parkme+0xac/0x1c0\n ? __pfx_worker_thread+0x10/0x10\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x293/0x360\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2f/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 34:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __hci_conn_add+0x187/0x17d0\n hci_connect_sco+0x2e1/0xb90\n sco_sock_connect+0x2a2/0xb80\n __sys_connect+0x227/0x2a0\n __x64_sys_connect+0x6d/0xb0\n do_syscall_64+0x71/0x140\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 37:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x101/0x160\n kfree+0xd0/0x250\n device_release+0x9a/0x210\n kobject_put+0x151/0x280\n hci_conn_del+0x448/0xbf0\n hci_abort_conn_sync+0x46f/0x980\n hci_cmd_sync_work+0x1c2/0x330\n process_one_work+0x7d9/0x1360\n worker_thread+0x5b7/0xf60\n kthread+0x293/0x360\n ret_from_fork+0x2f/0x70\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50029",
"url": "https://www.suse.com/security/cve/CVE-2024-50029"
},
{
"category": "external",
"summary": "SUSE Bug 1231949 for CVE-2024-50029",
"url": "https://bugzilla.suse.com/1231949"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50029"
},
{
"cve": "CVE-2024-50030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/ct: prevent UAF in send_recv()\n\nEnsure we serialize with completion side to prevent UAF with fence going\nout of scope on the stack, since we have no clue if it will fire after\nthe timeout before we can erase from the xa. Also we have some dependent\nloads and stores for which we need the correct ordering, and we lack the\nneeded barriers. Fix this by grabbing the ct-\u003elock after the wait, which\nis also held by the completion side.\n\nv2 (Badal):\n - Also print done after acquiring the lock and seeing timeout.\n\n(cherry picked from commit 52789ce35c55ccd30c4b67b9cc5b2af55e0122ea)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50030",
"url": "https://www.suse.com/security/cve/CVE-2024-50030"
},
{
"category": "external",
"summary": "SUSE Bug 1231948 for CVE-2024-50030",
"url": "https://bugzilla.suse.com/1231948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50030"
},
{
"cve": "CVE-2024-50031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/v3d: Stop the active perfmon before being destroyed\n\nWhen running `kmscube` with one or more performance monitors enabled\nvia `GALLIUM_HUD`, the following kernel panic can occur:\n\n[ 55.008324] Unable to handle kernel paging request at virtual address 00000000052004a4\n[ 55.008368] Mem abort info:\n[ 55.008377] ESR = 0x0000000096000005\n[ 55.008387] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 55.008402] SET = 0, FnV = 0\n[ 55.008412] EA = 0, S1PTW = 0\n[ 55.008421] FSC = 0x05: level 1 translation fault\n[ 55.008434] Data abort info:\n[ 55.008442] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 55.008455] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 55.008467] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 55.008481] user pgtable: 4k pages, 39-bit VAs, pgdp=00000001046c6000\n[ 55.008497] [00000000052004a4] pgd=0000000000000000, p4d=0000000000000000, pud=0000000000000000\n[ 55.008525] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n[ 55.008542] Modules linked in: rfcomm [...] vc4 v3d snd_soc_hdmi_codec drm_display_helper\ngpu_sched drm_shmem_helper cec drm_dma_helper drm_kms_helper i2c_brcmstb\ndrm drm_panel_orientation_quirks snd_soc_core snd_compress snd_pcm_dmaengine snd_pcm snd_timer snd backlight\n[ 55.008799] CPU: 2 PID: 166 Comm: v3d_bin Tainted: G C 6.6.47+rpt-rpi-v8 #1 Debian 1:6.6.47-1+rpt1\n[ 55.008824] Hardware name: Raspberry Pi 4 Model B Rev 1.5 (DT)\n[ 55.008838] pstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 55.008855] pc : __mutex_lock.constprop.0+0x90/0x608\n[ 55.008879] lr : __mutex_lock.constprop.0+0x58/0x608\n[ 55.008895] sp : ffffffc080673cf0\n[ 55.008904] x29: ffffffc080673cf0 x28: 0000000000000000 x27: ffffff8106188a28\n[ 55.008926] x26: ffffff8101e78040 x25: ffffff8101baa6c0 x24: ffffffd9d989f148\n[ 55.008947] x23: ffffffda1c2a4008 x22: 0000000000000002 x21: ffffffc080673d38\n[ 55.008968] x20: ffffff8101238000 x19: ffffff8104f83188 x18: 0000000000000000\n[ 55.008988] x17: 0000000000000000 x16: ffffffda1bd04d18 x15: 00000055bb08bc90\n[ 55.009715] x14: 0000000000000000 x13: 0000000000000000 x12: ffffffda1bd4cbb0\n[ 55.010433] x11: 00000000fa83b2da x10: 0000000000001a40 x9 : ffffffda1bd04d04\n[ 55.011162] x8 : ffffff8102097b80 x7 : 0000000000000000 x6 : 00000000030a5857\n[ 55.011880] x5 : 00ffffffffffffff x4 : 0300000005200470 x3 : 0300000005200470\n[ 55.012598] x2 : ffffff8101238000 x1 : 0000000000000021 x0 : 0300000005200470\n[ 55.013292] Call trace:\n[ 55.013959] __mutex_lock.constprop.0+0x90/0x608\n[ 55.014646] __mutex_lock_slowpath+0x1c/0x30\n[ 55.015317] mutex_lock+0x50/0x68\n[ 55.015961] v3d_perfmon_stop+0x40/0xe0 [v3d]\n[ 55.016627] v3d_bin_job_run+0x10c/0x2d8 [v3d]\n[ 55.017282] drm_sched_main+0x178/0x3f8 [gpu_sched]\n[ 55.017921] kthread+0x11c/0x128\n[ 55.018554] ret_from_fork+0x10/0x20\n[ 55.019168] Code: f9400260 f1001c1f 54001ea9 927df000 (b9403401)\n[ 55.019776] ---[ end trace 0000000000000000 ]---\n[ 55.020411] note: v3d_bin[166] exited with preempt_count 1\n\nThis issue arises because, upon closing the file descriptor (which happens\nwhen we interrupt `kmscube`), the active performance monitor is not\nstopped. Although all perfmons are destroyed in `v3d_perfmon_close_file()`,\nthe active performance monitor\u0027s pointer (`v3d-\u003eactive_perfmon`) is still\nretained.\n\nIf `kmscube` is run again, the driver will attempt to stop the active\nperformance monitor using the stale pointer in `v3d-\u003eactive_perfmon`.\nHowever, this pointer is no longer valid because the previous process has\nalready terminated, and all performance monitors associated with it have\nbeen destroyed and freed.\n\nTo fix this, when the active performance monitor belongs to a given\nprocess, explicitly stop it before destroying and freeing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50031",
"url": "https://www.suse.com/security/cve/CVE-2024-50031"
},
{
"category": "external",
"summary": "SUSE Bug 1231947 for CVE-2024-50031",
"url": "https://bugzilla.suse.com/1231947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50031"
},
{
"cve": "CVE-2024-50032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50032"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/nocb: Fix rcuog wake-up from offline softirq\n\nAfter a CPU has set itself offline and before it eventually calls\nrcutree_report_cpu_dead(), there are still opportunities for callbacks\nto be enqueued, for example from a softirq. When that happens on NOCB,\nthe rcuog wake-up is deferred through an IPI to an online CPU in order\nnot to call into the scheduler and risk arming the RT-bandwidth after\nhrtimers have been migrated out and disabled.\n\nBut performing a synchronized IPI from a softirq is buggy as reported in\nthe following scenario:\n\n WARNING: CPU: 1 PID: 26 at kernel/smp.c:633 smp_call_function_single\n Modules linked in: rcutorture torture\n CPU: 1 UID: 0 PID: 26 Comm: migration/1 Not tainted 6.11.0-rc1-00012-g9139f93209d1 #1\n Stopper: multi_cpu_stop+0x0/0x320 \u003c- __stop_cpus+0xd0/0x120\n RIP: 0010:smp_call_function_single\n \u003cIRQ\u003e\n swake_up_one_online\n __call_rcu_nocb_wake\n __call_rcu_common\n ? rcu_torture_one_read\n call_timer_fn\n __run_timers\n run_timer_softirq\n handle_softirqs\n irq_exit_rcu\n ? tick_handle_periodic\n sysvec_apic_timer_interrupt\n \u003c/IRQ\u003e\n\nFix this with forcing deferred rcuog wake up through the NOCB timer when\nthe CPU is offline. The actual wake up will happen from\nrcutree_report_cpu_dead().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50032",
"url": "https://www.suse.com/security/cve/CVE-2024-50032"
},
{
"category": "external",
"summary": "SUSE Bug 1231915 for CVE-2024-50032",
"url": "https://bugzilla.suse.com/1231915"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50032"
},
{
"cve": "CVE-2024-50033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nslip: make slhc_remember() more robust against malicious packets\n\nsyzbot found that slhc_remember() was missing checks against\nmalicious packets [1].\n\nslhc_remember() only checked the size of the packet was at least 20,\nwhich is not good enough.\n\nWe need to make sure the packet includes the IPv4 and TCP header\nthat are supposed to be carried.\n\nAdd iph and th pointers to make the code more readable.\n\n[1]\n\nBUG: KMSAN: uninit-value in slhc_remember+0x2e8/0x7b0 drivers/net/slip/slhc.c:666\n slhc_remember+0x2e8/0x7b0 drivers/net/slip/slhc.c:666\n ppp_receive_nonmp_frame+0xe45/0x35e0 drivers/net/ppp/ppp_generic.c:2455\n ppp_receive_frame drivers/net/ppp/ppp_generic.c:2372 [inline]\n ppp_do_recv+0x65f/0x40d0 drivers/net/ppp/ppp_generic.c:2212\n ppp_input+0x7dc/0xe60 drivers/net/ppp/ppp_generic.c:2327\n pppoe_rcv_core+0x1d3/0x720 drivers/net/ppp/pppoe.c:379\n sk_backlog_rcv+0x13b/0x420 include/net/sock.h:1113\n __release_sock+0x1da/0x330 net/core/sock.c:3072\n release_sock+0x6b/0x250 net/core/sock.c:3626\n pppoe_sendmsg+0x2b8/0xb90 drivers/net/ppp/pppoe.c:903\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:744\n ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n __do_sys_sendmmsg net/socket.c:2771 [inline]\n __se_sys_sendmmsg net/socket.c:2768 [inline]\n __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4091 [inline]\n slab_alloc_node mm/slub.c:4134 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4186\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n alloc_skb include/linux/skbuff.h:1322 [inline]\n sock_wmalloc+0xfe/0x1a0 net/core/sock.c:2732\n pppoe_sendmsg+0x3a7/0xb90 drivers/net/ppp/pppoe.c:867\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:744\n ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n __do_sys_sendmmsg net/socket.c:2771 [inline]\n __se_sys_sendmmsg net/socket.c:2768 [inline]\n __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 5460 Comm: syz.2.33 Not tainted 6.12.0-rc2-syzkaller-00006-g87d6aab2389e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50033",
"url": "https://www.suse.com/security/cve/CVE-2024-50033"
},
{
"category": "external",
"summary": "SUSE Bug 1231914 for CVE-2024-50033",
"url": "https://bugzilla.suse.com/1231914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50033"
},
{
"cve": "CVE-2024-50034",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50034"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC\n\nEric report a panic on IPPROTO_SMC, and give the facts\nthat when INET_PROTOSW_ICSK was set, icsk-\u003eicsk_sync_mss must be set too.\n\nBug: Unable to handle kernel NULL pointer dereference at virtual address\n0000000000000000\nMem abort info:\nESR = 0x0000000086000005\nEC = 0x21: IABT (current EL), IL = 32 bits\nSET = 0, FnV = 0\nEA = 0, S1PTW = 0\nFSC = 0x05: level 1 translation fault\nuser pgtable: 4k pages, 48-bit VAs, pgdp=00000001195d1000\n[0000000000000000] pgd=0800000109c46003, p4d=0800000109c46003,\npud=0000000000000000\nInternal error: Oops: 0000000086000005 [#1] PREEMPT SMP\nModules linked in:\nCPU: 1 UID: 0 PID: 8037 Comm: syz.3.265 Not tainted\n6.11.0-rc7-syzkaller-g5f5673607153 #0\nHardware name: Google Google Compute Engine/Google Compute Engine,\nBIOS Google 08/06/2024\npstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : 0x0\nlr : cipso_v4_sock_setattr+0x2a8/0x3c0 net/ipv4/cipso_ipv4.c:1910\nsp : ffff80009b887a90\nx29: ffff80009b887aa0 x28: ffff80008db94050 x27: 0000000000000000\nx26: 1fffe0001aa6f5b3 x25: dfff800000000000 x24: ffff0000db75da00\nx23: 0000000000000000 x22: ffff0000d8b78518 x21: 0000000000000000\nx20: ffff0000d537ad80 x19: ffff0000d8b78000 x18: 1fffe000366d79ee\nx17: ffff8000800614a8 x16: ffff800080569b84 x15: 0000000000000001\nx14: 000000008b336894 x13: 00000000cd96feaa x12: 0000000000000003\nx11: 0000000000040000 x10: 00000000000020a3 x9 : 1fffe0001b16f0f1\nx8 : 0000000000000000 x7 : 0000000000000000 x6 : 000000000000003f\nx5 : 0000000000000040 x4 : 0000000000000001 x3 : 0000000000000000\nx2 : 0000000000000002 x1 : 0000000000000000 x0 : ffff0000d8b78000\nCall trace:\n0x0\nnetlbl_sock_setattr+0x2e4/0x338 net/netlabel/netlabel_kapi.c:1000\nsmack_netlbl_add+0xa4/0x154 security/smack/smack_lsm.c:2593\nsmack_socket_post_create+0xa8/0x14c security/smack/smack_lsm.c:2973\nsecurity_socket_post_create+0x94/0xd4 security/security.c:4425\n__sock_create+0x4c8/0x884 net/socket.c:1587\nsock_create net/socket.c:1622 [inline]\n__sys_socket_create net/socket.c:1659 [inline]\n__sys_socket+0x134/0x340 net/socket.c:1706\n__do_sys_socket net/socket.c:1720 [inline]\n__se_sys_socket net/socket.c:1718 [inline]\n__arm64_sys_socket+0x7c/0x94 net/socket.c:1718\n__invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\ninvoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\nel0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132\ndo_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\nel0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:712\nel0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\nel0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\nCode: ???????? ???????? ???????? ???????? (????????)\n---[ end trace 0000000000000000 ]---\n\nThis patch add a toy implementation that performs a simple return to\nprevent such panic. This is because MSS can be set in sock_create_kern\nor smc_setsockopt, similar to how it\u0027s done in AF_SMC. However, for\nAF_SMC, there is currently no way to synchronize MSS within\n__sys_connect_file. This toy implementation lays the groundwork for us\nto support such feature for IPPROTO_SMC in the future.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50034",
"url": "https://www.suse.com/security/cve/CVE-2024-50034"
},
{
"category": "external",
"summary": "SUSE Bug 1231913 for CVE-2024-50034",
"url": "https://bugzilla.suse.com/1231913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50034"
},
{
"cve": "CVE-2024-50035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nppp: fix ppp_async_encode() illegal access\n\nsyzbot reported an issue in ppp_async_encode() [1]\n\nIn this case, pppoe_sendmsg() is called with a zero size.\nThen ppp_async_encode() is called with an empty skb.\n\nBUG: KMSAN: uninit-value in ppp_async_encode drivers/net/ppp/ppp_async.c:545 [inline]\n BUG: KMSAN: uninit-value in ppp_async_push+0xb4f/0x2660 drivers/net/ppp/ppp_async.c:675\n ppp_async_encode drivers/net/ppp/ppp_async.c:545 [inline]\n ppp_async_push+0xb4f/0x2660 drivers/net/ppp/ppp_async.c:675\n ppp_async_send+0x130/0x1b0 drivers/net/ppp/ppp_async.c:634\n ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2280 [inline]\n ppp_input+0x1f1/0xe60 drivers/net/ppp/ppp_generic.c:2304\n pppoe_rcv_core+0x1d3/0x720 drivers/net/ppp/pppoe.c:379\n sk_backlog_rcv+0x13b/0x420 include/net/sock.h:1113\n __release_sock+0x1da/0x330 net/core/sock.c:3072\n release_sock+0x6b/0x250 net/core/sock.c:3626\n pppoe_sendmsg+0x2b8/0xb90 drivers/net/ppp/pppoe.c:903\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:744\n ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n __do_sys_sendmmsg net/socket.c:2771 [inline]\n __se_sys_sendmmsg net/socket.c:2768 [inline]\n __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4092 [inline]\n slab_alloc_node mm/slub.c:4135 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4187\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n alloc_skb include/linux/skbuff.h:1322 [inline]\n sock_wmalloc+0xfe/0x1a0 net/core/sock.c:2732\n pppoe_sendmsg+0x3a7/0xb90 drivers/net/ppp/pppoe.c:867\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:744\n ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n __do_sys_sendmmsg net/socket.c:2771 [inline]\n __se_sys_sendmmsg net/socket.c:2768 [inline]\n __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 1 UID: 0 PID: 5411 Comm: syz.1.14 Not tainted 6.12.0-rc1-syzkaller-00165-g360c1f1f24c6 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50035",
"url": "https://www.suse.com/security/cve/CVE-2024-50035"
},
{
"category": "external",
"summary": "SUSE Bug 1232392 for CVE-2024-50035",
"url": "https://bugzilla.suse.com/1232392"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50035"
},
{
"cve": "CVE-2024-50036",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50036"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: do not delay dst_entries_add() in dst_release()\n\ndst_entries_add() uses per-cpu data that might be freed at netns\ndismantle from ip6_route_net_exit() calling dst_entries_destroy()\n\nBefore ip6_route_net_exit() can be called, we release all\nthe dsts associated with this netns, via calls to dst_release(),\nwhich waits an rcu grace period before calling dst_destroy()\n\ndst_entries_add() use in dst_destroy() is racy, because\ndst_entries_destroy() could have been called already.\n\nDecrementing the number of dsts must happen sooner.\n\nNotes:\n\n1) in CONFIG_XFRM case, dst_destroy() can call\n dst_release_immediate(child), this might also cause UAF\n if the child does not have DST_NOCOUNT set.\n IPSEC maintainers might take a look and see how to address this.\n\n2) There is also discussion about removing this count of dst,\n which might happen in future kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50036",
"url": "https://www.suse.com/security/cve/CVE-2024-50036"
},
{
"category": "external",
"summary": "SUSE Bug 1231912 for CVE-2024-50036",
"url": "https://bugzilla.suse.com/1231912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50036"
},
{
"cve": "CVE-2024-50037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50037"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/fbdev-dma: Only cleanup deferred I/O if necessary\n\nCommit 5a498d4d06d6 (\"drm/fbdev-dma: Only install deferred I/O if\nnecessary\") initializes deferred I/O only if it is used.\ndrm_fbdev_dma_fb_destroy() however calls fb_deferred_io_cleanup()\nunconditionally with struct fb_info.fbdefio == NULL. KASAN with the\nout-of-tree Apple silicon display driver posts following warning from\n__flush_work() of a random struct work_struct instead of the expected\nNULL pointer derefs.\n\n[ 22.053799] ------------[ cut here ]------------\n[ 22.054832] WARNING: CPU: 2 PID: 1 at kernel/workqueue.c:4177 __flush_work+0x4d8/0x580\n[ 22.056597] Modules linked in: uhid bnep uinput nls_ascii ip6_tables ip_tables i2c_dev loop fuse dm_multipath nfnetlink zram hid_magicmouse btrfs xor xor_neon brcmfmac_wcc raid6_pq hci_bcm4377 bluetooth brcmfmac hid_apple brcmutil nvmem_spmi_mfd simple_mfd_spmi dockchannel_hid cfg80211 joydev regmap_spmi nvme_apple ecdh_generic ecc macsmc_hid rfkill dwc3 appledrm snd_soc_macaudio macsmc_power nvme_core apple_isp phy_apple_atc apple_sart apple_rtkit_helper apple_dockchannel tps6598x macsmc_hwmon snd_soc_cs42l84 videobuf2_v4l2 spmi_apple_controller nvmem_apple_efuses videobuf2_dma_sg apple_z2 videobuf2_memops spi_nor panel_summit videobuf2_common asahi videodev pwm_apple apple_dcp snd_soc_apple_mca apple_admac spi_apple clk_apple_nco i2c_pasemi_platform snd_pcm_dmaengine mc i2c_pasemi_core mux_core ofpart adpdrm drm_dma_helper apple_dart apple_soc_cpufreq leds_pwm phram\n[ 22.073768] CPU: 2 UID: 0 PID: 1 Comm: systemd-shutdow Not tainted 6.11.2-asahi+ #asahi-dev\n[ 22.075612] Hardware name: Apple MacBook Pro (13-inch, M2, 2022) (DT)\n[ 22.077032] pstate: 01400005 (nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 22.078567] pc : __flush_work+0x4d8/0x580\n[ 22.079471] lr : __flush_work+0x54/0x580\n[ 22.080345] sp : ffffc000836ef820\n[ 22.081089] x29: ffffc000836ef880 x28: 0000000000000000 x27: ffff80002ddb7128\n[ 22.082678] x26: dfffc00000000000 x25: 1ffff000096f0c57 x24: ffffc00082d3e358\n[ 22.084263] x23: ffff80004b7862b8 x22: dfffc00000000000 x21: ffff80005aa1d470\n[ 22.085855] x20: ffff80004b786000 x19: ffff80004b7862a0 x18: 0000000000000000\n[ 22.087439] x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000005\n[ 22.089030] x14: 1ffff800106ddf0a x13: 0000000000000000 x12: 0000000000000000\n[ 22.090618] x11: ffffb800106ddf0f x10: dfffc00000000000 x9 : 1ffff800106ddf0e\n[ 22.092206] x8 : 0000000000000000 x7 : aaaaaaaaaaaaaaaa x6 : 0000000000000001\n[ 22.093790] x5 : ffffc000836ef728 x4 : 0000000000000000 x3 : 0000000000000020\n[ 22.095368] x2 : 0000000000000008 x1 : 00000000000000aa x0 : 0000000000000000\n[ 22.096955] Call trace:\n[ 22.097505] __flush_work+0x4d8/0x580\n[ 22.098330] flush_delayed_work+0x80/0xb8\n[ 22.099231] fb_deferred_io_cleanup+0x3c/0x130\n[ 22.100217] drm_fbdev_dma_fb_destroy+0x6c/0xe0 [drm_dma_helper]\n[ 22.101559] unregister_framebuffer+0x210/0x2f0\n[ 22.102575] drm_fb_helper_unregister_info+0x48/0x60\n[ 22.103683] drm_fbdev_dma_client_unregister+0x4c/0x80 [drm_dma_helper]\n[ 22.105147] drm_client_dev_unregister+0x1cc/0x230\n[ 22.106217] drm_dev_unregister+0x58/0x570\n[ 22.107125] apple_drm_unbind+0x50/0x98 [appledrm]\n[ 22.108199] component_del+0x1f8/0x3a8\n[ 22.109042] dcp_platform_shutdown+0x24/0x38 [apple_dcp]\n[ 22.110357] platform_shutdown+0x70/0x90\n[ 22.111219] device_shutdown+0x368/0x4d8\n[ 22.112095] kernel_restart+0x6c/0x1d0\n[ 22.112946] __arm64_sys_reboot+0x1c8/0x328\n[ 22.113868] invoke_syscall+0x78/0x1a8\n[ 22.114703] do_el0_svc+0x124/0x1a0\n[ 22.115498] el0_svc+0x3c/0xe0\n[ 22.116181] el0t_64_sync_handler+0x70/0xc0\n[ 22.117110] el0t_64_sync+0x190/0x198\n[ 22.117931] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50037",
"url": "https://www.suse.com/security/cve/CVE-2024-50037"
},
{
"category": "external",
"summary": "SUSE Bug 1231911 for CVE-2024-50037",
"url": "https://bugzilla.suse.com/1231911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50037"
},
{
"cve": "CVE-2024-50038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50038"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: xtables: avoid NFPROTO_UNSPEC where needed\n\nsyzbot managed to call xt_cluster match via ebtables:\n\n WARNING: CPU: 0 PID: 11 at net/netfilter/xt_cluster.c:72 xt_cluster_mt+0x196/0x780\n [..]\n ebt_do_table+0x174b/0x2a40\n\nModule registers to NFPROTO_UNSPEC, but it assumes ipv4/ipv6 packet\nprocessing. As this is only useful to restrict locally terminating\nTCP/UDP traffic, register this for ipv4 and ipv6 family only.\n\nPablo points out that this is a general issue, direct users of the\nset/getsockopt interface can call into targets/matches that were only\nintended for use with ip(6)tables.\n\nCheck all UNSPEC matches and targets for similar issues:\n\n- matches and targets are fine except if they assume skb_network_header()\n is valid -- this is only true when called from inet layer: ip(6) stack\n pulls the ip/ipv6 header into linear data area.\n- targets that return XT_CONTINUE or other xtables verdicts must be\n restricted too, they are incompatbile with the ebtables traverser, e.g.\n EBT_CONTINUE is a completely different value than XT_CONTINUE.\n\nMost matches/targets are changed to register for NFPROTO_IPV4/IPV6, as\nthey are provided for use by ip(6)tables.\n\nThe MARK target is also used by arptables, so register for NFPROTO_ARP too.\n\nWhile at it, bail out if connbytes fails to enable the corresponding\nconntrack family.\n\nThis change passes the selftests in iptables.git.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50038",
"url": "https://www.suse.com/security/cve/CVE-2024-50038"
},
{
"category": "external",
"summary": "SUSE Bug 1231910 for CVE-2024-50038",
"url": "https://bugzilla.suse.com/1231910"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50038"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50040",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50040"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Do not bring the device up after non-fatal error\n\nCommit 004d25060c78 (\"igb: Fix igb_down hung on surprise removal\")\nchanged igb_io_error_detected() to ignore non-fatal pcie errors in order\nto avoid hung task that can happen when igb_down() is called multiple\ntimes. This caused an issue when processing transient non-fatal errors.\nigb_io_resume(), which is called after igb_io_error_detected(), assumes\nthat device is brought down by igb_io_error_detected() if the interface\nis up. This resulted in panic with stacktrace below.\n\n[ T3256] igb 0000:09:00.0 haeth0: igb: haeth0 NIC Link is Down\n[ T292] pcieport 0000:00:1c.5: AER: Uncorrected (Non-Fatal) error received: 0000:09:00.0\n[ T292] igb 0000:09:00.0: PCIe Bus Error: severity=Uncorrected (Non-Fatal), type=Transaction Layer, (Requester ID)\n[ T292] igb 0000:09:00.0: device [8086:1537] error status/mask=00004000/00000000\n[ T292] igb 0000:09:00.0: [14] CmpltTO [ 200.105524,009][ T292] igb 0000:09:00.0: AER: TLP Header: 00000000 00000000 00000000 00000000\n[ T292] pcieport 0000:00:1c.5: AER: broadcast error_detected message\n[ T292] igb 0000:09:00.0: Non-correctable non-fatal error reported.\n[ T292] pcieport 0000:00:1c.5: AER: broadcast mmio_enabled message\n[ T292] pcieport 0000:00:1c.5: AER: broadcast resume message\n[ T292] ------------[ cut here ]------------\n[ T292] kernel BUG at net/core/dev.c:6539!\n[ T292] invalid opcode: 0000 [#1] PREEMPT SMP\n[ T292] RIP: 0010:napi_enable+0x37/0x40\n[ T292] Call Trace:\n[ T292] \u003cTASK\u003e\n[ T292] ? die+0x33/0x90\n[ T292] ? do_trap+0xdc/0x110\n[ T292] ? napi_enable+0x37/0x40\n[ T292] ? do_error_trap+0x70/0xb0\n[ T292] ? napi_enable+0x37/0x40\n[ T292] ? napi_enable+0x37/0x40\n[ T292] ? exc_invalid_op+0x4e/0x70\n[ T292] ? napi_enable+0x37/0x40\n[ T292] ? asm_exc_invalid_op+0x16/0x20\n[ T292] ? napi_enable+0x37/0x40\n[ T292] igb_up+0x41/0x150\n[ T292] igb_io_resume+0x25/0x70\n[ T292] report_resume+0x54/0x70\n[ T292] ? report_frozen_detected+0x20/0x20\n[ T292] pci_walk_bus+0x6c/0x90\n[ T292] ? aer_print_port_info+0xa0/0xa0\n[ T292] pcie_do_recovery+0x22f/0x380\n[ T292] aer_process_err_devices+0x110/0x160\n[ T292] aer_isr+0x1c1/0x1e0\n[ T292] ? disable_irq_nosync+0x10/0x10\n[ T292] irq_thread_fn+0x1a/0x60\n[ T292] irq_thread+0xe3/0x1a0\n[ T292] ? irq_set_affinity_notifier+0x120/0x120\n[ T292] ? irq_affinity_notify+0x100/0x100\n[ T292] kthread+0xe2/0x110\n[ T292] ? kthread_complete_and_exit+0x20/0x20\n[ T292] ret_from_fork+0x2d/0x50\n[ T292] ? kthread_complete_and_exit+0x20/0x20\n[ T292] ret_from_fork_asm+0x11/0x20\n[ T292] \u003c/TASK\u003e\n\nTo fix this issue igb_io_resume() checks if the interface is running and\nthe device is not down this means igb_io_error_detected() did not bring\nthe device down and there is no need to bring it up.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50040",
"url": "https://www.suse.com/security/cve/CVE-2024-50040"
},
{
"category": "external",
"summary": "SUSE Bug 1231908 for CVE-2024-50040",
"url": "https://bugzilla.suse.com/1231908"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50040"
},
{
"cve": "CVE-2024-50041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50041"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Fix macvlan leak by synchronizing access to mac_filter_hash\n\nThis patch addresses a macvlan leak issue in the i40e driver caused by\nconcurrent access to vsi-\u003emac_filter_hash. The leak occurs when multiple\nthreads attempt to modify the mac_filter_hash simultaneously, leading to\ninconsistent state and potential memory leaks.\n\nTo fix this, we now wrap the calls to i40e_del_mac_filter() and zeroing\nvf-\u003edefault_lan_addr.addr with spin_lock/unlock_bh(\u0026vsi-\u003emac_filter_hash_lock),\nensuring atomic operations and preventing concurrent access.\n\nAdditionally, we add lockdep_assert_held(\u0026vsi-\u003emac_filter_hash_lock) in\ni40e_add_mac_filter() to help catch similar issues in the future.\n\nReproduction steps:\n1. Spawn VFs and configure port vlan on them.\n2. Trigger concurrent macvlan operations (e.g., adding and deleting\n\tportvlan and/or mac filters).\n3. Observe the potential memory leak and inconsistent state in the\n\tmac_filter_hash.\n\nThis synchronization ensures the integrity of the mac_filter_hash and prevents\nthe described leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50041",
"url": "https://www.suse.com/security/cve/CVE-2024-50041"
},
{
"category": "external",
"summary": "SUSE Bug 1231907 for CVE-2024-50041",
"url": "https://bugzilla.suse.com/1231907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50041"
},
{
"cve": "CVE-2024-50042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix increasing MSI-X on VF\n\nIncreasing MSI-X value on a VF leads to invalid memory operations. This\nis caused by not reallocating some arrays.\n\nReproducer:\n modprobe ice\n echo 0 \u003e /sys/bus/pci/devices/$PF_PCI/sriov_drivers_autoprobe\n echo 1 \u003e /sys/bus/pci/devices/$PF_PCI/sriov_numvfs\n echo 17 \u003e /sys/bus/pci/devices/$VF0_PCI/sriov_vf_msix_count\n\nDefault MSI-X is 16, so 17 and above triggers this issue.\n\nKASAN reports:\n\n BUG: KASAN: slab-out-of-bounds in ice_vsi_alloc_ring_stats+0x38d/0x4b0 [ice]\n Read of size 8 at addr ffff8888b937d180 by task bash/28433\n (...)\n\n Call Trace:\n (...)\n ? ice_vsi_alloc_ring_stats+0x38d/0x4b0 [ice]\n kasan_report+0xed/0x120\n ? ice_vsi_alloc_ring_stats+0x38d/0x4b0 [ice]\n ice_vsi_alloc_ring_stats+0x38d/0x4b0 [ice]\n ice_vsi_cfg_def+0x3360/0x4770 [ice]\n ? mutex_unlock+0x83/0xd0\n ? __pfx_ice_vsi_cfg_def+0x10/0x10 [ice]\n ? __pfx_ice_remove_vsi_lkup_fltr+0x10/0x10 [ice]\n ice_vsi_cfg+0x7f/0x3b0 [ice]\n ice_vf_reconfig_vsi+0x114/0x210 [ice]\n ice_sriov_set_msix_vec_count+0x3d0/0x960 [ice]\n sriov_vf_msix_count_store+0x21c/0x300\n (...)\n\n Allocated by task 28201:\n (...)\n ice_vsi_cfg_def+0x1c8e/0x4770 [ice]\n ice_vsi_cfg+0x7f/0x3b0 [ice]\n ice_vsi_setup+0x179/0xa30 [ice]\n ice_sriov_configure+0xcaa/0x1520 [ice]\n sriov_numvfs_store+0x212/0x390\n (...)\n\nTo fix it, use ice_vsi_rebuild() instead of ice_vf_reconfig_vsi(). This\ncauses the required arrays to be reallocated taking the new queue count\ninto account (ice_vsi_realloc_stat_arrays()). Set req_txq and req_rxq\nbefore ice_vsi_rebuild(), so that realloc uses the newly set queue\ncount.\n\nAdditionally, ice_vsi_rebuild() does not remove VSI filters\n(ice_fltr_remove_all()), so ice_vf_init_host_cfg() is no longer\nnecessary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50042",
"url": "https://www.suse.com/security/cve/CVE-2024-50042"
},
{
"category": "external",
"summary": "SUSE Bug 1231906 for CVE-2024-50042",
"url": "https://bugzilla.suse.com/1231906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50042"
},
{
"cve": "CVE-2024-50043",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50043"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix possible badness in FREE_STATEID\n\nWhen multiple FREE_STATEIDs are sent for the same delegation stateid,\nit can lead to a possible either use-after-free or counter refcount\nunderflow errors.\n\nIn nfsd4_free_stateid() under the client lock we find a delegation\nstateid, however the code drops the lock before calling nfs4_put_stid(),\nthat allows another FREE_STATE to find the stateid again. The first one\nwill proceed to then free the stateid which leads to either\nuse-after-free or decrementing already zeroed counter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50043",
"url": "https://www.suse.com/security/cve/CVE-2024-50043"
},
{
"category": "external",
"summary": "SUSE Bug 1231905 for CVE-2024-50043",
"url": "https://bugzilla.suse.com/1231905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50043"
},
{
"cve": "CVE-2024-50044",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50044"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change\n\nrfcomm_sk_state_change attempts to use sock_lock so it must never be\ncalled with it locked but rfcomm_sock_ioctl always attempt to lock it\ncausing the following trace:\n\n======================================================\nWARNING: possible circular locking dependency detected\n6.8.0-syzkaller-08951-gfe46a7dd189e #0 Not tainted\n------------------------------------------------------\nsyz-executor386/5093 is trying to acquire lock:\nffff88807c396258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1671 [inline]\nffff88807c396258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sk_state_change+0x5b/0x310 net/bluetooth/rfcomm/sock.c:73\n\nbut task is already holding lock:\nffff88807badfd28 (\u0026d-\u003elock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x226/0x6a0 net/bluetooth/rfcomm/core.c:491",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50044",
"url": "https://www.suse.com/security/cve/CVE-2024-50044"
},
{
"category": "external",
"summary": "SUSE Bug 1231904 for CVE-2024-50044",
"url": "https://bugzilla.suse.com/1231904"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50044"
},
{
"cve": "CVE-2024-50045",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50045"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: br_netfilter: fix panic with metadata_dst skb\n\nFix a kernel panic in the br_netfilter module when sending untagged\ntraffic via a VxLAN device.\nThis happens during the check for fragmentation in br_nf_dev_queue_xmit.\n\nIt is dependent on:\n1) the br_netfilter module being loaded;\n2) net.bridge.bridge-nf-call-iptables set to 1;\n3) a bridge with a VxLAN (single-vxlan-device) netdevice as a bridge port;\n4) untagged frames with size higher than the VxLAN MTU forwarded/flooded\n\nWhen forwarding the untagged packet to the VxLAN bridge port, before\nthe netfilter hooks are called, br_handle_egress_vlan_tunnel is called and\nchanges the skb_dst to the tunnel dst. The tunnel_dst is a metadata type\nof dst, i.e., skb_valid_dst(skb) is false, and metadata-\u003edst.dev is NULL.\n\nThen in the br_netfilter hooks, in br_nf_dev_queue_xmit, there\u0027s a check\nfor frames that needs to be fragmented: frames with higher MTU than the\nVxLAN device end up calling br_nf_ip_fragment, which in turns call\nip_skb_dst_mtu.\n\nThe ip_dst_mtu tries to use the skb_dst(skb) as if it was a valid dst\nwith valid dst-\u003edev, thus the crash.\n\nThis case was never supported in the first place, so drop the packet\ninstead.\n\nPING 10.0.0.2 (10.0.0.2) from 0.0.0.0 h1-eth0: 2000(2028) bytes of data.\n[ 176.291791] Unable to handle kernel NULL pointer dereference at\nvirtual address 0000000000000110\n[ 176.292101] Mem abort info:\n[ 176.292184] ESR = 0x0000000096000004\n[ 176.292322] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 176.292530] SET = 0, FnV = 0\n[ 176.292709] EA = 0, S1PTW = 0\n[ 176.292862] FSC = 0x04: level 0 translation fault\n[ 176.293013] Data abort info:\n[ 176.293104] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 176.293488] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 176.293787] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 176.293995] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000043ef5000\n[ 176.294166] [0000000000000110] pgd=0000000000000000,\np4d=0000000000000000\n[ 176.294827] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 176.295252] Modules linked in: vxlan ip6_udp_tunnel udp_tunnel veth\nbr_netfilter bridge stp llc ipv6 crct10dif_ce\n[ 176.295923] CPU: 0 PID: 188 Comm: ping Not tainted\n6.8.0-rc3-g5b3fbd61b9d1 #2\n[ 176.296314] Hardware name: linux,dummy-virt (DT)\n[ 176.296535] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS\nBTYPE=--)\n[ 176.296808] pc : br_nf_dev_queue_xmit+0x390/0x4ec [br_netfilter]\n[ 176.297382] lr : br_nf_dev_queue_xmit+0x2ac/0x4ec [br_netfilter]\n[ 176.297636] sp : ffff800080003630\n[ 176.297743] x29: ffff800080003630 x28: 0000000000000008 x27:\nffff6828c49ad9f8\n[ 176.298093] x26: ffff6828c49ad000 x25: 0000000000000000 x24:\n00000000000003e8\n[ 176.298430] x23: 0000000000000000 x22: ffff6828c4960b40 x21:\nffff6828c3b16d28\n[ 176.298652] x20: ffff6828c3167048 x19: ffff6828c3b16d00 x18:\n0000000000000014\n[ 176.298926] x17: ffffb0476322f000 x16: ffffb7e164023730 x15:\n0000000095744632\n[ 176.299296] x14: ffff6828c3f1c880 x13: 0000000000000002 x12:\nffffb7e137926a70\n[ 176.299574] x11: 0000000000000001 x10: ffff6828c3f1c898 x9 :\n0000000000000000\n[ 176.300049] x8 : ffff6828c49bf070 x7 : 0008460f18d5f20e x6 :\nf20e0100bebafeca\n[ 176.300302] x5 : ffff6828c7f918fe x4 : ffff6828c49bf070 x3 :\n0000000000000000\n[ 176.300586] x2 : 0000000000000000 x1 : ffff6828c3c7ad00 x0 :\nffff6828c7f918f0\n[ 176.300889] Call trace:\n[ 176.301123] br_nf_dev_queue_xmit+0x390/0x4ec [br_netfilter]\n[ 176.301411] br_nf_post_routing+0x2a8/0x3e4 [br_netfilter]\n[ 176.301703] nf_hook_slow+0x48/0x124\n[ 176.302060] br_forward_finish+0xc8/0xe8 [bridge]\n[ 176.302371] br_nf_hook_thresh+0x124/0x134 [br_netfilter]\n[ 176.302605] br_nf_forward_finish+0x118/0x22c [br_netfilter]\n[ 176.302824] br_nf_forward_ip.part.0+0x264/0x290 [br_netfilter]\n[ 176.303136] br_nf_forward+0x2b8/0x4e0 [br_netfilter]\n[ 176.303359] nf_hook_slow+0x48/0x124\n[ 176.303\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50045",
"url": "https://www.suse.com/security/cve/CVE-2024-50045"
},
{
"category": "external",
"summary": "SUSE Bug 1231903 for CVE-2024-50045",
"url": "https://bugzilla.suse.com/1231903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50045"
},
{
"cve": "CVE-2024-50046",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50046"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()\n\nOn the node of an NFS client, some files saved in the mountpoint of the\nNFS server were copied to another location of the same NFS server.\nAccidentally, the nfs42_complete_copies() got a NULL-pointer dereference\ncrash with the following syslog:\n\n[232064.838881] NFSv4: state recovery failed for open file nfs/pvc-12b5200d-cd0f-46a3-b9f0-af8f4fe0ef64.qcow2, error = -116\n[232064.839360] NFSv4: state recovery failed for open file nfs/pvc-12b5200d-cd0f-46a3-b9f0-af8f4fe0ef64.qcow2, error = -116\n[232066.588183] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000058\n[232066.588586] Mem abort info:\n[232066.588701] ESR = 0x0000000096000007\n[232066.588862] EC = 0x25: DABT (current EL), IL = 32 bits\n[232066.589084] SET = 0, FnV = 0\n[232066.589216] EA = 0, S1PTW = 0\n[232066.589340] FSC = 0x07: level 3 translation fault\n[232066.589559] Data abort info:\n[232066.589683] ISV = 0, ISS = 0x00000007\n[232066.589842] CM = 0, WnR = 0\n[232066.589967] user pgtable: 64k pages, 48-bit VAs, pgdp=00002000956ff400\n[232066.590231] [0000000000000058] pgd=08001100ae100003, p4d=08001100ae100003, pud=08001100ae100003, pmd=08001100b3c00003, pte=0000000000000000\n[232066.590757] Internal error: Oops: 96000007 [#1] SMP\n[232066.590958] Modules linked in: rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs ocfs2_dlmfs ocfs2_stack_o2cb ocfs2_dlm vhost_net vhost vhost_iotlb tap tun ipt_rpfilter xt_multiport ip_set_hash_ip ip_set_hash_net xfrm_interface xfrm6_tunnel tunnel4 tunnel6 esp4 ah4 wireguard libcurve25519_generic veth xt_addrtype xt_set nf_conntrack_netlink ip_set_hash_ipportnet ip_set_hash_ipportip ip_set_bitmap_port ip_set_hash_ipport dummy ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs iptable_filter sch_ingress nfnetlink_cttimeout vport_gre ip_gre ip_tunnel gre vport_geneve geneve vport_vxlan vxlan ip6_udp_tunnel udp_tunnel openvswitch nf_conncount dm_round_robin dm_service_time dm_multipath xt_nat xt_MASQUERADE nft_chain_nat nf_nat xt_mark xt_conntrack xt_comment nft_compat nft_counter nf_tables nfnetlink ocfs2 ocfs2_nodemanager ocfs2_stackglue iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi ipmi_ssif nbd overlay 8021q garp mrp bonding tls rfkill sunrpc ext4 mbcache jbd2\n[232066.591052] vfat fat cas_cache cas_disk ses enclosure scsi_transport_sas sg acpi_ipmi ipmi_si ipmi_devintf ipmi_msghandler ip_tables vfio_pci vfio_pci_core vfio_virqfd vfio_iommu_type1 vfio dm_mirror dm_region_hash dm_log dm_mod nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 br_netfilter bridge stp llc fuse xfs libcrc32c ast drm_vram_helper qla2xxx drm_kms_helper syscopyarea crct10dif_ce sysfillrect ghash_ce sysimgblt sha2_ce fb_sys_fops cec sha256_arm64 sha1_ce drm_ttm_helper ttm nvme_fc igb sbsa_gwdt nvme_fabrics drm nvme_core i2c_algo_bit i40e scsi_transport_fc megaraid_sas aes_neon_bs\n[232066.596953] CPU: 6 PID: 4124696 Comm: 10.253.166.125- Kdump: loaded Not tainted 5.15.131-9.cl9_ocfs2.aarch64 #1\n[232066.597356] Hardware name: Great Wall .\\x93\\x8e...RF6260 V5/GWMSSE2GL1T, BIOS T656FBE_V3.0.18 2024-01-06\n[232066.597721] pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[232066.598034] pc : nfs4_reclaim_open_state+0x220/0x800 [nfsv4]\n[232066.598327] lr : nfs4_reclaim_open_state+0x12c/0x800 [nfsv4]\n[232066.598595] sp : ffff8000f568fc70\n[232066.598731] x29: ffff8000f568fc70 x28: 0000000000001000 x27: ffff21003db33000\n[232066.599030] x26: ffff800005521ae0 x25: ffff0100f98fa3f0 x24: 0000000000000001\n[232066.599319] x23: ffff800009920008 x22: ffff21003db33040 x21: ffff21003db33050\n[232066.599628] x20: ffff410172fe9e40 x19: ffff410172fe9e00 x18: 0000000000000000\n[232066.599914] x17: 0000000000000000 x16: 0000000000000004 x15: 0000000000000000\n[232066.600195] x14: 0000000000000000 x13: ffff800008e685a8 x12: 00000000eac0c6e6\n[232066.600498] x11: 00000000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50046",
"url": "https://www.suse.com/security/cve/CVE-2024-50046"
},
{
"category": "external",
"summary": "SUSE Bug 1231902 for CVE-2024-50046",
"url": "https://bugzilla.suse.com/1231902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50046"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50048",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50048"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbcon: Fix a NULL pointer dereference issue in fbcon_putcs\n\nsyzbot has found a NULL pointer dereference bug in fbcon.\nHere is the simplified C reproducer:\n\nstruct param {\n\tuint8_t type;\n\tstruct tiocl_selection ts;\n};\n\nint main()\n{\n\tstruct fb_con2fbmap con2fb;\n\tstruct param param;\n\n\tint fd = open(\"/dev/fb1\", 0, 0);\n\n\tcon2fb.console = 0x19;\n\tcon2fb.framebuffer = 0;\n\tioctl(fd, FBIOPUT_CON2FBMAP, \u0026con2fb);\n\n\tparam.type = 2;\n\tparam.ts.xs = 0; param.ts.ys = 0;\n\tparam.ts.xe = 0; param.ts.ye = 0;\n\tparam.ts.sel_mode = 0;\n\n\tint fd1 = open(\"/dev/tty1\", O_RDWR, 0);\n\tioctl(fd1, TIOCLINUX, \u0026param);\n\n\tcon2fb.console = 1;\n\tcon2fb.framebuffer = 0;\n\tioctl(fd, FBIOPUT_CON2FBMAP, \u0026con2fb);\n\n\treturn 0;\n}\n\nAfter calling ioctl(fd1, TIOCLINUX, \u0026param), the subsequent ioctl(fd, FBIOPUT_CON2FBMAP, \u0026con2fb)\ncauses the kernel to follow a different execution path:\n\n set_con2fb_map\n -\u003e con2fb_init_display\n -\u003e fbcon_set_disp\n -\u003e redraw_screen\n -\u003e hide_cursor\n -\u003e clear_selection\n -\u003e highlight\n -\u003e invert_screen\n -\u003e do_update_region\n -\u003e fbcon_putcs\n -\u003e ops-\u003eputcs\n\nSince ops-\u003eputcs is a NULL pointer, this leads to a kernel panic.\nTo prevent this, we need to call set_blitting_type() within set_con2fb_map()\nto properly initialize ops-\u003eputcs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50048",
"url": "https://www.suse.com/security/cve/CVE-2024-50048"
},
{
"category": "external",
"summary": "SUSE Bug 1232310 for CVE-2024-50048",
"url": "https://bugzilla.suse.com/1232310"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50048"
},
{
"cve": "CVE-2024-50049",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50049"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointer before dereferencing se\n\n[WHAT \u0026 HOW]\nse is null checked previously in the same function, indicating\nit might be null; therefore, it must be checked when used again.\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50049",
"url": "https://www.suse.com/security/cve/CVE-2024-50049"
},
{
"category": "external",
"summary": "SUSE Bug 1232309 for CVE-2024-50049",
"url": "https://bugzilla.suse.com/1232309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50049"
},
{
"cve": "CVE-2024-50055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50055"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver core: bus: Fix double free in driver API bus_register()\n\nFor bus_register(), any error which happens after kset_register() will\ncause that @priv are freed twice, fixed by setting @priv with NULL after\nthe first free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50055",
"url": "https://www.suse.com/security/cve/CVE-2024-50055"
},
{
"category": "external",
"summary": "SUSE Bug 1232329 for CVE-2024-50055",
"url": "https://bugzilla.suse.com/1232329"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50055"
},
{
"cve": "CVE-2024-50056",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50056"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: uvc: Fix ERR_PTR dereference in uvc_v4l2.c\n\nFix potential dereferencing of ERR_PTR() in find_format_by_pix()\nand uvc_v4l2_enum_format().\n\nFix the following smatch errors:\n\ndrivers/usb/gadget/function/uvc_v4l2.c:124 find_format_by_pix()\nerror: \u0027fmtdesc\u0027 dereferencing possible ERR_PTR()\n\ndrivers/usb/gadget/function/uvc_v4l2.c:392 uvc_v4l2_enum_format()\nerror: \u0027fmtdesc\u0027 dereferencing possible ERR_PTR()\n\nAlso, fix similar issue in uvc_v4l2_try_format() for potential\ndereferencing of ERR_PTR().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50056",
"url": "https://www.suse.com/security/cve/CVE-2024-50056"
},
{
"category": "external",
"summary": "SUSE Bug 1232389 for CVE-2024-50056",
"url": "https://bugzilla.suse.com/1232389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50056"
},
{
"cve": "CVE-2024-50057",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50057"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tipd: Free IRQ only if it was requested before\n\nIn polling mode, if no IRQ was requested there is no need to free it.\nCall devm_free_irq() only if client-\u003eirq is set. This fixes the warning\ncaused by the tps6598x module removal:\n\nWARNING: CPU: 2 PID: 333 at kernel/irq/devres.c:144 devm_free_irq+0x80/0x8c\n...\n...\nCall trace:\n devm_free_irq+0x80/0x8c\n tps6598x_remove+0x28/0x88 [tps6598x]\n i2c_device_remove+0x2c/0x9c\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1cc/0x228\n driver_detach+0x50/0x98\n bus_remove_driver+0x6c/0xbc\n driver_unregister+0x30/0x60\n i2c_del_driver+0x54/0x64\n tps6598x_i2c_driver_exit+0x18/0xc3c [tps6598x]\n __arm64_sys_delete_module+0x184/0x264\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0xc8/0xe8\n do_el0_svc+0x20/0x2c\n el0_svc+0x28/0x98\n el0t_64_sync_handler+0x13c/0x158\n el0t_64_sync+0x190/0x194",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50057",
"url": "https://www.suse.com/security/cve/CVE-2024-50057"
},
{
"category": "external",
"summary": "SUSE Bug 1232393 for CVE-2024-50057",
"url": "https://bugzilla.suse.com/1232393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50057"
},
{
"cve": "CVE-2024-50058",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50058"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: protect uart_port_dtr_rts() in uart_shutdown() too\n\nCommit af224ca2df29 (serial: core: Prevent unsafe uart port access, part\n3) added few uport == NULL checks. It added one to uart_shutdown(), so\nthe commit assumes, uport can be NULL in there. But right after that\nprotection, there is an unprotected \"uart_port_dtr_rts(uport, false);\"\ncall. That is invoked only if HUPCL is set, so I assume that is the\nreason why we do not see lots of these reports.\n\nOr it cannot be NULL at this point at all for some reason :P.\n\nUntil the above is investigated, stay on the safe side and move this\ndereference to the if too.\n\nI got this inconsistency from Coverity under CID 1585130. Thanks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50058",
"url": "https://www.suse.com/security/cve/CVE-2024-50058"
},
{
"category": "external",
"summary": "SUSE Bug 1232285 for CVE-2024-50058",
"url": "https://bugzilla.suse.com/1232285"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50058"
},
{
"cve": "CVE-2024-50059",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50059"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition\n\nIn the switchtec_ntb_add function, it can call switchtec_ntb_init_sndev\nfunction, then \u0026sndev-\u003echeck_link_status_work is bound with\ncheck_link_status_work. switchtec_ntb_link_notification may be called\nto start the work.\n\nIf we remove the module which will call switchtec_ntb_remove to make\ncleanup, it will free sndev through kfree(sndev), while the work\nmentioned above will be used. The sequence of operations that may lead\nto a UAF bug is as follows:\n\nCPU0 CPU1\n\n | check_link_status_work\nswitchtec_ntb_remove |\nkfree(sndev); |\n | if (sndev-\u003elink_force_down)\n | // use sndev\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in switchtec_ntb_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50059",
"url": "https://www.suse.com/security/cve/CVE-2024-50059"
},
{
"category": "external",
"summary": "SUSE Bug 1232345 for CVE-2024-50059",
"url": "https://bugzilla.suse.com/1232345"
},
{
"category": "external",
"summary": "SUSE Bug 1232348 for CVE-2024-50059",
"url": "https://bugzilla.suse.com/1232348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50059"
},
{
"cve": "CVE-2024-50060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50060"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check if we need to reschedule during overflow flush\n\nIn terms of normal application usage, this list will always be empty.\nAnd if an application does overflow a bit, it\u0027ll have a few entries.\nHowever, nothing obviously prevents syzbot from running a test case\nthat generates a ton of overflow entries, and then flushing them can\ntake quite a while.\n\nCheck for needing to reschedule while flushing, and drop our locks and\ndo so if necessary. There\u0027s no state to maintain here as overflows\nalways prune from head-of-list, hence it\u0027s fine to drop and reacquire\nthe locks at the end of the loop.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50060",
"url": "https://www.suse.com/security/cve/CVE-2024-50060"
},
{
"category": "external",
"summary": "SUSE Bug 1232417 for CVE-2024-50060",
"url": "https://bugzilla.suse.com/1232417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50060"
},
{
"cve": "CVE-2024-50061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50061"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition\n\nIn the cdns_i3c_master_probe function, \u0026master-\u003ehj_work is bound with\ncdns_i3c_master_hj. And cdns_i3c_master_interrupt can call\ncnds_i3c_master_demux_ibis function to start the work.\n\nIf we remove the module which will call cdns_i3c_master_remove to\nmake cleanup, it will free master-\u003ebase through i3c_master_unregister\nwhile the work mentioned above will be used. The sequence of operations\nthat may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | cdns_i3c_master_hj\ncdns_i3c_master_remove |\ni3c_master_unregister(\u0026master-\u003ebase) |\ndevice_unregister(\u0026master-\u003edev) |\ndevice_release |\n//free master-\u003ebase |\n | i3c_master_do_daa(\u0026master-\u003ebase)\n | //use master-\u003ebase\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in cdns_i3c_master_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50061",
"url": "https://www.suse.com/security/cve/CVE-2024-50061"
},
{
"category": "external",
"summary": "SUSE Bug 1232263 for CVE-2024-50061",
"url": "https://bugzilla.suse.com/1232263"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50061"
},
{
"cve": "CVE-2024-50062",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50062"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs-srv: Avoid null pointer deref during path establishment\n\nFor RTRS path establishment, RTRS client initiates and completes con_num\nof connections. After establishing all its connections, the information\nis exchanged between the client and server through the info_req message.\nDuring this exchange, it is essential that all connections have been\nestablished, and the state of the RTRS srv path is CONNECTED.\n\nSo add these sanity checks, to make sure we detect and abort process in\nerror scenarios to avoid null pointer deref.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50062",
"url": "https://www.suse.com/security/cve/CVE-2024-50062"
},
{
"category": "external",
"summary": "SUSE Bug 1232232 for CVE-2024-50062",
"url": "https://bugzilla.suse.com/1232232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50062"
},
{
"cve": "CVE-2024-50063",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50063"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Prevent tail call between progs attached to different hooks\n\nbpf progs can be attached to kernel functions, and the attached functions\ncan take different parameters or return different return values. If\nprog attached to one kernel function tail calls prog attached to another\nkernel function, the ctx access or return value verification could be\nbypassed.\n\nFor example, if prog1 is attached to func1 which takes only 1 parameter\nand prog2 is attached to func2 which takes two parameters. Since verifier\nassumes the bpf ctx passed to prog2 is constructed based on func2\u0027s\nprototype, verifier allows prog2 to access the second parameter from\nthe bpf ctx passed to it. The problem is that verifier does not prevent\nprog1 from passing its bpf ctx to prog2 via tail call. In this case,\nthe bpf ctx passed to prog2 is constructed from func1 instead of func2,\nthat is, the assumption for ctx access verification is bypassed.\n\nAnother example, if BPF LSM prog1 is attached to hook file_alloc_security,\nand BPF LSM prog2 is attached to hook bpf_lsm_audit_rule_known. Verifier\nknows the return value rules for these two hooks, e.g. it is legal for\nbpf_lsm_audit_rule_known to return positive number 1, and it is illegal\nfor file_alloc_security to return positive number. So verifier allows\nprog2 to return positive number 1, but does not allow prog1 to return\npositive number. The problem is that verifier does not prevent prog1\nfrom calling prog2 via tail call. In this case, prog2\u0027s return value 1\nwill be used as the return value for prog1\u0027s hook file_alloc_security.\nThat is, the return value rule is bypassed.\n\nThis patch adds restriction for tail call to prevent such bypasses.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50063",
"url": "https://www.suse.com/security/cve/CVE-2024-50063"
},
{
"category": "external",
"summary": "SUSE Bug 1232435 for CVE-2024-50063",
"url": "https://bugzilla.suse.com/1232435"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50063"
},
{
"cve": "CVE-2024-50064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: free secondary algorithms names\n\nWe need to kfree() secondary algorithms names when reset zram device that\nhad multi-streams, otherwise we leak memory.\n\n[senozhatsky@chromium.org: kfree(NULL) is legal]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50064",
"url": "https://www.suse.com/security/cve/CVE-2024-50064"
},
{
"category": "external",
"summary": "SUSE Bug 1231901 for CVE-2024-50064",
"url": "https://bugzilla.suse.com/1231901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50064"
},
{
"cve": "CVE-2024-50065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50065"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Change to non-blocking allocation in ntfs_d_hash\n\nd_hash is done while under \"rcu-walk\" and should not sleep.\n__get_name() allocates using GFP_KERNEL, having the possibility\nto sleep when under memory pressure. Change the allocation to\nGFP_NOWAIT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50065",
"url": "https://www.suse.com/security/cve/CVE-2024-50065"
},
{
"category": "external",
"summary": "SUSE Bug 1231899 for CVE-2024-50065",
"url": "https://bugzilla.suse.com/1231899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50065"
},
{
"cve": "CVE-2024-50066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix move_normal_pmd/retract_page_tables race\n\nIn mremap(), move_page_tables() looks at the type of the PMD entry and the\nspecified address range to figure out by which method the next chunk of\npage table entries should be moved.\n\nAt that point, the mmap_lock is held in write mode, but no rmap locks are\nheld yet. For PMD entries that point to page tables and are fully covered\nby the source address range, move_pgt_entry(NORMAL_PMD, ...) is called,\nwhich first takes rmap locks, then does move_normal_pmd(). \nmove_normal_pmd() takes the necessary page table locks at source and\ndestination, then moves an entire page table from the source to the\ndestination.\n\nThe problem is: The rmap locks, which protect against concurrent page\ntable removal by retract_page_tables() in the THP code, are only taken\nafter the PMD entry has been read and it has been decided how to move it. \nSo we can race as follows (with two processes that have mappings of the\nsame tmpfs file that is stored on a tmpfs mount with huge=advise); note\nthat process A accesses page tables through the MM while process B does it\nthrough the file rmap:\n\nprocess A process B\n========= =========\nmremap\n mremap_to\n move_vma\n move_page_tables\n get_old_pmd\n alloc_new_pmd\n *** PREEMPT ***\n madvise(MADV_COLLAPSE)\n do_madvise\n madvise_walk_vmas\n madvise_vma_behavior\n madvise_collapse\n hpage_collapse_scan_file\n collapse_file\n retract_page_tables\n i_mmap_lock_read(mapping)\n pmdp_collapse_flush\n i_mmap_unlock_read(mapping)\n move_pgt_entry(NORMAL_PMD, ...)\n take_rmap_locks\n move_normal_pmd\n drop_rmap_locks\n\nWhen this happens, move_normal_pmd() can end up creating bogus PMD entries\nin the line `pmd_populate(mm, new_pmd, pmd_pgtable(pmd))`. The effect\ndepends on arch-specific and machine-specific details; on x86, you can end\nup with physical page 0 mapped as a page table, which is likely\nexploitable for user-\u003ekernel privilege escalation.\n\nFix the race by letting process B recheck that the PMD still points to a\npage table after the rmap locks have been taken. Otherwise, we bail and\nlet the caller fall back to the PTE-level copying path, which will then\nbail immediately at the pmd_none() check.\n\nBug reachability: Reaching this bug requires that you can create\nshmem/file THP mappings - anonymous THP uses different code that doesn\u0027t\nzap stuff under rmap locks. File THP is gated on an experimental config\nflag (CONFIG_READ_ONLY_THP_FOR_FS), so on normal distro kernels you need\nshmem THP to hit this bug. As far as I know, getting shmem THP normally\nrequires that you can mount your own tmpfs with the right mount flags,\nwhich would require creating your own user+mount namespace; though I don\u0027t\nknow if some distros maybe enable shmem THP by default or something like\nthat.\n\nBug impact: This issue can likely be used for user-\u003ekernel privilege\nescalation when it is reachable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50066",
"url": "https://www.suse.com/security/cve/CVE-2024-50066"
},
{
"category": "external",
"summary": "SUSE Bug 1232078 for CVE-2024-50066",
"url": "https://bugzilla.suse.com/1232078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50066"
},
{
"cve": "CVE-2024-50067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50067"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuprobe: avoid out-of-bounds memory access of fetching args\n\nUprobe needs to fetch args into a percpu buffer, and then copy to ring\nbuffer to avoid non-atomic context problem.\n\nSometimes user-space strings, arrays can be very large, but the size of\npercpu buffer is only page size. And store_trace_args() won\u0027t check\nwhether these data exceeds a single page or not, caused out-of-bounds\nmemory access.\n\nIt could be reproduced by following steps:\n1. build kernel with CONFIG_KASAN enabled\n2. save follow program as test.c\n\n```\n\\#include \u003cstdio.h\u003e\n\\#include \u003cstdlib.h\u003e\n\\#include \u003cstring.h\u003e\n\n// If string length large than MAX_STRING_SIZE, the fetch_store_strlen()\n// will return 0, cause __get_data_size() return shorter size, and\n// store_trace_args() will not trigger out-of-bounds access.\n// So make string length less than 4096.\n\\#define STRLEN 4093\n\nvoid generate_string(char *str, int n)\n{\n int i;\n for (i = 0; i \u003c n; ++i)\n {\n char c = i % 26 + \u0027a\u0027;\n str[i] = c;\n }\n str[n-1] = \u0027\\0\u0027;\n}\n\nvoid print_string(char *str)\n{\n printf(\"%s\\n\", str);\n}\n\nint main()\n{\n char tmp[STRLEN];\n\n generate_string(tmp, STRLEN);\n print_string(tmp);\n\n return 0;\n}\n```\n3. compile program\n`gcc -o test test.c`\n\n4. get the offset of `print_string()`\n```\nobjdump -t test | grep -w print_string\n0000000000401199 g F .text 000000000000001b print_string\n```\n\n5. configure uprobe with offset 0x1199\n```\noff=0x1199\n\ncd /sys/kernel/debug/tracing/\necho \"p /root/test:${off} arg1=+0(%di):ustring arg2=\\$comm arg3=+0(%di):ustring\"\n \u003e uprobe_events\necho 1 \u003e events/uprobes/enable\necho 1 \u003e tracing_on\n```\n\n6. run `test`, and kasan will report error.\n==================================================================\nBUG: KASAN: use-after-free in strncpy_from_user+0x1d6/0x1f0\nWrite of size 8 at addr ffff88812311c004 by task test/499CPU: 0 UID: 0 PID: 499 Comm: test Not tainted 6.12.0-rc3+ #18\nHardware name: Red Hat KVM, BIOS 1.16.0-4.al8 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x55/0x70\n print_address_description.constprop.0+0x27/0x310\n kasan_report+0x10f/0x120\n ? strncpy_from_user+0x1d6/0x1f0\n strncpy_from_user+0x1d6/0x1f0\n ? rmqueue.constprop.0+0x70d/0x2ad0\n process_fetch_insn+0xb26/0x1470\n ? __pfx_process_fetch_insn+0x10/0x10\n ? _raw_spin_lock+0x85/0xe0\n ? __pfx__raw_spin_lock+0x10/0x10\n ? __pte_offset_map+0x1f/0x2d0\n ? unwind_next_frame+0xc5f/0x1f80\n ? arch_stack_walk+0x68/0xf0\n ? is_bpf_text_address+0x23/0x30\n ? kernel_text_address.part.0+0xbb/0xd0\n ? __kernel_text_address+0x66/0xb0\n ? unwind_get_return_address+0x5e/0xa0\n ? __pfx_stack_trace_consume_entry+0x10/0x10\n ? arch_stack_walk+0xa2/0xf0\n ? _raw_spin_lock_irqsave+0x8b/0xf0\n ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n ? depot_alloc_stack+0x4c/0x1f0\n ? _raw_spin_unlock_irqrestore+0xe/0x30\n ? stack_depot_save_flags+0x35d/0x4f0\n ? kasan_save_stack+0x34/0x50\n ? kasan_save_stack+0x24/0x50\n ? mutex_lock+0x91/0xe0\n ? __pfx_mutex_lock+0x10/0x10\n prepare_uprobe_buffer.part.0+0x2cd/0x500\n uprobe_dispatcher+0x2c3/0x6a0\n ? __pfx_uprobe_dispatcher+0x10/0x10\n ? __kasan_slab_alloc+0x4d/0x90\n handler_chain+0xdd/0x3e0\n handle_swbp+0x26e/0x3d0\n ? __pfx_handle_swbp+0x10/0x10\n ? uprobe_pre_sstep_notifier+0x151/0x1b0\n irqentry_exit_to_user_mode+0xe2/0x1b0\n asm_exc_int3+0x39/0x40\nRIP: 0033:0x401199\nCode: 01 c2 0f b6 45 fb 88 02 83 45 fc 01 8b 45 fc 3b 45 e4 7c b7 8b 45 e4 48 98 48 8d 50 ff 48 8b 45 e8 48 01 d0 ce\nRSP: 002b:00007ffdf00576a8 EFLAGS: 00000206\nRAX: 00007ffdf00576b0 RBX: 0000000000000000 RCX: 0000000000000ff2\nRDX: 0000000000000ffc RSI: 0000000000000ffd RDI: 00007ffdf00576b0\nRBP: 00007ffdf00586b0 R08: 00007feb2f9c0d20 R09: 00007feb2f9c0d20\nR10: 0000000000000001 R11: 0000000000000202 R12: 0000000000401040\nR13: 00007ffdf0058780 R14: 0000000000000000 R15: 0000000000000000\n \u003c/TASK\u003e\n\nThis commit enforces the buffer\u0027s maxlen less than a page-size to avoid\nstore_trace_args() out-of-memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50067",
"url": "https://www.suse.com/security/cve/CVE-2024-50067"
},
{
"category": "external",
"summary": "SUSE Bug 1232416 for CVE-2024-50067",
"url": "https://bugzilla.suse.com/1232416"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50067"
},
{
"cve": "CVE-2024-50068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50068"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/damon/tests/sysfs-kunit.h: fix memory leak in damon_sysfs_test_add_targets()\n\nThe sysfs_target-\u003eregions allocated in damon_sysfs_regions_alloc() is not\nfreed in damon_sysfs_test_add_targets(), which cause the following memory\nleak, free it to fix it.\n\n\tunreferenced object 0xffffff80c2a8db80 (size 96):\n\t comm \"kunit_try_catch\", pid 187, jiffies 4294894363\n\t hex dump (first 32 bytes):\n\t 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n\t 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n\t backtrace (crc 0):\n\t [\u003c0000000001e3714d\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c000000008e6835c1\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000001286d9f8\u003e] damon_sysfs_test_add_targets+0x1cc/0x738\n\t [\u003c0000000032ef8f77\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c00000000f3edea23\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000adf936cf\u003e] kthread+0x2e8/0x374\n\t [\u003c0000000041bb1628\u003e] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50068",
"url": "https://www.suse.com/security/cve/CVE-2024-50068"
},
{
"category": "external",
"summary": "SUSE Bug 1232512 for CVE-2024-50068",
"url": "https://bugzilla.suse.com/1232512"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50068"
},
{
"cve": "CVE-2024-50069",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50069"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: apple: check devm_kasprintf() returned value\n\ndevm_kasprintf() can return a NULL pointer on failure but this returned\nvalue is not checked. Fix this lack and check the returned value.\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50069",
"url": "https://www.suse.com/security/cve/CVE-2024-50069"
},
{
"category": "external",
"summary": "SUSE Bug 1232511 for CVE-2024-50069",
"url": "https://bugzilla.suse.com/1232511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50069"
},
{
"cve": "CVE-2024-50070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: stm32: check devm_kasprintf() returned value\n\ndevm_kasprintf() can return a NULL pointer on failure but this returned\nvalue is not checked. Fix this lack and check the returned value.\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50070",
"url": "https://www.suse.com/security/cve/CVE-2024-50070"
},
{
"category": "external",
"summary": "SUSE Bug 1232510 for CVE-2024-50070",
"url": "https://bugzilla.suse.com/1232510"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50070"
},
{
"cve": "CVE-2024-50071",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50071"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: nuvoton: fix a double free in ma35_pinctrl_dt_node_to_map_func()\n\n\u0027new_map\u0027 is allocated using devm_* which takes care of freeing the\nallocated data on device removal, call to\n\n\t.dt_free_map = pinconf_generic_dt_free_map\n\ndouble frees the map as pinconf_generic_dt_free_map() calls\npinctrl_utils_free_map().\n\nFix this by using kcalloc() instead of auto-managed devm_kcalloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50071",
"url": "https://www.suse.com/security/cve/CVE-2024-50071"
},
{
"category": "external",
"summary": "SUSE Bug 1232509 for CVE-2024-50071",
"url": "https://bugzilla.suse.com/1232509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50071"
},
{
"cve": "CVE-2024-50072",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50072"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/bugs: Use code segment selector for VERW operand\n\nRobert Gill reported below #GP in 32-bit mode when dosemu software was\nexecuting vm86() system call:\n\n general protection fault: 0000 [#1] PREEMPT SMP\n CPU: 4 PID: 4610 Comm: dosemu.bin Not tainted 6.6.21-gentoo-x86 #1\n Hardware name: Dell Inc. PowerEdge 1950/0H723K, BIOS 2.7.0 10/30/2010\n EIP: restore_all_switch_stack+0xbe/0xcf\n EAX: 00000000 EBX: 00000000 ECX: 00000000 EDX: 00000000\n ESI: 00000000 EDI: 00000000 EBP: 00000000 ESP: ff8affdc\n DS: 0000 ES: 0000 FS: 0000 GS: 0033 SS: 0068 EFLAGS: 00010046\n CR0: 80050033 CR2: 00c2101c CR3: 04b6d000 CR4: 000406d0\n Call Trace:\n show_regs+0x70/0x78\n die_addr+0x29/0x70\n exc_general_protection+0x13c/0x348\n exc_bounds+0x98/0x98\n handle_exception+0x14d/0x14d\n exc_bounds+0x98/0x98\n restore_all_switch_stack+0xbe/0xcf\n exc_bounds+0x98/0x98\n restore_all_switch_stack+0xbe/0xcf\n\nThis only happens in 32-bit mode when VERW based mitigations like MDS/RFDS\nare enabled. This is because segment registers with an arbitrary user value\ncan result in #GP when executing VERW. Intel SDM vol. 2C documents the\nfollowing behavior for VERW instruction:\n\n #GP(0) - If a memory operand effective address is outside the CS, DS, ES,\n\t FS, or GS segment limit.\n\nCLEAR_CPU_BUFFERS macro executes VERW instruction before returning to user\nspace. Use %cs selector to reference VERW operand. This ensures VERW will\nnot #GP for an arbitrary user %ds.\n\n[ mingo: Fixed the SOB chain. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50072",
"url": "https://www.suse.com/security/cve/CVE-2024-50072"
},
{
"category": "external",
"summary": "SUSE Bug 1232513 for CVE-2024-50072",
"url": "https://bugzilla.suse.com/1232513"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50072"
},
{
"cve": "CVE-2024-50073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50073"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: n_gsm: Fix use-after-free in gsm_cleanup_mux\n\nBUG: KASAN: slab-use-after-free in gsm_cleanup_mux+0x77b/0x7b0\ndrivers/tty/n_gsm.c:3160 [n_gsm]\nRead of size 8 at addr ffff88815fe99c00 by task poc/3379\nCPU: 0 UID: 0 PID: 3379 Comm: poc Not tainted 6.11.0+ #56\nHardware name: VMware, Inc. VMware Virtual Platform/440BX\nDesktop Reference Platform, BIOS 6.00 11/12/2020\nCall Trace:\n \u003cTASK\u003e\n gsm_cleanup_mux+0x77b/0x7b0 drivers/tty/n_gsm.c:3160 [n_gsm]\n __pfx_gsm_cleanup_mux+0x10/0x10 drivers/tty/n_gsm.c:3124 [n_gsm]\n __pfx_sched_clock_cpu+0x10/0x10 kernel/sched/clock.c:389\n update_load_avg+0x1c1/0x27b0 kernel/sched/fair.c:4500\n __pfx_min_vruntime_cb_rotate+0x10/0x10 kernel/sched/fair.c:846\n __rb_insert_augmented+0x492/0xbf0 lib/rbtree.c:161\n gsmld_ioctl+0x395/0x1450 drivers/tty/n_gsm.c:3408 [n_gsm]\n _raw_spin_lock_irqsave+0x92/0xf0 arch/x86/include/asm/atomic.h:107\n __pfx_gsmld_ioctl+0x10/0x10 drivers/tty/n_gsm.c:3822 [n_gsm]\n ktime_get+0x5e/0x140 kernel/time/timekeeping.c:195\n ldsem_down_read+0x94/0x4e0 arch/x86/include/asm/atomic64_64.h:79\n __pfx_ldsem_down_read+0x10/0x10 drivers/tty/tty_ldsem.c:338\n __pfx_do_vfs_ioctl+0x10/0x10 fs/ioctl.c:805\n tty_ioctl+0x643/0x1100 drivers/tty/tty_io.c:2818\n\nAllocated by task 65:\n gsm_data_alloc.constprop.0+0x27/0x190 drivers/tty/n_gsm.c:926 [n_gsm]\n gsm_send+0x2c/0x580 drivers/tty/n_gsm.c:819 [n_gsm]\n gsm1_receive+0x547/0xad0 drivers/tty/n_gsm.c:3038 [n_gsm]\n gsmld_receive_buf+0x176/0x280 drivers/tty/n_gsm.c:3609 [n_gsm]\n tty_ldisc_receive_buf+0x101/0x1e0 drivers/tty/tty_buffer.c:391\n tty_port_default_receive_buf+0x61/0xa0 drivers/tty/tty_port.c:39\n flush_to_ldisc+0x1b0/0x750 drivers/tty/tty_buffer.c:445\n process_scheduled_works+0x2b0/0x10d0 kernel/workqueue.c:3229\n worker_thread+0x3dc/0x950 kernel/workqueue.c:3391\n kthread+0x2a3/0x370 kernel/kthread.c:389\n ret_from_fork+0x2d/0x70 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:257\n\nFreed by task 3367:\n kfree+0x126/0x420 mm/slub.c:4580\n gsm_cleanup_mux+0x36c/0x7b0 drivers/tty/n_gsm.c:3160 [n_gsm]\n gsmld_ioctl+0x395/0x1450 drivers/tty/n_gsm.c:3408 [n_gsm]\n tty_ioctl+0x643/0x1100 drivers/tty/tty_io.c:2818\n\n[Analysis]\ngsm_msg on the tx_ctrl_list or tx_data_list of gsm_mux\ncan be freed by multi threads through ioctl,which leads\nto the occurrence of uaf. Protect it by gsm tx lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50073",
"url": "https://www.suse.com/security/cve/CVE-2024-50073"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50073",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232520 for CVE-2024-50073",
"url": "https://bugzilla.suse.com/1232520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50073"
},
{
"cve": "CVE-2024-50074",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50074"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nparport: Proper fix for array out-of-bounds access\n\nThe recent fix for array out-of-bounds accesses replaced sprintf()\ncalls blindly with snprintf(). However, since snprintf() returns the\nwould-be-printed size, not the actually output size, the length\ncalculation can still go over the given limit.\n\nUse scnprintf() instead of snprintf(), which returns the actually\noutput letters, for addressing the potential out-of-bounds access\nproperly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50074",
"url": "https://www.suse.com/security/cve/CVE-2024-50074"
},
{
"category": "external",
"summary": "SUSE Bug 1232507 for CVE-2024-50074",
"url": "https://bugzilla.suse.com/1232507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50074"
},
{
"cve": "CVE-2024-50075",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50075"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: tegra: fix checked USB2 port number\n\nIf USB virtualizatoin is enabled, USB2 ports are shared between all\nVirtual Functions. The USB2 port number owned by an USB2 root hub in\na Virtual Function may be less than total USB2 phy number supported\nby the Tegra XUSB controller.\n\nUsing total USB2 phy number as port number to check all PORTSC values\nwould cause invalid memory access.\n\n[ 116.923438] Unable to handle kernel paging request at virtual address 006c622f7665642f\n...\n[ 117.213640] Call trace:\n[ 117.216783] tegra_xusb_enter_elpg+0x23c/0x658\n[ 117.222021] tegra_xusb_runtime_suspend+0x40/0x68\n[ 117.227260] pm_generic_runtime_suspend+0x30/0x50\n[ 117.232847] __rpm_callback+0x84/0x3c0\n[ 117.237038] rpm_suspend+0x2dc/0x740\n[ 117.241229] pm_runtime_work+0xa0/0xb8\n[ 117.245769] process_scheduled_works+0x24c/0x478\n[ 117.251007] worker_thread+0x23c/0x328\n[ 117.255547] kthread+0x104/0x1b0\n[ 117.259389] ret_from_fork+0x10/0x20\n[ 117.263582] Code: 54000222 f9461ae8 f8747908 b4ffff48 (f9400100)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50075",
"url": "https://www.suse.com/security/cve/CVE-2024-50075"
},
{
"category": "external",
"summary": "SUSE Bug 1232506 for CVE-2024-50075",
"url": "https://bugzilla.suse.com/1232506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50075"
},
{
"cve": "CVE-2024-50076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvt: prevent kernel-infoleak in con_font_get()\n\nfont.data may not initialize all memory spaces depending on the implementation\nof vc-\u003evc_sw-\u003econ_font_get. This may cause info-leak, so to prevent this, it\nis safest to modify it to initialize the allocated memory space to 0, and it\ngenerally does not affect the overall performance of the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50076",
"url": "https://www.suse.com/security/cve/CVE-2024-50076"
},
{
"category": "external",
"summary": "SUSE Bug 1232505 for CVE-2024-50076",
"url": "https://bugzilla.suse.com/1232505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50076"
},
{
"cve": "CVE-2024-50077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: Fix multiple init when debugfs is disabled\n\nIf bt_debugfs is not created successfully, which happens if either\nCONFIG_DEBUG_FS or CONFIG_DEBUG_FS_ALLOW_ALL is unset, then iso_init()\nreturns early and does not set iso_inited to true. This means that a\nsubsequent call to iso_init() will result in duplicate calls to\nproto_register(), bt_sock_register(), etc.\n\nWith CONFIG_LIST_HARDENED and CONFIG_BUG_ON_DATA_CORRUPTION enabled, the\nduplicate call to proto_register() triggers this BUG():\n\n list_add double add: new=ffffffffc0b280d0, prev=ffffffffbab56250,\n next=ffffffffc0b280d0.\n ------------[ cut here ]------------\n kernel BUG at lib/list_debug.c:35!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 2 PID: 887 Comm: bluetoothd Not tainted 6.10.11-1-ao-desktop #1\n RIP: 0010:__list_add_valid_or_report+0x9a/0xa0\n ...\n __list_add_valid_or_report+0x9a/0xa0\n proto_register+0x2b5/0x340\n iso_init+0x23/0x150 [bluetooth]\n set_iso_socket_func+0x68/0x1b0 [bluetooth]\n kmem_cache_free+0x308/0x330\n hci_sock_sendmsg+0x990/0x9e0 [bluetooth]\n __sock_sendmsg+0x7b/0x80\n sock_write_iter+0x9a/0x110\n do_iter_readv_writev+0x11d/0x220\n vfs_writev+0x180/0x3e0\n do_writev+0xca/0x100\n ...\n\nThis change removes the early return. The check for iso_debugfs being\nNULL was unnecessary, it is always NULL when iso_inited is false.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50077",
"url": "https://www.suse.com/security/cve/CVE-2024-50077"
},
{
"category": "external",
"summary": "SUSE Bug 1232504 for CVE-2024-50077",
"url": "https://bugzilla.suse.com/1232504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50077"
},
{
"cve": "CVE-2024-50078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Call iso_exit() on module unload\n\nIf iso_init() has been called, iso_exit() must be called on module\nunload. Without that, the struct proto that iso_init() registered with\nproto_register() becomes invalid, which could cause unpredictable\nproblems later. In my case, with CONFIG_LIST_HARDENED and\nCONFIG_BUG_ON_DATA_CORRUPTION enabled, loading the module again usually\ntriggers this BUG():\n\n list_add corruption. next-\u003eprev should be prev (ffffffffb5355fd0),\n but was 0000000000000068. (next=ffffffffc0a010d0).\n ------------[ cut here ]------------\n kernel BUG at lib/list_debug.c:29!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 4159 Comm: modprobe Not tainted 6.10.11-4+bt2-ao-desktop #1\n RIP: 0010:__list_add_valid_or_report+0x61/0xa0\n ...\n __list_add_valid_or_report+0x61/0xa0\n proto_register+0x299/0x320\n hci_sock_init+0x16/0xc0 [bluetooth]\n bt_init+0x68/0xd0 [bluetooth]\n __pfx_bt_init+0x10/0x10 [bluetooth]\n do_one_initcall+0x80/0x2f0\n do_init_module+0x8b/0x230\n __do_sys_init_module+0x15f/0x190\n do_syscall_64+0x68/0x110\n ...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50078",
"url": "https://www.suse.com/security/cve/CVE-2024-50078"
},
{
"category": "external",
"summary": "SUSE Bug 1232503 for CVE-2024-50078",
"url": "https://bugzilla.suse.com/1232503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50078"
},
{
"cve": "CVE-2024-50079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/sqpoll: ensure task state is TASK_RUNNING when running task_work\n\nWhen the sqpoll is exiting and cancels pending work items, it may need\nto run task_work. If this happens from within io_uring_cancel_generic(),\nthen it may be under waiting for the io_uring_task waitqueue. This\nresults in the below splat from the scheduler, as the ring mutex may be\nattempted grabbed while in a TASK_INTERRUPTIBLE state.\n\nEnsure that the task state is set appropriately for that, just like what\nis done for the other cases in io_run_task_work().\n\ndo not call blocking ops when !TASK_RUNNING; state=1 set at [\u003c0000000029387fd2\u003e] prepare_to_wait+0x88/0x2fc\nWARNING: CPU: 6 PID: 59939 at kernel/sched/core.c:8561 __might_sleep+0xf4/0x140\nModules linked in:\nCPU: 6 UID: 0 PID: 59939 Comm: iou-sqp-59938 Not tainted 6.12.0-rc3-00113-g8d020023b155 #7456\nHardware name: linux,dummy-virt (DT)\npstate: 61400005 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\npc : __might_sleep+0xf4/0x140\nlr : __might_sleep+0xf4/0x140\nsp : ffff80008c5e7830\nx29: ffff80008c5e7830 x28: ffff0000d93088c0 x27: ffff60001c2d7230\nx26: dfff800000000000 x25: ffff0000e16b9180 x24: ffff80008c5e7a50\nx23: 1ffff000118bcf4a x22: ffff0000e16b9180 x21: ffff0000e16b9180\nx20: 000000000000011b x19: ffff80008310fac0 x18: 1ffff000118bcd90\nx17: 30303c5b20746120 x16: 74657320313d6574 x15: 0720072007200720\nx14: 0720072007200720 x13: 0720072007200720 x12: ffff600036c64f0b\nx11: 1fffe00036c64f0a x10: ffff600036c64f0a x9 : dfff800000000000\nx8 : 00009fffc939b0f6 x7 : ffff0001b6327853 x6 : 0000000000000001\nx5 : ffff0001b6327850 x4 : ffff600036c64f0b x3 : ffff8000803c35bc\nx2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff0000e16b9180\nCall trace:\n __might_sleep+0xf4/0x140\n mutex_lock+0x84/0x124\n io_handle_tw_list+0xf4/0x260\n tctx_task_work_run+0x94/0x340\n io_run_task_work+0x1ec/0x3c0\n io_uring_cancel_generic+0x364/0x524\n io_sq_thread+0x820/0x124c\n ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50079",
"url": "https://www.suse.com/security/cve/CVE-2024-50079"
},
{
"category": "external",
"summary": "SUSE Bug 1232495 for CVE-2024-50079",
"url": "https://bugzilla.suse.com/1232495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50079"
},
{
"cve": "CVE-2024-50080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nublk: don\u0027t allow user copy for unprivileged device\n\nUBLK_F_USER_COPY requires userspace to call write() on ublk char\ndevice for filling request buffer, and unprivileged device can\u0027t\nbe trusted.\n\nSo don\u0027t allow user copy for unprivileged device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50080",
"url": "https://www.suse.com/security/cve/CVE-2024-50080"
},
{
"category": "external",
"summary": "SUSE Bug 1232502 for CVE-2024-50080",
"url": "https://bugzilla.suse.com/1232502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50080"
},
{
"cve": "CVE-2024-50081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-mq: setup queue -\u003etag_set before initializing hctx\n\nCommit 7b815817aa58 (\"blk-mq: add helper for checking if one CPU is mapped to specified hctx\")\nneeds to check queue mapping via tag set in hctx\u0027s cpuhp handler.\n\nHowever, q-\u003etag_set may not be setup yet when the cpuhp handler is\nenabled, then kernel oops is triggered.\n\nFix the issue by setup queue tag_set before initializing hctx.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50081",
"url": "https://www.suse.com/security/cve/CVE-2024-50081"
},
{
"category": "external",
"summary": "SUSE Bug 1232501 for CVE-2024-50081",
"url": "https://bugzilla.suse.com/1232501"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50081"
},
{
"cve": "CVE-2024-50082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race\n\nWe\u0027re seeing crashes from rq_qos_wake_function that look like this:\n\n BUG: unable to handle page fault for address: ffffafe180a40084\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0002) - not-present page\n PGD 100000067 P4D 100000067 PUD 10027c067 PMD 10115d067 PTE 0\n Oops: Oops: 0002 [#1] PREEMPT SMP PTI\n CPU: 17 UID: 0 PID: 0 Comm: swapper/17 Not tainted 6.12.0-rc3-00013-geca631b8fe80 #11\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:_raw_spin_lock_irqsave+0x1d/0x40\n Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 1f 44 00 00 41 54 9c 41 5c fa 65 ff 05 62 97 30 4c 31 c0 ba 01 00 00 00 \u003cf0\u003e 0f b1 17 75 0a 4c 89 e0 41 5c c3 cc cc cc cc 89 c6 e8 2c 0b 00\n RSP: 0018:ffffafe180580ca0 EFLAGS: 00010046\n RAX: 0000000000000000 RBX: ffffafe180a3f7a8 RCX: 0000000000000011\n RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffafe180a40084\n RBP: 0000000000000000 R08: 00000000001e7240 R09: 0000000000000011\n R10: 0000000000000028 R11: 0000000000000888 R12: 0000000000000002\n R13: ffffafe180a40084 R14: 0000000000000000 R15: 0000000000000003\n FS: 0000000000000000(0000) GS:ffff9aaf1f280000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffafe180a40084 CR3: 000000010e428002 CR4: 0000000000770ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cIRQ\u003e\n try_to_wake_up+0x5a/0x6a0\n rq_qos_wake_function+0x71/0x80\n __wake_up_common+0x75/0xa0\n __wake_up+0x36/0x60\n scale_up.part.0+0x50/0x110\n wb_timer_fn+0x227/0x450\n ...\n\nSo rq_qos_wake_function() calls wake_up_process(data-\u003etask), which calls\ntry_to_wake_up(), which faults in raw_spin_lock_irqsave(\u0026p-\u003epi_lock).\n\np comes from data-\u003etask, and data comes from the waitqueue entry, which\nis stored on the waiter\u0027s stack in rq_qos_wait(). Analyzing the core\ndump with drgn, I found that the waiter had already woken up and moved\non to a completely unrelated code path, clobbering what was previously\ndata-\u003etask. Meanwhile, the waker was passing the clobbered garbage in\ndata-\u003etask to wake_up_process(), leading to the crash.\n\nWhat\u0027s happening is that in between rq_qos_wake_function() deleting the\nwaitqueue entry and calling wake_up_process(), rq_qos_wait() is finding\nthat it already got a token and returning. The race looks like this:\n\nrq_qos_wait() rq_qos_wake_function()\n==============================================================\nprepare_to_wait_exclusive()\n data-\u003egot_token = true;\n list_del_init(\u0026curr-\u003eentry);\nif (data.got_token)\n break;\nfinish_wait(\u0026rqw-\u003ewait, \u0026data.wq);\n ^- returns immediately because\n list_empty_careful(\u0026wq_entry-\u003eentry)\n is true\n... return, go do something else ...\n wake_up_process(data-\u003etask)\n (NO LONGER VALID!)-^\n\nNormally, finish_wait() is supposed to synchronize against the waker.\nBut, as noted above, it is returning immediately because the waitqueue\nentry has already been removed from the waitqueue.\n\nThe bug is that rq_qos_wake_function() is accessing the waitqueue entry\nAFTER deleting it. Note that autoremove_wake_function() wakes the waiter\nand THEN deletes the waitqueue entry, which is the proper order.\n\nFix it by swapping the order. We also need to use\nlist_del_init_careful() to match the list_empty_careful() in\nfinish_wait().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50082",
"url": "https://www.suse.com/security/cve/CVE-2024-50082"
},
{
"category": "external",
"summary": "SUSE Bug 1232500 for CVE-2024-50082",
"url": "https://bugzilla.suse.com/1232500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50082"
},
{
"cve": "CVE-2024-50083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: fix mptcp DSS corruption due to large pmtu xmit\n\nSyzkaller was able to trigger a DSS corruption:\n\n TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.\n ------------[ cut here ]------------\n WARNING: CPU: 0 PID: 5227 at net/mptcp/protocol.c:695 __mptcp_move_skbs_from_subflow+0x20a9/0x21f0 net/mptcp/protocol.c:695\n Modules linked in:\n CPU: 0 UID: 0 PID: 5227 Comm: syz-executor350 Not tainted 6.11.0-syzkaller-08829-gaf9c191ac2a0 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\n RIP: 0010:__mptcp_move_skbs_from_subflow+0x20a9/0x21f0 net/mptcp/protocol.c:695\n Code: 0f b6 dc 31 ff 89 de e8 b5 dd ea f5 89 d8 48 81 c4 50 01 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 98 da ea f5 90 \u003c0f\u003e 0b 90 e9 47 ff ff ff e8 8a da ea f5 90 0f 0b 90 e9 99 e0 ff ff\n RSP: 0018:ffffc90000006db8 EFLAGS: 00010246\n RAX: ffffffff8ba9df18 RBX: 00000000000055f0 RCX: ffff888030023c00\n RDX: 0000000000000100 RSI: 00000000000081e5 RDI: 00000000000055f0\n RBP: 1ffff110062bf1ae R08: ffffffff8ba9cf12 R09: 1ffff110062bf1b8\n R10: dffffc0000000000 R11: ffffed10062bf1b9 R12: 0000000000000000\n R13: dffffc0000000000 R14: 00000000700cec61 R15: 00000000000081e5\n FS: 000055556679c380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000020287000 CR3: 0000000077892000 CR4: 00000000003506f0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cIRQ\u003e\n move_skbs_to_msk net/mptcp/protocol.c:811 [inline]\n mptcp_data_ready+0x29c/0xa90 net/mptcp/protocol.c:854\n subflow_data_ready+0x34a/0x920 net/mptcp/subflow.c:1490\n tcp_data_queue+0x20fd/0x76c0 net/ipv4/tcp_input.c:5283\n tcp_rcv_established+0xfba/0x2020 net/ipv4/tcp_input.c:6237\n tcp_v4_do_rcv+0x96d/0xc70 net/ipv4/tcp_ipv4.c:1915\n tcp_v4_rcv+0x2dc0/0x37f0 net/ipv4/tcp_ipv4.c:2350\n ip_protocol_deliver_rcu+0x22e/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x341/0x5f0 net/ipv4/ip_input.c:233\n NF_HOOK+0x3a4/0x450 include/linux/netfilter.h:314\n NF_HOOK+0x3a4/0x450 include/linux/netfilter.h:314\n __netif_receive_skb_one_core net/core/dev.c:5662 [inline]\n __netif_receive_skb+0x2bf/0x650 net/core/dev.c:5775\n process_backlog+0x662/0x15b0 net/core/dev.c:6107\n __napi_poll+0xcb/0x490 net/core/dev.c:6771\n napi_poll net/core/dev.c:6840 [inline]\n net_rx_action+0x89b/0x1240 net/core/dev.c:6962\n handle_softirqs+0x2c5/0x980 kernel/softirq.c:554\n do_softirq+0x11b/0x1e0 kernel/softirq.c:455\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x1bb/0x200 kernel/softirq.c:382\n local_bh_enable include/linux/bottom_half.h:33 [inline]\n rcu_read_unlock_bh include/linux/rcupdate.h:919 [inline]\n __dev_queue_xmit+0x1764/0x3e80 net/core/dev.c:4451\n dev_queue_xmit include/linux/netdevice.h:3094 [inline]\n neigh_hh_output include/net/neighbour.h:526 [inline]\n neigh_output include/net/neighbour.h:540 [inline]\n ip_finish_output2+0xd41/0x1390 net/ipv4/ip_output.c:236\n ip_local_out net/ipv4/ip_output.c:130 [inline]\n __ip_queue_xmit+0x118c/0x1b80 net/ipv4/ip_output.c:536\n __tcp_transmit_skb+0x2544/0x3b30 net/ipv4/tcp_output.c:1466\n tcp_transmit_skb net/ipv4/tcp_output.c:1484 [inline]\n tcp_mtu_probe net/ipv4/tcp_output.c:2547 [inline]\n tcp_write_xmit+0x641d/0x6bf0 net/ipv4/tcp_output.c:2752\n __tcp_push_pending_frames+0x9b/0x360 net/ipv4/tcp_output.c:3015\n tcp_push_pending_frames include/net/tcp.h:2107 [inline]\n tcp_data_snd_check net/ipv4/tcp_input.c:5714 [inline]\n tcp_rcv_established+0x1026/0x2020 net/ipv4/tcp_input.c:6239\n tcp_v4_do_rcv+0x96d/0xc70 net/ipv4/tcp_ipv4.c:1915\n sk_backlog_rcv include/net/sock.h:1113 [inline]\n __release_sock+0x214/0x350 net/core/sock.c:3072\n release_sock+0x61/0x1f0 net/core/sock.c:3626\n mptcp_push_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50083",
"url": "https://www.suse.com/security/cve/CVE-2024-50083"
},
{
"category": "external",
"summary": "SUSE Bug 1232493 for CVE-2024-50083",
"url": "https://bugzilla.suse.com/1232493"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50083"
},
{
"cve": "CVE-2024-50084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: microchip: vcap api: Fix memory leaks in vcap_api_encode_rule_test()\n\nCommit a3c1e45156ad (\"net: microchip: vcap: Fix use-after-free error in\nkunit test\") fixed the use-after-free error, but introduced below\nmemory leaks by removing necessary vcap_free_rule(), add it to fix it.\n\n\tunreferenced object 0xffffff80ca58b700 (size 192):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898264\n\t hex dump (first 32 bytes):\n\t 00 12 7a 00 05 00 00 00 0a 00 00 00 64 00 00 00 ..z.........d...\n\t 00 00 00 00 00 00 00 00 00 04 0b cc 80 ff ff ff ................\n\t backtrace (crc 9c09c3fe):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c0000000040a01b8d\u003e] vcap_alloc_rule+0x3cc/0x9c4\n\t [\u003c000000003fe86110\u003e] vcap_api_encode_rule_test+0x1ac/0x16b0\n\t [\u003c00000000b3595fc4\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c0000000010f5d2bf\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000c5d82c9a\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000f4287308\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cc0b0400 (size 64):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898265\n\t hex dump (first 32 bytes):\n\t 80 04 0b cc 80 ff ff ff 18 b7 58 ca 80 ff ff ff ..........X.....\n\t 39 00 00 00 02 00 00 00 06 05 04 03 02 01 ff ff 9...............\n\t backtrace (crc daf014e9):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000000ff63fd4\u003e] vcap_rule_add_key+0x2cc/0x528\n\t [\u003c00000000dfdb1e81\u003e] vcap_api_encode_rule_test+0x224/0x16b0\n\t [\u003c00000000b3595fc4\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c0000000010f5d2bf\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000c5d82c9a\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000f4287308\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cc0b0700 (size 64):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898265\n\t hex dump (first 32 bytes):\n\t 80 07 0b cc 80 ff ff ff 28 b7 58 ca 80 ff ff ff ........(.X.....\n\t 3c 00 00 00 00 00 00 00 01 2f 03 b3 ec ff ff ff \u003c......../......\n\t backtrace (crc 8d877792):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000006eadfab7\u003e] vcap_rule_add_action+0x2d0/0x52c\n\t [\u003c00000000323475d1\u003e] vcap_api_encode_rule_test+0x4d4/0x16b0\n\t [\u003c00000000b3595fc4\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c0000000010f5d2bf\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000c5d82c9a\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000f4287308\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cc0b0900 (size 64):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898266\n\t hex dump (first 32 bytes):\n\t 80 09 0b cc 80 ff ff ff 80 06 0b cc 80 ff ff ff ................\n\t 7d 00 00 00 01 00 00 00 00 00 00 00 ff 00 00 00 }...............\n\t backtrace (crc 34181e56):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000000ff63fd4\u003e] vcap_rule_add_key+0x2cc/0x528\n\t [\u003c00000000991e3564\u003e] vcap_val_rule+0xcf0/0x13e8\n\t [\u003c00000000fc9868e5\u003e] vcap_api_encode_rule_test+0x678/0x16b0\n\t [\u003c00000000b3595fc4\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c0000000010f5d2bf\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000c5d82c9a\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000f4287308\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cc0b0980 (size 64):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898266\n\t hex dump (first 32 bytes):\n\t 18 b7 58 ca 80 ff ff ff 00 09 0b cc 80 ff ff ff ..X.............\n\t 67 00 00 00 00 00 00 00 01 01 74 88 c0 ff ff ff g.........t.....\n\t backtrace (crc 275fd9be):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000000ff63fd4\u003e] vcap_rule_add_key+0x2cc/0x528\n\t [\u003c000000001396a1a2\u003e] test_add_de\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50084",
"url": "https://www.suse.com/security/cve/CVE-2024-50084"
},
{
"category": "external",
"summary": "SUSE Bug 1232494 for CVE-2024-50084",
"url": "https://bugzilla.suse.com/1232494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50084"
},
{
"cve": "CVE-2024-50085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow\n\nSyzkaller reported this splat:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in mptcp_pm_nl_rm_addr_or_subflow+0xb44/0xcc0 net/mptcp/pm_netlink.c:881\n Read of size 4 at addr ffff8880569ac858 by task syz.1.2799/14662\n\n CPU: 0 UID: 0 PID: 14662 Comm: syz.1.2799 Not tainted 6.12.0-rc2-syzkaller-00307-g36c254515dc6 #0\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n mptcp_pm_nl_rm_addr_or_subflow+0xb44/0xcc0 net/mptcp/pm_netlink.c:881\n mptcp_pm_nl_rm_subflow_received net/mptcp/pm_netlink.c:914 [inline]\n mptcp_nl_remove_id_zero_address+0x305/0x4a0 net/mptcp/pm_netlink.c:1572\n mptcp_pm_nl_del_addr_doit+0x5c9/0x770 net/mptcp/pm_netlink.c:1603\n genl_family_rcv_msg_doit+0x202/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x565/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x165/0x410 net/netlink/af_netlink.c:2551\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1331 [inline]\n netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1357\n netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1901\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg net/socket.c:744 [inline]\n ____sys_sendmsg+0x9ae/0xb40 net/socket.c:2607\n ___sys_sendmsg+0x135/0x1e0 net/socket.c:2661\n __sys_sendmsg+0x117/0x1f0 net/socket.c:2690\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0x73/0x120 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x32/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n RIP: 0023:0xf7fe4579\n Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 \u003c5d\u003e 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00\n RSP: 002b:00000000f574556c EFLAGS: 00000296 ORIG_RAX: 0000000000000172\n RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000020000140\n RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n \u003c/TASK\u003e\n\n Allocated by task 5387:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:47\n kasan_save_track+0x14/0x30 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:394\n kmalloc_noprof include/linux/slab.h:878 [inline]\n kzalloc_noprof include/linux/slab.h:1014 [inline]\n subflow_create_ctx+0x87/0x2a0 net/mptcp/subflow.c:1803\n subflow_ulp_init+0xc3/0x4d0 net/mptcp/subflow.c:1956\n __tcp_set_ulp net/ipv4/tcp_ulp.c:146 [inline]\n tcp_set_ulp+0x326/0x7f0 net/ipv4/tcp_ulp.c:167\n mptcp_subflow_create_socket+0x4ae/0x10a0 net/mptcp/subflow.c:1764\n __mptcp_subflow_connect+0x3cc/0x1490 net/mptcp/subflow.c:1592\n mptcp_pm_create_subflow_or_signal_addr+0xbda/0x23a0 net/mptcp/pm_netlink.c:642\n mptcp_pm_nl_fully_established net/mptcp/pm_netlink.c:650 [inline]\n mptcp_pm_nl_work+0x3a1/0x4f0 net/mptcp/pm_netlink.c:943\n mptcp_worker+0x15a/0x1240 net/mptcp/protocol.c:2777\n process_one_work+0x958/0x1b30 kernel/workqueue.c:3229\n process_scheduled_works kernel/workqueue.c:3310 [inline]\n worker_thread+0x6c8/0xf00 kernel/workqueue.c:3391\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/ke\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50085",
"url": "https://www.suse.com/security/cve/CVE-2024-50085"
},
{
"category": "external",
"summary": "SUSE Bug 1232508 for CVE-2024-50085",
"url": "https://bugzilla.suse.com/1232508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50085"
},
{
"cve": "CVE-2024-50086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: fix user-after-free from session log off\n\nThere is racy issue between smb2 session log off and smb2 session setup.\nIt will cause user-after-free from session log off.\nThis add session_lock when setting SMB2_SESSION_EXPIRED and referece\ncount to session struct not to free session while it is being used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50086",
"url": "https://www.suse.com/security/cve/CVE-2024-50086"
},
{
"category": "external",
"summary": "SUSE Bug 1232521 for CVE-2024-50086",
"url": "https://bugzilla.suse.com/1232521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50086"
},
{
"cve": "CVE-2024-50087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix uninitialized pointer free on read_alloc_one_name() error\n\nThe function read_alloc_one_name() does not initialize the name field of\nthe passed fscrypt_str struct if kmalloc fails to allocate the\ncorresponding buffer. Thus, it is not guaranteed that\nfscrypt_str.name is initialized when freeing it.\n\nThis is a follow-up to the linked patch that fixes the remaining\ninstances of the bug introduced by commit e43eec81c516 (\"btrfs: use\nstruct qstr instead of name and namelen pairs\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50087",
"url": "https://www.suse.com/security/cve/CVE-2024-50087"
},
{
"category": "external",
"summary": "SUSE Bug 1232499 for CVE-2024-50087",
"url": "https://bugzilla.suse.com/1232499"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50087"
},
{
"cve": "CVE-2024-50088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix uninitialized pointer free in add_inode_ref()\n\nThe add_inode_ref() function does not initialize the \"name\" struct when\nit is declared. If any of the following calls to \"read_one_inode()\nreturns NULL,\n\n\tdir = read_one_inode(root, parent_objectid);\n\tif (!dir) {\n\t\tret = -ENOENT;\n\t\tgoto out;\n\t}\n\n\tinode = read_one_inode(root, inode_objectid);\n\tif (!inode) {\n\t\tret = -EIO;\n\t\tgoto out;\n\t}\n\nthen \"name.name\" would be freed on \"out\" before being initialized.\n\nout:\n\t...\n\tkfree(name.name);\n\nThis issue was reported by Coverity with CID 1526744.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50088",
"url": "https://www.suse.com/security/cve/CVE-2024-50088"
},
{
"category": "external",
"summary": "SUSE Bug 1232498 for CVE-2024-50088",
"url": "https://bugzilla.suse.com/1232498"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50088"
},
{
"cve": "CVE-2024-50089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50089"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50089",
"url": "https://www.suse.com/security/cve/CVE-2024-50089"
},
{
"category": "external",
"summary": "SUSE Bug 1232860 for CVE-2024-50089",
"url": "https://bugzilla.suse.com/1232860"
},
{
"category": "external",
"summary": "SUSE Bug 1233250 for CVE-2024-50089",
"url": "https://bugzilla.suse.com/1233250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50089"
},
{
"cve": "CVE-2024-50090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Fix overflow in oa batch buffer\n\nBy default xe_bb_create_job() appends a MI_BATCH_BUFFER_END to batch\nbuffer, this is not a problem if batch buffer is only used once but\noa reuses the batch buffer for the same metric and at each call\nit appends a MI_BATCH_BUFFER_END, printing the warning below and then\noverflowing.\n\n[ 381.072016] ------------[ cut here ]------------\n[ 381.072019] xe 0000:00:02.0: [drm] Assertion `bb-\u003elen * 4 + bb_prefetch(q-\u003egt) \u003c= size` failed!\n platform: LUNARLAKE subplatform: 1\n graphics: Xe2_LPG / Xe2_HPG 20.04 step B0\n media: Xe2_LPM / Xe2_HPM 20.00 step B0\n tile: 0 VRAM 0 B\n GT: 0 type 1\n\nSo here checking if batch buffer already have MI_BATCH_BUFFER_END if\nnot append it.\n\nv2:\n- simply fix, suggestion from Ashutosh\n\n(cherry picked from commit 9ba0e0f30ca42a98af3689460063edfb6315718a)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50090",
"url": "https://www.suse.com/security/cve/CVE-2024-50090"
},
{
"category": "external",
"summary": "SUSE Bug 1232862 for CVE-2024-50090",
"url": "https://bugzilla.suse.com/1232862"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50090"
},
{
"cve": "CVE-2024-50091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm vdo: don\u0027t refer to dedupe_context after releasing it\n\nClear the dedupe_context pointer in a data_vio whenever ownership of\nthe context is lost, so that vdo can\u0027t examine it accidentally.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50091",
"url": "https://www.suse.com/security/cve/CVE-2024-50091"
},
{
"category": "external",
"summary": "SUSE Bug 1232872 for CVE-2024-50091",
"url": "https://bugzilla.suse.com/1232872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50091"
},
{
"cve": "CVE-2024-50092",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50092"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netconsole: fix wrong warning\n\nA warning is triggered when there is insufficient space in the buffer\nfor userdata. However, this is not an issue since userdata will be sent\nin the next iteration.\n\nCurrent warning message:\n\n ------------[ cut here ]------------\n WARNING: CPU: 13 PID: 3013042 at drivers/net/netconsole.c:1122 write_ext_msg+0x3b6/0x3d0\n ? write_ext_msg+0x3b6/0x3d0\n console_flush_all+0x1e9/0x330\n\nThe code incorrectly issues a warning when this_chunk is zero, which is\na valid scenario. The warning should only be triggered when this_chunk\nis negative.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50092",
"url": "https://www.suse.com/security/cve/CVE-2024-50092"
},
{
"category": "external",
"summary": "SUSE Bug 1232874 for CVE-2024-50092",
"url": "https://bugzilla.suse.com/1232874"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50092"
},
{
"cve": "CVE-2024-50093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: intel: int340x: processor: Fix warning during module unload\n\nThe processor_thermal driver uses pcim_device_enable() to enable a PCI\ndevice, which means the device will be automatically disabled on driver\ndetach. Thus there is no need to call pci_disable_device() again on it.\n\nWith recent PCI device resource management improvements, e.g. commit\nf748a07a0b64 (\"PCI: Remove legacy pcim_release()\"), this problem is\nexposed and triggers the warining below.\n\n [ 224.010735] proc_thermal_pci 0000:00:04.0: disabling already-disabled device\n [ 224.010747] WARNING: CPU: 8 PID: 4442 at drivers/pci/pci.c:2250 pci_disable_device+0xe5/0x100\n ...\n [ 224.010844] Call Trace:\n [ 224.010845] \u003cTASK\u003e\n [ 224.010847] ? show_regs+0x6d/0x80\n [ 224.010851] ? __warn+0x8c/0x140\n [ 224.010854] ? pci_disable_device+0xe5/0x100\n [ 224.010856] ? report_bug+0x1c9/0x1e0\n [ 224.010859] ? handle_bug+0x46/0x80\n [ 224.010862] ? exc_invalid_op+0x1d/0x80\n [ 224.010863] ? asm_exc_invalid_op+0x1f/0x30\n [ 224.010867] ? pci_disable_device+0xe5/0x100\n [ 224.010869] ? pci_disable_device+0xe5/0x100\n [ 224.010871] ? kfree+0x21a/0x2b0\n [ 224.010873] pcim_disable_device+0x20/0x30\n [ 224.010875] devm_action_release+0x16/0x20\n [ 224.010878] release_nodes+0x47/0xc0\n [ 224.010880] devres_release_all+0x9f/0xe0\n [ 224.010883] device_unbind_cleanup+0x12/0x80\n [ 224.010885] device_release_driver_internal+0x1ca/0x210\n [ 224.010887] driver_detach+0x4e/0xa0\n [ 224.010889] bus_remove_driver+0x6f/0xf0\n [ 224.010890] driver_unregister+0x35/0x60\n [ 224.010892] pci_unregister_driver+0x44/0x90\n [ 224.010894] proc_thermal_pci_driver_exit+0x14/0x5f0 [processor_thermal_device_pci]\n ...\n [ 224.010921] ---[ end trace 0000000000000000 ]---\n\nRemove the excess pci_disable_device() calls.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50093",
"url": "https://www.suse.com/security/cve/CVE-2024-50093"
},
{
"category": "external",
"summary": "SUSE Bug 1232877 for CVE-2024-50093",
"url": "https://bugzilla.suse.com/1232877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50093"
},
{
"cve": "CVE-2024-50094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc: Don\u0027t invoke xdp_do_flush() from netpoll.\n\nYury reported a crash in the sfc driver originated from\nnetpoll_send_udp(). The netconsole sends a message and then netpoll\ninvokes the driver\u0027s NAPI function with a budget of zero. It is\ndedicated to allow driver to free TX resources, that it may have used\nwhile sending the packet.\n\nIn the netpoll case the driver invokes xdp_do_flush() unconditionally,\nleading to crash because bpf_net_context was never assigned.\n\nInvoke xdp_do_flush() only if budget is not zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50094",
"url": "https://www.suse.com/security/cve/CVE-2024-50094"
},
{
"category": "external",
"summary": "SUSE Bug 1232875 for CVE-2024-50094",
"url": "https://bugzilla.suse.com/1232875"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50094"
},
{
"cve": "CVE-2024-50095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mad: Improve handling of timed out WRs of mad agent\n\nCurrent timeout handler of mad agent acquires/releases mad_agent_priv\nlock for every timed out WRs. This causes heavy locking contention\nwhen higher no. of WRs are to be handled inside timeout handler.\n\nThis leads to softlockup with below trace in some use cases where\nrdma-cm path is used to establish connection between peer nodes\n\nTrace:\n-----\n BUG: soft lockup - CPU#4 stuck for 26s! [kworker/u128:3:19767]\n CPU: 4 PID: 19767 Comm: kworker/u128:3 Kdump: loaded Tainted: G OE\n ------- --- 5.14.0-427.13.1.el9_4.x86_64 #1\n Hardware name: Dell Inc. PowerEdge R740/01YM03, BIOS 2.4.8 11/26/2019\n Workqueue: ib_mad1 timeout_sends [ib_core]\n RIP: 0010:__do_softirq+0x78/0x2ac\n RSP: 0018:ffffb253449e4f98 EFLAGS: 00000246\n RAX: 00000000ffffffff RBX: 0000000000000000 RCX: 000000000000001f\n RDX: 000000000000001d RSI: 000000003d1879ab RDI: fff363b66fd3a86b\n RBP: ffffb253604cbcd8 R08: 0000009065635f3b R09: 0000000000000000\n R10: 0000000000000040 R11: ffffb253449e4ff8 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000040\n FS: 0000000000000000(0000) GS:ffff8caa1fc80000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fd9ec9db900 CR3: 0000000891934006 CR4: 00000000007706e0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cIRQ\u003e\n ? show_trace_log_lvl+0x1c4/0x2df\n ? show_trace_log_lvl+0x1c4/0x2df\n ? __irq_exit_rcu+0xa1/0xc0\n ? watchdog_timer_fn+0x1b2/0x210\n ? __pfx_watchdog_timer_fn+0x10/0x10\n ? __hrtimer_run_queues+0x127/0x2c0\n ? hrtimer_interrupt+0xfc/0x210\n ? __sysvec_apic_timer_interrupt+0x5c/0x110\n ? sysvec_apic_timer_interrupt+0x37/0x90\n ? asm_sysvec_apic_timer_interrupt+0x16/0x20\n ? __do_softirq+0x78/0x2ac\n ? __do_softirq+0x60/0x2ac\n __irq_exit_rcu+0xa1/0xc0\n sysvec_call_function_single+0x72/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_call_function_single+0x16/0x20\n RIP: 0010:_raw_spin_unlock_irq+0x14/0x30\n RSP: 0018:ffffb253604cbd88 EFLAGS: 00000247\n RAX: 000000000001960d RBX: 0000000000000002 RCX: ffff8cad2a064800\n RDX: 000000008020001b RSI: 0000000000000001 RDI: ffff8cad5d39f66c\n RBP: ffff8cad5d39f600 R08: 0000000000000001 R09: 0000000000000000\n R10: ffff8caa443e0c00 R11: ffffb253604cbcd8 R12: ffff8cacb8682538\n R13: 0000000000000005 R14: ffffb253604cbd90 R15: ffff8cad5d39f66c\n cm_process_send_error+0x122/0x1d0 [ib_cm]\n timeout_sends+0x1dd/0x270 [ib_core]\n process_one_work+0x1e2/0x3b0\n ? __pfx_worker_thread+0x10/0x10\n worker_thread+0x50/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xdd/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x29/0x50\n \u003c/TASK\u003e\n\nSimplified timeout handler by creating local list of timed out WRs\nand invoke send handler post creating the list. The new method acquires/\nreleases lock once to fetch the list and hence helps to reduce locking\ncontetiong when processing higher no. of WRs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50095",
"url": "https://www.suse.com/security/cve/CVE-2024-50095"
},
{
"category": "external",
"summary": "SUSE Bug 1232873 for CVE-2024-50095",
"url": "https://bugzilla.suse.com/1232873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50095"
},
{
"cve": "CVE-2024-50096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error\n\nThe `nouveau_dmem_copy_one` function ensures that the copy push command is\nsent to the device firmware but does not track whether it was executed\nsuccessfully.\n\nIn the case of a copy error (e.g., firmware or hardware failure), the\ncopy push command will be sent via the firmware channel, and\n`nouveau_dmem_copy_one` will likely report success, leading to the\n`migrate_to_ram` function returning a dirty HIGH_USER page to the user.\n\nThis can result in a security vulnerability, as a HIGH_USER page that may\ncontain sensitive or corrupted data could be returned to the user.\n\nTo prevent this vulnerability, we allocate a zero page. Thus, in case of\nan error, a non-dirty (zero) page will be returned to the user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50096",
"url": "https://www.suse.com/security/cve/CVE-2024-50096"
},
{
"category": "external",
"summary": "SUSE Bug 1232870 for CVE-2024-50096",
"url": "https://bugzilla.suse.com/1232870"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50096"
},
{
"cve": "CVE-2024-50097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fec: don\u0027t save PTP state if PTP is unsupported\n\nSome platforms (such as i.MX25 and i.MX27) do not support PTP, so on\nthese platforms fec_ptp_init() is not called and the related members\nin fep are not initialized. However, fec_ptp_save_state() is called\nunconditionally, which causes the kernel to panic. Therefore, add a\ncondition so that fec_ptp_save_state() is not called if PTP is not\nsupported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50097",
"url": "https://www.suse.com/security/cve/CVE-2024-50097"
},
{
"category": "external",
"summary": "SUSE Bug 1232871 for CVE-2024-50097",
"url": "https://bugzilla.suse.com/1232871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50097"
},
{
"cve": "CVE-2024-50098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down\n\nThere is a history of deadlock if reboot is performed at the beginning\nof booting. SDEV_QUIESCE was set for all LU\u0027s scsi_devices by UFS\nshutdown, and at that time the audio driver was waiting on\nblk_mq_submit_bio() holding a mutex_lock while reading the fw binary.\nAfter that, a deadlock issue occurred while audio driver shutdown was\nwaiting for mutex_unlock of blk_mq_submit_bio(). To solve this, set\nSDEV_OFFLINE for all LUs except WLUN, so that any I/O that comes down\nafter a UFS shutdown will return an error.\n\n[ 31.907781]I[0: swapper/0: 0] 1 130705007 1651079834 11289729804 0 D( 2) 3 ffffff882e208000 * init [device_shutdown]\n[ 31.907793]I[0: swapper/0: 0] Mutex: 0xffffff8849a2b8b0: owner[0xffffff882e28cb00 kworker/6:0 :49]\n[ 31.907806]I[0: swapper/0: 0] Call trace:\n[ 31.907810]I[0: swapper/0: 0] __switch_to+0x174/0x338\n[ 31.907819]I[0: swapper/0: 0] __schedule+0x5ec/0x9cc\n[ 31.907826]I[0: swapper/0: 0] schedule+0x7c/0xe8\n[ 31.907834]I[0: swapper/0: 0] schedule_preempt_disabled+0x24/0x40\n[ 31.907842]I[0: swapper/0: 0] __mutex_lock+0x408/0xdac\n[ 31.907849]I[0: swapper/0: 0] __mutex_lock_slowpath+0x14/0x24\n[ 31.907858]I[0: swapper/0: 0] mutex_lock+0x40/0xec\n[ 31.907866]I[0: swapper/0: 0] device_shutdown+0x108/0x280\n[ 31.907875]I[0: swapper/0: 0] kernel_restart+0x4c/0x11c\n[ 31.907883]I[0: swapper/0: 0] __arm64_sys_reboot+0x15c/0x280\n[ 31.907890]I[0: swapper/0: 0] invoke_syscall+0x70/0x158\n[ 31.907899]I[0: swapper/0: 0] el0_svc_common+0xb4/0xf4\n[ 31.907909]I[0: swapper/0: 0] do_el0_svc+0x2c/0xb0\n[ 31.907918]I[0: swapper/0: 0] el0_svc+0x34/0xe0\n[ 31.907928]I[0: swapper/0: 0] el0t_64_sync_handler+0x68/0xb4\n[ 31.907937]I[0: swapper/0: 0] el0t_64_sync+0x1a0/0x1a4\n\n[ 31.908774]I[0: swapper/0: 0] 49 0 11960702 11236868007 0 D( 2) 6 ffffff882e28cb00 * kworker/6:0 [__bio_queue_enter]\n[ 31.908783]I[0: swapper/0: 0] Call trace:\n[ 31.908788]I[0: swapper/0: 0] __switch_to+0x174/0x338\n[ 31.908796]I[0: swapper/0: 0] __schedule+0x5ec/0x9cc\n[ 31.908803]I[0: swapper/0: 0] schedule+0x7c/0xe8\n[ 31.908811]I[0: swapper/0: 0] __bio_queue_enter+0xb8/0x178\n[ 31.908818]I[0: swapper/0: 0] blk_mq_submit_bio+0x194/0x67c\n[ 31.908827]I[0: swapper/0: 0] __submit_bio+0xb8/0x19c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50098",
"url": "https://www.suse.com/security/cve/CVE-2024-50098"
},
{
"category": "external",
"summary": "SUSE Bug 1232881 for CVE-2024-50098",
"url": "https://bugzilla.suse.com/1232881"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50098"
},
{
"cve": "CVE-2024-50099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: probes: Remove broken LDR (literal) uprobe support\n\nThe simulate_ldr_literal() and simulate_ldrsw_literal() functions are\nunsafe to use for uprobes. Both functions were originally written for\nuse with kprobes, and access memory with plain C accesses. When uprobes\nwas added, these were reused unmodified even though they cannot safely\naccess user memory.\n\nThere are three key problems:\n\n1) The plain C accesses do not have corresponding extable entries, and\n thus if they encounter a fault the kernel will treat these as\n unintentional accesses to user memory, resulting in a BUG() which\n will kill the kernel thread, and likely lead to further issues (e.g.\n lockup or panic()).\n\n2) The plain C accesses are subject to HW PAN and SW PAN, and so when\n either is in use, any attempt to simulate an access to user memory\n will fault. Thus neither simulate_ldr_literal() nor\n simulate_ldrsw_literal() can do anything useful when simulating a\n user instruction on any system with HW PAN or SW PAN.\n\n3) The plain C accesses are privileged, as they run in kernel context,\n and in practice can access a small range of kernel virtual addresses.\n The instructions they simulate have a range of +/-1MiB, and since the\n simulated instructions must itself be a user instructions in the\n TTBR0 address range, these can address the final 1MiB of the TTBR1\n acddress range by wrapping downwards from an address in the first\n 1MiB of the TTBR0 address range.\n\n In contemporary kernels the last 8MiB of TTBR1 address range is\n reserved, and accesses to this will always fault, meaning this is no\n worse than (1).\n\n Historically, it was theoretically possible for the linear map or\n vmemmap to spill into the final 8MiB of the TTBR1 address range, but\n in practice this is extremely unlikely to occur as this would\n require either:\n\n * Having enough physical memory to fill the entire linear map all the\n way to the final 1MiB of the TTBR1 address range.\n\n * Getting unlucky with KASLR randomization of the linear map such\n that the populated region happens to overlap with the last 1MiB of\n the TTBR address range.\n\n ... and in either case if we were to spill into the final page there\n would be larger problems as the final page would alias with error\n pointers.\n\nPractically speaking, (1) and (2) are the big issues. Given there have\nbeen no reports of problems since the broken code was introduced, it\nappears that no-one is relying on probing these instructions with\nuprobes.\n\nAvoid these issues by not allowing uprobes on LDR (literal) and LDRSW\n(literal), limiting the use of simulate_ldr_literal() and\nsimulate_ldrsw_literal() to kprobes. Attempts to place uprobes on LDR\n(literal) and LDRSW (literal) will be rejected as\narm_probe_decode_insn() will return INSN_REJECTED. In future we can\nconsider introducing working uprobes support for these instructions, but\nthis will require more significant work.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50099",
"url": "https://www.suse.com/security/cve/CVE-2024-50099"
},
{
"category": "external",
"summary": "SUSE Bug 1232887 for CVE-2024-50099",
"url": "https://bugzilla.suse.com/1232887"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50099"
},
{
"cve": "CVE-2024-50100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: gadget: dummy-hcd: Fix \"task hung\" problem\n\nThe syzbot fuzzer has been encountering \"task hung\" problems ever\nsince the dummy-hcd driver was changed to use hrtimers instead of\nregular timers. It turns out that the problems are caused by a subtle\ndifference between the timer_pending() and hrtimer_active() APIs.\n\nThe changeover blindly replaced the first by the second. However,\ntimer_pending() returns True when the timer is queued but not when its\ncallback is running, whereas hrtimer_active() returns True when the\nhrtimer is queued _or_ its callback is running. This difference\noccasionally caused dummy_urb_enqueue() to think that the callback\nroutine had not yet started when in fact it was almost finished. As a\nresult the hrtimer was not restarted, which made it impossible for the\ndriver to dequeue later the URB that was just enqueued. This caused\nusb_kill_urb() to hang, and things got worse from there.\n\nSince hrtimers have no API for telling when they are queued and the\ncallback isn\u0027t running, the driver must keep track of this for itself.\nThat\u0027s what this patch does, adding a new \"timer_pending\" flag and\nsetting or clearing it at the appropriate times.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50100",
"url": "https://www.suse.com/security/cve/CVE-2024-50100"
},
{
"category": "external",
"summary": "SUSE Bug 1232876 for CVE-2024-50100",
"url": "https://bugzilla.suse.com/1232876"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50100"
},
{
"cve": "CVE-2024-50101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices\n\nPreviously, the domain_context_clear() function incorrectly called\npci_for_each_dma_alias() to set up context entries for non-PCI devices.\nThis could lead to kernel hangs or other unexpected behavior.\n\nAdd a check to only call pci_for_each_dma_alias() for PCI devices. For\nnon-PCI devices, domain_context_clear_one() is called directly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50101",
"url": "https://www.suse.com/security/cve/CVE-2024-50101"
},
{
"category": "external",
"summary": "SUSE Bug 1232869 for CVE-2024-50101",
"url": "https://bugzilla.suse.com/1232869"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50101"
},
{
"cve": "CVE-2024-50102",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50102"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86: fix user address masking non-canonical speculation issue\n\nIt turns out that AMD has a \"Meltdown Lite(tm)\" issue with non-canonical\naccesses in kernel space. And so using just the high bit to decide\nwhether an access is in user space or kernel space ends up with the good\nold \"leak speculative data\" if you have the right gadget using the\nresult:\n\n CVE-2020-12965 \"Transient Execution of Non-Canonical Accesses\"\n\nNow, the kernel surrounds the access with a STAC/CLAC pair, and those\ninstructions end up serializing execution on older Zen architectures,\nwhich closes the speculation window.\n\nBut that was true only up until Zen 5, which renames the AC bit [1].\nThat improves performance of STAC/CLAC a lot, but also means that the\nspeculation window is now open.\n\nNote that this affects not just the new address masking, but also the\nregular valid_user_address() check used by access_ok(), and the asm\nversion of the sign bit check in the get_user() helpers.\n\nIt does not affect put_user() or clear_user() variants, since there\u0027s no\nspeculative result to be used in a gadget for those operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50102",
"url": "https://www.suse.com/security/cve/CVE-2024-50102"
},
{
"category": "external",
"summary": "SUSE Bug 1232880 for CVE-2024-50102",
"url": "https://bugzilla.suse.com/1232880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50102"
},
{
"cve": "CVE-2024-50103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe()\n\nA devm_kzalloc() in asoc_qcom_lpass_cpu_platform_probe() could\npossibly return NULL pointer. NULL Pointer Dereference may be\ntriggerred without addtional check.\nAdd a NULL check for the returned pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50103",
"url": "https://www.suse.com/security/cve/CVE-2024-50103"
},
{
"category": "external",
"summary": "SUSE Bug 1232878 for CVE-2024-50103",
"url": "https://bugzilla.suse.com/1232878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50103"
},
{
"cve": "CVE-2024-50104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50104"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: qcom: sdm845: add missing soundwire runtime stream alloc\n\nDuring the migration of Soundwire runtime stream allocation from\nthe Qualcomm Soundwire controller to SoC\u0027s soundcard drivers the sdm845\nsoundcard was forgotten.\n\nAt this point any playback attempt or audio daemon startup, for instance\non sdm845-db845c (Qualcomm RB3 board), will result in stream pointer\nNULL dereference:\n\n Unable to handle kernel NULL pointer dereference at virtual\n address 0000000000000020\n Mem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\n Data abort info:\n ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n user pgtable: 4k pages, 48-bit VAs, pgdp=0000000101ecf000\n [0000000000000020] pgd=0000000000000000, p4d=0000000000000000\n Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n Modules linked in: ...\n CPU: 5 UID: 0 PID: 1198 Comm: aplay\n Not tainted 6.12.0-rc2-qcomlt-arm64-00059-g9d78f315a362-dirty #18\n Hardware name: Thundercomm Dragonboard 845c (DT)\n pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : sdw_stream_add_slave+0x44/0x380 [soundwire_bus]\n lr : sdw_stream_add_slave+0x44/0x380 [soundwire_bus]\n sp : ffff80008a2035c0\n x29: ffff80008a2035c0 x28: ffff80008a203978 x27: 0000000000000000\n x26: 00000000000000c0 x25: 0000000000000000 x24: ffff1676025f4800\n x23: ffff167600ff1cb8 x22: ffff167600ff1c98 x21: 0000000000000003\n x20: ffff167607316000 x19: ffff167604e64e80 x18: 0000000000000000\n x17: 0000000000000000 x16: ffffcec265074160 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000\n x8 : 0000000000000000 x7 : 0000000000000000 x6 : ffff167600ff1cec\n x5 : ffffcec22cfa2010 x4 : 0000000000000000 x3 : 0000000000000003\n x2 : ffff167613f836c0 x1 : 0000000000000000 x0 : ffff16761feb60b8\n Call trace:\n sdw_stream_add_slave+0x44/0x380 [soundwire_bus]\n wsa881x_hw_params+0x68/0x80 [snd_soc_wsa881x]\n snd_soc_dai_hw_params+0x3c/0xa4\n __soc_pcm_hw_params+0x230/0x660\n dpcm_be_dai_hw_params+0x1d0/0x3f8\n dpcm_fe_dai_hw_params+0x98/0x268\n snd_pcm_hw_params+0x124/0x460\n snd_pcm_common_ioctl+0x998/0x16e8\n snd_pcm_ioctl+0x34/0x58\n __arm64_sys_ioctl+0xac/0xf8\n invoke_syscall+0x48/0x104\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xe0\n el0t_64_sync_handler+0x120/0x12c\n el0t_64_sync+0x190/0x194\n Code: aa0403fb f9418400 9100e000 9400102f (f8420f22)\n ---[ end trace 0000000000000000 ]---\n\n0000000000006108 \u003csdw_stream_add_slave\u003e:\n 6108: d503233f paciasp\n 610c: a9b97bfd stp x29, x30, [sp, #-112]!\n 6110: 910003fd mov x29, sp\n 6114: a90153f3 stp x19, x20, [sp, #16]\n 6118: a9025bf5 stp x21, x22, [sp, #32]\n 611c: aa0103f6 mov x22, x1\n 6120: 2a0303f5 mov w21, w3\n 6124: a90363f7 stp x23, x24, [sp, #48]\n 6128: aa0003f8 mov x24, x0\n 612c: aa0203f7 mov x23, x2\n 6130: a9046bf9 stp x25, x26, [sp, #64]\n 6134: aa0403f9 mov x25, x4 \u003c-- x4 copied to x25\n 6138: a90573fb stp x27, x28, [sp, #80]\n 613c: aa0403fb mov x27, x4\n 6140: f9418400 ldr x0, [x0, #776]\n 6144: 9100e000 add x0, x0, #0x38\n 6148: 94000000 bl 0 \u003cmutex_lock\u003e\n 614c: f8420f22 ldr x2, [x25, #32]! \u003c-- offset 0x44\n ^^^\nThis is 0x6108 + offset 0x44 from the beginning of sdw_stream_add_slave()\nwhere data abort happens.\nwsa881x_hw_params() is called with stream = NULL and passes it further\nin register x4 (5th argu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50104",
"url": "https://www.suse.com/security/cve/CVE-2024-50104"
},
{
"category": "external",
"summary": "SUSE Bug 1232868 for CVE-2024-50104",
"url": "https://bugzilla.suse.com/1232868"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50104"
},
{
"cve": "CVE-2024-50105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc\n\nCommit 15c7fab0e047 (\"ASoC: qcom: Move Soundwire runtime stream alloc to\nsoundcards\") moved the allocation of Soundwire stream runtime from the\nQualcomm Soundwire driver to each individual machine sound card driver,\nexcept that it forgot to update SC7280 card.\n\nJust like for other Qualcomm sound cards using Soundwire, the card\ndriver should allocate and release the runtime. Otherwise sound\nplayback will result in a NULL pointer dereference or other effect of\nuninitialized memory accesses (which was confirmed on SDM845 having\nsimilar issue).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50105",
"url": "https://www.suse.com/security/cve/CVE-2024-50105"
},
{
"category": "external",
"summary": "SUSE Bug 1232879 for CVE-2024-50105",
"url": "https://bugzilla.suse.com/1232879"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50105"
},
{
"cve": "CVE-2024-50106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix race between laundromat and free_stateid\n\nThere is a race between laundromat handling of revoked delegations\nand a client sending free_stateid operation. Laundromat thread\nfinds that delegation has expired and needs to be revoked so it\nmarks the delegation stid revoked and it puts it on a reaper list\nbut then it unlock the state lock and the actual delegation revocation\nhappens without the lock. Once the stid is marked revoked a racing\nfree_stateid processing thread does the following (1) it calls\nlist_del_init() which removes it from the reaper list and (2) frees\nthe delegation stid structure. The laundromat thread ends up not\ncalling the revoke_delegation() function for this particular delegation\nbut that means it will no release the lock lease that exists on\nthe file.\n\nNow, a new open for this file comes in and ends up finding that\nlease list isn\u0027t empty and calls nfsd_breaker_owns_lease() which ends\nup trying to derefence a freed delegation stateid. Leading to the\nfollowint use-after-free KASAN warning:\n\nkernel: ==================================================================\nkernel: BUG: KASAN: slab-use-after-free in nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: Read of size 8 at addr ffff0000e73cd0c8 by task nfsd/6205\nkernel:\nkernel: CPU: 2 UID: 0 PID: 6205 Comm: nfsd Kdump: loaded Not tainted 6.11.0-rc7+ #9\nkernel: Hardware name: Apple Inc. Apple Virtualization Generic Platform, BIOS 2069.0.0.0.0 08/03/2024\nkernel: Call trace:\nkernel: dump_backtrace+0x98/0x120\nkernel: show_stack+0x1c/0x30\nkernel: dump_stack_lvl+0x80/0xe8\nkernel: print_address_description.constprop.0+0x84/0x390\nkernel: print_report+0xa4/0x268\nkernel: kasan_report+0xb4/0xf8\nkernel: __asan_report_load8_noabort+0x1c/0x28\nkernel: nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: nfsd_file_do_acquire+0xb3c/0x11d0 [nfsd]\nkernel: nfsd_file_acquire_opened+0x84/0x110 [nfsd]\nkernel: nfs4_get_vfs_file+0x634/0x958 [nfsd]\nkernel: nfsd4_process_open2+0xa40/0x1a40 [nfsd]\nkernel: nfsd4_open+0xa08/0xe80 [nfsd]\nkernel: nfsd4_proc_compound+0xb8c/0x2130 [nfsd]\nkernel: nfsd_dispatch+0x22c/0x718 [nfsd]\nkernel: svc_process_common+0x8e8/0x1960 [sunrpc]\nkernel: svc_process+0x3d4/0x7e0 [sunrpc]\nkernel: svc_handle_xprt+0x828/0xe10 [sunrpc]\nkernel: svc_recv+0x2cc/0x6a8 [sunrpc]\nkernel: nfsd+0x270/0x400 [nfsd]\nkernel: kthread+0x288/0x310\nkernel: ret_from_fork+0x10/0x20\n\nThis patch proposes a fixed that\u0027s based on adding 2 new additional\nstid\u0027s sc_status values that help coordinate between the laundromat\nand other operations (nfsd4_free_stateid() and nfsd4_delegreturn()).\n\nFirst to make sure, that once the stid is marked revoked, it is not\nremoved by the nfsd4_free_stateid(), the laundromat take a reference\non the stateid. Then, coordinating whether the stid has been put\non the cl_revoked list or we are processing FREE_STATEID and need to\nmake sure to remove it from the list, each check that state and act\naccordingly. If laundromat has added to the cl_revoke list before\nthe arrival of FREE_STATEID, then nfsd4_free_stateid() knows to remove\nit from the list. If nfsd4_free_stateid() finds that operations arrived\nbefore laundromat has placed it on cl_revoke list, it marks the state\nfreed and then laundromat will no longer add it to the list.\n\nAlso, for nfsd4_delegreturn() when looking for the specified stid,\nwe need to access stid that are marked removed or freeable, it means\nthe laundromat has started processing it but hasn\u0027t finished and this\ndelegreturn needs to return nfserr_deleg_revoked and not\nnfserr_bad_stateid. The latter will not trigger a FREE_STATEID and the\nlack of it will leave this stid on the cl_revoked list indefinitely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50106",
"url": "https://www.suse.com/security/cve/CVE-2024-50106"
},
{
"category": "external",
"summary": "SUSE Bug 1232882 for CVE-2024-50106",
"url": "https://bugzilla.suse.com/1232882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50106"
},
{
"cve": "CVE-2024-50107",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50107"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/intel/pmc: Fix pmc_core_iounmap to call iounmap for valid addresses\n\nCommit 50c6dbdfd16e (\"x86/ioremap: Improve iounmap() address range checks\")\nintroduces a WARN when adrress ranges of iounmap are invalid. On Thinkpad\nP1 Gen 7 (Meteor Lake-P) this caused the following warning to appear:\n\nWARNING: CPU: 7 PID: 713 at arch/x86/mm/ioremap.c:461 iounmap+0x58/0x1f0\nModules linked in: rfkill(+) snd_timer(+) fjes(+) snd soundcore intel_pmc_core(+)\nint3403_thermal(+) int340x_thermal_zone intel_vsec pmt_telemetry acpi_pad pmt_class\nacpi_tad int3400_thermal acpi_thermal_rel joydev loop nfnetlink zram xe drm_suballoc_helper\nnouveau i915 mxm_wmi drm_ttm_helper gpu_sched drm_gpuvm drm_exec drm_buddy i2c_algo_bit\ncrct10dif_pclmul crc32_pclmul ttm crc32c_intel polyval_clmulni rtsx_pci_sdmmc ucsi_acpi\npolyval_generic mmc_core hid_multitouch drm_display_helper ghash_clmulni_intel typec_ucsi\nnvme sha512_ssse3 video sha256_ssse3 nvme_core intel_vpu sha1_ssse3 rtsx_pci cec typec\nnvme_auth i2c_hid_acpi i2c_hid wmi pinctrl_meteorlake serio_raw ip6_tables ip_tables fuse\nCPU: 7 UID: 0 PID: 713 Comm: (udev-worker) Not tainted 6.12.0-rc2iounmap+ #42\nHardware name: LENOVO 21KWCTO1WW/21KWCTO1WW, BIOS N48ET19W (1.06 ) 07/18/2024\nRIP: 0010:iounmap+0x58/0x1f0\nCode: 85 6a 01 00 00 48 8b 05 e6 e2 28 04 48 39 c5 72 19 eb 26 cc cc cc 48 ba 00 00 00 00 00 00 32 00 48 8d 44 02 ff 48 39 c5 72 23 \u003c0f\u003e 0b 48 83 c4 08 5b 5d 41 5c c3 cc cc cc cc 48 ba 00 00 00 00 00\nRSP: 0018:ffff888131eff038 EFLAGS: 00010207\nRAX: ffffc90000000000 RBX: 0000000000000000 RCX: ffff888e33b80000\nRDX: dffffc0000000000 RSI: ffff888e33bc29c0 RDI: 0000000000000000\nRBP: 0000000000000000 R08: ffff8881598a8000 R09: ffff888e2ccedc10\nR10: 0000000000000003 R11: ffffffffb3367634 R12: 00000000fe000000\nR13: ffff888101d0da28 R14: ffffffffc2e437e0 R15: ffff888110b03b28\nFS: 00007f3c1d4b3980(0000) GS:ffff888e33b80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005651cfc93578 CR3: 0000000124e4c002 CR4: 0000000000f70ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000ffff07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\n? __warn.cold+0xb6/0x176\n? iounmap+0x58/0x1f0\n? report_bug+0x1f4/0x2b0\n? handle_bug+0x58/0x90\n? exc_invalid_op+0x17/0x40\n? asm_exc_invalid_op+0x1a/0x20\n? iounmap+0x58/0x1f0\npmc_core_ssram_get_pmc+0x477/0x6c0 [intel_pmc_core]\n? __pfx_pmc_core_ssram_get_pmc+0x10/0x10 [intel_pmc_core]\n? __pfx_do_pci_enable_device+0x10/0x10\n? pci_wait_for_pending+0x60/0x110\n? pci_enable_device_flags+0x1e3/0x2e0\n? __pfx_mtl_core_init+0x10/0x10 [intel_pmc_core]\npmc_core_ssram_init+0x7f/0x110 [intel_pmc_core]\nmtl_core_init+0xda/0x130 [intel_pmc_core]\n? __mutex_init+0xb9/0x130\npmc_core_probe+0x27e/0x10b0 [intel_pmc_core]\n? _raw_spin_lock_irqsave+0x96/0xf0\n? __pfx_pmc_core_probe+0x10/0x10 [intel_pmc_core]\n? __pfx_mutex_unlock+0x10/0x10\n? __pfx_mutex_lock+0x10/0x10\n? device_pm_check_callbacks+0x82/0x370\n? acpi_dev_pm_attach+0x234/0x2b0\nplatform_probe+0x9f/0x150\nreally_probe+0x1e0/0x8a0\n__driver_probe_device+0x18c/0x370\n? __pfx___driver_attach+0x10/0x10\ndriver_probe_device+0x4a/0x120\n__driver_attach+0x190/0x4a0\n? __pfx___driver_attach+0x10/0x10\nbus_for_each_dev+0x103/0x180\n? __pfx_bus_for_each_dev+0x10/0x10\n? klist_add_tail+0x136/0x270\nbus_add_driver+0x2fc/0x540\ndriver_register+0x1a5/0x360\n? __pfx_pmc_core_driver_init+0x10/0x10 [intel_pmc_core]\ndo_one_initcall+0xa4/0x380\n? __pfx_do_one_initcall+0x10/0x10\n? kasan_unpoison+0x44/0x70\ndo_init_module+0x296/0x800\nload_module+0x5090/0x6ce0\n? __pfx_load_module+0x10/0x10\n? ima_post_read_file+0x193/0x200\n? __pfx_ima_post_read_file+0x10/0x10\n? rw_verify_area+0x152/0x4c0\n? kernel_read_file+0x257/0x750\n? __pfx_kernel_read_file+0x10/0x10\n? __pfx_filemap_get_read_batch+0x10/0x10\n? init_module_from_file+0xd1/0x130\ninit_module_from_file+0xd1/0x130\n? __pfx_init_module_from_file+0x10/0\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50107",
"url": "https://www.suse.com/security/cve/CVE-2024-50107"
},
{
"category": "external",
"summary": "SUSE Bug 1232883 for CVE-2024-50107",
"url": "https://bugzilla.suse.com/1232883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50107"
},
{
"cve": "CVE-2024-50108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Disable PSR-SU on Parade 08-01 TCON too\n\nStuart Hayhurst has found that both at bootup and fullscreen VA-API video\nis leading to black screens for around 1 second and kernel WARNING [1] traces\nwhen calling dmub_psr_enable() with Parade 08-01 TCON.\n\nThese symptoms all go away with PSR-SU disabled for this TCON, so disable\nit for now while DMUB traces [2] from the failure can be analyzed and the failure\nstate properly root caused.\n\n(cherry picked from commit afb634a6823d8d9db23c5fb04f79c5549349628b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50108",
"url": "https://www.suse.com/security/cve/CVE-2024-50108"
},
{
"category": "external",
"summary": "SUSE Bug 1232884 for CVE-2024-50108",
"url": "https://bugzilla.suse.com/1232884"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50108"
},
{
"cve": "CVE-2024-50109",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50109"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid10: fix null ptr dereference in raid10_size()\n\nIn raid10_run() if raid10_set_queue_limits() succeed, the return value\nis set to zero, and if following procedures failed raid10_run() will\nreturn zero while mddev-\u003eprivate is still NULL, causing null ptr\ndereference in raid10_size().\n\nFix the problem by only overwrite the return value if\nraid10_set_queue_limits() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50109",
"url": "https://www.suse.com/security/cve/CVE-2024-50109"
},
{
"category": "external",
"summary": "SUSE Bug 1232886 for CVE-2024-50109",
"url": "https://bugzilla.suse.com/1232886"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50109"
},
{
"cve": "CVE-2024-50110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50110"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: fix one more kernel-infoleak in algo dumping\n\nDuring fuzz testing, the following issue was discovered:\n\nBUG: KMSAN: kernel-infoleak in _copy_to_iter+0x598/0x2a30\n _copy_to_iter+0x598/0x2a30\n __skb_datagram_iter+0x168/0x1060\n skb_copy_datagram_iter+0x5b/0x220\n netlink_recvmsg+0x362/0x1700\n sock_recvmsg+0x2dc/0x390\n __sys_recvfrom+0x381/0x6d0\n __x64_sys_recvfrom+0x130/0x200\n x64_sys_call+0x32c8/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nUninit was stored to memory at:\n copy_to_user_state_extra+0xcc1/0x1e00\n dump_one_state+0x28c/0x5f0\n xfrm_state_walk+0x548/0x11e0\n xfrm_dump_sa+0x1e0/0x840\n netlink_dump+0x943/0x1c40\n __netlink_dump_start+0x746/0xdb0\n xfrm_user_rcv_msg+0x429/0xc00\n netlink_rcv_skb+0x613/0x780\n xfrm_netlink_rcv+0x77/0xc0\n netlink_unicast+0xe90/0x1280\n netlink_sendmsg+0x126d/0x1490\n __sock_sendmsg+0x332/0x3d0\n ____sys_sendmsg+0x863/0xc30\n ___sys_sendmsg+0x285/0x3e0\n __x64_sys_sendmsg+0x2d6/0x560\n x64_sys_call+0x1316/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nUninit was created at:\n __kmalloc+0x571/0xd30\n attach_auth+0x106/0x3e0\n xfrm_add_sa+0x2aa0/0x4230\n xfrm_user_rcv_msg+0x832/0xc00\n netlink_rcv_skb+0x613/0x780\n xfrm_netlink_rcv+0x77/0xc0\n netlink_unicast+0xe90/0x1280\n netlink_sendmsg+0x126d/0x1490\n __sock_sendmsg+0x332/0x3d0\n ____sys_sendmsg+0x863/0xc30\n ___sys_sendmsg+0x285/0x3e0\n __x64_sys_sendmsg+0x2d6/0x560\n x64_sys_call+0x1316/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nBytes 328-379 of 732 are uninitialized\nMemory access of size 732 starts at ffff88800e18e000\nData copied to user address 00007ff30f48aff0\n\nCPU: 2 PID: 18167 Comm: syz-executor.0 Not tainted 6.8.11 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n\nFixes copying of xfrm algorithms where some random\ndata of the structure fields can end up in userspace.\nPadding in structures may be filled with random (possibly sensitve)\ndata and should never be given directly to user-space.\n\nA similar issue was resolved in the commit\n8222d5910dae (\"xfrm: Zero padding when dumping algos and encap\")\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50110",
"url": "https://www.suse.com/security/cve/CVE-2024-50110"
},
{
"category": "external",
"summary": "SUSE Bug 1232885 for CVE-2024-50110",
"url": "https://bugzilla.suse.com/1232885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50110"
},
{
"cve": "CVE-2024-50111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Enable IRQ if do_ale() triggered in irq-enabled context\n\nUnaligned access exception can be triggered in irq-enabled context such\nas user mode, in this case do_ale() may call get_user() which may cause\nsleep. Then we will get:\n\n BUG: sleeping function called from invalid context at arch/loongarch/kernel/access-helper.h:7\n in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 129, name: modprobe\n preempt_count: 0, expected: 0\n RCU nest depth: 0, expected: 0\n CPU: 0 UID: 0 PID: 129 Comm: modprobe Tainted: G W 6.12.0-rc1+ #1723\n Tainted: [W]=WARN\n Stack : 9000000105e0bd48 0000000000000000 9000000003803944 9000000105e08000\n 9000000105e0bc70 9000000105e0bc78 0000000000000000 0000000000000000\n 9000000105e0bc78 0000000000000001 9000000185e0ba07 9000000105e0b890\n ffffffffffffffff 9000000105e0bc78 73924b81763be05b 9000000100194500\n 000000000000020c 000000000000000a 0000000000000000 0000000000000003\n 00000000000023f0 00000000000e1401 00000000072f8000 0000007ffbb0e260\n 0000000000000000 0000000000000000 9000000005437650 90000000055d5000\n 0000000000000000 0000000000000003 0000007ffbb0e1f0 0000000000000000\n 0000005567b00490 0000000000000000 9000000003803964 0000007ffbb0dfec\n 00000000000000b0 0000000000000007 0000000000000003 0000000000071c1d\n ...\n Call Trace:\n [\u003c9000000003803964\u003e] show_stack+0x64/0x1a0\n [\u003c9000000004c57464\u003e] dump_stack_lvl+0x74/0xb0\n [\u003c9000000003861ab4\u003e] __might_resched+0x154/0x1a0\n [\u003c900000000380c96c\u003e] emulate_load_store_insn+0x6c/0xf60\n [\u003c9000000004c58118\u003e] do_ale+0x78/0x180\n [\u003c9000000003801bc8\u003e] handle_ale+0x128/0x1e0\n\nSo enable IRQ if unaligned access exception is triggered in irq-enabled\ncontext to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50111",
"url": "https://www.suse.com/security/cve/CVE-2024-50111"
},
{
"category": "external",
"summary": "SUSE Bug 1232866 for CVE-2024-50111",
"url": "https://bugzilla.suse.com/1232866"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50111"
},
{
"cve": "CVE-2024-50112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/lam: Disable ADDRESS_MASKING in most cases\n\nLinear Address Masking (LAM) has a weakness related to transient\nexecution as described in the SLAM paper[1]. Unless Linear Address\nSpace Separation (LASS) is enabled this weakness may be exploitable.\n\nUntil kernel adds support for LASS[2], only allow LAM for COMPILE_TEST,\nor when speculation mitigations have been disabled at compile time,\notherwise keep LAM disabled.\n\nThere are no processors in market that support LAM yet, so currently\nnobody is affected by this issue.\n\n[1] SLAM: https://download.vusec.net/papers/slam_sp24.pdf\n[2] LASS: https://lore.kernel.org/lkml/20230609183632.48706-1-alexander.shishkin@linux.intel.com/\n\n[ dhansen: update SPECULATION_MITIGATIONS -\u003e CPU_MITIGATIONS ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50112",
"url": "https://www.suse.com/security/cve/CVE-2024-50112"
},
{
"category": "external",
"summary": "SUSE Bug 1232867 for CVE-2024-50112",
"url": "https://bugzilla.suse.com/1232867"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50112"
},
{
"cve": "CVE-2024-50113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirewire: core: fix invalid port index for parent device\n\nIn a commit 24b7f8e5cd65 (\"firewire: core: use helper functions for self\nID sequence\"), the enumeration over self ID sequence was refactored with\nsome helper functions with KUnit tests. These helper functions are\nguaranteed to work expectedly by the KUnit tests, however their application\nincludes a mistake to assign invalid value to the index of port connected\nto parent device.\n\nThis bug affects the case that any extra node devices which has three or\nmore ports are connected to 1394 OHCI controller. In the case, the path\nto update the tree cache could hits WARN_ON(), and gets general protection\nfault due to the access to invalid address computed by the invalid value.\n\nThis commit fixes the bug to assign correct port index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50113",
"url": "https://www.suse.com/security/cve/CVE-2024-50113"
},
{
"category": "external",
"summary": "SUSE Bug 1232891 for CVE-2024-50113",
"url": "https://bugzilla.suse.com/1232891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50113"
},
{
"cve": "CVE-2024-50114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Unregister redistributor for failed vCPU creation\n\nAlex reports that syzkaller has managed to trigger a use-after-free when\ntearing down a VM:\n\n BUG: KASAN: slab-use-after-free in kvm_put_kvm+0x300/0xe68 virt/kvm/kvm_main.c:5769\n Read of size 8 at addr ffffff801c6890d0 by task syz.3.2219/10758\n\n CPU: 3 UID: 0 PID: 10758 Comm: syz.3.2219 Not tainted 6.11.0-rc6-dirty #64\n Hardware name: linux,dummy-virt (DT)\n Call trace:\n dump_backtrace+0x17c/0x1a8 arch/arm64/kernel/stacktrace.c:317\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:324\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x94/0xc0 lib/dump_stack.c:119\n print_report+0x144/0x7a4 mm/kasan/report.c:377\n kasan_report+0xcc/0x128 mm/kasan/report.c:601\n __asan_report_load8_noabort+0x20/0x2c mm/kasan/report_generic.c:381\n kvm_put_kvm+0x300/0xe68 virt/kvm/kvm_main.c:5769\n kvm_vm_release+0x4c/0x60 virt/kvm/kvm_main.c:1409\n __fput+0x198/0x71c fs/file_table.c:422\n ____fput+0x20/0x30 fs/file_table.c:450\n task_work_run+0x1cc/0x23c kernel/task_work.c:228\n do_notify_resume+0x144/0x1a0 include/linux/resume_user_mode.h:50\n el0_svc+0x64/0x68 arch/arm64/kernel/entry-common.c:169\n el0t_64_sync_handler+0x90/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nUpon closer inspection, it appears that we do not properly tear down the\nMMIO registration for a vCPU that fails creation late in the game, e.g.\na vCPU w/ the same ID already exists in the VM.\n\nIt is important to consider the context of commit that introduced this bug\nby moving the unregistration out of __kvm_vgic_vcpu_destroy(). That\nchange correctly sought to avoid an srcu v. config_lock inversion by\nbreaking up the vCPU teardown into two parts, one guarded by the\nconfig_lock.\n\nFix the use-after-free while avoiding lock inversion by adding a\nspecial-cased unregistration to __kvm_vgic_vcpu_destroy(). This is safe\nbecause failed vCPUs are torn down outside of the config_lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50114",
"url": "https://www.suse.com/security/cve/CVE-2024-50114"
},
{
"category": "external",
"summary": "SUSE Bug 1232912 for CVE-2024-50114",
"url": "https://bugzilla.suse.com/1232912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50114"
},
{
"cve": "CVE-2024-50115",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50115"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory\n\nIgnore nCR3[4:0] when loading PDPTEs from memory for nested SVM, as bits\n4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn\u0027t\nenforce 32-byte alignment of nCR3.\n\nIn the absolute worst case scenario, failure to ignore bits 4:0 can result\nin an out-of-bounds read, e.g. if the target page is at the end of a\nmemslot, and the VMM isn\u0027t using guard pages.\n\nPer the APM:\n\n The CR3 register points to the base address of the page-directory-pointer\n table. The page-directory-pointer table is aligned on a 32-byte boundary,\n with the low 5 address bits 4:0 assumed to be 0.\n\nAnd the SDM\u0027s much more explicit:\n\n 4:0 Ignored\n\nNote, KVM gets this right when loading PDPTRs, it\u0027s only the nSVM flow\nthat is broken.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50115",
"url": "https://www.suse.com/security/cve/CVE-2024-50115"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232919 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1232919"
},
{
"category": "external",
"summary": "SUSE Bug 1233019 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1233019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50115"
},
{
"cve": "CVE-2024-50116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix kernel bug due to missing clearing of buffer delay flag\n\nSyzbot reported that after nilfs2 reads a corrupted file system image\nand degrades to read-only, the BUG_ON check for the buffer delay flag\nin submit_bh_wbc() may fail, causing a kernel bug.\n\nThis is because the buffer delay flag is not cleared when clearing the\nbuffer state flags to discard a page/folio or a buffer head. So, fix\nthis.\n\nThis became necessary when the use of nilfs2\u0027s own page clear routine\nwas expanded. This state inconsistency does not occur if the buffer\nis written normally by log writing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50116",
"url": "https://www.suse.com/security/cve/CVE-2024-50116"
},
{
"category": "external",
"summary": "SUSE Bug 1232892 for CVE-2024-50116",
"url": "https://bugzilla.suse.com/1232892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50116"
},
{
"cve": "CVE-2024-50117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd: Guard against bad data for ATIF ACPI method\n\nIf a BIOS provides bad data in response to an ATIF method call\nthis causes a NULL pointer dereference in the caller.\n\n```\n? show_regs (arch/x86/kernel/dumpstack.c:478 (discriminator 1))\n? __die (arch/x86/kernel/dumpstack.c:423 arch/x86/kernel/dumpstack.c:434)\n? page_fault_oops (arch/x86/mm/fault.c:544 (discriminator 2) arch/x86/mm/fault.c:705 (discriminator 2))\n? do_user_addr_fault (arch/x86/mm/fault.c:440 (discriminator 1) arch/x86/mm/fault.c:1232 (discriminator 1))\n? acpi_ut_update_object_reference (drivers/acpi/acpica/utdelete.c:642)\n? exc_page_fault (arch/x86/mm/fault.c:1542)\n? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n? amdgpu_atif_query_backlight_caps.constprop.0 (drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c:387 (discriminator 2)) amdgpu\n? amdgpu_atif_query_backlight_caps.constprop.0 (drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c:386 (discriminator 1)) amdgpu\n```\n\nIt has been encountered on at least one system, so guard for it.\n\n(cherry picked from commit c9b7c809b89f24e9372a4e7f02d64c950b07fdee)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50117",
"url": "https://www.suse.com/security/cve/CVE-2024-50117"
},
{
"category": "external",
"summary": "SUSE Bug 1232897 for CVE-2024-50117",
"url": "https://bugzilla.suse.com/1232897"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50117"
},
{
"cve": "CVE-2024-50118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: reject ro-\u003erw reconfiguration if there are hard ro requirements\n\n[BUG]\nSyzbot reports the following crash:\n\n BTRFS info (device loop0 state MCS): disabling free space tree\n BTRFS info (device loop0 state MCS): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)\n BTRFS info (device loop0 state MCS): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)\n Oops: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN NOPTI\n KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f]\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:backup_super_roots fs/btrfs/disk-io.c:1691 [inline]\n RIP: 0010:write_all_supers+0x97a/0x40f0 fs/btrfs/disk-io.c:4041\n Call Trace:\n \u003cTASK\u003e\n btrfs_commit_transaction+0x1eae/0x3740 fs/btrfs/transaction.c:2530\n btrfs_delete_free_space_tree+0x383/0x730 fs/btrfs/free-space-tree.c:1312\n btrfs_start_pre_rw_mount+0xf28/0x1300 fs/btrfs/disk-io.c:3012\n btrfs_remount_rw fs/btrfs/super.c:1309 [inline]\n btrfs_reconfigure+0xae6/0x2d40 fs/btrfs/super.c:1534\n btrfs_reconfigure_for_mount fs/btrfs/super.c:2020 [inline]\n btrfs_get_tree_subvol fs/btrfs/super.c:2079 [inline]\n btrfs_get_tree+0x918/0x1920 fs/btrfs/super.c:2115\n vfs_get_tree+0x90/0x2b0 fs/super.c:1800\n do_new_mount+0x2be/0xb40 fs/namespace.c:3472\n do_mount fs/namespace.c:3812 [inline]\n __do_sys_mount fs/namespace.c:4020 [inline]\n __se_sys_mount+0x2d6/0x3c0 fs/namespace.c:3997\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[CAUSE]\nTo support mounting different subvolume with different RO/RW flags for\nthe new mount APIs, btrfs introduced two workaround to support this feature:\n\n- Skip mount option/feature checks if we are mounting a different\n subvolume\n\n- Reconfigure the fs to RW if the initial mount is RO\n\nCombining these two, we can have the following sequence:\n\n- Mount the fs ro,rescue=all,clear_cache,space_cache=v1\n rescue=all will mark the fs as hard read-only, so no v2 cache clearing\n will happen.\n\n- Mount a subvolume rw of the same fs.\n We go into btrfs_get_tree_subvol(), but fc_mount() returns EBUSY\n because our new fc is RW, different from the original fs.\n\n Now we enter btrfs_reconfigure_for_mount(), which switches the RO flag\n first so that we can grab the existing fs_info.\n Then we reconfigure the fs to RW.\n\n- During reconfiguration, option/features check is skipped\n This means we will restart the v2 cache clearing, and convert back to\n v1 cache.\n This will trigger fs writes, and since the original fs has \"rescue=all\"\n option, it skips the csum tree read.\n\n And eventually causing NULL pointer dereference in super block\n writeback.\n\n[FIX]\nFor reconfiguration caused by different subvolume RO/RW flags, ensure we\nalways run btrfs_check_options() to ensure we have proper hard RO\nrequirements met.\n\nIn fact the function btrfs_check_options() doesn\u0027t really do many\ncomplex checks, but hard RO requirement and some feature dependency\nchecks, thus there is no special reason not to do the check for mount\nreconfiguration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50118",
"url": "https://www.suse.com/security/cve/CVE-2024-50118"
},
{
"category": "external",
"summary": "SUSE Bug 1232859 for CVE-2024-50118",
"url": "https://bugzilla.suse.com/1232859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50118"
},
{
"cve": "CVE-2024-50119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix warning when destroy \u0027cifs_io_request_pool\u0027\n\nThere\u0027s a issue as follows:\nWARNING: CPU: 1 PID: 27826 at mm/slub.c:4698 free_large_kmalloc+0xac/0xe0\nRIP: 0010:free_large_kmalloc+0xac/0xe0\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0xea/0x330\n mempool_destroy+0x13f/0x1d0\n init_cifs+0xa50/0xff0 [cifs]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nObviously, \u0027cifs_io_request_pool\u0027 is not created by mempool_create().\nSo just use mempool_exit() to revert \u0027cifs_io_request_pool\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50119",
"url": "https://www.suse.com/security/cve/CVE-2024-50119"
},
{
"category": "external",
"summary": "SUSE Bug 1232858 for CVE-2024-50119",
"url": "https://bugzilla.suse.com/1232858"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50119"
},
{
"cve": "CVE-2024-50120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Handle kstrdup failures for passwords\n\nIn smb3_reconfigure(), after duplicating ctx-\u003epassword and\nctx-\u003epassword2 with kstrdup(), we need to check for allocation\nfailures.\n\nIf ses-\u003epassword allocation fails, return -ENOMEM.\nIf ses-\u003epassword2 allocation fails, free ses-\u003epassword, set it\nto NULL, and return -ENOMEM.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50120",
"url": "https://www.suse.com/security/cve/CVE-2024-50120"
},
{
"category": "external",
"summary": "SUSE Bug 1232924 for CVE-2024-50120",
"url": "https://bugzilla.suse.com/1232924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50120"
},
{
"cve": "CVE-2024-50121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50121"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net\n\nIn the normal case, when we excute `echo 0 \u003e /proc/fs/nfsd/threads`, the\nfunction `nfs4_state_destroy_net` in `nfs4_state_shutdown_net` will\nrelease all resources related to the hashed `nfs4_client`. If the\n`nfsd_client_shrinker` is running concurrently, the `expire_client`\nfunction will first unhash this client and then destroy it. This can\nlead to the following warning. Additionally, numerous use-after-free\nerrors may occur as well.\n\nnfsd_client_shrinker echo 0 \u003e /proc/fs/nfsd/threads\n\nexpire_client nfsd_shutdown_net\n unhash_client ...\n nfs4_state_shutdown_net\n /* won\u0027t wait shrinker exit */\n /* cancel_work(\u0026nn-\u003enfsd_shrinker_work)\n * nfsd_file for this /* won\u0027t destroy unhashed client1 */\n * client1 still alive nfs4_state_destroy_net\n */\n\n nfsd_file_cache_shutdown\n /* trigger warning */\n kmem_cache_destroy(nfsd_file_slab)\n kmem_cache_destroy(nfsd_file_mark_slab)\n /* release nfsd_file and mark */\n __destroy_client\n\n====================================================================\nBUG nfsd_file (Not tainted): Objects remaining in nfsd_file on\n__kmem_cache_shutdown()\n--------------------------------------------------------------------\nCPU: 4 UID: 0 PID: 764 Comm: sh Not tainted 6.12.0-rc3+ #1\n\n dump_stack_lvl+0x53/0x70\n slab_err+0xb0/0xf0\n __kmem_cache_shutdown+0x15c/0x310\n kmem_cache_destroy+0x66/0x160\n nfsd_file_cache_shutdown+0xac/0x210 [nfsd]\n nfsd_destroy_serv+0x251/0x2a0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n====================================================================\nBUG nfsd_file_mark (Tainted: G B W ): Objects remaining\nnfsd_file_mark on __kmem_cache_shutdown()\n--------------------------------------------------------------------\n\n dump_stack_lvl+0x53/0x70\n slab_err+0xb0/0xf0\n __kmem_cache_shutdown+0x15c/0x310\n kmem_cache_destroy+0x66/0x160\n nfsd_file_cache_shutdown+0xc8/0x210 [nfsd]\n nfsd_destroy_serv+0x251/0x2a0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nTo resolve this issue, cancel `nfsd_shrinker_work` using synchronous\nmode in nfs4_state_shutdown_net.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50121",
"url": "https://www.suse.com/security/cve/CVE-2024-50121"
},
{
"category": "external",
"summary": "SUSE Bug 1232925 for CVE-2024-50121",
"url": "https://bugzilla.suse.com/1232925"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50121"
},
{
"cve": "CVE-2024-50122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Hold rescan lock while adding devices during host probe\n\nSince adding the PCI power control code, we may end up with a race between\nthe pwrctl platform device rescanning the bus and host controller probe\nfunctions. The latter need to take the rescan lock when adding devices or\nwe may end up in an undefined state having two incompletely added devices\nand hit the following crash when trying to remove the device over sysfs:\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n Internal error: Oops: 0000000096000004 [#1] SMP\n Call trace:\n __pi_strlen+0x14/0x150\n kernfs_find_ns+0x80/0x13c\n kernfs_remove_by_name_ns+0x54/0xf0\n sysfs_remove_bin_file+0x24/0x34\n pci_remove_resource_files+0x3c/0x84\n pci_remove_sysfs_dev_files+0x28/0x38\n pci_stop_bus_device+0x8c/0xd8\n pci_stop_bus_device+0x40/0xd8\n pci_stop_and_remove_bus_device_locked+0x28/0x48\n remove_store+0x70/0xb0\n dev_attr_store+0x20/0x38\n sysfs_kf_write+0x58/0x78\n kernfs_fop_write_iter+0xe8/0x184\n vfs_write+0x2dc/0x308\n ksys_write+0x7c/0xec",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50122",
"url": "https://www.suse.com/security/cve/CVE-2024-50122"
},
{
"category": "external",
"summary": "SUSE Bug 1232930 for CVE-2024-50122",
"url": "https://bugzilla.suse.com/1232930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50122"
},
{
"cve": "CVE-2024-50123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add the missing BPF_LINK_TYPE invocation for sockmap\n\nThere is an out-of-bounds read in bpf_link_show_fdinfo() for the sockmap\nlink fd. Fix it by adding the missing BPF_LINK_TYPE invocation for\nsockmap link\n\nAlso add comments for bpf_link_type to prevent missing updates in the\nfuture.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50123",
"url": "https://www.suse.com/security/cve/CVE-2024-50123"
},
{
"category": "external",
"summary": "SUSE Bug 1232857 for CVE-2024-50123",
"url": "https://bugzilla.suse.com/1232857"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50123"
},
{
"cve": "CVE-2024-50124",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50124"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: Fix UAF on iso_sock_timeout\n\nconn-\u003esk maybe have been unlinked/freed while waiting for iso_conn_lock\nso this checks if the conn-\u003esk is still valid by checking if it part of\niso_sk_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50124",
"url": "https://www.suse.com/security/cve/CVE-2024-50124"
},
{
"category": "external",
"summary": "SUSE Bug 1232926 for CVE-2024-50124",
"url": "https://bugzilla.suse.com/1232926"
},
{
"category": "external",
"summary": "SUSE Bug 1232927 for CVE-2024-50124",
"url": "https://bugzilla.suse.com/1232927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50124"
},
{
"cve": "CVE-2024-50125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix UAF on sco_sock_timeout\n\nconn-\u003esk maybe have been unlinked/freed while waiting for sco_conn_lock\nso this checks if the conn-\u003esk is still valid by checking if it part of\nsco_sk_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50125",
"url": "https://www.suse.com/security/cve/CVE-2024-50125"
},
{
"category": "external",
"summary": "SUSE Bug 1232928 for CVE-2024-50125",
"url": "https://bugzilla.suse.com/1232928"
},
{
"category": "external",
"summary": "SUSE Bug 1232929 for CVE-2024-50125",
"url": "https://bugzilla.suse.com/1232929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50125"
},
{
"cve": "CVE-2024-50126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: use RCU read-side critical section in taprio_dump()\n\nFix possible use-after-free in \u0027taprio_dump()\u0027 by adding RCU\nread-side critical section there. Never seen on x86 but\nfound on a KASAN-enabled arm64 system when investigating\nhttps://syzkaller.appspot.com/bug?extid=b65e0af58423fc8a73aa:\n\n[T15862] BUG: KASAN: slab-use-after-free in taprio_dump+0xa0c/0xbb0\n[T15862] Read of size 4 at addr ffff0000d4bb88f8 by task repro/15862\n[T15862]\n[T15862] CPU: 0 UID: 0 PID: 15862 Comm: repro Not tainted 6.11.0-rc1-00293-gdefaf1a2113a-dirty #2\n[T15862] Hardware name: QEMU QEMU Virtual Machine, BIOS edk2-20240524-5.fc40 05/24/2024\n[T15862] Call trace:\n[T15862] dump_backtrace+0x20c/0x220\n[T15862] show_stack+0x2c/0x40\n[T15862] dump_stack_lvl+0xf8/0x174\n[T15862] print_report+0x170/0x4d8\n[T15862] kasan_report+0xb8/0x1d4\n[T15862] __asan_report_load4_noabort+0x20/0x2c\n[T15862] taprio_dump+0xa0c/0xbb0\n[T15862] tc_fill_qdisc+0x540/0x1020\n[T15862] qdisc_notify.isra.0+0x330/0x3a0\n[T15862] tc_modify_qdisc+0x7b8/0x1838\n[T15862] rtnetlink_rcv_msg+0x3c8/0xc20\n[T15862] netlink_rcv_skb+0x1f8/0x3d4\n[T15862] rtnetlink_rcv+0x28/0x40\n[T15862] netlink_unicast+0x51c/0x790\n[T15862] netlink_sendmsg+0x79c/0xc20\n[T15862] __sock_sendmsg+0xe0/0x1a0\n[T15862] ____sys_sendmsg+0x6c0/0x840\n[T15862] ___sys_sendmsg+0x1ac/0x1f0\n[T15862] __sys_sendmsg+0x110/0x1d0\n[T15862] __arm64_sys_sendmsg+0x74/0xb0\n[T15862] invoke_syscall+0x88/0x2e0\n[T15862] el0_svc_common.constprop.0+0xe4/0x2a0\n[T15862] do_el0_svc+0x44/0x60\n[T15862] el0_svc+0x50/0x184\n[T15862] el0t_64_sync_handler+0x120/0x12c\n[T15862] el0t_64_sync+0x190/0x194\n[T15862]\n[T15862] Allocated by task 15857:\n[T15862] kasan_save_stack+0x3c/0x70\n[T15862] kasan_save_track+0x20/0x3c\n[T15862] kasan_save_alloc_info+0x40/0x60\n[T15862] __kasan_kmalloc+0xd4/0xe0\n[T15862] __kmalloc_cache_noprof+0x194/0x334\n[T15862] taprio_change+0x45c/0x2fe0\n[T15862] tc_modify_qdisc+0x6a8/0x1838\n[T15862] rtnetlink_rcv_msg+0x3c8/0xc20\n[T15862] netlink_rcv_skb+0x1f8/0x3d4\n[T15862] rtnetlink_rcv+0x28/0x40\n[T15862] netlink_unicast+0x51c/0x790\n[T15862] netlink_sendmsg+0x79c/0xc20\n[T15862] __sock_sendmsg+0xe0/0x1a0\n[T15862] ____sys_sendmsg+0x6c0/0x840\n[T15862] ___sys_sendmsg+0x1ac/0x1f0\n[T15862] __sys_sendmsg+0x110/0x1d0\n[T15862] __arm64_sys_sendmsg+0x74/0xb0\n[T15862] invoke_syscall+0x88/0x2e0\n[T15862] el0_svc_common.constprop.0+0xe4/0x2a0\n[T15862] do_el0_svc+0x44/0x60\n[T15862] el0_svc+0x50/0x184\n[T15862] el0t_64_sync_handler+0x120/0x12c\n[T15862] el0t_64_sync+0x190/0x194\n[T15862]\n[T15862] Freed by task 6192:\n[T15862] kasan_save_stack+0x3c/0x70\n[T15862] kasan_save_track+0x20/0x3c\n[T15862] kasan_save_free_info+0x4c/0x80\n[T15862] poison_slab_object+0x110/0x160\n[T15862] __kasan_slab_free+0x3c/0x74\n[T15862] kfree+0x134/0x3c0\n[T15862] taprio_free_sched_cb+0x18c/0x220\n[T15862] rcu_core+0x920/0x1b7c\n[T15862] rcu_core_si+0x10/0x1c\n[T15862] handle_softirqs+0x2e8/0xd64\n[T15862] __do_softirq+0x14/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50126",
"url": "https://www.suse.com/security/cve/CVE-2024-50126"
},
{
"category": "external",
"summary": "SUSE Bug 1232895 for CVE-2024-50126",
"url": "https://bugzilla.suse.com/1232895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50126"
},
{
"cve": "CVE-2024-50127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix use-after-free in taprio_change()\n\nIn \u0027taprio_change()\u0027, \u0027admin\u0027 pointer may become dangling due to sched\nswitch / removal caused by \u0027advance_sched()\u0027, and critical section\nprotected by \u0027q-\u003ecurrent_entry_lock\u0027 is too small to prevent from such\na scenario (which causes use-after-free detected by KASAN). Fix this\nby prefer \u0027rcu_replace_pointer()\u0027 over \u0027rcu_assign_pointer()\u0027 to update\n\u0027admin\u0027 immediately before an attempt to schedule freeing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50127",
"url": "https://www.suse.com/security/cve/CVE-2024-50127"
},
{
"category": "external",
"summary": "SUSE Bug 1232907 for CVE-2024-50127",
"url": "https://bugzilla.suse.com/1232907"
},
{
"category": "external",
"summary": "SUSE Bug 1232908 for CVE-2024-50127",
"url": "https://bugzilla.suse.com/1232908"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50127"
},
{
"cve": "CVE-2024-50128",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50128"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: fix global oob in wwan_rtnl_policy\n\nThe variable wwan_rtnl_link_ops assign a *bigger* maxtype which leads to\na global out-of-bounds read when parsing the netlink attributes. Exactly\nsame bug cause as the oob fixed in commit b33fb5b801c6 (\"net: qualcomm:\nrmnet: fix global oob in rmnet_policy\").\n\n==================================================================\nBUG: KASAN: global-out-of-bounds in validate_nla lib/nlattr.c:388 [inline]\nBUG: KASAN: global-out-of-bounds in __nla_validate_parse+0x19d7/0x29a0 lib/nlattr.c:603\nRead of size 1 at addr ffffffff8b09cb60 by task syz.1.66276/323862\n\nCPU: 0 PID: 323862 Comm: syz.1.66276 Not tainted 6.1.70 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x177/0x231 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:284 [inline]\n print_report+0x14f/0x750 mm/kasan/report.c:395\n kasan_report+0x139/0x170 mm/kasan/report.c:495\n validate_nla lib/nlattr.c:388 [inline]\n __nla_validate_parse+0x19d7/0x29a0 lib/nlattr.c:603\n __nla_parse+0x3c/0x50 lib/nlattr.c:700\n nla_parse_nested_deprecated include/net/netlink.h:1269 [inline]\n __rtnl_newlink net/core/rtnetlink.c:3514 [inline]\n rtnl_newlink+0x7bc/0x1fd0 net/core/rtnetlink.c:3623\n rtnetlink_rcv_msg+0x794/0xef0 net/core/rtnetlink.c:6122\n netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2508\n netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]\n netlink_unicast+0x74b/0x8c0 net/netlink/af_netlink.c:1352\n netlink_sendmsg+0x882/0xb90 net/netlink/af_netlink.c:1874\n sock_sendmsg_nosec net/socket.c:716 [inline]\n __sock_sendmsg net/socket.c:728 [inline]\n ____sys_sendmsg+0x5cc/0x8f0 net/socket.c:2499\n ___sys_sendmsg+0x21c/0x290 net/socket.c:2553\n __sys_sendmsg net/socket.c:2582 [inline]\n __do_sys_sendmsg net/socket.c:2591 [inline]\n __se_sys_sendmsg+0x19e/0x270 net/socket.c:2589\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x45/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7f67b19a24ad\nRSP: 002b:00007f67b17febb8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f67b1b45f80 RCX: 00007f67b19a24ad\nRDX: 0000000000000000 RSI: 0000000020005e40 RDI: 0000000000000004\nRBP: 00007f67b1a1e01d R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffd2513764f R14: 00007ffd251376e0 R15: 00007f67b17fed40\n \u003c/TASK\u003e\n\nThe buggy address belongs to the variable:\n wwan_rtnl_policy+0x20/0x40\n\nThe buggy address belongs to the physical page:\npage:ffffea00002c2700 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xb09c\nflags: 0xfff00000001000(reserved|node=0|zone=1|lastcpupid=0x7ff)\nraw: 00fff00000001000 ffffea00002c2708 ffffea00002c2708 0000000000000000\nraw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\npage_owner info is not present (never set?)\n\nMemory state around the buggy address:\n ffffffff8b09ca00: 05 f9 f9 f9 05 f9 f9 f9 00 01 f9 f9 00 01 f9 f9\n ffffffff8b09ca80: 00 00 00 05 f9 f9 f9 f9 00 00 03 f9 f9 f9 f9 f9\n\u003effffffff8b09cb00: 00 00 00 00 05 f9 f9 f9 00 00 00 00 f9 f9 f9 f9\n ^\n ffffffff8b09cb80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n==================================================================\n\nAccording to the comment of `nla_parse_nested_deprecated`, use correct size\n`IFLA_WWAN_MAX` here to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50128",
"url": "https://www.suse.com/security/cve/CVE-2024-50128"
},
{
"category": "external",
"summary": "SUSE Bug 1232905 for CVE-2024-50128",
"url": "https://bugzilla.suse.com/1232905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50128"
},
{
"cve": "CVE-2024-50129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: pse-pd: Fix out of bound for loop\n\nAdjust the loop limit to prevent out-of-bounds access when iterating over\nPI structures. The loop should not reach the index pcdev-\u003enr_lines since\nwe allocate exactly pcdev-\u003enr_lines number of PI structures. This fix\nensures proper bounds are maintained during iterations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50129",
"url": "https://www.suse.com/security/cve/CVE-2024-50129"
},
{
"category": "external",
"summary": "SUSE Bug 1232856 for CVE-2024-50129",
"url": "https://bugzilla.suse.com/1232856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50129"
},
{
"cve": "CVE-2024-50130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bpf: must hold reference on net namespace\n\nBUG: KASAN: slab-use-after-free in __nf_unregister_net_hook+0x640/0x6b0\nRead of size 8 at addr ffff8880106fe400 by task repro/72=\nbpf_nf_link_release+0xda/0x1e0\nbpf_link_free+0x139/0x2d0\nbpf_link_release+0x68/0x80\n__fput+0x414/0xb60\n\nEric says:\n It seems that bpf was able to defer the __nf_unregister_net_hook()\n after exit()/close() time.\n Perhaps a netns reference is missing, because the netns has been\n dismantled/freed already.\n bpf_nf_link_attach() does :\n link-\u003enet = net;\n But I do not see a reference being taken on net.\n\nAdd such a reference and release it after hook unreg.\nNote that I was unable to get syzbot reproducer to work, so I\ndo not know if this resolves this splat.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50130",
"url": "https://www.suse.com/security/cve/CVE-2024-50130"
},
{
"category": "external",
"summary": "SUSE Bug 1232894 for CVE-2024-50130",
"url": "https://bugzilla.suse.com/1232894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50130"
},
{
"cve": "CVE-2024-50131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Consider the NULL character when validating the event length\n\nstrlen() returns a string length excluding the null byte. If the string\nlength equals to the maximum buffer length, the buffer will have no\nspace for the NULL terminating character.\n\nThis commit checks this condition and returns failure for it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50131",
"url": "https://www.suse.com/security/cve/CVE-2024-50131"
},
{
"category": "external",
"summary": "SUSE Bug 1232896 for CVE-2024-50131",
"url": "https://bugzilla.suse.com/1232896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50131"
},
{
"cve": "CVE-2024-50132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing/probes: Fix MAX_TRACE_ARGS limit handling\n\nWhen creating a trace_probe we would set nr_args prior to truncating the\narguments to MAX_TRACE_ARGS. However, we would only initialize arguments\nup to the limit.\n\nThis caused invalid memory access when attempting to set up probes with\nmore than 128 fetchargs.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000020\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 0 UID: 0 PID: 1769 Comm: cat Not tainted 6.11.0-rc7+ #8\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-1.fc39 04/01/2014\n RIP: 0010:__set_print_fmt+0x134/0x330\n\nResolve the issue by applying the MAX_TRACE_ARGS limit earlier. Return\nan error when there are too many arguments instead of silently\ntruncating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50132",
"url": "https://www.suse.com/security/cve/CVE-2024-50132"
},
{
"category": "external",
"summary": "SUSE Bug 1232861 for CVE-2024-50132",
"url": "https://bugzilla.suse.com/1232861"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50132"
},
{
"cve": "CVE-2024-50133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Don\u0027t crash in stack_top() for tasks without vDSO\n\nNot all tasks have a vDSO mapped, for example kthreads never do. If such\na task ever ends up calling stack_top(), it will derefence the NULL vdso\npointer and crash.\n\nThis can for example happen when using kunit:\n\n\t[\u003c9000000000203874\u003e] stack_top+0x58/0xa8\n\t[\u003c90000000002956cc\u003e] arch_pick_mmap_layout+0x164/0x220\n\t[\u003c90000000003c284c\u003e] kunit_vm_mmap_init+0x108/0x12c\n\t[\u003c90000000003c1fbc\u003e] __kunit_add_resource+0x38/0x8c\n\t[\u003c90000000003c2704\u003e] kunit_vm_mmap+0x88/0xc8\n\t[\u003c9000000000410b14\u003e] usercopy_test_init+0xbc/0x25c\n\t[\u003c90000000003c1db4\u003e] kunit_try_run_case+0x5c/0x184\n\t[\u003c90000000003c3d54\u003e] kunit_generic_run_threadfn_adapter+0x24/0x48\n\t[\u003c900000000022e4bc\u003e] kthread+0xc8/0xd4\n\t[\u003c9000000000200ce8\u003e] ret_from_kernel_thread+0xc/0xa4",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50133",
"url": "https://www.suse.com/security/cve/CVE-2024-50133"
},
{
"category": "external",
"summary": "SUSE Bug 1232854 for CVE-2024-50133",
"url": "https://bugzilla.suse.com/1232854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50133"
},
{
"cve": "CVE-2024-50134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA\n\nReplace the fake VLA at end of the vbva_mouse_pointer_shape shape with\na real VLA to fix a \"memcpy: detected field-spanning write error\" warning:\n\n[ 13.319813] memcpy: detected field-spanning write (size 16896) of single field \"p-\u003edata\" at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 (size 4)\n[ 13.319841] WARNING: CPU: 0 PID: 1105 at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 hgsmi_update_pointer_shape+0x192/0x1c0 [vboxvideo]\n[ 13.320038] Call Trace:\n[ 13.320173] hgsmi_update_pointer_shape [vboxvideo]\n[ 13.320184] vbox_cursor_atomic_update [vboxvideo]\n\nNote as mentioned in the added comment it seems the original length\ncalculation for the allocated and send hgsmi buffer is 4 bytes too large.\nChanging this is not the goal of this patch, so this behavior is kept.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50134",
"url": "https://www.suse.com/security/cve/CVE-2024-50134"
},
{
"category": "external",
"summary": "SUSE Bug 1232890 for CVE-2024-50134",
"url": "https://bugzilla.suse.com/1232890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50134"
},
{
"cve": "CVE-2024-50135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix race condition between reset and nvme_dev_disable()\n\nnvme_dev_disable() modifies the dev-\u003eonline_queues field, therefore\nnvme_pci_update_nr_queues() should avoid racing against it, otherwise\nwe could end up passing invalid values to blk_mq_update_nr_hw_queues().\n\n WARNING: CPU: 39 PID: 61303 at drivers/pci/msi/api.c:347\n pci_irq_get_affinity+0x187/0x210\n Workqueue: nvme-reset-wq nvme_reset_work [nvme]\n RIP: 0010:pci_irq_get_affinity+0x187/0x210\n Call Trace:\n \u003cTASK\u003e\n ? blk_mq_pci_map_queues+0x87/0x3c0\n ? pci_irq_get_affinity+0x187/0x210\n blk_mq_pci_map_queues+0x87/0x3c0\n nvme_pci_map_queues+0x189/0x460 [nvme]\n blk_mq_update_nr_hw_queues+0x2a/0x40\n nvme_reset_work+0x1be/0x2a0 [nvme]\n\nFix the bug by locking the shutdown_lock mutex before using\ndev-\u003eonline_queues. Give up if nvme_dev_disable() is running or if\nit has been executed already.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50135",
"url": "https://www.suse.com/security/cve/CVE-2024-50135"
},
{
"category": "external",
"summary": "SUSE Bug 1232888 for CVE-2024-50135",
"url": "https://bugzilla.suse.com/1232888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50135"
},
{
"cve": "CVE-2024-50136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Unregister notifier on eswitch init failure\n\nIt otherwise remains registered and a subsequent attempt at eswitch\nenabling might trigger warnings of the sort:\n\n[ 682.589148] ------------[ cut here ]------------\n[ 682.590204] notifier callback eswitch_vport_event [mlx5_core] already registered\n[ 682.590256] WARNING: CPU: 13 PID: 2660 at kernel/notifier.c:31 notifier_chain_register+0x3e/0x90\n[...snipped]\n[ 682.610052] Call Trace:\n[ 682.610369] \u003cTASK\u003e\n[ 682.610663] ? __warn+0x7c/0x110\n[ 682.611050] ? notifier_chain_register+0x3e/0x90\n[ 682.611556] ? report_bug+0x148/0x170\n[ 682.611977] ? handle_bug+0x36/0x70\n[ 682.612384] ? exc_invalid_op+0x13/0x60\n[ 682.612817] ? asm_exc_invalid_op+0x16/0x20\n[ 682.613284] ? notifier_chain_register+0x3e/0x90\n[ 682.613789] atomic_notifier_chain_register+0x25/0x40\n[ 682.614322] mlx5_eswitch_enable_locked+0x1d4/0x3b0 [mlx5_core]\n[ 682.614965] mlx5_eswitch_enable+0xc9/0x100 [mlx5_core]\n[ 682.615551] mlx5_device_enable_sriov+0x25/0x340 [mlx5_core]\n[ 682.616170] mlx5_core_sriov_configure+0x50/0x170 [mlx5_core]\n[ 682.616789] sriov_numvfs_store+0xb0/0x1b0\n[ 682.617248] kernfs_fop_write_iter+0x117/0x1a0\n[ 682.617734] vfs_write+0x231/0x3f0\n[ 682.618138] ksys_write+0x63/0xe0\n[ 682.618536] do_syscall_64+0x4c/0x100\n[ 682.618958] entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50136",
"url": "https://www.suse.com/security/cve/CVE-2024-50136"
},
{
"category": "external",
"summary": "SUSE Bug 1232914 for CVE-2024-50136",
"url": "https://bugzilla.suse.com/1232914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50136"
},
{
"cve": "CVE-2024-50137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nreset: starfive: jh71x0: Fix accessing the empty member on JH7110 SoC\n\ndata-\u003easserted will be NULL on JH7110 SoC since commit 82327b127d41\n(\"reset: starfive: Add StarFive JH7110 reset driver\") was added. Add\nthe judgment condition to avoid errors when calling reset_control_status\non JH7110 SoC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50137",
"url": "https://www.suse.com/security/cve/CVE-2024-50137"
},
{
"category": "external",
"summary": "SUSE Bug 1232932 for CVE-2024-50137",
"url": "https://bugzilla.suse.com/1232932"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50137"
},
{
"cve": "CVE-2024-50138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Use raw_spinlock_t in ringbuf\n\nThe function __bpf_ringbuf_reserve is invoked from a tracepoint, which\ndisables preemption. Using spinlock_t in this context can lead to a\n\"sleep in atomic\" warning in the RT variant. This issue is illustrated\nin the example below:\n\nBUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 556208, name: test_progs\npreempt_count: 1, expected: 0\nRCU nest depth: 1, expected: 1\nINFO: lockdep is turned off.\nPreemption disabled at:\n[\u003cffffd33a5c88ea44\u003e] migrate_enable+0xc0/0x39c\nCPU: 7 PID: 556208 Comm: test_progs Tainted: G\nHardware name: Qualcomm SA8775P Ride (DT)\nCall trace:\n dump_backtrace+0xac/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0xac/0xe8\n dump_stack+0x18/0x30\n __might_resched+0x3bc/0x4fc\n rt_spin_lock+0x8c/0x1a4\n __bpf_ringbuf_reserve+0xc4/0x254\n bpf_ringbuf_reserve_dynptr+0x5c/0xdc\n bpf_prog_ac3d15160d62622a_test_read_write+0x104/0x238\n trace_call_bpf+0x238/0x774\n perf_call_bpf_enter.isra.0+0x104/0x194\n perf_syscall_enter+0x2f8/0x510\n trace_sys_enter+0x39c/0x564\n syscall_trace_enter+0x220/0x3c0\n do_el0_svc+0x138/0x1dc\n el0_svc+0x54/0x130\n el0t_64_sync_handler+0x134/0x150\n el0t_64_sync+0x17c/0x180\n\nSwitch the spinlock to raw_spinlock_t to avoid this error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50138",
"url": "https://www.suse.com/security/cve/CVE-2024-50138"
},
{
"category": "external",
"summary": "SUSE Bug 1232935 for CVE-2024-50138",
"url": "https://bugzilla.suse.com/1232935"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50138"
},
{
"cve": "CVE-2024-50139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50139"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Fix shift-out-of-bounds bug\n\nFix a shift-out-of-bounds bug reported by UBSAN when running\nVM with MTE enabled host kernel.\n\nUBSAN: shift-out-of-bounds in arch/arm64/kvm/sys_regs.c:1988:14\nshift exponent 33 is too large for 32-bit type \u0027int\u0027\nCPU: 26 UID: 0 PID: 7629 Comm: qemu-kvm Not tainted 6.12.0-rc2 #34\nHardware name: IEI NF5280R7/Mitchell MB, BIOS 00.00. 2024-10-12 09:28:54 10/14/2024\nCall trace:\n dump_backtrace+0xa0/0x128\n show_stack+0x20/0x38\n dump_stack_lvl+0x74/0x90\n dump_stack+0x18/0x28\n __ubsan_handle_shift_out_of_bounds+0xf8/0x1e0\n reset_clidr+0x10c/0x1c8\n kvm_reset_sys_regs+0x50/0x1c8\n kvm_reset_vcpu+0xec/0x2b0\n __kvm_vcpu_set_target+0x84/0x158\n kvm_vcpu_set_target+0x138/0x168\n kvm_arch_vcpu_ioctl_vcpu_init+0x40/0x2b0\n kvm_arch_vcpu_ioctl+0x28c/0x4b8\n kvm_vcpu_ioctl+0x4bc/0x7a8\n __arm64_sys_ioctl+0xb4/0x100\n invoke_syscall+0x70/0x100\n el0_svc_common.constprop.0+0x48/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x3c/0x158\n el0t_64_sync_handler+0x120/0x130\n el0t_64_sync+0x194/0x198",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50139",
"url": "https://www.suse.com/security/cve/CVE-2024-50139"
},
{
"category": "external",
"summary": "SUSE Bug 1233062 for CVE-2024-50139",
"url": "https://bugzilla.suse.com/1233062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50139"
},
{
"cve": "CVE-2024-50140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50140"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/core: Disable page allocation in task_tick_mm_cid()\n\nWith KASAN and PREEMPT_RT enabled, calling task_work_add() in\ntask_tick_mm_cid() may cause the following splat.\n\n[ 63.696416] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\n[ 63.696416] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 610, name: modprobe\n[ 63.696416] preempt_count: 10001, expected: 0\n[ 63.696416] RCU nest depth: 1, expected: 1\n\nThis problem is caused by the following call trace.\n\n sched_tick() [ acquire rq-\u003e__lock ]\n -\u003e task_tick_mm_cid()\n -\u003e task_work_add()\n -\u003e __kasan_record_aux_stack()\n -\u003e kasan_save_stack()\n -\u003e stack_depot_save_flags()\n -\u003e alloc_pages_mpol_noprof()\n -\u003e __alloc_pages_noprof()\n\t -\u003e get_page_from_freelist()\n\t -\u003e rmqueue()\n\t -\u003e rmqueue_pcplist()\n\t -\u003e __rmqueue_pcplist()\n\t -\u003e rmqueue_bulk()\n\t -\u003e rt_spin_lock()\n\nThe rq lock is a raw_spinlock_t. We can\u0027t sleep while holding\nit. IOW, we can\u0027t call alloc_pages() in stack_depot_save_flags().\n\nThe task_tick_mm_cid() function with its task_work_add() call was\nintroduced by commit 223baf9d17f2 (\"sched: Fix performance regression\nintroduced by mm_cid\") in v6.4 kernel.\n\nFortunately, there is a kasan_record_aux_stack_noalloc() variant that\ncalls stack_depot_save_flags() while not allowing it to allocate\nnew pages. To allow task_tick_mm_cid() to use task_work without\npage allocation, a new TWAF_NO_ALLOC flag is added to enable calling\nkasan_record_aux_stack_noalloc() instead of kasan_record_aux_stack()\nif set. The task_tick_mm_cid() function is modified to add this new flag.\n\nThe possible downside is the missing stack trace in a KASAN report due\nto new page allocation required when task_work_add_noallloc() is called\nwhich should be rare.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50140",
"url": "https://www.suse.com/security/cve/CVE-2024-50140"
},
{
"category": "external",
"summary": "SUSE Bug 1233060 for CVE-2024-50140",
"url": "https://bugzilla.suse.com/1233060"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50140"
},
{
"cve": "CVE-2024-50141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context\n\nPRMT needs to find the correct type of block to translate the PA-VA\nmapping for EFI runtime services.\n\nThe issue arises because the PRMT is finding a block of type\nEFI_CONVENTIONAL_MEMORY, which is not appropriate for runtime services\nas described in Section 2.2.2 (Runtime Services) of the UEFI\nSpecification [1]. Since the PRM handler is a type of runtime service,\nthis causes an exception when the PRM handler is called.\n\n [Firmware Bug]: Unable to handle paging request in EFI runtime service\n WARNING: CPU: 22 PID: 4330 at drivers/firmware/efi/runtime-wrappers.c:341\n __efi_queue_work+0x11c/0x170\n Call trace:\n\nLet PRMT find a block with EFI_MEMORY_RUNTIME for PRM handler and PRM\ncontext.\n\nIf no suitable block is found, a warning message will be printed, but\nthe procedure continues to manage the next PRM handler.\n\nHowever, if the PRM handler is actually called without proper allocation,\nit would result in a failure during error handling.\n\nBy using the correct memory types for runtime services, ensure that the\nPRM handler and the context are properly mapped in the virtual address\nspace during runtime, preventing the paging request error.\n\nThe issue is really that only memory that has been remapped for runtime\nby the firmware can be used by the PRM handler, and so the region needs\nto have the EFI_MEMORY_RUNTIME attribute.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50141",
"url": "https://www.suse.com/security/cve/CVE-2024-50141"
},
{
"category": "external",
"summary": "SUSE Bug 1233065 for CVE-2024-50141",
"url": "https://bugzilla.suse.com/1233065"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50141"
},
{
"cve": "CVE-2024-50142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: validate new SA\u0027s prefixlen using SA family when sel.family is unset\n\nThis expands the validation introduced in commit 07bf7908950a (\"xfrm:\nValidate address prefix lengths in the xfrm selector.\")\n\nsyzbot created an SA with\n usersa.sel.family = AF_UNSPEC\n usersa.sel.prefixlen_s = 128\n usersa.family = AF_INET\n\nBecause of the AF_UNSPEC selector, verify_newsa_info doesn\u0027t put\nlimits on prefixlen_{s,d}. But then copy_from_user_state sets\nx-\u003esel.family to usersa.family (AF_INET). Do the same conversion in\nverify_newsa_info before validating prefixlen_{s,d}, since that\u0027s how\nprefixlen is going to be used later on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50142",
"url": "https://www.suse.com/security/cve/CVE-2024-50142"
},
{
"category": "external",
"summary": "SUSE Bug 1233028 for CVE-2024-50142",
"url": "https://bugzilla.suse.com/1233028"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50142"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: fix unbalanced rpm put() with fence_fini()\n\nCurrently we can call fence_fini() twice if something goes wrong when\nsending the GuC CT for the tlb request, since we signal the fence and\nreturn an error, leading to the caller also calling fini() on the error\npath in the case of stack version of the flow, which leads to an extra\nrpm put() which might later cause device to enter suspend when it\nshouldn\u0027t. It looks like we can just drop the fini() call since the\nfence signaller side will already call this for us.\n\nThere are known mysterious splats with device going to sleep even with\nan rpm ref, and this could be one candidate.\n\nv2 (Matt B):\n - Prefer warning if we detect double fini()\n\n(cherry picked from commit cfcbc0520d5055825f0647ab922b655688605183)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50144",
"url": "https://www.suse.com/security/cve/CVE-2024-50144"
},
{
"category": "external",
"summary": "SUSE Bug 1233040 for CVE-2024-50144",
"url": "https://bugzilla.suse.com/1233040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50144"
},
{
"cve": "CVE-2024-50145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteon_ep: Add SKB allocation failures handling in __octep_oq_process_rx()\n\nbuild_skb() returns NULL in case of a memory allocation failure so handle\nit inside __octep_oq_process_rx() to avoid NULL pointer dereference.\n\n__octep_oq_process_rx() is called during NAPI polling by the driver. If\nskb allocation fails, keep on pulling packets out of the Rx DMA queue: we\nshouldn\u0027t break the polling immediately and thus falsely indicate to the\noctep_napi_poll() that the Rx pressure is going down. As there is no\nassociated skb in this case, don\u0027t process the packets and don\u0027t push them\nup the network stack - they are skipped.\n\nHelper function is implemented to unmmap/flush all the fragment buffers\nused by the dropped packet. \u0027alloc_failures\u0027 counter is incremented to\nmark the skb allocation error in driver statistics.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50145",
"url": "https://www.suse.com/security/cve/CVE-2024-50145"
},
{
"category": "external",
"summary": "SUSE Bug 1233044 for CVE-2024-50145",
"url": "https://bugzilla.suse.com/1233044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50145"
},
{
"cve": "CVE-2024-50146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t call cleanup on profile rollback failure\n\nWhen profile rollback fails in mlx5e_netdev_change_profile, the netdev\nprofile var is left set to NULL. Avoid a crash when unloading the driver\nby not calling profile-\u003ecleanup in such a case.\n\nThis was encountered while testing, with the original trigger that\nthe wq rescuer thread creation got interrupted (presumably due to\nCtrl+C-ing modprobe), which gets converted to ENOMEM (-12) by\nmlx5e_priv_init, the profile rollback also fails for the same reason\n(signal still active) so the profile is left as NULL, leading to a crash\nlater in _mlx5e_remove.\n\n [ 732.473932] mlx5_core 0000:08:00.1: E-Switch: Unload vfs: mode(OFFLOADS), nvfs(2), necvfs(0), active vports(2)\n [ 734.525513] workqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\n [ 734.557372] mlx5_core 0000:08:00.1: mlx5e_netdev_init_profile:6235:(pid 6086): mlx5e_priv_init failed, err=-12\n [ 734.559187] mlx5_core 0000:08:00.1 eth3: mlx5e_netdev_change_profile: new profile init failed, -12\n [ 734.560153] workqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\n [ 734.589378] mlx5_core 0000:08:00.1: mlx5e_netdev_init_profile:6235:(pid 6086): mlx5e_priv_init failed, err=-12\n [ 734.591136] mlx5_core 0000:08:00.1 eth3: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n [ 745.537492] BUG: kernel NULL pointer dereference, address: 0000000000000008\n [ 745.538222] #PF: supervisor read access in kernel mode\n\u003csnipped\u003e\n [ 745.551290] Call Trace:\n [ 745.551590] \u003cTASK\u003e\n [ 745.551866] ? __die+0x20/0x60\n [ 745.552218] ? page_fault_oops+0x150/0x400\n [ 745.555307] ? exc_page_fault+0x79/0x240\n [ 745.555729] ? asm_exc_page_fault+0x22/0x30\n [ 745.556166] ? mlx5e_remove+0x6b/0xb0 [mlx5_core]\n [ 745.556698] auxiliary_bus_remove+0x18/0x30\n [ 745.557134] device_release_driver_internal+0x1df/0x240\n [ 745.557654] bus_remove_device+0xd7/0x140\n [ 745.558075] device_del+0x15b/0x3c0\n [ 745.558456] mlx5_rescan_drivers_locked.part.0+0xb1/0x2f0 [mlx5_core]\n [ 745.559112] mlx5_unregister_device+0x34/0x50 [mlx5_core]\n [ 745.559686] mlx5_uninit_one+0x46/0xf0 [mlx5_core]\n [ 745.560203] remove_one+0x4e/0xd0 [mlx5_core]\n [ 745.560694] pci_device_remove+0x39/0xa0\n [ 745.561112] device_release_driver_internal+0x1df/0x240\n [ 745.561631] driver_detach+0x47/0x90\n [ 745.562022] bus_remove_driver+0x84/0x100\n [ 745.562444] pci_unregister_driver+0x3b/0x90\n [ 745.562890] mlx5_cleanup+0xc/0x1b [mlx5_core]\n [ 745.563415] __x64_sys_delete_module+0x14d/0x2f0\n [ 745.563886] ? kmem_cache_free+0x1b0/0x460\n [ 745.564313] ? lockdep_hardirqs_on_prepare+0xe2/0x190\n [ 745.564825] do_syscall_64+0x6d/0x140\n [ 745.565223] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n [ 745.565725] RIP: 0033:0x7f1579b1288b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50146",
"url": "https://www.suse.com/security/cve/CVE-2024-50146"
},
{
"category": "external",
"summary": "SUSE Bug 1233056 for CVE-2024-50146",
"url": "https://bugzilla.suse.com/1233056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50146"
},
{
"cve": "CVE-2024-50147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix command bitmask initialization\n\nCommand bitmask have a dedicated bit for MANAGE_PAGES command, this bit\nisn\u0027t Initialize during command bitmask Initialization, only during\nMANAGE_PAGES.\n\nIn addition, mlx5_cmd_trigger_completions() is trying to trigger\ncompletion for MANAGE_PAGES command as well.\n\nHence, in case health error occurred before any MANAGE_PAGES command\nhave been invoke (for example, during mlx5_enable_hca()),\nmlx5_cmd_trigger_completions() will try to trigger completion for\nMANAGE_PAGES command, which will result in null-ptr-deref error.[1]\n\nFix it by Initialize command bitmask correctly.\n\nWhile at it, re-write the code for better understanding.\n\n[1]\nBUG: KASAN: null-ptr-deref in mlx5_cmd_trigger_completions+0x1db/0x600 [mlx5_core]\nWrite of size 4 at addr 0000000000000214 by task kworker/u96:2/12078\nCPU: 10 PID: 12078 Comm: kworker/u96:2 Not tainted 6.9.0-rc2_for_upstream_debug_2024_04_07_19_01 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nWorkqueue: mlx5_health0000:08:00.0 mlx5_fw_fatal_reporter_err_work [mlx5_core]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x7e/0xc0\n kasan_report+0xb9/0xf0\n kasan_check_range+0xec/0x190\n mlx5_cmd_trigger_completions+0x1db/0x600 [mlx5_core]\n mlx5_cmd_flush+0x94/0x240 [mlx5_core]\n enter_error_state+0x6c/0xd0 [mlx5_core]\n mlx5_fw_fatal_reporter_err_work+0xf3/0x480 [mlx5_core]\n process_one_work+0x787/0x1490\n ? lockdep_hardirqs_on_prepare+0x400/0x400\n ? pwq_dec_nr_in_flight+0xda0/0xda0\n ? assign_work+0x168/0x240\n worker_thread+0x586/0xd30\n ? rescuer_thread+0xae0/0xae0\n kthread+0x2df/0x3b0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x2d/0x70\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50147",
"url": "https://www.suse.com/security/cve/CVE-2024-50147"
},
{
"category": "external",
"summary": "SUSE Bug 1233067 for CVE-2024-50147",
"url": "https://bugzilla.suse.com/1233067"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50147"
},
{
"cve": "CVE-2024-50148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: bnep: fix wild-memory-access in proto_unregister\n\nThere\u0027s issue as follows:\n KASAN: maybe wild-memory-access in range [0xdead...108-0xdead...10f]\n CPU: 3 UID: 0 PID: 2805 Comm: rmmod Tainted: G W\n RIP: 0010:proto_unregister+0xee/0x400\n Call Trace:\n \u003cTASK\u003e\n __do_sys_delete_module+0x318/0x580\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nAs bnep_init() ignore bnep_sock_init()\u0027s return value, and bnep_sock_init()\nwill cleanup all resource. Then when remove bnep module will call\nbnep_sock_cleanup() to cleanup sock\u0027s resource.\nTo solve above issue just return bnep_sock_init()\u0027s return value in\nbnep_exit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50148",
"url": "https://www.suse.com/security/cve/CVE-2024-50148"
},
{
"category": "external",
"summary": "SUSE Bug 1233063 for CVE-2024-50148",
"url": "https://bugzilla.suse.com/1233063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50148"
},
{
"cve": "CVE-2024-50149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Don\u0027t free job in TDR\n\nFreeing job in TDR is not safe as TDR can pass the run_job thread\nresulting in UAF. It is only safe for free job to naturally be called by\nthe scheduler. Rather free job in TDR, add to pending list.\n\n(cherry picked from commit ea2f6a77d0c40d97f4a4dc93fee4afe15d94926d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50149",
"url": "https://www.suse.com/security/cve/CVE-2024-50149"
},
{
"category": "external",
"summary": "SUSE Bug 1233034 for CVE-2024-50149",
"url": "https://bugzilla.suse.com/1233034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50149"
},
{
"cve": "CVE-2024-50150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: altmode should keep reference to parent\n\nThe altmode device release refers to its parent device, but without keeping\na reference to it.\n\nWhen registering the altmode, get a reference to the parent and put it in\nthe release function.\n\nBefore this fix, when using CONFIG_DEBUG_KOBJECT_RELEASE, we see issues\nlike this:\n\n[ 43.572860] kobject: \u0027port0.0\u0027 (ffff8880057ba008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 43.573532] kobject: \u0027port0.1\u0027 (ffff8880057bd008): kobject_release, parent 0000000000000000 (delayed 1000)\n[ 43.574407] kobject: \u0027port0\u0027 (ffff8880057b9008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 43.575059] kobject: \u0027port1.0\u0027 (ffff8880057ca008): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.575908] kobject: \u0027port1.1\u0027 (ffff8880057c9008): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.576908] kobject: \u0027typec\u0027 (ffff8880062dbc00): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.577769] kobject: \u0027port1\u0027 (ffff8880057bf008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 46.612867] ==================================================================\n[ 46.613402] BUG: KASAN: slab-use-after-free in typec_altmode_release+0x38/0x129\n[ 46.614003] Read of size 8 at addr ffff8880057b9118 by task kworker/2:1/48\n[ 46.614538]\n[ 46.614668] CPU: 2 UID: 0 PID: 48 Comm: kworker/2:1 Not tainted 6.12.0-rc1-00138-gedbae730ad31 #535\n[ 46.615391] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 46.616042] Workqueue: events kobject_delayed_cleanup\n[ 46.616446] Call Trace:\n[ 46.616648] \u003cTASK\u003e\n[ 46.616820] dump_stack_lvl+0x5b/0x7c\n[ 46.617112] ? typec_altmode_release+0x38/0x129\n[ 46.617470] print_report+0x14c/0x49e\n[ 46.617769] ? rcu_read_unlock_sched+0x56/0x69\n[ 46.618117] ? __virt_addr_valid+0x19a/0x1ab\n[ 46.618456] ? kmem_cache_debug_flags+0xc/0x1d\n[ 46.618807] ? typec_altmode_release+0x38/0x129\n[ 46.619161] kasan_report+0x8d/0xb4\n[ 46.619447] ? typec_altmode_release+0x38/0x129\n[ 46.619809] ? process_scheduled_works+0x3cb/0x85f\n[ 46.620185] typec_altmode_release+0x38/0x129\n[ 46.620537] ? process_scheduled_works+0x3cb/0x85f\n[ 46.620907] device_release+0xaf/0xf2\n[ 46.621206] kobject_delayed_cleanup+0x13b/0x17a\n[ 46.621584] process_scheduled_works+0x4f6/0x85f\n[ 46.621955] ? __pfx_process_scheduled_works+0x10/0x10\n[ 46.622353] ? hlock_class+0x31/0x9a\n[ 46.622647] ? lock_acquired+0x361/0x3c3\n[ 46.622956] ? move_linked_works+0x46/0x7d\n[ 46.623277] worker_thread+0x1ce/0x291\n[ 46.623582] ? __kthread_parkme+0xc8/0xdf\n[ 46.623900] ? __pfx_worker_thread+0x10/0x10\n[ 46.624236] kthread+0x17e/0x190\n[ 46.624501] ? kthread+0xfb/0x190\n[ 46.624756] ? __pfx_kthread+0x10/0x10\n[ 46.625015] ret_from_fork+0x20/0x40\n[ 46.625268] ? __pfx_kthread+0x10/0x10\n[ 46.625532] ret_from_fork_asm+0x1a/0x30\n[ 46.625805] \u003c/TASK\u003e\n[ 46.625953]\n[ 46.626056] Allocated by task 678:\n[ 46.626287] kasan_save_stack+0x24/0x44\n[ 46.626555] kasan_save_track+0x14/0x2d\n[ 46.626811] __kasan_kmalloc+0x3f/0x4d\n[ 46.627049] __kmalloc_noprof+0x1bf/0x1f0\n[ 46.627362] typec_register_port+0x23/0x491\n[ 46.627698] cros_typec_probe+0x634/0xbb6\n[ 46.628026] platform_probe+0x47/0x8c\n[ 46.628311] really_probe+0x20a/0x47d\n[ 46.628605] device_driver_attach+0x39/0x72\n[ 46.628940] bind_store+0x87/0xd7\n[ 46.629213] kernfs_fop_write_iter+0x1aa/0x218\n[ 46.629574] vfs_write+0x1d6/0x29b\n[ 46.629856] ksys_write+0xcd/0x13b\n[ 46.630128] do_syscall_64+0xd4/0x139\n[ 46.630420] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 46.630820]\n[ 46.630946] Freed by task 48:\n[ 46.631182] kasan_save_stack+0x24/0x44\n[ 46.631493] kasan_save_track+0x14/0x2d\n[ 46.631799] kasan_save_free_info+0x3f/0x4d\n[ 46.632144] __kasan_slab_free+0x37/0x45\n[ 46.632474]\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50150",
"url": "https://www.suse.com/security/cve/CVE-2024-50150"
},
{
"category": "external",
"summary": "SUSE Bug 1233051 for CVE-2024-50150",
"url": "https://bugzilla.suse.com/1233051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50150"
},
{
"cve": "CVE-2024-50151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix OOBs when building SMB2_IOCTL request\n\nWhen using encryption, either enforced by the server or when using\n\u0027seal\u0027 mount option, the client will squash all compound request buffers\ndown for encryption into a single iov in smb2_set_next_command().\n\nSMB2_ioctl_init() allocates a small buffer (448 bytes) to hold the\nSMB2_IOCTL request in the first iov, and if the user passes an input\nbuffer that is greater than 328 bytes, smb2_set_next_command() will\nend up writing off the end of @rqst-\u003eiov[0].iov_base as shown below:\n\n mount.cifs //srv/share /mnt -o ...,seal\n ln -s $(perl -e \"print(\u0027a\u0027)for 1..1024\") /mnt/link\n\n BUG: KASAN: slab-out-of-bounds in\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n Write of size 4116 at addr ffff8881148fcab8 by task ln/859\n\n CPU: 1 UID: 0 PID: 859 Comm: ln Not tainted 6.12.0-rc3 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n 1.16.3-2.fc40 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n print_report+0x156/0x4d9\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n ? __virt_addr_valid+0x145/0x310\n ? __phys_addr+0x46/0x90\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_report+0xda/0x110\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_check_range+0x10f/0x1f0\n __asan_memcpy+0x3c/0x60\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n smb2_compound_op+0x238c/0x3840 [cifs]\n ? kasan_save_track+0x14/0x30\n ? kasan_save_free_info+0x3b/0x70\n ? vfs_symlink+0x1a1/0x2c0\n ? do_symlinkat+0x108/0x1c0\n ? __pfx_smb2_compound_op+0x10/0x10 [cifs]\n ? kmem_cache_free+0x118/0x3e0\n ? cifs_get_writable_path+0xeb/0x1a0 [cifs]\n smb2_get_reparse_inode+0x423/0x540 [cifs]\n ? __pfx_smb2_get_reparse_inode+0x10/0x10 [cifs]\n ? rcu_is_watching+0x20/0x50\n ? __kmalloc_noprof+0x37c/0x480\n ? smb2_create_reparse_symlink+0x257/0x490 [cifs]\n ? smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n ? __pfx_smb2_create_reparse_symlink+0x10/0x10 [cifs]\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? __build_path_from_dentry_optional_prefix+0x19d/0x2e0 [cifs]\n cifs_symlink+0x24f/0x960 [cifs]\n ? __pfx_make_vfsuid+0x10/0x10\n ? __pfx_cifs_symlink+0x10/0x10 [cifs]\n ? make_vfsgid+0x6b/0xc0\n ? generic_permission+0x96/0x2d0\n vfs_symlink+0x1a1/0x2c0\n do_symlinkat+0x108/0x1c0\n ? __pfx_do_symlinkat+0x10/0x10\n ? strncpy_from_user+0xaa/0x160\n __x64_sys_symlinkat+0xb9/0xf0\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7f08d75c13bb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50151",
"url": "https://www.suse.com/security/cve/CVE-2024-50151"
},
{
"category": "external",
"summary": "SUSE Bug 1233055 for CVE-2024-50151",
"url": "https://bugzilla.suse.com/1233055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50151"
},
{
"cve": "CVE-2024-50152",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50152"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix possible double free in smb2_set_ea()\n\nClang static checker(scan-build) warning:\nfs/smb/client/smb2ops.c:1304:2: Attempt to free released memory.\n 1304 | kfree(ea);\n | ^~~~~~~~~\n\nThere is a double free in such case:\n\u0027ea is initialized to NULL\u0027 -\u003e \u0027first successful memory allocation for\nea\u0027 -\u003e \u0027something failed, goto sea_exit\u0027 -\u003e \u0027first memory release for ea\u0027\n-\u003e \u0027goto replay_again\u0027 -\u003e \u0027second goto sea_exit before allocate memory\nfor ea\u0027 -\u003e \u0027second memory release for ea resulted in double free\u0027.\n\nRe-initialie \u0027ea\u0027 to NULL near to the replay_again label, it can fix this\ndouble free problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50152",
"url": "https://www.suse.com/security/cve/CVE-2024-50152"
},
{
"category": "external",
"summary": "SUSE Bug 1233033 for CVE-2024-50152",
"url": "https://bugzilla.suse.com/1233033"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50152"
},
{
"cve": "CVE-2024-50153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: core: Fix null-ptr-deref in target_alloc_device()\n\nThere is a null-ptr-deref issue reported by KASAN:\n\nBUG: KASAN: null-ptr-deref in target_alloc_device+0xbc4/0xbe0 [target_core_mod]\n...\n kasan_report+0xb9/0xf0\n target_alloc_device+0xbc4/0xbe0 [target_core_mod]\n core_dev_setup_virtual_lun0+0xef/0x1f0 [target_core_mod]\n target_core_init_configfs+0x205/0x420 [target_core_mod]\n do_one_initcall+0xdd/0x4e0\n...\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nIn target_alloc_device(), if allocing memory for dev queues fails, then\ndev will be freed by dev-\u003etransport-\u003efree_device(), but dev-\u003etransport\nis not initialized at that time, which will lead to a null pointer\nreference problem.\n\nFixing this bug by freeing dev with hba-\u003ebackend-\u003eops-\u003efree_device().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50153",
"url": "https://www.suse.com/security/cve/CVE-2024-50153"
},
{
"category": "external",
"summary": "SUSE Bug 1233061 for CVE-2024-50153",
"url": "https://bugzilla.suse.com/1233061"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50153"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: use cond_resched() in nsim_dev_trap_report_work()\n\nI am still seeing many syzbot reports hinting that syzbot\nmight fool nsim_dev_trap_report_work() with hundreds of ports [1]\n\nLets use cond_resched(), and system_unbound_wq\ninstead of implicit system_wq.\n\n[1]\nINFO: task syz-executor:20633 blocked for more than 143 seconds.\n Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0\n\"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\ntask:syz-executor state:D stack:25856 pid:20633 tgid:20633 ppid:1 flags:0x00004006\n...\nNMI backtrace for cpu 1\nCPU: 1 UID: 0 PID: 16760 Comm: kworker/1:0 Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events nsim_dev_trap_report_work\n RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 kernel/kcov.c:210\nCode: 89 fb e8 23 00 00 00 48 8b 3d 04 fb 9c 0c 48 89 de 5b e9 c3 c7 5d 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 \u003cf3\u003e 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 c0 d7 03 00 65 8b 15 60 f0\nRSP: 0018:ffffc90000a187e8 EFLAGS: 00000246\nRAX: 0000000000000100 RBX: ffffc90000a188e0 RCX: ffff888027d3bc00\nRDX: ffff888027d3bc00 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffff88804a2e6000 R08: ffffffff8a4bc495 R09: ffffffff89da3577\nR10: 0000000000000004 R11: ffffffff8a4bc2b0 R12: dffffc0000000000\nR13: ffff88806573b503 R14: dffffc0000000000 R15: ffff8880663cca00\nFS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fc90a747f98 CR3: 000000000e734000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 000000000000002b DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cNMI\u003e\n \u003c/NMI\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x1bb/0x200 kernel/softirq.c:382\n spin_unlock_bh include/linux/spinlock.h:396 [inline]\n nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline]\n nsim_dev_trap_report_work+0x75d/0xaa0 drivers/net/netdevsim/dev.c:850\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa63/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50155",
"url": "https://www.suse.com/security/cve/CVE-2024-50155"
},
{
"category": "external",
"summary": "SUSE Bug 1233035 for CVE-2024-50155",
"url": "https://bugzilla.suse.com/1233035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50155"
},
{
"cve": "CVE-2024-50156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm: Avoid NULL dereference in msm_disp_state_print_regs()\n\nIf the allocation in msm_disp_state_dump_regs() failed then\n`block-\u003estate` can be NULL. The msm_disp_state_print_regs() function\n_does_ have code to try to handle it with:\n\n if (*reg)\n dump_addr = *reg;\n\n...but since \"dump_addr\" is initialized to NULL the above is actually\na noop. The code then goes on to dereference `dump_addr`.\n\nMake the function print \"Registers not stored\" when it sees a NULL to\nsolve this. Since we\u0027re touching the code, fix\nmsm_disp_state_print_regs() not to pointlessly take a double-pointer\nand properly mark the pointer as `const`.\n\nPatchwork: https://patchwork.freedesktop.org/patch/619657/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50156",
"url": "https://www.suse.com/security/cve/CVE-2024-50156"
},
{
"category": "external",
"summary": "SUSE Bug 1233073 for CVE-2024-50156",
"url": "https://bugzilla.suse.com/1233073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50156"
},
{
"cve": "CVE-2024-50157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Avoid CPU lockups due fifo occupancy check loop\n\nDriver waits indefinitely for the fifo occupancy to go below a threshold\nas soon as the pacing interrupt is received. This can cause soft lockup on\none of the processors, if the rate of DB is very high.\n\nAdd a loop count for FPGA and exit the __wait_for_fifo_occupancy_below_th\nif the loop is taking more time. Pacing will be continuing until the\noccupancy is below the threshold. This is ensured by the checks in\nbnxt_re_pacing_timer_exp and further scheduling the work for pacing based\non the fifo occupancy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50157",
"url": "https://www.suse.com/security/cve/CVE-2024-50157"
},
{
"category": "external",
"summary": "SUSE Bug 1233032 for CVE-2024-50157",
"url": "https://bugzilla.suse.com/1233032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50157"
},
{
"cve": "CVE-2024-50158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix out of bound check\n\nDriver exports pacing stats only on GenP5 and P7 adapters. But while\nparsing the pacing stats, driver has a check for \"rdev-\u003edbr_pacing\". This\ncaused a trace when KASAN is enabled.\n\nBUG: KASAN: slab-out-of-bounds in bnxt_re_get_hw_stats+0x2b6a/0x2e00 [bnxt_re]\nWrite of size 8 at addr ffff8885942a6340 by task modprobe/4809",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50158",
"url": "https://www.suse.com/security/cve/CVE-2024-50158"
},
{
"category": "external",
"summary": "SUSE Bug 1233036 for CVE-2024-50158",
"url": "https://bugzilla.suse.com/1233036"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50158"
},
{
"cve": "CVE-2024-50159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50159"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Fix the double free in scmi_debugfs_common_setup()\n\nClang static checker(scan-build) throws below warning:\n | drivers/firmware/arm_scmi/driver.c:line 2915, column 2\n | Attempt to free released memory.\n\nWhen devm_add_action_or_reset() fails, scmi_debugfs_common_cleanup()\nwill run twice which causes double free of \u0027dbg-\u003ename\u0027.\n\nRemove the redundant scmi_debugfs_common_cleanup() to fix this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50159",
"url": "https://www.suse.com/security/cve/CVE-2024-50159"
},
{
"category": "external",
"summary": "SUSE Bug 1233041 for CVE-2024-50159",
"url": "https://bugzilla.suse.com/1233041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50159"
},
{
"cve": "CVE-2024-50160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda/cs8409: Fix possible NULL dereference\n\nIf snd_hda_gen_add_kctl fails to allocate memory and returns NULL, then\nNULL pointer dereference will occur in the next line.\n\nSince dolphin_fixups function is a hda_fixup function which is not supposed\nto return any errors, add simple check before dereference, ignore the fail.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50160",
"url": "https://www.suse.com/security/cve/CVE-2024-50160"
},
{
"category": "external",
"summary": "SUSE Bug 1233074 for CVE-2024-50160",
"url": "https://bugzilla.suse.com/1233074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50160"
},
{
"cve": "CVE-2024-50161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check the remaining info_cnt before repeating btf fields\n\nWhen trying to repeat the btf fields for array of nested struct, it\ndoesn\u0027t check the remaining info_cnt. The following splat will be\nreported when the value of ret * nelems is greater than BTF_FIELDS_MAX:\n\n ------------[ cut here ]------------\n UBSAN: array-index-out-of-bounds in ../kernel/bpf/btf.c:3951:49\n index 11 is out of range for type \u0027btf_field_info [11]\u0027\n CPU: 6 UID: 0 PID: 411 Comm: test_progs ...... 6.11.0-rc4+ #1\n Tainted: [O]=OOT_MODULE\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS ...\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x57/0x70\n dump_stack+0x10/0x20\n ubsan_epilogue+0x9/0x40\n __ubsan_handle_out_of_bounds+0x6f/0x80\n ? kallsyms_lookup_name+0x48/0xb0\n btf_parse_fields+0x992/0xce0\n map_create+0x591/0x770\n __sys_bpf+0x229/0x2410\n __x64_sys_bpf+0x1f/0x30\n x64_sys_call+0x199/0x9f0\n do_syscall_64+0x3b/0xc0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x7fea56f2cc5d\n ......\n \u003c/TASK\u003e\n ---[ end trace ]---\n\nFix it by checking the remaining info_cnt in btf_repeat_fields() before\nrepeating the btf fields.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50161",
"url": "https://www.suse.com/security/cve/CVE-2024-50161"
},
{
"category": "external",
"summary": "SUSE Bug 1233037 for CVE-2024-50161",
"url": "https://bugzilla.suse.com/1233037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50161"
},
{
"cve": "CVE-2024-50162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: devmap: provide rxq after redirect\n\nrxq contains a pointer to the device from where\nthe redirect happened. Currently, the BPF program\nthat was executed after a redirect via BPF_MAP_TYPE_DEVMAP*\ndoes not have it set.\n\nThis is particularly bad since accessing ingress_ifindex, e.g.\n\nSEC(\"xdp\")\nint prog(struct xdp_md *pkt)\n{\n return bpf_redirect_map(\u0026dev_redirect_map, 0, 0);\n}\n\nSEC(\"xdp/devmap\")\nint prog_after_redirect(struct xdp_md *pkt)\n{\n bpf_printk(\"ifindex %i\", pkt-\u003eingress_ifindex);\n return XDP_PASS;\n}\n\ndepends on access to rxq, so a NULL pointer gets dereferenced:\n\n\u003c1\u003e[ 574.475170] BUG: kernel NULL pointer dereference, address: 0000000000000000\n\u003c1\u003e[ 574.475188] #PF: supervisor read access in kernel mode\n\u003c1\u003e[ 574.475194] #PF: error_code(0x0000) - not-present page\n\u003c6\u003e[ 574.475199] PGD 0 P4D 0\n\u003c4\u003e[ 574.475207] Oops: Oops: 0000 [#1] PREEMPT SMP NOPTI\n\u003c4\u003e[ 574.475217] CPU: 4 UID: 0 PID: 217 Comm: kworker/4:1 Not tainted 6.11.0-rc5-reduced-00859-g780801200300 #23\n\u003c4\u003e[ 574.475226] Hardware name: Intel(R) Client Systems NUC13ANHi7/NUC13ANBi7, BIOS ANRPL357.0026.2023.0314.1458 03/14/2023\n\u003c4\u003e[ 574.475231] Workqueue: mld mld_ifc_work\n\u003c4\u003e[ 574.475247] RIP: 0010:bpf_prog_5e13354d9cf5018a_prog_after_redirect+0x17/0x3c\n\u003c4\u003e[ 574.475257] Code: cc cc cc cc cc cc cc 80 00 00 00 cc cc cc cc cc cc cc cc f3 0f 1e fa 0f 1f 44 00 00 66 90 55 48 89 e5 f3 0f 1e fa 48 8b 57 20 \u003c48\u003e 8b 52 00 8b 92 e0 00 00 00 48 bf f8 a6 d5 c4 5d a0 ff ff be 0b\n\u003c4\u003e[ 574.475263] RSP: 0018:ffffa62440280c98 EFLAGS: 00010206\n\u003c4\u003e[ 574.475269] RAX: ffffa62440280cd8 RBX: 0000000000000001 RCX: 0000000000000000\n\u003c4\u003e[ 574.475274] RDX: 0000000000000000 RSI: ffffa62440549048 RDI: ffffa62440280ce0\n\u003c4\u003e[ 574.475278] RBP: ffffa62440280c98 R08: 0000000000000002 R09: 0000000000000001\n\u003c4\u003e[ 574.475281] R10: ffffa05dc8b98000 R11: ffffa05f577fca40 R12: ffffa05dcab24000\n\u003c4\u003e[ 574.475285] R13: ffffa62440280ce0 R14: ffffa62440549048 R15: ffffa62440549000\n\u003c4\u003e[ 574.475289] FS: 0000000000000000(0000) GS:ffffa05f4f700000(0000) knlGS:0000000000000000\n\u003c4\u003e[ 574.475294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n\u003c4\u003e[ 574.475298] CR2: 0000000000000000 CR3: 000000025522e000 CR4: 0000000000f50ef0\n\u003c4\u003e[ 574.475303] PKRU: 55555554\n\u003c4\u003e[ 574.475306] Call Trace:\n\u003c4\u003e[ 574.475313] \u003cIRQ\u003e\n\u003c4\u003e[ 574.475318] ? __die+0x23/0x70\n\u003c4\u003e[ 574.475329] ? page_fault_oops+0x180/0x4c0\n\u003c4\u003e[ 574.475339] ? skb_pp_cow_data+0x34c/0x490\n\u003c4\u003e[ 574.475346] ? kmem_cache_free+0x257/0x280\n\u003c4\u003e[ 574.475357] ? exc_page_fault+0x67/0x150\n\u003c4\u003e[ 574.475368] ? asm_exc_page_fault+0x26/0x30\n\u003c4\u003e[ 574.475381] ? bpf_prog_5e13354d9cf5018a_prog_after_redirect+0x17/0x3c\n\u003c4\u003e[ 574.475386] bq_xmit_all+0x158/0x420\n\u003c4\u003e[ 574.475397] __dev_flush+0x30/0x90\n\u003c4\u003e[ 574.475407] veth_poll+0x216/0x250 [veth]\n\u003c4\u003e[ 574.475421] __napi_poll+0x28/0x1c0\n\u003c4\u003e[ 574.475430] net_rx_action+0x32d/0x3a0\n\u003c4\u003e[ 574.475441] handle_softirqs+0xcb/0x2c0\n\u003c4\u003e[ 574.475451] do_softirq+0x40/0x60\n\u003c4\u003e[ 574.475458] \u003c/IRQ\u003e\n\u003c4\u003e[ 574.475461] \u003cTASK\u003e\n\u003c4\u003e[ 574.475464] __local_bh_enable_ip+0x66/0x70\n\u003c4\u003e[ 574.475471] __dev_queue_xmit+0x268/0xe40\n\u003c4\u003e[ 574.475480] ? selinux_ip_postroute+0x213/0x420\n\u003c4\u003e[ 574.475491] ? alloc_skb_with_frags+0x4a/0x1d0\n\u003c4\u003e[ 574.475502] ip6_finish_output2+0x2be/0x640\n\u003c4\u003e[ 574.475512] ? nf_hook_slow+0x42/0xf0\n\u003c4\u003e[ 574.475521] ip6_finish_output+0x194/0x300\n\u003c4\u003e[ 574.475529] ? __pfx_ip6_finish_output+0x10/0x10\n\u003c4\u003e[ 574.475538] mld_sendpack+0x17c/0x240\n\u003c4\u003e[ 574.475548] mld_ifc_work+0x192/0x410\n\u003c4\u003e[ 574.475557] process_one_work+0x15d/0x380\n\u003c4\u003e[ 574.475566] worker_thread+0x29d/0x3a0\n\u003c4\u003e[ 574.475573] ? __pfx_worker_thread+0x10/0x10\n\u003c4\u003e[ 574.475580] ? __pfx_worker_thread+0x10/0x10\n\u003c4\u003e[ 574.475587] kthread+0xcd/0x100\n\u003c4\u003e[ 574.475597] ? __pfx_kthread+0x10/0x10\n\u003c4\u003e[ 574.475606] ret_from_fork+0x31/0x50\n\u003c4\u003e[ 574.475615] ? __pfx_kthread+0x10/0x10\n\u003c4\u003e[ 574.475623] ret_from_fork_asm+0x1a/0x\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50162",
"url": "https://www.suse.com/security/cve/CVE-2024-50162"
},
{
"category": "external",
"summary": "SUSE Bug 1233075 for CVE-2024-50162",
"url": "https://bugzilla.suse.com/1233075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50162"
},
{
"cve": "CVE-2024-50163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Make sure internal and UAPI bpf_redirect flags don\u0027t overlap\n\nThe bpf_redirect_info is shared between the SKB and XDP redirect paths,\nand the two paths use the same numeric flag values in the ri-\u003eflags\nfield (specifically, BPF_F_BROADCAST == BPF_F_NEXTHOP). This means that\nif skb bpf_redirect_neigh() is used with a non-NULL params argument and,\nsubsequently, an XDP redirect is performed using the same\nbpf_redirect_info struct, the XDP path will get confused and end up\ncrashing, which syzbot managed to trigger.\n\nWith the stack-allocated bpf_redirect_info, the structure is no longer\nshared between the SKB and XDP paths, so the crash doesn\u0027t happen\nanymore. However, different code paths using identically-numbered flag\nvalues in the same struct field still seems like a bit of a mess, so\nthis patch cleans that up by moving the flag definitions together and\nredefining the three flags in BPF_F_REDIRECT_INTERNAL to not overlap\nwith the flags used for XDP. It also adds a BUILD_BUG_ON() check to make\nsure the overlap is not re-introduced by mistake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50163",
"url": "https://www.suse.com/security/cve/CVE-2024-50163"
},
{
"category": "external",
"summary": "SUSE Bug 1233098 for CVE-2024-50163",
"url": "https://bugzilla.suse.com/1233098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50163"
},
{
"cve": "CVE-2024-50164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix overloading of MEM_UNINIT\u0027s meaning\n\nLonial reported an issue in the BPF verifier where check_mem_size_reg()\nhas the following code:\n\n if (!tnum_is_const(reg-\u003evar_off))\n /* For unprivileged variable accesses, disable raw\n * mode so that the program is required to\n * initialize all the memory that the helper could\n * just partially fill up.\n */\n meta = NULL;\n\nThis means that writes are not checked when the register containing the\nsize of the passed buffer has not a fixed size. Through this bug, a BPF\nprogram can write to a map which is marked as read-only, for example,\n.rodata global maps.\n\nThe problem is that MEM_UNINIT\u0027s initial meaning that \"the passed buffer\nto the BPF helper does not need to be initialized\" which was added back\nin commit 435faee1aae9 (\"bpf, verifier: add ARG_PTR_TO_RAW_STACK type\")\ngot overloaded over time with \"the passed buffer is being written to\".\n\nThe problem however is that checks such as the above which were added later\nvia 06c1c049721a (\"bpf: allow helpers access to variable memory\") set meta\nto NULL in order force the user to always initialize the passed buffer to\nthe helper. Due to the current double meaning of MEM_UNINIT, this bypasses\nverifier write checks to the memory (not boundary checks though) and only\nassumes the latter memory is read instead.\n\nFix this by reverting MEM_UNINIT back to its original meaning, and having\nMEM_WRITE as an annotation to BPF helpers in order to then trigger the\nBPF verifier checks for writing to memory.\n\nSome notes: check_arg_pair_ok() ensures that for ARG_CONST_SIZE{,_OR_ZERO}\nwe can access fn-\u003earg_type[arg - 1] since it must contain a preceding\nARG_PTR_TO_MEM. For check_mem_reg() the meta argument can be removed\naltogether since we do check both BPF_READ and BPF_WRITE. Same for the\nequivalent check_kfunc_mem_size_reg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50164",
"url": "https://www.suse.com/security/cve/CVE-2024-50164"
},
{
"category": "external",
"summary": "SUSE Bug 1233099 for CVE-2024-50164",
"url": "https://bugzilla.suse.com/1233099"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50164"
},
{
"cve": "CVE-2024-50165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50165"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Preserve param-\u003estring when parsing mount options\n\nIn bpf_parse_param(), keep the value of param-\u003estring intact so it can\nbe freed later. Otherwise, the kmalloc area pointed to by param-\u003estring\nwill be leaked as shown below:\n\nunreferenced object 0xffff888118c46d20 (size 8):\n comm \"new_name\", pid 12109, jiffies 4295580214\n hex dump (first 8 bytes):\n 61 6e 79 00 38 c9 5c 7e any.8.\\~\n backtrace (crc e1b7f876):\n [\u003c00000000c6848ac7\u003e] kmemleak_alloc+0x4b/0x80\n [\u003c00000000de9f7d00\u003e] __kmalloc_node_track_caller_noprof+0x36e/0x4a0\n [\u003c000000003e29b886\u003e] memdup_user+0x32/0xa0\n [\u003c0000000007248326\u003e] strndup_user+0x46/0x60\n [\u003c0000000035b3dd29\u003e] __x64_sys_fsconfig+0x368/0x3d0\n [\u003c0000000018657927\u003e] x64_sys_call+0xff/0x9f0\n [\u003c00000000c0cabc95\u003e] do_syscall_64+0x3b/0xc0\n [\u003c000000002f331597\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50165",
"url": "https://www.suse.com/security/cve/CVE-2024-50165"
},
{
"category": "external",
"summary": "SUSE Bug 1233031 for CVE-2024-50165",
"url": "https://bugzilla.suse.com/1233031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50165"
},
{
"cve": "CVE-2024-50166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsl/fman: Fix refcount handling of fman-related devices\n\nIn mac_probe() there are multiple calls to of_find_device_by_node(),\nfman_bind() and fman_port_bind() which takes references to of_dev-\u003edev.\nNot all references taken by these calls are released later on error path\nin mac_probe() and in mac_remove() which lead to reference leaks.\n\nAdd references release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50166",
"url": "https://www.suse.com/security/cve/CVE-2024-50166"
},
{
"category": "external",
"summary": "SUSE Bug 1233050 for CVE-2024-50166",
"url": "https://bugzilla.suse.com/1233050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50166"
},
{
"cve": "CVE-2024-50167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: fix potential memory leak in be_xmit()\n\nThe be_xmit() returns NETDEV_TX_OK without freeing skb\nin case of be_xmit_enqueue() fails, add dev_kfree_skb_any() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50167",
"url": "https://www.suse.com/security/cve/CVE-2024-50167"
},
{
"category": "external",
"summary": "SUSE Bug 1233049 for CVE-2024-50167",
"url": "https://bugzilla.suse.com/1233049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50167"
},
{
"cve": "CVE-2024-50168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sun3_82586: fix potential memory leak in sun3_82586_send_packet()\n\nThe sun3_82586_send_packet() returns NETDEV_TX_OK without freeing skb\nin case of skb-\u003elen being too long, add dev_kfree_skb() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50168",
"url": "https://www.suse.com/security/cve/CVE-2024-50168"
},
{
"category": "external",
"summary": "SUSE Bug 1233059 for CVE-2024-50168",
"url": "https://bugzilla.suse.com/1233059"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50168"
},
{
"cve": "CVE-2024-50170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bcmasp: fix potential memory leak in bcmasp_xmit()\n\nThe bcmasp_xmit() returns NETDEV_TX_OK without freeing skb\nin case of mapping fails, add dev_kfree_skb() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50170",
"url": "https://www.suse.com/security/cve/CVE-2024-50170"
},
{
"category": "external",
"summary": "SUSE Bug 1233030 for CVE-2024-50170",
"url": "https://bugzilla.suse.com/1233030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50170"
},
{
"cve": "CVE-2024-50171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: systemport: fix potential memory leak in bcm_sysport_xmit()\n\nThe bcm_sysport_xmit() returns NETDEV_TX_OK without freeing skb\nin case of dma_map_single() fails, add dev_kfree_skb() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50171",
"url": "https://www.suse.com/security/cve/CVE-2024-50171"
},
{
"category": "external",
"summary": "SUSE Bug 1233057 for CVE-2024-50171",
"url": "https://bugzilla.suse.com/1233057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50171"
},
{
"cve": "CVE-2024-50172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix a possible memory leak\n\nIn bnxt_re_setup_chip_ctx() when bnxt_qplib_map_db_bar() fails\ndriver is not freeing the memory allocated for \"rdev-\u003echip_ctx\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50172",
"url": "https://www.suse.com/security/cve/CVE-2024-50172"
},
{
"category": "external",
"summary": "SUSE Bug 1233029 for CVE-2024-50172",
"url": "https://bugzilla.suse.com/1233029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50172"
},
{
"cve": "CVE-2024-50173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Fix access to uninitialized variable in tick_ctx_cleanup()\n\nThe group variable can\u0027t be used to retrieve ptdev in our second loop,\nbecause it points to the previously iterated list_head, not a valid\ngroup. Get the ptdev object from the scheduler instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50173",
"url": "https://www.suse.com/security/cve/CVE-2024-50173"
},
{
"category": "external",
"summary": "SUSE Bug 1233094 for CVE-2024-50173",
"url": "https://bugzilla.suse.com/1233094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50173"
},
{
"cve": "CVE-2024-50174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Fix race when converting group handle to group object\n\nXArray provides it\u0027s own internal lock which protects the internal array\nwhen entries are being simultaneously added and removed. However there\nis still a race between retrieving the pointer from the XArray and\nincrementing the reference count.\n\nTo avoid this race simply hold the internal XArray lock when\nincrementing the reference count, this ensures there cannot be a racing\ncall to xa_erase().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50174",
"url": "https://www.suse.com/security/cve/CVE-2024-50174"
},
{
"category": "external",
"summary": "SUSE Bug 1233093 for CVE-2024-50174",
"url": "https://bugzilla.suse.com/1233093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50174"
},
{
"cve": "CVE-2024-50175",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50175"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: qcom: camss: Remove use_count guard in stop_streaming\n\nThe use_count check was introduced so that multiple concurrent Raw Data\nInterfaces RDIs could be driven by different virtual channels VCs on the\nCSIPHY input driving the video pipeline.\n\nThis is an invalid use of use_count though as use_count pertains to the\nnumber of times a video entity has been opened by user-space not the number\nof active streams.\n\nIf use_count and stream-on count don\u0027t agree then stop_streaming() will\nbreak as is currently the case and has become apparent when using CAMSS\nwith libcamera\u0027s released softisp 0.3.\n\nThe use of use_count like this is a bit hacky and right now breaks regular\nusage of CAMSS for a single stream case. Stopping qcam results in the splat\nbelow, and then it cannot be started again and any attempts to do so fails\nwith -EBUSY.\n\n[ 1265.509831] WARNING: CPU: 5 PID: 919 at drivers/media/common/videobuf2/videobuf2-core.c:2183 __vb2_queue_cancel+0x230/0x2c8 [videobuf2_common]\n...\n[ 1265.510630] Call trace:\n[ 1265.510636] __vb2_queue_cancel+0x230/0x2c8 [videobuf2_common]\n[ 1265.510648] vb2_core_streamoff+0x24/0xcc [videobuf2_common]\n[ 1265.510660] vb2_ioctl_streamoff+0x5c/0xa8 [videobuf2_v4l2]\n[ 1265.510673] v4l_streamoff+0x24/0x30 [videodev]\n[ 1265.510707] __video_do_ioctl+0x190/0x3f4 [videodev]\n[ 1265.510732] video_usercopy+0x304/0x8c4 [videodev]\n[ 1265.510757] video_ioctl2+0x18/0x34 [videodev]\n[ 1265.510782] v4l2_ioctl+0x40/0x60 [videodev]\n...\n[ 1265.510944] videobuf2_common: driver bug: stop_streaming operation is leaving buffer 0 in active state\n[ 1265.511175] videobuf2_common: driver bug: stop_streaming operation is leaving buffer 1 in active state\n[ 1265.511398] videobuf2_common: driver bug: stop_streaming operation is leaving buffer 2 in active st\n\nOne CAMSS specific way to handle multiple VCs on the same RDI might be:\n\n- Reference count each pipeline enable for CSIPHY, CSID, VFE and RDIx.\n- The video buffers are already associated with msm_vfeN_rdiX so\n release video buffers when told to do so by stop_streaming.\n- Only release the power-domains for the CSIPHY, CSID and VFE when\n their internal refcounts drop.\n\nEither way refusing to release video buffers based on use_count is\nerroneous and should be reverted. The silicon enabling code for selecting\nVCs is perfectly fine. Its a \"known missing feature\" that concurrent VCs\nwon\u0027t work with CAMSS right now.\n\nInitial testing with this code didn\u0027t show an error but, SoftISP and \"real\"\nusage with Google Hangouts breaks the upstream code pretty quickly, we need\nto do a partial revert and take another pass at VCs.\n\nThis commit partially reverts commit 89013969e232 (\"media: camss: sm8250:\nPipeline starting and stopping for multiple virtual channels\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50175",
"url": "https://www.suse.com/security/cve/CVE-2024-50175"
},
{
"category": "external",
"summary": "SUSE Bug 1233092 for CVE-2024-50175",
"url": "https://bugzilla.suse.com/1233092"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50175"
},
{
"cve": "CVE-2024-50176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50176"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nremoteproc: k3-r5: Fix error handling when power-up failed\n\nBy simply bailing out, the driver was violating its rule and internal\nassumptions that either both or no rproc should be initialized. E.g.,\nthis could cause the first core to be available but not the second one,\nleading to crashes on its shutdown later on while trying to dereference\nthat second instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50176",
"url": "https://www.suse.com/security/cve/CVE-2024-50176"
},
{
"category": "external",
"summary": "SUSE Bug 1233091 for CVE-2024-50176",
"url": "https://bugzilla.suse.com/1233091"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50176"
},
{
"cve": "CVE-2024-50177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50177"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix a UBSAN warning in DML2.1\n\nWhen programming phantom pipe, since cursor_width is explicity set to 0,\nthis causes calculation logic to trigger overflow for an unsigned int\ntriggering the kernel\u0027s UBSAN check as below:\n\n[ 40.962845] UBSAN: shift-out-of-bounds in /tmp/amd.EfpumTkO/amd/amdgpu/../display/dc/dml2/dml21/src/dml2_core/dml2_core_dcn4_calcs.c:3312:34\n[ 40.962849] shift exponent 4294967170 is too large for 32-bit type \u0027unsigned int\u0027\n[ 40.962852] CPU: 1 PID: 1670 Comm: gnome-shell Tainted: G W OE 6.5.0-41-generic #41~22.04.2-Ubuntu\n[ 40.962854] Hardware name: Gigabyte Technology Co., Ltd. X670E AORUS PRO X/X670E AORUS PRO X, BIOS F21 01/10/2024\n[ 40.962856] Call Trace:\n[ 40.962857] \u003cTASK\u003e\n[ 40.962860] dump_stack_lvl+0x48/0x70\n[ 40.962870] dump_stack+0x10/0x20\n[ 40.962872] __ubsan_handle_shift_out_of_bounds+0x1ac/0x360\n[ 40.962878] calculate_cursor_req_attributes.cold+0x1b/0x28 [amdgpu]\n[ 40.963099] dml_core_mode_support+0x6b91/0x16bc0 [amdgpu]\n[ 40.963327] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.963331] ? CalculateWatermarksMALLUseAndDRAMSpeedChangeSupport+0x18b8/0x2790 [amdgpu]\n[ 40.963534] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.963536] ? dml_core_mode_support+0xb3db/0x16bc0 [amdgpu]\n[ 40.963730] dml2_core_calcs_mode_support_ex+0x2c/0x90 [amdgpu]\n[ 40.963906] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.963909] ? dml2_core_calcs_mode_support_ex+0x2c/0x90 [amdgpu]\n[ 40.964078] core_dcn4_mode_support+0x72/0xbf0 [amdgpu]\n[ 40.964247] dml2_top_optimization_perform_optimization_phase+0x1d3/0x2a0 [amdgpu]\n[ 40.964420] dml2_build_mode_programming+0x23d/0x750 [amdgpu]\n[ 40.964587] dml21_validate+0x274/0x770 [amdgpu]\n[ 40.964761] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.964763] ? resource_append_dpp_pipes_for_plane_composition+0x27c/0x3b0 [amdgpu]\n[ 40.964942] dml2_validate+0x504/0x750 [amdgpu]\n[ 40.965117] ? dml21_copy+0x95/0xb0 [amdgpu]\n[ 40.965291] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.965295] dcn401_validate_bandwidth+0x4e/0x70 [amdgpu]\n[ 40.965491] update_planes_and_stream_state+0x38d/0x5c0 [amdgpu]\n[ 40.965672] update_planes_and_stream_v3+0x52/0x1e0 [amdgpu]\n[ 40.965845] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.965849] dc_update_planes_and_stream+0x71/0xb0 [amdgpu]\n\nFix this by adding a guard for checking cursor width before triggering\nthe size calculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50177",
"url": "https://www.suse.com/security/cve/CVE-2024-50177"
},
{
"category": "external",
"summary": "SUSE Bug 1233115 for CVE-2024-50177",
"url": "https://bugzilla.suse.com/1233115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50177"
},
{
"cve": "CVE-2024-50178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: loongson3: Use raw_smp_processor_id() in do_service_request()\n\nUse raw_smp_processor_id() instead of plain smp_processor_id() in\ndo_service_request(), otherwise we may get some errors with the driver\nenabled:\n\n BUG: using smp_processor_id() in preemptible [00000000] code: (udev-worker)/208\n caller is loongson3_cpufreq_probe+0x5c/0x250 [loongson3_cpufreq]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50178",
"url": "https://www.suse.com/security/cve/CVE-2024-50178"
},
{
"category": "external",
"summary": "SUSE Bug 1233121 for CVE-2024-50178",
"url": "https://bugzilla.suse.com/1233121"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50178"
},
{
"cve": "CVE-2024-50179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: remove the incorrect Fw reference check when dirtying pages\n\nWhen doing the direct-io reads it will also try to mark pages dirty,\nbut for the read path it won\u0027t hold the Fw caps and there is case\nwill it get the Fw reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50179",
"url": "https://www.suse.com/security/cve/CVE-2024-50179"
},
{
"category": "external",
"summary": "SUSE Bug 1233123 for CVE-2024-50179",
"url": "https://bugzilla.suse.com/1233123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50179"
},
{
"cve": "CVE-2024-50180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: sisfb: Fix strbuf array overflow\n\nThe values of the variables xres and yres are placed in strbuf.\nThese variables are obtained from strbuf1.\nThe strbuf1 array contains digit characters\nand a space if the array contains non-digit characters.\nThen, when executing sprintf(strbuf, \"%ux%ux8\", xres, yres);\nmore than 16 bytes will be written to strbuf.\nIt is suggested to increase the size of the strbuf array to 24.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50180",
"url": "https://www.suse.com/security/cve/CVE-2024-50180"
},
{
"category": "external",
"summary": "SUSE Bug 1233125 for CVE-2024-50180",
"url": "https://bugzilla.suse.com/1233125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50180"
},
{
"cve": "CVE-2024-50181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50181"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50181",
"url": "https://www.suse.com/security/cve/CVE-2024-50181"
},
{
"category": "external",
"summary": "SUSE Bug 1233127 for CVE-2024-50181",
"url": "https://bugzilla.suse.com/1233127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50181"
},
{
"cve": "CVE-2024-50182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50182"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsecretmem: disable memfd_secret() if arch cannot set direct map\n\nReturn -ENOSYS from memfd_secret() syscall if !can_set_direct_map(). This\nis the case for example on some arm64 configurations, where marking 4k\nPTEs in the direct map not present can only be done if the direct map is\nset up at 4k granularity in the first place (as ARM\u0027s break-before-make\nsemantics do not easily allow breaking apart large/gigantic pages).\n\nMore precisely, on arm64 systems with !can_set_direct_map(),\nset_direct_map_invalid_noflush() is a no-op, however it returns success\n(0) instead of an error. This means that memfd_secret will seemingly\n\"work\" (e.g. syscall succeeds, you can mmap the fd and fault in pages),\nbut it does not actually achieve its goal of removing its memory from the\ndirect map.\n\nNote that with this patch, memfd_secret() will start erroring on systems\nwhere can_set_direct_map() returns false (arm64 with\nCONFIG_RODATA_FULL_DEFAULT_ENABLED=n, CONFIG_DEBUG_PAGEALLOC=n and\nCONFIG_KFENCE=n), but that still seems better than the current silent\nfailure. Since CONFIG_RODATA_FULL_DEFAULT_ENABLED defaults to \u0027y\u0027, most\narm64 systems actually have a working memfd_secret() and aren\u0027t be\naffected.\n\nFrom going through the iterations of the original memfd_secret patch\nseries, it seems that disabling the syscall in these scenarios was the\nintended behavior [1] (preferred over having\nset_direct_map_invalid_noflush return an error as that would result in\nSIGBUSes at page-fault time), however the check for it got dropped between\nv16 [2] and v17 [3], when secretmem moved away from CMA allocations.\n\n[1]: https://lore.kernel.org/lkml/20201124164930.GK8537@kernel.org/\n[2]: https://lore.kernel.org/lkml/20210121122723.3446-11-rppt@kernel.org/#t\n[3]: https://lore.kernel.org/lkml/20201125092208.12544-10-rppt@kernel.org/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50182",
"url": "https://www.suse.com/security/cve/CVE-2024-50182"
},
{
"category": "external",
"summary": "SUSE Bug 1233129 for CVE-2024-50182",
"url": "https://bugzilla.suse.com/1233129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50182"
},
{
"cve": "CVE-2024-50183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance\n\nDeleting an NPIV instance requires all fabric ndlps to be released before\nan NPIV\u0027s resources can be torn down. Failure to release fabric ndlps\nbeforehand opens kref imbalance race conditions. Fix by forcing the DA_ID\nto complete synchronously with usage of wait_queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50183",
"url": "https://www.suse.com/security/cve/CVE-2024-50183"
},
{
"category": "external",
"summary": "SUSE Bug 1233130 for CVE-2024-50183",
"url": "https://bugzilla.suse.com/1233130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50183"
},
{
"cve": "CVE-2024-50184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50184"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_pmem: Check device status before requesting flush\n\nIf a pmem device is in a bad status, the driver side could wait for\nhost ack forever in virtio_pmem_flush(), causing the system to hang.\n\nSo add a status check in the beginning of virtio_pmem_flush() to return\nearly if the device is not activated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50184",
"url": "https://www.suse.com/security/cve/CVE-2024-50184"
},
{
"category": "external",
"summary": "SUSE Bug 1233135 for CVE-2024-50184",
"url": "https://bugzilla.suse.com/1233135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50184"
},
{
"cve": "CVE-2024-50185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: handle consistently DSS corruption\n\nBugged peer implementation can send corrupted DSS options, consistently\nhitting a few warning in the data path. Use DEBUG_NET assertions, to\navoid the splat on some builds and handle consistently the error, dumping\nrelated MIBs and performing fallback and/or reset according to the\nsubflow type.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50185",
"url": "https://www.suse.com/security/cve/CVE-2024-50185"
},
{
"category": "external",
"summary": "SUSE Bug 1233109 for CVE-2024-50185",
"url": "https://bugzilla.suse.com/1233109"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50185"
},
{
"cve": "CVE-2024-50186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50186"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: explicitly clear the sk pointer, when pf-\u003ecreate fails\n\nWe have recently noticed the exact same KASAN splat as in commit\n6cd4a78d962b (\"net: do not leave a dangling sk pointer, when socket\ncreation fails\"). The problem is that commit did not fully address the\nproblem, as some pf-\u003ecreate implementations do not use sk_common_release\nin their error paths.\n\nFor example, we can use the same reproducer as in the above commit, but\nchanging ping to arping. arping uses AF_PACKET socket and if packet_create\nfails, it will just sk_free the allocated sk object.\n\nWhile we could chase all the pf-\u003ecreate implementations and make sure they\nNULL the freed sk object on error from the socket, we can\u0027t guarantee\nfuture protocols will not make the same mistake.\n\nSo it is easier to just explicitly NULL the sk pointer upon return from\npf-\u003ecreate in __sock_create. We do know that pf-\u003ecreate always releases the\nallocated sk object on error, so if the pointer is not NULL, it is\ndefinitely dangling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50186",
"url": "https://www.suse.com/security/cve/CVE-2024-50186"
},
{
"category": "external",
"summary": "SUSE Bug 1233110 for CVE-2024-50186",
"url": "https://bugzilla.suse.com/1233110"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50186"
},
{
"cve": "CVE-2024-50187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: Stop the active perfmon before being destroyed\n\nUpon closing the file descriptor, the active performance monitor is not\nstopped. Although all perfmons are destroyed in `vc4_perfmon_close_file()`,\nthe active performance monitor\u0027s pointer (`vc4-\u003eactive_perfmon`) is still\nretained.\n\nIf we open a new file descriptor and submit a few jobs with performance\nmonitors, the driver will attempt to stop the active performance monitor\nusing the stale pointer in `vc4-\u003eactive_perfmon`. However, this pointer\nis no longer valid because the previous process has already terminated,\nand all performance monitors associated with it have been destroyed and\nfreed.\n\nTo fix this, when the active performance monitor belongs to a given\nprocess, explicitly stop it before destroying and freeing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50187",
"url": "https://www.suse.com/security/cve/CVE-2024-50187"
},
{
"category": "external",
"summary": "SUSE Bug 1233108 for CVE-2024-50187",
"url": "https://bugzilla.suse.com/1233108"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50187"
},
{
"cve": "CVE-2024-50188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: dp83869: fix memory corruption when enabling fiber\n\nWhen configuring the fiber port, the DP83869 PHY driver incorrectly\ncalls linkmode_set_bit() with a bit mask (1 \u003c\u003c 10) rather than a bit\nnumber (10). This corrupts some other memory location -- in case of\narm64 the priv pointer in the same structure.\n\nSince the advertising flags are updated from supported at the end of the\nfunction the incorrect line isn\u0027t needed at all and can be removed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50188",
"url": "https://www.suse.com/security/cve/CVE-2024-50188"
},
{
"category": "external",
"summary": "SUSE Bug 1233107 for CVE-2024-50188",
"url": "https://bugzilla.suse.com/1233107"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50188"
},
{
"cve": "CVE-2024-50189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50189"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: Switch to device-managed dmam_alloc_coherent()\n\nUsing the device-managed version allows to simplify clean-up in probe()\nerror path.\n\nAdditionally, this device-managed ensures proper cleanup, which helps to\nresolve memory errors, page faults, btrfs going read-only, and btrfs\ndisk corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50189",
"url": "https://www.suse.com/security/cve/CVE-2024-50189"
},
{
"category": "external",
"summary": "SUSE Bug 1233105 for CVE-2024-50189",
"url": "https://bugzilla.suse.com/1233105"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50189"
},
{
"cve": "CVE-2024-50190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix memleak in ice_init_tx_topology()\n\nFix leak of the FW blob (DDP pkg).\n\nMake ice_cfg_tx_topo() const-correct, so ice_init_tx_topology() can avoid\ncopying whole FW blob. Copy just the topology section, and only when\nneeded. Reuse the buffer allocated for the read of the current topology.\n\nThis was found by kmemleak, with the following trace for each PF:\n [\u003cffffffff8761044d\u003e] kmemdup_noprof+0x1d/0x50\n [\u003cffffffffc0a0a480\u003e] ice_init_ddp_config+0x100/0x220 [ice]\n [\u003cffffffffc0a0da7f\u003e] ice_init_dev+0x6f/0x200 [ice]\n [\u003cffffffffc0a0dc49\u003e] ice_init+0x29/0x560 [ice]\n [\u003cffffffffc0a10c1d\u003e] ice_probe+0x21d/0x310 [ice]\n\nConstify ice_cfg_tx_topo() @buf parameter.\nThis cascades further down to few more functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50190",
"url": "https://www.suse.com/security/cve/CVE-2024-50190"
},
{
"category": "external",
"summary": "SUSE Bug 1233090 for CVE-2024-50190",
"url": "https://bugzilla.suse.com/1233090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50190"
},
{
"cve": "CVE-2024-50191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: don\u0027t set SB_RDONLY after filesystem errors\n\nWhen the filesystem is mounted with errors=remount-ro, we were setting\nSB_RDONLY flag to stop all filesystem modifications. We knew this misses\nproper locking (sb-\u003es_umount) and does not go through proper filesystem\nremount procedure but it has been the way this worked since early ext2\ndays and it was good enough for catastrophic situation damage\nmitigation. Recently, syzbot has found a way (see link) to trigger\nwarnings in filesystem freezing because the code got confused by\nSB_RDONLY changing under its hands. Since these days we set\nEXT4_FLAGS_SHUTDOWN on the superblock which is enough to stop all\nfilesystem modifications, modifying SB_RDONLY shouldn\u0027t be needed. So\nstop doing that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50191",
"url": "https://www.suse.com/security/cve/CVE-2024-50191"
},
{
"category": "external",
"summary": "SUSE Bug 1233101 for CVE-2024-50191",
"url": "https://bugzilla.suse.com/1233101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50191"
},
{
"cve": "CVE-2024-50192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/gic-v4: Don\u0027t allow a VMOVP on a dying VPE\n\nKunkun Jiang reported that there is a small window of opportunity for\nuserspace to force a change of affinity for a VPE while the VPE has already\nbeen unmapped, but the corresponding doorbell interrupt still visible in\n/proc/irq/.\n\nPlug the race by checking the value of vmapp_count, which tracks whether\nthe VPE is mapped ot not, and returning an error in this case.\n\nThis involves making vmapp_count common to both GICv4.1 and its v4.0\nancestor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50192",
"url": "https://www.suse.com/security/cve/CVE-2024-50192"
},
{
"category": "external",
"summary": "SUSE Bug 1233106 for CVE-2024-50192",
"url": "https://bugzilla.suse.com/1233106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50192"
},
{
"cve": "CVE-2024-50193",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50193"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/entry_32: Clear CPU buffers after register restore in NMI return\n\nCPU buffers are currently cleared after call to exc_nmi, but before\nregister state is restored. This may be okay for MDS mitigation but not for\nRDFS. Because RDFS mitigation requires CPU buffers to be cleared when\nregisters don\u0027t have any sensitive data.\n\nMove CLEAR_CPU_BUFFERS after RESTORE_ALL_NMI.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50193",
"url": "https://www.suse.com/security/cve/CVE-2024-50193"
},
{
"category": "external",
"summary": "SUSE Bug 1233102 for CVE-2024-50193",
"url": "https://bugzilla.suse.com/1233102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50193"
},
{
"cve": "CVE-2024-50194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: probes: Fix uprobes for big-endian kernels\n\nThe arm64 uprobes code is broken for big-endian kernels as it doesn\u0027t\nconvert the in-memory instruction encoding (which is always\nlittle-endian) into the kernel\u0027s native endianness before analyzing and\nsimulating instructions. This may result in a few distinct problems:\n\n* The kernel may may erroneously reject probing an instruction which can\n safely be probed.\n\n* The kernel may erroneously erroneously permit stepping an\n instruction out-of-line when that instruction cannot be stepped\n out-of-line safely.\n\n* The kernel may erroneously simulate instruction incorrectly dur to\n interpretting the byte-swapped encoding.\n\nThe endianness mismatch isn\u0027t caught by the compiler or sparse because:\n\n* The arch_uprobe::{insn,ixol} fields are encoded as arrays of u8, so\n the compiler and sparse have no idea these contain a little-endian\n 32-bit value. The core uprobes code populates these with a memcpy()\n which similarly does not handle endianness.\n\n* While the uprobe_opcode_t type is an alias for __le32, both\n arch_uprobe_analyze_insn() and arch_uprobe_skip_sstep() cast from u8[]\n to the similarly-named probe_opcode_t, which is an alias for u32.\n Hence there is no endianness conversion warning.\n\nFix this by changing the arch_uprobe::{insn,ixol} fields to __le32 and\nadding the appropriate __le32_to_cpu() conversions prior to consuming\nthe instruction encoding. The core uprobes copies these fields as opaque\nranges of bytes, and so is unaffected by this change.\n\nAt the same time, remove MAX_UINSN_BYTES and consistently use\nAARCH64_INSN_SIZE for clarity.\n\nTested with the following:\n\n| #include \u003cstdio.h\u003e\n| #include \u003cstdbool.h\u003e\n|\n| #define noinline __attribute__((noinline))\n|\n| static noinline void *adrp_self(void)\n| {\n| void *addr;\n|\n| asm volatile(\n| \" adrp %x0, adrp_self\\n\"\n| \" add %x0, %x0, :lo12:adrp_self\\n\"\n| : \"=r\" (addr));\n| }\n|\n|\n| int main(int argc, char *argv)\n| {\n| void *ptr = adrp_self();\n| bool equal = (ptr == adrp_self);\n|\n| printf(\"adrp_self =\u003e %p\\n\"\n| \"adrp_self() =\u003e %p\\n\"\n| \"%s\\n\",\n| adrp_self, ptr, equal ? \"EQUAL\" : \"NOT EQUAL\");\n|\n| return 0;\n| }\n\n.... where the adrp_self() function was compiled to:\n\n| 00000000004007e0 \u003cadrp_self\u003e:\n| 4007e0: 90000000 adrp x0, 400000 \u003c__ehdr_start\u003e\n| 4007e4: 911f8000 add x0, x0, #0x7e0\n| 4007e8: d65f03c0 ret\n\nBefore this patch, the ADRP is not recognized, and is assumed to be\nsteppable, resulting in corruption of the result:\n\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL\n| # echo \u0027p /root/adrp-self:0x007e0\u0027 \u003e /sys/kernel/tracing/uprobe_events\n| # echo 1 \u003e /sys/kernel/tracing/events/uprobes/enable\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0xffffffffff7e0\n| NOT EQUAL\n\nAfter this patch, the ADRP is correctly recognized and simulated:\n\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL\n| #\n| # echo \u0027p /root/adrp-self:0x007e0\u0027 \u003e /sys/kernel/tracing/uprobe_events\n| # echo 1 \u003e /sys/kernel/tracing/events/uprobes/enable\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50194",
"url": "https://www.suse.com/security/cve/CVE-2024-50194"
},
{
"category": "external",
"summary": "SUSE Bug 1233111 for CVE-2024-50194",
"url": "https://bugzilla.suse.com/1233111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50194"
},
{
"cve": "CVE-2024-50195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nposix-clock: Fix missing timespec64 check in pc_clock_settime()\n\nAs Andrew pointed out, it will make sense that the PTP core\nchecked timespec64 struct\u0027s tv_sec and tv_nsec range before calling\nptp-\u003einfo-\u003esettime64().\n\nAs the man manual of clock_settime() said, if tp.tv_sec is negative or\ntp.tv_nsec is outside the range [0..999,999,999], it should return EINVAL,\nwhich include dynamic clocks which handles PTP clock, and the condition is\nconsistent with timespec64_valid(). As Thomas suggested, timespec64_valid()\nonly check the timespec is valid, but not ensure that the time is\nin a valid range, so check it ahead using timespec64_valid_strict()\nin pc_clock_settime() and return -EINVAL if not valid.\n\nThere are some drivers that use tp-\u003etv_sec and tp-\u003etv_nsec directly to\nwrite registers without validity checks and assume that the higher layer\nhas checked it, which is dangerous and will benefit from this, such as\nhclge_ptp_settime(), igb_ptp_settime_i210(), _rcar_gen4_ptp_settime(),\nand some drivers can remove the checks of itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50195",
"url": "https://www.suse.com/security/cve/CVE-2024-50195"
},
{
"category": "external",
"summary": "SUSE Bug 1233103 for CVE-2024-50195",
"url": "https://bugzilla.suse.com/1233103"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50195"
},
{
"cve": "CVE-2024-50196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: ocelot: fix system hang on level based interrupts\n\nThe current implementation only calls chained_irq_enter() and\nchained_irq_exit() if it detects pending interrupts.\n\n```\nfor (i = 0; i \u003c info-\u003estride; i++) {\n\turegmap_read(info-\u003emap, id_reg + 4 * i, \u0026reg);\n\tif (!reg)\n\t\tcontinue;\n\n\tchained_irq_enter(parent_chip, desc);\n```\n\nHowever, in case of GPIO pin configured in level mode and the parent\ncontroller configured in edge mode, GPIO interrupt might be lowered by the\nhardware. In the result, if the interrupt is short enough, the parent\ninterrupt is still pending while the GPIO interrupt is cleared;\nchained_irq_enter() never gets called and the system hangs trying to\nservice the parent interrupt.\n\nMoving chained_irq_enter() and chained_irq_exit() outside the for loop\nensures that they are called even when GPIO interrupt is lowered by the\nhardware.\n\nThe similar code with chained_irq_enter() / chained_irq_exit() functions\nwrapping interrupt checking loop may be found in many other drivers:\n```\ngrep -r -A 10 chained_irq_enter drivers/pinctrl\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50196",
"url": "https://www.suse.com/security/cve/CVE-2024-50196"
},
{
"category": "external",
"summary": "SUSE Bug 1233113 for CVE-2024-50196",
"url": "https://bugzilla.suse.com/1233113"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50196"
},
{
"cve": "CVE-2024-50197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50197"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: intel: platform: fix error path in device_for_each_child_node()\n\nThe device_for_each_child_node() loop requires calls to\nfwnode_handle_put() upon early returns to decrement the refcount of\nthe child node and avoid leaking memory if that error path is triggered.\n\nThere is one early returns within that loop in\nintel_platform_pinctrl_prepare_community(), but fwnode_handle_put() is\nmissing.\n\nInstead of adding the missing call, the scoped version of the loop can\nbe used to simplify the code and avoid mistakes in the future if new\nearly returns are added, as the child node is only used for parsing, and\nit is never assigned.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50197",
"url": "https://www.suse.com/security/cve/CVE-2024-50197"
},
{
"category": "external",
"summary": "SUSE Bug 1233089 for CVE-2024-50197",
"url": "https://bugzilla.suse.com/1233089"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50197"
},
{
"cve": "CVE-2024-50198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: veml6030: fix IIO device retrieval from embedded device\n\nThe dev pointer that is received as an argument in the\nin_illuminance_period_available_show function references the device\nembedded in the IIO device, not in the i2c client.\n\ndev_to_iio_dev() must be used to accessthe right data. The current\nimplementation leads to a segmentation fault on every attempt to read\nthe attribute because indio_dev gets a NULL assignment.\n\nThis bug has been present since the first appearance of the driver,\napparently since the last version (V6) before getting applied. A\nconstant attribute was used until then, and the last modifications might\nhave not been tested again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50198",
"url": "https://www.suse.com/security/cve/CVE-2024-50198"
},
{
"category": "external",
"summary": "SUSE Bug 1233100 for CVE-2024-50198",
"url": "https://bugzilla.suse.com/1233100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50198"
},
{
"cve": "CVE-2024-50199",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50199"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swapfile: skip HugeTLB pages for unuse_vma\n\nI got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The\nproblem can be reproduced by the following steps:\n\n 1. Allocate an anonymous 1GB HugeTLB and some other anonymous memory.\n 2. Swapout the above anonymous memory.\n 3. run swapoff and we will get a bad pud error in kernel message:\n\n mm/pgtable-generic.c:42: bad pud 00000000743d215d(84000001400000e7)\n\nWe can tell that pud_clear_bad is called by pud_none_or_clear_bad in\nunuse_pud_range() by ftrace. And therefore the HugeTLB pages will never\nbe freed because we lost it from page table. We can skip HugeTLB pages\nfor unuse_vma to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50199",
"url": "https://www.suse.com/security/cve/CVE-2024-50199"
},
{
"category": "external",
"summary": "SUSE Bug 1233112 for CVE-2024-50199",
"url": "https://bugzilla.suse.com/1233112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50199"
},
{
"cve": "CVE-2024-50200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmaple_tree: correct tree corruption on spanning store\n\nPatch series \"maple_tree: correct tree corruption on spanning store\", v3.\n\nThere has been a nasty yet subtle maple tree corruption bug that appears\nto have been in existence since the inception of the algorithm.\n\nThis bug seems far more likely to happen since commit f8d112a4e657\n(\"mm/mmap: avoid zeroing vma tree in mmap_region()\"), which is the point\nat which reports started to be submitted concerning this bug.\n\nWe were made definitely aware of the bug thanks to the kind efforts of\nBert Karwatzki who helped enormously in my being able to track this down\nand identify the cause of it.\n\nThe bug arises when an attempt is made to perform a spanning store across\ntwo leaf nodes, where the right leaf node is the rightmost child of the\nshared parent, AND the store completely consumes the right-mode node.\n\nThis results in mas_wr_spanning_store() mitakenly duplicating the new and\nexisting entries at the maximum pivot within the range, and thus maple\ntree corruption.\n\nThe fix patch corrects this by detecting this scenario and disallowing the\nmistaken duplicate copy.\n\nThe fix patch commit message goes into great detail as to how this occurs.\n\nThis series also includes a test which reliably reproduces the issue, and\nasserts that the fix works correctly.\n\nBert has kindly tested the fix and confirmed it resolved his issues. Also\nMikhail Gavrilov kindly reported what appears to be precisely the same\nbug, which this fix should also resolve.\n\n\nThis patch (of 2):\n\nThere has been a subtle bug present in the maple tree implementation from\nits inception.\n\nThis arises from how stores are performed - when a store occurs, it will\noverwrite overlapping ranges and adjust the tree as necessary to\naccommodate this.\n\nA range may always ultimately span two leaf nodes. In this instance we\nwalk the two leaf nodes, determine which elements are not overwritten to\nthe left and to the right of the start and end of the ranges respectively\nand then rebalance the tree to contain these entries and the newly\ninserted one.\n\nThis kind of store is dubbed a \u0027spanning store\u0027 and is implemented by\nmas_wr_spanning_store().\n\nIn order to reach this stage, mas_store_gfp() invokes\nmas_wr_preallocate(), mas_wr_store_type() and mas_wr_walk() in turn to\nwalk the tree and update the object (mas) to traverse to the location\nwhere the write should be performed, determining its store type.\n\nWhen a spanning store is required, this function returns false stopping at\nthe parent node which contains the target range, and mas_wr_store_type()\nmarks the mas-\u003estore_type as wr_spanning_store to denote this fact.\n\nWhen we go to perform the store in mas_wr_spanning_store(), we first\ndetermine the elements AFTER the END of the range we wish to store (that\nis, to the right of the entry to be inserted) - we do this by walking to\nthe NEXT pivot in the tree (i.e. r_mas.last + 1), starting at the node we\nhave just determined contains the range over which we intend to write.\n\nWe then turn our attention to the entries to the left of the entry we are\ninserting, whose state is represented by l_mas, and copy these into a \u0027big\nnode\u0027, which is a special node which contains enough slots to contain two\nleaf node\u0027s worth of data.\n\nWe then copy the entry we wish to store immediately after this - the copy\nand the insertion of the new entry is performed by mas_store_b_node().\n\nAfter this we copy the elements to the right of the end of the range which\nwe are inserting, if we have not exceeded the length of the node (i.e. \nr_mas.offset \u003c= r_mas.end).\n\nHerein lies the bug - under very specific circumstances, this logic can\nbreak and corrupt the maple tree.\n\nConsider the following tree:\n\nHeight\n 0 Root Node\n / \\\n pivot = 0xffff / \\ pivot = ULONG_MAX\n / \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50200",
"url": "https://www.suse.com/security/cve/CVE-2024-50200"
},
{
"category": "external",
"summary": "SUSE Bug 1233088 for CVE-2024-50200",
"url": "https://bugzilla.suse.com/1233088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50200"
},
{
"cve": "CVE-2024-50201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: Fix encoder-\u003epossible_clones\n\nInclude the encoder itself in its possible_clones bitmask.\nIn the past nothing validated that drivers were populating\npossible_clones correctly, but that changed in commit\n74d2aacbe840 (\"drm: Validate encoder-\u003epossible_clones\").\nLooks like radeon never got the memo and is still not\nfollowing the rules 100% correctly.\n\nThis results in some warnings during driver initialization:\nBogus possible_clones: [ENCODER:46:TV-46] possible_clones=0x4 (full encoder mask=0x7)\nWARNING: CPU: 0 PID: 170 at drivers/gpu/drm/drm_mode_config.c:615 drm_mode_config_validate+0x113/0x39c\n...\n\n(cherry picked from commit 3b6e7d40649c0d75572039aff9d0911864c689db)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50201",
"url": "https://www.suse.com/security/cve/CVE-2024-50201"
},
{
"category": "external",
"summary": "SUSE Bug 1233104 for CVE-2024-50201",
"url": "https://bugzilla.suse.com/1233104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50201"
},
{
"cve": "CVE-2024-50205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50205"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()\n\nThe step variable is initialized to zero. It is changed in the loop,\nbut if it\u0027s not changed it will remain zero. Add a variable check\nbefore the division.\n\nThe observed behavior was introduced by commit 826b5de90c0b\n(\"ALSA: firewire-lib: fix insufficient PCM rule for period/buffer size\"),\nand it is difficult to show that any of the interval parameters will\nsatisfy the snd_interval_test() condition with data from the\namdtp_rate_table[] table.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50205",
"url": "https://www.suse.com/security/cve/CVE-2024-50205"
},
{
"category": "external",
"summary": "SUSE Bug 1233293 for CVE-2024-50205",
"url": "https://bugzilla.suse.com/1233293"
},
{
"category": "external",
"summary": "SUSE Bug 1233294 for CVE-2024-50205",
"url": "https://bugzilla.suse.com/1233294"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50205"
},
{
"cve": "CVE-2024-50206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_eth_soc: fix memory corruption during fq dma init\n\nThe loop responsible for allocating up to MTK_FQ_DMA_LENGTH buffers must\nonly touch as many descriptors, otherwise it ends up corrupting unrelated\nmemory. Fix the loop iteration count accordingly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50206",
"url": "https://www.suse.com/security/cve/CVE-2024-50206"
},
{
"category": "external",
"summary": "SUSE Bug 1233288 for CVE-2024-50206",
"url": "https://bugzilla.suse.com/1233288"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50206"
},
{
"cve": "CVE-2024-50207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nring-buffer: Fix reader locking when changing the sub buffer order\n\nThe function ring_buffer_subbuf_order_set() updates each\nring_buffer_per_cpu and installs new sub buffers that match the requested\npage order. This operation may be invoked concurrently with readers that\nrely on some of the modified data, such as the head bit (RB_PAGE_HEAD), or\nthe ring_buffer_per_cpu.pages and reader_page pointers. However, no\nexclusive access is acquired by ring_buffer_subbuf_order_set(). Modifying\nthe mentioned data while a reader also operates on them can then result in\nincorrect memory access and various crashes.\n\nFix the problem by taking the reader_lock when updating a specific\nring_buffer_per_cpu in ring_buffer_subbuf_order_set().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50207",
"url": "https://www.suse.com/security/cve/CVE-2024-50207"
},
{
"category": "external",
"summary": "SUSE Bug 1233122 for CVE-2024-50207",
"url": "https://bugzilla.suse.com/1233122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50207"
},
{
"cve": "CVE-2024-50208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages\n\nAvoid memory corruption while setting up Level-2 PBL pages for the non MR\nresources when num_pages \u003e 256K.\n\nThere will be a single PDE page address (contiguous pages in the case of \u003e\nPAGE_SIZE), but, current logic assumes multiple pages, leading to invalid\nmemory access after 256K PBL entries in the PDE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50208",
"url": "https://www.suse.com/security/cve/CVE-2024-50208"
},
{
"category": "external",
"summary": "SUSE Bug 1233117 for CVE-2024-50208",
"url": "https://bugzilla.suse.com/1233117"
},
{
"category": "external",
"summary": "SUSE Bug 1233118 for CVE-2024-50208",
"url": "https://bugzilla.suse.com/1233118"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50208"
},
{
"cve": "CVE-2024-50209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Add a check for memory allocation\n\n__alloc_pbl() can return error when memory allocation fails.\nDriver is not checking the status on one of the instances.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50209",
"url": "https://www.suse.com/security/cve/CVE-2024-50209"
},
{
"category": "external",
"summary": "SUSE Bug 1233114 for CVE-2024-50209",
"url": "https://bugzilla.suse.com/1233114"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50209"
},
{
"cve": "CVE-2024-50210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nposix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime()\n\nIf get_clock_desc() succeeds, it calls fget() for the clockid\u0027s fd,\nand get the clk-\u003erwsem read lock, so the error path should release\nthe lock to make the lock balance and fput the clockid\u0027s fd to make\nthe refcount balance and release the fd related resource.\n\nHowever the below commit left the error path locked behind resulting in\nunbalanced locking. Check timespec64_valid_strict() before\nget_clock_desc() to fix it, because the \"ts\" is not changed\nafter that.\n\n[pabeni@redhat.com: fixed commit message typo]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50210",
"url": "https://www.suse.com/security/cve/CVE-2024-50210"
},
{
"category": "external",
"summary": "SUSE Bug 1233097 for CVE-2024-50210",
"url": "https://bugzilla.suse.com/1233097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50210"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50212",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50212"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib: alloc_tag_module_unload must wait for pending kfree_rcu calls\n\nBen Greear reports following splat:\n ------------[ cut here ]------------\n net/netfilter/nf_nat_core.c:1114 module nf_nat func:nf_nat_register_fn has 256 allocated at module unload\n WARNING: CPU: 1 PID: 10421 at lib/alloc_tag.c:168 alloc_tag_module_unload+0x22b/0x3f0\n Modules linked in: nf_nat(-) btrfs ufs qnx4 hfsplus hfs minix vfat msdos fat\n...\n Hardware name: Default string Default string/SKYBAY, BIOS 5.12 08/04/2020\n RIP: 0010:alloc_tag_module_unload+0x22b/0x3f0\n codetag_unload_module+0x19b/0x2a0\n ? codetag_load_module+0x80/0x80\n\nnf_nat module exit calls kfree_rcu on those addresses, but the free\noperation is likely still pending by the time alloc_tag checks for leaks.\n\nWait for outstanding kfree_rcu operations to complete before checking\nresolves this warning.\n\nReproducer:\nunshare -n iptables-nft -t nat -A PREROUTING -p tcp\ngrep nf_nat /proc/allocinfo # will list 4 allocations\nrmmod nft_chain_nat\nrmmod nf_nat # will WARN.\n\n[akpm@linux-foundation.org: add comment]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50212",
"url": "https://www.suse.com/security/cve/CVE-2024-50212"
},
{
"category": "external",
"summary": "SUSE Bug 1233173 for CVE-2024-50212",
"url": "https://bugzilla.suse.com/1233173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50212"
},
{
"cve": "CVE-2024-50213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tests: hdmi: Fix memory leaks in drm_display_mode_from_cea_vic()\n\nmodprobe drm_hdmi_state_helper_test and then rmmod it, the following\nmemory leak occurs.\n\nThe `mode` allocated in drm_mode_duplicate() called by\ndrm_display_mode_from_cea_vic() is not freed, which cause the memory leak:\n\n\tunreferenced object 0xffffff80ccd18100 (size 128):\n\t comm \"kunit_try_catch\", pid 1851, jiffies 4295059695\n\t hex dump (first 32 bytes):\n\t 57 62 00 00 80 02 90 02 f0 02 20 03 00 00 e0 01 Wb........ .....\n\t ea 01 ec 01 0d 02 00 00 0a 00 00 00 00 00 00 00 ................\n\t backtrace (crc c2f1aa95):\n\t [\u003c000000000f10b11b\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c000000001cd4cf73\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c00000000f1f3cffa\u003e] drm_mode_duplicate+0x44/0x19c\n\t [\u003c000000008cbeef13\u003e] drm_display_mode_from_cea_vic+0x88/0x98\n\t [\u003c0000000019daaacf\u003e] 0xffffffedc11ae69c\n\t [\u003c000000000aad0f85\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c00000000a9210bac\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c000000000a0b2e9e\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000bd668858\u003e] ret_from_fork+0x10/0x20\n\t......\n\nFree `mode` by using drm_kunit_display_mode_from_cea_vic()\nto fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50213",
"url": "https://www.suse.com/security/cve/CVE-2024-50213"
},
{
"category": "external",
"summary": "SUSE Bug 1233174 for CVE-2024-50213",
"url": "https://bugzilla.suse.com/1233174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50213"
},
{
"cve": "CVE-2024-50214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/connector: hdmi: Fix memory leak in drm_display_mode_from_cea_vic()\n\nmodprobe drm_connector_test and then rmmod drm_connector_test,\nthe following memory leak occurs.\n\nThe `mode` allocated in drm_mode_duplicate() called by\ndrm_display_mode_from_cea_vic() is not freed, which cause the memory leak:\n\n\tunreferenced object 0xffffff80cb0ee400 (size 128):\n\t comm \"kunit_try_catch\", pid 1948, jiffies 4294950339\n\t hex dump (first 32 bytes):\n\t 14 44 02 00 80 07 d8 07 04 08 98 08 00 00 38 04 .D............8.\n\t 3c 04 41 04 65 04 00 00 05 00 00 00 00 00 00 00 \u003c.A.e...........\n\t backtrace (crc 90e9585c):\n\t [\u003c00000000ec42e3d7\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c00000000d0ef055a\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c00000000c2062161\u003e] drm_mode_duplicate+0x44/0x19c\n\t [\u003c00000000f96c74aa\u003e] drm_display_mode_from_cea_vic+0x88/0x98\n\t [\u003c00000000d8f2c8b4\u003e] 0xffffffdc982a4868\n\t [\u003c000000005d164dbc\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c000000006fb23398\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c000000006ea56ca0\u003e] kthread+0x2e8/0x374\n\t [\u003c000000000676063f\u003e] ret_from_fork+0x10/0x20\n\t......\n\nFree `mode` by using drm_kunit_display_mode_from_cea_vic()\nto fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50214",
"url": "https://www.suse.com/security/cve/CVE-2024-50214"
},
{
"category": "external",
"summary": "SUSE Bug 1233177 for CVE-2024-50214",
"url": "https://bugzilla.suse.com/1233177"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50214"
},
{
"cve": "CVE-2024-50215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-auth: assign dh_key to NULL after kfree_sensitive\n\nctrl-\u003edh_key might be used across multiple calls to nvmet_setup_dhgroup()\nfor the same controller. So it\u0027s better to nullify it after release on\nerror path in order to avoid double free later in nvmet_destroy_auth().\n\nFound by Linux Verification Center (linuxtesting.org) with Svace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50215",
"url": "https://www.suse.com/security/cve/CVE-2024-50215"
},
{
"category": "external",
"summary": "SUSE Bug 1233189 for CVE-2024-50215",
"url": "https://bugzilla.suse.com/1233189"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50215"
},
{
"cve": "CVE-2024-50216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix finding a last resort AG in xfs_filestream_pick_ag\n\nWhen the main loop in xfs_filestream_pick_ag fails to find a suitable\nAG it tries to just pick the online AG. But the loop for that uses\nargs-\u003epag as loop iterator while the later code expects pag to be\nset. Fix this by reusing the max_pag case for this last resort, and\nalso add a check for impossible case of no AG just to make sure that\nthe uninitialized pag doesn\u0027t even escape in theory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50216",
"url": "https://www.suse.com/security/cve/CVE-2024-50216"
},
{
"category": "external",
"summary": "SUSE Bug 1233179 for CVE-2024-50216",
"url": "https://bugzilla.suse.com/1233179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50216"
},
{
"cve": "CVE-2024-50217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free of block device file in __btrfs_free_extra_devids()\n\nMounting btrfs from two images (which have the same one fsid and two\ndifferent dev_uuids) in certain executing order may trigger an UAF for\nvariable \u0027device-\u003ebdev_file\u0027 in __btrfs_free_extra_devids(). And\nfollowing are the details:\n\n1. Attach image_1 to loop0, attach image_2 to loop1, and scan btrfs\n devices by ioctl(BTRFS_IOC_SCAN_DEV):\n\n / btrfs_device_1 \u2192 loop0\n fs_device\n \\ btrfs_device_2 \u2192 loop1\n2. mount /dev/loop0 /mnt\n btrfs_open_devices\n btrfs_device_1-\u003ebdev_file = btrfs_get_bdev_and_sb(loop0)\n btrfs_device_2-\u003ebdev_file = btrfs_get_bdev_and_sb(loop1)\n btrfs_fill_super\n open_ctree\n fail: btrfs_close_devices // -ENOMEM\n\t btrfs_close_bdev(btrfs_device_1)\n fput(btrfs_device_1-\u003ebdev_file)\n\t // btrfs_device_1-\u003ebdev_file is freed\n\t btrfs_close_bdev(btrfs_device_2)\n fput(btrfs_device_2-\u003ebdev_file)\n\n3. mount /dev/loop1 /mnt\n btrfs_open_devices\n btrfs_get_bdev_and_sb(\u0026bdev_file)\n // EIO, btrfs_device_1-\u003ebdev_file is not assigned,\n // which points to a freed memory area\n btrfs_device_2-\u003ebdev_file = btrfs_get_bdev_and_sb(loop1)\n btrfs_fill_super\n open_ctree\n btrfs_free_extra_devids\n if (btrfs_device_1-\u003ebdev_file)\n fput(btrfs_device_1-\u003ebdev_file) // UAF !\n\nFix it by setting \u0027device-\u003ebdev_file\u0027 as \u0027NULL\u0027 after closing the\nbtrfs_device in btrfs_close_one_device().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50217",
"url": "https://www.suse.com/security/cve/CVE-2024-50217"
},
{
"category": "external",
"summary": "SUSE Bug 1233194 for CVE-2024-50217",
"url": "https://bugzilla.suse.com/1233194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50217"
},
{
"cve": "CVE-2024-50218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: pass u64 to ocfs2_truncate_inline maybe overflow\n\nSyzbot reported a kernel BUG in ocfs2_truncate_inline. There are two\nreasons for this: first, the parameter value passed is greater than\nocfs2_max_inline_data_with_xattr, second, the start and end parameters of\nocfs2_truncate_inline are \"unsigned int\".\n\nSo, we need to add a sanity check for byte_start and byte_len right before\nocfs2_truncate_inline() in ocfs2_remove_inode_range(), if they are greater\nthan ocfs2_max_inline_data_with_xattr return -EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50218",
"url": "https://www.suse.com/security/cve/CVE-2024-50218"
},
{
"category": "external",
"summary": "SUSE Bug 1233191 for CVE-2024-50218",
"url": "https://bugzilla.suse.com/1233191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50218"
},
{
"cve": "CVE-2024-50220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50220"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfork: do not invoke uffd on fork if error occurs\n\nPatch series \"fork: do not expose incomplete mm on fork\".\n\nDuring fork we may place the virtual memory address space into an\ninconsistent state before the fork operation is complete.\n\nIn addition, we may encounter an error during the fork operation that\nindicates that the virtual memory address space is invalidated.\n\nAs a result, we should not be exposing it in any way to external machinery\nthat might interact with the mm or VMAs, machinery that is not designed to\ndeal with incomplete state.\n\nWe specifically update the fork logic to defer khugepaged and ksm to the\nend of the operation and only to be invoked if no error arose, and\ndisallow uffd from observing fork events should an error have occurred.\n\n\nThis patch (of 2):\n\nCurrently on fork we expose the virtual address space of a process to\nuserland unconditionally if uffd is registered in VMAs, regardless of\nwhether an error arose in the fork.\n\nThis is performed in dup_userfaultfd_complete() which is invoked\nunconditionally, and performs two duties - invoking registered handlers\nfor the UFFD_EVENT_FORK event via dup_fctx(), and clearing down\nuserfaultfd_fork_ctx objects established in dup_userfaultfd().\n\nThis is problematic, because the virtual address space may not yet be\ncorrectly initialised if an error arose.\n\nThe change in commit d24062914837 (\"fork: use __mt_dup() to duplicate\nmaple tree in dup_mmap()\") makes this more pertinent as we may be in a\nstate where entries in the maple tree are not yet consistent.\n\nWe address this by, on fork error, ensuring that we roll back state that\nwe would otherwise expect to clean up through the event being handled by\nuserland and perform the memory freeing duty otherwise performed by\ndup_userfaultfd_complete().\n\nWe do this by implementing a new function, dup_userfaultfd_fail(), which\nperforms the same loop, only decrementing reference counts.\n\nNote that we perform mmgrab() on the parent and child mm\u0027s, however\nuserfaultfd_ctx_put() will mmdrop() this once the reference count drops to\nzero, so we will avoid memory leaks correctly here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50220",
"url": "https://www.suse.com/security/cve/CVE-2024-50220"
},
{
"category": "external",
"summary": "SUSE Bug 1233175 for CVE-2024-50220",
"url": "https://bugzilla.suse.com/1233175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50220"
},
{
"cve": "CVE-2024-50221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50221"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: Vangogh: Fix kernel memory out of bounds write\n\nKASAN reports that the GPU metrics table allocated in\nvangogh_tables_init() is not large enough for the memset done in\nsmu_cmn_init_soft_gpu_metrics(). Condensed report follows:\n\n[ 33.861314] BUG: KASAN: slab-out-of-bounds in smu_cmn_init_soft_gpu_metrics+0x73/0x200 [amdgpu]\n[ 33.861799] Write of size 168 at addr ffff888129f59500 by task mangoapp/1067\n...\n[ 33.861808] CPU: 6 UID: 1000 PID: 1067 Comm: mangoapp Tainted: G W 6.12.0-rc4 #356 1a56f59a8b5182eeaf67eb7cb8b13594dd23b544\n[ 33.861816] Tainted: [W]=WARN\n[ 33.861818] Hardware name: Valve Galileo/Galileo, BIOS F7G0107 12/01/2023\n[ 33.861822] Call Trace:\n[ 33.861826] \u003cTASK\u003e\n[ 33.861829] dump_stack_lvl+0x66/0x90\n[ 33.861838] print_report+0xce/0x620\n[ 33.861853] kasan_report+0xda/0x110\n[ 33.862794] kasan_check_range+0xfd/0x1a0\n[ 33.862799] __asan_memset+0x23/0x40\n[ 33.862803] smu_cmn_init_soft_gpu_metrics+0x73/0x200 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.863306] vangogh_get_gpu_metrics_v2_4+0x123/0xad0 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.864257] vangogh_common_get_gpu_metrics+0xb0c/0xbc0 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.865682] amdgpu_dpm_get_gpu_metrics+0xcc/0x110 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.866160] amdgpu_get_gpu_metrics+0x154/0x2d0 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.867135] dev_attr_show+0x43/0xc0\n[ 33.867147] sysfs_kf_seq_show+0x1f1/0x3b0\n[ 33.867155] seq_read_iter+0x3f8/0x1140\n[ 33.867173] vfs_read+0x76c/0xc50\n[ 33.867198] ksys_read+0xfb/0x1d0\n[ 33.867214] do_syscall_64+0x90/0x160\n...\n[ 33.867353] Allocated by task 378 on cpu 7 at 22.794876s:\n[ 33.867358] kasan_save_stack+0x33/0x50\n[ 33.867364] kasan_save_track+0x17/0x60\n[ 33.867367] __kasan_kmalloc+0x87/0x90\n[ 33.867371] vangogh_init_smc_tables+0x3f9/0x840 [amdgpu]\n[ 33.867835] smu_sw_init+0xa32/0x1850 [amdgpu]\n[ 33.868299] amdgpu_device_init+0x467b/0x8d90 [amdgpu]\n[ 33.868733] amdgpu_driver_load_kms+0x19/0xf0 [amdgpu]\n[ 33.869167] amdgpu_pci_probe+0x2d6/0xcd0 [amdgpu]\n[ 33.869608] local_pci_probe+0xda/0x180\n[ 33.869614] pci_device_probe+0x43f/0x6b0\n\nEmpirically we can confirm that the former allocates 152 bytes for the\ntable, while the latter memsets the 168 large block.\n\nRoot cause appears that when GPU metrics tables for v2_4 parts were added\nit was not considered to enlarge the table to fit.\n\nThe fix in this patch is rather \"brute force\" and perhaps later should be\ndone in a smarter way, by extracting and consolidating the part version to\nsize logic to a common helper, instead of brute forcing the largest\npossible allocation. Nevertheless, for now this works and fixes the out of\nbounds write.\n\nv2:\n * Drop impossible v3_0 case. (Mario)\n\n(cherry picked from commit 0880f58f9609f0200483a49429af0f050d281703)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50221",
"url": "https://www.suse.com/security/cve/CVE-2024-50221"
},
{
"category": "external",
"summary": "SUSE Bug 1233185 for CVE-2024-50221",
"url": "https://bugzilla.suse.com/1233185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50221"
},
{
"cve": "CVE-2024-50222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP\n\ngeneric/077 on x86_32 CONFIG_DEBUG_KMAP_LOCAL_FORCE_MAP=y with highmem,\non huge=always tmpfs, issues a warning and then hangs (interruptibly):\n\nWARNING: CPU: 5 PID: 3517 at mm/highmem.c:622 kunmap_local_indexed+0x62/0xc9\nCPU: 5 UID: 0 PID: 3517 Comm: cp Not tainted 6.12.0-rc4 #2\n...\ncopy_page_from_iter_atomic+0xa6/0x5ec\ngeneric_perform_write+0xf6/0x1b4\nshmem_file_write_iter+0x54/0x67\n\nFix copy_page_from_iter_atomic() by limiting it in that case\n(include/linux/skbuff.h skb_frag_must_loop() does similar).\n\nBut going forward, perhaps CONFIG_DEBUG_KMAP_LOCAL_FORCE_MAP is too\nsurprising, has outlived its usefulness, and should just be removed?",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50222",
"url": "https://www.suse.com/security/cve/CVE-2024-50222"
},
{
"category": "external",
"summary": "SUSE Bug 1233184 for CVE-2024-50222",
"url": "https://bugzilla.suse.com/1233184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50222"
},
{
"cve": "CVE-2024-50223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/numa: Fix the potential null pointer dereference in task_numa_work()\n\nWhen running stress-ng-vm-segv test, we found a null pointer dereference\nerror in task_numa_work(). Here is the backtrace:\n\n [323676.066985] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n ......\n [323676.067108] CPU: 35 PID: 2694524 Comm: stress-ng-vm-se\n ......\n [323676.067113] pstate: 23401009 (nzCv daif +PAN -UAO +TCO +DIT +SSBS BTYPE=--)\n [323676.067115] pc : vma_migratable+0x1c/0xd0\n [323676.067122] lr : task_numa_work+0x1ec/0x4e0\n [323676.067127] sp : ffff8000ada73d20\n [323676.067128] x29: ffff8000ada73d20 x28: 0000000000000000 x27: 000000003e89f010\n [323676.067130] x26: 0000000000080000 x25: ffff800081b5c0d8 x24: ffff800081b27000\n [323676.067133] x23: 0000000000010000 x22: 0000000104d18cc0 x21: ffff0009f7158000\n [323676.067135] x20: 0000000000000000 x19: 0000000000000000 x18: ffff8000ada73db8\n [323676.067138] x17: 0001400000000000 x16: ffff800080df40b0 x15: 0000000000000035\n [323676.067140] x14: ffff8000ada73cc8 x13: 1fffe0017cc72001 x12: ffff8000ada73cc8\n [323676.067142] x11: ffff80008001160c x10: ffff000be639000c x9 : ffff8000800f4ba4\n [323676.067145] x8 : ffff000810375000 x7 : ffff8000ada73974 x6 : 0000000000000001\n [323676.067147] x5 : 0068000b33e26707 x4 : 0000000000000001 x3 : ffff0009f7158000\n [323676.067149] x2 : 0000000000000041 x1 : 0000000000004400 x0 : 0000000000000000\n [323676.067152] Call trace:\n [323676.067153] vma_migratable+0x1c/0xd0\n [323676.067155] task_numa_work+0x1ec/0x4e0\n [323676.067157] task_work_run+0x78/0xd8\n [323676.067161] do_notify_resume+0x1ec/0x290\n [323676.067163] el0_svc+0x150/0x160\n [323676.067167] el0t_64_sync_handler+0xf8/0x128\n [323676.067170] el0t_64_sync+0x17c/0x180\n [323676.067173] Code: d2888001 910003fd f9000bf3 aa0003f3 (f9401000)\n [323676.067177] SMP: stopping secondary CPUs\n [323676.070184] Starting crashdump kernel...\n\nstress-ng-vm-segv in stress-ng is used to stress test the SIGSEGV error\nhandling function of the system, which tries to cause a SIGSEGV error on\nreturn from unmapping the whole address space of the child process.\n\nNormally this program will not cause kernel crashes. But before the\nmunmap system call returns to user mode, a potential task_numa_work()\nfor numa balancing could be added and executed. In this scenario, since the\nchild process has no vma after munmap, the vma_next() in task_numa_work()\nwill return a null pointer even if the vma iterator restarts from 0.\n\nRecheck the vma pointer before dereferencing it in task_numa_work().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50223",
"url": "https://www.suse.com/security/cve/CVE-2024-50223"
},
{
"category": "external",
"summary": "SUSE Bug 1233192 for CVE-2024-50223",
"url": "https://bugzilla.suse.com/1233192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50223"
},
{
"cve": "CVE-2024-50224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: spi-fsl-dspi: Fix crash when not using GPIO chip select\n\nAdd check for the return value of spi_get_csgpiod() to avoid passing a NULL\npointer to gpiod_direction_output(), preventing a crash when GPIO chip\nselect is not used.\n\nFix below crash:\n[ 4.251960] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n[ 4.260762] Mem abort info:\n[ 4.263556] ESR = 0x0000000096000004\n[ 4.267308] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 4.272624] SET = 0, FnV = 0\n[ 4.275681] EA = 0, S1PTW = 0\n[ 4.278822] FSC = 0x04: level 0 translation fault\n[ 4.283704] Data abort info:\n[ 4.286583] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 4.292074] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 4.297130] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 4.302445] [0000000000000000] user address but active_mm is swapper\n[ 4.308805] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 4.315072] Modules linked in:\n[ 4.318124] CPU: 2 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.12.0-rc4-next-20241023-00008-ga20ec42c5fc1 #359\n[ 4.328130] Hardware name: LS1046A QDS Board (DT)\n[ 4.332832] pstate: 40000005 (nZcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 4.339794] pc : gpiod_direction_output+0x34/0x5c\n[ 4.344505] lr : gpiod_direction_output+0x18/0x5c\n[ 4.349208] sp : ffff80008003b8f0\n[ 4.352517] x29: ffff80008003b8f0 x28: 0000000000000000 x27: ffffc96bcc7e9068\n[ 4.359659] x26: ffffc96bcc6e00b0 x25: ffffc96bcc598398 x24: ffff447400132810\n[ 4.366800] x23: 0000000000000000 x22: 0000000011e1a300 x21: 0000000000020002\n[ 4.373940] x20: 0000000000000000 x19: 0000000000000000 x18: ffffffffffffffff\n[ 4.381081] x17: ffff44740016e600 x16: 0000000500000003 x15: 0000000000000007\n[ 4.388221] x14: 0000000000989680 x13: 0000000000020000 x12: 000000000000001e\n[ 4.395362] x11: 0044b82fa09b5a53 x10: 0000000000000019 x9 : 0000000000000008\n[ 4.402502] x8 : 0000000000000002 x7 : 0000000000000007 x6 : 0000000000000000\n[ 4.409641] x5 : 0000000000000200 x4 : 0000000002000000 x3 : 0000000000000000\n[ 4.416781] x2 : 0000000000022202 x1 : 0000000000000000 x0 : 0000000000000000\n[ 4.423921] Call trace:\n[ 4.426362] gpiod_direction_output+0x34/0x5c (P)\n[ 4.431067] gpiod_direction_output+0x18/0x5c (L)\n[ 4.435771] dspi_setup+0x220/0x334",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50224",
"url": "https://www.suse.com/security/cve/CVE-2024-50224"
},
{
"category": "external",
"summary": "SUSE Bug 1233188 for CVE-2024-50224",
"url": "https://bugzilla.suse.com/1233188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50224"
},
{
"cve": "CVE-2024-50225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50225"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix error propagation of split bios\n\nThe purpose of btrfs_bbio_propagate_error() shall be propagating an error\nof split bio to its original btrfs_bio, and tell the error to the upper\nlayer. However, it\u0027s not working well on some cases.\n\n* Case 1. Immediate (or quick) end_bio with an error\n\nWhen btrfs sends btrfs_bio to mirrored devices, btrfs calls\nbtrfs_bio_end_io() when all the mirroring bios are completed. If that\nbtrfs_bio was split, it is from btrfs_clone_bioset and its end_io function\nis btrfs_orig_write_end_io. For this case, btrfs_bbio_propagate_error()\naccesses the orig_bbio\u0027s bio context to increase the error count.\n\nThat works well in most cases. However, if the end_io is called enough\nfast, orig_bbio\u0027s (remaining part after split) bio context may not be\nproperly set at that time. Since the bio context is set when the orig_bbio\n(the last btrfs_bio) is sent to devices, that might be too late for earlier\nsplit btrfs_bio\u0027s completion. That will result in NULL pointer\ndereference.\n\nThat bug is easily reproducible by running btrfs/146 on zoned devices [1]\nand it shows the following trace.\n\n[1] You need raid-stripe-tree feature as it create \"-d raid0 -m raid1\" FS.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000020\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 UID: 0 PID: 13 Comm: kworker/u32:1 Not tainted 6.11.0-rc7-BTRFS-ZNS+ #474\n Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n Workqueue: writeback wb_workfn (flush-btrfs-5)\n RIP: 0010:btrfs_bio_end_io+0xae/0xc0 [btrfs]\n BTRFS error (device dm-0): bdev /dev/mapper/error-test errs: wr 2, rd 0, flush 0, corrupt 0, gen 0\n RSP: 0018:ffffc9000006f248 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888005a7f080 RCX: ffffc9000006f1dc\n RDX: 0000000000000000 RSI: 000000000000000a RDI: ffff888005a7f080\n RBP: ffff888011dfc540 R08: 0000000000000000 R09: 0000000000000001\n R10: ffffffff82e508e0 R11: 0000000000000005 R12: ffff88800ddfbe58\n R13: ffff888005a7f080 R14: ffff888005a7f158 R15: ffff888005a7f158\n FS: 0000000000000000(0000) GS:ffff88803ea80000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000020 CR3: 0000000002e22006 CR4: 0000000000370ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x19/0x26\n ? page_fault_oops+0x13e/0x2b0\n ? _printk+0x58/0x73\n ? do_user_addr_fault+0x5f/0x750\n ? exc_page_fault+0x76/0x240\n ? asm_exc_page_fault+0x22/0x30\n ? btrfs_bio_end_io+0xae/0xc0 [btrfs]\n ? btrfs_log_dev_io_error+0x7f/0x90 [btrfs]\n btrfs_orig_write_end_io+0x51/0x90 [btrfs]\n dm_submit_bio+0x5c2/0xa50 [dm_mod]\n ? find_held_lock+0x2b/0x80\n ? blk_try_enter_queue+0x90/0x1e0\n __submit_bio+0xe0/0x130\n ? ktime_get+0x10a/0x160\n ? lockdep_hardirqs_on+0x74/0x100\n submit_bio_noacct_nocheck+0x199/0x410\n btrfs_submit_bio+0x7d/0x150 [btrfs]\n btrfs_submit_chunk+0x1a1/0x6d0 [btrfs]\n ? lockdep_hardirqs_on+0x74/0x100\n ? __folio_start_writeback+0x10/0x2c0\n btrfs_submit_bbio+0x1c/0x40 [btrfs]\n submit_one_bio+0x44/0x60 [btrfs]\n submit_extent_folio+0x13f/0x330 [btrfs]\n ? btrfs_set_range_writeback+0xa3/0xd0 [btrfs]\n extent_writepage_io+0x18b/0x360 [btrfs]\n extent_write_locked_range+0x17c/0x340 [btrfs]\n ? __pfx_end_bbio_data_write+0x10/0x10 [btrfs]\n run_delalloc_cow+0x71/0xd0 [btrfs]\n btrfs_run_delalloc_range+0x176/0x500 [btrfs]\n ? find_lock_delalloc_range+0x119/0x260 [btrfs]\n writepage_delalloc+0x2ab/0x480 [btrfs]\n extent_write_cache_pages+0x236/0x7d0 [btrfs]\n btrfs_writepages+0x72/0x130 [btrfs]\n do_writepages+0xd4/0x240\n ? find_held_lock+0x2b/0x80\n ? wbc_attach_and_unlock_inode+0x12c/0x290\n ? wbc_attach_and_unlock_inode+0x12c/0x29\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50225",
"url": "https://www.suse.com/security/cve/CVE-2024-50225"
},
{
"category": "external",
"summary": "SUSE Bug 1233193 for CVE-2024-50225",
"url": "https://bugzilla.suse.com/1233193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50225"
},
{
"cve": "CVE-2024-50226",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50226"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncxl/port: Fix use-after-free, permit out-of-order decoder shutdown\n\nIn support of investigating an initialization failure report [1],\ncxl_test was updated to register mock memory-devices after the mock\nroot-port/bus device had been registered. That led to cxl_test crashing\nwith a use-after-free bug with the following signature:\n\n cxl_port_attach_region: cxl region3: cxl_host_bridge.0:port3 decoder3.0 add: mem0:decoder7.0 @ 0 next: cxl_switch_uport.0 nr_eps: 1 nr_targets: 1\n cxl_port_attach_region: cxl region3: cxl_host_bridge.0:port3 decoder3.0 add: mem4:decoder14.0 @ 1 next: cxl_switch_uport.0 nr_eps: 2 nr_targets: 1\n cxl_port_setup_targets: cxl region3: cxl_switch_uport.0:port6 target[0] = cxl_switch_dport.0 for mem0:decoder7.0 @ 0\n1) cxl_port_setup_targets: cxl region3: cxl_switch_uport.0:port6 target[1] = cxl_switch_dport.4 for mem4:decoder14.0 @ 1\n [..]\n cxld_unregister: cxl decoder14.0:\n cxl_region_decode_reset: cxl_region region3:\n mock_decoder_reset: cxl_port port3: decoder3.0 reset\n2) mock_decoder_reset: cxl_port port3: decoder3.0: out of order reset, expected decoder3.1\n cxl_endpoint_decoder_release: cxl decoder14.0:\n [..]\n cxld_unregister: cxl decoder7.0:\n3) cxl_region_decode_reset: cxl_region region3:\n Oops: general protection fault, probably for non-canonical address 0x6b6b6b6b6b6b6bc3: 0000 [#1] PREEMPT SMP PTI\n [..]\n RIP: 0010:to_cxl_port+0x8/0x60 [cxl_core]\n [..]\n Call Trace:\n \u003cTASK\u003e\n cxl_region_decode_reset+0x69/0x190 [cxl_core]\n cxl_region_detach+0xe8/0x210 [cxl_core]\n cxl_decoder_kill_region+0x27/0x40 [cxl_core]\n cxld_unregister+0x5d/0x60 [cxl_core]\n\nAt 1) a region has been established with 2 endpoint decoders (7.0 and\n14.0). Those endpoints share a common switch-decoder in the topology\n(3.0). At teardown, 2), decoder14.0 is the first to be removed and hits\nthe \"out of order reset case\" in the switch decoder. The effect though\nis that region3 cleanup is aborted leaving it in-tact and\nreferencing decoder14.0. At 3) the second attempt to teardown region3\ntrips over the stale decoder14.0 object which has long since been\ndeleted.\n\nThe fix here is to recognize that the CXL specification places no\nmandate on in-order shutdown of switch-decoders, the driver enforces\nin-order allocation, and hardware enforces in-order commit. So, rather\nthan fail and leave objects dangling, always remove them.\n\nIn support of making cxl_region_decode_reset() always succeed,\ncxl_region_invalidate_memregion() failures are turned into warnings.\nCrashing the kernel is ok there since system integrity is at risk if\ncaches cannot be managed around physical address mutation events like\nCXL region destruction.\n\nA new device_for_each_child_reverse_from() is added to cleanup\nport-\u003ecommit_end after all dependent decoders have been disabled. In\nother words if decoders are allocated 0-\u003e1-\u003e2 and disabled 1-\u003e2-\u003e0 then\nport-\u003ecommit_end only decrements from 2 after 2 has been disabled, and\nit decrements all the way to zero since 1 was disabled previously.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50226",
"url": "https://www.suse.com/security/cve/CVE-2024-50226"
},
{
"category": "external",
"summary": "SUSE Bug 1233195 for CVE-2024-50226",
"url": "https://bugzilla.suse.com/1233195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50226"
},
{
"cve": "CVE-2024-50227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthunderbolt: Fix KASAN reported stack out-of-bounds read in tb_retimer_scan()\n\nKASAN reported following issue:\n\n BUG: KASAN: stack-out-of-bounds in tb_retimer_scan+0xffe/0x1550 [thunderbolt]\n Read of size 4 at addr ffff88810111fc1c by task kworker/u56:0/11\n CPU: 0 UID: 0 PID: 11 Comm: kworker/u56:0 Tainted: G U 6.11.0+ #1387\n Tainted: [U]=USER\n Workqueue: thunderbolt0 tb_handle_hotplug [thunderbolt]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6c/0x90\n print_report+0xd1/0x630\n kasan_report+0xdb/0x110\n __asan_report_load4_noabort+0x14/0x20\n tb_retimer_scan+0xffe/0x1550 [thunderbolt]\n tb_scan_port+0xa6f/0x2060 [thunderbolt]\n tb_handle_hotplug+0x17b1/0x3080 [thunderbolt]\n process_one_work+0x626/0x1100\n worker_thread+0x6c8/0xfa0\n kthread+0x2c8/0x3a0\n ret_from_fork+0x3a/0x80\n ret_from_fork_asm+0x1a/0x30\n\nThis happens because the loop variable still gets incremented by one so\nmax becomes 3 instead of 2, and this makes the second loop read past the\nthe array declared on the stack.\n\nFix this by assigning to max directly in the loop body.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50227",
"url": "https://www.suse.com/security/cve/CVE-2024-50227"
},
{
"category": "external",
"summary": "SUSE Bug 1233181 for CVE-2024-50227",
"url": "https://bugzilla.suse.com/1233181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50227"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential deadlock with newly created symlinks\n\nSyzbot reported that page_symlink(), called by nilfs_symlink(), triggers\nmemory reclamation involving the filesystem layer, which can result in\ncircular lock dependencies among the reader/writer semaphore\nnilfs-\u003ens_segctor_sem, s_writers percpu_rwsem (intwrite) and the\nfs_reclaim pseudo lock.\n\nThis is because after commit 21fc61c73c39 (\"don\u0027t put symlink bodies in\npagecache into highmem\"), the gfp flags of the page cache for symbolic\nlinks are overwritten to GFP_KERNEL via inode_nohighmem().\n\nThis is not a problem for symlinks read from the backing device, because\nthe __GFP_FS flag is dropped after inode_nohighmem() is called. However,\nwhen a new symlink is created with nilfs_symlink(), the gfp flags remain\noverwritten to GFP_KERNEL. Then, memory allocation called from\npage_symlink() etc. triggers memory reclamation including the FS layer,\nwhich may call nilfs_evict_inode() or nilfs_dirty_inode(). And these can\ncause a deadlock if they are called while nilfs-\u003ens_segctor_sem is held:\n\nFix this issue by dropping the __GFP_FS flag from the page cache GFP flags\nof newly created symlinks in the same way that nilfs_new_inode() and\n__nilfs_read_inode() do, as a workaround until we adopt nofs allocation\nscope consistently or improve the locking constraints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50229",
"url": "https://www.suse.com/security/cve/CVE-2024-50229"
},
{
"category": "external",
"summary": "SUSE Bug 1233205 for CVE-2024-50229",
"url": "https://bugzilla.suse.com/1233205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50229"
},
{
"cve": "CVE-2024-50230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix kernel bug due to missing clearing of checked flag\n\nSyzbot reported that in directory operations after nilfs2 detects\nfilesystem corruption and degrades to read-only,\n__block_write_begin_int(), which is called to prepare block writes, may\nfail the BUG_ON check for accesses exceeding the folio/page size,\ntriggering a kernel bug.\n\nThis was found to be because the \"checked\" flag of a page/folio was not\ncleared when it was discarded by nilfs2\u0027s own routine, which causes the\nsanity check of directory entries to be skipped when the directory\npage/folio is reloaded. So, fix that.\n\nThis was necessary when the use of nilfs2\u0027s own page discard routine was\napplied to more than just metadata files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50230",
"url": "https://www.suse.com/security/cve/CVE-2024-50230"
},
{
"category": "external",
"summary": "SUSE Bug 1233206 for CVE-2024-50230",
"url": "https://bugzilla.suse.com/1233206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50230"
},
{
"cve": "CVE-2024-50231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table()\n\nmodprobe iio-test-gts and rmmod it, then the following memory leak\noccurs:\n\n\tunreferenced object 0xffffff80c810be00 (size 64):\n\t comm \"kunit_try_catch\", pid 1654, jiffies 4294913981\n\t hex dump (first 32 bytes):\n\t 02 00 00 00 08 00 00 00 20 00 00 00 40 00 00 00 ........ ...@...\n\t 80 00 00 00 00 02 00 00 00 04 00 00 00 08 00 00 ................\n\t backtrace (crc a63d875e):\n\t [\u003c0000000028c1b3c2\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c000000001d6ecc87\u003e] __kmalloc_noprof+0x2bc/0x3c0\n\t [\u003c00000000393795c1\u003e] devm_iio_init_iio_gts+0x4b4/0x16f4\n\t [\u003c0000000071bb4b09\u003e] 0xffffffdf052a62e0\n\t [\u003c000000000315bc18\u003e] 0xffffffdf052a6488\n\t [\u003c00000000f9dc55b5\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c00000000175a3fd4\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000f505065d\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000bbfb0e5d\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cbfe9e70 (size 16):\n\t comm \"kunit_try_catch\", pid 1658, jiffies 4294914015\n\t hex dump (first 16 bytes):\n\t 10 00 00 00 40 00 00 00 80 00 00 00 00 00 00 00 ....@...........\n\t backtrace (crc 857f0cb4):\n\t [\u003c0000000028c1b3c2\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c000000001d6ecc87\u003e] __kmalloc_noprof+0x2bc/0x3c0\n\t [\u003c00000000393795c1\u003e] devm_iio_init_iio_gts+0x4b4/0x16f4\n\t [\u003c0000000071bb4b09\u003e] 0xffffffdf052a62e0\n\t [\u003c000000007d089d45\u003e] 0xffffffdf052a6864\n\t [\u003c00000000f9dc55b5\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c00000000175a3fd4\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000f505065d\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000bbfb0e5d\u003e] ret_from_fork+0x10/0x20\n\t......\n\nIt includes 5*5 times \"size 64\" memory leaks, which correspond to 5 times\ntest_init_iio_gain_scale() calls with gts_test_gains size 10 (10*size(int))\nand gts_test_itimes size 5. It also includes 5*1 times \"size 16\"\nmemory leak, which correspond to one time __test_init_iio_gain_scale()\ncall with gts_test_gains_gain_low size 3 (3*size(int)) and gts_test_itimes\nsize 5.\n\nThe reason is that the per_time_gains[i] is not freed which is allocated in\nthe \"gts-\u003enum_itime\" for loop in iio_gts_build_avail_scale_table().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50231",
"url": "https://www.suse.com/security/cve/CVE-2024-50231"
},
{
"category": "external",
"summary": "SUSE Bug 1233208 for CVE-2024-50231",
"url": "https://bugzilla.suse.com/1233208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50231"
},
{
"cve": "CVE-2024-50232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()\n\nIn the ad7124_write_raw() function, parameter val can potentially\nbe zero. This may lead to a division by zero when DIV_ROUND_CLOSEST()\nis called within ad7124_set_channel_odr(). The ad7124_write_raw()\nfunction is invoked through the sequence: iio_write_channel_raw() -\u003e\niio_write_channel_attribute() -\u003e iio_channel_write(), with no checks\nin place to ensure val is non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50232",
"url": "https://www.suse.com/security/cve/CVE-2024-50232"
},
{
"category": "external",
"summary": "SUSE Bug 1233209 for CVE-2024-50232",
"url": "https://bugzilla.suse.com/1233209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50232"
},
{
"cve": "CVE-2024-50233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg()\n\nIn the ad9832_write_frequency() function, clk_get_rate() might return 0.\nThis can lead to a division by zero when calling ad9832_calc_freqreg().\nThe check if (fout \u003e (clk_get_rate(st-\u003emclk) / 2)) does not protect\nagainst the case when fout is 0. The ad9832_write_frequency() function\nis called from ad9832_write(), and fout is derived from a text buffer,\nwhich can contain any value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50233",
"url": "https://www.suse.com/security/cve/CVE-2024-50233"
},
{
"category": "external",
"summary": "SUSE Bug 1233210 for CVE-2024-50233",
"url": "https://bugzilla.suse.com/1233210"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50233"
},
{
"cve": "CVE-2024-50234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlegacy: Clear stale interrupts before resuming device\n\niwl4965 fails upon resume from hibernation on my laptop. The reason\nseems to be a stale interrupt which isn\u0027t being cleared out before\ninterrupts are enabled. We end up with a race beween the resume\ntrying to bring things back up, and the restart work (queued form\nthe interrupt handler) trying to bring things down. Eventually\nthe whole thing blows up.\n\nFix the problem by clearing out any stale interrupts before\ninterrupts get enabled during resume.\n\nHere\u0027s a debug log of the indicent:\n[ 12.042589] ieee80211 phy0: il_isr ISR inta 0x00000080, enabled 0xaa00008b, fh 0x00000000\n[ 12.042625] ieee80211 phy0: il4965_irq_tasklet inta 0x00000080, enabled 0x00000000, fh 0x00000000\n[ 12.042651] iwl4965 0000:10:00.0: RF_KILL bit toggled to enable radio.\n[ 12.042653] iwl4965 0000:10:00.0: On demand firmware reload\n[ 12.042690] ieee80211 phy0: il4965_irq_tasklet End inta 0x00000000, enabled 0xaa00008b, fh 0x00000000, flags 0x00000282\n[ 12.052207] ieee80211 phy0: il4965_mac_start enter\n[ 12.052212] ieee80211 phy0: il_prep_station Add STA to driver ID 31: ff:ff:ff:ff:ff:ff\n[ 12.052244] ieee80211 phy0: il4965_set_hw_ready hardware ready\n[ 12.052324] ieee80211 phy0: il_apm_init Init card\u0027s basic functions\n[ 12.052348] ieee80211 phy0: il_apm_init L1 Enabled; Disabling L0S\n[ 12.055727] ieee80211 phy0: il4965_load_bsm Begin load bsm\n[ 12.056140] ieee80211 phy0: il4965_verify_bsm Begin verify bsm\n[ 12.058642] ieee80211 phy0: il4965_verify_bsm BSM bootstrap uCode image OK\n[ 12.058721] ieee80211 phy0: il4965_load_bsm BSM write complete, poll 1 iterations\n[ 12.058734] ieee80211 phy0: __il4965_up iwl4965 is coming up\n[ 12.058737] ieee80211 phy0: il4965_mac_start Start UP work done.\n[ 12.058757] ieee80211 phy0: __il4965_down iwl4965 is going down\n[ 12.058761] ieee80211 phy0: il_scan_cancel_timeout Scan cancel timeout\n[ 12.058762] ieee80211 phy0: il_do_scan_abort Not performing scan to abort\n[ 12.058765] ieee80211 phy0: il_clear_ucode_stations Clearing ucode stations in driver\n[ 12.058767] ieee80211 phy0: il_clear_ucode_stations No active stations found to be cleared\n[ 12.058819] ieee80211 phy0: _il_apm_stop Stop card, put in low power state\n[ 12.058827] ieee80211 phy0: _il_apm_stop_master stop master\n[ 12.058864] ieee80211 phy0: il4965_clear_free_frames 0 frames on pre-allocated heap on clear.\n[ 12.058869] ieee80211 phy0: Hardware restart was requested\n[ 16.132299] iwl4965 0000:10:00.0: START_ALIVE timeout after 4000ms.\n[ 16.132303] ------------[ cut here ]------------\n[ 16.132304] Hardware became unavailable upon resume. This could be a software issue prior to suspend or a hardware issue.\n[ 16.132338] WARNING: CPU: 0 PID: 181 at net/mac80211/util.c:1826 ieee80211_reconfig+0x8f/0x14b0 [mac80211]\n[ 16.132390] Modules linked in: ctr ccm sch_fq_codel xt_tcpudp xt_multiport xt_state iptable_filter iptable_nat nf_nat nf_conntrack nf_defrag_ipv4 ip_tables x_tables binfmt_misc joydev mousedev btusb btrtl btintel btbcm bluetooth ecdh_generic ecc iTCO_wdt i2c_dev iwl4965 iwlegacy coretemp snd_hda_codec_analog pcspkr psmouse mac80211 snd_hda_codec_generic libarc4 sdhci_pci cqhci sha256_generic sdhci libsha256 firewire_ohci snd_hda_intel snd_intel_dspcfg mmc_core snd_hda_codec snd_hwdep firewire_core led_class iosf_mbi snd_hda_core uhci_hcd lpc_ich crc_itu_t cfg80211 ehci_pci ehci_hcd snd_pcm usbcore mfd_core rfkill snd_timer snd usb_common soundcore video parport_pc parport intel_agp wmi intel_gtt backlight e1000e agpgart evdev\n[ 16.132456] CPU: 0 UID: 0 PID: 181 Comm: kworker/u8:6 Not tainted 6.11.0-cl+ #143\n[ 16.132460] Hardware name: Hewlett-Packard HP Compaq 6910p/30BE, BIOS 68MCU Ver. F.19 07/06/2010\n[ 16.132463] Workqueue: async async_run_entry_fn\n[ 16.132469] RIP: 0010:ieee80211_reconfig+0x8f/0x14b0 [mac80211]\n[ 16.132501] Code: da 02 00 0\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50234",
"url": "https://www.suse.com/security/cve/CVE-2024-50234"
},
{
"category": "external",
"summary": "SUSE Bug 1233211 for CVE-2024-50234",
"url": "https://bugzilla.suse.com/1233211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50234"
},
{
"cve": "CVE-2024-50235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: clear wdev-\u003ecqm_config pointer on free\n\nWhen we free wdev-\u003ecqm_config when unregistering, we also\nneed to clear out the pointer since the same wdev/netdev\nmay get re-registered in another network namespace, then\ndestroyed later, running this code again, which results in\na double-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50235",
"url": "https://www.suse.com/security/cve/CVE-2024-50235"
},
{
"category": "external",
"summary": "SUSE Bug 1233176 for CVE-2024-50235",
"url": "https://bugzilla.suse.com/1233176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50235"
},
{
"cve": "CVE-2024-50236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: Fix memory leak in management tx\n\nIn the current logic, memory is allocated for storing the MSDU context\nduring management packet TX but this memory is not being freed during\nmanagement TX completion. Similar leaks are seen in the management TX\ncleanup logic.\n\nKmemleak reports this problem as below,\n\nunreferenced object 0xffffff80b64ed250 (size 16):\n comm \"kworker/u16:7\", pid 148, jiffies 4294687130 (age 714.199s)\n hex dump (first 16 bytes):\n 00 2b d8 d8 80 ff ff ff c4 74 e9 fd 07 00 00 00 .+.......t......\n backtrace:\n [\u003cffffffe6e7b245dc\u003e] __kmem_cache_alloc_node+0x1e4/0x2d8\n [\u003cffffffe6e7adde88\u003e] kmalloc_trace+0x48/0x110\n [\u003cffffffe6bbd765fc\u003e] ath10k_wmi_tlv_op_gen_mgmt_tx_send+0xd4/0x1d8 [ath10k_core]\n [\u003cffffffe6bbd3eed4\u003e] ath10k_mgmt_over_wmi_tx_work+0x134/0x298 [ath10k_core]\n [\u003cffffffe6e78d5974\u003e] process_scheduled_works+0x1ac/0x400\n [\u003cffffffe6e78d60b8\u003e] worker_thread+0x208/0x328\n [\u003cffffffe6e78dc890\u003e] kthread+0x100/0x1c0\n [\u003cffffffe6e78166c0\u003e] ret_from_fork+0x10/0x20\n\nFree the memory during completion and cleanup to fix the leak.\n\nProtect the mgmt_pending_tx idr_remove() operation in\nath10k_wmi_tlv_op_cleanup_mgmt_tx_send() using ar-\u003edata_lock similar to\nother instances.\n\nTested-on: WCN3990 hw1.0 SNOC WLAN.HL.2.0-01387-QCAHLSWMTPLZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50236",
"url": "https://www.suse.com/security/cve/CVE-2024-50236"
},
{
"category": "external",
"summary": "SUSE Bug 1233212 for CVE-2024-50236",
"url": "https://bugzilla.suse.com/1233212"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50236"
},
{
"cve": "CVE-2024-50237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: do not pass a stopped vif to the driver in .get_txpower\n\nAvoid potentially crashing in the driver because of uninitialized private data",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50237",
"url": "https://www.suse.com/security/cve/CVE-2024-50237"
},
{
"category": "external",
"summary": "SUSE Bug 1233216 for CVE-2024-50237",
"url": "https://bugzilla.suse.com/1233216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50237"
},
{
"cve": "CVE-2024-50238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: qcom: qmp-usbc: fix NULL-deref on runtime suspend\n\nCommit 413db06c05e7 (\"phy: qcom-qmp-usb: clean up probe initialisation\")\nremoved most users of the platform device driver data from the\nqcom-qmp-usb driver, but mistakenly also removed the initialisation\ndespite the data still being used in the runtime PM callbacks. This bug\nwas later reproduced when the driver was copied to create the qmp-usbc\ndriver.\n\nRestore the driver data initialisation at probe to avoid a NULL-pointer\ndereference on runtime suspend.\n\nApparently no one uses runtime PM, which currently needs to be enabled\nmanually through sysfs, with these drivers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50238",
"url": "https://www.suse.com/security/cve/CVE-2024-50238"
},
{
"category": "external",
"summary": "SUSE Bug 1233182 for CVE-2024-50238",
"url": "https://bugzilla.suse.com/1233182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50238"
},
{
"cve": "CVE-2024-50239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: qcom: qmp-usb-legacy: fix NULL-deref on runtime suspend\n\nCommit 413db06c05e7 (\"phy: qcom-qmp-usb: clean up probe initialisation\")\nremoved most users of the platform device driver data from the\nqcom-qmp-usb driver, but mistakenly also removed the initialisation\ndespite the data still being used in the runtime PM callbacks. This bug\nwas later reproduced when the driver was copied to create the\nqmp-usb-legacy driver.\n\nRestore the driver data initialisation at probe to avoid a NULL-pointer\ndereference on runtime suspend.\n\nApparently no one uses runtime PM, which currently needs to be enabled\nmanually through sysfs, with these drivers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50239",
"url": "https://www.suse.com/security/cve/CVE-2024-50239"
},
{
"category": "external",
"summary": "SUSE Bug 1233180 for CVE-2024-50239",
"url": "https://bugzilla.suse.com/1233180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50239"
},
{
"cve": "CVE-2024-50240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: qcom: qmp-usb: fix NULL-deref on runtime suspend\n\nCommit 413db06c05e7 (\"phy: qcom-qmp-usb: clean up probe initialisation\")\nremoved most users of the platform device driver data, but mistakenly\nalso removed the initialisation despite the data still being used in the\nruntime PM callbacks.\n\nRestore the driver data initialisation at probe to avoid a NULL-pointer\ndereference on runtime suspend.\n\nApparently no one uses runtime PM, which currently needs to be enabled\nmanually through sysfs, with this driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50240",
"url": "https://www.suse.com/security/cve/CVE-2024-50240"
},
{
"category": "external",
"summary": "SUSE Bug 1233217 for CVE-2024-50240",
"url": "https://bugzilla.suse.com/1233217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50240"
},
{
"cve": "CVE-2024-50241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Initialize struct nfsd4_copy earlier\n\nEnsure the refcount and async_copies fields are initialized early.\ncleanup_async_copy() will reference these fields if an error occurs\nin nfsd4_copy(). If they are not correctly initialized, at the very\nleast, a refcount underflow occurs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50241",
"url": "https://www.suse.com/security/cve/CVE-2024-50241"
},
{
"category": "external",
"summary": "SUSE Bug 1233187 for CVE-2024-50241",
"url": "https://bugzilla.suse.com/1233187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50241"
},
{
"cve": "CVE-2024-50242",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50242"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Additional check in ntfs_file_release",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50242",
"url": "https://www.suse.com/security/cve/CVE-2024-50242"
},
{
"category": "external",
"summary": "SUSE Bug 1233268 for CVE-2024-50242",
"url": "https://bugzilla.suse.com/1233268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50242"
},
{
"cve": "CVE-2024-50243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Fix general protection fault in run_is_mapped_full\n\nFixed deleating of a non-resident attribute in ntfs_create_inode()\nrollback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50243",
"url": "https://www.suse.com/security/cve/CVE-2024-50243"
},
{
"category": "external",
"summary": "SUSE Bug 1233269 for CVE-2024-50243",
"url": "https://bugzilla.suse.com/1233269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50243"
},
{
"cve": "CVE-2024-50244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50244"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Additional check in ni_clear()\n\nChecking of NTFS_FLAGS_LOG_REPLAYING added to prevent access to\nuninitialized bitmap during replay process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50244",
"url": "https://www.suse.com/security/cve/CVE-2024-50244"
},
{
"category": "external",
"summary": "SUSE Bug 1233270 for CVE-2024-50244",
"url": "https://bugzilla.suse.com/1233270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50244"
},
{
"cve": "CVE-2024-50245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Fix possible deadlock in mi_read\n\nMutex lock with another subclass used in ni_lock_dir().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50245",
"url": "https://www.suse.com/security/cve/CVE-2024-50245"
},
{
"category": "external",
"summary": "SUSE Bug 1233203 for CVE-2024-50245",
"url": "https://bugzilla.suse.com/1233203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50245"
},
{
"cve": "CVE-2024-50246",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50246"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Add rough attr alloc_size check",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50246",
"url": "https://www.suse.com/security/cve/CVE-2024-50246"
},
{
"category": "external",
"summary": "SUSE Bug 1233207 for CVE-2024-50246",
"url": "https://bugzilla.suse.com/1233207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50246"
},
{
"cve": "CVE-2024-50247",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50247"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Check if more than chunk-size bytes are written\n\nA incorrectly formatted chunk may decompress into\nmore than LZNT_CHUNK_SIZE bytes and a index out of bounds\nwill occur in s_max_off.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50247",
"url": "https://www.suse.com/security/cve/CVE-2024-50247"
},
{
"category": "external",
"summary": "SUSE Bug 1233271 for CVE-2024-50247",
"url": "https://bugzilla.suse.com/1233271"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50247"
},
{
"cve": "CVE-2024-50248",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50248"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Add bounds checking to mi_enum_attr()\n\nAdded bounds checking to make sure that every attr don\u0027t stray beyond\nvalid memory region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50248",
"url": "https://www.suse.com/security/cve/CVE-2024-50248"
},
{
"category": "external",
"summary": "SUSE Bug 1233219 for CVE-2024-50248",
"url": "https://bugzilla.suse.com/1233219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50248"
},
{
"cve": "CVE-2024-50249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50249"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: CPPC: Make rmw_lock a raw_spin_lock\n\nThe following BUG was triggered:\n\n=============================\n[ BUG: Invalid wait context ]\n6.12.0-rc2-XXX #406 Not tainted\n-----------------------------\nkworker/1:1/62 is trying to lock:\nffffff8801593030 (\u0026cpc_ptr-\u003ermw_lock){+.+.}-{3:3}, at: cpc_write+0xcc/0x370\nother info that might help us debug this:\ncontext-{5:5}\n2 locks held by kworker/1:1/62:\n #0: ffffff897ef5ec98 (\u0026rq-\u003e__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2c/0x50\n #1: ffffff880154e238 (\u0026sg_policy-\u003eupdate_lock){....}-{2:2}, at: sugov_update_shared+0x3c/0x280\nstack backtrace:\nCPU: 1 UID: 0 PID: 62 Comm: kworker/1:1 Not tainted 6.12.0-rc2-g9654bd3e8806 #406\nWorkqueue: 0x0 (events)\nCall trace:\n dump_backtrace+0xa4/0x130\n show_stack+0x20/0x38\n dump_stack_lvl+0x90/0xd0\n dump_stack+0x18/0x28\n __lock_acquire+0x480/0x1ad8\n lock_acquire+0x114/0x310\n _raw_spin_lock+0x50/0x70\n cpc_write+0xcc/0x370\n cppc_set_perf+0xa0/0x3a8\n cppc_cpufreq_fast_switch+0x40/0xc0\n cpufreq_driver_fast_switch+0x4c/0x218\n sugov_update_shared+0x234/0x280\n update_load_avg+0x6ec/0x7b8\n dequeue_entities+0x108/0x830\n dequeue_task_fair+0x58/0x408\n __schedule+0x4f0/0x1070\n schedule+0x54/0x130\n worker_thread+0xc0/0x2e8\n kthread+0x130/0x148\n ret_from_fork+0x10/0x20\n\nsugov_update_shared() locks a raw_spinlock while cpc_write() locks a\nspinlock.\n\nTo have a correct wait-type order, update rmw_lock to a raw spinlock and\nensure that interrupts will be disabled on the CPU holding it.\n\n[ rjw: Changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50249",
"url": "https://www.suse.com/security/cve/CVE-2024-50249"
},
{
"category": "external",
"summary": "SUSE Bug 1233197 for CVE-2024-50249",
"url": "https://bugzilla.suse.com/1233197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50249"
},
{
"cve": "CVE-2024-50250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50250"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsdax: dax_unshare_iter needs to copy entire blocks\n\nThe code that copies data from srcmap to iomap in dax_unshare_iter is\nvery very broken, which bfoster\u0027s recent fsx changes have exposed.\n\nIf the pos and len passed to dax_file_unshare are not aligned to an\nfsblock boundary, the iter pos and length in the _iter function will\nreflect this unalignment.\n\ndax_iomap_direct_access always returns a pointer to the start of the\nkmapped fsdax page, even if its pos argument is in the middle of that\npage. This is catastrophic for data integrity when iter-\u003epos is not\naligned to a page, because daddr/saddr do not point to the same byte in\nthe file as iter-\u003epos. Hence we corrupt user data by copying it to the\nwrong place.\n\nIf iter-\u003epos + iomap_length() in the _iter function not aligned to a\npage, then we fail to copy a full block, and only partially populate the\ndestination block. This is catastrophic for data confidentiality\nbecause we expose stale pmem contents.\n\nFix both of these issues by aligning copy_pos/copy_len to a page\nboundary (remember, this is fsdax so 1 fsblock == 1 base page) so that\nwe always copy full blocks.\n\nWe\u0027re not done yet -- there\u0027s no call to invalidate_inode_pages2_range,\nso programs that have the file range mmap\u0027d will continue accessing the\nold memory mapping after the file metadata updates have completed.\n\nBe careful with the return value -- if the unshare succeeds, we still\nneed to return the number of bytes that the iomap iter thinks we\u0027re\noperating on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50250",
"url": "https://www.suse.com/security/cve/CVE-2024-50250"
},
{
"category": "external",
"summary": "SUSE Bug 1233226 for CVE-2024-50250",
"url": "https://bugzilla.suse.com/1233226"
},
{
"category": "external",
"summary": "SUSE Bug 1233227 for CVE-2024-50250",
"url": "https://bugzilla.suse.com/1233227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50250"
},
{
"cve": "CVE-2024-50251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50251"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_payload: sanitize offset and length before calling skb_checksum()\n\nIf access to offset + length is larger than the skbuff length, then\nskb_checksum() triggers BUG_ON().\n\nskb_checksum() internally subtracts the length parameter while iterating\nover skbuff, BUG_ON(len) at the end of it checks that the expected\nlength to be included in the checksum calculation is fully consumed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50251",
"url": "https://www.suse.com/security/cve/CVE-2024-50251"
},
{
"category": "external",
"summary": "SUSE Bug 1233248 for CVE-2024-50251",
"url": "https://bugzilla.suse.com/1233248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50251"
},
{
"cve": "CVE-2024-50252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address\n\nThe device stores IPv6 addresses that are used for encapsulation in\nlinear memory that is managed by the driver.\n\nChanging the remote address of an ip6gre net device never worked\nproperly, but since cited commit the following reproducer [1] would\nresult in a warning [2] and a memory leak [3]. The problem is that the\nnew remote address is never added by the driver to its hash table (and\ntherefore the device) and the old address is never removed from it.\n\nFix by programming the new address when the configuration of the ip6gre\nnet device changes and removing the old one. If the address did not\nchange, then the above would result in increasing the reference count of\nthe address and then decreasing it.\n\n[1]\n # ip link add name bla up type ip6gre local 2001:db8:1::1 remote 2001:db8:2::1 tos inherit ttl inherit\n # ip link set dev bla type ip6gre remote 2001:db8:3::1\n # ip link del dev bla\n # devlink dev reload pci/0000:01:00.0\n\n[2]\nWARNING: CPU: 0 PID: 1682 at drivers/net/ethernet/mellanox/mlxsw/spectrum.c:3002 mlxsw_sp_ipv6_addr_put+0x140/0x1d0\nModules linked in:\nCPU: 0 UID: 0 PID: 1682 Comm: ip Not tainted 6.12.0-rc3-custom-g86b5b55bc835 #151\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nRIP: 0010:mlxsw_sp_ipv6_addr_put+0x140/0x1d0\n[...]\nCall Trace:\n \u003cTASK\u003e\n mlxsw_sp_router_netdevice_event+0x55f/0x1240\n notifier_call_chain+0x5a/0xd0\n call_netdevice_notifiers_info+0x39/0x90\n unregister_netdevice_many_notify+0x63e/0x9d0\n rtnl_dellink+0x16b/0x3a0\n rtnetlink_rcv_msg+0x142/0x3f0\n netlink_rcv_skb+0x50/0x100\n netlink_unicast+0x242/0x390\n netlink_sendmsg+0x1de/0x420\n ____sys_sendmsg+0x2bd/0x320\n ___sys_sendmsg+0x9a/0xe0\n __sys_sendmsg+0x7a/0xd0\n do_syscall_64+0x9e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[3]\nunreferenced object 0xffff898081f597a0 (size 32):\n comm \"ip\", pid 1626, jiffies 4294719324\n hex dump (first 32 bytes):\n 20 01 0d b8 00 02 00 00 00 00 00 00 00 00 00 01 ...............\n 21 49 61 83 80 89 ff ff 00 00 00 00 01 00 00 00 !Ia.............\n backtrace (crc fd9be911):\n [\u003c00000000df89c55d\u003e] __kmalloc_cache_noprof+0x1da/0x260\n [\u003c00000000ff2a1ddb\u003e] mlxsw_sp_ipv6_addr_kvdl_index_get+0x281/0x340\n [\u003c000000009ddd445d\u003e] mlxsw_sp_router_netdevice_event+0x47b/0x1240\n [\u003c00000000743e7757\u003e] notifier_call_chain+0x5a/0xd0\n [\u003c000000007c7b9e13\u003e] call_netdevice_notifiers_info+0x39/0x90\n [\u003c000000002509645d\u003e] register_netdevice+0x5f7/0x7a0\n [\u003c00000000c2e7d2a9\u003e] ip6gre_newlink_common.isra.0+0x65/0x130\n [\u003c0000000087cd6d8d\u003e] ip6gre_newlink+0x72/0x120\n [\u003c000000004df7c7cc\u003e] rtnl_newlink+0x471/0xa20\n [\u003c0000000057ed632a\u003e] rtnetlink_rcv_msg+0x142/0x3f0\n [\u003c0000000032e0d5b5\u003e] netlink_rcv_skb+0x50/0x100\n [\u003c00000000908bca63\u003e] netlink_unicast+0x242/0x390\n [\u003c00000000cdbe1c87\u003e] netlink_sendmsg+0x1de/0x420\n [\u003c0000000011db153e\u003e] ____sys_sendmsg+0x2bd/0x320\n [\u003c000000003b6d53eb\u003e] ___sys_sendmsg+0x9a/0xe0\n [\u003c00000000cae27c62\u003e] __sys_sendmsg+0x7a/0xd0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50252",
"url": "https://www.suse.com/security/cve/CVE-2024-50252"
},
{
"category": "external",
"summary": "SUSE Bug 1233201 for CVE-2024-50252",
"url": "https://bugzilla.suse.com/1233201"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50252"
},
{
"cve": "CVE-2024-50253",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50253"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check the validity of nr_words in bpf_iter_bits_new()\n\nCheck the validity of nr_words in bpf_iter_bits_new(). Without this\ncheck, when multiplication overflow occurs for nr_bits (e.g., when\nnr_words = 0x0400-0001, nr_bits becomes 64), stack corruption may occur\ndue to bpf_probe_read_kernel_common(..., nr_bytes = 0x2000-0008).\n\nFix it by limiting the maximum value of nr_words to 511. The value is\nderived from the current implementation of BPF memory allocator. To\nensure compatibility if the BPF memory allocator\u0027s size limitation\nchanges in the future, use the helper bpf_mem_alloc_check_size() to\ncheck whether nr_bytes is too larger. And return -E2BIG instead of\n-ENOMEM for oversized nr_bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50253",
"url": "https://www.suse.com/security/cve/CVE-2024-50253"
},
{
"category": "external",
"summary": "SUSE Bug 1233186 for CVE-2024-50253",
"url": "https://bugzilla.suse.com/1233186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50253"
},
{
"cve": "CVE-2024-50254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Free dynamically allocated bits in bpf_iter_bits_destroy()\n\nbpf_iter_bits_destroy() uses \"kit-\u003enr_bits \u003c= 64\" to check whether the\nbits are dynamically allocated. However, the check is incorrect and may\ncause a kmemleak as shown below:\n\nunreferenced object 0xffff88812628c8c0 (size 32):\n comm \"swapper/0\", pid 1, jiffies 4294727320\n hex dump (first 32 bytes):\n\tb0 c1 55 f5 81 88 ff ff f0 f0 f0 f0 f0 f0 f0 f0 ..U...........\n\tf0 f0 f0 f0 f0 f0 f0 f0 00 00 00 00 00 00 00 00 ..............\n backtrace (crc 781e32cc):\n\t[\u003c00000000c452b4ab\u003e] kmemleak_alloc+0x4b/0x80\n\t[\u003c0000000004e09f80\u003e] __kmalloc_node_noprof+0x480/0x5c0\n\t[\u003c00000000597124d6\u003e] __alloc.isra.0+0x89/0xb0\n\t[\u003c000000004ebfffcd\u003e] alloc_bulk+0x2af/0x720\n\t[\u003c00000000d9c10145\u003e] prefill_mem_cache+0x7f/0xb0\n\t[\u003c00000000ff9738ff\u003e] bpf_mem_alloc_init+0x3e2/0x610\n\t[\u003c000000008b616eac\u003e] bpf_global_ma_init+0x19/0x30\n\t[\u003c00000000fc473efc\u003e] do_one_initcall+0xd3/0x3c0\n\t[\u003c00000000ec81498c\u003e] kernel_init_freeable+0x66a/0x940\n\t[\u003c00000000b119f72f\u003e] kernel_init+0x20/0x160\n\t[\u003c00000000f11ac9a7\u003e] ret_from_fork+0x3c/0x70\n\t[\u003c0000000004671da4\u003e] ret_from_fork_asm+0x1a/0x30\n\nThat is because nr_bits will be set as zero in bpf_iter_bits_next()\nafter all bits have been iterated.\n\nFix the issue by setting kit-\u003ebit to kit-\u003enr_bits instead of setting\nkit-\u003enr_bits to zero when the iteration completes in\nbpf_iter_bits_next(). In addition, use \"!nr_bits || bits \u003e= nr_bits\" to\ncheck whether the iteration is complete and still use \"nr_bits \u003e 64\" to\nindicate whether bits are dynamically allocated. The \"!nr_bits\" check is\nnecessary because bpf_iter_bits_new() may fail before setting\nkit-\u003enr_bits, and this condition will stop the iteration early instead\nof accessing the zeroed or freed kit-\u003ebits.\n\nConsidering the initial value of kit-\u003ebits is -1 and the type of\nkit-\u003enr_bits is unsigned int, change the type of kit-\u003enr_bits to int.\nThe potential overflow problem will be handled in the following patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50254",
"url": "https://www.suse.com/security/cve/CVE-2024-50254"
},
{
"category": "external",
"summary": "SUSE Bug 1233183 for CVE-2024-50254",
"url": "https://bugzilla.suse.com/1233183"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50254"
},
{
"cve": "CVE-2024-50255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs\n\nFix __hci_cmd_sync_sk() to return not NULL for unknown opcodes.\n\n__hci_cmd_sync_sk() returns NULL if a command returns a status event.\nHowever, it also returns NULL where an opcode doesn\u0027t exist in the\nhci_cc table because hci_cmd_complete_evt() assumes status = skb-\u003edata[0]\nfor unknown opcodes.\nThis leads to null-ptr-deref in cmd_sync for HCI_OP_READ_LOCAL_CODECS as\nthere is no hci_cc for HCI_OP_READ_LOCAL_CODECS, which always assumes\nstatus = skb-\u003edata[0].\n\nKASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077]\nCPU: 1 PID: 2000 Comm: kworker/u9:5 Not tainted 6.9.0-ga6bcb805883c-dirty #10\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nWorkqueue: hci7 hci_power_on\nRIP: 0010:hci_read_supported_codecs+0xb9/0x870 net/bluetooth/hci_codec.c:138\nCode: 08 48 89 ef e8 b8 c1 8f fd 48 8b 75 00 e9 96 00 00 00 49 89 c6 48 ba 00 00 00 00 00 fc ff df 4c 8d 60 70 4c 89 e3 48 c1 eb 03 \u003c0f\u003e b6 04 13 84 c0 0f 85 82 06 00 00 41 83 3c 24 02 77 0a e8 bf 78\nRSP: 0018:ffff888120bafac8 EFLAGS: 00010212\nRAX: 0000000000000000 RBX: 000000000000000e RCX: ffff8881173f0040\nRDX: dffffc0000000000 RSI: ffffffffa58496c0 RDI: ffff88810b9ad1e4\nRBP: ffff88810b9ac000 R08: ffffffffa77882a7 R09: 1ffffffff4ef1054\nR10: dffffc0000000000 R11: fffffbfff4ef1055 R12: 0000000000000070\nR13: 0000000000000000 R14: 0000000000000000 R15: ffff88810b9ac000\nFS: 0000000000000000(0000) GS:ffff8881f6c00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f6ddaa3439e CR3: 0000000139764003 CR4: 0000000000770ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n hci_read_local_codecs_sync net/bluetooth/hci_sync.c:4546 [inline]\n hci_init_stage_sync net/bluetooth/hci_sync.c:3441 [inline]\n hci_init4_sync net/bluetooth/hci_sync.c:4706 [inline]\n hci_init_sync net/bluetooth/hci_sync.c:4742 [inline]\n hci_dev_init_sync net/bluetooth/hci_sync.c:4912 [inline]\n hci_dev_open_sync+0x19a9/0x2d30 net/bluetooth/hci_sync.c:4994\n hci_dev_do_open net/bluetooth/hci_core.c:483 [inline]\n hci_power_on+0x11e/0x560 net/bluetooth/hci_core.c:1015\n process_one_work kernel/workqueue.c:3267 [inline]\n process_scheduled_works+0x8ef/0x14f0 kernel/workqueue.c:3348\n worker_thread+0x91f/0xe50 kernel/workqueue.c:3429\n kthread+0x2cb/0x360 kernel/kthread.c:388\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50255",
"url": "https://www.suse.com/security/cve/CVE-2024-50255"
},
{
"category": "external",
"summary": "SUSE Bug 1233238 for CVE-2024-50255",
"url": "https://bugzilla.suse.com/1233238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50255"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: Fix use-after-free in get_info()\n\nip6table_nat module unload has refcnt warning for UAF. call trace is:\n\nWARNING: CPU: 1 PID: 379 at kernel/module/main.c:853 module_put+0x6f/0x80\nModules linked in: ip6table_nat(-)\nCPU: 1 UID: 0 PID: 379 Comm: ip6tables Not tainted 6.12.0-rc4-00047-gc2ee9f594da8-dirty #205\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996),\nBIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:module_put+0x6f/0x80\nCall Trace:\n \u003cTASK\u003e\n get_info+0x128/0x180\n do_ip6t_get_ctl+0x6a/0x430\n nf_getsockopt+0x46/0x80\n ipv6_getsockopt+0xb9/0x100\n rawv6_getsockopt+0x42/0x190\n do_sock_getsockopt+0xaa/0x180\n __sys_getsockopt+0x70/0xc0\n __x64_sys_getsockopt+0x20/0x30\n do_syscall_64+0xa2/0x1a0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nConcurrent execution of module unload and get_info() trigered the warning.\nThe root cause is as follows:\n\ncpu0\t\t\t\t cpu1\nmodule_exit\n//mod-\u003estate = MODULE_STATE_GOING\n ip6table_nat_exit\n xt_unregister_template\n\tkfree(t)\n\t//removed from templ_list\n\t\t\t\t getinfo()\n\t\t\t\t\t t = xt_find_table_lock\n\t\t\t\t\t\tlist_for_each_entry(tmpl, \u0026xt_templates[af]...)\n\t\t\t\t\t\t\tif (strcmp(tmpl-\u003ename, name))\n\t\t\t\t\t\t\t\tcontinue; //table not found\n\t\t\t\t\t\t\ttry_module_get\n\t\t\t\t\t\tlist_for_each_entry(t, \u0026xt_net-\u003etables[af]...)\n\t\t\t\t\t\t\treturn t; //not get refcnt\n\t\t\t\t\t module_put(t-\u003eme) //uaf\n unregister_pernet_subsys\n //remove table from xt_net list\n\nWhile xt_table module was going away and has been removed from\nxt_templates list, we couldnt get refcnt of xt_table-\u003eme. Check\nmodule in xt_net-\u003etables list re-traversal to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50257",
"url": "https://www.suse.com/security/cve/CVE-2024-50257"
},
{
"category": "external",
"summary": "SUSE Bug 1233244 for CVE-2024-50257",
"url": "https://bugzilla.suse.com/1233244"
},
{
"category": "external",
"summary": "SUSE Bug 1233245 for CVE-2024-50257",
"url": "https://bugzilla.suse.com/1233245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50257"
},
{
"cve": "CVE-2024-50258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fix crash when config small gso_max_size/gso_ipv4_max_size\n\nConfig a small gso_max_size/gso_ipv4_max_size will lead to an underflow\nin sk_dst_gso_max_size(), which may trigger a BUG_ON crash,\nbecause sk-\u003esk_gso_max_size would be much bigger than device limits.\nCall Trace:\ntcp_write_xmit\n tso_segs = tcp_init_tso_segs(skb, mss_now);\n tcp_set_skb_tso_segs\n tcp_skb_pcount_set\n // skb-\u003elen = 524288, mss_now = 8\n // u16 tso_segs = 524288/8 = 65535 -\u003e 0\n tso_segs = DIV_ROUND_UP(skb-\u003elen, mss_now)\n BUG_ON(!tso_segs)\nAdd check for the minimum value of gso_max_size and gso_ipv4_max_size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50258",
"url": "https://www.suse.com/security/cve/CVE-2024-50258"
},
{
"category": "external",
"summary": "SUSE Bug 1233221 for CVE-2024-50258",
"url": "https://bugzilla.suse.com/1233221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50258"
},
{
"cve": "CVE-2024-50259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write()\n\nThis was found by a static analyzer.\nWe should not forget the trailing zero after copy_from_user()\nif we will further do some string operations, sscanf() in this\ncase. Adding a trailing zero will ensure that the function\nperforms properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50259",
"url": "https://www.suse.com/security/cve/CVE-2024-50259"
},
{
"category": "external",
"summary": "SUSE Bug 1233214 for CVE-2024-50259",
"url": "https://bugzilla.suse.com/1233214"
},
{
"category": "external",
"summary": "SUSE Bug 1233215 for CVE-2024-50259",
"url": "https://bugzilla.suse.com/1233215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50259"
},
{
"cve": "CVE-2024-50260",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50260"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsock_map: fix a NULL pointer dereference in sock_map_link_update_prog()\n\nThe following race condition could trigger a NULL pointer dereference:\n\nsock_map_link_detach():\t\tsock_map_link_update_prog():\n mutex_lock(\u0026sockmap_mutex);\n ...\n sockmap_link-\u003emap = NULL;\n mutex_unlock(\u0026sockmap_mutex);\n \t\t\t\t mutex_lock(\u0026sockmap_mutex);\n\t\t\t\t ...\n\t\t\t\t sock_map_prog_link_lookup(sockmap_link-\u003emap);\n\t\t\t\t mutex_unlock(\u0026sockmap_mutex);\n \u003ccontinue\u003e\n\nFix it by adding a NULL pointer check. In this specific case, it makes\nno sense to update a link which is being released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50260",
"url": "https://www.suse.com/security/cve/CVE-2024-50260"
},
{
"category": "external",
"summary": "SUSE Bug 1233178 for CVE-2024-50260",
"url": "https://bugzilla.suse.com/1233178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50260"
},
{
"cve": "CVE-2024-50261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacsec: Fix use-after-free while sending the offloading packet\n\nKASAN reports the following UAF. The metadata_dst, which is used to\nstore the SCI value for macsec offload, is already freed by\nmetadata_dst_free() in macsec_free_netdev(), while driver still use it\nfor sending the packet.\n\nTo fix this issue, dst_release() is used instead to release\nmetadata_dst. So it is not freed instantly in macsec_free_netdev() if\nstill referenced by skb.\n\n BUG: KASAN: slab-use-after-free in mlx5e_xmit+0x1e8f/0x4190 [mlx5_core]\n Read of size 2 at addr ffff88813e42e038 by task kworker/7:2/714\n [...]\n Workqueue: mld mld_ifc_work\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x51/0x60\n print_report+0xc1/0x600\n kasan_report+0xab/0xe0\n mlx5e_xmit+0x1e8f/0x4190 [mlx5_core]\n dev_hard_start_xmit+0x120/0x530\n sch_direct_xmit+0x149/0x11e0\n __qdisc_run+0x3ad/0x1730\n __dev_queue_xmit+0x1196/0x2ed0\n vlan_dev_hard_start_xmit+0x32e/0x510 [8021q]\n dev_hard_start_xmit+0x120/0x530\n __dev_queue_xmit+0x14a7/0x2ed0\n macsec_start_xmit+0x13e9/0x2340\n dev_hard_start_xmit+0x120/0x530\n __dev_queue_xmit+0x14a7/0x2ed0\n ip6_finish_output2+0x923/0x1a70\n ip6_finish_output+0x2d7/0x970\n ip6_output+0x1ce/0x3a0\n NF_HOOK.constprop.0+0x15f/0x190\n mld_sendpack+0x59a/0xbd0\n mld_ifc_work+0x48a/0xa80\n process_one_work+0x5aa/0xe50\n worker_thread+0x79c/0x1290\n kthread+0x28f/0x350\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\n\n Allocated by task 3922:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x10/0x30\n __kasan_kmalloc+0x77/0x90\n __kmalloc_noprof+0x188/0x400\n metadata_dst_alloc+0x1f/0x4e0\n macsec_newlink+0x914/0x1410\n __rtnl_newlink+0xe08/0x15b0\n rtnl_newlink+0x5f/0x90\n rtnetlink_rcv_msg+0x667/0xa80\n netlink_rcv_skb+0x12c/0x360\n netlink_unicast+0x551/0x770\n netlink_sendmsg+0x72d/0xbd0\n __sock_sendmsg+0xc5/0x190\n ____sys_sendmsg+0x52e/0x6a0\n ___sys_sendmsg+0xeb/0x170\n __sys_sendmsg+0xb5/0x140\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 4011:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n poison_slab_object+0x10c/0x190\n __kasan_slab_free+0x11/0x30\n kfree+0xe0/0x290\n macsec_free_netdev+0x3f/0x140\n netdev_run_todo+0x450/0xc70\n rtnetlink_rcv_msg+0x66f/0xa80\n netlink_rcv_skb+0x12c/0x360\n netlink_unicast+0x551/0x770\n netlink_sendmsg+0x72d/0xbd0\n __sock_sendmsg+0xc5/0x190\n ____sys_sendmsg+0x52e/0x6a0\n ___sys_sendmsg+0xeb/0x170\n __sys_sendmsg+0xb5/0x140\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50261",
"url": "https://www.suse.com/security/cve/CVE-2024-50261"
},
{
"category": "external",
"summary": "SUSE Bug 1233253 for CVE-2024-50261",
"url": "https://bugzilla.suse.com/1233253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50261"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50263",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50263"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfork: only invoke khugepaged, ksm hooks if no error\n\nThere is no reason to invoke these hooks early against an mm that is in an\nincomplete state.\n\nThe change in commit d24062914837 (\"fork: use __mt_dup() to duplicate\nmaple tree in dup_mmap()\") makes this more pertinent as we may be in a\nstate where entries in the maple tree are not yet consistent.\n\nTheir placement early in dup_mmap() only appears to have been meaningful\nfor early error checking, and since functionally it\u0027d require a very small\nallocation to fail (in practice \u0027too small to fail\u0027) that\u0027d only occur in\nthe most dire circumstances, meaning the fork would fail or be OOM\u0027d in\nany case.\n\nSince both khugepaged and KSM tracking are there to provide optimisations\nto memory performance rather than critical functionality, it doesn\u0027t\nreally matter all that much if, under such dire memory pressure, we fail\nto register an mm with these.\n\nAs a result, we follow the example of commit d2081b2bf819 (\"mm:\nkhugepaged: make khugepaged_enter() void function\") and make ksm_fork() a\nvoid function also.\n\nWe only expose the mm to these functions once we are done with them and\nonly if no error occurred in the fork operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50263",
"url": "https://www.suse.com/security/cve/CVE-2024-50263"
},
{
"category": "external",
"summary": "SUSE Bug 1233254 for CVE-2024-50263",
"url": "https://bugzilla.suse.com/1233254"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-macros-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-6.11.8-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-vanilla-6.11.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-11-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50263"
}
]
}
OPENSUSE-SU-2025:14705-1
Vulnerability from csaf_opensuse - Published: 2025-01-28 00:00 - Updated: 2025-01-28 00:00Summary
kernel-devel-longterm-6.12.11-1.1 on GA media
Notes
Title of the patch
kernel-devel-longterm-6.12.11-1.1 on GA media
Description of the patch
These are all security issues fixed in the kernel-devel-longterm-6.12.11-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2025-14705
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "kernel-devel-longterm-6.12.11-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the kernel-devel-longterm-6.12.11-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-14705",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_14705-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2025:14705-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/T7LN2FDZYBYZRLX5LOA3REDAXV7VKGW4/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2025:14705-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/T7LN2FDZYBYZRLX5LOA3REDAXV7VKGW4/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-28746 page",
"url": "https://www.suse.com/security/cve/CVE-2023-28746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-47233 page",
"url": "https://www.suse.com/security/cve/CVE-2023-47233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52429 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52429/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52456 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52456/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52457 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52457/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52459 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52459/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52461 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52461/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52917 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-6270 page",
"url": "https://www.suse.com/security/cve/CVE-2023-6270/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-6535 page",
"url": "https://www.suse.com/security/cve/CVE-2023-6535/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-6536 page",
"url": "https://www.suse.com/security/cve/CVE-2023-6536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-7042 page",
"url": "https://www.suse.com/security/cve/CVE-2023-7042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-2201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-2201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23307 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23307/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23851 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24860 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24860/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26862 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26862/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26865 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26865/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46869 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47671 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47671/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47678 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47680 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47681 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47682 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47682/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47683 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47684 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47684/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47686 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47688 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47689 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47690 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47692 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47696 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47696/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47697 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47697/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47698 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47699 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47699/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47700 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47700/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47701 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47702 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47703 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47703/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47704 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47705 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47706 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47708 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47710 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47710/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47711 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47711/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47712 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47713 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47714 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47717 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47717/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47718 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47718/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47719 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47720 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47721 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47721/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47730 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47731 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47731/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47732 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47733 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47734 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47736 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47736/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47738 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47740 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47742 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47743 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47748 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47750 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47751 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47754 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49851 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49852 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49852/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49853 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49855 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49856 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49858 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49858/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49859 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49859/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49860 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49860/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49861 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49862 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49862/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49863 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49864 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49865 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49865/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49866 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49867 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49868 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49869 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49871 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49871/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49872 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49872/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49873 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49874 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49875 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49876 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49877 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49878 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49878/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49879 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49880 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49881 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49882 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49882/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49883 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49885 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49885/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49889 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49889/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49891 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49892 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49894 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49894/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49895 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49895/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49899 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49900 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49901 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49902 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49902/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49905 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49905/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49909 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49909/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49910 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49910/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49917 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49918 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49919 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49919/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49920 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49920/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49921 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49923 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49925 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49925/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49926 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49926/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49927 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49928 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49929 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49930 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49930/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49931 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49933 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49933/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49936 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49939 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49941 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49942 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49943 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49943/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49945 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49945/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49949 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49949/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49955 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49956 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49956/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49957 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49958 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49959 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49963 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49963/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49964 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49966 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49966/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49968 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49968/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49969 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49972 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49972/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49974 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49974/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49975 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49975/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49976 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49978 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49979 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49979/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49980 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49980/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49981 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49985 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49987 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49991 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49992 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49994 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49994/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49995 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49996 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50009 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50009/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50010 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50014 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50015 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50022 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50024 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50024/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50025 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50027 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50032 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50033 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50034 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50034/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50035 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50036 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50036/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50037 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50038 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50040 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50040/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50041 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50042 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50043 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50043/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50044 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50044/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50045 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50045/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50046 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50046/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50047 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50048 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50048/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50049 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50049/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50055 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50056 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50056/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50057 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50057/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50058 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50058/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50059 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50059/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50060 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50061 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50062 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50062/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50063 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50063/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50065 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50066 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50067 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50068 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50069 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50069/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50070 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50071 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50071/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50072 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50072/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50073 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50074 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50074/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50075 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50075/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50076 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50077 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50078 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50079 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50080 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50081 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50082 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50083 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50084 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50085 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50086 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50087 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50088 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50089 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50091 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50092 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50092/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50093 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50094 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50096 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50097 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50098 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50100 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50101 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50102 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50102/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50104 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50105 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50106 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50107 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50107/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50108 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50109 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50109/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50110 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50111 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50112 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50113 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50114 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50115 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50115/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50116 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50118 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50119 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50120 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50121 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50122 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50123 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50124 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50124/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50126 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50128 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50128/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50129 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50130 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50132 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50133 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50135 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50136 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50137 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50138 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50139 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50140 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50142 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50143 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50144 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50145 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50147 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50149 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50152 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50152/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50153 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50157 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50158 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50159 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50161 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50162 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50163 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50164 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50165 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50166 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50167 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50168 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50170 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50172 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50173 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50174 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50175 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50175/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50176 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50177 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50178 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50181 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50182 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50183 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50184 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50185 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50186 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50187 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50189 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50190 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50191 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50192 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50193 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50193/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50194 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50195 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50196 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50197 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50199 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50199/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50200 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50205 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50206 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50207 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50210 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50212 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50212/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50213 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50214 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50216 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50217 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50218 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50220 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50221 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50222 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50223 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50224 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50225 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50226 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50226/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50227 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50228 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50230 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50231 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50233 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50235 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50236 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50238 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50239 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50240 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50241 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50242 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50242/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50243 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50244 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50245 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50246 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50246/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50247 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50247/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50248 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50248/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50249 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50250 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50250/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50251 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50252 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50253 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50253/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50254 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50255 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50256 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50257 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50258 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50259 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50260 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50260/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50261 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50262 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50263 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50263/"
}
],
"title": "kernel-devel-longterm-6.12.11-1.1 on GA media",
"tracking": {
"current_release_date": "2025-01-28T00:00:00Z",
"generator": {
"date": "2025-01-28T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:14705-1",
"initial_release_date": "2025-01-28T00:00:00Z",
"revision_history": [
{
"date": "2025-01-28T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-longterm-6.12.11-1.1.aarch64",
"product": {
"name": "kernel-devel-longterm-6.12.11-1.1.aarch64",
"product_id": "kernel-devel-longterm-6.12.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-source-longterm-6.12.11-1.1.aarch64",
"product": {
"name": "kernel-source-longterm-6.12.11-1.1.aarch64",
"product_id": "kernel-source-longterm-6.12.11-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-longterm-6.12.11-1.1.ppc64le",
"product": {
"name": "kernel-devel-longterm-6.12.11-1.1.ppc64le",
"product_id": "kernel-devel-longterm-6.12.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-source-longterm-6.12.11-1.1.ppc64le",
"product": {
"name": "kernel-source-longterm-6.12.11-1.1.ppc64le",
"product_id": "kernel-source-longterm-6.12.11-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-longterm-6.12.11-1.1.s390x",
"product": {
"name": "kernel-devel-longterm-6.12.11-1.1.s390x",
"product_id": "kernel-devel-longterm-6.12.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-source-longterm-6.12.11-1.1.s390x",
"product": {
"name": "kernel-source-longterm-6.12.11-1.1.s390x",
"product_id": "kernel-source-longterm-6.12.11-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-longterm-6.12.11-1.1.x86_64",
"product": {
"name": "kernel-devel-longterm-6.12.11-1.1.x86_64",
"product_id": "kernel-devel-longterm-6.12.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-source-longterm-6.12.11-1.1.x86_64",
"product": {
"name": "kernel-source-longterm-6.12.11-1.1.x86_64",
"product_id": "kernel-source-longterm-6.12.11-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-longterm-6.12.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64"
},
"product_reference": "kernel-devel-longterm-6.12.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-longterm-6.12.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le"
},
"product_reference": "kernel-devel-longterm-6.12.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-longterm-6.12.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x"
},
"product_reference": "kernel-devel-longterm-6.12.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-longterm-6.12.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64"
},
"product_reference": "kernel-devel-longterm-6.12.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-longterm-6.12.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64"
},
"product_reference": "kernel-source-longterm-6.12.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-longterm-6.12.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le"
},
"product_reference": "kernel-source-longterm-6.12.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-longterm-6.12.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x"
},
"product_reference": "kernel-source-longterm-6.12.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-longterm-6.12.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
},
"product_reference": "kernel-source-longterm-6.12.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-28746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-28746"
}
],
"notes": [
{
"category": "general",
"text": "Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-28746",
"url": "https://www.suse.com/security/cve/CVE-2023-28746"
},
{
"category": "external",
"summary": "SUSE Bug 1213456 for CVE-2023-28746",
"url": "https://bugzilla.suse.com/1213456"
},
{
"category": "external",
"summary": "SUSE Bug 1221323 for CVE-2023-28746",
"url": "https://bugzilla.suse.com/1221323"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-28746"
},
{
"cve": "CVE-2023-47233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-47233"
}
],
"notes": [
{
"category": "general",
"text": "The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, this \"could be exploited in a real world scenario.\" This is related to brcmf_cfg80211_escan_timeout_worker in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-47233",
"url": "https://www.suse.com/security/cve/CVE-2023-47233"
},
{
"category": "external",
"summary": "SUSE Bug 1216702 for CVE-2023-47233",
"url": "https://bugzilla.suse.com/1216702"
},
{
"category": "external",
"summary": "SUSE Bug 1224592 for CVE-2023-47233",
"url": "https://bugzilla.suse.com/1224592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-47233"
},
{
"cve": "CVE-2023-52429",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52429"
}
],
"notes": [
{
"category": "general",
"text": "dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52429",
"url": "https://www.suse.com/security/cve/CVE-2023-52429"
},
{
"category": "external",
"summary": "SUSE Bug 1219827 for CVE-2023-52429",
"url": "https://bugzilla.suse.com/1219827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-52429"
},
{
"cve": "CVE-2023-52456",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52456"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: imx: fix tx statemachine deadlock\n\nWhen using the serial port as RS485 port, the tx statemachine is used to\ncontrol the RTS pin to drive the RS485 transceiver TX_EN pin. When the\nTTY port is closed in the middle of a transmission (for instance during\nuserland application crash), imx_uart_shutdown disables the interface\nand disables the Transmission Complete interrupt. afer that,\nimx_uart_stop_tx bails on an incomplete transmission, to be retriggered\nby the TC interrupt. This interrupt is disabled and therefore the tx\nstatemachine never transitions out of SEND. The statemachine is in\ndeadlock now, and the TX_EN remains low, making the interface useless.\n\nimx_uart_stop_tx now checks for incomplete transmission AND whether TC\ninterrupts are enabled before bailing to be retriggered. This makes sure\nthe state machine handling is reached, and is properly set to\nWAIT_AFTER_SEND.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52456",
"url": "https://www.suse.com/security/cve/CVE-2023-52456"
},
{
"category": "external",
"summary": "SUSE Bug 1220364 for CVE-2023-52456",
"url": "https://bugzilla.suse.com/1220364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2023-52456"
},
{
"cve": "CVE-2023-52457",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52457"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: 8250: omap: Don\u0027t skip resource freeing if pm_runtime_resume_and_get() failed\n\nReturning an error code from .remove() makes the driver core emit the\nlittle helpful error message:\n\n\tremove callback returned a non-zero value. This will be ignored.\n\nand then remove the device anyhow. So all resources that were not freed\nare leaked in this case. Skipping serial8250_unregister_port() has the\npotential to keep enough of the UART around to trigger a use-after-free.\n\nSo replace the error return (and with it the little helpful error\nmessage) by a more useful error message and continue to cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52457",
"url": "https://www.suse.com/security/cve/CVE-2023-52457"
},
{
"category": "external",
"summary": "SUSE Bug 1220350 for CVE-2023-52457",
"url": "https://bugzilla.suse.com/1220350"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-52457"
},
{
"cve": "CVE-2023-52459",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52459"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: v4l: async: Fix duplicated list deletion\n\nThe list deletion call dropped here is already called from the\nhelper function in the line before. Having a second list_del()\ncall results in either a warning (with CONFIG_DEBUG_LIST=y):\n\nlist_del corruption, c46c8198-\u003enext is LIST_POISON1 (00000100)\n\nIf CONFIG_DEBUG_LIST is disabled the operation results in a\nkernel error due to NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52459",
"url": "https://www.suse.com/security/cve/CVE-2023-52459"
},
{
"category": "external",
"summary": "SUSE Bug 1220318 for CVE-2023-52459",
"url": "https://bugzilla.suse.com/1220318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-52459"
},
{
"cve": "CVE-2023-52461",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52461"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Fix bounds limiting when given a malformed entity\n\nIf we\u0027re given a malformed entity in drm_sched_entity_init()--shouldn\u0027t\nhappen, but we verify--with out-of-bounds priority value, we set it to an\nallowed value. Fix the expression which sets this limit.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52461",
"url": "https://www.suse.com/security/cve/CVE-2023-52461"
},
{
"category": "external",
"summary": "SUSE Bug 1220322 for CVE-2023-52461",
"url": "https://bugzilla.suse.com/1220322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-52461"
},
{
"cve": "CVE-2023-52917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52917"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52917",
"url": "https://www.suse.com/security/cve/CVE-2023-52917"
},
{
"category": "external",
"summary": "SUSE Bug 1231849 for CVE-2023-52917",
"url": "https://bugzilla.suse.com/1231849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-52917"
},
{
"cve": "CVE-2023-6270",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-6270"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` global queue. This could lead to a denial of service condition or potential code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-6270",
"url": "https://www.suse.com/security/cve/CVE-2023-6270"
},
{
"category": "external",
"summary": "SUSE Bug 1218562 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1218562"
},
{
"category": "external",
"summary": "SUSE Bug 1218813 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1218813"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1223016 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1223016"
},
{
"category": "external",
"summary": "SUSE Bug 1227675 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1227675"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-6270"
},
{
"cve": "CVE-2023-6535",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-6535"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel\u0027s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, causing kernel panic and a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-6535",
"url": "https://www.suse.com/security/cve/CVE-2023-6535"
},
{
"category": "external",
"summary": "SUSE Bug 1217988 for CVE-2023-6535",
"url": "https://bugzilla.suse.com/1217988"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-6535"
},
{
"cve": "CVE-2023-6536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-6536"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel\u0027s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, causing kernel panic and a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-6536",
"url": "https://www.suse.com/security/cve/CVE-2023-6536"
},
{
"category": "external",
"summary": "SUSE Bug 1217989 for CVE-2023-6536",
"url": "https://bugzilla.suse.com/1217989"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-6536"
},
{
"cve": "CVE-2023-7042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-7042"
}
],
"notes": [
{
"category": "general",
"text": "A null pointer dereference vulnerability was found in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() in drivers/net/wireless/ath/ath10k/wmi-tlv.c in the Linux kernel. This issue could be exploited to trigger a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-7042",
"url": "https://www.suse.com/security/cve/CVE-2023-7042"
},
{
"category": "external",
"summary": "SUSE Bug 1218336 for CVE-2023-7042",
"url": "https://bugzilla.suse.com/1218336"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-7042"
},
{
"cve": "CVE-2024-2201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-2201"
}
],
"notes": [
{
"category": "general",
"text": "A cross-privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel systems.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-2201",
"url": "https://www.suse.com/security/cve/CVE-2024-2201"
},
{
"category": "external",
"summary": "SUSE Bug 1212111 for CVE-2024-2201",
"url": "https://bugzilla.suse.com/1212111"
},
{
"category": "external",
"summary": "SUSE Bug 1217339 for CVE-2024-2201",
"url": "https://bugzilla.suse.com/1217339"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-2201"
},
{
"cve": "CVE-2024-23307",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23307"
}
],
"notes": [
{
"category": "general",
"text": "Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23307",
"url": "https://www.suse.com/security/cve/CVE-2024-23307"
},
{
"category": "external",
"summary": "SUSE Bug 1219169 for CVE-2024-23307",
"url": "https://bugzilla.suse.com/1219169"
},
{
"category": "external",
"summary": "SUSE Bug 1220145 for CVE-2024-23307",
"url": "https://bugzilla.suse.com/1220145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-23307"
},
{
"cve": "CVE-2024-23851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23851"
}
],
"notes": [
{
"category": "general",
"text": "copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because of a missing param_kernel-\u003edata_size check. This is related to ctl_ioctl.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23851",
"url": "https://www.suse.com/security/cve/CVE-2024-23851"
},
{
"category": "external",
"summary": "SUSE Bug 1219146 for CVE-2024-23851",
"url": "https://bugzilla.suse.com/1219146"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-23851"
},
{
"cve": "CVE-2024-24860",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24860"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the Linux kernel\u0027s bluetooth device driver in {min,max}_key_size_set() function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue.\n\n\n\n\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24860",
"url": "https://www.suse.com/security/cve/CVE-2024-24860"
},
{
"category": "external",
"summary": "SUSE Bug 1219608 for CVE-2024-24860",
"url": "https://bugzilla.suse.com/1219608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-24860"
},
{
"cve": "CVE-2024-26605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26605"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/ASPM: Fix deadlock when enabling ASPM\n\nA last minute revert in 6.7-final introduced a potential deadlock when\nenabling ASPM during probe of Qualcomm PCIe controllers as reported by\nlockdep:\n\n ============================================\n WARNING: possible recursive locking detected\n 6.7.0 #40 Not tainted\n --------------------------------------------\n kworker/u16:5/90 is trying to acquire lock:\n ffffacfa78ced000 (pci_bus_sem){++++}-{3:3}, at: pcie_aspm_pm_state_change+0x58/0xdc\n\n but task is already holding lock:\n ffffacfa78ced000 (pci_bus_sem){++++}-{3:3}, at: pci_walk_bus+0x34/0xbc\n\n other info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(pci_bus_sem);\n lock(pci_bus_sem);\n\n *** DEADLOCK ***\n\n Call trace:\n print_deadlock_bug+0x25c/0x348\n __lock_acquire+0x10a4/0x2064\n lock_acquire+0x1e8/0x318\n down_read+0x60/0x184\n pcie_aspm_pm_state_change+0x58/0xdc\n pci_set_full_power_state+0xa8/0x114\n pci_set_power_state+0xc4/0x120\n qcom_pcie_enable_aspm+0x1c/0x3c [pcie_qcom]\n pci_walk_bus+0x64/0xbc\n qcom_pcie_host_post_init_2_7_0+0x28/0x34 [pcie_qcom]\n\nThe deadlock can easily be reproduced on machines like the Lenovo ThinkPad\nX13s by adding a delay to increase the race window during asynchronous\nprobe where another thread can take a write lock.\n\nAdd a new pci_set_power_state_locked() and associated helper functions that\ncan be called with the PCI bus semaphore held to avoid taking the read lock\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26605",
"url": "https://www.suse.com/security/cve/CVE-2024-26605"
},
{
"category": "external",
"summary": "SUSE Bug 1220336 for CVE-2024-26605",
"url": "https://bugzilla.suse.com/1220336"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-26605"
},
{
"cve": "CVE-2024-26862",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26862"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npacket: annotate data-races around ignore_outgoing\n\nignore_outgoing is read locklessly from dev_queue_xmit_nit()\nand packet_getsockopt()\n\nAdd appropriate READ_ONCE()/WRITE_ONCE() annotations.\n\nsyzbot reported:\n\nBUG: KCSAN: data-race in dev_queue_xmit_nit / packet_setsockopt\n\nwrite to 0xffff888107804542 of 1 bytes by task 22618 on cpu 0:\n packet_setsockopt+0xd83/0xfd0 net/packet/af_packet.c:4003\n do_sock_setsockopt net/socket.c:2311 [inline]\n __sys_setsockopt+0x1d8/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0x66/0x80 net/socket.c:2340\n do_syscall_64+0xd3/0x1d0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nread to 0xffff888107804542 of 1 bytes by task 27 on cpu 1:\n dev_queue_xmit_nit+0x82/0x620 net/core/dev.c:2248\n xmit_one net/core/dev.c:3527 [inline]\n dev_hard_start_xmit+0xcc/0x3f0 net/core/dev.c:3547\n __dev_queue_xmit+0xf24/0x1dd0 net/core/dev.c:4335\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n batadv_send_skb_packet+0x264/0x300 net/batman-adv/send.c:108\n batadv_send_broadcast_skb+0x24/0x30 net/batman-adv/send.c:127\n batadv_iv_ogm_send_to_if net/batman-adv/bat_iv_ogm.c:392 [inline]\n batadv_iv_ogm_emit net/batman-adv/bat_iv_ogm.c:420 [inline]\n batadv_iv_send_outstanding_bat_ogm_packet+0x3f0/0x4b0 net/batman-adv/bat_iv_ogm.c:1700\n process_one_work kernel/workqueue.c:3254 [inline]\n process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335\n worker_thread+0x526/0x730 kernel/workqueue.c:3416\n kthread+0x1d1/0x210 kernel/kthread.c:388\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243\n\nvalue changed: 0x00 -\u003e 0x01\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 1 PID: 27 Comm: kworker/u8:1 Tainted: G W 6.8.0-syzkaller-08073-g480e035fc4c7 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024\nWorkqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26862",
"url": "https://www.suse.com/security/cve/CVE-2024-26862"
},
{
"category": "external",
"summary": "SUSE Bug 1223111 for CVE-2024-26862",
"url": "https://bugzilla.suse.com/1223111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-26862"
},
{
"cve": "CVE-2024-26865",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26865"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrds: tcp: Fix use-after-free of net in reqsk_timer_handler().\n\nsyzkaller reported a warning of netns tracker [0] followed by KASAN\nsplat [1] and another ref tracker warning [1].\n\nsyzkaller could not find a repro, but in the log, the only suspicious\nsequence was as follows:\n\n 18:26:22 executing program 1:\n r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)\n ...\n connect$inet6(r0, \u0026(0x7f0000000080)={0xa, 0x4001, 0x0, @loopback}, 0x1c) (async)\n\nThe notable thing here is 0x4001 in connect(), which is RDS_TCP_PORT.\n\nSo, the scenario would be:\n\n 1. unshare(CLONE_NEWNET) creates a per netns tcp listener in\n rds_tcp_listen_init().\n 2. syz-executor connect()s to it and creates a reqsk.\n 3. syz-executor exit()s immediately.\n 4. netns is dismantled. [0]\n 5. reqsk timer is fired, and UAF happens while freeing reqsk. [1]\n 6. listener is freed after RCU grace period. [2]\n\nBasically, reqsk assumes that the listener guarantees netns safety\nuntil all reqsk timers are expired by holding the listener\u0027s refcount.\nHowever, this was not the case for kernel sockets.\n\nCommit 740ea3c4a0b2 (\"tcp: Clean up kernel listener\u0027s reqsk in\ninet_twsk_purge()\") fixed this issue only for per-netns ehash.\n\nLet\u0027s apply the same fix for the global ehash.\n\n[0]:\nref_tracker: net notrefcnt@0000000065449cc3 has 1/1 users at\n sk_alloc (./include/net/net_namespace.h:337 net/core/sock.c:2146)\n inet6_create (net/ipv6/af_inet6.c:192 net/ipv6/af_inet6.c:119)\n __sock_create (net/socket.c:1572)\n rds_tcp_listen_init (net/rds/tcp_listen.c:279)\n rds_tcp_init_net (net/rds/tcp.c:577)\n ops_init (net/core/net_namespace.c:137)\n setup_net (net/core/net_namespace.c:340)\n copy_net_ns (net/core/net_namespace.c:497)\n create_new_namespaces (kernel/nsproxy.c:110)\n unshare_nsproxy_namespaces (kernel/nsproxy.c:228 (discriminator 4))\n ksys_unshare (kernel/fork.c:3429)\n __x64_sys_unshare (kernel/fork.c:3496)\n do_syscall_64 (arch/x86/entry/common.c:52 arch/x86/entry/common.c:83)\n entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:129)\n...\nWARNING: CPU: 0 PID: 27 at lib/ref_tracker.c:179 ref_tracker_dir_exit (lib/ref_tracker.c:179)\n\n[1]:\nBUG: KASAN: slab-use-after-free in inet_csk_reqsk_queue_drop (./include/net/inet_hashtables.h:180 net/ipv4/inet_connection_sock.c:952 net/ipv4/inet_connection_sock.c:966)\nRead of size 8 at addr ffff88801b370400 by task swapper/0/0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl (lib/dump_stack.c:107 (discriminator 1))\n print_report (mm/kasan/report.c:378 mm/kasan/report.c:488)\n kasan_report (mm/kasan/report.c:603)\n inet_csk_reqsk_queue_drop (./include/net/inet_hashtables.h:180 net/ipv4/inet_connection_sock.c:952 net/ipv4/inet_connection_sock.c:966)\n reqsk_timer_handler (net/ipv4/inet_connection_sock.c:979 net/ipv4/inet_connection_sock.c:1092)\n call_timer_fn (./arch/x86/include/asm/jump_label.h:27 ./include/linux/jump_label.h:207 ./include/trace/events/timer.h:127 kernel/time/timer.c:1701)\n __run_timers.part.0 (kernel/time/timer.c:1752 kernel/time/timer.c:2038)\n run_timer_softirq (kernel/time/timer.c:2053)\n __do_softirq (./arch/x86/include/asm/jump_label.h:27 ./include/linux/jump_label.h:207 ./include/trace/events/irq.h:142 kernel/softirq.c:554)\n irq_exit_rcu (kernel/softirq.c:427 kernel/softirq.c:632 kernel/softirq.c:644)\n sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1076 (discriminator 14))\n \u003c/IRQ\u003e\n\nAllocated by task 258 on cpu 0 at 83.612050s:\n kasan_save_stack (mm/kasan/common.c:48)\n kasan_save_track (mm/kasan/common.c:68)\n __kasan_slab_alloc (mm/kasan/common.c:343)\n kmem_cache_alloc (mm/slub.c:3813 mm/slub.c:3860 mm/slub.c:3867)\n copy_net_ns (./include/linux/slab.h:701 net/core/net_namespace.c:421 net/core/net_namespace.c:480)\n create_new_namespaces (kernel/nsproxy.c:110)\n unshare_nsproxy_name\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26865",
"url": "https://www.suse.com/security/cve/CVE-2024-26865"
},
{
"category": "external",
"summary": "SUSE Bug 1223062 for CVE-2024-26865",
"url": "https://bugzilla.suse.com/1223062"
},
{
"category": "external",
"summary": "SUSE Bug 1223063 for CVE-2024-26865",
"url": "https://bugzilla.suse.com/1223063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-26865"
},
{
"cve": "CVE-2024-46869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46869"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btintel_pcie: Allocate memory for driver private data\n\nFix driver not allocating memory for struct btintel_data which is used\nto store internal data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46869",
"url": "https://www.suse.com/security/cve/CVE-2024-46869"
},
{
"category": "external",
"summary": "SUSE Bug 1231173 for CVE-2024-46869",
"url": "https://bugzilla.suse.com/1231173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-46869"
},
{
"cve": "CVE-2024-47671",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47671"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: usbtmc: prevent kernel-usb-infoleak\n\nThe syzbot reported a kernel-usb-infoleak in usbtmc_write,\nwe need to clear the structure before filling fields.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47671",
"url": "https://www.suse.com/security/cve/CVE-2024-47671"
},
{
"category": "external",
"summary": "SUSE Bug 1231541 for CVE-2024-47671",
"url": "https://bugzilla.suse.com/1231541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47671"
},
{
"cve": "CVE-2024-47675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix use-after-free in bpf_uprobe_multi_link_attach()\n\nIf bpf_link_prime() fails, bpf_uprobe_multi_link_attach() goes to the\nerror_free label and frees the array of bpf_uprobe\u0027s without calling\nbpf_uprobe_unregister().\n\nThis leaks bpf_uprobe-\u003euprobe and worse, this frees bpf_uprobe-\u003econsumer\nwithout removing it from the uprobe-\u003econsumers list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47675",
"url": "https://www.suse.com/security/cve/CVE-2024-47675"
},
{
"category": "external",
"summary": "SUSE Bug 1231926 for CVE-2024-47675",
"url": "https://bugzilla.suse.com/1231926"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47675"
},
{
"cve": "CVE-2024-47676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/hugetlb.c: fix UAF of vma in hugetlb fault pathway\n\nSyzbot reports a UAF in hugetlb_fault(). This happens because\nvmf_anon_prepare() could drop the per-VMA lock and allow the current VMA\nto be freed before hugetlb_vma_unlock_read() is called.\n\nWe can fix this by using a modified version of vmf_anon_prepare() that\ndoesn\u0027t release the VMA lock on failure, and then release it ourselves\nafter hugetlb_vma_unlock_read().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47676",
"url": "https://www.suse.com/security/cve/CVE-2024-47676"
},
{
"category": "external",
"summary": "SUSE Bug 1231927 for CVE-2024-47676",
"url": "https://bugzilla.suse.com/1231927"
},
{
"category": "external",
"summary": "SUSE Bug 1232898 for CVE-2024-47676",
"url": "https://bugzilla.suse.com/1232898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47676"
},
{
"cve": "CVE-2024-47677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: resolve memory leak from exfat_create_upcase_table()\n\nIf exfat_load_upcase_table reaches end and returns -EINVAL,\nallocated memory doesn\u0027t get freed and while\nexfat_load_default_upcase_table allocates more memory, leading to a\nmemory leak.\n\nHere\u0027s link to syzkaller crash report illustrating this issue:\nhttps://syzkaller.appspot.com/text?tag=CrashReport\u0026x=1406c201980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47677",
"url": "https://www.suse.com/security/cve/CVE-2024-47677"
},
{
"category": "external",
"summary": "SUSE Bug 1231853 for CVE-2024-47677",
"url": "https://bugzilla.suse.com/1231853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47677"
},
{
"cve": "CVE-2024-47678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47678"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: change the order of rate limits\n\nICMP messages are ratelimited :\n\nAfter the blamed commits, the two rate limiters are applied in this order:\n\n1) host wide ratelimit (icmp_global_allow())\n\n2) Per destination ratelimit (inetpeer based)\n\nIn order to avoid side-channels attacks, we need to apply\nthe per destination check first.\n\nThis patch makes the following change :\n\n1) icmp_global_allow() checks if the host wide limit is reached.\n But credits are not yet consumed. This is deferred to 3)\n\n2) The per destination limit is checked/updated.\n This might add a new node in inetpeer tree.\n\n3) icmp_global_consume() consumes tokens if prior operations succeeded.\n\nThis means that host wide ratelimit is still effective\nin keeping inetpeer tree small even under DDOS.\n\nAs a bonus, I removed icmp_global.lock as the fast path\ncan use a lock-free operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47678",
"url": "https://www.suse.com/security/cve/CVE-2024-47678"
},
{
"category": "external",
"summary": "SUSE Bug 1231854 for CVE-2024-47678",
"url": "https://bugzilla.suse.com/1231854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47678"
},
{
"cve": "CVE-2024-47679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfs: fix race between evice_inodes() and find_inode()\u0026iput()\n\nHi, all\n\nRecently I noticed a bug[1] in btrfs, after digged it into\nand I believe it\u0027a race in vfs.\n\nLet\u0027s assume there\u0027s a inode (ie ino 261) with i_count 1 is\ncalled by iput(), and there\u0027s a concurrent thread calling\ngeneric_shutdown_super().\n\ncpu0: cpu1:\niput() // i_count is 1\n -\u003espin_lock(inode)\n -\u003edec i_count to 0\n -\u003eiput_final() generic_shutdown_super()\n -\u003e__inode_add_lru() -\u003eevict_inodes()\n // cause some reason[2] -\u003eif (atomic_read(inode-\u003ei_count)) continue;\n // return before // inode 261 passed the above check\n // list_lru_add_obj() // and then schedule out\n -\u003espin_unlock()\n// note here: the inode 261\n// was still at sb list and hash list,\n// and I_FREEING|I_WILL_FREE was not been set\n\nbtrfs_iget()\n // after some function calls\n -\u003efind_inode()\n // found the above inode 261\n -\u003espin_lock(inode)\n // check I_FREEING|I_WILL_FREE\n // and passed\n -\u003e__iget()\n -\u003espin_unlock(inode) // schedule back\n -\u003espin_lock(inode)\n // check (I_NEW|I_FREEING|I_WILL_FREE) flags,\n // passed and set I_FREEING\niput() -\u003espin_unlock(inode)\n -\u003espin_lock(inode)\t\t\t -\u003eevict()\n // dec i_count to 0\n -\u003eiput_final()\n -\u003espin_unlock()\n -\u003eevict()\n\nNow, we have two threads simultaneously evicting\nthe same inode, which may trigger the BUG(inode-\u003ei_state \u0026 I_CLEAR)\nstatement both within clear_inode() and iput().\n\nTo fix the bug, recheck the inode-\u003ei_count after holding i_lock.\nBecause in the most scenarios, the first check is valid, and\nthe overhead of spin_lock() can be reduced.\n\nIf there is any misunderstanding, please let me know, thanks.\n\n[1]: https://lore.kernel.org/linux-btrfs/000000000000eabe1d0619c48986@google.com/\n[2]: The reason might be 1. SB_ACTIVE was removed or 2. mapping_shrinkable()\nreturn false when I reproduced the bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47679",
"url": "https://www.suse.com/security/cve/CVE-2024-47679"
},
{
"category": "external",
"summary": "SUSE Bug 1231930 for CVE-2024-47679",
"url": "https://bugzilla.suse.com/1231930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47679"
},
{
"cve": "CVE-2024-47680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47680"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: check discard support for conventional zones\n\nAs the helper function f2fs_bdev_support_discard() shows, f2fs checks if\nthe target block devices support discard by calling\nbdev_max_discard_sectors() and bdev_is_zoned(). This check works well\nfor most cases, but it does not work for conventional zones on zoned\nblock devices. F2fs assumes that zoned block devices support discard,\nand calls __submit_discard_cmd(). When __submit_discard_cmd() is called\nfor sequential write required zones, it works fine since\n__submit_discard_cmd() issues zone reset commands instead of discard\ncommands. However, when __submit_discard_cmd() is called for\nconventional zones, __blkdev_issue_discard() is called even when the\ndevices do not support discard.\n\nThe inappropriate __blkdev_issue_discard() call was not a problem before\nthe commit 30f1e7241422 (\"block: move discard checks into the ioctl\nhandler\") because __blkdev_issue_discard() checked if the target devices\nsupport discard or not. If not, it returned EOPNOTSUPP. After the\ncommit, __blkdev_issue_discard() no longer checks it. It always returns\nzero and sets NULL to the given bio pointer. This NULL pointer triggers\nf2fs_bug_on() in __submit_discard_cmd(). The BUG is recreated with the\ncommands below at the umount step, where /dev/nullb0 is a zoned null_blk\nwith 5GB total size, 128MB zone size and 10 conventional zones.\n\n$ mkfs.f2fs -f -m /dev/nullb0\n$ mount /dev/nullb0 /mnt\n$ for ((i=0;i\u003c5;i++)); do dd if=/dev/zero of=/mnt/test bs=65536 count=1600 conv=fsync; done\n$ umount /mnt\n\nTo fix the BUG, avoid the inappropriate __blkdev_issue_discard() call.\nWhen discard is requested for conventional zones, check if the device\nsupports discard or not. If not, return EOPNOTSUPP.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47680",
"url": "https://www.suse.com/security/cve/CVE-2024-47680"
},
{
"category": "external",
"summary": "SUSE Bug 1231970 for CVE-2024-47680",
"url": "https://bugzilla.suse.com/1231970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47680"
},
{
"cve": "CVE-2024-47681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he\n\nFix the NULL pointer dereference in mt7996_mcu_sta_bfer_he\nroutine adding an sta interface to the mt7996 driver.\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47681",
"url": "https://www.suse.com/security/cve/CVE-2024-47681"
},
{
"category": "external",
"summary": "SUSE Bug 1231855 for CVE-2024-47681",
"url": "https://bugzilla.suse.com/1231855"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47681"
},
{
"cve": "CVE-2024-47682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47682"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sd: Fix off-by-one error in sd_read_block_characteristics()\n\nFf the device returns page 0xb1 with length 8 (happens with qemu v2.x, for\nexample), sd_read_block_characteristics() may attempt an out-of-bounds\nmemory access when accessing the zoned field at offset 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47682",
"url": "https://www.suse.com/security/cve/CVE-2024-47682"
},
{
"category": "external",
"summary": "SUSE Bug 1231856 for CVE-2024-47682",
"url": "https://bugzilla.suse.com/1231856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47682"
},
{
"cve": "CVE-2024-47683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47683"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip Recompute DSC Params if no Stream on Link\n\n[why]\nEncounter NULL pointer dereference uner mst + dsc setup.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\n PGD 0 P4D 0\n Oops: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 4 PID: 917 Comm: sway Not tainted 6.3.9-arch1-1 #1 124dc55df4f5272ccb409f39ef4872fc2b3376a2\n Hardware name: LENOVO 20NKS01Y00/20NKS01Y00, BIOS R12ET61W(1.31 ) 07/28/2022\n RIP: 0010:drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper]\n Code: 01 00 00 48 8b 85 60 05 00 00 48 63 80 88 00 00 00 3b 43 28 0f 8d 2e 01 00 00 48 8b 53 30 48 8d 04 80 48 8d 04 c2 48 8b 40 18 \u003c48\u003e 8\u003e\n RSP: 0018:ffff960cc2df77d8 EFLAGS: 00010293\n RAX: 0000000000000000 RBX: ffff8afb87e81280 RCX: 0000000000000224\n RDX: ffff8afb9ee37c00 RSI: ffff8afb8da1a578 RDI: ffff8afb87e81280\n RBP: ffff8afb83d67000 R08: 0000000000000001 R09: ffff8afb9652f850\n R10: ffff960cc2df7908 R11: 0000000000000002 R12: 0000000000000000\n R13: ffff8afb8d7688a0 R14: ffff8afb8da1a578 R15: 0000000000000224\n FS: 00007f4dac35ce00(0000) GS:ffff8afe30b00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000008 CR3: 000000010ddc6000 CR4: 00000000003506e0\n Call Trace:\n\u003cTASK\u003e\n ? __die+0x23/0x70\n ? page_fault_oops+0x171/0x4e0\n ? plist_add+0xbe/0x100\n ? exc_page_fault+0x7c/0x180\n ? asm_exc_page_fault+0x26/0x30\n ? drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026]\n ? drm_dp_atomic_find_time_slots+0x28/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026]\n compute_mst_dsc_configs_for_link+0x2ff/0xa40 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n ? fill_plane_buffer_attributes+0x419/0x510 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n compute_mst_dsc_configs_for_state+0x1e1/0x250 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n amdgpu_dm_atomic_check+0xecd/0x1190 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n drm_atomic_check_only+0x5c5/0xa40\n drm_mode_atomic_ioctl+0x76e/0xbc0\n\n[how]\ndsc recompute should be skipped if no mode change detected on the new\nrequest. If detected, keep checking whether the stream is already on\ncurrent state or not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47683",
"url": "https://www.suse.com/security/cve/CVE-2024-47683"
},
{
"category": "external",
"summary": "SUSE Bug 1231975 for CVE-2024-47683",
"url": "https://bugzilla.suse.com/1231975"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47683"
},
{
"cve": "CVE-2024-47684",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47684"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: check skb is non-NULL in tcp_rto_delta_us()\n\nWe have some machines running stock Ubuntu 20.04.6 which is their 5.4.0-174-generic\nkernel that are running ceph and recently hit a null ptr dereference in\ntcp_rearm_rto(). Initially hitting it from the TLP path, but then later we also\nsaw it getting hit from the RACK case as well. Here are examples of the oops\nmessages we saw in each of those cases:\n\nJul 26 15:05:02 rx [11061395.780353] BUG: kernel NULL pointer dereference, address: 0000000000000020\nJul 26 15:05:02 rx [11061395.787572] #PF: supervisor read access in kernel mode\nJul 26 15:05:02 rx [11061395.792971] #PF: error_code(0x0000) - not-present page\nJul 26 15:05:02 rx [11061395.798362] PGD 0 P4D 0\nJul 26 15:05:02 rx [11061395.801164] Oops: 0000 [#1] SMP NOPTI\nJul 26 15:05:02 rx [11061395.805091] CPU: 0 PID: 9180 Comm: msgr-worker-1 Tainted: G W 5.4.0-174-generic #193-Ubuntu\nJul 26 15:05:02 rx [11061395.814996] Hardware name: Supermicro SMC 2x26 os-gen8 64C NVME-Y 256G/H12SSW-NTR, BIOS 2.5.V1.2U.NVMe.UEFI 05/09/2023\nJul 26 15:05:02 rx [11061395.825952] RIP: 0010:tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.830656] Code: 87 ca 04 00 00 00 5b 41 5c 41 5d 5d c3 c3 49 8b bc 24 40 06 00 00 eb 8d 48 bb cf f7 53 e3 a5 9b c4 20 4c 89 ef e8 0c fe 0e 00 \u003c48\u003e 8b 78 20 48 c1 ef 03 48 89 f8 41 8b bc 24 80 04 00 00 48 f7 e3\nJul 26 15:05:02 rx [11061395.849665] RSP: 0018:ffffb75d40003e08 EFLAGS: 00010246\nJul 26 15:05:02 rx [11061395.855149] RAX: 0000000000000000 RBX: 20c49ba5e353f7cf RCX: 0000000000000000\nJul 26 15:05:02 rx [11061395.862542] RDX: 0000000062177c30 RSI: 000000000000231c RDI: ffff9874ad283a60\nJul 26 15:05:02 rx [11061395.869933] RBP: ffffb75d40003e20 R08: 0000000000000000 R09: ffff987605e20aa8\nJul 26 15:05:02 rx [11061395.877318] R10: ffffb75d40003f00 R11: ffffb75d4460f740 R12: ffff9874ad283900\nJul 26 15:05:02 rx [11061395.884710] R13: ffff9874ad283a60 R14: ffff9874ad283980 R15: ffff9874ad283d30\nJul 26 15:05:02 rx [11061395.892095] FS: 00007f1ef4a2e700(0000) GS:ffff987605e00000(0000) knlGS:0000000000000000\nJul 26 15:05:02 rx [11061395.900438] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nJul 26 15:05:02 rx [11061395.906435] CR2: 0000000000000020 CR3: 0000003e450ba003 CR4: 0000000000760ef0\nJul 26 15:05:02 rx [11061395.913822] PKRU: 55555554\nJul 26 15:05:02 rx [11061395.916786] Call Trace:\nJul 26 15:05:02 rx [11061395.919488]\nJul 26 15:05:02 rx [11061395.921765] ? show_regs.cold+0x1a/0x1f\nJul 26 15:05:02 rx [11061395.925859] ? __die+0x90/0xd9\nJul 26 15:05:02 rx [11061395.929169] ? no_context+0x196/0x380\nJul 26 15:05:02 rx [11061395.933088] ? ip6_protocol_deliver_rcu+0x4e0/0x4e0\nJul 26 15:05:02 rx [11061395.938216] ? ip6_sublist_rcv_finish+0x3d/0x50\nJul 26 15:05:02 rx [11061395.943000] ? __bad_area_nosemaphore+0x50/0x1a0\nJul 26 15:05:02 rx [11061395.947873] ? bad_area_nosemaphore+0x16/0x20\nJul 26 15:05:02 rx [11061395.952486] ? do_user_addr_fault+0x267/0x450\nJul 26 15:05:02 rx [11061395.957104] ? ipv6_list_rcv+0x112/0x140\nJul 26 15:05:02 rx [11061395.961279] ? __do_page_fault+0x58/0x90\nJul 26 15:05:02 rx [11061395.965458] ? do_page_fault+0x2c/0xe0\nJul 26 15:05:02 rx [11061395.969465] ? page_fault+0x34/0x40\nJul 26 15:05:02 rx [11061395.973217] ? tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.977313] ? tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.981408] tcp_send_loss_probe+0x10b/0x220\nJul 26 15:05:02 rx [11061395.985937] tcp_write_timer_handler+0x1b4/0x240\nJul 26 15:05:02 rx [11061395.990809] tcp_write_timer+0x9e/0xe0\nJul 26 15:05:02 rx [11061395.994814] ? tcp_write_timer_handler+0x240/0x240\nJul 26 15:05:02 rx [11061395.999866] call_timer_fn+0x32/0x130\nJul 26 15:05:02 rx [11061396.003782] __run_timers.part.0+0x180/0x280\nJul 26 15:05:02 rx [11061396.008309] ? recalibrate_cpu_khz+0x10/0x10\nJul 26 15:05:02 rx [11061396.012841] ? native_x2apic_icr_write+0x30/0x30\nJul 26 15:05:02 rx [11061396.017718] ? lapic_next_even\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47684",
"url": "https://www.suse.com/security/cve/CVE-2024-47684"
},
{
"category": "external",
"summary": "SUSE Bug 1231987 for CVE-2024-47684",
"url": "https://bugzilla.suse.com/1231987"
},
{
"category": "external",
"summary": "SUSE Bug 1231993 for CVE-2024-47684",
"url": "https://bugzilla.suse.com/1231993"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47684"
},
{
"cve": "CVE-2024-47685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put()\n\nsyzbot reported that nf_reject_ip6_tcphdr_put() was possibly sending\ngarbage on the four reserved tcp bits (th-\u003eres1)\n\nUse skb_put_zero() to clear the whole TCP header,\nas done in nf_reject_ip_tcphdr_put()\n\nBUG: KMSAN: uninit-value in nf_reject_ip6_tcphdr_put+0x688/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:255\n nf_reject_ip6_tcphdr_put+0x688/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:255\n nf_send_reset6+0xd84/0x15b0 net/ipv6/netfilter/nf_reject_ipv6.c:344\n nft_reject_inet_eval+0x3c1/0x880 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x438/0x22a0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x41a/0x4f0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xf4/0x400 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x29b/0x390 net/ipv6/ip6_input.c:310\n __netif_receive_skb_one_core net/core/dev.c:5661 [inline]\n __netif_receive_skb+0x1da/0xa00 net/core/dev.c:5775\n process_backlog+0x4ad/0xa50 net/core/dev.c:6108\n __napi_poll+0xe7/0x980 net/core/dev.c:6772\n napi_poll net/core/dev.c:6841 [inline]\n net_rx_action+0xa5a/0x19b0 net/core/dev.c:6963\n handle_softirqs+0x1ce/0x800 kernel/softirq.c:554\n __do_softirq+0x14/0x1a kernel/softirq.c:588\n do_softirq+0x9a/0x100 kernel/softirq.c:455\n __local_bh_enable_ip+0x9f/0xb0 kernel/softirq.c:382\n local_bh_enable include/linux/bottom_half.h:33 [inline]\n rcu_read_unlock_bh include/linux/rcupdate.h:908 [inline]\n __dev_queue_xmit+0x2692/0x5610 net/core/dev.c:4450\n dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n neigh_resolve_output+0x9ca/0xae0 net/core/neighbour.c:1565\n neigh_output include/net/neighbour.h:542 [inline]\n ip6_finish_output2+0x2347/0x2ba0 net/ipv6/ip6_output.c:141\n __ip6_finish_output net/ipv6/ip6_output.c:215 [inline]\n ip6_finish_output+0xbb8/0x14b0 net/ipv6/ip6_output.c:226\n NF_HOOK_COND include/linux/netfilter.h:303 [inline]\n ip6_output+0x356/0x620 net/ipv6/ip6_output.c:247\n dst_output include/net/dst.h:450 [inline]\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip6_xmit+0x1ba6/0x25d0 net/ipv6/ip6_output.c:366\n inet6_csk_xmit+0x442/0x530 net/ipv6/inet6_connection_sock.c:135\n __tcp_transmit_skb+0x3b07/0x4880 net/ipv4/tcp_output.c:1466\n tcp_transmit_skb net/ipv4/tcp_output.c:1484 [inline]\n tcp_connect+0x35b6/0x7130 net/ipv4/tcp_output.c:4143\n tcp_v6_connect+0x1bcc/0x1e40 net/ipv6/tcp_ipv6.c:333\n __inet_stream_connect+0x2ef/0x1730 net/ipv4/af_inet.c:679\n inet_stream_connect+0x6a/0xd0 net/ipv4/af_inet.c:750\n __sys_connect_file net/socket.c:2061 [inline]\n __sys_connect+0x606/0x690 net/socket.c:2078\n __do_sys_connect net/socket.c:2088 [inline]\n __se_sys_connect net/socket.c:2085 [inline]\n __x64_sys_connect+0x91/0xe0 net/socket.c:2085\n x64_sys_call+0x27a5/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:43\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was stored to memory at:\n nf_reject_ip6_tcphdr_put+0x60c/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:249\n nf_send_reset6+0xd84/0x15b0 net/ipv6/netfilter/nf_reject_ipv6.c:344\n nft_reject_inet_eval+0x3c1/0x880 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x438/0x22a0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x41a/0x4f0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xf4/0x400 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x29b/0x390 net/ipv6/ip6_input.c:310\n __netif_receive_skb_one_core\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47685",
"url": "https://www.suse.com/security/cve/CVE-2024-47685"
},
{
"category": "external",
"summary": "SUSE Bug 1231998 for CVE-2024-47685",
"url": "https://bugzilla.suse.com/1231998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47685"
},
{
"cve": "CVE-2024-47686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nep93xx: clock: Fix off by one in ep93xx_div_recalc_rate()\n\nThe psc-\u003ediv[] array has psc-\u003enum_div elements. These values come from\nwhen we call clk_hw_register_div(). It\u0027s adc_divisors and\nARRAY_SIZE(adc_divisors)) and so on. So this condition needs to be \u003e=\ninstead of \u003e to prevent an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47686",
"url": "https://www.suse.com/security/cve/CVE-2024-47686"
},
{
"category": "external",
"summary": "SUSE Bug 1232000 for CVE-2024-47686",
"url": "https://bugzilla.suse.com/1232000"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47686"
},
{
"cve": "CVE-2024-47687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa/mlx5: Fix invalid mr resource destroy\n\nCertain error paths from mlx5_vdpa_dev_add() can end up releasing mr\nresources which never got initialized in the first place.\n\nThis patch adds the missing check in mlx5_vdpa_destroy_mr_resources()\nto block releasing non-initialized mr resources.\n\nReference trace:\n\n mlx5_core 0000:08:00.2: mlx5_vdpa_dev_add:3274:(pid 2700) warning: No mac address provisioned?\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 140216067 P4D 0\n Oops: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 8 PID: 2700 Comm: vdpa Kdump: loaded Not tainted 5.14.0-496.el9.x86_64 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:vhost_iotlb_del_range+0xf/0xe0 [vhost_iotlb]\n Code: [...]\n RSP: 0018:ff1c823ac23077f0 EFLAGS: 00010246\n RAX: ffffffffc1a21a60 RBX: ffffffff899567a0 RCX: 0000000000000000\n RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000000000000\n RBP: ff1bda1f7c21e800 R08: 0000000000000000 R09: ff1c823ac2307670\n R10: ff1c823ac2307668 R11: ffffffff8a9e7b68 R12: 0000000000000000\n R13: 0000000000000000 R14: ff1bda1f43e341a0 R15: 00000000ffffffea\n FS: 00007f56eba7c740(0000) GS:ff1bda269f800000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 0000000104d90001 CR4: 0000000000771ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n\n ? show_trace_log_lvl+0x1c4/0x2df\n ? show_trace_log_lvl+0x1c4/0x2df\n ? mlx5_vdpa_free+0x3d/0x150 [mlx5_vdpa]\n ? __die_body.cold+0x8/0xd\n ? page_fault_oops+0x134/0x170\n ? __irq_work_queue_local+0x2b/0xc0\n ? irq_work_queue+0x2c/0x50\n ? exc_page_fault+0x62/0x150\n ? asm_exc_page_fault+0x22/0x30\n ? __pfx_mlx5_vdpa_free+0x10/0x10 [mlx5_vdpa]\n ? vhost_iotlb_del_range+0xf/0xe0 [vhost_iotlb]\n mlx5_vdpa_free+0x3d/0x150 [mlx5_vdpa]\n vdpa_release_dev+0x1e/0x50 [vdpa]\n device_release+0x31/0x90\n kobject_cleanup+0x37/0x130\n mlx5_vdpa_dev_add+0x2d2/0x7a0 [mlx5_vdpa]\n vdpa_nl_cmd_dev_add_set_doit+0x277/0x4c0 [vdpa]\n genl_family_rcv_msg_doit+0xd9/0x130\n genl_family_rcv_msg+0x14d/0x220\n ? __pfx_vdpa_nl_cmd_dev_add_set_doit+0x10/0x10 [vdpa]\n ? _copy_to_user+0x1a/0x30\n ? move_addr_to_user+0x4b/0xe0\n genl_rcv_msg+0x47/0xa0\n ? __import_iovec+0x46/0x150\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x54/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x245/0x370\n netlink_sendmsg+0x206/0x440\n __sys_sendto+0x1dc/0x1f0\n ? do_read_fault+0x10c/0x1d0\n ? do_pte_missing+0x10d/0x190\n __x64_sys_sendto+0x20/0x30\n do_syscall_64+0x5c/0xf0\n ? __count_memcg_events+0x4f/0xb0\n ? mm_account_fault+0x6c/0x100\n ? handle_mm_fault+0x116/0x270\n ? do_user_addr_fault+0x1d6/0x6a0\n ? do_syscall_64+0x6b/0xf0\n ? clear_bhb_loop+0x25/0x80\n ? clear_bhb_loop+0x25/0x80\n ? clear_bhb_loop+0x25/0x80\n ? clear_bhb_loop+0x25/0x80\n ? clear_bhb_loop+0x25/0x80\n entry_SYSCALL_64_after_hwframe+0x78/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47687",
"url": "https://www.suse.com/security/cve/CVE-2024-47687"
},
{
"category": "external",
"summary": "SUSE Bug 1232003 for CVE-2024-47687",
"url": "https://bugzilla.suse.com/1232003"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47687"
},
{
"cve": "CVE-2024-47688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47688"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver core: Fix a potential null-ptr-deref in module_add_driver()\n\nInject fault while probing of-fpga-region, if kasprintf() fails in\nmodule_add_driver(), the second sysfs_remove_link() in exit path will cause\nnull-ptr-deref as below because kernfs_name_hash() will call strlen() with\nNULL driver_name.\n\nFix it by releasing resources based on the exit path sequence.\n\n\t KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n\t Mem abort info:\n\t ESR = 0x0000000096000005\n\t EC = 0x25: DABT (current EL), IL = 32 bits\n\t SET = 0, FnV = 0\n\t EA = 0, S1PTW = 0\n\t FSC = 0x05: level 1 translation fault\n\t Data abort info:\n\t ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n\t CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n\t GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n\t [dfffffc000000000] address between user and kernel address ranges\n\t Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n\t Dumping ftrace buffer:\n\t (ftrace buffer empty)\n\t Modules linked in: of_fpga_region(+) fpga_region fpga_bridge cfg80211 rfkill 8021q garp mrp stp llc ipv6 [last unloaded: of_fpga_region]\n\t CPU: 2 UID: 0 PID: 2036 Comm: modprobe Not tainted 6.11.0-rc2-g6a0e38264012 #295\n\t Hardware name: linux,dummy-virt (DT)\n\t pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n\t pc : strlen+0x24/0xb0\n\t lr : kernfs_name_hash+0x1c/0xc4\n\t sp : ffffffc081f97380\n\t x29: ffffffc081f97380 x28: ffffffc081f97b90 x27: ffffff80c821c2a0\n\t x26: ffffffedac0be418 x25: 0000000000000000 x24: ffffff80c09d2000\n\t x23: 0000000000000000 x22: 0000000000000000 x21: 0000000000000000\n\t x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000001840\n\t x17: 0000000000000000 x16: 0000000000000000 x15: 1ffffff8103f2e42\n\t x14: 00000000f1f1f1f1 x13: 0000000000000004 x12: ffffffb01812d61d\n\t x11: 1ffffff01812d61c x10: ffffffb01812d61c x9 : dfffffc000000000\n\t x8 : 0000004fe7ed29e4 x7 : ffffff80c096b0e7 x6 : 0000000000000001\n\t x5 : ffffff80c096b0e0 x4 : 1ffffffdb990efa2 x3 : 0000000000000000\n\t x2 : 0000000000000000 x1 : dfffffc000000000 x0 : 0000000000000000\n\t Call trace:\n\t strlen+0x24/0xb0\n\t kernfs_name_hash+0x1c/0xc4\n\t kernfs_find_ns+0x118/0x2e8\n\t kernfs_remove_by_name_ns+0x80/0x100\n\t sysfs_remove_link+0x74/0xa8\n\t module_add_driver+0x278/0x394\n\t bus_add_driver+0x1f0/0x43c\n\t driver_register+0xf4/0x3c0\n\t __platform_driver_register+0x60/0x88\n\t of_fpga_region_init+0x20/0x1000 [of_fpga_region]\n\t do_one_initcall+0x110/0x788\n\t do_init_module+0x1dc/0x5c8\n\t load_module+0x3c38/0x4cac\n\t init_module_from_file+0xd4/0x128\n\t idempotent_init_module+0x2cc/0x528\n\t __arm64_sys_finit_module+0xac/0x100\n\t invoke_syscall+0x6c/0x258\n\t el0_svc_common.constprop.0+0x160/0x22c\n\t do_el0_svc+0x44/0x5c\n\t el0_svc+0x48/0xb8\n\t el0t_64_sync_handler+0x13c/0x158\n\t el0t_64_sync+0x190/0x194\n\t Code: f2fbffe1 a90157f4 12000802 aa0003f5 (38e16861)\n\t ---[ end trace 0000000000000000 ]---\n\t Kernel panic - not syncing: Oops: Fatal exception",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47688",
"url": "https://www.suse.com/security/cve/CVE-2024-47688"
},
{
"category": "external",
"summary": "SUSE Bug 1232009 for CVE-2024-47688",
"url": "https://bugzilla.suse.com/1232009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47688"
},
{
"cve": "CVE-2024-47689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to don\u0027t set SB_RDONLY in f2fs_handle_critical_error()\n\nsyzbot reports a f2fs bug as below:\n\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 58 at kernel/rcu/sync.c:177 rcu_sync_dtor+0xcd/0x180 kernel/rcu/sync.c:177\nCPU: 1 UID: 0 PID: 58 Comm: kworker/1:2 Not tainted 6.10.0-syzkaller-12562-g1722389b0d86 #0\nWorkqueue: events destroy_super_work\nRIP: 0010:rcu_sync_dtor+0xcd/0x180 kernel/rcu/sync.c:177\nCall Trace:\n percpu_free_rwsem+0x41/0x80 kernel/locking/percpu-rwsem.c:42\n destroy_super_work+0xec/0x130 fs/super.c:282\n process_one_work kernel/workqueue.c:3231 [inline]\n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n worker_thread+0x86d/0xd40 kernel/workqueue.c:3390\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nAs Christian Brauner pointed out [1]: the root cause is f2fs sets\nSB_RDONLY flag in internal function, rather than setting the flag\ncovered w/ sb-\u003es_umount semaphore via remount procedure, then below\nrace condition causes this bug:\n\n- freeze_super()\n - sb_wait_write(sb, SB_FREEZE_WRITE)\n - sb_wait_write(sb, SB_FREEZE_PAGEFAULT)\n - sb_wait_write(sb, SB_FREEZE_FS)\n\t\t\t\t\t- f2fs_handle_critical_error\n\t\t\t\t\t - sb-\u003es_flags |= SB_RDONLY\n- thaw_super\n - thaw_super_locked\n - sb_rdonly() is true, so it skips\n sb_freeze_unlock(sb, SB_FREEZE_FS)\n - deactivate_locked_super\n\nSince f2fs has almost the same logic as ext4 [2] when handling critical\nerror in filesystem if it mounts w/ errors=remount-ro option:\n- set CP_ERROR_FLAG flag which indicates filesystem is stopped\n- record errors to superblock\n- set SB_RDONLY falg\nOnce we set CP_ERROR_FLAG flag, all writable interfaces can detect the\nflag and stop any further updates on filesystem. So, it is safe to not\nset SB_RDONLY flag, let\u0027s remove the logic and keep in line w/ ext4 [3].\n\n[1] https://lore.kernel.org/all/20240729-himbeeren-funknetz-96e62f9c7aee@brauner\n[2] https://lore.kernel.org/all/20240729132721.hxih6ehigadqf7wx@quack3\n[3] https://lore.kernel.org/linux-ext4/20240805201241.27286-1-jack@suse.cz",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47689",
"url": "https://www.suse.com/security/cve/CVE-2024-47689"
},
{
"category": "external",
"summary": "SUSE Bug 1232010 for CVE-2024-47689",
"url": "https://bugzilla.suse.com/1232010"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47689"
},
{
"cve": "CVE-2024-47690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47690"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: get rid of online repaire on corrupted directory\n\nsyzbot reports a f2fs bug as below:\n\nkernel BUG at fs/f2fs/inode.c:896!\nRIP: 0010:f2fs_evict_inode+0x1598/0x15c0 fs/f2fs/inode.c:896\nCall Trace:\n evict+0x532/0x950 fs/inode.c:704\n dispose_list fs/inode.c:747 [inline]\n evict_inodes+0x5f9/0x690 fs/inode.c:797\n generic_shutdown_super+0x9d/0x2d0 fs/super.c:627\n kill_block_super+0x44/0x90 fs/super.c:1696\n kill_f2fs_super+0x344/0x690 fs/f2fs/super.c:4898\n deactivate_locked_super+0xc4/0x130 fs/super.c:473\n cleanup_mnt+0x41f/0x4b0 fs/namespace.c:1373\n task_work_run+0x24f/0x310 kernel/task_work.c:228\n ptrace_notify+0x2d2/0x380 kernel/signal.c:2402\n ptrace_report_syscall include/linux/ptrace.h:415 [inline]\n ptrace_report_syscall_exit include/linux/ptrace.h:477 [inline]\n syscall_exit_work+0xc6/0x190 kernel/entry/common.c:173\n syscall_exit_to_user_mode_prepare kernel/entry/common.c:200 [inline]\n __syscall_exit_to_user_mode_work kernel/entry/common.c:205 [inline]\n syscall_exit_to_user_mode+0x279/0x370 kernel/entry/common.c:218\n do_syscall_64+0x100/0x230 arch/x86/entry/common.c:89\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0010:f2fs_evict_inode+0x1598/0x15c0 fs/f2fs/inode.c:896\n\nOnline repaire on corrupted directory in f2fs_lookup() can generate\ndirty data/meta while racing w/ readonly remount, it may leave dirty\ninode after filesystem becomes readonly, however, checkpoint() will\nskips flushing dirty inode in a state of readonly mode, result in\nabove panic.\n\nLet\u0027s get rid of online repaire in f2fs_lookup(), and leave the work\nto fsck.f2fs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47690",
"url": "https://www.suse.com/security/cve/CVE-2024-47690"
},
{
"category": "external",
"summary": "SUSE Bug 1232011 for CVE-2024-47690",
"url": "https://bugzilla.suse.com/1232011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47690"
},
{
"cve": "CVE-2024-47691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to avoid use-after-free in f2fs_stop_gc_thread()\n\nsyzbot reports a f2fs bug as below:\n\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_report+0xe8/0x550 mm/kasan/report.c:491\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n kasan_check_range+0x282/0x290 mm/kasan/generic.c:189\n instrument_atomic_read_write include/linux/instrumented.h:96 [inline]\n atomic_fetch_add_relaxed include/linux/atomic/atomic-instrumented.h:252 [inline]\n __refcount_add include/linux/refcount.h:184 [inline]\n __refcount_inc include/linux/refcount.h:241 [inline]\n refcount_inc include/linux/refcount.h:258 [inline]\n get_task_struct include/linux/sched/task.h:118 [inline]\n kthread_stop+0xca/0x630 kernel/kthread.c:704\n f2fs_stop_gc_thread+0x65/0xb0 fs/f2fs/gc.c:210\n f2fs_do_shutdown+0x192/0x540 fs/f2fs/file.c:2283\n f2fs_ioc_shutdown fs/f2fs/file.c:2325 [inline]\n __f2fs_ioctl+0x443a/0xbe60 fs/f2fs/file.c:4325\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe root cause is below race condition, it may cause use-after-free\nissue in sbi-\u003egc_th pointer.\n\n- remount\n - f2fs_remount\n - f2fs_stop_gc_thread\n - kfree(gc_th)\n\t\t\t\t- f2fs_ioc_shutdown\n\t\t\t\t - f2fs_do_shutdown\n\t\t\t\t - f2fs_stop_gc_thread\n\t\t\t\t - kthread_stop(gc_th-\u003ef2fs_gc_task)\n : sbi-\u003egc_thread = NULL;\n\nWe will call f2fs_do_shutdown() in two paths:\n- for f2fs_ioc_shutdown() path, we should grab sb-\u003es_umount semaphore\nfor fixing.\n- for f2fs_shutdown() path, it\u0027s safe since caller has already grabbed\nsb-\u003es_umount semaphore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47691",
"url": "https://www.suse.com/security/cve/CVE-2024-47691"
},
{
"category": "external",
"summary": "SUSE Bug 1232012 for CVE-2024-47691",
"url": "https://bugzilla.suse.com/1232012"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47691"
},
{
"cve": "CVE-2024-47692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47692"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: return -EINVAL when namelen is 0\n\nWhen we have a corrupted main.sqlite in /var/lib/nfs/nfsdcld/, it may\nresult in namelen being 0, which will cause memdup_user() to return\nZERO_SIZE_PTR.\nWhen we access the name.data that has been assigned the value of\nZERO_SIZE_PTR in nfs4_client_to_reclaim(), null pointer dereference is\ntriggered.\n\n[ T1205] ==================================================================\n[ T1205] BUG: KASAN: null-ptr-deref in nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] Read of size 1 at addr 0000000000000010 by task nfsdcld/1205\n[ T1205]\n[ T1205] CPU: 11 PID: 1205 Comm: nfsdcld Not tainted 5.10.0-00003-g2c1423731b8d #406\n[ T1205] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS ?-20190727_073836-buildvm-ppc64le-16.ppc.fedoraproject.org-3.fc31 04/01/2014\n[ T1205] Call Trace:\n[ T1205] dump_stack+0x9a/0xd0\n[ T1205] ? nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] __kasan_report.cold+0x34/0x84\n[ T1205] ? nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] kasan_report+0x3a/0x50\n[ T1205] nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] ? nfsd4_release_lockowner+0x410/0x410\n[ T1205] cld_pipe_downcall+0x5ca/0x760\n[ T1205] ? nfsd4_cld_tracking_exit+0x1d0/0x1d0\n[ T1205] ? down_write_killable_nested+0x170/0x170\n[ T1205] ? avc_policy_seqno+0x28/0x40\n[ T1205] ? selinux_file_permission+0x1b4/0x1e0\n[ T1205] rpc_pipe_write+0x84/0xb0\n[ T1205] vfs_write+0x143/0x520\n[ T1205] ksys_write+0xc9/0x170\n[ T1205] ? __ia32_sys_read+0x50/0x50\n[ T1205] ? ktime_get_coarse_real_ts64+0xfe/0x110\n[ T1205] ? ktime_get_coarse_real_ts64+0xa2/0x110\n[ T1205] do_syscall_64+0x33/0x40\n[ T1205] entry_SYSCALL_64_after_hwframe+0x67/0xd1\n[ T1205] RIP: 0033:0x7fdbdb761bc7\n[ T1205] Code: 0f 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 514\n[ T1205] RSP: 002b:00007fff8c4b7248 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\n[ T1205] RAX: ffffffffffffffda RBX: 000000000000042b RCX: 00007fdbdb761bc7\n[ T1205] RDX: 000000000000042b RSI: 00007fff8c4b75f0 RDI: 0000000000000008\n[ T1205] RBP: 00007fdbdb761bb0 R08: 0000000000000000 R09: 0000000000000001\n[ T1205] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000042b\n[ T1205] R13: 0000000000000008 R14: 00007fff8c4b75f0 R15: 0000000000000000\n[ T1205] ==================================================================\n\nFix it by checking namelen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47692",
"url": "https://www.suse.com/security/cve/CVE-2024-47692"
},
{
"category": "external",
"summary": "SUSE Bug 1231857 for CVE-2024-47692",
"url": "https://bugzilla.suse.com/1231857"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47692"
},
{
"cve": "CVE-2024-47693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/core: Fix ib_cache_setup_one error flow cleanup\n\nWhen ib_cache_update return an error, we exit ib_cache_setup_one\ninstantly with no proper cleanup, even though before this we had\nalready successfully done gid_table_setup_one, that results in\nthe kernel WARN below.\n\nDo proper cleanup using gid_table_cleanup_one before returning\nthe err in order to fix the issue.\n\nWARNING: CPU: 4 PID: 922 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x181/0x1a0\nModules linked in:\nCPU: 4 UID: 0 PID: 922 Comm: c_repro Not tainted 6.11.0-rc1+ #3\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:gid_table_release_one+0x181/0x1a0\nCode: 44 8b 38 75 0c e8 2f cb 34 ff 4d 8b b5 28 05 00 00 e8 23 cb 34 ff 44 89 f9 89 da 4c 89 f6 48 c7 c7 d0 58 14 83 e8 4f de 21 ff \u003c0f\u003e 0b 4c 8b 75 30 e9 54 ff ff ff 48 8 3 c4 10 5b 5d 41 5c 41 5d 41\nRSP: 0018:ffffc90002b835b0 EFLAGS: 00010286\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff811c8527\nRDX: 0000000000000000 RSI: ffffffff811c8534 RDI: 0000000000000001\nRBP: ffff8881011b3d00 R08: ffff88810b3abe00 R09: 205d303839303631\nR10: 666572207972746e R11: 72746e6520444947 R12: 0000000000000001\nR13: ffff888106390000 R14: ffff8881011f2110 R15: 0000000000000001\nFS: 00007fecc3b70800(0000) GS:ffff88813bd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020000340 CR3: 000000010435a001 CR4: 00000000003706b0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x94/0xa0\n ? __warn+0x9e/0x1c0\n ? gid_table_release_one+0x181/0x1a0\n ? report_bug+0x1f9/0x340\n ? gid_table_release_one+0x181/0x1a0\n ? handle_bug+0xa2/0x110\n ? exc_invalid_op+0x31/0xa0\n ? asm_exc_invalid_op+0x16/0x20\n ? __warn_printk+0xc7/0x180\n ? __warn_printk+0xd4/0x180\n ? gid_table_release_one+0x181/0x1a0\n ib_device_release+0x71/0xe0\n ? __pfx_ib_device_release+0x10/0x10\n device_release+0x44/0xd0\n kobject_put+0x135/0x3d0\n put_device+0x20/0x30\n rxe_net_add+0x7d/0xa0\n rxe_newlink+0xd7/0x190\n nldev_newlink+0x1b0/0x2a0\n ? __pfx_nldev_newlink+0x10/0x10\n rdma_nl_rcv_msg+0x1ad/0x2e0\n rdma_nl_rcv_skb.constprop.0+0x176/0x210\n netlink_unicast+0x2de/0x400\n netlink_sendmsg+0x306/0x660\n __sock_sendmsg+0x110/0x120\n ____sys_sendmsg+0x30e/0x390\n ___sys_sendmsg+0x9b/0xf0\n ? kstrtouint+0x6e/0xa0\n ? kstrtouint_from_user+0x7c/0xb0\n ? get_pid_task+0xb0/0xd0\n ? proc_fail_nth_write+0x5b/0x140\n ? __fget_light+0x9a/0x200\n ? preempt_count_add+0x47/0xa0\n __sys_sendmsg+0x61/0xd0\n do_syscall_64+0x50/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47693",
"url": "https://www.suse.com/security/cve/CVE-2024-47693"
},
{
"category": "external",
"summary": "SUSE Bug 1232013 for CVE-2024-47693",
"url": "https://bugzilla.suse.com/1232013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47693"
},
{
"cve": "CVE-2024-47694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/mlx5: Fix UMR pd cleanup on error flow of driver init\n\nThe cited commit moves the pd allocation from function\nmlx5r_umr_resource_cleanup() to a new function mlx5r_umr_cleanup().\nSo the fix in commit [1] is broken. In error flow, will hit panic [2].\n\nFix it by checking pd pointer to avoid panic if it is NULL;\n\n[1] RDMA/mlx5: Fix UMR cleanup on error flow of driver init\n[2]\n [ 347.567063] infiniband mlx5_0: Couldn\u0027t register device with driver model\n [ 347.591382] BUG: kernel NULL pointer dereference, address: 0000000000000020\n [ 347.593438] #PF: supervisor read access in kernel mode\n [ 347.595176] #PF: error_code(0x0000) - not-present page\n [ 347.596962] PGD 0 P4D 0\n [ 347.601361] RIP: 0010:ib_dealloc_pd_user+0x12/0xc0 [ib_core]\n [ 347.604171] RSP: 0018:ffff888106293b10 EFLAGS: 00010282\n [ 347.604834] RAX: 0000000000000000 RBX: 000000000000000e RCX: 0000000000000000\n [ 347.605672] RDX: ffff888106293ad0 RSI: 0000000000000000 RDI: 0000000000000000\n [ 347.606529] RBP: 0000000000000000 R08: ffff888106293ae0 R09: ffff888106293ae0\n [ 347.607379] R10: 0000000000000a06 R11: 0000000000000000 R12: 0000000000000000\n [ 347.608224] R13: ffffffffa0704dc0 R14: 0000000000000001 R15: 0000000000000001\n [ 347.609067] FS: 00007fdc720cd9c0(0000) GS:ffff88852c880000(0000) knlGS:0000000000000000\n [ 347.610094] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [ 347.610727] CR2: 0000000000000020 CR3: 0000000103012003 CR4: 0000000000370eb0\n [ 347.611421] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [ 347.612113] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [ 347.612804] Call Trace:\n [ 347.613130] \u003cTASK\u003e\n [ 347.613417] ? __die+0x20/0x60\n [ 347.613793] ? page_fault_oops+0x150/0x3e0\n [ 347.614243] ? free_msg+0x68/0x80 [mlx5_core]\n [ 347.614840] ? cmd_exec+0x48f/0x11d0 [mlx5_core]\n [ 347.615359] ? exc_page_fault+0x74/0x130\n [ 347.615808] ? asm_exc_page_fault+0x22/0x30\n [ 347.616273] ? ib_dealloc_pd_user+0x12/0xc0 [ib_core]\n [ 347.616801] mlx5r_umr_cleanup+0x23/0x90 [mlx5_ib]\n [ 347.617365] mlx5_ib_stage_pre_ib_reg_umr_cleanup+0x36/0x40 [mlx5_ib]\n [ 347.618025] __mlx5_ib_add+0x96/0xd0 [mlx5_ib]\n [ 347.618539] mlx5r_probe+0xe9/0x310 [mlx5_ib]\n [ 347.619032] ? kernfs_add_one+0x107/0x150\n [ 347.619478] ? __mlx5_ib_add+0xd0/0xd0 [mlx5_ib]\n [ 347.619984] auxiliary_bus_probe+0x3e/0x90\n [ 347.620448] really_probe+0xc5/0x3a0\n [ 347.620857] __driver_probe_device+0x80/0x160\n [ 347.621325] driver_probe_device+0x1e/0x90\n [ 347.621770] __driver_attach+0xec/0x1c0\n [ 347.622213] ? __device_attach_driver+0x100/0x100\n [ 347.622724] bus_for_each_dev+0x71/0xc0\n [ 347.623151] bus_add_driver+0xed/0x240\n [ 347.623570] driver_register+0x58/0x100\n [ 347.623998] __auxiliary_driver_register+0x6a/0xc0\n [ 347.624499] ? driver_register+0xae/0x100\n [ 347.624940] ? 0xffffffffa0893000\n [ 347.625329] mlx5_ib_init+0x16a/0x1e0 [mlx5_ib]\n [ 347.625845] do_one_initcall+0x4a/0x2a0\n [ 347.626273] ? gcov_event+0x2e2/0x3a0\n [ 347.626706] do_init_module+0x8a/0x260\n [ 347.627126] init_module_from_file+0x8b/0xd0\n [ 347.627596] __x64_sys_finit_module+0x1ca/0x2f0\n [ 347.628089] do_syscall_64+0x4c/0x100",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47694",
"url": "https://www.suse.com/security/cve/CVE-2024-47694"
},
{
"category": "external",
"summary": "SUSE Bug 1232014 for CVE-2024-47694",
"url": "https://bugzilla.suse.com/1232014"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47694"
},
{
"cve": "CVE-2024-47695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds\n\nIn the function init_conns(), after the create_con() and create_cm() for\nloop if something fails. In the cleanup for loop after the destroy tag, we\naccess out of bound memory because cid is set to clt_path-\u003es.con_num.\n\nThis commits resets the cid to clt_path-\u003es.con_num - 1, to stay in bounds\nin the cleanup loop later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47695",
"url": "https://www.suse.com/security/cve/CVE-2024-47695"
},
{
"category": "external",
"summary": "SUSE Bug 1231931 for CVE-2024-47695",
"url": "https://bugzilla.suse.com/1231931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47695"
},
{
"cve": "CVE-2024-47696",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47696"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency\n\nIn the commit aee2424246f9 (\"RDMA/iwcm: Fix a use-after-free related to\ndestroying CM IDs\"), the function flush_workqueue is invoked to flush the\nwork queue iwcm_wq.\n\nBut at that time, the work queue iwcm_wq was created via the function\nalloc_ordered_workqueue without the flag WQ_MEM_RECLAIM.\n\nBecause the current process is trying to flush the whole iwcm_wq, if\niwcm_wq doesn\u0027t have the flag WQ_MEM_RECLAIM, verify that the current\nprocess is not reclaiming memory or running on a workqueue which doesn\u0027t\nhave the flag WQ_MEM_RECLAIM as that can break forward-progress guarantee\nleading to a deadlock.\n\nThe call trace is as below:\n\n[ 125.350876][ T1430] Call Trace:\n[ 125.356281][ T1430] \u003cTASK\u003e\n[ 125.361285][ T1430] ? __warn (kernel/panic.c:693)\n[ 125.367640][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.375689][ T1430] ? report_bug (lib/bug.c:180 lib/bug.c:219)\n[ 125.382505][ T1430] ? handle_bug (arch/x86/kernel/traps.c:239)\n[ 125.388987][ T1430] ? exc_invalid_op (arch/x86/kernel/traps.c:260 (discriminator 1))\n[ 125.395831][ T1430] ? asm_exc_invalid_op (arch/x86/include/asm/idtentry.h:621)\n[ 125.403125][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.410984][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.418764][ T1430] __flush_workqueue (kernel/workqueue.c:3970)\n[ 125.426021][ T1430] ? __pfx___might_resched (kernel/sched/core.c:10151)\n[ 125.433431][ T1430] ? destroy_cm_id (drivers/infiniband/core/iwcm.c:375) iw_cm\n[ 125.441209][ T1430] ? __pfx___flush_workqueue (kernel/workqueue.c:3910)\n[ 125.473900][ T1430] ? _raw_spin_lock_irqsave (arch/x86/include/asm/atomic.h:107 include/linux/atomic/atomic-arch-fallback.h:2170 include/linux/atomic/atomic-instrumented.h:1302 include/asm-generic/qspinlock.h:111 include/linux/spinlock.h:187 include/linux/spinlock_api_smp.h:111 kernel/locking/spinlock.c:162)\n[ 125.473909][ T1430] ? __pfx__raw_spin_lock_irqsave (kernel/locking/spinlock.c:161)\n[ 125.482537][ T1430] _destroy_id (drivers/infiniband/core/cma.c:2044) rdma_cm\n[ 125.495072][ T1430] nvme_rdma_free_queue (drivers/nvme/host/rdma.c:656 drivers/nvme/host/rdma.c:650) nvme_rdma\n[ 125.505827][ T1430] nvme_rdma_reset_ctrl_work (drivers/nvme/host/rdma.c:2180) nvme_rdma\n[ 125.505831][ T1430] process_one_work (kernel/workqueue.c:3231)\n[ 125.515122][ T1430] worker_thread (kernel/workqueue.c:3306 kernel/workqueue.c:3393)\n[ 125.515127][ T1430] ? __pfx_worker_thread (kernel/workqueue.c:3339)\n[ 125.531837][ T1430] kthread (kernel/kthread.c:389)\n[ 125.539864][ T1430] ? __pfx_kthread (kernel/kthread.c:342)\n[ 125.550628][ T1430] ret_from_fork (arch/x86/kernel/process.c:147)\n[ 125.558840][ T1430] ? __pfx_kthread (kernel/kthread.c:342)\n[ 125.558844][ T1430] ret_from_fork_asm (arch/x86/entry/entry_64.S:257)\n[ 125.566487][ T1430] \u003c/TASK\u003e\n[ 125.566488][ T1430] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47696",
"url": "https://www.suse.com/security/cve/CVE-2024-47696"
},
{
"category": "external",
"summary": "SUSE Bug 1231864 for CVE-2024-47696",
"url": "https://bugzilla.suse.com/1231864"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47696"
},
{
"cve": "CVE-2024-47697",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47697"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error\n\nEnsure index in rtl2830_pid_filter does not exceed 31 to prevent\nout-of-bounds access.\n\ndev-\u003efilters is a 32-bit value, so set_bit and clear_bit functions should\nonly operate on indices from 0 to 31. If index is 32, it will attempt to\naccess a non-existent 33rd bit, leading to out-of-bounds access.\nChange the boundary check from index \u003e 32 to index \u003e= 32 to resolve this\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47697",
"url": "https://www.suse.com/security/cve/CVE-2024-47697"
},
{
"category": "external",
"summary": "SUSE Bug 1231858 for CVE-2024-47697",
"url": "https://bugzilla.suse.com/1231858"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47697"
},
{
"cve": "CVE-2024-47698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47698"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error\n\nEnsure index in rtl2832_pid_filter does not exceed 31 to prevent\nout-of-bounds access.\n\ndev-\u003efilters is a 32-bit value, so set_bit and clear_bit functions should\nonly operate on indices from 0 to 31. If index is 32, it will attempt to\naccess a non-existent 33rd bit, leading to out-of-bounds access.\nChange the boundary check from index \u003e 32 to index \u003e= 32 to resolve this\nissue.\n\n[hverkuil: added fixes tag, rtl2830_pid_filter -\u003e rtl2832_pid_filter in logmsg]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47698",
"url": "https://www.suse.com/security/cve/CVE-2024-47698"
},
{
"category": "external",
"summary": "SUSE Bug 1231859 for CVE-2024-47698",
"url": "https://bugzilla.suse.com/1231859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47698"
},
{
"cve": "CVE-2024-47699",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47699"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential null-ptr-deref in nilfs_btree_insert()\n\nPatch series \"nilfs2: fix potential issues with empty b-tree nodes\".\n\nThis series addresses three potential issues with empty b-tree nodes that\ncan occur with corrupted filesystem images, including one recently\ndiscovered by syzbot.\n\n\nThis patch (of 3):\n\nIf a b-tree is broken on the device, and the b-tree height is greater than\n2 (the level of the root node is greater than 1) even if the number of\nchild nodes of the b-tree root is 0, a NULL pointer dereference occurs in\nnilfs_btree_prepare_insert(), which is called from nilfs_btree_insert().\n\nThis is because, when the number of child nodes of the b-tree root is 0,\nnilfs_btree_do_lookup() does not set the block buffer head in any of\npath[x].bp_bh, leaving it as the initial value of NULL, but if the level\nof the b-tree root node is greater than 1, nilfs_btree_get_nonroot_node(),\nwhich accesses the buffer memory of path[x].bp_bh, is called.\n\nFix this issue by adding a check to nilfs_btree_root_broken(), which\nperforms sanity checks when reading the root node from the device, to\ndetect this inconsistency.\n\nThanks to Lizhi Xu for trying to solve the bug and clarifying the cause\nearly on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47699",
"url": "https://www.suse.com/security/cve/CVE-2024-47699"
},
{
"category": "external",
"summary": "SUSE Bug 1231916 for CVE-2024-47699",
"url": "https://bugzilla.suse.com/1231916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47699"
},
{
"cve": "CVE-2024-47700",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47700"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: check stripe size compatibility on remount as well\n\nWe disable stripe size in __ext4_fill_super if it is not a multiple of\nthe cluster ratio however this check is missed when trying to remount.\nThis can leave us with cases where stripe \u003c cluster_ratio after\nremount:set making EXT4_B2C(sbi-\u003es_stripe) become 0 that can cause some\nunforeseen bugs like divide by 0.\n\nFix that by adding the check in remount path as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47700",
"url": "https://www.suse.com/security/cve/CVE-2024-47700"
},
{
"category": "external",
"summary": "SUSE Bug 1231919 for CVE-2024-47700",
"url": "https://bugzilla.suse.com/1231919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47700"
},
{
"cve": "CVE-2024-47701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47701"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid OOB when system.data xattr changes underneath the filesystem\n\nWhen looking up for an entry in an inlined directory, if e_value_offs is\nchanged underneath the filesystem by some change in the block device, it\nwill lead to an out-of-bounds access that KASAN detects as an UAF.\n\nEXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.\nloop0: detected capacity change from 2048 to 2047\n==================================================================\nBUG: KASAN: use-after-free in ext4_search_dir+0xf2/0x1c0 fs/ext4/namei.c:1500\nRead of size 1 at addr ffff88803e91130f by task syz-executor269/5103\n\nCPU: 0 UID: 0 PID: 5103 Comm: syz-executor269 Not tainted 6.11.0-rc4-syzkaller #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ext4_search_dir+0xf2/0x1c0 fs/ext4/namei.c:1500\n ext4_find_inline_entry+0x4be/0x5e0 fs/ext4/inline.c:1697\n __ext4_find_entry+0x2b4/0x1b30 fs/ext4/namei.c:1573\n ext4_lookup_entry fs/ext4/namei.c:1727 [inline]\n ext4_lookup+0x15f/0x750 fs/ext4/namei.c:1795\n lookup_one_qstr_excl+0x11f/0x260 fs/namei.c:1633\n filename_create+0x297/0x540 fs/namei.c:3980\n do_symlinkat+0xf9/0x3a0 fs/namei.c:4587\n __do_sys_symlinkat fs/namei.c:4610 [inline]\n __se_sys_symlinkat fs/namei.c:4607 [inline]\n __x64_sys_symlinkat+0x95/0xb0 fs/namei.c:4607\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f3e73ced469\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff4d40c258 EFLAGS: 00000246 ORIG_RAX: 000000000000010a\nRAX: ffffffffffffffda RBX: 0032656c69662f2e RCX: 00007f3e73ced469\nRDX: 0000000020000200 RSI: 00000000ffffff9c RDI: 00000000200001c0\nRBP: 0000000000000000 R08: 00007fff4d40c290 R09: 00007fff4d40c290\nR10: 0023706f6f6c2f76 R11: 0000000000000246 R12: 00007fff4d40c27c\nR13: 0000000000000003 R14: 431bde82d7b634db R15: 00007fff4d40c2b0\n \u003c/TASK\u003e\n\nCalling ext4_xattr_ibody_find right after reading the inode with\next4_get_inode_loc will lead to a check of the validity of the xattrs,\navoiding this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47701",
"url": "https://www.suse.com/security/cve/CVE-2024-47701"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-47701",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1231920 for CVE-2024-47701",
"url": "https://bugzilla.suse.com/1231920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47701"
},
{
"cve": "CVE-2024-47702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47702"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fail verification for sign-extension of packet data/data_end/data_meta\n\nsyzbot reported a kernel crash due to\n commit 1f1e864b6555 (\"bpf: Handle sign-extenstin ctx member accesses\").\nThe reason is due to sign-extension of 32-bit load for\npacket data/data_end/data_meta uapi field.\n\nThe original code looks like:\n r2 = *(s32 *)(r1 + 76) /* load __sk_buff-\u003edata */\n r3 = *(u32 *)(r1 + 80) /* load __sk_buff-\u003edata_end */\n r0 = r2\n r0 += 8\n if r3 \u003e r0 goto +1\n ...\nNote that __sk_buff-\u003edata load has 32-bit sign extension.\n\nAfter verification and convert_ctx_accesses(), the final asm code looks like:\n r2 = *(u64 *)(r1 +208)\n r2 = (s32)r2\n r3 = *(u64 *)(r1 +80)\n r0 = r2\n r0 += 8\n if r3 \u003e r0 goto pc+1\n ...\nNote that \u0027r2 = (s32)r2\u0027 may make the kernel __sk_buff-\u003edata address invalid\nwhich may cause runtime failure.\n\nCurrently, in C code, typically we have\n void *data = (void *)(long)skb-\u003edata;\n void *data_end = (void *)(long)skb-\u003edata_end;\n ...\nand it will generate\n r2 = *(u64 *)(r1 +208)\n r3 = *(u64 *)(r1 +80)\n r0 = r2\n r0 += 8\n if r3 \u003e r0 goto pc+1\n\nIf we allow sign-extension,\n void *data = (void *)(long)(int)skb-\u003edata;\n void *data_end = (void *)(long)skb-\u003edata_end;\n ...\nthe generated code looks like\n r2 = *(u64 *)(r1 +208)\n r2 \u003c\u003c= 32\n r2 s\u003e\u003e= 32\n r3 = *(u64 *)(r1 +80)\n r0 = r2\n r0 += 8\n if r3 \u003e r0 goto pc+1\nand this will cause verification failure since \"r2 \u003c\u003c= 32\" is not allowed\nas \"r2\" is a packet pointer.\n\nTo fix this issue for case\n r2 = *(s32 *)(r1 + 76) /* load __sk_buff-\u003edata */\nthis patch added additional checking in is_valid_access() callback\nfunction for packet data/data_end/data_meta access. If those accesses\nare with sign-extenstion, the verification will fail.\n\n [1] https://lore.kernel.org/bpf/000000000000c90eee061d236d37@google.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47702",
"url": "https://www.suse.com/security/cve/CVE-2024-47702"
},
{
"category": "external",
"summary": "SUSE Bug 1231924 for CVE-2024-47702",
"url": "https://bugzilla.suse.com/1231924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47702"
},
{
"cve": "CVE-2024-47703",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47703"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, lsm: Add check for BPF LSM return value\n\nA bpf prog returning a positive number attached to file_alloc_security\nhook makes kernel panic.\n\nThis happens because file system can not filter out the positive number\nreturned by the LSM prog using IS_ERR, and misinterprets this positive\nnumber as a file pointer.\n\nGiven that hook file_alloc_security never returned positive number\nbefore the introduction of BPF LSM, and other BPF LSM hooks may\nencounter similar issues, this patch adds LSM return value check\nin verifier, to ensure no unexpected value is returned.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47703",
"url": "https://www.suse.com/security/cve/CVE-2024-47703"
},
{
"category": "external",
"summary": "SUSE Bug 1231946 for CVE-2024-47703",
"url": "https://bugzilla.suse.com/1231946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47703"
},
{
"cve": "CVE-2024-47704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47704"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check link_res-\u003ehpo_dp_link_enc before using it\n\n[WHAT \u0026 HOW]\nFunctions dp_enable_link_phy and dp_disable_link_phy can pass link_res\nwithout initializing hpo_dp_link_enc and it is necessary to check for\nnull before dereferencing.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47704",
"url": "https://www.suse.com/security/cve/CVE-2024-47704"
},
{
"category": "external",
"summary": "SUSE Bug 1231944 for CVE-2024-47704",
"url": "https://bugzilla.suse.com/1231944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47704"
},
{
"cve": "CVE-2024-47705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47705"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix potential invalid pointer dereference in blk_add_partition\n\nThe blk_add_partition() function initially used a single if-condition\n(IS_ERR(part)) to check for errors when adding a partition. This was\nmodified to handle the specific case of -ENXIO separately, allowing the\nfunction to proceed without logging the error in this case. However,\nthis change unintentionally left a path where md_autodetect_dev()\ncould be called without confirming that part is a valid pointer.\n\nThis commit separates the error handling logic by splitting the\ninitial if-condition, improving code readability and handling specific\nerror scenarios explicitly. The function now distinguishes the general\nerror case from -ENXIO without altering the existing behavior of\nmd_autodetect_dev() calls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47705",
"url": "https://www.suse.com/security/cve/CVE-2024-47705"
},
{
"category": "external",
"summary": "SUSE Bug 1231872 for CVE-2024-47705",
"url": "https://bugzilla.suse.com/1231872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47705"
},
{
"cve": "CVE-2024-47706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47706"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix possible UAF for bfqq-\u003ebic with merge chain\n\n1) initial state, three tasks:\n\n\t\tProcess 1 Process 2\tProcess 3\n\t\t (BIC1) (BIC2)\t\t (BIC3)\n\t\t | \u039b | \u039b\t\t | \u039b\n\t\t | | | |\t\t | |\n\t\t V | V |\t\t V |\n\t\t bfqq1 bfqq2\t\t bfqq3\nprocess ref:\t 1\t\t 1\t\t 1\n\n2) bfqq1 merged to bfqq2:\n\n\t\tProcess 1 Process 2\tProcess 3\n\t\t (BIC1) (BIC2)\t\t (BIC3)\n\t\t | |\t\t | \u039b\n\t\t \\--------------\\|\t\t | |\n\t\t V\t\t V |\n\t\t bfqq1---------\u003ebfqq2\t\t bfqq3\nprocess ref:\t 0\t\t 2\t\t 1\n\n3) bfqq2 merged to bfqq3:\n\n\t\tProcess 1 Process 2\tProcess 3\n\t\t (BIC1) (BIC2)\t\t (BIC3)\n\t here -\u003e \u039b |\t\t |\n\t\t \\--------------\\ \\-------------\\|\n\t\t V\t\t V\n\t\t bfqq1---------\u003ebfqq2----------\u003ebfqq3\nprocess ref:\t 0\t\t 1\t\t 3\n\nIn this case, IO from Process 1 will get bfqq2 from BIC1 first, and then\nget bfqq3 through merge chain, and finially handle IO by bfqq3.\nHowerver, current code will think bfqq2 is owned by BIC1, like initial\nstate, and set bfqq2-\u003ebic to BIC1.\n\nbfq_insert_request\n-\u003e by Process 1\n bfqq = bfq_init_rq(rq)\n bfqq = bfq_get_bfqq_handle_split\n bfqq = bic_to_bfqq\n -\u003e get bfqq2 from BIC1\n bfqq-\u003eref++\n rq-\u003eelv.priv[0] = bic\n rq-\u003eelv.priv[1] = bfqq\n if (bfqq_process_refs(bfqq) == 1)\n bfqq-\u003ebic = bic\n -\u003e record BIC1 to bfqq2\n\n __bfq_insert_request\n new_bfqq = bfq_setup_cooperator\n -\u003e get bfqq3 from bfqq2-\u003enew_bfqq\n bfqq_request_freed(bfqq)\n new_bfqq-\u003eref++\n rq-\u003eelv.priv[1] = new_bfqq\n -\u003e handle IO by bfqq3\n\nFix the problem by checking bfqq is from merge chain fist. And this\nmight fix a following problem reported by our syzkaller(unreproducible):\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfq_do_early_stable_merge block/bfq-iosched.c:5692 [inline]\nBUG: KASAN: slab-use-after-free in bfq_do_or_sched_stable_merge block/bfq-iosched.c:5805 [inline]\nBUG: KASAN: slab-use-after-free in bfq_get_queue+0x25b0/0x2610 block/bfq-iosched.c:5889\nWrite of size 1 at addr ffff888123839eb8 by task kworker/0:1H/18595\n\nCPU: 0 PID: 18595 Comm: kworker/0:1H Tainted: G L 6.6.0-07439-gba2303cacfda #6\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\nWorkqueue: kblockd blk_mq_requeue_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x91/0xf0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:364 [inline]\n print_report+0x10d/0x610 mm/kasan/report.c:475\n kasan_report+0x8e/0xc0 mm/kasan/report.c:588\n bfq_do_early_stable_merge block/bfq-iosched.c:5692 [inline]\n bfq_do_or_sched_stable_merge block/bfq-iosched.c:5805 [inline]\n bfq_get_queue+0x25b0/0x2610 block/bfq-iosched.c:5889\n bfq_get_bfqq_handle_split+0x169/0x5d0 block/bfq-iosched.c:6757\n bfq_init_rq block/bfq-iosched.c:6876 [inline]\n bfq_insert_request block/bfq-iosched.c:6254 [inline]\n bfq_insert_requests+0x1112/0x5cf0 block/bfq-iosched.c:6304\n blk_mq_insert_request+0x290/0x8d0 block/blk-mq.c:2593\n blk_mq_requeue_work+0x6bc/0xa70 block/blk-mq.c:1502\n process_one_work kernel/workqueue.c:2627 [inline]\n process_scheduled_works+0x432/0x13f0 kernel/workqueue.c:2700\n worker_thread+0x6f2/0x1160 kernel/workqueue.c:2781\n kthread+0x33c/0x440 kernel/kthread.c:388\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:305\n \u003c/TASK\u003e\n\nAllocated by task 20776:\n kasan_save_stack+0x20/0x40 mm/kasan/common.c:45\n kasan_set_track+0x25/0x30 mm/kasan/common.c:52\n __kasan_slab_alloc+0x87/0x90 mm/kasan/common.c:328\n kasan_slab_alloc include/linux/kasan.h:188 [inline]\n slab_post_alloc_hook mm/slab.h:763 [inline]\n slab_alloc_node mm/slub.c:3458 [inline]\n kmem_cache_alloc_node+0x1a4/0x6f0 mm/slub.c:3503\n ioc_create_icq block/blk-ioc.c:370 [inline]\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47706",
"url": "https://www.suse.com/security/cve/CVE-2024-47706"
},
{
"category": "external",
"summary": "SUSE Bug 1231942 for CVE-2024-47706",
"url": "https://bugzilla.suse.com/1231942"
},
{
"category": "external",
"summary": "SUSE Bug 1231943 for CVE-2024-47706",
"url": "https://bugzilla.suse.com/1231943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47706"
},
{
"cve": "CVE-2024-47707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()\n\nBlamed commit accidentally removed a check for rt-\u003ert6i_idev being NULL,\nas spotted by syzbot:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 UID: 0 PID: 10998 Comm: syz-executor Not tainted 6.11.0-rc6-syzkaller-00208-g625403177711 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\n RIP: 0010:rt6_uncached_list_flush_dev net/ipv6/route.c:177 [inline]\n RIP: 0010:rt6_disable_ip+0x33e/0x7e0 net/ipv6/route.c:4914\nCode: 41 80 3c 04 00 74 0a e8 90 d0 9b f7 48 8b 7c 24 08 48 8b 07 48 89 44 24 10 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df \u003c80\u003e 3c 08 00 74 08 4c 89 f7 e8 64 d0 9b f7 48 8b 44 24 18 49 39 06\nRSP: 0018:ffffc900047374e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 1ffff1100fdf8f33 RCX: dffffc0000000000\nRDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88807efc78c0\nRBP: ffffc900047375d0 R08: 0000000000000003 R09: fffff520008e6e8c\nR10: dffffc0000000000 R11: fffff520008e6e8c R12: 1ffff1100fdf8f18\nR13: ffff88807efc7998 R14: 0000000000000000 R15: ffff88807efc7930\nFS: 0000000000000000(0000) GS:ffff8880b8900000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020002a80 CR3: 0000000022f62000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n addrconf_ifdown+0x15d/0x1bd0 net/ipv6/addrconf.c:3856\n addrconf_notify+0x3cb/0x1020\n notifier_call_chain+0x19f/0x3e0 kernel/notifier.c:93\n call_netdevice_notifiers_extack net/core/dev.c:2032 [inline]\n call_netdevice_notifiers net/core/dev.c:2046 [inline]\n unregister_netdevice_many_notify+0xd81/0x1c40 net/core/dev.c:11352\n unregister_netdevice_many net/core/dev.c:11414 [inline]\n unregister_netdevice_queue+0x303/0x370 net/core/dev.c:11289\n unregister_netdevice include/linux/netdevice.h:3129 [inline]\n __tun_detach+0x6b9/0x1600 drivers/net/tun.c:685\n tun_detach drivers/net/tun.c:701 [inline]\n tun_chr_close+0x108/0x1b0 drivers/net/tun.c:3510\n __fput+0x24a/0x8a0 fs/file_table.c:422\n task_work_run+0x24f/0x310 kernel/task_work.c:228\n exit_task_work include/linux/task_work.h:40 [inline]\n do_exit+0xa2f/0x27f0 kernel/exit.c:882\n do_group_exit+0x207/0x2c0 kernel/exit.c:1031\n __do_sys_exit_group kernel/exit.c:1042 [inline]\n __se_sys_exit_group kernel/exit.c:1040 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1040\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f1acc77def9\nCode: Unable to access opcode bytes at 0x7f1acc77decf.\nRSP: 002b:00007ffeb26fa738 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1acc77def9\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043\nRBP: 00007f1acc7dd508 R08: 00007ffeb26f84d7 R09: 0000000000000003\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001\nR13: 0000000000000003 R14: 00000000ffffffff R15: 00007ffeb26fa8e0\n \u003c/TASK\u003e\nModules linked in:\n---[ end trace 0000000000000000 ]---\n RIP: 0010:rt6_uncached_list_flush_dev net/ipv6/route.c:177 [inline]\n RIP: 0010:rt6_disable_ip+0x33e/0x7e0 net/ipv6/route.c:4914\nCode: 41 80 3c 04 00 74 0a e8 90 d0 9b f7 48 8b 7c 24 08 48 8b 07 48 89 44 24 10 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df \u003c80\u003e 3c 08 00 74 08 4c 89 f7 e8 64 d0 9b f7 48 8b 44 24 18 49 39 06\nRSP: 0018:ffffc900047374e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 1ffff1100fdf8f33 RCX: dffffc0000000000\nRDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88807efc78c0\nR\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47707",
"url": "https://www.suse.com/security/cve/CVE-2024-47707"
},
{
"category": "external",
"summary": "SUSE Bug 1231935 for CVE-2024-47707",
"url": "https://bugzilla.suse.com/1231935"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47707"
},
{
"cve": "CVE-2024-47708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47708"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetkit: Assign missing bpf_net_context\n\nDuring the introduction of struct bpf_net_context handling for\nXDP-redirect, the netkit driver has been missed, which also requires it\nbecause NETKIT_REDIRECT invokes skb_do_redirect() which is accessing the\nper-CPU variables. Otherwise we see the following crash:\n\n\tBUG: kernel NULL pointer dereference, address: 0000000000000038\n\tbpf_redirect()\n\tnetkit_xmit()\n\tdev_hard_start_xmit()\n\nSet the bpf_net_context before invoking netkit_xmit() program within the\nnetkit driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47708",
"url": "https://www.suse.com/security/cve/CVE-2024-47708"
},
{
"category": "external",
"summary": "SUSE Bug 1231933 for CVE-2024-47708",
"url": "https://bugzilla.suse.com/1231933"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47708"
},
{
"cve": "CVE-2024-47709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry().\n\nsyzbot reported a warning in bcm_release(). [0]\n\nThe blamed change fixed another warning that is triggered when\nconnect() is issued again for a socket whose connect()ed device has\nbeen unregistered.\n\nHowever, if the socket is just close()d without the 2nd connect(), the\nremaining bo-\u003ebcm_proc_read triggers unnecessary remove_proc_entry()\nin bcm_release().\n\nLet\u0027s clear bo-\u003ebcm_proc_read after remove_proc_entry() in bcm_notify().\n\n[0]\nname \u00274986\u0027\nWARNING: CPU: 0 PID: 5234 at fs/proc/generic.c:711 remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nModules linked in:\nCPU: 0 UID: 0 PID: 5234 Comm: syz-executor606 Not tainted 6.11.0-rc5-syzkaller-00178-g5517ae241919 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nRIP: 0010:remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nCode: ff eb 05 e8 cb 1e 5e ff 48 8b 5c 24 10 48 c7 c7 e0 f7 aa 8e e8 2a 38 8e 09 90 48 c7 c7 60 3a 1b 8c 48 89 de e8 da 42 20 ff 90 \u003c0f\u003e 0b 90 90 48 8b 44 24 18 48 c7 44 24 40 0e 36 e0 45 49 c7 04 07\nRSP: 0018:ffffc9000345fa20 EFLAGS: 00010246\nRAX: 2a2d0aee2eb64600 RBX: ffff888032f1f548 RCX: ffff888029431e00\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffc9000345fb08 R08: ffffffff8155b2f2 R09: 1ffff1101710519a\nR10: dffffc0000000000 R11: ffffed101710519b R12: ffff888011d38640\nR13: 0000000000000004 R14: 0000000000000000 R15: dffffc0000000000\nFS: 0000000000000000(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fcfb52722f0 CR3: 000000000e734000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n bcm_release+0x250/0x880 net/can/bcm.c:1578\n __sock_release net/socket.c:659 [inline]\n sock_close+0xbc/0x240 net/socket.c:1421\n __fput+0x24a/0x8a0 fs/file_table.c:422\n task_work_run+0x24f/0x310 kernel/task_work.c:228\n exit_task_work include/linux/task_work.h:40 [inline]\n do_exit+0xa2f/0x27f0 kernel/exit.c:882\n do_group_exit+0x207/0x2c0 kernel/exit.c:1031\n __do_sys_exit_group kernel/exit.c:1042 [inline]\n __se_sys_exit_group kernel/exit.c:1040 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1040\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fcfb51ee969\nCode: Unable to access opcode bytes at 0x7fcfb51ee93f.\nRSP: 002b:00007ffce0109ca8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fcfb51ee969\nRDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001\nRBP: 00007fcfb526f3b0 R08: ffffffffffffffb8 R09: 0000555500000000\nR10: 0000555500000000 R11: 0000000000000246 R12: 00007fcfb526f3b0\nR13: 0000000000000000 R14: 00007fcfb5271ee0 R15: 00007fcfb51bf160\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47709",
"url": "https://www.suse.com/security/cve/CVE-2024-47709"
},
{
"category": "external",
"summary": "SUSE Bug 1232048 for CVE-2024-47709",
"url": "https://bugzilla.suse.com/1232048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47709"
},
{
"cve": "CVE-2024-47710",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47710"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsock_map: Add a cond_resched() in sock_hash_free()\n\nSeveral syzbot soft lockup reports all have in common sock_hash_free()\n\nIf a map with a large number of buckets is destroyed, we need to yield\nthe cpu when needed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47710",
"url": "https://www.suse.com/security/cve/CVE-2024-47710"
},
{
"category": "external",
"summary": "SUSE Bug 1232049 for CVE-2024-47710",
"url": "https://bugzilla.suse.com/1232049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47710"
},
{
"cve": "CVE-2024-47711",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47711"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Don\u0027t return OOB skb in manage_oob().\n\nsyzbot reported use-after-free in unix_stream_recv_urg(). [0]\n\nThe scenario is\n\n 1. send(MSG_OOB)\n 2. recv(MSG_OOB)\n -\u003e The consumed OOB remains in recv queue\n 3. send(MSG_OOB)\n 4. recv()\n -\u003e manage_oob() returns the next skb of the consumed OOB\n -\u003e This is also OOB, but unix_sk(sk)-\u003eoob_skb is not cleared\n 5. recv(MSG_OOB)\n -\u003e unix_sk(sk)-\u003eoob_skb is used but already freed\n\nThe recent commit 8594d9b85c07 (\"af_unix: Don\u0027t call skb_get() for OOB\nskb.\") uncovered the issue.\n\nIf the OOB skb is consumed and the next skb is peeked in manage_oob(),\nwe still need to check if the skb is OOB.\n\nLet\u0027s do so by falling back to the following checks in manage_oob()\nand add the test case in selftest.\n\nNote that we need to add a similar check for SIOCATMARK.\n\n[0]:\nBUG: KASAN: slab-use-after-free in unix_stream_read_actor+0xa6/0xb0 net/unix/af_unix.c:2959\nRead of size 4 at addr ffff8880326abcc4 by task syz-executor178/5235\n\nCPU: 0 UID: 0 PID: 5235 Comm: syz-executor178 Not tainted 6.11.0-rc5-syzkaller-00742-gfbdaffe41adc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n unix_stream_read_actor+0xa6/0xb0 net/unix/af_unix.c:2959\n unix_stream_recv_urg+0x1df/0x320 net/unix/af_unix.c:2640\n unix_stream_read_generic+0x2456/0x2520 net/unix/af_unix.c:2778\n unix_stream_recvmsg+0x22b/0x2c0 net/unix/af_unix.c:2996\n sock_recvmsg_nosec net/socket.c:1046 [inline]\n sock_recvmsg+0x22f/0x280 net/socket.c:1068\n ____sys_recvmsg+0x1db/0x470 net/socket.c:2816\n ___sys_recvmsg net/socket.c:2858 [inline]\n __sys_recvmsg+0x2f0/0x3e0 net/socket.c:2888\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f5360d6b4e9\nCode: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff29b3a458 EFLAGS: 00000246 ORIG_RAX: 000000000000002f\nRAX: ffffffffffffffda RBX: 00007fff29b3a638 RCX: 00007f5360d6b4e9\nRDX: 0000000000002001 RSI: 0000000020000640 RDI: 0000000000000003\nRBP: 00007f5360dde610 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001\nR13: 00007fff29b3a628 R14: 0000000000000001 R15: 0000000000000001\n \u003c/TASK\u003e\n\nAllocated by task 5235:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:312 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:338\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3988 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_node_noprof+0x16b/0x320 mm/slub.c:4080\n __alloc_skb+0x1c3/0x440 net/core/skbuff.c:667\n alloc_skb include/linux/skbuff.h:1320 [inline]\n alloc_skb_with_frags+0xc3/0x770 net/core/skbuff.c:6528\n sock_alloc_send_pskb+0x91a/0xa60 net/core/sock.c:2815\n sock_alloc_send_skb include/net/sock.h:1778 [inline]\n queue_oob+0x108/0x680 net/unix/af_unix.c:2198\n unix_stream_sendmsg+0xd24/0xf80 net/unix/af_unix.c:2351\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x221/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2680\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 5235:\n kasan_save_stack mm/kasan/common.c:47\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47711",
"url": "https://www.suse.com/security/cve/CVE-2024-47711"
},
{
"category": "external",
"summary": "SUSE Bug 1232054 for CVE-2024-47711",
"url": "https://bugzilla.suse.com/1232054"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47711"
},
{
"cve": "CVE-2024-47712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47712"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param\n\nIn the `wilc_parse_join_bss_param` function, the TSF field of the `ies`\nstructure is accessed after the RCU read-side critical section is\nunlocked. According to RCU usage rules, this is illegal. Reusing this\npointer can lead to unpredictable behavior, including accessing memory\nthat has been updated or causing use-after-free issues.\n\nThis possible bug was identified using a static analysis tool developed\nby myself, specifically designed to detect RCU-related issues.\n\nTo address this, the TSF value is now stored in a local variable\n`ies_tsf` before the RCU lock is released. The `param-\u003etsf_lo` field is\nthen assigned using this local variable, ensuring that the TSF value is\nsafely accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47712",
"url": "https://www.suse.com/security/cve/CVE-2024-47712"
},
{
"category": "external",
"summary": "SUSE Bug 1232017 for CVE-2024-47712",
"url": "https://bugzilla.suse.com/1232017"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47712"
},
{
"cve": "CVE-2024-47713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47713"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()\n\nSince \u0027__dev_queue_xmit()\u0027 should be called with interrupts enabled,\nthe following backtrace:\n\nieee80211_do_stop()\n ...\n spin_lock_irqsave(\u0026local-\u003equeue_stop_reason_lock, flags)\n ...\n ieee80211_free_txskb()\n ieee80211_report_used_skb()\n ieee80211_report_ack_skb()\n cfg80211_mgmt_tx_status_ext()\n nl80211_frame_tx_status()\n genlmsg_multicast_netns()\n genlmsg_multicast_netns_filtered()\n nlmsg_multicast_filtered()\n\t netlink_broadcast_filtered()\n\t do_one_broadcast()\n\t netlink_broadcast_deliver()\n\t __netlink_sendskb()\n\t netlink_deliver_tap()\n\t __netlink_deliver_tap_skb()\n\t dev_queue_xmit()\n\t __dev_queue_xmit() ; with IRQS disabled\n ...\n spin_unlock_irqrestore(\u0026local-\u003equeue_stop_reason_lock, flags)\n\nissues the warning (as reported by syzbot reproducer):\n\nWARNING: CPU: 2 PID: 5128 at kernel/softirq.c:362 __local_bh_enable_ip+0xc3/0x120\n\nFix this by implementing a two-phase skb reclamation in\n\u0027ieee80211_do_stop()\u0027, where actual work is performed\noutside of a section with interrupts disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47713",
"url": "https://www.suse.com/security/cve/CVE-2024-47713"
},
{
"category": "external",
"summary": "SUSE Bug 1232016 for CVE-2024-47713",
"url": "https://bugzilla.suse.com/1232016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47713"
},
{
"cve": "CVE-2024-47714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7996: use hweight16 to get correct tx antenna\n\nThe chainmask is u16 so using hweight8 cannot get correct tx_ant.\nWithout this patch, the tx_ant of band 2 would be -1 and lead to the\nfollowing issue:\nBUG: KASAN: stack-out-of-bounds in mt7996_mcu_add_sta+0x12e0/0x16e0 [mt7996e]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47714",
"url": "https://www.suse.com/security/cve/CVE-2024-47714"
},
{
"category": "external",
"summary": "SUSE Bug 1232018 for CVE-2024-47714",
"url": "https://bugzilla.suse.com/1232018"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-47714"
},
{
"cve": "CVE-2024-47715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7915: fix oops on non-dbdc mt7986\n\nmt7915_band_config() sets band_idx = 1 on the main phy for mt7986\nwith MT7975_ONE_ADIE or MT7976_ONE_ADIE.\n\nCommit 0335c034e726 (\"wifi: mt76: fix race condition related to\nchecking tx queue fill status\") introduced a dereference of the\nphys array indirectly indexed by band_idx via wcid-\u003ephy_idx in\nmt76_wcid_cleanup(). This caused the following Oops on affected\nmt7986 devices:\n\n Unable to handle kernel read from unreadable memory at virtual address 0000000000000024\n Mem abort info:\n ESR = 0x0000000096000005\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x05: level 1 translation fault\n Data abort info:\n ISV = 0, ISS = 0x00000005\n CM = 0, WnR = 0\n user pgtable: 4k pages, 39-bit VAs, pgdp=0000000042545000\n [0000000000000024] pgd=0000000000000000, p4d=0000000000000000, pud=0000000000000000\n Internal error: Oops: 0000000096000005 [#1] SMP\n Modules linked in: ... mt7915e mt76_connac_lib mt76 mac80211 cfg80211 ...\n CPU: 2 PID: 1631 Comm: hostapd Not tainted 5.15.150 #0\n Hardware name: ZyXEL EX5700 (Telenor) (DT)\n pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : mt76_wcid_cleanup+0x84/0x22c [mt76]\n lr : mt76_wcid_cleanup+0x64/0x22c [mt76]\n sp : ffffffc00a803700\n x29: ffffffc00a803700 x28: ffffff80008f7300 x27: ffffff80003f3c00\n x26: ffffff80000a7880 x25: ffffffc008c26e00 x24: 0000000000000001\n x23: ffffffc000a68114 x22: 0000000000000000 x21: ffffff8004172cc8\n x20: ffffffc00a803748 x19: ffffff8004152020 x18: 0000000000000000\n x17: 00000000000017c0 x16: ffffffc008ef5000 x15: 0000000000000be0\n x14: ffffff8004172e28 x13: ffffff8004172e28 x12: 0000000000000000\n x11: 0000000000000000 x10: ffffff8004172e30 x9 : ffffff8004172e28\n x8 : 0000000000000000 x7 : ffffff8004156020 x6 : 0000000000000000\n x5 : 0000000000000031 x4 : 0000000000000000 x3 : 0000000000000001\n x2 : 0000000000000000 x1 : ffffff80008f7300 x0 : 0000000000000024\n Call trace:\n mt76_wcid_cleanup+0x84/0x22c [mt76]\n __mt76_sta_remove+0x70/0xbc [mt76]\n mt76_sta_state+0x8c/0x1a4 [mt76]\n mt7915_eeprom_get_power_delta+0x11e4/0x23a0 [mt7915e]\n drv_sta_state+0x144/0x274 [mac80211]\n sta_info_move_state+0x1cc/0x2a4 [mac80211]\n sta_set_sinfo+0xaf8/0xc24 [mac80211]\n sta_info_destroy_addr_bss+0x4c/0x6c [mac80211]\n\n ieee80211_color_change_finish+0x1c08/0x1e70 [mac80211]\n cfg80211_check_station_change+0x1360/0x4710 [cfg80211]\n genl_family_rcv_msg_doit+0xb4/0x110\n genl_rcv_msg+0xd0/0x1bc\n netlink_rcv_skb+0x58/0x120\n genl_rcv+0x34/0x50\n netlink_unicast+0x1f0/0x2ec\n netlink_sendmsg+0x198/0x3d0\n ____sys_sendmsg+0x1b0/0x210\n ___sys_sendmsg+0x80/0xf0\n __sys_sendmsg+0x44/0xa0\n __arm64_sys_sendmsg+0x20/0x30\n invoke_syscall.constprop.0+0x4c/0xe0\n do_el0_svc+0x40/0xd0\n el0_svc+0x14/0x4c\n el0t_64_sync_handler+0x100/0x110\n el0t_64_sync+0x15c/0x160\n Code: d2800002 910092c0 52800023 f9800011 (885f7c01)\n ---[ end trace 7e42dd9a39ed2281 ]---\n\nFix by using mt76_dev_phy() which will map band_idx to the correct phy\nfor all hardware combinations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47715",
"url": "https://www.suse.com/security/cve/CVE-2024-47715"
},
{
"category": "external",
"summary": "SUSE Bug 1231860 for CVE-2024-47715",
"url": "https://bugzilla.suse.com/1231860"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47715"
},
{
"cve": "CVE-2024-47716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nARM: 9410/1: vfp: Use asm volatile in fmrx/fmxr macros\n\nFloating point instructions in userspace can crash some arm kernels\nbuilt with clang/LLD 17.0.6:\n\n BUG: unsupported FP instruction in kernel mode\n FPEXC == 0xc0000780\n Internal error: Oops - undefined instruction: 0 [#1] ARM\n CPU: 0 PID: 196 Comm: vfp-reproducer Not tainted 6.10.0 #1\n Hardware name: BCM2835\n PC is at vfp_support_entry+0xc8/0x2cc\n LR is at do_undefinstr+0xa8/0x250\n pc : [\u003cc0101d50\u003e] lr : [\u003cc010a80c\u003e] psr: a0000013\n sp : dc8d1f68 ip : 60000013 fp : bedea19c\n r10: ec532b17 r9 : 00000010 r8 : 0044766c\n r7 : c0000780 r6 : ec532b17 r5 : c1c13800 r4 : dc8d1fb0\n r3 : c10072c4 r2 : c0101c88 r1 : ec532b17 r0 : 0044766c\n Flags: NzCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none\n Control: 00c5387d Table: 0251c008 DAC: 00000051\n Register r0 information: non-paged memory\n Register r1 information: vmalloc memory\n Register r2 information: non-slab/vmalloc memory\n Register r3 information: non-slab/vmalloc memory\n Register r4 information: 2-page vmalloc region\n Register r5 information: slab kmalloc-cg-2k\n Register r6 information: vmalloc memory\n Register r7 information: non-slab/vmalloc memory\n Register r8 information: non-paged memory\n Register r9 information: zero-size pointer\n Register r10 information: vmalloc memory\n Register r11 information: non-paged memory\n Register r12 information: non-paged memory\n Process vfp-reproducer (pid: 196, stack limit = 0x61aaaf8b)\n Stack: (0xdc8d1f68 to 0xdc8d2000)\n 1f60: 0000081f b6f69300 0000000f c10073f4 c10072c4 dc8d1fb0\n 1f80: ec532b17 0c532b17 0044766c b6f9ccd8 00000000 c010a80c 00447670 60000010\n 1fa0: ffffffff c1c13800 00c5387d c0100f10 b6f68af8 00448fc0 00000000 bedea188\n 1fc0: bedea314 00000001 00448ebc b6f9d000 00447608 b6f9ccd8 00000000 bedea19c\n 1fe0: bede9198 bedea188 b6e1061c 0044766c 60000010 ffffffff 00000000 00000000\n Call trace:\n [\u003cc0101d50\u003e] (vfp_support_entry) from [\u003cc010a80c\u003e] (do_undefinstr+0xa8/0x250)\n [\u003cc010a80c\u003e] (do_undefinstr) from [\u003cc0100f10\u003e] (__und_usr+0x70/0x80)\n Exception stack(0xdc8d1fb0 to 0xdc8d1ff8)\n 1fa0: b6f68af8 00448fc0 00000000 bedea188\n 1fc0: bedea314 00000001 00448ebc b6f9d000 00447608 b6f9ccd8 00000000 bedea19c\n 1fe0: bede9198 bedea188 b6e1061c 0044766c 60000010 ffffffff\n Code: 0a000061 e3877202 e594003c e3a09010 (eef16a10)\n ---[ end trace 0000000000000000 ]---\n Kernel panic - not syncing: Fatal exception in interrupt\n ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---\n\nThis is a minimal userspace reproducer on a Raspberry Pi Zero W:\n\n #include \u003cstdio.h\u003e\n #include \u003cmath.h\u003e\n\n int main(void)\n {\n double v = 1.0;\n printf(\"%fn\", NAN + *(volatile double *)\u0026v);\n return 0;\n }\n\nAnother way to consistently trigger the oops is:\n\n calvin@raspberry-pi-zero-w ~$ python -c \"import json\"\n\nThe bug reproduces only when the kernel is built with DYNAMIC_DEBUG=n,\nbecause the pr_debug() calls act as barriers even when not activated.\n\nThis is the output from the same kernel source built with the same\ncompiler and DYNAMIC_DEBUG=y, where the userspace reproducer works as\nexpected:\n\n VFP: bounce: trigger ec532b17 fpexc c0000780\n VFP: emulate: INST=0xee377b06 SCR=0x00000000\n VFP: bounce: trigger eef1fa10 fpexc c0000780\n VFP: emulate: INST=0xeeb40b40 SCR=0x00000000\n VFP: raising exceptions 30000000\n\n calvin@raspberry-pi-zero-w ~$ ./vfp-reproducer\n nan\n\nCrudely grepping for vmsr/vmrs instructions in the otherwise nearly\nidential text for vfp_support_entry() makes the problem obvious:\n\n vmlinux.llvm.good [0xc0101cb8] \u003c+48\u003e: vmrs r7, fpexc\n vmlinux.llvm.good [0xc0101cd8] \u003c+80\u003e: vmsr fpexc, r0\n vmlinux.llvm.good [0xc0101d20\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47716",
"url": "https://www.suse.com/security/cve/CVE-2024-47716"
},
{
"category": "external",
"summary": "SUSE Bug 1232053 for CVE-2024-47716",
"url": "https://bugzilla.suse.com/1232053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47716"
},
{
"cve": "CVE-2024-47717",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47717"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRISC-V: KVM: Don\u0027t zero-out PMU snapshot area before freeing data\n\nWith the latest Linux-6.11-rc3, the below NULL pointer crash is observed\nwhen SBI PMU snapshot is enabled for the guest and the guest is forcefully\npowered-off.\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000508\n Oops [#1]\n Modules linked in: kvm\n CPU: 0 UID: 0 PID: 61 Comm: term-poll Not tainted 6.11.0-rc3-00018-g44d7178dd77a #3\n Hardware name: riscv-virtio,qemu (DT)\n epc : __kvm_write_guest_page+0x94/0xa6 [kvm]\n ra : __kvm_write_guest_page+0x54/0xa6 [kvm]\n epc : ffffffff01590e98 ra : ffffffff01590e58 sp : ffff8f80001f39b0\n gp : ffffffff81512a60 tp : ffffaf80024872c0 t0 : ffffaf800247e000\n t1 : 00000000000007e0 t2 : 0000000000000000 s0 : ffff8f80001f39f0\n s1 : 00007fff89ac4000 a0 : ffffffff015dd7e8 a1 : 0000000000000086\n a2 : 0000000000000000 a3 : ffffaf8000000000 a4 : ffffaf80024882c0\n a5 : 0000000000000000 a6 : ffffaf800328d780 a7 : 00000000000001cc\n s2 : ffffaf800197bd00 s3 : 00000000000828c4 s4 : ffffaf800248c000\n s5 : ffffaf800247d000 s6 : 0000000000001000 s7 : 0000000000001000\n s8 : 0000000000000000 s9 : 00007fff861fd500 s10: 0000000000000001\n s11: 0000000000800000 t3 : 00000000000004d3 t4 : 00000000000004d3\n t5 : ffffffff814126e0 t6 : ffffffff81412700\n status: 0000000200000120 badaddr: 0000000000000508 cause: 000000000000000d\n [\u003cffffffff01590e98\u003e] __kvm_write_guest_page+0x94/0xa6 [kvm]\n [\u003cffffffff015943a6\u003e] kvm_vcpu_write_guest+0x56/0x90 [kvm]\n [\u003cffffffff015a175c\u003e] kvm_pmu_clear_snapshot_area+0x42/0x7e [kvm]\n [\u003cffffffff015a1972\u003e] kvm_riscv_vcpu_pmu_deinit.part.0+0xe0/0x14e [kvm]\n [\u003cffffffff015a2ad0\u003e] kvm_riscv_vcpu_pmu_deinit+0x1a/0x24 [kvm]\n [\u003cffffffff0159b344\u003e] kvm_arch_vcpu_destroy+0x28/0x4c [kvm]\n [\u003cffffffff0158e420\u003e] kvm_destroy_vcpus+0x5a/0xda [kvm]\n [\u003cffffffff0159930c\u003e] kvm_arch_destroy_vm+0x14/0x28 [kvm]\n [\u003cffffffff01593260\u003e] kvm_destroy_vm+0x168/0x2a0 [kvm]\n [\u003cffffffff015933d4\u003e] kvm_put_kvm+0x3c/0x58 [kvm]\n [\u003cffffffff01593412\u003e] kvm_vm_release+0x22/0x2e [kvm]\n\nClearly, the kvm_vcpu_write_guest() function is crashing because it is\nbeing called from kvm_pmu_clear_snapshot_area() upon guest tear down.\n\nTo address the above issue, simplify the kvm_pmu_clear_snapshot_area() to\nnot zero-out PMU snapshot area from kvm_pmu_clear_snapshot_area() because\nthe guest is anyway being tore down.\n\nThe kvm_pmu_clear_snapshot_area() is also called when guest changes\nPMU snapshot area of a VCPU but even in this case the previous PMU\nsnaphsot area must not be zeroed-out because the guest might have\nreclaimed the pervious PMU snapshot area for some other purpose.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47717",
"url": "https://www.suse.com/security/cve/CVE-2024-47717"
},
{
"category": "external",
"summary": "SUSE Bug 1232041 for CVE-2024-47717",
"url": "https://bugzilla.suse.com/1232041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47717"
},
{
"cve": "CVE-2024-47718",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47718"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: always wait for both firmware loading attempts\n\nIn \u0027rtw_wait_firmware_completion()\u0027, always wait for both (regular and\nwowlan) firmware loading attempts. Otherwise if \u0027rtw_usb_intf_init()\u0027\nhas failed in \u0027rtw_usb_probe()\u0027, \u0027rtw_usb_disconnect()\u0027 may issue\n\u0027ieee80211_free_hw()\u0027 when one of \u0027rtw_load_firmware_cb()\u0027 (usually\nthe wowlan one) is still in progress, causing UAF detected by KASAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47718",
"url": "https://www.suse.com/security/cve/CVE-2024-47718"
},
{
"category": "external",
"summary": "SUSE Bug 1232015 for CVE-2024-47718",
"url": "https://bugzilla.suse.com/1232015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47718"
},
{
"cve": "CVE-2024-47719",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47719"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Protect against overflow of ALIGN() during iova allocation\n\nUserspace can supply an iova and uptr such that the target iova alignment\nbecomes really big and ALIGN() overflows which corrupts the selected area\nrange during allocation. CONFIG_IOMMUFD_TEST can detect this:\n\n WARNING: CPU: 1 PID: 5092 at drivers/iommu/iommufd/io_pagetable.c:268 iopt_alloc_area_pages drivers/iommu/iommufd/io_pagetable.c:268 [inline]\n WARNING: CPU: 1 PID: 5092 at drivers/iommu/iommufd/io_pagetable.c:268 iopt_map_pages+0xf95/0x1050 drivers/iommu/iommufd/io_pagetable.c:352\n Modules linked in:\n CPU: 1 PID: 5092 Comm: syz-executor294 Not tainted 6.10.0-rc5-syzkaller-00294-g3ffea9a7a6f7 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024\n RIP: 0010:iopt_alloc_area_pages drivers/iommu/iommufd/io_pagetable.c:268 [inline]\n RIP: 0010:iopt_map_pages+0xf95/0x1050 drivers/iommu/iommufd/io_pagetable.c:352\n Code: fc e9 a4 f3 ff ff e8 1a 8b 4c fc 41 be e4 ff ff ff e9 8a f3 ff ff e8 0a 8b 4c fc 90 0f 0b 90 e9 37 f5 ff ff e8 fc 8a 4c fc 90 \u003c0f\u003e 0b 90 e9 68 f3 ff ff 48 c7 c1 ec 82 ad 8f 80 e1 07 80 c1 03 38\n RSP: 0018:ffffc90003ebf9e0 EFLAGS: 00010293\n RAX: ffffffff85499fa4 RBX: 00000000ffffffef RCX: ffff888079b49e00\n RDX: 0000000000000000 RSI: 00000000ffffffef RDI: 0000000000000000\n RBP: ffffc90003ebfc50 R08: ffffffff85499b30 R09: ffffffff85499942\n R10: 0000000000000002 R11: ffff888079b49e00 R12: ffff8880228e0010\n R13: 0000000000000000 R14: 1ffff920007d7f68 R15: ffffc90003ebfd00\n FS: 000055557d760380(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00000000005fdeb8 CR3: 000000007404a000 CR4: 00000000003506f0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n iommufd_ioas_copy+0x610/0x7b0 drivers/iommu/iommufd/ioas.c:274\n iommufd_fops_ioctl+0x4d9/0x5a0 drivers/iommu/iommufd/main.c:421\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCap the automatic alignment to the huge page size, which is probably a\nbetter idea overall. Huge automatic alignments can fragment and chew up\nthe available IOVA space without any reason.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47719",
"url": "https://www.suse.com/security/cve/CVE-2024-47719"
},
{
"category": "external",
"summary": "SUSE Bug 1231865 for CVE-2024-47719",
"url": "https://bugzilla.suse.com/1231865"
},
{
"category": "external",
"summary": "SUSE Bug 1231866 for CVE-2024-47719",
"url": "https://bugzilla.suse.com/1231866"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47719"
},
{
"cve": "CVE-2024-47720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47720"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn30_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for nullity at line 386, but then it\nwas being dereferenced without any nullity check at line 401. This\ncould potentially lead to a null pointer dereference error if\nset_output_gamma is indeed null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a nullity check for\nset_output_gamma before the call to set_output_gamma at line 401. If\nset_output_gamma is null, we log an error message and do not call the\nfunction.\n\nThis fix prevents a potential null pointer dereference error.\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:401 dcn30_set_output_transfer_func()\nerror: we previously assumed \u0027mpc-\u003efuncs-\u003eset_output_gamma\u0027 could be null (see line 386)\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c\n 373 bool dcn30_set_output_transfer_func(struct dc *dc,\n 374 struct pipe_ctx *pipe_ctx,\n 375 const struct dc_stream_state *stream)\n 376 {\n 377 int mpcc_id = pipe_ctx-\u003eplane_res.hubp-\u003einst;\n 378 struct mpc *mpc = pipe_ctx-\u003estream_res.opp-\u003ectx-\u003edc-\u003eres_pool-\u003empc;\n 379 const struct pwl_params *params = NULL;\n 380 bool ret = false;\n 381\n 382 /* program OGAM or 3DLUT only for the top pipe*/\n 383 if (pipe_ctx-\u003etop_pipe == NULL) {\n 384 /*program rmu shaper and 3dlut in MPC*/\n 385 ret = dcn30_set_mpc_shaper_3dlut(pipe_ctx, stream);\n 386 if (ret == false \u0026\u0026 mpc-\u003efuncs-\u003eset_output_gamma) {\n ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ If this is NULL\n\n 387 if (stream-\u003eout_transfer_func.type == TF_TYPE_HWPWL)\n 388 params = \u0026stream-\u003eout_transfer_func.pwl;\n 389 else if (pipe_ctx-\u003estream-\u003eout_transfer_func.type ==\n 390 TF_TYPE_DISTRIBUTED_POINTS \u0026\u0026\n 391 cm3_helper_translate_curve_to_hw_format(\n 392 \u0026stream-\u003eout_transfer_func,\n 393 \u0026mpc-\u003eblender_params, false))\n 394 params = \u0026mpc-\u003eblender_params;\n 395 /* there are no ROM LUTs in OUTGAM */\n 396 if (stream-\u003eout_transfer_func.type == TF_TYPE_PREDEFINED)\n 397 BREAK_TO_DEBUGGER();\n 398 }\n 399 }\n 400\n--\u003e 401 mpc-\u003efuncs-\u003eset_output_gamma(mpc, mpcc_id, params);\n ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ Then it will crash\n\n 402 return ret;\n 403 }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47720",
"url": "https://www.suse.com/security/cve/CVE-2024-47720"
},
{
"category": "external",
"summary": "SUSE Bug 1232043 for CVE-2024-47720",
"url": "https://bugzilla.suse.com/1232043"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47720"
},
{
"cve": "CVE-2024-47721",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47721"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: remove unused C2H event ID RTW89_MAC_C2H_FUNC_READ_WOW_CAM to prevent out-of-bounds reading\n\nThe handler of firmware C2H event RTW89_MAC_C2H_FUNC_READ_WOW_CAM isn\u0027t\nimplemented, but driver expects number of handlers is\nNUM_OF_RTW89_MAC_C2H_FUNC_WOW causing out-of-bounds access. Fix it by\nremoving ID.\n\nAddresses-Coverity-ID: 1598775 (\"Out-of-bounds read\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47721",
"url": "https://www.suse.com/security/cve/CVE-2024-47721"
},
{
"category": "external",
"summary": "SUSE Bug 1232052 for CVE-2024-47721",
"url": "https://bugzilla.suse.com/1232052"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47721"
},
{
"cve": "CVE-2024-47723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix out-of-bounds in dbNextAG() and diAlloc()\n\nIn dbNextAG() , there is no check for the case where bmp-\u003edb_numag is\ngreater or same than MAXAG due to a polluted image, which causes an\nout-of-bounds. Therefore, a bounds check should be added in dbMount().\n\nAnd in dbNextAG(), a check for the case where agpref is greater than\nbmp-\u003edb_numag should be added, so an out-of-bounds exception should be\nprevented.\n\nAdditionally, a check for the case where agno is greater or same than\nMAXAG should be added in diAlloc() to prevent out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47723",
"url": "https://www.suse.com/security/cve/CVE-2024-47723"
},
{
"category": "external",
"summary": "SUSE Bug 1232050 for CVE-2024-47723",
"url": "https://bugzilla.suse.com/1232050"
},
{
"category": "external",
"summary": "SUSE Bug 1232051 for CVE-2024-47723",
"url": "https://bugzilla.suse.com/1232051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47723"
},
{
"cve": "CVE-2024-47724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: use work queue to process beacon tx event\n\nCommit 3a415daa3e8b (\"wifi: ath11k: add P2P IE in beacon template\")\nfrom Feb 28, 2024 (linux-next), leads to the following Smatch static\nchecker warning:\n\ndrivers/net/wireless/ath/ath11k/wmi.c:1742 ath11k_wmi_p2p_go_bcn_ie()\nwarn: sleeping in atomic context\n\nThe reason is that ath11k_bcn_tx_status_event() will directly call might\nsleep function ath11k_wmi_cmd_send() during RCU read-side critical\nsections. The call trace is like:\n\nath11k_bcn_tx_status_event()\n-\u003e rcu_read_lock()\n-\u003e ath11k_mac_bcn_tx_event()\n\t-\u003e ath11k_mac_setup_bcn_tmpl()\n\t\u2026\u2026\n\t\t-\u003e ath11k_wmi_bcn_tmpl()\n\t\t\t-\u003e ath11k_wmi_cmd_send()\n-\u003e rcu_read_unlock()\n\nCommit 886433a98425 (\"ath11k: add support for BSS color change\") added the\nath11k_mac_bcn_tx_event(), commit 01e782c89108 (\"ath11k: fix warning\nof RCU usage for ath11k_mac_get_arvif_by_vdev_id()\") added the RCU lock\nto avoid warning but also introduced this BUG.\n\nUse work queue to avoid directly calling ath11k_mac_bcn_tx_event()\nduring RCU critical sections. No need to worry about the deletion of vif\nbecause cancel_work_sync() will drop the work if it doesn\u0027t start or\nblock vif deletion until the running work is done.\n\nTested-on: WCN6855 hw2.0 PCI WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47724",
"url": "https://www.suse.com/security/cve/CVE-2024-47724"
},
{
"category": "external",
"summary": "SUSE Bug 1232073 for CVE-2024-47724",
"url": "https://bugzilla.suse.com/1232073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47724"
},
{
"cve": "CVE-2024-47726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to wait dio completion\n\nIt should wait all existing dio write IOs before block removal,\notherwise, previous direct write IO may overwrite data in the\nblock which may be reused by other inode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47726",
"url": "https://www.suse.com/security/cve/CVE-2024-47726"
},
{
"category": "external",
"summary": "SUSE Bug 1232113 for CVE-2024-47726",
"url": "https://bugzilla.suse.com/1232113"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47726"
},
{
"cve": "CVE-2024-47727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix \"in-kernel MMIO\" check\n\nTDX only supports kernel-initiated MMIO operations. The handle_mmio()\nfunction checks if the #VE exception occurred in the kernel and rejects\nthe operation if it did not.\n\nHowever, userspace can deceive the kernel into performing MMIO on its\nbehalf. For example, if userspace can point a syscall to an MMIO address,\nsyscall does get_user() or put_user() on it, triggering MMIO #VE. The\nkernel will treat the #VE as in-kernel MMIO.\n\nEnsure that the target MMIO address is within the kernel before decoding\ninstruction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47727",
"url": "https://www.suse.com/security/cve/CVE-2024-47727"
},
{
"category": "external",
"summary": "SUSE Bug 1232116 for CVE-2024-47727",
"url": "https://bugzilla.suse.com/1232116"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47727"
},
{
"cve": "CVE-2024-47728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error\n\nFor all non-tracing helpers which formerly had ARG_PTR_TO_{LONG,INT} as input\narguments, zero the value for the case of an error as otherwise it could leak\nmemory. For tracing, it is not needed given CAP_PERFMON can already read all\nkernel memory anyway hence bpf_get_func_arg() and bpf_get_func_ret() is skipped\nin here.\n\nAlso, the MTU helpers mtu_len pointer value is being written but also read.\nTechnically, the MEM_UNINIT should not be there in order to always force init.\nRemoving MEM_UNINIT needs more verifier rework though: MEM_UNINIT right now\nimplies two things actually: i) write into memory, ii) memory does not have\nto be initialized. If we lift MEM_UNINIT, it then becomes: i) read into memory,\nii) memory must be initialized. This means that for bpf_*_check_mtu() we\u0027re\nreadding the issue we\u0027re trying to fix, that is, it would then be able to\nwrite back into things like .rodata BPF maps. Follow-up work will rework the\nMEM_UNINIT semantics such that the intent can be better expressed. For now\njust clear the *mtu_len on error path which can be lifted later again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47728",
"url": "https://www.suse.com/security/cve/CVE-2024-47728"
},
{
"category": "external",
"summary": "SUSE Bug 1232076 for CVE-2024-47728",
"url": "https://bugzilla.suse.com/1232076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47728"
},
{
"cve": "CVE-2024-47729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Use reserved copy engine for user binds on faulting devices\n\nUser binds map to engines with can fault, faults depend on user binds\ncompletion, thus we can deadlock. Avoid this by using reserved copy\nengine for user binds on faulting devices.\n\nWhile we are here, normalize bind queue creation with a helper.\n\nv2:\n - Pass in extensions to bind queue creation (CI)\nv3:\n - s/resevered/reserved (Lucas)\n - Fix NULL hwe check (Jonathan)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47729",
"url": "https://www.suse.com/security/cve/CVE-2024-47729"
},
{
"category": "external",
"summary": "SUSE Bug 1232077 for CVE-2024-47729",
"url": "https://bugzilla.suse.com/1232077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47729"
},
{
"cve": "CVE-2024-47730",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47730"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: hisilicon/qm - inject error before stopping queue\n\nThe master ooo cannot be completely closed when the\naccelerator core reports memory error. Therefore, the driver\nneeds to inject the qm error to close the master ooo. Currently,\nthe qm error is injected after stopping queue, memory may be\nreleased immediately after stopping queue, causing the device to\naccess the released memory. Therefore, error is injected to close master\nooo before stopping queue to ensure that the device does not access\nthe released memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47730",
"url": "https://www.suse.com/security/cve/CVE-2024-47730"
},
{
"category": "external",
"summary": "SUSE Bug 1232075 for CVE-2024-47730",
"url": "https://bugzilla.suse.com/1232075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47730"
},
{
"cve": "CVE-2024-47731",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47731"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers/perf: Fix ali_drw_pmu driver interrupt status clearing\n\nThe alibaba_uncore_pmu driver forgot to clear all interrupt status\nin the interrupt processing function. After the PMU counter overflow\ninterrupt occurred, an interrupt storm occurred, causing the system\nto hang.\n\nTherefore, clear the correct interrupt status in the interrupt handling\nfunction to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47731",
"url": "https://www.suse.com/security/cve/CVE-2024-47731"
},
{
"category": "external",
"summary": "SUSE Bug 1232117 for CVE-2024-47731",
"url": "https://bugzilla.suse.com/1232117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47731"
},
{
"cve": "CVE-2024-47732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: iaa - Fix potential use after free bug\n\nThe free_device_compression_mode(iaa_device, device_mode) function frees\n\"device_mode\" but it iss passed to iaa_compression_modes[i]-\u003efree() a few\nlines later resulting in a use after free.\n\nThe good news is that, so far as I can tell, nothing implements the\n-\u003efree() function and the use after free happens in dead code. But, with\nthis fix, when something does implement it, we\u0027ll be ready. :)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47732",
"url": "https://www.suse.com/security/cve/CVE-2024-47732"
},
{
"category": "external",
"summary": "SUSE Bug 1232109 for CVE-2024-47732",
"url": "https://bugzilla.suse.com/1232109"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47732"
},
{
"cve": "CVE-2024-47733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47733"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfs: Delete subtree of \u0027fs/netfs\u0027 when netfs module exits\n\nIn netfs_init() or fscache_proc_init(), we create dentry under \u0027fs/netfs\u0027,\nbut in netfs_exit(), we only delete the proc entry of \u0027fs/netfs\u0027 without\ndeleting its subtree. This triggers the following WARNING:\n\n==================================================================\nremove_proc_entry: removing non-empty directory \u0027fs/netfs\u0027, leaking at least \u0027requests\u0027\nWARNING: CPU: 4 PID: 566 at fs/proc/generic.c:717 remove_proc_entry+0x160/0x1c0\nModules linked in: netfs(-)\nCPU: 4 UID: 0 PID: 566 Comm: rmmod Not tainted 6.11.0-rc3 #860\nRIP: 0010:remove_proc_entry+0x160/0x1c0\nCall Trace:\n \u003cTASK\u003e\n netfs_exit+0x12/0x620 [netfs]\n __do_sys_delete_module.isra.0+0x14c/0x2e0\n do_syscall_64+0x4b/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n==================================================================\n\nTherefore use remove_proc_subtree() instead of remove_proc_entry() to\nfix the above problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47733",
"url": "https://www.suse.com/security/cve/CVE-2024-47733"
},
{
"category": "external",
"summary": "SUSE Bug 1232110 for CVE-2024-47733",
"url": "https://bugzilla.suse.com/1232110"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47733"
},
{
"cve": "CVE-2024-47734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: Fix unnecessary warnings and logs from bond_xdp_get_xmit_slave()\n\nsyzbot reported a WARNING in bond_xdp_get_xmit_slave. To reproduce\nthis[1], one bond device (bond1) has xdpdrv, which increases\nbpf_master_redirect_enabled_key. Another bond device (bond0) which is\nunsupported by XDP but its slave (veth3) has xdpgeneric that returns\nXDP_TX. This triggers WARN_ON_ONCE() from the xdp_master_redirect().\nTo reduce unnecessary warnings and improve log management, we need to\ndelete the WARN_ON_ONCE() and add ratelimit to the netdev_err().\n\n[1] Steps to reproduce:\n # Needs tx_xdp with return XDP_TX;\n ip l add veth0 type veth peer veth1\n ip l add veth3 type veth peer veth4\n ip l add bond0 type bond mode 6 # BOND_MODE_ALB, unsupported by XDP\n ip l add bond1 type bond # BOND_MODE_ROUNDROBIN by default\n ip l set veth0 master bond1\n ip l set bond1 up\n # Increases bpf_master_redirect_enabled_key\n ip l set dev bond1 xdpdrv object tx_xdp.o section xdp_tx\n ip l set veth3 master bond0\n ip l set bond0 up\n ip l set veth4 up\n # Triggers WARN_ON_ONCE() from the xdp_master_redirect()\n ip l set veth3 xdpgeneric object tx_xdp.o section xdp_tx",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47734",
"url": "https://www.suse.com/security/cve/CVE-2024-47734"
},
{
"category": "external",
"summary": "SUSE Bug 1232055 for CVE-2024-47734",
"url": "https://bugzilla.suse.com/1232055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47734"
},
{
"cve": "CVE-2024-47735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled\n\nFix missuse of spin_lock_irq()/spin_unlock_irq() when\nspin_lock_irqsave()/spin_lock_irqrestore() was hold.\n\nThis was discovered through the lock debugging, and the corresponding\nlog is as follows:\n\nraw_local_irq_restore() called with IRQs enabled\nWARNING: CPU: 96 PID: 2074 at kernel/locking/irqflag-debug.c:10 warn_bogus_irq_restore+0x30/0x40\n...\nCall trace:\n warn_bogus_irq_restore+0x30/0x40\n _raw_spin_unlock_irqrestore+0x84/0xc8\n add_qp_to_list+0x11c/0x148 [hns_roce_hw_v2]\n hns_roce_create_qp_common.constprop.0+0x240/0x780 [hns_roce_hw_v2]\n hns_roce_create_qp+0x98/0x160 [hns_roce_hw_v2]\n create_qp+0x138/0x258\n ib_create_qp_kernel+0x50/0xe8\n create_mad_qp+0xa8/0x128\n ib_mad_port_open+0x218/0x448\n ib_mad_init_device+0x70/0x1f8\n add_client_context+0xfc/0x220\n enable_device_and_get+0xd0/0x140\n ib_register_device.part.0+0xf4/0x1c8\n ib_register_device+0x34/0x50\n hns_roce_register_device+0x174/0x3d0 [hns_roce_hw_v2]\n hns_roce_init+0xfc/0x2c0 [hns_roce_hw_v2]\n __hns_roce_hw_v2_init_instance+0x7c/0x1d0 [hns_roce_hw_v2]\n hns_roce_hw_v2_init_instance+0x9c/0x180 [hns_roce_hw_v2]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47735",
"url": "https://www.suse.com/security/cve/CVE-2024-47735"
},
{
"category": "external",
"summary": "SUSE Bug 1232111 for CVE-2024-47735",
"url": "https://bugzilla.suse.com/1232111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47735"
},
{
"cve": "CVE-2024-47736",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47736"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: handle overlapped pclusters out of crafted images properly\n\nsyzbot reported a task hang issue due to a deadlock case where it is\nwaiting for the folio lock of a cached folio that will be used for\ncache I/Os.\n\nAfter looking into the crafted fuzzed image, I found it\u0027s formed with\nseveral overlapped big pclusters as below:\n\n Ext: logical offset | length : physical offset | length\n 0: 0.. 16384 | 16384 : 151552.. 167936 | 16384\n 1: 16384.. 32768 | 16384 : 155648.. 172032 | 16384\n 2: 32768.. 49152 | 16384 : 537223168.. 537239552 | 16384\n...\n\nHere, extent 0/1 are physically overlapped although it\u0027s entirely\n_impossible_ for normal filesystem images generated by mkfs.\n\nFirst, managed folios containing compressed data will be marked as\nup-to-date and then unlocked immediately (unlike in-place folios) when\ncompressed I/Os are complete. If physical blocks are not submitted in\nthe incremental order, there should be separate BIOs to avoid dependency\nissues. However, the current code mis-arranges z_erofs_fill_bio_vec()\nand BIO submission which causes unexpected BIO waits.\n\nSecond, managed folios will be connected to their own pclusters for\nefficient inter-queries. However, this is somewhat hard to implement\neasily if overlapped big pclusters exist. Again, these only appear in\nfuzzed images so let\u0027s simply fall back to temporary short-lived pages\nfor correctness.\n\nAdditionally, it justifies that referenced managed folios cannot be\ntruncated for now and reverts part of commit 2080ca1ed3e4 (\"erofs: tidy\nup `struct z_erofs_bvec`\") for simplicity although it shouldn\u0027t be any\ndifference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47736",
"url": "https://www.suse.com/security/cve/CVE-2024-47736"
},
{
"category": "external",
"summary": "SUSE Bug 1232112 for CVE-2024-47736",
"url": "https://bugzilla.suse.com/1232112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47736"
},
{
"cve": "CVE-2024-47737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: call cache_put if xdr_reserve_space returns NULL\n\nIf not enough buffer space available, but idmap_lookup has triggered\nlookup_fn which calls cache_get and returns successfully. Then we\nmissed to call cache_put here which pairs with cache_get.\n\nReviwed-by: Jeff Layton \u003cjlayton@kernel.org\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47737",
"url": "https://www.suse.com/security/cve/CVE-2024-47737"
},
{
"category": "external",
"summary": "SUSE Bug 1232056 for CVE-2024-47737",
"url": "https://bugzilla.suse.com/1232056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47737"
},
{
"cve": "CVE-2024-47738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47738"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: don\u0027t use rate mask for offchannel TX either\n\nLike the commit ab9177d83c04 (\"wifi: mac80211: don\u0027t use rate mask for\nscanning\"), ignore incorrect settings to avoid no supported rate warning\nreported by syzbot.\n\nThe syzbot did bisect and found cause is commit 9df66d5b9f45 (\"cfg80211:\nfix default HE tx bitrate mask in 2G band\"), which however corrects\nbitmask of HE MCS and recognizes correctly settings of empty legacy rate\nplus HE MCS rate instead of returning -EINVAL.\n\nAs suggestions [1], follow the change of SCAN TX to consider this case of\noffchannel TX as well.\n\n[1] https://lore.kernel.org/linux-wireless/6ab2dc9c3afe753ca6fdcdd1421e7a1f47e87b84.camel@sipsolutions.net/T/#m2ac2a6d2be06a37c9c47a3d8a44b4f647ed4f024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47738",
"url": "https://www.suse.com/security/cve/CVE-2024-47738"
},
{
"category": "external",
"summary": "SUSE Bug 1232114 for CVE-2024-47738",
"url": "https://bugzilla.suse.com/1232114"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47738"
},
{
"cve": "CVE-2024-47739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npadata: use integer wrap around to prevent deadlock on seq_nr overflow\n\nWhen submitting more than 2^32 padata objects to padata_do_serial, the\ncurrent sorting implementation incorrectly sorts padata objects with\noverflowed seq_nr, causing them to be placed before existing objects in\nthe reorder list. This leads to a deadlock in the serialization process\nas padata_find_next cannot match padata-\u003eseq_nr and pd-\u003eprocessed\nbecause the padata instance with overflowed seq_nr will be selected\nnext.\n\nTo fix this, we use an unsigned integer wrap around to correctly sort\npadata objects in scenarios with integer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47739",
"url": "https://www.suse.com/security/cve/CVE-2024-47739"
},
{
"category": "external",
"summary": "SUSE Bug 1232124 for CVE-2024-47739",
"url": "https://bugzilla.suse.com/1232124"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47739"
},
{
"cve": "CVE-2024-47740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47740"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: Require FMODE_WRITE for atomic write ioctls\n\nThe F2FS ioctls for starting and committing atomic writes check for\ninode_owner_or_capable(), but this does not give LSMs like SELinux or\nLandlock an opportunity to deny the write access - if the caller\u0027s FSUID\nmatches the inode\u0027s UID, inode_owner_or_capable() immediately returns true.\n\nThere are scenarios where LSMs want to deny a process the ability to write\nparticular files, even files that the FSUID of the process owns; but this\ncan currently partially be bypassed using atomic write ioctls in two ways:\n\n - F2FS_IOC_START_ATOMIC_REPLACE + F2FS_IOC_COMMIT_ATOMIC_WRITE can\n truncate an inode to size 0\n - F2FS_IOC_START_ATOMIC_WRITE + F2FS_IOC_ABORT_ATOMIC_WRITE can revert\n changes another process concurrently made to a file\n\nFix it by requiring FMODE_WRITE for these operations, just like for\nF2FS_IOC_MOVE_RANGE. Since any legitimate caller should only be using these\nioctls when intending to write into the file, that seems unlikely to break\nanything.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47740",
"url": "https://www.suse.com/security/cve/CVE-2024-47740"
},
{
"category": "external",
"summary": "SUSE Bug 1231867 for CVE-2024-47740",
"url": "https://bugzilla.suse.com/1231867"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47740"
},
{
"cve": "CVE-2024-47741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race setting file private on concurrent lseek using same fd\n\nWhen doing concurrent lseek(2) system calls against the same file\ndescriptor, using multiple threads belonging to the same process, we have\na short time window where a race happens and can result in a memory leak.\n\nThe race happens like this:\n\n1) A program opens a file descriptor for a file and then spawns two\n threads (with the pthreads library for example), lets call them\n task A and task B;\n\n2) Task A calls lseek with SEEK_DATA or SEEK_HOLE and ends up at\n file.c:find_desired_extent() while holding a read lock on the inode;\n\n3) At the start of find_desired_extent(), it extracts the file\u0027s\n private_data pointer into a local variable named \u0027private\u0027, which has\n a value of NULL;\n\n4) Task B also calls lseek with SEEK_DATA or SEEK_HOLE, locks the inode\n in shared mode and enters file.c:find_desired_extent(), where it also\n extracts file-\u003eprivate_data into its local variable \u0027private\u0027, which\n has a NULL value;\n\n5) Because it saw a NULL file private, task A allocates a private\n structure and assigns to the file structure;\n\n6) Task B also saw a NULL file private so it also allocates its own file\n private and then assigns it to the same file structure, since both\n tasks are using the same file descriptor.\n\n At this point we leak the private structure allocated by task A.\n\nBesides the memory leak, there\u0027s also the detail that both tasks end up\nusing the same cached state record in the private structure (struct\nbtrfs_file_private::llseek_cached_state), which can result in a\nuse-after-free problem since one task can free it while the other is\nstill using it (only one task took a reference count on it). Also, sharing\nthe cached state is not a good idea since it could result in incorrect\nresults in the future - right now it should not be a problem because it\nend ups being used only in extent-io-tree.c:count_range_bits() where we do\nrange validation before using the cached state.\n\nFix this by protecting the private assignment and check of a file while\nholding the inode\u0027s spinlock and keep track of the task that allocated\nthe private, so that it\u0027s used only by that task in order to prevent\nuser-after-free issues with the cached state record as well as potentially\nusing it incorrectly in the future.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47741",
"url": "https://www.suse.com/security/cve/CVE-2024-47741"
},
{
"category": "external",
"summary": "SUSE Bug 1231869 for CVE-2024-47741",
"url": "https://bugzilla.suse.com/1231869"
},
{
"category": "external",
"summary": "SUSE Bug 1231870 for CVE-2024-47741",
"url": "https://bugzilla.suse.com/1231870"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47741"
},
{
"cve": "CVE-2024-47742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Block path traversal\n\nMost firmware names are hardcoded strings, or are constructed from fairly\nconstrained format strings where the dynamic parts are just some hex\nnumbers or such.\n\nHowever, there are a couple codepaths in the kernel where firmware file\nnames contain string components that are passed through from a device or\nsemi-privileged userspace; the ones I could find (not counting interfaces\nthat require root privileges) are:\n\n - lpfc_sli4_request_firmware_update() seems to construct the firmware\n filename from \"ModelName\", a string that was previously parsed out of\n some descriptor (\"Vital Product Data\") in lpfc_fill_vpd()\n - nfp_net_fw_find() seems to construct a firmware filename from a model\n name coming from nfp_hwinfo_lookup(pf-\u003ehwinfo, \"nffw.partno\"), which I\n think parses some descriptor that was read from the device.\n (But this case likely isn\u0027t exploitable because the format string looks\n like \"netronome/nic_%s\", and there shouldn\u0027t be any *folders* starting\n with \"netronome/nic_\". The previous case was different because there,\n the \"%s\" is *at the start* of the format string.)\n - module_flash_fw_schedule() is reachable from the\n ETHTOOL_MSG_MODULE_FW_FLASH_ACT netlink command, which is marked as\n GENL_UNS_ADMIN_PERM (meaning CAP_NET_ADMIN inside a user namespace is\n enough to pass the privilege check), and takes a userspace-provided\n firmware name.\n (But I think to reach this case, you need to have CAP_NET_ADMIN over a\n network namespace that a special kind of ethernet device is mapped into,\n so I think this is not a viable attack path in practice.)\n\nFix it by rejecting any firmware names containing \"..\" path components.\n\nFor what it\u0027s worth, I went looking and haven\u0027t found any USB device\ndrivers that use the firmware loader dangerously.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47742",
"url": "https://www.suse.com/security/cve/CVE-2024-47742"
},
{
"category": "external",
"summary": "SUSE Bug 1232126 for CVE-2024-47742",
"url": "https://bugzilla.suse.com/1232126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47742"
},
{
"cve": "CVE-2024-47743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: prevent NULL pointer dereference in find_asymmetric_key()\n\nIn find_asymmetric_key(), if all NULLs are passed in the id_{0,1,2}\narguments, the kernel will first emit WARN but then have an oops\nbecause id_2 gets dereferenced anyway.\n\nAdd the missing id_2 check and move WARN_ON() to the final else branch\nto avoid duplicate NULL checks.\n\nFound by Linux Verification Center (linuxtesting.org) with Svace static\nanalysis tool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47743",
"url": "https://www.suse.com/security/cve/CVE-2024-47743"
},
{
"category": "external",
"summary": "SUSE Bug 1232129 for CVE-2024-47743",
"url": "https://bugzilla.suse.com/1232129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47743"
},
{
"cve": "CVE-2024-47744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: Use dedicated mutex to protect kvm_usage_count to avoid deadlock\n\nUse a dedicated mutex to guard kvm_usage_count to fix a potential deadlock\non x86 due to a chain of locks and SRCU synchronizations. Translating the\nbelow lockdep splat, CPU1 #6 will wait on CPU0 #1, CPU0 #8 will wait on\nCPU2 #3, and CPU2 #7 will wait on CPU1 #4 (if there\u0027s a writer, due to the\nfairness of r/w semaphores).\n\n CPU0 CPU1 CPU2\n1 lock(\u0026kvm-\u003eslots_lock);\n2 lock(\u0026vcpu-\u003emutex);\n3 lock(\u0026kvm-\u003esrcu);\n4 lock(cpu_hotplug_lock);\n5 lock(kvm_lock);\n6 lock(\u0026kvm-\u003eslots_lock);\n7 lock(cpu_hotplug_lock);\n8 sync(\u0026kvm-\u003esrcu);\n\nNote, there are likely more potential deadlocks in KVM x86, e.g. the same\npattern of taking cpu_hotplug_lock outside of kvm_lock likely exists with\n__kvmclock_cpufreq_notifier():\n\n cpuhp_cpufreq_online()\n |\n -\u003e cpufreq_online()\n |\n -\u003e cpufreq_gov_performance_limits()\n |\n -\u003e __cpufreq_driver_target()\n |\n -\u003e __target_index()\n |\n -\u003e cpufreq_freq_transition_begin()\n |\n -\u003e cpufreq_notify_transition()\n |\n -\u003e ... __kvmclock_cpufreq_notifier()\n\nBut, actually triggering such deadlocks is beyond rare due to the\ncombination of dependencies and timings involved. E.g. the cpufreq\nnotifier is only used on older CPUs without a constant TSC, mucking with\nthe NX hugepage mitigation while VMs are running is very uncommon, and\ndoing so while also onlining/offlining a CPU (necessary to generate\ncontention on cpu_hotplug_lock) would be even more unusual.\n\nThe most robust solution to the general cpu_hotplug_lock issue is likely\nto switch vm_list to be an RCU-protected list, e.g. so that x86\u0027s cpufreq\nnotifier doesn\u0027t to take kvm_lock. For now, settle for fixing the most\nblatant deadlock, as switching to an RCU-protected list is a much more\ninvolved change, but add a comment in locking.rst to call out that care\nneeds to be taken when walking holding kvm_lock and walking vm_list.\n\n ======================================================\n WARNING: possible circular locking dependency detected\n 6.10.0-smp--c257535a0c9d-pip #330 Tainted: G S O\n ------------------------------------------------------\n tee/35048 is trying to acquire lock:\n ff6a80eced71e0a8 (\u0026kvm-\u003eslots_lock){+.+.}-{3:3}, at: set_nx_huge_pages+0x179/0x1e0 [kvm]\n\n but task is already holding lock:\n ffffffffc07abb08 (kvm_lock){+.+.}-{3:3}, at: set_nx_huge_pages+0x14a/0x1e0 [kvm]\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #3 (kvm_lock){+.+.}-{3:3}:\n __mutex_lock+0x6a/0xb40\n mutex_lock_nested+0x1f/0x30\n kvm_dev_ioctl+0x4fb/0xe50 [kvm]\n __se_sys_ioctl+0x7b/0xd0\n __x64_sys_ioctl+0x21/0x30\n x64_sys_call+0x15d0/0x2e60\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n -\u003e #2 (cpu_hotplug_lock){++++}-{0:0}:\n cpus_read_lock+0x2e/0xb0\n static_key_slow_inc+0x16/0x30\n kvm_lapic_set_base+0x6a/0x1c0 [kvm]\n kvm_set_apic_base+0x8f/0xe0 [kvm]\n kvm_set_msr_common+0x9ae/0xf80 [kvm]\n vmx_set_msr+0xa54/0xbe0 [kvm_intel]\n __kvm_set_msr+0xb6/0x1a0 [kvm]\n kvm_arch_vcpu_ioctl+0xeca/0x10c0 [kvm]\n kvm_vcpu_ioctl+0x485/0x5b0 [kvm]\n __se_sys_ioctl+0x7b/0xd0\n __x64_sys_ioctl+0x21/0x30\n x64_sys_call+0x15d0/0x2e60\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n -\u003e #1 (\u0026kvm-\u003esrcu){.+.+}-{0:0}:\n __synchronize_srcu+0x44/0x1a0\n \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47744",
"url": "https://www.suse.com/security/cve/CVE-2024-47744"
},
{
"category": "external",
"summary": "SUSE Bug 1232132 for CVE-2024-47744",
"url": "https://bugzilla.suse.com/1232132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47744"
},
{
"cve": "CVE-2024-47745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: call the security_mmap_file() LSM hook in remap_file_pages()\n\nThe remap_file_pages syscall handler calls do_mmap() directly, which\ndoesn\u0027t contain the LSM security check. And if the process has called\npersonality(READ_IMPLIES_EXEC) before and remap_file_pages() is called for\nRW pages, this will actually result in remapping the pages to RWX,\nbypassing a W^X policy enforced by SELinux.\n\nSo we should check prot by security_mmap_file LSM hook in the\nremap_file_pages syscall handler before do_mmap() is called. Otherwise, it\npotentially permits an attacker to bypass a W^X policy enforced by\nSELinux.\n\nThe bypass is similar to CVE-2016-10044, which bypass the same thing via\nAIO and can be found in [1].\n\nThe PoC:\n\n$ cat \u003e test.c\n\nint main(void) {\n\tsize_t pagesz = sysconf(_SC_PAGE_SIZE);\n\tint mfd = syscall(SYS_memfd_create, \"test\", 0);\n\tconst char *buf = mmap(NULL, 4 * pagesz, PROT_READ | PROT_WRITE,\n\t\tMAP_SHARED, mfd, 0);\n\tunsigned int old = syscall(SYS_personality, 0xffffffff);\n\tsyscall(SYS_personality, READ_IMPLIES_EXEC | old);\n\tsyscall(SYS_remap_file_pages, buf, pagesz, 0, 2, 0);\n\tsyscall(SYS_personality, old);\n\t// show the RWX page exists even if W^X policy is enforced\n\tint fd = open(\"/proc/self/maps\", O_RDONLY);\n\tunsigned char buf2[1024];\n\twhile (1) {\n\t\tint ret = read(fd, buf2, 1024);\n\t\tif (ret \u003c= 0) break;\n\t\twrite(1, buf2, ret);\n\t}\n\tclose(fd);\n}\n\n$ gcc test.c -o test\n$ ./test | grep rwx\n7f1836c34000-7f1836c35000 rwxs 00002000 00:01 2050 /memfd:test (deleted)\n\n[PM: subject line tweaks]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47745",
"url": "https://www.suse.com/security/cve/CVE-2024-47745"
},
{
"category": "external",
"summary": "SUSE Bug 1232135 for CVE-2024-47745",
"url": "https://bugzilla.suse.com/1232135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47745"
},
{
"cve": "CVE-2024-47746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: use exclusive lock when FUSE_I_CACHE_IO_MODE is set\n\nThis may be a typo. The comment has said shared locks are\nnot allowed when this bit is set. If using shared lock, the\nwait in `fuse_file_cached_io_open` may be forever.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47746",
"url": "https://www.suse.com/security/cve/CVE-2024-47746"
},
{
"category": "external",
"summary": "SUSE Bug 1232137 for CVE-2024-47746",
"url": "https://bugzilla.suse.com/1232137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47746"
},
{
"cve": "CVE-2024-47747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition\n\nIn the ether3_probe function, a timer is initialized with a callback\nfunction ether3_ledoff, bound to \u0026prev(dev)-\u003etimer. Once the timer is\nstarted, there is a risk of a race condition if the module or device\nis removed, triggering the ether3_remove function to perform cleanup.\nThe sequence of operations that may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | ether3_ledoff\nether3_remove |\n free_netdev(dev); |\n put_devic |\n kfree(dev); |\n | ether3_outw(priv(dev)-\u003eregs.config2 |= CFG2_CTRLO, REG_CONFIG2);\n | // use dev\n\nFix it by ensuring that the timer is canceled before proceeding with\nthe cleanup in ether3_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47747",
"url": "https://www.suse.com/security/cve/CVE-2024-47747"
},
{
"category": "external",
"summary": "SUSE Bug 1232145 for CVE-2024-47747",
"url": "https://bugzilla.suse.com/1232145"
},
{
"category": "external",
"summary": "SUSE Bug 1232146 for CVE-2024-47747",
"url": "https://bugzilla.suse.com/1232146"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47747"
},
{
"cve": "CVE-2024-47748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47748"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost_vdpa: assign irq bypass producer token correctly\n\nWe used to call irq_bypass_unregister_producer() in\nvhost_vdpa_setup_vq_irq() which is problematic as we don\u0027t know if the\ntoken pointer is still valid or not.\n\nActually, we use the eventfd_ctx as the token so the life cycle of the\ntoken should be bound to the VHOST_SET_VRING_CALL instead of\nvhost_vdpa_setup_vq_irq() which could be called by set_status().\n\nFixing this by setting up irq bypass producer\u0027s token when handling\nVHOST_SET_VRING_CALL and un-registering the producer before calling\nvhost_vring_ioctl() to prevent a possible use after free as eventfd\ncould have been released in vhost_vring_ioctl(). And such registering\nand unregistering will only be done if DRIVER_OK is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47748",
"url": "https://www.suse.com/security/cve/CVE-2024-47748"
},
{
"category": "external",
"summary": "SUSE Bug 1232174 for CVE-2024-47748",
"url": "https://bugzilla.suse.com/1232174"
},
{
"category": "external",
"summary": "SUSE Bug 1232177 for CVE-2024-47748",
"url": "https://bugzilla.suse.com/1232177"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47748"
},
{
"cve": "CVE-2024-47749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cxgb4: Added NULL check for lookup_atid\n\nThe lookup_atid() function can return NULL if the ATID is\ninvalid or does not exist in the identifier table, which\ncould lead to dereferencing a null pointer without a\ncheck in the `act_establish()` and `act_open_rpl()` functions.\nAdd a NULL check to prevent null pointer dereferencing.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47749",
"url": "https://www.suse.com/security/cve/CVE-2024-47749"
},
{
"category": "external",
"summary": "SUSE Bug 1232180 for CVE-2024-47749",
"url": "https://bugzilla.suse.com/1232180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47749"
},
{
"cve": "CVE-2024-47750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix Use-After-Free of rsv_qp on HIP08\n\nCurrently rsv_qp is freed before ib_unregister_device() is called\non HIP08. During the time interval, users can still dereg MR and\nrsv_qp will be used in this process, leading to a UAF. Move the\nrelease of rsv_qp after calling ib_unregister_device() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47750",
"url": "https://www.suse.com/security/cve/CVE-2024-47750"
},
{
"category": "external",
"summary": "SUSE Bug 1232182 for CVE-2024-47750",
"url": "https://bugzilla.suse.com/1232182"
},
{
"category": "external",
"summary": "SUSE Bug 1232829 for CVE-2024-47750",
"url": "https://bugzilla.suse.com/1232829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47750"
},
{
"cve": "CVE-2024-47751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()\n\nWithin kirin_pcie_parse_port(), the pcie-\u003enum_slots is compared to\npcie-\u003egpio_id_reset size (MAX_PCI_SLOTS) which is correct and would lead\nto an overflow.\n\nThus, fix condition to pcie-\u003enum_slots + 1 \u003e= MAX_PCI_SLOTS and move\npcie-\u003enum_slots increment below the if-statement to avoid out-of-bounds\narray access.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.\n\n[kwilczynski: commit log]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47751",
"url": "https://www.suse.com/security/cve/CVE-2024-47751"
},
{
"category": "external",
"summary": "SUSE Bug 1232127 for CVE-2024-47751",
"url": "https://bugzilla.suse.com/1232127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47751"
},
{
"cve": "CVE-2024-47752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mediatek: vcodec: Fix H264 stateless decoder smatch warning\n\nFix a smatch static checker warning on vdec_h264_req_if.c.\nWhich leads to a kernel crash when fb is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47752",
"url": "https://www.suse.com/security/cve/CVE-2024-47752"
},
{
"category": "external",
"summary": "SUSE Bug 1232130 for CVE-2024-47752",
"url": "https://bugzilla.suse.com/1232130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47752"
},
{
"cve": "CVE-2024-47753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mediatek: vcodec: Fix VP8 stateless decoder smatch warning\n\nFix a smatch static checker warning on vdec_vp8_req_if.c.\nWhich leads to a kernel crash when fb is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47753",
"url": "https://www.suse.com/security/cve/CVE-2024-47753"
},
{
"category": "external",
"summary": "SUSE Bug 1231868 for CVE-2024-47753",
"url": "https://bugzilla.suse.com/1231868"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47753"
},
{
"cve": "CVE-2024-47754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mediatek: vcodec: Fix H264 multi stateless decoder smatch warning\n\nFix a smatch static checker warning on vdec_h264_req_multi_if.c.\nWhich leads to a kernel crash when fb is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47754",
"url": "https://www.suse.com/security/cve/CVE-2024-47754"
},
{
"category": "external",
"summary": "SUSE Bug 1232131 for CVE-2024-47754",
"url": "https://bugzilla.suse.com/1232131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47754"
},
{
"cve": "CVE-2024-47756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: keystone: Fix if-statement expression in ks_pcie_quirk()\n\nThis code accidentally uses \u0026\u0026 where || was intended. It potentially\nresults in a NULL dereference.\n\nThus, fix the if-statement expression to use the correct condition.\n\n[kwilczynski: commit log]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47756",
"url": "https://www.suse.com/security/cve/CVE-2024-47756"
},
{
"category": "external",
"summary": "SUSE Bug 1232185 for CVE-2024-47756",
"url": "https://bugzilla.suse.com/1232185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-47756"
},
{
"cve": "CVE-2024-47757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential oob read in nilfs_btree_check_delete()\n\nThe function nilfs_btree_check_delete(), which checks whether degeneration\nto direct mapping occurs before deleting a b-tree entry, causes memory\naccess outside the block buffer when retrieving the maximum key if the\nroot node has no entries.\n\nThis does not usually happen because b-tree mappings with 0 child nodes\nare never created by mkfs.nilfs2 or nilfs2 itself. However, it can happen\nif the b-tree root node read from a device is configured that way, so fix\nthis potential issue by adding a check for that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47757",
"url": "https://www.suse.com/security/cve/CVE-2024-47757"
},
{
"category": "external",
"summary": "SUSE Bug 1232187 for CVE-2024-47757",
"url": "https://bugzilla.suse.com/1232187"
},
{
"category": "external",
"summary": "SUSE Bug 1232188 for CVE-2024-47757",
"url": "https://bugzilla.suse.com/1232188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-47757"
},
{
"cve": "CVE-2024-49850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos\n\nIn case of malformed relocation record of kind BPF_CORE_TYPE_ID_LOCAL\nreferencing a non-existing BTF type, function bpf_core_calc_relo_insn\nwould cause a null pointer deference.\n\nFix this by adding a proper check upper in call stack, as malformed\nrelocation records could be passed from user space.\n\nSimplest reproducer is a program:\n\n r0 = 0\n exit\n\nWith a single relocation record:\n\n .insn_off = 0, /* patch first instruction */\n .type_id = 100500, /* this type id does not exist */\n .access_str_off = 6, /* offset of string \"0\" */\n .kind = BPF_CORE_TYPE_ID_LOCAL,\n\nSee the link for original reproducer or next commit for a test case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49850",
"url": "https://www.suse.com/security/cve/CVE-2024-49850"
},
{
"category": "external",
"summary": "SUSE Bug 1232189 for CVE-2024-49850",
"url": "https://bugzilla.suse.com/1232189"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49850"
},
{
"cve": "CVE-2024-49851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Clean up TPM space after command failure\n\ntpm_dev_transmit prepares the TPM space before attempting command\ntransmission. However if the command fails no rollback of this\npreparation is done. This can result in transient handles being leaked\nif the device is subsequently closed with no further commands performed.\n\nFix this by flushing the space in the event of command transmission\nfailure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49851",
"url": "https://www.suse.com/security/cve/CVE-2024-49851"
},
{
"category": "external",
"summary": "SUSE Bug 1232134 for CVE-2024-49851",
"url": "https://bugzilla.suse.com/1232134"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49851"
},
{
"cve": "CVE-2024-49852",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49852"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()\n\nThe kref_put() function will call nport-\u003erelease if the refcount drops to\nzero. The nport-\u003erelease release function is _efc_nport_free() which frees\n\"nport\". But then we dereference \"nport\" on the next line which is a use\nafter free. Re-order these lines to avoid the use after free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49852",
"url": "https://www.suse.com/security/cve/CVE-2024-49852"
},
{
"category": "external",
"summary": "SUSE Bug 1232819 for CVE-2024-49852",
"url": "https://bugzilla.suse.com/1232819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49852"
},
{
"cve": "CVE-2024-49853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49853"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Fix double free in OPTEE transport\n\nChannels can be shared between protocols, avoid freeing the same channel\ndescriptors twice when unloading the stack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49853",
"url": "https://www.suse.com/security/cve/CVE-2024-49853"
},
{
"category": "external",
"summary": "SUSE Bug 1232192 for CVE-2024-49853",
"url": "https://bugzilla.suse.com/1232192"
},
{
"category": "external",
"summary": "SUSE Bug 1232828 for CVE-2024-49853",
"url": "https://bugzilla.suse.com/1232828"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49853"
},
{
"cve": "CVE-2024-49854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49854"
}
],
"notes": [
{
"category": "general",
"text": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49854",
"url": "https://www.suse.com/security/cve/CVE-2024-49854"
},
{
"category": "external",
"summary": "SUSE Bug 1232193 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1232193"
},
{
"category": "external",
"summary": "SUSE Bug 1236571 for CVE-2024-49854",
"url": "https://bugzilla.suse.com/1236571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49854"
},
{
"cve": "CVE-2024-49855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: fix race between timeout and normal completion\n\nIf request timetout is handled by nbd_requeue_cmd(), normal completion\nhas to be stopped for avoiding to complete this requeued request, other\nuse-after-free can be triggered.\n\nFix the race by clearing NBD_CMD_INFLIGHT in nbd_requeue_cmd(), meantime\nmake sure that cmd-\u003elock is grabbed for clearing the flag and the\nrequeue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49855",
"url": "https://www.suse.com/security/cve/CVE-2024-49855"
},
{
"category": "external",
"summary": "SUSE Bug 1232195 for CVE-2024-49855",
"url": "https://bugzilla.suse.com/1232195"
},
{
"category": "external",
"summary": "SUSE Bug 1232900 for CVE-2024-49855",
"url": "https://bugzilla.suse.com/1232900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49855"
},
{
"cve": "CVE-2024-49856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49856"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/sgx: Fix deadlock in SGX NUMA node search\n\nWhen the current node doesn\u0027t have an EPC section configured by firmware\nand all other EPC sections are used up, CPU can get stuck inside the\nwhile loop that looks for an available EPC page from remote nodes\nindefinitely, leading to a soft lockup. Note how nid_of_current will\nnever be equal to nid in that while loop because nid_of_current is not\nset in sgx_numa_mask.\n\nAlso worth mentioning is that it\u0027s perfectly fine for the firmware not\nto setup an EPC section on a node. While setting up an EPC section on\neach node can enhance performance, it is not a requirement for\nfunctionality.\n\nRework the loop to start and end on *a* node that has SGX memory. This\navoids the deadlock looking for the current SGX-lacking node to show up\nin the loop when it never will.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49856",
"url": "https://www.suse.com/security/cve/CVE-2024-49856"
},
{
"category": "external",
"summary": "SUSE Bug 1232202 for CVE-2024-49856",
"url": "https://bugzilla.suse.com/1232202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49856"
},
{
"cve": "CVE-2024-49857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: set the cipher for secured NDP ranging\n\nThe cipher pointer is not set, but is derefereced trying to set its\ncontent, which leads to a NULL pointer dereference.\nFix it by pointing to the cipher parameter before dereferencing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49857",
"url": "https://www.suse.com/security/cve/CVE-2024-49857"
},
{
"category": "external",
"summary": "SUSE Bug 1232203 for CVE-2024-49857",
"url": "https://bugzilla.suse.com/1232203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49857"
},
{
"cve": "CVE-2024-49858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49858"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefistub/tpm: Use ACPI reclaim memory for event log to avoid corruption\n\nThe TPM event log table is a Linux specific construct, where the data\nproduced by the GetEventLog() boot service is cached in memory, and\npassed on to the OS using an EFI configuration table.\n\nThe use of EFI_LOADER_DATA here results in the region being left\nunreserved in the E820 memory map constructed by the EFI stub, and this\nis the memory description that is passed on to the incoming kernel by\nkexec, which is therefore unaware that the region should be reserved.\n\nEven though the utility of the TPM2 event log after a kexec is\nquestionable, any corruption might send the parsing code off into the\nweeds and crash the kernel. So let\u0027s use EFI_ACPI_RECLAIM_MEMORY\ninstead, which is always treated as reserved by the E820 conversion\nlogic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49858",
"url": "https://www.suse.com/security/cve/CVE-2024-49858"
},
{
"category": "external",
"summary": "SUSE Bug 1232251 for CVE-2024-49858",
"url": "https://bugzilla.suse.com/1232251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49858"
},
{
"cve": "CVE-2024-49859",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49859"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to check atomic_file in f2fs ioctl interfaces\n\nSome f2fs ioctl interfaces like f2fs_ioc_set_pin_file(),\nf2fs_move_file_range(), and f2fs_defragment_range() missed to\ncheck atomic_write status, which may cause potential race issue,\nfix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49859",
"url": "https://www.suse.com/security/cve/CVE-2024-49859"
},
{
"category": "external",
"summary": "SUSE Bug 1232252 for CVE-2024-49859",
"url": "https://bugzilla.suse.com/1232252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49859"
},
{
"cve": "CVE-2024-49860",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49860"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: sysfs: validate return type of _STR method\n\nOnly buffer objects are valid return values of _STR.\n\nIf something else is returned description_show() will access invalid\nmemory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49860",
"url": "https://www.suse.com/security/cve/CVE-2024-49860"
},
{
"category": "external",
"summary": "SUSE Bug 1231861 for CVE-2024-49860",
"url": "https://bugzilla.suse.com/1231861"
},
{
"category": "external",
"summary": "SUSE Bug 1231862 for CVE-2024-49860",
"url": "https://bugzilla.suse.com/1231862"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49860"
},
{
"cve": "CVE-2024-49861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix helper writes to read-only maps\n\nLonial found an issue that despite user- and BPF-side frozen BPF map\n(like in case of .rodata), it was still possible to write into it from\na BPF program side through specific helpers having ARG_PTR_TO_{LONG,INT}\nas arguments.\n\nIn check_func_arg() when the argument is as mentioned, the meta-\u003eraw_mode\nis never set. Later, check_helper_mem_access(), under the case of\nPTR_TO_MAP_VALUE as register base type, it assumes BPF_READ for the\nsubsequent call to check_map_access_type() and given the BPF map is\nread-only it succeeds.\n\nThe helpers really need to be annotated as ARG_PTR_TO_{LONG,INT} | MEM_UNINIT\nwhen results are written into them as opposed to read out of them. The\nlatter indicates that it\u0027s okay to pass a pointer to uninitialized memory\nas the memory is written to anyway.\n\nHowever, ARG_PTR_TO_{LONG,INT} is a special case of ARG_PTR_TO_FIXED_SIZE_MEM\njust with additional alignment requirement. So it is better to just get\nrid of the ARG_PTR_TO_{LONG,INT} special cases altogether and reuse the\nfixed size memory types. For this, add MEM_ALIGNED to additionally ensure\nalignment given these helpers write directly into the args via *\u003cptr\u003e = val.\nThe .arg*_size has been initialized reflecting the actual sizeof(*\u003cptr\u003e).\n\nMEM_ALIGNED can only be used in combination with MEM_FIXED_SIZE annotated\nargument types, since in !MEM_FIXED_SIZE cases the verifier does not know\nthe buffer size a priori and therefore cannot blindly write *\u003cptr\u003e = val.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49861",
"url": "https://www.suse.com/security/cve/CVE-2024-49861"
},
{
"category": "external",
"summary": "SUSE Bug 1232254 for CVE-2024-49861",
"url": "https://bugzilla.suse.com/1232254"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49861"
},
{
"cve": "CVE-2024-49862",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49862"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowercap: intel_rapl: Fix off by one in get_rpi()\n\nThe rp-\u003epriv-\u003erpi array is either rpi_msr or rpi_tpmi which have\nNR_RAPL_PRIMITIVES number of elements. Thus the \u003e needs to be \u003e=\nto prevent an off by one access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49862",
"url": "https://www.suse.com/security/cve/CVE-2024-49862"
},
{
"category": "external",
"summary": "SUSE Bug 1231871 for CVE-2024-49862",
"url": "https://bugzilla.suse.com/1231871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49862"
},
{
"cve": "CVE-2024-49863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost/scsi: null-ptr-dereference in vhost_scsi_get_req()\n\nSince commit 3f8ca2e115e5 (\"vhost/scsi: Extract common handling code\nfrom control queue handler\") a null pointer dereference bug can be\ntriggered when guest sends an SCSI AN request.\n\nIn vhost_scsi_ctl_handle_vq(), `vc.target` is assigned with\n`\u0026v_req.tmf.lun[1]` within a switch-case block and is then passed to\nvhost_scsi_get_req() which extracts `vc-\u003ereq` and `tpg`. However, for\na `VIRTIO_SCSI_T_AN_*` request, tpg is not required, so `vc.target` is\nset to NULL in this branch. Later, in vhost_scsi_get_req(),\n`vc-\u003etarget` is dereferenced without being checked, leading to a null\npointer dereference bug. This bug can be triggered from guest.\n\nWhen this bug occurs, the vhost_worker process is killed while holding\n`vq-\u003emutex` and the corresponding tpg will remain occupied\nindefinitely.\n\nBelow is the KASAN report:\nOops: general protection fault, probably for non-canonical address\n0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 PID: 840 Comm: poc Not tainted 6.10.0+ #1\nHardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS\n1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:vhost_scsi_get_req+0x165/0x3a0\nCode: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 2b 02 00 00\n48 b8 00 00 00 00 00 fc ff df 4d 8b 65 30 4c 89 e2 48 c1 ea 03 \u003c0f\u003e b6\n04 02 4c 89 e2 83 e2 07 38 d0 7f 08 84 c0 0f 85 be 01 00 00\nRSP: 0018:ffff888017affb50 EFLAGS: 00010246\nRAX: dffffc0000000000 RBX: ffff88801b000000 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888017affcb8\nRBP: ffff888017affb80 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff888017affc88 R14: ffff888017affd1c R15: ffff888017993000\nFS: 000055556e076500(0000) GS:ffff88806b100000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200027c0 CR3: 0000000010ed0004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x86/0xa0\n ? die_addr+0x4b/0xd0\n ? exc_general_protection+0x163/0x260\n ? asm_exc_general_protection+0x27/0x30\n ? vhost_scsi_get_req+0x165/0x3a0\n vhost_scsi_ctl_handle_vq+0x2a4/0xca0\n ? __pfx_vhost_scsi_ctl_handle_vq+0x10/0x10\n ? __switch_to+0x721/0xeb0\n ? __schedule+0xda5/0x5710\n ? __kasan_check_write+0x14/0x30\n ? _raw_spin_lock+0x82/0xf0\n vhost_scsi_ctl_handle_kick+0x52/0x90\n vhost_run_work_list+0x134/0x1b0\n vhost_task_fn+0x121/0x350\n...\n \u003c/TASK\u003e\n---[ end trace 0000000000000000 ]---\n\nLet\u0027s add a check in vhost_scsi_get_req.\n\n[whitespace fixes]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49863",
"url": "https://www.suse.com/security/cve/CVE-2024-49863"
},
{
"category": "external",
"summary": "SUSE Bug 1232255 for CVE-2024-49863",
"url": "https://bugzilla.suse.com/1232255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49863"
},
{
"cve": "CVE-2024-49864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49864"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix a race between socket set up and I/O thread creation\n\nIn rxrpc_open_socket(), it sets up the socket and then sets up the I/O\nthread that will handle it. This is a problem, however, as there\u0027s a gap\nbetween the two phases in which a packet may come into rxrpc_encap_rcv()\nfrom the UDP packet but we oops when trying to wake the not-yet created I/O\nthread.\n\nAs a quick fix, just make rxrpc_encap_rcv() discard the packet if there\u0027s\nno I/O thread yet.\n\nA better, but more intrusive fix would perhaps be to rearrange things such\nthat the socket creation is done by the I/O thread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49864",
"url": "https://www.suse.com/security/cve/CVE-2024-49864"
},
{
"category": "external",
"summary": "SUSE Bug 1232256 for CVE-2024-49864",
"url": "https://bugzilla.suse.com/1232256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49864"
},
{
"cve": "CVE-2024-49865",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49865"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/vm: move xa_alloc to prevent UAF\n\nEvil user can guess the next id of the vm before the ioctl completes and\nthen call vm destroy ioctl to trigger UAF since create ioctl is still\nreferencing the same vm. Move the xa_alloc all the way to the end to\nprevent this.\n\nv2:\n - Rebase\n\n(cherry picked from commit dcfd3971327f3ee92765154baebbaece833d3ca9)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49865",
"url": "https://www.suse.com/security/cve/CVE-2024-49865"
},
{
"category": "external",
"summary": "SUSE Bug 1232257 for CVE-2024-49865",
"url": "https://bugzilla.suse.com/1232257"
},
{
"category": "external",
"summary": "SUSE Bug 1232901 for CVE-2024-49865",
"url": "https://bugzilla.suse.com/1232901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49865"
},
{
"cve": "CVE-2024-49866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49866"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing/timerlat: Fix a race during cpuhp processing\n\nThere is another found exception that the \"timerlat/1\" thread was\nscheduled on CPU0, and lead to timer corruption finally:\n\n```\nODEBUG: init active (active state 0) object: ffff888237c2e108 object type: hrtimer hint: timerlat_irq+0x0/0x220\nWARNING: CPU: 0 PID: 426 at lib/debugobjects.c:518 debug_print_object+0x7d/0xb0\nModules linked in:\nCPU: 0 UID: 0 PID: 426 Comm: timerlat/1 Not tainted 6.11.0-rc7+ #45\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nRIP: 0010:debug_print_object+0x7d/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x7c/0x110\n ? debug_print_object+0x7d/0xb0\n ? report_bug+0xf1/0x1d0\n ? prb_read_valid+0x17/0x20\n ? handle_bug+0x3f/0x70\n ? exc_invalid_op+0x13/0x60\n ? asm_exc_invalid_op+0x16/0x20\n ? debug_print_object+0x7d/0xb0\n ? debug_print_object+0x7d/0xb0\n ? __pfx_timerlat_irq+0x10/0x10\n __debug_object_init+0x110/0x150\n hrtimer_init+0x1d/0x60\n timerlat_main+0xab/0x2d0\n ? __pfx_timerlat_main+0x10/0x10\n kthread+0xb7/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n```\n\nAfter tracing the scheduling event, it was discovered that the migration\nof the \"timerlat/1\" thread was performed during thread creation. Further\nanalysis confirmed that it is because the CPU online processing for\nosnoise is implemented through workers, which is asynchronous with the\noffline processing. When the worker was scheduled to create a thread, the\nCPU may has already been removed from the cpu_online_mask during the offline\nprocess, resulting in the inability to select the right CPU:\n\nT1 | T2\n[CPUHP_ONLINE] | cpu_device_down()\nosnoise_hotplug_workfn() |\n | cpus_write_lock()\n | takedown_cpu(1)\n | cpus_write_unlock()\n[CPUHP_OFFLINE] |\n cpus_read_lock() |\n start_kthread(1) |\n cpus_read_unlock() |\n\nTo fix this, skip online processing if the CPU is already offline.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49866",
"url": "https://www.suse.com/security/cve/CVE-2024-49866"
},
{
"category": "external",
"summary": "SUSE Bug 1232259 for CVE-2024-49866",
"url": "https://bugzilla.suse.com/1232259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49866"
},
{
"cve": "CVE-2024-49867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49867"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: wait for fixup workers before stopping cleaner kthread during umount\n\nDuring unmount, at close_ctree(), we have the following steps in this order:\n\n1) Park the cleaner kthread - this doesn\u0027t destroy the kthread, it basically\n halts its execution (wake ups against it work but do nothing);\n\n2) We stop the cleaner kthread - this results in freeing the respective\n struct task_struct;\n\n3) We call btrfs_stop_all_workers() which waits for any jobs running in all\n the work queues and then free the work queues.\n\nSyzbot reported a case where a fixup worker resulted in a crash when doing\na delayed iput on its inode while attempting to wake up the cleaner at\nbtrfs_add_delayed_iput(), because the task_struct of the cleaner kthread\nwas already freed. This can happen during unmount because we don\u0027t wait\nfor any fixup workers still running before we call kthread_stop() against\nthe cleaner kthread, which stops and free all its resources.\n\nFix this by waiting for any fixup workers at close_ctree() before we call\nkthread_stop() against the cleaner and run pending delayed iputs.\n\nThe stack traces reported by syzbot were the following:\n\n BUG: KASAN: slab-use-after-free in __lock_acquire+0x77/0x2050 kernel/locking/lockdep.c:5065\n Read of size 8 at addr ffff8880272a8a18 by task kworker/u8:3/52\n\n CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.12.0-rc1-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n Workqueue: btrfs-fixup btrfs_work_helper\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n __lock_acquire+0x77/0x2050 kernel/locking/lockdep.c:5065\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5825\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xd5/0x120 kernel/locking/spinlock.c:162\n class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:551 [inline]\n try_to_wake_up+0xb0/0x1480 kernel/sched/core.c:4154\n btrfs_writepage_fixup_worker+0xc16/0xdf0 fs/btrfs/inode.c:2842\n btrfs_work_helper+0x390/0xc50 fs/btrfs/async-thread.c:314\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa63/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e\n\n Allocated by task 2:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:319 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:345\n kasan_slab_alloc include/linux/kasan.h:247 [inline]\n slab_post_alloc_hook mm/slub.c:4086 [inline]\n slab_alloc_node mm/slub.c:4135 [inline]\n kmem_cache_alloc_node_noprof+0x16b/0x320 mm/slub.c:4187\n alloc_task_struct_node kernel/fork.c:180 [inline]\n dup_task_struct+0x57/0x8c0 kernel/fork.c:1107\n copy_process+0x5d1/0x3d50 kernel/fork.c:2206\n kernel_clone+0x223/0x880 kernel/fork.c:2787\n kernel_thread+0x1bc/0x240 kernel/fork.c:2849\n create_kthread kernel/kthread.c:412 [inline]\n kthreadd+0x60d/0x810 kernel/kthread.c:765\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\n Freed by task 61:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object mm/kasan/common.c:247 [inline]\n __kasan_slab_free+0x59/0x70 mm/kasan/common.c:264\n kasan_slab_free include/linux/kasan.h:230 [inline]\n slab_free_h\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49867",
"url": "https://www.suse.com/security/cve/CVE-2024-49867"
},
{
"category": "external",
"summary": "SUSE Bug 1232262 for CVE-2024-49867",
"url": "https://bugzilla.suse.com/1232262"
},
{
"category": "external",
"summary": "SUSE Bug 1232271 for CVE-2024-49867",
"url": "https://bugzilla.suse.com/1232271"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49867"
},
{
"cve": "CVE-2024-49868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49868"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a NULL pointer dereference when failed to start a new trasacntion\n\n[BUG]\nSyzbot reported a NULL pointer dereference with the following crash:\n\n FAULT_INJECTION: forcing a failure.\n start_transaction+0x830/0x1670 fs/btrfs/transaction.c:676\n prepare_to_relocate+0x31f/0x4c0 fs/btrfs/relocation.c:3642\n relocate_block_group+0x169/0xd20 fs/btrfs/relocation.c:3678\n ...\n BTRFS info (device loop0): balance: ended with status: -12\n Oops: general protection fault, probably for non-canonical address 0xdffffc00000000cc: 0000 [#1] PREEMPT SMP KASAN NOPTI\n KASAN: null-ptr-deref in range [0x0000000000000660-0x0000000000000667]\n RIP: 0010:btrfs_update_reloc_root+0x362/0xa80 fs/btrfs/relocation.c:926\n Call Trace:\n \u003cTASK\u003e\n commit_fs_roots+0x2ee/0x720 fs/btrfs/transaction.c:1496\n btrfs_commit_transaction+0xfaf/0x3740 fs/btrfs/transaction.c:2430\n del_balance_item fs/btrfs/volumes.c:3678 [inline]\n reset_balance_state+0x25e/0x3c0 fs/btrfs/volumes.c:3742\n btrfs_balance+0xead/0x10c0 fs/btrfs/volumes.c:4574\n btrfs_ioctl_balance+0x493/0x7c0 fs/btrfs/ioctl.c:3673\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xf9/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[CAUSE]\nThe allocation failure happens at the start_transaction() inside\nprepare_to_relocate(), and during the error handling we call\nunset_reloc_control(), which makes fs_info-\u003ebalance_ctl to be NULL.\n\nThen we continue the error path cleanup in btrfs_balance() by calling\nreset_balance_state() which will call del_balance_item() to fully delete\nthe balance item in the root tree.\n\nHowever during the small window between set_reloc_contrl() and\nunset_reloc_control(), we can have a subvolume tree update and created a\nreloc_root for that subvolume.\n\nThen we go into the final btrfs_commit_transaction() of\ndel_balance_item(), and into btrfs_update_reloc_root() inside\ncommit_fs_roots().\n\nThat function checks if fs_info-\u003ereloc_ctl is in the merge_reloc_tree\nstage, but since fs_info-\u003ereloc_ctl is NULL, it results a NULL pointer\ndereference.\n\n[FIX]\nJust add extra check on fs_info-\u003ereloc_ctl inside\nbtrfs_update_reloc_root(), before checking\nfs_info-\u003ereloc_ctl-\u003emerge_reloc_tree.\n\nThat DEAD_RELOC_TREE handling is to prevent further modification to the\nreloc tree during merge stage, but since there is no reloc_ctl at all,\nwe do not need to bother that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49868",
"url": "https://www.suse.com/security/cve/CVE-2024-49868"
},
{
"category": "external",
"summary": "SUSE Bug 1232272 for CVE-2024-49868",
"url": "https://bugzilla.suse.com/1232272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49868"
},
{
"cve": "CVE-2024-49869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49869"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: send: fix buffer overflow detection when copying path to cache entry\n\nStarting with commit c0247d289e73 (\"btrfs: send: annotate struct\nname_cache_entry with __counted_by()\") we annotated the variable length\narray \"name\" from the name_cache_entry structure with __counted_by() to\nimprove overflow detection. However that alone was not correct, because\nthe length of that array does not match the \"name_len\" field - it matches\nthat plus 1 to include the NUL string terminator, so that makes a\nfortified kernel think there\u0027s an overflow and report a splat like this:\n\n strcpy: detected buffer overflow: 20 byte write of buffer size 19\n WARNING: CPU: 3 PID: 3310 at __fortify_report+0x45/0x50\n CPU: 3 UID: 0 PID: 3310 Comm: btrfs Not tainted 6.11.0-prnet #1\n Hardware name: CompuLab Ltd. sbc-ihsw/Intense-PC2 (IPC2), BIOS IPC2_3.330.7 X64 03/15/2018\n RIP: 0010:__fortify_report+0x45/0x50\n Code: 48 8b 34 (...)\n RSP: 0018:ffff97ebc0d6f650 EFLAGS: 00010246\n RAX: 7749924ef60fa600 RBX: ffff8bf5446a521a RCX: 0000000000000027\n RDX: 00000000ffffdfff RSI: ffff97ebc0d6f548 RDI: ffff8bf84e7a1cc8\n RBP: ffff8bf548574080 R08: ffffffffa8c40e10 R09: 0000000000005ffd\n R10: 0000000000000004 R11: ffffffffa8c70e10 R12: ffff8bf551eef400\n R13: 0000000000000000 R14: 0000000000000013 R15: 00000000000003a8\n FS: 00007fae144de8c0(0000) GS:ffff8bf84e780000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fae14691690 CR3: 00000001027a2003 CR4: 00000000001706f0\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x12a/0x1d0\n ? __fortify_report+0x45/0x50\n ? report_bug+0x154/0x1c0\n ? handle_bug+0x42/0x70\n ? exc_invalid_op+0x1a/0x50\n ? asm_exc_invalid_op+0x1a/0x20\n ? __fortify_report+0x45/0x50\n __fortify_panic+0x9/0x10\n __get_cur_name_and_parent+0x3bc/0x3c0\n get_cur_path+0x207/0x3b0\n send_extent_data+0x709/0x10d0\n ? find_parent_nodes+0x22df/0x25d0\n ? mas_nomem+0x13/0x90\n ? mtree_insert_range+0xa5/0x110\n ? btrfs_lru_cache_store+0x5f/0x1e0\n ? iterate_extent_inodes+0x52d/0x5a0\n process_extent+0xa96/0x11a0\n ? __pfx_lookup_backref_cache+0x10/0x10\n ? __pfx_store_backref_cache+0x10/0x10\n ? __pfx_iterate_backrefs+0x10/0x10\n ? __pfx_check_extent_item+0x10/0x10\n changed_cb+0x6fa/0x930\n ? tree_advance+0x362/0x390\n ? memcmp_extent_buffer+0xd7/0x160\n send_subvol+0xf0a/0x1520\n btrfs_ioctl_send+0x106b/0x11d0\n ? __pfx___clone_root_cmp_sort+0x10/0x10\n _btrfs_ioctl_send+0x1ac/0x240\n btrfs_ioctl+0x75b/0x850\n __se_sys_ioctl+0xca/0x150\n do_syscall_64+0x85/0x160\n ? __count_memcg_events+0x69/0x100\n ? handle_mm_fault+0x1327/0x15c0\n ? __se_sys_rt_sigprocmask+0xf1/0x180\n ? syscall_exit_to_user_mode+0x75/0xa0\n ? do_syscall_64+0x91/0x160\n ? do_user_addr_fault+0x21d/0x630\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n RIP: 0033:0x7fae145eeb4f\n Code: 00 48 89 (...)\n RSP: 002b:00007ffdf1cb09b0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007fae145eeb4f\n RDX: 00007ffdf1cb0ad0 RSI: 0000000040489426 RDI: 0000000000000004\n RBP: 00000000000078fe R08: 00007fae144006c0 R09: 00007ffdf1cb0927\n R10: 0000000000000008 R11: 0000000000000246 R12: 00007ffdf1cb1ce8\n R13: 0000000000000003 R14: 000055c499fab2e0 R15: 0000000000000004\n \u003c/TASK\u003e\n\nFix this by not storing the NUL string terminator since we don\u0027t actually\nneed it for name cache entries, this way \"name_len\" corresponds to the\nactual size of the \"name\" array. This requires marking the \"name\" array\nfield with __nonstring and using memcpy() instead of strcpy() as\nrecommended by the guidelines at:\n\n https://github.com/KSPP/linux/issues/90",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49869",
"url": "https://www.suse.com/security/cve/CVE-2024-49869"
},
{
"category": "external",
"summary": "SUSE Bug 1232278 for CVE-2024-49869",
"url": "https://bugzilla.suse.com/1232278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49869"
},
{
"cve": "CVE-2024-49870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: fix dentry leak in cachefiles_open_file()\n\nA dentry leak may be caused when a lookup cookie and a cull are concurrent:\n\n P1 | P2\n-----------------------------------------------------------\ncachefiles_lookup_cookie\n cachefiles_look_up_object\n lookup_one_positive_unlocked\n // get dentry\n cachefiles_cull\n inode-\u003ei_flags |= S_KERNEL_FILE;\n cachefiles_open_file\n cachefiles_mark_inode_in_use\n __cachefiles_mark_inode_in_use\n can_use = false\n if (!(inode-\u003ei_flags \u0026 S_KERNEL_FILE))\n can_use = true\n\t return false\n return false\n // Returns an error but doesn\u0027t put dentry\n\nAfter that the following WARNING will be triggered when the backend folder\nis umounted:\n\n==================================================================\nBUG: Dentry 000000008ad87947{i=7a,n=Dx_1_1.img} still in use (1) [unmount of ext4 sda]\nWARNING: CPU: 4 PID: 359261 at fs/dcache.c:1767 umount_check+0x5d/0x70\nCPU: 4 PID: 359261 Comm: umount Not tainted 6.6.0-dirty #25\nRIP: 0010:umount_check+0x5d/0x70\nCall Trace:\n \u003cTASK\u003e\n d_walk+0xda/0x2b0\n do_one_tree+0x20/0x40\n shrink_dcache_for_umount+0x2c/0x90\n generic_shutdown_super+0x20/0x160\n kill_block_super+0x1a/0x40\n ext4_kill_sb+0x22/0x40\n deactivate_locked_super+0x35/0x80\n cleanup_mnt+0x104/0x160\n==================================================================\n\nWhether cachefiles_open_file() returns true or false, the reference count\nobtained by lookup_positive_unlocked() in cachefiles_look_up_object()\nshould be released.\n\nTherefore release that reference count in cachefiles_look_up_object() to\nfix the above issue and simplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49870",
"url": "https://www.suse.com/security/cve/CVE-2024-49870"
},
{
"category": "external",
"summary": "SUSE Bug 1232279 for CVE-2024-49870",
"url": "https://bugzilla.suse.com/1232279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49870"
},
{
"cve": "CVE-2024-49871",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49871"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: adp5589-keys - fix NULL pointer dereference\n\nWe register a devm action to call adp5589_clear_config() and then pass\nthe i2c client as argument so that we can call i2c_get_clientdata() in\norder to get our device object. However, i2c_set_clientdata() is only\nbeing set at the end of the probe function which means that we\u0027ll get a\nNULL pointer dereference in case the probe function fails early.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49871",
"url": "https://www.suse.com/security/cve/CVE-2024-49871"
},
{
"category": "external",
"summary": "SUSE Bug 1232287 for CVE-2024-49871",
"url": "https://bugzilla.suse.com/1232287"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49871"
},
{
"cve": "CVE-2024-49872",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49872"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/gup: fix memfd_pin_folios alloc race panic\n\nIf memfd_pin_folios tries to create a hugetlb page, but someone else\nalready did, then folio gets the value -EEXIST here:\n\n folio = memfd_alloc_folio(memfd, start_idx);\n if (IS_ERR(folio)) {\n ret = PTR_ERR(folio);\n if (ret != -EEXIST)\n goto err;\n\nthen on the next trip through the \"while start_idx\" loop we panic here:\n\n if (folio) {\n folio_put(folio);\n\nTo fix, set the folio to NULL on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49872",
"url": "https://www.suse.com/security/cve/CVE-2024-49872"
},
{
"category": "external",
"summary": "SUSE Bug 1232288 for CVE-2024-49872",
"url": "https://bugzilla.suse.com/1232288"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49872"
},
{
"cve": "CVE-2024-49873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49873"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/filemap: fix filemap_get_folios_contig THP panic\n\nPatch series \"memfd-pin huge page fixes\".\n\nFix multiple bugs that occur when using memfd_pin_folios with hugetlb\npages and THP. The hugetlb bugs only bite when the page is not yet\nfaulted in when memfd_pin_folios is called. The THP bug bites when the\nstarting offset passed to memfd_pin_folios is not huge page aligned. See\nthe commit messages for details.\n\n\nThis patch (of 5):\n\nmemfd_pin_folios on memory backed by THP panics if the requested start\noffset is not huge page aligned:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000036\nRIP: 0010:filemap_get_folios_contig+0xdf/0x290\nRSP: 0018:ffffc9002092fbe8 EFLAGS: 00010202\nRAX: 0000000000000002 RBX: 0000000000000002 RCX: 0000000000000002\n\nThe fault occurs here, because xas_load returns a folio with value 2:\n\n filemap_get_folios_contig()\n for (folio = xas_load(\u0026xas); folio \u0026\u0026 xas.xa_index \u003c= end;\n folio = xas_next(\u0026xas)) {\n ...\n if (!folio_try_get(folio)) \u003c-- BOOM\n\n\"2\" is an xarray sibling entry. We get it because memfd_pin_folios does\nnot round the indices passed to filemap_get_folios_contig to huge page\nboundaries for THP, so we load from the middle of a huge page range see a\nsibling. (It does round for hugetlbfs, at the is_file_hugepages test).\n\nTo fix, if the folio is a sibling, then return the next index as the\nstarting point for the next call to filemap_get_folios_contig.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49873",
"url": "https://www.suse.com/security/cve/CVE-2024-49873"
},
{
"category": "external",
"summary": "SUSE Bug 1232291 for CVE-2024-49873",
"url": "https://bugzilla.suse.com/1232291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49873"
},
{
"cve": "CVE-2024-49874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49874"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition\n\nIn the svc_i3c_master_probe function, \u0026master-\u003ehj_work is bound with\nsvc_i3c_master_hj_work, \u0026master-\u003eibi_work is bound with\nsvc_i3c_master_ibi_work. And svc_i3c_master_ibi_work can start the\nhj_work, svc_i3c_master_irq_handler can start the ibi_work.\n\nIf we remove the module which will call svc_i3c_master_remove to\nmake cleanup, it will free master-\u003ebase through i3c_master_unregister\nwhile the work mentioned above will be used. The sequence of operations\nthat may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | svc_i3c_master_hj_work\nsvc_i3c_master_remove |\ni3c_master_unregister(\u0026master-\u003ebase)|\ndevice_unregister(\u0026master-\u003edev) |\ndevice_release |\n//free master-\u003ebase |\n | i3c_master_do_daa(\u0026master-\u003ebase)\n | //use master-\u003ebase\n\nFix it by ensuring that the work is canceled before proceeding with the\ncleanup in svc_i3c_master_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49874",
"url": "https://www.suse.com/security/cve/CVE-2024-49874"
},
{
"category": "external",
"summary": "SUSE Bug 1232295 for CVE-2024-49874",
"url": "https://bugzilla.suse.com/1232295"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49874"
},
{
"cve": "CVE-2024-49875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49875"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: map the EBADMSG to nfserr_io to avoid warning\n\nExt4 will throw -EBADMSG through ext4_readdir when a checksum error\noccurs, resulting in the following WARNING.\n\nFix it by mapping EBADMSG to nfserr_io.\n\nnfsd_buffered_readdir\n iterate_dir // -EBADMSG -74\n ext4_readdir // .iterate_shared\n ext4_dx_readdir\n ext4_htree_fill_tree\n htree_dirblock_to_tree\n ext4_read_dirblock\n __ext4_read_dirblock\n ext4_dirblock_csum_verify\n warn_no_space_for_csum\n __warn_no_space_for_csum\n return ERR_PTR(-EFSBADCRC) // -EBADMSG -74\n nfserrno // WARNING\n\n[ 161.115610] ------------[ cut here ]------------\n[ 161.116465] nfsd: non-standard errno: -74\n[ 161.117315] WARNING: CPU: 1 PID: 780 at fs/nfsd/nfsproc.c:878 nfserrno+0x9d/0xd0\n[ 161.118596] Modules linked in:\n[ 161.119243] CPU: 1 PID: 780 Comm: nfsd Not tainted 5.10.0-00014-g79679361fd5d #138\n[ 161.120684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qe\nmu.org 04/01/2014\n[ 161.123601] RIP: 0010:nfserrno+0x9d/0xd0\n[ 161.124676] Code: 0f 87 da 30 dd 00 83 e3 01 b8 00 00 00 05 75 d7 44 89 ee 48 c7 c7 c0 57 24 98 89 44 24 04 c6\n 05 ce 2b 61 03 01 e8 99 20 d8 00 \u003c0f\u003e 0b 8b 44 24 04 eb b5 4c 89 e6 48 c7 c7 a0 6d a4 99 e8 cc 15 33\n[ 161.127797] RSP: 0018:ffffc90000e2f9c0 EFLAGS: 00010286\n[ 161.128794] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000\n[ 161.130089] RDX: 1ffff1103ee16f6d RSI: 0000000000000008 RDI: fffff520001c5f2a\n[ 161.131379] RBP: 0000000000000022 R08: 0000000000000001 R09: ffff8881f70c1827\n[ 161.132664] R10: ffffed103ee18304 R11: 0000000000000001 R12: 0000000000000021\n[ 161.133949] R13: 00000000ffffffb6 R14: ffff8881317c0000 R15: ffffc90000e2fbd8\n[ 161.135244] FS: 0000000000000000(0000) GS:ffff8881f7080000(0000) knlGS:0000000000000000\n[ 161.136695] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 161.137761] CR2: 00007fcaad70b348 CR3: 0000000144256006 CR4: 0000000000770ee0\n[ 161.139041] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 161.140291] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 161.141519] PKRU: 55555554\n[ 161.142076] Call Trace:\n[ 161.142575] ? __warn+0x9b/0x140\n[ 161.143229] ? nfserrno+0x9d/0xd0\n[ 161.143872] ? report_bug+0x125/0x150\n[ 161.144595] ? handle_bug+0x41/0x90\n[ 161.145284] ? exc_invalid_op+0x14/0x70\n[ 161.146009] ? asm_exc_invalid_op+0x12/0x20\n[ 161.146816] ? nfserrno+0x9d/0xd0\n[ 161.147487] nfsd_buffered_readdir+0x28b/0x2b0\n[ 161.148333] ? nfsd4_encode_dirent_fattr+0x380/0x380\n[ 161.149258] ? nfsd_buffered_filldir+0xf0/0xf0\n[ 161.150093] ? wait_for_concurrent_writes+0x170/0x170\n[ 161.151004] ? generic_file_llseek_size+0x48/0x160\n[ 161.151895] nfsd_readdir+0x132/0x190\n[ 161.152606] ? nfsd4_encode_dirent_fattr+0x380/0x380\n[ 161.153516] ? nfsd_unlink+0x380/0x380\n[ 161.154256] ? override_creds+0x45/0x60\n[ 161.155006] nfsd4_encode_readdir+0x21a/0x3d0\n[ 161.155850] ? nfsd4_encode_readlink+0x210/0x210\n[ 161.156731] ? write_bytes_to_xdr_buf+0x97/0xe0\n[ 161.157598] ? __write_bytes_to_xdr_buf+0xd0/0xd0\n[ 161.158494] ? lock_downgrade+0x90/0x90\n[ 161.159232] ? nfs4svc_decode_voidarg+0x10/0x10\n[ 161.160092] nfsd4_encode_operation+0x15a/0x440\n[ 161.160959] nfsd4_proc_compound+0x718/0xe90\n[ 161.161818] nfsd_dispatch+0x18e/0x2c0\n[ 161.162586] svc_process_common+0x786/0xc50\n[ 161.163403] ? nfsd_svc+0x380/0x380\n[ 161.164137] ? svc_printk+0x160/0x160\n[ 161.164846] ? svc_xprt_do_enqueue.part.0+0x365/0x380\n[ 161.165808] ? nfsd_svc+0x380/0x380\n[ 161.166523] ? rcu_is_watching+0x23/0x40\n[ 161.167309] svc_process+0x1a5/0x200\n[ 161.168019] nfsd+0x1f5/0x380\n[ 161.168663] ? nfsd_shutdown_threads+0x260/0x260\n[ 161.169554] kthread+0x1c4/0x210\n[ 161.170224] ? kthread_insert_work_sanity_check+0x80/0x80\n[ 161.171246] ret_from_fork+0x1f/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49875",
"url": "https://www.suse.com/security/cve/CVE-2024-49875"
},
{
"category": "external",
"summary": "SUSE Bug 1232333 for CVE-2024-49875",
"url": "https://bugzilla.suse.com/1232333"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-49875"
},
{
"cve": "CVE-2024-49876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49876"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: fix UAF around queue destruction\n\nWe currently do stuff like queuing the final destruction step on a\nrandom system wq, which will outlive the driver instance. With bad\ntiming we can teardown the driver with one or more work workqueue still\nbeing alive leading to various UAF splats. Add a fini step to ensure\nuser queues are properly torn down. At this point GuC should already be\nnuked so queue itself should no longer be referenced from hw pov.\n\nv2 (Matt B)\n - Looks much safer to use a waitqueue and then just wait for the\n xa_array to become empty before triggering the drain.\n\n(cherry picked from commit 861108666cc0e999cffeab6aff17b662e68774e3)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49876",
"url": "https://www.suse.com/security/cve/CVE-2024-49876"
},
{
"category": "external",
"summary": "SUSE Bug 1232336 for CVE-2024-49876",
"url": "https://bugzilla.suse.com/1232336"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49876"
},
{
"cve": "CVE-2024-49877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49877"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate\n\nWhen doing cleanup, if flags without OCFS2_BH_READAHEAD, it may trigger\nNULL pointer dereference in the following ocfs2_set_buffer_uptodate() if\nbh is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49877",
"url": "https://www.suse.com/security/cve/CVE-2024-49877"
},
{
"category": "external",
"summary": "SUSE Bug 1232339 for CVE-2024-49877",
"url": "https://bugzilla.suse.com/1232339"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49877"
},
{
"cve": "CVE-2024-49878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49878"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nresource: fix region_intersects() vs add_memory_driver_managed()\n\nOn a system with CXL memory, the resource tree (/proc/iomem) related to\nCXL memory may look like something as follows.\n\n490000000-50fffffff : CXL Window 0\n 490000000-50fffffff : region0\n 490000000-50fffffff : dax0.0\n 490000000-50fffffff : System RAM (kmem)\n\nBecause drivers/dax/kmem.c calls add_memory_driver_managed() during\nonlining CXL memory, which makes \"System RAM (kmem)\" a descendant of \"CXL\nWindow X\". This confuses region_intersects(), which expects all \"System\nRAM\" resources to be at the top level of iomem_resource. This can lead to\nbugs.\n\nFor example, when the following command line is executed to write some\nmemory in CXL memory range via /dev/mem,\n\n $ dd if=data of=/dev/mem bs=$((1 \u003c\u003c 10)) seek=$((0x490000000 \u003e\u003e 10)) count=1\n dd: error writing \u0027/dev/mem\u0027: Bad address\n 1+0 records in\n 0+0 records out\n 0 bytes copied, 0.0283507 s, 0.0 kB/s\n\nthe command fails as expected. However, the error code is wrong. It\nshould be \"Operation not permitted\" instead of \"Bad address\". More\nseriously, the /dev/mem permission checking in devmem_is_allowed() passes\nincorrectly. Although the accessing is prevented later because ioremap()\nisn\u0027t allowed to map system RAM, it is a potential security issue. During\ncommand executing, the following warning is reported in the kernel log for\ncalling ioremap() on system RAM.\n\n ioremap on RAM at 0x0000000490000000 - 0x0000000490000fff\n WARNING: CPU: 2 PID: 416 at arch/x86/mm/ioremap.c:216 __ioremap_caller.constprop.0+0x131/0x35d\n Call Trace:\n memremap+0xcb/0x184\n xlate_dev_mem_ptr+0x25/0x2f\n write_mem+0x94/0xfb\n vfs_write+0x128/0x26d\n ksys_write+0xac/0xfe\n do_syscall_64+0x9a/0xfd\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nThe details of command execution process are as follows. In the above\nresource tree, \"System RAM\" is a descendant of \"CXL Window 0\" instead of a\ntop level resource. So, region_intersects() will report no System RAM\nresources in the CXL memory region incorrectly, because it only checks the\ntop level resources. Consequently, devmem_is_allowed() will return 1\n(allow access via /dev/mem) for CXL memory region incorrectly. \nFortunately, ioremap() doesn\u0027t allow to map System RAM and reject the\naccess.\n\nSo, region_intersects() needs to be fixed to work correctly with the\nresource tree with \"System RAM\" not at top level as above. To fix it, if\nwe found a unmatched resource in the top level, we will continue to search\nmatched resources in its descendant resources. So, we will not miss any\nmatched resources in resource tree anymore.\n\nIn the new implementation, an example resource tree\n\n|------------- \"CXL Window 0\" ------------|\n|-- \"System RAM\" --|\n\nwill behave similar as the following fake resource tree for\nregion_intersects(, IORESOURCE_SYSTEM_RAM, ),\n\n|-- \"System RAM\" --||-- \"CXL Window 0a\" --|\n\nWhere \"CXL Window 0a\" is part of the original \"CXL Window 0\" that\nisn\u0027t covered by \"System RAM\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49878",
"url": "https://www.suse.com/security/cve/CVE-2024-49878"
},
{
"category": "external",
"summary": "SUSE Bug 1232340 for CVE-2024-49878",
"url": "https://bugzilla.suse.com/1232340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49878"
},
{
"cve": "CVE-2024-49879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49879"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: omapdrm: Add missing check for alloc_ordered_workqueue\n\nAs it may return NULL pointer and cause NULL pointer dereference. Add check\nfor the return value of alloc_ordered_workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49879",
"url": "https://www.suse.com/security/cve/CVE-2024-49879"
},
{
"category": "external",
"summary": "SUSE Bug 1232349 for CVE-2024-49879",
"url": "https://bugzilla.suse.com/1232349"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49879"
},
{
"cve": "CVE-2024-49880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix off by one issue in alloc_flex_gd()\n\nWesley reported an issue:\n\n==================================================================\nEXT4-fs (dm-5): resizing filesystem from 7168 to 786432 blocks\n------------[ cut here ]------------\nkernel BUG at fs/ext4/resize.c:324!\nCPU: 9 UID: 0 PID: 3576 Comm: resize2fs Not tainted 6.11.0+ #27\nRIP: 0010:ext4_resize_fs+0x1212/0x12d0\nCall Trace:\n __ext4_ioctl+0x4e0/0x1800\n ext4_ioctl+0x12/0x20\n __x64_sys_ioctl+0x99/0xd0\n x64_sys_call+0x1206/0x20d0\n do_syscall_64+0x72/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n==================================================================\n\nWhile reviewing the patch, Honza found that when adjusting resize_bg in\nalloc_flex_gd(), it was possible for flex_gd-\u003eresize_bg to be bigger than\nflexbg_size.\n\nThe reproduction of the problem requires the following:\n\n o_group = flexbg_size * 2 * n;\n o_size = (o_group + 1) * group_size;\n n_group: [o_group + flexbg_size, o_group + flexbg_size * 2)\n o_size = (n_group + 1) * group_size;\n\nTake n=0,flexbg_size=16 as an example:\n\n last:15\n|o---------------|--------------n-|\no_group:0 resize to n_group:30\n\nThe corresponding reproducer is:\n\nimg=test.img\nrm -f $img\ntruncate -s 600M $img\nmkfs.ext4 -F $img -b 1024 -G 16 8M\ndev=`losetup -f --show $img`\nmkdir -p /tmp/test\nmount $dev /tmp/test\nresize2fs $dev 248M\n\nDelete the problematic plus 1 to fix the issue, and add a WARN_ON_ONCE()\nto prevent the issue from happening again.\n\n[ Note: another reproucer which this commit fixes is:\n\n img=test.img\n rm -f $img\n truncate -s 25MiB $img\n mkfs.ext4 -b 4096 -E nodiscard,lazy_itable_init=0,lazy_journal_init=0 $img\n truncate -s 3GiB $img\n dev=`losetup -f --show $img`\n mkdir -p /tmp/test\n mount $dev /tmp/test\n resize2fs $dev 3G\n umount $dev\n losetup -d $dev\n\n -- TYT ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49880",
"url": "https://www.suse.com/security/cve/CVE-2024-49880"
},
{
"category": "external",
"summary": "SUSE Bug 1232205 for CVE-2024-49880",
"url": "https://bugzilla.suse.com/1232205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49880"
},
{
"cve": "CVE-2024-49881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: update orig_path in ext4_find_extent()\n\nIn ext4_find_extent(), if the path is not big enough, we free it and set\n*orig_path to NULL. But after reallocating and successfully initializing\nthe path, we don\u0027t update *orig_path, in which case the caller gets a\nvalid path but a NULL ppath, and this may cause a NULL pointer dereference\nor a path memory leak. For example:\n\next4_split_extent\n path = *ppath = 2000\n ext4_find_extent\n if (depth \u003e path[0].p_maxdepth)\n kfree(path = 2000);\n *orig_path = path = NULL;\n path = kcalloc() = 3000\n ext4_split_extent_at(*ppath = NULL)\n path = *ppath;\n ex = path[depth].p_ext;\n // NULL pointer dereference!\n\n==================================================================\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nCPU: 6 UID: 0 PID: 576 Comm: fsstress Not tainted 6.11.0-rc2-dirty #847\nRIP: 0010:ext4_split_extent_at+0x6d/0x560\nCall Trace:\n \u003cTASK\u003e\n ext4_split_extent.isra.0+0xcb/0x1b0\n ext4_ext_convert_to_initialized+0x168/0x6c0\n ext4_ext_handle_unwritten_extents+0x325/0x4d0\n ext4_ext_map_blocks+0x520/0xdb0\n ext4_map_blocks+0x2b0/0x690\n ext4_iomap_begin+0x20e/0x2c0\n[...]\n==================================================================\n\nTherefore, *orig_path is updated when the extent lookup succeeds, so that\nthe caller can safely use path or *ppath.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49881",
"url": "https://www.suse.com/security/cve/CVE-2024-49881"
},
{
"category": "external",
"summary": "SUSE Bug 1232201 for CVE-2024-49881",
"url": "https://bugzilla.suse.com/1232201"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49881"
},
{
"cve": "CVE-2024-49882",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49882"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix double brelse() the buffer of the extents path\n\nIn ext4_ext_try_to_merge_up(), set path[1].p_bh to NULL after it has been\nreleased, otherwise it may be released twice. An example of what triggers\nthis is as follows:\n\n split2 map split1\n|--------|-------|--------|\n\next4_ext_map_blocks\n ext4_ext_handle_unwritten_extents\n ext4_split_convert_extents\n // path-\u003ep_depth == 0\n ext4_split_extent\n // 1. do split1\n ext4_split_extent_at\n |ext4_ext_insert_extent\n | ext4_ext_create_new_leaf\n | ext4_ext_grow_indepth\n | le16_add_cpu(\u0026neh-\u003eeh_depth, 1)\n | ext4_find_extent\n | // return -ENOMEM\n |// get error and try zeroout\n |path = ext4_find_extent\n | path-\u003ep_depth = 1\n |ext4_ext_try_to_merge\n | ext4_ext_try_to_merge_up\n | path-\u003ep_depth = 0\n | brelse(path[1].p_bh) ---\u003e not set to NULL here\n |// zeroout success\n // 2. update path\n ext4_find_extent\n // 3. do split2\n ext4_split_extent_at\n ext4_ext_insert_extent\n ext4_ext_create_new_leaf\n ext4_ext_grow_indepth\n le16_add_cpu(\u0026neh-\u003eeh_depth, 1)\n ext4_find_extent\n path[0].p_bh = NULL;\n path-\u003ep_depth = 1\n read_extent_tree_block ---\u003e return err\n // path[1].p_bh is still the old value\n ext4_free_ext_path\n ext4_ext_drop_refs\n // path-\u003ep_depth == 1\n brelse(path[1].p_bh) ---\u003e brelse a buffer twice\n\nFinally got the following WARRNING when removing the buffer from lru:\n\n============================================\nVFS: brelse: Trying to free free buffer\nWARNING: CPU: 2 PID: 72 at fs/buffer.c:1241 __brelse+0x58/0x90\nCPU: 2 PID: 72 Comm: kworker/u19:1 Not tainted 6.9.0-dirty #716\nRIP: 0010:__brelse+0x58/0x90\nCall Trace:\n \u003cTASK\u003e\n __find_get_block+0x6e7/0x810\n bdev_getblk+0x2b/0x480\n __ext4_get_inode_loc+0x48a/0x1240\n ext4_get_inode_loc+0xb2/0x150\n ext4_reserve_inode_write+0xb7/0x230\n __ext4_mark_inode_dirty+0x144/0x6a0\n ext4_ext_insert_extent+0x9c8/0x3230\n ext4_ext_map_blocks+0xf45/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n============================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49882",
"url": "https://www.suse.com/security/cve/CVE-2024-49882"
},
{
"category": "external",
"summary": "SUSE Bug 1232200 for CVE-2024-49882",
"url": "https://bugzilla.suse.com/1232200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49882"
},
{
"cve": "CVE-2024-49883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49883"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: aovid use-after-free in ext4_ext_insert_extent()\n\nAs Ojaswin mentioned in Link, in ext4_ext_insert_extent(), if the path is\nreallocated in ext4_ext_create_new_leaf(), we\u0027ll use the stale path and\ncause UAF. Below is a sample trace with dummy values:\n\next4_ext_insert_extent\n path = *ppath = 2000\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(ppath)\n path = *ppath = 2000\n if (depth \u003e path[0].p_maxdepth)\n kfree(path = 2000);\n *ppath = path = NULL;\n path = kcalloc() = 3000\n *ppath = 3000;\n return path;\n /* here path is still 2000, UAF! */\n eh = path[depth].p_hdr\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_ext_insert_extent+0x26d4/0x3330\nRead of size 8 at addr ffff8881027bf7d0 by task kworker/u36:1/179\nCPU: 3 UID: 0 PID: 179 Comm: kworker/u6:1 Not tainted 6.11.0-rc2-dirty #866\nCall Trace:\n \u003cTASK\u003e\n ext4_ext_insert_extent+0x26d4/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n[...]\n\nAllocated by task 179:\n ext4_find_extent+0x81c/0x1f70\n ext4_ext_map_blocks+0x146/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n\nFreed by task 179:\n kfree+0xcb/0x240\n ext4_find_extent+0x7c0/0x1f70\n ext4_ext_insert_extent+0xa26/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n==================================================================\n\nSo use *ppath to update the path to avoid the above problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49883",
"url": "https://www.suse.com/security/cve/CVE-2024-49883"
},
{
"category": "external",
"summary": "SUSE Bug 1232199 for CVE-2024-49883",
"url": "https://bugzilla.suse.com/1232199"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49883"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49885",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49885"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm, slub: avoid zeroing kmalloc redzone\n\nSince commit 946fa0dbf2d8 (\"mm/slub: extend redzone check to extra\nallocated kmalloc space than requested\"), setting orig_size treats\nthe wasted space (object_size - orig_size) as a redzone. However with\ninit_on_free=1 we clear the full object-\u003esize, including the redzone.\n\nAdditionally we clear the object metadata, including the stored orig_size,\nmaking it zero, which makes check_object() treat the whole object as a\nredzone.\n\nThese issues lead to the following BUG report with \"slub_debug=FUZ\ninit_on_free=1\":\n\n[ 0.000000] =============================================================================\n[ 0.000000] BUG kmalloc-8 (Not tainted): kmalloc Redzone overwritten\n[ 0.000000] -----------------------------------------------------------------------------\n[ 0.000000]\n[ 0.000000] 0xffff000010032858-0xffff00001003285f @offset=2136. First byte 0x0 instead of 0xcc\n[ 0.000000] FIX kmalloc-8: Restoring kmalloc Redzone 0xffff000010032858-0xffff00001003285f=0xcc\n[ 0.000000] Slab 0xfffffdffc0400c80 objects=36 used=23 fp=0xffff000010032a18 flags=0x3fffe0000000200(workingset|node=0|zone=0|lastcpupid=0x1ffff)\n[ 0.000000] Object 0xffff000010032858 @offset=2136 fp=0xffff0000100328c8\n[ 0.000000]\n[ 0.000000] Redzone ffff000010032850: cc cc cc cc cc cc cc cc ........\n[ 0.000000] Object ffff000010032858: cc cc cc cc cc cc cc cc ........\n[ 0.000000] Redzone ffff000010032860: cc cc cc cc cc cc cc cc ........\n[ 0.000000] Padding ffff0000100328b4: 00 00 00 00 00 00 00 00 00 00 00 00 ............\n[ 0.000000] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.11.0-rc3-next-20240814-00004-g61844c55c3f4 #144\n[ 0.000000] Hardware name: NXP i.MX95 19X19 board (DT)\n[ 0.000000] Call trace:\n[ 0.000000] dump_backtrace+0x90/0xe8\n[ 0.000000] show_stack+0x18/0x24\n[ 0.000000] dump_stack_lvl+0x74/0x8c\n[ 0.000000] dump_stack+0x18/0x24\n[ 0.000000] print_trailer+0x150/0x218\n[ 0.000000] check_object+0xe4/0x454\n[ 0.000000] free_to_partial_list+0x2f8/0x5ec\n\nTo address the issue, use orig_size to clear the used area. And restore\nthe value of orig_size after clear the remaining area.\n\nWhen CONFIG_SLUB_DEBUG not defined, (get_orig_size()\u0027 directly returns\ns-\u003eobject_size. So when using memset to init the area, the size can simply\nbe orig_size, as orig_size returns object_size when CONFIG_SLUB_DEBUG not\nenabled. And orig_size can never be bigger than object_size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49885",
"url": "https://www.suse.com/security/cve/CVE-2024-49885"
},
{
"category": "external",
"summary": "SUSE Bug 1232197 for CVE-2024-49885",
"url": "https://bugzilla.suse.com/1232197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49885"
},
{
"cve": "CVE-2024-49886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug\n\nAttaching SST PCI device to VM causes \"BUG: KASAN: slab-out-of-bounds\".\nkasan report:\n[ 19.411889] ==================================================================\n[ 19.413702] BUG: KASAN: slab-out-of-bounds in _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.415634] Read of size 8 at addr ffff888829e65200 by task cpuhp/16/113\n[ 19.417368]\n[ 19.418627] CPU: 16 PID: 113 Comm: cpuhp/16 Tainted: G E 6.9.0 #10\n[ 19.420435] Hardware name: VMware, Inc. VMware20,1/440BX Desktop Reference Platform, BIOS VMW201.00V.20192059.B64.2207280713 07/28/2022\n[ 19.422687] Call Trace:\n[ 19.424091] \u003cTASK\u003e\n[ 19.425448] dump_stack_lvl+0x5d/0x80\n[ 19.426963] ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.428694] print_report+0x19d/0x52e\n[ 19.430206] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 19.431837] ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.433539] kasan_report+0xf0/0x170\n[ 19.435019] ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.436709] _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[ 19.438379] ? __pfx_sched_clock_cpu+0x10/0x10\n[ 19.439910] isst_if_cpu_online+0x406/0x58f [isst_if_common]\n[ 19.441573] ? __pfx_isst_if_cpu_online+0x10/0x10 [isst_if_common]\n[ 19.443263] ? ttwu_queue_wakelist+0x2c1/0x360\n[ 19.444797] cpuhp_invoke_callback+0x221/0xec0\n[ 19.446337] cpuhp_thread_fun+0x21b/0x610\n[ 19.447814] ? __pfx_cpuhp_thread_fun+0x10/0x10\n[ 19.449354] smpboot_thread_fn+0x2e7/0x6e0\n[ 19.450859] ? __pfx_smpboot_thread_fn+0x10/0x10\n[ 19.452405] kthread+0x29c/0x350\n[ 19.453817] ? __pfx_kthread+0x10/0x10\n[ 19.455253] ret_from_fork+0x31/0x70\n[ 19.456685] ? __pfx_kthread+0x10/0x10\n[ 19.458114] ret_from_fork_asm+0x1a/0x30\n[ 19.459573] \u003c/TASK\u003e\n[ 19.460853]\n[ 19.462055] Allocated by task 1198:\n[ 19.463410] kasan_save_stack+0x30/0x50\n[ 19.464788] kasan_save_track+0x14/0x30\n[ 19.466139] __kasan_kmalloc+0xaa/0xb0\n[ 19.467465] __kmalloc+0x1cd/0x470\n[ 19.468748] isst_if_cdev_register+0x1da/0x350 [isst_if_common]\n[ 19.470233] isst_if_mbox_init+0x108/0xff0 [isst_if_mbox_msr]\n[ 19.471670] do_one_initcall+0xa4/0x380\n[ 19.472903] do_init_module+0x238/0x760\n[ 19.474105] load_module+0x5239/0x6f00\n[ 19.475285] init_module_from_file+0xd1/0x130\n[ 19.476506] idempotent_init_module+0x23b/0x650\n[ 19.477725] __x64_sys_finit_module+0xbe/0x130\n[ 19.476506] idempotent_init_module+0x23b/0x650\n[ 19.477725] __x64_sys_finit_module+0xbe/0x130\n[ 19.478920] do_syscall_64+0x82/0x160\n[ 19.480036] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 19.481292]\n[ 19.482205] The buggy address belongs to the object at ffff888829e65000\n which belongs to the cache kmalloc-512 of size 512\n[ 19.484818] The buggy address is located 0 bytes to the right of\n allocated 512-byte region [ffff888829e65000, ffff888829e65200)\n[ 19.487447]\n[ 19.488328] The buggy address belongs to the physical page:\n[ 19.489569] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888829e60c00 pfn:0x829e60\n[ 19.491140] head: order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n[ 19.492466] anon flags: 0x57ffffc0000840(slab|head|node=1|zone=2|lastcpupid=0x1fffff)\n[ 19.493914] page_type: 0xffffffff()\n[ 19.494988] raw: 0057ffffc0000840 ffff88810004cc80 0000000000000000 0000000000000001\n[ 19.496451] raw: ffff888829e60c00 0000000080200018 00000001ffffffff 0000000000000000\n[ 19.497906] head: 0057ffffc0000840 ffff88810004cc80 0000000000000000 0000000000000001\n[ 19.499379] head: ffff888829e60c00 0000000080200018 00000001ffffffff 0000000000000000\n[ 19.500844] head: 0057ffffc0000003 ffffea0020a79801 ffffea0020a79848 00000000ffffffff\n[ 19.502316] head: 0000000800000000 0000000000000000 00000000ffffffff 0000000000000000\n[ 19.503784] page dumped because: k\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49886",
"url": "https://www.suse.com/security/cve/CVE-2024-49886"
},
{
"category": "external",
"summary": "SUSE Bug 1232196 for CVE-2024-49886",
"url": "https://bugzilla.suse.com/1232196"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49886"
},
{
"cve": "CVE-2024-49887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to don\u0027t panic system for no free segment fault injection\n\nf2fs: fix to don\u0027t panic system for no free segment fault injection\n\nsyzbot reports a f2fs bug as below:\n\nF2FS-fs (loop0): inject no free segment in get_new_segment of __allocate_new_segment+0x1ce/0x940 fs/f2fs/segment.c:3167\nF2FS-fs (loop0): Stopped filesystem due to reason: 7\n------------[ cut here ]------------\nkernel BUG at fs/f2fs/segment.c:2748!\nCPU: 0 UID: 0 PID: 5109 Comm: syz-executor304 Not tainted 6.11.0-rc6-syzkaller-00363-g89f5e14d05b4 #0\nRIP: 0010:get_new_segment fs/f2fs/segment.c:2748 [inline]\nRIP: 0010:new_curseg+0x1f61/0x1f70 fs/f2fs/segment.c:2836\nCall Trace:\n __allocate_new_segment+0x1ce/0x940 fs/f2fs/segment.c:3167\n f2fs_allocate_new_section fs/f2fs/segment.c:3181 [inline]\n f2fs_allocate_pinning_section+0xfa/0x4e0 fs/f2fs/segment.c:3195\n f2fs_expand_inode_data+0x5d6/0xbb0 fs/f2fs/file.c:1799\n f2fs_fallocate+0x448/0x960 fs/f2fs/file.c:1903\n vfs_fallocate+0x553/0x6c0 fs/open.c:334\n do_vfs_ioctl+0x2592/0x2e50 fs/ioctl.c:886\n __do_sys_ioctl fs/ioctl.c:905 [inline]\n __se_sys_ioctl+0x81/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0010:get_new_segment fs/f2fs/segment.c:2748 [inline]\nRIP: 0010:new_curseg+0x1f61/0x1f70 fs/f2fs/segment.c:2836\n\nThe root cause is when we inject no free segment fault into f2fs,\nwe should not panic system, fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49887",
"url": "https://www.suse.com/security/cve/CVE-2024-49887"
},
{
"category": "external",
"summary": "SUSE Bug 1232206 for CVE-2024-49887",
"url": "https://bugzilla.suse.com/1232206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49887"
},
{
"cve": "CVE-2024-49888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a sdiv overflow issue\n\nZac Ecob reported a problem where a bpf program may cause kernel crash due\nto the following error:\n Oops: divide error: 0000 [#1] PREEMPT SMP KASAN PTI\n\nThe failure is due to the below signed divide:\n LLONG_MIN/-1 where LLONG_MIN equals to -9,223,372,036,854,775,808.\nLLONG_MIN/-1 is supposed to give a positive number 9,223,372,036,854,775,808,\nbut it is impossible since for 64-bit system, the maximum positive\nnumber is 9,223,372,036,854,775,807. On x86_64, LLONG_MIN/-1 will\ncause a kernel exception. On arm64, the result for LLONG_MIN/-1 is\nLLONG_MIN.\n\nFurther investigation found all the following sdiv/smod cases may trigger\nan exception when bpf program is running on x86_64 platform:\n - LLONG_MIN/-1 for 64bit operation\n - INT_MIN/-1 for 32bit operation\n - LLONG_MIN%-1 for 64bit operation\n - INT_MIN%-1 for 32bit operation\nwhere -1 can be an immediate or in a register.\n\nOn arm64, there are no exceptions:\n - LLONG_MIN/-1 = LLONG_MIN\n - INT_MIN/-1 = INT_MIN\n - LLONG_MIN%-1 = 0\n - INT_MIN%-1 = 0\nwhere -1 can be an immediate or in a register.\n\nInsn patching is needed to handle the above cases and the patched codes\nproduced results aligned with above arm64 result. The below are pseudo\ncodes to handle sdiv/smod exceptions including both divisor -1 and divisor 0\nand the divisor is stored in a register.\n\nsdiv:\n tmp = rX\n tmp += 1 /* [-1, 0] -\u003e [0, 1]\n if tmp \u003e(unsigned) 1 goto L2\n if tmp == 0 goto L1\n rY = 0\n L1:\n rY = -rY;\n goto L3\n L2:\n rY /= rX\n L3:\n\nsmod:\n tmp = rX\n tmp += 1 /* [-1, 0] -\u003e [0, 1]\n if tmp \u003e(unsigned) 1 goto L1\n if tmp == 1 (is64 ? goto L2 : goto L3)\n rY = 0;\n goto L2\n L1:\n rY %= rX\n L2:\n goto L4 // only when !is64\n L3:\n wY = wY // only when !is64\n L4:\n\n [1] https://lore.kernel.org/bpf/tPJLTEh7S_DxFEqAI2Ji5MBSoZVg7_G-Py2iaZpAaWtM961fFTWtsnlzwvTbzBzaUzwQAoNATXKUlt0LZOFgnDcIyKCswAnAGdUF3LBrhGQ=@protonmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49888",
"url": "https://www.suse.com/security/cve/CVE-2024-49888"
},
{
"category": "external",
"summary": "SUSE Bug 1232208 for CVE-2024-49888",
"url": "https://bugzilla.suse.com/1232208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49888"
},
{
"cve": "CVE-2024-49889",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49889"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid use-after-free in ext4_ext_show_leaf()\n\nIn ext4_find_extent(), path may be freed by error or be reallocated, so\nusing a previously saved *ppath may have been freed and thus may trigger\nuse-after-free, as follows:\n\next4_split_extent\n path = *ppath;\n ext4_split_extent_at(ppath)\n path = ext4_find_extent(ppath)\n ext4_split_extent_at(ppath)\n // ext4_find_extent fails to free path\n // but zeroout succeeds\n ext4_ext_show_leaf(inode, path)\n eh = path[depth].p_hdr\n // path use-after-free !!!\n\nSimilar to ext4_split_extent_at(), we use *ppath directly as an input to\next4_ext_show_leaf(). Fix a spelling error by the way.\n\nSame problem in ext4_ext_handle_unwritten_extents(). Since \u0027path\u0027 is only\nused in ext4_ext_show_leaf(), remove \u0027path\u0027 and use *ppath directly.\n\nThis issue is triggered only when EXT_DEBUG is defined and therefore does\nnot affect functionality.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49889",
"url": "https://www.suse.com/security/cve/CVE-2024-49889"
},
{
"category": "external",
"summary": "SUSE Bug 1232215 for CVE-2024-49889",
"url": "https://bugzilla.suse.com/1232215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49889"
},
{
"cve": "CVE-2024-49890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: ensure the fw_info is not null before using it\n\nThis resolves the dereference null return value warning\nreported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49890",
"url": "https://www.suse.com/security/cve/CVE-2024-49890"
},
{
"category": "external",
"summary": "SUSE Bug 1232217 for CVE-2024-49890",
"url": "https://bugzilla.suse.com/1232217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49890"
},
{
"cve": "CVE-2024-49891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49891"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths\n\nWhen the HBA is undergoing a reset or is handling an errata event, NULL ptr\ndereference crashes may occur in routines such as\nlpfc_sli_flush_io_rings(), lpfc_dev_loss_tmo_callbk(), or\nlpfc_abort_handler().\n\nAdd NULL ptr checks before dereferencing hdwq pointers that may have been\nfreed due to operations colliding with a reset or errata event handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49891",
"url": "https://www.suse.com/security/cve/CVE-2024-49891"
},
{
"category": "external",
"summary": "SUSE Bug 1232218 for CVE-2024-49891",
"url": "https://bugzilla.suse.com/1232218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49891"
},
{
"cve": "CVE-2024-49892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49892"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Initialize get_bytes_per_element\u0027s default to 1\n\nVariables, used as denominators and maybe not assigned to other values,\nshould not be 0. bytes_per_element_y \u0026 bytes_per_element_c are\ninitialized by get_bytes_per_element() which should never return 0.\n\nThis fixes 10 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49892",
"url": "https://www.suse.com/security/cve/CVE-2024-49892"
},
{
"category": "external",
"summary": "SUSE Bug 1232220 for CVE-2024-49892",
"url": "https://bugzilla.suse.com/1232220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49892"
},
{
"cve": "CVE-2024-49893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check stream_status before it is used\n\n[WHAT \u0026 HOW]\ndc_state_get_stream_status can return null, and therefore null must be\nchecked before stream_status is used.\n\nThis fixes 1 NULL_RETURNS issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49893",
"url": "https://www.suse.com/security/cve/CVE-2024-49893"
},
{
"category": "external",
"summary": "SUSE Bug 1232350 for CVE-2024-49893",
"url": "https://bugzilla.suse.com/1232350"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49893"
},
{
"cve": "CVE-2024-49894",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49894"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in degamma hardware format translation\n\nFixes index out of bounds issue in\n`cm_helper_translate_curve_to_degamma_hw_format` function. The issue\ncould occur when the index \u0027i\u0027 exceeds the number of transfer function\npoints (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds the function returns\nfalse to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:594 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:595 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:596 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49894",
"url": "https://www.suse.com/security/cve/CVE-2024-49894"
},
{
"category": "external",
"summary": "SUSE Bug 1232354 for CVE-2024-49894",
"url": "https://bugzilla.suse.com/1232354"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49894"
},
{
"cve": "CVE-2024-49895",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49895"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation\n\nThis commit addresses a potential index out of bounds issue in the\n`cm3_helper_translate_curve_to_degamma_hw_format` function in the DCN30\ncolor management module. The issue could occur when the index \u0027i\u0027\nexceeds the number of transfer function points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, the function returns\nfalse to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:338 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:339 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:340 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49895",
"url": "https://www.suse.com/security/cve/CVE-2024-49895"
},
{
"category": "external",
"summary": "SUSE Bug 1232352 for CVE-2024-49895",
"url": "https://bugzilla.suse.com/1232352"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-49895"
},
{
"cve": "CVE-2024-49896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check stream before comparing them\n\n[WHAT \u0026 HOW]\namdgpu_dm can pass a null stream to dc_is_stream_unchanged. It is\nnecessary to check for null before dereferencing them.\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49896",
"url": "https://www.suse.com/security/cve/CVE-2024-49896"
},
{
"category": "external",
"summary": "SUSE Bug 1232221 for CVE-2024-49896",
"url": "https://bugzilla.suse.com/1232221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49896"
},
{
"cve": "CVE-2024-49897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check phantom_stream before it is used\n\ndcn32_enable_phantom_stream can return null, so returned value\nmust be checked before used.\n\nThis fixes 1 NULL_RETURNS issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49897",
"url": "https://www.suse.com/security/cve/CVE-2024-49897"
},
{
"category": "external",
"summary": "SUSE Bug 1232355 for CVE-2024-49897",
"url": "https://bugzilla.suse.com/1232355"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49897"
},
{
"cve": "CVE-2024-49898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49898"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null-initialized variables\n\n[WHAT \u0026 HOW]\ndrr_timing and subvp_pipe are initialized to null and they are not\nalways assigned new values. It is necessary to check for null before\ndereferencing.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49898",
"url": "https://www.suse.com/security/cve/CVE-2024-49898"
},
{
"category": "external",
"summary": "SUSE Bug 1232222 for CVE-2024-49898",
"url": "https://bugzilla.suse.com/1232222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49898"
},
{
"cve": "CVE-2024-49899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49899"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Initialize denominators\u0027 default to 1\n\n[WHAT \u0026 HOW]\nVariables used as denominators and maybe not assigned to other values,\nshould not be 0. Change their default to 1 so they are never 0.\n\nThis fixes 10 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49899",
"url": "https://www.suse.com/security/cve/CVE-2024-49899"
},
{
"category": "external",
"summary": "SUSE Bug 1232358 for CVE-2024-49899",
"url": "https://bugzilla.suse.com/1232358"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49899"
},
{
"cve": "CVE-2024-49900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49900"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Fix uninit-value access of new_ea in ea_buffer\n\nsyzbot reports that lzo1x_1_do_compress is using uninit-value:\n\n=====================================================\nBUG: KMSAN: uninit-value in lzo1x_1_do_compress+0x19f9/0x2510 lib/lzo/lzo1x_compress.c:178\n\n...\n\nUninit was stored to memory at:\n ea_put fs/jfs/xattr.c:639 [inline]\n\n...\n\nLocal variable ea_buf created at:\n __jfs_setxattr+0x5d/0x1ae0 fs/jfs/xattr.c:662\n __jfs_xattr_set+0xe6/0x1f0 fs/jfs/xattr.c:934\n\n=====================================================\n\nThe reason is ea_buf-\u003enew_ea is not initialized properly.\n\nFix this by using memset to empty its content at the beginning\nin ea_get().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49900",
"url": "https://www.suse.com/security/cve/CVE-2024-49900"
},
{
"category": "external",
"summary": "SUSE Bug 1232359 for CVE-2024-49900",
"url": "https://bugzilla.suse.com/1232359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49900"
},
{
"cve": "CVE-2024-49901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49901"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/adreno: Assign msm_gpu-\u003epdev earlier to avoid nullptrs\n\nThere are some cases, such as the one uncovered by Commit 46d4efcccc68\n(\"drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails\")\nwhere\n\nmsm_gpu_cleanup() : platform_set_drvdata(gpu-\u003epdev, NULL);\n\nis called on gpu-\u003epdev == NULL, as the GPU device has not been fully\ninitialized yet.\n\nTurns out that there\u0027s more than just the aforementioned path that\ncauses this to happen (e.g. the case when there\u0027s speedbin data in the\ncatalog, but opp-supported-hw is missing in DT).\n\nAssigning msm_gpu-\u003epdev earlier seems like the least painful solution\nto this, therefore do so.\n\nPatchwork: https://patchwork.freedesktop.org/patch/602742/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49901",
"url": "https://www.suse.com/security/cve/CVE-2024-49901"
},
{
"category": "external",
"summary": "SUSE Bug 1232305 for CVE-2024-49901",
"url": "https://bugzilla.suse.com/1232305"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49901"
},
{
"cve": "CVE-2024-49902",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49902"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: check if leafidx greater than num leaves per dmap tree\n\nsyzbot report a out of bounds in dbSplit, it because dmt_leafidx greater\nthan num leaves per dmap tree, add a checking for dmt_leafidx in dbFindLeaf.\n\nShaggy:\nModified sanity check to apply to control pages as well as leaf pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49902",
"url": "https://www.suse.com/security/cve/CVE-2024-49902"
},
{
"category": "external",
"summary": "SUSE Bug 1232378 for CVE-2024-49902",
"url": "https://bugzilla.suse.com/1232378"
},
{
"category": "external",
"summary": "SUSE Bug 1232379 for CVE-2024-49902",
"url": "https://bugzilla.suse.com/1232379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49902"
},
{
"cve": "CVE-2024-49903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Fix uaf in dbFreeBits\n\n[syzbot reported]\n==================================================================\nBUG: KASAN: slab-use-after-free in __mutex_lock_common kernel/locking/mutex.c:587 [inline]\nBUG: KASAN: slab-use-after-free in __mutex_lock+0xfe/0xd70 kernel/locking/mutex.c:752\nRead of size 8 at addr ffff8880229254b0 by task syz-executor357/5216\n\nCPU: 0 UID: 0 PID: 5216 Comm: syz-executor357 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n __mutex_lock_common kernel/locking/mutex.c:587 [inline]\n __mutex_lock+0xfe/0xd70 kernel/locking/mutex.c:752\n dbFreeBits+0x7ea/0xd90 fs/jfs/jfs_dmap.c:2390\n dbFreeDmap fs/jfs/jfs_dmap.c:2089 [inline]\n dbFree+0x35b/0x680 fs/jfs/jfs_dmap.c:409\n dbDiscardAG+0x8a9/0xa20 fs/jfs/jfs_dmap.c:1650\n jfs_ioc_trim+0x433/0x670 fs/jfs/jfs_discard.c:100\n jfs_ioctl+0x2d0/0x3e0 fs/jfs/ioctl.c:131\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n\nFreed by task 5218:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kfree+0x149/0x360 mm/slub.c:4594\n dbUnmount+0x11d/0x190 fs/jfs/jfs_dmap.c:278\n jfs_mount_rw+0x4ac/0x6a0 fs/jfs/jfs_mount.c:247\n jfs_remount+0x3d1/0x6b0 fs/jfs/super.c:454\n reconfigure_super+0x445/0x880 fs/super.c:1083\n vfs_cmd_reconfigure fs/fsopen.c:263 [inline]\n vfs_fsconfig_locked fs/fsopen.c:292 [inline]\n __do_sys_fsconfig fs/fsopen.c:473 [inline]\n __se_sys_fsconfig+0xb6e/0xf80 fs/fsopen.c:345\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[Analysis]\nThere are two paths (dbUnmount and jfs_ioc_trim) that generate race\ncondition when accessing bmap, which leads to the occurrence of uaf.\n\nUse the lock s_umount to synchronize them, in order to avoid uaf caused\nby race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49903",
"url": "https://www.suse.com/security/cve/CVE-2024-49903"
},
{
"category": "external",
"summary": "SUSE Bug 1232362 for CVE-2024-49903",
"url": "https://bugzilla.suse.com/1232362"
},
{
"category": "external",
"summary": "SUSE Bug 1233020 for CVE-2024-49903",
"url": "https://bugzilla.suse.com/1233020"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49903"
},
{
"cve": "CVE-2024-49904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: add list empty check to avoid null pointer issue\n\nAdd list empty check to avoid null pointer issues in some corner cases.\n- list_for_each_entry_safe()",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49904",
"url": "https://www.suse.com/security/cve/CVE-2024-49904"
},
{
"category": "external",
"summary": "SUSE Bug 1232356 for CVE-2024-49904",
"url": "https://bugzilla.suse.com/1232356"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49904"
},
{
"cve": "CVE-2024-49905",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49905"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_plane_handle_cursor_update (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_plane_handle_cursor_update function. Previously, \u0027afb\u0027 was\nassumed to be null, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm_plane.c:1298 amdgpu_dm_plane_handle_cursor_update() error: we previously assumed \u0027afb\u0027 could be null (see line 1252)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49905",
"url": "https://www.suse.com/security/cve/CVE-2024-49905"
},
{
"category": "external",
"summary": "SUSE Bug 1232357 for CVE-2024-49905",
"url": "https://bugzilla.suse.com/1232357"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49905"
},
{
"cve": "CVE-2024-49906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointer before try to access it\n\n[why \u0026 how]\nChange the order of the pipe_ctx-\u003eplane_state check to ensure that\nplane_state is not null before accessing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49906",
"url": "https://www.suse.com/security/cve/CVE-2024-49906"
},
{
"category": "external",
"summary": "SUSE Bug 1232332 for CVE-2024-49906",
"url": "https://bugzilla.suse.com/1232332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49906"
},
{
"cve": "CVE-2024-49907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before using dc-\u003eclk_mgr\n\n[WHY \u0026 HOW]\ndc-\u003eclk_mgr is null checked previously in the same function, indicating\nit might be null.\n\nPassing \"dc\" to \"dc-\u003ehwss.apply_idle_power_optimizations\", which\ndereferences null \"dc-\u003eclk_mgr\". (The function pointer resolves to\n\"dcn35_apply_idle_power_optimizations\".)\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49907",
"url": "https://www.suse.com/security/cve/CVE-2024-49907"
},
{
"category": "external",
"summary": "SUSE Bug 1232334 for CVE-2024-49907",
"url": "https://bugzilla.suse.com/1232334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49907"
},
{
"cve": "CVE-2024-49908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_update_cursor (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_update_cursor function. Previously, \u0027afb\u0027 was assumed to be\nnull at line 8388, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm.c:8433 amdgpu_dm_update_cursor()\n\terror: we previously assumed \u0027afb\u0027 could be null (see line 8388)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49908",
"url": "https://www.suse.com/security/cve/CVE-2024-49908"
},
{
"category": "external",
"summary": "SUSE Bug 1232335 for CVE-2024-49908",
"url": "https://bugzilla.suse.com/1232335"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49908"
},
{
"cve": "CVE-2024-49909",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49909"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn32_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null, but then it was being\ndereferenced without any null check. This could lead to a null pointer\ndereference if set_output_gamma is null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49909",
"url": "https://www.suse.com/security/cve/CVE-2024-49909"
},
{
"category": "external",
"summary": "SUSE Bug 1232337 for CVE-2024-49909",
"url": "https://bugzilla.suse.com/1232337"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49909"
},
{
"cve": "CVE-2024-49910",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49910"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn401_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn401_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null, but then it was being\ndereferenced without any null check. This could lead to a null pointer\ndereference if set_output_gamma is null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49910",
"url": "https://www.suse.com/security/cve/CVE-2024-49910"
},
{
"category": "external",
"summary": "SUSE Bug 1232365 for CVE-2024-49910",
"url": "https://bugzilla.suse.com/1232365"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49910"
},
{
"cve": "CVE-2024-49911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn20_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null at line 1030, but then it\nwas being dereferenced without any null check at line 1048. This could\npotentially lead to a null pointer dereference error if set_output_gamma\nis null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma at line 1048.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49911",
"url": "https://www.suse.com/security/cve/CVE-2024-49911"
},
{
"category": "external",
"summary": "SUSE Bug 1232366 for CVE-2024-49911",
"url": "https://bugzilla.suse.com/1232366"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49911"
},
{
"cve": "CVE-2024-49912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle null \u0027stream_status\u0027 in \u0027planes_changed_for_existing_stream\u0027\n\nThis commit adds a null check for \u0027stream_status\u0027 in the function\n\u0027planes_changed_for_existing_stream\u0027. Previously, the code assumed\n\u0027stream_status\u0027 could be null, but did not handle the case where it was\nactually null. This could lead to a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/core/dc_resource.c:3784 planes_changed_for_existing_stream() error: we previously assumed \u0027stream_status\u0027 could be null (see line 3774)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49912",
"url": "https://www.suse.com/security/cve/CVE-2024-49912"
},
{
"category": "external",
"summary": "SUSE Bug 1232367 for CVE-2024-49912",
"url": "https://bugzilla.suse.com/1232367"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49912"
},
{
"cve": "CVE-2024-49913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream\n\nThis commit addresses a null pointer dereference issue in the\n`commit_planes_for_stream` function at line 4140. The issue could occur\nwhen `top_pipe_to_program` is null.\n\nThe fix adds a check to ensure `top_pipe_to_program` is not null before\naccessing its stream_res. This prevents a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/core/dc.c:4140 commit_planes_for_stream() error: we previously assumed \u0027top_pipe_to_program\u0027 could be null (see line 3906)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49913",
"url": "https://www.suse.com/security/cve/CVE-2024-49913"
},
{
"category": "external",
"summary": "SUSE Bug 1232307 for CVE-2024-49913",
"url": "https://bugzilla.suse.com/1232307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49913"
},
{
"cve": "CVE-2024-49914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in the\n`dcn20_program_pipe` function. The issue could occur when\n`pipe_ctx-\u003eplane_state` is null.\n\nThe fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn20/dcn20_hwseq.c:1925 dcn20_program_pipe() error: we previously assumed \u0027pipe_ctx-\u003eplane_state\u0027 could be null (see line 1877)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49914",
"url": "https://www.suse.com/security/cve/CVE-2024-49914"
},
{
"category": "external",
"summary": "SUSE Bug 1232369 for CVE-2024-49914",
"url": "https://bugzilla.suse.com/1232369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49914"
},
{
"cve": "CVE-2024-49915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` is\nnull.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` is not null before\naccessing its functions. This prevents a potential null pointer\ndereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn32/dcn32_hwseq.c:961 dcn32_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 782)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49915",
"url": "https://www.suse.com/security/cve/CVE-2024-49915"
},
{
"category": "external",
"summary": "SUSE Bug 1231963 for CVE-2024-49915",
"url": "https://bugzilla.suse.com/1231963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49915"
},
{
"cve": "CVE-2024-49916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr and clk_mgr-\u003efuncs in dcn401_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn401_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` or\n`dc-\u003eclk_mgr-\u003efuncs` is null.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` and `dc-\u003eclk_mgr-\u003efuncs` is\nnot null before accessing its functions. This prevents a potential null\npointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn401/dcn401_hwseq.c:416 dcn401_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 225)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49916",
"url": "https://www.suse.com/security/cve/CVE-2024-49916"
},
{
"category": "external",
"summary": "SUSE Bug 1231964 for CVE-2024-49916",
"url": "https://bugzilla.suse.com/1231964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49916"
},
{
"cve": "CVE-2024-49917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49917"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr and clk_mgr-\u003efuncs in dcn30_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn30_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` or\n`dc-\u003eclk_mgr-\u003efuncs` is null.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` and `dc-\u003eclk_mgr-\u003efuncs` is\nnot null before accessing its functions. This prevents a potential null\npointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:789 dcn30_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 628)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49917",
"url": "https://www.suse.com/security/cve/CVE-2024-49917"
},
{
"category": "external",
"summary": "SUSE Bug 1231965 for CVE-2024-49917",
"url": "https://bugzilla.suse.com/1231965"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49917"
},
{
"cve": "CVE-2024-49918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49918"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_acquire_idle_pipe_for_head_pipe_in_layer` function. The issue\ncould occur when `head_pipe` is null.\n\nThe fix adds a check to ensure `head_pipe` is not null before asserting\nit. If `head_pipe` is null, the function returns NULL to prevent a\npotential null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn32/dcn32_resource.c:2690 dcn32_acquire_idle_pipe_for_head_pipe_in_layer() error: we previously assumed \u0027head_pipe\u0027 could be null (see line 2681)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49918",
"url": "https://www.suse.com/security/cve/CVE-2024-49918"
},
{
"category": "external",
"summary": "SUSE Bug 1231967 for CVE-2024-49918",
"url": "https://bugzilla.suse.com/1231967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49918"
},
{
"cve": "CVE-2024-49919",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49919"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn201_acquire_free_pipe_for_layer` function. The issue could occur\nwhen `head_pipe` is null.\n\nThe fix adds a check to ensure `head_pipe` is not null before asserting\nit. If `head_pipe` is null, the function returns NULL to prevent a\npotential null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn201/dcn201_resource.c:1016 dcn201_acquire_free_pipe_for_layer() error: we previously assumed \u0027head_pipe\u0027 could be null (see line 1010)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49919",
"url": "https://www.suse.com/security/cve/CVE-2024-49919"
},
{
"category": "external",
"summary": "SUSE Bug 1231968 for CVE-2024-49919",
"url": "https://bugzilla.suse.com/1231968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49919"
},
{
"cve": "CVE-2024-49920",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49920"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before multiple uses\n\n[WHAT \u0026 HOW]\nPoniters, such as stream_enc and dc-\u003ebw_vbios, are null checked previously\nin the same function, so Coverity warns \"implies that stream_enc and\ndc-\u003ebw_vbios might be null\". They are used multiple times in the\nsubsequent code and need to be checked.\n\nThis fixes 10 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49920",
"url": "https://www.suse.com/security/cve/CVE-2024-49920"
},
{
"category": "external",
"summary": "SUSE Bug 1232313 for CVE-2024-49920",
"url": "https://bugzilla.suse.com/1232313"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49920"
},
{
"cve": "CVE-2024-49921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49921"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before used\n\n[WHAT \u0026 HOW]\nPoniters, such as dc-\u003eclk_mgr, are null checked previously in the same\nfunction, so Coverity warns \"implies that \"dc-\u003eclk_mgr\" might be null\".\nAs a result, these pointers need to be checked when used again.\n\nThis fixes 10 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49921",
"url": "https://www.suse.com/security/cve/CVE-2024-49921"
},
{
"category": "external",
"summary": "SUSE Bug 1232371 for CVE-2024-49921",
"url": "https://bugzilla.suse.com/1232371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49921"
},
{
"cve": "CVE-2024-49922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before using them\n\n[WHAT \u0026 HOW]\nThese pointers are null checked previously in the same function,\nindicating they might be null as reported by Coverity. As a result,\nthey need to be checked when used again.\n\nThis fixes 3 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49922",
"url": "https://www.suse.com/security/cve/CVE-2024-49922"
},
{
"category": "external",
"summary": "SUSE Bug 1232374 for CVE-2024-49922",
"url": "https://bugzilla.suse.com/1232374"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49922"
},
{
"cve": "CVE-2024-49923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags\n\n[WHAT \u0026 HOW]\n\"dcn20_validate_apply_pipe_split_flags\" dereferences merge, and thus it\ncannot be a null pointer. Let\u0027s pass a valid pointer to avoid null\ndereference.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49923",
"url": "https://www.suse.com/security/cve/CVE-2024-49923"
},
{
"category": "external",
"summary": "SUSE Bug 1232361 for CVE-2024-49923",
"url": "https://bugzilla.suse.com/1232361"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49923"
},
{
"cve": "CVE-2024-49924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: pxafb: Fix possible use after free in pxafb_task()\n\nIn the pxafb_probe function, it calls the pxafb_init_fbinfo function,\nafter which \u0026fbi-\u003etask is associated with pxafb_task. Moreover,\nwithin this pxafb_init_fbinfo function, the pxafb_blank function\nwithin the \u0026pxafb_ops struct is capable of scheduling work.\n\nIf we remove the module which will call pxafb_remove to make cleanup,\nit will call unregister_framebuffer function which can call\ndo_unregister_framebuffer to free fbi-\u003efb through\nput_fb_info(fb_info), while the work mentioned above will be used.\nThe sequence of operations that may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | pxafb_task\npxafb_remove |\nunregister_framebuffer(info) |\ndo_unregister_framebuffer(fb_info) |\nput_fb_info(fb_info) |\n// free fbi-\u003efb | set_ctrlr_state(fbi, state)\n | __pxafb_lcd_power(fbi, 0)\n | fbi-\u003elcd_power(on, \u0026fbi-\u003efb.var)\n | //use fbi-\u003efb\n\nFix it by ensuring that the work is canceled before proceeding\nwith the cleanup in pxafb_remove.\n\nNote that only root user can remove the driver at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49924",
"url": "https://www.suse.com/security/cve/CVE-2024-49924"
},
{
"category": "external",
"summary": "SUSE Bug 1232364 for CVE-2024-49924",
"url": "https://bugzilla.suse.com/1232364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49924"
},
{
"cve": "CVE-2024-49925",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49925"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: efifb: Register sysfs groups through driver core\n\nThe driver core can register and cleanup sysfs groups already.\nMake use of that functionality to simplify the error handling and\ncleanup.\n\nAlso avoid a UAF race during unregistering where the sysctl attributes\nwere usable after the info struct was freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49925",
"url": "https://www.suse.com/security/cve/CVE-2024-49925"
},
{
"category": "external",
"summary": "SUSE Bug 1232224 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232224"
},
{
"category": "external",
"summary": "SUSE Bug 1232225 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49925"
},
{
"cve": "CVE-2024-49926",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49926"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu-tasks: Fix access non-existent percpu rtpcp variable in rcu_tasks_need_gpcb()\n\nFor kernels built with CONFIG_FORCE_NR_CPUS=y, the nr_cpu_ids is\ndefined as NR_CPUS instead of the number of possible cpus, this\nwill cause the following system panic:\n\nsmpboot: Allowing 4 CPUs, 0 hotplug CPUs\n...\nsetup_percpu: NR_CPUS:512 nr_cpumask_bits:512 nr_cpu_ids:512 nr_node_ids:1\n...\nBUG: unable to handle page fault for address: ffffffff9911c8c8\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 0 PID: 15 Comm: rcu_tasks_trace Tainted: G W\n6.6.21 #1 5dc7acf91a5e8e9ac9dcfc35bee0245691283ea6\nRIP: 0010:rcu_tasks_need_gpcb+0x25d/0x2c0\nRSP: 0018:ffffa371c00a3e60 EFLAGS: 00010082\nCR2: ffffffff9911c8c8 CR3: 000000040fa20005 CR4: 00000000001706f0\nCall Trace:\n\u003cTASK\u003e\n? __die+0x23/0x80\n? page_fault_oops+0xa4/0x180\n? exc_page_fault+0x152/0x180\n? asm_exc_page_fault+0x26/0x40\n? rcu_tasks_need_gpcb+0x25d/0x2c0\n? __pfx_rcu_tasks_kthread+0x40/0x40\nrcu_tasks_one_gp+0x69/0x180\nrcu_tasks_kthread+0x94/0xc0\nkthread+0xe8/0x140\n? __pfx_kthread+0x40/0x40\nret_from_fork+0x34/0x80\n? __pfx_kthread+0x40/0x40\nret_from_fork_asm+0x1b/0x80\n\u003c/TASK\u003e\n\nConsidering that there may be holes in the CPU numbers, use the\nmaximum possible cpu number, instead of nr_cpu_ids, for configuring\nenqueue and dequeue limits.\n\n[ neeraj.upadhyay: Fix htmldocs build error reported by Stephen Rothwell ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49926",
"url": "https://www.suse.com/security/cve/CVE-2024-49926"
},
{
"category": "external",
"summary": "SUSE Bug 1232247 for CVE-2024-49926",
"url": "https://bugzilla.suse.com/1232247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49926"
},
{
"cve": "CVE-2024-49927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49927"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/ioapic: Handle allocation failures gracefully\n\nBreno observed panics when using failslab under certain conditions during\nruntime:\n\n can not alloc irq_pin_list (-1,0,20)\n Kernel panic - not syncing: IO-APIC: failed to add irq-pin. Can not proceed\n\n panic+0x4e9/0x590\n mp_irqdomain_alloc+0x9ab/0xa80\n irq_domain_alloc_irqs_locked+0x25d/0x8d0\n __irq_domain_alloc_irqs+0x80/0x110\n mp_map_pin_to_irq+0x645/0x890\n acpi_register_gsi_ioapic+0xe6/0x150\n hpet_open+0x313/0x480\n\nThat\u0027s a pointless panic which is a leftover of the historic IO/APIC code\nwhich panic\u0027ed during early boot when the interrupt allocation failed.\n\nThe only place which might justify panic is the PIT/HPET timer_check() code\nwhich tries to figure out whether the timer interrupt is delivered through\nthe IO/APIC. But that code does not require to handle interrupt allocation\nfailures. If the interrupt cannot be allocated then timer delivery fails\nand it either panics due to that or falls back to legacy mode.\n\nCure this by removing the panic wrapper around __add_pin_to_irq_node() and\nmaking mp_irqdomain_alloc() aware of the failure condition and handle it as\nany other failure in this function gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49927",
"url": "https://www.suse.com/security/cve/CVE-2024-49927"
},
{
"category": "external",
"summary": "SUSE Bug 1232249 for CVE-2024-49927",
"url": "https://bugzilla.suse.com/1232249"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49927"
},
{
"cve": "CVE-2024-49928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49928"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: avoid reading out of bounds when loading TX power FW elements\n\nBecause the loop-expression will do one more time before getting false from\ncond-expression, the original code copied one more entry size beyond valid\nregion.\n\nFix it by moving the entry copy to loop-body.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49928",
"url": "https://www.suse.com/security/cve/CVE-2024-49928"
},
{
"category": "external",
"summary": "SUSE Bug 1232250 for CVE-2024-49928",
"url": "https://bugzilla.suse.com/1232250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49928"
},
{
"cve": "CVE-2024-49929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49929"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: avoid NULL pointer dereference\n\niwl_mvm_tx_skb_sta() and iwl_mvm_tx_mpdu() verify that the mvmvsta\npointer is not NULL.\nIt retrieves this pointer using iwl_mvm_sta_from_mac80211, which is\ndereferencing the ieee80211_sta pointer.\nIf sta is NULL, iwl_mvm_sta_from_mac80211 will dereference a NULL\npointer.\nFix this by checking the sta pointer before retrieving the mvmsta\nfrom it. If sta is not NULL, then mvmsta isn\u0027t either.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49929",
"url": "https://www.suse.com/security/cve/CVE-2024-49929"
},
{
"category": "external",
"summary": "SUSE Bug 1232253 for CVE-2024-49929",
"url": "https://bugzilla.suse.com/1232253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49929"
},
{
"cve": "CVE-2024-49930",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49930"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix array out-of-bound access in SoC stats\n\nCurrently, the ath11k_soc_dp_stats::hal_reo_error array is defined with a\nmaximum size of DP_REO_DST_RING_MAX. However, the ath11k_dp_process_rx()\nfunction access ath11k_soc_dp_stats::hal_reo_error using the REO\ndestination SRNG ring ID, which is incorrect. SRNG ring ID differ from\nnormal ring ID, and this usage leads to out-of-bounds array access. To fix\nthis issue, modify ath11k_dp_process_rx() to use the normal ring ID\ndirectly instead of the SRNG ring ID to avoid out-of-bounds array access.\n\nTested-on: QCN9074 hw1.0 PCI WLAN.HK.2.7.0.1-01744-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49930",
"url": "https://www.suse.com/security/cve/CVE-2024-49930"
},
{
"category": "external",
"summary": "SUSE Bug 1232260 for CVE-2024-49930",
"url": "https://bugzilla.suse.com/1232260"
},
{
"category": "external",
"summary": "SUSE Bug 1232261 for CVE-2024-49930",
"url": "https://bugzilla.suse.com/1232261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49930"
},
{
"cve": "CVE-2024-49931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49931"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix array out-of-bound access in SoC stats\n\nCurrently, the ath12k_soc_dp_stats::hal_reo_error array is defined with a\nmaximum size of DP_REO_DST_RING_MAX. However, the ath12k_dp_rx_process()\nfunction access ath12k_soc_dp_stats::hal_reo_error using the REO\ndestination SRNG ring ID, which is incorrect. SRNG ring ID differ from\nnormal ring ID, and this usage leads to out-of-bounds array access. To\nfix this issue, modify ath12k_dp_rx_process() to use the normal ring ID\ndirectly instead of the SRNG ring ID to avoid out-of-bounds array access.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49931",
"url": "https://www.suse.com/security/cve/CVE-2024-49931"
},
{
"category": "external",
"summary": "SUSE Bug 1232275 for CVE-2024-49931",
"url": "https://bugzilla.suse.com/1232275"
},
{
"category": "external",
"summary": "SUSE Bug 1232277 for CVE-2024-49931",
"url": "https://bugzilla.suse.com/1232277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49931"
},
{
"cve": "CVE-2024-49932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t readahead the relocation inode on RST\n\nOn relocation we\u0027re doing readahead on the relocation inode, but if the\nfilesystem is backed by a RAID stripe tree we can get ENOENT (e.g. due to\npreallocated extents not being mapped in the RST) from the lookup.\n\nBut readahead doesn\u0027t handle the error and submits invalid reads to the\ndevice, causing an assertion in the scatter-gather list code:\n\n BTRFS info (device nvme1n1): balance: start -d -m -s\n BTRFS info (device nvme1n1): relocating block group 6480920576 flags data|raid0\n BTRFS error (device nvme1n1): cannot find raid-stripe for logical [6481928192, 6481969152] devid 2, profile raid0\n ------------[ cut here ]------------\n kernel BUG at include/linux/scatterlist.h:115!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 0 PID: 1012 Comm: btrfs Not tainted 6.10.0-rc7+ #567\n RIP: 0010:__blk_rq_map_sg+0x339/0x4a0\n RSP: 0018:ffffc90001a43820 EFLAGS: 00010202\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffea00045d4802\n RDX: 0000000117520000 RSI: 0000000000000000 RDI: ffff8881027d1000\n RBP: 0000000000003000 R08: ffffea00045d4902 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000001000 R12: ffff8881003d10b8\n R13: ffffc90001a438f0 R14: 0000000000000000 R15: 0000000000003000\n FS: 00007fcc048a6900(0000) GS:ffff88813bc00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 000000002cd11000 CR3: 00000001109ea001 CR4: 0000000000370eb0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x14/0x25\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x65/0x80\n ? __blk_rq_map_sg+0x339/0x4a0\n ? exc_invalid_op+0x50/0x70\n ? __blk_rq_map_sg+0x339/0x4a0\n ? asm_exc_invalid_op+0x1a/0x20\n ? __blk_rq_map_sg+0x339/0x4a0\n nvme_prep_rq.part.0+0x9d/0x770\n nvme_queue_rq+0x7d/0x1e0\n __blk_mq_issue_directly+0x2a/0x90\n ? blk_mq_get_budget_and_tag+0x61/0x90\n blk_mq_try_issue_list_directly+0x56/0xf0\n blk_mq_flush_plug_list.part.0+0x52b/0x5d0\n __blk_flush_plug+0xc6/0x110\n blk_finish_plug+0x28/0x40\n read_pages+0x160/0x1c0\n page_cache_ra_unbounded+0x109/0x180\n relocate_file_extent_cluster+0x611/0x6a0\n ? btrfs_search_slot+0xba4/0xd20\n ? balance_dirty_pages_ratelimited_flags+0x26/0xb00\n relocate_data_extent.constprop.0+0x134/0x160\n relocate_block_group+0x3f2/0x500\n btrfs_relocate_block_group+0x250/0x430\n btrfs_relocate_chunk+0x3f/0x130\n btrfs_balance+0x71b/0xef0\n ? kmalloc_trace_noprof+0x13b/0x280\n btrfs_ioctl+0x2c2e/0x3030\n ? kvfree_call_rcu+0x1e6/0x340\n ? list_lru_add_obj+0x66/0x80\n ? mntput_no_expire+0x3a/0x220\n __x64_sys_ioctl+0x96/0xc0\n do_syscall_64+0x54/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n RIP: 0033:0x7fcc04514f9b\n Code: Unable to access opcode bytes at 0x7fcc04514f71.\n RSP: 002b:00007ffeba923370 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fcc04514f9b\n RDX: 00007ffeba923460 RSI: 00000000c4009420 RDI: 0000000000000003\n RBP: 0000000000000000 R08: 0000000000000013 R09: 0000000000000001\n R10: 00007fcc043fbba8 R11: 0000000000000246 R12: 00007ffeba924fc5\n R13: 00007ffeba923460 R14: 0000000000000002 R15: 00000000004d4bb0\n \u003c/TASK\u003e\n Modules linked in:\n ---[ end trace 0000000000000000 ]---\n RIP: 0010:__blk_rq_map_sg+0x339/0x4a0\n RSP: 0018:ffffc90001a43820 EFLAGS: 00010202\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffea00045d4802\n RDX: 0000000117520000 RSI: 0000000000000000 RDI: ffff8881027d1000\n RBP: 0000000000003000 R08: ffffea00045d4902 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000001000 R12: ffff8881003d10b8\n R13: ffffc90001a438f0 R14: 0000000000000000 R15: 0000000000003000\n FS: 00007fcc048a6900(0000) GS:ffff88813bc00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fcc04514f71 CR3: 00000001109ea001 CR4: 0000000000370eb0\n Kernel p\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49932",
"url": "https://www.suse.com/security/cve/CVE-2024-49932"
},
{
"category": "external",
"summary": "SUSE Bug 1232376 for CVE-2024-49932",
"url": "https://bugzilla.suse.com/1232376"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49932"
},
{
"cve": "CVE-2024-49933",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49933"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk_iocost: fix more out of bound shifts\n\nRecently running UBSAN caught few out of bound shifts in the\nioc_forgive_debts() function:\n\nUBSAN: shift-out-of-bounds in block/blk-iocost.c:2142:38\nshift exponent 80 is too large for 64-bit type \u0027u64\u0027 (aka \u0027unsigned long\nlong\u0027)\n...\nUBSAN: shift-out-of-bounds in block/blk-iocost.c:2144:30\nshift exponent 80 is too large for 64-bit type \u0027u64\u0027 (aka \u0027unsigned long\nlong\u0027)\n...\nCall Trace:\n\u003cIRQ\u003e\ndump_stack_lvl+0xca/0x130\n__ubsan_handle_shift_out_of_bounds+0x22c/0x280\n? __lock_acquire+0x6441/0x7c10\nioc_timer_fn+0x6cec/0x7750\n? blk_iocost_init+0x720/0x720\n? call_timer_fn+0x5d/0x470\ncall_timer_fn+0xfa/0x470\n? blk_iocost_init+0x720/0x720\n__run_timer_base+0x519/0x700\n...\n\nActual impact of this issue was not identified but I propose to fix the\nundefined behaviour.\nThe proposed fix to prevent those out of bound shifts consist of\nprecalculating exponent before using it the shift operations by taking\nmin value from the actual exponent and maximum possible number of bits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49933",
"url": "https://www.suse.com/security/cve/CVE-2024-49933"
},
{
"category": "external",
"summary": "SUSE Bug 1232368 for CVE-2024-49933",
"url": "https://bugzilla.suse.com/1232368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49933"
},
{
"cve": "CVE-2024-49934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name\n\nIt\u0027s observed that a crash occurs during hot-remove a memory device,\nin which user is accessing the hugetlb. See calltrace as following:\n\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 14045 at arch/x86/mm/fault.c:1278 do_user_addr_fault+0x2a0/0x790\nModules linked in: kmem device_dax cxl_mem cxl_pmem cxl_port cxl_pci dax_hmem dax_pmem nd_pmem cxl_acpi nd_btt cxl_core crc32c_intel nvme virtiofs fuse nvme_core nfit libnvdimm dm_multipath scsi_dh_rdac scsi_dh_emc s\nmirror dm_region_hash dm_log dm_mod\nCPU: 1 PID: 14045 Comm: daxctl Not tainted 6.10.0-rc2-lizhijian+ #492\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:do_user_addr_fault+0x2a0/0x790\nCode: 48 8b 00 a8 04 0f 84 b5 fe ff ff e9 1c ff ff ff 4c 89 e9 4c 89 e2 be 01 00 00 00 bf 02 00 00 00 e8 b5 ef 24 00 e9 42 fe ff ff \u003c0f\u003e 0b 48 83 c4 08 4c 89 ea 48 89 ee 4c 89 e7 5b 5d 41 5c 41 5d 41\nRSP: 0000:ffffc90000a575f0 EFLAGS: 00010046\nRAX: ffff88800c303600 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000001000 RSI: ffffffff82504162 RDI: ffffffff824b2c36\nRBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffc90000a57658\nR13: 0000000000001000 R14: ffff88800bc2e040 R15: 0000000000000000\nFS: 00007f51cb57d880(0000) GS:ffff88807fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000001000 CR3: 00000000072e2004 CR4: 00000000001706f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x8d/0x190\n ? do_user_addr_fault+0x2a0/0x790\n ? report_bug+0x1c3/0x1d0\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x14/0x70\n ? asm_exc_invalid_op+0x16/0x20\n ? do_user_addr_fault+0x2a0/0x790\n ? exc_page_fault+0x31/0x200\n exc_page_fault+0x68/0x200\n\u003c...snip...\u003e\nBUG: unable to handle page fault for address: 0000000000001000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 800000000ad92067 P4D 800000000ad92067 PUD 7677067 PMD 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n ---[ end trace 0000000000000000 ]---\n BUG: unable to handle page fault for address: 0000000000001000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 800000000ad92067 P4D 800000000ad92067 PUD 7677067 PMD 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 14045 Comm: daxctl Kdump: loaded Tainted: G W 6.10.0-rc2-lizhijian+ #492\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n RIP: 0010:dentry_name+0x1f4/0x440\n\u003c...snip...\u003e\n? dentry_name+0x2fa/0x440\nvsnprintf+0x1f3/0x4f0\nvprintk_store+0x23a/0x540\nvprintk_emit+0x6d/0x330\n_printk+0x58/0x80\ndump_mapping+0x10b/0x1a0\n? __pfx_free_object_rcu+0x10/0x10\n__dump_page+0x26b/0x3e0\n? vprintk_emit+0xe0/0x330\n? _printk+0x58/0x80\n? dump_page+0x17/0x50\ndump_page+0x17/0x50\ndo_migrate_range+0x2f7/0x7f0\n? do_migrate_range+0x42/0x7f0\n? offline_pages+0x2f4/0x8c0\noffline_pages+0x60a/0x8c0\nmemory_subsys_offline+0x9f/0x1c0\n? lockdep_hardirqs_on+0x77/0x100\n? _raw_spin_unlock_irqrestore+0x38/0x60\ndevice_offline+0xe3/0x110\nstate_store+0x6e/0xc0\nkernfs_fop_write_iter+0x143/0x200\nvfs_write+0x39f/0x560\nksys_write+0x65/0xf0\ndo_syscall_64+0x62/0x130\n\nPreviously, some sanity check have been done in dump_mapping() before\nthe print facility parsing \u0027%pd\u0027 though, it\u0027s still possible to run into\nan invalid dentry.d_name.name.\n\nSince dump_mapping() only needs to dump the filename only, retrieve it\nby itself in a safer way to prevent an unnecessary crash.\n\nNote that either retrieving the filename with \u0027%pd\u0027 or\nstrncpy_from_kernel_nofault(), the filename could be unreliable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49934",
"url": "https://www.suse.com/security/cve/CVE-2024-49934"
},
{
"category": "external",
"summary": "SUSE Bug 1232387 for CVE-2024-49934",
"url": "https://bugzilla.suse.com/1232387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49934"
},
{
"cve": "CVE-2024-49935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: PAD: fix crash in exit_round_robin()\n\nThe kernel occasionally crashes in cpumask_clear_cpu(), which is called\nwithin exit_round_robin(), because when executing clear_bit(nr, addr) with\nnr set to 0xffffffff, the address calculation may cause misalignment within\nthe memory, leading to access to an invalid memory address.\n\n----------\nBUG: unable to handle kernel paging request at ffffffffe0740618\n ...\nCPU: 3 PID: 2919323 Comm: acpi_pad/14 Kdump: loaded Tainted: G OE X --------- - - 4.18.0-425.19.2.el8_7.x86_64 #1\n ...\nRIP: 0010:power_saving_thread+0x313/0x411 [acpi_pad]\nCode: 89 cd 48 89 d3 eb d1 48 c7 c7 55 70 72 c0 e8 64 86 b0 e4 c6 05 0d a1 02 00 01 e9 bc fd ff ff 45 89 e4 42 8b 04 a5 20 82 72 c0 \u003cf0\u003e 48 0f b3 05 f4 9c 01 00 42 c7 04 a5 20 82 72 c0 ff ff ff ff 31\nRSP: 0018:ff72a5d51fa77ec8 EFLAGS: 00010202\nRAX: 00000000ffffffff RBX: ff462981e5d8cb80 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000246 RDI: 0000000000000246\nRBP: ff46297556959d80 R08: 0000000000000382 R09: ff46297c8d0f38d8\nR10: 0000000000000000 R11: 0000000000000001 R12: 000000000000000e\nR13: 0000000000000000 R14: ffffffffffffffff R15: 000000000000000e\nFS: 0000000000000000(0000) GS:ff46297a800c0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffffffffe0740618 CR3: 0000007e20410004 CR4: 0000000000771ee0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n ? acpi_pad_add+0x120/0x120 [acpi_pad]\n kthread+0x10b/0x130\n ? set_kthread_struct+0x50/0x50\n ret_from_fork+0x1f/0x40\n ...\nCR2: ffffffffe0740618\n\ncrash\u003e dis -lr ffffffffc0726923\n ...\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./include/linux/cpumask.h: 114\n0xffffffffc0726918 \u003cpower_saving_thread+776\u003e:\tmov %r12d,%r12d\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./include/linux/cpumask.h: 325\n0xffffffffc072691b \u003cpower_saving_thread+779\u003e:\tmov -0x3f8d7de0(,%r12,4),%eax\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./arch/x86/include/asm/bitops.h: 80\n0xffffffffc0726923 \u003cpower_saving_thread+787\u003e:\tlock btr %rax,0x19cf4(%rip) # 0xffffffffc0740620 \u003cpad_busy_cpus_bits\u003e\n\ncrash\u003e px tsk_in_cpu[14]\n$66 = 0xffffffff\n\ncrash\u003e px 0xffffffffc072692c+0x19cf4\n$99 = 0xffffffffc0740620\n\ncrash\u003e sym 0xffffffffc0740620\nffffffffc0740620 (b) pad_busy_cpus_bits [acpi_pad]\n\ncrash\u003e px pad_busy_cpus_bits[0]\n$42 = 0xfffc0\n----------\n\nTo fix this, ensure that tsk_in_cpu[tsk_index] != -1 before calling\ncpumask_clear_cpu() in exit_round_robin(), just as it is done in\nround_robin_cpu().\n\n[ rjw: Subject edit, avoid updates to the same value ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49935",
"url": "https://www.suse.com/security/cve/CVE-2024-49935"
},
{
"category": "external",
"summary": "SUSE Bug 1232370 for CVE-2024-49935",
"url": "https://bugzilla.suse.com/1232370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49935"
},
{
"cve": "CVE-2024-49936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49936"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/xen-netback: prevent UAF in xenvif_flush_hash()\n\nDuring the list_for_each_entry_rcu iteration call of xenvif_flush_hash,\nkfree_rcu does not exist inside the rcu read critical section, so if\nkfree_rcu is called when the rcu grace period ends during the iteration,\nUAF occurs when accessing head-\u003enext after the entry becomes free.\n\nTherefore, to solve this, you need to change it to list_for_each_entry_safe.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49936",
"url": "https://www.suse.com/security/cve/CVE-2024-49936"
},
{
"category": "external",
"summary": "SUSE Bug 1232424 for CVE-2024-49936",
"url": "https://bugzilla.suse.com/1232424"
},
{
"category": "external",
"summary": "SUSE Bug 1232426 for CVE-2024-49936",
"url": "https://bugzilla.suse.com/1232426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49936"
},
{
"cve": "CVE-2024-49937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49937"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: Set correct chandef when starting CAC\n\nWhen starting CAC in a mode other than AP mode, it return a\n\"WARNING: CPU: 0 PID: 63 at cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211]\"\ncaused by the chandef.chan being null at the end of CAC.\n\nSolution: Ensure the channel definition is set for the different modes\nwhen starting CAC to avoid getting a NULL \u0027chan\u0027 at the end of CAC.\n\n Call Trace:\n ? show_regs.part.0+0x14/0x16\n ? __warn+0x67/0xc0\n ? cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211]\n ? report_bug+0xa7/0x130\n ? exc_overflow+0x30/0x30\n ? handle_bug+0x27/0x50\n ? exc_invalid_op+0x18/0x60\n ? handle_exception+0xf6/0xf6\n ? exc_overflow+0x30/0x30\n ? cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211]\n ? exc_overflow+0x30/0x30\n ? cfg80211_chandef_dfs_usable+0x20/0xaf [cfg80211]\n ? regulatory_propagate_dfs_state.cold+0x1b/0x4c [cfg80211]\n ? cfg80211_propagate_cac_done_wk+0x1a/0x30 [cfg80211]\n ? process_one_work+0x165/0x280\n ? worker_thread+0x120/0x3f0\n ? kthread+0xc2/0xf0\n ? process_one_work+0x280/0x280\n ? kthread_complete_and_exit+0x20/0x20\n ? ret_from_fork+0x19/0x24\n\n[shorten subject, remove OCB, reorder cases to match previous list]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49937",
"url": "https://www.suse.com/security/cve/CVE-2024-49937"
},
{
"category": "external",
"summary": "SUSE Bug 1232427 for CVE-2024-49937",
"url": "https://bugzilla.suse.com/1232427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49937"
},
{
"cve": "CVE-2024-49938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit\n\nSyzbot points out that skb_trim() has a sanity check on the existing length of\nthe skb, which can be uninitialised in some error paths. The intent here is\nclearly just to reset the length to zero before resubmitting, so switch to\ncalling __skb_set_length(skb, 0) directly. In addition, __skb_set_length()\nalready contains a call to skb_reset_tail_pointer(), so remove the redundant\ncall.\n\nThe syzbot report came from ath9k_hif_usb_reg_in_cb(), but there\u0027s a similar\nusage of skb_trim() in ath9k_hif_usb_rx_cb(), change both while we\u0027re at it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49938",
"url": "https://www.suse.com/security/cve/CVE-2024-49938"
},
{
"category": "external",
"summary": "SUSE Bug 1232552 for CVE-2024-49938",
"url": "https://bugzilla.suse.com/1232552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49938"
},
{
"cve": "CVE-2024-49939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49939"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: avoid to add interface to list twice when SER\n\nIf SER L2 occurs during the WoWLAN resume flow, the add interface flow\nis triggered by ieee80211_reconfig(). However, due to\nrtw89_wow_resume() return failure, it will cause the add interface flow\nto be executed again, resulting in a double add list and causing a kernel\npanic. Therefore, we have added a check to prevent double adding of the\nlist.\n\nlist_add double add: new=ffff99d6992e2010, prev=ffff99d6992e2010, next=ffff99d695302628.\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:37!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 0 PID: 9 Comm: kworker/0:1 Tainted: G W O 6.6.30-02659-gc18865c4dfbd #1 770df2933251a0e3c888ba69d1053a817a6376a7\nHardware name: HP Grunt/Grunt, BIOS Google_Grunt.11031.169.0 06/24/2021\nWorkqueue: events_freezable ieee80211_restart_work [mac80211]\nRIP: 0010:__list_add_valid_or_report+0x5e/0xb0\nCode: c7 74 18 48 39 ce 74 13 b0 01 59 5a 5e 5f 41 58 41 59 41 5a 5d e9 e2 d6 03 00 cc 48 c7 c7 8d 4f 17 83 48 89 c2 e8 02 c0 00 00 \u003c0f\u003e 0b 48 c7 c7 aa 8c 1c 83 e8 f4 bf 00 00 0f 0b 48 c7 c7 c8 bc 12\nRSP: 0018:ffffa91b8007bc50 EFLAGS: 00010246\nRAX: 0000000000000058 RBX: ffff99d6992e0900 RCX: a014d76c70ef3900\nRDX: ffffa91b8007bae8 RSI: 00000000ffffdfff RDI: 0000000000000001\nRBP: ffffa91b8007bc88 R08: 0000000000000000 R09: ffffa91b8007bae0\nR10: 00000000ffffdfff R11: ffffffff83a79800 R12: ffff99d695302060\nR13: ffff99d695300900 R14: ffff99d6992e1be0 R15: ffff99d6992e2010\nFS: 0000000000000000(0000) GS:ffff99d6aac00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000078fbdba43480 CR3: 000000010e464000 CR4: 00000000001506f0\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x1f/0x70\n ? die+0x3d/0x60\n ? do_trap+0xa4/0x110\n ? __list_add_valid_or_report+0x5e/0xb0\n ? do_error_trap+0x6d/0x90\n ? __list_add_valid_or_report+0x5e/0xb0\n ? handle_invalid_op+0x30/0x40\n ? __list_add_valid_or_report+0x5e/0xb0\n ? exc_invalid_op+0x3c/0x50\n ? asm_exc_invalid_op+0x16/0x20\n ? __list_add_valid_or_report+0x5e/0xb0\n rtw89_ops_add_interface+0x309/0x310 [rtw89_core 7c32b1ee6854761c0321027c8a58c5160e41f48f]\n drv_add_interface+0x5c/0x130 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n ieee80211_reconfig+0x241/0x13d0 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n ? finish_wait+0x3e/0x90\n ? synchronize_rcu_expedited+0x174/0x260\n ? sync_rcu_exp_done_unlocked+0x50/0x50\n ? wake_bit_function+0x40/0x40\n ieee80211_restart_work+0xf0/0x140 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n process_scheduled_works+0x1e5/0x480\n worker_thread+0xea/0x1e0\n kthread+0xdb/0x110\n ? move_linked_works+0x90/0x90\n ? kthread_associate_blkcg+0xa0/0xa0\n ret_from_fork+0x3b/0x50\n ? kthread_associate_blkcg+0xa0/0xa0\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\nModules linked in: dm_integrity async_xor xor async_tx lz4 lz4_compress zstd zstd_compress zram zsmalloc rfcomm cmac uinput algif_hash algif_skcipher af_alg btusb btrtl iio_trig_hrtimer industrialio_sw_trigger btmtk industrialio_configfs btbcm btintel uvcvideo videobuf2_vmalloc iio_trig_sysfs videobuf2_memops videobuf2_v4l2 videobuf2_common uvc snd_hda_codec_hdmi veth snd_hda_intel snd_intel_dspcfg acpi_als snd_hda_codec industrialio_triggered_buffer kfifo_buf snd_hwdep industrialio i2c_piix4 snd_hda_core designware_i2s ip6table_nat snd_soc_max98357a xt_MASQUERADE xt_cgroup snd_soc_acp_rt5682_mach fuse rtw89_8922ae(O) rtw89_8922a(O) rtw89_pci(O) rtw89_core(O) 8021q mac80211(O) bluetooth ecdh_generic ecc cfg80211 r8152 mii joydev\ngsmi: Log Shutdown Reason 0x03\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49939",
"url": "https://www.suse.com/security/cve/CVE-2024-49939"
},
{
"category": "external",
"summary": "SUSE Bug 1232381 for CVE-2024-49939",
"url": "https://bugzilla.suse.com/1232381"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49939"
},
{
"cve": "CVE-2024-49940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nl2tp: prevent possible tunnel refcount underflow\n\nWhen a session is created, it sets a backpointer to its tunnel. When\nthe session refcount drops to 0, l2tp_session_free drops the tunnel\nrefcount if session-\u003etunnel is non-NULL. However, session-\u003etunnel is\nset in l2tp_session_create, before the tunnel refcount is incremented\nby l2tp_session_register, which leaves a small window where\nsession-\u003etunnel is non-NULL when the tunnel refcount hasn\u0027t been\nbumped.\n\nMoving the assignment to l2tp_session_register is trivial but\nl2tp_session_create calls l2tp_session_set_header_len which uses\nsession-\u003etunnel to get the tunnel\u0027s encap. Add an encap arg to\nl2tp_session_set_header_len to avoid using session-\u003etunnel.\n\nIf l2tpv3 sessions have colliding IDs, it is possible for\nl2tp_v3_session_get to race with l2tp_session_register and fetch a\nsession which doesn\u0027t yet have session-\u003etunnel set. Add a check for\nthis case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49940",
"url": "https://www.suse.com/security/cve/CVE-2024-49940"
},
{
"category": "external",
"summary": "SUSE Bug 1232812 for CVE-2024-49940",
"url": "https://bugzilla.suse.com/1232812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49940"
},
{
"cve": "CVE-2024-49941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49941"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: Fix potential NULL pointer dereference in gpiod_get_label()\n\nIn `gpiod_get_label()`, it is possible that `srcu_dereference_check()` may\nreturn a NULL pointer, leading to a scenario where `label-\u003estr` is accessed\nwithout verifying if `label` itself is NULL.\n\nThis patch adds a proper NULL check for `label` before accessing\n`label-\u003estr`. The check for `label-\u003estr != NULL` is removed because\n`label-\u003estr` can never be NULL if `label` is not NULL.\n\nThis fixes the issue where the label name was being printed as `(efault)`\nwhen dumping the sysfs GPIO file when `label == NULL`.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49941",
"url": "https://www.suse.com/security/cve/CVE-2024-49941"
},
{
"category": "external",
"summary": "SUSE Bug 1232169 for CVE-2024-49941",
"url": "https://bugzilla.suse.com/1232169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49941"
},
{
"cve": "CVE-2024-49942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49942"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Prevent null pointer access in xe_migrate_copy\n\nxe_migrate_copy designed to copy content of TTM resources. When source\nresource is null, it will trigger a NULL pointer dereference in\nxe_migrate_copy. To avoid this situation, update lacks source flag to\ntrue for this case, the flag will trigger xe_migrate_clear rather than\nxe_migrate_copy.\n\nIssue trace:\n\u003c7\u003e [317.089847] xe 0000:00:02.0: [drm:xe_migrate_copy [xe]] Pass 14,\n sizes: 4194304 \u0026 4194304\n\u003c7\u003e [317.089945] xe 0000:00:02.0: [drm:xe_migrate_copy [xe]] Pass 15,\n sizes: 4194304 \u0026 4194304\n\u003c1\u003e [317.128055] BUG: kernel NULL pointer dereference, address:\n 0000000000000010\n\u003c1\u003e [317.128064] #PF: supervisor read access in kernel mode\n\u003c1\u003e [317.128066] #PF: error_code(0x0000) - not-present page\n\u003c6\u003e [317.128069] PGD 0 P4D 0\n\u003c4\u003e [317.128071] Oops: Oops: 0000 [#1] PREEMPT SMP NOPTI\n\u003c4\u003e [317.128074] CPU: 1 UID: 0 PID: 1440 Comm: kunit_try_catch Tainted:\n G U N 6.11.0-rc7-xe #1\n\u003c4\u003e [317.128078] Tainted: [U]=USER, [N]=TEST\n\u003c4\u003e [317.128080] Hardware name: Intel Corporation Lunar Lake Client\n Platform/LNL-M LP5 RVP1, BIOS LNLMFWI1.R00.3221.D80.2407291239 07/29/2024\n\u003c4\u003e [317.128082] RIP: 0010:xe_migrate_copy+0x66/0x13e0 [xe]\n\u003c4\u003e [317.128158] Code: 00 00 48 89 8d e0 fe ff ff 48 8b 40 10 4c 89 85 c8\n fe ff ff 44 88 8d bd fe ff ff 65 48 8b 3c 25 28 00 00 00 48 89 7d d0 31\n ff \u003c8b\u003e 79 10 48 89 85 a0 fe ff ff 48 8b 00 48 89 b5 d8 fe ff ff 83 ff\n\u003c4\u003e [317.128162] RSP: 0018:ffffc9000167f9f0 EFLAGS: 00010246\n\u003c4\u003e [317.128164] RAX: ffff8881120d8028 RBX: ffff88814d070428 RCX:\n 0000000000000000\n\u003c4\u003e [317.128166] RDX: ffff88813cb99c00 RSI: 0000000004000000 RDI:\n 0000000000000000\n\u003c4\u003e [317.128168] RBP: ffffc9000167fbb8 R08: ffff88814e7b1f08 R09:\n 0000000000000001\n\u003c4\u003e [317.128170] R10: 0000000000000001 R11: 0000000000000001 R12:\n ffff88814e7b1f08\n\u003c4\u003e [317.128172] R13: ffff88814e7b1f08 R14: ffff88813cb99c00 R15:\n 0000000000000001\n\u003c4\u003e [317.128174] FS: 0000000000000000(0000) GS:ffff88846f280000(0000)\n knlGS:0000000000000000\n\u003c4\u003e [317.128176] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n\u003c4\u003e [317.128178] CR2: 0000000000000010 CR3: 000000011f676004 CR4:\n 0000000000770ef0\n\u003c4\u003e [317.128180] DR0: 0000000000000000 DR1: 0000000000000000 DR2:\n 0000000000000000\n\u003c4\u003e [317.128182] DR3: 0000000000000000 DR6: 00000000ffff07f0 DR7:\n 0000000000000400\n\u003c4\u003e [317.128184] PKRU: 55555554\n\u003c4\u003e [317.128185] Call Trace:\n\u003c4\u003e [317.128187] \u003cTASK\u003e\n\u003c4\u003e [317.128189] ? show_regs+0x67/0x70\n\u003c4\u003e [317.128194] ? __die_body+0x20/0x70\n\u003c4\u003e [317.128196] ? __die+0x2b/0x40\n\u003c4\u003e [317.128198] ? page_fault_oops+0x15f/0x4e0\n\u003c4\u003e [317.128203] ? do_user_addr_fault+0x3fb/0x970\n\u003c4\u003e [317.128205] ? lock_acquire+0xc7/0x2e0\n\u003c4\u003e [317.128209] ? exc_page_fault+0x87/0x2b0\n\u003c4\u003e [317.128212] ? asm_exc_page_fault+0x27/0x30\n\u003c4\u003e [317.128216] ? xe_migrate_copy+0x66/0x13e0 [xe]\n\u003c4\u003e [317.128263] ? __lock_acquire+0xb9d/0x26f0\n\u003c4\u003e [317.128265] ? __lock_acquire+0xb9d/0x26f0\n\u003c4\u003e [317.128267] ? sg_free_append_table+0x20/0x80\n\u003c4\u003e [317.128271] ? lock_acquire+0xc7/0x2e0\n\u003c4\u003e [317.128273] ? mark_held_locks+0x4d/0x80\n\u003c4\u003e [317.128275] ? trace_hardirqs_on+0x1e/0xd0\n\u003c4\u003e [317.128278] ? _raw_spin_unlock_irqrestore+0x31/0x60\n\u003c4\u003e [317.128281] ? __pm_runtime_resume+0x60/0xa0\n\u003c4\u003e [317.128284] xe_bo_move+0x682/0xc50 [xe]\n\u003c4\u003e [317.128315] ? lock_is_held_type+0xaa/0x120\n\u003c4\u003e [317.128318] ttm_bo_handle_move_mem+0xe5/0x1a0 [ttm]\n\u003c4\u003e [317.128324] ttm_bo_validate+0xd1/0x1a0 [ttm]\n\u003c4\u003e [317.128328] shrink_test_run_device+0x721/0xc10 [xe]\n\u003c4\u003e [317.128360] ? find_held_lock+0x31/0x90\n\u003c4\u003e [317.128363] ? lock_release+0xd1/0x2a0\n\u003c4\u003e [317.128365] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10\n [kunit]\n\u003c4\u003e [317.128370] xe_bo_shrink_kunit+0x11/0x20 [xe]\n\u003c4\u003e [317.128397] kunit_try_run_case+0x6e/0x150 [kunit]\n\u003c4\u003e [317.128400] ? trace_hardirqs_on+0x1e/0xd0\n\u003c4\u003e [317.128402] ? _raw_spin_unlock_irqrestore+0x31/0x60\n\u003c4\u003e [317.128404] kunit_generic_run_threadfn_adapter+0x1e/0x40 [ku\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49942",
"url": "https://www.suse.com/security/cve/CVE-2024-49942"
},
{
"category": "external",
"summary": "SUSE Bug 1232168 for CVE-2024-49942",
"url": "https://bugzilla.suse.com/1232168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49942"
},
{
"cve": "CVE-2024-49943",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49943"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/guc_submit: add missing locking in wedged_fini\n\nAny non-wedged queue can have a zero refcount here and can be running\nconcurrently with an async queue destroy, therefore dereferencing the\nqueue ptr to check wedge status after the lookup can trigger UAF if\nqueue is not wedged. Fix this by keeping the submission_state lock held\naround the check to postpone the free and make the check safe, before\ndropping again around the put() to avoid the deadlock.\n\n(cherry picked from commit d28af0b6b9580b9f90c265a7da0315b0ad20bbfd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49943",
"url": "https://www.suse.com/security/cve/CVE-2024-49943"
},
{
"category": "external",
"summary": "SUSE Bug 1232167 for CVE-2024-49943",
"url": "https://bugzilla.suse.com/1232167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49943"
},
{
"cve": "CVE-2024-49944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start\n\nIn sctp_listen_start() invoked by sctp_inet_listen(), it should set the\nsk_state back to CLOSED if sctp_autobind() fails due to whatever reason.\n\nOtherwise, next time when calling sctp_inet_listen(), if sctp_sk(sk)-\u003ereuse\nis already set via setsockopt(SCTP_REUSE_PORT), sctp_sk(sk)-\u003ebind_hash will\nbe dereferenced as sk_state is LISTENING, which causes a crash as bind_hash\nis NULL.\n\n KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n RIP: 0010:sctp_inet_listen+0x7f0/0xa20 net/sctp/socket.c:8617\n Call Trace:\n \u003cTASK\u003e\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49944",
"url": "https://www.suse.com/security/cve/CVE-2024-49944"
},
{
"category": "external",
"summary": "SUSE Bug 1232166 for CVE-2024-49944",
"url": "https://bugzilla.suse.com/1232166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49944"
},
{
"cve": "CVE-2024-49945",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49945"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ncsi: Disable the ncsi work before freeing the associated structure\n\nThe work function can run after the ncsi device is freed, resulting\nin use-after-free bugs or kernel panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49945",
"url": "https://www.suse.com/security/cve/CVE-2024-49945"
},
{
"category": "external",
"summary": "SUSE Bug 1232165 for CVE-2024-49945",
"url": "https://bugzilla.suse.com/1232165"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49945"
},
{
"cve": "CVE-2024-49946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nppp: do not assume bh is held in ppp_channel_bridge_input()\n\nNetworking receive path is usually handled from BH handler.\nHowever, some protocols need to acquire the socket lock, and\npackets might be stored in the socket backlog is the socket was\nowned by a user process.\n\nIn this case, release_sock(), __release_sock(), and sk_backlog_rcv()\nmight call the sk-\u003esk_backlog_rcv() handler in process context.\n\nsybot caught ppp was not considering this case in\nppp_channel_bridge_input() :\n\nWARNING: inconsistent lock state\n6.11.0-rc7-syzkaller-g5f5673607153 #0 Not tainted\n--------------------------------\ninconsistent {SOFTIRQ-ON-W} -\u003e {IN-SOFTIRQ-W} usage.\nksoftirqd/1/24 [HC0[0]:SC1[1]:HE1:SE0] takes:\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2272 [inline]\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: ppp_input+0x16c/0x854 drivers/net/ppp/ppp_generic.c:2304\n{SOFTIRQ-ON-W} state was registered at:\n lock_acquire+0x240/0x728 kernel/locking/lockdep.c:5759\n __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]\n _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154\n spin_lock include/linux/spinlock.h:351 [inline]\n ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2272 [inline]\n ppp_input+0x16c/0x854 drivers/net/ppp/ppp_generic.c:2304\n pppoe_rcv_core+0xfc/0x314 drivers/net/ppp/pppoe.c:379\n sk_backlog_rcv include/net/sock.h:1111 [inline]\n __release_sock+0x1a8/0x3d8 net/core/sock.c:3004\n release_sock+0x68/0x1b8 net/core/sock.c:3558\n pppoe_sendmsg+0xc8/0x5d8 drivers/net/ppp/pppoe.c:903\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x374/0x4f4 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __arm64_sys_sendto+0xd8/0xf8 net/socket.c:2212\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\nirq event stamp: 282914\n hardirqs last enabled at (282914): [\u003cffff80008b42e30c\u003e] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline]\n hardirqs last enabled at (282914): [\u003cffff80008b42e30c\u003e] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194\n hardirqs last disabled at (282913): [\u003cffff80008b42e13c\u003e] __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:108 [inline]\n hardirqs last disabled at (282913): [\u003cffff80008b42e13c\u003e] _raw_spin_lock_irqsave+0x2c/0x7c kernel/locking/spinlock.c:162\n softirqs last enabled at (282904): [\u003cffff8000801f8e88\u003e] softirq_handle_end kernel/softirq.c:400 [inline]\n softirqs last enabled at (282904): [\u003cffff8000801f8e88\u003e] handle_softirqs+0xa3c/0xbfc kernel/softirq.c:582\n softirqs last disabled at (282909): [\u003cffff8000801fbdf8\u003e] run_ksoftirqd+0x70/0x158 kernel/softirq.c:928\n\nother info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026pch-\u003edownl);\n \u003cInterrupt\u003e\n lock(\u0026pch-\u003edownl);\n\n *** DEADLOCK ***\n\n1 lock held by ksoftirqd/1/24:\n #0: ffff80008f74dfa0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c include/linux/rcupdate.h:325\n\nstack backtrace:\nCPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.11.0-rc7-syzkaller-g5f5673607153 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall trace:\n dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:319\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:326\n __dump_sta\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49946",
"url": "https://www.suse.com/security/cve/CVE-2024-49946"
},
{
"category": "external",
"summary": "SUSE Bug 1232164 for CVE-2024-49946",
"url": "https://bugzilla.suse.com/1232164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49946"
},
{
"cve": "CVE-2024-49947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: test for not too small csum_start in virtio_net_hdr_to_skb()\n\nsyzbot was able to trigger this warning [1], after injecting a\nmalicious packet through af_packet, setting skb-\u003ecsum_start and thus\nthe transport header to an incorrect value.\n\nWe can at least make sure the transport header is after\nthe end of the network header (with a estimated minimal size).\n\n[1]\n[ 67.873027] skb len=4096 headroom=16 headlen=14 tailroom=0\nmac=(-1,-1) mac_len=0 net=(16,-6) trans=10\nshinfo(txflags=0 nr_frags=1 gso(size=0 type=0 segs=0))\ncsum(0xa start=10 offset=0 ip_summed=3 complete_sw=0 valid=0 level=0)\nhash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0\npriority=0x0 mark=0x0 alloc_cpu=10 vlan_all=0x0\nencapsulation=0 inner(proto=0x0000, mac=0, net=0, trans=0)\n[ 67.877172] dev name=veth0_vlan feat=0x000061164fdd09e9\n[ 67.877764] sk family=17 type=3 proto=0\n[ 67.878279] skb linear: 00000000: 00 00 10 00 00 00 00 00 0f 00 00 00 08 00\n[ 67.879128] skb frag: 00000000: 0e 00 07 00 00 00 28 00 08 80 1c 00 04 00 00 02\n[ 67.879877] skb frag: 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.880647] skb frag: 00000020: 00 00 02 00 00 00 08 00 1b 00 00 00 00 00 00 00\n[ 67.881156] skb frag: 00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.881753] skb frag: 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.882173] skb frag: 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.882790] skb frag: 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.883171] skb frag: 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.883733] skb frag: 00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.884206] skb frag: 00000090: 00 00 00 00 00 00 00 00 00 00 69 70 76 6c 61 6e\n[ 67.884704] skb frag: 000000a0: 31 00 00 00 00 00 00 00 00 00 2b 00 00 00 00 00\n[ 67.885139] skb frag: 000000b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.885677] skb frag: 000000c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.886042] skb frag: 000000d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.886408] skb frag: 000000e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.887020] skb frag: 000000f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.887384] skb frag: 00000100: 00 00\n[ 67.887878] ------------[ cut here ]------------\n[ 67.887908] offset (-6) \u003e= skb_headlen() (14)\n[ 67.888445] WARNING: CPU: 10 PID: 2088 at net/core/dev.c:3332 skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.889353] Modules linked in: macsec macvtap macvlan hsr wireguard curve25519_x86_64 libcurve25519_generic libchacha20poly1305 chacha_x86_64 libchacha poly1305_x86_64 dummy bridge sr_mod cdrom evdev pcspkr i2c_piix4 9pnet_virtio 9p 9pnet netfs\n[ 67.890111] CPU: 10 UID: 0 PID: 2088 Comm: b363492833 Not tainted 6.11.0-virtme #1011\n[ 67.890183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 67.890309] RIP: 0010:skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891043] Call Trace:\n[ 67.891173] \u003cTASK\u003e\n[ 67.891274] ? __warn (kernel/panic.c:741)\n[ 67.891320] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891333] ? report_bug (lib/bug.c:180 lib/bug.c:219)\n[ 67.891348] ? handle_bug (arch/x86/kernel/traps.c:239)\n[ 67.891363] ? exc_invalid_op (arch/x86/kernel/traps.c:260 (discriminator 1))\n[ 67.891372] ? asm_exc_invalid_op (./arch/x86/include/asm/idtentry.h:621)\n[ 67.891388] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891399] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891416] ip_do_fragment (net/ipv4/ip_output.c:777 (discriminator 1))\n[ 67.891448] ? __ip_local_out (./include/linux/skbuff.h:1146 ./include/net/l3mdev.h:196 ./include/net/l3mdev.h:213 ne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49947",
"url": "https://www.suse.com/security/cve/CVE-2024-49947"
},
{
"category": "external",
"summary": "SUSE Bug 1232162 for CVE-2024-49947",
"url": "https://bugzilla.suse.com/1232162"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49947"
},
{
"cve": "CVE-2024-49948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: add more sanity checks to qdisc_pkt_len_init()\n\nOne path takes care of SKB_GSO_DODGY, assuming\nskb-\u003elen is bigger than hdr_len.\n\nvirtio_net_hdr_to_skb() does not fully dissect TCP headers,\nit only make sure it is at least 20 bytes.\n\nIt is possible for an user to provide a malicious \u0027GSO\u0027 packet,\ntotal length of 80 bytes.\n\n- 20 bytes of IPv4 header\n- 60 bytes TCP header\n- a small gso_size like 8\n\nvirtio_net_hdr_to_skb() would declare this packet as a normal\nGSO packet, because it would see 40 bytes of payload,\nbigger than gso_size.\n\nWe need to make detect this case to not underflow\nqdisc_skb_cb(skb)-\u003epkt_len.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49948",
"url": "https://www.suse.com/security/cve/CVE-2024-49948"
},
{
"category": "external",
"summary": "SUSE Bug 1232161 for CVE-2024-49948",
"url": "https://bugzilla.suse.com/1232161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49948"
},
{
"cve": "CVE-2024-49949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49949"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: avoid potential underflow in qdisc_pkt_len_init() with UFO\n\nAfter commit 7c6d2ecbda83 (\"net: be more gentle about silly gso\nrequests coming from user\") virtio_net_hdr_to_skb() had sanity check\nto detect malicious attempts from user space to cook a bad GSO packet.\n\nThen commit cf9acc90c80ec (\"net: virtio_net_hdr_to_skb: count\ntransport header in UFO\") while fixing one issue, allowed user space\nto cook a GSO packet with the following characteristic :\n\nIPv4 SKB_GSO_UDP, gso_size=3, skb-\u003elen = 28.\n\nWhen this packet arrives in qdisc_pkt_len_init(), we end up\nwith hdr_len = 28 (IPv4 header + UDP header), matching skb-\u003elen\n\nThen the following sets gso_segs to 0 :\n\ngso_segs = DIV_ROUND_UP(skb-\u003elen - hdr_len,\n shinfo-\u003egso_size);\n\nThen later we set qdisc_skb_cb(skb)-\u003epkt_len to back to zero :/\n\nqdisc_skb_cb(skb)-\u003epkt_len += (gso_segs - 1) * hdr_len;\n\nThis leads to the following crash in fq_codel [1]\n\nqdisc_pkt_len_init() is best effort, we only want an estimation\nof the bytes sent on the wire, not crashing the kernel.\n\nThis patch is fixing this particular issue, a following one\nadds more sanity checks for another potential bug.\n\n[1]\n[ 70.724101] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 70.724561] #PF: supervisor read access in kernel mode\n[ 70.724561] #PF: error_code(0x0000) - not-present page\n[ 70.724561] PGD 10ac61067 P4D 10ac61067 PUD 107ee2067 PMD 0\n[ 70.724561] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 70.724561] CPU: 11 UID: 0 PID: 2163 Comm: b358537762 Not tainted 6.11.0-virtme #991\n[ 70.724561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.724561] RIP: 0010:fq_codel_enqueue (net/sched/sch_fq_codel.c:120 net/sched/sch_fq_codel.c:168 net/sched/sch_fq_codel.c:230) sch_fq_codel\n[ 70.724561] Code: 24 08 49 c1 e1 06 44 89 7c 24 18 45 31 ed 45 31 c0 31 ff 89 44 24 14 4c 03 8b 90 01 00 00 eb 04 39 ca 73 37 4d 8b 39 83 c7 01 \u003c49\u003e 8b 17 49 89 11 41 8b 57 28 45 8b 5f 34 49 c7 07 00 00 00 00 49\nAll code\n========\n 0:\t24 08 \tand $0x8,%al\n 2:\t49 c1 e1 06 \tshl $0x6,%r9\n 6:\t44 89 7c 24 18 \tmov %r15d,0x18(%rsp)\n b:\t45 31 ed \txor %r13d,%r13d\n e:\t45 31 c0 \txor %r8d,%r8d\n 11:\t31 ff \txor %edi,%edi\n 13:\t89 44 24 14 \tmov %eax,0x14(%rsp)\n 17:\t4c 03 8b 90 01 00 00 \tadd 0x190(%rbx),%r9\n 1e:\teb 04 \tjmp 0x24\n 20:\t39 ca \tcmp %ecx,%edx\n 22:\t73 37 \tjae 0x5b\n 24:\t4d 8b 39 \tmov (%r9),%r15\n 27:\t83 c7 01 \tadd $0x1,%edi\n 2a:*\t49 8b 17 \tmov (%r15),%rdx\t\t\u003c-- trapping instruction\n 2d:\t49 89 11 \tmov %rdx,(%r9)\n 30:\t41 8b 57 28 \tmov 0x28(%r15),%edx\n 34:\t45 8b 5f 34 \tmov 0x34(%r15),%r11d\n 38:\t49 c7 07 00 00 00 00 \tmovq $0x0,(%r15)\n 3f:\t49 \trex.WB\n\nCode starting with the faulting instruction\n===========================================\n 0:\t49 8b 17 \tmov (%r15),%rdx\n 3:\t49 89 11 \tmov %rdx,(%r9)\n 6:\t41 8b 57 28 \tmov 0x28(%r15),%edx\n a:\t45 8b 5f 34 \tmov 0x34(%r15),%r11d\n e:\t49 c7 07 00 00 00 00 \tmovq $0x0,(%r15)\n 15:\t49 \trex.WB\n[ 70.724561] RSP: 0018:ffff95ae85e6fb90 EFLAGS: 00000202\n[ 70.724561] RAX: 0000000002000000 RBX: ffff95ae841de000 RCX: 0000000000000000\n[ 70.724561] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001\n[ 70.724561] RBP: ffff95ae85e6fbf8 R08: 0000000000000000 R09: ffff95b710a30000\n[ 70.724561] R10: 0000000000000000 R11: bdf289445ce31881 R12: ffff95ae85e6fc58\n[ 70.724561] R13: 0000000000000000 R14: 0000000000000040 R15: 0000000000000000\n[ 70.724561] FS: 000000002c5c1380(0000) GS:ffff95bd7fcc0000(0000) knlGS:0000000000000000\n[ 70.724561] CS: 0010 DS: 0000 ES: 0000 C\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49949",
"url": "https://www.suse.com/security/cve/CVE-2024-49949"
},
{
"category": "external",
"summary": "SUSE Bug 1232160 for CVE-2024-49949",
"url": "https://bugzilla.suse.com/1232160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49949"
},
{
"cve": "CVE-2024-49950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix uaf in l2cap_connect\n\n[Syzbot reported]\nBUG: KASAN: slab-use-after-free in l2cap_connect.constprop.0+0x10d8/0x1270 net/bluetooth/l2cap_core.c:3949\nRead of size 8 at addr ffff8880241e9800 by task kworker/u9:0/54\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-00268-g788220eee30d #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci2 hci_rx_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n l2cap_connect.constprop.0+0x10d8/0x1270 net/bluetooth/l2cap_core.c:3949\n l2cap_connect_req net/bluetooth/l2cap_core.c:4080 [inline]\n l2cap_bredr_sig_cmd net/bluetooth/l2cap_core.c:4772 [inline]\n l2cap_sig_channel net/bluetooth/l2cap_core.c:5543 [inline]\n l2cap_recv_frame+0xf0b/0x8eb0 net/bluetooth/l2cap_core.c:6825\n l2cap_recv_acldata+0x9b4/0xb70 net/bluetooth/l2cap_core.c:7514\n hci_acldata_packet net/bluetooth/hci_core.c:3791 [inline]\n hci_rx_work+0xaab/0x1610 net/bluetooth/hci_core.c:4028\n process_one_work+0x9c5/0x1b40 kernel/workqueue.c:3231\n process_scheduled_works kernel/workqueue.c:3312 [inline]\n worker_thread+0x6c8/0xed0 kernel/workqueue.c:3389\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n...\n\nFreed by task 5245:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:47\n kasan_save_track+0x14/0x30 mm/kasan/common.c:68\n kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:579\n poison_slab_object+0xf7/0x160 mm/kasan/common.c:240\n __kasan_slab_free+0x32/0x50 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x12a/0x3b0 mm/slub.c:4598\n l2cap_conn_free net/bluetooth/l2cap_core.c:1810 [inline]\n kref_put include/linux/kref.h:65 [inline]\n l2cap_conn_put net/bluetooth/l2cap_core.c:1822 [inline]\n l2cap_conn_del+0x59d/0x730 net/bluetooth/l2cap_core.c:1802\n l2cap_connect_cfm+0x9e6/0xf80 net/bluetooth/l2cap_core.c:7241\n hci_connect_cfm include/net/bluetooth/hci_core.h:1960 [inline]\n hci_conn_failed+0x1c3/0x370 net/bluetooth/hci_conn.c:1265\n hci_abort_conn_sync+0x75a/0xb50 net/bluetooth/hci_sync.c:5583\n abort_conn_sync+0x197/0x360 net/bluetooth/hci_conn.c:2917\n hci_cmd_sync_work+0x1a4/0x410 net/bluetooth/hci_sync.c:328\n process_one_work+0x9c5/0x1b40 kernel/workqueue.c:3231\n process_scheduled_works kernel/workqueue.c:3312 [inline]\n worker_thread+0x6c8/0xed0 kernel/workqueue.c:3389\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49950",
"url": "https://www.suse.com/security/cve/CVE-2024-49950"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49950",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232159 for CVE-2024-49950",
"url": "https://bugzilla.suse.com/1232159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49950"
},
{
"cve": "CVE-2024-49951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix possible crash on mgmt_index_removed\n\nIf mgmt_index_removed is called while there are commands queued on\ncmd_sync it could lead to crashes like the bellow trace:\n\n0x0000053D: __list_del_entry_valid_or_report+0x98/0xdc\n0x0000053D: mgmt_pending_remove+0x18/0x58 [bluetooth]\n0x0000053E: mgmt_remove_adv_monitor_complete+0x80/0x108 [bluetooth]\n0x0000053E: hci_cmd_sync_work+0xbc/0x164 [bluetooth]\n\nSo while handling mgmt_index_removed this attempts to dequeue\ncommands passed as user_data to cmd_sync.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49951",
"url": "https://www.suse.com/security/cve/CVE-2024-49951"
},
{
"category": "external",
"summary": "SUSE Bug 1232158 for CVE-2024-49951",
"url": "https://bugzilla.suse.com/1232158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49951"
},
{
"cve": "CVE-2024-49952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49952"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: prevent nf_skb_duplicated corruption\n\nsyzbot found that nf_dup_ipv4() or nf_dup_ipv6() could write\nper-cpu variable nf_skb_duplicated in an unsafe way [1].\n\nDisabling preemption as hinted by the splat is not enough,\nwe have to disable soft interrupts as well.\n\n[1]\nBUG: using __this_cpu_write() in preemptible [00000000] code: syz.4.282/6316\n caller is nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\nCPU: 0 UID: 0 PID: 6316 Comm: syz.4.282 Not tainted 6.11.0-rc7-syzkaller-00104-g7052622fccb1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n check_preemption_disabled+0x10e/0x120 lib/smp_processor_id.c:49\n nf_dup_ipv4+0x651/0x8f0 net/ipv4/netfilter/nf_dup_ipv4.c:87\n nft_dup_ipv4_eval+0x1db/0x300 net/ipv4/netfilter/nft_dup_ipv4.c:30\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_ipv4+0x202/0x320 net/netfilter/nft_chain_filter.c:23\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook+0x2c4/0x450 include/linux/netfilter.h:269\n NF_HOOK_COND include/linux/netfilter.h:302 [inline]\n ip_output+0x185/0x230 net/ipv4/ip_output.c:433\n ip_local_out net/ipv4/ip_output.c:129 [inline]\n ip_send_skb+0x74/0x100 net/ipv4/ip_output.c:1495\n udp_send_skb+0xacf/0x1650 net/ipv4/udp.c:981\n udp_sendmsg+0x1c21/0x2a60 net/ipv4/udp.c:1269\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmmsg+0x3b2/0x740 net/socket.c:2737\n __do_sys_sendmmsg net/socket.c:2766 [inline]\n __se_sys_sendmmsg net/socket.c:2763 [inline]\n __x64_sys_sendmmsg+0xa0/0xb0 net/socket.c:2763\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f4ce4f7def9\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f4ce5d4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133\nRAX: ffffffffffffffda RBX: 00007f4ce5135f80 RCX: 00007f4ce4f7def9\nRDX: 0000000000000001 RSI: 0000000020005d40 RDI: 0000000000000006\nRBP: 00007f4ce4ff0b76 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f4ce5135f80 R15: 00007ffd4cbc6d68\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49952",
"url": "https://www.suse.com/security/cve/CVE-2024-49952"
},
{
"category": "external",
"summary": "SUSE Bug 1232157 for CVE-2024-49952",
"url": "https://bugzilla.suse.com/1232157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49952"
},
{
"cve": "CVE-2024-49953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice\n\nThe km.state is not checked in driver\u0027s delayed work. When\nxfrm_state_check_expire() is called, the state can be reset to\nXFRM_STATE_EXPIRED, even if it is XFRM_STATE_DEAD already. This\nhappens when xfrm state is deleted, but not freed yet. As\n__xfrm_state_delete() is called again in xfrm timer, the following\ncrash occurs.\n\nTo fix this issue, skip xfrm_state_check_expire() if km.state is not\nXFRM_STATE_VALID.\n\n Oops: general protection fault, probably for non-canonical address 0xdead000000000108: 0000 [#1] SMP\n CPU: 5 UID: 0 PID: 7448 Comm: kworker/u102:2 Not tainted 6.11.0-rc2+ #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n Workqueue: mlx5e_ipsec: eth%d mlx5e_ipsec_handle_sw_limits [mlx5_core]\n RIP: 0010:__xfrm_state_delete+0x3d/0x1b0\n Code: 0f 84 8b 01 00 00 48 89 fd c6 87 c8 00 00 00 05 48 8d bb 40 10 00 00 e8 11 04 1a 00 48 8b 95 b8 00 00 00 48 8b 85 c0 00 00 00 \u003c48\u003e 89 42 08 48 89 10 48 8b 55 10 48 b8 00 01 00 00 00 00 ad de 48\n RSP: 0018:ffff88885f945ec8 EFLAGS: 00010246\n RAX: dead000000000122 RBX: ffffffff82afa940 RCX: 0000000000000036\n RDX: dead000000000100 RSI: 0000000000000000 RDI: ffffffff82afb980\n RBP: ffff888109a20340 R08: ffff88885f945ea0 R09: 0000000000000000\n R10: 0000000000000000 R11: ffff88885f945ff8 R12: 0000000000000246\n R13: ffff888109a20340 R14: ffff88885f95f420 R15: ffff88885f95f400\n FS: 0000000000000000(0000) GS:ffff88885f940000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f2163102430 CR3: 00000001128d6001 CR4: 0000000000370eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cIRQ\u003e\n ? die_addr+0x33/0x90\n ? exc_general_protection+0x1a2/0x390\n ? asm_exc_general_protection+0x22/0x30\n ? __xfrm_state_delete+0x3d/0x1b0\n ? __xfrm_state_delete+0x2f/0x1b0\n xfrm_timer_handler+0x174/0x350\n ? __xfrm_state_delete+0x1b0/0x1b0\n __hrtimer_run_queues+0x121/0x270\n hrtimer_run_softirq+0x88/0xd0\n handle_softirqs+0xcc/0x270\n do_softirq+0x3c/0x50\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x47/0x50\n mlx5e_ipsec_handle_sw_limits+0x7d/0x90 [mlx5_core]\n process_one_work+0x137/0x2d0\n worker_thread+0x28d/0x3a0\n ? rescuer_thread+0x480/0x480\n kthread+0xb8/0xe0\n ? kthread_park+0x80/0x80\n ret_from_fork+0x2d/0x50\n ? kthread_park+0x80/0x80\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49953",
"url": "https://www.suse.com/security/cve/CVE-2024-49953"
},
{
"category": "external",
"summary": "SUSE Bug 1232156 for CVE-2024-49953",
"url": "https://bugzilla.suse.com/1232156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49953"
},
{
"cve": "CVE-2024-49954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstatic_call: Replace pointless WARN_ON() in static_call_module_notify()\n\nstatic_call_module_notify() triggers a WARN_ON(), when memory allocation\nfails in __static_call_add_module().\n\nThat\u0027s not really justified, because the failure case must be correctly\nhandled by the well known call chain and the error code is passed\nthrough to the initiating userspace application.\n\nA memory allocation fail is not a fatal problem, but the WARN_ON() takes\nthe machine out when panic_on_warn is set.\n\nReplace it with a pr_warn().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49954",
"url": "https://www.suse.com/security/cve/CVE-2024-49954"
},
{
"category": "external",
"summary": "SUSE Bug 1232155 for CVE-2024-49954",
"url": "https://bugzilla.suse.com/1232155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49954"
},
{
"cve": "CVE-2024-49955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: battery: Fix possible crash when unregistering a battery hook\n\nWhen a battery hook returns an error when adding a new battery, then\nthe battery hook is automatically unregistered.\nHowever the battery hook provider cannot know that, so it will later\ncall battery_hook_unregister() on the already unregistered battery\nhook, resulting in a crash.\n\nFix this by using the list head to mark already unregistered battery\nhooks as already being unregistered so that they can be ignored by\nbattery_hook_unregister().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49955",
"url": "https://www.suse.com/security/cve/CVE-2024-49955"
},
{
"category": "external",
"summary": "SUSE Bug 1232154 for CVE-2024-49955",
"url": "https://bugzilla.suse.com/1232154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49955"
},
{
"cve": "CVE-2024-49956",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49956"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: fix double destroy_workqueue error\n\nWhen gfs2_fill_super() fails, destroy_workqueue() is called within\ngfs2_gl_hash_clear(), and the subsequent code path calls\ndestroy_workqueue() on the same work queue again.\n\nThis issue can be fixed by setting the work queue pointer to NULL after\nthe first destroy_workqueue() call and checking for a NULL pointer\nbefore attempting to destroy the work queue again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49956",
"url": "https://www.suse.com/security/cve/CVE-2024-49956"
},
{
"category": "external",
"summary": "SUSE Bug 1232153 for CVE-2024-49956",
"url": "https://bugzilla.suse.com/1232153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49956"
},
{
"cve": "CVE-2024-49957",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49957"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix null-ptr-deref when journal load failed.\n\nDuring the mounting process, if journal_reset() fails because of too short\njournal, then lead to jbd2_journal_load() fails with NULL j_sb_buffer. \nSubsequently, ocfs2_journal_shutdown() calls\njbd2_journal_flush()-\u003ejbd2_cleanup_journal_tail()-\u003e\n__jbd2_update_log_tail()-\u003ejbd2_journal_update_sb_log_tail()\n-\u003elock_buffer(journal-\u003ej_sb_buffer), resulting in a null-pointer\ndereference error.\n\nTo resolve this issue, we should check the JBD2_LOADED flag to ensure the\njournal was properly loaded. Additionally, use journal instead of\nosb-\u003ejournal directly to simplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49957",
"url": "https://www.suse.com/security/cve/CVE-2024-49957"
},
{
"category": "external",
"summary": "SUSE Bug 1232152 for CVE-2024-49957",
"url": "https://bugzilla.suse.com/1232152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49957"
},
{
"cve": "CVE-2024-49958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49958"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: reserve space for inline xattr before attaching reflink tree\n\nOne of our customers reported a crash and a corrupted ocfs2 filesystem. \nThe crash was due to the detection of corruption. Upon troubleshooting,\nthe fsck -fn output showed the below corruption\n\n[EXTENT_LIST_FREE] Extent list in owner 33080590 claims 230 as the next free chain record,\nbut fsck believes the largest valid value is 227. Clamp the next record value? n\n\nThe stat output from the debugfs.ocfs2 showed the following corruption\nwhere the \"Next Free Rec:\" had overshot the \"Count:\" in the root metadata\nblock.\n\n Inode: 33080590 Mode: 0640 Generation: 2619713622 (0x9c25a856)\n FS Generation: 904309833 (0x35e6ac49)\n CRC32: 00000000 ECC: 0000\n Type: Regular Attr: 0x0 Flags: Valid\n Dynamic Features: (0x16) HasXattr InlineXattr Refcounted\n Extended Attributes Block: 0 Extended Attributes Inline Size: 256\n User: 0 (root) Group: 0 (root) Size: 281320357888\n Links: 1 Clusters: 141738\n ctime: 0x66911b56 0x316edcb8 -- Fri Jul 12 06:02:30.829349048 2024\n atime: 0x66911d6b 0x7f7a28d -- Fri Jul 12 06:11:23.133669517 2024\n mtime: 0x66911b56 0x12ed75d7 -- Fri Jul 12 06:02:30.317552087 2024\n dtime: 0x0 -- Wed Dec 31 17:00:00 1969\n Refcount Block: 2777346\n Last Extblk: 2886943 Orphan Slot: 0\n Sub Alloc Slot: 0 Sub Alloc Bit: 14\n Tree Depth: 1 Count: 227 Next Free Rec: 230\n ## Offset Clusters Block#\n 0 0 2310 2776351\n 1 2310 2139 2777375\n 2 4449 1221 2778399\n 3 5670 731 2779423\n 4 6401 566 2780447\n ....... .... .......\n ....... .... .......\n\nThe issue was in the reflink workfow while reserving space for inline\nxattr. The problematic function is ocfs2_reflink_xattr_inline(). By the\ntime this function is called the reflink tree is already recreated at the\ndestination inode from the source inode. At this point, this function\nreserves space for inline xattrs at the destination inode without even\nchecking if there is space at the root metadata block. It simply reduces\nthe l_count from 243 to 227 thereby making space of 256 bytes for inline\nxattr whereas the inode already has extents beyond this index (in this\ncase up to 230), thereby causing corruption.\n\nThe fix for this is to reserve space for inline metadata at the destination\ninode before the reflink tree gets recreated. The customer has verified the\nfix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49958",
"url": "https://www.suse.com/security/cve/CVE-2024-49958"
},
{
"category": "external",
"summary": "SUSE Bug 1232151 for CVE-2024-49958",
"url": "https://bugzilla.suse.com/1232151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49958"
},
{
"cve": "CVE-2024-49959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49959"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error\n\nIn __jbd2_log_wait_for_space(), we might call jbd2_cleanup_journal_tail()\nto recover some journal space. But if an error occurs while executing\njbd2_cleanup_journal_tail() (e.g., an EIO), we don\u0027t stop waiting for free\nspace right away, we try other branches, and if j_committing_transaction\nis NULL (i.e., the tid is 0), we will get the following complain:\n\n============================================\nJBD2: I/O error when updating journal superblock for sdd-8.\n__jbd2_log_wait_for_space: needed 256 blocks and only had 217 space available\n__jbd2_log_wait_for_space: no way to get more journal space in sdd-8\n------------[ cut here ]------------\nWARNING: CPU: 2 PID: 139804 at fs/jbd2/checkpoint.c:109 __jbd2_log_wait_for_space+0x251/0x2e0\nModules linked in:\nCPU: 2 PID: 139804 Comm: kworker/u8:3 Not tainted 6.6.0+ #1\nRIP: 0010:__jbd2_log_wait_for_space+0x251/0x2e0\nCall Trace:\n \u003cTASK\u003e\n add_transaction_credits+0x5d1/0x5e0\n start_this_handle+0x1ef/0x6a0\n jbd2__journal_start+0x18b/0x340\n ext4_dirty_inode+0x5d/0xb0\n __mark_inode_dirty+0xe4/0x5d0\n generic_update_time+0x60/0x70\n[...]\n============================================\n\nSo only if jbd2_cleanup_journal_tail() returns 1, i.e., there is nothing to\nclean up at the moment, continue to try to reclaim free space in other ways.\n\nNote that this fix relies on commit 6f6a6fda2945 (\"jbd2: fix ocfs2 corrupt\nwhen updating journal superblock fails\") to make jbd2_cleanup_journal_tail\nreturn the correct error code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49959",
"url": "https://www.suse.com/security/cve/CVE-2024-49959"
},
{
"category": "external",
"summary": "SUSE Bug 1232149 for CVE-2024-49959",
"url": "https://bugzilla.suse.com/1232149"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49959"
},
{
"cve": "CVE-2024-49960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix timer use-after-free on failed mount\n\nSyzbot has found an ODEBUG bug in ext4_fill_super\n\nThe del_timer_sync function cancels the s_err_report timer,\nwhich reminds about filesystem errors daily. We should\nguarantee the timer is no longer active before kfree(sbi).\n\nWhen filesystem mounting fails, the flow goes to failed_mount3,\nwhere an error occurs when ext4_stop_mmpd is called, causing\na read I/O failure. This triggers the ext4_handle_error function\nthat ultimately re-arms the timer,\nleaving the s_err_report timer active before kfree(sbi) is called.\n\nFix the issue by canceling the s_err_report timer after calling ext4_stop_mmpd.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49960",
"url": "https://www.suse.com/security/cve/CVE-2024-49960"
},
{
"category": "external",
"summary": "SUSE Bug 1232395 for CVE-2024-49960",
"url": "https://bugzilla.suse.com/1232395"
},
{
"category": "external",
"summary": "SUSE Bug 1232803 for CVE-2024-49960",
"url": "https://bugzilla.suse.com/1232803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49960"
},
{
"cve": "CVE-2024-49961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: i2c: ar0521: Use cansleep version of gpiod_set_value()\n\nIf we use GPIO reset from I2C port expander, we must use *_cansleep()\nvariant of GPIO functions.\nThis was not done in ar0521_power_on()/ar0521_power_off() functions.\nLet\u0027s fix that.\n\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 11 at drivers/gpio/gpiolib.c:3496 gpiod_set_value+0x74/0x7c\nModules linked in:\nCPU: 0 PID: 11 Comm: kworker/u16:0 Not tainted 6.10.0 #53\nHardware name: Diasom DS-RK3568-SOM-EVB (DT)\nWorkqueue: events_unbound deferred_probe_work_func\npstate: 80400009 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : gpiod_set_value+0x74/0x7c\nlr : ar0521_power_on+0xcc/0x290\nsp : ffffff8001d7ab70\nx29: ffffff8001d7ab70 x28: ffffff80027dcc90 x27: ffffff8003c82000\nx26: ffffff8003ca9250 x25: ffffffc080a39c60 x24: ffffff8003ca9088\nx23: ffffff8002402720 x22: ffffff8003ca9080 x21: ffffff8003ca9088\nx20: 0000000000000000 x19: ffffff8001eb2a00 x18: ffffff80efeeac80\nx17: 756d2d6332692f30 x16: 0000000000000000 x15: 0000000000000000\nx14: ffffff8001d91d40 x13: 0000000000000016 x12: ffffffc080e98930\nx11: ffffff8001eb2880 x10: 0000000000000890 x9 : ffffff8001d7a9f0\nx8 : ffffff8001d92570 x7 : ffffff80efeeac80 x6 : 000000003fc6e780\nx5 : ffffff8001d91c80 x4 : 0000000000000002 x3 : 0000000000000000\nx2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000001\nCall trace:\n gpiod_set_value+0x74/0x7c\n ar0521_power_on+0xcc/0x290\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49961",
"url": "https://www.suse.com/security/cve/CVE-2024-49961"
},
{
"category": "external",
"summary": "SUSE Bug 1232148 for CVE-2024-49961",
"url": "https://bugzilla.suse.com/1232148"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49961"
},
{
"cve": "CVE-2024-49962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package()\n\nACPICA commit 4d4547cf13cca820ff7e0f859ba83e1a610b9fd0\n\nACPI_ALLOCATE_ZEROED() may fail, elements might be NULL and will cause\nNULL pointer dereference later.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49962",
"url": "https://www.suse.com/security/cve/CVE-2024-49962"
},
{
"category": "external",
"summary": "SUSE Bug 1232314 for CVE-2024-49962",
"url": "https://bugzilla.suse.com/1232314"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49962"
},
{
"cve": "CVE-2024-49963",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49963"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmailbox: bcm2835: Fix timeout during suspend mode\n\nDuring noirq suspend phase the Raspberry Pi power driver suffer of\nfirmware property timeouts. The reason is that the IRQ of the underlying\nBCM2835 mailbox is disabled and rpi_firmware_property_list() will always\nrun into a timeout [1].\n\nSince the VideoCore side isn\u0027t consider as a wakeup source, set the\nIRQF_NO_SUSPEND flag for the mailbox IRQ in order to keep it enabled\nduring suspend-resume cycle.\n\n[1]\nPM: late suspend of devices complete after 1.754 msecs\nWARNING: CPU: 0 PID: 438 at drivers/firmware/raspberrypi.c:128\n rpi_firmware_property_list+0x204/0x22c\nFirmware transaction 0x00028001 timeout\nModules linked in:\nCPU: 0 PID: 438 Comm: bash Tainted: G C 6.9.3-dirty #17\nHardware name: BCM2835\nCall trace:\nunwind_backtrace from show_stack+0x18/0x1c\nshow_stack from dump_stack_lvl+0x34/0x44\ndump_stack_lvl from __warn+0x88/0xec\n__warn from warn_slowpath_fmt+0x7c/0xb0\nwarn_slowpath_fmt from rpi_firmware_property_list+0x204/0x22c\nrpi_firmware_property_list from rpi_firmware_property+0x68/0x8c\nrpi_firmware_property from rpi_firmware_set_power+0x54/0xc0\nrpi_firmware_set_power from _genpd_power_off+0xe4/0x148\n_genpd_power_off from genpd_sync_power_off+0x7c/0x11c\ngenpd_sync_power_off from genpd_finish_suspend+0xcc/0xe0\ngenpd_finish_suspend from dpm_run_callback+0x78/0xd0\ndpm_run_callback from device_suspend_noirq+0xc0/0x238\ndevice_suspend_noirq from dpm_suspend_noirq+0xb0/0x168\ndpm_suspend_noirq from suspend_devices_and_enter+0x1b8/0x5ac\nsuspend_devices_and_enter from pm_suspend+0x254/0x2e4\npm_suspend from state_store+0xa8/0xd4\nstate_store from kernfs_fop_write_iter+0x154/0x1a0\nkernfs_fop_write_iter from vfs_write+0x12c/0x184\nvfs_write from ksys_write+0x78/0xc0\nksys_write from ret_fast_syscall+0x0/0x54\nException stack(0xcc93dfa8 to 0xcc93dff0)\n[...]\nPM: noirq suspend of devices complete after 3095.584 msecs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49963",
"url": "https://www.suse.com/security/cve/CVE-2024-49963"
},
{
"category": "external",
"summary": "SUSE Bug 1232147 for CVE-2024-49963",
"url": "https://bugzilla.suse.com/1232147"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49963"
},
{
"cve": "CVE-2024-49964",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49964"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/hugetlb: fix memfd_pin_folios free_huge_pages leak\n\nmemfd_pin_folios followed by unpin_folios fails to restore free_huge_pages\nif the pages were not already faulted in, because the folio refcount for\npages created by memfd_alloc_folio never goes to 0. memfd_pin_folios\nneeds another folio_put to undo the folio_try_get below:\n\nmemfd_alloc_folio()\n alloc_hugetlb_folio_nodemask()\n dequeue_hugetlb_folio_nodemask()\n dequeue_hugetlb_folio_node_exact()\n folio_ref_unfreeze(folio, 1); ; adds 1 refcount\n folio_try_get() ; adds 1 refcount\n hugetlb_add_to_page_cache() ; adds 512 refcount (on x86)\n\nWith the fix, after memfd_pin_folios + unpin_folios, the refcount for the\n(unfaulted) page is 512, which is correct, as the refcount for a faulted\nunpinned page is 513.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49964",
"url": "https://www.suse.com/security/cve/CVE-2024-49964"
},
{
"category": "external",
"summary": "SUSE Bug 1232144 for CVE-2024-49964",
"url": "https://bugzilla.suse.com/1232144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49964"
},
{
"cve": "CVE-2024-49965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: remove unreasonable unlock in ocfs2_read_blocks\n\nPatch series \"Misc fixes for ocfs2_read_blocks\", v5.\n\nThis series contains 2 fixes for ocfs2_read_blocks(). The first patch fix\nthe issue reported by syzbot, which detects bad unlock balance in\nocfs2_read_blocks(). The second patch fixes an issue reported by Heming\nZhao when reviewing above fix.\n\n\nThis patch (of 2):\n\nThere was a lock release before exiting, so remove the unreasonable unlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49965",
"url": "https://www.suse.com/security/cve/CVE-2024-49965"
},
{
"category": "external",
"summary": "SUSE Bug 1232142 for CVE-2024-49965",
"url": "https://bugzilla.suse.com/1232142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49965"
},
{
"cve": "CVE-2024-49966",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49966"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: cancel dqi_sync_work before freeing oinfo\n\nocfs2_global_read_info() will initialize and schedule dqi_sync_work at the\nend, if error occurs after successfully reading global quota, it will\ntrigger the following warning with CONFIG_DEBUG_OBJECTS_* enabled:\n\nODEBUG: free active (active state 0) object: 00000000d8b0ce28 object type: timer_list hint: qsync_work_fn+0x0/0x16c\n\nThis reports that there is an active delayed work when freeing oinfo in\nerror handling, so cancel dqi_sync_work first. BTW, return status instead\nof -1 when .read_file_info fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49966",
"url": "https://www.suse.com/security/cve/CVE-2024-49966"
},
{
"category": "external",
"summary": "SUSE Bug 1232141 for CVE-2024-49966",
"url": "https://bugzilla.suse.com/1232141"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49966"
},
{
"cve": "CVE-2024-49967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49967"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49967",
"url": "https://www.suse.com/security/cve/CVE-2024-49967"
},
{
"category": "external",
"summary": "SUSE Bug 1232140 for CVE-2024-49967",
"url": "https://bugzilla.suse.com/1232140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49967"
},
{
"cve": "CVE-2024-49968",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49968"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: filesystems without casefold feature cannot be mounted with siphash\n\nWhen mounting the ext4 filesystem, if the default hash version is set to\nDX_HASH_SIPHASH but the casefold feature is not set, exit the mounting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49968",
"url": "https://www.suse.com/security/cve/CVE-2024-49968"
},
{
"category": "external",
"summary": "SUSE Bug 1232264 for CVE-2024-49968",
"url": "https://bugzilla.suse.com/1232264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49968"
},
{
"cve": "CVE-2024-49969",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49969"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in DCN30 color transformation\n\nThis commit addresses a potential index out of bounds issue in the\n`cm3_helper_translate_curve_to_hw_format` function in the DCN30 color\nmanagement module. The issue could occur when the index \u0027i\u0027 exceeds the\nnumber of transfer function points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, the function returns\nfalse to indicate an error.\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:180 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:181 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:182 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49969",
"url": "https://www.suse.com/security/cve/CVE-2024-49969"
},
{
"category": "external",
"summary": "SUSE Bug 1232519 for CVE-2024-49969",
"url": "https://bugzilla.suse.com/1232519"
},
{
"category": "external",
"summary": "SUSE Bug 1232524 for CVE-2024-49969",
"url": "https://bugzilla.suse.com/1232524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49969"
},
{
"cve": "CVE-2024-49970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49970"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Implement bounds check for stream encoder creation in DCN401\n\n\u0027stream_enc_regs\u0027 array is an array of dcn10_stream_enc_registers\nstructures. The array is initialized with four elements, corresponding\nto the four calls to stream_enc_regs() in the array initializer. This\nmeans that valid indices for this array are 0, 1, 2, and 3.\n\nThe error message \u0027stream_enc_regs\u0027 4 \u003c= 5 below, is indicating that\nthere is an attempt to access this array with an index of 5, which is\nout of bounds. This could lead to undefined behavior\n\nHere, eng_id is used as an index to access the stream_enc_regs array. If\neng_id is 5, this would result in an out-of-bounds access on the\nstream_enc_regs array.\n\nThus fixing Buffer overflow error in dcn401_stream_encoder_create\n\nFound by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn401/dcn401_resource.c:1209 dcn401_stream_encoder_create() error: buffer overflow \u0027stream_enc_regs\u0027 4 \u003c= 5",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49970",
"url": "https://www.suse.com/security/cve/CVE-2024-49970"
},
{
"category": "external",
"summary": "SUSE Bug 1232516 for CVE-2024-49970",
"url": "https://bugzilla.suse.com/1232516"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49970"
},
{
"cve": "CVE-2024-49971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Increase array size of dummy_boolean\n\n[WHY]\ndml2_core_shared_mode_support and dml_core_mode_support access the third\nelement of dummy_boolean, i.e. hw_debug5 = \u0026s-\u003edummy_boolean[2], when\ndummy_boolean has size of 2. Any assignment to hw_debug5 causes an\nOVERRUN.\n\n[HOW]\nIncrease dummy_boolean\u0027s array size to 3.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49971",
"url": "https://www.suse.com/security/cve/CVE-2024-49971"
},
{
"category": "external",
"summary": "SUSE Bug 1232473 for CVE-2024-49971",
"url": "https://bugzilla.suse.com/1232473"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49971"
},
{
"cve": "CVE-2024-49972",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49972"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Deallocate DML memory if allocation fails\n\n[Why]\nWhen DC state create DML memory allocation fails, memory is not\ndeallocated subsequently, resulting in uninitialized structure\nthat is not NULL.\n\n[How]\nDeallocate memory if DML memory allocation fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49972",
"url": "https://www.suse.com/security/cve/CVE-2024-49972"
},
{
"category": "external",
"summary": "SUSE Bug 1232315 for CVE-2024-49972",
"url": "https://bugzilla.suse.com/1232315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49972"
},
{
"cve": "CVE-2024-49973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nr8169: add tally counter fields added with RTL8125\n\nRTL8125 added fields to the tally counter, what may result in the chip\ndma\u0027ing these new fields to unallocated memory. Therefore make sure\nthat the allocated memory area is big enough to hold all of the\ntally counter values, even if we use only parts of it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49973",
"url": "https://www.suse.com/security/cve/CVE-2024-49973"
},
{
"category": "external",
"summary": "SUSE Bug 1232105 for CVE-2024-49973",
"url": "https://bugzilla.suse.com/1232105"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49973"
},
{
"cve": "CVE-2024-49974",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49974"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Limit the number of concurrent async COPY operations\n\nNothing appears to limit the number of concurrent async COPY\noperations that clients can start. In addition, AFAICT each async\nCOPY can copy an unlimited number of 4MB chunks, so can run for a\nlong time. Thus IMO async COPY can become a DoS vector.\n\nAdd a restriction mechanism that bounds the number of concurrent\nbackground COPY operations. Start simple and try to be fair -- this\npatch implements a per-namespace limit.\n\nAn async COPY request that occurs while this limit is exceeded gets\nNFS4ERR_DELAY. The requesting client can choose to send the request\nagain after a delay or fall back to a traditional read/write style\ncopy.\n\nIf there is need to make the mechanism more sophisticated, we can\nvisit that in future patches.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49974",
"url": "https://www.suse.com/security/cve/CVE-2024-49974"
},
{
"category": "external",
"summary": "SUSE Bug 1232383 for CVE-2024-49974",
"url": "https://bugzilla.suse.com/1232383"
},
{
"category": "external",
"summary": "SUSE Bug 1232384 for CVE-2024-49974",
"url": "https://bugzilla.suse.com/1232384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49974"
},
{
"cve": "CVE-2024-49975",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49975"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuprobes: fix kernel info leak via \"[uprobes]\" vma\n\nxol_add_vma() maps the uninitialized page allocated by __create_xol_area()\ninto userspace. On some architectures (x86) this memory is readable even\nwithout VM_READ, VM_EXEC results in the same pgprot_t as VM_EXEC|VM_READ,\nalthough this doesn\u0027t really matter, debugger can read this memory anyway.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49975",
"url": "https://www.suse.com/security/cve/CVE-2024-49975"
},
{
"category": "external",
"summary": "SUSE Bug 1232104 for CVE-2024-49975",
"url": "https://bugzilla.suse.com/1232104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49975"
},
{
"cve": "CVE-2024-49976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing/timerlat: Drop interface_lock in stop_kthread()\n\nstop_kthread() is the offline callback for \"trace/osnoise:online\", since\ncommit 5bfbcd1ee57b (\"tracing/timerlat: Add interface_lock around clearing\nof kthread in stop_kthread()\"), the following ABBA deadlock scenario is\nintroduced:\n\nT1 | T2 [BP] | T3 [AP]\nosnoise_hotplug_workfn() | work_for_cpu_fn() | cpuhp_thread_fun()\n | _cpu_down() | osnoise_cpu_die()\n mutex_lock(\u0026interface_lock) | | stop_kthread()\n | cpus_write_lock() | mutex_lock(\u0026interface_lock)\n cpus_read_lock() | cpuhp_kick_ap() |\n\nAs the interface_lock here in just for protecting the \"kthread\" field of\nthe osn_var, use xchg() instead to fix this issue. Also use\nfor_each_online_cpu() back in stop_per_cpu_kthreads() as it can take\ncpu_read_lock() again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49976",
"url": "https://www.suse.com/security/cve/CVE-2024-49976"
},
{
"category": "external",
"summary": "SUSE Bug 1232103 for CVE-2024-49976",
"url": "https://bugzilla.suse.com/1232103"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49976"
},
{
"cve": "CVE-2024-49977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: Fix zero-division error when disabling tc cbs\n\nThe commit b8c43360f6e4 (\"net: stmmac: No need to calculate speed divider\nwhen offload is disabled\") allows the \"port_transmit_rate_kbps\" to be\nset to a value of 0, which is then passed to the \"div_s64\" function when\ntc-cbs is disabled. This leads to a zero-division error.\n\nWhen tc-cbs is disabled, the idleslope, sendslope, and credit values the\ncredit values are not required to be configured. Therefore, adding a return\nstatement after setting the txQ mode to DCB when tc-cbs is disabled would\nprevent a zero-division error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49977",
"url": "https://www.suse.com/security/cve/CVE-2024-49977"
},
{
"category": "external",
"summary": "SUSE Bug 1232102 for CVE-2024-49977",
"url": "https://bugzilla.suse.com/1232102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49977"
},
{
"cve": "CVE-2024-49978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngso: fix udp gso fraglist segmentation after pull from frag_list\n\nDetect gso fraglist skbs with corrupted geometry (see below) and\npass these to skb_segment instead of skb_segment_list, as the first\ncan segment them correctly.\n\nValid SKB_GSO_FRAGLIST skbs\n- consist of two or more segments\n- the head_skb holds the protocol headers plus first gso_size\n- one or more frag_list skbs hold exactly one segment\n- all but the last must be gso_size\n\nOptional datapath hooks such as NAT and BPF (bpf_skb_pull_data) can\nmodify these skbs, breaking these invariants.\n\nIn extreme cases they pull all data into skb linear. For UDP, this\ncauses a NULL ptr deref in __udpv4_gso_segment_list_csum at\nudp_hdr(seg-\u003enext)-\u003edest.\n\nDetect invalid geometry due to pull, by checking head_skb size.\nDon\u0027t just drop, as this may blackhole a destination. Convert to be\nable to pass to regular skb_segment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49978",
"url": "https://www.suse.com/security/cve/CVE-2024-49978"
},
{
"category": "external",
"summary": "SUSE Bug 1232101 for CVE-2024-49978",
"url": "https://bugzilla.suse.com/1232101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49978"
},
{
"cve": "CVE-2024-49979",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49979"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: gso: fix tcp fraglist segmentation after pull from frag_list\n\nDetect tcp gso fraglist skbs with corrupted geometry (see below) and\npass these to skb_segment instead of skb_segment_list, as the first\ncan segment them correctly.\n\nValid SKB_GSO_FRAGLIST skbs\n- consist of two or more segments\n- the head_skb holds the protocol headers plus first gso_size\n- one or more frag_list skbs hold exactly one segment\n- all but the last must be gso_size\n\nOptional datapath hooks such as NAT and BPF (bpf_skb_pull_data) can\nmodify these skbs, breaking these invariants.\n\nIn extreme cases they pull all data into skb linear. For TCP, this\ncauses a NULL ptr deref in __tcpv4_gso_segment_list_csum at\ntcp_hdr(seg-\u003enext).\n\nDetect invalid geometry due to pull, by checking head_skb size.\nDon\u0027t just drop, as this may blackhole a destination. Convert to be\nable to pass to regular skb_segment.\n\nApproach and description based on a patch by Willem de Bruijn.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49979",
"url": "https://www.suse.com/security/cve/CVE-2024-49979"
},
{
"category": "external",
"summary": "SUSE Bug 1232100 for CVE-2024-49979",
"url": "https://bugzilla.suse.com/1232100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49979"
},
{
"cve": "CVE-2024-49980",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49980"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvrf: revert \"vrf: Remove unnecessary RCU-bh critical section\"\n\nThis reverts commit 504fc6f4f7f681d2a03aa5f68aad549d90eab853.\n\ndev_queue_xmit_nit is expected to be called with BH disabled.\n__dev_queue_xmit has the following:\n\n /* Disable soft irqs for various locks below. Also\n * stops preemption for RCU.\n */\n rcu_read_lock_bh();\n\nVRF must follow this invariant. The referenced commit removed this\nprotection. Which triggered a lockdep warning:\n\n\t================================\n\tWARNING: inconsistent lock state\n\t6.11.0 #1 Tainted: G W\n\t--------------------------------\n\tinconsistent {IN-SOFTIRQ-W} -\u003e {SOFTIRQ-ON-W} usage.\n\tbtserver/134819 [HC0[0]:SC0[0]:HE1:SE1] takes:\n\tffff8882da30c118 (rlock-AF_PACKET){+.?.}-{2:2}, at: tpacket_rcv+0x863/0x3b30\n\t{IN-SOFTIRQ-W} state was registered at:\n\t lock_acquire+0x19a/0x4f0\n\t _raw_spin_lock+0x27/0x40\n\t packet_rcv+0xa33/0x1320\n\t __netif_receive_skb_core.constprop.0+0xcb0/0x3a90\n\t __netif_receive_skb_list_core+0x2c9/0x890\n\t netif_receive_skb_list_internal+0x610/0xcc0\n [...]\n\n\tother info that might help us debug this:\n\t Possible unsafe locking scenario:\n\n\t CPU0\n\t ----\n\t lock(rlock-AF_PACKET);\n\t \u003cInterrupt\u003e\n\t lock(rlock-AF_PACKET);\n\n\t *** DEADLOCK ***\n\n\tCall Trace:\n\t \u003cTASK\u003e\n\t dump_stack_lvl+0x73/0xa0\n\t mark_lock+0x102e/0x16b0\n\t __lock_acquire+0x9ae/0x6170\n\t lock_acquire+0x19a/0x4f0\n\t _raw_spin_lock+0x27/0x40\n\t tpacket_rcv+0x863/0x3b30\n\t dev_queue_xmit_nit+0x709/0xa40\n\t vrf_finish_direct+0x26e/0x340 [vrf]\n\t vrf_l3_out+0x5f4/0xe80 [vrf]\n\t __ip_local_out+0x51e/0x7a0\n [...]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49980",
"url": "https://www.suse.com/security/cve/CVE-2024-49980"
},
{
"category": "external",
"summary": "SUSE Bug 1232099 for CVE-2024-49980",
"url": "https://bugzilla.suse.com/1232099"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49980"
},
{
"cve": "CVE-2024-49981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49981"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: venus: fix use after free bug in venus_remove due to race condition\n\nin venus_probe, core-\u003ework is bound with venus_sys_error_handler, which is\nused to handle error. The code use core-\u003esys_err_done to make sync work.\nThe core-\u003ework is started in venus_event_notify.\n\nIf we call venus_remove, there might be an unfished work. The possible\nsequence is as follows:\n\nCPU0 CPU1\n\n |venus_sys_error_handler\nvenus_remove |\nhfi_destroy\t \t\t |\nvenus_hfi_destroy\t |\nkfree(hdev);\t |\n |hfi_reinit\n\t\t\t\t\t |venus_hfi_queues_reinit\n |//use hdev\n\nFix it by canceling the work in venus_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49981",
"url": "https://www.suse.com/security/cve/CVE-2024-49981"
},
{
"category": "external",
"summary": "SUSE Bug 1232098 for CVE-2024-49981",
"url": "https://bugzilla.suse.com/1232098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49981"
},
{
"cve": "CVE-2024-49982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naoe: fix the potential use-after-free problem in more places\n\nFor fixing CVE-2023-6270, f98364e92662 (\"aoe: fix the potential\nuse-after-free problem in aoecmd_cfg_pkts\") makes tx() calling dev_put()\ninstead of doing in aoecmd_cfg_pkts(). It avoids that the tx() runs\ninto use-after-free.\n\nThen Nicolai Stange found more places in aoe have potential use-after-free\nproblem with tx(). e.g. revalidate(), aoecmd_ata_rw(), resend(), probe()\nand aoecmd_cfg_rsp(). Those functions also use aoenet_xmit() to push\npacket to tx queue. So they should also use dev_hold() to increase the\nrefcnt of skb-\u003edev.\n\nOn the other hand, moving dev_put() to tx() causes that the refcnt of\nskb-\u003edev be reduced to a negative value, because corresponding\ndev_hold() are not called in revalidate(), aoecmd_ata_rw(), resend(),\nprobe(), and aoecmd_cfg_rsp(). This patch fixed this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49982",
"url": "https://www.suse.com/security/cve/CVE-2024-49982"
},
{
"category": "external",
"summary": "SUSE Bug 1232097 for CVE-2024-49982",
"url": "https://bugzilla.suse.com/1232097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49982"
},
{
"cve": "CVE-2024-49983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free\n\nWhen calling ext4_force_split_extent_at() in ext4_ext_replay_update_ex(),\nthe \u0027ppath\u0027 is updated but it is the \u0027path\u0027 that is freed, thus potentially\ntriggering a double-free in the following process:\n\next4_ext_replay_update_ex\n ppath = path\n ext4_force_split_extent_at(\u0026ppath)\n ext4_split_extent_at\n ext4_ext_insert_extent\n ext4_ext_create_new_leaf\n ext4_ext_grow_indepth\n ext4_find_extent\n if (depth \u003e path[0].p_maxdepth)\n kfree(path) ---\u003e path First freed\n *orig_path = path = NULL ---\u003e null ppath\n kfree(path) ---\u003e path double-free !!!\n\nSo drop the unnecessary ppath and use path directly to avoid this problem.\nAnd use ext4_find_extent() directly to update path, avoiding unnecessary\nmemory allocation and freeing. Also, propagate the error returned by\next4_find_extent() instead of using strange error codes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49983",
"url": "https://www.suse.com/security/cve/CVE-2024-49983"
},
{
"category": "external",
"summary": "SUSE Bug 1232096 for CVE-2024-49983",
"url": "https://bugzilla.suse.com/1232096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49983"
},
{
"cve": "CVE-2024-49984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/v3d: Prevent out of bounds access in performance query extensions\n\nCheck that the number of perfmons userspace is passing in the copy and\nreset extensions is not greater than the internal kernel storage where\nthe ids will be copied into.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49984",
"url": "https://www.suse.com/security/cve/CVE-2024-49984"
},
{
"category": "external",
"summary": "SUSE Bug 1232095 for CVE-2024-49984",
"url": "https://bugzilla.suse.com/1232095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49984"
},
{
"cve": "CVE-2024-49985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume\n\nIn case there is any sort of clock controller attached to this I2C bus\ncontroller, for example Versaclock or even an AIC32x4 I2C codec, then\nan I2C transfer triggered from the clock controller clk_ops .prepare\ncallback may trigger a deadlock on drivers/clk/clk.c prepare_lock mutex.\n\nThis is because the clock controller first grabs the prepare_lock mutex\nand then performs the prepare operation, including its I2C access. The\nI2C access resumes this I2C bus controller via .runtime_resume callback,\nwhich calls clk_prepare_enable(), which attempts to grab the prepare_lock\nmutex again and deadlocks.\n\nSince the clock are already prepared since probe() and unprepared in\nremove(), use simple clk_enable()/clk_disable() calls to enable and\ndisable the clock on runtime suspend and resume, to avoid hitting the\nprepare_lock mutex.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49985",
"url": "https://www.suse.com/security/cve/CVE-2024-49985"
},
{
"category": "external",
"summary": "SUSE Bug 1232094 for CVE-2024-49985",
"url": "https://bugzilla.suse.com/1232094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49985"
},
{
"cve": "CVE-2024-49986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors\n\nx86_android_tablet_remove() frees the pdevs[] array, so it should not\nbe used after calling x86_android_tablet_remove().\n\nWhen platform_device_register() fails, store the pdevs[x] PTR_ERR() value\ninto the local ret variable before calling x86_android_tablet_remove()\nto avoid using pdevs[] after it has been freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49986",
"url": "https://www.suse.com/security/cve/CVE-2024-49986"
},
{
"category": "external",
"summary": "SUSE Bug 1232093 for CVE-2024-49986",
"url": "https://bugzilla.suse.com/1232093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49986"
},
{
"cve": "CVE-2024-49987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49987"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpftool: Fix undefined behavior in qsort(NULL, 0, ...)\n\nWhen netfilter has no entry to display, qsort is called with\nqsort(NULL, 0, ...). This results in undefined behavior, as UBSan\nreports:\n\nnet.c:827:2: runtime error: null pointer passed as argument 1, which is declared to never be null\n\nAlthough the C standard does not explicitly state whether calling qsort\nwith a NULL pointer when the size is 0 constitutes undefined behavior,\nSection 7.1.4 of the C standard (Use of library functions) mentions:\n\n\"Each of the following statements applies unless explicitly stated\notherwise in the detailed descriptions that follow: If an argument to a\nfunction has an invalid value (such as a value outside the domain of\nthe function, or a pointer outside the address space of the program, or\na null pointer, or a pointer to non-modifiable storage when the\ncorresponding parameter is not const-qualified) or a type (after\npromotion) not expected by a function with variable number of\narguments, the behavior is undefined.\"\n\nTo avoid this, add an early return when nf_link_info is NULL to prevent\ncalling qsort with a NULL pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49987",
"url": "https://www.suse.com/security/cve/CVE-2024-49987"
},
{
"category": "external",
"summary": "SUSE Bug 1232258 for CVE-2024-49987",
"url": "https://bugzilla.suse.com/1232258"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49987"
},
{
"cve": "CVE-2024-49988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: add refcnt to ksmbd_conn struct\n\nWhen sending an oplock break request, opinfo-\u003econn is used,\nBut freed -\u003econn can be used on multichannel.\nThis patch add a reference count to the ksmbd_conn struct\nso that it can be freed when it is no longer used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49988",
"url": "https://www.suse.com/security/cve/CVE-2024-49988"
},
{
"category": "external",
"summary": "SUSE Bug 1232482 for CVE-2024-49988",
"url": "https://bugzilla.suse.com/1232482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49988"
},
{
"cve": "CVE-2024-49989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix double free issue during amdgpu module unload\n\nFlexible endpoints use DIGs from available inflexible endpoints,\nso only the encoders of inflexible links need to be freed.\nOtherwise, a double free issue may occur when unloading the\namdgpu module.\n\n[ 279.190523] RIP: 0010:__slab_free+0x152/0x2f0\n[ 279.190577] Call Trace:\n[ 279.190580] \u003cTASK\u003e\n[ 279.190582] ? show_regs+0x69/0x80\n[ 279.190590] ? die+0x3b/0x90\n[ 279.190595] ? do_trap+0xc8/0xe0\n[ 279.190601] ? do_error_trap+0x73/0xa0\n[ 279.190605] ? __slab_free+0x152/0x2f0\n[ 279.190609] ? exc_invalid_op+0x56/0x70\n[ 279.190616] ? __slab_free+0x152/0x2f0\n[ 279.190642] ? asm_exc_invalid_op+0x1f/0x30\n[ 279.190648] ? dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191096] ? __slab_free+0x152/0x2f0\n[ 279.191102] ? dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191469] kfree+0x260/0x2b0\n[ 279.191474] dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191821] link_destroy+0xd7/0x130 [amdgpu]\n[ 279.192248] dc_destruct+0x90/0x270 [amdgpu]\n[ 279.192666] dc_destroy+0x19/0x40 [amdgpu]\n[ 279.193020] amdgpu_dm_fini+0x16e/0x200 [amdgpu]\n[ 279.193432] dm_hw_fini+0x26/0x40 [amdgpu]\n[ 279.193795] amdgpu_device_fini_hw+0x24c/0x400 [amdgpu]\n[ 279.194108] amdgpu_driver_unload_kms+0x4f/0x70 [amdgpu]\n[ 279.194436] amdgpu_pci_remove+0x40/0x80 [amdgpu]\n[ 279.194632] pci_device_remove+0x3a/0xa0\n[ 279.194638] device_remove+0x40/0x70\n[ 279.194642] device_release_driver_internal+0x1ad/0x210\n[ 279.194647] driver_detach+0x4e/0xa0\n[ 279.194650] bus_remove_driver+0x6f/0xf0\n[ 279.194653] driver_unregister+0x33/0x60\n[ 279.194657] pci_unregister_driver+0x44/0x90\n[ 279.194662] amdgpu_exit+0x19/0x1f0 [amdgpu]\n[ 279.194939] __do_sys_delete_module.isra.0+0x198/0x2f0\n[ 279.194946] __x64_sys_delete_module+0x16/0x20\n[ 279.194950] do_syscall_64+0x58/0x120\n[ 279.194954] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n[ 279.194980] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49989",
"url": "https://www.suse.com/security/cve/CVE-2024-49989"
},
{
"category": "external",
"summary": "SUSE Bug 1232483 for CVE-2024-49989",
"url": "https://bugzilla.suse.com/1232483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49989"
},
{
"cve": "CVE-2024-49990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/hdcp: Check GSC structure validity\n\nSometimes xe_gsc is not initialized when checked at HDCP capability\ncheck. Add gsc structure check to avoid null pointer error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49990",
"url": "https://www.suse.com/security/cve/CVE-2024-49990"
},
{
"category": "external",
"summary": "SUSE Bug 1232484 for CVE-2024-49990",
"url": "https://bugzilla.suse.com/1232484"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49990"
},
{
"cve": "CVE-2024-49991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer\n\nPass pointer reference to amdgpu_bo_unref to clear the correct pointer,\notherwise amdgpu_bo_unref clear the local variable, the original pointer\nnot set to NULL, this could cause use-after-free bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49991",
"url": "https://www.suse.com/security/cve/CVE-2024-49991"
},
{
"category": "external",
"summary": "SUSE Bug 1232282 for CVE-2024-49991",
"url": "https://bugzilla.suse.com/1232282"
},
{
"category": "external",
"summary": "SUSE Bug 1232284 for CVE-2024-49991",
"url": "https://bugzilla.suse.com/1232284"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49991"
},
{
"cve": "CVE-2024-49992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/stm: Avoid use-after-free issues with crtc and plane\n\nltdc_load() calls functions drm_crtc_init_with_planes(),\ndrm_universal_plane_init() and drm_encoder_init(). These functions\nshould not be called with parameters allocated with devm_kzalloc()\nto avoid use-after-free issues [1].\n\nUse allocations managed by the DRM framework.\n\nFound by Linux Verification Center (linuxtesting.org).\n\n[1]\nhttps://lore.kernel.org/lkml/u366i76e3qhh3ra5oxrtngjtm2u5lterkekcz6y2jkndhuxzli@diujon4h7qwb/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49992",
"url": "https://www.suse.com/security/cve/CVE-2024-49992"
},
{
"category": "external",
"summary": "SUSE Bug 1232430 for CVE-2024-49992",
"url": "https://bugzilla.suse.com/1232430"
},
{
"category": "external",
"summary": "SUSE Bug 1232431 for CVE-2024-49992",
"url": "https://bugzilla.suse.com/1232431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-49992"
},
{
"cve": "CVE-2024-49994",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49994"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix integer overflow in BLKSECDISCARD\n\nI independently rediscovered\n\n\tcommit 22d24a544b0d49bbcbd61c8c0eaf77d3c9297155\n\tblock: fix overflow in blk_ioctl_discard()\n\nbut for secure erase.\n\nSame problem:\n\n\tuint64_t r[2] = {512, 18446744073709551104ULL};\n\tioctl(fd, BLKSECDISCARD, r);\n\nwill enter near infinite loop inside blkdev_issue_secure_erase():\n\n\ta.out: attempt to access beyond end of device\n\tloop0: rw=5, sector=3399043073, nr_sectors = 1024 limit=2048\n\tbio_check_eod: 3286214 callbacks suppressed",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49994",
"url": "https://www.suse.com/security/cve/CVE-2024-49994"
},
{
"category": "external",
"summary": "SUSE Bug 1237757 for CVE-2024-49994",
"url": "https://bugzilla.suse.com/1237757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49994"
},
{
"cve": "CVE-2024-49995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49995"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49995",
"url": "https://www.suse.com/security/cve/CVE-2024-49995"
},
{
"category": "external",
"summary": "SUSE Bug 1232432 for CVE-2024-49995",
"url": "https://bugzilla.suse.com/1232432"
},
{
"category": "external",
"summary": "SUSE Bug 1232433 for CVE-2024-49995",
"url": "https://bugzilla.suse.com/1232433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49995"
},
{
"cve": "CVE-2024-49996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: Fix buffer overflow when parsing NFS reparse points\n\nReparseDataLength is sum of the InodeType size and DataBuffer size.\nSo to get DataBuffer size it is needed to subtract InodeType\u0027s size from\nReparseDataLength.\n\nFunction cifs_strndup_from_utf16() is currentlly accessing buf-\u003eDataBuffer\nat position after the end of the buffer because it does not subtract\nInodeType size from the length. Fix this problem and correctly subtract\nvariable len.\n\nMember InodeType is present only when reparse buffer is large enough. Check\nfor ReparseDataLength before accessing InodeType to prevent another invalid\nmemory access.\n\nMajor and minor rdev values are present also only when reparse buffer is\nlarge enough. Check for reparse buffer size before calling reparse_mkdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49996",
"url": "https://www.suse.com/security/cve/CVE-2024-49996"
},
{
"category": "external",
"summary": "SUSE Bug 1232089 for CVE-2024-49996",
"url": "https://bugzilla.suse.com/1232089"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49996"
},
{
"cve": "CVE-2024-49997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: lantiq_etop: fix memory disclosure\n\nWhen applying padding, the buffer is not zeroed, which results in memory\ndisclosure. The mentioned data is observed on the wire. This patch uses\nskb_put_padto() to pad Ethernet frames properly. The mentioned function\nzeroes the expanded buffer.\n\nIn case the packet cannot be padded it is silently dropped. Statistics\nare also not incremented. This driver does not support statistics in the\nold 32-bit format or the new 64-bit format. These will be added in the\nfuture. In its current form, the patch should be easily backported to\nstable versions.\n\nEthernet MACs on Amazon-SE and Danube cannot do padding of the packets\nin hardware, so software padding must be applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49997",
"url": "https://www.suse.com/security/cve/CVE-2024-49997"
},
{
"category": "external",
"summary": "SUSE Bug 1232088 for CVE-2024-49997",
"url": "https://bugzilla.suse.com/1232088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49997"
},
{
"cve": "CVE-2024-49998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: improve shutdown sequence\n\nAlexander Sverdlin presents 2 problems during shutdown with the\nlan9303 driver. One is specific to lan9303 and the other just happens\nto reproduce there.\n\nThe first problem is that lan9303 is unique among DSA drivers in that it\ncalls dev_get_drvdata() at \"arbitrary runtime\" (not probe, not shutdown,\nnot remove):\n\nphy_state_machine()\n-\u003e ...\n -\u003e dsa_user_phy_read()\n -\u003e ds-\u003eops-\u003ephy_read()\n -\u003e lan9303_phy_read()\n -\u003e chip-\u003eops-\u003ephy_read()\n -\u003e lan9303_mdio_phy_read()\n -\u003e dev_get_drvdata()\n\nBut we never stop the phy_state_machine(), so it may continue to run\nafter dsa_switch_shutdown(). Our common pattern in all DSA drivers is\nto set drvdata to NULL to suppress the remove() method that may come\nafterwards. But in this case it will result in an NPD.\n\nThe second problem is that the way in which we set\ndp-\u003econduit-\u003edsa_ptr = NULL; is concurrent with receive packet\nprocessing. dsa_switch_rcv() checks once whether dev-\u003edsa_ptr is NULL,\nbut afterwards, rather than continuing to use that non-NULL value,\ndev-\u003edsa_ptr is dereferenced again and again without NULL checks:\ndsa_conduit_find_user() and many other places. In between dereferences,\nthere is no locking to ensure that what was valid once continues to be\nvalid.\n\nBoth problems have the common aspect that closing the conduit interface\nsolves them.\n\nIn the first case, dev_close(conduit) triggers the NETDEV_GOING_DOWN\nevent in dsa_user_netdevice_event() which closes user ports as well.\ndsa_port_disable_rt() calls phylink_stop(), which synchronously stops\nthe phylink state machine, and ds-\u003eops-\u003ephy_read() will thus no longer\ncall into the driver after this point.\n\nIn the second case, dev_close(conduit) should do this, as per\nDocumentation/networking/driver.rst:\n\n| Quiescence\n| ----------\n|\n| After the ndo_stop routine has been called, the hardware must\n| not receive or transmit any data. All in flight packets must\n| be aborted. If necessary, poll or wait for completion of\n| any reset commands.\n\nSo it should be sufficient to ensure that later, when we zeroize\nconduit-\u003edsa_ptr, there will be no concurrent dsa_switch_rcv() call\non this conduit.\n\nThe addition of the netif_device_detach() function is to ensure that\nioctls, rtnetlinks and ethtool requests on the user ports no longer\npropagate down to the driver - we\u0027re no longer prepared to handle them.\n\nThe race condition actually did not exist when commit 0650bf52b31f\n(\"net: dsa: be compatible with masters which unregister on shutdown\")\nfirst introduced dsa_switch_shutdown(). It was created later, when we\nstopped unregistering the user interfaces from a bad spot, and we just\nreplaced that sequence with a racy zeroization of conduit-\u003edsa_ptr\n(one which doesn\u0027t ensure that the interfaces aren\u0027t up).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49998",
"url": "https://www.suse.com/security/cve/CVE-2024-49998"
},
{
"category": "external",
"summary": "SUSE Bug 1232087 for CVE-2024-49998",
"url": "https://bugzilla.suse.com/1232087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49998"
},
{
"cve": "CVE-2024-49999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix the setting of the server responding flag\n\nIn afs_wait_for_operation(), we set transcribe the call responded flag to\nthe server record that we used after doing the fileserver iteration loop -\nbut it\u0027s possible to exit the loop having had a response from the server\nthat we\u0027ve discarded (e.g. it returned an abort or we started receiving\ndata, but the call didn\u0027t complete).\n\nThis means that op-\u003eserver might be NULL, but we don\u0027t check that before\nattempting to set the server flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49999",
"url": "https://www.suse.com/security/cve/CVE-2024-49999"
},
{
"category": "external",
"summary": "SUSE Bug 1232086 for CVE-2024-49999",
"url": "https://bugzilla.suse.com/1232086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-49999"
},
{
"cve": "CVE-2024-50000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc()\n\nIn mlx5e_tir_builder_alloc() kvzalloc() may return NULL\nwhich is dereferenced on the next line in a reference\nto the modify field.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50000",
"url": "https://www.suse.com/security/cve/CVE-2024-50000"
},
{
"category": "external",
"summary": "SUSE Bug 1232085 for CVE-2024-50000",
"url": "https://bugzilla.suse.com/1232085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50000"
},
{
"cve": "CVE-2024-50001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix error path in multi-packet WQE transmit\n\nRemove the erroneous unmap in case no DMA mapping was established\n\nThe multi-packet WQE transmit code attempts to obtain a DMA mapping for\nthe skb. This could fail, e.g. under memory pressure, when the IOMMU\ndriver just can\u0027t allocate more memory for page tables. While the code\ntries to handle this in the path below the err_unmap label it erroneously\nunmaps one entry from the sq\u0027s FIFO list of active mappings. Since the\ncurrent map attempt failed this unmap is removing some random DMA mapping\nthat might still be required. If the PCI function now presents that IOVA,\nthe IOMMU may assumes a rogue DMA access and e.g. on s390 puts the PCI\nfunction in error state.\n\nThe erroneous behavior was seen in a stress-test environment that created\nmemory pressure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50001",
"url": "https://www.suse.com/security/cve/CVE-2024-50001"
},
{
"category": "external",
"summary": "SUSE Bug 1232084 for CVE-2024-50001",
"url": "https://bugzilla.suse.com/1232084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50001"
},
{
"cve": "CVE-2024-50002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstatic_call: Handle module init failure correctly in static_call_del_module()\n\nModule insertion invokes static_call_add_module() to initialize the static\ncalls in a module. static_call_add_module() invokes __static_call_init(),\nwhich allocates a struct static_call_mod to either encapsulate the built-in\nstatic call sites of the associated key into it so further modules can be\nadded or to append the module to the module chain.\n\nIf that allocation fails the function returns with an error code and the\nmodule core invokes static_call_del_module() to clean up eventually added\nstatic_call_mod entries.\n\nThis works correctly, when all keys used by the module were converted over\nto a module chain before the failure. If not then static_call_del_module()\ncauses a #GP as it blindly assumes that key::mods points to a valid struct\nstatic_call_mod.\n\nThe problem is that key::mods is not a individual struct member of struct\nstatic_call_key, it\u0027s part of a union to save space:\n\n union {\n /* bit 0: 0 = mods, 1 = sites */\n unsigned long type;\n struct static_call_mod *mods;\n struct static_call_site *sites;\n\t};\n\nkey::sites is a pointer to the list of built-in usage sites of the static\ncall. The type of the pointer is differentiated by bit 0. A mods pointer\nhas the bit clear, the sites pointer has the bit set.\n\nAs static_call_del_module() blidly assumes that the pointer is a valid\nstatic_call_mod type, it fails to check for this failure case and\ndereferences the pointer to the list of built-in call sites, which is\nobviously bogus.\n\nCure it by checking whether the key has a sites or a mods pointer.\n\nIf it\u0027s a sites pointer then the key is not to be touched. As the sites are\nwalked in the same order as in __static_call_init() the site walk can be\nterminated because all subsequent sites have not been touched by the init\ncode due to the error exit.\n\nIf it was converted before the allocation fail, then the inner loop which\nsearches for a module match will find nothing.\n\nA fail in the second allocation in __static_call_init() is harmless and\ndoes not require special treatment. The first allocation succeeded and\nconverted the key to a module chain. That first entry has mod::mod == NULL\nand mod::next == NULL, so the inner loop of static_call_del_module() will\nneither find a module match nor a module chain. The next site in the walk\nwas either already converted, but can\u0027t match the module, or it will exit\nthe outer loop because it has a static_call_site pointer and not a\nstatic_call_mod pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50002",
"url": "https://www.suse.com/security/cve/CVE-2024-50002"
},
{
"category": "external",
"summary": "SUSE Bug 1232083 for CVE-2024-50002",
"url": "https://bugzilla.suse.com/1232083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50002"
},
{
"cve": "CVE-2024-50003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix system hang while resume with TBT monitor\n\n[Why]\nConnected with a Thunderbolt monitor and do the suspend and the system\nmay hang while resume.\n\nThe TBT monitor HPD will be triggered during the resume procedure\nand call the drm_client_modeset_probe() while\nstruct drm_connector connector-\u003edev-\u003emaster is NULL.\n\nIt will mess up the pipe topology after resume.\n\n[How]\nSkip the TBT monitor HPD during the resume procedure because we\ncurrently will probe the connectors after resume by default.\n\n(cherry picked from commit 453f86a26945207a16b8f66aaed5962dc2b95b85)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50003",
"url": "https://www.suse.com/security/cve/CVE-2024-50003"
},
{
"category": "external",
"summary": "SUSE Bug 1232385 for CVE-2024-50003",
"url": "https://bugzilla.suse.com/1232385"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50003"
},
{
"cve": "CVE-2024-50004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50004"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: update DML2 policy EnhancedPrefetchScheduleAccelerationFinal DCN35\n\n[WHY \u0026 HOW]\nMismatch in DCN35 DML2 cause bw validation failed to acquire unexpected DPP pipe to cause\ngrey screen and system hang. Remove EnhancedPrefetchScheduleAccelerationFinal value override\nto match HW spec.\n\n(cherry picked from commit 9dad21f910fcea2bdcff4af46159101d7f9cd8ba)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50004",
"url": "https://www.suse.com/security/cve/CVE-2024-50004"
},
{
"category": "external",
"summary": "SUSE Bug 1232396 for CVE-2024-50004",
"url": "https://bugzilla.suse.com/1232396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50004"
},
{
"cve": "CVE-2024-50005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmac802154: Fix potential RCU dereference issue in mac802154_scan_worker\n\nIn the `mac802154_scan_worker` function, the `scan_req-\u003etype` field was\naccessed after the RCU read-side critical section was unlocked. According\nto RCU usage rules, this is illegal and can lead to unpredictable\nbehavior, such as accessing memory that has been updated or causing\nuse-after-free issues.\n\nThis possible bug was identified using a static analysis tool developed\nby myself, specifically designed to detect RCU-related issues.\n\nTo address this, the `scan_req-\u003etype` value is now stored in a local\nvariable `scan_req_type` while still within the RCU read-side critical\nsection. The `scan_req_type` is then used after the RCU lock is released,\nensuring that the type value is safely accessed without violating RCU\nrules.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50005",
"url": "https://www.suse.com/security/cve/CVE-2024-50005"
},
{
"category": "external",
"summary": "SUSE Bug 1232082 for CVE-2024-50005",
"url": "https://bugzilla.suse.com/1232082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50005"
},
{
"cve": "CVE-2024-50006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix i_data_sem unlock order in ext4_ind_migrate()\n\nFuzzing reports a possible deadlock in jbd2_log_wait_commit.\n\nThis issue is triggered when an EXT4_IOC_MIGRATE ioctl is set to require\nsynchronous updates because the file descriptor is opened with O_SYNC.\nThis can lead to the jbd2_journal_stop() function calling\njbd2_might_wait_for_commit(), potentially causing a deadlock if the\nEXT4_IOC_MIGRATE call races with a write(2) system call.\n\nThis problem only arises when CONFIG_PROVE_LOCKING is enabled. In this\ncase, the jbd2_might_wait_for_commit macro locks jbd2_handle in the\njbd2_journal_stop function while i_data_sem is locked. This triggers\nlockdep because the jbd2_journal_start function might also lock the same\njbd2_handle simultaneously.\n\nFound by Linux Verification Center (linuxtesting.org) with syzkaller.\n\nRule: add",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50006",
"url": "https://www.suse.com/security/cve/CVE-2024-50006"
},
{
"category": "external",
"summary": "SUSE Bug 1232442 for CVE-2024-50006",
"url": "https://bugzilla.suse.com/1232442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50006"
},
{
"cve": "CVE-2024-50007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: asihpi: Fix potential OOB array access\n\nASIHPI driver stores some values in the static array upon a response\nfrom the driver, and its index depends on the firmware. We shouldn\u0027t\ntrust it blindly.\n\nThis patch adds a sanity check of the array index to fit in the array\nsize.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50007",
"url": "https://www.suse.com/security/cve/CVE-2024-50007"
},
{
"category": "external",
"summary": "SUSE Bug 1232394 for CVE-2024-50007",
"url": "https://bugzilla.suse.com/1232394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50007"
},
{
"cve": "CVE-2024-50008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()\n\nReplace one-element array with a flexible-array member in\n`struct host_cmd_ds_802_11_scan_ext`.\n\nWith this, fix the following warning:\n\nelo 16 17:51:58 surfacebook kernel: ------------[ cut here ]------------\nelo 16 17:51:58 surfacebook kernel: memcpy: detected field-spanning write (size 243) of single field \"ext_scan-\u003etlv_buffer\" at drivers/net/wireless/marvell/mwifiex/scan.c:2239 (size 1)\nelo 16 17:51:58 surfacebook kernel: WARNING: CPU: 0 PID: 498 at drivers/net/wireless/marvell/mwifiex/scan.c:2239 mwifiex_cmd_802_11_scan_ext+0x83/0x90 [mwifiex]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50008",
"url": "https://www.suse.com/security/cve/CVE-2024-50008"
},
{
"category": "external",
"summary": "SUSE Bug 1232317 for CVE-2024-50008",
"url": "https://bugzilla.suse.com/1232317"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50008"
},
{
"cve": "CVE-2024-50009",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50009"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: amd-pstate: add check for cpufreq_cpu_get\u0027s return value\n\ncpufreq_cpu_get may return NULL. To avoid NULL-dereference check it\nand return in case of error.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50009",
"url": "https://www.suse.com/security/cve/CVE-2024-50009"
},
{
"category": "external",
"summary": "SUSE Bug 1232318 for CVE-2024-50009",
"url": "https://bugzilla.suse.com/1232318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50009"
},
{
"cve": "CVE-2024-50010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50010"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexec: don\u0027t WARN for racy path_noexec check\n\nBoth i_mode and noexec checks wrapped in WARN_ON stem from an artifact\nof the previous implementation. They used to legitimately check for the\ncondition, but that got moved up in two commits:\n633fb6ac3980 (\"exec: move S_ISREG() check earlier\")\n0fd338b2d2cd (\"exec: move path_noexec() check earlier\")\n\nInstead of being removed said checks are WARN_ON\u0027ed instead, which\nhas some debug value.\n\nHowever, the spurious path_noexec check is racy, resulting in\nunwarranted warnings should someone race with setting the noexec flag.\n\nOne can note there is more to perm-checking whether execve is allowed\nand none of the conditions are guaranteed to still hold after they were\ntested for.\n\nAdditionally this does not validate whether the code path did any perm\nchecking to begin with -- it will pass if the inode happens to be\nregular.\n\nKeep the redundant path_noexec() check even though it\u0027s mindless\nnonsense checking for guarantee that isn\u0027t given so drop the WARN.\n\nReword the commentary and do small tidy ups while here.\n\n[brauner: keep redundant path_noexec() check]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50010",
"url": "https://www.suse.com/security/cve/CVE-2024-50010"
},
{
"category": "external",
"summary": "SUSE Bug 1232388 for CVE-2024-50010",
"url": "https://bugzilla.suse.com/1232388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50010"
},
{
"cve": "CVE-2024-50011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: soc-acpi-intel-rpl-match: add missing empty item\n\nThere is no links_num in struct snd_soc_acpi_mach {}, and we test\n!link-\u003enum_adr as a condition to end the loop in hda_sdw_machine_select().\nSo an empty item in struct snd_soc_acpi_link_adr array is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50011",
"url": "https://www.suse.com/security/cve/CVE-2024-50011"
},
{
"category": "external",
"summary": "SUSE Bug 1232081 for CVE-2024-50011",
"url": "https://bugzilla.suse.com/1232081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50011"
},
{
"cve": "CVE-2024-50012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: Avoid a bad reference count on CPU node\n\nIn the parse_perf_domain function, if the call to\nof_parse_phandle_with_args returns an error, then the reference to the\nCPU device node that was acquired at the start of the function would not\nbe properly decremented.\n\nAddress this by declaring the variable with the __free(device_node)\ncleanup attribute.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50012",
"url": "https://www.suse.com/security/cve/CVE-2024-50012"
},
{
"category": "external",
"summary": "SUSE Bug 1232386 for CVE-2024-50012",
"url": "https://bugzilla.suse.com/1232386"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50012"
},
{
"cve": "CVE-2024-50013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix memory leak in exfat_load_bitmap()\n\nIf the first directory entry in the root directory is not a bitmap\ndirectory entry, \u0027bh\u0027 will not be released and reassigned, which\nwill cause a memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50013",
"url": "https://www.suse.com/security/cve/CVE-2024-50013"
},
{
"category": "external",
"summary": "SUSE Bug 1232080 for CVE-2024-50013",
"url": "https://bugzilla.suse.com/1232080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50013"
},
{
"cve": "CVE-2024-50014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50014"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix access to uninitialised lock in fc replay path\n\nThe following kernel trace can be triggered with fstest generic/629 when\nexecuted against a filesystem with fast-commit feature enabled:\n\nINFO: trying to register non-static key.\nThe code is fine but needs lockdep annotation, or maybe\nyou didn\u0027t initialize this object before use?\nturning off the locking correctness validator.\nCPU: 0 PID: 866 Comm: mount Not tainted 6.10.0+ #11\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x66/0x90\n register_lock_class+0x759/0x7d0\n __lock_acquire+0x85/0x2630\n ? __find_get_block+0xb4/0x380\n lock_acquire+0xd1/0x2d0\n ? __ext4_journal_get_write_access+0xd5/0x160\n _raw_spin_lock+0x33/0x40\n ? __ext4_journal_get_write_access+0xd5/0x160\n __ext4_journal_get_write_access+0xd5/0x160\n ext4_reserve_inode_write+0x61/0xb0\n __ext4_mark_inode_dirty+0x79/0x270\n ? ext4_ext_replay_set_iblocks+0x2f8/0x450\n ext4_ext_replay_set_iblocks+0x330/0x450\n ext4_fc_replay+0x14c8/0x1540\n ? jread+0x88/0x2e0\n ? rcu_is_watching+0x11/0x40\n do_one_pass+0x447/0xd00\n jbd2_journal_recover+0x139/0x1b0\n jbd2_journal_load+0x96/0x390\n ext4_load_and_init_journal+0x253/0xd40\n ext4_fill_super+0x2cc6/0x3180\n...\n\nIn the replay path there\u0027s an attempt to lock sbi-\u003es_bdev_wb_lock in\nfunction ext4_check_bdev_write_error(). Unfortunately, at this point this\nspinlock has not been initialized yet. Moving it\u0027s initialization to an\nearlier point in __ext4_fill_super() fixes this splat.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50014",
"url": "https://www.suse.com/security/cve/CVE-2024-50014"
},
{
"category": "external",
"summary": "SUSE Bug 1232446 for CVE-2024-50014",
"url": "https://bugzilla.suse.com/1232446"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50014"
},
{
"cve": "CVE-2024-50015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50015"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: dax: fix overflowing extents beyond inode size when partially writing\n\nThe dax_iomap_rw() does two things in each iteration: map written blocks\nand copy user data to blocks. If the process is killed by user(See signal\nhandling in dax_iomap_iter()), the copied data will be returned and added\non inode size, which means that the length of written extents may exceed\nthe inode size, then fsck will fail. An example is given as:\n\ndd if=/dev/urandom of=file bs=4M count=1\n dax_iomap_rw\n iomap_iter // round 1\n ext4_iomap_begin\n ext4_iomap_alloc // allocate 0~2M extents(written flag)\n dax_iomap_iter // copy 2M data\n iomap_iter // round 2\n iomap_iter_advance\n iter-\u003epos += iter-\u003eprocessed // iter-\u003epos = 2M\n ext4_iomap_begin\n ext4_iomap_alloc // allocate 2~4M extents(written flag)\n dax_iomap_iter\n fatal_signal_pending\n done = iter-\u003epos - iocb-\u003eki_pos // done = 2M\n ext4_handle_inode_extension\n ext4_update_inode_size // inode size = 2M\n\nfsck reports: Inode 13, i_size is 2097152, should be 4194304. Fix?\n\nFix the problem by truncating extents if the written length is smaller\nthan expected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50015",
"url": "https://www.suse.com/security/cve/CVE-2024-50015"
},
{
"category": "external",
"summary": "SUSE Bug 1232079 for CVE-2024-50015",
"url": "https://bugzilla.suse.com/1232079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50015"
},
{
"cve": "CVE-2024-50016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50016"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50016",
"url": "https://www.suse.com/security/cve/CVE-2024-50016"
},
{
"category": "external",
"summary": "SUSE Bug 1232420 for CVE-2024-50016",
"url": "https://bugzilla.suse.com/1232420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50016"
},
{
"cve": "CVE-2024-50017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm/ident_map: Use gbpages only where full GB page should be mapped.\n\nWhen ident_pud_init() uses only GB pages to create identity maps, large\nranges of addresses not actually requested can be included in the resulting\ntable; a 4K request will map a full GB. This can include a lot of extra\naddress space past that requested, including areas marked reserved by the\nBIOS. That allows processor speculation into reserved regions, that on UV\nsystems can cause system halts.\n\nOnly use GB pages when map creation requests include the full GB page of\nspace. Fall back to using smaller 2M pages when only portions of a GB page\nare included in the request.\n\nNo attempt is made to coalesce mapping requests. If a request requires a\nmap entry at the 2M (pmd) level, subsequent mapping requests within the\nsame 1G region will also be at the pmd level, even if adjacent or\noverlapping such requests could have been combined to map a full GB page.\nExisting usage starts with larger regions and then adds smaller regions, so\nthis should not have any great consequence.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50017",
"url": "https://www.suse.com/security/cve/CVE-2024-50017"
},
{
"category": "external",
"summary": "SUSE Bug 1232312 for CVE-2024-50017",
"url": "https://bugzilla.suse.com/1232312"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50017"
},
{
"cve": "CVE-2024-50018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50018"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50018",
"url": "https://www.suse.com/security/cve/CVE-2024-50018"
},
{
"category": "external",
"summary": "SUSE Bug 1232419 for CVE-2024-50018",
"url": "https://bugzilla.suse.com/1232419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50018"
},
{
"cve": "CVE-2024-50019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkthread: unpark only parked kthread\n\nCalling into kthread unparking unconditionally is mostly harmless when\nthe kthread is already unparked. The wake up is then simply ignored\nbecause the target is not in TASK_PARKED state.\n\nHowever if the kthread is per CPU, the wake up is preceded by a call\nto kthread_bind() which expects the task to be inactive and in\nTASK_PARKED state, which obviously isn\u0027t the case if it is unparked.\n\nAs a result, calling kthread_stop() on an unparked per-cpu kthread\ntriggers such a warning:\n\n\tWARNING: CPU: 0 PID: 11 at kernel/kthread.c:525 __kthread_bind_mask kernel/kthread.c:525\n\t \u003cTASK\u003e\n\t kthread_stop+0x17a/0x630 kernel/kthread.c:707\n\t destroy_workqueue+0x136/0xc40 kernel/workqueue.c:5810\n\t wg_destruct+0x1e2/0x2e0 drivers/net/wireguard/device.c:257\n\t netdev_run_todo+0xe1a/0x1000 net/core/dev.c:10693\n\t default_device_exit_batch+0xa14/0xa90 net/core/dev.c:11769\n\t ops_exit_list net/core/net_namespace.c:178 [inline]\n\t cleanup_net+0x89d/0xcc0 net/core/net_namespace.c:640\n\t process_one_work kernel/workqueue.c:3231 [inline]\n\t process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n\t worker_thread+0x86d/0xd70 kernel/workqueue.c:3393\n\t kthread+0x2f0/0x390 kernel/kthread.c:389\n\t ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n\t ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\t \u003c/TASK\u003e\n\nFix this with skipping unecessary unparking while stopping a kthread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50019",
"url": "https://www.suse.com/security/cve/CVE-2024-50019"
},
{
"category": "external",
"summary": "SUSE Bug 1231990 for CVE-2024-50019",
"url": "https://bugzilla.suse.com/1231990"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50019"
},
{
"cve": "CVE-2024-50020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix improper handling of refcount in ice_sriov_set_msix_vec_count()\n\nThis patch addresses an issue with improper reference count handling in the\nice_sriov_set_msix_vec_count() function.\n\nFirst, the function calls ice_get_vf_by_id(), which increments the\nreference count of the vf pointer. If the subsequent call to\nice_get_vf_vsi() fails, the function currently returns an error without\ndecrementing the reference count of the vf pointer, leading to a reference\ncount leak. The correct behavior, as implemented in this patch, is to\ndecrement the reference count using ice_put_vf(vf) before returning an\nerror when vsi is NULL.\n\nSecond, the function calls ice_sriov_get_irqs(), which sets\nvf-\u003efirst_vector_idx. If this call returns a negative value, indicating an\nerror, the function returns an error without decrementing the reference\ncount of the vf pointer, resulting in another reference count leak. The\npatch addresses this by adding a call to ice_put_vf(vf) before returning\nan error when vf-\u003efirst_vector_idx \u003c 0.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand identifying potential mismanagement of reference counts. In this case,\nthe tool flagged the missing decrement operation as a potential issue,\nleading to this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50020",
"url": "https://www.suse.com/security/cve/CVE-2024-50020"
},
{
"category": "external",
"summary": "SUSE Bug 1231989 for CVE-2024-50020",
"url": "https://bugzilla.suse.com/1231989"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50020"
},
{
"cve": "CVE-2024-50021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix improper handling of refcount in ice_dpll_init_rclk_pins()\n\nThis patch addresses a reference count handling issue in the\nice_dpll_init_rclk_pins() function. The function calls ice_dpll_get_pins(),\nwhich increments the reference count of the relevant resources. However,\nif the condition WARN_ON((!vsi || !vsi-\u003enetdev)) is met, the function\ncurrently returns an error without properly releasing the resources\nacquired by ice_dpll_get_pins(), leading to a reference count leak.\n\nTo resolve this, the check has been moved to the top of the function. This\nensures that the function verifies the state before any resources are\nacquired, avoiding the need for additional resource management in the\nerror path.\n\nThis bug was identified by an experimental static analysis tool developed\nby our team. The tool specializes in analyzing reference count operations\nand detecting potential issues where resources are not properly managed.\nIn this case, the tool flagged the missing release operation as a\npotential problem, which led to the development of this patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50021",
"url": "https://www.suse.com/security/cve/CVE-2024-50021"
},
{
"category": "external",
"summary": "SUSE Bug 1231957 for CVE-2024-50021",
"url": "https://bugzilla.suse.com/1231957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50021"
},
{
"cve": "CVE-2024-50022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevice-dax: correct pgoff align in dax_set_mapping()\n\npgoff should be aligned using ALIGN_DOWN() instead of ALIGN(). Otherwise,\nvmf-\u003eaddress not aligned to fault_size will be aligned to the next\nalignment, that can result in memory failure getting the wrong address.\n\nIt\u0027s a subtle situation that only can be observed in\npage_mapped_in_vma() after the page is page fault handled by\ndev_dax_huge_fault. Generally, there is little chance to perform\npage_mapped_in_vma in dev-dax\u0027s page unless in specific error injection\nto the dax device to trigger an MCE - memory-failure. In that case,\npage_mapped_in_vma() will be triggered to determine which task is\naccessing the failure address and kill that task in the end.\n\n\nWe used self-developed dax device (which is 2M aligned mapping) , to\nperform error injection to random address. It turned out that error\ninjected to non-2M-aligned address was causing endless MCE until panic.\nBecause page_mapped_in_vma() kept resulting wrong address and the task\naccessing the failure address was never killed properly:\n\n\n[ 3783.719419] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3784.049006] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3784.049190] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3784.448042] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3784.448186] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3784.792026] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3784.792179] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3785.162502] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3785.162633] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3785.461116] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3785.461247] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3785.764730] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3785.764859] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3786.042128] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3786.042259] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3786.464293] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3786.464423] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3786.818090] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3786.818217] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n[ 3787.085297] mce: Uncorrected hardware memory error in user-access at \n200c9742380\n[ 3787.085424] Memory failure: 0x200c9742: recovery action for dax page: \nRecovered\n\nIt took us several weeks to pinpoint this problem, but we eventually\nused bpftrace to trace the page fault and mce address and successfully\nidentified the issue.\n\n\nJoao added:\n\n; Likely we never reproduce in production because we always pin\n: device-dax regions in the region align they provide (Qemu does\n: similarly with prealloc in hugetlb/file backed memory). I think this\n: bug requires that we touch *unpinned* device-dax regions unaligned to\n: the device-dax selected alignment (page size i.e. 4K/2M/1G)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50022",
"url": "https://www.suse.com/security/cve/CVE-2024-50022"
},
{
"category": "external",
"summary": "SUSE Bug 1231956 for CVE-2024-50022",
"url": "https://bugzilla.suse.com/1231956"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50022"
},
{
"cve": "CVE-2024-50023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Remove LED entry from LEDs list on unregister\n\nCommit c938ab4da0eb (\"net: phy: Manual remove LEDs to ensure correct\nordering\") correctly fixed a problem with using devm_ but missed\nremoving the LED entry from the LEDs list.\n\nThis cause kernel panic on specific scenario where the port for the PHY\nis torn down and up and the kmod for the PHY is removed.\n\nOn setting the port down the first time, the assosiacted LEDs are\ncorrectly unregistered. The associated kmod for the PHY is now removed.\nThe kmod is now added again and the port is now put up, the associated LED\nare registered again.\nOn putting the port down again for the second time after these step, the\nLED list now have 4 elements. With the first 2 already unregistered\npreviously and the 2 new one registered again.\n\nThis cause a kernel panic as the first 2 element should have been\nremoved.\n\nFix this by correctly removing the element when LED is unregistered.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50023",
"url": "https://www.suse.com/security/cve/CVE-2024-50023"
},
{
"category": "external",
"summary": "SUSE Bug 1231955 for CVE-2024-50023",
"url": "https://bugzilla.suse.com/1231955"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50023"
},
{
"cve": "CVE-2024-50024",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50024"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: Fix an unsafe loop on the list\n\nThe kernel may crash when deleting a genetlink family if there are still\nlisteners for that family:\n\nOops: Kernel access of bad area, sig: 11 [#1]\n ...\n NIP [c000000000c080bc] netlink_update_socket_mc+0x3c/0xc0\n LR [c000000000c0f764] __netlink_clear_multicast_users+0x74/0xc0\n Call Trace:\n__netlink_clear_multicast_users+0x74/0xc0\ngenl_unregister_family+0xd4/0x2d0\n\nChange the unsafe loop on the list to a safe one, because inside the\nloop there is an element removal from this list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50024",
"url": "https://www.suse.com/security/cve/CVE-2024-50024"
},
{
"category": "external",
"summary": "SUSE Bug 1231954 for CVE-2024-50024",
"url": "https://bugzilla.suse.com/1231954"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50024"
},
{
"cve": "CVE-2024-50025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: fnic: Move flush_work initialization out of if block\n\nAfter commit 379a58caa199 (\"scsi: fnic: Move fnic_fnic_flush_tx() to a\nwork queue\"), it can happen that a work item is sent to an uninitialized\nwork queue. This may has the effect that the item being queued is never\nactually queued, and any further actions depending on it will not\nproceed.\n\nThe following warning is observed while the fnic driver is loaded:\n\nkernel: WARNING: CPU: 11 PID: 0 at ../kernel/workqueue.c:1524 __queue_work+0x373/0x410\nkernel: \u003cIRQ\u003e\nkernel: queue_work_on+0x3a/0x50\nkernel: fnic_wq_copy_cmpl_handler+0x54a/0x730 [fnic 62fbff0c42e7fb825c60a55cde2fb91facb2ed24]\nkernel: fnic_isr_msix_wq_copy+0x2d/0x60 [fnic 62fbff0c42e7fb825c60a55cde2fb91facb2ed24]\nkernel: __handle_irq_event_percpu+0x36/0x1a0\nkernel: handle_irq_event_percpu+0x30/0x70\nkernel: handle_irq_event+0x34/0x60\nkernel: handle_edge_irq+0x7e/0x1a0\nkernel: __common_interrupt+0x3b/0xb0\nkernel: common_interrupt+0x58/0xa0\nkernel: \u003c/IRQ\u003e\n\nIt has been observed that this may break the rediscovery of Fibre\nChannel devices after a temporary fabric failure.\n\nThis patch fixes it by moving the work queue initialization out of\nan if block in fnic_probe().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50025",
"url": "https://www.suse.com/security/cve/CVE-2024-50025"
},
{
"category": "external",
"summary": "SUSE Bug 1231953 for CVE-2024-50025",
"url": "https://bugzilla.suse.com/1231953"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50025"
},
{
"cve": "CVE-2024-50026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: wd33c93: Don\u0027t use stale scsi_pointer value\n\nA regression was introduced with commit dbb2da557a6a (\"scsi: wd33c93:\nMove the SCSI pointer to private command data\") which results in an oops\nin wd33c93_intr(). That commit added the scsi_pointer variable and\ninitialized it from hostdata-\u003econnected. However, during selection,\nhostdata-\u003econnected is not yet valid. Fix this by getting the current\nscsi_pointer from hostdata-\u003eselecting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50026",
"url": "https://www.suse.com/security/cve/CVE-2024-50026"
},
{
"category": "external",
"summary": "SUSE Bug 1231952 for CVE-2024-50026",
"url": "https://bugzilla.suse.com/1231952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50026"
},
{
"cve": "CVE-2024-50027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50027"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: core: Free tzp copy along with the thermal zone\n\nThe object pointed to by tz-\u003etzp may still be accessed after being\nfreed in thermal_zone_device_unregister(), so move the freeing of it\nto the point after the removal completion has been completed at which\nit cannot be accessed any more.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50027",
"url": "https://www.suse.com/security/cve/CVE-2024-50027"
},
{
"category": "external",
"summary": "SUSE Bug 1231951 for CVE-2024-50027",
"url": "https://bugzilla.suse.com/1231951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50027"
},
{
"cve": "CVE-2024-50028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: core: Reference count the zone in thermal_zone_get_by_id()\n\nThere are places in the thermal netlink code where nothing prevents\nthe thermal zone object from going away while being accessed after it\nhas been returned by thermal_zone_get_by_id().\n\nTo address this, make thermal_zone_get_by_id() get a reference on the\nthermal zone device object to be returned with the help of get_device(),\nunder thermal_list_lock, and adjust all of its callers to this change\nwith the help of the cleanup.h infrastructure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50028",
"url": "https://www.suse.com/security/cve/CVE-2024-50028"
},
{
"category": "external",
"summary": "SUSE Bug 1231950 for CVE-2024-50028",
"url": "https://bugzilla.suse.com/1231950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50028"
},
{
"cve": "CVE-2024-50029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync\n\nThis checks if the ACL connection remains valid as it could be destroyed\nwhile hci_enhanced_setup_sync is pending on cmd_sync leading to the\nfollowing trace:\n\nBUG: KASAN: slab-use-after-free in hci_enhanced_setup_sync+0x91b/0xa60\nRead of size 1 at addr ffff888002328ffd by task kworker/u5:2/37\n\nCPU: 0 UID: 0 PID: 37 Comm: kworker/u5:2 Not tainted 6.11.0-rc6-01300-g810be445d8d6 #7099\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nWorkqueue: hci0 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? hci_enhanced_setup_sync+0x91b/0xa60\n print_report+0x152/0x4c0\n ? hci_enhanced_setup_sync+0x91b/0xa60\n ? __virt_addr_valid+0x1fa/0x420\n ? hci_enhanced_setup_sync+0x91b/0xa60\n kasan_report+0xda/0x1b0\n ? hci_enhanced_setup_sync+0x91b/0xa60\n hci_enhanced_setup_sync+0x91b/0xa60\n ? __pfx_hci_enhanced_setup_sync+0x10/0x10\n ? __pfx___mutex_lock+0x10/0x10\n hci_cmd_sync_work+0x1c2/0x330\n process_one_work+0x7d9/0x1360\n ? __pfx_lock_acquire+0x10/0x10\n ? __pfx_process_one_work+0x10/0x10\n ? assign_work+0x167/0x240\n worker_thread+0x5b7/0xf60\n ? __kthread_parkme+0xac/0x1c0\n ? __pfx_worker_thread+0x10/0x10\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x293/0x360\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2f/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 34:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __hci_conn_add+0x187/0x17d0\n hci_connect_sco+0x2e1/0xb90\n sco_sock_connect+0x2a2/0xb80\n __sys_connect+0x227/0x2a0\n __x64_sys_connect+0x6d/0xb0\n do_syscall_64+0x71/0x140\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFreed by task 37:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x101/0x160\n kfree+0xd0/0x250\n device_release+0x9a/0x210\n kobject_put+0x151/0x280\n hci_conn_del+0x448/0xbf0\n hci_abort_conn_sync+0x46f/0x980\n hci_cmd_sync_work+0x1c2/0x330\n process_one_work+0x7d9/0x1360\n worker_thread+0x5b7/0xf60\n kthread+0x293/0x360\n ret_from_fork+0x2f/0x70\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50029",
"url": "https://www.suse.com/security/cve/CVE-2024-50029"
},
{
"category": "external",
"summary": "SUSE Bug 1231949 for CVE-2024-50029",
"url": "https://bugzilla.suse.com/1231949"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50029"
},
{
"cve": "CVE-2024-50030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/ct: prevent UAF in send_recv()\n\nEnsure we serialize with completion side to prevent UAF with fence going\nout of scope on the stack, since we have no clue if it will fire after\nthe timeout before we can erase from the xa. Also we have some dependent\nloads and stores for which we need the correct ordering, and we lack the\nneeded barriers. Fix this by grabbing the ct-\u003elock after the wait, which\nis also held by the completion side.\n\nv2 (Badal):\n - Also print done after acquiring the lock and seeing timeout.\n\n(cherry picked from commit 52789ce35c55ccd30c4b67b9cc5b2af55e0122ea)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50030",
"url": "https://www.suse.com/security/cve/CVE-2024-50030"
},
{
"category": "external",
"summary": "SUSE Bug 1231948 for CVE-2024-50030",
"url": "https://bugzilla.suse.com/1231948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50030"
},
{
"cve": "CVE-2024-50031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/v3d: Stop the active perfmon before being destroyed\n\nWhen running `kmscube` with one or more performance monitors enabled\nvia `GALLIUM_HUD`, the following kernel panic can occur:\n\n[ 55.008324] Unable to handle kernel paging request at virtual address 00000000052004a4\n[ 55.008368] Mem abort info:\n[ 55.008377] ESR = 0x0000000096000005\n[ 55.008387] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 55.008402] SET = 0, FnV = 0\n[ 55.008412] EA = 0, S1PTW = 0\n[ 55.008421] FSC = 0x05: level 1 translation fault\n[ 55.008434] Data abort info:\n[ 55.008442] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 55.008455] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 55.008467] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 55.008481] user pgtable: 4k pages, 39-bit VAs, pgdp=00000001046c6000\n[ 55.008497] [00000000052004a4] pgd=0000000000000000, p4d=0000000000000000, pud=0000000000000000\n[ 55.008525] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n[ 55.008542] Modules linked in: rfcomm [...] vc4 v3d snd_soc_hdmi_codec drm_display_helper\ngpu_sched drm_shmem_helper cec drm_dma_helper drm_kms_helper i2c_brcmstb\ndrm drm_panel_orientation_quirks snd_soc_core snd_compress snd_pcm_dmaengine snd_pcm snd_timer snd backlight\n[ 55.008799] CPU: 2 PID: 166 Comm: v3d_bin Tainted: G C 6.6.47+rpt-rpi-v8 #1 Debian 1:6.6.47-1+rpt1\n[ 55.008824] Hardware name: Raspberry Pi 4 Model B Rev 1.5 (DT)\n[ 55.008838] pstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 55.008855] pc : __mutex_lock.constprop.0+0x90/0x608\n[ 55.008879] lr : __mutex_lock.constprop.0+0x58/0x608\n[ 55.008895] sp : ffffffc080673cf0\n[ 55.008904] x29: ffffffc080673cf0 x28: 0000000000000000 x27: ffffff8106188a28\n[ 55.008926] x26: ffffff8101e78040 x25: ffffff8101baa6c0 x24: ffffffd9d989f148\n[ 55.008947] x23: ffffffda1c2a4008 x22: 0000000000000002 x21: ffffffc080673d38\n[ 55.008968] x20: ffffff8101238000 x19: ffffff8104f83188 x18: 0000000000000000\n[ 55.008988] x17: 0000000000000000 x16: ffffffda1bd04d18 x15: 00000055bb08bc90\n[ 55.009715] x14: 0000000000000000 x13: 0000000000000000 x12: ffffffda1bd4cbb0\n[ 55.010433] x11: 00000000fa83b2da x10: 0000000000001a40 x9 : ffffffda1bd04d04\n[ 55.011162] x8 : ffffff8102097b80 x7 : 0000000000000000 x6 : 00000000030a5857\n[ 55.011880] x5 : 00ffffffffffffff x4 : 0300000005200470 x3 : 0300000005200470\n[ 55.012598] x2 : ffffff8101238000 x1 : 0000000000000021 x0 : 0300000005200470\n[ 55.013292] Call trace:\n[ 55.013959] __mutex_lock.constprop.0+0x90/0x608\n[ 55.014646] __mutex_lock_slowpath+0x1c/0x30\n[ 55.015317] mutex_lock+0x50/0x68\n[ 55.015961] v3d_perfmon_stop+0x40/0xe0 [v3d]\n[ 55.016627] v3d_bin_job_run+0x10c/0x2d8 [v3d]\n[ 55.017282] drm_sched_main+0x178/0x3f8 [gpu_sched]\n[ 55.017921] kthread+0x11c/0x128\n[ 55.018554] ret_from_fork+0x10/0x20\n[ 55.019168] Code: f9400260 f1001c1f 54001ea9 927df000 (b9403401)\n[ 55.019776] ---[ end trace 0000000000000000 ]---\n[ 55.020411] note: v3d_bin[166] exited with preempt_count 1\n\nThis issue arises because, upon closing the file descriptor (which happens\nwhen we interrupt `kmscube`), the active performance monitor is not\nstopped. Although all perfmons are destroyed in `v3d_perfmon_close_file()`,\nthe active performance monitor\u0027s pointer (`v3d-\u003eactive_perfmon`) is still\nretained.\n\nIf `kmscube` is run again, the driver will attempt to stop the active\nperformance monitor using the stale pointer in `v3d-\u003eactive_perfmon`.\nHowever, this pointer is no longer valid because the previous process has\nalready terminated, and all performance monitors associated with it have\nbeen destroyed and freed.\n\nTo fix this, when the active performance monitor belongs to a given\nprocess, explicitly stop it before destroying and freeing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50031",
"url": "https://www.suse.com/security/cve/CVE-2024-50031"
},
{
"category": "external",
"summary": "SUSE Bug 1231947 for CVE-2024-50031",
"url": "https://bugzilla.suse.com/1231947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50031"
},
{
"cve": "CVE-2024-50032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50032"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/nocb: Fix rcuog wake-up from offline softirq\n\nAfter a CPU has set itself offline and before it eventually calls\nrcutree_report_cpu_dead(), there are still opportunities for callbacks\nto be enqueued, for example from a softirq. When that happens on NOCB,\nthe rcuog wake-up is deferred through an IPI to an online CPU in order\nnot to call into the scheduler and risk arming the RT-bandwidth after\nhrtimers have been migrated out and disabled.\n\nBut performing a synchronized IPI from a softirq is buggy as reported in\nthe following scenario:\n\n WARNING: CPU: 1 PID: 26 at kernel/smp.c:633 smp_call_function_single\n Modules linked in: rcutorture torture\n CPU: 1 UID: 0 PID: 26 Comm: migration/1 Not tainted 6.11.0-rc1-00012-g9139f93209d1 #1\n Stopper: multi_cpu_stop+0x0/0x320 \u003c- __stop_cpus+0xd0/0x120\n RIP: 0010:smp_call_function_single\n \u003cIRQ\u003e\n swake_up_one_online\n __call_rcu_nocb_wake\n __call_rcu_common\n ? rcu_torture_one_read\n call_timer_fn\n __run_timers\n run_timer_softirq\n handle_softirqs\n irq_exit_rcu\n ? tick_handle_periodic\n sysvec_apic_timer_interrupt\n \u003c/IRQ\u003e\n\nFix this with forcing deferred rcuog wake up through the NOCB timer when\nthe CPU is offline. The actual wake up will happen from\nrcutree_report_cpu_dead().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50032",
"url": "https://www.suse.com/security/cve/CVE-2024-50032"
},
{
"category": "external",
"summary": "SUSE Bug 1231915 for CVE-2024-50032",
"url": "https://bugzilla.suse.com/1231915"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50032"
},
{
"cve": "CVE-2024-50033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nslip: make slhc_remember() more robust against malicious packets\n\nsyzbot found that slhc_remember() was missing checks against\nmalicious packets [1].\n\nslhc_remember() only checked the size of the packet was at least 20,\nwhich is not good enough.\n\nWe need to make sure the packet includes the IPv4 and TCP header\nthat are supposed to be carried.\n\nAdd iph and th pointers to make the code more readable.\n\n[1]\n\nBUG: KMSAN: uninit-value in slhc_remember+0x2e8/0x7b0 drivers/net/slip/slhc.c:666\n slhc_remember+0x2e8/0x7b0 drivers/net/slip/slhc.c:666\n ppp_receive_nonmp_frame+0xe45/0x35e0 drivers/net/ppp/ppp_generic.c:2455\n ppp_receive_frame drivers/net/ppp/ppp_generic.c:2372 [inline]\n ppp_do_recv+0x65f/0x40d0 drivers/net/ppp/ppp_generic.c:2212\n ppp_input+0x7dc/0xe60 drivers/net/ppp/ppp_generic.c:2327\n pppoe_rcv_core+0x1d3/0x720 drivers/net/ppp/pppoe.c:379\n sk_backlog_rcv+0x13b/0x420 include/net/sock.h:1113\n __release_sock+0x1da/0x330 net/core/sock.c:3072\n release_sock+0x6b/0x250 net/core/sock.c:3626\n pppoe_sendmsg+0x2b8/0xb90 drivers/net/ppp/pppoe.c:903\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:744\n ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n __do_sys_sendmmsg net/socket.c:2771 [inline]\n __se_sys_sendmmsg net/socket.c:2768 [inline]\n __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4091 [inline]\n slab_alloc_node mm/slub.c:4134 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4186\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n alloc_skb include/linux/skbuff.h:1322 [inline]\n sock_wmalloc+0xfe/0x1a0 net/core/sock.c:2732\n pppoe_sendmsg+0x3a7/0xb90 drivers/net/ppp/pppoe.c:867\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:744\n ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n __do_sys_sendmmsg net/socket.c:2771 [inline]\n __se_sys_sendmmsg net/socket.c:2768 [inline]\n __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 5460 Comm: syz.2.33 Not tainted 6.12.0-rc2-syzkaller-00006-g87d6aab2389e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50033",
"url": "https://www.suse.com/security/cve/CVE-2024-50033"
},
{
"category": "external",
"summary": "SUSE Bug 1231914 for CVE-2024-50033",
"url": "https://bugzilla.suse.com/1231914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50033"
},
{
"cve": "CVE-2024-50034",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50034"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC\n\nEric report a panic on IPPROTO_SMC, and give the facts\nthat when INET_PROTOSW_ICSK was set, icsk-\u003eicsk_sync_mss must be set too.\n\nBug: Unable to handle kernel NULL pointer dereference at virtual address\n0000000000000000\nMem abort info:\nESR = 0x0000000086000005\nEC = 0x21: IABT (current EL), IL = 32 bits\nSET = 0, FnV = 0\nEA = 0, S1PTW = 0\nFSC = 0x05: level 1 translation fault\nuser pgtable: 4k pages, 48-bit VAs, pgdp=00000001195d1000\n[0000000000000000] pgd=0800000109c46003, p4d=0800000109c46003,\npud=0000000000000000\nInternal error: Oops: 0000000086000005 [#1] PREEMPT SMP\nModules linked in:\nCPU: 1 UID: 0 PID: 8037 Comm: syz.3.265 Not tainted\n6.11.0-rc7-syzkaller-g5f5673607153 #0\nHardware name: Google Google Compute Engine/Google Compute Engine,\nBIOS Google 08/06/2024\npstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : 0x0\nlr : cipso_v4_sock_setattr+0x2a8/0x3c0 net/ipv4/cipso_ipv4.c:1910\nsp : ffff80009b887a90\nx29: ffff80009b887aa0 x28: ffff80008db94050 x27: 0000000000000000\nx26: 1fffe0001aa6f5b3 x25: dfff800000000000 x24: ffff0000db75da00\nx23: 0000000000000000 x22: ffff0000d8b78518 x21: 0000000000000000\nx20: ffff0000d537ad80 x19: ffff0000d8b78000 x18: 1fffe000366d79ee\nx17: ffff8000800614a8 x16: ffff800080569b84 x15: 0000000000000001\nx14: 000000008b336894 x13: 00000000cd96feaa x12: 0000000000000003\nx11: 0000000000040000 x10: 00000000000020a3 x9 : 1fffe0001b16f0f1\nx8 : 0000000000000000 x7 : 0000000000000000 x6 : 000000000000003f\nx5 : 0000000000000040 x4 : 0000000000000001 x3 : 0000000000000000\nx2 : 0000000000000002 x1 : 0000000000000000 x0 : ffff0000d8b78000\nCall trace:\n0x0\nnetlbl_sock_setattr+0x2e4/0x338 net/netlabel/netlabel_kapi.c:1000\nsmack_netlbl_add+0xa4/0x154 security/smack/smack_lsm.c:2593\nsmack_socket_post_create+0xa8/0x14c security/smack/smack_lsm.c:2973\nsecurity_socket_post_create+0x94/0xd4 security/security.c:4425\n__sock_create+0x4c8/0x884 net/socket.c:1587\nsock_create net/socket.c:1622 [inline]\n__sys_socket_create net/socket.c:1659 [inline]\n__sys_socket+0x134/0x340 net/socket.c:1706\n__do_sys_socket net/socket.c:1720 [inline]\n__se_sys_socket net/socket.c:1718 [inline]\n__arm64_sys_socket+0x7c/0x94 net/socket.c:1718\n__invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\ninvoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\nel0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132\ndo_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\nel0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:712\nel0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\nel0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\nCode: ???????? ???????? ???????? ???????? (????????)\n---[ end trace 0000000000000000 ]---\n\nThis patch add a toy implementation that performs a simple return to\nprevent such panic. This is because MSS can be set in sock_create_kern\nor smc_setsockopt, similar to how it\u0027s done in AF_SMC. However, for\nAF_SMC, there is currently no way to synchronize MSS within\n__sys_connect_file. This toy implementation lays the groundwork for us\nto support such feature for IPPROTO_SMC in the future.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50034",
"url": "https://www.suse.com/security/cve/CVE-2024-50034"
},
{
"category": "external",
"summary": "SUSE Bug 1231913 for CVE-2024-50034",
"url": "https://bugzilla.suse.com/1231913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50034"
},
{
"cve": "CVE-2024-50035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nppp: fix ppp_async_encode() illegal access\n\nsyzbot reported an issue in ppp_async_encode() [1]\n\nIn this case, pppoe_sendmsg() is called with a zero size.\nThen ppp_async_encode() is called with an empty skb.\n\nBUG: KMSAN: uninit-value in ppp_async_encode drivers/net/ppp/ppp_async.c:545 [inline]\n BUG: KMSAN: uninit-value in ppp_async_push+0xb4f/0x2660 drivers/net/ppp/ppp_async.c:675\n ppp_async_encode drivers/net/ppp/ppp_async.c:545 [inline]\n ppp_async_push+0xb4f/0x2660 drivers/net/ppp/ppp_async.c:675\n ppp_async_send+0x130/0x1b0 drivers/net/ppp/ppp_async.c:634\n ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2280 [inline]\n ppp_input+0x1f1/0xe60 drivers/net/ppp/ppp_generic.c:2304\n pppoe_rcv_core+0x1d3/0x720 drivers/net/ppp/pppoe.c:379\n sk_backlog_rcv+0x13b/0x420 include/net/sock.h:1113\n __release_sock+0x1da/0x330 net/core/sock.c:3072\n release_sock+0x6b/0x250 net/core/sock.c:3626\n pppoe_sendmsg+0x2b8/0xb90 drivers/net/ppp/pppoe.c:903\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:744\n ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n __do_sys_sendmmsg net/socket.c:2771 [inline]\n __se_sys_sendmmsg net/socket.c:2768 [inline]\n __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4092 [inline]\n slab_alloc_node mm/slub.c:4135 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4187\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n alloc_skb include/linux/skbuff.h:1322 [inline]\n sock_wmalloc+0xfe/0x1a0 net/core/sock.c:2732\n pppoe_sendmsg+0x3a7/0xb90 drivers/net/ppp/pppoe.c:867\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:744\n ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n __do_sys_sendmmsg net/socket.c:2771 [inline]\n __se_sys_sendmmsg net/socket.c:2768 [inline]\n __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 1 UID: 0 PID: 5411 Comm: syz.1.14 Not tainted 6.12.0-rc1-syzkaller-00165-g360c1f1f24c6 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50035",
"url": "https://www.suse.com/security/cve/CVE-2024-50035"
},
{
"category": "external",
"summary": "SUSE Bug 1232392 for CVE-2024-50035",
"url": "https://bugzilla.suse.com/1232392"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50035"
},
{
"cve": "CVE-2024-50036",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50036"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: do not delay dst_entries_add() in dst_release()\n\ndst_entries_add() uses per-cpu data that might be freed at netns\ndismantle from ip6_route_net_exit() calling dst_entries_destroy()\n\nBefore ip6_route_net_exit() can be called, we release all\nthe dsts associated with this netns, via calls to dst_release(),\nwhich waits an rcu grace period before calling dst_destroy()\n\ndst_entries_add() use in dst_destroy() is racy, because\ndst_entries_destroy() could have been called already.\n\nDecrementing the number of dsts must happen sooner.\n\nNotes:\n\n1) in CONFIG_XFRM case, dst_destroy() can call\n dst_release_immediate(child), this might also cause UAF\n if the child does not have DST_NOCOUNT set.\n IPSEC maintainers might take a look and see how to address this.\n\n2) There is also discussion about removing this count of dst,\n which might happen in future kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50036",
"url": "https://www.suse.com/security/cve/CVE-2024-50036"
},
{
"category": "external",
"summary": "SUSE Bug 1231912 for CVE-2024-50036",
"url": "https://bugzilla.suse.com/1231912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50036"
},
{
"cve": "CVE-2024-50037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50037"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/fbdev-dma: Only cleanup deferred I/O if necessary\n\nCommit 5a498d4d06d6 (\"drm/fbdev-dma: Only install deferred I/O if\nnecessary\") initializes deferred I/O only if it is used.\ndrm_fbdev_dma_fb_destroy() however calls fb_deferred_io_cleanup()\nunconditionally with struct fb_info.fbdefio == NULL. KASAN with the\nout-of-tree Apple silicon display driver posts following warning from\n__flush_work() of a random struct work_struct instead of the expected\nNULL pointer derefs.\n\n[ 22.053799] ------------[ cut here ]------------\n[ 22.054832] WARNING: CPU: 2 PID: 1 at kernel/workqueue.c:4177 __flush_work+0x4d8/0x580\n[ 22.056597] Modules linked in: uhid bnep uinput nls_ascii ip6_tables ip_tables i2c_dev loop fuse dm_multipath nfnetlink zram hid_magicmouse btrfs xor xor_neon brcmfmac_wcc raid6_pq hci_bcm4377 bluetooth brcmfmac hid_apple brcmutil nvmem_spmi_mfd simple_mfd_spmi dockchannel_hid cfg80211 joydev regmap_spmi nvme_apple ecdh_generic ecc macsmc_hid rfkill dwc3 appledrm snd_soc_macaudio macsmc_power nvme_core apple_isp phy_apple_atc apple_sart apple_rtkit_helper apple_dockchannel tps6598x macsmc_hwmon snd_soc_cs42l84 videobuf2_v4l2 spmi_apple_controller nvmem_apple_efuses videobuf2_dma_sg apple_z2 videobuf2_memops spi_nor panel_summit videobuf2_common asahi videodev pwm_apple apple_dcp snd_soc_apple_mca apple_admac spi_apple clk_apple_nco i2c_pasemi_platform snd_pcm_dmaengine mc i2c_pasemi_core mux_core ofpart adpdrm drm_dma_helper apple_dart apple_soc_cpufreq leds_pwm phram\n[ 22.073768] CPU: 2 UID: 0 PID: 1 Comm: systemd-shutdow Not tainted 6.11.2-asahi+ #asahi-dev\n[ 22.075612] Hardware name: Apple MacBook Pro (13-inch, M2, 2022) (DT)\n[ 22.077032] pstate: 01400005 (nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 22.078567] pc : __flush_work+0x4d8/0x580\n[ 22.079471] lr : __flush_work+0x54/0x580\n[ 22.080345] sp : ffffc000836ef820\n[ 22.081089] x29: ffffc000836ef880 x28: 0000000000000000 x27: ffff80002ddb7128\n[ 22.082678] x26: dfffc00000000000 x25: 1ffff000096f0c57 x24: ffffc00082d3e358\n[ 22.084263] x23: ffff80004b7862b8 x22: dfffc00000000000 x21: ffff80005aa1d470\n[ 22.085855] x20: ffff80004b786000 x19: ffff80004b7862a0 x18: 0000000000000000\n[ 22.087439] x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000005\n[ 22.089030] x14: 1ffff800106ddf0a x13: 0000000000000000 x12: 0000000000000000\n[ 22.090618] x11: ffffb800106ddf0f x10: dfffc00000000000 x9 : 1ffff800106ddf0e\n[ 22.092206] x8 : 0000000000000000 x7 : aaaaaaaaaaaaaaaa x6 : 0000000000000001\n[ 22.093790] x5 : ffffc000836ef728 x4 : 0000000000000000 x3 : 0000000000000020\n[ 22.095368] x2 : 0000000000000008 x1 : 00000000000000aa x0 : 0000000000000000\n[ 22.096955] Call trace:\n[ 22.097505] __flush_work+0x4d8/0x580\n[ 22.098330] flush_delayed_work+0x80/0xb8\n[ 22.099231] fb_deferred_io_cleanup+0x3c/0x130\n[ 22.100217] drm_fbdev_dma_fb_destroy+0x6c/0xe0 [drm_dma_helper]\n[ 22.101559] unregister_framebuffer+0x210/0x2f0\n[ 22.102575] drm_fb_helper_unregister_info+0x48/0x60\n[ 22.103683] drm_fbdev_dma_client_unregister+0x4c/0x80 [drm_dma_helper]\n[ 22.105147] drm_client_dev_unregister+0x1cc/0x230\n[ 22.106217] drm_dev_unregister+0x58/0x570\n[ 22.107125] apple_drm_unbind+0x50/0x98 [appledrm]\n[ 22.108199] component_del+0x1f8/0x3a8\n[ 22.109042] dcp_platform_shutdown+0x24/0x38 [apple_dcp]\n[ 22.110357] platform_shutdown+0x70/0x90\n[ 22.111219] device_shutdown+0x368/0x4d8\n[ 22.112095] kernel_restart+0x6c/0x1d0\n[ 22.112946] __arm64_sys_reboot+0x1c8/0x328\n[ 22.113868] invoke_syscall+0x78/0x1a8\n[ 22.114703] do_el0_svc+0x124/0x1a0\n[ 22.115498] el0_svc+0x3c/0xe0\n[ 22.116181] el0t_64_sync_handler+0x70/0xc0\n[ 22.117110] el0t_64_sync+0x190/0x198\n[ 22.117931] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50037",
"url": "https://www.suse.com/security/cve/CVE-2024-50037"
},
{
"category": "external",
"summary": "SUSE Bug 1231911 for CVE-2024-50037",
"url": "https://bugzilla.suse.com/1231911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50037"
},
{
"cve": "CVE-2024-50038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50038"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: xtables: avoid NFPROTO_UNSPEC where needed\n\nsyzbot managed to call xt_cluster match via ebtables:\n\n WARNING: CPU: 0 PID: 11 at net/netfilter/xt_cluster.c:72 xt_cluster_mt+0x196/0x780\n [..]\n ebt_do_table+0x174b/0x2a40\n\nModule registers to NFPROTO_UNSPEC, but it assumes ipv4/ipv6 packet\nprocessing. As this is only useful to restrict locally terminating\nTCP/UDP traffic, register this for ipv4 and ipv6 family only.\n\nPablo points out that this is a general issue, direct users of the\nset/getsockopt interface can call into targets/matches that were only\nintended for use with ip(6)tables.\n\nCheck all UNSPEC matches and targets for similar issues:\n\n- matches and targets are fine except if they assume skb_network_header()\n is valid -- this is only true when called from inet layer: ip(6) stack\n pulls the ip/ipv6 header into linear data area.\n- targets that return XT_CONTINUE or other xtables verdicts must be\n restricted too, they are incompatbile with the ebtables traverser, e.g.\n EBT_CONTINUE is a completely different value than XT_CONTINUE.\n\nMost matches/targets are changed to register for NFPROTO_IPV4/IPV6, as\nthey are provided for use by ip(6)tables.\n\nThe MARK target is also used by arptables, so register for NFPROTO_ARP too.\n\nWhile at it, bail out if connbytes fails to enable the corresponding\nconntrack family.\n\nThis change passes the selftests in iptables.git.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50038",
"url": "https://www.suse.com/security/cve/CVE-2024-50038"
},
{
"category": "external",
"summary": "SUSE Bug 1231910 for CVE-2024-50038",
"url": "https://bugzilla.suse.com/1231910"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50038"
},
{
"cve": "CVE-2024-50039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50039"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: accept TCA_STAB only for root qdisc\n\nMost qdiscs maintain their backlog using qdisc_pkt_len(skb)\non the assumption it is invariant between the enqueue()\nand dequeue() handlers.\n\nUnfortunately syzbot can crash a host rather easily using\na TBF + SFQ combination, with an STAB on SFQ [1]\n\nWe can\u0027t support TCA_STAB on arbitrary level, this would\nrequire to maintain per-qdisc storage.\n\n[1]\n[ 88.796496] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 88.798611] #PF: supervisor read access in kernel mode\n[ 88.799014] #PF: error_code(0x0000) - not-present page\n[ 88.799506] PGD 0 P4D 0\n[ 88.799829] Oops: Oops: 0000 [#1] SMP NOPTI\n[ 88.800569] CPU: 14 UID: 0 PID: 2053 Comm: b371744477 Not tainted 6.12.0-rc1-virtme #1117\n[ 88.801107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 88.801779] RIP: 0010:sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.802544] Code: 0f b7 50 12 48 8d 04 d5 00 00 00 00 48 89 d6 48 29 d0 48 8b 91 c0 01 00 00 48 c1 e0 03 48 01 c2 66 83 7a 1a 00 7e c0 48 8b 3a \u003c4c\u003e 8b 07 4c 89 02 49 89 50 08 48 c7 47 08 00 00 00 00 48 c7 07 00\nAll code\n========\n 0:\t0f b7 50 12 \tmovzwl 0x12(%rax),%edx\n 4:\t48 8d 04 d5 00 00 00 \tlea 0x0(,%rdx,8),%rax\n b:\t00\n c:\t48 89 d6 \tmov %rdx,%rsi\n f:\t48 29 d0 \tsub %rdx,%rax\n 12:\t48 8b 91 c0 01 00 00 \tmov 0x1c0(%rcx),%rdx\n 19:\t48 c1 e0 03 \tshl $0x3,%rax\n 1d:\t48 01 c2 \tadd %rax,%rdx\n 20:\t66 83 7a 1a 00 \tcmpw $0x0,0x1a(%rdx)\n 25:\t7e c0 \tjle 0xffffffffffffffe7\n 27:\t48 8b 3a \tmov (%rdx),%rdi\n 2a:*\t4c 8b 07 \tmov (%rdi),%r8\t\t\u003c-- trapping instruction\n 2d:\t4c 89 02 \tmov %r8,(%rdx)\n 30:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n 34:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 3b:\t00\n 3c:\t48 \trex.W\n 3d:\tc7 \t.byte 0xc7\n 3e:\t07 \t(bad)\n\t...\n\nCode starting with the faulting instruction\n===========================================\n 0:\t4c 8b 07 \tmov (%rdi),%r8\n 3:\t4c 89 02 \tmov %r8,(%rdx)\n 6:\t49 89 50 08 \tmov %rdx,0x8(%r8)\n a:\t48 c7 47 08 00 00 00 \tmovq $0x0,0x8(%rdi)\n 11:\t00\n 12:\t48 \trex.W\n 13:\tc7 \t.byte 0xc7\n 14:\t07 \t(bad)\n\t...\n[ 88.803721] RSP: 0018:ffff9a1f892b7d58 EFLAGS: 00000206\n[ 88.804032] RAX: 0000000000000000 RBX: ffff9a1f8420c800 RCX: ffff9a1f8420c800\n[ 88.804560] RDX: ffff9a1f81bc1440 RSI: 0000000000000000 RDI: 0000000000000000\n[ 88.805056] RBP: ffffffffc04bb0e0 R08: 0000000000000001 R09: 00000000ff7f9a1f\n[ 88.805473] R10: 000000000001001b R11: 0000000000009a1f R12: 0000000000000140\n[ 88.806194] R13: 0000000000000001 R14: ffff9a1f886df400 R15: ffff9a1f886df4ac\n[ 88.806734] FS: 00007f445601a740(0000) GS:ffff9a2e7fd80000(0000) knlGS:0000000000000000\n[ 88.807225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 88.807672] CR2: 0000000000000000 CR3: 000000050cc46000 CR4: 00000000000006f0\n[ 88.808165] Call Trace:\n[ 88.808459] \u003cTASK\u003e\n[ 88.808710] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434)\n[ 88.809261] ? page_fault_oops (arch/x86/mm/fault.c:715)\n[ 88.809561] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:87 ./arch/x86/include/asm/irqflags.h:147 arch/x86/mm/fault.c:1489 arch/x86/mm/fault.c:1539)\n[ 88.809806] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n[ 88.810074] ? sfq_dequeue (net/sched/sch_sfq.c:272 net/sched/sch_sfq.c:499) sch_sfq\n[ 88.810411] sfq_reset (net/sched/sch_sfq.c:525) sch_sfq\n[ 88.810671] qdisc_reset (./include/linux/skbuff.h:2135 ./include/linux/skbuff.h:2441 ./include/linux/skbuff.h:3304 ./include/linux/skbuff.h:3310 net/sched/sch_g\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50039",
"url": "https://www.suse.com/security/cve/CVE-2024-50039"
},
{
"category": "external",
"summary": "SUSE Bug 1231909 for CVE-2024-50039",
"url": "https://bugzilla.suse.com/1231909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50039"
},
{
"cve": "CVE-2024-50040",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50040"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Do not bring the device up after non-fatal error\n\nCommit 004d25060c78 (\"igb: Fix igb_down hung on surprise removal\")\nchanged igb_io_error_detected() to ignore non-fatal pcie errors in order\nto avoid hung task that can happen when igb_down() is called multiple\ntimes. This caused an issue when processing transient non-fatal errors.\nigb_io_resume(), which is called after igb_io_error_detected(), assumes\nthat device is brought down by igb_io_error_detected() if the interface\nis up. This resulted in panic with stacktrace below.\n\n[ T3256] igb 0000:09:00.0 haeth0: igb: haeth0 NIC Link is Down\n[ T292] pcieport 0000:00:1c.5: AER: Uncorrected (Non-Fatal) error received: 0000:09:00.0\n[ T292] igb 0000:09:00.0: PCIe Bus Error: severity=Uncorrected (Non-Fatal), type=Transaction Layer, (Requester ID)\n[ T292] igb 0000:09:00.0: device [8086:1537] error status/mask=00004000/00000000\n[ T292] igb 0000:09:00.0: [14] CmpltTO [ 200.105524,009][ T292] igb 0000:09:00.0: AER: TLP Header: 00000000 00000000 00000000 00000000\n[ T292] pcieport 0000:00:1c.5: AER: broadcast error_detected message\n[ T292] igb 0000:09:00.0: Non-correctable non-fatal error reported.\n[ T292] pcieport 0000:00:1c.5: AER: broadcast mmio_enabled message\n[ T292] pcieport 0000:00:1c.5: AER: broadcast resume message\n[ T292] ------------[ cut here ]------------\n[ T292] kernel BUG at net/core/dev.c:6539!\n[ T292] invalid opcode: 0000 [#1] PREEMPT SMP\n[ T292] RIP: 0010:napi_enable+0x37/0x40\n[ T292] Call Trace:\n[ T292] \u003cTASK\u003e\n[ T292] ? die+0x33/0x90\n[ T292] ? do_trap+0xdc/0x110\n[ T292] ? napi_enable+0x37/0x40\n[ T292] ? do_error_trap+0x70/0xb0\n[ T292] ? napi_enable+0x37/0x40\n[ T292] ? napi_enable+0x37/0x40\n[ T292] ? exc_invalid_op+0x4e/0x70\n[ T292] ? napi_enable+0x37/0x40\n[ T292] ? asm_exc_invalid_op+0x16/0x20\n[ T292] ? napi_enable+0x37/0x40\n[ T292] igb_up+0x41/0x150\n[ T292] igb_io_resume+0x25/0x70\n[ T292] report_resume+0x54/0x70\n[ T292] ? report_frozen_detected+0x20/0x20\n[ T292] pci_walk_bus+0x6c/0x90\n[ T292] ? aer_print_port_info+0xa0/0xa0\n[ T292] pcie_do_recovery+0x22f/0x380\n[ T292] aer_process_err_devices+0x110/0x160\n[ T292] aer_isr+0x1c1/0x1e0\n[ T292] ? disable_irq_nosync+0x10/0x10\n[ T292] irq_thread_fn+0x1a/0x60\n[ T292] irq_thread+0xe3/0x1a0\n[ T292] ? irq_set_affinity_notifier+0x120/0x120\n[ T292] ? irq_affinity_notify+0x100/0x100\n[ T292] kthread+0xe2/0x110\n[ T292] ? kthread_complete_and_exit+0x20/0x20\n[ T292] ret_from_fork+0x2d/0x50\n[ T292] ? kthread_complete_and_exit+0x20/0x20\n[ T292] ret_from_fork_asm+0x11/0x20\n[ T292] \u003c/TASK\u003e\n\nTo fix this issue igb_io_resume() checks if the interface is running and\nthe device is not down this means igb_io_error_detected() did not bring\nthe device down and there is no need to bring it up.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50040",
"url": "https://www.suse.com/security/cve/CVE-2024-50040"
},
{
"category": "external",
"summary": "SUSE Bug 1231908 for CVE-2024-50040",
"url": "https://bugzilla.suse.com/1231908"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50040"
},
{
"cve": "CVE-2024-50041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50041"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Fix macvlan leak by synchronizing access to mac_filter_hash\n\nThis patch addresses a macvlan leak issue in the i40e driver caused by\nconcurrent access to vsi-\u003emac_filter_hash. The leak occurs when multiple\nthreads attempt to modify the mac_filter_hash simultaneously, leading to\ninconsistent state and potential memory leaks.\n\nTo fix this, we now wrap the calls to i40e_del_mac_filter() and zeroing\nvf-\u003edefault_lan_addr.addr with spin_lock/unlock_bh(\u0026vsi-\u003emac_filter_hash_lock),\nensuring atomic operations and preventing concurrent access.\n\nAdditionally, we add lockdep_assert_held(\u0026vsi-\u003emac_filter_hash_lock) in\ni40e_add_mac_filter() to help catch similar issues in the future.\n\nReproduction steps:\n1. Spawn VFs and configure port vlan on them.\n2. Trigger concurrent macvlan operations (e.g., adding and deleting\n\tportvlan and/or mac filters).\n3. Observe the potential memory leak and inconsistent state in the\n\tmac_filter_hash.\n\nThis synchronization ensures the integrity of the mac_filter_hash and prevents\nthe described leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50041",
"url": "https://www.suse.com/security/cve/CVE-2024-50041"
},
{
"category": "external",
"summary": "SUSE Bug 1231907 for CVE-2024-50041",
"url": "https://bugzilla.suse.com/1231907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50041"
},
{
"cve": "CVE-2024-50042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix increasing MSI-X on VF\n\nIncreasing MSI-X value on a VF leads to invalid memory operations. This\nis caused by not reallocating some arrays.\n\nReproducer:\n modprobe ice\n echo 0 \u003e /sys/bus/pci/devices/$PF_PCI/sriov_drivers_autoprobe\n echo 1 \u003e /sys/bus/pci/devices/$PF_PCI/sriov_numvfs\n echo 17 \u003e /sys/bus/pci/devices/$VF0_PCI/sriov_vf_msix_count\n\nDefault MSI-X is 16, so 17 and above triggers this issue.\n\nKASAN reports:\n\n BUG: KASAN: slab-out-of-bounds in ice_vsi_alloc_ring_stats+0x38d/0x4b0 [ice]\n Read of size 8 at addr ffff8888b937d180 by task bash/28433\n (...)\n\n Call Trace:\n (...)\n ? ice_vsi_alloc_ring_stats+0x38d/0x4b0 [ice]\n kasan_report+0xed/0x120\n ? ice_vsi_alloc_ring_stats+0x38d/0x4b0 [ice]\n ice_vsi_alloc_ring_stats+0x38d/0x4b0 [ice]\n ice_vsi_cfg_def+0x3360/0x4770 [ice]\n ? mutex_unlock+0x83/0xd0\n ? __pfx_ice_vsi_cfg_def+0x10/0x10 [ice]\n ? __pfx_ice_remove_vsi_lkup_fltr+0x10/0x10 [ice]\n ice_vsi_cfg+0x7f/0x3b0 [ice]\n ice_vf_reconfig_vsi+0x114/0x210 [ice]\n ice_sriov_set_msix_vec_count+0x3d0/0x960 [ice]\n sriov_vf_msix_count_store+0x21c/0x300\n (...)\n\n Allocated by task 28201:\n (...)\n ice_vsi_cfg_def+0x1c8e/0x4770 [ice]\n ice_vsi_cfg+0x7f/0x3b0 [ice]\n ice_vsi_setup+0x179/0xa30 [ice]\n ice_sriov_configure+0xcaa/0x1520 [ice]\n sriov_numvfs_store+0x212/0x390\n (...)\n\nTo fix it, use ice_vsi_rebuild() instead of ice_vf_reconfig_vsi(). This\ncauses the required arrays to be reallocated taking the new queue count\ninto account (ice_vsi_realloc_stat_arrays()). Set req_txq and req_rxq\nbefore ice_vsi_rebuild(), so that realloc uses the newly set queue\ncount.\n\nAdditionally, ice_vsi_rebuild() does not remove VSI filters\n(ice_fltr_remove_all()), so ice_vf_init_host_cfg() is no longer\nnecessary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50042",
"url": "https://www.suse.com/security/cve/CVE-2024-50042"
},
{
"category": "external",
"summary": "SUSE Bug 1231906 for CVE-2024-50042",
"url": "https://bugzilla.suse.com/1231906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50042"
},
{
"cve": "CVE-2024-50043",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50043"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix possible badness in FREE_STATEID\n\nWhen multiple FREE_STATEIDs are sent for the same delegation stateid,\nit can lead to a possible either use-after-free or counter refcount\nunderflow errors.\n\nIn nfsd4_free_stateid() under the client lock we find a delegation\nstateid, however the code drops the lock before calling nfs4_put_stid(),\nthat allows another FREE_STATE to find the stateid again. The first one\nwill proceed to then free the stateid which leads to either\nuse-after-free or decrementing already zeroed counter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50043",
"url": "https://www.suse.com/security/cve/CVE-2024-50043"
},
{
"category": "external",
"summary": "SUSE Bug 1231905 for CVE-2024-50043",
"url": "https://bugzilla.suse.com/1231905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50043"
},
{
"cve": "CVE-2024-50044",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50044"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change\n\nrfcomm_sk_state_change attempts to use sock_lock so it must never be\ncalled with it locked but rfcomm_sock_ioctl always attempt to lock it\ncausing the following trace:\n\n======================================================\nWARNING: possible circular locking dependency detected\n6.8.0-syzkaller-08951-gfe46a7dd189e #0 Not tainted\n------------------------------------------------------\nsyz-executor386/5093 is trying to acquire lock:\nffff88807c396258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1671 [inline]\nffff88807c396258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sk_state_change+0x5b/0x310 net/bluetooth/rfcomm/sock.c:73\n\nbut task is already holding lock:\nffff88807badfd28 (\u0026d-\u003elock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x226/0x6a0 net/bluetooth/rfcomm/core.c:491",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50044",
"url": "https://www.suse.com/security/cve/CVE-2024-50044"
},
{
"category": "external",
"summary": "SUSE Bug 1231904 for CVE-2024-50044",
"url": "https://bugzilla.suse.com/1231904"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50044"
},
{
"cve": "CVE-2024-50045",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50045"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: br_netfilter: fix panic with metadata_dst skb\n\nFix a kernel panic in the br_netfilter module when sending untagged\ntraffic via a VxLAN device.\nThis happens during the check for fragmentation in br_nf_dev_queue_xmit.\n\nIt is dependent on:\n1) the br_netfilter module being loaded;\n2) net.bridge.bridge-nf-call-iptables set to 1;\n3) a bridge with a VxLAN (single-vxlan-device) netdevice as a bridge port;\n4) untagged frames with size higher than the VxLAN MTU forwarded/flooded\n\nWhen forwarding the untagged packet to the VxLAN bridge port, before\nthe netfilter hooks are called, br_handle_egress_vlan_tunnel is called and\nchanges the skb_dst to the tunnel dst. The tunnel_dst is a metadata type\nof dst, i.e., skb_valid_dst(skb) is false, and metadata-\u003edst.dev is NULL.\n\nThen in the br_netfilter hooks, in br_nf_dev_queue_xmit, there\u0027s a check\nfor frames that needs to be fragmented: frames with higher MTU than the\nVxLAN device end up calling br_nf_ip_fragment, which in turns call\nip_skb_dst_mtu.\n\nThe ip_dst_mtu tries to use the skb_dst(skb) as if it was a valid dst\nwith valid dst-\u003edev, thus the crash.\n\nThis case was never supported in the first place, so drop the packet\ninstead.\n\nPING 10.0.0.2 (10.0.0.2) from 0.0.0.0 h1-eth0: 2000(2028) bytes of data.\n[ 176.291791] Unable to handle kernel NULL pointer dereference at\nvirtual address 0000000000000110\n[ 176.292101] Mem abort info:\n[ 176.292184] ESR = 0x0000000096000004\n[ 176.292322] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 176.292530] SET = 0, FnV = 0\n[ 176.292709] EA = 0, S1PTW = 0\n[ 176.292862] FSC = 0x04: level 0 translation fault\n[ 176.293013] Data abort info:\n[ 176.293104] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 176.293488] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 176.293787] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 176.293995] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000043ef5000\n[ 176.294166] [0000000000000110] pgd=0000000000000000,\np4d=0000000000000000\n[ 176.294827] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 176.295252] Modules linked in: vxlan ip6_udp_tunnel udp_tunnel veth\nbr_netfilter bridge stp llc ipv6 crct10dif_ce\n[ 176.295923] CPU: 0 PID: 188 Comm: ping Not tainted\n6.8.0-rc3-g5b3fbd61b9d1 #2\n[ 176.296314] Hardware name: linux,dummy-virt (DT)\n[ 176.296535] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS\nBTYPE=--)\n[ 176.296808] pc : br_nf_dev_queue_xmit+0x390/0x4ec [br_netfilter]\n[ 176.297382] lr : br_nf_dev_queue_xmit+0x2ac/0x4ec [br_netfilter]\n[ 176.297636] sp : ffff800080003630\n[ 176.297743] x29: ffff800080003630 x28: 0000000000000008 x27:\nffff6828c49ad9f8\n[ 176.298093] x26: ffff6828c49ad000 x25: 0000000000000000 x24:\n00000000000003e8\n[ 176.298430] x23: 0000000000000000 x22: ffff6828c4960b40 x21:\nffff6828c3b16d28\n[ 176.298652] x20: ffff6828c3167048 x19: ffff6828c3b16d00 x18:\n0000000000000014\n[ 176.298926] x17: ffffb0476322f000 x16: ffffb7e164023730 x15:\n0000000095744632\n[ 176.299296] x14: ffff6828c3f1c880 x13: 0000000000000002 x12:\nffffb7e137926a70\n[ 176.299574] x11: 0000000000000001 x10: ffff6828c3f1c898 x9 :\n0000000000000000\n[ 176.300049] x8 : ffff6828c49bf070 x7 : 0008460f18d5f20e x6 :\nf20e0100bebafeca\n[ 176.300302] x5 : ffff6828c7f918fe x4 : ffff6828c49bf070 x3 :\n0000000000000000\n[ 176.300586] x2 : 0000000000000000 x1 : ffff6828c3c7ad00 x0 :\nffff6828c7f918f0\n[ 176.300889] Call trace:\n[ 176.301123] br_nf_dev_queue_xmit+0x390/0x4ec [br_netfilter]\n[ 176.301411] br_nf_post_routing+0x2a8/0x3e4 [br_netfilter]\n[ 176.301703] nf_hook_slow+0x48/0x124\n[ 176.302060] br_forward_finish+0xc8/0xe8 [bridge]\n[ 176.302371] br_nf_hook_thresh+0x124/0x134 [br_netfilter]\n[ 176.302605] br_nf_forward_finish+0x118/0x22c [br_netfilter]\n[ 176.302824] br_nf_forward_ip.part.0+0x264/0x290 [br_netfilter]\n[ 176.303136] br_nf_forward+0x2b8/0x4e0 [br_netfilter]\n[ 176.303359] nf_hook_slow+0x48/0x124\n[ 176.303\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50045",
"url": "https://www.suse.com/security/cve/CVE-2024-50045"
},
{
"category": "external",
"summary": "SUSE Bug 1231903 for CVE-2024-50045",
"url": "https://bugzilla.suse.com/1231903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50045"
},
{
"cve": "CVE-2024-50046",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50046"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()\n\nOn the node of an NFS client, some files saved in the mountpoint of the\nNFS server were copied to another location of the same NFS server.\nAccidentally, the nfs42_complete_copies() got a NULL-pointer dereference\ncrash with the following syslog:\n\n[232064.838881] NFSv4: state recovery failed for open file nfs/pvc-12b5200d-cd0f-46a3-b9f0-af8f4fe0ef64.qcow2, error = -116\n[232064.839360] NFSv4: state recovery failed for open file nfs/pvc-12b5200d-cd0f-46a3-b9f0-af8f4fe0ef64.qcow2, error = -116\n[232066.588183] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000058\n[232066.588586] Mem abort info:\n[232066.588701] ESR = 0x0000000096000007\n[232066.588862] EC = 0x25: DABT (current EL), IL = 32 bits\n[232066.589084] SET = 0, FnV = 0\n[232066.589216] EA = 0, S1PTW = 0\n[232066.589340] FSC = 0x07: level 3 translation fault\n[232066.589559] Data abort info:\n[232066.589683] ISV = 0, ISS = 0x00000007\n[232066.589842] CM = 0, WnR = 0\n[232066.589967] user pgtable: 64k pages, 48-bit VAs, pgdp=00002000956ff400\n[232066.590231] [0000000000000058] pgd=08001100ae100003, p4d=08001100ae100003, pud=08001100ae100003, pmd=08001100b3c00003, pte=0000000000000000\n[232066.590757] Internal error: Oops: 96000007 [#1] SMP\n[232066.590958] Modules linked in: rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs ocfs2_dlmfs ocfs2_stack_o2cb ocfs2_dlm vhost_net vhost vhost_iotlb tap tun ipt_rpfilter xt_multiport ip_set_hash_ip ip_set_hash_net xfrm_interface xfrm6_tunnel tunnel4 tunnel6 esp4 ah4 wireguard libcurve25519_generic veth xt_addrtype xt_set nf_conntrack_netlink ip_set_hash_ipportnet ip_set_hash_ipportip ip_set_bitmap_port ip_set_hash_ipport dummy ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs iptable_filter sch_ingress nfnetlink_cttimeout vport_gre ip_gre ip_tunnel gre vport_geneve geneve vport_vxlan vxlan ip6_udp_tunnel udp_tunnel openvswitch nf_conncount dm_round_robin dm_service_time dm_multipath xt_nat xt_MASQUERADE nft_chain_nat nf_nat xt_mark xt_conntrack xt_comment nft_compat nft_counter nf_tables nfnetlink ocfs2 ocfs2_nodemanager ocfs2_stackglue iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi ipmi_ssif nbd overlay 8021q garp mrp bonding tls rfkill sunrpc ext4 mbcache jbd2\n[232066.591052] vfat fat cas_cache cas_disk ses enclosure scsi_transport_sas sg acpi_ipmi ipmi_si ipmi_devintf ipmi_msghandler ip_tables vfio_pci vfio_pci_core vfio_virqfd vfio_iommu_type1 vfio dm_mirror dm_region_hash dm_log dm_mod nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 br_netfilter bridge stp llc fuse xfs libcrc32c ast drm_vram_helper qla2xxx drm_kms_helper syscopyarea crct10dif_ce sysfillrect ghash_ce sysimgblt sha2_ce fb_sys_fops cec sha256_arm64 sha1_ce drm_ttm_helper ttm nvme_fc igb sbsa_gwdt nvme_fabrics drm nvme_core i2c_algo_bit i40e scsi_transport_fc megaraid_sas aes_neon_bs\n[232066.596953] CPU: 6 PID: 4124696 Comm: 10.253.166.125- Kdump: loaded Not tainted 5.15.131-9.cl9_ocfs2.aarch64 #1\n[232066.597356] Hardware name: Great Wall .\\x93\\x8e...RF6260 V5/GWMSSE2GL1T, BIOS T656FBE_V3.0.18 2024-01-06\n[232066.597721] pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[232066.598034] pc : nfs4_reclaim_open_state+0x220/0x800 [nfsv4]\n[232066.598327] lr : nfs4_reclaim_open_state+0x12c/0x800 [nfsv4]\n[232066.598595] sp : ffff8000f568fc70\n[232066.598731] x29: ffff8000f568fc70 x28: 0000000000001000 x27: ffff21003db33000\n[232066.599030] x26: ffff800005521ae0 x25: ffff0100f98fa3f0 x24: 0000000000000001\n[232066.599319] x23: ffff800009920008 x22: ffff21003db33040 x21: ffff21003db33050\n[232066.599628] x20: ffff410172fe9e40 x19: ffff410172fe9e00 x18: 0000000000000000\n[232066.599914] x17: 0000000000000000 x16: 0000000000000004 x15: 0000000000000000\n[232066.600195] x14: 0000000000000000 x13: ffff800008e685a8 x12: 00000000eac0c6e6\n[232066.600498] x11: 00000000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50046",
"url": "https://www.suse.com/security/cve/CVE-2024-50046"
},
{
"category": "external",
"summary": "SUSE Bug 1231902 for CVE-2024-50046",
"url": "https://bugzilla.suse.com/1231902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50046"
},
{
"cve": "CVE-2024-50047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n # dd if=/mnt/largefile of=/dev/null\n ...\n [ 194.196391] ==================================================================\n [ 194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n [ 194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n [ 194.197707]\n [ 194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n [ 194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n [ 194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n [ 194.200032] Call Trace:\n [ 194.200191] \u003cTASK\u003e\n [ 194.200327] dump_stack_lvl+0x4e/0x70\n [ 194.200558] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.200809] print_report+0x174/0x505\n [ 194.201040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 194.201352] ? srso_return_thunk+0x5/0x5f\n [ 194.201604] ? __virt_addr_valid+0xdf/0x1c0\n [ 194.201868] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202128] kasan_report+0xc8/0x150\n [ 194.202361] ? gf128mul_4k_lle+0xc1/0x110\n [ 194.202616] gf128mul_4k_lle+0xc1/0x110\n [ 194.202863] ghash_update+0x184/0x210\n [ 194.203103] shash_ahash_update+0x184/0x2a0\n [ 194.203377] ? __pfx_shash_ahash_update+0x10/0x10\n [ 194.203651] ? srso_return_thunk+0x5/0x5f\n [ 194.203877] ? crypto_gcm_init_common+0x1ba/0x340\n [ 194.204142] gcm_hash_assoc_remain_continue+0x10a/0x140\n [ 194.204434] crypt_message+0xec1/0x10a0 [cifs]\n [ 194.206489] ? __pfx_crypt_message+0x10/0x10 [cifs]\n [ 194.208507] ? srso_return_thunk+0x5/0x5f\n [ 194.209205] ? srso_return_thunk+0x5/0x5f\n [ 194.209925] ? srso_return_thunk+0x5/0x5f\n [ 194.210443] ? srso_return_thunk+0x5/0x5f\n [ 194.211037] decrypt_raw_data+0x15f/0x250 [cifs]\n [ 194.212906] ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n [ 194.214670] ? srso_return_thunk+0x5/0x5f\n [ 194.215193] smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50047",
"url": "https://www.suse.com/security/cve/CVE-2024-50047"
},
{
"category": "external",
"summary": "SUSE Bug 1232418 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232418"
},
{
"category": "external",
"summary": "SUSE Bug 1232576 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232576"
},
{
"category": "external",
"summary": "SUSE Bug 1232638 for CVE-2024-50047",
"url": "https://bugzilla.suse.com/1232638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50047"
},
{
"cve": "CVE-2024-50048",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50048"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbcon: Fix a NULL pointer dereference issue in fbcon_putcs\n\nsyzbot has found a NULL pointer dereference bug in fbcon.\nHere is the simplified C reproducer:\n\nstruct param {\n\tuint8_t type;\n\tstruct tiocl_selection ts;\n};\n\nint main()\n{\n\tstruct fb_con2fbmap con2fb;\n\tstruct param param;\n\n\tint fd = open(\"/dev/fb1\", 0, 0);\n\n\tcon2fb.console = 0x19;\n\tcon2fb.framebuffer = 0;\n\tioctl(fd, FBIOPUT_CON2FBMAP, \u0026con2fb);\n\n\tparam.type = 2;\n\tparam.ts.xs = 0; param.ts.ys = 0;\n\tparam.ts.xe = 0; param.ts.ye = 0;\n\tparam.ts.sel_mode = 0;\n\n\tint fd1 = open(\"/dev/tty1\", O_RDWR, 0);\n\tioctl(fd1, TIOCLINUX, \u0026param);\n\n\tcon2fb.console = 1;\n\tcon2fb.framebuffer = 0;\n\tioctl(fd, FBIOPUT_CON2FBMAP, \u0026con2fb);\n\n\treturn 0;\n}\n\nAfter calling ioctl(fd1, TIOCLINUX, \u0026param), the subsequent ioctl(fd, FBIOPUT_CON2FBMAP, \u0026con2fb)\ncauses the kernel to follow a different execution path:\n\n set_con2fb_map\n -\u003e con2fb_init_display\n -\u003e fbcon_set_disp\n -\u003e redraw_screen\n -\u003e hide_cursor\n -\u003e clear_selection\n -\u003e highlight\n -\u003e invert_screen\n -\u003e do_update_region\n -\u003e fbcon_putcs\n -\u003e ops-\u003eputcs\n\nSince ops-\u003eputcs is a NULL pointer, this leads to a kernel panic.\nTo prevent this, we need to call set_blitting_type() within set_con2fb_map()\nto properly initialize ops-\u003eputcs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50048",
"url": "https://www.suse.com/security/cve/CVE-2024-50048"
},
{
"category": "external",
"summary": "SUSE Bug 1232310 for CVE-2024-50048",
"url": "https://bugzilla.suse.com/1232310"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50048"
},
{
"cve": "CVE-2024-50049",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50049"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointer before dereferencing se\n\n[WHAT \u0026 HOW]\nse is null checked previously in the same function, indicating\nit might be null; therefore, it must be checked when used again.\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50049",
"url": "https://www.suse.com/security/cve/CVE-2024-50049"
},
{
"category": "external",
"summary": "SUSE Bug 1232309 for CVE-2024-50049",
"url": "https://bugzilla.suse.com/1232309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50049"
},
{
"cve": "CVE-2024-50055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50055"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver core: bus: Fix double free in driver API bus_register()\n\nFor bus_register(), any error which happens after kset_register() will\ncause that @priv are freed twice, fixed by setting @priv with NULL after\nthe first free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50055",
"url": "https://www.suse.com/security/cve/CVE-2024-50055"
},
{
"category": "external",
"summary": "SUSE Bug 1232329 for CVE-2024-50055",
"url": "https://bugzilla.suse.com/1232329"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50055"
},
{
"cve": "CVE-2024-50056",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50056"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: uvc: Fix ERR_PTR dereference in uvc_v4l2.c\n\nFix potential dereferencing of ERR_PTR() in find_format_by_pix()\nand uvc_v4l2_enum_format().\n\nFix the following smatch errors:\n\ndrivers/usb/gadget/function/uvc_v4l2.c:124 find_format_by_pix()\nerror: \u0027fmtdesc\u0027 dereferencing possible ERR_PTR()\n\ndrivers/usb/gadget/function/uvc_v4l2.c:392 uvc_v4l2_enum_format()\nerror: \u0027fmtdesc\u0027 dereferencing possible ERR_PTR()\n\nAlso, fix similar issue in uvc_v4l2_try_format() for potential\ndereferencing of ERR_PTR().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50056",
"url": "https://www.suse.com/security/cve/CVE-2024-50056"
},
{
"category": "external",
"summary": "SUSE Bug 1232389 for CVE-2024-50056",
"url": "https://bugzilla.suse.com/1232389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50056"
},
{
"cve": "CVE-2024-50057",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50057"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tipd: Free IRQ only if it was requested before\n\nIn polling mode, if no IRQ was requested there is no need to free it.\nCall devm_free_irq() only if client-\u003eirq is set. This fixes the warning\ncaused by the tps6598x module removal:\n\nWARNING: CPU: 2 PID: 333 at kernel/irq/devres.c:144 devm_free_irq+0x80/0x8c\n...\n...\nCall trace:\n devm_free_irq+0x80/0x8c\n tps6598x_remove+0x28/0x88 [tps6598x]\n i2c_device_remove+0x2c/0x9c\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1cc/0x228\n driver_detach+0x50/0x98\n bus_remove_driver+0x6c/0xbc\n driver_unregister+0x30/0x60\n i2c_del_driver+0x54/0x64\n tps6598x_i2c_driver_exit+0x18/0xc3c [tps6598x]\n __arm64_sys_delete_module+0x184/0x264\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0xc8/0xe8\n do_el0_svc+0x20/0x2c\n el0_svc+0x28/0x98\n el0t_64_sync_handler+0x13c/0x158\n el0t_64_sync+0x190/0x194",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50057",
"url": "https://www.suse.com/security/cve/CVE-2024-50057"
},
{
"category": "external",
"summary": "SUSE Bug 1232393 for CVE-2024-50057",
"url": "https://bugzilla.suse.com/1232393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50057"
},
{
"cve": "CVE-2024-50058",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50058"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: protect uart_port_dtr_rts() in uart_shutdown() too\n\nCommit af224ca2df29 (serial: core: Prevent unsafe uart port access, part\n3) added few uport == NULL checks. It added one to uart_shutdown(), so\nthe commit assumes, uport can be NULL in there. But right after that\nprotection, there is an unprotected \"uart_port_dtr_rts(uport, false);\"\ncall. That is invoked only if HUPCL is set, so I assume that is the\nreason why we do not see lots of these reports.\n\nOr it cannot be NULL at this point at all for some reason :P.\n\nUntil the above is investigated, stay on the safe side and move this\ndereference to the if too.\n\nI got this inconsistency from Coverity under CID 1585130. Thanks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50058",
"url": "https://www.suse.com/security/cve/CVE-2024-50058"
},
{
"category": "external",
"summary": "SUSE Bug 1232285 for CVE-2024-50058",
"url": "https://bugzilla.suse.com/1232285"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50058"
},
{
"cve": "CVE-2024-50059",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50059"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition\n\nIn the switchtec_ntb_add function, it can call switchtec_ntb_init_sndev\nfunction, then \u0026sndev-\u003echeck_link_status_work is bound with\ncheck_link_status_work. switchtec_ntb_link_notification may be called\nto start the work.\n\nIf we remove the module which will call switchtec_ntb_remove to make\ncleanup, it will free sndev through kfree(sndev), while the work\nmentioned above will be used. The sequence of operations that may lead\nto a UAF bug is as follows:\n\nCPU0 CPU1\n\n | check_link_status_work\nswitchtec_ntb_remove |\nkfree(sndev); |\n | if (sndev-\u003elink_force_down)\n | // use sndev\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in switchtec_ntb_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50059",
"url": "https://www.suse.com/security/cve/CVE-2024-50059"
},
{
"category": "external",
"summary": "SUSE Bug 1232345 for CVE-2024-50059",
"url": "https://bugzilla.suse.com/1232345"
},
{
"category": "external",
"summary": "SUSE Bug 1232348 for CVE-2024-50059",
"url": "https://bugzilla.suse.com/1232348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50059"
},
{
"cve": "CVE-2024-50060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50060"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: check if we need to reschedule during overflow flush\n\nIn terms of normal application usage, this list will always be empty.\nAnd if an application does overflow a bit, it\u0027ll have a few entries.\nHowever, nothing obviously prevents syzbot from running a test case\nthat generates a ton of overflow entries, and then flushing them can\ntake quite a while.\n\nCheck for needing to reschedule while flushing, and drop our locks and\ndo so if necessary. There\u0027s no state to maintain here as overflows\nalways prune from head-of-list, hence it\u0027s fine to drop and reacquire\nthe locks at the end of the loop.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50060",
"url": "https://www.suse.com/security/cve/CVE-2024-50060"
},
{
"category": "external",
"summary": "SUSE Bug 1232417 for CVE-2024-50060",
"url": "https://bugzilla.suse.com/1232417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50060"
},
{
"cve": "CVE-2024-50061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50061"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition\n\nIn the cdns_i3c_master_probe function, \u0026master-\u003ehj_work is bound with\ncdns_i3c_master_hj. And cdns_i3c_master_interrupt can call\ncnds_i3c_master_demux_ibis function to start the work.\n\nIf we remove the module which will call cdns_i3c_master_remove to\nmake cleanup, it will free master-\u003ebase through i3c_master_unregister\nwhile the work mentioned above will be used. The sequence of operations\nthat may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | cdns_i3c_master_hj\ncdns_i3c_master_remove |\ni3c_master_unregister(\u0026master-\u003ebase) |\ndevice_unregister(\u0026master-\u003edev) |\ndevice_release |\n//free master-\u003ebase |\n | i3c_master_do_daa(\u0026master-\u003ebase)\n | //use master-\u003ebase\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in cdns_i3c_master_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50061",
"url": "https://www.suse.com/security/cve/CVE-2024-50061"
},
{
"category": "external",
"summary": "SUSE Bug 1232263 for CVE-2024-50061",
"url": "https://bugzilla.suse.com/1232263"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50061"
},
{
"cve": "CVE-2024-50062",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50062"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs-srv: Avoid null pointer deref during path establishment\n\nFor RTRS path establishment, RTRS client initiates and completes con_num\nof connections. After establishing all its connections, the information\nis exchanged between the client and server through the info_req message.\nDuring this exchange, it is essential that all connections have been\nestablished, and the state of the RTRS srv path is CONNECTED.\n\nSo add these sanity checks, to make sure we detect and abort process in\nerror scenarios to avoid null pointer deref.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50062",
"url": "https://www.suse.com/security/cve/CVE-2024-50062"
},
{
"category": "external",
"summary": "SUSE Bug 1232232 for CVE-2024-50062",
"url": "https://bugzilla.suse.com/1232232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50062"
},
{
"cve": "CVE-2024-50063",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50063"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Prevent tail call between progs attached to different hooks\n\nbpf progs can be attached to kernel functions, and the attached functions\ncan take different parameters or return different return values. If\nprog attached to one kernel function tail calls prog attached to another\nkernel function, the ctx access or return value verification could be\nbypassed.\n\nFor example, if prog1 is attached to func1 which takes only 1 parameter\nand prog2 is attached to func2 which takes two parameters. Since verifier\nassumes the bpf ctx passed to prog2 is constructed based on func2\u0027s\nprototype, verifier allows prog2 to access the second parameter from\nthe bpf ctx passed to it. The problem is that verifier does not prevent\nprog1 from passing its bpf ctx to prog2 via tail call. In this case,\nthe bpf ctx passed to prog2 is constructed from func1 instead of func2,\nthat is, the assumption for ctx access verification is bypassed.\n\nAnother example, if BPF LSM prog1 is attached to hook file_alloc_security,\nand BPF LSM prog2 is attached to hook bpf_lsm_audit_rule_known. Verifier\nknows the return value rules for these two hooks, e.g. it is legal for\nbpf_lsm_audit_rule_known to return positive number 1, and it is illegal\nfor file_alloc_security to return positive number. So verifier allows\nprog2 to return positive number 1, but does not allow prog1 to return\npositive number. The problem is that verifier does not prevent prog1\nfrom calling prog2 via tail call. In this case, prog2\u0027s return value 1\nwill be used as the return value for prog1\u0027s hook file_alloc_security.\nThat is, the return value rule is bypassed.\n\nThis patch adds restriction for tail call to prevent such bypasses.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50063",
"url": "https://www.suse.com/security/cve/CVE-2024-50063"
},
{
"category": "external",
"summary": "SUSE Bug 1232435 for CVE-2024-50063",
"url": "https://bugzilla.suse.com/1232435"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50063"
},
{
"cve": "CVE-2024-50064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nzram: free secondary algorithms names\n\nWe need to kfree() secondary algorithms names when reset zram device that\nhad multi-streams, otherwise we leak memory.\n\n[senozhatsky@chromium.org: kfree(NULL) is legal]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50064",
"url": "https://www.suse.com/security/cve/CVE-2024-50064"
},
{
"category": "external",
"summary": "SUSE Bug 1231901 for CVE-2024-50064",
"url": "https://bugzilla.suse.com/1231901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50064"
},
{
"cve": "CVE-2024-50065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50065"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Change to non-blocking allocation in ntfs_d_hash\n\nd_hash is done while under \"rcu-walk\" and should not sleep.\n__get_name() allocates using GFP_KERNEL, having the possibility\nto sleep when under memory pressure. Change the allocation to\nGFP_NOWAIT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50065",
"url": "https://www.suse.com/security/cve/CVE-2024-50065"
},
{
"category": "external",
"summary": "SUSE Bug 1231899 for CVE-2024-50065",
"url": "https://bugzilla.suse.com/1231899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50065"
},
{
"cve": "CVE-2024-50066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mremap: fix move_normal_pmd/retract_page_tables race\n\nIn mremap(), move_page_tables() looks at the type of the PMD entry and the\nspecified address range to figure out by which method the next chunk of\npage table entries should be moved.\n\nAt that point, the mmap_lock is held in write mode, but no rmap locks are\nheld yet. For PMD entries that point to page tables and are fully covered\nby the source address range, move_pgt_entry(NORMAL_PMD, ...) is called,\nwhich first takes rmap locks, then does move_normal_pmd(). \nmove_normal_pmd() takes the necessary page table locks at source and\ndestination, then moves an entire page table from the source to the\ndestination.\n\nThe problem is: The rmap locks, which protect against concurrent page\ntable removal by retract_page_tables() in the THP code, are only taken\nafter the PMD entry has been read and it has been decided how to move it. \nSo we can race as follows (with two processes that have mappings of the\nsame tmpfs file that is stored on a tmpfs mount with huge=advise); note\nthat process A accesses page tables through the MM while process B does it\nthrough the file rmap:\n\nprocess A process B\n========= =========\nmremap\n mremap_to\n move_vma\n move_page_tables\n get_old_pmd\n alloc_new_pmd\n *** PREEMPT ***\n madvise(MADV_COLLAPSE)\n do_madvise\n madvise_walk_vmas\n madvise_vma_behavior\n madvise_collapse\n hpage_collapse_scan_file\n collapse_file\n retract_page_tables\n i_mmap_lock_read(mapping)\n pmdp_collapse_flush\n i_mmap_unlock_read(mapping)\n move_pgt_entry(NORMAL_PMD, ...)\n take_rmap_locks\n move_normal_pmd\n drop_rmap_locks\n\nWhen this happens, move_normal_pmd() can end up creating bogus PMD entries\nin the line `pmd_populate(mm, new_pmd, pmd_pgtable(pmd))`. The effect\ndepends on arch-specific and machine-specific details; on x86, you can end\nup with physical page 0 mapped as a page table, which is likely\nexploitable for user-\u003ekernel privilege escalation.\n\nFix the race by letting process B recheck that the PMD still points to a\npage table after the rmap locks have been taken. Otherwise, we bail and\nlet the caller fall back to the PTE-level copying path, which will then\nbail immediately at the pmd_none() check.\n\nBug reachability: Reaching this bug requires that you can create\nshmem/file THP mappings - anonymous THP uses different code that doesn\u0027t\nzap stuff under rmap locks. File THP is gated on an experimental config\nflag (CONFIG_READ_ONLY_THP_FOR_FS), so on normal distro kernels you need\nshmem THP to hit this bug. As far as I know, getting shmem THP normally\nrequires that you can mount your own tmpfs with the right mount flags,\nwhich would require creating your own user+mount namespace; though I don\u0027t\nknow if some distros maybe enable shmem THP by default or something like\nthat.\n\nBug impact: This issue can likely be used for user-\u003ekernel privilege\nescalation when it is reachable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50066",
"url": "https://www.suse.com/security/cve/CVE-2024-50066"
},
{
"category": "external",
"summary": "SUSE Bug 1232078 for CVE-2024-50066",
"url": "https://bugzilla.suse.com/1232078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50066"
},
{
"cve": "CVE-2024-50067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50067"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuprobe: avoid out-of-bounds memory access of fetching args\n\nUprobe needs to fetch args into a percpu buffer, and then copy to ring\nbuffer to avoid non-atomic context problem.\n\nSometimes user-space strings, arrays can be very large, but the size of\npercpu buffer is only page size. And store_trace_args() won\u0027t check\nwhether these data exceeds a single page or not, caused out-of-bounds\nmemory access.\n\nIt could be reproduced by following steps:\n1. build kernel with CONFIG_KASAN enabled\n2. save follow program as test.c\n\n```\n\\#include \u003cstdio.h\u003e\n\\#include \u003cstdlib.h\u003e\n\\#include \u003cstring.h\u003e\n\n// If string length large than MAX_STRING_SIZE, the fetch_store_strlen()\n// will return 0, cause __get_data_size() return shorter size, and\n// store_trace_args() will not trigger out-of-bounds access.\n// So make string length less than 4096.\n\\#define STRLEN 4093\n\nvoid generate_string(char *str, int n)\n{\n int i;\n for (i = 0; i \u003c n; ++i)\n {\n char c = i % 26 + \u0027a\u0027;\n str[i] = c;\n }\n str[n-1] = \u0027\\0\u0027;\n}\n\nvoid print_string(char *str)\n{\n printf(\"%s\\n\", str);\n}\n\nint main()\n{\n char tmp[STRLEN];\n\n generate_string(tmp, STRLEN);\n print_string(tmp);\n\n return 0;\n}\n```\n3. compile program\n`gcc -o test test.c`\n\n4. get the offset of `print_string()`\n```\nobjdump -t test | grep -w print_string\n0000000000401199 g F .text 000000000000001b print_string\n```\n\n5. configure uprobe with offset 0x1199\n```\noff=0x1199\n\ncd /sys/kernel/debug/tracing/\necho \"p /root/test:${off} arg1=+0(%di):ustring arg2=\\$comm arg3=+0(%di):ustring\"\n \u003e uprobe_events\necho 1 \u003e events/uprobes/enable\necho 1 \u003e tracing_on\n```\n\n6. run `test`, and kasan will report error.\n==================================================================\nBUG: KASAN: use-after-free in strncpy_from_user+0x1d6/0x1f0\nWrite of size 8 at addr ffff88812311c004 by task test/499CPU: 0 UID: 0 PID: 499 Comm: test Not tainted 6.12.0-rc3+ #18\nHardware name: Red Hat KVM, BIOS 1.16.0-4.al8 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x55/0x70\n print_address_description.constprop.0+0x27/0x310\n kasan_report+0x10f/0x120\n ? strncpy_from_user+0x1d6/0x1f0\n strncpy_from_user+0x1d6/0x1f0\n ? rmqueue.constprop.0+0x70d/0x2ad0\n process_fetch_insn+0xb26/0x1470\n ? __pfx_process_fetch_insn+0x10/0x10\n ? _raw_spin_lock+0x85/0xe0\n ? __pfx__raw_spin_lock+0x10/0x10\n ? __pte_offset_map+0x1f/0x2d0\n ? unwind_next_frame+0xc5f/0x1f80\n ? arch_stack_walk+0x68/0xf0\n ? is_bpf_text_address+0x23/0x30\n ? kernel_text_address.part.0+0xbb/0xd0\n ? __kernel_text_address+0x66/0xb0\n ? unwind_get_return_address+0x5e/0xa0\n ? __pfx_stack_trace_consume_entry+0x10/0x10\n ? arch_stack_walk+0xa2/0xf0\n ? _raw_spin_lock_irqsave+0x8b/0xf0\n ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n ? depot_alloc_stack+0x4c/0x1f0\n ? _raw_spin_unlock_irqrestore+0xe/0x30\n ? stack_depot_save_flags+0x35d/0x4f0\n ? kasan_save_stack+0x34/0x50\n ? kasan_save_stack+0x24/0x50\n ? mutex_lock+0x91/0xe0\n ? __pfx_mutex_lock+0x10/0x10\n prepare_uprobe_buffer.part.0+0x2cd/0x500\n uprobe_dispatcher+0x2c3/0x6a0\n ? __pfx_uprobe_dispatcher+0x10/0x10\n ? __kasan_slab_alloc+0x4d/0x90\n handler_chain+0xdd/0x3e0\n handle_swbp+0x26e/0x3d0\n ? __pfx_handle_swbp+0x10/0x10\n ? uprobe_pre_sstep_notifier+0x151/0x1b0\n irqentry_exit_to_user_mode+0xe2/0x1b0\n asm_exc_int3+0x39/0x40\nRIP: 0033:0x401199\nCode: 01 c2 0f b6 45 fb 88 02 83 45 fc 01 8b 45 fc 3b 45 e4 7c b7 8b 45 e4 48 98 48 8d 50 ff 48 8b 45 e8 48 01 d0 ce\nRSP: 002b:00007ffdf00576a8 EFLAGS: 00000206\nRAX: 00007ffdf00576b0 RBX: 0000000000000000 RCX: 0000000000000ff2\nRDX: 0000000000000ffc RSI: 0000000000000ffd RDI: 00007ffdf00576b0\nRBP: 00007ffdf00586b0 R08: 00007feb2f9c0d20 R09: 00007feb2f9c0d20\nR10: 0000000000000001 R11: 0000000000000202 R12: 0000000000401040\nR13: 00007ffdf0058780 R14: 0000000000000000 R15: 0000000000000000\n \u003c/TASK\u003e\n\nThis commit enforces the buffer\u0027s maxlen less than a page-size to avoid\nstore_trace_args() out-of-memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50067",
"url": "https://www.suse.com/security/cve/CVE-2024-50067"
},
{
"category": "external",
"summary": "SUSE Bug 1232416 for CVE-2024-50067",
"url": "https://bugzilla.suse.com/1232416"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50067"
},
{
"cve": "CVE-2024-50068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50068"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/damon/tests/sysfs-kunit.h: fix memory leak in damon_sysfs_test_add_targets()\n\nThe sysfs_target-\u003eregions allocated in damon_sysfs_regions_alloc() is not\nfreed in damon_sysfs_test_add_targets(), which cause the following memory\nleak, free it to fix it.\n\n\tunreferenced object 0xffffff80c2a8db80 (size 96):\n\t comm \"kunit_try_catch\", pid 187, jiffies 4294894363\n\t hex dump (first 32 bytes):\n\t 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n\t 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n\t backtrace (crc 0):\n\t [\u003c0000000001e3714d\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c000000008e6835c1\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000001286d9f8\u003e] damon_sysfs_test_add_targets+0x1cc/0x738\n\t [\u003c0000000032ef8f77\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c00000000f3edea23\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000adf936cf\u003e] kthread+0x2e8/0x374\n\t [\u003c0000000041bb1628\u003e] ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50068",
"url": "https://www.suse.com/security/cve/CVE-2024-50068"
},
{
"category": "external",
"summary": "SUSE Bug 1232512 for CVE-2024-50068",
"url": "https://bugzilla.suse.com/1232512"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50068"
},
{
"cve": "CVE-2024-50069",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50069"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: apple: check devm_kasprintf() returned value\n\ndevm_kasprintf() can return a NULL pointer on failure but this returned\nvalue is not checked. Fix this lack and check the returned value.\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50069",
"url": "https://www.suse.com/security/cve/CVE-2024-50069"
},
{
"category": "external",
"summary": "SUSE Bug 1232511 for CVE-2024-50069",
"url": "https://bugzilla.suse.com/1232511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50069"
},
{
"cve": "CVE-2024-50070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: stm32: check devm_kasprintf() returned value\n\ndevm_kasprintf() can return a NULL pointer on failure but this returned\nvalue is not checked. Fix this lack and check the returned value.\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50070",
"url": "https://www.suse.com/security/cve/CVE-2024-50070"
},
{
"category": "external",
"summary": "SUSE Bug 1232510 for CVE-2024-50070",
"url": "https://bugzilla.suse.com/1232510"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50070"
},
{
"cve": "CVE-2024-50071",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50071"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: nuvoton: fix a double free in ma35_pinctrl_dt_node_to_map_func()\n\n\u0027new_map\u0027 is allocated using devm_* which takes care of freeing the\nallocated data on device removal, call to\n\n\t.dt_free_map = pinconf_generic_dt_free_map\n\ndouble frees the map as pinconf_generic_dt_free_map() calls\npinctrl_utils_free_map().\n\nFix this by using kcalloc() instead of auto-managed devm_kcalloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50071",
"url": "https://www.suse.com/security/cve/CVE-2024-50071"
},
{
"category": "external",
"summary": "SUSE Bug 1232509 for CVE-2024-50071",
"url": "https://bugzilla.suse.com/1232509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50071"
},
{
"cve": "CVE-2024-50072",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50072"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/bugs: Use code segment selector for VERW operand\n\nRobert Gill reported below #GP in 32-bit mode when dosemu software was\nexecuting vm86() system call:\n\n general protection fault: 0000 [#1] PREEMPT SMP\n CPU: 4 PID: 4610 Comm: dosemu.bin Not tainted 6.6.21-gentoo-x86 #1\n Hardware name: Dell Inc. PowerEdge 1950/0H723K, BIOS 2.7.0 10/30/2010\n EIP: restore_all_switch_stack+0xbe/0xcf\n EAX: 00000000 EBX: 00000000 ECX: 00000000 EDX: 00000000\n ESI: 00000000 EDI: 00000000 EBP: 00000000 ESP: ff8affdc\n DS: 0000 ES: 0000 FS: 0000 GS: 0033 SS: 0068 EFLAGS: 00010046\n CR0: 80050033 CR2: 00c2101c CR3: 04b6d000 CR4: 000406d0\n Call Trace:\n show_regs+0x70/0x78\n die_addr+0x29/0x70\n exc_general_protection+0x13c/0x348\n exc_bounds+0x98/0x98\n handle_exception+0x14d/0x14d\n exc_bounds+0x98/0x98\n restore_all_switch_stack+0xbe/0xcf\n exc_bounds+0x98/0x98\n restore_all_switch_stack+0xbe/0xcf\n\nThis only happens in 32-bit mode when VERW based mitigations like MDS/RFDS\nare enabled. This is because segment registers with an arbitrary user value\ncan result in #GP when executing VERW. Intel SDM vol. 2C documents the\nfollowing behavior for VERW instruction:\n\n #GP(0) - If a memory operand effective address is outside the CS, DS, ES,\n\t FS, or GS segment limit.\n\nCLEAR_CPU_BUFFERS macro executes VERW instruction before returning to user\nspace. Use %cs selector to reference VERW operand. This ensures VERW will\nnot #GP for an arbitrary user %ds.\n\n[ mingo: Fixed the SOB chain. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50072",
"url": "https://www.suse.com/security/cve/CVE-2024-50072"
},
{
"category": "external",
"summary": "SUSE Bug 1232513 for CVE-2024-50072",
"url": "https://bugzilla.suse.com/1232513"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50072"
},
{
"cve": "CVE-2024-50073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50073"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: n_gsm: Fix use-after-free in gsm_cleanup_mux\n\nBUG: KASAN: slab-use-after-free in gsm_cleanup_mux+0x77b/0x7b0\ndrivers/tty/n_gsm.c:3160 [n_gsm]\nRead of size 8 at addr ffff88815fe99c00 by task poc/3379\nCPU: 0 UID: 0 PID: 3379 Comm: poc Not tainted 6.11.0+ #56\nHardware name: VMware, Inc. VMware Virtual Platform/440BX\nDesktop Reference Platform, BIOS 6.00 11/12/2020\nCall Trace:\n \u003cTASK\u003e\n gsm_cleanup_mux+0x77b/0x7b0 drivers/tty/n_gsm.c:3160 [n_gsm]\n __pfx_gsm_cleanup_mux+0x10/0x10 drivers/tty/n_gsm.c:3124 [n_gsm]\n __pfx_sched_clock_cpu+0x10/0x10 kernel/sched/clock.c:389\n update_load_avg+0x1c1/0x27b0 kernel/sched/fair.c:4500\n __pfx_min_vruntime_cb_rotate+0x10/0x10 kernel/sched/fair.c:846\n __rb_insert_augmented+0x492/0xbf0 lib/rbtree.c:161\n gsmld_ioctl+0x395/0x1450 drivers/tty/n_gsm.c:3408 [n_gsm]\n _raw_spin_lock_irqsave+0x92/0xf0 arch/x86/include/asm/atomic.h:107\n __pfx_gsmld_ioctl+0x10/0x10 drivers/tty/n_gsm.c:3822 [n_gsm]\n ktime_get+0x5e/0x140 kernel/time/timekeeping.c:195\n ldsem_down_read+0x94/0x4e0 arch/x86/include/asm/atomic64_64.h:79\n __pfx_ldsem_down_read+0x10/0x10 drivers/tty/tty_ldsem.c:338\n __pfx_do_vfs_ioctl+0x10/0x10 fs/ioctl.c:805\n tty_ioctl+0x643/0x1100 drivers/tty/tty_io.c:2818\n\nAllocated by task 65:\n gsm_data_alloc.constprop.0+0x27/0x190 drivers/tty/n_gsm.c:926 [n_gsm]\n gsm_send+0x2c/0x580 drivers/tty/n_gsm.c:819 [n_gsm]\n gsm1_receive+0x547/0xad0 drivers/tty/n_gsm.c:3038 [n_gsm]\n gsmld_receive_buf+0x176/0x280 drivers/tty/n_gsm.c:3609 [n_gsm]\n tty_ldisc_receive_buf+0x101/0x1e0 drivers/tty/tty_buffer.c:391\n tty_port_default_receive_buf+0x61/0xa0 drivers/tty/tty_port.c:39\n flush_to_ldisc+0x1b0/0x750 drivers/tty/tty_buffer.c:445\n process_scheduled_works+0x2b0/0x10d0 kernel/workqueue.c:3229\n worker_thread+0x3dc/0x950 kernel/workqueue.c:3391\n kthread+0x2a3/0x370 kernel/kthread.c:389\n ret_from_fork+0x2d/0x70 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:257\n\nFreed by task 3367:\n kfree+0x126/0x420 mm/slub.c:4580\n gsm_cleanup_mux+0x36c/0x7b0 drivers/tty/n_gsm.c:3160 [n_gsm]\n gsmld_ioctl+0x395/0x1450 drivers/tty/n_gsm.c:3408 [n_gsm]\n tty_ioctl+0x643/0x1100 drivers/tty/tty_io.c:2818\n\n[Analysis]\ngsm_msg on the tx_ctrl_list or tx_data_list of gsm_mux\ncan be freed by multi threads through ioctl,which leads\nto the occurrence of uaf. Protect it by gsm tx lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50073",
"url": "https://www.suse.com/security/cve/CVE-2024-50073"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50073",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232520 for CVE-2024-50073",
"url": "https://bugzilla.suse.com/1232520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50073"
},
{
"cve": "CVE-2024-50074",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50074"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nparport: Proper fix for array out-of-bounds access\n\nThe recent fix for array out-of-bounds accesses replaced sprintf()\ncalls blindly with snprintf(). However, since snprintf() returns the\nwould-be-printed size, not the actually output size, the length\ncalculation can still go over the given limit.\n\nUse scnprintf() instead of snprintf(), which returns the actually\noutput letters, for addressing the potential out-of-bounds access\nproperly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50074",
"url": "https://www.suse.com/security/cve/CVE-2024-50074"
},
{
"category": "external",
"summary": "SUSE Bug 1232507 for CVE-2024-50074",
"url": "https://bugzilla.suse.com/1232507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50074"
},
{
"cve": "CVE-2024-50075",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50075"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: tegra: fix checked USB2 port number\n\nIf USB virtualizatoin is enabled, USB2 ports are shared between all\nVirtual Functions. The USB2 port number owned by an USB2 root hub in\na Virtual Function may be less than total USB2 phy number supported\nby the Tegra XUSB controller.\n\nUsing total USB2 phy number as port number to check all PORTSC values\nwould cause invalid memory access.\n\n[ 116.923438] Unable to handle kernel paging request at virtual address 006c622f7665642f\n...\n[ 117.213640] Call trace:\n[ 117.216783] tegra_xusb_enter_elpg+0x23c/0x658\n[ 117.222021] tegra_xusb_runtime_suspend+0x40/0x68\n[ 117.227260] pm_generic_runtime_suspend+0x30/0x50\n[ 117.232847] __rpm_callback+0x84/0x3c0\n[ 117.237038] rpm_suspend+0x2dc/0x740\n[ 117.241229] pm_runtime_work+0xa0/0xb8\n[ 117.245769] process_scheduled_works+0x24c/0x478\n[ 117.251007] worker_thread+0x23c/0x328\n[ 117.255547] kthread+0x104/0x1b0\n[ 117.259389] ret_from_fork+0x10/0x20\n[ 117.263582] Code: 54000222 f9461ae8 f8747908 b4ffff48 (f9400100)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50075",
"url": "https://www.suse.com/security/cve/CVE-2024-50075"
},
{
"category": "external",
"summary": "SUSE Bug 1232506 for CVE-2024-50075",
"url": "https://bugzilla.suse.com/1232506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50075"
},
{
"cve": "CVE-2024-50076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvt: prevent kernel-infoleak in con_font_get()\n\nfont.data may not initialize all memory spaces depending on the implementation\nof vc-\u003evc_sw-\u003econ_font_get. This may cause info-leak, so to prevent this, it\nis safest to modify it to initialize the allocated memory space to 0, and it\ngenerally does not affect the overall performance of the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50076",
"url": "https://www.suse.com/security/cve/CVE-2024-50076"
},
{
"category": "external",
"summary": "SUSE Bug 1232505 for CVE-2024-50076",
"url": "https://bugzilla.suse.com/1232505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50076"
},
{
"cve": "CVE-2024-50077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: Fix multiple init when debugfs is disabled\n\nIf bt_debugfs is not created successfully, which happens if either\nCONFIG_DEBUG_FS or CONFIG_DEBUG_FS_ALLOW_ALL is unset, then iso_init()\nreturns early and does not set iso_inited to true. This means that a\nsubsequent call to iso_init() will result in duplicate calls to\nproto_register(), bt_sock_register(), etc.\n\nWith CONFIG_LIST_HARDENED and CONFIG_BUG_ON_DATA_CORRUPTION enabled, the\nduplicate call to proto_register() triggers this BUG():\n\n list_add double add: new=ffffffffc0b280d0, prev=ffffffffbab56250,\n next=ffffffffc0b280d0.\n ------------[ cut here ]------------\n kernel BUG at lib/list_debug.c:35!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 2 PID: 887 Comm: bluetoothd Not tainted 6.10.11-1-ao-desktop #1\n RIP: 0010:__list_add_valid_or_report+0x9a/0xa0\n ...\n __list_add_valid_or_report+0x9a/0xa0\n proto_register+0x2b5/0x340\n iso_init+0x23/0x150 [bluetooth]\n set_iso_socket_func+0x68/0x1b0 [bluetooth]\n kmem_cache_free+0x308/0x330\n hci_sock_sendmsg+0x990/0x9e0 [bluetooth]\n __sock_sendmsg+0x7b/0x80\n sock_write_iter+0x9a/0x110\n do_iter_readv_writev+0x11d/0x220\n vfs_writev+0x180/0x3e0\n do_writev+0xca/0x100\n ...\n\nThis change removes the early return. The check for iso_debugfs being\nNULL was unnecessary, it is always NULL when iso_inited is false.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50077",
"url": "https://www.suse.com/security/cve/CVE-2024-50077"
},
{
"category": "external",
"summary": "SUSE Bug 1232504 for CVE-2024-50077",
"url": "https://bugzilla.suse.com/1232504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50077"
},
{
"cve": "CVE-2024-50078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Call iso_exit() on module unload\n\nIf iso_init() has been called, iso_exit() must be called on module\nunload. Without that, the struct proto that iso_init() registered with\nproto_register() becomes invalid, which could cause unpredictable\nproblems later. In my case, with CONFIG_LIST_HARDENED and\nCONFIG_BUG_ON_DATA_CORRUPTION enabled, loading the module again usually\ntriggers this BUG():\n\n list_add corruption. next-\u003eprev should be prev (ffffffffb5355fd0),\n but was 0000000000000068. (next=ffffffffc0a010d0).\n ------------[ cut here ]------------\n kernel BUG at lib/list_debug.c:29!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 4159 Comm: modprobe Not tainted 6.10.11-4+bt2-ao-desktop #1\n RIP: 0010:__list_add_valid_or_report+0x61/0xa0\n ...\n __list_add_valid_or_report+0x61/0xa0\n proto_register+0x299/0x320\n hci_sock_init+0x16/0xc0 [bluetooth]\n bt_init+0x68/0xd0 [bluetooth]\n __pfx_bt_init+0x10/0x10 [bluetooth]\n do_one_initcall+0x80/0x2f0\n do_init_module+0x8b/0x230\n __do_sys_init_module+0x15f/0x190\n do_syscall_64+0x68/0x110\n ...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50078",
"url": "https://www.suse.com/security/cve/CVE-2024-50078"
},
{
"category": "external",
"summary": "SUSE Bug 1232503 for CVE-2024-50078",
"url": "https://bugzilla.suse.com/1232503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50078"
},
{
"cve": "CVE-2024-50079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/sqpoll: ensure task state is TASK_RUNNING when running task_work\n\nWhen the sqpoll is exiting and cancels pending work items, it may need\nto run task_work. If this happens from within io_uring_cancel_generic(),\nthen it may be under waiting for the io_uring_task waitqueue. This\nresults in the below splat from the scheduler, as the ring mutex may be\nattempted grabbed while in a TASK_INTERRUPTIBLE state.\n\nEnsure that the task state is set appropriately for that, just like what\nis done for the other cases in io_run_task_work().\n\ndo not call blocking ops when !TASK_RUNNING; state=1 set at [\u003c0000000029387fd2\u003e] prepare_to_wait+0x88/0x2fc\nWARNING: CPU: 6 PID: 59939 at kernel/sched/core.c:8561 __might_sleep+0xf4/0x140\nModules linked in:\nCPU: 6 UID: 0 PID: 59939 Comm: iou-sqp-59938 Not tainted 6.12.0-rc3-00113-g8d020023b155 #7456\nHardware name: linux,dummy-virt (DT)\npstate: 61400005 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\npc : __might_sleep+0xf4/0x140\nlr : __might_sleep+0xf4/0x140\nsp : ffff80008c5e7830\nx29: ffff80008c5e7830 x28: ffff0000d93088c0 x27: ffff60001c2d7230\nx26: dfff800000000000 x25: ffff0000e16b9180 x24: ffff80008c5e7a50\nx23: 1ffff000118bcf4a x22: ffff0000e16b9180 x21: ffff0000e16b9180\nx20: 000000000000011b x19: ffff80008310fac0 x18: 1ffff000118bcd90\nx17: 30303c5b20746120 x16: 74657320313d6574 x15: 0720072007200720\nx14: 0720072007200720 x13: 0720072007200720 x12: ffff600036c64f0b\nx11: 1fffe00036c64f0a x10: ffff600036c64f0a x9 : dfff800000000000\nx8 : 00009fffc939b0f6 x7 : ffff0001b6327853 x6 : 0000000000000001\nx5 : ffff0001b6327850 x4 : ffff600036c64f0b x3 : ffff8000803c35bc\nx2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff0000e16b9180\nCall trace:\n __might_sleep+0xf4/0x140\n mutex_lock+0x84/0x124\n io_handle_tw_list+0xf4/0x260\n tctx_task_work_run+0x94/0x340\n io_run_task_work+0x1ec/0x3c0\n io_uring_cancel_generic+0x364/0x524\n io_sq_thread+0x820/0x124c\n ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50079",
"url": "https://www.suse.com/security/cve/CVE-2024-50079"
},
{
"category": "external",
"summary": "SUSE Bug 1232495 for CVE-2024-50079",
"url": "https://bugzilla.suse.com/1232495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50079"
},
{
"cve": "CVE-2024-50080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nublk: don\u0027t allow user copy for unprivileged device\n\nUBLK_F_USER_COPY requires userspace to call write() on ublk char\ndevice for filling request buffer, and unprivileged device can\u0027t\nbe trusted.\n\nSo don\u0027t allow user copy for unprivileged device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50080",
"url": "https://www.suse.com/security/cve/CVE-2024-50080"
},
{
"category": "external",
"summary": "SUSE Bug 1232502 for CVE-2024-50080",
"url": "https://bugzilla.suse.com/1232502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50080"
},
{
"cve": "CVE-2024-50081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-mq: setup queue -\u003etag_set before initializing hctx\n\nCommit 7b815817aa58 (\"blk-mq: add helper for checking if one CPU is mapped to specified hctx\")\nneeds to check queue mapping via tag set in hctx\u0027s cpuhp handler.\n\nHowever, q-\u003etag_set may not be setup yet when the cpuhp handler is\nenabled, then kernel oops is triggered.\n\nFix the issue by setup queue tag_set before initializing hctx.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50081",
"url": "https://www.suse.com/security/cve/CVE-2024-50081"
},
{
"category": "external",
"summary": "SUSE Bug 1232501 for CVE-2024-50081",
"url": "https://bugzilla.suse.com/1232501"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50081"
},
{
"cve": "CVE-2024-50082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race\n\nWe\u0027re seeing crashes from rq_qos_wake_function that look like this:\n\n BUG: unable to handle page fault for address: ffffafe180a40084\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0002) - not-present page\n PGD 100000067 P4D 100000067 PUD 10027c067 PMD 10115d067 PTE 0\n Oops: Oops: 0002 [#1] PREEMPT SMP PTI\n CPU: 17 UID: 0 PID: 0 Comm: swapper/17 Not tainted 6.12.0-rc3-00013-geca631b8fe80 #11\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:_raw_spin_lock_irqsave+0x1d/0x40\n Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 1f 44 00 00 41 54 9c 41 5c fa 65 ff 05 62 97 30 4c 31 c0 ba 01 00 00 00 \u003cf0\u003e 0f b1 17 75 0a 4c 89 e0 41 5c c3 cc cc cc cc 89 c6 e8 2c 0b 00\n RSP: 0018:ffffafe180580ca0 EFLAGS: 00010046\n RAX: 0000000000000000 RBX: ffffafe180a3f7a8 RCX: 0000000000000011\n RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffafe180a40084\n RBP: 0000000000000000 R08: 00000000001e7240 R09: 0000000000000011\n R10: 0000000000000028 R11: 0000000000000888 R12: 0000000000000002\n R13: ffffafe180a40084 R14: 0000000000000000 R15: 0000000000000003\n FS: 0000000000000000(0000) GS:ffff9aaf1f280000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffafe180a40084 CR3: 000000010e428002 CR4: 0000000000770ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cIRQ\u003e\n try_to_wake_up+0x5a/0x6a0\n rq_qos_wake_function+0x71/0x80\n __wake_up_common+0x75/0xa0\n __wake_up+0x36/0x60\n scale_up.part.0+0x50/0x110\n wb_timer_fn+0x227/0x450\n ...\n\nSo rq_qos_wake_function() calls wake_up_process(data-\u003etask), which calls\ntry_to_wake_up(), which faults in raw_spin_lock_irqsave(\u0026p-\u003epi_lock).\n\np comes from data-\u003etask, and data comes from the waitqueue entry, which\nis stored on the waiter\u0027s stack in rq_qos_wait(). Analyzing the core\ndump with drgn, I found that the waiter had already woken up and moved\non to a completely unrelated code path, clobbering what was previously\ndata-\u003etask. Meanwhile, the waker was passing the clobbered garbage in\ndata-\u003etask to wake_up_process(), leading to the crash.\n\nWhat\u0027s happening is that in between rq_qos_wake_function() deleting the\nwaitqueue entry and calling wake_up_process(), rq_qos_wait() is finding\nthat it already got a token and returning. The race looks like this:\n\nrq_qos_wait() rq_qos_wake_function()\n==============================================================\nprepare_to_wait_exclusive()\n data-\u003egot_token = true;\n list_del_init(\u0026curr-\u003eentry);\nif (data.got_token)\n break;\nfinish_wait(\u0026rqw-\u003ewait, \u0026data.wq);\n ^- returns immediately because\n list_empty_careful(\u0026wq_entry-\u003eentry)\n is true\n... return, go do something else ...\n wake_up_process(data-\u003etask)\n (NO LONGER VALID!)-^\n\nNormally, finish_wait() is supposed to synchronize against the waker.\nBut, as noted above, it is returning immediately because the waitqueue\nentry has already been removed from the waitqueue.\n\nThe bug is that rq_qos_wake_function() is accessing the waitqueue entry\nAFTER deleting it. Note that autoremove_wake_function() wakes the waiter\nand THEN deletes the waitqueue entry, which is the proper order.\n\nFix it by swapping the order. We also need to use\nlist_del_init_careful() to match the list_empty_careful() in\nfinish_wait().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50082",
"url": "https://www.suse.com/security/cve/CVE-2024-50082"
},
{
"category": "external",
"summary": "SUSE Bug 1232500 for CVE-2024-50082",
"url": "https://bugzilla.suse.com/1232500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50082"
},
{
"cve": "CVE-2024-50083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: fix mptcp DSS corruption due to large pmtu xmit\n\nSyzkaller was able to trigger a DSS corruption:\n\n TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.\n ------------[ cut here ]------------\n WARNING: CPU: 0 PID: 5227 at net/mptcp/protocol.c:695 __mptcp_move_skbs_from_subflow+0x20a9/0x21f0 net/mptcp/protocol.c:695\n Modules linked in:\n CPU: 0 UID: 0 PID: 5227 Comm: syz-executor350 Not tainted 6.11.0-syzkaller-08829-gaf9c191ac2a0 #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\n RIP: 0010:__mptcp_move_skbs_from_subflow+0x20a9/0x21f0 net/mptcp/protocol.c:695\n Code: 0f b6 dc 31 ff 89 de e8 b5 dd ea f5 89 d8 48 81 c4 50 01 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 98 da ea f5 90 \u003c0f\u003e 0b 90 e9 47 ff ff ff e8 8a da ea f5 90 0f 0b 90 e9 99 e0 ff ff\n RSP: 0018:ffffc90000006db8 EFLAGS: 00010246\n RAX: ffffffff8ba9df18 RBX: 00000000000055f0 RCX: ffff888030023c00\n RDX: 0000000000000100 RSI: 00000000000081e5 RDI: 00000000000055f0\n RBP: 1ffff110062bf1ae R08: ffffffff8ba9cf12 R09: 1ffff110062bf1b8\n R10: dffffc0000000000 R11: ffffed10062bf1b9 R12: 0000000000000000\n R13: dffffc0000000000 R14: 00000000700cec61 R15: 00000000000081e5\n FS: 000055556679c380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000020287000 CR3: 0000000077892000 CR4: 00000000003506f0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cIRQ\u003e\n move_skbs_to_msk net/mptcp/protocol.c:811 [inline]\n mptcp_data_ready+0x29c/0xa90 net/mptcp/protocol.c:854\n subflow_data_ready+0x34a/0x920 net/mptcp/subflow.c:1490\n tcp_data_queue+0x20fd/0x76c0 net/ipv4/tcp_input.c:5283\n tcp_rcv_established+0xfba/0x2020 net/ipv4/tcp_input.c:6237\n tcp_v4_do_rcv+0x96d/0xc70 net/ipv4/tcp_ipv4.c:1915\n tcp_v4_rcv+0x2dc0/0x37f0 net/ipv4/tcp_ipv4.c:2350\n ip_protocol_deliver_rcu+0x22e/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x341/0x5f0 net/ipv4/ip_input.c:233\n NF_HOOK+0x3a4/0x450 include/linux/netfilter.h:314\n NF_HOOK+0x3a4/0x450 include/linux/netfilter.h:314\n __netif_receive_skb_one_core net/core/dev.c:5662 [inline]\n __netif_receive_skb+0x2bf/0x650 net/core/dev.c:5775\n process_backlog+0x662/0x15b0 net/core/dev.c:6107\n __napi_poll+0xcb/0x490 net/core/dev.c:6771\n napi_poll net/core/dev.c:6840 [inline]\n net_rx_action+0x89b/0x1240 net/core/dev.c:6962\n handle_softirqs+0x2c5/0x980 kernel/softirq.c:554\n do_softirq+0x11b/0x1e0 kernel/softirq.c:455\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x1bb/0x200 kernel/softirq.c:382\n local_bh_enable include/linux/bottom_half.h:33 [inline]\n rcu_read_unlock_bh include/linux/rcupdate.h:919 [inline]\n __dev_queue_xmit+0x1764/0x3e80 net/core/dev.c:4451\n dev_queue_xmit include/linux/netdevice.h:3094 [inline]\n neigh_hh_output include/net/neighbour.h:526 [inline]\n neigh_output include/net/neighbour.h:540 [inline]\n ip_finish_output2+0xd41/0x1390 net/ipv4/ip_output.c:236\n ip_local_out net/ipv4/ip_output.c:130 [inline]\n __ip_queue_xmit+0x118c/0x1b80 net/ipv4/ip_output.c:536\n __tcp_transmit_skb+0x2544/0x3b30 net/ipv4/tcp_output.c:1466\n tcp_transmit_skb net/ipv4/tcp_output.c:1484 [inline]\n tcp_mtu_probe net/ipv4/tcp_output.c:2547 [inline]\n tcp_write_xmit+0x641d/0x6bf0 net/ipv4/tcp_output.c:2752\n __tcp_push_pending_frames+0x9b/0x360 net/ipv4/tcp_output.c:3015\n tcp_push_pending_frames include/net/tcp.h:2107 [inline]\n tcp_data_snd_check net/ipv4/tcp_input.c:5714 [inline]\n tcp_rcv_established+0x1026/0x2020 net/ipv4/tcp_input.c:6239\n tcp_v4_do_rcv+0x96d/0xc70 net/ipv4/tcp_ipv4.c:1915\n sk_backlog_rcv include/net/sock.h:1113 [inline]\n __release_sock+0x214/0x350 net/core/sock.c:3072\n release_sock+0x61/0x1f0 net/core/sock.c:3626\n mptcp_push_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50083",
"url": "https://www.suse.com/security/cve/CVE-2024-50083"
},
{
"category": "external",
"summary": "SUSE Bug 1232493 for CVE-2024-50083",
"url": "https://bugzilla.suse.com/1232493"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50083"
},
{
"cve": "CVE-2024-50084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: microchip: vcap api: Fix memory leaks in vcap_api_encode_rule_test()\n\nCommit a3c1e45156ad (\"net: microchip: vcap: Fix use-after-free error in\nkunit test\") fixed the use-after-free error, but introduced below\nmemory leaks by removing necessary vcap_free_rule(), add it to fix it.\n\n\tunreferenced object 0xffffff80ca58b700 (size 192):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898264\n\t hex dump (first 32 bytes):\n\t 00 12 7a 00 05 00 00 00 0a 00 00 00 64 00 00 00 ..z.........d...\n\t 00 00 00 00 00 00 00 00 00 04 0b cc 80 ff ff ff ................\n\t backtrace (crc 9c09c3fe):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c0000000040a01b8d\u003e] vcap_alloc_rule+0x3cc/0x9c4\n\t [\u003c000000003fe86110\u003e] vcap_api_encode_rule_test+0x1ac/0x16b0\n\t [\u003c00000000b3595fc4\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c0000000010f5d2bf\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000c5d82c9a\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000f4287308\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cc0b0400 (size 64):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898265\n\t hex dump (first 32 bytes):\n\t 80 04 0b cc 80 ff ff ff 18 b7 58 ca 80 ff ff ff ..........X.....\n\t 39 00 00 00 02 00 00 00 06 05 04 03 02 01 ff ff 9...............\n\t backtrace (crc daf014e9):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000000ff63fd4\u003e] vcap_rule_add_key+0x2cc/0x528\n\t [\u003c00000000dfdb1e81\u003e] vcap_api_encode_rule_test+0x224/0x16b0\n\t [\u003c00000000b3595fc4\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c0000000010f5d2bf\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000c5d82c9a\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000f4287308\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cc0b0700 (size 64):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898265\n\t hex dump (first 32 bytes):\n\t 80 07 0b cc 80 ff ff ff 28 b7 58 ca 80 ff ff ff ........(.X.....\n\t 3c 00 00 00 00 00 00 00 01 2f 03 b3 ec ff ff ff \u003c......../......\n\t backtrace (crc 8d877792):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000006eadfab7\u003e] vcap_rule_add_action+0x2d0/0x52c\n\t [\u003c00000000323475d1\u003e] vcap_api_encode_rule_test+0x4d4/0x16b0\n\t [\u003c00000000b3595fc4\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c0000000010f5d2bf\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000c5d82c9a\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000f4287308\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cc0b0900 (size 64):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898266\n\t hex dump (first 32 bytes):\n\t 80 09 0b cc 80 ff ff ff 80 06 0b cc 80 ff ff ff ................\n\t 7d 00 00 00 01 00 00 00 00 00 00 00 ff 00 00 00 }...............\n\t backtrace (crc 34181e56):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000000ff63fd4\u003e] vcap_rule_add_key+0x2cc/0x528\n\t [\u003c00000000991e3564\u003e] vcap_val_rule+0xcf0/0x13e8\n\t [\u003c00000000fc9868e5\u003e] vcap_api_encode_rule_test+0x678/0x16b0\n\t [\u003c00000000b3595fc4\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c0000000010f5d2bf\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000c5d82c9a\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000f4287308\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cc0b0980 (size 64):\n\t comm \"kunit_try_catch\", pid 1215, jiffies 4294898266\n\t hex dump (first 32 bytes):\n\t 18 b7 58 ca 80 ff ff ff 00 09 0b cc 80 ff ff ff ..X.............\n\t 67 00 00 00 00 00 00 00 01 01 74 88 c0 ff ff ff g.........t.....\n\t backtrace (crc 275fd9be):\n\t [\u003c0000000052a0be73\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c0000000043605459\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c000000000ff63fd4\u003e] vcap_rule_add_key+0x2cc/0x528\n\t [\u003c000000001396a1a2\u003e] test_add_de\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50084",
"url": "https://www.suse.com/security/cve/CVE-2024-50084"
},
{
"category": "external",
"summary": "SUSE Bug 1232494 for CVE-2024-50084",
"url": "https://bugzilla.suse.com/1232494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50084"
},
{
"cve": "CVE-2024-50085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow\n\nSyzkaller reported this splat:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in mptcp_pm_nl_rm_addr_or_subflow+0xb44/0xcc0 net/mptcp/pm_netlink.c:881\n Read of size 4 at addr ffff8880569ac858 by task syz.1.2799/14662\n\n CPU: 0 UID: 0 PID: 14662 Comm: syz.1.2799 Not tainted 6.12.0-rc2-syzkaller-00307-g36c254515dc6 #0\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n mptcp_pm_nl_rm_addr_or_subflow+0xb44/0xcc0 net/mptcp/pm_netlink.c:881\n mptcp_pm_nl_rm_subflow_received net/mptcp/pm_netlink.c:914 [inline]\n mptcp_nl_remove_id_zero_address+0x305/0x4a0 net/mptcp/pm_netlink.c:1572\n mptcp_pm_nl_del_addr_doit+0x5c9/0x770 net/mptcp/pm_netlink.c:1603\n genl_family_rcv_msg_doit+0x202/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x565/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x165/0x410 net/netlink/af_netlink.c:2551\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1331 [inline]\n netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1357\n netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1901\n sock_sendmsg_nosec net/socket.c:729 [inline]\n __sock_sendmsg net/socket.c:744 [inline]\n ____sys_sendmsg+0x9ae/0xb40 net/socket.c:2607\n ___sys_sendmsg+0x135/0x1e0 net/socket.c:2661\n __sys_sendmsg+0x117/0x1f0 net/socket.c:2690\n do_syscall_32_irqs_on arch/x86/entry/common.c:165 [inline]\n __do_fast_syscall_32+0x73/0x120 arch/x86/entry/common.c:386\n do_fast_syscall_32+0x32/0x80 arch/x86/entry/common.c:411\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n RIP: 0023:0xf7fe4579\n Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 \u003c5d\u003e 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00\n RSP: 002b:00000000f574556c EFLAGS: 00000296 ORIG_RAX: 0000000000000172\n RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000020000140\n RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n \u003c/TASK\u003e\n\n Allocated by task 5387:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:47\n kasan_save_track+0x14/0x30 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:377 [inline]\n __kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:394\n kmalloc_noprof include/linux/slab.h:878 [inline]\n kzalloc_noprof include/linux/slab.h:1014 [inline]\n subflow_create_ctx+0x87/0x2a0 net/mptcp/subflow.c:1803\n subflow_ulp_init+0xc3/0x4d0 net/mptcp/subflow.c:1956\n __tcp_set_ulp net/ipv4/tcp_ulp.c:146 [inline]\n tcp_set_ulp+0x326/0x7f0 net/ipv4/tcp_ulp.c:167\n mptcp_subflow_create_socket+0x4ae/0x10a0 net/mptcp/subflow.c:1764\n __mptcp_subflow_connect+0x3cc/0x1490 net/mptcp/subflow.c:1592\n mptcp_pm_create_subflow_or_signal_addr+0xbda/0x23a0 net/mptcp/pm_netlink.c:642\n mptcp_pm_nl_fully_established net/mptcp/pm_netlink.c:650 [inline]\n mptcp_pm_nl_work+0x3a1/0x4f0 net/mptcp/pm_netlink.c:943\n mptcp_worker+0x15a/0x1240 net/mptcp/protocol.c:2777\n process_one_work+0x958/0x1b30 kernel/workqueue.c:3229\n process_scheduled_works kernel/workqueue.c:3310 [inline]\n worker_thread+0x6c8/0xf00 kernel/workqueue.c:3391\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/ke\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50085",
"url": "https://www.suse.com/security/cve/CVE-2024-50085"
},
{
"category": "external",
"summary": "SUSE Bug 1232508 for CVE-2024-50085",
"url": "https://bugzilla.suse.com/1232508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50085"
},
{
"cve": "CVE-2024-50086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: fix user-after-free from session log off\n\nThere is racy issue between smb2 session log off and smb2 session setup.\nIt will cause user-after-free from session log off.\nThis add session_lock when setting SMB2_SESSION_EXPIRED and referece\ncount to session struct not to free session while it is being used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50086",
"url": "https://www.suse.com/security/cve/CVE-2024-50086"
},
{
"category": "external",
"summary": "SUSE Bug 1232521 for CVE-2024-50086",
"url": "https://bugzilla.suse.com/1232521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50086"
},
{
"cve": "CVE-2024-50087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix uninitialized pointer free on read_alloc_one_name() error\n\nThe function read_alloc_one_name() does not initialize the name field of\nthe passed fscrypt_str struct if kmalloc fails to allocate the\ncorresponding buffer. Thus, it is not guaranteed that\nfscrypt_str.name is initialized when freeing it.\n\nThis is a follow-up to the linked patch that fixes the remaining\ninstances of the bug introduced by commit e43eec81c516 (\"btrfs: use\nstruct qstr instead of name and namelen pairs\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50087",
"url": "https://www.suse.com/security/cve/CVE-2024-50087"
},
{
"category": "external",
"summary": "SUSE Bug 1232499 for CVE-2024-50087",
"url": "https://bugzilla.suse.com/1232499"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50087"
},
{
"cve": "CVE-2024-50088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix uninitialized pointer free in add_inode_ref()\n\nThe add_inode_ref() function does not initialize the \"name\" struct when\nit is declared. If any of the following calls to \"read_one_inode()\nreturns NULL,\n\n\tdir = read_one_inode(root, parent_objectid);\n\tif (!dir) {\n\t\tret = -ENOENT;\n\t\tgoto out;\n\t}\n\n\tinode = read_one_inode(root, inode_objectid);\n\tif (!inode) {\n\t\tret = -EIO;\n\t\tgoto out;\n\t}\n\nthen \"name.name\" would be freed on \"out\" before being initialized.\n\nout:\n\t...\n\tkfree(name.name);\n\nThis issue was reported by Coverity with CID 1526744.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50088",
"url": "https://www.suse.com/security/cve/CVE-2024-50088"
},
{
"category": "external",
"summary": "SUSE Bug 1232498 for CVE-2024-50088",
"url": "https://bugzilla.suse.com/1232498"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50088"
},
{
"cve": "CVE-2024-50089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50089"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50089",
"url": "https://www.suse.com/security/cve/CVE-2024-50089"
},
{
"category": "external",
"summary": "SUSE Bug 1232860 for CVE-2024-50089",
"url": "https://bugzilla.suse.com/1232860"
},
{
"category": "external",
"summary": "SUSE Bug 1233250 for CVE-2024-50089",
"url": "https://bugzilla.suse.com/1233250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50089"
},
{
"cve": "CVE-2024-50090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Fix overflow in oa batch buffer\n\nBy default xe_bb_create_job() appends a MI_BATCH_BUFFER_END to batch\nbuffer, this is not a problem if batch buffer is only used once but\noa reuses the batch buffer for the same metric and at each call\nit appends a MI_BATCH_BUFFER_END, printing the warning below and then\noverflowing.\n\n[ 381.072016] ------------[ cut here ]------------\n[ 381.072019] xe 0000:00:02.0: [drm] Assertion `bb-\u003elen * 4 + bb_prefetch(q-\u003egt) \u003c= size` failed!\n platform: LUNARLAKE subplatform: 1\n graphics: Xe2_LPG / Xe2_HPG 20.04 step B0\n media: Xe2_LPM / Xe2_HPM 20.00 step B0\n tile: 0 VRAM 0 B\n GT: 0 type 1\n\nSo here checking if batch buffer already have MI_BATCH_BUFFER_END if\nnot append it.\n\nv2:\n- simply fix, suggestion from Ashutosh\n\n(cherry picked from commit 9ba0e0f30ca42a98af3689460063edfb6315718a)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50090",
"url": "https://www.suse.com/security/cve/CVE-2024-50090"
},
{
"category": "external",
"summary": "SUSE Bug 1232862 for CVE-2024-50090",
"url": "https://bugzilla.suse.com/1232862"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50090"
},
{
"cve": "CVE-2024-50091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm vdo: don\u0027t refer to dedupe_context after releasing it\n\nClear the dedupe_context pointer in a data_vio whenever ownership of\nthe context is lost, so that vdo can\u0027t examine it accidentally.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50091",
"url": "https://www.suse.com/security/cve/CVE-2024-50091"
},
{
"category": "external",
"summary": "SUSE Bug 1232872 for CVE-2024-50091",
"url": "https://bugzilla.suse.com/1232872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50091"
},
{
"cve": "CVE-2024-50092",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50092"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netconsole: fix wrong warning\n\nA warning is triggered when there is insufficient space in the buffer\nfor userdata. However, this is not an issue since userdata will be sent\nin the next iteration.\n\nCurrent warning message:\n\n ------------[ cut here ]------------\n WARNING: CPU: 13 PID: 3013042 at drivers/net/netconsole.c:1122 write_ext_msg+0x3b6/0x3d0\n ? write_ext_msg+0x3b6/0x3d0\n console_flush_all+0x1e9/0x330\n\nThe code incorrectly issues a warning when this_chunk is zero, which is\na valid scenario. The warning should only be triggered when this_chunk\nis negative.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50092",
"url": "https://www.suse.com/security/cve/CVE-2024-50092"
},
{
"category": "external",
"summary": "SUSE Bug 1232874 for CVE-2024-50092",
"url": "https://bugzilla.suse.com/1232874"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50092"
},
{
"cve": "CVE-2024-50093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: intel: int340x: processor: Fix warning during module unload\n\nThe processor_thermal driver uses pcim_device_enable() to enable a PCI\ndevice, which means the device will be automatically disabled on driver\ndetach. Thus there is no need to call pci_disable_device() again on it.\n\nWith recent PCI device resource management improvements, e.g. commit\nf748a07a0b64 (\"PCI: Remove legacy pcim_release()\"), this problem is\nexposed and triggers the warining below.\n\n [ 224.010735] proc_thermal_pci 0000:00:04.0: disabling already-disabled device\n [ 224.010747] WARNING: CPU: 8 PID: 4442 at drivers/pci/pci.c:2250 pci_disable_device+0xe5/0x100\n ...\n [ 224.010844] Call Trace:\n [ 224.010845] \u003cTASK\u003e\n [ 224.010847] ? show_regs+0x6d/0x80\n [ 224.010851] ? __warn+0x8c/0x140\n [ 224.010854] ? pci_disable_device+0xe5/0x100\n [ 224.010856] ? report_bug+0x1c9/0x1e0\n [ 224.010859] ? handle_bug+0x46/0x80\n [ 224.010862] ? exc_invalid_op+0x1d/0x80\n [ 224.010863] ? asm_exc_invalid_op+0x1f/0x30\n [ 224.010867] ? pci_disable_device+0xe5/0x100\n [ 224.010869] ? pci_disable_device+0xe5/0x100\n [ 224.010871] ? kfree+0x21a/0x2b0\n [ 224.010873] pcim_disable_device+0x20/0x30\n [ 224.010875] devm_action_release+0x16/0x20\n [ 224.010878] release_nodes+0x47/0xc0\n [ 224.010880] devres_release_all+0x9f/0xe0\n [ 224.010883] device_unbind_cleanup+0x12/0x80\n [ 224.010885] device_release_driver_internal+0x1ca/0x210\n [ 224.010887] driver_detach+0x4e/0xa0\n [ 224.010889] bus_remove_driver+0x6f/0xf0\n [ 224.010890] driver_unregister+0x35/0x60\n [ 224.010892] pci_unregister_driver+0x44/0x90\n [ 224.010894] proc_thermal_pci_driver_exit+0x14/0x5f0 [processor_thermal_device_pci]\n ...\n [ 224.010921] ---[ end trace 0000000000000000 ]---\n\nRemove the excess pci_disable_device() calls.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50093",
"url": "https://www.suse.com/security/cve/CVE-2024-50093"
},
{
"category": "external",
"summary": "SUSE Bug 1232877 for CVE-2024-50093",
"url": "https://bugzilla.suse.com/1232877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50093"
},
{
"cve": "CVE-2024-50094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc: Don\u0027t invoke xdp_do_flush() from netpoll.\n\nYury reported a crash in the sfc driver originated from\nnetpoll_send_udp(). The netconsole sends a message and then netpoll\ninvokes the driver\u0027s NAPI function with a budget of zero. It is\ndedicated to allow driver to free TX resources, that it may have used\nwhile sending the packet.\n\nIn the netpoll case the driver invokes xdp_do_flush() unconditionally,\nleading to crash because bpf_net_context was never assigned.\n\nInvoke xdp_do_flush() only if budget is not zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50094",
"url": "https://www.suse.com/security/cve/CVE-2024-50094"
},
{
"category": "external",
"summary": "SUSE Bug 1232875 for CVE-2024-50094",
"url": "https://bugzilla.suse.com/1232875"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50094"
},
{
"cve": "CVE-2024-50095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mad: Improve handling of timed out WRs of mad agent\n\nCurrent timeout handler of mad agent acquires/releases mad_agent_priv\nlock for every timed out WRs. This causes heavy locking contention\nwhen higher no. of WRs are to be handled inside timeout handler.\n\nThis leads to softlockup with below trace in some use cases where\nrdma-cm path is used to establish connection between peer nodes\n\nTrace:\n-----\n BUG: soft lockup - CPU#4 stuck for 26s! [kworker/u128:3:19767]\n CPU: 4 PID: 19767 Comm: kworker/u128:3 Kdump: loaded Tainted: G OE\n ------- --- 5.14.0-427.13.1.el9_4.x86_64 #1\n Hardware name: Dell Inc. PowerEdge R740/01YM03, BIOS 2.4.8 11/26/2019\n Workqueue: ib_mad1 timeout_sends [ib_core]\n RIP: 0010:__do_softirq+0x78/0x2ac\n RSP: 0018:ffffb253449e4f98 EFLAGS: 00000246\n RAX: 00000000ffffffff RBX: 0000000000000000 RCX: 000000000000001f\n RDX: 000000000000001d RSI: 000000003d1879ab RDI: fff363b66fd3a86b\n RBP: ffffb253604cbcd8 R08: 0000009065635f3b R09: 0000000000000000\n R10: 0000000000000040 R11: ffffb253449e4ff8 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000040\n FS: 0000000000000000(0000) GS:ffff8caa1fc80000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fd9ec9db900 CR3: 0000000891934006 CR4: 00000000007706e0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cIRQ\u003e\n ? show_trace_log_lvl+0x1c4/0x2df\n ? show_trace_log_lvl+0x1c4/0x2df\n ? __irq_exit_rcu+0xa1/0xc0\n ? watchdog_timer_fn+0x1b2/0x210\n ? __pfx_watchdog_timer_fn+0x10/0x10\n ? __hrtimer_run_queues+0x127/0x2c0\n ? hrtimer_interrupt+0xfc/0x210\n ? __sysvec_apic_timer_interrupt+0x5c/0x110\n ? sysvec_apic_timer_interrupt+0x37/0x90\n ? asm_sysvec_apic_timer_interrupt+0x16/0x20\n ? __do_softirq+0x78/0x2ac\n ? __do_softirq+0x60/0x2ac\n __irq_exit_rcu+0xa1/0xc0\n sysvec_call_function_single+0x72/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_call_function_single+0x16/0x20\n RIP: 0010:_raw_spin_unlock_irq+0x14/0x30\n RSP: 0018:ffffb253604cbd88 EFLAGS: 00000247\n RAX: 000000000001960d RBX: 0000000000000002 RCX: ffff8cad2a064800\n RDX: 000000008020001b RSI: 0000000000000001 RDI: ffff8cad5d39f66c\n RBP: ffff8cad5d39f600 R08: 0000000000000001 R09: 0000000000000000\n R10: ffff8caa443e0c00 R11: ffffb253604cbcd8 R12: ffff8cacb8682538\n R13: 0000000000000005 R14: ffffb253604cbd90 R15: ffff8cad5d39f66c\n cm_process_send_error+0x122/0x1d0 [ib_cm]\n timeout_sends+0x1dd/0x270 [ib_core]\n process_one_work+0x1e2/0x3b0\n ? __pfx_worker_thread+0x10/0x10\n worker_thread+0x50/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xdd/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x29/0x50\n \u003c/TASK\u003e\n\nSimplified timeout handler by creating local list of timed out WRs\nand invoke send handler post creating the list. The new method acquires/\nreleases lock once to fetch the list and hence helps to reduce locking\ncontetiong when processing higher no. of WRs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50095",
"url": "https://www.suse.com/security/cve/CVE-2024-50095"
},
{
"category": "external",
"summary": "SUSE Bug 1232873 for CVE-2024-50095",
"url": "https://bugzilla.suse.com/1232873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50095"
},
{
"cve": "CVE-2024-50096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error\n\nThe `nouveau_dmem_copy_one` function ensures that the copy push command is\nsent to the device firmware but does not track whether it was executed\nsuccessfully.\n\nIn the case of a copy error (e.g., firmware or hardware failure), the\ncopy push command will be sent via the firmware channel, and\n`nouveau_dmem_copy_one` will likely report success, leading to the\n`migrate_to_ram` function returning a dirty HIGH_USER page to the user.\n\nThis can result in a security vulnerability, as a HIGH_USER page that may\ncontain sensitive or corrupted data could be returned to the user.\n\nTo prevent this vulnerability, we allocate a zero page. Thus, in case of\nan error, a non-dirty (zero) page will be returned to the user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50096",
"url": "https://www.suse.com/security/cve/CVE-2024-50096"
},
{
"category": "external",
"summary": "SUSE Bug 1232870 for CVE-2024-50096",
"url": "https://bugzilla.suse.com/1232870"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50096"
},
{
"cve": "CVE-2024-50097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fec: don\u0027t save PTP state if PTP is unsupported\n\nSome platforms (such as i.MX25 and i.MX27) do not support PTP, so on\nthese platforms fec_ptp_init() is not called and the related members\nin fep are not initialized. However, fec_ptp_save_state() is called\nunconditionally, which causes the kernel to panic. Therefore, add a\ncondition so that fec_ptp_save_state() is not called if PTP is not\nsupported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50097",
"url": "https://www.suse.com/security/cve/CVE-2024-50097"
},
{
"category": "external",
"summary": "SUSE Bug 1232871 for CVE-2024-50097",
"url": "https://bugzilla.suse.com/1232871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50097"
},
{
"cve": "CVE-2024-50098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down\n\nThere is a history of deadlock if reboot is performed at the beginning\nof booting. SDEV_QUIESCE was set for all LU\u0027s scsi_devices by UFS\nshutdown, and at that time the audio driver was waiting on\nblk_mq_submit_bio() holding a mutex_lock while reading the fw binary.\nAfter that, a deadlock issue occurred while audio driver shutdown was\nwaiting for mutex_unlock of blk_mq_submit_bio(). To solve this, set\nSDEV_OFFLINE for all LUs except WLUN, so that any I/O that comes down\nafter a UFS shutdown will return an error.\n\n[ 31.907781]I[0: swapper/0: 0] 1 130705007 1651079834 11289729804 0 D( 2) 3 ffffff882e208000 * init [device_shutdown]\n[ 31.907793]I[0: swapper/0: 0] Mutex: 0xffffff8849a2b8b0: owner[0xffffff882e28cb00 kworker/6:0 :49]\n[ 31.907806]I[0: swapper/0: 0] Call trace:\n[ 31.907810]I[0: swapper/0: 0] __switch_to+0x174/0x338\n[ 31.907819]I[0: swapper/0: 0] __schedule+0x5ec/0x9cc\n[ 31.907826]I[0: swapper/0: 0] schedule+0x7c/0xe8\n[ 31.907834]I[0: swapper/0: 0] schedule_preempt_disabled+0x24/0x40\n[ 31.907842]I[0: swapper/0: 0] __mutex_lock+0x408/0xdac\n[ 31.907849]I[0: swapper/0: 0] __mutex_lock_slowpath+0x14/0x24\n[ 31.907858]I[0: swapper/0: 0] mutex_lock+0x40/0xec\n[ 31.907866]I[0: swapper/0: 0] device_shutdown+0x108/0x280\n[ 31.907875]I[0: swapper/0: 0] kernel_restart+0x4c/0x11c\n[ 31.907883]I[0: swapper/0: 0] __arm64_sys_reboot+0x15c/0x280\n[ 31.907890]I[0: swapper/0: 0] invoke_syscall+0x70/0x158\n[ 31.907899]I[0: swapper/0: 0] el0_svc_common+0xb4/0xf4\n[ 31.907909]I[0: swapper/0: 0] do_el0_svc+0x2c/0xb0\n[ 31.907918]I[0: swapper/0: 0] el0_svc+0x34/0xe0\n[ 31.907928]I[0: swapper/0: 0] el0t_64_sync_handler+0x68/0xb4\n[ 31.907937]I[0: swapper/0: 0] el0t_64_sync+0x1a0/0x1a4\n\n[ 31.908774]I[0: swapper/0: 0] 49 0 11960702 11236868007 0 D( 2) 6 ffffff882e28cb00 * kworker/6:0 [__bio_queue_enter]\n[ 31.908783]I[0: swapper/0: 0] Call trace:\n[ 31.908788]I[0: swapper/0: 0] __switch_to+0x174/0x338\n[ 31.908796]I[0: swapper/0: 0] __schedule+0x5ec/0x9cc\n[ 31.908803]I[0: swapper/0: 0] schedule+0x7c/0xe8\n[ 31.908811]I[0: swapper/0: 0] __bio_queue_enter+0xb8/0x178\n[ 31.908818]I[0: swapper/0: 0] blk_mq_submit_bio+0x194/0x67c\n[ 31.908827]I[0: swapper/0: 0] __submit_bio+0xb8/0x19c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50098",
"url": "https://www.suse.com/security/cve/CVE-2024-50098"
},
{
"category": "external",
"summary": "SUSE Bug 1232881 for CVE-2024-50098",
"url": "https://bugzilla.suse.com/1232881"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50098"
},
{
"cve": "CVE-2024-50099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: probes: Remove broken LDR (literal) uprobe support\n\nThe simulate_ldr_literal() and simulate_ldrsw_literal() functions are\nunsafe to use for uprobes. Both functions were originally written for\nuse with kprobes, and access memory with plain C accesses. When uprobes\nwas added, these were reused unmodified even though they cannot safely\naccess user memory.\n\nThere are three key problems:\n\n1) The plain C accesses do not have corresponding extable entries, and\n thus if they encounter a fault the kernel will treat these as\n unintentional accesses to user memory, resulting in a BUG() which\n will kill the kernel thread, and likely lead to further issues (e.g.\n lockup or panic()).\n\n2) The plain C accesses are subject to HW PAN and SW PAN, and so when\n either is in use, any attempt to simulate an access to user memory\n will fault. Thus neither simulate_ldr_literal() nor\n simulate_ldrsw_literal() can do anything useful when simulating a\n user instruction on any system with HW PAN or SW PAN.\n\n3) The plain C accesses are privileged, as they run in kernel context,\n and in practice can access a small range of kernel virtual addresses.\n The instructions they simulate have a range of +/-1MiB, and since the\n simulated instructions must itself be a user instructions in the\n TTBR0 address range, these can address the final 1MiB of the TTBR1\n acddress range by wrapping downwards from an address in the first\n 1MiB of the TTBR0 address range.\n\n In contemporary kernels the last 8MiB of TTBR1 address range is\n reserved, and accesses to this will always fault, meaning this is no\n worse than (1).\n\n Historically, it was theoretically possible for the linear map or\n vmemmap to spill into the final 8MiB of the TTBR1 address range, but\n in practice this is extremely unlikely to occur as this would\n require either:\n\n * Having enough physical memory to fill the entire linear map all the\n way to the final 1MiB of the TTBR1 address range.\n\n * Getting unlucky with KASLR randomization of the linear map such\n that the populated region happens to overlap with the last 1MiB of\n the TTBR address range.\n\n ... and in either case if we were to spill into the final page there\n would be larger problems as the final page would alias with error\n pointers.\n\nPractically speaking, (1) and (2) are the big issues. Given there have\nbeen no reports of problems since the broken code was introduced, it\nappears that no-one is relying on probing these instructions with\nuprobes.\n\nAvoid these issues by not allowing uprobes on LDR (literal) and LDRSW\n(literal), limiting the use of simulate_ldr_literal() and\nsimulate_ldrsw_literal() to kprobes. Attempts to place uprobes on LDR\n(literal) and LDRSW (literal) will be rejected as\narm_probe_decode_insn() will return INSN_REJECTED. In future we can\nconsider introducing working uprobes support for these instructions, but\nthis will require more significant work.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50099",
"url": "https://www.suse.com/security/cve/CVE-2024-50099"
},
{
"category": "external",
"summary": "SUSE Bug 1232887 for CVE-2024-50099",
"url": "https://bugzilla.suse.com/1232887"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50099"
},
{
"cve": "CVE-2024-50100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: gadget: dummy-hcd: Fix \"task hung\" problem\n\nThe syzbot fuzzer has been encountering \"task hung\" problems ever\nsince the dummy-hcd driver was changed to use hrtimers instead of\nregular timers. It turns out that the problems are caused by a subtle\ndifference between the timer_pending() and hrtimer_active() APIs.\n\nThe changeover blindly replaced the first by the second. However,\ntimer_pending() returns True when the timer is queued but not when its\ncallback is running, whereas hrtimer_active() returns True when the\nhrtimer is queued _or_ its callback is running. This difference\noccasionally caused dummy_urb_enqueue() to think that the callback\nroutine had not yet started when in fact it was almost finished. As a\nresult the hrtimer was not restarted, which made it impossible for the\ndriver to dequeue later the URB that was just enqueued. This caused\nusb_kill_urb() to hang, and things got worse from there.\n\nSince hrtimers have no API for telling when they are queued and the\ncallback isn\u0027t running, the driver must keep track of this for itself.\nThat\u0027s what this patch does, adding a new \"timer_pending\" flag and\nsetting or clearing it at the appropriate times.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50100",
"url": "https://www.suse.com/security/cve/CVE-2024-50100"
},
{
"category": "external",
"summary": "SUSE Bug 1232876 for CVE-2024-50100",
"url": "https://bugzilla.suse.com/1232876"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50100"
},
{
"cve": "CVE-2024-50101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices\n\nPreviously, the domain_context_clear() function incorrectly called\npci_for_each_dma_alias() to set up context entries for non-PCI devices.\nThis could lead to kernel hangs or other unexpected behavior.\n\nAdd a check to only call pci_for_each_dma_alias() for PCI devices. For\nnon-PCI devices, domain_context_clear_one() is called directly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50101",
"url": "https://www.suse.com/security/cve/CVE-2024-50101"
},
{
"category": "external",
"summary": "SUSE Bug 1232869 for CVE-2024-50101",
"url": "https://bugzilla.suse.com/1232869"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50101"
},
{
"cve": "CVE-2024-50102",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50102"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86: fix user address masking non-canonical speculation issue\n\nIt turns out that AMD has a \"Meltdown Lite(tm)\" issue with non-canonical\naccesses in kernel space. And so using just the high bit to decide\nwhether an access is in user space or kernel space ends up with the good\nold \"leak speculative data\" if you have the right gadget using the\nresult:\n\n CVE-2020-12965 \"Transient Execution of Non-Canonical Accesses\"\n\nNow, the kernel surrounds the access with a STAC/CLAC pair, and those\ninstructions end up serializing execution on older Zen architectures,\nwhich closes the speculation window.\n\nBut that was true only up until Zen 5, which renames the AC bit [1].\nThat improves performance of STAC/CLAC a lot, but also means that the\nspeculation window is now open.\n\nNote that this affects not just the new address masking, but also the\nregular valid_user_address() check used by access_ok(), and the asm\nversion of the sign bit check in the get_user() helpers.\n\nIt does not affect put_user() or clear_user() variants, since there\u0027s no\nspeculative result to be used in a gadget for those operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50102",
"url": "https://www.suse.com/security/cve/CVE-2024-50102"
},
{
"category": "external",
"summary": "SUSE Bug 1232880 for CVE-2024-50102",
"url": "https://bugzilla.suse.com/1232880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50102"
},
{
"cve": "CVE-2024-50103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe()\n\nA devm_kzalloc() in asoc_qcom_lpass_cpu_platform_probe() could\npossibly return NULL pointer. NULL Pointer Dereference may be\ntriggerred without addtional check.\nAdd a NULL check for the returned pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50103",
"url": "https://www.suse.com/security/cve/CVE-2024-50103"
},
{
"category": "external",
"summary": "SUSE Bug 1232878 for CVE-2024-50103",
"url": "https://bugzilla.suse.com/1232878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50103"
},
{
"cve": "CVE-2024-50104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50104"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: qcom: sdm845: add missing soundwire runtime stream alloc\n\nDuring the migration of Soundwire runtime stream allocation from\nthe Qualcomm Soundwire controller to SoC\u0027s soundcard drivers the sdm845\nsoundcard was forgotten.\n\nAt this point any playback attempt or audio daemon startup, for instance\non sdm845-db845c (Qualcomm RB3 board), will result in stream pointer\nNULL dereference:\n\n Unable to handle kernel NULL pointer dereference at virtual\n address 0000000000000020\n Mem abort info:\n ESR = 0x0000000096000004\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x04: level 0 translation fault\n Data abort info:\n ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n user pgtable: 4k pages, 48-bit VAs, pgdp=0000000101ecf000\n [0000000000000020] pgd=0000000000000000, p4d=0000000000000000\n Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n Modules linked in: ...\n CPU: 5 UID: 0 PID: 1198 Comm: aplay\n Not tainted 6.12.0-rc2-qcomlt-arm64-00059-g9d78f315a362-dirty #18\n Hardware name: Thundercomm Dragonboard 845c (DT)\n pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : sdw_stream_add_slave+0x44/0x380 [soundwire_bus]\n lr : sdw_stream_add_slave+0x44/0x380 [soundwire_bus]\n sp : ffff80008a2035c0\n x29: ffff80008a2035c0 x28: ffff80008a203978 x27: 0000000000000000\n x26: 00000000000000c0 x25: 0000000000000000 x24: ffff1676025f4800\n x23: ffff167600ff1cb8 x22: ffff167600ff1c98 x21: 0000000000000003\n x20: ffff167607316000 x19: ffff167604e64e80 x18: 0000000000000000\n x17: 0000000000000000 x16: ffffcec265074160 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000\n x8 : 0000000000000000 x7 : 0000000000000000 x6 : ffff167600ff1cec\n x5 : ffffcec22cfa2010 x4 : 0000000000000000 x3 : 0000000000000003\n x2 : ffff167613f836c0 x1 : 0000000000000000 x0 : ffff16761feb60b8\n Call trace:\n sdw_stream_add_slave+0x44/0x380 [soundwire_bus]\n wsa881x_hw_params+0x68/0x80 [snd_soc_wsa881x]\n snd_soc_dai_hw_params+0x3c/0xa4\n __soc_pcm_hw_params+0x230/0x660\n dpcm_be_dai_hw_params+0x1d0/0x3f8\n dpcm_fe_dai_hw_params+0x98/0x268\n snd_pcm_hw_params+0x124/0x460\n snd_pcm_common_ioctl+0x998/0x16e8\n snd_pcm_ioctl+0x34/0x58\n __arm64_sys_ioctl+0xac/0xf8\n invoke_syscall+0x48/0x104\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xe0\n el0t_64_sync_handler+0x120/0x12c\n el0t_64_sync+0x190/0x194\n Code: aa0403fb f9418400 9100e000 9400102f (f8420f22)\n ---[ end trace 0000000000000000 ]---\n\n0000000000006108 \u003csdw_stream_add_slave\u003e:\n 6108: d503233f paciasp\n 610c: a9b97bfd stp x29, x30, [sp, #-112]!\n 6110: 910003fd mov x29, sp\n 6114: a90153f3 stp x19, x20, [sp, #16]\n 6118: a9025bf5 stp x21, x22, [sp, #32]\n 611c: aa0103f6 mov x22, x1\n 6120: 2a0303f5 mov w21, w3\n 6124: a90363f7 stp x23, x24, [sp, #48]\n 6128: aa0003f8 mov x24, x0\n 612c: aa0203f7 mov x23, x2\n 6130: a9046bf9 stp x25, x26, [sp, #64]\n 6134: aa0403f9 mov x25, x4 \u003c-- x4 copied to x25\n 6138: a90573fb stp x27, x28, [sp, #80]\n 613c: aa0403fb mov x27, x4\n 6140: f9418400 ldr x0, [x0, #776]\n 6144: 9100e000 add x0, x0, #0x38\n 6148: 94000000 bl 0 \u003cmutex_lock\u003e\n 614c: f8420f22 ldr x2, [x25, #32]! \u003c-- offset 0x44\n ^^^\nThis is 0x6108 + offset 0x44 from the beginning of sdw_stream_add_slave()\nwhere data abort happens.\nwsa881x_hw_params() is called with stream = NULL and passes it further\nin register x4 (5th argu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50104",
"url": "https://www.suse.com/security/cve/CVE-2024-50104"
},
{
"category": "external",
"summary": "SUSE Bug 1232868 for CVE-2024-50104",
"url": "https://bugzilla.suse.com/1232868"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50104"
},
{
"cve": "CVE-2024-50105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc\n\nCommit 15c7fab0e047 (\"ASoC: qcom: Move Soundwire runtime stream alloc to\nsoundcards\") moved the allocation of Soundwire stream runtime from the\nQualcomm Soundwire driver to each individual machine sound card driver,\nexcept that it forgot to update SC7280 card.\n\nJust like for other Qualcomm sound cards using Soundwire, the card\ndriver should allocate and release the runtime. Otherwise sound\nplayback will result in a NULL pointer dereference or other effect of\nuninitialized memory accesses (which was confirmed on SDM845 having\nsimilar issue).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50105",
"url": "https://www.suse.com/security/cve/CVE-2024-50105"
},
{
"category": "external",
"summary": "SUSE Bug 1232879 for CVE-2024-50105",
"url": "https://bugzilla.suse.com/1232879"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50105"
},
{
"cve": "CVE-2024-50106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix race between laundromat and free_stateid\n\nThere is a race between laundromat handling of revoked delegations\nand a client sending free_stateid operation. Laundromat thread\nfinds that delegation has expired and needs to be revoked so it\nmarks the delegation stid revoked and it puts it on a reaper list\nbut then it unlock the state lock and the actual delegation revocation\nhappens without the lock. Once the stid is marked revoked a racing\nfree_stateid processing thread does the following (1) it calls\nlist_del_init() which removes it from the reaper list and (2) frees\nthe delegation stid structure. The laundromat thread ends up not\ncalling the revoke_delegation() function for this particular delegation\nbut that means it will no release the lock lease that exists on\nthe file.\n\nNow, a new open for this file comes in and ends up finding that\nlease list isn\u0027t empty and calls nfsd_breaker_owns_lease() which ends\nup trying to derefence a freed delegation stateid. Leading to the\nfollowint use-after-free KASAN warning:\n\nkernel: ==================================================================\nkernel: BUG: KASAN: slab-use-after-free in nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: Read of size 8 at addr ffff0000e73cd0c8 by task nfsd/6205\nkernel:\nkernel: CPU: 2 UID: 0 PID: 6205 Comm: nfsd Kdump: loaded Not tainted 6.11.0-rc7+ #9\nkernel: Hardware name: Apple Inc. Apple Virtualization Generic Platform, BIOS 2069.0.0.0.0 08/03/2024\nkernel: Call trace:\nkernel: dump_backtrace+0x98/0x120\nkernel: show_stack+0x1c/0x30\nkernel: dump_stack_lvl+0x80/0xe8\nkernel: print_address_description.constprop.0+0x84/0x390\nkernel: print_report+0xa4/0x268\nkernel: kasan_report+0xb4/0xf8\nkernel: __asan_report_load8_noabort+0x1c/0x28\nkernel: nfsd_breaker_owns_lease+0x140/0x160 [nfsd]\nkernel: nfsd_file_do_acquire+0xb3c/0x11d0 [nfsd]\nkernel: nfsd_file_acquire_opened+0x84/0x110 [nfsd]\nkernel: nfs4_get_vfs_file+0x634/0x958 [nfsd]\nkernel: nfsd4_process_open2+0xa40/0x1a40 [nfsd]\nkernel: nfsd4_open+0xa08/0xe80 [nfsd]\nkernel: nfsd4_proc_compound+0xb8c/0x2130 [nfsd]\nkernel: nfsd_dispatch+0x22c/0x718 [nfsd]\nkernel: svc_process_common+0x8e8/0x1960 [sunrpc]\nkernel: svc_process+0x3d4/0x7e0 [sunrpc]\nkernel: svc_handle_xprt+0x828/0xe10 [sunrpc]\nkernel: svc_recv+0x2cc/0x6a8 [sunrpc]\nkernel: nfsd+0x270/0x400 [nfsd]\nkernel: kthread+0x288/0x310\nkernel: ret_from_fork+0x10/0x20\n\nThis patch proposes a fixed that\u0027s based on adding 2 new additional\nstid\u0027s sc_status values that help coordinate between the laundromat\nand other operations (nfsd4_free_stateid() and nfsd4_delegreturn()).\n\nFirst to make sure, that once the stid is marked revoked, it is not\nremoved by the nfsd4_free_stateid(), the laundromat take a reference\non the stateid. Then, coordinating whether the stid has been put\non the cl_revoked list or we are processing FREE_STATEID and need to\nmake sure to remove it from the list, each check that state and act\naccordingly. If laundromat has added to the cl_revoke list before\nthe arrival of FREE_STATEID, then nfsd4_free_stateid() knows to remove\nit from the list. If nfsd4_free_stateid() finds that operations arrived\nbefore laundromat has placed it on cl_revoke list, it marks the state\nfreed and then laundromat will no longer add it to the list.\n\nAlso, for nfsd4_delegreturn() when looking for the specified stid,\nwe need to access stid that are marked removed or freeable, it means\nthe laundromat has started processing it but hasn\u0027t finished and this\ndelegreturn needs to return nfserr_deleg_revoked and not\nnfserr_bad_stateid. The latter will not trigger a FREE_STATEID and the\nlack of it will leave this stid on the cl_revoked list indefinitely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50106",
"url": "https://www.suse.com/security/cve/CVE-2024-50106"
},
{
"category": "external",
"summary": "SUSE Bug 1232882 for CVE-2024-50106",
"url": "https://bugzilla.suse.com/1232882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50106"
},
{
"cve": "CVE-2024-50107",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50107"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86/intel/pmc: Fix pmc_core_iounmap to call iounmap for valid addresses\n\nCommit 50c6dbdfd16e (\"x86/ioremap: Improve iounmap() address range checks\")\nintroduces a WARN when adrress ranges of iounmap are invalid. On Thinkpad\nP1 Gen 7 (Meteor Lake-P) this caused the following warning to appear:\n\nWARNING: CPU: 7 PID: 713 at arch/x86/mm/ioremap.c:461 iounmap+0x58/0x1f0\nModules linked in: rfkill(+) snd_timer(+) fjes(+) snd soundcore intel_pmc_core(+)\nint3403_thermal(+) int340x_thermal_zone intel_vsec pmt_telemetry acpi_pad pmt_class\nacpi_tad int3400_thermal acpi_thermal_rel joydev loop nfnetlink zram xe drm_suballoc_helper\nnouveau i915 mxm_wmi drm_ttm_helper gpu_sched drm_gpuvm drm_exec drm_buddy i2c_algo_bit\ncrct10dif_pclmul crc32_pclmul ttm crc32c_intel polyval_clmulni rtsx_pci_sdmmc ucsi_acpi\npolyval_generic mmc_core hid_multitouch drm_display_helper ghash_clmulni_intel typec_ucsi\nnvme sha512_ssse3 video sha256_ssse3 nvme_core intel_vpu sha1_ssse3 rtsx_pci cec typec\nnvme_auth i2c_hid_acpi i2c_hid wmi pinctrl_meteorlake serio_raw ip6_tables ip_tables fuse\nCPU: 7 UID: 0 PID: 713 Comm: (udev-worker) Not tainted 6.12.0-rc2iounmap+ #42\nHardware name: LENOVO 21KWCTO1WW/21KWCTO1WW, BIOS N48ET19W (1.06 ) 07/18/2024\nRIP: 0010:iounmap+0x58/0x1f0\nCode: 85 6a 01 00 00 48 8b 05 e6 e2 28 04 48 39 c5 72 19 eb 26 cc cc cc 48 ba 00 00 00 00 00 00 32 00 48 8d 44 02 ff 48 39 c5 72 23 \u003c0f\u003e 0b 48 83 c4 08 5b 5d 41 5c c3 cc cc cc cc 48 ba 00 00 00 00 00\nRSP: 0018:ffff888131eff038 EFLAGS: 00010207\nRAX: ffffc90000000000 RBX: 0000000000000000 RCX: ffff888e33b80000\nRDX: dffffc0000000000 RSI: ffff888e33bc29c0 RDI: 0000000000000000\nRBP: 0000000000000000 R08: ffff8881598a8000 R09: ffff888e2ccedc10\nR10: 0000000000000003 R11: ffffffffb3367634 R12: 00000000fe000000\nR13: ffff888101d0da28 R14: ffffffffc2e437e0 R15: ffff888110b03b28\nFS: 00007f3c1d4b3980(0000) GS:ffff888e33b80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005651cfc93578 CR3: 0000000124e4c002 CR4: 0000000000f70ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000ffff07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\n? __warn.cold+0xb6/0x176\n? iounmap+0x58/0x1f0\n? report_bug+0x1f4/0x2b0\n? handle_bug+0x58/0x90\n? exc_invalid_op+0x17/0x40\n? asm_exc_invalid_op+0x1a/0x20\n? iounmap+0x58/0x1f0\npmc_core_ssram_get_pmc+0x477/0x6c0 [intel_pmc_core]\n? __pfx_pmc_core_ssram_get_pmc+0x10/0x10 [intel_pmc_core]\n? __pfx_do_pci_enable_device+0x10/0x10\n? pci_wait_for_pending+0x60/0x110\n? pci_enable_device_flags+0x1e3/0x2e0\n? __pfx_mtl_core_init+0x10/0x10 [intel_pmc_core]\npmc_core_ssram_init+0x7f/0x110 [intel_pmc_core]\nmtl_core_init+0xda/0x130 [intel_pmc_core]\n? __mutex_init+0xb9/0x130\npmc_core_probe+0x27e/0x10b0 [intel_pmc_core]\n? _raw_spin_lock_irqsave+0x96/0xf0\n? __pfx_pmc_core_probe+0x10/0x10 [intel_pmc_core]\n? __pfx_mutex_unlock+0x10/0x10\n? __pfx_mutex_lock+0x10/0x10\n? device_pm_check_callbacks+0x82/0x370\n? acpi_dev_pm_attach+0x234/0x2b0\nplatform_probe+0x9f/0x150\nreally_probe+0x1e0/0x8a0\n__driver_probe_device+0x18c/0x370\n? __pfx___driver_attach+0x10/0x10\ndriver_probe_device+0x4a/0x120\n__driver_attach+0x190/0x4a0\n? __pfx___driver_attach+0x10/0x10\nbus_for_each_dev+0x103/0x180\n? __pfx_bus_for_each_dev+0x10/0x10\n? klist_add_tail+0x136/0x270\nbus_add_driver+0x2fc/0x540\ndriver_register+0x1a5/0x360\n? __pfx_pmc_core_driver_init+0x10/0x10 [intel_pmc_core]\ndo_one_initcall+0xa4/0x380\n? __pfx_do_one_initcall+0x10/0x10\n? kasan_unpoison+0x44/0x70\ndo_init_module+0x296/0x800\nload_module+0x5090/0x6ce0\n? __pfx_load_module+0x10/0x10\n? ima_post_read_file+0x193/0x200\n? __pfx_ima_post_read_file+0x10/0x10\n? rw_verify_area+0x152/0x4c0\n? kernel_read_file+0x257/0x750\n? __pfx_kernel_read_file+0x10/0x10\n? __pfx_filemap_get_read_batch+0x10/0x10\n? init_module_from_file+0xd1/0x130\ninit_module_from_file+0xd1/0x130\n? __pfx_init_module_from_file+0x10/0\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50107",
"url": "https://www.suse.com/security/cve/CVE-2024-50107"
},
{
"category": "external",
"summary": "SUSE Bug 1232883 for CVE-2024-50107",
"url": "https://bugzilla.suse.com/1232883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50107"
},
{
"cve": "CVE-2024-50108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Disable PSR-SU on Parade 08-01 TCON too\n\nStuart Hayhurst has found that both at bootup and fullscreen VA-API video\nis leading to black screens for around 1 second and kernel WARNING [1] traces\nwhen calling dmub_psr_enable() with Parade 08-01 TCON.\n\nThese symptoms all go away with PSR-SU disabled for this TCON, so disable\nit for now while DMUB traces [2] from the failure can be analyzed and the failure\nstate properly root caused.\n\n(cherry picked from commit afb634a6823d8d9db23c5fb04f79c5549349628b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50108",
"url": "https://www.suse.com/security/cve/CVE-2024-50108"
},
{
"category": "external",
"summary": "SUSE Bug 1232884 for CVE-2024-50108",
"url": "https://bugzilla.suse.com/1232884"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50108"
},
{
"cve": "CVE-2024-50109",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50109"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid10: fix null ptr dereference in raid10_size()\n\nIn raid10_run() if raid10_set_queue_limits() succeed, the return value\nis set to zero, and if following procedures failed raid10_run() will\nreturn zero while mddev-\u003eprivate is still NULL, causing null ptr\ndereference in raid10_size().\n\nFix the problem by only overwrite the return value if\nraid10_set_queue_limits() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50109",
"url": "https://www.suse.com/security/cve/CVE-2024-50109"
},
{
"category": "external",
"summary": "SUSE Bug 1232886 for CVE-2024-50109",
"url": "https://bugzilla.suse.com/1232886"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50109"
},
{
"cve": "CVE-2024-50110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50110"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: fix one more kernel-infoleak in algo dumping\n\nDuring fuzz testing, the following issue was discovered:\n\nBUG: KMSAN: kernel-infoleak in _copy_to_iter+0x598/0x2a30\n _copy_to_iter+0x598/0x2a30\n __skb_datagram_iter+0x168/0x1060\n skb_copy_datagram_iter+0x5b/0x220\n netlink_recvmsg+0x362/0x1700\n sock_recvmsg+0x2dc/0x390\n __sys_recvfrom+0x381/0x6d0\n __x64_sys_recvfrom+0x130/0x200\n x64_sys_call+0x32c8/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nUninit was stored to memory at:\n copy_to_user_state_extra+0xcc1/0x1e00\n dump_one_state+0x28c/0x5f0\n xfrm_state_walk+0x548/0x11e0\n xfrm_dump_sa+0x1e0/0x840\n netlink_dump+0x943/0x1c40\n __netlink_dump_start+0x746/0xdb0\n xfrm_user_rcv_msg+0x429/0xc00\n netlink_rcv_skb+0x613/0x780\n xfrm_netlink_rcv+0x77/0xc0\n netlink_unicast+0xe90/0x1280\n netlink_sendmsg+0x126d/0x1490\n __sock_sendmsg+0x332/0x3d0\n ____sys_sendmsg+0x863/0xc30\n ___sys_sendmsg+0x285/0x3e0\n __x64_sys_sendmsg+0x2d6/0x560\n x64_sys_call+0x1316/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nUninit was created at:\n __kmalloc+0x571/0xd30\n attach_auth+0x106/0x3e0\n xfrm_add_sa+0x2aa0/0x4230\n xfrm_user_rcv_msg+0x832/0xc00\n netlink_rcv_skb+0x613/0x780\n xfrm_netlink_rcv+0x77/0xc0\n netlink_unicast+0xe90/0x1280\n netlink_sendmsg+0x126d/0x1490\n __sock_sendmsg+0x332/0x3d0\n ____sys_sendmsg+0x863/0xc30\n ___sys_sendmsg+0x285/0x3e0\n __x64_sys_sendmsg+0x2d6/0x560\n x64_sys_call+0x1316/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nBytes 328-379 of 732 are uninitialized\nMemory access of size 732 starts at ffff88800e18e000\nData copied to user address 00007ff30f48aff0\n\nCPU: 2 PID: 18167 Comm: syz-executor.0 Not tainted 6.8.11 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n\nFixes copying of xfrm algorithms where some random\ndata of the structure fields can end up in userspace.\nPadding in structures may be filled with random (possibly sensitve)\ndata and should never be given directly to user-space.\n\nA similar issue was resolved in the commit\n8222d5910dae (\"xfrm: Zero padding when dumping algos and encap\")\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50110",
"url": "https://www.suse.com/security/cve/CVE-2024-50110"
},
{
"category": "external",
"summary": "SUSE Bug 1232885 for CVE-2024-50110",
"url": "https://bugzilla.suse.com/1232885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50110"
},
{
"cve": "CVE-2024-50111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Enable IRQ if do_ale() triggered in irq-enabled context\n\nUnaligned access exception can be triggered in irq-enabled context such\nas user mode, in this case do_ale() may call get_user() which may cause\nsleep. Then we will get:\n\n BUG: sleeping function called from invalid context at arch/loongarch/kernel/access-helper.h:7\n in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 129, name: modprobe\n preempt_count: 0, expected: 0\n RCU nest depth: 0, expected: 0\n CPU: 0 UID: 0 PID: 129 Comm: modprobe Tainted: G W 6.12.0-rc1+ #1723\n Tainted: [W]=WARN\n Stack : 9000000105e0bd48 0000000000000000 9000000003803944 9000000105e08000\n 9000000105e0bc70 9000000105e0bc78 0000000000000000 0000000000000000\n 9000000105e0bc78 0000000000000001 9000000185e0ba07 9000000105e0b890\n ffffffffffffffff 9000000105e0bc78 73924b81763be05b 9000000100194500\n 000000000000020c 000000000000000a 0000000000000000 0000000000000003\n 00000000000023f0 00000000000e1401 00000000072f8000 0000007ffbb0e260\n 0000000000000000 0000000000000000 9000000005437650 90000000055d5000\n 0000000000000000 0000000000000003 0000007ffbb0e1f0 0000000000000000\n 0000005567b00490 0000000000000000 9000000003803964 0000007ffbb0dfec\n 00000000000000b0 0000000000000007 0000000000000003 0000000000071c1d\n ...\n Call Trace:\n [\u003c9000000003803964\u003e] show_stack+0x64/0x1a0\n [\u003c9000000004c57464\u003e] dump_stack_lvl+0x74/0xb0\n [\u003c9000000003861ab4\u003e] __might_resched+0x154/0x1a0\n [\u003c900000000380c96c\u003e] emulate_load_store_insn+0x6c/0xf60\n [\u003c9000000004c58118\u003e] do_ale+0x78/0x180\n [\u003c9000000003801bc8\u003e] handle_ale+0x128/0x1e0\n\nSo enable IRQ if unaligned access exception is triggered in irq-enabled\ncontext to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50111",
"url": "https://www.suse.com/security/cve/CVE-2024-50111"
},
{
"category": "external",
"summary": "SUSE Bug 1232866 for CVE-2024-50111",
"url": "https://bugzilla.suse.com/1232866"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50111"
},
{
"cve": "CVE-2024-50112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/lam: Disable ADDRESS_MASKING in most cases\n\nLinear Address Masking (LAM) has a weakness related to transient\nexecution as described in the SLAM paper[1]. Unless Linear Address\nSpace Separation (LASS) is enabled this weakness may be exploitable.\n\nUntil kernel adds support for LASS[2], only allow LAM for COMPILE_TEST,\nor when speculation mitigations have been disabled at compile time,\notherwise keep LAM disabled.\n\nThere are no processors in market that support LAM yet, so currently\nnobody is affected by this issue.\n\n[1] SLAM: https://download.vusec.net/papers/slam_sp24.pdf\n[2] LASS: https://lore.kernel.org/lkml/20230609183632.48706-1-alexander.shishkin@linux.intel.com/\n\n[ dhansen: update SPECULATION_MITIGATIONS -\u003e CPU_MITIGATIONS ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50112",
"url": "https://www.suse.com/security/cve/CVE-2024-50112"
},
{
"category": "external",
"summary": "SUSE Bug 1232867 for CVE-2024-50112",
"url": "https://bugzilla.suse.com/1232867"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50112"
},
{
"cve": "CVE-2024-50113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirewire: core: fix invalid port index for parent device\n\nIn a commit 24b7f8e5cd65 (\"firewire: core: use helper functions for self\nID sequence\"), the enumeration over self ID sequence was refactored with\nsome helper functions with KUnit tests. These helper functions are\nguaranteed to work expectedly by the KUnit tests, however their application\nincludes a mistake to assign invalid value to the index of port connected\nto parent device.\n\nThis bug affects the case that any extra node devices which has three or\nmore ports are connected to 1394 OHCI controller. In the case, the path\nto update the tree cache could hits WARN_ON(), and gets general protection\nfault due to the access to invalid address computed by the invalid value.\n\nThis commit fixes the bug to assign correct port index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50113",
"url": "https://www.suse.com/security/cve/CVE-2024-50113"
},
{
"category": "external",
"summary": "SUSE Bug 1232891 for CVE-2024-50113",
"url": "https://bugzilla.suse.com/1232891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50113"
},
{
"cve": "CVE-2024-50114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Unregister redistributor for failed vCPU creation\n\nAlex reports that syzkaller has managed to trigger a use-after-free when\ntearing down a VM:\n\n BUG: KASAN: slab-use-after-free in kvm_put_kvm+0x300/0xe68 virt/kvm/kvm_main.c:5769\n Read of size 8 at addr ffffff801c6890d0 by task syz.3.2219/10758\n\n CPU: 3 UID: 0 PID: 10758 Comm: syz.3.2219 Not tainted 6.11.0-rc6-dirty #64\n Hardware name: linux,dummy-virt (DT)\n Call trace:\n dump_backtrace+0x17c/0x1a8 arch/arm64/kernel/stacktrace.c:317\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:324\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x94/0xc0 lib/dump_stack.c:119\n print_report+0x144/0x7a4 mm/kasan/report.c:377\n kasan_report+0xcc/0x128 mm/kasan/report.c:601\n __asan_report_load8_noabort+0x20/0x2c mm/kasan/report_generic.c:381\n kvm_put_kvm+0x300/0xe68 virt/kvm/kvm_main.c:5769\n kvm_vm_release+0x4c/0x60 virt/kvm/kvm_main.c:1409\n __fput+0x198/0x71c fs/file_table.c:422\n ____fput+0x20/0x30 fs/file_table.c:450\n task_work_run+0x1cc/0x23c kernel/task_work.c:228\n do_notify_resume+0x144/0x1a0 include/linux/resume_user_mode.h:50\n el0_svc+0x64/0x68 arch/arm64/kernel/entry-common.c:169\n el0t_64_sync_handler+0x90/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nUpon closer inspection, it appears that we do not properly tear down the\nMMIO registration for a vCPU that fails creation late in the game, e.g.\na vCPU w/ the same ID already exists in the VM.\n\nIt is important to consider the context of commit that introduced this bug\nby moving the unregistration out of __kvm_vgic_vcpu_destroy(). That\nchange correctly sought to avoid an srcu v. config_lock inversion by\nbreaking up the vCPU teardown into two parts, one guarded by the\nconfig_lock.\n\nFix the use-after-free while avoiding lock inversion by adding a\nspecial-cased unregistration to __kvm_vgic_vcpu_destroy(). This is safe\nbecause failed vCPUs are torn down outside of the config_lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50114",
"url": "https://www.suse.com/security/cve/CVE-2024-50114"
},
{
"category": "external",
"summary": "SUSE Bug 1232912 for CVE-2024-50114",
"url": "https://bugzilla.suse.com/1232912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50114"
},
{
"cve": "CVE-2024-50115",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50115"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory\n\nIgnore nCR3[4:0] when loading PDPTEs from memory for nested SVM, as bits\n4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn\u0027t\nenforce 32-byte alignment of nCR3.\n\nIn the absolute worst case scenario, failure to ignore bits 4:0 can result\nin an out-of-bounds read, e.g. if the target page is at the end of a\nmemslot, and the VMM isn\u0027t using guard pages.\n\nPer the APM:\n\n The CR3 register points to the base address of the page-directory-pointer\n table. The page-directory-pointer table is aligned on a 32-byte boundary,\n with the low 5 address bits 4:0 assumed to be 0.\n\nAnd the SDM\u0027s much more explicit:\n\n 4:0 Ignored\n\nNote, KVM gets this right when loading PDPTRs, it\u0027s only the nSVM flow\nthat is broken.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50115",
"url": "https://www.suse.com/security/cve/CVE-2024-50115"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232919 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1232919"
},
{
"category": "external",
"summary": "SUSE Bug 1233019 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1233019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50115"
},
{
"cve": "CVE-2024-50116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix kernel bug due to missing clearing of buffer delay flag\n\nSyzbot reported that after nilfs2 reads a corrupted file system image\nand degrades to read-only, the BUG_ON check for the buffer delay flag\nin submit_bh_wbc() may fail, causing a kernel bug.\n\nThis is because the buffer delay flag is not cleared when clearing the\nbuffer state flags to discard a page/folio or a buffer head. So, fix\nthis.\n\nThis became necessary when the use of nilfs2\u0027s own page clear routine\nwas expanded. This state inconsistency does not occur if the buffer\nis written normally by log writing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50116",
"url": "https://www.suse.com/security/cve/CVE-2024-50116"
},
{
"category": "external",
"summary": "SUSE Bug 1232892 for CVE-2024-50116",
"url": "https://bugzilla.suse.com/1232892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50116"
},
{
"cve": "CVE-2024-50117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd: Guard against bad data for ATIF ACPI method\n\nIf a BIOS provides bad data in response to an ATIF method call\nthis causes a NULL pointer dereference in the caller.\n\n```\n? show_regs (arch/x86/kernel/dumpstack.c:478 (discriminator 1))\n? __die (arch/x86/kernel/dumpstack.c:423 arch/x86/kernel/dumpstack.c:434)\n? page_fault_oops (arch/x86/mm/fault.c:544 (discriminator 2) arch/x86/mm/fault.c:705 (discriminator 2))\n? do_user_addr_fault (arch/x86/mm/fault.c:440 (discriminator 1) arch/x86/mm/fault.c:1232 (discriminator 1))\n? acpi_ut_update_object_reference (drivers/acpi/acpica/utdelete.c:642)\n? exc_page_fault (arch/x86/mm/fault.c:1542)\n? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n? amdgpu_atif_query_backlight_caps.constprop.0 (drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c:387 (discriminator 2)) amdgpu\n? amdgpu_atif_query_backlight_caps.constprop.0 (drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c:386 (discriminator 1)) amdgpu\n```\n\nIt has been encountered on at least one system, so guard for it.\n\n(cherry picked from commit c9b7c809b89f24e9372a4e7f02d64c950b07fdee)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50117",
"url": "https://www.suse.com/security/cve/CVE-2024-50117"
},
{
"category": "external",
"summary": "SUSE Bug 1232897 for CVE-2024-50117",
"url": "https://bugzilla.suse.com/1232897"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50117"
},
{
"cve": "CVE-2024-50118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: reject ro-\u003erw reconfiguration if there are hard ro requirements\n\n[BUG]\nSyzbot reports the following crash:\n\n BTRFS info (device loop0 state MCS): disabling free space tree\n BTRFS info (device loop0 state MCS): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)\n BTRFS info (device loop0 state MCS): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)\n Oops: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN NOPTI\n KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f]\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:backup_super_roots fs/btrfs/disk-io.c:1691 [inline]\n RIP: 0010:write_all_supers+0x97a/0x40f0 fs/btrfs/disk-io.c:4041\n Call Trace:\n \u003cTASK\u003e\n btrfs_commit_transaction+0x1eae/0x3740 fs/btrfs/transaction.c:2530\n btrfs_delete_free_space_tree+0x383/0x730 fs/btrfs/free-space-tree.c:1312\n btrfs_start_pre_rw_mount+0xf28/0x1300 fs/btrfs/disk-io.c:3012\n btrfs_remount_rw fs/btrfs/super.c:1309 [inline]\n btrfs_reconfigure+0xae6/0x2d40 fs/btrfs/super.c:1534\n btrfs_reconfigure_for_mount fs/btrfs/super.c:2020 [inline]\n btrfs_get_tree_subvol fs/btrfs/super.c:2079 [inline]\n btrfs_get_tree+0x918/0x1920 fs/btrfs/super.c:2115\n vfs_get_tree+0x90/0x2b0 fs/super.c:1800\n do_new_mount+0x2be/0xb40 fs/namespace.c:3472\n do_mount fs/namespace.c:3812 [inline]\n __do_sys_mount fs/namespace.c:4020 [inline]\n __se_sys_mount+0x2d6/0x3c0 fs/namespace.c:3997\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[CAUSE]\nTo support mounting different subvolume with different RO/RW flags for\nthe new mount APIs, btrfs introduced two workaround to support this feature:\n\n- Skip mount option/feature checks if we are mounting a different\n subvolume\n\n- Reconfigure the fs to RW if the initial mount is RO\n\nCombining these two, we can have the following sequence:\n\n- Mount the fs ro,rescue=all,clear_cache,space_cache=v1\n rescue=all will mark the fs as hard read-only, so no v2 cache clearing\n will happen.\n\n- Mount a subvolume rw of the same fs.\n We go into btrfs_get_tree_subvol(), but fc_mount() returns EBUSY\n because our new fc is RW, different from the original fs.\n\n Now we enter btrfs_reconfigure_for_mount(), which switches the RO flag\n first so that we can grab the existing fs_info.\n Then we reconfigure the fs to RW.\n\n- During reconfiguration, option/features check is skipped\n This means we will restart the v2 cache clearing, and convert back to\n v1 cache.\n This will trigger fs writes, and since the original fs has \"rescue=all\"\n option, it skips the csum tree read.\n\n And eventually causing NULL pointer dereference in super block\n writeback.\n\n[FIX]\nFor reconfiguration caused by different subvolume RO/RW flags, ensure we\nalways run btrfs_check_options() to ensure we have proper hard RO\nrequirements met.\n\nIn fact the function btrfs_check_options() doesn\u0027t really do many\ncomplex checks, but hard RO requirement and some feature dependency\nchecks, thus there is no special reason not to do the check for mount\nreconfiguration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50118",
"url": "https://www.suse.com/security/cve/CVE-2024-50118"
},
{
"category": "external",
"summary": "SUSE Bug 1232859 for CVE-2024-50118",
"url": "https://bugzilla.suse.com/1232859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50118"
},
{
"cve": "CVE-2024-50119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix warning when destroy \u0027cifs_io_request_pool\u0027\n\nThere\u0027s a issue as follows:\nWARNING: CPU: 1 PID: 27826 at mm/slub.c:4698 free_large_kmalloc+0xac/0xe0\nRIP: 0010:free_large_kmalloc+0xac/0xe0\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0xea/0x330\n mempool_destroy+0x13f/0x1d0\n init_cifs+0xa50/0xff0 [cifs]\n do_one_initcall+0xdc/0x550\n do_init_module+0x22d/0x6b0\n load_module+0x4e96/0x5ff0\n init_module_from_file+0xcd/0x130\n idempotent_init_module+0x330/0x620\n __x64_sys_finit_module+0xb3/0x110\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nObviously, \u0027cifs_io_request_pool\u0027 is not created by mempool_create().\nSo just use mempool_exit() to revert \u0027cifs_io_request_pool\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50119",
"url": "https://www.suse.com/security/cve/CVE-2024-50119"
},
{
"category": "external",
"summary": "SUSE Bug 1232858 for CVE-2024-50119",
"url": "https://bugzilla.suse.com/1232858"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50119"
},
{
"cve": "CVE-2024-50120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Handle kstrdup failures for passwords\n\nIn smb3_reconfigure(), after duplicating ctx-\u003epassword and\nctx-\u003epassword2 with kstrdup(), we need to check for allocation\nfailures.\n\nIf ses-\u003epassword allocation fails, return -ENOMEM.\nIf ses-\u003epassword2 allocation fails, free ses-\u003epassword, set it\nto NULL, and return -ENOMEM.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50120",
"url": "https://www.suse.com/security/cve/CVE-2024-50120"
},
{
"category": "external",
"summary": "SUSE Bug 1232924 for CVE-2024-50120",
"url": "https://bugzilla.suse.com/1232924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50120"
},
{
"cve": "CVE-2024-50121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50121"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net\n\nIn the normal case, when we excute `echo 0 \u003e /proc/fs/nfsd/threads`, the\nfunction `nfs4_state_destroy_net` in `nfs4_state_shutdown_net` will\nrelease all resources related to the hashed `nfs4_client`. If the\n`nfsd_client_shrinker` is running concurrently, the `expire_client`\nfunction will first unhash this client and then destroy it. This can\nlead to the following warning. Additionally, numerous use-after-free\nerrors may occur as well.\n\nnfsd_client_shrinker echo 0 \u003e /proc/fs/nfsd/threads\n\nexpire_client nfsd_shutdown_net\n unhash_client ...\n nfs4_state_shutdown_net\n /* won\u0027t wait shrinker exit */\n /* cancel_work(\u0026nn-\u003enfsd_shrinker_work)\n * nfsd_file for this /* won\u0027t destroy unhashed client1 */\n * client1 still alive nfs4_state_destroy_net\n */\n\n nfsd_file_cache_shutdown\n /* trigger warning */\n kmem_cache_destroy(nfsd_file_slab)\n kmem_cache_destroy(nfsd_file_mark_slab)\n /* release nfsd_file and mark */\n __destroy_client\n\n====================================================================\nBUG nfsd_file (Not tainted): Objects remaining in nfsd_file on\n__kmem_cache_shutdown()\n--------------------------------------------------------------------\nCPU: 4 UID: 0 PID: 764 Comm: sh Not tainted 6.12.0-rc3+ #1\n\n dump_stack_lvl+0x53/0x70\n slab_err+0xb0/0xf0\n __kmem_cache_shutdown+0x15c/0x310\n kmem_cache_destroy+0x66/0x160\n nfsd_file_cache_shutdown+0xac/0x210 [nfsd]\n nfsd_destroy_serv+0x251/0x2a0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n====================================================================\nBUG nfsd_file_mark (Tainted: G B W ): Objects remaining\nnfsd_file_mark on __kmem_cache_shutdown()\n--------------------------------------------------------------------\n\n dump_stack_lvl+0x53/0x70\n slab_err+0xb0/0xf0\n __kmem_cache_shutdown+0x15c/0x310\n kmem_cache_destroy+0x66/0x160\n nfsd_file_cache_shutdown+0xc8/0x210 [nfsd]\n nfsd_destroy_serv+0x251/0x2a0 [nfsd]\n nfsd_svc+0x125/0x1e0 [nfsd]\n write_threads+0x16a/0x2a0 [nfsd]\n nfsctl_transaction_write+0x74/0xa0 [nfsd]\n vfs_write+0x1a5/0x6d0\n ksys_write+0xc1/0x160\n do_syscall_64+0x5f/0x170\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nTo resolve this issue, cancel `nfsd_shrinker_work` using synchronous\nmode in nfs4_state_shutdown_net.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50121",
"url": "https://www.suse.com/security/cve/CVE-2024-50121"
},
{
"category": "external",
"summary": "SUSE Bug 1232925 for CVE-2024-50121",
"url": "https://bugzilla.suse.com/1232925"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50121"
},
{
"cve": "CVE-2024-50122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50122"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Hold rescan lock while adding devices during host probe\n\nSince adding the PCI power control code, we may end up with a race between\nthe pwrctl platform device rescanning the bus and host controller probe\nfunctions. The latter need to take the rescan lock when adding devices or\nwe may end up in an undefined state having two incompletely added devices\nand hit the following crash when trying to remove the device over sysfs:\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n Internal error: Oops: 0000000096000004 [#1] SMP\n Call trace:\n __pi_strlen+0x14/0x150\n kernfs_find_ns+0x80/0x13c\n kernfs_remove_by_name_ns+0x54/0xf0\n sysfs_remove_bin_file+0x24/0x34\n pci_remove_resource_files+0x3c/0x84\n pci_remove_sysfs_dev_files+0x28/0x38\n pci_stop_bus_device+0x8c/0xd8\n pci_stop_bus_device+0x40/0xd8\n pci_stop_and_remove_bus_device_locked+0x28/0x48\n remove_store+0x70/0xb0\n dev_attr_store+0x20/0x38\n sysfs_kf_write+0x58/0x78\n kernfs_fop_write_iter+0xe8/0x184\n vfs_write+0x2dc/0x308\n ksys_write+0x7c/0xec",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50122",
"url": "https://www.suse.com/security/cve/CVE-2024-50122"
},
{
"category": "external",
"summary": "SUSE Bug 1232930 for CVE-2024-50122",
"url": "https://bugzilla.suse.com/1232930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50122"
},
{
"cve": "CVE-2024-50123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add the missing BPF_LINK_TYPE invocation for sockmap\n\nThere is an out-of-bounds read in bpf_link_show_fdinfo() for the sockmap\nlink fd. Fix it by adding the missing BPF_LINK_TYPE invocation for\nsockmap link\n\nAlso add comments for bpf_link_type to prevent missing updates in the\nfuture.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50123",
"url": "https://www.suse.com/security/cve/CVE-2024-50123"
},
{
"category": "external",
"summary": "SUSE Bug 1232857 for CVE-2024-50123",
"url": "https://bugzilla.suse.com/1232857"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50123"
},
{
"cve": "CVE-2024-50124",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50124"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: Fix UAF on iso_sock_timeout\n\nconn-\u003esk maybe have been unlinked/freed while waiting for iso_conn_lock\nso this checks if the conn-\u003esk is still valid by checking if it part of\niso_sk_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50124",
"url": "https://www.suse.com/security/cve/CVE-2024-50124"
},
{
"category": "external",
"summary": "SUSE Bug 1232926 for CVE-2024-50124",
"url": "https://bugzilla.suse.com/1232926"
},
{
"category": "external",
"summary": "SUSE Bug 1232927 for CVE-2024-50124",
"url": "https://bugzilla.suse.com/1232927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50124"
},
{
"cve": "CVE-2024-50125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix UAF on sco_sock_timeout\n\nconn-\u003esk maybe have been unlinked/freed while waiting for sco_conn_lock\nso this checks if the conn-\u003esk is still valid by checking if it part of\nsco_sk_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50125",
"url": "https://www.suse.com/security/cve/CVE-2024-50125"
},
{
"category": "external",
"summary": "SUSE Bug 1232928 for CVE-2024-50125",
"url": "https://bugzilla.suse.com/1232928"
},
{
"category": "external",
"summary": "SUSE Bug 1232929 for CVE-2024-50125",
"url": "https://bugzilla.suse.com/1232929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50125"
},
{
"cve": "CVE-2024-50126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: use RCU read-side critical section in taprio_dump()\n\nFix possible use-after-free in \u0027taprio_dump()\u0027 by adding RCU\nread-side critical section there. Never seen on x86 but\nfound on a KASAN-enabled arm64 system when investigating\nhttps://syzkaller.appspot.com/bug?extid=b65e0af58423fc8a73aa:\n\n[T15862] BUG: KASAN: slab-use-after-free in taprio_dump+0xa0c/0xbb0\n[T15862] Read of size 4 at addr ffff0000d4bb88f8 by task repro/15862\n[T15862]\n[T15862] CPU: 0 UID: 0 PID: 15862 Comm: repro Not tainted 6.11.0-rc1-00293-gdefaf1a2113a-dirty #2\n[T15862] Hardware name: QEMU QEMU Virtual Machine, BIOS edk2-20240524-5.fc40 05/24/2024\n[T15862] Call trace:\n[T15862] dump_backtrace+0x20c/0x220\n[T15862] show_stack+0x2c/0x40\n[T15862] dump_stack_lvl+0xf8/0x174\n[T15862] print_report+0x170/0x4d8\n[T15862] kasan_report+0xb8/0x1d4\n[T15862] __asan_report_load4_noabort+0x20/0x2c\n[T15862] taprio_dump+0xa0c/0xbb0\n[T15862] tc_fill_qdisc+0x540/0x1020\n[T15862] qdisc_notify.isra.0+0x330/0x3a0\n[T15862] tc_modify_qdisc+0x7b8/0x1838\n[T15862] rtnetlink_rcv_msg+0x3c8/0xc20\n[T15862] netlink_rcv_skb+0x1f8/0x3d4\n[T15862] rtnetlink_rcv+0x28/0x40\n[T15862] netlink_unicast+0x51c/0x790\n[T15862] netlink_sendmsg+0x79c/0xc20\n[T15862] __sock_sendmsg+0xe0/0x1a0\n[T15862] ____sys_sendmsg+0x6c0/0x840\n[T15862] ___sys_sendmsg+0x1ac/0x1f0\n[T15862] __sys_sendmsg+0x110/0x1d0\n[T15862] __arm64_sys_sendmsg+0x74/0xb0\n[T15862] invoke_syscall+0x88/0x2e0\n[T15862] el0_svc_common.constprop.0+0xe4/0x2a0\n[T15862] do_el0_svc+0x44/0x60\n[T15862] el0_svc+0x50/0x184\n[T15862] el0t_64_sync_handler+0x120/0x12c\n[T15862] el0t_64_sync+0x190/0x194\n[T15862]\n[T15862] Allocated by task 15857:\n[T15862] kasan_save_stack+0x3c/0x70\n[T15862] kasan_save_track+0x20/0x3c\n[T15862] kasan_save_alloc_info+0x40/0x60\n[T15862] __kasan_kmalloc+0xd4/0xe0\n[T15862] __kmalloc_cache_noprof+0x194/0x334\n[T15862] taprio_change+0x45c/0x2fe0\n[T15862] tc_modify_qdisc+0x6a8/0x1838\n[T15862] rtnetlink_rcv_msg+0x3c8/0xc20\n[T15862] netlink_rcv_skb+0x1f8/0x3d4\n[T15862] rtnetlink_rcv+0x28/0x40\n[T15862] netlink_unicast+0x51c/0x790\n[T15862] netlink_sendmsg+0x79c/0xc20\n[T15862] __sock_sendmsg+0xe0/0x1a0\n[T15862] ____sys_sendmsg+0x6c0/0x840\n[T15862] ___sys_sendmsg+0x1ac/0x1f0\n[T15862] __sys_sendmsg+0x110/0x1d0\n[T15862] __arm64_sys_sendmsg+0x74/0xb0\n[T15862] invoke_syscall+0x88/0x2e0\n[T15862] el0_svc_common.constprop.0+0xe4/0x2a0\n[T15862] do_el0_svc+0x44/0x60\n[T15862] el0_svc+0x50/0x184\n[T15862] el0t_64_sync_handler+0x120/0x12c\n[T15862] el0t_64_sync+0x190/0x194\n[T15862]\n[T15862] Freed by task 6192:\n[T15862] kasan_save_stack+0x3c/0x70\n[T15862] kasan_save_track+0x20/0x3c\n[T15862] kasan_save_free_info+0x4c/0x80\n[T15862] poison_slab_object+0x110/0x160\n[T15862] __kasan_slab_free+0x3c/0x74\n[T15862] kfree+0x134/0x3c0\n[T15862] taprio_free_sched_cb+0x18c/0x220\n[T15862] rcu_core+0x920/0x1b7c\n[T15862] rcu_core_si+0x10/0x1c\n[T15862] handle_softirqs+0x2e8/0xd64\n[T15862] __do_softirq+0x14/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50126",
"url": "https://www.suse.com/security/cve/CVE-2024-50126"
},
{
"category": "external",
"summary": "SUSE Bug 1232895 for CVE-2024-50126",
"url": "https://bugzilla.suse.com/1232895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50126"
},
{
"cve": "CVE-2024-50127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix use-after-free in taprio_change()\n\nIn \u0027taprio_change()\u0027, \u0027admin\u0027 pointer may become dangling due to sched\nswitch / removal caused by \u0027advance_sched()\u0027, and critical section\nprotected by \u0027q-\u003ecurrent_entry_lock\u0027 is too small to prevent from such\na scenario (which causes use-after-free detected by KASAN). Fix this\nby prefer \u0027rcu_replace_pointer()\u0027 over \u0027rcu_assign_pointer()\u0027 to update\n\u0027admin\u0027 immediately before an attempt to schedule freeing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50127",
"url": "https://www.suse.com/security/cve/CVE-2024-50127"
},
{
"category": "external",
"summary": "SUSE Bug 1232907 for CVE-2024-50127",
"url": "https://bugzilla.suse.com/1232907"
},
{
"category": "external",
"summary": "SUSE Bug 1232908 for CVE-2024-50127",
"url": "https://bugzilla.suse.com/1232908"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50127"
},
{
"cve": "CVE-2024-50128",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50128"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: fix global oob in wwan_rtnl_policy\n\nThe variable wwan_rtnl_link_ops assign a *bigger* maxtype which leads to\na global out-of-bounds read when parsing the netlink attributes. Exactly\nsame bug cause as the oob fixed in commit b33fb5b801c6 (\"net: qualcomm:\nrmnet: fix global oob in rmnet_policy\").\n\n==================================================================\nBUG: KASAN: global-out-of-bounds in validate_nla lib/nlattr.c:388 [inline]\nBUG: KASAN: global-out-of-bounds in __nla_validate_parse+0x19d7/0x29a0 lib/nlattr.c:603\nRead of size 1 at addr ffffffff8b09cb60 by task syz.1.66276/323862\n\nCPU: 0 PID: 323862 Comm: syz.1.66276 Not tainted 6.1.70 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x177/0x231 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:284 [inline]\n print_report+0x14f/0x750 mm/kasan/report.c:395\n kasan_report+0x139/0x170 mm/kasan/report.c:495\n validate_nla lib/nlattr.c:388 [inline]\n __nla_validate_parse+0x19d7/0x29a0 lib/nlattr.c:603\n __nla_parse+0x3c/0x50 lib/nlattr.c:700\n nla_parse_nested_deprecated include/net/netlink.h:1269 [inline]\n __rtnl_newlink net/core/rtnetlink.c:3514 [inline]\n rtnl_newlink+0x7bc/0x1fd0 net/core/rtnetlink.c:3623\n rtnetlink_rcv_msg+0x794/0xef0 net/core/rtnetlink.c:6122\n netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2508\n netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]\n netlink_unicast+0x74b/0x8c0 net/netlink/af_netlink.c:1352\n netlink_sendmsg+0x882/0xb90 net/netlink/af_netlink.c:1874\n sock_sendmsg_nosec net/socket.c:716 [inline]\n __sock_sendmsg net/socket.c:728 [inline]\n ____sys_sendmsg+0x5cc/0x8f0 net/socket.c:2499\n ___sys_sendmsg+0x21c/0x290 net/socket.c:2553\n __sys_sendmsg net/socket.c:2582 [inline]\n __do_sys_sendmsg net/socket.c:2591 [inline]\n __se_sys_sendmsg+0x19e/0x270 net/socket.c:2589\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x45/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7f67b19a24ad\nRSP: 002b:00007f67b17febb8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f67b1b45f80 RCX: 00007f67b19a24ad\nRDX: 0000000000000000 RSI: 0000000020005e40 RDI: 0000000000000004\nRBP: 00007f67b1a1e01d R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffd2513764f R14: 00007ffd251376e0 R15: 00007f67b17fed40\n \u003c/TASK\u003e\n\nThe buggy address belongs to the variable:\n wwan_rtnl_policy+0x20/0x40\n\nThe buggy address belongs to the physical page:\npage:ffffea00002c2700 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xb09c\nflags: 0xfff00000001000(reserved|node=0|zone=1|lastcpupid=0x7ff)\nraw: 00fff00000001000 ffffea00002c2708 ffffea00002c2708 0000000000000000\nraw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\npage_owner info is not present (never set?)\n\nMemory state around the buggy address:\n ffffffff8b09ca00: 05 f9 f9 f9 05 f9 f9 f9 00 01 f9 f9 00 01 f9 f9\n ffffffff8b09ca80: 00 00 00 05 f9 f9 f9 f9 00 00 03 f9 f9 f9 f9 f9\n\u003effffffff8b09cb00: 00 00 00 00 05 f9 f9 f9 00 00 00 00 f9 f9 f9 f9\n ^\n ffffffff8b09cb80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n==================================================================\n\nAccording to the comment of `nla_parse_nested_deprecated`, use correct size\n`IFLA_WWAN_MAX` here to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50128",
"url": "https://www.suse.com/security/cve/CVE-2024-50128"
},
{
"category": "external",
"summary": "SUSE Bug 1232905 for CVE-2024-50128",
"url": "https://bugzilla.suse.com/1232905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50128"
},
{
"cve": "CVE-2024-50129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: pse-pd: Fix out of bound for loop\n\nAdjust the loop limit to prevent out-of-bounds access when iterating over\nPI structures. The loop should not reach the index pcdev-\u003enr_lines since\nwe allocate exactly pcdev-\u003enr_lines number of PI structures. This fix\nensures proper bounds are maintained during iterations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50129",
"url": "https://www.suse.com/security/cve/CVE-2024-50129"
},
{
"category": "external",
"summary": "SUSE Bug 1232856 for CVE-2024-50129",
"url": "https://bugzilla.suse.com/1232856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50129"
},
{
"cve": "CVE-2024-50130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: bpf: must hold reference on net namespace\n\nBUG: KASAN: slab-use-after-free in __nf_unregister_net_hook+0x640/0x6b0\nRead of size 8 at addr ffff8880106fe400 by task repro/72=\nbpf_nf_link_release+0xda/0x1e0\nbpf_link_free+0x139/0x2d0\nbpf_link_release+0x68/0x80\n__fput+0x414/0xb60\n\nEric says:\n It seems that bpf was able to defer the __nf_unregister_net_hook()\n after exit()/close() time.\n Perhaps a netns reference is missing, because the netns has been\n dismantled/freed already.\n bpf_nf_link_attach() does :\n link-\u003enet = net;\n But I do not see a reference being taken on net.\n\nAdd such a reference and release it after hook unreg.\nNote that I was unable to get syzbot reproducer to work, so I\ndo not know if this resolves this splat.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50130",
"url": "https://www.suse.com/security/cve/CVE-2024-50130"
},
{
"category": "external",
"summary": "SUSE Bug 1232894 for CVE-2024-50130",
"url": "https://bugzilla.suse.com/1232894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50130"
},
{
"cve": "CVE-2024-50131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Consider the NULL character when validating the event length\n\nstrlen() returns a string length excluding the null byte. If the string\nlength equals to the maximum buffer length, the buffer will have no\nspace for the NULL terminating character.\n\nThis commit checks this condition and returns failure for it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50131",
"url": "https://www.suse.com/security/cve/CVE-2024-50131"
},
{
"category": "external",
"summary": "SUSE Bug 1232896 for CVE-2024-50131",
"url": "https://bugzilla.suse.com/1232896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50131"
},
{
"cve": "CVE-2024-50132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing/probes: Fix MAX_TRACE_ARGS limit handling\n\nWhen creating a trace_probe we would set nr_args prior to truncating the\narguments to MAX_TRACE_ARGS. However, we would only initialize arguments\nup to the limit.\n\nThis caused invalid memory access when attempting to set up probes with\nmore than 128 fetchargs.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000020\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 0 UID: 0 PID: 1769 Comm: cat Not tainted 6.11.0-rc7+ #8\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-1.fc39 04/01/2014\n RIP: 0010:__set_print_fmt+0x134/0x330\n\nResolve the issue by applying the MAX_TRACE_ARGS limit earlier. Return\nan error when there are too many arguments instead of silently\ntruncating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50132",
"url": "https://www.suse.com/security/cve/CVE-2024-50132"
},
{
"category": "external",
"summary": "SUSE Bug 1232861 for CVE-2024-50132",
"url": "https://bugzilla.suse.com/1232861"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50132"
},
{
"cve": "CVE-2024-50133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Don\u0027t crash in stack_top() for tasks without vDSO\n\nNot all tasks have a vDSO mapped, for example kthreads never do. If such\na task ever ends up calling stack_top(), it will derefence the NULL vdso\npointer and crash.\n\nThis can for example happen when using kunit:\n\n\t[\u003c9000000000203874\u003e] stack_top+0x58/0xa8\n\t[\u003c90000000002956cc\u003e] arch_pick_mmap_layout+0x164/0x220\n\t[\u003c90000000003c284c\u003e] kunit_vm_mmap_init+0x108/0x12c\n\t[\u003c90000000003c1fbc\u003e] __kunit_add_resource+0x38/0x8c\n\t[\u003c90000000003c2704\u003e] kunit_vm_mmap+0x88/0xc8\n\t[\u003c9000000000410b14\u003e] usercopy_test_init+0xbc/0x25c\n\t[\u003c90000000003c1db4\u003e] kunit_try_run_case+0x5c/0x184\n\t[\u003c90000000003c3d54\u003e] kunit_generic_run_threadfn_adapter+0x24/0x48\n\t[\u003c900000000022e4bc\u003e] kthread+0xc8/0xd4\n\t[\u003c9000000000200ce8\u003e] ret_from_kernel_thread+0xc/0xa4",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50133",
"url": "https://www.suse.com/security/cve/CVE-2024-50133"
},
{
"category": "external",
"summary": "SUSE Bug 1232854 for CVE-2024-50133",
"url": "https://bugzilla.suse.com/1232854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50133"
},
{
"cve": "CVE-2024-50134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA\n\nReplace the fake VLA at end of the vbva_mouse_pointer_shape shape with\na real VLA to fix a \"memcpy: detected field-spanning write error\" warning:\n\n[ 13.319813] memcpy: detected field-spanning write (size 16896) of single field \"p-\u003edata\" at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 (size 4)\n[ 13.319841] WARNING: CPU: 0 PID: 1105 at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 hgsmi_update_pointer_shape+0x192/0x1c0 [vboxvideo]\n[ 13.320038] Call Trace:\n[ 13.320173] hgsmi_update_pointer_shape [vboxvideo]\n[ 13.320184] vbox_cursor_atomic_update [vboxvideo]\n\nNote as mentioned in the added comment it seems the original length\ncalculation for the allocated and send hgsmi buffer is 4 bytes too large.\nChanging this is not the goal of this patch, so this behavior is kept.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50134",
"url": "https://www.suse.com/security/cve/CVE-2024-50134"
},
{
"category": "external",
"summary": "SUSE Bug 1232890 for CVE-2024-50134",
"url": "https://bugzilla.suse.com/1232890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50134"
},
{
"cve": "CVE-2024-50135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix race condition between reset and nvme_dev_disable()\n\nnvme_dev_disable() modifies the dev-\u003eonline_queues field, therefore\nnvme_pci_update_nr_queues() should avoid racing against it, otherwise\nwe could end up passing invalid values to blk_mq_update_nr_hw_queues().\n\n WARNING: CPU: 39 PID: 61303 at drivers/pci/msi/api.c:347\n pci_irq_get_affinity+0x187/0x210\n Workqueue: nvme-reset-wq nvme_reset_work [nvme]\n RIP: 0010:pci_irq_get_affinity+0x187/0x210\n Call Trace:\n \u003cTASK\u003e\n ? blk_mq_pci_map_queues+0x87/0x3c0\n ? pci_irq_get_affinity+0x187/0x210\n blk_mq_pci_map_queues+0x87/0x3c0\n nvme_pci_map_queues+0x189/0x460 [nvme]\n blk_mq_update_nr_hw_queues+0x2a/0x40\n nvme_reset_work+0x1be/0x2a0 [nvme]\n\nFix the bug by locking the shutdown_lock mutex before using\ndev-\u003eonline_queues. Give up if nvme_dev_disable() is running or if\nit has been executed already.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50135",
"url": "https://www.suse.com/security/cve/CVE-2024-50135"
},
{
"category": "external",
"summary": "SUSE Bug 1232888 for CVE-2024-50135",
"url": "https://bugzilla.suse.com/1232888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50135"
},
{
"cve": "CVE-2024-50136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Unregister notifier on eswitch init failure\n\nIt otherwise remains registered and a subsequent attempt at eswitch\nenabling might trigger warnings of the sort:\n\n[ 682.589148] ------------[ cut here ]------------\n[ 682.590204] notifier callback eswitch_vport_event [mlx5_core] already registered\n[ 682.590256] WARNING: CPU: 13 PID: 2660 at kernel/notifier.c:31 notifier_chain_register+0x3e/0x90\n[...snipped]\n[ 682.610052] Call Trace:\n[ 682.610369] \u003cTASK\u003e\n[ 682.610663] ? __warn+0x7c/0x110\n[ 682.611050] ? notifier_chain_register+0x3e/0x90\n[ 682.611556] ? report_bug+0x148/0x170\n[ 682.611977] ? handle_bug+0x36/0x70\n[ 682.612384] ? exc_invalid_op+0x13/0x60\n[ 682.612817] ? asm_exc_invalid_op+0x16/0x20\n[ 682.613284] ? notifier_chain_register+0x3e/0x90\n[ 682.613789] atomic_notifier_chain_register+0x25/0x40\n[ 682.614322] mlx5_eswitch_enable_locked+0x1d4/0x3b0 [mlx5_core]\n[ 682.614965] mlx5_eswitch_enable+0xc9/0x100 [mlx5_core]\n[ 682.615551] mlx5_device_enable_sriov+0x25/0x340 [mlx5_core]\n[ 682.616170] mlx5_core_sriov_configure+0x50/0x170 [mlx5_core]\n[ 682.616789] sriov_numvfs_store+0xb0/0x1b0\n[ 682.617248] kernfs_fop_write_iter+0x117/0x1a0\n[ 682.617734] vfs_write+0x231/0x3f0\n[ 682.618138] ksys_write+0x63/0xe0\n[ 682.618536] do_syscall_64+0x4c/0x100\n[ 682.618958] entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50136",
"url": "https://www.suse.com/security/cve/CVE-2024-50136"
},
{
"category": "external",
"summary": "SUSE Bug 1232914 for CVE-2024-50136",
"url": "https://bugzilla.suse.com/1232914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50136"
},
{
"cve": "CVE-2024-50137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nreset: starfive: jh71x0: Fix accessing the empty member on JH7110 SoC\n\ndata-\u003easserted will be NULL on JH7110 SoC since commit 82327b127d41\n(\"reset: starfive: Add StarFive JH7110 reset driver\") was added. Add\nthe judgment condition to avoid errors when calling reset_control_status\non JH7110 SoC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50137",
"url": "https://www.suse.com/security/cve/CVE-2024-50137"
},
{
"category": "external",
"summary": "SUSE Bug 1232932 for CVE-2024-50137",
"url": "https://bugzilla.suse.com/1232932"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50137"
},
{
"cve": "CVE-2024-50138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Use raw_spinlock_t in ringbuf\n\nThe function __bpf_ringbuf_reserve is invoked from a tracepoint, which\ndisables preemption. Using spinlock_t in this context can lead to a\n\"sleep in atomic\" warning in the RT variant. This issue is illustrated\nin the example below:\n\nBUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 556208, name: test_progs\npreempt_count: 1, expected: 0\nRCU nest depth: 1, expected: 1\nINFO: lockdep is turned off.\nPreemption disabled at:\n[\u003cffffd33a5c88ea44\u003e] migrate_enable+0xc0/0x39c\nCPU: 7 PID: 556208 Comm: test_progs Tainted: G\nHardware name: Qualcomm SA8775P Ride (DT)\nCall trace:\n dump_backtrace+0xac/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0xac/0xe8\n dump_stack+0x18/0x30\n __might_resched+0x3bc/0x4fc\n rt_spin_lock+0x8c/0x1a4\n __bpf_ringbuf_reserve+0xc4/0x254\n bpf_ringbuf_reserve_dynptr+0x5c/0xdc\n bpf_prog_ac3d15160d62622a_test_read_write+0x104/0x238\n trace_call_bpf+0x238/0x774\n perf_call_bpf_enter.isra.0+0x104/0x194\n perf_syscall_enter+0x2f8/0x510\n trace_sys_enter+0x39c/0x564\n syscall_trace_enter+0x220/0x3c0\n do_el0_svc+0x138/0x1dc\n el0_svc+0x54/0x130\n el0t_64_sync_handler+0x134/0x150\n el0t_64_sync+0x17c/0x180\n\nSwitch the spinlock to raw_spinlock_t to avoid this error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50138",
"url": "https://www.suse.com/security/cve/CVE-2024-50138"
},
{
"category": "external",
"summary": "SUSE Bug 1232935 for CVE-2024-50138",
"url": "https://bugzilla.suse.com/1232935"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50138"
},
{
"cve": "CVE-2024-50139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50139"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Fix shift-out-of-bounds bug\n\nFix a shift-out-of-bounds bug reported by UBSAN when running\nVM with MTE enabled host kernel.\n\nUBSAN: shift-out-of-bounds in arch/arm64/kvm/sys_regs.c:1988:14\nshift exponent 33 is too large for 32-bit type \u0027int\u0027\nCPU: 26 UID: 0 PID: 7629 Comm: qemu-kvm Not tainted 6.12.0-rc2 #34\nHardware name: IEI NF5280R7/Mitchell MB, BIOS 00.00. 2024-10-12 09:28:54 10/14/2024\nCall trace:\n dump_backtrace+0xa0/0x128\n show_stack+0x20/0x38\n dump_stack_lvl+0x74/0x90\n dump_stack+0x18/0x28\n __ubsan_handle_shift_out_of_bounds+0xf8/0x1e0\n reset_clidr+0x10c/0x1c8\n kvm_reset_sys_regs+0x50/0x1c8\n kvm_reset_vcpu+0xec/0x2b0\n __kvm_vcpu_set_target+0x84/0x158\n kvm_vcpu_set_target+0x138/0x168\n kvm_arch_vcpu_ioctl_vcpu_init+0x40/0x2b0\n kvm_arch_vcpu_ioctl+0x28c/0x4b8\n kvm_vcpu_ioctl+0x4bc/0x7a8\n __arm64_sys_ioctl+0xb4/0x100\n invoke_syscall+0x70/0x100\n el0_svc_common.constprop.0+0x48/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x3c/0x158\n el0t_64_sync_handler+0x120/0x130\n el0t_64_sync+0x194/0x198",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50139",
"url": "https://www.suse.com/security/cve/CVE-2024-50139"
},
{
"category": "external",
"summary": "SUSE Bug 1233062 for CVE-2024-50139",
"url": "https://bugzilla.suse.com/1233062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50139"
},
{
"cve": "CVE-2024-50140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50140"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/core: Disable page allocation in task_tick_mm_cid()\n\nWith KASAN and PREEMPT_RT enabled, calling task_work_add() in\ntask_tick_mm_cid() may cause the following splat.\n\n[ 63.696416] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\n[ 63.696416] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 610, name: modprobe\n[ 63.696416] preempt_count: 10001, expected: 0\n[ 63.696416] RCU nest depth: 1, expected: 1\n\nThis problem is caused by the following call trace.\n\n sched_tick() [ acquire rq-\u003e__lock ]\n -\u003e task_tick_mm_cid()\n -\u003e task_work_add()\n -\u003e __kasan_record_aux_stack()\n -\u003e kasan_save_stack()\n -\u003e stack_depot_save_flags()\n -\u003e alloc_pages_mpol_noprof()\n -\u003e __alloc_pages_noprof()\n\t -\u003e get_page_from_freelist()\n\t -\u003e rmqueue()\n\t -\u003e rmqueue_pcplist()\n\t -\u003e __rmqueue_pcplist()\n\t -\u003e rmqueue_bulk()\n\t -\u003e rt_spin_lock()\n\nThe rq lock is a raw_spinlock_t. We can\u0027t sleep while holding\nit. IOW, we can\u0027t call alloc_pages() in stack_depot_save_flags().\n\nThe task_tick_mm_cid() function with its task_work_add() call was\nintroduced by commit 223baf9d17f2 (\"sched: Fix performance regression\nintroduced by mm_cid\") in v6.4 kernel.\n\nFortunately, there is a kasan_record_aux_stack_noalloc() variant that\ncalls stack_depot_save_flags() while not allowing it to allocate\nnew pages. To allow task_tick_mm_cid() to use task_work without\npage allocation, a new TWAF_NO_ALLOC flag is added to enable calling\nkasan_record_aux_stack_noalloc() instead of kasan_record_aux_stack()\nif set. The task_tick_mm_cid() function is modified to add this new flag.\n\nThe possible downside is the missing stack trace in a KASAN report due\nto new page allocation required when task_work_add_noallloc() is called\nwhich should be rare.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50140",
"url": "https://www.suse.com/security/cve/CVE-2024-50140"
},
{
"category": "external",
"summary": "SUSE Bug 1233060 for CVE-2024-50140",
"url": "https://bugzilla.suse.com/1233060"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50140"
},
{
"cve": "CVE-2024-50141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context\n\nPRMT needs to find the correct type of block to translate the PA-VA\nmapping for EFI runtime services.\n\nThe issue arises because the PRMT is finding a block of type\nEFI_CONVENTIONAL_MEMORY, which is not appropriate for runtime services\nas described in Section 2.2.2 (Runtime Services) of the UEFI\nSpecification [1]. Since the PRM handler is a type of runtime service,\nthis causes an exception when the PRM handler is called.\n\n [Firmware Bug]: Unable to handle paging request in EFI runtime service\n WARNING: CPU: 22 PID: 4330 at drivers/firmware/efi/runtime-wrappers.c:341\n __efi_queue_work+0x11c/0x170\n Call trace:\n\nLet PRMT find a block with EFI_MEMORY_RUNTIME for PRM handler and PRM\ncontext.\n\nIf no suitable block is found, a warning message will be printed, but\nthe procedure continues to manage the next PRM handler.\n\nHowever, if the PRM handler is actually called without proper allocation,\nit would result in a failure during error handling.\n\nBy using the correct memory types for runtime services, ensure that the\nPRM handler and the context are properly mapped in the virtual address\nspace during runtime, preventing the paging request error.\n\nThe issue is really that only memory that has been remapped for runtime\nby the firmware can be used by the PRM handler, and so the region needs\nto have the EFI_MEMORY_RUNTIME attribute.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50141",
"url": "https://www.suse.com/security/cve/CVE-2024-50141"
},
{
"category": "external",
"summary": "SUSE Bug 1233065 for CVE-2024-50141",
"url": "https://bugzilla.suse.com/1233065"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50141"
},
{
"cve": "CVE-2024-50142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: validate new SA\u0027s prefixlen using SA family when sel.family is unset\n\nThis expands the validation introduced in commit 07bf7908950a (\"xfrm:\nValidate address prefix lengths in the xfrm selector.\")\n\nsyzbot created an SA with\n usersa.sel.family = AF_UNSPEC\n usersa.sel.prefixlen_s = 128\n usersa.family = AF_INET\n\nBecause of the AF_UNSPEC selector, verify_newsa_info doesn\u0027t put\nlimits on prefixlen_{s,d}. But then copy_from_user_state sets\nx-\u003esel.family to usersa.family (AF_INET). Do the same conversion in\nverify_newsa_info before validating prefixlen_{s,d}, since that\u0027s how\nprefixlen is going to be used later on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50142",
"url": "https://www.suse.com/security/cve/CVE-2024-50142"
},
{
"category": "external",
"summary": "SUSE Bug 1233028 for CVE-2024-50142",
"url": "https://bugzilla.suse.com/1233028"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50142"
},
{
"cve": "CVE-2024-50143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix uninit-value use in udf_get_fileshortad\n\nCheck for overflow when computing alen in udf_current_aext to mitigate\nlater uninit-value use in udf_get_fileshortad KMSAN bug[1].\nAfter applying the patch reproducer did not trigger any issue[2].\n\n[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df\n[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50143",
"url": "https://www.suse.com/security/cve/CVE-2024-50143"
},
{
"category": "external",
"summary": "SUSE Bug 1233038 for CVE-2024-50143",
"url": "https://bugzilla.suse.com/1233038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50143"
},
{
"cve": "CVE-2024-50144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50144"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: fix unbalanced rpm put() with fence_fini()\n\nCurrently we can call fence_fini() twice if something goes wrong when\nsending the GuC CT for the tlb request, since we signal the fence and\nreturn an error, leading to the caller also calling fini() on the error\npath in the case of stack version of the flow, which leads to an extra\nrpm put() which might later cause device to enter suspend when it\nshouldn\u0027t. It looks like we can just drop the fini() call since the\nfence signaller side will already call this for us.\n\nThere are known mysterious splats with device going to sleep even with\nan rpm ref, and this could be one candidate.\n\nv2 (Matt B):\n - Prefer warning if we detect double fini()\n\n(cherry picked from commit cfcbc0520d5055825f0647ab922b655688605183)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50144",
"url": "https://www.suse.com/security/cve/CVE-2024-50144"
},
{
"category": "external",
"summary": "SUSE Bug 1233040 for CVE-2024-50144",
"url": "https://bugzilla.suse.com/1233040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50144"
},
{
"cve": "CVE-2024-50145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteon_ep: Add SKB allocation failures handling in __octep_oq_process_rx()\n\nbuild_skb() returns NULL in case of a memory allocation failure so handle\nit inside __octep_oq_process_rx() to avoid NULL pointer dereference.\n\n__octep_oq_process_rx() is called during NAPI polling by the driver. If\nskb allocation fails, keep on pulling packets out of the Rx DMA queue: we\nshouldn\u0027t break the polling immediately and thus falsely indicate to the\noctep_napi_poll() that the Rx pressure is going down. As there is no\nassociated skb in this case, don\u0027t process the packets and don\u0027t push them\nup the network stack - they are skipped.\n\nHelper function is implemented to unmmap/flush all the fragment buffers\nused by the dropped packet. \u0027alloc_failures\u0027 counter is incremented to\nmark the skb allocation error in driver statistics.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50145",
"url": "https://www.suse.com/security/cve/CVE-2024-50145"
},
{
"category": "external",
"summary": "SUSE Bug 1233044 for CVE-2024-50145",
"url": "https://bugzilla.suse.com/1233044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50145"
},
{
"cve": "CVE-2024-50146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t call cleanup on profile rollback failure\n\nWhen profile rollback fails in mlx5e_netdev_change_profile, the netdev\nprofile var is left set to NULL. Avoid a crash when unloading the driver\nby not calling profile-\u003ecleanup in such a case.\n\nThis was encountered while testing, with the original trigger that\nthe wq rescuer thread creation got interrupted (presumably due to\nCtrl+C-ing modprobe), which gets converted to ENOMEM (-12) by\nmlx5e_priv_init, the profile rollback also fails for the same reason\n(signal still active) so the profile is left as NULL, leading to a crash\nlater in _mlx5e_remove.\n\n [ 732.473932] mlx5_core 0000:08:00.1: E-Switch: Unload vfs: mode(OFFLOADS), nvfs(2), necvfs(0), active vports(2)\n [ 734.525513] workqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\n [ 734.557372] mlx5_core 0000:08:00.1: mlx5e_netdev_init_profile:6235:(pid 6086): mlx5e_priv_init failed, err=-12\n [ 734.559187] mlx5_core 0000:08:00.1 eth3: mlx5e_netdev_change_profile: new profile init failed, -12\n [ 734.560153] workqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\n [ 734.589378] mlx5_core 0000:08:00.1: mlx5e_netdev_init_profile:6235:(pid 6086): mlx5e_priv_init failed, err=-12\n [ 734.591136] mlx5_core 0000:08:00.1 eth3: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n [ 745.537492] BUG: kernel NULL pointer dereference, address: 0000000000000008\n [ 745.538222] #PF: supervisor read access in kernel mode\n\u003csnipped\u003e\n [ 745.551290] Call Trace:\n [ 745.551590] \u003cTASK\u003e\n [ 745.551866] ? __die+0x20/0x60\n [ 745.552218] ? page_fault_oops+0x150/0x400\n [ 745.555307] ? exc_page_fault+0x79/0x240\n [ 745.555729] ? asm_exc_page_fault+0x22/0x30\n [ 745.556166] ? mlx5e_remove+0x6b/0xb0 [mlx5_core]\n [ 745.556698] auxiliary_bus_remove+0x18/0x30\n [ 745.557134] device_release_driver_internal+0x1df/0x240\n [ 745.557654] bus_remove_device+0xd7/0x140\n [ 745.558075] device_del+0x15b/0x3c0\n [ 745.558456] mlx5_rescan_drivers_locked.part.0+0xb1/0x2f0 [mlx5_core]\n [ 745.559112] mlx5_unregister_device+0x34/0x50 [mlx5_core]\n [ 745.559686] mlx5_uninit_one+0x46/0xf0 [mlx5_core]\n [ 745.560203] remove_one+0x4e/0xd0 [mlx5_core]\n [ 745.560694] pci_device_remove+0x39/0xa0\n [ 745.561112] device_release_driver_internal+0x1df/0x240\n [ 745.561631] driver_detach+0x47/0x90\n [ 745.562022] bus_remove_driver+0x84/0x100\n [ 745.562444] pci_unregister_driver+0x3b/0x90\n [ 745.562890] mlx5_cleanup+0xc/0x1b [mlx5_core]\n [ 745.563415] __x64_sys_delete_module+0x14d/0x2f0\n [ 745.563886] ? kmem_cache_free+0x1b0/0x460\n [ 745.564313] ? lockdep_hardirqs_on_prepare+0xe2/0x190\n [ 745.564825] do_syscall_64+0x6d/0x140\n [ 745.565223] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n [ 745.565725] RIP: 0033:0x7f1579b1288b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50146",
"url": "https://www.suse.com/security/cve/CVE-2024-50146"
},
{
"category": "external",
"summary": "SUSE Bug 1233056 for CVE-2024-50146",
"url": "https://bugzilla.suse.com/1233056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50146"
},
{
"cve": "CVE-2024-50147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix command bitmask initialization\n\nCommand bitmask have a dedicated bit for MANAGE_PAGES command, this bit\nisn\u0027t Initialize during command bitmask Initialization, only during\nMANAGE_PAGES.\n\nIn addition, mlx5_cmd_trigger_completions() is trying to trigger\ncompletion for MANAGE_PAGES command as well.\n\nHence, in case health error occurred before any MANAGE_PAGES command\nhave been invoke (for example, during mlx5_enable_hca()),\nmlx5_cmd_trigger_completions() will try to trigger completion for\nMANAGE_PAGES command, which will result in null-ptr-deref error.[1]\n\nFix it by Initialize command bitmask correctly.\n\nWhile at it, re-write the code for better understanding.\n\n[1]\nBUG: KASAN: null-ptr-deref in mlx5_cmd_trigger_completions+0x1db/0x600 [mlx5_core]\nWrite of size 4 at addr 0000000000000214 by task kworker/u96:2/12078\nCPU: 10 PID: 12078 Comm: kworker/u96:2 Not tainted 6.9.0-rc2_for_upstream_debug_2024_04_07_19_01 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nWorkqueue: mlx5_health0000:08:00.0 mlx5_fw_fatal_reporter_err_work [mlx5_core]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x7e/0xc0\n kasan_report+0xb9/0xf0\n kasan_check_range+0xec/0x190\n mlx5_cmd_trigger_completions+0x1db/0x600 [mlx5_core]\n mlx5_cmd_flush+0x94/0x240 [mlx5_core]\n enter_error_state+0x6c/0xd0 [mlx5_core]\n mlx5_fw_fatal_reporter_err_work+0xf3/0x480 [mlx5_core]\n process_one_work+0x787/0x1490\n ? lockdep_hardirqs_on_prepare+0x400/0x400\n ? pwq_dec_nr_in_flight+0xda0/0xda0\n ? assign_work+0x168/0x240\n worker_thread+0x586/0xd30\n ? rescuer_thread+0xae0/0xae0\n kthread+0x2df/0x3b0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x2d/0x70\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50147",
"url": "https://www.suse.com/security/cve/CVE-2024-50147"
},
{
"category": "external",
"summary": "SUSE Bug 1233067 for CVE-2024-50147",
"url": "https://bugzilla.suse.com/1233067"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50147"
},
{
"cve": "CVE-2024-50148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: bnep: fix wild-memory-access in proto_unregister\n\nThere\u0027s issue as follows:\n KASAN: maybe wild-memory-access in range [0xdead...108-0xdead...10f]\n CPU: 3 UID: 0 PID: 2805 Comm: rmmod Tainted: G W\n RIP: 0010:proto_unregister+0xee/0x400\n Call Trace:\n \u003cTASK\u003e\n __do_sys_delete_module+0x318/0x580\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nAs bnep_init() ignore bnep_sock_init()\u0027s return value, and bnep_sock_init()\nwill cleanup all resource. Then when remove bnep module will call\nbnep_sock_cleanup() to cleanup sock\u0027s resource.\nTo solve above issue just return bnep_sock_init()\u0027s return value in\nbnep_exit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50148",
"url": "https://www.suse.com/security/cve/CVE-2024-50148"
},
{
"category": "external",
"summary": "SUSE Bug 1233063 for CVE-2024-50148",
"url": "https://bugzilla.suse.com/1233063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50148"
},
{
"cve": "CVE-2024-50149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Don\u0027t free job in TDR\n\nFreeing job in TDR is not safe as TDR can pass the run_job thread\nresulting in UAF. It is only safe for free job to naturally be called by\nthe scheduler. Rather free job in TDR, add to pending list.\n\n(cherry picked from commit ea2f6a77d0c40d97f4a4dc93fee4afe15d94926d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50149",
"url": "https://www.suse.com/security/cve/CVE-2024-50149"
},
{
"category": "external",
"summary": "SUSE Bug 1233034 for CVE-2024-50149",
"url": "https://bugzilla.suse.com/1233034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50149"
},
{
"cve": "CVE-2024-50150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: altmode should keep reference to parent\n\nThe altmode device release refers to its parent device, but without keeping\na reference to it.\n\nWhen registering the altmode, get a reference to the parent and put it in\nthe release function.\n\nBefore this fix, when using CONFIG_DEBUG_KOBJECT_RELEASE, we see issues\nlike this:\n\n[ 43.572860] kobject: \u0027port0.0\u0027 (ffff8880057ba008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 43.573532] kobject: \u0027port0.1\u0027 (ffff8880057bd008): kobject_release, parent 0000000000000000 (delayed 1000)\n[ 43.574407] kobject: \u0027port0\u0027 (ffff8880057b9008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 43.575059] kobject: \u0027port1.0\u0027 (ffff8880057ca008): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.575908] kobject: \u0027port1.1\u0027 (ffff8880057c9008): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.576908] kobject: \u0027typec\u0027 (ffff8880062dbc00): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.577769] kobject: \u0027port1\u0027 (ffff8880057bf008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 46.612867] ==================================================================\n[ 46.613402] BUG: KASAN: slab-use-after-free in typec_altmode_release+0x38/0x129\n[ 46.614003] Read of size 8 at addr ffff8880057b9118 by task kworker/2:1/48\n[ 46.614538]\n[ 46.614668] CPU: 2 UID: 0 PID: 48 Comm: kworker/2:1 Not tainted 6.12.0-rc1-00138-gedbae730ad31 #535\n[ 46.615391] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 46.616042] Workqueue: events kobject_delayed_cleanup\n[ 46.616446] Call Trace:\n[ 46.616648] \u003cTASK\u003e\n[ 46.616820] dump_stack_lvl+0x5b/0x7c\n[ 46.617112] ? typec_altmode_release+0x38/0x129\n[ 46.617470] print_report+0x14c/0x49e\n[ 46.617769] ? rcu_read_unlock_sched+0x56/0x69\n[ 46.618117] ? __virt_addr_valid+0x19a/0x1ab\n[ 46.618456] ? kmem_cache_debug_flags+0xc/0x1d\n[ 46.618807] ? typec_altmode_release+0x38/0x129\n[ 46.619161] kasan_report+0x8d/0xb4\n[ 46.619447] ? typec_altmode_release+0x38/0x129\n[ 46.619809] ? process_scheduled_works+0x3cb/0x85f\n[ 46.620185] typec_altmode_release+0x38/0x129\n[ 46.620537] ? process_scheduled_works+0x3cb/0x85f\n[ 46.620907] device_release+0xaf/0xf2\n[ 46.621206] kobject_delayed_cleanup+0x13b/0x17a\n[ 46.621584] process_scheduled_works+0x4f6/0x85f\n[ 46.621955] ? __pfx_process_scheduled_works+0x10/0x10\n[ 46.622353] ? hlock_class+0x31/0x9a\n[ 46.622647] ? lock_acquired+0x361/0x3c3\n[ 46.622956] ? move_linked_works+0x46/0x7d\n[ 46.623277] worker_thread+0x1ce/0x291\n[ 46.623582] ? __kthread_parkme+0xc8/0xdf\n[ 46.623900] ? __pfx_worker_thread+0x10/0x10\n[ 46.624236] kthread+0x17e/0x190\n[ 46.624501] ? kthread+0xfb/0x190\n[ 46.624756] ? __pfx_kthread+0x10/0x10\n[ 46.625015] ret_from_fork+0x20/0x40\n[ 46.625268] ? __pfx_kthread+0x10/0x10\n[ 46.625532] ret_from_fork_asm+0x1a/0x30\n[ 46.625805] \u003c/TASK\u003e\n[ 46.625953]\n[ 46.626056] Allocated by task 678:\n[ 46.626287] kasan_save_stack+0x24/0x44\n[ 46.626555] kasan_save_track+0x14/0x2d\n[ 46.626811] __kasan_kmalloc+0x3f/0x4d\n[ 46.627049] __kmalloc_noprof+0x1bf/0x1f0\n[ 46.627362] typec_register_port+0x23/0x491\n[ 46.627698] cros_typec_probe+0x634/0xbb6\n[ 46.628026] platform_probe+0x47/0x8c\n[ 46.628311] really_probe+0x20a/0x47d\n[ 46.628605] device_driver_attach+0x39/0x72\n[ 46.628940] bind_store+0x87/0xd7\n[ 46.629213] kernfs_fop_write_iter+0x1aa/0x218\n[ 46.629574] vfs_write+0x1d6/0x29b\n[ 46.629856] ksys_write+0xcd/0x13b\n[ 46.630128] do_syscall_64+0xd4/0x139\n[ 46.630420] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 46.630820]\n[ 46.630946] Freed by task 48:\n[ 46.631182] kasan_save_stack+0x24/0x44\n[ 46.631493] kasan_save_track+0x14/0x2d\n[ 46.631799] kasan_save_free_info+0x3f/0x4d\n[ 46.632144] __kasan_slab_free+0x37/0x45\n[ 46.632474]\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50150",
"url": "https://www.suse.com/security/cve/CVE-2024-50150"
},
{
"category": "external",
"summary": "SUSE Bug 1233051 for CVE-2024-50150",
"url": "https://bugzilla.suse.com/1233051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50150"
},
{
"cve": "CVE-2024-50151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix OOBs when building SMB2_IOCTL request\n\nWhen using encryption, either enforced by the server or when using\n\u0027seal\u0027 mount option, the client will squash all compound request buffers\ndown for encryption into a single iov in smb2_set_next_command().\n\nSMB2_ioctl_init() allocates a small buffer (448 bytes) to hold the\nSMB2_IOCTL request in the first iov, and if the user passes an input\nbuffer that is greater than 328 bytes, smb2_set_next_command() will\nend up writing off the end of @rqst-\u003eiov[0].iov_base as shown below:\n\n mount.cifs //srv/share /mnt -o ...,seal\n ln -s $(perl -e \"print(\u0027a\u0027)for 1..1024\") /mnt/link\n\n BUG: KASAN: slab-out-of-bounds in\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n Write of size 4116 at addr ffff8881148fcab8 by task ln/859\n\n CPU: 1 UID: 0 PID: 859 Comm: ln Not tainted 6.12.0-rc3 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n 1.16.3-2.fc40 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n print_report+0x156/0x4d9\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n ? __virt_addr_valid+0x145/0x310\n ? __phys_addr+0x46/0x90\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_report+0xda/0x110\n ? smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n kasan_check_range+0x10f/0x1f0\n __asan_memcpy+0x3c/0x60\n smb2_set_next_command.cold+0x1d6/0x24c [cifs]\n smb2_compound_op+0x238c/0x3840 [cifs]\n ? kasan_save_track+0x14/0x30\n ? kasan_save_free_info+0x3b/0x70\n ? vfs_symlink+0x1a1/0x2c0\n ? do_symlinkat+0x108/0x1c0\n ? __pfx_smb2_compound_op+0x10/0x10 [cifs]\n ? kmem_cache_free+0x118/0x3e0\n ? cifs_get_writable_path+0xeb/0x1a0 [cifs]\n smb2_get_reparse_inode+0x423/0x540 [cifs]\n ? __pfx_smb2_get_reparse_inode+0x10/0x10 [cifs]\n ? rcu_is_watching+0x20/0x50\n ? __kmalloc_noprof+0x37c/0x480\n ? smb2_create_reparse_symlink+0x257/0x490 [cifs]\n ? smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n smb2_create_reparse_symlink+0x38f/0x490 [cifs]\n ? __pfx_smb2_create_reparse_symlink+0x10/0x10 [cifs]\n ? find_held_lock+0x8a/0xa0\n ? hlock_class+0x32/0xb0\n ? __build_path_from_dentry_optional_prefix+0x19d/0x2e0 [cifs]\n cifs_symlink+0x24f/0x960 [cifs]\n ? __pfx_make_vfsuid+0x10/0x10\n ? __pfx_cifs_symlink+0x10/0x10 [cifs]\n ? make_vfsgid+0x6b/0xc0\n ? generic_permission+0x96/0x2d0\n vfs_symlink+0x1a1/0x2c0\n do_symlinkat+0x108/0x1c0\n ? __pfx_do_symlinkat+0x10/0x10\n ? strncpy_from_user+0xaa/0x160\n __x64_sys_symlinkat+0xb9/0xf0\n do_syscall_64+0xbb/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7f08d75c13bb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50151",
"url": "https://www.suse.com/security/cve/CVE-2024-50151"
},
{
"category": "external",
"summary": "SUSE Bug 1233055 for CVE-2024-50151",
"url": "https://bugzilla.suse.com/1233055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50151"
},
{
"cve": "CVE-2024-50152",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50152"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix possible double free in smb2_set_ea()\n\nClang static checker(scan-build) warning:\nfs/smb/client/smb2ops.c:1304:2: Attempt to free released memory.\n 1304 | kfree(ea);\n | ^~~~~~~~~\n\nThere is a double free in such case:\n\u0027ea is initialized to NULL\u0027 -\u003e \u0027first successful memory allocation for\nea\u0027 -\u003e \u0027something failed, goto sea_exit\u0027 -\u003e \u0027first memory release for ea\u0027\n-\u003e \u0027goto replay_again\u0027 -\u003e \u0027second goto sea_exit before allocate memory\nfor ea\u0027 -\u003e \u0027second memory release for ea resulted in double free\u0027.\n\nRe-initialie \u0027ea\u0027 to NULL near to the replay_again label, it can fix this\ndouble free problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50152",
"url": "https://www.suse.com/security/cve/CVE-2024-50152"
},
{
"category": "external",
"summary": "SUSE Bug 1233033 for CVE-2024-50152",
"url": "https://bugzilla.suse.com/1233033"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50152"
},
{
"cve": "CVE-2024-50153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: core: Fix null-ptr-deref in target_alloc_device()\n\nThere is a null-ptr-deref issue reported by KASAN:\n\nBUG: KASAN: null-ptr-deref in target_alloc_device+0xbc4/0xbe0 [target_core_mod]\n...\n kasan_report+0xb9/0xf0\n target_alloc_device+0xbc4/0xbe0 [target_core_mod]\n core_dev_setup_virtual_lun0+0xef/0x1f0 [target_core_mod]\n target_core_init_configfs+0x205/0x420 [target_core_mod]\n do_one_initcall+0xdd/0x4e0\n...\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nIn target_alloc_device(), if allocing memory for dev queues fails, then\ndev will be freed by dev-\u003etransport-\u003efree_device(), but dev-\u003etransport\nis not initialized at that time, which will lead to a null pointer\nreference problem.\n\nFixing this bug by freeing dev with hba-\u003ebackend-\u003eops-\u003efree_device().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50153",
"url": "https://www.suse.com/security/cve/CVE-2024-50153"
},
{
"category": "external",
"summary": "SUSE Bug 1233061 for CVE-2024-50153",
"url": "https://bugzilla.suse.com/1233061"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50153"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: use cond_resched() in nsim_dev_trap_report_work()\n\nI am still seeing many syzbot reports hinting that syzbot\nmight fool nsim_dev_trap_report_work() with hundreds of ports [1]\n\nLets use cond_resched(), and system_unbound_wq\ninstead of implicit system_wq.\n\n[1]\nINFO: task syz-executor:20633 blocked for more than 143 seconds.\n Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0\n\"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\ntask:syz-executor state:D stack:25856 pid:20633 tgid:20633 ppid:1 flags:0x00004006\n...\nNMI backtrace for cpu 1\nCPU: 1 UID: 0 PID: 16760 Comm: kworker/1:0 Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events nsim_dev_trap_report_work\n RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 kernel/kcov.c:210\nCode: 89 fb e8 23 00 00 00 48 8b 3d 04 fb 9c 0c 48 89 de 5b e9 c3 c7 5d 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 \u003cf3\u003e 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 c0 d7 03 00 65 8b 15 60 f0\nRSP: 0018:ffffc90000a187e8 EFLAGS: 00000246\nRAX: 0000000000000100 RBX: ffffc90000a188e0 RCX: ffff888027d3bc00\nRDX: ffff888027d3bc00 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffff88804a2e6000 R08: ffffffff8a4bc495 R09: ffffffff89da3577\nR10: 0000000000000004 R11: ffffffff8a4bc2b0 R12: dffffc0000000000\nR13: ffff88806573b503 R14: dffffc0000000000 R15: ffff8880663cca00\nFS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fc90a747f98 CR3: 000000000e734000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 000000000000002b DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cNMI\u003e\n \u003c/NMI\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x1bb/0x200 kernel/softirq.c:382\n spin_unlock_bh include/linux/spinlock.h:396 [inline]\n nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline]\n nsim_dev_trap_report_work+0x75d/0xaa0 drivers/net/netdevsim/dev.c:850\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa63/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50155",
"url": "https://www.suse.com/security/cve/CVE-2024-50155"
},
{
"category": "external",
"summary": "SUSE Bug 1233035 for CVE-2024-50155",
"url": "https://bugzilla.suse.com/1233035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50155"
},
{
"cve": "CVE-2024-50156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm: Avoid NULL dereference in msm_disp_state_print_regs()\n\nIf the allocation in msm_disp_state_dump_regs() failed then\n`block-\u003estate` can be NULL. The msm_disp_state_print_regs() function\n_does_ have code to try to handle it with:\n\n if (*reg)\n dump_addr = *reg;\n\n...but since \"dump_addr\" is initialized to NULL the above is actually\na noop. The code then goes on to dereference `dump_addr`.\n\nMake the function print \"Registers not stored\" when it sees a NULL to\nsolve this. Since we\u0027re touching the code, fix\nmsm_disp_state_print_regs() not to pointlessly take a double-pointer\nand properly mark the pointer as `const`.\n\nPatchwork: https://patchwork.freedesktop.org/patch/619657/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50156",
"url": "https://www.suse.com/security/cve/CVE-2024-50156"
},
{
"category": "external",
"summary": "SUSE Bug 1233073 for CVE-2024-50156",
"url": "https://bugzilla.suse.com/1233073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50156"
},
{
"cve": "CVE-2024-50157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Avoid CPU lockups due fifo occupancy check loop\n\nDriver waits indefinitely for the fifo occupancy to go below a threshold\nas soon as the pacing interrupt is received. This can cause soft lockup on\none of the processors, if the rate of DB is very high.\n\nAdd a loop count for FPGA and exit the __wait_for_fifo_occupancy_below_th\nif the loop is taking more time. Pacing will be continuing until the\noccupancy is below the threshold. This is ensured by the checks in\nbnxt_re_pacing_timer_exp and further scheduling the work for pacing based\non the fifo occupancy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50157",
"url": "https://www.suse.com/security/cve/CVE-2024-50157"
},
{
"category": "external",
"summary": "SUSE Bug 1233032 for CVE-2024-50157",
"url": "https://bugzilla.suse.com/1233032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50157"
},
{
"cve": "CVE-2024-50158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix out of bound check\n\nDriver exports pacing stats only on GenP5 and P7 adapters. But while\nparsing the pacing stats, driver has a check for \"rdev-\u003edbr_pacing\". This\ncaused a trace when KASAN is enabled.\n\nBUG: KASAN: slab-out-of-bounds in bnxt_re_get_hw_stats+0x2b6a/0x2e00 [bnxt_re]\nWrite of size 8 at addr ffff8885942a6340 by task modprobe/4809",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50158",
"url": "https://www.suse.com/security/cve/CVE-2024-50158"
},
{
"category": "external",
"summary": "SUSE Bug 1233036 for CVE-2024-50158",
"url": "https://bugzilla.suse.com/1233036"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50158"
},
{
"cve": "CVE-2024-50159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50159"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Fix the double free in scmi_debugfs_common_setup()\n\nClang static checker(scan-build) throws below warning:\n | drivers/firmware/arm_scmi/driver.c:line 2915, column 2\n | Attempt to free released memory.\n\nWhen devm_add_action_or_reset() fails, scmi_debugfs_common_cleanup()\nwill run twice which causes double free of \u0027dbg-\u003ename\u0027.\n\nRemove the redundant scmi_debugfs_common_cleanup() to fix this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50159",
"url": "https://www.suse.com/security/cve/CVE-2024-50159"
},
{
"category": "external",
"summary": "SUSE Bug 1233041 for CVE-2024-50159",
"url": "https://bugzilla.suse.com/1233041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50159"
},
{
"cve": "CVE-2024-50160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda/cs8409: Fix possible NULL dereference\n\nIf snd_hda_gen_add_kctl fails to allocate memory and returns NULL, then\nNULL pointer dereference will occur in the next line.\n\nSince dolphin_fixups function is a hda_fixup function which is not supposed\nto return any errors, add simple check before dereference, ignore the fail.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50160",
"url": "https://www.suse.com/security/cve/CVE-2024-50160"
},
{
"category": "external",
"summary": "SUSE Bug 1233074 for CVE-2024-50160",
"url": "https://bugzilla.suse.com/1233074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50160"
},
{
"cve": "CVE-2024-50161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50161"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check the remaining info_cnt before repeating btf fields\n\nWhen trying to repeat the btf fields for array of nested struct, it\ndoesn\u0027t check the remaining info_cnt. The following splat will be\nreported when the value of ret * nelems is greater than BTF_FIELDS_MAX:\n\n ------------[ cut here ]------------\n UBSAN: array-index-out-of-bounds in ../kernel/bpf/btf.c:3951:49\n index 11 is out of range for type \u0027btf_field_info [11]\u0027\n CPU: 6 UID: 0 PID: 411 Comm: test_progs ...... 6.11.0-rc4+ #1\n Tainted: [O]=OOT_MODULE\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS ...\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x57/0x70\n dump_stack+0x10/0x20\n ubsan_epilogue+0x9/0x40\n __ubsan_handle_out_of_bounds+0x6f/0x80\n ? kallsyms_lookup_name+0x48/0xb0\n btf_parse_fields+0x992/0xce0\n map_create+0x591/0x770\n __sys_bpf+0x229/0x2410\n __x64_sys_bpf+0x1f/0x30\n x64_sys_call+0x199/0x9f0\n do_syscall_64+0x3b/0xc0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x7fea56f2cc5d\n ......\n \u003c/TASK\u003e\n ---[ end trace ]---\n\nFix it by checking the remaining info_cnt in btf_repeat_fields() before\nrepeating the btf fields.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50161",
"url": "https://www.suse.com/security/cve/CVE-2024-50161"
},
{
"category": "external",
"summary": "SUSE Bug 1233037 for CVE-2024-50161",
"url": "https://bugzilla.suse.com/1233037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50161"
},
{
"cve": "CVE-2024-50162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: devmap: provide rxq after redirect\n\nrxq contains a pointer to the device from where\nthe redirect happened. Currently, the BPF program\nthat was executed after a redirect via BPF_MAP_TYPE_DEVMAP*\ndoes not have it set.\n\nThis is particularly bad since accessing ingress_ifindex, e.g.\n\nSEC(\"xdp\")\nint prog(struct xdp_md *pkt)\n{\n return bpf_redirect_map(\u0026dev_redirect_map, 0, 0);\n}\n\nSEC(\"xdp/devmap\")\nint prog_after_redirect(struct xdp_md *pkt)\n{\n bpf_printk(\"ifindex %i\", pkt-\u003eingress_ifindex);\n return XDP_PASS;\n}\n\ndepends on access to rxq, so a NULL pointer gets dereferenced:\n\n\u003c1\u003e[ 574.475170] BUG: kernel NULL pointer dereference, address: 0000000000000000\n\u003c1\u003e[ 574.475188] #PF: supervisor read access in kernel mode\n\u003c1\u003e[ 574.475194] #PF: error_code(0x0000) - not-present page\n\u003c6\u003e[ 574.475199] PGD 0 P4D 0\n\u003c4\u003e[ 574.475207] Oops: Oops: 0000 [#1] PREEMPT SMP NOPTI\n\u003c4\u003e[ 574.475217] CPU: 4 UID: 0 PID: 217 Comm: kworker/4:1 Not tainted 6.11.0-rc5-reduced-00859-g780801200300 #23\n\u003c4\u003e[ 574.475226] Hardware name: Intel(R) Client Systems NUC13ANHi7/NUC13ANBi7, BIOS ANRPL357.0026.2023.0314.1458 03/14/2023\n\u003c4\u003e[ 574.475231] Workqueue: mld mld_ifc_work\n\u003c4\u003e[ 574.475247] RIP: 0010:bpf_prog_5e13354d9cf5018a_prog_after_redirect+0x17/0x3c\n\u003c4\u003e[ 574.475257] Code: cc cc cc cc cc cc cc 80 00 00 00 cc cc cc cc cc cc cc cc f3 0f 1e fa 0f 1f 44 00 00 66 90 55 48 89 e5 f3 0f 1e fa 48 8b 57 20 \u003c48\u003e 8b 52 00 8b 92 e0 00 00 00 48 bf f8 a6 d5 c4 5d a0 ff ff be 0b\n\u003c4\u003e[ 574.475263] RSP: 0018:ffffa62440280c98 EFLAGS: 00010206\n\u003c4\u003e[ 574.475269] RAX: ffffa62440280cd8 RBX: 0000000000000001 RCX: 0000000000000000\n\u003c4\u003e[ 574.475274] RDX: 0000000000000000 RSI: ffffa62440549048 RDI: ffffa62440280ce0\n\u003c4\u003e[ 574.475278] RBP: ffffa62440280c98 R08: 0000000000000002 R09: 0000000000000001\n\u003c4\u003e[ 574.475281] R10: ffffa05dc8b98000 R11: ffffa05f577fca40 R12: ffffa05dcab24000\n\u003c4\u003e[ 574.475285] R13: ffffa62440280ce0 R14: ffffa62440549048 R15: ffffa62440549000\n\u003c4\u003e[ 574.475289] FS: 0000000000000000(0000) GS:ffffa05f4f700000(0000) knlGS:0000000000000000\n\u003c4\u003e[ 574.475294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n\u003c4\u003e[ 574.475298] CR2: 0000000000000000 CR3: 000000025522e000 CR4: 0000000000f50ef0\n\u003c4\u003e[ 574.475303] PKRU: 55555554\n\u003c4\u003e[ 574.475306] Call Trace:\n\u003c4\u003e[ 574.475313] \u003cIRQ\u003e\n\u003c4\u003e[ 574.475318] ? __die+0x23/0x70\n\u003c4\u003e[ 574.475329] ? page_fault_oops+0x180/0x4c0\n\u003c4\u003e[ 574.475339] ? skb_pp_cow_data+0x34c/0x490\n\u003c4\u003e[ 574.475346] ? kmem_cache_free+0x257/0x280\n\u003c4\u003e[ 574.475357] ? exc_page_fault+0x67/0x150\n\u003c4\u003e[ 574.475368] ? asm_exc_page_fault+0x26/0x30\n\u003c4\u003e[ 574.475381] ? bpf_prog_5e13354d9cf5018a_prog_after_redirect+0x17/0x3c\n\u003c4\u003e[ 574.475386] bq_xmit_all+0x158/0x420\n\u003c4\u003e[ 574.475397] __dev_flush+0x30/0x90\n\u003c4\u003e[ 574.475407] veth_poll+0x216/0x250 [veth]\n\u003c4\u003e[ 574.475421] __napi_poll+0x28/0x1c0\n\u003c4\u003e[ 574.475430] net_rx_action+0x32d/0x3a0\n\u003c4\u003e[ 574.475441] handle_softirqs+0xcb/0x2c0\n\u003c4\u003e[ 574.475451] do_softirq+0x40/0x60\n\u003c4\u003e[ 574.475458] \u003c/IRQ\u003e\n\u003c4\u003e[ 574.475461] \u003cTASK\u003e\n\u003c4\u003e[ 574.475464] __local_bh_enable_ip+0x66/0x70\n\u003c4\u003e[ 574.475471] __dev_queue_xmit+0x268/0xe40\n\u003c4\u003e[ 574.475480] ? selinux_ip_postroute+0x213/0x420\n\u003c4\u003e[ 574.475491] ? alloc_skb_with_frags+0x4a/0x1d0\n\u003c4\u003e[ 574.475502] ip6_finish_output2+0x2be/0x640\n\u003c4\u003e[ 574.475512] ? nf_hook_slow+0x42/0xf0\n\u003c4\u003e[ 574.475521] ip6_finish_output+0x194/0x300\n\u003c4\u003e[ 574.475529] ? __pfx_ip6_finish_output+0x10/0x10\n\u003c4\u003e[ 574.475538] mld_sendpack+0x17c/0x240\n\u003c4\u003e[ 574.475548] mld_ifc_work+0x192/0x410\n\u003c4\u003e[ 574.475557] process_one_work+0x15d/0x380\n\u003c4\u003e[ 574.475566] worker_thread+0x29d/0x3a0\n\u003c4\u003e[ 574.475573] ? __pfx_worker_thread+0x10/0x10\n\u003c4\u003e[ 574.475580] ? __pfx_worker_thread+0x10/0x10\n\u003c4\u003e[ 574.475587] kthread+0xcd/0x100\n\u003c4\u003e[ 574.475597] ? __pfx_kthread+0x10/0x10\n\u003c4\u003e[ 574.475606] ret_from_fork+0x31/0x50\n\u003c4\u003e[ 574.475615] ? __pfx_kthread+0x10/0x10\n\u003c4\u003e[ 574.475623] ret_from_fork_asm+0x1a/0x\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50162",
"url": "https://www.suse.com/security/cve/CVE-2024-50162"
},
{
"category": "external",
"summary": "SUSE Bug 1233075 for CVE-2024-50162",
"url": "https://bugzilla.suse.com/1233075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50162"
},
{
"cve": "CVE-2024-50163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Make sure internal and UAPI bpf_redirect flags don\u0027t overlap\n\nThe bpf_redirect_info is shared between the SKB and XDP redirect paths,\nand the two paths use the same numeric flag values in the ri-\u003eflags\nfield (specifically, BPF_F_BROADCAST == BPF_F_NEXTHOP). This means that\nif skb bpf_redirect_neigh() is used with a non-NULL params argument and,\nsubsequently, an XDP redirect is performed using the same\nbpf_redirect_info struct, the XDP path will get confused and end up\ncrashing, which syzbot managed to trigger.\n\nWith the stack-allocated bpf_redirect_info, the structure is no longer\nshared between the SKB and XDP paths, so the crash doesn\u0027t happen\nanymore. However, different code paths using identically-numbered flag\nvalues in the same struct field still seems like a bit of a mess, so\nthis patch cleans that up by moving the flag definitions together and\nredefining the three flags in BPF_F_REDIRECT_INTERNAL to not overlap\nwith the flags used for XDP. It also adds a BUILD_BUG_ON() check to make\nsure the overlap is not re-introduced by mistake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50163",
"url": "https://www.suse.com/security/cve/CVE-2024-50163"
},
{
"category": "external",
"summary": "SUSE Bug 1233098 for CVE-2024-50163",
"url": "https://bugzilla.suse.com/1233098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50163"
},
{
"cve": "CVE-2024-50164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix overloading of MEM_UNINIT\u0027s meaning\n\nLonial reported an issue in the BPF verifier where check_mem_size_reg()\nhas the following code:\n\n if (!tnum_is_const(reg-\u003evar_off))\n /* For unprivileged variable accesses, disable raw\n * mode so that the program is required to\n * initialize all the memory that the helper could\n * just partially fill up.\n */\n meta = NULL;\n\nThis means that writes are not checked when the register containing the\nsize of the passed buffer has not a fixed size. Through this bug, a BPF\nprogram can write to a map which is marked as read-only, for example,\n.rodata global maps.\n\nThe problem is that MEM_UNINIT\u0027s initial meaning that \"the passed buffer\nto the BPF helper does not need to be initialized\" which was added back\nin commit 435faee1aae9 (\"bpf, verifier: add ARG_PTR_TO_RAW_STACK type\")\ngot overloaded over time with \"the passed buffer is being written to\".\n\nThe problem however is that checks such as the above which were added later\nvia 06c1c049721a (\"bpf: allow helpers access to variable memory\") set meta\nto NULL in order force the user to always initialize the passed buffer to\nthe helper. Due to the current double meaning of MEM_UNINIT, this bypasses\nverifier write checks to the memory (not boundary checks though) and only\nassumes the latter memory is read instead.\n\nFix this by reverting MEM_UNINIT back to its original meaning, and having\nMEM_WRITE as an annotation to BPF helpers in order to then trigger the\nBPF verifier checks for writing to memory.\n\nSome notes: check_arg_pair_ok() ensures that for ARG_CONST_SIZE{,_OR_ZERO}\nwe can access fn-\u003earg_type[arg - 1] since it must contain a preceding\nARG_PTR_TO_MEM. For check_mem_reg() the meta argument can be removed\naltogether since we do check both BPF_READ and BPF_WRITE. Same for the\nequivalent check_kfunc_mem_size_reg().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50164",
"url": "https://www.suse.com/security/cve/CVE-2024-50164"
},
{
"category": "external",
"summary": "SUSE Bug 1233099 for CVE-2024-50164",
"url": "https://bugzilla.suse.com/1233099"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50164"
},
{
"cve": "CVE-2024-50165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50165"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Preserve param-\u003estring when parsing mount options\n\nIn bpf_parse_param(), keep the value of param-\u003estring intact so it can\nbe freed later. Otherwise, the kmalloc area pointed to by param-\u003estring\nwill be leaked as shown below:\n\nunreferenced object 0xffff888118c46d20 (size 8):\n comm \"new_name\", pid 12109, jiffies 4295580214\n hex dump (first 8 bytes):\n 61 6e 79 00 38 c9 5c 7e any.8.\\~\n backtrace (crc e1b7f876):\n [\u003c00000000c6848ac7\u003e] kmemleak_alloc+0x4b/0x80\n [\u003c00000000de9f7d00\u003e] __kmalloc_node_track_caller_noprof+0x36e/0x4a0\n [\u003c000000003e29b886\u003e] memdup_user+0x32/0xa0\n [\u003c0000000007248326\u003e] strndup_user+0x46/0x60\n [\u003c0000000035b3dd29\u003e] __x64_sys_fsconfig+0x368/0x3d0\n [\u003c0000000018657927\u003e] x64_sys_call+0xff/0x9f0\n [\u003c00000000c0cabc95\u003e] do_syscall_64+0x3b/0xc0\n [\u003c000000002f331597\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50165",
"url": "https://www.suse.com/security/cve/CVE-2024-50165"
},
{
"category": "external",
"summary": "SUSE Bug 1233031 for CVE-2024-50165",
"url": "https://bugzilla.suse.com/1233031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50165"
},
{
"cve": "CVE-2024-50166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsl/fman: Fix refcount handling of fman-related devices\n\nIn mac_probe() there are multiple calls to of_find_device_by_node(),\nfman_bind() and fman_port_bind() which takes references to of_dev-\u003edev.\nNot all references taken by these calls are released later on error path\nin mac_probe() and in mac_remove() which lead to reference leaks.\n\nAdd references release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50166",
"url": "https://www.suse.com/security/cve/CVE-2024-50166"
},
{
"category": "external",
"summary": "SUSE Bug 1233050 for CVE-2024-50166",
"url": "https://bugzilla.suse.com/1233050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50166"
},
{
"cve": "CVE-2024-50167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: fix potential memory leak in be_xmit()\n\nThe be_xmit() returns NETDEV_TX_OK without freeing skb\nin case of be_xmit_enqueue() fails, add dev_kfree_skb_any() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50167",
"url": "https://www.suse.com/security/cve/CVE-2024-50167"
},
{
"category": "external",
"summary": "SUSE Bug 1233049 for CVE-2024-50167",
"url": "https://bugzilla.suse.com/1233049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50167"
},
{
"cve": "CVE-2024-50168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sun3_82586: fix potential memory leak in sun3_82586_send_packet()\n\nThe sun3_82586_send_packet() returns NETDEV_TX_OK without freeing skb\nin case of skb-\u003elen being too long, add dev_kfree_skb() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50168",
"url": "https://www.suse.com/security/cve/CVE-2024-50168"
},
{
"category": "external",
"summary": "SUSE Bug 1233059 for CVE-2024-50168",
"url": "https://bugzilla.suse.com/1233059"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50168"
},
{
"cve": "CVE-2024-50170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bcmasp: fix potential memory leak in bcmasp_xmit()\n\nThe bcmasp_xmit() returns NETDEV_TX_OK without freeing skb\nin case of mapping fails, add dev_kfree_skb() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50170",
"url": "https://www.suse.com/security/cve/CVE-2024-50170"
},
{
"category": "external",
"summary": "SUSE Bug 1233030 for CVE-2024-50170",
"url": "https://bugzilla.suse.com/1233030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50170"
},
{
"cve": "CVE-2024-50171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: systemport: fix potential memory leak in bcm_sysport_xmit()\n\nThe bcm_sysport_xmit() returns NETDEV_TX_OK without freeing skb\nin case of dma_map_single() fails, add dev_kfree_skb() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50171",
"url": "https://www.suse.com/security/cve/CVE-2024-50171"
},
{
"category": "external",
"summary": "SUSE Bug 1233057 for CVE-2024-50171",
"url": "https://bugzilla.suse.com/1233057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50171"
},
{
"cve": "CVE-2024-50172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix a possible memory leak\n\nIn bnxt_re_setup_chip_ctx() when bnxt_qplib_map_db_bar() fails\ndriver is not freeing the memory allocated for \"rdev-\u003echip_ctx\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50172",
"url": "https://www.suse.com/security/cve/CVE-2024-50172"
},
{
"category": "external",
"summary": "SUSE Bug 1233029 for CVE-2024-50172",
"url": "https://bugzilla.suse.com/1233029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50172"
},
{
"cve": "CVE-2024-50173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Fix access to uninitialized variable in tick_ctx_cleanup()\n\nThe group variable can\u0027t be used to retrieve ptdev in our second loop,\nbecause it points to the previously iterated list_head, not a valid\ngroup. Get the ptdev object from the scheduler instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50173",
"url": "https://www.suse.com/security/cve/CVE-2024-50173"
},
{
"category": "external",
"summary": "SUSE Bug 1233094 for CVE-2024-50173",
"url": "https://bugzilla.suse.com/1233094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50173"
},
{
"cve": "CVE-2024-50174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Fix race when converting group handle to group object\n\nXArray provides it\u0027s own internal lock which protects the internal array\nwhen entries are being simultaneously added and removed. However there\nis still a race between retrieving the pointer from the XArray and\nincrementing the reference count.\n\nTo avoid this race simply hold the internal XArray lock when\nincrementing the reference count, this ensures there cannot be a racing\ncall to xa_erase().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50174",
"url": "https://www.suse.com/security/cve/CVE-2024-50174"
},
{
"category": "external",
"summary": "SUSE Bug 1233093 for CVE-2024-50174",
"url": "https://bugzilla.suse.com/1233093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50174"
},
{
"cve": "CVE-2024-50175",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50175"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: qcom: camss: Remove use_count guard in stop_streaming\n\nThe use_count check was introduced so that multiple concurrent Raw Data\nInterfaces RDIs could be driven by different virtual channels VCs on the\nCSIPHY input driving the video pipeline.\n\nThis is an invalid use of use_count though as use_count pertains to the\nnumber of times a video entity has been opened by user-space not the number\nof active streams.\n\nIf use_count and stream-on count don\u0027t agree then stop_streaming() will\nbreak as is currently the case and has become apparent when using CAMSS\nwith libcamera\u0027s released softisp 0.3.\n\nThe use of use_count like this is a bit hacky and right now breaks regular\nusage of CAMSS for a single stream case. Stopping qcam results in the splat\nbelow, and then it cannot be started again and any attempts to do so fails\nwith -EBUSY.\n\n[ 1265.509831] WARNING: CPU: 5 PID: 919 at drivers/media/common/videobuf2/videobuf2-core.c:2183 __vb2_queue_cancel+0x230/0x2c8 [videobuf2_common]\n...\n[ 1265.510630] Call trace:\n[ 1265.510636] __vb2_queue_cancel+0x230/0x2c8 [videobuf2_common]\n[ 1265.510648] vb2_core_streamoff+0x24/0xcc [videobuf2_common]\n[ 1265.510660] vb2_ioctl_streamoff+0x5c/0xa8 [videobuf2_v4l2]\n[ 1265.510673] v4l_streamoff+0x24/0x30 [videodev]\n[ 1265.510707] __video_do_ioctl+0x190/0x3f4 [videodev]\n[ 1265.510732] video_usercopy+0x304/0x8c4 [videodev]\n[ 1265.510757] video_ioctl2+0x18/0x34 [videodev]\n[ 1265.510782] v4l2_ioctl+0x40/0x60 [videodev]\n...\n[ 1265.510944] videobuf2_common: driver bug: stop_streaming operation is leaving buffer 0 in active state\n[ 1265.511175] videobuf2_common: driver bug: stop_streaming operation is leaving buffer 1 in active state\n[ 1265.511398] videobuf2_common: driver bug: stop_streaming operation is leaving buffer 2 in active st\n\nOne CAMSS specific way to handle multiple VCs on the same RDI might be:\n\n- Reference count each pipeline enable for CSIPHY, CSID, VFE and RDIx.\n- The video buffers are already associated with msm_vfeN_rdiX so\n release video buffers when told to do so by stop_streaming.\n- Only release the power-domains for the CSIPHY, CSID and VFE when\n their internal refcounts drop.\n\nEither way refusing to release video buffers based on use_count is\nerroneous and should be reverted. The silicon enabling code for selecting\nVCs is perfectly fine. Its a \"known missing feature\" that concurrent VCs\nwon\u0027t work with CAMSS right now.\n\nInitial testing with this code didn\u0027t show an error but, SoftISP and \"real\"\nusage with Google Hangouts breaks the upstream code pretty quickly, we need\nto do a partial revert and take another pass at VCs.\n\nThis commit partially reverts commit 89013969e232 (\"media: camss: sm8250:\nPipeline starting and stopping for multiple virtual channels\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50175",
"url": "https://www.suse.com/security/cve/CVE-2024-50175"
},
{
"category": "external",
"summary": "SUSE Bug 1233092 for CVE-2024-50175",
"url": "https://bugzilla.suse.com/1233092"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50175"
},
{
"cve": "CVE-2024-50176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50176"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nremoteproc: k3-r5: Fix error handling when power-up failed\n\nBy simply bailing out, the driver was violating its rule and internal\nassumptions that either both or no rproc should be initialized. E.g.,\nthis could cause the first core to be available but not the second one,\nleading to crashes on its shutdown later on while trying to dereference\nthat second instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50176",
"url": "https://www.suse.com/security/cve/CVE-2024-50176"
},
{
"category": "external",
"summary": "SUSE Bug 1233091 for CVE-2024-50176",
"url": "https://bugzilla.suse.com/1233091"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50176"
},
{
"cve": "CVE-2024-50177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50177"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix a UBSAN warning in DML2.1\n\nWhen programming phantom pipe, since cursor_width is explicity set to 0,\nthis causes calculation logic to trigger overflow for an unsigned int\ntriggering the kernel\u0027s UBSAN check as below:\n\n[ 40.962845] UBSAN: shift-out-of-bounds in /tmp/amd.EfpumTkO/amd/amdgpu/../display/dc/dml2/dml21/src/dml2_core/dml2_core_dcn4_calcs.c:3312:34\n[ 40.962849] shift exponent 4294967170 is too large for 32-bit type \u0027unsigned int\u0027\n[ 40.962852] CPU: 1 PID: 1670 Comm: gnome-shell Tainted: G W OE 6.5.0-41-generic #41~22.04.2-Ubuntu\n[ 40.962854] Hardware name: Gigabyte Technology Co., Ltd. X670E AORUS PRO X/X670E AORUS PRO X, BIOS F21 01/10/2024\n[ 40.962856] Call Trace:\n[ 40.962857] \u003cTASK\u003e\n[ 40.962860] dump_stack_lvl+0x48/0x70\n[ 40.962870] dump_stack+0x10/0x20\n[ 40.962872] __ubsan_handle_shift_out_of_bounds+0x1ac/0x360\n[ 40.962878] calculate_cursor_req_attributes.cold+0x1b/0x28 [amdgpu]\n[ 40.963099] dml_core_mode_support+0x6b91/0x16bc0 [amdgpu]\n[ 40.963327] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.963331] ? CalculateWatermarksMALLUseAndDRAMSpeedChangeSupport+0x18b8/0x2790 [amdgpu]\n[ 40.963534] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.963536] ? dml_core_mode_support+0xb3db/0x16bc0 [amdgpu]\n[ 40.963730] dml2_core_calcs_mode_support_ex+0x2c/0x90 [amdgpu]\n[ 40.963906] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.963909] ? dml2_core_calcs_mode_support_ex+0x2c/0x90 [amdgpu]\n[ 40.964078] core_dcn4_mode_support+0x72/0xbf0 [amdgpu]\n[ 40.964247] dml2_top_optimization_perform_optimization_phase+0x1d3/0x2a0 [amdgpu]\n[ 40.964420] dml2_build_mode_programming+0x23d/0x750 [amdgpu]\n[ 40.964587] dml21_validate+0x274/0x770 [amdgpu]\n[ 40.964761] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.964763] ? resource_append_dpp_pipes_for_plane_composition+0x27c/0x3b0 [amdgpu]\n[ 40.964942] dml2_validate+0x504/0x750 [amdgpu]\n[ 40.965117] ? dml21_copy+0x95/0xb0 [amdgpu]\n[ 40.965291] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.965295] dcn401_validate_bandwidth+0x4e/0x70 [amdgpu]\n[ 40.965491] update_planes_and_stream_state+0x38d/0x5c0 [amdgpu]\n[ 40.965672] update_planes_and_stream_v3+0x52/0x1e0 [amdgpu]\n[ 40.965845] ? srso_alias_return_thunk+0x5/0x7f\n[ 40.965849] dc_update_planes_and_stream+0x71/0xb0 [amdgpu]\n\nFix this by adding a guard for checking cursor width before triggering\nthe size calculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50177",
"url": "https://www.suse.com/security/cve/CVE-2024-50177"
},
{
"category": "external",
"summary": "SUSE Bug 1233115 for CVE-2024-50177",
"url": "https://bugzilla.suse.com/1233115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50177"
},
{
"cve": "CVE-2024-50178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: loongson3: Use raw_smp_processor_id() in do_service_request()\n\nUse raw_smp_processor_id() instead of plain smp_processor_id() in\ndo_service_request(), otherwise we may get some errors with the driver\nenabled:\n\n BUG: using smp_processor_id() in preemptible [00000000] code: (udev-worker)/208\n caller is loongson3_cpufreq_probe+0x5c/0x250 [loongson3_cpufreq]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50178",
"url": "https://www.suse.com/security/cve/CVE-2024-50178"
},
{
"category": "external",
"summary": "SUSE Bug 1233121 for CVE-2024-50178",
"url": "https://bugzilla.suse.com/1233121"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50178"
},
{
"cve": "CVE-2024-50179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: remove the incorrect Fw reference check when dirtying pages\n\nWhen doing the direct-io reads it will also try to mark pages dirty,\nbut for the read path it won\u0027t hold the Fw caps and there is case\nwill it get the Fw reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50179",
"url": "https://www.suse.com/security/cve/CVE-2024-50179"
},
{
"category": "external",
"summary": "SUSE Bug 1233123 for CVE-2024-50179",
"url": "https://bugzilla.suse.com/1233123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50179"
},
{
"cve": "CVE-2024-50180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: sisfb: Fix strbuf array overflow\n\nThe values of the variables xres and yres are placed in strbuf.\nThese variables are obtained from strbuf1.\nThe strbuf1 array contains digit characters\nand a space if the array contains non-digit characters.\nThen, when executing sprintf(strbuf, \"%ux%ux8\", xres, yres);\nmore than 16 bytes will be written to strbuf.\nIt is suggested to increase the size of the strbuf array to 24.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50180",
"url": "https://www.suse.com/security/cve/CVE-2024-50180"
},
{
"category": "external",
"summary": "SUSE Bug 1233125 for CVE-2024-50180",
"url": "https://bugzilla.suse.com/1233125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50180"
},
{
"cve": "CVE-2024-50181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50181"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50181",
"url": "https://www.suse.com/security/cve/CVE-2024-50181"
},
{
"category": "external",
"summary": "SUSE Bug 1233127 for CVE-2024-50181",
"url": "https://bugzilla.suse.com/1233127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50181"
},
{
"cve": "CVE-2024-50182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50182"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsecretmem: disable memfd_secret() if arch cannot set direct map\n\nReturn -ENOSYS from memfd_secret() syscall if !can_set_direct_map(). This\nis the case for example on some arm64 configurations, where marking 4k\nPTEs in the direct map not present can only be done if the direct map is\nset up at 4k granularity in the first place (as ARM\u0027s break-before-make\nsemantics do not easily allow breaking apart large/gigantic pages).\n\nMore precisely, on arm64 systems with !can_set_direct_map(),\nset_direct_map_invalid_noflush() is a no-op, however it returns success\n(0) instead of an error. This means that memfd_secret will seemingly\n\"work\" (e.g. syscall succeeds, you can mmap the fd and fault in pages),\nbut it does not actually achieve its goal of removing its memory from the\ndirect map.\n\nNote that with this patch, memfd_secret() will start erroring on systems\nwhere can_set_direct_map() returns false (arm64 with\nCONFIG_RODATA_FULL_DEFAULT_ENABLED=n, CONFIG_DEBUG_PAGEALLOC=n and\nCONFIG_KFENCE=n), but that still seems better than the current silent\nfailure. Since CONFIG_RODATA_FULL_DEFAULT_ENABLED defaults to \u0027y\u0027, most\narm64 systems actually have a working memfd_secret() and aren\u0027t be\naffected.\n\nFrom going through the iterations of the original memfd_secret patch\nseries, it seems that disabling the syscall in these scenarios was the\nintended behavior [1] (preferred over having\nset_direct_map_invalid_noflush return an error as that would result in\nSIGBUSes at page-fault time), however the check for it got dropped between\nv16 [2] and v17 [3], when secretmem moved away from CMA allocations.\n\n[1]: https://lore.kernel.org/lkml/20201124164930.GK8537@kernel.org/\n[2]: https://lore.kernel.org/lkml/20210121122723.3446-11-rppt@kernel.org/#t\n[3]: https://lore.kernel.org/lkml/20201125092208.12544-10-rppt@kernel.org/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50182",
"url": "https://www.suse.com/security/cve/CVE-2024-50182"
},
{
"category": "external",
"summary": "SUSE Bug 1233129 for CVE-2024-50182",
"url": "https://bugzilla.suse.com/1233129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50182"
},
{
"cve": "CVE-2024-50183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance\n\nDeleting an NPIV instance requires all fabric ndlps to be released before\nan NPIV\u0027s resources can be torn down. Failure to release fabric ndlps\nbeforehand opens kref imbalance race conditions. Fix by forcing the DA_ID\nto complete synchronously with usage of wait_queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50183",
"url": "https://www.suse.com/security/cve/CVE-2024-50183"
},
{
"category": "external",
"summary": "SUSE Bug 1233130 for CVE-2024-50183",
"url": "https://bugzilla.suse.com/1233130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50183"
},
{
"cve": "CVE-2024-50184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50184"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_pmem: Check device status before requesting flush\n\nIf a pmem device is in a bad status, the driver side could wait for\nhost ack forever in virtio_pmem_flush(), causing the system to hang.\n\nSo add a status check in the beginning of virtio_pmem_flush() to return\nearly if the device is not activated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50184",
"url": "https://www.suse.com/security/cve/CVE-2024-50184"
},
{
"category": "external",
"summary": "SUSE Bug 1233135 for CVE-2024-50184",
"url": "https://bugzilla.suse.com/1233135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50184"
},
{
"cve": "CVE-2024-50185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: handle consistently DSS corruption\n\nBugged peer implementation can send corrupted DSS options, consistently\nhitting a few warning in the data path. Use DEBUG_NET assertions, to\navoid the splat on some builds and handle consistently the error, dumping\nrelated MIBs and performing fallback and/or reset according to the\nsubflow type.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50185",
"url": "https://www.suse.com/security/cve/CVE-2024-50185"
},
{
"category": "external",
"summary": "SUSE Bug 1233109 for CVE-2024-50185",
"url": "https://bugzilla.suse.com/1233109"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50185"
},
{
"cve": "CVE-2024-50186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50186"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: explicitly clear the sk pointer, when pf-\u003ecreate fails\n\nWe have recently noticed the exact same KASAN splat as in commit\n6cd4a78d962b (\"net: do not leave a dangling sk pointer, when socket\ncreation fails\"). The problem is that commit did not fully address the\nproblem, as some pf-\u003ecreate implementations do not use sk_common_release\nin their error paths.\n\nFor example, we can use the same reproducer as in the above commit, but\nchanging ping to arping. arping uses AF_PACKET socket and if packet_create\nfails, it will just sk_free the allocated sk object.\n\nWhile we could chase all the pf-\u003ecreate implementations and make sure they\nNULL the freed sk object on error from the socket, we can\u0027t guarantee\nfuture protocols will not make the same mistake.\n\nSo it is easier to just explicitly NULL the sk pointer upon return from\npf-\u003ecreate in __sock_create. We do know that pf-\u003ecreate always releases the\nallocated sk object on error, so if the pointer is not NULL, it is\ndefinitely dangling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50186",
"url": "https://www.suse.com/security/cve/CVE-2024-50186"
},
{
"category": "external",
"summary": "SUSE Bug 1233110 for CVE-2024-50186",
"url": "https://bugzilla.suse.com/1233110"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50186"
},
{
"cve": "CVE-2024-50187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: Stop the active perfmon before being destroyed\n\nUpon closing the file descriptor, the active performance monitor is not\nstopped. Although all perfmons are destroyed in `vc4_perfmon_close_file()`,\nthe active performance monitor\u0027s pointer (`vc4-\u003eactive_perfmon`) is still\nretained.\n\nIf we open a new file descriptor and submit a few jobs with performance\nmonitors, the driver will attempt to stop the active performance monitor\nusing the stale pointer in `vc4-\u003eactive_perfmon`. However, this pointer\nis no longer valid because the previous process has already terminated,\nand all performance monitors associated with it have been destroyed and\nfreed.\n\nTo fix this, when the active performance monitor belongs to a given\nprocess, explicitly stop it before destroying and freeing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50187",
"url": "https://www.suse.com/security/cve/CVE-2024-50187"
},
{
"category": "external",
"summary": "SUSE Bug 1233108 for CVE-2024-50187",
"url": "https://bugzilla.suse.com/1233108"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50187"
},
{
"cve": "CVE-2024-50188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: dp83869: fix memory corruption when enabling fiber\n\nWhen configuring the fiber port, the DP83869 PHY driver incorrectly\ncalls linkmode_set_bit() with a bit mask (1 \u003c\u003c 10) rather than a bit\nnumber (10). This corrupts some other memory location -- in case of\narm64 the priv pointer in the same structure.\n\nSince the advertising flags are updated from supported at the end of the\nfunction the incorrect line isn\u0027t needed at all and can be removed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50188",
"url": "https://www.suse.com/security/cve/CVE-2024-50188"
},
{
"category": "external",
"summary": "SUSE Bug 1233107 for CVE-2024-50188",
"url": "https://bugzilla.suse.com/1233107"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50188"
},
{
"cve": "CVE-2024-50189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50189"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: Switch to device-managed dmam_alloc_coherent()\n\nUsing the device-managed version allows to simplify clean-up in probe()\nerror path.\n\nAdditionally, this device-managed ensures proper cleanup, which helps to\nresolve memory errors, page faults, btrfs going read-only, and btrfs\ndisk corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50189",
"url": "https://www.suse.com/security/cve/CVE-2024-50189"
},
{
"category": "external",
"summary": "SUSE Bug 1233105 for CVE-2024-50189",
"url": "https://bugzilla.suse.com/1233105"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50189"
},
{
"cve": "CVE-2024-50190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix memleak in ice_init_tx_topology()\n\nFix leak of the FW blob (DDP pkg).\n\nMake ice_cfg_tx_topo() const-correct, so ice_init_tx_topology() can avoid\ncopying whole FW blob. Copy just the topology section, and only when\nneeded. Reuse the buffer allocated for the read of the current topology.\n\nThis was found by kmemleak, with the following trace for each PF:\n [\u003cffffffff8761044d\u003e] kmemdup_noprof+0x1d/0x50\n [\u003cffffffffc0a0a480\u003e] ice_init_ddp_config+0x100/0x220 [ice]\n [\u003cffffffffc0a0da7f\u003e] ice_init_dev+0x6f/0x200 [ice]\n [\u003cffffffffc0a0dc49\u003e] ice_init+0x29/0x560 [ice]\n [\u003cffffffffc0a10c1d\u003e] ice_probe+0x21d/0x310 [ice]\n\nConstify ice_cfg_tx_topo() @buf parameter.\nThis cascades further down to few more functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50190",
"url": "https://www.suse.com/security/cve/CVE-2024-50190"
},
{
"category": "external",
"summary": "SUSE Bug 1233090 for CVE-2024-50190",
"url": "https://bugzilla.suse.com/1233090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50190"
},
{
"cve": "CVE-2024-50191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: don\u0027t set SB_RDONLY after filesystem errors\n\nWhen the filesystem is mounted with errors=remount-ro, we were setting\nSB_RDONLY flag to stop all filesystem modifications. We knew this misses\nproper locking (sb-\u003es_umount) and does not go through proper filesystem\nremount procedure but it has been the way this worked since early ext2\ndays and it was good enough for catastrophic situation damage\nmitigation. Recently, syzbot has found a way (see link) to trigger\nwarnings in filesystem freezing because the code got confused by\nSB_RDONLY changing under its hands. Since these days we set\nEXT4_FLAGS_SHUTDOWN on the superblock which is enough to stop all\nfilesystem modifications, modifying SB_RDONLY shouldn\u0027t be needed. So\nstop doing that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50191",
"url": "https://www.suse.com/security/cve/CVE-2024-50191"
},
{
"category": "external",
"summary": "SUSE Bug 1233101 for CVE-2024-50191",
"url": "https://bugzilla.suse.com/1233101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50191"
},
{
"cve": "CVE-2024-50192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/gic-v4: Don\u0027t allow a VMOVP on a dying VPE\n\nKunkun Jiang reported that there is a small window of opportunity for\nuserspace to force a change of affinity for a VPE while the VPE has already\nbeen unmapped, but the corresponding doorbell interrupt still visible in\n/proc/irq/.\n\nPlug the race by checking the value of vmapp_count, which tracks whether\nthe VPE is mapped ot not, and returning an error in this case.\n\nThis involves making vmapp_count common to both GICv4.1 and its v4.0\nancestor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50192",
"url": "https://www.suse.com/security/cve/CVE-2024-50192"
},
{
"category": "external",
"summary": "SUSE Bug 1233106 for CVE-2024-50192",
"url": "https://bugzilla.suse.com/1233106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50192"
},
{
"cve": "CVE-2024-50193",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50193"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/entry_32: Clear CPU buffers after register restore in NMI return\n\nCPU buffers are currently cleared after call to exc_nmi, but before\nregister state is restored. This may be okay for MDS mitigation but not for\nRDFS. Because RDFS mitigation requires CPU buffers to be cleared when\nregisters don\u0027t have any sensitive data.\n\nMove CLEAR_CPU_BUFFERS after RESTORE_ALL_NMI.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50193",
"url": "https://www.suse.com/security/cve/CVE-2024-50193"
},
{
"category": "external",
"summary": "SUSE Bug 1233102 for CVE-2024-50193",
"url": "https://bugzilla.suse.com/1233102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50193"
},
{
"cve": "CVE-2024-50194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: probes: Fix uprobes for big-endian kernels\n\nThe arm64 uprobes code is broken for big-endian kernels as it doesn\u0027t\nconvert the in-memory instruction encoding (which is always\nlittle-endian) into the kernel\u0027s native endianness before analyzing and\nsimulating instructions. This may result in a few distinct problems:\n\n* The kernel may may erroneously reject probing an instruction which can\n safely be probed.\n\n* The kernel may erroneously erroneously permit stepping an\n instruction out-of-line when that instruction cannot be stepped\n out-of-line safely.\n\n* The kernel may erroneously simulate instruction incorrectly dur to\n interpretting the byte-swapped encoding.\n\nThe endianness mismatch isn\u0027t caught by the compiler or sparse because:\n\n* The arch_uprobe::{insn,ixol} fields are encoded as arrays of u8, so\n the compiler and sparse have no idea these contain a little-endian\n 32-bit value. The core uprobes code populates these with a memcpy()\n which similarly does not handle endianness.\n\n* While the uprobe_opcode_t type is an alias for __le32, both\n arch_uprobe_analyze_insn() and arch_uprobe_skip_sstep() cast from u8[]\n to the similarly-named probe_opcode_t, which is an alias for u32.\n Hence there is no endianness conversion warning.\n\nFix this by changing the arch_uprobe::{insn,ixol} fields to __le32 and\nadding the appropriate __le32_to_cpu() conversions prior to consuming\nthe instruction encoding. The core uprobes copies these fields as opaque\nranges of bytes, and so is unaffected by this change.\n\nAt the same time, remove MAX_UINSN_BYTES and consistently use\nAARCH64_INSN_SIZE for clarity.\n\nTested with the following:\n\n| #include \u003cstdio.h\u003e\n| #include \u003cstdbool.h\u003e\n|\n| #define noinline __attribute__((noinline))\n|\n| static noinline void *adrp_self(void)\n| {\n| void *addr;\n|\n| asm volatile(\n| \" adrp %x0, adrp_self\\n\"\n| \" add %x0, %x0, :lo12:adrp_self\\n\"\n| : \"=r\" (addr));\n| }\n|\n|\n| int main(int argc, char *argv)\n| {\n| void *ptr = adrp_self();\n| bool equal = (ptr == adrp_self);\n|\n| printf(\"adrp_self =\u003e %p\\n\"\n| \"adrp_self() =\u003e %p\\n\"\n| \"%s\\n\",\n| adrp_self, ptr, equal ? \"EQUAL\" : \"NOT EQUAL\");\n|\n| return 0;\n| }\n\n.... where the adrp_self() function was compiled to:\n\n| 00000000004007e0 \u003cadrp_self\u003e:\n| 4007e0: 90000000 adrp x0, 400000 \u003c__ehdr_start\u003e\n| 4007e4: 911f8000 add x0, x0, #0x7e0\n| 4007e8: d65f03c0 ret\n\nBefore this patch, the ADRP is not recognized, and is assumed to be\nsteppable, resulting in corruption of the result:\n\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL\n| # echo \u0027p /root/adrp-self:0x007e0\u0027 \u003e /sys/kernel/tracing/uprobe_events\n| # echo 1 \u003e /sys/kernel/tracing/events/uprobes/enable\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0xffffffffff7e0\n| NOT EQUAL\n\nAfter this patch, the ADRP is correctly recognized and simulated:\n\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL\n| #\n| # echo \u0027p /root/adrp-self:0x007e0\u0027 \u003e /sys/kernel/tracing/uprobe_events\n| # echo 1 \u003e /sys/kernel/tracing/events/uprobes/enable\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50194",
"url": "https://www.suse.com/security/cve/CVE-2024-50194"
},
{
"category": "external",
"summary": "SUSE Bug 1233111 for CVE-2024-50194",
"url": "https://bugzilla.suse.com/1233111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50194"
},
{
"cve": "CVE-2024-50195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nposix-clock: Fix missing timespec64 check in pc_clock_settime()\n\nAs Andrew pointed out, it will make sense that the PTP core\nchecked timespec64 struct\u0027s tv_sec and tv_nsec range before calling\nptp-\u003einfo-\u003esettime64().\n\nAs the man manual of clock_settime() said, if tp.tv_sec is negative or\ntp.tv_nsec is outside the range [0..999,999,999], it should return EINVAL,\nwhich include dynamic clocks which handles PTP clock, and the condition is\nconsistent with timespec64_valid(). As Thomas suggested, timespec64_valid()\nonly check the timespec is valid, but not ensure that the time is\nin a valid range, so check it ahead using timespec64_valid_strict()\nin pc_clock_settime() and return -EINVAL if not valid.\n\nThere are some drivers that use tp-\u003etv_sec and tp-\u003etv_nsec directly to\nwrite registers without validity checks and assume that the higher layer\nhas checked it, which is dangerous and will benefit from this, such as\nhclge_ptp_settime(), igb_ptp_settime_i210(), _rcar_gen4_ptp_settime(),\nand some drivers can remove the checks of itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50195",
"url": "https://www.suse.com/security/cve/CVE-2024-50195"
},
{
"category": "external",
"summary": "SUSE Bug 1233103 for CVE-2024-50195",
"url": "https://bugzilla.suse.com/1233103"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50195"
},
{
"cve": "CVE-2024-50196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: ocelot: fix system hang on level based interrupts\n\nThe current implementation only calls chained_irq_enter() and\nchained_irq_exit() if it detects pending interrupts.\n\n```\nfor (i = 0; i \u003c info-\u003estride; i++) {\n\turegmap_read(info-\u003emap, id_reg + 4 * i, \u0026reg);\n\tif (!reg)\n\t\tcontinue;\n\n\tchained_irq_enter(parent_chip, desc);\n```\n\nHowever, in case of GPIO pin configured in level mode and the parent\ncontroller configured in edge mode, GPIO interrupt might be lowered by the\nhardware. In the result, if the interrupt is short enough, the parent\ninterrupt is still pending while the GPIO interrupt is cleared;\nchained_irq_enter() never gets called and the system hangs trying to\nservice the parent interrupt.\n\nMoving chained_irq_enter() and chained_irq_exit() outside the for loop\nensures that they are called even when GPIO interrupt is lowered by the\nhardware.\n\nThe similar code with chained_irq_enter() / chained_irq_exit() functions\nwrapping interrupt checking loop may be found in many other drivers:\n```\ngrep -r -A 10 chained_irq_enter drivers/pinctrl\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50196",
"url": "https://www.suse.com/security/cve/CVE-2024-50196"
},
{
"category": "external",
"summary": "SUSE Bug 1233113 for CVE-2024-50196",
"url": "https://bugzilla.suse.com/1233113"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50196"
},
{
"cve": "CVE-2024-50197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50197"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: intel: platform: fix error path in device_for_each_child_node()\n\nThe device_for_each_child_node() loop requires calls to\nfwnode_handle_put() upon early returns to decrement the refcount of\nthe child node and avoid leaking memory if that error path is triggered.\n\nThere is one early returns within that loop in\nintel_platform_pinctrl_prepare_community(), but fwnode_handle_put() is\nmissing.\n\nInstead of adding the missing call, the scoped version of the loop can\nbe used to simplify the code and avoid mistakes in the future if new\nearly returns are added, as the child node is only used for parsing, and\nit is never assigned.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50197",
"url": "https://www.suse.com/security/cve/CVE-2024-50197"
},
{
"category": "external",
"summary": "SUSE Bug 1233089 for CVE-2024-50197",
"url": "https://bugzilla.suse.com/1233089"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50197"
},
{
"cve": "CVE-2024-50198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: veml6030: fix IIO device retrieval from embedded device\n\nThe dev pointer that is received as an argument in the\nin_illuminance_period_available_show function references the device\nembedded in the IIO device, not in the i2c client.\n\ndev_to_iio_dev() must be used to accessthe right data. The current\nimplementation leads to a segmentation fault on every attempt to read\nthe attribute because indio_dev gets a NULL assignment.\n\nThis bug has been present since the first appearance of the driver,\napparently since the last version (V6) before getting applied. A\nconstant attribute was used until then, and the last modifications might\nhave not been tested again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50198",
"url": "https://www.suse.com/security/cve/CVE-2024-50198"
},
{
"category": "external",
"summary": "SUSE Bug 1233100 for CVE-2024-50198",
"url": "https://bugzilla.suse.com/1233100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50198"
},
{
"cve": "CVE-2024-50199",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50199"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swapfile: skip HugeTLB pages for unuse_vma\n\nI got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The\nproblem can be reproduced by the following steps:\n\n 1. Allocate an anonymous 1GB HugeTLB and some other anonymous memory.\n 2. Swapout the above anonymous memory.\n 3. run swapoff and we will get a bad pud error in kernel message:\n\n mm/pgtable-generic.c:42: bad pud 00000000743d215d(84000001400000e7)\n\nWe can tell that pud_clear_bad is called by pud_none_or_clear_bad in\nunuse_pud_range() by ftrace. And therefore the HugeTLB pages will never\nbe freed because we lost it from page table. We can skip HugeTLB pages\nfor unuse_vma to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50199",
"url": "https://www.suse.com/security/cve/CVE-2024-50199"
},
{
"category": "external",
"summary": "SUSE Bug 1233112 for CVE-2024-50199",
"url": "https://bugzilla.suse.com/1233112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50199"
},
{
"cve": "CVE-2024-50200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmaple_tree: correct tree corruption on spanning store\n\nPatch series \"maple_tree: correct tree corruption on spanning store\", v3.\n\nThere has been a nasty yet subtle maple tree corruption bug that appears\nto have been in existence since the inception of the algorithm.\n\nThis bug seems far more likely to happen since commit f8d112a4e657\n(\"mm/mmap: avoid zeroing vma tree in mmap_region()\"), which is the point\nat which reports started to be submitted concerning this bug.\n\nWe were made definitely aware of the bug thanks to the kind efforts of\nBert Karwatzki who helped enormously in my being able to track this down\nand identify the cause of it.\n\nThe bug arises when an attempt is made to perform a spanning store across\ntwo leaf nodes, where the right leaf node is the rightmost child of the\nshared parent, AND the store completely consumes the right-mode node.\n\nThis results in mas_wr_spanning_store() mitakenly duplicating the new and\nexisting entries at the maximum pivot within the range, and thus maple\ntree corruption.\n\nThe fix patch corrects this by detecting this scenario and disallowing the\nmistaken duplicate copy.\n\nThe fix patch commit message goes into great detail as to how this occurs.\n\nThis series also includes a test which reliably reproduces the issue, and\nasserts that the fix works correctly.\n\nBert has kindly tested the fix and confirmed it resolved his issues. Also\nMikhail Gavrilov kindly reported what appears to be precisely the same\nbug, which this fix should also resolve.\n\n\nThis patch (of 2):\n\nThere has been a subtle bug present in the maple tree implementation from\nits inception.\n\nThis arises from how stores are performed - when a store occurs, it will\noverwrite overlapping ranges and adjust the tree as necessary to\naccommodate this.\n\nA range may always ultimately span two leaf nodes. In this instance we\nwalk the two leaf nodes, determine which elements are not overwritten to\nthe left and to the right of the start and end of the ranges respectively\nand then rebalance the tree to contain these entries and the newly\ninserted one.\n\nThis kind of store is dubbed a \u0027spanning store\u0027 and is implemented by\nmas_wr_spanning_store().\n\nIn order to reach this stage, mas_store_gfp() invokes\nmas_wr_preallocate(), mas_wr_store_type() and mas_wr_walk() in turn to\nwalk the tree and update the object (mas) to traverse to the location\nwhere the write should be performed, determining its store type.\n\nWhen a spanning store is required, this function returns false stopping at\nthe parent node which contains the target range, and mas_wr_store_type()\nmarks the mas-\u003estore_type as wr_spanning_store to denote this fact.\n\nWhen we go to perform the store in mas_wr_spanning_store(), we first\ndetermine the elements AFTER the END of the range we wish to store (that\nis, to the right of the entry to be inserted) - we do this by walking to\nthe NEXT pivot in the tree (i.e. r_mas.last + 1), starting at the node we\nhave just determined contains the range over which we intend to write.\n\nWe then turn our attention to the entries to the left of the entry we are\ninserting, whose state is represented by l_mas, and copy these into a \u0027big\nnode\u0027, which is a special node which contains enough slots to contain two\nleaf node\u0027s worth of data.\n\nWe then copy the entry we wish to store immediately after this - the copy\nand the insertion of the new entry is performed by mas_store_b_node().\n\nAfter this we copy the elements to the right of the end of the range which\nwe are inserting, if we have not exceeded the length of the node (i.e. \nr_mas.offset \u003c= r_mas.end).\n\nHerein lies the bug - under very specific circumstances, this logic can\nbreak and corrupt the maple tree.\n\nConsider the following tree:\n\nHeight\n 0 Root Node\n / \\\n pivot = 0xffff / \\ pivot = ULONG_MAX\n / \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50200",
"url": "https://www.suse.com/security/cve/CVE-2024-50200"
},
{
"category": "external",
"summary": "SUSE Bug 1233088 for CVE-2024-50200",
"url": "https://bugzilla.suse.com/1233088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50200"
},
{
"cve": "CVE-2024-50201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: Fix encoder-\u003epossible_clones\n\nInclude the encoder itself in its possible_clones bitmask.\nIn the past nothing validated that drivers were populating\npossible_clones correctly, but that changed in commit\n74d2aacbe840 (\"drm: Validate encoder-\u003epossible_clones\").\nLooks like radeon never got the memo and is still not\nfollowing the rules 100% correctly.\n\nThis results in some warnings during driver initialization:\nBogus possible_clones: [ENCODER:46:TV-46] possible_clones=0x4 (full encoder mask=0x7)\nWARNING: CPU: 0 PID: 170 at drivers/gpu/drm/drm_mode_config.c:615 drm_mode_config_validate+0x113/0x39c\n...\n\n(cherry picked from commit 3b6e7d40649c0d75572039aff9d0911864c689db)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50201",
"url": "https://www.suse.com/security/cve/CVE-2024-50201"
},
{
"category": "external",
"summary": "SUSE Bug 1233104 for CVE-2024-50201",
"url": "https://bugzilla.suse.com/1233104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50201"
},
{
"cve": "CVE-2024-50205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50205"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()\n\nThe step variable is initialized to zero. It is changed in the loop,\nbut if it\u0027s not changed it will remain zero. Add a variable check\nbefore the division.\n\nThe observed behavior was introduced by commit 826b5de90c0b\n(\"ALSA: firewire-lib: fix insufficient PCM rule for period/buffer size\"),\nand it is difficult to show that any of the interval parameters will\nsatisfy the snd_interval_test() condition with data from the\namdtp_rate_table[] table.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50205",
"url": "https://www.suse.com/security/cve/CVE-2024-50205"
},
{
"category": "external",
"summary": "SUSE Bug 1233293 for CVE-2024-50205",
"url": "https://bugzilla.suse.com/1233293"
},
{
"category": "external",
"summary": "SUSE Bug 1233294 for CVE-2024-50205",
"url": "https://bugzilla.suse.com/1233294"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50205"
},
{
"cve": "CVE-2024-50206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_eth_soc: fix memory corruption during fq dma init\n\nThe loop responsible for allocating up to MTK_FQ_DMA_LENGTH buffers must\nonly touch as many descriptors, otherwise it ends up corrupting unrelated\nmemory. Fix the loop iteration count accordingly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50206",
"url": "https://www.suse.com/security/cve/CVE-2024-50206"
},
{
"category": "external",
"summary": "SUSE Bug 1233288 for CVE-2024-50206",
"url": "https://bugzilla.suse.com/1233288"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50206"
},
{
"cve": "CVE-2024-50207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nring-buffer: Fix reader locking when changing the sub buffer order\n\nThe function ring_buffer_subbuf_order_set() updates each\nring_buffer_per_cpu and installs new sub buffers that match the requested\npage order. This operation may be invoked concurrently with readers that\nrely on some of the modified data, such as the head bit (RB_PAGE_HEAD), or\nthe ring_buffer_per_cpu.pages and reader_page pointers. However, no\nexclusive access is acquired by ring_buffer_subbuf_order_set(). Modifying\nthe mentioned data while a reader also operates on them can then result in\nincorrect memory access and various crashes.\n\nFix the problem by taking the reader_lock when updating a specific\nring_buffer_per_cpu in ring_buffer_subbuf_order_set().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50207",
"url": "https://www.suse.com/security/cve/CVE-2024-50207"
},
{
"category": "external",
"summary": "SUSE Bug 1233122 for CVE-2024-50207",
"url": "https://bugzilla.suse.com/1233122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50207"
},
{
"cve": "CVE-2024-50208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages\n\nAvoid memory corruption while setting up Level-2 PBL pages for the non MR\nresources when num_pages \u003e 256K.\n\nThere will be a single PDE page address (contiguous pages in the case of \u003e\nPAGE_SIZE), but, current logic assumes multiple pages, leading to invalid\nmemory access after 256K PBL entries in the PDE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50208",
"url": "https://www.suse.com/security/cve/CVE-2024-50208"
},
{
"category": "external",
"summary": "SUSE Bug 1233117 for CVE-2024-50208",
"url": "https://bugzilla.suse.com/1233117"
},
{
"category": "external",
"summary": "SUSE Bug 1233118 for CVE-2024-50208",
"url": "https://bugzilla.suse.com/1233118"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50208"
},
{
"cve": "CVE-2024-50209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Add a check for memory allocation\n\n__alloc_pbl() can return error when memory allocation fails.\nDriver is not checking the status on one of the instances.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50209",
"url": "https://www.suse.com/security/cve/CVE-2024-50209"
},
{
"category": "external",
"summary": "SUSE Bug 1233114 for CVE-2024-50209",
"url": "https://bugzilla.suse.com/1233114"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50209"
},
{
"cve": "CVE-2024-50210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nposix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime()\n\nIf get_clock_desc() succeeds, it calls fget() for the clockid\u0027s fd,\nand get the clk-\u003erwsem read lock, so the error path should release\nthe lock to make the lock balance and fput the clockid\u0027s fd to make\nthe refcount balance and release the fd related resource.\n\nHowever the below commit left the error path locked behind resulting in\nunbalanced locking. Check timespec64_valid_strict() before\nget_clock_desc() to fix it, because the \"ts\" is not changed\nafter that.\n\n[pabeni@redhat.com: fixed commit message typo]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50210",
"url": "https://www.suse.com/security/cve/CVE-2024-50210"
},
{
"category": "external",
"summary": "SUSE Bug 1233097 for CVE-2024-50210",
"url": "https://bugzilla.suse.com/1233097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50210"
},
{
"cve": "CVE-2024-50211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50211",
"url": "https://www.suse.com/security/cve/CVE-2024-50211"
},
{
"category": "external",
"summary": "SUSE Bug 1233096 for CVE-2024-50211",
"url": "https://bugzilla.suse.com/1233096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50211"
},
{
"cve": "CVE-2024-50212",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50212"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib: alloc_tag_module_unload must wait for pending kfree_rcu calls\n\nBen Greear reports following splat:\n ------------[ cut here ]------------\n net/netfilter/nf_nat_core.c:1114 module nf_nat func:nf_nat_register_fn has 256 allocated at module unload\n WARNING: CPU: 1 PID: 10421 at lib/alloc_tag.c:168 alloc_tag_module_unload+0x22b/0x3f0\n Modules linked in: nf_nat(-) btrfs ufs qnx4 hfsplus hfs minix vfat msdos fat\n...\n Hardware name: Default string Default string/SKYBAY, BIOS 5.12 08/04/2020\n RIP: 0010:alloc_tag_module_unload+0x22b/0x3f0\n codetag_unload_module+0x19b/0x2a0\n ? codetag_load_module+0x80/0x80\n\nnf_nat module exit calls kfree_rcu on those addresses, but the free\noperation is likely still pending by the time alloc_tag checks for leaks.\n\nWait for outstanding kfree_rcu operations to complete before checking\nresolves this warning.\n\nReproducer:\nunshare -n iptables-nft -t nat -A PREROUTING -p tcp\ngrep nf_nat /proc/allocinfo # will list 4 allocations\nrmmod nft_chain_nat\nrmmod nf_nat # will WARN.\n\n[akpm@linux-foundation.org: add comment]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50212",
"url": "https://www.suse.com/security/cve/CVE-2024-50212"
},
{
"category": "external",
"summary": "SUSE Bug 1233173 for CVE-2024-50212",
"url": "https://bugzilla.suse.com/1233173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50212"
},
{
"cve": "CVE-2024-50213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tests: hdmi: Fix memory leaks in drm_display_mode_from_cea_vic()\n\nmodprobe drm_hdmi_state_helper_test and then rmmod it, the following\nmemory leak occurs.\n\nThe `mode` allocated in drm_mode_duplicate() called by\ndrm_display_mode_from_cea_vic() is not freed, which cause the memory leak:\n\n\tunreferenced object 0xffffff80ccd18100 (size 128):\n\t comm \"kunit_try_catch\", pid 1851, jiffies 4295059695\n\t hex dump (first 32 bytes):\n\t 57 62 00 00 80 02 90 02 f0 02 20 03 00 00 e0 01 Wb........ .....\n\t ea 01 ec 01 0d 02 00 00 0a 00 00 00 00 00 00 00 ................\n\t backtrace (crc c2f1aa95):\n\t [\u003c000000000f10b11b\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c000000001cd4cf73\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c00000000f1f3cffa\u003e] drm_mode_duplicate+0x44/0x19c\n\t [\u003c000000008cbeef13\u003e] drm_display_mode_from_cea_vic+0x88/0x98\n\t [\u003c0000000019daaacf\u003e] 0xffffffedc11ae69c\n\t [\u003c000000000aad0f85\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c00000000a9210bac\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c000000000a0b2e9e\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000bd668858\u003e] ret_from_fork+0x10/0x20\n\t......\n\nFree `mode` by using drm_kunit_display_mode_from_cea_vic()\nto fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50213",
"url": "https://www.suse.com/security/cve/CVE-2024-50213"
},
{
"category": "external",
"summary": "SUSE Bug 1233174 for CVE-2024-50213",
"url": "https://bugzilla.suse.com/1233174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50213"
},
{
"cve": "CVE-2024-50214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/connector: hdmi: Fix memory leak in drm_display_mode_from_cea_vic()\n\nmodprobe drm_connector_test and then rmmod drm_connector_test,\nthe following memory leak occurs.\n\nThe `mode` allocated in drm_mode_duplicate() called by\ndrm_display_mode_from_cea_vic() is not freed, which cause the memory leak:\n\n\tunreferenced object 0xffffff80cb0ee400 (size 128):\n\t comm \"kunit_try_catch\", pid 1948, jiffies 4294950339\n\t hex dump (first 32 bytes):\n\t 14 44 02 00 80 07 d8 07 04 08 98 08 00 00 38 04 .D............8.\n\t 3c 04 41 04 65 04 00 00 05 00 00 00 00 00 00 00 \u003c.A.e...........\n\t backtrace (crc 90e9585c):\n\t [\u003c00000000ec42e3d7\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c00000000d0ef055a\u003e] __kmalloc_cache_noprof+0x26c/0x2f4\n\t [\u003c00000000c2062161\u003e] drm_mode_duplicate+0x44/0x19c\n\t [\u003c00000000f96c74aa\u003e] drm_display_mode_from_cea_vic+0x88/0x98\n\t [\u003c00000000d8f2c8b4\u003e] 0xffffffdc982a4868\n\t [\u003c000000005d164dbc\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c000000006fb23398\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c000000006ea56ca0\u003e] kthread+0x2e8/0x374\n\t [\u003c000000000676063f\u003e] ret_from_fork+0x10/0x20\n\t......\n\nFree `mode` by using drm_kunit_display_mode_from_cea_vic()\nto fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50214",
"url": "https://www.suse.com/security/cve/CVE-2024-50214"
},
{
"category": "external",
"summary": "SUSE Bug 1233177 for CVE-2024-50214",
"url": "https://bugzilla.suse.com/1233177"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50214"
},
{
"cve": "CVE-2024-50215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-auth: assign dh_key to NULL after kfree_sensitive\n\nctrl-\u003edh_key might be used across multiple calls to nvmet_setup_dhgroup()\nfor the same controller. So it\u0027s better to nullify it after release on\nerror path in order to avoid double free later in nvmet_destroy_auth().\n\nFound by Linux Verification Center (linuxtesting.org) with Svace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50215",
"url": "https://www.suse.com/security/cve/CVE-2024-50215"
},
{
"category": "external",
"summary": "SUSE Bug 1233189 for CVE-2024-50215",
"url": "https://bugzilla.suse.com/1233189"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50215"
},
{
"cve": "CVE-2024-50216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50216"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix finding a last resort AG in xfs_filestream_pick_ag\n\nWhen the main loop in xfs_filestream_pick_ag fails to find a suitable\nAG it tries to just pick the online AG. But the loop for that uses\nargs-\u003epag as loop iterator while the later code expects pag to be\nset. Fix this by reusing the max_pag case for this last resort, and\nalso add a check for impossible case of no AG just to make sure that\nthe uninitialized pag doesn\u0027t even escape in theory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50216",
"url": "https://www.suse.com/security/cve/CVE-2024-50216"
},
{
"category": "external",
"summary": "SUSE Bug 1233179 for CVE-2024-50216",
"url": "https://bugzilla.suse.com/1233179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50216"
},
{
"cve": "CVE-2024-50217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free of block device file in __btrfs_free_extra_devids()\n\nMounting btrfs from two images (which have the same one fsid and two\ndifferent dev_uuids) in certain executing order may trigger an UAF for\nvariable \u0027device-\u003ebdev_file\u0027 in __btrfs_free_extra_devids(). And\nfollowing are the details:\n\n1. Attach image_1 to loop0, attach image_2 to loop1, and scan btrfs\n devices by ioctl(BTRFS_IOC_SCAN_DEV):\n\n / btrfs_device_1 \u2192 loop0\n fs_device\n \\ btrfs_device_2 \u2192 loop1\n2. mount /dev/loop0 /mnt\n btrfs_open_devices\n btrfs_device_1-\u003ebdev_file = btrfs_get_bdev_and_sb(loop0)\n btrfs_device_2-\u003ebdev_file = btrfs_get_bdev_and_sb(loop1)\n btrfs_fill_super\n open_ctree\n fail: btrfs_close_devices // -ENOMEM\n\t btrfs_close_bdev(btrfs_device_1)\n fput(btrfs_device_1-\u003ebdev_file)\n\t // btrfs_device_1-\u003ebdev_file is freed\n\t btrfs_close_bdev(btrfs_device_2)\n fput(btrfs_device_2-\u003ebdev_file)\n\n3. mount /dev/loop1 /mnt\n btrfs_open_devices\n btrfs_get_bdev_and_sb(\u0026bdev_file)\n // EIO, btrfs_device_1-\u003ebdev_file is not assigned,\n // which points to a freed memory area\n btrfs_device_2-\u003ebdev_file = btrfs_get_bdev_and_sb(loop1)\n btrfs_fill_super\n open_ctree\n btrfs_free_extra_devids\n if (btrfs_device_1-\u003ebdev_file)\n fput(btrfs_device_1-\u003ebdev_file) // UAF !\n\nFix it by setting \u0027device-\u003ebdev_file\u0027 as \u0027NULL\u0027 after closing the\nbtrfs_device in btrfs_close_one_device().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50217",
"url": "https://www.suse.com/security/cve/CVE-2024-50217"
},
{
"category": "external",
"summary": "SUSE Bug 1233194 for CVE-2024-50217",
"url": "https://bugzilla.suse.com/1233194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50217"
},
{
"cve": "CVE-2024-50218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: pass u64 to ocfs2_truncate_inline maybe overflow\n\nSyzbot reported a kernel BUG in ocfs2_truncate_inline. There are two\nreasons for this: first, the parameter value passed is greater than\nocfs2_max_inline_data_with_xattr, second, the start and end parameters of\nocfs2_truncate_inline are \"unsigned int\".\n\nSo, we need to add a sanity check for byte_start and byte_len right before\nocfs2_truncate_inline() in ocfs2_remove_inode_range(), if they are greater\nthan ocfs2_max_inline_data_with_xattr return -EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50218",
"url": "https://www.suse.com/security/cve/CVE-2024-50218"
},
{
"category": "external",
"summary": "SUSE Bug 1233191 for CVE-2024-50218",
"url": "https://bugzilla.suse.com/1233191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50218"
},
{
"cve": "CVE-2024-50220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50220"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfork: do not invoke uffd on fork if error occurs\n\nPatch series \"fork: do not expose incomplete mm on fork\".\n\nDuring fork we may place the virtual memory address space into an\ninconsistent state before the fork operation is complete.\n\nIn addition, we may encounter an error during the fork operation that\nindicates that the virtual memory address space is invalidated.\n\nAs a result, we should not be exposing it in any way to external machinery\nthat might interact with the mm or VMAs, machinery that is not designed to\ndeal with incomplete state.\n\nWe specifically update the fork logic to defer khugepaged and ksm to the\nend of the operation and only to be invoked if no error arose, and\ndisallow uffd from observing fork events should an error have occurred.\n\n\nThis patch (of 2):\n\nCurrently on fork we expose the virtual address space of a process to\nuserland unconditionally if uffd is registered in VMAs, regardless of\nwhether an error arose in the fork.\n\nThis is performed in dup_userfaultfd_complete() which is invoked\nunconditionally, and performs two duties - invoking registered handlers\nfor the UFFD_EVENT_FORK event via dup_fctx(), and clearing down\nuserfaultfd_fork_ctx objects established in dup_userfaultfd().\n\nThis is problematic, because the virtual address space may not yet be\ncorrectly initialised if an error arose.\n\nThe change in commit d24062914837 (\"fork: use __mt_dup() to duplicate\nmaple tree in dup_mmap()\") makes this more pertinent as we may be in a\nstate where entries in the maple tree are not yet consistent.\n\nWe address this by, on fork error, ensuring that we roll back state that\nwe would otherwise expect to clean up through the event being handled by\nuserland and perform the memory freeing duty otherwise performed by\ndup_userfaultfd_complete().\n\nWe do this by implementing a new function, dup_userfaultfd_fail(), which\nperforms the same loop, only decrementing reference counts.\n\nNote that we perform mmgrab() on the parent and child mm\u0027s, however\nuserfaultfd_ctx_put() will mmdrop() this once the reference count drops to\nzero, so we will avoid memory leaks correctly here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50220",
"url": "https://www.suse.com/security/cve/CVE-2024-50220"
},
{
"category": "external",
"summary": "SUSE Bug 1233175 for CVE-2024-50220",
"url": "https://bugzilla.suse.com/1233175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50220"
},
{
"cve": "CVE-2024-50221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50221"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: Vangogh: Fix kernel memory out of bounds write\n\nKASAN reports that the GPU metrics table allocated in\nvangogh_tables_init() is not large enough for the memset done in\nsmu_cmn_init_soft_gpu_metrics(). Condensed report follows:\n\n[ 33.861314] BUG: KASAN: slab-out-of-bounds in smu_cmn_init_soft_gpu_metrics+0x73/0x200 [amdgpu]\n[ 33.861799] Write of size 168 at addr ffff888129f59500 by task mangoapp/1067\n...\n[ 33.861808] CPU: 6 UID: 1000 PID: 1067 Comm: mangoapp Tainted: G W 6.12.0-rc4 #356 1a56f59a8b5182eeaf67eb7cb8b13594dd23b544\n[ 33.861816] Tainted: [W]=WARN\n[ 33.861818] Hardware name: Valve Galileo/Galileo, BIOS F7G0107 12/01/2023\n[ 33.861822] Call Trace:\n[ 33.861826] \u003cTASK\u003e\n[ 33.861829] dump_stack_lvl+0x66/0x90\n[ 33.861838] print_report+0xce/0x620\n[ 33.861853] kasan_report+0xda/0x110\n[ 33.862794] kasan_check_range+0xfd/0x1a0\n[ 33.862799] __asan_memset+0x23/0x40\n[ 33.862803] smu_cmn_init_soft_gpu_metrics+0x73/0x200 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.863306] vangogh_get_gpu_metrics_v2_4+0x123/0xad0 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.864257] vangogh_common_get_gpu_metrics+0xb0c/0xbc0 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.865682] amdgpu_dpm_get_gpu_metrics+0xcc/0x110 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.866160] amdgpu_get_gpu_metrics+0x154/0x2d0 [amdgpu 13b1bc364ec578808f676eba412c20eaab792779]\n[ 33.867135] dev_attr_show+0x43/0xc0\n[ 33.867147] sysfs_kf_seq_show+0x1f1/0x3b0\n[ 33.867155] seq_read_iter+0x3f8/0x1140\n[ 33.867173] vfs_read+0x76c/0xc50\n[ 33.867198] ksys_read+0xfb/0x1d0\n[ 33.867214] do_syscall_64+0x90/0x160\n...\n[ 33.867353] Allocated by task 378 on cpu 7 at 22.794876s:\n[ 33.867358] kasan_save_stack+0x33/0x50\n[ 33.867364] kasan_save_track+0x17/0x60\n[ 33.867367] __kasan_kmalloc+0x87/0x90\n[ 33.867371] vangogh_init_smc_tables+0x3f9/0x840 [amdgpu]\n[ 33.867835] smu_sw_init+0xa32/0x1850 [amdgpu]\n[ 33.868299] amdgpu_device_init+0x467b/0x8d90 [amdgpu]\n[ 33.868733] amdgpu_driver_load_kms+0x19/0xf0 [amdgpu]\n[ 33.869167] amdgpu_pci_probe+0x2d6/0xcd0 [amdgpu]\n[ 33.869608] local_pci_probe+0xda/0x180\n[ 33.869614] pci_device_probe+0x43f/0x6b0\n\nEmpirically we can confirm that the former allocates 152 bytes for the\ntable, while the latter memsets the 168 large block.\n\nRoot cause appears that when GPU metrics tables for v2_4 parts were added\nit was not considered to enlarge the table to fit.\n\nThe fix in this patch is rather \"brute force\" and perhaps later should be\ndone in a smarter way, by extracting and consolidating the part version to\nsize logic to a common helper, instead of brute forcing the largest\npossible allocation. Nevertheless, for now this works and fixes the out of\nbounds write.\n\nv2:\n * Drop impossible v3_0 case. (Mario)\n\n(cherry picked from commit 0880f58f9609f0200483a49429af0f050d281703)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50221",
"url": "https://www.suse.com/security/cve/CVE-2024-50221"
},
{
"category": "external",
"summary": "SUSE Bug 1233185 for CVE-2024-50221",
"url": "https://bugzilla.suse.com/1233185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50221"
},
{
"cve": "CVE-2024-50222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP\n\ngeneric/077 on x86_32 CONFIG_DEBUG_KMAP_LOCAL_FORCE_MAP=y with highmem,\non huge=always tmpfs, issues a warning and then hangs (interruptibly):\n\nWARNING: CPU: 5 PID: 3517 at mm/highmem.c:622 kunmap_local_indexed+0x62/0xc9\nCPU: 5 UID: 0 PID: 3517 Comm: cp Not tainted 6.12.0-rc4 #2\n...\ncopy_page_from_iter_atomic+0xa6/0x5ec\ngeneric_perform_write+0xf6/0x1b4\nshmem_file_write_iter+0x54/0x67\n\nFix copy_page_from_iter_atomic() by limiting it in that case\n(include/linux/skbuff.h skb_frag_must_loop() does similar).\n\nBut going forward, perhaps CONFIG_DEBUG_KMAP_LOCAL_FORCE_MAP is too\nsurprising, has outlived its usefulness, and should just be removed?",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50222",
"url": "https://www.suse.com/security/cve/CVE-2024-50222"
},
{
"category": "external",
"summary": "SUSE Bug 1233184 for CVE-2024-50222",
"url": "https://bugzilla.suse.com/1233184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50222"
},
{
"cve": "CVE-2024-50223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/numa: Fix the potential null pointer dereference in task_numa_work()\n\nWhen running stress-ng-vm-segv test, we found a null pointer dereference\nerror in task_numa_work(). Here is the backtrace:\n\n [323676.066985] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n ......\n [323676.067108] CPU: 35 PID: 2694524 Comm: stress-ng-vm-se\n ......\n [323676.067113] pstate: 23401009 (nzCv daif +PAN -UAO +TCO +DIT +SSBS BTYPE=--)\n [323676.067115] pc : vma_migratable+0x1c/0xd0\n [323676.067122] lr : task_numa_work+0x1ec/0x4e0\n [323676.067127] sp : ffff8000ada73d20\n [323676.067128] x29: ffff8000ada73d20 x28: 0000000000000000 x27: 000000003e89f010\n [323676.067130] x26: 0000000000080000 x25: ffff800081b5c0d8 x24: ffff800081b27000\n [323676.067133] x23: 0000000000010000 x22: 0000000104d18cc0 x21: ffff0009f7158000\n [323676.067135] x20: 0000000000000000 x19: 0000000000000000 x18: ffff8000ada73db8\n [323676.067138] x17: 0001400000000000 x16: ffff800080df40b0 x15: 0000000000000035\n [323676.067140] x14: ffff8000ada73cc8 x13: 1fffe0017cc72001 x12: ffff8000ada73cc8\n [323676.067142] x11: ffff80008001160c x10: ffff000be639000c x9 : ffff8000800f4ba4\n [323676.067145] x8 : ffff000810375000 x7 : ffff8000ada73974 x6 : 0000000000000001\n [323676.067147] x5 : 0068000b33e26707 x4 : 0000000000000001 x3 : ffff0009f7158000\n [323676.067149] x2 : 0000000000000041 x1 : 0000000000004400 x0 : 0000000000000000\n [323676.067152] Call trace:\n [323676.067153] vma_migratable+0x1c/0xd0\n [323676.067155] task_numa_work+0x1ec/0x4e0\n [323676.067157] task_work_run+0x78/0xd8\n [323676.067161] do_notify_resume+0x1ec/0x290\n [323676.067163] el0_svc+0x150/0x160\n [323676.067167] el0t_64_sync_handler+0xf8/0x128\n [323676.067170] el0t_64_sync+0x17c/0x180\n [323676.067173] Code: d2888001 910003fd f9000bf3 aa0003f3 (f9401000)\n [323676.067177] SMP: stopping secondary CPUs\n [323676.070184] Starting crashdump kernel...\n\nstress-ng-vm-segv in stress-ng is used to stress test the SIGSEGV error\nhandling function of the system, which tries to cause a SIGSEGV error on\nreturn from unmapping the whole address space of the child process.\n\nNormally this program will not cause kernel crashes. But before the\nmunmap system call returns to user mode, a potential task_numa_work()\nfor numa balancing could be added and executed. In this scenario, since the\nchild process has no vma after munmap, the vma_next() in task_numa_work()\nwill return a null pointer even if the vma iterator restarts from 0.\n\nRecheck the vma pointer before dereferencing it in task_numa_work().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50223",
"url": "https://www.suse.com/security/cve/CVE-2024-50223"
},
{
"category": "external",
"summary": "SUSE Bug 1233192 for CVE-2024-50223",
"url": "https://bugzilla.suse.com/1233192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50223"
},
{
"cve": "CVE-2024-50224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: spi-fsl-dspi: Fix crash when not using GPIO chip select\n\nAdd check for the return value of spi_get_csgpiod() to avoid passing a NULL\npointer to gpiod_direction_output(), preventing a crash when GPIO chip\nselect is not used.\n\nFix below crash:\n[ 4.251960] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n[ 4.260762] Mem abort info:\n[ 4.263556] ESR = 0x0000000096000004\n[ 4.267308] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 4.272624] SET = 0, FnV = 0\n[ 4.275681] EA = 0, S1PTW = 0\n[ 4.278822] FSC = 0x04: level 0 translation fault\n[ 4.283704] Data abort info:\n[ 4.286583] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 4.292074] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 4.297130] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 4.302445] [0000000000000000] user address but active_mm is swapper\n[ 4.308805] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 4.315072] Modules linked in:\n[ 4.318124] CPU: 2 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.12.0-rc4-next-20241023-00008-ga20ec42c5fc1 #359\n[ 4.328130] Hardware name: LS1046A QDS Board (DT)\n[ 4.332832] pstate: 40000005 (nZcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 4.339794] pc : gpiod_direction_output+0x34/0x5c\n[ 4.344505] lr : gpiod_direction_output+0x18/0x5c\n[ 4.349208] sp : ffff80008003b8f0\n[ 4.352517] x29: ffff80008003b8f0 x28: 0000000000000000 x27: ffffc96bcc7e9068\n[ 4.359659] x26: ffffc96bcc6e00b0 x25: ffffc96bcc598398 x24: ffff447400132810\n[ 4.366800] x23: 0000000000000000 x22: 0000000011e1a300 x21: 0000000000020002\n[ 4.373940] x20: 0000000000000000 x19: 0000000000000000 x18: ffffffffffffffff\n[ 4.381081] x17: ffff44740016e600 x16: 0000000500000003 x15: 0000000000000007\n[ 4.388221] x14: 0000000000989680 x13: 0000000000020000 x12: 000000000000001e\n[ 4.395362] x11: 0044b82fa09b5a53 x10: 0000000000000019 x9 : 0000000000000008\n[ 4.402502] x8 : 0000000000000002 x7 : 0000000000000007 x6 : 0000000000000000\n[ 4.409641] x5 : 0000000000000200 x4 : 0000000002000000 x3 : 0000000000000000\n[ 4.416781] x2 : 0000000000022202 x1 : 0000000000000000 x0 : 0000000000000000\n[ 4.423921] Call trace:\n[ 4.426362] gpiod_direction_output+0x34/0x5c (P)\n[ 4.431067] gpiod_direction_output+0x18/0x5c (L)\n[ 4.435771] dspi_setup+0x220/0x334",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50224",
"url": "https://www.suse.com/security/cve/CVE-2024-50224"
},
{
"category": "external",
"summary": "SUSE Bug 1233188 for CVE-2024-50224",
"url": "https://bugzilla.suse.com/1233188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50224"
},
{
"cve": "CVE-2024-50225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50225"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix error propagation of split bios\n\nThe purpose of btrfs_bbio_propagate_error() shall be propagating an error\nof split bio to its original btrfs_bio, and tell the error to the upper\nlayer. However, it\u0027s not working well on some cases.\n\n* Case 1. Immediate (or quick) end_bio with an error\n\nWhen btrfs sends btrfs_bio to mirrored devices, btrfs calls\nbtrfs_bio_end_io() when all the mirroring bios are completed. If that\nbtrfs_bio was split, it is from btrfs_clone_bioset and its end_io function\nis btrfs_orig_write_end_io. For this case, btrfs_bbio_propagate_error()\naccesses the orig_bbio\u0027s bio context to increase the error count.\n\nThat works well in most cases. However, if the end_io is called enough\nfast, orig_bbio\u0027s (remaining part after split) bio context may not be\nproperly set at that time. Since the bio context is set when the orig_bbio\n(the last btrfs_bio) is sent to devices, that might be too late for earlier\nsplit btrfs_bio\u0027s completion. That will result in NULL pointer\ndereference.\n\nThat bug is easily reproducible by running btrfs/146 on zoned devices [1]\nand it shows the following trace.\n\n[1] You need raid-stripe-tree feature as it create \"-d raid0 -m raid1\" FS.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000020\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 UID: 0 PID: 13 Comm: kworker/u32:1 Not tainted 6.11.0-rc7-BTRFS-ZNS+ #474\n Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n Workqueue: writeback wb_workfn (flush-btrfs-5)\n RIP: 0010:btrfs_bio_end_io+0xae/0xc0 [btrfs]\n BTRFS error (device dm-0): bdev /dev/mapper/error-test errs: wr 2, rd 0, flush 0, corrupt 0, gen 0\n RSP: 0018:ffffc9000006f248 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888005a7f080 RCX: ffffc9000006f1dc\n RDX: 0000000000000000 RSI: 000000000000000a RDI: ffff888005a7f080\n RBP: ffff888011dfc540 R08: 0000000000000000 R09: 0000000000000001\n R10: ffffffff82e508e0 R11: 0000000000000005 R12: ffff88800ddfbe58\n R13: ffff888005a7f080 R14: ffff888005a7f158 R15: ffff888005a7f158\n FS: 0000000000000000(0000) GS:ffff88803ea80000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000020 CR3: 0000000002e22006 CR4: 0000000000370ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x19/0x26\n ? page_fault_oops+0x13e/0x2b0\n ? _printk+0x58/0x73\n ? do_user_addr_fault+0x5f/0x750\n ? exc_page_fault+0x76/0x240\n ? asm_exc_page_fault+0x22/0x30\n ? btrfs_bio_end_io+0xae/0xc0 [btrfs]\n ? btrfs_log_dev_io_error+0x7f/0x90 [btrfs]\n btrfs_orig_write_end_io+0x51/0x90 [btrfs]\n dm_submit_bio+0x5c2/0xa50 [dm_mod]\n ? find_held_lock+0x2b/0x80\n ? blk_try_enter_queue+0x90/0x1e0\n __submit_bio+0xe0/0x130\n ? ktime_get+0x10a/0x160\n ? lockdep_hardirqs_on+0x74/0x100\n submit_bio_noacct_nocheck+0x199/0x410\n btrfs_submit_bio+0x7d/0x150 [btrfs]\n btrfs_submit_chunk+0x1a1/0x6d0 [btrfs]\n ? lockdep_hardirqs_on+0x74/0x100\n ? __folio_start_writeback+0x10/0x2c0\n btrfs_submit_bbio+0x1c/0x40 [btrfs]\n submit_one_bio+0x44/0x60 [btrfs]\n submit_extent_folio+0x13f/0x330 [btrfs]\n ? btrfs_set_range_writeback+0xa3/0xd0 [btrfs]\n extent_writepage_io+0x18b/0x360 [btrfs]\n extent_write_locked_range+0x17c/0x340 [btrfs]\n ? __pfx_end_bbio_data_write+0x10/0x10 [btrfs]\n run_delalloc_cow+0x71/0xd0 [btrfs]\n btrfs_run_delalloc_range+0x176/0x500 [btrfs]\n ? find_lock_delalloc_range+0x119/0x260 [btrfs]\n writepage_delalloc+0x2ab/0x480 [btrfs]\n extent_write_cache_pages+0x236/0x7d0 [btrfs]\n btrfs_writepages+0x72/0x130 [btrfs]\n do_writepages+0xd4/0x240\n ? find_held_lock+0x2b/0x80\n ? wbc_attach_and_unlock_inode+0x12c/0x290\n ? wbc_attach_and_unlock_inode+0x12c/0x29\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50225",
"url": "https://www.suse.com/security/cve/CVE-2024-50225"
},
{
"category": "external",
"summary": "SUSE Bug 1233193 for CVE-2024-50225",
"url": "https://bugzilla.suse.com/1233193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50225"
},
{
"cve": "CVE-2024-50226",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50226"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncxl/port: Fix use-after-free, permit out-of-order decoder shutdown\n\nIn support of investigating an initialization failure report [1],\ncxl_test was updated to register mock memory-devices after the mock\nroot-port/bus device had been registered. That led to cxl_test crashing\nwith a use-after-free bug with the following signature:\n\n cxl_port_attach_region: cxl region3: cxl_host_bridge.0:port3 decoder3.0 add: mem0:decoder7.0 @ 0 next: cxl_switch_uport.0 nr_eps: 1 nr_targets: 1\n cxl_port_attach_region: cxl region3: cxl_host_bridge.0:port3 decoder3.0 add: mem4:decoder14.0 @ 1 next: cxl_switch_uport.0 nr_eps: 2 nr_targets: 1\n cxl_port_setup_targets: cxl region3: cxl_switch_uport.0:port6 target[0] = cxl_switch_dport.0 for mem0:decoder7.0 @ 0\n1) cxl_port_setup_targets: cxl region3: cxl_switch_uport.0:port6 target[1] = cxl_switch_dport.4 for mem4:decoder14.0 @ 1\n [..]\n cxld_unregister: cxl decoder14.0:\n cxl_region_decode_reset: cxl_region region3:\n mock_decoder_reset: cxl_port port3: decoder3.0 reset\n2) mock_decoder_reset: cxl_port port3: decoder3.0: out of order reset, expected decoder3.1\n cxl_endpoint_decoder_release: cxl decoder14.0:\n [..]\n cxld_unregister: cxl decoder7.0:\n3) cxl_region_decode_reset: cxl_region region3:\n Oops: general protection fault, probably for non-canonical address 0x6b6b6b6b6b6b6bc3: 0000 [#1] PREEMPT SMP PTI\n [..]\n RIP: 0010:to_cxl_port+0x8/0x60 [cxl_core]\n [..]\n Call Trace:\n \u003cTASK\u003e\n cxl_region_decode_reset+0x69/0x190 [cxl_core]\n cxl_region_detach+0xe8/0x210 [cxl_core]\n cxl_decoder_kill_region+0x27/0x40 [cxl_core]\n cxld_unregister+0x5d/0x60 [cxl_core]\n\nAt 1) a region has been established with 2 endpoint decoders (7.0 and\n14.0). Those endpoints share a common switch-decoder in the topology\n(3.0). At teardown, 2), decoder14.0 is the first to be removed and hits\nthe \"out of order reset case\" in the switch decoder. The effect though\nis that region3 cleanup is aborted leaving it in-tact and\nreferencing decoder14.0. At 3) the second attempt to teardown region3\ntrips over the stale decoder14.0 object which has long since been\ndeleted.\n\nThe fix here is to recognize that the CXL specification places no\nmandate on in-order shutdown of switch-decoders, the driver enforces\nin-order allocation, and hardware enforces in-order commit. So, rather\nthan fail and leave objects dangling, always remove them.\n\nIn support of making cxl_region_decode_reset() always succeed,\ncxl_region_invalidate_memregion() failures are turned into warnings.\nCrashing the kernel is ok there since system integrity is at risk if\ncaches cannot be managed around physical address mutation events like\nCXL region destruction.\n\nA new device_for_each_child_reverse_from() is added to cleanup\nport-\u003ecommit_end after all dependent decoders have been disabled. In\nother words if decoders are allocated 0-\u003e1-\u003e2 and disabled 1-\u003e2-\u003e0 then\nport-\u003ecommit_end only decrements from 2 after 2 has been disabled, and\nit decrements all the way to zero since 1 was disabled previously.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50226",
"url": "https://www.suse.com/security/cve/CVE-2024-50226"
},
{
"category": "external",
"summary": "SUSE Bug 1233195 for CVE-2024-50226",
"url": "https://bugzilla.suse.com/1233195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50226"
},
{
"cve": "CVE-2024-50227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthunderbolt: Fix KASAN reported stack out-of-bounds read in tb_retimer_scan()\n\nKASAN reported following issue:\n\n BUG: KASAN: stack-out-of-bounds in tb_retimer_scan+0xffe/0x1550 [thunderbolt]\n Read of size 4 at addr ffff88810111fc1c by task kworker/u56:0/11\n CPU: 0 UID: 0 PID: 11 Comm: kworker/u56:0 Tainted: G U 6.11.0+ #1387\n Tainted: [U]=USER\n Workqueue: thunderbolt0 tb_handle_hotplug [thunderbolt]\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6c/0x90\n print_report+0xd1/0x630\n kasan_report+0xdb/0x110\n __asan_report_load4_noabort+0x14/0x20\n tb_retimer_scan+0xffe/0x1550 [thunderbolt]\n tb_scan_port+0xa6f/0x2060 [thunderbolt]\n tb_handle_hotplug+0x17b1/0x3080 [thunderbolt]\n process_one_work+0x626/0x1100\n worker_thread+0x6c8/0xfa0\n kthread+0x2c8/0x3a0\n ret_from_fork+0x3a/0x80\n ret_from_fork_asm+0x1a/0x30\n\nThis happens because the loop variable still gets incremented by one so\nmax becomes 3 instead of 2, and this makes the second loop read past the\nthe array declared on the stack.\n\nFix this by assigning to max directly in the loop body.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50227",
"url": "https://www.suse.com/security/cve/CVE-2024-50227"
},
{
"category": "external",
"summary": "SUSE Bug 1233181 for CVE-2024-50227",
"url": "https://bugzilla.suse.com/1233181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50227"
},
{
"cve": "CVE-2024-50228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50228"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50228",
"url": "https://www.suse.com/security/cve/CVE-2024-50228"
},
{
"category": "external",
"summary": "SUSE Bug 1233204 for CVE-2024-50228",
"url": "https://bugzilla.suse.com/1233204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-50228"
},
{
"cve": "CVE-2024-50229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential deadlock with newly created symlinks\n\nSyzbot reported that page_symlink(), called by nilfs_symlink(), triggers\nmemory reclamation involving the filesystem layer, which can result in\ncircular lock dependencies among the reader/writer semaphore\nnilfs-\u003ens_segctor_sem, s_writers percpu_rwsem (intwrite) and the\nfs_reclaim pseudo lock.\n\nThis is because after commit 21fc61c73c39 (\"don\u0027t put symlink bodies in\npagecache into highmem\"), the gfp flags of the page cache for symbolic\nlinks are overwritten to GFP_KERNEL via inode_nohighmem().\n\nThis is not a problem for symlinks read from the backing device, because\nthe __GFP_FS flag is dropped after inode_nohighmem() is called. However,\nwhen a new symlink is created with nilfs_symlink(), the gfp flags remain\noverwritten to GFP_KERNEL. Then, memory allocation called from\npage_symlink() etc. triggers memory reclamation including the FS layer,\nwhich may call nilfs_evict_inode() or nilfs_dirty_inode(). And these can\ncause a deadlock if they are called while nilfs-\u003ens_segctor_sem is held:\n\nFix this issue by dropping the __GFP_FS flag from the page cache GFP flags\nof newly created symlinks in the same way that nilfs_new_inode() and\n__nilfs_read_inode() do, as a workaround until we adopt nofs allocation\nscope consistently or improve the locking constraints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50229",
"url": "https://www.suse.com/security/cve/CVE-2024-50229"
},
{
"category": "external",
"summary": "SUSE Bug 1233205 for CVE-2024-50229",
"url": "https://bugzilla.suse.com/1233205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50229"
},
{
"cve": "CVE-2024-50230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix kernel bug due to missing clearing of checked flag\n\nSyzbot reported that in directory operations after nilfs2 detects\nfilesystem corruption and degrades to read-only,\n__block_write_begin_int(), which is called to prepare block writes, may\nfail the BUG_ON check for accesses exceeding the folio/page size,\ntriggering a kernel bug.\n\nThis was found to be because the \"checked\" flag of a page/folio was not\ncleared when it was discarded by nilfs2\u0027s own routine, which causes the\nsanity check of directory entries to be skipped when the directory\npage/folio is reloaded. So, fix that.\n\nThis was necessary when the use of nilfs2\u0027s own page discard routine was\napplied to more than just metadata files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50230",
"url": "https://www.suse.com/security/cve/CVE-2024-50230"
},
{
"category": "external",
"summary": "SUSE Bug 1233206 for CVE-2024-50230",
"url": "https://bugzilla.suse.com/1233206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50230"
},
{
"cve": "CVE-2024-50231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table()\n\nmodprobe iio-test-gts and rmmod it, then the following memory leak\noccurs:\n\n\tunreferenced object 0xffffff80c810be00 (size 64):\n\t comm \"kunit_try_catch\", pid 1654, jiffies 4294913981\n\t hex dump (first 32 bytes):\n\t 02 00 00 00 08 00 00 00 20 00 00 00 40 00 00 00 ........ ...@...\n\t 80 00 00 00 00 02 00 00 00 04 00 00 00 08 00 00 ................\n\t backtrace (crc a63d875e):\n\t [\u003c0000000028c1b3c2\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c000000001d6ecc87\u003e] __kmalloc_noprof+0x2bc/0x3c0\n\t [\u003c00000000393795c1\u003e] devm_iio_init_iio_gts+0x4b4/0x16f4\n\t [\u003c0000000071bb4b09\u003e] 0xffffffdf052a62e0\n\t [\u003c000000000315bc18\u003e] 0xffffffdf052a6488\n\t [\u003c00000000f9dc55b5\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c00000000175a3fd4\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000f505065d\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000bbfb0e5d\u003e] ret_from_fork+0x10/0x20\n\tunreferenced object 0xffffff80cbfe9e70 (size 16):\n\t comm \"kunit_try_catch\", pid 1658, jiffies 4294914015\n\t hex dump (first 16 bytes):\n\t 10 00 00 00 40 00 00 00 80 00 00 00 00 00 00 00 ....@...........\n\t backtrace (crc 857f0cb4):\n\t [\u003c0000000028c1b3c2\u003e] kmemleak_alloc+0x34/0x40\n\t [\u003c000000001d6ecc87\u003e] __kmalloc_noprof+0x2bc/0x3c0\n\t [\u003c00000000393795c1\u003e] devm_iio_init_iio_gts+0x4b4/0x16f4\n\t [\u003c0000000071bb4b09\u003e] 0xffffffdf052a62e0\n\t [\u003c000000007d089d45\u003e] 0xffffffdf052a6864\n\t [\u003c00000000f9dc55b5\u003e] kunit_try_run_case+0x13c/0x3ac\n\t [\u003c00000000175a3fd4\u003e] kunit_generic_run_threadfn_adapter+0x80/0xec\n\t [\u003c00000000f505065d\u003e] kthread+0x2e8/0x374\n\t [\u003c00000000bbfb0e5d\u003e] ret_from_fork+0x10/0x20\n\t......\n\nIt includes 5*5 times \"size 64\" memory leaks, which correspond to 5 times\ntest_init_iio_gain_scale() calls with gts_test_gains size 10 (10*size(int))\nand gts_test_itimes size 5. It also includes 5*1 times \"size 16\"\nmemory leak, which correspond to one time __test_init_iio_gain_scale()\ncall with gts_test_gains_gain_low size 3 (3*size(int)) and gts_test_itimes\nsize 5.\n\nThe reason is that the per_time_gains[i] is not freed which is allocated in\nthe \"gts-\u003enum_itime\" for loop in iio_gts_build_avail_scale_table().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50231",
"url": "https://www.suse.com/security/cve/CVE-2024-50231"
},
{
"category": "external",
"summary": "SUSE Bug 1233208 for CVE-2024-50231",
"url": "https://bugzilla.suse.com/1233208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50231"
},
{
"cve": "CVE-2024-50232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()\n\nIn the ad7124_write_raw() function, parameter val can potentially\nbe zero. This may lead to a division by zero when DIV_ROUND_CLOSEST()\nis called within ad7124_set_channel_odr(). The ad7124_write_raw()\nfunction is invoked through the sequence: iio_write_channel_raw() -\u003e\niio_write_channel_attribute() -\u003e iio_channel_write(), with no checks\nin place to ensure val is non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50232",
"url": "https://www.suse.com/security/cve/CVE-2024-50232"
},
{
"category": "external",
"summary": "SUSE Bug 1233209 for CVE-2024-50232",
"url": "https://bugzilla.suse.com/1233209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50232"
},
{
"cve": "CVE-2024-50233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg()\n\nIn the ad9832_write_frequency() function, clk_get_rate() might return 0.\nThis can lead to a division by zero when calling ad9832_calc_freqreg().\nThe check if (fout \u003e (clk_get_rate(st-\u003emclk) / 2)) does not protect\nagainst the case when fout is 0. The ad9832_write_frequency() function\nis called from ad9832_write(), and fout is derived from a text buffer,\nwhich can contain any value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50233",
"url": "https://www.suse.com/security/cve/CVE-2024-50233"
},
{
"category": "external",
"summary": "SUSE Bug 1233210 for CVE-2024-50233",
"url": "https://bugzilla.suse.com/1233210"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50233"
},
{
"cve": "CVE-2024-50234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlegacy: Clear stale interrupts before resuming device\n\niwl4965 fails upon resume from hibernation on my laptop. The reason\nseems to be a stale interrupt which isn\u0027t being cleared out before\ninterrupts are enabled. We end up with a race beween the resume\ntrying to bring things back up, and the restart work (queued form\nthe interrupt handler) trying to bring things down. Eventually\nthe whole thing blows up.\n\nFix the problem by clearing out any stale interrupts before\ninterrupts get enabled during resume.\n\nHere\u0027s a debug log of the indicent:\n[ 12.042589] ieee80211 phy0: il_isr ISR inta 0x00000080, enabled 0xaa00008b, fh 0x00000000\n[ 12.042625] ieee80211 phy0: il4965_irq_tasklet inta 0x00000080, enabled 0x00000000, fh 0x00000000\n[ 12.042651] iwl4965 0000:10:00.0: RF_KILL bit toggled to enable radio.\n[ 12.042653] iwl4965 0000:10:00.0: On demand firmware reload\n[ 12.042690] ieee80211 phy0: il4965_irq_tasklet End inta 0x00000000, enabled 0xaa00008b, fh 0x00000000, flags 0x00000282\n[ 12.052207] ieee80211 phy0: il4965_mac_start enter\n[ 12.052212] ieee80211 phy0: il_prep_station Add STA to driver ID 31: ff:ff:ff:ff:ff:ff\n[ 12.052244] ieee80211 phy0: il4965_set_hw_ready hardware ready\n[ 12.052324] ieee80211 phy0: il_apm_init Init card\u0027s basic functions\n[ 12.052348] ieee80211 phy0: il_apm_init L1 Enabled; Disabling L0S\n[ 12.055727] ieee80211 phy0: il4965_load_bsm Begin load bsm\n[ 12.056140] ieee80211 phy0: il4965_verify_bsm Begin verify bsm\n[ 12.058642] ieee80211 phy0: il4965_verify_bsm BSM bootstrap uCode image OK\n[ 12.058721] ieee80211 phy0: il4965_load_bsm BSM write complete, poll 1 iterations\n[ 12.058734] ieee80211 phy0: __il4965_up iwl4965 is coming up\n[ 12.058737] ieee80211 phy0: il4965_mac_start Start UP work done.\n[ 12.058757] ieee80211 phy0: __il4965_down iwl4965 is going down\n[ 12.058761] ieee80211 phy0: il_scan_cancel_timeout Scan cancel timeout\n[ 12.058762] ieee80211 phy0: il_do_scan_abort Not performing scan to abort\n[ 12.058765] ieee80211 phy0: il_clear_ucode_stations Clearing ucode stations in driver\n[ 12.058767] ieee80211 phy0: il_clear_ucode_stations No active stations found to be cleared\n[ 12.058819] ieee80211 phy0: _il_apm_stop Stop card, put in low power state\n[ 12.058827] ieee80211 phy0: _il_apm_stop_master stop master\n[ 12.058864] ieee80211 phy0: il4965_clear_free_frames 0 frames on pre-allocated heap on clear.\n[ 12.058869] ieee80211 phy0: Hardware restart was requested\n[ 16.132299] iwl4965 0000:10:00.0: START_ALIVE timeout after 4000ms.\n[ 16.132303] ------------[ cut here ]------------\n[ 16.132304] Hardware became unavailable upon resume. This could be a software issue prior to suspend or a hardware issue.\n[ 16.132338] WARNING: CPU: 0 PID: 181 at net/mac80211/util.c:1826 ieee80211_reconfig+0x8f/0x14b0 [mac80211]\n[ 16.132390] Modules linked in: ctr ccm sch_fq_codel xt_tcpudp xt_multiport xt_state iptable_filter iptable_nat nf_nat nf_conntrack nf_defrag_ipv4 ip_tables x_tables binfmt_misc joydev mousedev btusb btrtl btintel btbcm bluetooth ecdh_generic ecc iTCO_wdt i2c_dev iwl4965 iwlegacy coretemp snd_hda_codec_analog pcspkr psmouse mac80211 snd_hda_codec_generic libarc4 sdhci_pci cqhci sha256_generic sdhci libsha256 firewire_ohci snd_hda_intel snd_intel_dspcfg mmc_core snd_hda_codec snd_hwdep firewire_core led_class iosf_mbi snd_hda_core uhci_hcd lpc_ich crc_itu_t cfg80211 ehci_pci ehci_hcd snd_pcm usbcore mfd_core rfkill snd_timer snd usb_common soundcore video parport_pc parport intel_agp wmi intel_gtt backlight e1000e agpgart evdev\n[ 16.132456] CPU: 0 UID: 0 PID: 181 Comm: kworker/u8:6 Not tainted 6.11.0-cl+ #143\n[ 16.132460] Hardware name: Hewlett-Packard HP Compaq 6910p/30BE, BIOS 68MCU Ver. F.19 07/06/2010\n[ 16.132463] Workqueue: async async_run_entry_fn\n[ 16.132469] RIP: 0010:ieee80211_reconfig+0x8f/0x14b0 [mac80211]\n[ 16.132501] Code: da 02 00 0\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50234",
"url": "https://www.suse.com/security/cve/CVE-2024-50234"
},
{
"category": "external",
"summary": "SUSE Bug 1233211 for CVE-2024-50234",
"url": "https://bugzilla.suse.com/1233211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50234"
},
{
"cve": "CVE-2024-50235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: clear wdev-\u003ecqm_config pointer on free\n\nWhen we free wdev-\u003ecqm_config when unregistering, we also\nneed to clear out the pointer since the same wdev/netdev\nmay get re-registered in another network namespace, then\ndestroyed later, running this code again, which results in\na double-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50235",
"url": "https://www.suse.com/security/cve/CVE-2024-50235"
},
{
"category": "external",
"summary": "SUSE Bug 1233176 for CVE-2024-50235",
"url": "https://bugzilla.suse.com/1233176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50235"
},
{
"cve": "CVE-2024-50236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: Fix memory leak in management tx\n\nIn the current logic, memory is allocated for storing the MSDU context\nduring management packet TX but this memory is not being freed during\nmanagement TX completion. Similar leaks are seen in the management TX\ncleanup logic.\n\nKmemleak reports this problem as below,\n\nunreferenced object 0xffffff80b64ed250 (size 16):\n comm \"kworker/u16:7\", pid 148, jiffies 4294687130 (age 714.199s)\n hex dump (first 16 bytes):\n 00 2b d8 d8 80 ff ff ff c4 74 e9 fd 07 00 00 00 .+.......t......\n backtrace:\n [\u003cffffffe6e7b245dc\u003e] __kmem_cache_alloc_node+0x1e4/0x2d8\n [\u003cffffffe6e7adde88\u003e] kmalloc_trace+0x48/0x110\n [\u003cffffffe6bbd765fc\u003e] ath10k_wmi_tlv_op_gen_mgmt_tx_send+0xd4/0x1d8 [ath10k_core]\n [\u003cffffffe6bbd3eed4\u003e] ath10k_mgmt_over_wmi_tx_work+0x134/0x298 [ath10k_core]\n [\u003cffffffe6e78d5974\u003e] process_scheduled_works+0x1ac/0x400\n [\u003cffffffe6e78d60b8\u003e] worker_thread+0x208/0x328\n [\u003cffffffe6e78dc890\u003e] kthread+0x100/0x1c0\n [\u003cffffffe6e78166c0\u003e] ret_from_fork+0x10/0x20\n\nFree the memory during completion and cleanup to fix the leak.\n\nProtect the mgmt_pending_tx idr_remove() operation in\nath10k_wmi_tlv_op_cleanup_mgmt_tx_send() using ar-\u003edata_lock similar to\nother instances.\n\nTested-on: WCN3990 hw1.0 SNOC WLAN.HL.2.0-01387-QCAHLSWMTPLZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50236",
"url": "https://www.suse.com/security/cve/CVE-2024-50236"
},
{
"category": "external",
"summary": "SUSE Bug 1233212 for CVE-2024-50236",
"url": "https://bugzilla.suse.com/1233212"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50236"
},
{
"cve": "CVE-2024-50237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: do not pass a stopped vif to the driver in .get_txpower\n\nAvoid potentially crashing in the driver because of uninitialized private data",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50237",
"url": "https://www.suse.com/security/cve/CVE-2024-50237"
},
{
"category": "external",
"summary": "SUSE Bug 1233216 for CVE-2024-50237",
"url": "https://bugzilla.suse.com/1233216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50237"
},
{
"cve": "CVE-2024-50238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: qcom: qmp-usbc: fix NULL-deref on runtime suspend\n\nCommit 413db06c05e7 (\"phy: qcom-qmp-usb: clean up probe initialisation\")\nremoved most users of the platform device driver data from the\nqcom-qmp-usb driver, but mistakenly also removed the initialisation\ndespite the data still being used in the runtime PM callbacks. This bug\nwas later reproduced when the driver was copied to create the qmp-usbc\ndriver.\n\nRestore the driver data initialisation at probe to avoid a NULL-pointer\ndereference on runtime suspend.\n\nApparently no one uses runtime PM, which currently needs to be enabled\nmanually through sysfs, with these drivers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50238",
"url": "https://www.suse.com/security/cve/CVE-2024-50238"
},
{
"category": "external",
"summary": "SUSE Bug 1233182 for CVE-2024-50238",
"url": "https://bugzilla.suse.com/1233182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50238"
},
{
"cve": "CVE-2024-50239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: qcom: qmp-usb-legacy: fix NULL-deref on runtime suspend\n\nCommit 413db06c05e7 (\"phy: qcom-qmp-usb: clean up probe initialisation\")\nremoved most users of the platform device driver data from the\nqcom-qmp-usb driver, but mistakenly also removed the initialisation\ndespite the data still being used in the runtime PM callbacks. This bug\nwas later reproduced when the driver was copied to create the\nqmp-usb-legacy driver.\n\nRestore the driver data initialisation at probe to avoid a NULL-pointer\ndereference on runtime suspend.\n\nApparently no one uses runtime PM, which currently needs to be enabled\nmanually through sysfs, with these drivers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50239",
"url": "https://www.suse.com/security/cve/CVE-2024-50239"
},
{
"category": "external",
"summary": "SUSE Bug 1233180 for CVE-2024-50239",
"url": "https://bugzilla.suse.com/1233180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50239"
},
{
"cve": "CVE-2024-50240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: qcom: qmp-usb: fix NULL-deref on runtime suspend\n\nCommit 413db06c05e7 (\"phy: qcom-qmp-usb: clean up probe initialisation\")\nremoved most users of the platform device driver data, but mistakenly\nalso removed the initialisation despite the data still being used in the\nruntime PM callbacks.\n\nRestore the driver data initialisation at probe to avoid a NULL-pointer\ndereference on runtime suspend.\n\nApparently no one uses runtime PM, which currently needs to be enabled\nmanually through sysfs, with this driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50240",
"url": "https://www.suse.com/security/cve/CVE-2024-50240"
},
{
"category": "external",
"summary": "SUSE Bug 1233217 for CVE-2024-50240",
"url": "https://bugzilla.suse.com/1233217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50240"
},
{
"cve": "CVE-2024-50241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Initialize struct nfsd4_copy earlier\n\nEnsure the refcount and async_copies fields are initialized early.\ncleanup_async_copy() will reference these fields if an error occurs\nin nfsd4_copy(). If they are not correctly initialized, at the very\nleast, a refcount underflow occurs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50241",
"url": "https://www.suse.com/security/cve/CVE-2024-50241"
},
{
"category": "external",
"summary": "SUSE Bug 1233187 for CVE-2024-50241",
"url": "https://bugzilla.suse.com/1233187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50241"
},
{
"cve": "CVE-2024-50242",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50242"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Additional check in ntfs_file_release",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50242",
"url": "https://www.suse.com/security/cve/CVE-2024-50242"
},
{
"category": "external",
"summary": "SUSE Bug 1233268 for CVE-2024-50242",
"url": "https://bugzilla.suse.com/1233268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50242"
},
{
"cve": "CVE-2024-50243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Fix general protection fault in run_is_mapped_full\n\nFixed deleating of a non-resident attribute in ntfs_create_inode()\nrollback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50243",
"url": "https://www.suse.com/security/cve/CVE-2024-50243"
},
{
"category": "external",
"summary": "SUSE Bug 1233269 for CVE-2024-50243",
"url": "https://bugzilla.suse.com/1233269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50243"
},
{
"cve": "CVE-2024-50244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50244"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Additional check in ni_clear()\n\nChecking of NTFS_FLAGS_LOG_REPLAYING added to prevent access to\nuninitialized bitmap during replay process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50244",
"url": "https://www.suse.com/security/cve/CVE-2024-50244"
},
{
"category": "external",
"summary": "SUSE Bug 1233270 for CVE-2024-50244",
"url": "https://bugzilla.suse.com/1233270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50244"
},
{
"cve": "CVE-2024-50245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Fix possible deadlock in mi_read\n\nMutex lock with another subclass used in ni_lock_dir().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50245",
"url": "https://www.suse.com/security/cve/CVE-2024-50245"
},
{
"category": "external",
"summary": "SUSE Bug 1233203 for CVE-2024-50245",
"url": "https://bugzilla.suse.com/1233203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50245"
},
{
"cve": "CVE-2024-50246",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50246"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Add rough attr alloc_size check",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50246",
"url": "https://www.suse.com/security/cve/CVE-2024-50246"
},
{
"category": "external",
"summary": "SUSE Bug 1233207 for CVE-2024-50246",
"url": "https://bugzilla.suse.com/1233207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50246"
},
{
"cve": "CVE-2024-50247",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50247"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Check if more than chunk-size bytes are written\n\nA incorrectly formatted chunk may decompress into\nmore than LZNT_CHUNK_SIZE bytes and a index out of bounds\nwill occur in s_max_off.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50247",
"url": "https://www.suse.com/security/cve/CVE-2024-50247"
},
{
"category": "external",
"summary": "SUSE Bug 1233271 for CVE-2024-50247",
"url": "https://bugzilla.suse.com/1233271"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50247"
},
{
"cve": "CVE-2024-50248",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50248"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Add bounds checking to mi_enum_attr()\n\nAdded bounds checking to make sure that every attr don\u0027t stray beyond\nvalid memory region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50248",
"url": "https://www.suse.com/security/cve/CVE-2024-50248"
},
{
"category": "external",
"summary": "SUSE Bug 1233219 for CVE-2024-50248",
"url": "https://bugzilla.suse.com/1233219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50248"
},
{
"cve": "CVE-2024-50249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50249"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: CPPC: Make rmw_lock a raw_spin_lock\n\nThe following BUG was triggered:\n\n=============================\n[ BUG: Invalid wait context ]\n6.12.0-rc2-XXX #406 Not tainted\n-----------------------------\nkworker/1:1/62 is trying to lock:\nffffff8801593030 (\u0026cpc_ptr-\u003ermw_lock){+.+.}-{3:3}, at: cpc_write+0xcc/0x370\nother info that might help us debug this:\ncontext-{5:5}\n2 locks held by kworker/1:1/62:\n #0: ffffff897ef5ec98 (\u0026rq-\u003e__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2c/0x50\n #1: ffffff880154e238 (\u0026sg_policy-\u003eupdate_lock){....}-{2:2}, at: sugov_update_shared+0x3c/0x280\nstack backtrace:\nCPU: 1 UID: 0 PID: 62 Comm: kworker/1:1 Not tainted 6.12.0-rc2-g9654bd3e8806 #406\nWorkqueue: 0x0 (events)\nCall trace:\n dump_backtrace+0xa4/0x130\n show_stack+0x20/0x38\n dump_stack_lvl+0x90/0xd0\n dump_stack+0x18/0x28\n __lock_acquire+0x480/0x1ad8\n lock_acquire+0x114/0x310\n _raw_spin_lock+0x50/0x70\n cpc_write+0xcc/0x370\n cppc_set_perf+0xa0/0x3a8\n cppc_cpufreq_fast_switch+0x40/0xc0\n cpufreq_driver_fast_switch+0x4c/0x218\n sugov_update_shared+0x234/0x280\n update_load_avg+0x6ec/0x7b8\n dequeue_entities+0x108/0x830\n dequeue_task_fair+0x58/0x408\n __schedule+0x4f0/0x1070\n schedule+0x54/0x130\n worker_thread+0xc0/0x2e8\n kthread+0x130/0x148\n ret_from_fork+0x10/0x20\n\nsugov_update_shared() locks a raw_spinlock while cpc_write() locks a\nspinlock.\n\nTo have a correct wait-type order, update rmw_lock to a raw spinlock and\nensure that interrupts will be disabled on the CPU holding it.\n\n[ rjw: Changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50249",
"url": "https://www.suse.com/security/cve/CVE-2024-50249"
},
{
"category": "external",
"summary": "SUSE Bug 1233197 for CVE-2024-50249",
"url": "https://bugzilla.suse.com/1233197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50249"
},
{
"cve": "CVE-2024-50250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50250"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsdax: dax_unshare_iter needs to copy entire blocks\n\nThe code that copies data from srcmap to iomap in dax_unshare_iter is\nvery very broken, which bfoster\u0027s recent fsx changes have exposed.\n\nIf the pos and len passed to dax_file_unshare are not aligned to an\nfsblock boundary, the iter pos and length in the _iter function will\nreflect this unalignment.\n\ndax_iomap_direct_access always returns a pointer to the start of the\nkmapped fsdax page, even if its pos argument is in the middle of that\npage. This is catastrophic for data integrity when iter-\u003epos is not\naligned to a page, because daddr/saddr do not point to the same byte in\nthe file as iter-\u003epos. Hence we corrupt user data by copying it to the\nwrong place.\n\nIf iter-\u003epos + iomap_length() in the _iter function not aligned to a\npage, then we fail to copy a full block, and only partially populate the\ndestination block. This is catastrophic for data confidentiality\nbecause we expose stale pmem contents.\n\nFix both of these issues by aligning copy_pos/copy_len to a page\nboundary (remember, this is fsdax so 1 fsblock == 1 base page) so that\nwe always copy full blocks.\n\nWe\u0027re not done yet -- there\u0027s no call to invalidate_inode_pages2_range,\nso programs that have the file range mmap\u0027d will continue accessing the\nold memory mapping after the file metadata updates have completed.\n\nBe careful with the return value -- if the unshare succeeds, we still\nneed to return the number of bytes that the iomap iter thinks we\u0027re\noperating on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50250",
"url": "https://www.suse.com/security/cve/CVE-2024-50250"
},
{
"category": "external",
"summary": "SUSE Bug 1233226 for CVE-2024-50250",
"url": "https://bugzilla.suse.com/1233226"
},
{
"category": "external",
"summary": "SUSE Bug 1233227 for CVE-2024-50250",
"url": "https://bugzilla.suse.com/1233227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50250"
},
{
"cve": "CVE-2024-50251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50251"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_payload: sanitize offset and length before calling skb_checksum()\n\nIf access to offset + length is larger than the skbuff length, then\nskb_checksum() triggers BUG_ON().\n\nskb_checksum() internally subtracts the length parameter while iterating\nover skbuff, BUG_ON(len) at the end of it checks that the expected\nlength to be included in the checksum calculation is fully consumed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50251",
"url": "https://www.suse.com/security/cve/CVE-2024-50251"
},
{
"category": "external",
"summary": "SUSE Bug 1233248 for CVE-2024-50251",
"url": "https://bugzilla.suse.com/1233248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50251"
},
{
"cve": "CVE-2024-50252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address\n\nThe device stores IPv6 addresses that are used for encapsulation in\nlinear memory that is managed by the driver.\n\nChanging the remote address of an ip6gre net device never worked\nproperly, but since cited commit the following reproducer [1] would\nresult in a warning [2] and a memory leak [3]. The problem is that the\nnew remote address is never added by the driver to its hash table (and\ntherefore the device) and the old address is never removed from it.\n\nFix by programming the new address when the configuration of the ip6gre\nnet device changes and removing the old one. If the address did not\nchange, then the above would result in increasing the reference count of\nthe address and then decreasing it.\n\n[1]\n # ip link add name bla up type ip6gre local 2001:db8:1::1 remote 2001:db8:2::1 tos inherit ttl inherit\n # ip link set dev bla type ip6gre remote 2001:db8:3::1\n # ip link del dev bla\n # devlink dev reload pci/0000:01:00.0\n\n[2]\nWARNING: CPU: 0 PID: 1682 at drivers/net/ethernet/mellanox/mlxsw/spectrum.c:3002 mlxsw_sp_ipv6_addr_put+0x140/0x1d0\nModules linked in:\nCPU: 0 UID: 0 PID: 1682 Comm: ip Not tainted 6.12.0-rc3-custom-g86b5b55bc835 #151\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nRIP: 0010:mlxsw_sp_ipv6_addr_put+0x140/0x1d0\n[...]\nCall Trace:\n \u003cTASK\u003e\n mlxsw_sp_router_netdevice_event+0x55f/0x1240\n notifier_call_chain+0x5a/0xd0\n call_netdevice_notifiers_info+0x39/0x90\n unregister_netdevice_many_notify+0x63e/0x9d0\n rtnl_dellink+0x16b/0x3a0\n rtnetlink_rcv_msg+0x142/0x3f0\n netlink_rcv_skb+0x50/0x100\n netlink_unicast+0x242/0x390\n netlink_sendmsg+0x1de/0x420\n ____sys_sendmsg+0x2bd/0x320\n ___sys_sendmsg+0x9a/0xe0\n __sys_sendmsg+0x7a/0xd0\n do_syscall_64+0x9e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[3]\nunreferenced object 0xffff898081f597a0 (size 32):\n comm \"ip\", pid 1626, jiffies 4294719324\n hex dump (first 32 bytes):\n 20 01 0d b8 00 02 00 00 00 00 00 00 00 00 00 01 ...............\n 21 49 61 83 80 89 ff ff 00 00 00 00 01 00 00 00 !Ia.............\n backtrace (crc fd9be911):\n [\u003c00000000df89c55d\u003e] __kmalloc_cache_noprof+0x1da/0x260\n [\u003c00000000ff2a1ddb\u003e] mlxsw_sp_ipv6_addr_kvdl_index_get+0x281/0x340\n [\u003c000000009ddd445d\u003e] mlxsw_sp_router_netdevice_event+0x47b/0x1240\n [\u003c00000000743e7757\u003e] notifier_call_chain+0x5a/0xd0\n [\u003c000000007c7b9e13\u003e] call_netdevice_notifiers_info+0x39/0x90\n [\u003c000000002509645d\u003e] register_netdevice+0x5f7/0x7a0\n [\u003c00000000c2e7d2a9\u003e] ip6gre_newlink_common.isra.0+0x65/0x130\n [\u003c0000000087cd6d8d\u003e] ip6gre_newlink+0x72/0x120\n [\u003c000000004df7c7cc\u003e] rtnl_newlink+0x471/0xa20\n [\u003c0000000057ed632a\u003e] rtnetlink_rcv_msg+0x142/0x3f0\n [\u003c0000000032e0d5b5\u003e] netlink_rcv_skb+0x50/0x100\n [\u003c00000000908bca63\u003e] netlink_unicast+0x242/0x390\n [\u003c00000000cdbe1c87\u003e] netlink_sendmsg+0x1de/0x420\n [\u003c0000000011db153e\u003e] ____sys_sendmsg+0x2bd/0x320\n [\u003c000000003b6d53eb\u003e] ___sys_sendmsg+0x9a/0xe0\n [\u003c00000000cae27c62\u003e] __sys_sendmsg+0x7a/0xd0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50252",
"url": "https://www.suse.com/security/cve/CVE-2024-50252"
},
{
"category": "external",
"summary": "SUSE Bug 1233201 for CVE-2024-50252",
"url": "https://bugzilla.suse.com/1233201"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50252"
},
{
"cve": "CVE-2024-50253",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50253"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check the validity of nr_words in bpf_iter_bits_new()\n\nCheck the validity of nr_words in bpf_iter_bits_new(). Without this\ncheck, when multiplication overflow occurs for nr_bits (e.g., when\nnr_words = 0x0400-0001, nr_bits becomes 64), stack corruption may occur\ndue to bpf_probe_read_kernel_common(..., nr_bytes = 0x2000-0008).\n\nFix it by limiting the maximum value of nr_words to 511. The value is\nderived from the current implementation of BPF memory allocator. To\nensure compatibility if the BPF memory allocator\u0027s size limitation\nchanges in the future, use the helper bpf_mem_alloc_check_size() to\ncheck whether nr_bytes is too larger. And return -E2BIG instead of\n-ENOMEM for oversized nr_bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50253",
"url": "https://www.suse.com/security/cve/CVE-2024-50253"
},
{
"category": "external",
"summary": "SUSE Bug 1233186 for CVE-2024-50253",
"url": "https://bugzilla.suse.com/1233186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50253"
},
{
"cve": "CVE-2024-50254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Free dynamically allocated bits in bpf_iter_bits_destroy()\n\nbpf_iter_bits_destroy() uses \"kit-\u003enr_bits \u003c= 64\" to check whether the\nbits are dynamically allocated. However, the check is incorrect and may\ncause a kmemleak as shown below:\n\nunreferenced object 0xffff88812628c8c0 (size 32):\n comm \"swapper/0\", pid 1, jiffies 4294727320\n hex dump (first 32 bytes):\n\tb0 c1 55 f5 81 88 ff ff f0 f0 f0 f0 f0 f0 f0 f0 ..U...........\n\tf0 f0 f0 f0 f0 f0 f0 f0 00 00 00 00 00 00 00 00 ..............\n backtrace (crc 781e32cc):\n\t[\u003c00000000c452b4ab\u003e] kmemleak_alloc+0x4b/0x80\n\t[\u003c0000000004e09f80\u003e] __kmalloc_node_noprof+0x480/0x5c0\n\t[\u003c00000000597124d6\u003e] __alloc.isra.0+0x89/0xb0\n\t[\u003c000000004ebfffcd\u003e] alloc_bulk+0x2af/0x720\n\t[\u003c00000000d9c10145\u003e] prefill_mem_cache+0x7f/0xb0\n\t[\u003c00000000ff9738ff\u003e] bpf_mem_alloc_init+0x3e2/0x610\n\t[\u003c000000008b616eac\u003e] bpf_global_ma_init+0x19/0x30\n\t[\u003c00000000fc473efc\u003e] do_one_initcall+0xd3/0x3c0\n\t[\u003c00000000ec81498c\u003e] kernel_init_freeable+0x66a/0x940\n\t[\u003c00000000b119f72f\u003e] kernel_init+0x20/0x160\n\t[\u003c00000000f11ac9a7\u003e] ret_from_fork+0x3c/0x70\n\t[\u003c0000000004671da4\u003e] ret_from_fork_asm+0x1a/0x30\n\nThat is because nr_bits will be set as zero in bpf_iter_bits_next()\nafter all bits have been iterated.\n\nFix the issue by setting kit-\u003ebit to kit-\u003enr_bits instead of setting\nkit-\u003enr_bits to zero when the iteration completes in\nbpf_iter_bits_next(). In addition, use \"!nr_bits || bits \u003e= nr_bits\" to\ncheck whether the iteration is complete and still use \"nr_bits \u003e 64\" to\nindicate whether bits are dynamically allocated. The \"!nr_bits\" check is\nnecessary because bpf_iter_bits_new() may fail before setting\nkit-\u003enr_bits, and this condition will stop the iteration early instead\nof accessing the zeroed or freed kit-\u003ebits.\n\nConsidering the initial value of kit-\u003ebits is -1 and the type of\nkit-\u003enr_bits is unsigned int, change the type of kit-\u003enr_bits to int.\nThe potential overflow problem will be handled in the following patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50254",
"url": "https://www.suse.com/security/cve/CVE-2024-50254"
},
{
"category": "external",
"summary": "SUSE Bug 1233183 for CVE-2024-50254",
"url": "https://bugzilla.suse.com/1233183"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50254"
},
{
"cve": "CVE-2024-50255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs\n\nFix __hci_cmd_sync_sk() to return not NULL for unknown opcodes.\n\n__hci_cmd_sync_sk() returns NULL if a command returns a status event.\nHowever, it also returns NULL where an opcode doesn\u0027t exist in the\nhci_cc table because hci_cmd_complete_evt() assumes status = skb-\u003edata[0]\nfor unknown opcodes.\nThis leads to null-ptr-deref in cmd_sync for HCI_OP_READ_LOCAL_CODECS as\nthere is no hci_cc for HCI_OP_READ_LOCAL_CODECS, which always assumes\nstatus = skb-\u003edata[0].\n\nKASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077]\nCPU: 1 PID: 2000 Comm: kworker/u9:5 Not tainted 6.9.0-ga6bcb805883c-dirty #10\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nWorkqueue: hci7 hci_power_on\nRIP: 0010:hci_read_supported_codecs+0xb9/0x870 net/bluetooth/hci_codec.c:138\nCode: 08 48 89 ef e8 b8 c1 8f fd 48 8b 75 00 e9 96 00 00 00 49 89 c6 48 ba 00 00 00 00 00 fc ff df 4c 8d 60 70 4c 89 e3 48 c1 eb 03 \u003c0f\u003e b6 04 13 84 c0 0f 85 82 06 00 00 41 83 3c 24 02 77 0a e8 bf 78\nRSP: 0018:ffff888120bafac8 EFLAGS: 00010212\nRAX: 0000000000000000 RBX: 000000000000000e RCX: ffff8881173f0040\nRDX: dffffc0000000000 RSI: ffffffffa58496c0 RDI: ffff88810b9ad1e4\nRBP: ffff88810b9ac000 R08: ffffffffa77882a7 R09: 1ffffffff4ef1054\nR10: dffffc0000000000 R11: fffffbfff4ef1055 R12: 0000000000000070\nR13: 0000000000000000 R14: 0000000000000000 R15: ffff88810b9ac000\nFS: 0000000000000000(0000) GS:ffff8881f6c00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f6ddaa3439e CR3: 0000000139764003 CR4: 0000000000770ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n hci_read_local_codecs_sync net/bluetooth/hci_sync.c:4546 [inline]\n hci_init_stage_sync net/bluetooth/hci_sync.c:3441 [inline]\n hci_init4_sync net/bluetooth/hci_sync.c:4706 [inline]\n hci_init_sync net/bluetooth/hci_sync.c:4742 [inline]\n hci_dev_init_sync net/bluetooth/hci_sync.c:4912 [inline]\n hci_dev_open_sync+0x19a9/0x2d30 net/bluetooth/hci_sync.c:4994\n hci_dev_do_open net/bluetooth/hci_core.c:483 [inline]\n hci_power_on+0x11e/0x560 net/bluetooth/hci_core.c:1015\n process_one_work kernel/workqueue.c:3267 [inline]\n process_scheduled_works+0x8ef/0x14f0 kernel/workqueue.c:3348\n worker_thread+0x91f/0xe50 kernel/workqueue.c:3429\n kthread+0x2cb/0x360 kernel/kthread.c:388\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50255",
"url": "https://www.suse.com/security/cve/CVE-2024-50255"
},
{
"category": "external",
"summary": "SUSE Bug 1233238 for CVE-2024-50255",
"url": "https://bugzilla.suse.com/1233238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50255"
},
{
"cve": "CVE-2024-50256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()\n\nI got a syzbot report without a repro [1] crashing in nf_send_reset6()\n\nI think the issue is that dev-\u003ehard_header_len is zero, and we attempt\nlater to push an Ethernet header.\n\nUse LL_MAX_HEADER, as other functions in net/ipv6/netfilter/nf_reject_ipv6.c.\n\n[1]\n\nskbuff: skb_under_panic: text:ffffffff89b1d008 len:74 put:14 head:ffff88803123aa00 data:ffff88803123a9f2 tail:0x3c end:0x140 dev:syz_tun\n kernel BUG at net/core/skbuff.c:206 !\nOops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 UID: 0 PID: 7373 Comm: syz.1.568 Not tainted 6.12.0-rc2-syzkaller-00631-g6d858708d465 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n RIP: 0010:skb_panic net/core/skbuff.c:206 [inline]\n RIP: 0010:skb_under_panic+0x14b/0x150 net/core/skbuff.c:216\nCode: 0d 8d 48 c7 c6 60 a6 29 8e 48 8b 54 24 08 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 41 54 41 57 41 56 e8 ba 30 38 02 48 83 c4 20 90 \u003c0f\u003e 0b 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3\nRSP: 0018:ffffc900045269b0 EFLAGS: 00010282\nRAX: 0000000000000088 RBX: dffffc0000000000 RCX: cd66dacdc5d8e800\nRDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000\nRBP: ffff88802d39a3d0 R08: ffffffff8174afec R09: 1ffff920008a4ccc\nR10: dffffc0000000000 R11: fffff520008a4ccd R12: 0000000000000140\nR13: ffff88803123aa00 R14: ffff88803123a9f2 R15: 000000000000003c\nFS: 00007fdbee5ff6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 000000005d322000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n skb_push+0xe5/0x100 net/core/skbuff.c:2636\n eth_header+0x38/0x1f0 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3208 [inline]\n nf_send_reset6+0xce6/0x1270 net/ipv6/netfilter/nf_reject_ipv6.c:358\n nft_reject_inet_eval+0x3b9/0x690 net/netfilter/nft_reject_inet.c:48\n expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n nft_do_chain+0x4ad/0x1da0 net/netfilter/nf_tables_core.c:288\n nft_do_chain_inet+0x418/0x6b0 net/netfilter/nft_chain_filter.c:161\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_slow+0xc3/0x220 net/netfilter/core.c:626\n nf_hook include/linux/netfilter.h:269 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n br_nf_pre_routing_ipv6+0x63e/0x770 net/bridge/br_netfilter_ipv6.c:184\n nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n nf_hook_bridge_pre net/bridge/br_input.c:277 [inline]\n br_handle_frame+0x9fd/0x1530 net/bridge/br_input.c:424\n __netif_receive_skb_core+0x13e8/0x4570 net/core/dev.c:5562\n __netif_receive_skb_one_core net/core/dev.c:5666 [inline]\n __netif_receive_skb+0x12f/0x650 net/core/dev.c:5781\n netif_receive_skb_internal net/core/dev.c:5867 [inline]\n netif_receive_skb+0x1e8/0x890 net/core/dev.c:5926\n tun_rx_batched+0x1b7/0x8f0 drivers/net/tun.c:1550\n tun_get_user+0x3056/0x47e0 drivers/net/tun.c:2007\n tun_chr_write_iter+0x10d/0x1f0 drivers/net/tun.c:2053\n new_sync_write fs/read_write.c:590 [inline]\n vfs_write+0xa6d/0xc90 fs/read_write.c:683\n ksys_write+0x183/0x2b0 fs/read_write.c:736\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fdbeeb7d1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48\nRSP: 002b:00007fdbee5ff000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fdbeed36058 RCX: 00007fdbeeb7d1ff\nRDX: 000000000000008e RSI: 0000000020000040 RDI: 00000000000000c8\nRBP: 00007fdbeebf12be R08: 0000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50256",
"url": "https://www.suse.com/security/cve/CVE-2024-50256"
},
{
"category": "external",
"summary": "SUSE Bug 1233200 for CVE-2024-50256",
"url": "https://bugzilla.suse.com/1233200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50256"
},
{
"cve": "CVE-2024-50257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: Fix use-after-free in get_info()\n\nip6table_nat module unload has refcnt warning for UAF. call trace is:\n\nWARNING: CPU: 1 PID: 379 at kernel/module/main.c:853 module_put+0x6f/0x80\nModules linked in: ip6table_nat(-)\nCPU: 1 UID: 0 PID: 379 Comm: ip6tables Not tainted 6.12.0-rc4-00047-gc2ee9f594da8-dirty #205\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996),\nBIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:module_put+0x6f/0x80\nCall Trace:\n \u003cTASK\u003e\n get_info+0x128/0x180\n do_ip6t_get_ctl+0x6a/0x430\n nf_getsockopt+0x46/0x80\n ipv6_getsockopt+0xb9/0x100\n rawv6_getsockopt+0x42/0x190\n do_sock_getsockopt+0xaa/0x180\n __sys_getsockopt+0x70/0xc0\n __x64_sys_getsockopt+0x20/0x30\n do_syscall_64+0xa2/0x1a0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nConcurrent execution of module unload and get_info() trigered the warning.\nThe root cause is as follows:\n\ncpu0\t\t\t\t cpu1\nmodule_exit\n//mod-\u003estate = MODULE_STATE_GOING\n ip6table_nat_exit\n xt_unregister_template\n\tkfree(t)\n\t//removed from templ_list\n\t\t\t\t getinfo()\n\t\t\t\t\t t = xt_find_table_lock\n\t\t\t\t\t\tlist_for_each_entry(tmpl, \u0026xt_templates[af]...)\n\t\t\t\t\t\t\tif (strcmp(tmpl-\u003ename, name))\n\t\t\t\t\t\t\t\tcontinue; //table not found\n\t\t\t\t\t\t\ttry_module_get\n\t\t\t\t\t\tlist_for_each_entry(t, \u0026xt_net-\u003etables[af]...)\n\t\t\t\t\t\t\treturn t; //not get refcnt\n\t\t\t\t\t module_put(t-\u003eme) //uaf\n unregister_pernet_subsys\n //remove table from xt_net list\n\nWhile xt_table module was going away and has been removed from\nxt_templates list, we couldnt get refcnt of xt_table-\u003eme. Check\nmodule in xt_net-\u003etables list re-traversal to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50257",
"url": "https://www.suse.com/security/cve/CVE-2024-50257"
},
{
"category": "external",
"summary": "SUSE Bug 1233244 for CVE-2024-50257",
"url": "https://bugzilla.suse.com/1233244"
},
{
"category": "external",
"summary": "SUSE Bug 1233245 for CVE-2024-50257",
"url": "https://bugzilla.suse.com/1233245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50257"
},
{
"cve": "CVE-2024-50258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fix crash when config small gso_max_size/gso_ipv4_max_size\n\nConfig a small gso_max_size/gso_ipv4_max_size will lead to an underflow\nin sk_dst_gso_max_size(), which may trigger a BUG_ON crash,\nbecause sk-\u003esk_gso_max_size would be much bigger than device limits.\nCall Trace:\ntcp_write_xmit\n tso_segs = tcp_init_tso_segs(skb, mss_now);\n tcp_set_skb_tso_segs\n tcp_skb_pcount_set\n // skb-\u003elen = 524288, mss_now = 8\n // u16 tso_segs = 524288/8 = 65535 -\u003e 0\n tso_segs = DIV_ROUND_UP(skb-\u003elen, mss_now)\n BUG_ON(!tso_segs)\nAdd check for the minimum value of gso_max_size and gso_ipv4_max_size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50258",
"url": "https://www.suse.com/security/cve/CVE-2024-50258"
},
{
"category": "external",
"summary": "SUSE Bug 1233221 for CVE-2024-50258",
"url": "https://bugzilla.suse.com/1233221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50258"
},
{
"cve": "CVE-2024-50259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write()\n\nThis was found by a static analyzer.\nWe should not forget the trailing zero after copy_from_user()\nif we will further do some string operations, sscanf() in this\ncase. Adding a trailing zero will ensure that the function\nperforms properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50259",
"url": "https://www.suse.com/security/cve/CVE-2024-50259"
},
{
"category": "external",
"summary": "SUSE Bug 1233214 for CVE-2024-50259",
"url": "https://bugzilla.suse.com/1233214"
},
{
"category": "external",
"summary": "SUSE Bug 1233215 for CVE-2024-50259",
"url": "https://bugzilla.suse.com/1233215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50259"
},
{
"cve": "CVE-2024-50260",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50260"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsock_map: fix a NULL pointer dereference in sock_map_link_update_prog()\n\nThe following race condition could trigger a NULL pointer dereference:\n\nsock_map_link_detach():\t\tsock_map_link_update_prog():\n mutex_lock(\u0026sockmap_mutex);\n ...\n sockmap_link-\u003emap = NULL;\n mutex_unlock(\u0026sockmap_mutex);\n \t\t\t\t mutex_lock(\u0026sockmap_mutex);\n\t\t\t\t ...\n\t\t\t\t sock_map_prog_link_lookup(sockmap_link-\u003emap);\n\t\t\t\t mutex_unlock(\u0026sockmap_mutex);\n \u003ccontinue\u003e\n\nFix it by adding a NULL pointer check. In this specific case, it makes\nno sense to update a link which is being released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50260",
"url": "https://www.suse.com/security/cve/CVE-2024-50260"
},
{
"category": "external",
"summary": "SUSE Bug 1233178 for CVE-2024-50260",
"url": "https://bugzilla.suse.com/1233178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50260"
},
{
"cve": "CVE-2024-50261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacsec: Fix use-after-free while sending the offloading packet\n\nKASAN reports the following UAF. The metadata_dst, which is used to\nstore the SCI value for macsec offload, is already freed by\nmetadata_dst_free() in macsec_free_netdev(), while driver still use it\nfor sending the packet.\n\nTo fix this issue, dst_release() is used instead to release\nmetadata_dst. So it is not freed instantly in macsec_free_netdev() if\nstill referenced by skb.\n\n BUG: KASAN: slab-use-after-free in mlx5e_xmit+0x1e8f/0x4190 [mlx5_core]\n Read of size 2 at addr ffff88813e42e038 by task kworker/7:2/714\n [...]\n Workqueue: mld mld_ifc_work\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x51/0x60\n print_report+0xc1/0x600\n kasan_report+0xab/0xe0\n mlx5e_xmit+0x1e8f/0x4190 [mlx5_core]\n dev_hard_start_xmit+0x120/0x530\n sch_direct_xmit+0x149/0x11e0\n __qdisc_run+0x3ad/0x1730\n __dev_queue_xmit+0x1196/0x2ed0\n vlan_dev_hard_start_xmit+0x32e/0x510 [8021q]\n dev_hard_start_xmit+0x120/0x530\n __dev_queue_xmit+0x14a7/0x2ed0\n macsec_start_xmit+0x13e9/0x2340\n dev_hard_start_xmit+0x120/0x530\n __dev_queue_xmit+0x14a7/0x2ed0\n ip6_finish_output2+0x923/0x1a70\n ip6_finish_output+0x2d7/0x970\n ip6_output+0x1ce/0x3a0\n NF_HOOK.constprop.0+0x15f/0x190\n mld_sendpack+0x59a/0xbd0\n mld_ifc_work+0x48a/0xa80\n process_one_work+0x5aa/0xe50\n worker_thread+0x79c/0x1290\n kthread+0x28f/0x350\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\n\n Allocated by task 3922:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x10/0x30\n __kasan_kmalloc+0x77/0x90\n __kmalloc_noprof+0x188/0x400\n metadata_dst_alloc+0x1f/0x4e0\n macsec_newlink+0x914/0x1410\n __rtnl_newlink+0xe08/0x15b0\n rtnl_newlink+0x5f/0x90\n rtnetlink_rcv_msg+0x667/0xa80\n netlink_rcv_skb+0x12c/0x360\n netlink_unicast+0x551/0x770\n netlink_sendmsg+0x72d/0xbd0\n __sock_sendmsg+0xc5/0x190\n ____sys_sendmsg+0x52e/0x6a0\n ___sys_sendmsg+0xeb/0x170\n __sys_sendmsg+0xb5/0x140\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 4011:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n poison_slab_object+0x10c/0x190\n __kasan_slab_free+0x11/0x30\n kfree+0xe0/0x290\n macsec_free_netdev+0x3f/0x140\n netdev_run_todo+0x450/0xc70\n rtnetlink_rcv_msg+0x66f/0xa80\n netlink_rcv_skb+0x12c/0x360\n netlink_unicast+0x551/0x770\n netlink_sendmsg+0x72d/0xbd0\n __sock_sendmsg+0xc5/0x190\n ____sys_sendmsg+0x52e/0x6a0\n ___sys_sendmsg+0xeb/0x170\n __sys_sendmsg+0xb5/0x140\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50261",
"url": "https://www.suse.com/security/cve/CVE-2024-50261"
},
{
"category": "external",
"summary": "SUSE Bug 1233253 for CVE-2024-50261",
"url": "https://bugzilla.suse.com/1233253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-50261"
},
{
"cve": "CVE-2024-50262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix out-of-bounds write in trie_get_next_key()\n\ntrie_get_next_key() allocates a node stack with size trie-\u003emax_prefixlen,\nwhile it writes (trie-\u003emax_prefixlen + 1) nodes to the stack when it has\nfull paths from the root to leaves. For example, consider a trie with\nmax_prefixlen is 8, and the nodes with key 0x00/0, 0x00/1, 0x00/2, ...\n0x00/8 inserted. Subsequent calls to trie_get_next_key with _key with\n.prefixlen = 8 make 9 nodes be written on the node stack with size 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50262",
"url": "https://www.suse.com/security/cve/CVE-2024-50262"
},
{
"category": "external",
"summary": "SUSE Bug 1233239 for CVE-2024-50262",
"url": "https://bugzilla.suse.com/1233239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50262"
},
{
"cve": "CVE-2024-50263",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50263"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfork: only invoke khugepaged, ksm hooks if no error\n\nThere is no reason to invoke these hooks early against an mm that is in an\nincomplete state.\n\nThe change in commit d24062914837 (\"fork: use __mt_dup() to duplicate\nmaple tree in dup_mmap()\") makes this more pertinent as we may be in a\nstate where entries in the maple tree are not yet consistent.\n\nTheir placement early in dup_mmap() only appears to have been meaningful\nfor early error checking, and since functionally it\u0027d require a very small\nallocation to fail (in practice \u0027too small to fail\u0027) that\u0027d only occur in\nthe most dire circumstances, meaning the fork would fail or be OOM\u0027d in\nany case.\n\nSince both khugepaged and KSM tracking are there to provide optimisations\nto memory performance rather than critical functionality, it doesn\u0027t\nreally matter all that much if, under such dire memory pressure, we fail\nto register an mm with these.\n\nAs a result, we follow the example of commit d2081b2bf819 (\"mm:\nkhugepaged: make khugepaged_enter() void function\") and make ksm_fork() a\nvoid function also.\n\nWe only expose the mm to these functions once we are done with them and\nonly if no error occurred in the fork operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50263",
"url": "https://www.suse.com/security/cve/CVE-2024-50263"
},
{
"category": "external",
"summary": "SUSE Bug 1233254 for CVE-2024-50263",
"url": "https://bugzilla.suse.com/1233254"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-devel-longterm-6.12.11-1.1.x86_64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.aarch64",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.ppc64le",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.s390x",
"openSUSE Tumbleweed:kernel-source-longterm-6.12.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-50263"
}
]
}
GHSA-QGCH-26FJ-87R3
Vulnerability from github – Published: 2024-11-08 06:30 – Updated: 2024-11-18 21:30
VLAI?
Details
In the Linux kernel, the following vulnerability has been resolved:
udf: refactor inode_bmap() to handle error
Refactor inode_bmap() to handle error since udf_next_aext() can return error now. On situations like ftruncate, udf_extend_file() can now detect errors and bail out early without resorting to checking for particular offsets and assuming internal behavior of these functions.
Severity ?
{
"affected": [],
"aliases": [
"CVE-2024-50211"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-11-08T06:15:17Z",
"severity": "LOW"
},
"details": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions.",
"id": "GHSA-qgch-26fj-87r3",
"modified": "2024-11-18T21:30:44Z",
"published": "2024-11-08T06:30:49Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50211"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/493447dd8336607fce426f7879e581095f6c606e"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/b22d9a5698abf04341f8fbc30141e0673863c3a6"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/c226964ec786f3797ed389a16392ce4357697d24"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
}
]
}
MSRC_CVE-2024-50211
Vulnerability from csaf_microsoft - Published: 2024-11-02 00:00 - Updated: 2025-01-29 00:00Summary
udf: refactor inode_bmap() to handle error
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2024-50211 udf: refactor inode_bmap() to handle error - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-50211.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "udf: refactor inode_bmap() to handle error",
"tracking": {
"current_release_date": "2025-01-29T00:00:00.000Z",
"generator": {
"date": "2025-10-20T02:32:18.900Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2024-50211",
"initial_release_date": "2024-11-02T00:00:00.000Z",
"revision_history": [
{
"date": "2025-01-29T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
},
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 kernel 6.6.64.2-1",
"product": {
"name": "\u003cazl3 kernel 6.6.64.2-1",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 kernel 6.6.64.2-1",
"product": {
"name": "azl3 kernel 6.6.64.2-1",
"product_id": "17489"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 kernel 6.6.57.1-7",
"product": {
"name": "\u003cazl3 kernel 6.6.57.1-7",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "azl3 kernel 6.6.57.1-7",
"product": {
"name": "azl3 kernel 6.6.57.1-7",
"product_id": "17088"
}
}
],
"category": "product_name",
"name": "kernel"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 kernel 6.6.64.2-1 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 kernel 6.6.64.2-1 as a component of Azure Linux 3.0",
"product_id": "17489-17084"
},
"product_reference": "17489",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 kernel 6.6.57.1-7 as a component of Azure Linux 3.0",
"product_id": "17084-2"
},
"product_reference": "2",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 kernel 6.6.57.1-7 as a component of Azure Linux 3.0",
"product_id": "17088-17084"
},
"product_reference": "17088",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-50211",
"notes": [
{
"category": "general",
"text": "Linux",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"17489-17084",
"17088-17084"
],
"known_affected": [
"17084-1",
"17084-2"
],
"under_investigation": [
"17086-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-50211 udf: refactor inode_bmap() to handle error - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-50211.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2025-01-29T00:00:00.000Z",
"details": "6.6.64.2-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-1",
"17084-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"title": "udf: refactor inode_bmap() to handle error"
}
]
}
FKIE_CVE-2024-50211
Vulnerability from fkie_nvd - Published: 2024-11-08 06:15 - Updated: 2025-10-01 21:16
Severity ?
3.3 (Low) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
3.3 (Low) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
3.3 (Low) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Summary
In the Linux kernel, the following vulnerability has been resolved:
udf: refactor inode_bmap() to handle error
Refactor inode_bmap() to handle error since udf_next_aext() can return
error now. On situations like ftruncate, udf_extend_file() can now
detect errors and bail out early without resorting to checking for
particular offsets and assuming internal behavior of these functions.
References
| URL | Tags | ||
|---|---|---|---|
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/493447dd8336607fce426f7879e581095f6c606e | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/b22d9a5698abf04341f8fbc30141e0673863c3a6 | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/c226964ec786f3797ed389a16392ce4357697d24 | Patch |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | 6.12 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1F471FD6-0481-4141-8A03-00D7CE67C49C",
"versionEndExcluding": "6.6.59",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E4486B12-007B-4794-9857-F07145637AA1",
"versionEndExcluding": "6.11.6",
"versionStartIncluding": "6.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*",
"matchCriteriaId": "7F361E1D-580F-4A2D-A509-7615F73167A1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: refactor inode_bmap() to handle error\n\nRefactor inode_bmap() to handle error since udf_next_aext() can return\nerror now. On situations like ftruncate, udf_extend_file() can now\ndetect errors and bail out early without resorting to checking for\nparticular offsets and assuming internal behavior of these functions."
},
{
"lang": "es",
"value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: udf: refactorizar inode_bmap() para controlar el error Refactorizar inode_bmap() para controlar el error, ya que udf_next_aext() ahora puede devolver un error. En situaciones como ftruncate, udf_extend_file() ahora puede detectar errores y salir antes sin recurrir a la comprobaci\u00f3n de desplazamientos particulares y asumir el comportamiento interno de estas funciones."
}
],
"id": "CVE-2024-50211",
"lastModified": "2025-10-01T21:16:06.330",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 1.4,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2024-11-08T06:15:17.410",
"references": [
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/493447dd8336607fce426f7879e581095f6c606e"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/b22d9a5698abf04341f8fbc30141e0673863c3a6"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/c226964ec786f3797ed389a16392ce4357697d24"
}
],
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
WID-SEC-W-2024-3376
Vulnerability from csaf_certbund - Published: 2024-11-07 23:00 - Updated: 2026-01-06 23:00Summary
Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Der Kernel stellt den Kern des Linux Betriebssystems dar.
Angriff
Ein lokaler Angreifer kann mehrere Schwachstellen in Linux Kernel ausnutzen, um einen nicht näher spezifizierten Angriff durchzuführen und einen Denial-of-Service-Zustand zu erzeugen.
Betroffene Betriebssysteme
- Linux
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Linux Kernel ausnutzen, um einen nicht n\u00e4her spezifizierten Angriff durchzuf\u00fchren und einen Denial-of-Service-Zustand zu erzeugen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3376 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3376.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3376 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3376"
},
{
"category": "external",
"summary": "Kernel CVE Announce Mailingliste",
"url": "https://lore.kernel.org/linux-cve-announce/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50203",
"url": "https://lore.kernel.org/linux-cve-announce/2024110803-CVE-2024-50203-ca2d@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50173",
"url": "https://lore.kernel.org/linux-cve-announce/2024110804-CVE-2024-50173-c209@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50204",
"url": "https://lore.kernel.org/linux-cve-announce/2024110805-CVE-2024-50204-11f7@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50205",
"url": "https://lore.kernel.org/linux-cve-announce/2024110805-CVE-2024-50205-e583@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50174",
"url": "https://lore.kernel.org/linux-cve-announce/2024110806-CVE-2024-50174-a1aa@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50175",
"url": "https://lore.kernel.org/linux-cve-announce/2024110806-CVE-2024-50175-48bf@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50176",
"url": "https://lore.kernel.org/linux-cve-announce/2024110806-CVE-2024-50176-8744@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50206",
"url": "https://lore.kernel.org/linux-cve-announce/2024110806-CVE-2024-50206-6111@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50207",
"url": "https://lore.kernel.org/linux-cve-announce/2024110806-CVE-2024-50207-6f39@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50208",
"url": "https://lore.kernel.org/linux-cve-announce/2024110806-CVE-2024-50208-08dc@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50177",
"url": "https://lore.kernel.org/linux-cve-announce/2024110807-CVE-2024-50177-73ee@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50178",
"url": "https://lore.kernel.org/linux-cve-announce/2024110807-CVE-2024-50178-f72f@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50179",
"url": "https://lore.kernel.org/linux-cve-announce/2024110807-CVE-2024-50179-85f0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50209",
"url": "https://lore.kernel.org/linux-cve-announce/2024110807-CVE-2024-50209-d763@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50210",
"url": "https://lore.kernel.org/linux-cve-announce/2024110807-CVE-2024-50210-413b@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50211",
"url": "https://lore.kernel.org/linux-cve-announce/2024110811-CVE-2024-50211-feda@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50201",
"url": "https://lore.kernel.org/linux-cve-announce/2024110818-CVE-2024-50201-b73d@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50202",
"url": "https://lore.kernel.org/linux-cve-announce/2024110821-CVE-2024-50202-d5c5@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50180",
"url": "https://lore.kernel.org/linux-cve-announce/2024110832-CVE-2024-50180-40c4@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50181",
"url": "https://lore.kernel.org/linux-cve-announce/2024110833-CVE-2024-50181-e1da@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50182",
"url": "https://lore.kernel.org/linux-cve-announce/2024110833-CVE-2024-50182-0fe4@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50183",
"url": "https://lore.kernel.org/linux-cve-announce/2024110833-CVE-2024-50183-8165@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50184",
"url": "https://lore.kernel.org/linux-cve-announce/2024110834-CVE-2024-50184-00c9@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50185",
"url": "https://lore.kernel.org/linux-cve-announce/2024110834-CVE-2024-50185-8f6e@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50186",
"url": "https://lore.kernel.org/linux-cve-announce/2024110834-CVE-2024-50186-acb0@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50187",
"url": "https://lore.kernel.org/linux-cve-announce/2024110835-CVE-2024-50187-f2b0@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50188",
"url": "https://lore.kernel.org/linux-cve-announce/2024110835-CVE-2024-50188-6f0c@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50189",
"url": "https://lore.kernel.org/linux-cve-announce/2024110851-CVE-2024-50189-48c8@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50190",
"url": "https://lore.kernel.org/linux-cve-announce/2024110851-CVE-2024-50190-611f@gregkh/#u"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2024-50191",
"url": "https://lore.kernel.org/linux-cve-announce/2024110851-CVE-2024-50191-f31c@gregkh/#u"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2024:14500-1 vom 2024-11-16",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2NO44GTYBSPPWKFDREFWHITK4XKTNVLP/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4131-1 vom 2024-12-02",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/019887.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10944 vom 2024-12-11",
"url": "https://access.redhat.com/errata/RHSA-2024:10944"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10943 vom 2024-12-11",
"url": "https://access.redhat.com/errata/RHSA-2024:10943"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-10943 vom 2024-12-12",
"url": "https://linux.oracle.com/errata/ELSA-2024-10943.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4314-1 vom 2024-12-13",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/SARXL66CQHD5VSFG5PUBNBVBPVFUN4KT/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4315-1 vom 2024-12-13",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/LQPWDP54GSTHYCV4CTCOE67D2ANVPPUW/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4313-1 vom 2024-12-13",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/PCO2TL4OCZ4YUXTF7OMLI6WH3WKDUC2G/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4318-1 vom 2024-12-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/019999.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4316-1 vom 2024-12-13",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/S4I5Z6ALCJLHTP25U3HMJHEXN4DR2USM/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4317-1 vom 2024-12-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/020000.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-12884 vom 2024-12-17",
"url": "https://linux.oracle.com/errata/ELSA-2024-12884.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4345-1 vom 2024-12-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/020018.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7166-1 vom 2024-12-17",
"url": "https://ubuntu.com/security/notices/USN-7166-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4346-1 vom 2024-12-17",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/2FJJW5HEWYSYWAJBRWARBIZ4AQHAXLNG/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4367-1 vom 2024-12-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/020025.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4364-1 vom 2024-12-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/020019.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-12887 vom 2024-12-18",
"url": "https://linux.oracle.com/errata/ELSA-2024-12887.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:10944 vom 2024-12-19",
"url": "https://errata.build.resf.org/RLSA-2024:10944"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4376-1 vom 2024-12-18",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WFOJHFFEHK42VPQ6XLZWB77H5OEJ3FF4/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4376-1 vom 2024-12-18",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/WFOJHFFEHK42VPQ6XLZWB77H5OEJ3FF4/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:11486 vom 2024-12-19",
"url": "https://access.redhat.com/errata/RHSA-2024:11486"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4376-1 vom 2024-12-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/020028.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4388-1 vom 2024-12-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/020034.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:4387-1 vom 2024-12-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/020032.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7166-3 vom 2024-12-20",
"url": "https://ubuntu.com/security/notices/USN-7166-3"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-4008 vom 2025-01-03",
"url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-11486 vom 2025-01-07",
"url": "https://linux.oracle.com/errata/ELSA-2024-11486.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7186-1 vom 2025-01-06",
"url": "https://ubuntu.com/security/notices/USN-7186-1"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0059 vom 2025-01-08",
"url": "https://access.redhat.com/errata/RHSA-2025:0059"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0035-1 vom 2025-01-08",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020070.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7194-1 vom 2025-01-09",
"url": "https://ubuntu.com/security/notices/USN-7194-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7186-2 vom 2025-01-09",
"url": "https://ubuntu.com/security/notices/USN-7186-2"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-0059 vom 2025-01-11",
"url": "https://linux.oracle.com/errata/ELSA-2025-0059.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0117-1 vom 2025-01-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020131.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0154-1 vom 2025-01-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020151.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0201-1 vom 2025-01-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/YFCZRPOJ45QWVUSJAEK53OBSFTOQ3W5H/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0236-1 vom 2025-01-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020196.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0289-1 vom 2025-01-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020239.html"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:14705-1 vom 2025-01-29",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/T7LN2FDZYBYZRLX5LOA3REDAXV7VKGW4/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0428-1 vom 2025-02-11",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020311.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0517-1 vom 2025-02-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020337.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0499-1 vom 2025-02-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020336.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0555-1 vom 2025-02-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020353.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0556-1 vom 2025-02-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020352.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0557-1 vom 2025-02-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020350.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0576-1 vom 2025-02-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020371.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0577-1 vom 2025-02-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020370.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7276-1 vom 2025-02-19",
"url": "https://ubuntu.com/security/notices/USN-7276-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7277-1 vom 2025-02-19",
"url": "https://ubuntu.com/security/notices/USN-7277-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0517-2 vom 2025-02-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020382.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7289-1 vom 2025-02-24",
"url": "https://ubuntu.com/security/notices/USN-7289-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7288-1 vom 2025-02-24",
"url": "https://ubuntu.com/security/notices/USN-7288-1"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7184085 vom 2025-02-25",
"url": "https://www.ibm.com/support/pages/node/7184085"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7289-2 vom 2025-02-25",
"url": "https://ubuntu.com/security/notices/USN-7289-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7288-2 vom 2025-02-25",
"url": "https://ubuntu.com/security/notices/USN-7288-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7291-1 vom 2025-02-25",
"url": "https://ubuntu.com/security/notices/USN-7291-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7293-1 vom 2025-02-25",
"url": "https://ubuntu.com/security/notices/USN-7293-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7301-1 vom 2025-02-25",
"url": "https://ubuntu.com/security/notices/USN-7301-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7294-1 vom 2025-02-25",
"url": "https://ubuntu.com/security/notices/USN-7294-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7289-3 vom 2025-02-25",
"url": "https://ubuntu.com/security/notices/USN-7289-3"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7295-1 vom 2025-02-25",
"url": "https://ubuntu.com/security/notices/USN-7295-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7289-4 vom 2025-02-27",
"url": "https://ubuntu.com/security/notices/USN-7289-4"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7294-2 vom 2025-02-27",
"url": "https://ubuntu.com/security/notices/USN-7294-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7308-1 vom 2025-02-27",
"url": "https://ubuntu.com/security/notices/USN-7308-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7294-3 vom 2025-02-28",
"url": "https://ubuntu.com/security/notices/USN-7294-3"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7310-1 vom 2025-02-28",
"url": "https://ubuntu.com/security/notices/USN-7310-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7303-2 vom 2025-02-28",
"url": "https://ubuntu.com/security/notices/USN-7303-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7311-1 vom 2025-02-28",
"url": "https://ubuntu.com/security/notices/USN-7311-1"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-4075 vom 2025-03-01",
"url": "https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0771-1 vom 2025-03-03",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/6X627UISONPV7CQLLHUDVJCDEIODQO4O/"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7294-4 vom 2025-03-03",
"url": "https://ubuntu.com/security/notices/USN-7294-4"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7303-3 vom 2025-03-03",
"url": "https://ubuntu.com/security/notices/USN-7303-3"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0784-1 vom 2025-03-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020484.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7331-1 vom 2025-03-05",
"url": "https://ubuntu.com/security/notices/USN-7331-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0577-2 vom 2025-03-11",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020500.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0201-2 vom 2025-03-11",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020501.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0847-1 vom 2025-03-12",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020505.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0856-1 vom 2025-03-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020508.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0856-1 vom 2025-03-13",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OSPHACQPT5GWCIN3WJL55RCYA4OHTBLI/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0856-1 vom 2025-03-13",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/OSPHACQPT5GWCIN3WJL55RCYA4OHTBLI/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0867-1 vom 2025-03-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020514.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0955-1 vom 2025-03-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020563.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7386-1 vom 2025-03-27",
"url": "https://ubuntu.com/security/notices/USN-7386-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7383-2 vom 2025-03-27",
"url": "https://ubuntu.com/security/notices/USN-7383-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7383-1 vom 2025-03-27",
"url": "https://ubuntu.com/security/notices/USN-7383-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7384-1 vom 2025-03-27",
"url": "https://ubuntu.com/security/notices/USN-7384-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7388-1 vom 2025-03-27",
"url": "https://ubuntu.com/security/notices/USN-7388-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7385-1 vom 2025-03-27",
"url": "https://ubuntu.com/security/notices/USN-7385-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7393-1 vom 2025-03-28",
"url": "https://ubuntu.com/security/notices/USN-7393-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7390-1 vom 2025-03-28",
"url": "https://ubuntu.com/security/notices/USN-7390-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7389-1 vom 2025-03-28",
"url": "https://ubuntu.com/security/notices/USN-7389-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7384-2 vom 2025-04-01",
"url": "https://ubuntu.com/security/notices/USN-7384-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7401-1 vom 2025-04-01",
"url": "https://ubuntu.com/security/notices/USN-7401-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7403-1 vom 2025-04-02",
"url": "https://ubuntu.com/security/notices/USN-7403-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7413-1 vom 2025-04-03",
"url": "https://ubuntu.com/security/notices/USN-7413-1"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:3935 vom 2025-04-16",
"url": "https://access.redhat.com/errata/RHSA-2025:3935"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7452-1 vom 2025-04-23",
"url": "https://ubuntu.com/security/notices/USN-7452-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7451-1 vom 2025-04-23",
"url": "https://ubuntu.com/security/notices/USN-7451-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7450-1 vom 2025-04-23",
"url": "https://ubuntu.com/security/notices/USN-7450-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7453-1 vom 2025-04-23",
"url": "https://ubuntu.com/security/notices/USN-7453-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7449-1 vom 2025-04-23",
"url": "https://ubuntu.com/security/notices/USN-7449-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7458-1 vom 2025-04-24",
"url": "https://ubuntu.com/security/notices/USN-7458-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7449-2 vom 2025-04-24",
"url": "https://ubuntu.com/security/notices/USN-7449-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7468-1 vom 2025-04-28",
"url": "https://ubuntu.com/security/notices/USN-7468-1"
},
{
"category": "external",
"summary": "Kyocera Downloads",
"url": "https://www.kyoceradocumentsolutions.us/en/support/downloads.name-L3VzL2VuL3NvZnR3YXJlL0tZT0NFUkFERVZJQ0VNQU5BR0VS.html#tab=application"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:1422-1 vom 2025-04-30",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020760.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:1416-1 vom 2025-04-30",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020756.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:1425-1 vom 2025-05-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020761.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:1423-1 vom 2025-05-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020762.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:1445-1 vom 2025-05-05",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/GPMTFUDWFWZSMC6NLZLZHEWKB34AHTSR/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:1448-1 vom 2025-05-05",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/K6HQ3R43TDF2TCZD7MI4L7EGIC7Q62S4/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:1463-1 vom 2025-05-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020789.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:1454-1 vom 2025-05-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020790.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:6966 vom 2025-05-13",
"url": "https://access.redhat.com/errata/RHSA-2025:6966"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7523-1 vom 2025-05-20",
"url": "https://ubuntu.com/security/notices/USN-7523-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7524-1 vom 2025-05-26",
"url": "https://ubuntu.com/security/notices/USN-7524-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7539-1 vom 2025-05-28",
"url": "https://ubuntu.com/security/notices/USN-7539-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7540-1 vom 2025-05-28",
"url": "https://ubuntu.com/security/notices/USN-7540-1"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2025-213 vom 2025-05-30",
"url": "https://www.dell.com/support/kbdoc/de-de/000326299/dsa-2025-213-security-update-for-dell-avamar-dell-networker-virtual-edition-nve-and-dell-powerprotect-dp-series-appliance-dell-integrated-data-protection-appliance-idpa-multiple-third-party-vulnerabilities"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20249-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021072.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20270-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021056.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20247-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021076.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20260-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021058.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20246-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021078.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20248-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021074.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20192-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021150.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20164-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021175.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20190-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021154.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20165-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021174.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20166-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021176.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20163-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021187.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02388-1 vom 2025-07-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021860.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02411-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DEKG43SVEEUNQXJBCRXWGSWJ6NQ36NUC/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02390-1 vom 2025-07-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021881.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02400-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ZFZK6V3WCARPDN2N3X7GFGJTK7UFSP6T/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02398-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OZIQSMDCERQHP4JSQ3YSIO5TMBD637EV/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02389-1 vom 2025-07-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021882.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02403-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BXLF63OLKSA5LWF3BYMVRASA55GHVYJY/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02416-1 vom 2025-07-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021890.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02449-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NOIECZ42HAJGKZ7TVGI4LLLNAG27ZF7L/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02434-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HM6XIBRQQ4DT55UN4XNTKFRWGXRY73A5/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02440-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ON72ZMOEO6E3K3KZFRVFHX5LUYA6RAXJ/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02446-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GYAKCPI3CQKIWHWVXLDBJMK5CDOB5VRS/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02420-1 vom 2025-07-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021886.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02455-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/H2GXZ2EL5OVKMNFWDPFV7NT367YYOFZO/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02436-1 vom 2025-07-21",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JOC4XFCSYMATM6FYIQWRDFK5AQF4P2LT/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02419-1 vom 2025-07-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021887.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02428-1 vom 2025-07-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021889.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02459-1 vom 2025-07-22",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/CNBGONL5CBCKJ2ZQN6XVJFDFNJMHMLDW/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20525-1 vom 2025-08-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022027.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20518-1 vom 2025-08-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022033.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20517-1 vom 2025-08-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022034.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20526-1 vom 2025-08-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022026.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20544-1 vom 2025-08-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022100.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20540-1 vom 2025-08-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022104.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7727-2 vom 2025-08-29",
"url": "https://ubuntu.com/security/notices/USN-7727-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7727-3 vom 2025-09-02",
"url": "https://ubuntu.com/security/notices/USN-7727-3"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7755-2 vom 2025-09-17",
"url": "https://ubuntu.com/security/notices/USN-7755-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7755-1 vom 2025-09-17",
"url": "https://ubuntu.com/security/notices/USN-7755-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7755-3 vom 2025-09-24",
"url": "https://ubuntu.com/security/notices/USN-7755-3"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:20518 vom 2025-11-11",
"url": "https://access.redhat.com/errata/RHSA-2025:20518"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7875-1 vom 2025-11-19",
"url": "https://ubuntu.com/security/notices/USN-7875-1"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:20518 vom 2025-11-21",
"url": "https://errata.build.resf.org/RLSA-2025:20518"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-20518 vom 2025-11-25",
"url": "https://linux.oracle.com/errata/ELSA-2025-20518-0.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7907-1 vom 2025-12-03",
"url": "https://ubuntu.com/security/notices/USN-7907-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7907-2 vom 2025-12-03",
"url": "https://ubuntu.com/security/notices/USN-7907-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7907-3 vom 2025-12-04",
"url": "https://ubuntu.com/security/notices/USN-7907-3"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7907-4 vom 2025-12-04",
"url": "https://ubuntu.com/security/notices/USN-7907-4"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7922-1 vom 2025-12-10",
"url": "https://ubuntu.com/security/notices/USN-7922-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7922-2 vom 2025-12-11",
"url": "https://ubuntu.com/security/notices/USN-7922-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7907-5 vom 2025-12-12",
"url": "https://ubuntu.com/security/notices/USN-7907-5"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7930-2 vom 2025-12-15",
"url": "https://ubuntu.com/security/notices/USN-7930-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7937-1 vom 2025-12-16",
"url": "https://ubuntu.com/security/notices/USN-7937-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7930-1 vom 2025-12-15",
"url": "https://ubuntu.com/security/notices/USN-7930-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7939-2 vom 2025-12-17",
"url": "https://ubuntu.com/security/notices/USN-7939-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7939-1 vom 2025-12-17",
"url": "https://ubuntu.com/security/notices/USN-7939-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7922-3 vom 2025-12-19",
"url": "https://ubuntu.com/security/notices/USN-7922-3"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7922-4 vom 2026-01-06",
"url": "https://ubuntu.com/security/notices/USN-7922-4"
}
],
"source_lang": "en-US",
"title": "Linux Kernel: Mehrere Schwachstellen erm\u00f6glichen nicht spezifizierten Angriff",
"tracking": {
"current_release_date": "2026-01-06T23:00:00.000+00:00",
"generator": {
"date": "2026-01-07T07:36:11.835+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2024-3376",
"initial_release_date": "2024-11-07T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-07T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-11-17T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2024-12-02T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-12-10T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-12T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-12-15T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-12-16T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-12-17T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
},
{
"date": "2024-12-18T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Oracle Linux, Rocky Enterprise Software Foundation, SUSE und Red Hat aufgenommen"
},
{
"date": "2024-12-19T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-12-22T23:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-01-02T23:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2025-01-06T23:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Oracle Linux und Ubuntu aufgenommen"
},
{
"date": "2025-01-07T23:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-08T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-01-09T23:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-01-12T23:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-01-15T23:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-01-19T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-01-21T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-01-26T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-01-29T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von SUSE und openSUSE aufgenommen"
},
{
"date": "2025-02-11T23:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-02-13T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-02-16T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-02-18T23:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-02-19T23:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-02-20T23:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-02-24T23:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-02-25T23:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-02-27T23:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-03-02T23:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2025-03-03T23:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
},
{
"date": "2025-03-05T23:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
},
{
"date": "2025-03-11T23:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-03-12T23:00:00.000+00:00",
"number": "36",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-03-13T23:00:00.000+00:00",
"number": "37",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-03-16T23:00:00.000+00:00",
"number": "38",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-03-19T23:00:00.000+00:00",
"number": "39",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-03-27T23:00:00.000+00:00",
"number": "40",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-03-30T22:00:00.000+00:00",
"number": "41",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-04-01T22:00:00.000+00:00",
"number": "42",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-04-03T22:00:00.000+00:00",
"number": "43",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-04-15T22:00:00.000+00:00",
"number": "44",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-04-23T22:00:00.000+00:00",
"number": "45",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-04-24T22:00:00.000+00:00",
"number": "46",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-04-28T22:00:00.000+00:00",
"number": "47",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-04-29T22:00:00.000+00:00",
"number": "48",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2025-05-01T22:00:00.000+00:00",
"number": "49",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-05-04T22:00:00.000+00:00",
"number": "50",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-05-07T22:00:00.000+00:00",
"number": "51",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-05-13T22:00:00.000+00:00",
"number": "52",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-05-20T22:00:00.000+00:00",
"number": "53",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-05-26T22:00:00.000+00:00",
"number": "54",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-05-27T22:00:00.000+00:00",
"number": "55",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-05-29T22:00:00.000+00:00",
"number": "56",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2025-06-03T22:00:00.000+00:00",
"number": "57",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-07-20T22:00:00.000+00:00",
"number": "58",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-07-21T22:00:00.000+00:00",
"number": "59",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-08-03T22:00:00.000+00:00",
"number": "60",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-08-05T22:00:00.000+00:00",
"number": "61",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-08-28T22:00:00.000+00:00",
"number": "62",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-09-02T22:00:00.000+00:00",
"number": "63",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-09-17T22:00:00.000+00:00",
"number": "64",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-09-23T22:00:00.000+00:00",
"number": "65",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-11-11T23:00:00.000+00:00",
"number": "66",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-11-19T23:00:00.000+00:00",
"number": "67",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-11-23T23:00:00.000+00:00",
"number": "68",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2025-11-24T23:00:00.000+00:00",
"number": "69",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-12-03T23:00:00.000+00:00",
"number": "70",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-12-10T23:00:00.000+00:00",
"number": "71",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-12-11T23:00:00.000+00:00",
"number": "72",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-12-14T23:00:00.000+00:00",
"number": "73",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-12-15T23:00:00.000+00:00",
"number": "74",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-12-16T23:00:00.000+00:00",
"number": "75",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-12-21T23:00:00.000+00:00",
"number": "76",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2026-01-06T23:00:00.000+00:00",
"number": "77",
"summary": "Neue Updates von Ubuntu aufgenommen"
}
],
"status": "final",
"version": "77"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Dell Avamar",
"product": {
"name": "Dell Avamar",
"product_id": "T039664",
"product_identification_helper": {
"cpe": "cpe:/a:dell:avamar:-"
}
}
},
{
"category": "product_name",
"name": "Dell NetWorker",
"product": {
"name": "Dell NetWorker",
"product_id": "T034583",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:virtual"
}
}
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP11 IF02",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP11 IF02",
"product_id": "T041397"
}
},
{
"category": "product_version",
"name": "7.5.0 UP11 IF02",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP11 IF02",
"product_id": "T041397-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up11_if02"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Kyocera Printer",
"product": {
"name": "Kyocera Printer",
"product_id": "T015471",
"product_identification_helper": {
"cpe": "cpe:/h:kyocera:printer:-"
}
}
}
],
"category": "vendor",
"name": "Kyocera"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source Linux Kernel",
"product": {
"name": "Open Source Linux Kernel",
"product_id": "T046484",
"product_identification_helper": {
"cpe": "cpe:/o:linux:linux_kernel:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-50173",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50173"
},
{
"cve": "CVE-2024-50174",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50174"
},
{
"cve": "CVE-2024-50175",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50175"
},
{
"cve": "CVE-2024-50176",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50176"
},
{
"cve": "CVE-2024-50177",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50177"
},
{
"cve": "CVE-2024-50178",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50178"
},
{
"cve": "CVE-2024-50179",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50179"
},
{
"cve": "CVE-2024-50180",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50180"
},
{
"cve": "CVE-2024-50181",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50181"
},
{
"cve": "CVE-2024-50182",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50182"
},
{
"cve": "CVE-2024-50183",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50183"
},
{
"cve": "CVE-2024-50184",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50184"
},
{
"cve": "CVE-2024-50185",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50185"
},
{
"cve": "CVE-2024-50186",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50186"
},
{
"cve": "CVE-2024-50187",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50187"
},
{
"cve": "CVE-2024-50188",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50188"
},
{
"cve": "CVE-2024-50189",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50189"
},
{
"cve": "CVE-2024-50190",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50190"
},
{
"cve": "CVE-2024-50191",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50191"
},
{
"cve": "CVE-2024-50192",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50192"
},
{
"cve": "CVE-2024-50193",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50193"
},
{
"cve": "CVE-2024-50194",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50194"
},
{
"cve": "CVE-2024-50195",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50195"
},
{
"cve": "CVE-2024-50196",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50196"
},
{
"cve": "CVE-2024-50197",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50197"
},
{
"cve": "CVE-2024-50198",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50198"
},
{
"cve": "CVE-2024-50199",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50199"
},
{
"cve": "CVE-2024-50200",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50200"
},
{
"cve": "CVE-2024-50201",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50201"
},
{
"cve": "CVE-2024-50202",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50202"
},
{
"cve": "CVE-2024-50203",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50203"
},
{
"cve": "CVE-2024-50204",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50204"
},
{
"cve": "CVE-2024-50205",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50205"
},
{
"cve": "CVE-2024-50206",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50206"
},
{
"cve": "CVE-2024-50207",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50207"
},
{
"cve": "CVE-2024-50208",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50208"
},
{
"cve": "CVE-2024-50209",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50209"
},
{
"cve": "CVE-2024-50210",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50210"
},
{
"cve": "CVE-2024-50211",
"product_status": {
"known_affected": [
"T015471",
"2951",
"T002207",
"67646",
"T000126",
"T027843",
"T034583",
"T046484",
"T004914",
"T032255",
"T039664",
"T041397"
]
},
"release_date": "2024-11-07T23:00:00.000+00:00",
"title": "CVE-2024-50211"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…